Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Chrome opens up with softonic home page..


  • Please log in to reply
20 replies to this topic

#1 nabu

nabu

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:51 AM

Posted 19 December 2013 - 05:28 AM

Hi,

 

I'm running windows 7 home Premium 64.

Some days ago winpatrol detected a change in the system and after google chrome was opeing up with softonic page...

Also days before i downloaded a free program and avira notified me of a virus that has been blocked apparently...so maybe that's the reason..

 

Thank you very much!!



BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:51 AM

Posted 19 December 2013 - 07:18 AM

Please download MINITOOLBOX and run it.

Checkmark following boxes:



Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.

 

 


Download Security Check by screen317 from here.


  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Download Autoruns and Autorunsc Unzip it to your desktop and then double click autoruns.exe After the scan is finished then click on File>>>>>>>>>>>Save The default name will be autoruns.arn make sure to save it as Autoruns.txt under the file type option. in other words make sure it is a .txt file instead of .arn Attach the text in your next reply.

 

 


Update and do a quick scan with Malwarebytes remove all that it finds and reboot.
http://www.malwarebytes.org/mbam/program/mbam-setup.exe

Post the log here,

 

 

 

  • Please download Adware cleaner from the link below.
  • http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner
  • Save it to your desktop.
  • Right click run as admin.
  • Hit the scan button.
  • Allow completion.
  • Make sure all items are ticked.
  • Hit the clean button.
  • Even if no items are displayed to be ticked hit the clean button anyway.
  • The machine will reboot this is normal.
  • Post the log in your next reply.

 

Please download JRT from here & double click to start the program.

  1. Hit any key when prompted and allow it to run through it's process.

    H2HaYv4.png
  2. Post the log when it's finished.


#3 nabu

nabu
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:51 AM

Posted 19 December 2013 - 12:49 PM

Ok everything done!!
 
 
MiniToolBox by Farbar  Version: 18-12-2013
Ran by IreAle (administrator) on 19-12-2013 at 16:28:49
Running from "C:\Users\IreAle\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Configurazione IP di Windows
 
Cache del resolver DNS svuotata.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
Qualcomm Atheros AR9285 802.11b/g/n WiFi Adapter = Connessione rete wireless (Connected)
Realtek PCIe GBE Family Controller = Connessione alla rete locale (LAN) (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Connessione rete wireless 2 (Media disconnected)
 
 
# ----------------------------------
# Configurazione IPv4
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
add address name="Connessione rete wireless 2" address=192.168.137.1 mask=255.255.255.0
 
 
popd
# Fine configurazione IPv4
 
 
 
Configurazione IP di Windows
 
   Nome host . . . . . . . . . . . . . . : Nowehereland
   Suffisso DNS primario . . . . . . . . : 
   Tipo nodo . . . . . . . . . . . . . . : Misto
   Routing IP abilitato. . . . . . . . . : No
   Proxy WINS abilitato . . . . . . . .  : No
   Elenco di ricerca suffissi DNS. . . . : homenet.telecomitalia.it
 
Scheda LAN wireless Connessione rete wireless 2:
 
   Stato supporto. . . . . . . . . . . . : Supporto disconnesso
   Suffisso DNS specifico per connessione: 
   Descrizione . . . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Indirizzo fisico. . . . . . . . . . . : 22-0D-5C-91-8B-CD
   DHCP abilitato. . . . . . . . . . . . : No
   Configurazione automatica abilitata   : S
 
Scheda LAN wireless Connessione rete wireless:
 
   Suffisso DNS specifico per connessione: homenet.telecomitalia.it
   Descrizione . . . . . . . . . . . . . : Qualcomm Atheros AR9285 802.11b/g/n WiFi Adapter
   Indirizzo fisico. . . . . . . . . . . : 02-0D-5C-91-8B-CD
   DHCP abilitato. . . . . . . . . . . . : S
   Configurazione automatica abilitata   : S
   Indirizzo IPv6 locale rispetto al collegamento . : fe80::44d2:eda6:6173:e848%11(Preferenziale) 
   Indirizzo IPv4. . . . . . . . . . . . : 192.168.1.134(Preferenziale) 
   Subnet mask . . . . . . . . . . . . . : 255.255.255.0
   Lease ottenuto. . . . . . . . . . . . : gioved 19 dicembre 2013 11:20:12
   Scadenza lease . . . . . . . . . . .  : gioved 19 dicembre 2013 21:53:41
   Gateway predefinito . . . . . . . . . : 192.168.1.1
   Server DHCP . . . . . . . . . . . . . : 192.168.1.1
   IAID DHCPv6 . . . . . . . . . . . : 308847556
   DUID Client DHCPv6. . . . . . . . : 00-01-00-01-1A-19-C7-D1-00-01-5E-7C-5A-61
   Server DNS . . . . . . . . . . . . .  : 192.168.1.1
   NetBIOS su TCP/IP . . . . . . . . . . : Attivato
 
Scheda Ethernet Connessione alla rete locale (LAN):
 
   Stato supporto. . . . . . . . . . . . : Supporto disconnesso
   Suffisso DNS specifico per connessione: domain
   Descrizione . . . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Indirizzo fisico. . . . . . . . . . . : 00-01-5E-7C-5A-61
   DHCP abilitato. . . . . . . . . . . . : S
   Configurazione automatica abilitata   : S
 
Scheda Tunnel isatap.{85C55002-E99D-4C77-A47C-596AAE5F3329}:
 
   Stato supporto. . . . . . . . . . . . : Supporto disconnesso
   Suffisso DNS specifico per connessione: 
   Descrizione . . . . . . . . . . . . . : Microsoft ISATAP Adapter
   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP abilitato. . . . . . . . . . . . : No
   Configurazione automatica abilitata   : S
 
Scheda Tunnel Teredo Tunneling Pseudo-Interface:
 
   Suffisso DNS specifico per connessione: 
   Descrizione . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP abilitato. . . . . . . . . . . . : No
   Configurazione automatica abilitata   : S
   Indirizzo IPv6 . . . . . . . . . . . . . . . . . : 2001:0:9d38:6abd:c79:a59:3f57:fe79(Preferenziale) 
   Indirizzo IPv6 locale rispetto al collegamento . : fe80::c79:a59:3f57:fe79%12(Preferenziale) 
   Gateway predefinito . . . . . . . . . : ::
   NetBIOS su TCP/IP . . . . . . . . . . : Disattivato
 
Scheda Tunnel isatap.homenet.telecomitalia.it:
 
   Stato supporto. . . . . . . . . . . . : Supporto disconnesso
   Suffisso DNS specifico per connessione: homenet.telecomitalia.it
   Descrizione . . . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP abilitato. . . . . . . . . . . . : No
   Configurazione automatica abilitata   : S
 
Scheda Tunnel isatap.domain:
 
   Stato supporto. . . . . . . . . . . . : Supporto disconnesso
   Suffisso DNS specifico per connessione: 
   Descrizione . . . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Indirizzo fisico. . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP abilitato. . . . . . . . . . . . : No
   Configurazione automatica abilitata   : S
Server:  UnKnown
Address:  192.168.1.1
 
Nome:    google.com
Addresses:  2a00:1450:4002:802::1001
 173.194.35.40
 173.194.35.36
 173.194.35.38
 173.194.35.37
 173.194.35.39
 173.194.35.35
 173.194.35.34
 173.194.35.33
 173.194.35.41
 173.194.35.32
 173.194.35.46
 
 
Esecuzione di Ping google.com [173.194.35.40] con 32 byte di dati:
Risposta da 173.194.35.40: byte=32 durata=65ms TTL=54
Risposta da 173.194.35.40: byte=32 durata=64ms TTL=54
 
Statistiche Ping per 173.194.35.40:
    Pacchetti: Trasmessi = 2, Ricevuti = 2, 
    Persi = 0 (0% persi),
Tempo approssimativo percorsi andata/ritorno in millisecondi:
    Minimo = 64ms, Massimo =  65ms, Medio =  64ms
Server:  UnKnown
Address:  192.168.1.1
 
Nome:    yahoo.com
Addresses:  206.190.36.45
 98.138.253.109
 98.139.183.24
 
 
Esecuzione di Ping yahoo.com [98.138.253.109] con 32 byte di dati:
Risposta da 98.138.253.109: byte=32 durata=262ms TTL=49
Risposta da 98.138.253.109: byte=32 durata=245ms TTL=49
 
Statistiche Ping per 98.138.253.109:
    Pacchetti: Trasmessi = 2, Ricevuti = 2, 
    Persi = 0 (0% persi),
Tempo approssimativo percorsi andata/ritorno in millisecondi:
    Minimo = 245ms, Massimo =  262ms, Medio =  253ms
 
Esecuzione di Ping 127.0.0.1 con 32 byte di dati:
Risposta da 127.0.0.1: byte=32 durata<1ms TTL=128
Risposta da 127.0.0.1: byte=32 durata<1ms TTL=128
 
Statistiche Ping per 127.0.0.1:
    Pacchetti: Trasmessi = 2, Ricevuti = 2, 
    Persi = 0 (0% persi),
Tempo approssimativo percorsi andata/ritorno in millisecondi:
    Minimo = 0ms, Massimo =  0ms, Medio =  0ms
===========================================================================
Elenco interfacce
 15...22 0d 5c 91 8b cd ......Microsoft Virtual WiFi Miniport Adapter
 11...02 0d 5c 91 8b cd ......Qualcomm Atheros AR9285 802.11b/g/n WiFi Adapter
 10...00 01 5e 7c 5a 61 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 24...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 25...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================
 
IPv4 Tabella route
===========================================================================
Route attive:
     Indirizzo rete             Mask          Gateway     Interfaccia Metrica
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.134     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.134    281
    192.168.1.134  255.255.255.255         On-link     192.168.1.134    281
    192.168.1.255  255.255.255.255         On-link     192.168.1.134    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.134    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.134    281
===========================================================================
Route permanenti:
  Nessuna
 
IPv6 Tabella route
===========================================================================
Route attive:
 Interf Metrica Rete Destinazione      Gateway
 12     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 12     58 2001::/32                On-link
 12    306 2001:0:9d38:6abd:c79:a59:3f57:fe79/128
                                    On-link
 11    281 fe80::/64                On-link
 12    306 fe80::/64                On-link
 12    306 fe80::c79:a59:3f57:fe79/128
                                    On-link
 11    281 fe80::44d2:eda6:6173:e848/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Route permanenti:
  Nessuna
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (12/19/2013 00:19:55 PM) (Source: VSS) (User: )
Description: Errore del servizio Copia Shadow del volume: errore inatteso durante il richiamo della routine ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak).  hr = 0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {2e075c93-337b-4b46-9d16-2aed29384316}
 
Error: (12/19/2013 00:15:57 PM) (Source: SideBySide) (User: )
Description: Generazione del contesto di attivazione non riuscita per "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Errore nel file manifesto o dei criteri "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2", alla riga C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Una versione del componente richiesta dall'applicazione è in conflitto con un'altra versione del componente già attiva.
Componenti in conflitto:.
Componente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Componente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (12/17/2013 11:00:49 PM) (Source: .NET Runtime Optimization Service) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - 1>Failed to compile: mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80070003
 
Error: (12/17/2013 10:50:08 PM) (Source: Application Error) (User: )
Description: Nome dell'applicazione che ha generato l'errore: mbae.exe, versione: 0.9.4.2000, timestamp: 0x5267e2ba
Nome del modulo che ha generato l'errore: MSVCR100D.dll, versione: 10.0.30319.1, timestamp: 0x4ba220e7
Codice eccezione: 0xc0000005
Offset errore 0x00000000000e3e68
ID processo che ha generato l'errore: 0xd98
Ora di avvio dell'applicazione che ha generato l'errore: 0xmbae.exe0
Percorso dell'applicazione che ha generato l'errore: mbae.exe1
Percorso del modulo che ha generato l'errore: mbae.exe2
ID segnalazione: mbae.exe3
 
Error: (12/17/2013 10:48:41 PM) (Source: VSS) (User: )
Description: Errore del servizio Copia Shadow del volume: errore inatteso durante il richiamo della routine ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak).  hr = 0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {4aeaf405-8179-43d7-bf13-54c0abd5d923}
 
Error: (12/16/2013 02:02:50 PM) (Source: VSS) (User: )
Description: Errore del servizio Copia Shadow del volume: errore inatteso durante il richiamo della routine ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak).  hr = 0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {57586294-389f-4476-92cb-f0e3bdcbc4f4}
 
Error: (12/16/2013 00:41:01 PM) (Source: RasClient) (User: )
Description: CoID={459ACD31-8AD9-4F93-BDBA-24132ECD6A93}: la connessione denominata Vodafone Mobile Broadband via the phone composta dall'utente Nowehereland\IreAle non è riuscita. Codice di errore restituito: 734.
 
Error: (12/06/2013 11:39:16 PM) (Source: VSS) (User: )
Description: Errore del servizio Copia Shadow del volume: errore inatteso durante il richiamo della routine ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak).  hr = 0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {05bce252-89ec-4767-ba6f-8bb8fb58ca71}
 
Error: (12/06/2013 11:35:15 PM) (Source: SideBySide) (User: )
Description: Generazione del contesto di attivazione non riuscita per "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Errore nel file manifesto o dei criteri "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2", alla riga C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Una versione del componente richiesta dall'applicazione è in conflitto con un'altra versione del componente già attiva.
Componenti in conflitto:.
Componente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Componente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (12/04/2013 01:49:59 AM) (Source: VSS) (User: )
Description: Errore del servizio Copia Shadow del volume: errore inatteso durante il richiamo della routine ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak).  hr = 0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {63dc309b-c7e6-4b95-a975-8d7e47a5c9f9}
 
 
System errors:
=============
Error: (12/19/2013 04:28:29 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Browser di computer dipende dal servizio Server che non è stato avviato per il seguente errore: 
%%1058
 
Error: (12/19/2013 04:28:29 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Browser di computer dipende dal servizio Server che non è stato avviato per il seguente errore: 
%%1058
 
Error: (12/19/2013 04:28:29 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Browser di computer dipende dal servizio Server che non è stato avviato per il seguente errore: 
%%1058
 
Error: (12/19/2013 04:28:29 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Browser di computer dipende dal servizio Server che non è stato avviato per il seguente errore: 
%%1058
 
Error: (12/19/2013 04:28:29 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Browser di computer dipende dal servizio Server che non è stato avviato per il seguente errore: 
%%1058
 
Error: (12/19/2013 04:28:29 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Browser di computer dipende dal servizio Server che non è stato avviato per il seguente errore: 
%%1058
 
Error: (12/19/2013 04:27:06 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Browser di computer dipende dal servizio Server che non è stato avviato per il seguente errore: 
%%1058
 
Error: (12/19/2013 04:27:06 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Browser di computer dipende dal servizio Server che non è stato avviato per il seguente errore: 
%%1058
 
Error: (12/19/2013 04:27:06 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Browser di computer dipende dal servizio Server che non è stato avviato per il seguente errore: 
%%1058
 
Error: (12/19/2013 04:27:06 PM) (Source: Service Control Manager) (User: )
Description: Il servizio Browser di computer dipende dal servizio Server che non è stato avviato per il seguente errore: 
%%1058
 
 
Microsoft Office Sessions:
=========================
Error: (12/19/2013 00:19:55 PM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak)0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {2e075c93-337b-4b46-9d16-2aed29384316}
 
Error: (12/19/2013 00:15:57 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe
 
Error: (12/17/2013 11:00:49 PM) (Source: .NET Runtime Optimization Service)(User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - 1>Failed to compile: mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80070003 
mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
 
Error: (12/17/2013 10:50:08 PM) (Source: Application Error)(User: )
Description: mbae.exe0.9.4.20005267e2baMSVCR100D.dll10.0.30319.14ba220e7c000000500000000000e3e68d9801cefb6ef40ae897C:\Program Files\Malwarebytes Anti-Exploit\mbae.exeC:\Windows\system32\MSVCR100D.dll3196b79f-6765-11e3-a7f1-00015e7c5a61
 
Error: (12/17/2013 10:48:41 PM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak)0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {4aeaf405-8179-43d7-bf13-54c0abd5d923}
 
Error: (12/16/2013 02:02:50 PM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak)0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {57586294-389f-4476-92cb-f0e3bdcbc4f4}
 
Error: (12/16/2013 00:41:01 PM) (Source: RasClient)(User: )
Description: {459ACD31-8AD9-4F93-BDBA-24132ECD6A93}Nowehereland\IreAleVodafone Mobile Broadband via the phone734
 
Error: (12/06/2013 11:39:16 PM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak)0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {05bce252-89ec-4767-ba6f-8bb8fb58ca71}
 
Error: (12/06/2013 11:35:15 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe
 
Error: (12/04/2013 01:49:59 AM) (Source: VSS)(User: )
Description: ConvertStringSidToSid(S-1-5-21-2553821885-3755592227-3871308271-1001.bak)0x80070539, Struttura dell'ID di sicurezza (SID) non valida.
 
 
Operazione:
   Evento OnIdentify
   Raccolta dei dati del processo di scrittura
 
Contesto:
   Contesto di esecuzione: Shadow Copy Optimization Writer
   ID della classe del processo di scrittura: {4dc3bdd4-ab48-4d07-adb0-3bee2926fd7f}
   Nome del processo di scrittura: Shadow Copy Optimization Writer
   ID dell'istanza del processo di scrittura: {63dc309b-c7e6-4b95-a975-8d7e47a5c9f9}
 
 
CodeIntegrity Errors:
===================================
  Date: 2012-10-28 19:34:38.902
  Description: Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2012-10-28 19:34:38.839
  Description: Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2012-10-28 19:34:38.777
  Description: Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2012-10-28 19:34:38.714
  Description: Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2012-10-26 09:51:26.268
  Description: Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
  Date: 2012-10-26 09:51:26.221
  Description: Impossibile verificare l'integrità dell'immagine del file \Device\HarddiskVolume2\ComboFix\catchme.sys. Impossibile trovare l'hash del file nel sistema. Causa possibile: installazione di un file danneggiato o con firma non corretta in seguito a una modifica hardware o software o malware di origine sconosciuta.
 
 
=========================== Installed Programs ============================
 
µTorrent (Version: 3.3.0.29625)
µTorrent (Version: 3.3.2.30303)
3D Muscle Premium 2 (Version: 1.0.0)
ACDSee Free (Version: 1.1.21)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 3.9.0.1210)
Adobe Digital Editions
Adobe Flash Player 11 ActiveX (Version: 11.9.900.152)
Adobe Flash Player 11 Plugin (Version: 11.9.900.152)
Adobe PDF DRM Removal (Version: 5.0.1)
Adobe Shockwave Player 12.0 (Version: 12.0.5.146)
Advanced Archive Password Recovery (Version: 4.53)
Aimersoft Video Converter Ultimate(Build 5.5.1.0) (Version: 5.5.1.0)
Alcor Micro USB Card Reader (Version: 1.2.517.35221)
Amazon Kindle
Apple Application Support (Version: 1.4.1)
Apple Software Update (Version: 2.1.3.127)
ArcSoft Panorama Maker 5 (Version: 5.0.1.25)
Atheros Driver Installation Program (Version: 9.0)
ATI Catalyst Install Manager (Version: 3.0.778.0)
Audacity 1.3.14 (Unicode)
Avidemux 2.5 (Version: 2.5.6.7716)
Avira Free Antivirus (Version: 14.0.2.286)
BatteryCare 0.9.15.0 (Version: 0.9.15.0)
Bit Che (Version: 1.0)
Blueberry Garden
Bluetooth Win7 Suite (64) (Version: 7.3.0.95)
Botanicula (Version: 1.0)
calibre (Version: 0.9.36)
CardRecovery 5.30
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2010.0621.2137.36973)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0621.2137.36973)
Catalyst Control Center InstallProxy (Version: 2010.0621.2137.36973)
Catalyst Control Center Localization All (Version: 2010.0621.2137.36973)
CCC Help Chinese Standard (Version: 2010.0621.2136.36973)
CCC Help Chinese Traditional (Version: 2010.0621.2136.36973)
CCC Help Czech (Version: 2010.0621.2136.36973)
CCC Help Danish (Version: 2010.0621.2136.36973)
CCC Help Dutch (Version: 2010.0621.2136.36973)
CCC Help English (Version: 2010.0621.2136.36973)
CCC Help Finnish (Version: 2010.0621.2136.36973)
CCC Help French (Version: 2010.0621.2136.36973)
CCC Help German (Version: 2010.0621.2136.36973)
CCC Help Greek (Version: 2010.0621.2136.36973)
CCC Help Hungarian (Version: 2010.0621.2136.36973)
CCC Help Italian (Version: 2010.0621.2136.36973)
CCC Help Japanese (Version: 2010.0621.2136.36973)
CCC Help Korean (Version: 2010.0621.2136.36973)
CCC Help Norwegian (Version: 2010.0621.2136.36973)
CCC Help Polish (Version: 2010.0621.2136.36973)
CCC Help Portuguese (Version: 2010.0621.2136.36973)
CCC Help Russian (Version: 2010.0621.2136.36973)
CCC Help Spanish (Version: 2010.0621.2136.36973)
CCC Help Swedish (Version: 2010.0621.2136.36973)
CCC Help Thai (Version: 2010.0621.2136.36973)
CCC Help Turkish (Version: 2010.0621.2136.36973)
ccc-core-static (Version: 2010.0621.2137.36973)
ccc-utility64 (Version: 2010.0621.2137.36973)
CCleaner (Version: 4.07)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
CloudReading (Version: 1.0.27.1025)
CPUID HWMonitor 1.18
CryptoPrevent v4.2.5
CrystalDiskMark 3.0.2f (Version: 3.0.2f)
CyberLink DVD Suite (Version: 7.0.3003)
D3DX10 (Version: 15.4.2368.0902)
DAEMON Tools Lite (Version: 4.41.3.0173)
DiskExplorer for NTFS (Version: 4.32.000)
DivX Setup (Version: 2.6.1.44)
Dreamside Maroon 1.0282.333
DVD Audio Extractor 6.3.0
DVD Menu Pack for HP MediaSmart Video (Version: 4.1.4121)
EasyBCD 2.2 (Version: 2.2)
Energy Star Digital Logo (Version: 1.0.1)
Epubor PDF DRM Removal (Version: 1.8.5)
ESET Online Scanner v3
ESU for Microsoft Windows 7 (Version: 1.0.0)
Exact Audio Copy 1.0beta3 (Version: 1.0beta3)
File Extension Changer 3.3.1
foobar2000 v1.2.9 (Version: 1.2.9)
Foxit Reader (Version: 6.1.1.1031)
Free CD to MP3 Converter
Free Video Flip and Rotate version 2.1.9.827 (Version: 2.1.9.827)
FreeRIP MP3 Converter 4.4 (Version: 4.4)
FreeRIP v3.00 (Version: 3.00)
GetDataBack for FAT (Version: 4.30.000)
GIMP 2.6.11 (Version: 2.6.11)
Google Chrome (Version: 31.0.1650.63)
Google Earth (Version: 7.1.2.2041)
Google Update Helper (Version: 1.3.22.3)
Hewlett-Packard ACLM.NET v1.1.2.0 (Version: 1.00.0000)
HitmanPro 3.7 (Version: 3.7.8.208)
HP 3D DriveGuard (Version: 4.0.5.1)
HP Advisor (Version: 3.4.10262.3295)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Documentation (Version: 1.1.0.0)
HP MediaSmart DVD (Version: 4.1.4229)
HP MediaSmart Movies and TV (Version: 1.0.0.10)
HP MediaSmart Music (Version: 4.1.4215)
HP MediaSmart Photo (Version: 4.1.4211)
HP MediaSmart SmartMenu (Version: 3.1.1.12)
HP MediaSmart Video (Version: 4.1.4214)
HP MediaSmart Webcam (Version: 4.1.3024)
HP Power Manager (Version: 1.0.3)
HP Quick Launch (Version: 2.1.5)
HP QuickWeb Installer (Version: 1.3.11.0)
HP Setup (Version: 8.1.4186.3400)
HP Software Framework (Version: 4.1.6.1)
HP Support Assistant (Version: 6.1.12.1)
HP Wireless Assistant (Version: 4.0.9.0)
IDT Audio (Version: 1.0.6289.0)
IMG to ISO
ImgBurn (Version: 2.5.8.0)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.6.0.1014)
Intel® Turbo Boost Technology Driver (Version: 01.02.00.1002)
IsoBuster 2.8.5 (Version: 2.8.5)
Jaikoz (64-bit) 6.0.1 (Version: 6.0.1)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
jetVideo Basic VX (Version: 8.0.3)
Joulemeter (Version: 1.2.0)
K-Lite Codec Pack 9.9.5 (Full) (Version: 9.9.5)
L&H TTS3000 Italiano
LabelPrint (Version: 2.5.2907)
LAME v3.99.3 (for Windows)
LANGMaster.com: Icelandic for Beginners
LightScribe System Software (Version: 1.18.15.1)
LIMBO
Lume
Magic MP3 Tagger 2.2.6
Malwarebytes Anti-Exploit version 0.09.4.2000 (Version: 0.09.4.2000)
MediaInfo 0.7.64 (Version: 0.7.64)
Microsoft .NET Framework 4 Client Profile - Language Pack (ITA) (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile ITA Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended - Language Pack (ITA) (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended ITA Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft XNA Framework Redistributable 3.0 (Version: 3.0.11010.0)
Microsoft XNA Framework Redistributable 4.0 Refresh (Version: 4.0.30901.0)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1)
Microsoft_VC100_CRT_SP1_x86 (Version: 10.0.40219.1)
Movie Theme Pack for HP MediaSmart Video (Version: 4.1.4030)
Mozilla Firefox 25.0.1 (x86 en-US) (Version: 25.0.1)
Mozilla Maintenance Service (Version: 25.0.1)
MSVC80_x64_v2 (Version: 1.0.3.0)
MSVC80_x86_v2 (Version: 1.0.3.0)
MSVC90_x64 (Version: 1.0.1.2)
MSVC90_x86 (Version: 1.0.1.2)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MusicBrainz Picard (Version: 1.2)
MusicZen v1.2 (Version: 1.2.0)
NbuExplorer version 3.0 (Version: 3.0)
Neat Image v7.1.0 Demo Standalone
Nikon Message Center 2 (Version: 2.1.0)
Nikon Movie Editor (Version: 2.6.0)
Nokia Connectivity Cable Driver (Version: 7.1.48.0)
Nokia Map Loader (Version: 3.0.28)
Nokia Maps Updater 1.0.12 (Version: 1.0.12)
Nokia Suite (Version: 3.2.100.0)
OpenOffice.org 3.3 (Version: 3.3.9567)
Opera Stable 18.0.1284.49 (Version: 18.0.1284.49)
Pacchetto driver Windows - Nokia pccsmcfd  (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0)
Pazera Free MOV to AVI Converter 1.6 (Version: 1.6)
PC Connectivity Solution (Version: 11.5.13.0)
PCIABlocker64 (Version: 1.00.0000)
PDF ePub DRM Removal (Version: 1.4.1)
PhotoNow! (Version: 1.1.6904)
PhotoPerfect Express 1.00
Picasa 3 (Version: 3.9)
Picture Control Utility (Version: 1.4.7)
Power2Go (Version: 6.1.4204)
PowerDirector (Version: 8.0.3003)
PX Profile Update (Version: 1.00.1.)
Python 3.3 pycrypto-2.6
Python 3.3.2 (64-bit) (Version: 3.3.2150)
Raccolta foto di Windows Live (Version: 15.4.3502.0922)
RAMDisk (Version: 3.5.130)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.17.304.2010)
Recovery Manager (Version: 5.5.3023)
Revo Uninstaller 1.95 (Version: 1.95)
Shape Collage
Skype™ 6.11 (Version: 6.11.102)
Softonic toolbar  on IE and Chrome (Version: 1.8.21.14)
Steam (Version: 1.0.0.0)
Synaptics Pointing Device Driver (Version: 15.3.29.0)
T3Desk 2010 Build Version 10.09
Technitium MAC Address Changer v6.0.3 (Version: 6.0.3)
The Bridge 
The Tiny Bang Story
TigoTago
Tweaking.com - Registry Backup (Version: 1.6.7)
UltraISO Premium V9.53
Unity Web Player (Version: )
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
ViewNX 2 (Version: 2.6.0)
VLC media player 2.1.0 (Version: 2.1.0)
Vodafone Mobile Broadband via the phone (Version: 2.7.25)
Vodafone Mobile Connect Smartplug (Version: 2.7.25)
Winamp (Version: 5.623 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows 7 USB/DVD Download Tool (Version: 1.0.30)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinHTTrack Website Copier 3.45-4 (x64) (Version: 3.45.4)
WinPatrol (Version: 25.6.2012.1)
WinRAR 5.00 (64-bit) (Version: 5.00.0)
x264vfw - H.264/MPEG-4 AVC codec (remove only)
 
========================= Devices: ================================
 
Name: LogMeIn Kernel Information Provider
Description: LogMeIn Kernel Information Provider
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: LMIInfo
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 48%
Total physical RAM: 3893.86 MB
Available physical RAM: 2012.89 MB
Total Pagefile: 5502.98 MB
Available Pagefile: 2975.92 MB
Total Virtual: 4095.88 MB
Available Virtual: 3968.77 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:63.97 GB) (Free:5.02 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:24.62 GB) (Free:3.6 GB) NTFS
4 Drive f: () (Fixed) (Total:347.08 GB) (Free:0.02 GB) NTFS
5 Drive g: () (Fixed) (Total:9.8 GB) (Free:0.09 GB) NTFS
 
========================= Users: ========================================
 
Account utente per \\NOWEHERELAND
 
Administrator            Guest                    IreAle                   
Esecuzione comando riuscita.
 
 
**** End of log ****
 
 
 
 
 
 Results of screen317's Security Check version 0.99.77  
 Windows 7 Service Pack 1 x64   
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Avira Desktop   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Java 7 Update 45  
 Adobe Flash Player 11.9.900.152  
 Mozilla Firefox (25.0.1) 
 Google Chrome 31.0.1650.57  
 Google Chrome 31.0.1650.63  
````````Process Check: objlist.exe by Laurent````````  
 WinPatrol winpatrol.exe 
 Avira Antivir avgnt.exe 
 Avira Antivir avguard.exe 
 Malwarebytes Anti-Exploit mbae.exe   
 BillP Studios WinPatrol WinPatrol.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 5% 
````````````````````End of Log`````````````````````` 
 
 
 
 
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "17/11/2013 01:32"
+ "AmIcoSinglun64" "Single LUN Icon Utility for VID 058F PID 6366" "Alcor Micro Corp." "c:\program files (x86)\amicosinglun\amicosinglun64.exe" "17/06/2010 08:08"
+ "AthBtTray" "Bluetooth Tray" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\athbttray.exe" "31/03/2011 08:36"
+ "AtherosBtStack" "Server stack Bluetooth" "Atheros Communications" "c:\program files (x86)\bluetooth suite\btvstack.exe" "31/03/2011 08:37"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe" "02/06/2010 16:58"
+ "HPWirelessAssistant" "" "" "c:\program files\hewlett-packard\hp wireless assistant\delayedappstarter.exe" "11/12/2009 21:30"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe" "02/06/2010 16:58"
+ "LogMeIn GUI" "" "" "File not found: C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe" ""
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe" "02/06/2010 16:58"
+ "SmartMenu" "SmartMenu" "" "c:\program files\hewlett-packard\hp mediasmart\smartmenu.exe" "20/01/2010 13:24"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe" "14/10/2011 04:05"
+ "SysTrayApp" "IDT PC Audio" "IDT, Inc." "c:\program files\idt\wdm\sttray64.exe" "18/06/2010 03:28"
+ "WinPatrol" "WinPatrol System Monitor" "BillP Studios" "c:\program files (x86)\billp studios\winpatrol\winpatrol.exe" "20/09/2012 05:02"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" "" "19/12/2013 11:19"
+ "Aimersoft Helper Compact.exe" "" "" "File not found: C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe" ""
+ "avgnt" "Antivirus System Tray Tool (Desktop)" "Avira Operations GmbH & Co. KG" "c:\program files (x86)\avira\antivir desktop\avgnt.exe" "29/11/2013 14:29"
+ "DivXMediaServer" "DivX DLNA Media Server" "DivX, LLC" "c:\program files (x86)\divx\divx media server\divxmediaserver.exe" "20/05/2013 03:37"
+ "DivXUpdate" "DivX Update" "" "c:\program files (x86)\divx\divx update\divxupdate.exe" "13/02/2013 03:37"
+ "IAStorIcon" "IAStorIcon" "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastoricon.exe" "04/03/2010 04:08"
+ "StartCCC" "Catalyst® Control Center Launcher" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\clistart.exe" "22/06/2010 02:30"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" "" "07/09/2009 02:56"
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe" "14/07/2009 00:58"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" "" "18/11/2013 20:59"
+ "Google Chrome" "Google Chrome" "Google Inc." "c:\program files (x86)\google\chrome\application\31.0.1650.63\installer\chrmstp.exe" "04/12/2013 02:54"
+ "Internet Explorer" "" "" "File not found: C:\Windows\system32\ie4uinit.exe" ""
+ "LightScribe Control Panel" "" "Hewlett-Packard Company" "c:\program files (x86)\common files\lightscribe\lsrunonce.exe" "19/05/2010 18:36"
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe" "14/07/2009 00:42"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" "" "17/12/2013 22:34"
+ "BatteryCare" "BatteryCare" "Filipe Lourenço" "c:\program files (x86)\batterycare\batterycare.exe" "28/10/2013 17:00"
+ "DAEMON Tools Lite" "DAEMON Tools Lite" "DT Soft Ltd" "c:\program files (x86)\daemon tools lite\dtlite.exe" "02/08/2011 08:33"
+ "Sidebar" "Gadget per il desktop di Windows" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe" "20/11/2010 11:24"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "07/09/2013 19:31"
+ "AimersoftVideoConverterFileOpreation" "" "" "c:\windows\syswow64\aicm64.dll" "01/01/1970 01:00"
+ "Atheros" "Estensione autenticazione Bluetooth" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\btvappext.dll" "31/03/2011 08:36"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension64.dll" "03/10/2013 15:36"
+ "Foxit_ConvertToPDF_Reader" "ConvertToPDFShellExtension" "Foxit Corporation" "c:\program files (x86)\foxit software\foxit reader\plugins\converttopdfshellextension_x64.dll" "23/09/2013 10:09"
+ "Shell Extension for Malware scanning" "AntiVirus context menu" "Avira Operations GmbH & Co. KG" "c:\program files (x86)\avira\antivir desktop\shlext64.dll" "15/11/2013 16:52"
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll" "22/08/2013 14:01"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "07/09/2013 19:31"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension.dll" "03/10/2013 15:35"
+ "WinRAR32" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext32.dll" "22/08/2013 14:01"
"HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers" "" "" "" "16/12/2011 10:47"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension64.dll" "03/10/2013 15:36"
+ "UltraISO" "ISOShell" "EZB Systems, Inc." "c:\program files (x86)\ultraiso\isoshl64.dll" "22/10/2009 08:53"
"HKLM\Software\Wow6432Node\Classes\Drive\ShellEx\ContextMenuHandlers" "" "" "" "16/12/2011 10:47"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension.dll" "03/10/2013 15:35"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" "" "14/07/2009 05:53"
+ "FTShellContext" "Bluetooth Tray" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\shellcontextext.dll" "31/03/2011 08:35"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "16/12/2011 10:47"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension64.dll" "03/10/2013 15:36"
+ "UltraISO" "ISOShell" "EZB Systems, Inc." "c:\program files (x86)\ultraiso\isoshl64.dll" "22/10/2009 08:53"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "16/12/2011 10:47"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension.dll" "03/10/2013 15:35"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" "" "16/12/2011 10:47"
+ "Ath_CopyHook" "AthCopyHook Dynamic Link Library" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\athcopyhook.dll" "31/03/2011 08:34"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "14/07/2009 05:53"
+ "ACE" "AMD Desktop Control Panel" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll" "22/06/2010 02:31"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension64.dll" "03/10/2013 15:36"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll" "14/07/2009 02:32"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll" "02/06/2010 16:58"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "14/07/2009 05:53"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension.dll" "03/10/2013 15:35"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll" "14/07/2009 02:09"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" "" "28/07/2010 17:56"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "OpenOffice.org" "c:\program files (x86)\openoffice.org 3\basis\program\shlxthdl\shlxthdl_x64.dll" "13/12/2010 16:23"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" "" "28/07/2010 17:56"
+ "Haali Column Provider" "" "" "c:\program files (x86)\x264 video codec\filters\haali\mmfinfo.dll" "10/01/2009 23:15"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "OpenOffice.org" "c:\program files (x86)\openoffice.org 3\basis\program\shlxthdl\shlxthdl.dll" "17/01/2011 16:19"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "28/07/2010 17:56"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension64.dll" "03/10/2013 15:36"
+ "Shell Extension for Malware scanning" "AntiVirus context menu" "Avira Operations GmbH & Co. KG" "c:\program files (x86)\avira\antivir desktop\shlext64.dll" "15/11/2013 16:52"
+ "UltraISO" "ISOShell" "EZB Systems, Inc." "c:\program files (x86)\ultraiso\isoshl64.dll" "22/10/2009 08:53"
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll" "22/08/2013 14:01"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "28/07/2010 17:56"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension.dll" "03/10/2013 15:35"
+ "WinRAR32" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext32.dll" "22/08/2013 14:01"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" "" "28/07/2010 17:56"
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll" "22/08/2013 14:01"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" "" "28/07/2010 17:56"
+ "WinRAR32" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext32.dll" "22/08/2013 14:01"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "18/11/2013 01:11"
+ "Java™ Plug-In 2 SSV Helper" "" "" "File not found: C:\Program Files\Java\jre6\bin\jp2ssv.dll" ""
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll" "29/03/2011 05:12"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "19/12/2013 16:36"
+ "Guida per l'accesso a Windows Live ID" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll" "29/03/2011 04:32"
+ "Softonic Helper Object" "" "Softonic.com" "c:\program files (x86)\softonic\softonic\1.8.21.14\bh\softonic.dll" "11/06/2013 03:28"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" "" "16/12/2013 14:29"
+ "Softonic Toolbar" "" "Softonic.com" "c:\program files (x86)\softonic\softonic\1.8.21.14\softonictlbr.dll" "11/06/2013 03:28"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" "" "16/12/2013 14:29"
+ "Send by Bluetooth to" "Bluetooth IE PlugIn" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\ieplugin.dll" "31/03/2011 08:32"
"Task Scheduler" "" "" "" ""
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe" "21/10/2013 16:30"
+ "\HPCeeScheduleForIreAle" "HP Ceement" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe" "14/09/2010 06:11"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll" "09/03/2012 03:13"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs" "10/06/2009 21:36"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Applicazione di configurazione Servizio di condivisione in rete Windows Media Player" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe" "14/07/2009 01:24"
+ "\MirageAgent" "YouCam Mirage" "CyberLink" "c:\program files (x86)\hewlett-packard\media\webcam\ycmmirage.exe" "26/05/2010 03:59"
+ "\{2A99C228-ED8A-4A01-AC95-E032A4BDB6CE}" "" "" "File not found: c:\users\nabu\appdata\local\google\chrome\application\chrome.exe" ""
+ "\{3F6A58E5-A949-4273-B34E-18024BF782B6}" "" "" "File not found: c:\users\nabu\appdata\local\google\chrome\application\chrome.exe" ""
+ "\{6D7FE0B2-6BF8-49FB-93F1-80DC4836F61A}" "" "" "File not found: F:\Ale\Nabu\3D_Muscular_Premium_Anatomy_Installer.exe" ""
+ "\{747174CC-BB50-4277-9482-365FD07DCDE5}" "" "" "c:\program files (x86)\alliance\alliance.exe" "16/04/2008 17:21"
+ "\{93CABCEA-12FC-452C-A1E7-9233F94F60AE}" "Internet Explorer" "Microsoft Corporation" "c:\program files (x86)\internet explorer\iexplore.exe" "14/10/2013 04:34"
+ "\{A1CF0154-CDE8-4BC0-9C64-87A65C2199C8}" "" "" "File not found: F:\Ale\Nabu\3D_Muscular_Premium_Anatomy_Installer.exe" ""
+ "\{ADF799B7-5CF2-4BBD-B2AD-72F9C955C4BB}" "Internet Explorer" "Microsoft Corporation" "c:\program files (x86)\internet explorer\iexplore.exe" "14/10/2013 04:34"
+ "\{E0BD19AD-D4E5-4C2C-A220-D7B9B5869F4B}" "" "" "File not found: C:\Program Files (x86)\The Bridge\The Bridge.exe" ""
+ "\{E2568D97-6979-429C-9A2E-8FC45454690E}" "" "" "File not found: C:\Program Files (x86)\The Bridge\The Bridge.exe" ""
+ "\{F9873B49-9BDD-4545-8A98-CDCD1D95723B}" "Internet Explorer" "Microsoft Corporation" "c:\program files (x86)\internet explorer\iexplore.exe" "14/10/2013 04:34"
"HKLM\System\CurrentControlSet\Services" "" "" "" "16/11/2013 21:44"
+ "ACDaemon" "ArcSoft Connect Service" "ArcSoft Inc." "c:\program files (x86)\common files\arcsoft\connection service\bin\acservice.exe" "18/03/2010 04:01"
+ "AESTFilters" "Andrea filters APO access service (64-bit)" "Andrea Electronics Corporation" "c:\program files\idt\wdm\aestsr64.exe" "02/03/2009 20:42"
+ "AMD External Events Utility" "AMD External Events Service Module" "AMD" "c:\windows\system32\atiesrxx.exe" "22/06/2010 02:57"
+ "AntiVirSchedulerService" "Service to schedule Avira Free Antivirus jobs and updates." "Avira Operations GmbH & Co. KG" "c:\program files (x86)\avira\antivir desktop\sched.exe" "15/11/2013 16:26"
+ "AntiVirService" "Offers permanent protection against viruses and malware with the Avira search engine." "Avira Operations GmbH & Co. KG" "c:\program files (x86)\avira\antivir desktop\avguard.exe" "10/10/2013 16:10"
+ "AntiVirWebService" "Offers permanent protection against viruses and malware for web browsers with the Avira search engine." "Avira Operations GmbH & Co. KG" "c:\program files (x86)\avira\antivir desktop\avwebg7.exe" "29/11/2013 14:34"
+ "AtherosSvc" "Atheros BT Stack Service Agent" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\adminservice.exe" "31/03/2011 08:35"
+ "ezSharedSvc" "Provides licensing, security and parental control services for EasyBits applications. If this service is stopped or disabled, these applications will not function properly." "EasyBits Software AS" "c:\windows\syswow64\ezsharedsvchost.exe" "19/06/1992 23:22"
+ "Freemake Improver" "Freemake Improver" "Freemake" "c:\programdata\freemake\freemakeutilsservice\freemakeutilsservice.exe" "10/10/2011 12:48"
+ "gupdate" "Tiene aggiornato il software di Google. Se questo servizio viene disabilitato o interrotto, il software di Google non verrà mantenuto aggiornato. Ciò non permetterà di risolvere eventuali problemi dovuti a vulnerabilità della protezione e alcune funzionalità potrebbero non essere eseguite correttamente. Questo servizio viene disinstallato automaticamente quando non viene utilizzato da alcun software di Google." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "09/03/2010 07:10"
+ "gupdatem" "Tiene aggiornato il software di Google. Se questo servizio viene disabilitato o interrotto, il software di Google non verrà mantenuto aggiornato. Ciò non permetterà di risolvere eventuali problemi dovuti a vulnerabilità della protezione e alcune funzionalità potrebbero non essere eseguite correttamente. Questo servizio viene disinstallato automaticamente quando non viene utilizzato da alcun software di Google." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "09/03/2010 07:10"
+ "gusvc" "gusvc" "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe" "14/12/2006 06:55"
+ "HFGService" "Consente di utilizzare la cuffia senza fili Bluetooth in combinazione con il computer. Se il servizio viene interrotto o disattivato, la cuffia Bluetooth non funziona correttamente." "CSR, plc" "c:\windows\system32\hfgservice.dll" "21/12/2009 11:44"
+ "HP Support Assistant Service" "HP Support Assistant Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hpsa_service.exe" "09/09/2011 18:09"
+ "HP Wireless Assistant Service" "This service monitors the wireless devices in this computer and allows the HP Wireless Assistant application to turn devices on and off." "Hewlett-Packard Company" "c:\program files\hewlett-packard\hp wireless assistant\hpwa_service.exe" "18/06/2010 17:06"
+ "HPDrvMntSvc.exe" "HP Quick Synchronization Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\shared\hpdrvmntsvc.exe" "21/05/2011 22:46"
+ "hpqwmiex" "hpqwmiex Module" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\shared\hpqwmiex.exe" "21/05/2011 22:43"
+ "hpsrv" "HpService" "Hewlett-Packard Company" "c:\windows\system32\hpservice.exe" "13/05/2011 19:47"
+ "HPWMISVC" "HPWMISVC Application" "" "c:\program files (x86)\hewlett-packard\hp quick launch\hpwmisvc.exe" "15/06/2010 12:05"
+ "IAStorDataMgrSvc" "Provides storage event notification and manages communication between the storage driver and user space applications." "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastordatamgrsvc.exe" "04/03/2010 04:08"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files (x86)\common files\installshield\driver\11\intel 32\idrivert.exe" "04/04/2005 06:41"
+ "LightScribeService" "Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work." "Hewlett-Packard Company" "c:\program files (x86)\common files\lightscribe\lssrvc.exe" "19/05/2010 18:35"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe" "14/04/2010 03:43"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe" "13/11/2013 02:14"
+ "ServiceLayer" "ServiceLayer Module" "Nokia" "c:\program files (x86)\pc connectivity solution\servicelayer.exe" "19/10/2011 20:31"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe" "05/09/2013 10:31"
+ "STacSV" "Manages audio jack configurations." "IDT, Inc." "c:\program files\idt\wdm\stacsv64.exe" "18/06/2010 03:27"
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe" "06/09/2013 20:04"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe" "14/04/2010 03:45"
+ "VodafoneConnectorService" "VodafoneConnectorService" "Vodafone Group" "c:\program files (x86)\vodafone\via the phone\vodafoneconnectorservice.exe" "09/02/2011 15:14"
+ "VodafoneWatcherService" "Vodafone Watcher Service" "Vodafone" "c:\program files (x86)\vodafone\smartplug\vodafonewatcher.exe" "09/02/2011 15:18"
+ "WinDefend" "Protezione da spyware e software potenzialmente indesiderato" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll" "27/05/2013 06:51"
+ "wlidsvc" "Abilita l'autenticazione di Windows Live ID." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe" "29/03/2011 05:11"
+ "WMPNetworkSvc" "Consente di condividere il Catalogo multimediale di Windows Media Player con altri lettori e dispositivi multimediali in rete mediante Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe" "20/11/2010 12:18"
"HKLM\System\CurrentControlSet\Services" "" "" "" "16/11/2013 21:44"
+ "Accelerometer" "HP Accelerometer" "Hewlett-Packard Company" "c:\windows\system32\drivers\accelerometer.sys" "13/05/2011 19:47"
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys" "06/12/2008 00:54"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys" "01/05/2007 18:30"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys" "28/02/2007 01:04"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys" "14/07/2009 00:19"
+ "amdkmdag" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys" "22/06/2010 02:49"
+ "amdkmdap" "AMD multi-vendor Miniport Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmpag.sys" "22/06/2010 02:24"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys" "19/03/2010 01:45"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys" "20/03/2009 19:36"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys" "19/03/2010 17:18"
+ "AmUStor" "Alocr Micro USB Mass Storage Driver" "Alcor Micro, Corp." "c:\windows\system32\drivers\amustor.sys" "09/07/2009 03:27"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys" "24/05/2007 22:27"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys" "14/01/2009 20:27"
+ "AthBTPort" "Atheros FILTER driver" "Atheros" "c:\windows\system32\drivers\btath_flt.sys" "08/12/2010 07:38"
+ "ATHDFU" "BulkUsb Driver" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\athdfu.sys" "22/03/2010 07:43"
+ "athr" "Qualcomm Atheros Extensible Wireless LAN device driver" "Qualcomm Atheros Communications, Inc." "c:\windows\system32\drivers\athrx.sys" "14/06/2012 09:23"
+ "AtiHdmiService" "ATI High Definition Audio Function Driver" "ATI Technologies, Inc." "c:\windows\system32\drivers\atihdmi.sys" "06/05/2010 10:20"
+ "avgntflt" "Avira mini-filter driver" "Avira Operations GmbH & Co. KG" "c:\windows\system32\drivers\avgntflt.sys" "25/11/2013 19:57"
+ "avipbb" "Avira Security Enhancement Driver" "Avira Operations GmbH & Co. KG" "c:\windows\system32\drivers\avipbb.sys" "15/11/2013 16:47"
+ "avkmgr" "Avira Manager Driver" "Avira Operations GmbH & Co. KG" "c:\windows\system32\drivers\avkmgr.sys" "16/09/2013 12:14"
+ "avnetflt" "Avira WFP Network Driver" "Avira Operations GmbH & Co. KG" "c:\windows\system32\drivers\avnetflt.sys" "15/11/2013 16:56"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys" "13/02/2009 23:18"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys" "26/04/2009 12:14"
+ "BCM43XX" "Broadcom 802.11 Network Adapter wireless driver" "Broadcom Corporation" "c:\windows\system32\drivers\bcmwl664.sys" "27/03/2009 02:06"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys" "07/08/2006 02:51"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys" "07/08/2006 02:51"
+ "Brserid" "Driver I/F seriale Brother (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys" "07/08/2006 02:51"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys" "07/08/2006 02:51"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys" "07/08/2006 02:51"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys" "09/08/2006 13:11"
+ "BTATH_A2DP" "Atheros A2DP driver" "Atheros" "c:\windows\system32\drivers\btath_a2dp.sys" "18/02/2011 11:26"
+ "btath_avdt" "Atheros Bluetooth AVDT driver" "Atheros" "c:\windows\system32\drivers\btath_avdt.sys" "18/02/2011 11:27"
+ "BTATH_BUS" "Atheros BUS driver" "Atheros" "c:\windows\system32\drivers\btath_bus.sys" "08/12/2010 07:38"
+ "BTATH_HCRP" "Atheros HCRP driver" "Atheros" "c:\windows\system32\drivers\btath_hcrp.sys" "08/12/2010 07:38"
+ "BTATH_LWFLT" "Atheros FILTER driver" "Atheros" "c:\windows\system32\drivers\btath_lwflt.sys" "29/12/2010 12:47"
+ "BTATH_RCP" "Atheros AVRCP driver" "Atheros" "c:\windows\system32\drivers\btath_rcp.sys" "22/12/2010 14:39"
+ "BtFilter" "BtFilter Driver" "Atheros" "c:\windows\system32\drivers\btfilter.sys" "25/03/2011 10:54"
+ "BthAudioHF" "Servizio Audio vivavoce Bluetooth" "CSR, plc" "c:\windows\system32\drivers\bthaudiohf.sys" "21/12/2009 11:43"
+ "BthAvrcp" "Bluetooth Remote Control Driver" "CSR, plc" "c:\windows\system32\drivers\bthavrcp.sys" "13/08/2009 09:38"
+ "clwvd" "CyberLink WebCam Virtual Driver" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\clwvd.sys" "26/05/2010 04:06"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys" "14/07/2009 00:19"
+ "cpuz135" "CPUID Driver" "CPUID" "c:\windows\system32\drivers\cpuz135_x64.sys" "09/11/2010 14:33"
+ "csr_a2dp" "Bluetooth A2DP Driver" "CSR, plc" "c:\windows\system32\drivers\bthav.sys" "21/12/2009 11:42"
+ "dtsoftbus01" "DAEMON Tools Virtual Bus Driver" "DT Soft Ltd" "c:\windows\system32\drivers\dtsoftbus01.sys" "17/06/2011 08:38"
+ "DVMIO" "DVMIO virtual device driver for 64bit" "DeviceVM, Inc." "c:\windows\system32\drivers\dvmio.sys" "11/11/2009 05:38"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys" "31/12/2008 17:29"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys" "03/02/2009 23:52"
+ "ESProtectionDriver" "" "" "c:\program files\malwarebytes anti-exploit\mbae.sys" "13/03/2013 15:26"
+ "ewusbnet" "" "" "File not found: system32\DRIVERS\ewusbnet.sys" ""
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys" "11/05/2009 09:26"
+ "HECIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys" "17/09/2009 20:54"
+ "hpdskflt" "HP Disk Filter - SATA/RAID" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpdskflt.sys" "13/05/2011 19:47"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys" "20/04/2010 19:32"
+ "hwdatacard" "" "" "File not found: system32\DRIVERS\ewusbmdm.sys" ""
+ "hwusbdev" "" "" "File not found: system32\DRIVERS\ewusbdev.sys" ""
+ "iaStor" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys" "04/03/2010 03:51"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys" "11/06/2010 01:46"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys" "02/06/2010 17:43"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys" "13/12/2005 22:47"
+ "Impcd" "Intel® Turbo Boost Technology Driver" "Intel Corporation" "c:\windows\system32\drivers\impcd.sys" "27/02/2010 00:32"
+ "intelkmd" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdpmd64.sys" "02/06/2010 17:43"
+ "LMIInfo" "" "" "File not found: C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys" ""
+ "lmimirr" "LogMeIn Mirror Miniport Driver" "LogMeIn, Inc." "c:\windows\system32\drivers\lmimirr.sys" "10/04/2007 23:32"
+ "LMIRfsDriver" "LogMeIn Rfs Drivemap Driver" "LogMeIn, Inc." "c:\windows\system32\drivers\lmirfsdriver.sys" "14/07/2008 17:26"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys" "09/12/2008 23:46"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys" "19/05/2009 01:20"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys" "19/05/2009 01:31"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys" "16/04/2009 23:13"
+ "massfilter" "" "" "File not found: system32\drivers\massfilter.sys" ""
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys" "19/05/2009 02:09"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys" "19/05/2009 02:25"
+ "netw5v64" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netw5v64.sys" "26/03/2009 17:21"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys" "06/06/2006 22:11"
+ "nmwcd" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmbx64.sys" "17/08/2011 10:58"
+ "nmwcdc" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmbox64.sys" "17/08/2011 10:58"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys" "19/03/2010 21:59"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys" "19/03/2010 21:45"
+ "pccsmcfd" "PCCS Mode Change Filter Driver" "Nokia" "c:\windows\system32\drivers\pccsmcfdx64.sys" "28/08/2008 10:44"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys" "23/01/2009 00:05"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys" "19/05/2009 02:18"
+ "RAMDiskVE" "" "" "c:\windows\system32\drivers\ramdiskve.sys" "03/10/2009 20:58"
+ "RimVSerPort" "RIM Virtual Serial Driver" "Research in Motion Ltd" "c:\windows\system32\drivers\rimserial_amd64.sys" "09/01/2007 17:50"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                " "Realtek                                            " "c:\windows\system32\drivers\rt64win7.sys" "10/06/2011 07:33"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys" "13/09/2006 14:18"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys" "24/09/2008 19:28"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys" "01/10/2008 22:56"
+ "SrvHsfHDA" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstazl6.sys" "16/10/2008 01:53"
+ "SrvHsfV92" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstdpv6.sys" "16/10/2008 01:57"
+ "SrvHsfWinac" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstcnxt6.sys" "16/10/2008 01:52"
+ "stexstor" "Promise  SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys" "18/02/2009 00:03"
+ "STHDA" "IDT PC Audio" "IDT, Inc." "c:\windows\system32\drivers\stwrt64.sys" "18/06/2010 03:16"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys" "14/10/2011 03:34"
+ "upperdev" "Filter Driver for Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\usbser_lowerfltx64.sys" "17/08/2011 10:58"
+ "UsbserFilt" "Filter Driver for Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\usbser_lowerfltjx64.sys" "17/08/2011 10:58"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys" "14/07/2009 00:19"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys" "31/01/2009 02:18"
+ "WinRing0_1_2_0" "WinRing0" "OpenLibSys.org" "c:\program files (x86)\batterycare\winring0x64.sys" "26/07/2008 14:29"
+ "yukonw7" "Miniport Driver for Marvell Yukon Ethernet Controller." "Marvell" "c:\windows\system32\drivers\yk62x64.sys" "23/02/2009 16:02"
+ "ZTEusbmdm6k" "" "" "File not found: system32\DRIVERS\ZTEusbmdm6k.sys" ""
+ "ZTEusbnmea" "" "" "File not found: system32\DRIVERS\ZTEusbnmea.sys" ""
+ "ZTEusbser6k" "" "" "File not found: system32\DRIVERS\ZTEusbser6k.sys" ""
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "21/11/2013 19:20"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm" "14/07/2009 02:28"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "19/12/2013 11:19"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm" "14/07/2009 02:06"
+ "vidc.cvid" "Codec Cinepak®" "Radius Inc." "c:\windows\syswow64\iccvid.dll" "20/11/2010 12:59"
+ "vidc.DIVX" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll" "19/02/2010 20:26"
+ "vidc.x264" "x264vfw - H.264/MPEG-4 AVC codec" "x264vfw project" "c:\program files (x86)\x264vfw\x264vfw.dll" "17/03/2013 18:21"
+ "vidc.yv12" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll" "19/02/2010 20:26"
"HKLM\Software\Classes\Filter" "" "" "" "19/12/2013 11:31"
+ "MainConcept (Nikon) AVC/H.264 Video Encoder" "AVC/H.264 Encoder DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_enc_avc_ds.ax" "22/03/2011 18:35"
+ "MainConcept (Nikon) MP4 Demultiplexer" "MP4 Demultiplexer Direct Show Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_demux_mp4_ds.ax" "22/03/2011 18:41"
+ "MainConcept (Nikon) MP4 Multiplexer" "MP4 Multiplexer Direct Show Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_mux_mp4_ds.ax" "22/03/2011 18:42"
+ "MainConcept MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "MainConcept GmbH" "c:\program files (x86)\divx\divx transcode engine\plugins\mc_demux_mp2_ds.ax" "10/04/2013 12:21"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" "" "14/07/2009 05:53"
+ "LogMeIn Video Decoder" "" "" "File not found: C:\Program Files (x86)\LogMeIn\x64\racodec.ax" ""
+ "LogMeIn Video Encoder" "" "" "File not found: C:\Program Files (x86)\LogMeIn\x64\racodec.ax" ""
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" "" "07/09/2013 19:31"
+ "ATI Ticker" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\ticker.ax" "22/06/2010 02:30"
+ "Audio Destination" "WAVDest Filter (Sample)" "Microsoft Corporation" "c:\program files (x86)\google\google earth\client\wavdest.ax" "07/10/2013 20:33"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
+ "CyberLink Audio Decoder (HP)" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\claud.ax" "22/04/2010 07:14"
+ "CyberLink Audio Effect (HP)" "CyberLink Audio Effect Filter" "CyberLink Corporation" "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\claudfx.ax" "09/12/2009 03:51"
+ "CyberLink Audio Noise Reduction" "CLAuNR" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaunrwrapper.ax" "17/10/2005 03:34"
+ "CyberLink Audio Resampler" "CLAuRsmpl.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaursmpl.ax" "25/02/2005 03:41"
+ "CyberLink Audio VolumeBooster" "CyberLink Audio Volume Booster Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvb.ax" "08/10/2004 09:36"
+ "CyberLink AudioCD Filter" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudiocd.ax" "21/01/2008 11:35"
+ "Cyberlink Dump Dispatch Filter" "Cyberlink File Dump Dispatch Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdumpdispatch.ax" "12/12/2003 08:01"
+ "Cyberlink Dump Filter" "Cyberlink File Dump Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdump.ax" "22/11/2006 13:15"
+ "CyberLink DVD Navigator (HP)" "CyberLink DVD Navigation Filter" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\clnavx.ax" "23/04/2010 10:05"
+ "CyberLink Editing Service 3.0 (Source)" "CES Kernel" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gedtkrn.dll" "03/05/2007 07:18"
+ "Cyberlink File Reader (Async.)" "Cyberlink MPEG File Reader" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2greader.ax" "16/06/2003 04:35"
+ "CyberLink Line21 Decoder Filter (HP)" "CyberLink Line21 Decoder Filter" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\clline21.ax" "24/07/2009 03:21"
+ "CyberLink Load Image Filter" "CLImage" "CyberLink" "c:\program files (x86)\cyberlink\shared files\climage.ax" "07/11/2006 05:16"
+ "CyberLink M2V Writer" "CLM2VWriter" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gm2vwriter.ax" "17/08/2005 15:45"
+ "CyberLink MP3/WAV Wrapper" "CyberLink MP3 Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmp3wrap.ax" "14/01/2008 03:30"
+ "CyberLink MPEG Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmvd.ax" "29/09/2003 14:50"
+ "CyberLink MPEG Muxer" "MpgMux" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gmpgmux.ax" "23/05/2008 08:27"
+ "CyberLink MPEG Video Encoder" "CyberLink MPEG Video Encoder                               " "CyberLink Corp.                                            " "c:\program files (x86)\cyberlink\power2go\p2gvidenc.ax" "26/10/2005 12:41"
+ "CyberLink MPEG-1 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm1spliter.ax" "04/12/2007 04:11"
+ "CyberLink MPEG-2 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm2spliter.ax" "04/12/2007 04:10"
+ "CyberLink PCM Wrapper" "CyberLink PCM Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gpcmenc.ax" "21/03/2002 06:54"
+ "Cyberlink SubTitle(HP)" "CLSubTitle.ax" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\clsubtitle.ax" "22/12/2009 14:08"
+ "CyberLink TimeStretch Filter (CES)" "CLAuTS.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gauts.ax" "12/10/2004 15:32"
+ "CyberLink TL MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gtlmsplter.ax" "19/10/2006 06:33"
+ "CyberLink Tzan Filter (HP)" "Cyberlink Tzan Filter" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\cltzan.ax" "22/03/2010 11:00"
+ "CyberLink Video Effect" "CLVidFx" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvidfx.ax" "30/08/2005 05:01"
+ "CyberLink Video Regulator" "CLRGL" "Cyberlink" "c:\program files (x86)\cyberlink\power2go\p2grgl.ax" "28/09/2005 11:42"
+ "CyberLink Video Stabilizer" "CLVideoDeShaking" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvideostabilizer.ax" "17/10/2005 07:28"
+ "CyberLink Video/SP Decoder (HP)" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\clvsd.ax" "22/04/2010 08:21"
+ "DC-Bass Source" "BASS based DirectShow™ Audio Decoder" "http://www.dsp-worx.de" "c:\program files (x86)\k-lite codec pack\filters\dcbass\dcbasssourcemod.ax" "19/06/1992 23:22"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "xy-VSFilter Team" "c:\program files (x86)\x264 video codec\filters\vsfilter.dll" "13/08/2012 15:10"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "xy-VSFilter Team" "c:\program files (x86)\x264 video codec\filters\vsfilter.dll" "13/08/2012 15:10"
+ "DivX AAC Decoder" "AAC audio decoder filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\daac.ax" "05/03/2011 18:28"
+ "DivX Decoder Filter" "DivX Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx codec\divxdec.ax" "26/07/2011 19:51"
+ "DivX Demux Filter" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\directshowdemuxfilter.dll" "06/11/2012 05:04"
+ "DivX Demux Filter (Unrestricted Edition)" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\directshowdemuxfilter.dll" "06/11/2012 05:04"
+ "DivX H.264 Decoder" "DivX H.264 Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\divxdech264.ax" "02/04/2010 22:00"
+ "Emuzed AAC/AAC+ Decoder TFilter" "Emuzed AAC/AAC+ Decoder Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzaacdecfilter.dll" "16/05/2011 11:50"
+ "Emuzed AMR/3GPP/MP4/MP3 Multiplexer-Filter" "Emuzed MP4/3GP2/AMR/QCP Multiplexer/Sink Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\ezdmp4muxfilter.dll" "16/05/2011 11:50"
+ "Emuzed AMR/QCP/3GPP/MP4/3G2 Source Filter" "Emuzed MP4/3GP2/AMR/QCP Source Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzmp4source.dll" "16/05/2011 11:50"
+ "Emuzed H264 Video Decoder-Filter" "Emuzed H.264 Video Transform Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\ezdh264dectfilter.dll" "14/10/2011 10:55"
+ "Emuzed MP3 Source/Decoder Filter" "Emuzed MP3 Source/Decoder Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzmp3sourcefilter.dll" "16/05/2011 11:51"
+ "Emuzed MP4SP/H263 Video Decoder-Filter" "Emuzed MP4SP/H.263 Video Transform Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzdecmp4_h263.dll" "16/05/2011 11:52"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\x264 video codec\filters\ffdshow\ffdshow.ax" "22/08/2012 13:18"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\x264 video codec\filters\ffdshow\ffdshow.ax" "22/08/2012 13:18"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\x264 video codec\filters\ffdshow\ffdshow.ax" "22/08/2012 13:18"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\x264 video codec\filters\ffdshow\ffdshow.ax" "22/08/2012 13:18"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\x264 video codec\filters\ffdshow\ffdshow.ax" "22/08/2012 13:18"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files (x86)\x264 video codec\filters\haali\splitter.ax" "08/09/2011 15:01"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\x264 video codec\filters\haali\splitter.ax" "08/09/2011 15:01"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files (x86)\x264 video codec\filters\haali\splitter.ax" "08/09/2011 15:01"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\x264 video codec\filters\haali\splitter.ax" "08/09/2011 15:01"
+ "Haali Video Renderer" "" "" "c:\program files (x86)\x264 video codec\filters\haali\dxr.dll" "10/01/2009 23:15"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files (x86)\x264 video codec\filters\haali\splitter.ax" "08/09/2011 15:01"
+ "JetAudio Audio Decoder" "DirectShow Audio Decoder for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpad.ax" "15/07/2011 02:31"
+ "JetAudio Audio Encoder" "DirectShow Audio Encoder for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpax.ax" "01/06/2011 23:48"
+ "JetAudio Audio Stream Switcher" "Audio Stream Switcher for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetasw.ax" "01/06/2011 23:51"
+ "JetAudio Audio Writer" "DirectShow Audio Writer for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetawt.ax" "01/06/2011 23:50"
+ "JetAudio AVI Reader" "DirectShow AVI Spliiter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetavi.ax" "01/06/2011 23:50"
+ "JetAudio AVI Splitter" "DirectShow AVI Spliiter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetavi.ax" "01/06/2011 23:50"
+ "JetAudio FLV Reader" "DirectShow FLV Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetflv.ax" "01/06/2011 23:49"
+ "JetAudio FLV Splitter" "DirectShow FLV Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetflv.ax" "01/06/2011 23:49"
+ "JetAudio MKV Reader" "DirectShow Matroska Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmkv.ax" "22/07/2011 00:09"
+ "JetAudio MKV Splitter" "DirectShow Matroska Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmkv.ax" "22/07/2011 00:09"
+ "JetAudio MP4 Reader" "DirectShow MP4 Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmp4.ax" "21/03/2012 00:58"
+ "JetAudio MP4 Splitter" "DirectShow MP4 Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmp4.ax" "21/03/2012 00:58"
+ "JetAudio MPEG Decoder" "DirectShow MPEG Decoder for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpgd.ax" "22/06/2011 20:07"
+ "JetAudio MPEG4 Video Source" "DirectShow MP4 Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmp4.ax" "21/03/2012 00:58"
+ "JetAudio MPEG4 Video Splitter" "DirectShow MP4 Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmp4.ax" "21/03/2012 00:58"
+ "JetAudio MPG Reader" "DirectShow MPG Spliiter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpg.ax" "24/06/2011 01:29"
+ "JetAudio MPG Splitter" "DirectShow MPG Spliiter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpg.ax" "24/06/2011 01:29"
+ "JetAudio OGM Reader" "DirectShow OGM Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetogm.ax" "15/06/2011 22:29"
+ "JetAudio OGM Splitter" "DirectShow OGM Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetogm.ax" "15/06/2011 22:29"
+ "JetAudio Sound Effector V3" "Sound Processing DirectShow Filter for jetAudio" "JetAudio, Inc." "c:\program files (x86)\common files\cowon\jetsfx3.ax" "16/03/2005 01:48"
+ "JetAudio Sound Effector V4" "DirectShow Sound Effector for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetsfx4.ax" "09/05/2011 23:57"
+ "JetAudio Subtitle Processor" "DirectShow Subtitle Display Filter for JetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetdsd.ax" "08/02/2012 01:43"
+ "JetAudio Video Decoder" "DirectShow Video Decoder for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpvd.ax" "24/06/2011 01:28"
+ "JetAudio Video Decoder (DXVA)" "H.264/VC-1 DXVA video decoder" "JetAudio, Inc." "c:\program files (x86)\common files\cowon\jetmpvdx.ax" "07/04/2011 01:47"
+ "JetAudio Video Encoder" "JetAudio Video Encoder for DirectShow" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpvx.ax" "01/06/2011 23:44"
+ "JetAudio Video Writer" "DirectShow Video Writer for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpgx.ax" "01/06/2011 23:45"
+ "LAV Audio Decoder" "LAV Audio Decoder - DirectShow Audio Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavaudio.ax" "27/05/2013 13:47"
+ "LAV Splitter" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavsplitter.ax" "27/05/2013 13:48"
+ "LAV Splitter Source" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavsplitter.ax" "27/05/2013 13:48"
+ "LAV Video Decoder" "LAV Video Decoder - DirectShow Video Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavvideo.ax" "27/05/2013 13:48"
+ "LogMeIn Video Decoder" "" "" "File not found: C:\Program Files (x86)\LogMeIn\x86\racodec.ax" ""
+ "LogMeIn Video Encoder" "" "" "File not found: C:\Program Files (x86)\LogMeIn\x86\racodec.ax" ""
+ "madVR" "madshi's D3D9 based video renderer" "madshi.net" "c:\program files (x86)\k-lite codec pack\filters\madvr\madvr.ax" "22/02/2013 21:22"
+ "MainConcept (Nikon) AAC Decoder" "AAC audio decoder filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_dec_aac_ds.ax" "22/03/2011 18:37"
+ "MainConcept (Nikon) AAC Encoder" "AAC Encoder DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_enc_aac_ds.ax" "22/03/2011 18:37"
+ "MainConcept (Nikon) Audio Converter" "Audio Converter DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_trans_audio_converter_ds.ax" "22/03/2011 18:44"
+ "MainConcept (Nikon) AVC/H.264 Video Decoder" "AVC/H.264 Decoder DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_dec_avc_ds.ax" "22/03/2011 18:34"
+ "MainConcept (Nikon) AVC/H.264 Video Encoder" "AVC/H.264 Encoder DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_enc_avc_ds.ax" "22/03/2011 18:35"
+ "MainConcept (Nikon) MJPG Video Decoder" "MJPEG Decoder Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_dec_mjpg_ds.ax" "22/03/2011 18:43"
+ "MainConcept (Nikon) MJPG Video Encoder" "MJPEG Encoder Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_enc_mjpg_ds.ax" "22/03/2011 18:44"
+ "MainConcept (Nikon) MP4 Demultiplexer" "MP4 Demultiplexer Direct Show Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_demux_mp4_ds.ax" "22/03/2011 18:41"
+ "MainConcept (Nikon) MP4 Multiplexer" "MP4 Multiplexer Direct Show Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_mux_mp4_ds.ax" "22/03/2011 18:42"
+ "MainConcept (Nikon) Sink Filter" "Sink DS Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_render_fileindex_ds.ax" "22/03/2011 18:45"
+ "MainConcept MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "MainConcept GmbH" "c:\program files (x86)\divx\divx transcode engine\plugins\mc_demux_mp2_ds.ax" "10/04/2013 12:21"
+ "MainConcept Stream Parser" "MPEG-1/2 Demultiplexer" "MainConcept GmbH" "c:\program files (x86)\divx\divx transcode engine\plugins\mc_demux_mp2_ds.ax" "10/04/2013 12:21"
+ "MMACE Deinterlace" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll" "22/06/2010 02:30"
+ "MMACE ProcAmp" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll" "22/06/2010 02:30"
+ "MMACE SoftEmu" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll" "22/06/2010 02:30"
+ "MPC - FLV Source (Gabest)" "FLV Splitter" "Gabest" "c:\program files (x86)\x264 video codec\filters\flvsplitter.ax" "31/08/2009 07:44"
+ "MPC - FLV Splitter (Gabest)" "FLV Splitter" "Gabest" "c:\program files (x86)\x264 video codec\filters\flvsplitter.ax" "31/08/2009 07:44"
+ "MPC - MPEG-2 Video Decoder (Gabest)" "MPEG-2 Decoder Filter for DirectShow" "Gabest" "c:\program files (x86)\x264 video codec\filters\mpeg2decfilter.ax" "31/08/2009 07:47"
+ "MSDVD Audio Wizard (HP)" "CyberLink Audio Wizard Filter" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\claudwizard.ax" "14/08/2009 14:26"
+ "Nikon Image Source Filter" "MediaDSF" "Nikon Corporation" "c:\program files (x86)\nikon\viewnx 2\nikon movie editor\mediadsfilter.dll" "20/09/2012 09:25"
+ "Nikon MOV Demultiplexer" "Nikon MOV Demultiplexer" "Nikon Corporation" "c:\program files (x86)\common files\nikon\directshow filters\nkmlmovdemux.ax" "12/09/2012 05:11"
+ "Nikon MOV Multiplexor" "Nikon MOV Multiplexer" "Nikon Corporation" "c:\program files (x86)\common files\nikon\directshow filters\nkmlmovmux.ax" "12/09/2012 05:11"
+ "Nikon Text Source Filter" "NkmTextFilter" "" "c:\program files (x86)\nikon\viewnx 2\nikon movie editor\nkmtextfilter.ax" "20/09/2012 09:21"
+ "Nokia H264Dec HP/MP Filter" "NokiaH264HPMPDecTFilter" "Nokia" "c:\program files (x86)\common files\nokia\codecs\nokiah264hpmpdectfilter.dll" "28/04/2011 07:13"
+ "Nokia MPEG4ASP Decoder Filter" "MPEG4ASP H263 Decoder Filter" "Nokia" "c:\program files (x86)\common files\nokia\codecs\nokiadecmp4asp_h263.dll" "28/04/2011 07:15"
+ "P2G Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaud.ax" "01/12/2006 06:59"
+ "P2G Audio Encoder" "CyberLink Audio Encoder Filter" "Cyberlink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudenc.ax" "20/12/2006 10:20"
+ "P2G Video Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvsd.ax" "10/11/2005 13:36"
+ "P2G Video Regulator" "CyberLink Video Regulator" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gresample.ax" "18/06/2002 04:32"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
+ "T" "VP7 Decompression Filter" "On2.com Inc." "c:\program files (x86)\k-lite codec pack\filters\vp7dec.ax" "24/03/2006 23:09"
+ "WavPack Audio Decoder" "WavPack Audio DirectShow Decoder" "-" "c:\program files (x86)\x264 video codec\filters\wavpackdsdecoder.ax" "04/03/2007 10:50"
+ "WavPack Audio Splitter" "WavPack Audio DirectShow Splitter" "-" "c:\program files (x86)\x264 video codec\filters\wavpackdssplitter.ax" "02/10/2007 23:09"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" "" "14/07/2009 05:53"
+ "LogMeInCredProv" "LogMeIn Remote Control Helper" "LogMeIn, Inc." "c:\windows\system32\lmiinit.dll" "24/10/2013 11:28"
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll" "29/03/2011 05:12"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" "" "19/12/2013 11:19"
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll" "02/06/2010 16:56"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" "" "18/12/2013 00:42"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll" "29/03/2011 04:31"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll" "29/03/2011 04:31"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" "" "18/12/2013 00:42"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll" "29/03/2011 05:10"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll" "29/03/2011 05:10"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" "" "19/12/2013 11:19"
+ "LogMeIn Printer Port Monitor" "RemotelyAnywhere Printer Port Monitor" "LogMeIn, Inc." "c:\windows\system32\lmiport.dll" "26/04/2013 15:14"
+ "PCL hpz3lw71" "LanguageMonitor" "Hewlett-Packard Corporation" "c:\windows\system32\hpz3lw71.dll" "14/07/2009 02:28"
"HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order" "" "" "" "22/05/2013 10:44"
+ "LMIRfsClientNP" "LogMeIn Virtual Disk Network" "LogMeIn, Inc." "c:\windows\system32\lmirfsclientnp.dll" "24/10/2013 11:28"
"C:\Users\IreAle\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" "" "17/12/2013 23:00"
+ "Calendario" "Consente di sfogliare i giorni del calendario." "Microsoft Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\it-IT\Gadget.xml" "29/07/2010 01:54"
+ "Meteo" "Il meteo nel mondo." "Microsoft Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\it-IT\Gadget.xml" "29/07/2010 01:54"
+ "Meteo" "Il meteo nel mondo." "Microsoft Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\it-IT\Gadget.xml" "29/07/2010 01:54"
 
 
 
 
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "17/11/2013 01:32"
+ "AmIcoSinglun64" "Single LUN Icon Utility for VID 058F PID 6366" "Alcor Micro Corp." "c:\program files (x86)\amicosinglun\amicosinglun64.exe" "17/06/2010 08:08"
+ "AthBtTray" "Bluetooth Tray" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\athbttray.exe" "31/03/2011 08:36"
+ "AtherosBtStack" "Server stack Bluetooth" "Atheros Communications" "c:\program files (x86)\bluetooth suite\btvstack.exe" "31/03/2011 08:37"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe" "02/06/2010 16:58"
+ "HPWirelessAssistant" "" "" "c:\program files\hewlett-packard\hp wireless assistant\delayedappstarter.exe" "11/12/2009 21:30"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe" "02/06/2010 16:58"
+ "LogMeIn GUI" "" "" "File not found: C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe" ""
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe" "02/06/2010 16:58"
+ "SmartMenu" "SmartMenu" "" "c:\program files\hewlett-packard\hp mediasmart\smartmenu.exe" "20/01/2010 13:24"
+ "SynTPEnh" "Synaptics TouchPad Enhancements" "Synaptics Incorporated" "c:\program files\synaptics\syntp\syntpenh.exe" "14/10/2011 04:05"
+ "SysTrayApp" "IDT PC Audio" "IDT, Inc." "c:\program files\idt\wdm\sttray64.exe" "18/06/2010 03:28"
+ "WinPatrol" "WinPatrol System Monitor" "BillP Studios" "c:\program files (x86)\billp studios\winpatrol\winpatrol.exe" "20/09/2012 05:02"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" "" "19/12/2013 11:19"
+ "Aimersoft Helper Compact.exe" "" "" "File not found: C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe" ""
+ "avgnt" "Antivirus System Tray Tool (Desktop)" "Avira Operations GmbH & Co. KG" "c:\program files (x86)\avira\antivir desktop\avgnt.exe" "29/11/2013 14:29"
+ "DivXMediaServer" "DivX DLNA Media Server" "DivX, LLC" "c:\program files (x86)\divx\divx media server\divxmediaserver.exe" "20/05/2013 03:37"
+ "DivXUpdate" "DivX Update" "" "c:\program files (x86)\divx\divx update\divxupdate.exe" "13/02/2013 03:37"
+ "IAStorIcon" "IAStorIcon" "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastoricon.exe" "04/03/2010 04:08"
+ "StartCCC" "Catalyst® Control Center Launcher" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\clistart.exe" "22/06/2010 02:30"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" "" "07/09/2009 02:56"
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe" "14/07/2009 00:58"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" "" "18/11/2013 20:59"
+ "Google Chrome" "Google Chrome" "Google Inc." "c:\program files (x86)\google\chrome\application\31.0.1650.63\installer\chrmstp.exe" "04/12/2013 02:54"
+ "Internet Explorer" "" "" "File not found: C:\Windows\system32\ie4uinit.exe" ""
+ "LightScribe Control Panel" "" "Hewlett-Packard Company" "c:\program files (x86)\common files\lightscribe\lsrunonce.exe" "19/05/2010 18:36"
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe" "14/07/2009 00:42"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" "" "17/12/2013 22:34"
+ "BatteryCare" "BatteryCare" "Filipe Lourenço" "c:\program files (x86)\batterycare\batterycare.exe" "28/10/2013 17:00"
+ "DAEMON Tools Lite" "DAEMON Tools Lite" "DT Soft Ltd" "c:\program files (x86)\daemon tools lite\dtlite.exe" "02/08/2011 08:33"
+ "Sidebar" "Gadget per il desktop di Windows" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe" "20/11/2010 11:24"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "07/09/2013 19:31"
+ "AimersoftVideoConverterFileOpreation" "" "" "c:\windows\syswow64\aicm64.dll" "01/01/1970 01:00"
+ "Atheros" "Estensione autenticazione Bluetooth" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\btvappext.dll" "31/03/2011 08:36"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension64.dll" "03/10/2013 15:36"
+ "Foxit_ConvertToPDF_Reader" "ConvertToPDFShellExtension" "Foxit Corporation" "c:\program files (x86)\foxit software\foxit reader\plugins\converttopdfshellextension_x64.dll" "23/09/2013 10:09"
+ "Shell Extension for Malware scanning" "AntiVirus context menu" "Avira Operations GmbH & Co. KG" "c:\program files (x86)\avira\antivir desktop\shlext64.dll" "15/11/2013 16:52"
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll" "22/08/2013 14:01"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "07/09/2013 19:31"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension.dll" "03/10/2013 15:35"
+ "WinRAR32" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext32.dll" "22/08/2013 14:01"
"HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers" "" "" "" "16/12/2011 10:47"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension64.dll" "03/10/2013 15:36"
+ "UltraISO" "ISOShell" "EZB Systems, Inc." "c:\program files (x86)\ultraiso\isoshl64.dll" "22/10/2009 08:53"
"HKLM\Software\Wow6432Node\Classes\Drive\ShellEx\ContextMenuHandlers" "" "" "" "16/12/2011 10:47"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension.dll" "03/10/2013 15:35"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" "" "14/07/2009 05:53"
+ "FTShellContext" "Bluetooth Tray" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\shellcontextext.dll" "31/03/2011 08:35"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "16/12/2011 10:47"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension64.dll" "03/10/2013 15:36"
+ "UltraISO" "ISOShell" "EZB Systems, Inc." "c:\program files (x86)\ultraiso\isoshl64.dll" "22/10/2009 08:53"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "16/12/2011 10:47"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension.dll" "03/10/2013 15:35"
"HKLM\Software\Classes\Directory\Shellex\CopyHookHandlers" "" "" "" "16/12/2011 10:47"
+ "Ath_CopyHook" "AthCopyHook Dynamic Link Library" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\athcopyhook.dll" "31/03/2011 08:34"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "14/07/2009 05:53"
+ "ACE" "AMD Desktop Control Panel" "Advanced Micro Devices, Inc." "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll" "22/06/2010 02:31"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension64.dll" "03/10/2013 15:36"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll" "14/07/2009 02:32"
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll" "02/06/2010 16:58"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "14/07/2009 05:53"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension.dll" "03/10/2013 15:35"
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll" "14/07/2009 02:09"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" "" "28/07/2010 17:56"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "OpenOffice.org" "c:\program files (x86)\openoffice.org 3\basis\program\shlxthdl\shlxthdl_x64.dll" "13/12/2010 16:23"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" "" "28/07/2010 17:56"
+ "Haali Column Provider" "" "" "c:\program files (x86)\x264 video codec\filters\haali\mmfinfo.dll" "10/01/2009 23:15"
+ "{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}" "" "OpenOffice.org" "c:\program files (x86)\openoffice.org 3\basis\program\shlxthdl\shlxthdl.dll" "17/01/2011 16:19"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "28/07/2010 17:56"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension64.dll" "03/10/2013 15:36"
+ "Shell Extension for Malware scanning" "AntiVirus context menu" "Avira Operations GmbH & Co. KG" "c:\program files (x86)\avira\antivir desktop\shlext64.dll" "15/11/2013 16:52"
+ "UltraISO" "ISOShell" "EZB Systems, Inc." "c:\program files (x86)\ultraiso\isoshl64.dll" "22/10/2009 08:53"
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll" "22/08/2013 14:01"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "28/07/2010 17:56"
+ "DVSShellContextMenu" "Windows Explorer Extension" "DVDVideoSoft Ltd." "c:\program files (x86)\common files\dvdvideosoft\lib\dvsshellcontextmenuextension.dll" "03/10/2013 15:35"
+ "WinRAR32" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext32.dll" "22/08/2013 14:01"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" "" "28/07/2010 17:56"
+ "WinRAR" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext.dll" "22/08/2013 14:01"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" "" "28/07/2010 17:56"
+ "WinRAR32" "WinRAR shell extension" "Alexander Roshal" "c:\program files\winrar\rarext32.dll" "22/08/2013 14:01"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "18/11/2013 01:11"
+ "Java™ Plug-In 2 SSV Helper" "" "" "File not found: C:\Program Files\Java\jre6\bin\jp2ssv.dll" ""
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll" "29/03/2011 05:12"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "19/12/2013 16:36"
+ "Guida per l'accesso a Windows Live ID" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll" "29/03/2011 04:32"
+ "Softonic Helper Object" "" "Softonic.com" "c:\program files (x86)\softonic\softonic\1.8.21.14\bh\softonic.dll" "11/06/2013 03:28"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" "" "16/12/2013 14:29"
+ "Softonic Toolbar" "" "Softonic.com" "c:\program files (x86)\softonic\softonic\1.8.21.14\softonictlbr.dll" "11/06/2013 03:28"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" "" "16/12/2013 14:29"
+ "Send by Bluetooth to" "Bluetooth IE PlugIn" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\ieplugin.dll" "31/03/2011 08:32"
"Task Scheduler" "" "" "" ""
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe" "21/10/2013 16:30"
+ "\HPCeeScheduleForIreAle" "HP Ceement" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe" "14/09/2010 06:11"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll" "09/03/2012 03:13"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs" "10/06/2009 21:36"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Applicazione di configurazione Servizio di condivisione in rete Windows Media Player" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe" "14/07/2009 01:24"
+ "\MirageAgent" "YouCam Mirage" "CyberLink" "c:\program files (x86)\hewlett-packard\media\webcam\ycmmirage.exe" "26/05/2010 03:59"
+ "\{2A99C228-ED8A-4A01-AC95-E032A4BDB6CE}" "" "" "File not found: c:\users\nabu\appdata\local\google\chrome\application\chrome.exe" ""
+ "\{3F6A58E5-A949-4273-B34E-18024BF782B6}" "" "" "File not found: c:\users\nabu\appdata\local\google\chrome\application\chrome.exe" ""
+ "\{6D7FE0B2-6BF8-49FB-93F1-80DC4836F61A}" "" "" "File not found: F:\Ale\Nabu\3D_Muscular_Premium_Anatomy_Installer.exe" ""
+ "\{747174CC-BB50-4277-9482-365FD07DCDE5}" "" "" "c:\program files (x86)\alliance\alliance.exe" "16/04/2008 17:21"
+ "\{93CABCEA-12FC-452C-A1E7-9233F94F60AE}" "Internet Explorer" "Microsoft Corporation" "c:\program files (x86)\internet explorer\iexplore.exe" "14/10/2013 04:34"
+ "\{A1CF0154-CDE8-4BC0-9C64-87A65C2199C8}" "" "" "File not found: F:\Ale\Nabu\3D_Muscular_Premium_Anatomy_Installer.exe" ""
+ "\{ADF799B7-5CF2-4BBD-B2AD-72F9C955C4BB}" "Internet Explorer" "Microsoft Corporation" "c:\program files (x86)\internet explorer\iexplore.exe" "14/10/2013 04:34"
+ "\{E0BD19AD-D4E5-4C2C-A220-D7B9B5869F4B}" "" "" "File not found: C:\Program Files (x86)\The Bridge\The Bridge.exe" ""
+ "\{E2568D97-6979-429C-9A2E-8FC45454690E}" "" "" "File not found: C:\Program Files (x86)\The Bridge\The Bridge.exe" ""
+ "\{F9873B49-9BDD-4545-8A98-CDCD1D95723B}" "Internet Explorer" "Microsoft Corporation" "c:\program files (x86)\internet explorer\iexplore.exe" "14/10/2013 04:34"
"HKLM\System\CurrentControlSet\Services" "" "" "" "16/11/2013 21:44"
+ "ACDaemon" "ArcSoft Connect Service" "ArcSoft Inc." "c:\program files (x86)\common files\arcsoft\connection service\bin\acservice.exe" "18/03/2010 04:01"
+ "AESTFilters" "Andrea filters APO access service (64-bit)" "Andrea Electronics Corporation" "c:\program files\idt\wdm\aestsr64.exe" "02/03/2009 20:42"
+ "AMD External Events Utility" "AMD External Events Service Module" "AMD" "c:\windows\system32\atiesrxx.exe" "22/06/2010 02:57"
+ "AntiVirSchedulerService" "Service to schedule Avira Free Antivirus jobs and updates." "Avira Operations GmbH & Co. KG" "c:\program files (x86)\avira\antivir desktop\sched.exe" "15/11/2013 16:26"
+ "AntiVirService" "Offers permanent protection against viruses and malware with the Avira search engine." "Avira Operations GmbH & Co. KG" "c:\program files (x86)\avira\antivir desktop\avguard.exe" "10/10/2013 16:10"
+ "AntiVirWebService" "Offers permanent protection against viruses and malware for web browsers with the Avira search engine." "Avira Operations GmbH & Co. KG" "c:\program files (x86)\avira\antivir desktop\avwebg7.exe" "29/11/2013 14:34"
+ "AtherosSvc" "Atheros BT Stack Service Agent" "Atheros Commnucations" "c:\program files (x86)\bluetooth suite\adminservice.exe" "31/03/2011 08:35"
+ "ezSharedSvc" "Provides licensing, security and parental control services for EasyBits applications. If this service is stopped or disabled, these applications will not function properly." "EasyBits Software AS" "c:\windows\syswow64\ezsharedsvchost.exe" "19/06/1992 23:22"
+ "Freemake Improver" "Freemake Improver" "Freemake" "c:\programdata\freemake\freemakeutilsservice\freemakeutilsservice.exe" "10/10/2011 12:48"
+ "gupdate" "Tiene aggiornato il software di Google. Se questo servizio viene disabilitato o interrotto, il software di Google non verrà mantenuto aggiornato. Ciò non permetterà di risolvere eventuali problemi dovuti a vulnerabilità della protezione e alcune funzionalità potrebbero non essere eseguite correttamente. Questo servizio viene disinstallato automaticamente quando non viene utilizzato da alcun software di Google." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "09/03/2010 07:10"
+ "gupdatem" "Tiene aggiornato il software di Google. Se questo servizio viene disabilitato o interrotto, il software di Google non verrà mantenuto aggiornato. Ciò non permetterà di risolvere eventuali problemi dovuti a vulnerabilità della protezione e alcune funzionalità potrebbero non essere eseguite correttamente. Questo servizio viene disinstallato automaticamente quando non viene utilizzato da alcun software di Google." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe" "09/03/2010 07:10"
+ "gusvc" "gusvc" "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe" "14/12/2006 06:55"
+ "HFGService" "Consente di utilizzare la cuffia senza fili Bluetooth in combinazione con il computer. Se il servizio viene interrotto o disattivato, la cuffia Bluetooth non funziona correttamente." "CSR, plc" "c:\windows\system32\hfgservice.dll" "21/12/2009 11:44"
+ "HP Support Assistant Service" "HP Support Assistant Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\hp support framework\hpsa_service.exe" "09/09/2011 18:09"
+ "HP Wireless Assistant Service" "This service monitors the wireless devices in this computer and allows the HP Wireless Assistant application to turn devices on and off." "Hewlett-Packard Company" "c:\program files\hewlett-packard\hp wireless assistant\hpwa_service.exe" "18/06/2010 17:06"
+ "HPDrvMntSvc.exe" "HP Quick Synchronization Service" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\shared\hpdrvmntsvc.exe" "21/05/2011 22:46"
+ "hpqwmiex" "hpqwmiex Module" "Hewlett-Packard Company" "c:\program files (x86)\hewlett-packard\shared\hpqwmiex.exe" "21/05/2011 22:43"
+ "hpsrv" "HpService" "Hewlett-Packard Company" "c:\windows\system32\hpservice.exe" "13/05/2011 19:47"
+ "HPWMISVC" "HPWMISVC Application" "" "c:\program files (x86)\hewlett-packard\hp quick launch\hpwmisvc.exe" "15/06/2010 12:05"
+ "IAStorDataMgrSvc" "Provides storage event notification and manages communication between the storage driver and user space applications." "Intel Corporation" "c:\program files (x86)\intel\intel® rapid storage technology\iastordatamgrsvc.exe" "04/03/2010 04:08"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files (x86)\common files\installshield\driver\11\intel 32\idrivert.exe" "04/04/2005 06:41"
+ "LightScribeService" "Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work." "Hewlett-Packard Company" "c:\program files (x86)\common files\lightscribe\lssrvc.exe" "19/05/2010 18:35"
+ "LMS" "Allows applications to access the local Intel® Management and Security Application using its locally-available selected network interfaces." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\lms\lms.exe" "14/04/2010 03:43"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe" "13/11/2013 02:14"
+ "ServiceLayer" "ServiceLayer Module" "Nokia" "c:\program files (x86)\pc connectivity solution\servicelayer.exe" "19/10/2011 20:31"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe" "05/09/2013 10:31"
+ "STacSV" "Manages audio jack configurations." "IDT, Inc." "c:\program files\idt\wdm\stacsv64.exe" "18/06/2010 03:27"
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe" "06/09/2013 20:04"
+ "UNS" "Intel® Management and Security Application User Notification Service - Updates the Windows Event Log with notifications of pre defined events received from the local Intel® Management and Security Application Device." "Intel Corporation" "c:\program files (x86)\intel\intel® management engine components\uns\uns.exe" "14/04/2010 03:45"
+ "VodafoneConnectorService" "VodafoneConnectorService" "Vodafone Group" "c:\program files (x86)\vodafone\via the phone\vodafoneconnectorservice.exe" "09/02/2011 15:14"
+ "VodafoneWatcherService" "Vodafone Watcher Service" "Vodafone" "c:\program files (x86)\vodafone\smartplug\vodafonewatcher.exe" "09/02/2011 15:18"
+ "WinDefend" "Protezione da spyware e software potenzialmente indesiderato" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll" "27/05/2013 06:51"
+ "wlidsvc" "Abilita l'autenticazione di Windows Live ID." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe" "29/03/2011 05:11"
+ "WMPNetworkSvc" "Consente di condividere il Catalogo multimediale di Windows Media Player con altri lettori e dispositivi multimediali in rete mediante Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe" "20/11/2010 12:18"
"HKLM\System\CurrentControlSet\Services" "" "" "" "16/11/2013 21:44"
+ "Accelerometer" "HP Accelerometer" "Hewlett-Packard Company" "c:\windows\system32\drivers\accelerometer.sys" "13/05/2011 19:47"
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys" "06/12/2008 00:54"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys" "01/05/2007 18:30"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys" "28/02/2007 01:04"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys" "14/07/2009 00:19"
+ "amdkmdag" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys" "22/06/2010 02:49"
+ "amdkmdap" "AMD multi-vendor Miniport Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmpag.sys" "22/06/2010 02:24"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys" "19/03/2010 01:45"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys" "20/03/2009 19:36"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys" "19/03/2010 17:18"
+ "AmUStor" "Alocr Micro USB Mass Storage Driver" "Alcor Micro, Corp." "c:\windows\system32\drivers\amustor.sys" "09/07/2009 03:27"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys" "24/05/2007 22:27"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys" "14/01/2009 20:27"
+ "AthBTPort" "Atheros FILTER driver" "Atheros" "c:\windows\system32\drivers\btath_flt.sys" "08/12/2010 07:38"
+ "ATHDFU" "BulkUsb Driver" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\athdfu.sys" "22/03/2010 07:43"
+ "athr" "Qualcomm Atheros Extensible Wireless LAN device driver" "Qualcomm Atheros Communications, Inc." "c:\windows\system32\drivers\athrx.sys" "14/06/2012 09:23"
+ "AtiHdmiService" "ATI High Definition Audio Function Driver" "ATI Technologies, Inc." "c:\windows\system32\drivers\atihdmi.sys" "06/05/2010 10:20"
+ "avgntflt" "Avira mini-filter driver" "Avira Operations GmbH & Co. KG" "c:\windows\system32\drivers\avgntflt.sys" "25/11/2013 19:57"
+ "avipbb" "Avira Security Enhancement Driver" "Avira Operations GmbH & Co. KG" "c:\windows\system32\drivers\avipbb.sys" "15/11/2013 16:47"
+ "avkmgr" "Avira Manager Driver" "Avira Operations GmbH & Co. KG" "c:\windows\system32\drivers\avkmgr.sys" "16/09/2013 12:14"
+ "avnetflt" "Avira WFP Network Driver" "Avira Operations GmbH & Co. KG" "c:\windows\system32\drivers\avnetflt.sys" "15/11/2013 16:56"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys" "13/02/2009 23:18"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys" "26/04/2009 12:14"
+ "BCM43XX" "Broadcom 802.11 Network Adapter wireless driver" "Broadcom Corporation" "c:\windows\system32\drivers\bcmwl664.sys" "27/03/2009 02:06"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys" "07/08/2006 02:51"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys" "07/08/2006 02:51"
+ "Brserid" "Driver I/F seriale Brother (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys" "07/08/2006 02:51"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys" "07/08/2006 02:51"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys" "07/08/2006 02:51"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys" "09/08/2006 13:11"
+ "BTATH_A2DP" "Atheros A2DP driver" "Atheros" "c:\windows\system32\drivers\btath_a2dp.sys" "18/02/2011 11:26"
+ "btath_avdt" "Atheros Bluetooth AVDT driver" "Atheros" "c:\windows\system32\drivers\btath_avdt.sys" "18/02/2011 11:27"
+ "BTATH_BUS" "Atheros BUS driver" "Atheros" "c:\windows\system32\drivers\btath_bus.sys" "08/12/2010 07:38"
+ "BTATH_HCRP" "Atheros HCRP driver" "Atheros" "c:\windows\system32\drivers\btath_hcrp.sys" "08/12/2010 07:38"
+ "BTATH_LWFLT" "Atheros FILTER driver" "Atheros" "c:\windows\system32\drivers\btath_lwflt.sys" "29/12/2010 12:47"
+ "BTATH_RCP" "Atheros AVRCP driver" "Atheros" "c:\windows\system32\drivers\btath_rcp.sys" "22/12/2010 14:39"
+ "BtFilter" "BtFilter Driver" "Atheros" "c:\windows\system32\drivers\btfilter.sys" "25/03/2011 10:54"
+ "BthAudioHF" "Servizio Audio vivavoce Bluetooth" "CSR, plc" "c:\windows\system32\drivers\bthaudiohf.sys" "21/12/2009 11:43"
+ "BthAvrcp" "Bluetooth Remote Control Driver" "CSR, plc" "c:\windows\system32\drivers\bthavrcp.sys" "13/08/2009 09:38"
+ "clwvd" "CyberLink WebCam Virtual Driver" "Windows ® Win 7 DDK provider" "c:\windows\system32\drivers\clwvd.sys" "26/05/2010 04:06"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys" "14/07/2009 00:19"
+ "cpuz135" "CPUID Driver" "CPUID" "c:\windows\system32\drivers\cpuz135_x64.sys" "09/11/2010 14:33"
+ "csr_a2dp" "Bluetooth A2DP Driver" "CSR, plc" "c:\windows\system32\drivers\bthav.sys" "21/12/2009 11:42"
+ "dtsoftbus01" "DAEMON Tools Virtual Bus Driver" "DT Soft Ltd" "c:\windows\system32\drivers\dtsoftbus01.sys" "17/06/2011 08:38"
+ "DVMIO" "DVMIO virtual device driver for 64bit" "DeviceVM, Inc." "c:\windows\system32\drivers\dvmio.sys" "11/11/2009 05:38"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys" "31/12/2008 17:29"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys" "03/02/2009 23:52"
+ "ESProtectionDriver" "" "" "c:\program files\malwarebytes anti-exploit\mbae.sys" "13/03/2013 15:26"
+ "ewusbnet" "" "" "File not found: system32\DRIVERS\ewusbnet.sys" ""
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys" "11/05/2009 09:26"
+ "HECIx64" "Intel® Management Engine Interface" "Intel Corporation" "c:\windows\system32\drivers\hecix64.sys" "17/09/2009 20:54"
+ "hpdskflt" "HP Disk Filter - SATA/RAID" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpdskflt.sys" "13/05/2011 19:47"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys" "20/04/2010 19:32"
+ "hwdatacard" "" "" "File not found: system32\DRIVERS\ewusbmdm.sys" ""
+ "hwusbdev" "" "" "File not found: system32\DRIVERS\ewusbdev.sys" ""
+ "iaStor" "Intel Rapid Storage Technology driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys" "04/03/2010 03:51"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys" "11/06/2010 01:46"
+ "igfx" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdkmd64.sys" "02/06/2010 17:43"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys" "13/12/2005 22:47"
+ "Impcd" "Intel® Turbo Boost Technology Driver" "Intel Corporation" "c:\windows\system32\drivers\impcd.sys" "27/02/2010 00:32"
+ "intelkmd" "Intel Graphics Kernel Mode Driver" "Intel Corporation" "c:\windows\system32\drivers\igdpmd64.sys" "02/06/2010 17:43"
+ "LMIInfo" "" "" "File not found: C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys" ""
+ "lmimirr" "LogMeIn Mirror Miniport Driver" "LogMeIn, Inc." "c:\windows\system32\drivers\lmimirr.sys" "10/04/2007 23:32"
+ "LMIRfsDriver" "LogMeIn Rfs Drivemap Driver" "LogMeIn, Inc." "c:\windows\system32\drivers\lmirfsdriver.sys" "14/07/2008 17:26"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys" "09/12/2008 23:46"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys" "19/05/2009 01:20"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys" "19/05/2009 01:31"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys" "16/04/2009 23:13"
+ "massfilter" "" "" "File not found: system32\drivers\massfilter.sys" ""
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys" "19/05/2009 02:09"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys" "19/05/2009 02:25"
+ "netw5v64" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netw5v64.sys" "26/03/2009 17:21"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys" "06/06/2006 22:11"
+ "nmwcd" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmbx64.sys" "17/08/2011 10:58"
+ "nmwcdc" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmbox64.sys" "17/08/2011 10:58"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys" "19/03/2010 21:59"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys" "19/03/2010 21:45"
+ "pccsmcfd" "PCCS Mode Change Filter Driver" "Nokia" "c:\windows\system32\drivers\pccsmcfdx64.sys" "28/08/2008 10:44"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys" "23/01/2009 00:05"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys" "19/05/2009 02:18"
+ "RAMDiskVE" "" "" "c:\windows\system32\drivers\ramdiskve.sys" "03/10/2009 20:58"
+ "RimVSerPort" "RIM Virtual Serial Driver" "Research in Motion Ltd" "c:\windows\system32\drivers\rimserial_amd64.sys" "09/01/2007 17:50"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                " "Realtek                                            " "c:\windows\system32\drivers\rt64win7.sys" "10/06/2011 07:33"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys" "13/09/2006 14:18"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys" "24/09/2008 19:28"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys" "01/10/2008 22:56"
+ "SrvHsfHDA" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstazl6.sys" "16/10/2008 01:53"
+ "SrvHsfV92" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstdpv6.sys" "16/10/2008 01:57"
+ "SrvHsfWinac" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstcnxt6.sys" "16/10/2008 01:52"
+ "stexstor" "Promise  SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys" "18/02/2009 00:03"
+ "STHDA" "IDT PC Audio" "IDT, Inc." "c:\windows\system32\drivers\stwrt64.sys" "18/06/2010 03:16"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys" "14/10/2011 03:34"
+ "upperdev" "Filter Driver for Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\usbser_lowerfltx64.sys" "17/08/2011 10:58"
+ "UsbserFilt" "Filter Driver for Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\usbser_lowerfltjx64.sys" "17/08/2011 10:58"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys" "14/07/2009 00:19"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys" "31/01/2009 02:18"
+ "WinRing0_1_2_0" "WinRing0" "OpenLibSys.org" "c:\program files (x86)\batterycare\winring0x64.sys" "26/07/2008 14:29"
+ "yukonw7" "Miniport Driver for Marvell Yukon Ethernet Controller." "Marvell" "c:\windows\system32\drivers\yk62x64.sys" "23/02/2009 16:02"
+ "ZTEusbmdm6k" "" "" "File not found: system32\DRIVERS\ZTEusbmdm6k.sys" ""
+ "ZTEusbnmea" "" "" "File not found: system32\DRIVERS\ZTEusbnmea.sys" ""
+ "ZTEusbser6k" "" "" "File not found: system32\DRIVERS\ZTEusbser6k.sys" ""
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "21/11/2013 19:20"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm" "14/07/2009 02:28"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "19/12/2013 11:19"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm" "14/07/2009 02:06"
+ "vidc.cvid" "Codec Cinepak®" "Radius Inc." "c:\windows\syswow64\iccvid.dll" "20/11/2010 12:59"
+ "vidc.DIVX" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll" "19/02/2010 20:26"
+ "vidc.x264" "x264vfw - H.264/MPEG-4 AVC codec" "x264vfw project" "c:\program files (x86)\x264vfw\x264vfw.dll" "17/03/2013 18:21"
+ "vidc.yv12" "DivX" "DivX, Inc." "c:\windows\syswow64\divx.dll" "19/02/2010 20:26"
"HKLM\Software\Classes\Filter" "" "" "" "19/12/2013 11:31"
+ "MainConcept (Nikon) AVC/H.264 Video Encoder" "AVC/H.264 Encoder DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_enc_avc_ds.ax" "22/03/2011 18:35"
+ "MainConcept (Nikon) MP4 Demultiplexer" "MP4 Demultiplexer Direct Show Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_demux_mp4_ds.ax" "22/03/2011 18:41"
+ "MainConcept (Nikon) MP4 Multiplexer" "MP4 Multiplexer Direct Show Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_mux_mp4_ds.ax" "22/03/2011 18:42"
+ "MainConcept MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "MainConcept GmbH" "c:\program files (x86)\divx\divx transcode engine\plugins\mc_demux_mp2_ds.ax" "10/04/2013 12:21"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" "" "14/07/2009 05:53"
+ "LogMeIn Video Decoder" "" "" "File not found: C:\Program Files (x86)\LogMeIn\x64\racodec.ax" ""
+ "LogMeIn Video Encoder" "" "" "File not found: C:\Program Files (x86)\LogMeIn\x64\racodec.ax" ""
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" "" "07/09/2013 19:31"
+ "ATI Ticker" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\ticker.ax" "22/06/2010 02:30"
+ "Audio Destination" "WAVDest Filter (Sample)" "Microsoft Corporation" "c:\program files (x86)\google\google earth\client\wavdest.ax" "07/10/2013 20:33"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
+ "CyberLink Audio Decoder (HP)" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\claud.ax" "22/04/2010 07:14"
+ "CyberLink Audio Effect (HP)" "CyberLink Audio Effect Filter" "CyberLink Corporation" "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\claudfx.ax" "09/12/2009 03:51"
+ "CyberLink Audio Noise Reduction" "CLAuNR" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaunrwrapper.ax" "17/10/2005 03:34"
+ "CyberLink Audio Resampler" "CLAuRsmpl.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaursmpl.ax" "25/02/2005 03:41"
+ "CyberLink Audio VolumeBooster" "CyberLink Audio Volume Booster Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvb.ax" "08/10/2004 09:36"
+ "CyberLink AudioCD Filter" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudiocd.ax" "21/01/2008 11:35"
+ "Cyberlink Dump Dispatch Filter" "Cyberlink File Dump Dispatch Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdumpdispatch.ax" "12/12/2003 08:01"
+ "Cyberlink Dump Filter" "Cyberlink File Dump Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gdump.ax" "22/11/2006 13:15"
+ "CyberLink DVD Navigator (HP)" "CyberLink DVD Navigation Filter" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\clnavx.ax" "23/04/2010 10:05"
+ "CyberLink Editing Service 3.0 (Source)" "CES Kernel" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gedtkrn.dll" "03/05/2007 07:18"
+ "Cyberlink File Reader (Async.)" "Cyberlink MPEG File Reader" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2greader.ax" "16/06/2003 04:35"
+ "CyberLink Line21 Decoder Filter (HP)" "CyberLink Line21 Decoder Filter" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\clline21.ax" "24/07/2009 03:21"
+ "CyberLink Load Image Filter" "CLImage" "CyberLink" "c:\program files (x86)\cyberlink\shared files\climage.ax" "07/11/2006 05:16"
+ "CyberLink M2V Writer" "CLM2VWriter" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gm2vwriter.ax" "17/08/2005 15:45"
+ "CyberLink MP3/WAV Wrapper" "CyberLink MP3 Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmp3wrap.ax" "14/01/2008 03:30"
+ "CyberLink MPEG Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gmvd.ax" "29/09/2003 14:50"
+ "CyberLink MPEG Muxer" "MpgMux" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gmpgmux.ax" "23/05/2008 08:27"
+ "CyberLink MPEG Video Encoder" "CyberLink MPEG Video Encoder                               " "CyberLink Corp.                                            " "c:\program files (x86)\cyberlink\power2go\p2gvidenc.ax" "26/10/2005 12:41"
+ "CyberLink MPEG-1 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm1spliter.ax" "04/12/2007 04:11"
+ "CyberLink MPEG-2 Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gm2spliter.ax" "04/12/2007 04:10"
+ "CyberLink PCM Wrapper" "CyberLink PCM Wrapper" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gpcmenc.ax" "21/03/2002 06:54"
+ "Cyberlink SubTitle(HP)" "CLSubTitle.ax" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\clsubtitle.ax" "22/12/2009 14:08"
+ "CyberLink TimeStretch Filter (CES)" "CLAuTS.ax" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gauts.ax" "12/10/2004 15:32"
+ "CyberLink TL MPEG Splitter" "CyberLink MPEG Splitter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gtlmsplter.ax" "19/10/2006 06:33"
+ "CyberLink Tzan Filter (HP)" "Cyberlink Tzan Filter" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\cltzan.ax" "22/03/2010 11:00"
+ "CyberLink Video Effect" "CLVidFx" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvidfx.ax" "30/08/2005 05:01"
+ "CyberLink Video Regulator" "CLRGL" "Cyberlink" "c:\program files (x86)\cyberlink\power2go\p2grgl.ax" "28/09/2005 11:42"
+ "CyberLink Video Stabilizer" "CLVideoDeShaking" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gvideostabilizer.ax" "17/10/2005 07:28"
+ "CyberLink Video/SP Decoder (HP)" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\clvsd.ax" "22/04/2010 08:21"
+ "DC-Bass Source" "BASS based DirectShow™ Audio Decoder" "http://www.dsp-worx.de" "c:\program files (x86)\k-lite codec pack\filters\dcbass\dcbasssourcemod.ax" "19/06/1992 23:22"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "xy-VSFilter Team" "c:\program files (x86)\x264 video codec\filters\vsfilter.dll" "13/08/2012 15:10"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "xy-VSFilter Team" "c:\program files (x86)\x264 video codec\filters\vsfilter.dll" "13/08/2012 15:10"
+ "DivX AAC Decoder" "AAC audio decoder filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\daac.ax" "05/03/2011 18:28"
+ "DivX Decoder Filter" "DivX Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx codec\divxdec.ax" "26/07/2011 19:51"
+ "DivX Demux Filter" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\directshowdemuxfilter.dll" "06/11/2012 05:04"
+ "DivX Demux Filter (Unrestricted Edition)" "DivX Plus DMF Navigator Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\directshowdemuxfilter.dll" "06/11/2012 05:04"
+ "DivX H.264 Decoder" "DivX H.264 Decoder Filter" "DivX, Inc." "c:\program files (x86)\divx\divx plus directshow filters\divxdech264.ax" "02/04/2010 22:00"
+ "Emuzed AAC/AAC+ Decoder TFilter" "Emuzed AAC/AAC+ Decoder Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzaacdecfilter.dll" "16/05/2011 11:50"
+ "Emuzed AMR/3GPP/MP4/MP3 Multiplexer-Filter" "Emuzed MP4/3GP2/AMR/QCP Multiplexer/Sink Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\ezdmp4muxfilter.dll" "16/05/2011 11:50"
+ "Emuzed AMR/QCP/3GPP/MP4/3G2 Source Filter" "Emuzed MP4/3GP2/AMR/QCP Source Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzmp4source.dll" "16/05/2011 11:50"
+ "Emuzed H264 Video Decoder-Filter" "Emuzed H.264 Video Transform Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\ezdh264dectfilter.dll" "14/10/2011 10:55"
+ "Emuzed MP3 Source/Decoder Filter" "Emuzed MP3 Source/Decoder Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzmp3sourcefilter.dll" "16/05/2011 11:51"
+ "Emuzed MP4SP/H263 Video Decoder-Filter" "Emuzed MP4SP/H.263 Video Transform Filter" "Emuzed Inc. " "c:\program files (x86)\common files\nokia\codecs\emzdecmp4_h263.dll" "16/05/2011 11:52"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\x264 video codec\filters\ffdshow\ffdshow.ax" "22/08/2012 13:18"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\x264 video codec\filters\ffdshow\ffdshow.ax" "22/08/2012 13:18"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\x264 video codec\filters\ffdshow\ffdshow.ax" "22/08/2012 13:18"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\x264 video codec\filters\ffdshow\ffdshow.ax" "22/08/2012 13:18"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\x264 video codec\filters\ffdshow\ffdshow.ax" "22/08/2012 13:18"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files (x86)\x264 video codec\filters\haali\splitter.ax" "08/09/2011 15:01"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\x264 video codec\filters\haali\splitter.ax" "08/09/2011 15:01"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files (x86)\x264 video codec\filters\haali\splitter.ax" "08/09/2011 15:01"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\x264 video codec\filters\haali\splitter.ax" "08/09/2011 15:01"
+ "Haali Video Renderer" "" "" "c:\program files (x86)\x264 video codec\filters\haali\dxr.dll" "10/01/2009 23:15"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files (x86)\x264 video codec\filters\haali\splitter.ax" "08/09/2011 15:01"
+ "JetAudio Audio Decoder" "DirectShow Audio Decoder for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpad.ax" "15/07/2011 02:31"
+ "JetAudio Audio Encoder" "DirectShow Audio Encoder for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpax.ax" "01/06/2011 23:48"
+ "JetAudio Audio Stream Switcher" "Audio Stream Switcher for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetasw.ax" "01/06/2011 23:51"
+ "JetAudio Audio Writer" "DirectShow Audio Writer for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetawt.ax" "01/06/2011 23:50"
+ "JetAudio AVI Reader" "DirectShow AVI Spliiter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetavi.ax" "01/06/2011 23:50"
+ "JetAudio AVI Splitter" "DirectShow AVI Spliiter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetavi.ax" "01/06/2011 23:50"
+ "JetAudio FLV Reader" "DirectShow FLV Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetflv.ax" "01/06/2011 23:49"
+ "JetAudio FLV Splitter" "DirectShow FLV Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetflv.ax" "01/06/2011 23:49"
+ "JetAudio MKV Reader" "DirectShow Matroska Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmkv.ax" "22/07/2011 00:09"
+ "JetAudio MKV Splitter" "DirectShow Matroska Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmkv.ax" "22/07/2011 00:09"
+ "JetAudio MP4 Reader" "DirectShow MP4 Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmp4.ax" "21/03/2012 00:58"
+ "JetAudio MP4 Splitter" "DirectShow MP4 Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmp4.ax" "21/03/2012 00:58"
+ "JetAudio MPEG Decoder" "DirectShow MPEG Decoder for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpgd.ax" "22/06/2011 20:07"
+ "JetAudio MPEG4 Video Source" "DirectShow MP4 Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmp4.ax" "21/03/2012 00:58"
+ "JetAudio MPEG4 Video Splitter" "DirectShow MP4 Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmp4.ax" "21/03/2012 00:58"
+ "JetAudio MPG Reader" "DirectShow MPG Spliiter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpg.ax" "24/06/2011 01:29"
+ "JetAudio MPG Splitter" "DirectShow MPG Spliiter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpg.ax" "24/06/2011 01:29"
+ "JetAudio OGM Reader" "DirectShow OGM Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetogm.ax" "15/06/2011 22:29"
+ "JetAudio OGM Splitter" "DirectShow OGM Splitter for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetogm.ax" "15/06/2011 22:29"
+ "JetAudio Sound Effector V3" "Sound Processing DirectShow Filter for jetAudio" "JetAudio, Inc." "c:\program files (x86)\common files\cowon\jetsfx3.ax" "16/03/2005 01:48"
+ "JetAudio Sound Effector V4" "DirectShow Sound Effector for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetsfx4.ax" "09/05/2011 23:57"
+ "JetAudio Subtitle Processor" "DirectShow Subtitle Display Filter for JetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetdsd.ax" "08/02/2012 01:43"
+ "JetAudio Video Decoder" "DirectShow Video Decoder for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpvd.ax" "24/06/2011 01:28"
+ "JetAudio Video Decoder (DXVA)" "H.264/VC-1 DXVA video decoder" "JetAudio, Inc." "c:\program files (x86)\common files\cowon\jetmpvdx.ax" "07/04/2011 01:47"
+ "JetAudio Video Encoder" "JetAudio Video Encoder for DirectShow" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpvx.ax" "01/06/2011 23:44"
+ "JetAudio Video Writer" "DirectShow Video Writer for jetAudio" "JetAudio" "c:\program files (x86)\common files\cowon\jetmpgx.ax" "01/06/2011 23:45"
+ "LAV Audio Decoder" "LAV Audio Decoder - DirectShow Audio Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavaudio.ax" "27/05/2013 13:47"
+ "LAV Splitter" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavsplitter.ax" "27/05/2013 13:48"
+ "LAV Splitter Source" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavsplitter.ax" "27/05/2013 13:48"
+ "LAV Video Decoder" "LAV Video Decoder - DirectShow Video Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\k-lite codec pack\filters\lav\lavvideo.ax" "27/05/2013 13:48"
+ "LogMeIn Video Decoder" "" "" "File not found: C:\Program Files (x86)\LogMeIn\x86\racodec.ax" ""
+ "LogMeIn Video Encoder" "" "" "File not found: C:\Program Files (x86)\LogMeIn\x86\racodec.ax" ""
+ "madVR" "madshi's D3D9 based video renderer" "madshi.net" "c:\program files (x86)\k-lite codec pack\filters\madvr\madvr.ax" "22/02/2013 21:22"
+ "MainConcept (Nikon) AAC Decoder" "AAC audio decoder filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_dec_aac_ds.ax" "22/03/2011 18:37"
+ "MainConcept (Nikon) AAC Encoder" "AAC Encoder DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_enc_aac_ds.ax" "22/03/2011 18:37"
+ "MainConcept (Nikon) Audio Converter" "Audio Converter DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_trans_audio_converter_ds.ax" "22/03/2011 18:44"
+ "MainConcept (Nikon) AVC/H.264 Video Decoder" "AVC/H.264 Decoder DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_dec_avc_ds.ax" "22/03/2011 18:34"
+ "MainConcept (Nikon) AVC/H.264 Video Encoder" "AVC/H.264 Encoder DirectShow Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_enc_avc_ds.ax" "22/03/2011 18:35"
+ "MainConcept (Nikon) MJPG Video Decoder" "MJPEG Decoder Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_dec_mjpg_ds.ax" "22/03/2011 18:43"
+ "MainConcept (Nikon) MJPG Video Encoder" "MJPEG Encoder Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_enc_mjpg_ds.ax" "22/03/2011 18:44"
+ "MainConcept (Nikon) MP4 Demultiplexer" "MP4 Demultiplexer Direct Show Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_demux_mp4_ds.ax" "22/03/2011 18:41"
+ "MainConcept (Nikon) MP4 Multiplexer" "MP4 Multiplexer Direct Show Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_mux_mp4_ds.ax" "22/03/2011 18:42"
+ "MainConcept (Nikon) Sink Filter" "Sink DS Filter" "MainConcept GmbH" "c:\program files (x86)\common files\nikon\directshow filters\nikon_render_fileindex_ds.ax" "22/03/2011 18:45"
+ "MainConcept MPEG Demultiplexer" "MPEG-1/2 Demultiplexer" "MainConcept GmbH" "c:\program files (x86)\divx\divx transcode engine\plugins\mc_demux_mp2_ds.ax" "10/04/2013 12:21"
+ "MainConcept Stream Parser" "MPEG-1/2 Demultiplexer" "MainConcept GmbH" "c:\program files (x86)\divx\divx transcode engine\plugins\mc_demux_mp2_ds.ax" "10/04/2013 12:21"
+ "MMACE Deinterlace" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll" "22/06/2010 02:30"
+ "MMACE ProcAmp" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll" "22/06/2010 02:30"
+ "MMACE SoftEmu" "" "" "c:\program files (x86)\ati technologies\ati.ace\graphics-previews-common\mmacefilters.dll" "22/06/2010 02:30"
+ "MPC - FLV Source (Gabest)" "FLV Splitter" "Gabest" "c:\program files (x86)\x264 video codec\filters\flvsplitter.ax" "31/08/2009 07:44"
+ "MPC - FLV Splitter (Gabest)" "FLV Splitter" "Gabest" "c:\program files (x86)\x264 video codec\filters\flvsplitter.ax" "31/08/2009 07:44"
+ "MPC - MPEG-2 Video Decoder (Gabest)" "MPEG-2 Decoder Filter for DirectShow" "Gabest" "c:\program files (x86)\x264 video codec\filters\mpeg2decfilter.ax" "31/08/2009 07:47"
+ "MSDVD Audio Wizard (HP)" "CyberLink Audio Wizard Filter" "CyberLink Corp." "c:\program files (x86)\hewlett-packard\media\dvd\kernel\movie\claudwizard.ax" "14/08/2009 14:26"
+ "Nikon Image Source Filter" "MediaDSF" "Nikon Corporation" "c:\program files (x86)\nikon\viewnx 2\nikon movie editor\mediadsfilter.dll" "20/09/2012 09:25"
+ "Nikon MOV Demultiplexer" "Nikon MOV Demultiplexer" "Nikon Corporation" "c:\program files (x86)\common files\nikon\directshow filters\nkmlmovdemux.ax" "12/09/2012 05:11"
+ "Nikon MOV Multiplexor" "Nikon MOV Multiplexer" "Nikon Corporation" "c:\program files (x86)\common files\nikon\directshow filters\nkmlmovmux.ax" "12/09/2012 05:11"
+ "Nikon Text Source Filter" "NkmTextFilter" "" "c:\program files (x86)\nikon\viewnx 2\nikon movie editor\nkmtextfilter.ax" "20/09/2012 09:21"
+ "Nokia H264Dec HP/MP Filter" "NokiaH264HPMPDecTFilter" "Nokia" "c:\program files (x86)\common files\nokia\codecs\nokiah264hpmpdectfilter.dll" "28/04/2011 07:13"
+ "Nokia MPEG4ASP Decoder Filter" "MPEG4ASP H263 Decoder Filter" "Nokia" "c:\program files (x86)\common files\nokia\codecs\nokiadecmp4asp_h263.dll" "28/04/2011 07:15"
+ "P2G Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaud.ax" "01/12/2006 06:59"
+ "P2G Audio Encoder" "CyberLink Audio Encoder Filter" "Cyberlink Corp." "c:\program files (x86)\cyberlink\power2go\p2gaudenc.ax" "20/12/2006 10:20"
+ "P2G Video Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files (x86)\cyberlink\power2go\p2gvsd.ax" "10/11/2005 13:36"
+ "P2G Video Regulator" "CyberLink Video Regulator" "CyberLink" "c:\program files (x86)\cyberlink\power2go\p2gresample.ax" "18/06/2002 04:32"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
+ "T" "VP7 Decompression Filter" "On2.com Inc." "c:\program files (x86)\k-lite codec pack\filters\vp7dec.ax" "24/03/2006 23:09"
+ "WavPack Audio Decoder" "WavPack Audio DirectShow Decoder" "-" "c:\program files (x86)\x264 video codec\filters\wavpackdsdecoder.ax" "04/03/2007 10:50"
+ "WavPack Audio Splitter" "WavPack Audio DirectShow Splitter" "-" "c:\program files (x86)\x264 video codec\filters\wavpackdssplitter.ax" "02/10/2007 23:09"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll" "09/03/2012 03:32"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" "" "14/07/2009 05:53"
+ "LogMeInCredProv" "LogMeIn Remote Control Helper" "LogMeIn, Inc." "c:\windows\system32\lmiinit.dll" "24/10/2013 11:28"
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll" "29/03/2011 05:12"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" "" "19/12/2013 11:19"
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll" "02/06/2010 16:56"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" "" "18/12/2013 00:42"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll" "29/03/2011 04:31"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll" "29/03/2011 04:31"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" "" "18/12/2013 00:42"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll" "29/03/2011 05:10"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll" "29/03/2011 05:10"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" "" "19/12/2013 11:19"
+ "LogMeIn Printer Port Monitor" "RemotelyAnywhere Printer Port Monitor" "LogMeIn, Inc." "c:\windows\system32\lmiport.dll" "26/04/2013 15:14"
+ "PCL hpz3lw71" "LanguageMonitor" "Hewlett-Packard Corporation" "c:\windows\system32\hpz3lw71.dll" "14/07/2009 02:28"
"HKLM\SYSTEM\CurrentControlSet\Control\NetworkProvider\Order" "" "" "" "22/05/2013 10:44"
+ "LMIRfsClientNP" "LogMeIn Virtual Disk Network" "LogMeIn, Inc." "c:\windows\system32\lmirfsclientnp.dll" "24/10/2013 11:28"
"C:\Users\IreAle\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" "" "17/12/2013 23:00"
+ "Calendario" "Consente di sfogliare i giorni del calendario." "Microsoft Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Calendar.Gadget\it-IT\Gadget.xml" "29/07/2010 01:54"
+ "Meteo" "Il meteo nel mondo." "Microsoft Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\it-IT\Gadget.xml" "29/07/2010 01:54"
+ "Meteo" "Il meteo nel mondo." "Microsoft Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Weather.Gadget\it-IT\Gadget.xml" "29/07/2010 01:54"
 
 
 
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Versione database: v2013.12.19.08
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
IreAle :: NOWEHERELAND [amministratore]
 
19/12/2013 17:21:54
mbam-log-2013-12-19 (17-21-54).txt
 
Tipo di scansione: Scansione veloce
Opzioni di scansione attive: Memoria | Esecuzione automatica | Registro | File di sistema | Euristica/Extra | Euristica/Shuriken | PUP | PUM
Opzioni di scansione disattivate: P2P
Elementi esaminati: 258612
Tempo impiegato: 6 minuti, 16 secondi
 
Processi rilevati in memoria: 0
(non sono stati rilevati elementi nocivi)
 
Moduli di memoria rilevati: 0
(non sono stati rilevati elementi nocivi)
 
Chiavi di registro rilevate: 0
(non sono stati rilevati elementi nocivi)
 
Valori di registro rilevati: 0
(non sono stati rilevati elementi nocivi)
 
Voci rilevate nei dati di registro: 0
(non sono stati rilevati elementi nocivi)
 
Cartelle rilevate: 4
C:\Users\IreAle\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Spostato in quarantena ed eliminato con successo.
C:\Users\IreAle\AppData\Roaming\OpenCandy\7194F97B31BB4DAE822B0B36E77ACB25 (PUP.Optional.OpenCandy) -> Spostato in quarantena ed eliminato con successo.
C:\Users\IreAle\AppData\Roaming\OpenCandy\72DA6578EADA4E52A521443D7BB1D981 (PUP.Optional.OpenCandy) -> Spostato in quarantena ed eliminato con successo.
C:\Users\IreAle\AppData\Roaming\OpenCandy\C1C7C6E55051403BA3023F9FFEE2E752 (PUP.Optional.OpenCandy) -> Spostato in quarantena ed eliminato con successo.
 
File rilevati: 7
C:\Users\IreAle\Downloads\iLividSetup-r394-n-bc.exe (PUP.Optional.Bandoo) -> Spostato in quarantena ed eliminato con successo.
C:\Users\IreAle\Downloads\RemoveWAT_2.2.6_Activator_for_All_Windows_7_Versions_Free_Download_downloader_is_185.exe (PUP.Optional.GoForFiles.A) -> Spostato in quarantena ed eliminato con successo.
C:\Users\IreAle\Downloads\SetupImgBurn_2.5.8.0 (1).exe (PUP.Optional.OpenCandy) -> Spostato in quarantena ed eliminato con successo.
C:\Users\IreAle\Downloads\SetupImgBurn_2.5.8.0.exe (PUP.Optional.OpenCandy) -> Spostato in quarantena ed eliminato con successo.
C:\Users\IreAle\AppData\Roaming\OpenCandy\7194F97B31BB4DAE822B0B36E77ACB25\chrometest.html (PUP.Optional.OpenCandy) -> Spostato in quarantena ed eliminato con successo.
C:\Users\IreAle\AppData\Roaming\OpenCandy\72DA6578EADA4E52A521443D7BB1D981\Setupsft_chr_p1v7.exe (PUP.Optional.OpenCandy) -> Spostato in quarantena ed eliminato con successo.
C:\Users\IreAle\AppData\Roaming\OpenCandy\C1C7C6E55051403BA3023F9FFEE2E752\speedupmypcROW.exe (PUP.Optional.OpenCandy) -> Spostato in quarantena ed eliminato con successo.
 
(fine)
 
 
 
 
# AdwCleaner v3.015 - Report created 19/12/2013 at 17:38:46
# Updated 10/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : IreAle - NOWEHERELAND
# Running from : C:\Users\IreAle\Desktop\adwcleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Program Files (x86)\Softonic
Folder Deleted : C:\Users\IreAle\AppData\LocalLow\Softonic
Folder Deleted : C:\Users\IreAle\AppData\Roaming\Softonic
Folder Deleted : C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf
[!] Folder Deleted : C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf
File Deleted : C:\Users\IreAle\AppData\Roaming\Mozilla\Firefox\Profiles\zaeroxpe.default\searchplugins\softonic.xml
File Deleted : C:\Users\IreAle\AppData\Roaming\Mozilla\Firefox\Profiles\zaeroxpe.default\user.js
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\elchiiiejkobdbblfejjkbphbddgmljf
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane
Key Deleted : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.dskBnd
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.dskBnd.1
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr
Key Deleted : HKLM\SOFTWARE\Classes\Softonic.SoftonicHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\SoftonicApp.appCore
Key Deleted : HKLM\SOFTWARE\Classes\SoftonicApp.appCore.1
Key Deleted : HKLM\SOFTWARE\Classes\speedupmypc
Key Deleted : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc
Key Deleted : HKLM\SOFTWARE\Classes\srv.SoftonicSrvc.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\FreeRIP3_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\FreeRIP3_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFile_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YourFileUpdater_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B15F118E-AF21-45E8-A809-29FDD7362565}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{44B50C01-4993-48E2-ADEE-D812BAE2E9A2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5018CFD2-804D-4C99-9F81-25EAEA2769DE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A3E2F089-DDBB-4CBF-B06C-5D44DA316ED3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A5679AB0-C59E-49E7-83C4-5289F844A6E0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CA0167C2-6295-41B8-9BDA-704B2F5E4CD9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11D9E165-B8C1-4734-A56C-BC4FCACA966B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B15F118E-AF21-45E8-A809-29FDD7362565}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E87806B5-E908-45FD-AF5E-957D83E58E68}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9CF034EA-7B46-48D3-8895-8A14B32AE445}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{5018CFD2-804D-4C99-9F81-25EAEA2769DE}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Key Deleted : HKCU\Software\FLEXnet
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\Software\Softonic
Key Deleted : HKLM\Software\Uniblue
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{501451DE-5808-4599-B544-8BD0915B6B24}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Softonic
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.16428
 
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
 
-\\ Mozilla Firefox v25.0.1 (en-US)
 
[ File : C:\Users\IreAle\AppData\Roaming\Mozilla\Firefox\Profiles\zaeroxpe.default\prefs.js ]
 
Line Deleted : user_pref("extensions.Softonic.admin", false);
Line Deleted : user_pref("extensions.Softonic.aflt", "OC");
Line Deleted : user_pref("extensions.Softonic.appId", "{7ABBFE1C-E485-44AA-8F36-353751B4124D}");
Line Deleted : user_pref("extensions.Softonic.autoRvrt", "false");
Line Deleted : user_pref("extensions.Softonic.dfltLng", "");
Line Deleted : user_pref("extensions.Softonic.dfltSrch", true);
Line Deleted : user_pref("extensions.Softonic.dnsErr", true);
Line Deleted : user_pref("extensions.Softonic.excTlbr", false);
Line Deleted : user_pref("extensions.Softonic.ffxUnstlRst", false);
Line Deleted : user_pref("extensions.Softonic.hmpg", true);
Line Deleted : user_pref("extensions.Softonic.hmpgUrl", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=13&cc=&mi=dcdf3ee5000000000000220d5c918bcd");
Line Deleted : user_pref("extensions.Softonic.id", "dcdf3ee5000000000000220d5c918bcd");
Line Deleted : user_pref("extensions.Softonic.instlDay", "16056");
Line Deleted : user_pref("extensions.Softonic.instlRef", "MOY00621");
Line Deleted : user_pref("extensions.Softonic.newTab", true);
Line Deleted : user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/MOY00621/tb_v1/?SearchSource=15&cc=&mi=dcdf3ee5000000000000220d5c918bcd");
Line Deleted : user_pref("extensions.Softonic.prdct", "Softonic");
Line Deleted : user_pref("extensions.Softonic.prtnrId", "softonic");
Line Deleted : user_pref("extensions.Softonic.rvrt", "false");
Line Deleted : user_pref("extensions.Softonic.smplGrp", "none");
Line Deleted : user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");
Line Deleted : user_pref("extensions.Softonic.tlbrId", "opencandy2013");
Line Deleted : user_pref("extensions.Softonic.tlbrSrchUrl", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=1&cc=&mi=dcdf3ee5000000000000220d5c918bcd&q=");
Line Deleted : user_pref("extensions.Softonic.vrsn", "1.8.21.14");
Line Deleted : user_pref("extensions.Softonic.vrsnTs", "1.8.21.1421:34:24");
Line Deleted : user_pref("extensions.Softonic.vrsni", "1.8.21.14");
 
[ File : C:\Users\IreAle\AppData\Roaming\Mozilla\Firefox\Profiles\zaeroxpe.default\prefs.js ]
 
 
-\\ Google Chrome v31.0.1650.63
 
[ File : C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted : homepage
Deleted : search_url
Deleted : keyword
Deleted : urls_to_restore_on_startup
 
[ File : C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [12695 octets] - [19/12/2013 17:35:19]
AdwCleaner[S0].txt - [10116 octets] - [19/12/2013 17:38:46]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10177 octets] ##########
 
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by IreAle on 19/12/2013 at 17:44:19,70
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{F4D07B80-7B6F-401C-89BB-1CEC9596676A}
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\ProgramData\apn"
 
 
 
~~~ FireFox
 
Successfully deleted the following from C:\Users\IreAle\AppData\Roaming\mozilla\firefox\profiles\zaeroxpe.default\prefs.js
 
user_pref("extensions.AVIRA-V7.com.avira.dnt.rules", "\"{\\\"Version\\\":39,\\\"Companies\\\":[{\\\"company\\\":\\\"Google Inc\\\",\\\"rules\\\":[{\\\"name\\\":\\\"Google Anal
user_pref("extensions.AVIRA-V7.domain", "\"avira.search.ask.com\"");
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 19/12/2013 at 17:51:02,18
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#4 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:51 AM

Posted 19 December 2013 - 03:39 PM

Open your copy of Autoruns and un-tick the items below.

 

These are located under the "Task Scheduler" tab.

 
+ "\HPCeeScheduleForIreAle" "HP Ceement" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe" "14/09/2010 06:11"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll" "09/03/2012 03:13"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs" "10/06/2009 21:36"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Applicazione di configurazione Servizio di condivisione in rete Windows Media Player" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe" "14/07/2009 01:24"
+ "\MirageAgent" "YouCam Mirage" "CyberLink" "c:\program files (x86)\hewlett-packard\media\webcam\ycmmirage.exe" "26/05/2010 03:59"
+ "\{2A99C228-ED8A-4A01-AC95-E032A4BDB6CE}" "" "" "File not found: c:\users\nabu\appdata\local\google\chrome\application\chrome.exe" ""
+ "\{3F6A58E5-A949-4273-B34E-18024BF782B6}" "" "" "File not found: c:\users\nabu\appdata\local\google\chrome\application\chrome.exe" ""
+ "\{6D7FE0B2-6BF8-49FB-93F1-80DC4836F61A}" "" "" "File not found: F:\Ale\Nabu\3D_Muscular_Premium_Anatomy_Installer.exe" ""
+ "\{747174CC-BB50-4277-9482-365FD07DCDE5}" "" "" "c:\program files (x86)\alliance\alliance.exe" "16/04/2008 17:21"
+ "\{93CABCEA-12FC-452C-A1E7-9233F94F60AE}" "Internet Explorer" "Microsoft Corporation" "c:\program files (x86)\internet explorer\iexplore.exe" "14/10/2013 04:34"
+ "\{A1CF0154-CDE8-4BC0-9C64-87A65C2199C8}" "" "" "File not found: F:\Ale\Nabu\3D_Muscular_Premium_Anatomy_Installer.exe" ""
+ "\{ADF799B7-5CF2-4BBD-B2AD-72F9C955C4BB}" "Internet Explorer" "Microsoft Corporation" "c:\program files (x86)\internet explorer\iexplore.exe" "14/10/2013 04:34"
+ "\{E0BD19AD-D4E5-4C2C-A220-D7B9B5869F4B}" "" "" "File not found: C:\Program Files (x86)\The Bridge\The Bridge.exe" ""
+ "\{E2568D97-6979-429C-9A2E-8FC45454690E}" "" "" "File not found: C:\Program Files (x86)\The Bridge\The Bridge.exe" ""
+ "\{F9873B49-9BDD-4545-8A98-CDCD1D95723B}" "Internet Explorer" "Microsoft Corporation" "c:\program files (x86)\internet explorer\iexplore.exe" "14/10/2013 04:34"
 
 
Now You have a lot of leftover items from log me in on your machine I woiuld suggest that you re-install it.
 
Then Remove it with REvo.
 
 
 
Also you have a lot of leftover Usb drivers on the machine lets do this.
 
Lets clear the old usb drivers out of the way. You need the 64 bit version of the program in your system32 folder.

Download this tool to the machine in question unzip it to the desktop.
drivecleanup.zip

  • Move the 32 or 64 bit version of DriveCleanup.exe to C:\Windows\System32 Folder.
  • To do this hit the windows key and r at the same time and type the File Location C:\Windows\System32 in the run box.
  • Drag the 32 or 64 bit version of DriveCleanup.exe from the desktop into the C:\Windows\System32 Folder.
  • Then Close all applications power your machine down and remove all usb devices except keyboard and mouse.
  • Power the machine back on.
  • Open an elevated command prompt.http://www.sevenforums.com/tutorials/783-elevated-command-prompt.html
  • Once the CMD window opens Type drivecleanup.exe Hit enter.
  • This will clear all old usb drivers on your machine and hopefully help your issue.

Reboot

Please download FarbarServiceScanner and run it on the computer with the issue.


Make sure the following options are checked:
Internet Services
Windows Firewall
System Restore
Security Center/Action Center
Windows Update

Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.

 

___________________-

 

Download tdss killer

http://support.kaspersky.com/downloads/utils/tdsskiller.exe


Right Click it Run As Admin xp users double click . Click on Change parameters Select TDLFS file system

Hit the Scan button Post the LOG In your next reply

Do not change the default options on scan results

 

___________________________________________-
 

 

Download, & save & then run the MS Safety scanner
Run a Full Scan
http://www.microsoft.com/security/scanner/en-us/default.aspx
Post. the result.

The safety scanner log should be called msert.txt
It should be located in the same folder as where you had msert.exe
If not there, then look for it under c:\windows

 

 

 

____________________________________________-

 

Run a scan with Eset. You will need to disable your antivirus during this scan.
http://www.eset.com/us/online-scanner/
Make sure remove found threats and scan archives is checked.
When the scan finish list found threats save to clipboard copy to notepad Post the log here.


Tell me how the machine is running now.



#5 nabu

nabu
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:51 AM

Posted 21 December 2013 - 06:41 AM

Hi,

 

Sorry for the long time but it took a very long time to scan with msert...

I have a couple of questions..

 

- i don't find anymore where to donwload and install log me in from the website..it only ask me to enter the account and no program is started..

i also don't find any log me in in Revo uninstaller..

 

-I did the msert sca, it took about 4 hours, during which avira notified me some viruses and msert found about 5 infections...then no log was opened or created..i just pushed next and i tryied to fix the problem... i searched on c:\windows, on the folder from were i launched it and in other places but no way...

 

I'm now permorfing the eset online scan...

 

Right now i still have the "http://search.softonic.com" redirection in chrome..


Edited by nabu, 21 December 2013 - 06:42 AM.


#6 nabu

nabu
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:51 AM

Posted 21 December 2013 - 12:07 PM

Farbar Service Scanner Version: 05-12-2013
Ran by IreAle (administrator) on 19-12-2013 at 22:38:43
Running from "C:\Users\IreAle\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
 
 
**** End of log ****
 
 
 
 
22:44:48.0738 0x04f8  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
22:45:03.0021 0x04f8  ============================================================
22:45:03.0021 0x04f8  Current date / time: 2013/12/19 22:45:03.0021
22:45:03.0022 0x04f8  SystemInfo:
22:45:03.0022 0x04f8  
22:45:03.0022 0x04f8  OS Version: 6.1.7601 ServicePack: 1.0
22:45:03.0022 0x04f8  Product type: Workstation
22:45:03.0022 0x04f8  ComputerName: NOWEHERELAND
22:45:03.0022 0x04f8  UserName: IreAle
22:45:03.0022 0x04f8  Windows directory: C:\Windows
22:45:03.0022 0x04f8  System windows directory: C:\Windows
22:45:03.0022 0x04f8  Running under WOW64
22:45:03.0022 0x04f8  Processor architecture: Intel x64
22:45:03.0022 0x04f8  Number of processors: 4
22:45:03.0022 0x04f8  Page size: 0x1000
22:45:03.0022 0x04f8  Boot type: Normal boot
22:45:03.0022 0x04f8  ============================================================
22:45:03.0164 0x04f8  KLMD registered as C:\Windows\system32\drivers\66174145.sys
22:45:03.0511 0x04f8  System UUID: {08727C91-A4D5-499D-9595-BC2B51B3B2DB}
22:45:03.0983 0x04f8  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:45:03.0989 0x04f8  ============================================================
22:45:03.0989 0x04f8  \Device\Harddisk0\DR0:
22:45:03.0989 0x04f8  MBR partitions:
22:45:03.0989 0x04f8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
22:45:03.0989 0x04f8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x7FEFAB8
22:45:04.0000 0x04f8  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xBBE8CE8, BlocksNum 0x2B62B47E
22:45:04.0020 0x04f8  \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0xA84F000, BlocksNum 0x1399800
22:45:04.0020 0x04f8  \Device\Harddisk0\DR0\Partition5: MBR, Type 0x7, StartLBA 0x37215000, BlocksNum 0x313D000
22:45:04.0021 0x04f8  ============================================================
22:45:04.0060 0x04f8  C: <-> \Device\Harddisk0\DR0\Partition2
22:45:04.0098 0x04f8  D: <-> \Device\Harddisk0\DR0\Partition5
22:45:04.0247 0x04f8  F: <-> \Device\Harddisk0\DR0\Partition3
22:45:04.0276 0x04f8  G: <-> \Device\Harddisk0\DR0\Partition4
22:45:04.0276 0x04f8  ============================================================
22:45:04.0276 0x04f8  Initialize success
22:45:04.0276 0x04f8  ============================================================
22:45:48.0589 0x13b4  ============================================================
22:45:48.0589 0x13b4  Scan started
22:45:48.0589 0x13b4  Mode: Manual; TDLFS; 
22:45:48.0589 0x13b4  ============================================================
22:45:48.0589 0x13b4  KSN ping started
22:45:51.0146 0x13b4  KSN ping finished: true
22:45:51.0529 0x13b4  ================ Scan system memory ========================
22:45:51.0529 0x13b4  System memory - ok
22:45:51.0529 0x13b4  ================ Scan services =============================
22:45:51.0688 0x13b4  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
22:45:51.0701 0x13b4  1394ohci - ok
22:45:51.0741 0x13b4  [ 5C368F4B04ED2A923E6AFCA2D37BAFF5, C3CC58D636B18DF77C4C4B384AD1DE78418716A0606E564DBC63782D5EA02905 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
22:45:51.0747 0x13b4  Accelerometer - ok
22:45:51.0843 0x13b4  [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
22:45:51.0846 0x13b4  ACDaemon - ok
22:45:51.0885 0x13b4  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
22:45:51.0891 0x13b4  ACPI - ok
22:45:51.0910 0x13b4  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
22:45:51.0915 0x13b4  AcpiPmi - ok
22:45:51.0970 0x13b4  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
22:45:51.0988 0x13b4  adp94xx - ok
22:45:52.0016 0x13b4  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
22:45:52.0031 0x13b4  adpahci - ok
22:45:52.0054 0x13b4  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
22:45:52.0065 0x13b4  adpu320 - ok
22:45:52.0089 0x13b4  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:45:52.0091 0x13b4  AeLookupSvc - ok
22:45:52.0158 0x13b4  [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] AESTFilters     C:\Program Files\IDT\WDM\AESTSr64.exe
22:45:52.0160 0x13b4  AESTFilters - ok
22:45:52.0210 0x13b4  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
22:45:52.0219 0x13b4  AFD - ok
22:45:52.0251 0x13b4  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
22:45:52.0258 0x13b4  agp440 - ok
22:45:52.0282 0x13b4  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
22:45:52.0284 0x13b4  ALG - ok
22:45:52.0327 0x13b4  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:45:52.0331 0x13b4  aliide - ok
22:45:52.0367 0x13b4  [ CC180E1E0700995340C838BC1A729577, F04A7CDAD0ED6C3E8437F20D12219AEBA49F818A8065E1D2114E16E632F6E09D ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:45:52.0371 0x13b4  AMD External Events Utility - ok
22:45:52.0375 0x13b4  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
22:45:52.0380 0x13b4  amdide - ok
22:45:52.0402 0x13b4  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
22:45:52.0410 0x13b4  AmdK8 - ok
22:45:52.0609 0x13b4  [ 8155EA1864D1FA8B168C46C41ED97A76, 5161C92B87FA283288649DA9AD5BADEF9959A4AB1B82D3D0D798E2330E56DB14 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
22:45:52.0769 0x13b4  amdkmdag - ok
22:45:52.0829 0x13b4  [ 4841C7AF2BAC05AE23955D65B4336446, 1D3619FC366DD7675629B9C602641C7D68EE984BCC9654592F1D0070B44724E2 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
22:45:52.0839 0x13b4  amdkmdap - ok
22:45:52.0853 0x13b4  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
22:45:52.0860 0x13b4  AmdPPM - ok
22:45:52.0892 0x13b4  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:45:52.0900 0x13b4  amdsata - ok
22:45:52.0924 0x13b4  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
22:45:52.0934 0x13b4  amdsbs - ok
22:45:52.0945 0x13b4  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:45:52.0950 0x13b4  amdxata - ok
22:45:52.0987 0x13b4  [ 37EA167782AF19301AF9C05804948BB2, 6BAD7DB48485C65043BBD5D9376D2D225561506C7780E7D56B4C85D26DFB38FB ] AmUStor         C:\Windows\system32\drivers\AmUStor.SYS
22:45:52.0988 0x13b4  AmUStor - ok
22:45:53.0073 0x13b4  [ FE79366FECD444A16CCA9979134DBEA8, 91D2301E35C89B9FAD5680124EA51DC346159DC78556ACCD935F9B236B9FDCBC ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
22:45:53.0081 0x13b4  AntiVirSchedulerService - ok
22:45:53.0115 0x13b4  [ FDE9C7030FB1E9E2715E113EE6A10F90, 541F278D743C34C6D9940FC1250B90674EB88EC429D481012F27817DAB1B557A ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
22:45:53.0123 0x13b4  AntiVirService - ok
22:45:53.0188 0x13b4  [ 8D69B1551F51E18AE12E01DE6A2050EA, E1BF3E1AB82E90DC32811C934933D761340DAE44B7ACDF3B9C19725465BE3590 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
22:45:53.0207 0x13b4  AntiVirWebService - ok
22:45:53.0262 0x13b4  [ D41231AECFEE88973D56AEC2EE5B962D, BB41C9E436186155E5340780564FC52A36481E474C42965B5BBC57B6C42ADA38 ] APNMCP          C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
22:45:53.0265 0x13b4  APNMCP - ok
22:45:53.0310 0x13b4  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
22:45:53.0316 0x13b4  AppID - ok
22:45:53.0339 0x13b4  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:45:53.0340 0x13b4  AppIDSvc - ok
22:45:53.0379 0x13b4  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
22:45:53.0381 0x13b4  Appinfo - ok
22:45:53.0434 0x13b4  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
22:45:53.0442 0x13b4  arc - ok
22:45:53.0448 0x13b4  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
22:45:53.0456 0x13b4  arcsas - ok
22:45:53.0563 0x13b4  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:45:53.0581 0x13b4  aspnet_state - ok
22:45:53.0608 0x13b4  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:45:53.0613 0x13b4  AsyncMac - ok
22:45:53.0654 0x13b4  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
22:45:53.0658 0x13b4  atapi - ok
22:45:53.0701 0x13b4  [ 50F257E19554421B6891E3F998EDCA90, 32D368632B714864D77C700B1115F4404EAA72C5F734BF6A2B96F48C3935A5D9 ] AthBTPort       C:\Windows\system32\DRIVERS\btath_flt.sys
22:45:53.0702 0x13b4  AthBTPort - ok
22:45:53.0728 0x13b4  [ 4119870B90E1B5E7797D6433D21F9216, 5CDA3748A6C89B1046173F20D857D164F4170A5028370B5BB9843212CEA86C8F ] ATHDFU          C:\Windows\system32\Drivers\AthDfu.sys
22:45:53.0734 0x13b4  ATHDFU - ok
22:45:53.0779 0x13b4  [ 4D643CD9E892E559355B7A77D532BD38, 1B820B0ECDC55C8F090D55B641267A79330684C20C483A66EF148A3F88638B4A ] AtherosSvc      C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
22:45:53.0781 0x13b4  AtherosSvc - ok
22:45:53.0905 0x13b4  [ B4421D8CDADC441F76BA39532A3E3414, 4C7C14C99E2095012A85672C824E21CF2FC152BCC37A1B25BF3189D0F6A06ED3 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
22:45:53.0995 0x13b4  athr - ok
22:45:54.0048 0x13b4  [ 2D648572BA9A610952FCAFBA1E119C2D, 4CD7E7D3C878DEF8CC18A925EAB1E0E8E8893BE99DA1E1F78FE9AD12EF1C48BC ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
22:45:54.0057 0x13b4  AtiHdmiService - ok
22:45:54.0104 0x13b4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:45:54.0119 0x13b4  AudioEndpointBuilder - ok
22:45:54.0138 0x13b4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:45:54.0150 0x13b4  AudioSrv - ok
22:45:54.0181 0x13b4  [ 7806BFCD1D7FA5EC23F7324D4EAFD25B, 4EDFD9DE520728AF6578BED0054ED6A4976A7F020F3329EA6681D6E361D9DB2D ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
22:45:54.0189 0x13b4  avgntflt - ok
22:45:54.0214 0x13b4  [ C3A58DBD18786C338126D30BF8C33D72, 4DF4D37AB5139548C2DA4B4C8D6B933A7F4ED001BCA089EFBC8C57EEDE8785A6 ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
22:45:54.0223 0x13b4  avipbb - ok
22:45:54.0238 0x13b4  [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
22:45:54.0243 0x13b4  avkmgr - ok
22:45:54.0270 0x13b4  [ 3DE0EBA0BF4771C897F544CBF7CB8973, 6A032503561414EDCE0D123947AECACBAFE4BBF7D9849BA2DF010E28235973AB ] avnetflt        C:\Windows\system32\DRIVERS\avnetflt.sys
22:45:54.0277 0x13b4  avnetflt - ok
22:45:54.0321 0x13b4  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:45:54.0324 0x13b4  AxInstSV - ok
22:45:54.0369 0x13b4  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
22:45:54.0387 0x13b4  b06bdrv - ok
22:45:54.0416 0x13b4  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:45:54.0429 0x13b4  b57nd60a - ok
22:45:54.0495 0x13b4  [ 9E84A931DBEE0292E38ED672F6293A99, 2945EAF0AC091709E0C5508B45EC343EDE507AC2B08A2D7D64F286D38424CBC4 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
22:45:54.0533 0x13b4  BCM43XX - ok
22:45:54.0565 0x13b4  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:45:54.0567 0x13b4  BDESVC - ok
22:45:54.0597 0x13b4  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:45:54.0600 0x13b4  Beep - ok
22:45:54.0658 0x13b4  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
22:45:54.0670 0x13b4  BFE - ok
22:45:54.0748 0x13b4  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
22:45:54.0765 0x13b4  BITS - ok
22:45:54.0789 0x13b4  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
22:45:54.0795 0x13b4  blbdrive - ok
22:45:54.0817 0x13b4  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:45:54.0824 0x13b4  bowser - ok
22:45:54.0844 0x13b4  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:45:54.0848 0x13b4  BrFiltLo - ok
22:45:54.0862 0x13b4  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:45:54.0866 0x13b4  BrFiltUp - ok
22:45:54.0879 0x13b4  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
22:45:54.0886 0x13b4  BridgeMP - ok
22:45:54.0930 0x13b4  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
22:45:54.0933 0x13b4  Browser - ok
22:45:54.0953 0x13b4  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:45:54.0966 0x13b4  Brserid - ok
22:45:54.0981 0x13b4  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:45:54.0986 0x13b4  BrSerWdm - ok
22:45:54.0997 0x13b4  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:45:55.0001 0x13b4  BrUsbMdm - ok
22:45:55.0005 0x13b4  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:45:55.0008 0x13b4  BrUsbSer - ok
22:45:55.0043 0x13b4  [ B3BCD755FA9A359D10208CC9F09847CC, 8DE11815A2C76051DFF0F68BC8CF38CADD7BCA3A75EED4CC03B38DEB9F658296 ] BTATH_A2DP      C:\Windows\system32\drivers\btath_a2dp.sys
22:45:55.0048 0x13b4  BTATH_A2DP - ok
22:45:55.0063 0x13b4  [ 9BBBA9D6DBDEFC8A6542BC7A6EBAF710, EE6932310F97F9DC07F8EC66B3939BA73FF8B7C7B9D84CE9852C85B770681A60 ] btath_avdt      C:\Windows\system32\drivers\btath_avdt.sys
22:45:55.0065 0x13b4  btath_avdt - ok
22:45:55.0102 0x13b4  [ D838DD1BCB328EFCFAD7A52DE9E3CAFD, A364C50240069D7606119E4FD3BC839F307947F680295C3A68AE1CE42B9A6108 ] BTATH_BUS       C:\Windows\system32\DRIVERS\btath_bus.sys
22:45:55.0103 0x13b4  BTATH_BUS - ok
22:45:55.0129 0x13b4  [ A441B800E04CF8443FAF519207563ABB, AAA865453E000B38D4DCCB435731F3843394FFA224F577B88DBBB31256F1BC39 ] BTATH_HCRP      C:\Windows\system32\DRIVERS\btath_hcrp.sys
22:45:55.0133 0x13b4  BTATH_HCRP - ok
22:45:55.0144 0x13b4  [ B16F8429A35BBA2A8EF9DB2E08675B97, B38952519A8AC2E0A211F685CB4AC453AA2885AA0DA39DBF92CE61FE649BC309 ] BTATH_LWFLT     C:\Windows\system32\DRIVERS\btath_lwflt.sys
22:45:55.0146 0x13b4  BTATH_LWFLT - ok
22:45:55.0166 0x13b4  [ C24231C6BDFE21735930084A22089AAB, DF5104AC26A8D3E1C204D479F32204FE66B225DBA7EFDAC7149A02D0B5CEB714 ] BTATH_RCP       C:\Windows\system32\DRIVERS\btath_rcp.sys
22:45:55.0172 0x13b4  BTATH_RCP - ok
22:45:55.0206 0x13b4  [ 6C4911B6FB92984FBEF775674795CFA2, BA0BA9F482D5257BBEAF39F1F7251EFE9ACB8C32D8B070F7820202C9012E24FD ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
22:45:55.0217 0x13b4  BtFilter - ok
22:45:55.0256 0x13b4  [ 07DCB3C254D584E3949FE2C0EE3963F2, DDA9E174D23E41676094C135ED6C5B6D2C44C693172A43E5BF90A1C3F4359A64 ] BthAudioHF      C:\Windows\system32\DRIVERS\BthAudioHF.sys
22:45:55.0262 0x13b4  BthAudioHF - ok
22:45:55.0275 0x13b4  [ 832B121E4532919CC49F2438F1DCAA21, 70FFDD505A64D3CF03220D6422EDD47CA2E0DF711BBF2ED057F32A688CB2E2E8 ] BthAvrcp        C:\Windows\system32\DRIVERS\BthAvrcp.sys
22:45:55.0281 0x13b4  BthAvrcp - ok
22:45:55.0323 0x13b4  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
22:45:55.0324 0x13b4  BthEnum - ok
22:45:55.0336 0x13b4  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
22:45:55.0343 0x13b4  BTHMODEM - ok
22:45:55.0372 0x13b4  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
22:45:55.0374 0x13b4  BthPan - ok
22:45:55.0400 0x13b4  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
22:45:55.0412 0x13b4  BTHPORT - ok
22:45:55.0444 0x13b4  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
22:45:55.0446 0x13b4  bthserv - ok
22:45:55.0460 0x13b4  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
22:45:55.0462 0x13b4  BTHUSB - ok
22:45:55.0488 0x13b4  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:45:55.0496 0x13b4  cdfs - ok
22:45:55.0521 0x13b4  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\drivers\cdrom.sys
22:45:55.0530 0x13b4  cdrom - ok
22:45:55.0569 0x13b4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
22:45:55.0571 0x13b4  CertPropSvc - ok
22:45:55.0587 0x13b4  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
22:45:55.0593 0x13b4  circlass - ok
22:45:55.0616 0x13b4  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
22:45:55.0624 0x13b4  CLFS - ok
22:45:55.0670 0x13b4  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:45:55.0672 0x13b4  clr_optimization_v2.0.50727_32 - ok
22:45:55.0708 0x13b4  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:45:55.0710 0x13b4  clr_optimization_v2.0.50727_64 - ok
22:45:55.0794 0x13b4  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:45:55.0846 0x13b4  clr_optimization_v4.0.30319_32 - ok
22:45:55.0873 0x13b4  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:45:55.0878 0x13b4  clr_optimization_v4.0.30319_64 - ok
22:45:55.0907 0x13b4  [ 9573E8C7C3B3D1625FD941841FD0859C, FDAB4FA6F6C249D6BC7BA73DBB70CBD99CA62BB4989A73A3A01929FC8DF26D62 ] clwvd           C:\Windows\system32\DRIVERS\clwvd.sys
22:45:55.0912 0x13b4  clwvd - ok
22:45:55.0930 0x13b4  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
22:45:55.0934 0x13b4  CmBatt - ok
22:45:55.0944 0x13b4  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:45:55.0949 0x13b4  cmdide - ok
22:45:55.0993 0x13b4  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
22:45:56.0015 0x13b4  CNG - ok
22:45:56.0042 0x13b4  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
22:45:56.0047 0x13b4  Compbatt - ok
22:45:56.0076 0x13b4  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
22:45:56.0082 0x13b4  CompositeBus - ok
22:45:56.0091 0x13b4  COMSysApp - ok
22:45:56.0123 0x13b4  [ 262969A3FAB32B9E17E63E2D17A57744, 1EE59EB28688E73D10838C66E0D8E011C8DF45B6B43A4AC5D0B75795CA3EB512 ] cpuz135         C:\Windows\system32\drivers\cpuz135_x64.sys
22:45:56.0127 0x13b4  cpuz135 - ok
22:45:56.0137 0x13b4  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
22:45:56.0143 0x13b4  crcdisk - ok
22:45:56.0186 0x13b4  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:45:56.0189 0x13b4  CryptSvc - ok
22:45:56.0213 0x13b4  [ DF07C6D98BA7F81D0571E366B1CD6672, 1E544237ACB354F67EAA4D805EB5D82F25CBD6F0D6D886DAFA04FC3F168A2FD3 ] csr_a2dp        C:\Windows\system32\drivers\bthav.sys
22:45:56.0220 0x13b4  csr_a2dp - ok
22:45:56.0266 0x13b4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:45:56.0276 0x13b4  DcomLaunch - ok
22:45:56.0303 0x13b4  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
22:45:56.0309 0x13b4  defragsvc - ok
22:45:56.0346 0x13b4  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:45:56.0354 0x13b4  DfsC - ok
22:45:56.0391 0x13b4  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:45:56.0397 0x13b4  Dhcp - ok
22:45:56.0417 0x13b4  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
22:45:56.0418 0x13b4  discache - ok
22:45:56.0452 0x13b4  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
22:45:56.0459 0x13b4  Disk - ok
22:45:56.0490 0x13b4  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:45:56.0494 0x13b4  Dnscache - ok
22:45:56.0529 0x13b4  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:45:56.0534 0x13b4  dot3svc - ok
22:45:56.0565 0x13b4  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
22:45:56.0569 0x13b4  DPS - ok
22:45:56.0601 0x13b4  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:45:56.0601 0x13b4  drmkaud - ok
22:45:56.0632 0x13b4  [ D3D64CF7B2BCEAA34A270F45A3FFFB36, 4374D4FB081A004C610707669F7817C55F247D1EB3DDA012CCDF080FF39BFAD2 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
22:45:56.0637 0x13b4  dtsoftbus01 - ok
22:45:56.0662 0x13b4  [ A298AEA9FCA253E7EFF040A08C7C6376, 3A0B0C375D5C029ACF4BAF7881094D447E20E76C83049DBAD0F5FDB7802A7CDC ] DVMIO           C:\Windows\system32\DRIVERS\dvmio.sys
22:45:56.0667 0x13b4  DVMIO - ok
22:45:56.0715 0x13b4  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:45:56.0738 0x13b4  DXGKrnl - ok
22:45:56.0767 0x13b4  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
22:45:56.0769 0x13b4  EapHost - ok
22:45:56.0872 0x13b4  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
22:45:56.0952 0x13b4  ebdrv - ok
22:45:56.0990 0x13b4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
22:45:56.0992 0x13b4  EFS - ok
22:45:57.0069 0x13b4  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:45:57.0084 0x13b4  ehRecvr - ok
22:45:57.0113 0x13b4  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
22:45:57.0115 0x13b4  ehSched - ok
22:45:57.0159 0x13b4  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
22:45:57.0177 0x13b4  elxstor - ok
22:45:57.0200 0x13b4  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:45:57.0204 0x13b4  ErrDev - ok
22:45:57.0287 0x13b4  [ 93C0E75E1FB088403F5B9CECFFDFF4D3, 8DC37BF14826002D9CA7E84F36AA25B4C634ADD6F8D03A1EA35760EA85E4645D ] ESProtectionDriver C:\Program Files\Malwarebytes Anti-Exploit\MBAE.sys
22:45:57.0293 0x13b4  ESProtectionDriver - ok
22:45:57.0332 0x13b4  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
22:45:57.0340 0x13b4  EventSystem - ok
22:45:57.0354 0x13b4  ewusbnet - ok
22:45:57.0373 0x13b4  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
22:45:57.0383 0x13b4  exfat - ok
22:45:57.0393 0x13b4  ezSharedSvc - ok
22:45:57.0406 0x13b4  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:45:57.0410 0x13b4  fastfat - ok
22:45:57.0463 0x13b4  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
22:45:57.0478 0x13b4  Fax - ok
22:45:57.0500 0x13b4  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
22:45:57.0505 0x13b4  fdc - ok
22:45:57.0524 0x13b4  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
22:45:57.0525 0x13b4  fdPHost - ok
22:45:57.0533 0x13b4  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:45:57.0535 0x13b4  FDResPub - ok
22:45:57.0551 0x13b4  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:45:57.0558 0x13b4  FileInfo - ok
22:45:57.0571 0x13b4  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:45:57.0576 0x13b4  Filetrace - ok
22:45:57.0580 0x13b4  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
22:45:57.0585 0x13b4  flpydisk - ok
22:45:57.0626 0x13b4  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:45:57.0640 0x13b4  FltMgr - ok
22:45:57.0700 0x13b4  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
22:45:57.0726 0x13b4  FontCache - ok
22:45:57.0777 0x13b4  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:45:57.0778 0x13b4  FontCache3.0.0.0 - ok
22:45:57.0856 0x13b4  [ 37C2FF67A2565286F1C1C1072BE74678, 788C427E4A0751D7F5F0FF3FB6422AD2FDA0E98C1248C0D74621704BFD7F3A34 ] Freemake Improver C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
22:45:57.0857 0x13b4  Freemake Improver - ok
22:45:57.0891 0x13b4  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:45:57.0898 0x13b4  FsDepends - ok
22:45:57.0933 0x13b4  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:45:57.0937 0x13b4  Fs_Rec - ok
22:45:57.0966 0x13b4  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:45:57.0970 0x13b4  fvevol - ok
22:45:57.0994 0x13b4  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
22:45:58.0001 0x13b4  gagp30kx - ok
22:45:58.0058 0x13b4  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
22:45:58.0076 0x13b4  gpsvc - ok
22:45:58.0161 0x13b4  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:45:58.0164 0x13b4  gupdate - ok
22:45:58.0170 0x13b4  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:45:58.0172 0x13b4  gupdatem - ok
22:45:58.0197 0x13b4  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:45:58.0199 0x13b4  gusvc - ok
22:45:58.0221 0x13b4  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:45:58.0227 0x13b4  hcw85cir - ok
22:45:58.0261 0x13b4  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:45:58.0277 0x13b4  HdAudAddService - ok
22:45:58.0306 0x13b4  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
22:45:58.0309 0x13b4  HDAudBus - ok
22:45:58.0345 0x13b4  [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
22:45:58.0351 0x13b4  HECIx64 - ok
22:45:58.0399 0x13b4  [ EE8C05F926521A0E24EDAF40F45D01E6, 70398043773455654F3A6AE982DF05779D67A55FB634D70702BFEA1EA303A422 ] HFGService      C:\Windows\System32\HFGService.dll
22:45:58.0410 0x13b4  HFGService - ok
22:45:58.0429 0x13b4  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
22:45:58.0434 0x13b4  HidBatt - ok
22:45:58.0449 0x13b4  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
22:45:58.0456 0x13b4  HidBth - ok
22:45:58.0469 0x13b4  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
22:45:58.0476 0x13b4  HidIr - ok
22:45:58.0490 0x13b4  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
22:45:58.0492 0x13b4  hidserv - ok
22:45:58.0525 0x13b4  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:45:58.0531 0x13b4  HidUsb - ok
22:45:58.0560 0x13b4  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:45:58.0563 0x13b4  hkmsvc - ok
22:45:58.0607 0x13b4  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:45:58.0613 0x13b4  HomeGroupListener - ok
22:45:58.0653 0x13b4  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:45:58.0657 0x13b4  HomeGroupProvider - ok
22:45:58.0725 0x13b4  [ 13BB1114451C63BFB41BA7DAA4D70A29, A07D27DCD1D5F333973DDF7E91BF902307088C48696EE1D1970A0152A507231B ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
22:45:58.0726 0x13b4  HP Support Assistant Service - ok
22:45:58.0795 0x13b4  [ 3A09322A8AA8B0C79036686A0EBE7B4C, A110ECBBD9A0EDAA134B95F9FB3428F33F7629480ABCF36F58891837EE1B04C0 ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
22:45:58.0797 0x13b4  HP Wireless Assistant Service - ok
22:45:58.0831 0x13b4  [ C958976C7DAAF47084A33EBBC6E28B84, AAC98901E25911EA6FF65E95007CE2F75B31145ACFADF92CBA48BCAE54CD96EE ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
22:45:58.0833 0x13b4  HPDrvMntSvc.exe - ok
22:45:58.0870 0x13b4  [ 4E0BEC0F78096FFD6D3314B497FC49D3, 15B545815D0C80102963FFF13B6643CC9A74717137C1CBA45345B18912E72DB6 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
22:45:58.0875 0x13b4  hpdskflt - ok
22:45:58.0916 0x13b4  [ 09FBD4C4DB2FD84B9AB1C5BFDCC95559, FCC28D44C1E3F6FF65C596CDA9BF09C03D4EF3EEFCDB628954A07B0D3E182F3B ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
22:45:58.0930 0x13b4  hpqwmiex - ok
22:45:58.0958 0x13b4  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
22:45:58.0966 0x13b4  HpSAMD - ok
22:45:58.0982 0x13b4  [ FC7C13B5A9E9BE23B7AE72BBC7FDB278, E85A7BF1CFE52BA7D663A1ED48A4F8874EFBDDF48979138F7E3E24817705B6A1 ] hpsrv           C:\Windows\system32\Hpservice.exe
22:45:58.0984 0x13b4  hpsrv - ok
22:45:59.0041 0x13b4  [ 5AA89E152634954E15E9DB265C6A8557, 62ECC2B15AB920AD76FE3B8069F599C8354125BEECAF89B3475C37940760157F ] HPWMISVC        C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
22:45:59.0042 0x13b4  HPWMISVC - ok
22:45:59.0092 0x13b4  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:45:59.0106 0x13b4  HTTP - ok
22:45:59.0119 0x13b4  hwdatacard - ok
22:45:59.0156 0x13b4  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:45:59.0157 0x13b4  hwpolicy - ok
22:45:59.0162 0x13b4  hwusbdev - ok
22:45:59.0188 0x13b4  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
22:45:59.0196 0x13b4  i8042prt - ok
22:45:59.0227 0x13b4  [ ABBF174CB394F5C437410A788B7E404A, 95554F675329E7062F0936E4E902FEFF2456CAD95D6C9B60DCC213EF6E4C62D8 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
22:45:59.0236 0x13b4  iaStor - ok
22:45:59.0276 0x13b4  [ 31A0E93CDF29007D6C6FFFB632F375ED, CA464928E9868B9A09C324DBBC8DA41A01C5C486B43578FC695250D523DE555B ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
22:45:59.0276 0x13b4  IAStorDataMgrSvc - ok
22:45:59.0316 0x13b4  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:45:59.0332 0x13b4  iaStorV - ok
22:45:59.0400 0x13b4  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
22:45:59.0401 0x13b4  IDriverT - ok
22:45:59.0463 0x13b4  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:45:59.0482 0x13b4  idsvc - ok
22:45:59.0493 0x13b4  IEEtwCollectorService - ok
22:45:59.0781 0x13b4  [ FBACBED7A37B3223822470FF1D8EA00F, 45E4A26E95F37DEF58BD8C49D70C0F2332E646878FEF35B4AF2DCED7451169DD ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
22:46:00.0077 0x13b4  igfx - ok
22:46:00.0134 0x13b4  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
22:46:00.0140 0x13b4  iirsp - ok
22:46:00.0187 0x13b4  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
22:46:00.0205 0x13b4  IKEEXT - ok
22:46:00.0227 0x13b4  [ DD587A55390ED2295BCE6D36AD567DA9, AEB7DCB8EF89BEE8D9649A05FC482B1E4E3F44243D57A2577C862EB69166C48E ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
22:46:00.0236 0x13b4  Impcd - ok
22:46:00.0264 0x13b4  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
22:46:00.0269 0x13b4  intelide - ok
22:46:00.0560 0x13b4  [ FBACBED7A37B3223822470FF1D8EA00F, 45E4A26E95F37DEF58BD8C49D70C0F2332E646878FEF35B4AF2DCED7451169DD ] intelkmd        C:\Windows\system32\DRIVERS\igdpmd64.sys
22:46:00.0866 0x13b4  intelkmd - ok
22:46:00.0918 0x13b4  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
22:46:00.0919 0x13b4  intelppm - ok
22:46:00.0943 0x13b4  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:46:00.0945 0x13b4  IPBusEnum - ok
22:46:00.0977 0x13b4  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:46:00.0985 0x13b4  IpFilterDriver - ok
22:46:01.0048 0x13b4  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:46:01.0061 0x13b4  iphlpsvc - ok
22:46:01.0091 0x13b4  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
22:46:01.0099 0x13b4  IPMIDRV - ok
22:46:01.0121 0x13b4  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:46:01.0124 0x13b4  IPNAT - ok
22:46:01.0146 0x13b4  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:46:01.0151 0x13b4  IRENUM - ok
22:46:01.0178 0x13b4  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:46:01.0184 0x13b4  isapnp - ok
22:46:01.0203 0x13b4  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
22:46:01.0217 0x13b4  iScsiPrt - ok
22:46:01.0238 0x13b4  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
22:46:01.0244 0x13b4  kbdclass - ok
22:46:01.0258 0x13b4  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
22:46:01.0263 0x13b4  kbdhid - ok
22:46:01.0273 0x13b4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
22:46:01.0275 0x13b4  KeyIso - ok
22:46:01.0308 0x13b4  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:46:01.0316 0x13b4  KSecDD - ok
22:46:01.0327 0x13b4  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:46:01.0337 0x13b4  KSecPkg - ok
22:46:01.0345 0x13b4  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:46:01.0349 0x13b4  ksthunk - ok
22:46:01.0391 0x13b4  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:46:01.0399 0x13b4  KtmRm - ok
22:46:01.0455 0x13b4  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
22:46:01.0461 0x13b4  LanmanServer - ok
22:46:01.0487 0x13b4  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:46:01.0491 0x13b4  LanmanWorkstation - ok
22:46:01.0547 0x13b4  [ 7550D101BF49FDB1F92666A233EE36C4, 281EE6C9AAE0A3FDA8D0FE7CD6BA55C481B8719799A526601FEA0542345CAF18 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
22:46:01.0548 0x13b4  LightScribeService - ok
22:46:01.0585 0x13b4  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:46:01.0591 0x13b4  lltdio - ok
22:46:01.0609 0x13b4  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:46:01.0616 0x13b4  lltdsvc - ok
22:46:01.0639 0x13b4  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:46:01.0640 0x13b4  lmhosts - ok
22:46:01.0680 0x13b4  LMIInfo - ok
22:46:01.0695 0x13b4  [ 413ECDCFAD9A82804D3674C8D7EEC24E, C8A65ED0B079D16D1A4449E840B4A9475388FBE61B5A84DFEFC35F4FB3B9A9B1 ] lmimirr         C:\Windows\system32\DRIVERS\lmimirr.sys
22:46:01.0699 0x13b4  lmimirr - ok
22:46:01.0738 0x13b4  LMIRfsClientNP - ok
22:46:01.0772 0x13b4  [ C57D3FAA50E6F395759FFB7C709BD944, 7B0B86F0E710934D57801E1F7BB048AD878F871147B2A16BBF81219A4022B499 ] LMIRfsDriver    C:\Windows\system32\drivers\LMIRfsDriver.sys
22:46:01.0779 0x13b4  LMIRfsDriver - ok
22:46:01.0842 0x13b4  [ 6D515466AB8BFE61184092B635AE6EB4, 86CEF8700AF4D848DCF5DF217A7588C04F7F0BCEEB10B971E7C0368D8F8E1FAC ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:46:01.0848 0x13b4  LMS - ok
22:46:01.0871 0x13b4  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
22:46:01.0879 0x13b4  LSI_FC - ok
22:46:01.0897 0x13b4  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
22:46:01.0905 0x13b4  LSI_SAS - ok
22:46:01.0918 0x13b4  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:46:01.0925 0x13b4  LSI_SAS2 - ok
22:46:01.0936 0x13b4  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:46:01.0944 0x13b4  LSI_SCSI - ok
22:46:01.0960 0x13b4  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
22:46:01.0968 0x13b4  luafv - ok
22:46:01.0980 0x13b4  massfilter - ok
22:46:02.0014 0x13b4  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:46:02.0016 0x13b4  Mcx2Svc - ok
22:46:02.0028 0x13b4  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
22:46:02.0034 0x13b4  megasas - ok
22:46:02.0056 0x13b4  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
22:46:02.0069 0x13b4  MegaSR - ok
22:46:02.0090 0x13b4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
22:46:02.0092 0x13b4  MMCSS - ok
22:46:02.0101 0x13b4  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
22:46:02.0102 0x13b4  Modem - ok
22:46:02.0112 0x13b4  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:46:02.0113 0x13b4  monitor - ok
22:46:02.0135 0x13b4  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
22:46:02.0142 0x13b4  mouclass - ok
22:46:02.0174 0x13b4  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:46:02.0179 0x13b4  mouhid - ok
22:46:02.0204 0x13b4  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:46:02.0206 0x13b4  mountmgr - ok
22:46:02.0257 0x13b4  [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:46:02.0259 0x13b4  MozillaMaintenance - ok
22:46:02.0280 0x13b4  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:46:02.0291 0x13b4  mpio - ok
22:46:02.0309 0x13b4  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:46:02.0311 0x13b4  mpsdrv - ok
22:46:02.0380 0x13b4  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:46:02.0395 0x13b4  MpsSvc - ok
22:46:02.0426 0x13b4  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:46:02.0435 0x13b4  MRxDAV - ok
22:46:02.0461 0x13b4  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:46:02.0471 0x13b4  mrxsmb - ok
22:46:02.0495 0x13b4  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:46:02.0508 0x13b4  mrxsmb10 - ok
22:46:02.0518 0x13b4  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:46:02.0527 0x13b4  mrxsmb20 - ok
22:46:02.0563 0x13b4  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:46:02.0568 0x13b4  msahci - ok
22:46:02.0593 0x13b4  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:46:02.0602 0x13b4  msdsm - ok
22:46:02.0620 0x13b4  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
22:46:02.0623 0x13b4  MSDTC - ok
22:46:02.0651 0x13b4  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:46:02.0655 0x13b4  Msfs - ok
22:46:02.0677 0x13b4  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:46:02.0680 0x13b4  mshidkmdf - ok
22:46:02.0698 0x13b4  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:46:02.0703 0x13b4  msisadrv - ok
22:46:02.0733 0x13b4  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:46:02.0736 0x13b4  MSiSCSI - ok
22:46:02.0741 0x13b4  msiserver - ok
22:46:02.0758 0x13b4  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:46:02.0759 0x13b4  MSKSSRV - ok
22:46:02.0770 0x13b4  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:46:02.0771 0x13b4  MSPCLOCK - ok
22:46:02.0778 0x13b4  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:46:02.0779 0x13b4  MSPQM - ok
22:46:02.0813 0x13b4  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:46:02.0827 0x13b4  MsRPC - ok
22:46:02.0853 0x13b4  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
22:46:02.0855 0x13b4  mssmbios - ok
22:46:02.0865 0x13b4  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:46:02.0866 0x13b4  MSTEE - ok
22:46:02.0874 0x13b4  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
22:46:02.0878 0x13b4  MTConfig - ok
22:46:02.0902 0x13b4  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
22:46:02.0909 0x13b4  Mup - ok
22:46:02.0967 0x13b4  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
22:46:02.0978 0x13b4  napagent - ok
22:46:03.0011 0x13b4  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:46:03.0026 0x13b4  NativeWifiP - ok
22:46:03.0090 0x13b4  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:46:03.0106 0x13b4  NDIS - ok
22:46:03.0133 0x13b4  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:46:03.0138 0x13b4  NdisCap - ok
22:46:03.0158 0x13b4  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:46:03.0163 0x13b4  NdisTapi - ok
22:46:03.0191 0x13b4  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:46:03.0198 0x13b4  Ndisuio - ok
22:46:03.0209 0x13b4  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:46:03.0220 0x13b4  NdisWan - ok
22:46:03.0250 0x13b4  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:46:03.0256 0x13b4  NDProxy - ok
22:46:03.0277 0x13b4  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:46:03.0282 0x13b4  NetBIOS - ok
22:46:03.0314 0x13b4  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:46:03.0319 0x13b4  NetBT - ok
22:46:03.0332 0x13b4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
22:46:03.0333 0x13b4  Netlogon - ok
22:46:03.0375 0x13b4  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
22:46:03.0383 0x13b4  Netman - ok
22:46:03.0426 0x13b4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:46:03.0443 0x13b4  NetMsmqActivator - ok
22:46:03.0449 0x13b4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:46:03.0452 0x13b4  NetPipeActivator - ok
22:46:03.0480 0x13b4  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
22:46:03.0490 0x13b4  netprofm - ok
22:46:03.0496 0x13b4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:46:03.0499 0x13b4  NetTcpActivator - ok
22:46:03.0505 0x13b4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:46:03.0507 0x13b4  NetTcpPortSharing - ok
22:46:03.0683 0x13b4  [ 64428DFDAF6E88366CB51F45A79C5F69, 31187D38C1AB52120A3CB7AC3CE47ED9682AC37B0F06B9A9610C0065DD4E7B13 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
22:46:03.0806 0x13b4  netw5v64 - ok
22:46:03.0835 0x13b4  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
22:46:03.0841 0x13b4  nfrd960 - ok
22:46:03.0857 0x13b4  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:46:03.0864 0x13b4  NlaSvc - ok
22:46:03.0881 0x13b4  [ 907B5E1E4A592E5EDC5E4CCBDE4863C2, 7A3FA5B779CBBED46CA81328951B71352E4FC60153A91965877834EC7C6F0074 ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
22:46:03.0886 0x13b4  nmwcd - ok
22:46:03.0910 0x13b4  [ 41C1AC1F3613435EB32D67BCB80A5FA5, 93A313BC4A7FA2FC3372CFBF2D76F417007B4A82455092724D3B0B6FA5A88F23 ] nmwcdc          C:\Windows\system32\drivers\ccdcmbox64.sys
22:46:03.0916 0x13b4  nmwcdc - ok
22:46:03.0929 0x13b4  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:46:03.0934 0x13b4  Npfs - ok
22:46:03.0957 0x13b4  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
22:46:03.0958 0x13b4  nsi - ok
22:46:03.0972 0x13b4  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:46:03.0973 0x13b4  nsiproxy - ok
22:46:04.0049 0x13b4  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:46:04.0098 0x13b4  Ntfs - ok
22:46:04.0111 0x13b4  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
22:46:04.0114 0x13b4  Null - ok
22:46:04.0148 0x13b4  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:46:04.0157 0x13b4  nvraid - ok
22:46:04.0175 0x13b4  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:46:04.0185 0x13b4  nvstor - ok
22:46:04.0215 0x13b4  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:46:04.0223 0x13b4  nv_agp - ok
22:46:04.0247 0x13b4  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:46:04.0254 0x13b4  ohci1394 - ok
22:46:04.0280 0x13b4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:46:04.0288 0x13b4  p2pimsvc - ok
22:46:04.0313 0x13b4  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
22:46:04.0323 0x13b4  p2psvc - ok
22:46:04.0344 0x13b4  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
22:46:04.0352 0x13b4  Parport - ok
22:46:04.0378 0x13b4  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:46:04.0386 0x13b4  partmgr - ok
22:46:04.0402 0x13b4  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:46:04.0406 0x13b4  PcaSvc - ok
22:46:04.0441 0x13b4  [ BC0018C2D29F655188A0ED3FA94FDB24, BCF7F2CA5E30F569AEB69049BA3C196982C72EA7264CFBA59D7123041BA96E5A ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
22:46:04.0442 0x13b4  pccsmcfd - ok
22:46:04.0470 0x13b4  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
22:46:04.0474 0x13b4  pci - ok
22:46:04.0502 0x13b4  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
22:46:04.0507 0x13b4  pciide - ok
22:46:04.0527 0x13b4  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
22:46:04.0539 0x13b4  pcmcia - ok
22:46:04.0554 0x13b4  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:46:04.0560 0x13b4  pcw - ok
22:46:04.0587 0x13b4  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:46:04.0615 0x13b4  PEAUTH - ok
22:46:04.0699 0x13b4  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:46:04.0700 0x13b4  PerfHost - ok
22:46:04.0769 0x13b4  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
22:46:04.0799 0x13b4  pla - ok
22:46:04.0852 0x13b4  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:46:04.0862 0x13b4  PlugPlay - ok
22:46:04.0888 0x13b4  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:46:04.0890 0x13b4  PNRPAutoReg - ok
22:46:04.0905 0x13b4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:46:04.0912 0x13b4  PNRPsvc - ok
22:46:04.0954 0x13b4  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:46:04.0965 0x13b4  PolicyAgent - ok
22:46:05.0002 0x13b4  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
22:46:05.0006 0x13b4  Power - ok
22:46:05.0039 0x13b4  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:46:05.0048 0x13b4  PptpMiniport - ok
22:46:05.0063 0x13b4  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
22:46:05.0071 0x13b4  Processor - ok
22:46:05.0087 0x13b4  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
22:46:05.0092 0x13b4  ProfSvc - ok
22:46:05.0107 0x13b4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
22:46:05.0108 0x13b4  ProtectedStorage - ok
22:46:05.0130 0x13b4  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:46:05.0133 0x13b4  Psched - ok
22:46:05.0191 0x13b4  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
22:46:05.0232 0x13b4  ql2300 - ok
22:46:05.0245 0x13b4  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
22:46:05.0255 0x13b4  ql40xx - ok
22:46:05.0280 0x13b4  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
22:46:05.0286 0x13b4  QWAVE - ok
22:46:05.0294 0x13b4  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:46:05.0300 0x13b4  QWAVEdrv - ok
22:46:05.0363 0x13b4  [ CB4E105CA08967D3C9B89951598B88E7, D989D6D7C0F00167537B6656FA404D5CC807B37FC6EF4711963832315BCAF4B0 ] RAMDiskVE       C:\Windows\system32\Drivers\RAMDiskVE.sys
22:46:05.0369 0x13b4  RAMDiskVE - ok
22:46:05.0392 0x13b4  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:46:05.0396 0x13b4  RasAcd - ok
22:46:05.0424 0x13b4  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:46:05.0431 0x13b4  RasAgileVpn - ok
22:46:05.0442 0x13b4  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
22:46:05.0445 0x13b4  RasAuto - ok
22:46:05.0478 0x13b4  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:46:05.0487 0x13b4  Rasl2tp - ok
22:46:05.0509 0x13b4  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
22:46:05.0517 0x13b4  RasMan - ok
22:46:05.0529 0x13b4  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:46:05.0537 0x13b4  RasPppoe - ok
22:46:05.0547 0x13b4  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:46:05.0554 0x13b4  RasSstp - ok
22:46:05.0569 0x13b4  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:46:05.0584 0x13b4  rdbss - ok
22:46:05.0595 0x13b4  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
22:46:05.0601 0x13b4  rdpbus - ok
22:46:05.0617 0x13b4  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:46:05.0618 0x13b4  RDPCDD - ok
22:46:05.0629 0x13b4  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:46:05.0630 0x13b4  RDPENCDD - ok
22:46:05.0644 0x13b4  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:46:05.0644 0x13b4  RDPREFMP - ok
22:46:05.0688 0x13b4  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
22:46:05.0692 0x13b4  RdpVideoMiniport - ok
22:46:05.0730 0x13b4  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:46:05.0741 0x13b4  RDPWD - ok
22:46:05.0783 0x13b4  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:46:05.0795 0x13b4  rdyboost - ok
22:46:05.0824 0x13b4  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:46:05.0827 0x13b4  RemoteAccess - ok
22:46:05.0852 0x13b4  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:46:05.0856 0x13b4  RemoteRegistry - ok
22:46:05.0889 0x13b4  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
22:46:05.0892 0x13b4  RFCOMM - ok
22:46:05.0931 0x13b4  [ 0DE22421179D5A8440B68517DDF2B051, 2C64323764E6A290205C9F16CB8A61B9C7D559930937A42380EF08B16FDC5D72 ] RimVSerPort     C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
22:46:05.0936 0x13b4  RimVSerPort - ok
22:46:05.0961 0x13b4  [ 388D3DD1A6457280F3BADBA9F3ACD6B1, 5C534EA15195B1301C917904627AF09FE2ABA3FEE1641B5C87E8F3191BC49058 ] ROOTMODEM       C:\Windows\system32\Drivers\RootMdm.sys
22:46:05.0965 0x13b4  ROOTMODEM - ok
22:46:05.0983 0x13b4  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:46:05.0985 0x13b4  RpcEptMapper - ok
22:46:05.0998 0x13b4  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
22:46:06.0000 0x13b4  RpcLocator - ok
22:46:06.0040 0x13b4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
22:46:06.0050 0x13b4  RpcSs - ok
22:46:06.0064 0x13b4  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:46:06.0071 0x13b4  rspndr - ok
22:46:06.0124 0x13b4  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
22:46:06.0141 0x13b4  RTL8167 - ok
22:46:06.0148 0x13b4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
22:46:06.0150 0x13b4  SamSs - ok
22:46:06.0172 0x13b4  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:46:06.0180 0x13b4  sbp2port - ok
22:46:06.0205 0x13b4  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:46:06.0209 0x13b4  SCardSvr - ok
22:46:06.0244 0x13b4  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:46:06.0249 0x13b4  scfilter - ok
22:46:06.0301 0x13b4  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
22:46:06.0324 0x13b4  Schedule - ok
22:46:06.0361 0x13b4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:46:06.0363 0x13b4  SCPolicySvc - ok
22:46:06.0395 0x13b4  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\drivers\sdbus.sys
22:46:06.0403 0x13b4  sdbus - ok
22:46:06.0437 0x13b4  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:46:06.0442 0x13b4  SDRSVC - ok
22:46:06.0476 0x13b4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:46:06.0481 0x13b4  secdrv - ok
22:46:06.0493 0x13b4  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
22:46:06.0495 0x13b4  seclogon - ok
22:46:06.0523 0x13b4  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
22:46:06.0526 0x13b4  SENS - ok
22:46:06.0551 0x13b4  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:46:06.0553 0x13b4  SensrSvc - ok
22:46:06.0570 0x13b4  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
22:46:06.0574 0x13b4  Serenum - ok
22:46:06.0597 0x13b4  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
22:46:06.0605 0x13b4  Serial - ok
22:46:06.0630 0x13b4  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
22:46:06.0635 0x13b4  sermouse - ok
22:46:06.0706 0x13b4  [ 668043F192AB9659761A349A4703600D, 44443E477A38913C6973817C06C25A776574F2C0F9F52609F070BAFA836EBE2E ] ServiceLayer    C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
22:46:06.0721 0x13b4  ServiceLayer - ok
22:46:06.0755 0x13b4  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
22:46:06.0758 0x13b4  SessionEnv - ok
22:46:06.0785 0x13b4  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:46:06.0789 0x13b4  sffdisk - ok
22:46:06.0793 0x13b4  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:46:06.0797 0x13b4  sffp_mmc - ok
22:46:06.0802 0x13b4  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:46:06.0806 0x13b4  sffp_sd - ok
22:46:06.0822 0x13b4  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
22:46:06.0826 0x13b4  sfloppy - ok
22:46:06.0889 0x13b4  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:46:06.0896 0x13b4  SharedAccess - ok
22:46:06.0932 0x13b4  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:46:06.0939 0x13b4  ShellHWDetection - ok
22:46:06.0962 0x13b4  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:46:06.0969 0x13b4  SiSRaid2 - ok
22:46:06.0984 0x13b4  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
22:46:06.0991 0x13b4  SiSRaid4 - ok
22:46:07.0052 0x13b4  [ F5BBEDF602C310B00036EB2DBF4348A5, AC2712E639F0C54BCF00EB4E90E805335871EA27AE8A45DFC53EDF28822318C4 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:46:07.0055 0x13b4  SkypeUpdate - ok
22:46:07.0090 0x13b4  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:46:07.0097 0x13b4  Smb - ok
22:46:07.0128 0x13b4  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:46:07.0130 0x13b4  SNMPTRAP - ok
22:46:07.0139 0x13b4  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:46:07.0144 0x13b4  spldr - ok
22:46:07.0187 0x13b4  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
22:46:07.0198 0x13b4  Spooler - ok
22:46:07.0321 0x13b4  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
22:46:07.0394 0x13b4  sppsvc - ok
22:46:07.0421 0x13b4  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:46:07.0423 0x13b4  sppuinotify - ok
22:46:07.0453 0x13b4  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:46:07.0472 0x13b4  srv - ok
22:46:07.0495 0x13b4  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:46:07.0513 0x13b4  srv2 - ok
22:46:07.0546 0x13b4  [ 0C4540311E11664B245A263E1154CEF8, 63376322BFFAFF2F166AF3FDD3F1A346C21FAE21F406F659F8630779D1D6525D ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
22:46:07.0558 0x13b4  SrvHsfHDA - ok
22:46:07.0609 0x13b4  [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
22:46:07.0650 0x13b4  SrvHsfV92 - ok
22:46:07.0684 0x13b4  [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
22:46:07.0708 0x13b4  SrvHsfWinac - ok
22:46:07.0738 0x13b4  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:46:07.0749 0x13b4  srvnet - ok
22:46:07.0771 0x13b4  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:46:07.0776 0x13b4  SSDPSRV - ok
22:46:07.0788 0x13b4  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:46:07.0791 0x13b4  SstpSvc - ok
22:46:07.0860 0x13b4  [ 463E33B1EA7AF1E6EB87B66B831DB41A, E76654F8E301829C0F27775A5673A3BA929FE4FA6C1C214A98C2915C5EC189A4 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
22:46:07.0864 0x13b4  STacSV - ok
22:46:07.0945 0x13b4  [ 3DBF9D2E5DE3A72B37AB27ABB79FEE69, 6E0A6FB32FE84078769497178DB667960507540F411111B6900A0F2D2B604512 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
22:46:07.0957 0x13b4  Steam Client Service - ok
22:46:07.0986 0x13b4  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
22:46:07.0991 0x13b4  stexstor - ok
22:46:08.0030 0x13b4  [ 4304B75094E106FB5423A290C95841E5, 55670F1DBC9B25A5E31FBEB3CB3C97E2B11CCD6359DA89FF1310C1BBCEC66A80 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
22:46:08.0050 0x13b4  STHDA - ok
22:46:08.0094 0x13b4  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
22:46:08.0108 0x13b4  stisvc - ok
22:46:08.0126 0x13b4  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
22:46:08.0131 0x13b4  swenum - ok
22:46:08.0165 0x13b4  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
22:46:08.0177 0x13b4  swprv - ok
22:46:08.0223 0x13b4  [ AC3CC98B1BDB6540021D3FFB105AC2B9, 671146CC16139AECE0BCCC44983807E045A930E262F64461D0D882A0A0B77E4F ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
22:46:08.0239 0x13b4  SynTP - ok
22:46:08.0318 0x13b4  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
22:46:08.0356 0x13b4  SysMain - ok
22:46:08.0387 0x13b4  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:46:08.0391 0x13b4  TabletInputService - ok
22:46:08.0426 0x13b4  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:46:08.0434 0x13b4  TapiSrv - ok
22:46:08.0457 0x13b4  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
22:46:08.0460 0x13b4  TBS - ok
22:46:08.0539 0x13b4  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:46:08.0572 0x13b4  Tcpip - ok
22:46:08.0628 0x13b4  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:46:08.0660 0x13b4  TCPIP6 - ok
22:46:08.0694 0x13b4  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:46:08.0700 0x13b4  tcpipreg - ok
22:46:08.0723 0x13b4  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:46:08.0727 0x13b4  TDPIPE - ok
22:46:08.0752 0x13b4  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:46:08.0757 0x13b4  TDTCP - ok
22:46:08.0792 0x13b4  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:46:08.0795 0x13b4  tdx - ok
22:46:08.0817 0x13b4  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
22:46:08.0824 0x13b4  TermDD - ok
22:46:08.0870 0x13b4  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
22:46:08.0885 0x13b4  TermService - ok
22:46:08.0904 0x13b4  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
22:46:08.0906 0x13b4  Themes - ok
22:46:08.0931 0x13b4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
22:46:08.0933 0x13b4  THREADORDER - ok
22:46:08.0954 0x13b4  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
22:46:08.0958 0x13b4  TrkWks - ok
22:46:09.0010 0x13b4  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:46:09.0013 0x13b4  TrustedInstaller - ok
22:46:09.0040 0x13b4  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:46:09.0045 0x13b4  tssecsrv - ok
22:46:09.0087 0x13b4  [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
22:46:09.0095 0x13b4  TsUsbFlt - ok
22:46:09.0119 0x13b4  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:46:09.0128 0x13b4  tunnel - ok
22:46:09.0152 0x13b4  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
22:46:09.0160 0x13b4  uagp35 - ok
22:46:09.0181 0x13b4  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:46:09.0195 0x13b4  udfs - ok
22:46:09.0222 0x13b4  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:46:09.0225 0x13b4  UI0Detect - ok
22:46:09.0248 0x13b4  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:46:09.0256 0x13b4  uliagpkx - ok
22:46:09.0281 0x13b4  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
22:46:09.0287 0x13b4  umbus - ok
22:46:09.0299 0x13b4  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
22:46:09.0304 0x13b4  UmPass - ok
22:46:09.0427 0x13b4  [ 0FADD949576A164B4E51E716F46B6C33, 34B33EC767FFCF58647090F5293DD1942BA9CDC5AB9976528DE3793EF327D48E ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
22:46:09.0477 0x13b4  UNS - ok
22:46:09.0504 0x13b4  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
22:46:09.0512 0x13b4  upnphost - ok
22:46:09.0539 0x13b4  [ 4E93C8496359E97830C75AC36393654D, D0482257B019512D77484D92E4DEFEFE4FED53CB440ACB7AA879D6FD0574FA9A ] upperdev        C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
22:46:09.0543 0x13b4  upperdev - ok
22:46:09.0580 0x13b4  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
22:46:09.0588 0x13b4  usbaudio - ok
22:46:09.0611 0x13b4  [ ACCEA6BC68D0C9A78EB97EE159028B4E, 132F7A543C1DA9456FBABA50552B37E3162ACA612A8567BB3FF0F7DA84231419 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:46:09.0619 0x13b4  usbccgp - ok
22:46:09.0650 0x13b4  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:46:09.0660 0x13b4  usbcir - ok
22:46:09.0682 0x13b4  [ 311C1DD1088E55BEAE15954D17F50646, A663344ABD1414D570617F59CC00020640F31DB34265142EFCA8817328DB842A ] usbehci         C:\Windows\system32\drivers\usbehci.sys
22:46:09.0688 0x13b4  usbehci - ok
22:46:09.0718 0x13b4  [ 280E90CBF4B2DDD169F0728CB44D726F, 2B39666C022A4F7338BDDB4CB0D7B4D0CC6B398298D29E38826F27FADF4C29DD ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:46:09.0734 0x13b4  usbhub - ok
22:46:09.0755 0x13b4  [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:46:09.0760 0x13b4  usbohci - ok
22:46:09.0789 0x13b4  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
22:46:09.0790 0x13b4  usbprint - ok
22:46:09.0823 0x13b4  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
22:46:09.0829 0x13b4  usbscan - ok
22:46:09.0855 0x13b4  [ B57B4F0BEC4270A281B9F8537EB2FA04, 554273482EE85F010DC62E412C9933E65BD63AA09911BD25D86F86D2618EF382 ] usbser          C:\Windows\system32\drivers\usbser.sys
22:46:09.0861 0x13b4  usbser - ok
22:46:09.0882 0x13b4  [ 8844CB19A37B65E27049D4A7786726A9, 4D772174A320F02E2F87BDF8C6EBBFDE04C9763D3C21FE9557DE938521508A59 ] UsbserFilt      C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
22:46:09.0882 0x13b4  UsbserFilt - ok
22:46:09.0907 0x13b4  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:46:09.0909 0x13b4  USBSTOR - ok
22:46:09.0925 0x13b4  [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
22:46:09.0931 0x13b4  usbuhci - ok
22:46:09.0977 0x13b4  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
22:46:09.0986 0x13b4  usbvideo - ok
22:46:10.0004 0x13b4  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
22:46:10.0006 0x13b4  UxSms - ok
22:46:10.0032 0x13b4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
22:46:10.0033 0x13b4  VaultSvc - ok
22:46:10.0065 0x13b4  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
22:46:10.0071 0x13b4  vdrvroot - ok
22:46:10.0114 0x13b4  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
22:46:10.0126 0x13b4  vds - ok
22:46:10.0155 0x13b4  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:46:10.0160 0x13b4  vga - ok
22:46:10.0182 0x13b4  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:46:10.0187 0x13b4  VgaSave - ok
22:46:10.0216 0x13b4  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
22:46:10.0229 0x13b4  vhdmp - ok
22:46:10.0264 0x13b4  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:46:10.0269 0x13b4  viaide - ok
22:46:10.0323 0x13b4  [ DB7C02A1E368B9F4CB50905D1C1E80A4, 95974303B399A4048131CDFC55EABCEA5A94ED615842F45979DFD3E2572D5C30 ] VodafoneConnectorService C:\Program Files (x86)\Vodafone\Via The Phone\VodafoneConnectorService.exe
22:46:10.0327 0x13b4  VodafoneConnectorService - ok
22:46:10.0369 0x13b4  [ 3059B9A217455169D6C90215F3E942D6, 38EAE28D3FA2B310908C06D773DB61A8A527932F962FEF5F9D0B29CC698B7AA9 ] VodafoneWatcherService C:\Program Files (x86)\Vodafone\Smartplug\VodafoneWatcher.exe
22:46:10.0374 0x13b4  VodafoneWatcherService - ok
22:46:10.0384 0x13b4  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:46:10.0392 0x13b4  volmgr - ok
22:46:10.0427 0x13b4  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:46:10.0435 0x13b4  volmgrx - ok
22:46:10.0459 0x13b4  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:46:10.0474 0x13b4  volsnap - ok
22:46:10.0502 0x13b4  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
22:46:10.0511 0x13b4  vsmraid - ok
22:46:10.0581 0x13b4  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
22:46:10.0609 0x13b4  VSS - ok
22:46:10.0639 0x13b4  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
22:46:10.0644 0x13b4  vwifibus - ok
22:46:10.0659 0x13b4  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
22:46:10.0665 0x13b4  vwififlt - ok
22:46:10.0689 0x13b4  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
22:46:10.0693 0x13b4  vwifimp - ok
22:46:10.0731 0x13b4  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
22:46:10.0740 0x13b4  W32Time - ok
22:46:10.0756 0x13b4  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
22:46:10.0761 0x13b4  WacomPen - ok
22:46:10.0798 0x13b4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:46:10.0806 0x13b4  WANARP - ok
22:46:10.0810 0x13b4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:46:10.0812 0x13b4  Wanarpv6 - ok
22:46:10.0874 0x13b4  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
22:46:10.0901 0x13b4  WatAdminSvc - ok
22:46:10.0967 0x13b4  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
22:46:11.0000 0x13b4  wbengine - ok
22:46:11.0040 0x13b4  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:46:11.0045 0x13b4  WbioSrvc - ok
22:46:11.0081 0x13b4  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:46:11.0090 0x13b4  wcncsvc - ok
22:46:11.0104 0x13b4  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:46:11.0107 0x13b4  WcsPlugInService - ok
22:46:11.0131 0x13b4  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
22:46:11.0137 0x13b4  Wd - ok
22:46:11.0183 0x13b4  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:46:11.0211 0x13b4  Wdf01000 - ok
22:46:11.0228 0x13b4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:46:11.0231 0x13b4  WdiServiceHost - ok
22:46:11.0236 0x13b4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:46:11.0239 0x13b4  WdiSystemHost - ok
22:46:11.0266 0x13b4  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
22:46:11.0272 0x13b4  WebClient - ok
22:46:11.0298 0x13b4  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:46:11.0304 0x13b4  Wecsvc - ok
22:46:11.0316 0x13b4  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:46:11.0319 0x13b4  wercplsupport - ok
22:46:11.0341 0x13b4  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:46:11.0344 0x13b4  WerSvc - ok
22:46:11.0366 0x13b4  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:46:11.0370 0x13b4  WfpLwf - ok
22:46:11.0382 0x13b4  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:46:11.0387 0x13b4  WIMMount - ok
22:46:11.0424 0x13b4  WinDefend - ok
22:46:11.0434 0x13b4  WinHttpAutoProxySvc - ok
22:46:11.0480 0x13b4  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:46:11.0485 0x13b4  Winmgmt - ok
22:46:11.0536 0x13b4  [ 0C0195C48B6B8582FA6F6373032118DA, 11BD2C9F9E2397C9A16E0990E4ED2CF0679498FE0FD418A3DFDAC60B5C160EE5 ] WinRing0_1_2_0  C:\Program Files (x86)\BatteryCare\WinRing0x64.sys
22:46:11.0537 0x13b4  WinRing0_1_2_0 - ok
22:46:11.0622 0x13b4  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
22:46:11.0666 0x13b4  WinRM - ok
22:46:11.0726 0x13b4  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:46:11.0733 0x13b4  WinUsb - ok
22:46:11.0775 0x13b4  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:46:11.0794 0x13b4  Wlansvc - ok
22:46:11.0924 0x13b4  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:46:11.0970 0x13b4  wlidsvc - ok
22:46:12.0000 0x13b4  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
22:46:12.0001 0x13b4  WmiAcpi - ok
22:46:12.0024 0x13b4  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:46:12.0028 0x13b4  wmiApSrv - ok
22:46:12.0044 0x13b4  WMPNetworkSvc - ok
22:46:12.0079 0x13b4  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:46:12.0081 0x13b4  WPCSvc - ok
22:46:12.0116 0x13b4  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:46:12.0120 0x13b4  WPDBusEnum - ok
22:46:12.0142 0x13b4  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:46:12.0143 0x13b4  ws2ifsl - ok
22:46:12.0178 0x13b4  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
22:46:12.0181 0x13b4  wscsvc - ok
22:46:12.0186 0x13b4  WSearch - ok
22:46:12.0300 0x13b4  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:46:12.0343 0x13b4  wuauserv - ok
22:46:12.0380 0x13b4  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:46:12.0382 0x13b4  WudfPf - ok
22:46:12.0420 0x13b4  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:46:12.0424 0x13b4  WUDFRd - ok
22:46:12.0433 0x13b4  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:46:12.0436 0x13b4  wudfsvc - ok
22:46:12.0465 0x13b4  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:46:12.0471 0x13b4  WwanSvc - ok
22:46:12.0506 0x13b4  [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
22:46:12.0524 0x13b4  yukonw7 - ok
22:46:12.0528 0x13b4  ZTEusbmdm6k - ok
22:46:12.0554 0x13b4  ZTEusbnmea - ok
22:46:12.0558 0x13b4  ZTEusbser6k - ok
22:46:12.0595 0x13b4  ================ Scan global ===============================
22:46:12.0618 0x13b4  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
22:46:12.0652 0x13b4  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
22:46:12.0664 0x13b4  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
22:46:12.0691 0x13b4  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
22:46:12.0743 0x13b4  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
22:46:12.0749 0x13b4  [ Global ] - ok
22:46:12.0749 0x13b4  ================ Scan MBR ==================================
22:46:12.0762 0x13b4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:46:13.0059 0x13b4  \Device\Harddisk0\DR0 - ok
22:46:13.0060 0x13b4  ================ Scan VBR ==================================
22:46:13.0062 0x13b4  [ 7046791F27634AD089DED052D6B766EC ] \Device\Harddisk0\DR0\Partition1
22:46:13.0064 0x13b4  \Device\Harddisk0\DR0\Partition1 - ok
22:46:13.0092 0x13b4  [ C0F3C4CF0918EC2A3671DF0D6BEA5B4D ] \Device\Harddisk0\DR0\Partition2
22:46:13.0093 0x13b4  \Device\Harddisk0\DR0\Partition2 - ok
22:46:13.0112 0x13b4  [ 574606E3AB9B0D149C7D43BF1B98303B ] \Device\Harddisk0\DR0\Partition3
22:46:13.0113 0x13b4  \Device\Harddisk0\DR0\Partition3 - ok
22:46:13.0126 0x13b4  [ 354138037D594E6ADD3FDCCC950BACD8 ] \Device\Harddisk0\DR0\Partition4
22:46:13.0128 0x13b4  \Device\Harddisk0\DR0\Partition4 - ok
22:46:13.0156 0x13b4  [ E7AD71726CBC36036B166E60645F036F ] \Device\Harddisk0\DR0\Partition5
22:46:13.0158 0x13b4  \Device\Harddisk0\DR0\Partition5 - ok
22:46:13.0159 0x13b4  Waiting for KSN requests completion. In queue: 72
22:46:14.0159 0x13b4  Waiting for KSN requests completion. In queue: 72
22:46:15.0159 0x13b4  Waiting for KSN requests completion. In queue: 72
22:46:16.0214 0x13b4  AV detected via SS2: Avira Desktop, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 14.0.2.234 ), 0x41000 ( enabled : updated )
22:46:16.0246 0x13b4  Win FW state via NFP2: enabled
22:46:19.0067 0x13b4  ============================================================
22:46:19.0067 0x13b4  Scan finished
22:46:19.0067 0x13b4  ============================================================
22:46:19.0077 0x15fc  Detected object count: 0
22:46:19.0077 0x15fc  Actual detected object count: 0
 

 

 

 

C:\Users\IreAle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1P11UAVZ\DRsJd[1].exe a variant of Win32/AdWare.MultiPlug.K.gen application cleaned by deleting - quarantined
C:\Users\IreAle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1P11UAVZ\VSP[1].exe a variant of Win32/AdWare.MultiPlug.K.gen application cleaned by deleting - quarantined
C:\Users\IreAle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J10J0CX9\PXhnIZLz[1].exe a variant of Win32/AdWare.MultiPlug.K.gen application cleaned by deleting - quarantined
C:\Users\IreAle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J10J0CX9\XPmWvkz[1].exe a variant of Win32/AdWare.MultiPlug.K.gen application cleaned by deleting - quarantined
C:\Users\IreAle\AppData\Local\Temp\{DE2A4365-792F-4D89-AF62-310D05C96193}\Addons\extfs_setup.exe a variant of Win32/AdWare.MultiPlug.K.gen application cleaned by deleting - quarantined
C:\Users\IreAle\AppData\Local\Temp\{DE2A4365-792F-4D89-AF62-310D05C96193}\Addons\ext_setup.exe a variant of Win32/AdWare.MultiPlug.K.gen application cleaned by deleting - quarantined
C:\Users\IreAle\AppData\Local\Temp\{DE2A4365-792F-4D89-AF62-310D05C96193}\Addons\ytab_setup.exe a variant of Win32/AdWare.MultiPlug.K.gen application cleaned by deleting - quarantined


#7 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:51 AM

Posted 22 December 2013 - 03:22 AM

I would like you to run a full scan with Norman malware cleaner a log will be produced on your desktop when done please post it here.

 

http://normanasa.vo.llnwd.net/o29/public/Norman_Malware_Cleaner.exe

 

 

Now open autoruns and untick the items below. Untick any item you see related to log me in.

 

Under the tab BHO "HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "19/12/2013 16:36"

 
+ "Softonic Helper Object" "" "Softonic.com" "c:\program files (x86)\softonic\softonic\1.8.21.14\bh\softonic.dll" "11/06/2013 03:28"
 
 
Under this tab as well."HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar" "" "" "" "16/12/2013 14:29"
 
 
+ "Softonic Toolbar" "" "Softonic.com" "c:\program files (x86)\softonic\softonic\1.8.21.14\softonictlbr.dll" "11/06/2013 03:28"
 
 
 
Reboot the machine.
 
 


Now with File Assasin please delete the following items.
https://www.malwarebytes.org/fileassassin/

Copy each file one at a time below and paste it into the file assasin window with out the "Quote"

Then Leave the default attempt File Assasin method of processing ticked and make sure you tick delete file for each item

 

After pasting each line in one at a time hit the execute button.

 

If the delete fails for one item then use the delete on boot function.
 

 
"c:\program files (x86)\softonic\softonic\1.8.21.14\softonictlbr.dll"
"c:\program files (x86)\softonic\softonic\1.8.21.14\bh\softonic.dll"
"c:\windows\system32\lmiinit.dll"

"c:\windows\system32\lmiport.dll"

 

 

Tell me if you have anymore issues with your machine. :)



#8 nabu

nabu
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:51 AM

Posted 23 December 2013 - 05:41 AM

Hi!

 

I'm having some problems..

I don't find the tab "BHO" on autoruns... i tryied using "find" and inserting the line you gave me but i don't them...

I unticked with searching with "find" all the logmein entries...

 

I installed and tried fileassains but it doesn't find any of the file you told me...

 

Am i doing something wrong?

 

The softonic serach is still coming out..



#9 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:51 AM

Posted 23 December 2013 - 04:47 PM

The line is there in autoruns you need to look a bit harder.

 

 

Look for any thing that reads softonic

 

And as far as the items not being found in the file assasin did you leave the  " " out meaning out them in like this

 

 

c:\program files (x86)\softonic\softonic\1.8.21.14\bh\softonic.dll
c:\windows\system32\lmiinit.dll

c:\windows\system32\lmiport.dll

 

 

c:\program files (x86)\softonic\softonic\1.8.21.14\softonictlbr.dll
 
Another was you can rid the machine is to boot into safemode and then hit the start button then click computer the double click the c: drive then programfiles(x86)
 
Find the softonic folder right click and delete it.
 
Here are instructions on booting into safemode.

Edited by InadequateInfirmity, 23 December 2013 - 04:48 PM.


#10 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:51 AM

Posted 23 December 2013 - 10:21 PM

If you are unable to find softonic in the methods I have mentioned please do the following.

 

 

Please download SystemLook from one of the links below and save it to your Desktop.
Download Mirror #1
Download Mirror #2

  • Double-click SystemLook.exe to run it.
  • Copy the content of the following code box into the main textfield:
 
:filefind
 
*softonic*
  • Click the Look button to start the scan.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.

Note: The log can also be found on your Desktop entitled SystemLook.txt


Edited by InadequateInfirmity, 23 December 2013 - 10:23 PM.


#11 nabu

nabu
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:51 AM

Posted 24 December 2013 - 05:08 AM

Hi

 

Actually i really counldn't find softonic anywhere...not the folder nor the entries in autoruns even using "find" function..

Also on fileassasins off course i never used the "" just the path line, i tryied again but no way, nothing found!

 

Now i used system look and it found it..

 

First i post the norman log that i believe i've forgotten..

 

 

Norman Malware Cleaner v2.08.08
Copyright © 1990 - 2013, Norman Shark AS.
 
Norman Scanner Engine Version: 7.02.06
nvcbin.def: Version: 7.02.6683, Date: 2013/12/22 06:40:55, Variants: 25839110
 
Operating System: Windows 7 Service Pack 1 x64
 
Switches: /iagree
 
Scan started: 2013/12/22 13:57:59
 
Running pre-scan cleanup routine...
 
Number of malicious objects found: 0
Number of malicious objects cleaned: 0
Scanning time: 0s
 
Scanning running processes and process memory...
 
Number of files found: 517
Number of objects found: 3062
Number of objects scanned: 3062
Number of objects not scanned: 0
Number of malicious memory objects found: 0
Number of malicious objects cleaned: 0
Number of malicious files found: 0
Number of malicious files cleaned: 0
Scanning time: 34s
 
Scanning system for FakeAV...
 
Number of malicious objects found: 0
Number of malicious objects cleaned: 0
Number of malicious files found: 0
Number of malicious files cleaned: 0
Scanning time: 0s
 
Running full scan...
C:\ProgramData\Avira\AntiVir Desktop\TEMP\scaninfo(1736).tmp: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.log: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\tmp.edb: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Windows Defender\IMpService925A3ACA-C353-458A-AC8D-A7E5EB378092.lock: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Windows Defender\Scans\History\CacheManager\MpSfc.bin: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Windows Defender\Scans\mpcache-E856C699A0BBDC623E7487615E8010496F4286CC.bin.67: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Windows Defender\Scans\mpcache-E856C699A0BBDC623E7487615E8010496F4286CC.bin.7E: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Windows Defender\Scans\mpcache-E856C699A0BBDC623E7487615E8010496F4286CC.bin.80: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Windows Defender\Scans\mpcache-E856C699A0BBDC623E7487615E8010496F4286CC.bin.87: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Windows Defender\Scans\mpcache-E856C699A0BBDC623E7487615E8010496F4286CC.bin.CB: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Windows Defender\Scans\mpcache-E856C699A0BBDC623E7487615E8010496F4286CC.bin.CC: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Windows Defender\Scans\mpcache-E856C699A0BBDC623E7487615E8010496F4286CC.bin.A0: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Windows Defender\Scans\mpcache-E856C699A0BBDC623E7487615E8010496F4286CC.bin.VE0: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Windows Defender\Scans\mpcache-E856C699A0BBDC623E7487615E8010496F4286CC.bin.VE1: Error opening file for read: 0x00000020
C:\ProgramData\Microsoft\Windows Defender\Scans\mpcache-E856C699A0BBDC623E7487615E8010496F4286CC.bin.VF: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Cache\index: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Current Session: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Current Tabs: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOCK: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOCK: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_2: Error opening file for read: 0x00000020
                                                                                                                        C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\GPUCache\index: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_3: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_0: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_1: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_2: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_3: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Media Cache\index: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOCK: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\lockfile: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J10J0CX9\psupport_install[1].exe: Potentially unwanted program (winpe/App_Generic.DNTQM)
C:\Users\IreAle\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG1: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Microsoft\Windows\UsrClass.dat: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG2: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Microsoft\Windows\WebCache\V01.log: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.tmp: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Microsoft\Windows\WebCacheLock.dat: Error opening file for read: 0x00000020
Delete file: C:\Users\IreAle\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\J10J0CX9\psupport_install[1].exe
Cleaning successful
C:\Users\IreAle\AppData\Local\Temp\etilqs_R6ozTkVjfNDs78n: Error opening file for read: 0x00000020
C:\Users\IreAle\AppData\Local\Temp\down.6036.assistant_v3.exe: Potentially unwanted program (winpe/App_Generic.DNTQM)
Delete file: C:\Users\IreAle\AppData\Local\Temp\down.6036.assistant_v3.exe
Cleaning successful
C:\Users\IreAle\AppData\Local\Temp\Tsu8A569DBB.dll: Potentially unwanted program (winpe/InstallMate.BEQG)
Delete file: C:\Users\IreAle\AppData\Local\Temp\Tsu8A569DBB.dll
Cleaning successful
C:\Users\IreAle\AppData\Local\Temp\{DE2A4365-792F-4D89-AF62-310D05C96193}\Custom.dll: Potentially unwanted program (winpe/App_Generic.DSQYC)
Delete file: C:\Users\IreAle\AppData\Local\Temp\{DE2A4365-792F-4D89-AF62-310D05C96193}\Custom.dll
Cleaning successful
C:\Users\IreAle\Downloads\ChunYu_Shei (1).exe: File infected with win32/ZBot.FHGW
C:\Users\IreAle\Downloads\ChunYu_Shei.exe: File infected with win32/ZBot.FHGW
Delete file: C:\Users\IreAle\Downloads\ChunYu_Shei (1).exe
Cleaning successful
Delete file: C:\Users\IreAle\Downloads\ChunYu_Shei.exe
Cleaning successful
C:\Users\IreAle\Downloads\out_mp3.exe: File infected with winpe/Suspicious_Gen2.VJIYC
Delete file: C:\Users\IreAle\Downloads\out_mp3.exe
Cleaning successful
C:\Users\IreAle\Downloads\thor_tfak501.zip: Archive infected
C:\Users\IreAle\Downloads\thor_tfak501.zip/tfak.exe: Potentially unwanted program (winpe/App_Generic.RMHL)
Delete archive object: C:\Users\IreAle\Downloads\thor_tfak501.zip/tfak.exe
Cleaning successful
C:\Users\IreAle\NTUSER.DAT: Error opening file for read: 0x00000020
C:\Users\IreAle\ntuser.dat.LOG1: Error opening file for read: 0x00000020
C:\Users\IreAle\ntuser.dat.LOG2: Error opening file for read: 0x00000020
C:\Windows\Installer\158fc.msi/Data1.cab/_946FACC1D27FEE5EEF84E2EA2D8375E6/user-006.dat: Possible archive bomb
C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat: Error opening file for read: 0x00000020
C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat: Error opening file for read: 0x00000020
C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT: Error opening file for read: 0x00000020
C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT.LOG1: Error opening file for read: 0x00000020
C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT.LOG2: Error opening file for read: 0x00000020
C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT: Error opening file for read: 0x00000020
C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT.LOG1: Error opening file for read: 0x00000020
C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT.LOG2: Error opening file for read: 0x00000020
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_core_x64.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_core_x86.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_extended_x64.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_extended_x86.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_GDR_x64.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_GDR_x86.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_LDR_x64.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_LDR_x86.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_x64.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_x86.msi: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/header.bmp: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/SplashScreen.bmp: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/watermark.bmp: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/DisplayIcon.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Print.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate1.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate2.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate3.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate4.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate5.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate6.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate7.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Rotate8.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Save.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/Setup.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/stop.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/SysReqMet.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/SysReqNotMet.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Graphics/warn.ico: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1025/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/2052/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1028/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1030/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1029/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1033/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1031/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1032/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1035/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/3082/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1037/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1036/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1040/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1038/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1042/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1041/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1044/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1043/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1046/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/2070/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1045/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1053/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1049/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1055/LocalizedData.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/ParameterInfo.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Strings.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/UiInfo.xml: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/SetupUi.xsd: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/DHtmlHeader.html: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1025/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1029/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1028/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1030/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1031/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1033/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1032/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1035/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1036/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1037/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1040/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1038/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1042/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1041/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1044/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1043/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1046/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1045/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1053/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1055/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1049/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/2052/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/2070/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/3082/eula.rtf: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Setup.exe: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/SetupUtility.exe: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/SetupEngine.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1025/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/2052/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1028/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1042/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1041/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1037/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1033/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1030/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1044/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1053/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1029/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1035/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1040/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1045/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1046/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1049/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/2070/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1031/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1036/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1038/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/3082/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1032/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1043/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/1055/SetupResources.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/SetupUi.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/sqmapi.dll: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Windows6.0-KB956250-v6001-x64.msu: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Windows6.0-KB956250-v6001-x86.msu: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Windows6.1-KB958488-v6001-x64.msu: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/Windows6.1-KB958488-v6001-x86.msu: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_GDR.mzz: I/O error scanning file: 0x00002000
C:\Windows\SoftwareDistribution\Download\279aa81fde54a5290cd8a5c52c6030f6c5ac6892/noname.7z/netfx_Full_LDR.mzz: I/O error scanning file: 0x00002000
C:\Windows\System32\catroot2\edb.log: Error opening file for read: 0x00000020
C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb: Error opening file for read: 0x00000020
C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb: Error opening file for read: 0x00000020
C:\Windows\System32\config\DEFAULT: Error opening file for read: 0x00000020
C:\Windows\System32\config\DEFAULT.LOG1: Error opening file for read: 0x00000020
C:\Windows\System32\config\DEFAULT.LOG2: Error opening file for read: 0x00000020
C:\Windows\System32\config\RegBack\DEFAULT: Error opening file for read: 0x00000020
C:\Windows\System32\config\RegBack\SAM: Error opening file for read: 0x00000020
C:\Windows\System32\config\RegBack\SECURITY: Error opening file for read: 0x00000020
C:\Windows\System32\config\RegBack\SOFTWARE: Error opening file for read: 0x00000020
C:\Windows\System32\config\RegBack\SYSTEM: Error opening file for read: 0x00000020
C:\Windows\System32\config\SAM: Error opening file for read: 0x00000020
C:\Windows\System32\config\SAM.LOG1: Error opening file for read: 0x00000020
C:\Windows\System32\config\SAM.LOG2: Error opening file for read: 0x00000020
C:\Windows\System32\config\SECURITY: Error opening file for read: 0x00000020
C:\Windows\System32\config\SECURITY.LOG1: Error opening file for read: 0x00000020
C:\Windows\System32\config\SECURITY.LOG2: Error opening file for read: 0x00000020
C:\Windows\System32\config\SOFTWARE: Error opening file for read: 0x00000020
C:\Windows\System32\config\SOFTWARE.LOG1: Error opening file for read: 0x00000020
C:\Windows\System32\config\SOFTWARE.LOG2: Error opening file for read: 0x00000020
C:\Windows\System32\config\SYSTEM: Error opening file for read: 0x00000020
C:\Windows\System32\config\SYSTEM.LOG1: Error opening file for read: 0x00000020
C:\Windows\System32\config\SYSTEM.LOG2: Error opening file for read: 0x00000020
C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTDiagLog.etl: Error opening file for read: 0x00000020
C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-Application.etl: Error opening file for read: 0x00000020
C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventlog-Security.etl: Error opening file for read: 0x00000020
C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-System.etl: Error opening file for read: 0x00000020
C:\Windows\System32\LogFiles\WMI\RtBackup\EtwRTUBPM.etl: Error opening file for read: 0x00000020
00000020
                                                                                                  C:\Windows\SysWOW64\log.txt: Error opening file for read: 0x00000020
F:\Ale\Backup cartella di sistema\SwSetup\HPQWMM\QuickWeb\QW.SYS\persist\user-006.dat.gz/user-006.dat: Possible archive bomb
 
Number of files found: 283248
Number of archives unpacked: 7204
Number of objects found: 1509939
Number of objects scanned: 1509736
Number of objects not scanned: 203
Number of malicious objects found: 10
Number of malicious objects cleaned: 8
Number of malicious files found: 8
Number of malicious files cleaned: 8
Scanning time: 2h 34m 5s
 
Running post-scan cleanup routine...
 
Number of malicious objects found: 0
Number of malicious objects cleaned: 0
Scanning time: 0s
 
Results:
Total number of files found: 283765
Total number of archives unpacked: 7204
Total number of objects found: 1513001
Total number of objects scanned: 1512798
Total number of objects not scanned: 203
Total number of malicious objects found: 10
Total number of malicious objects cleaned: 8
Total number of malicious files found: 8
Total number of malicious files cleaned: 8
Total number of objects quarantined: 8
Total scanning time: 2h 34m 39s
 
 
 
 
 
SystemLook 30.07.11 by jpshortstuff
Log created at 10:51 on 24/12/2013 by IreAle
Administrator - Elevation successful
 
========== filefind ==========
 
Searching for " "
No files found.
 
Searching for "*softonic*"
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Softonic\Softonic\1.8.21.14\softonic.crx.vir --a---- 331323 bytes [02:27 11/06/2013] [02:27 11/06/2013] 5DBB8C610C4BE43879823A8BDB312D68
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicApp.dll.vir --a---- 313752 bytes [02:28 11/06/2013] [02:28 11/06/2013] 382C3450BD74E182CDDE38EA6D578DD8
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicEng.dll.vir --a---- 593816 bytes [02:28 11/06/2013] [02:28 11/06/2013] 13223A72E339879DBEF309D3132F8389
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Softonic\Softonic\1.8.21.14\Softonicsrv.exe.vir --a---- 380824 bytes [02:28 11/06/2013] [02:28 11/06/2013] DD1D195840CF2833357BCBF6291B8E90
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Softonic\Softonic\1.8.21.14\SoftonicTlbr.dll.vir --a---- 296856 bytes [02:28 11/06/2013] [02:28 11/06/2013] D5783FDA4F2D12B30AB26E8D09517EF8
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Softonic\Softonic\1.8.21.14\bh\Softonic.dll.vir --a---- 301464 bytes [02:28 11/06/2013] [02:28 11/06/2013] A563EA80B62D9D3664DAD0990E4ED51A
C:\AdwCleaner\Quarantine\C\Users\IreAle\AppData\Roaming\Mozilla\Firefox\Profiles\zaeroxpe.default\searchplugins\softonic.xml.vir --a---- 1434 bytes [21:32 17/12/2013] [21:34 17/12/2013] C4DC92D40BD5797A6BE2261B77B2C5C6
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.softonic.com_0.localstorage --a---- 3072 bytes [21:55 17/12/2013] [22:41 17/12/2013] 7FE1772919C150FD2290299E0D3D6978
C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.softonic.com_0.localstorage-journal --a---- 3608 bytes [21:55 17/12/2013] [22:41 17/12/2013] 35F13AEF4527583EA4837986D7C65E71
C:\Users\IreAle\AppData\Local\Temp\mt_ffx\Softonic\Softonic\1.8.21.14\softonic.xpi --a---- 64745 bytes [02:27 11/06/2013] [02:27 11/06/2013] 212455B35C6F3DB9905EAFD1B32084F7
 
-= EOF =-


#12 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:51 AM

Posted 24 December 2013 - 05:17 AM

Make sure that google chrome is not open when you do this please.

 

Open an Elevated Command prompt.

http://www.bleepingcomputer.com/tutorials/windows-elevated-command-prompt/

 

 

Copy each line one at a time.

 

Paste into command window hit enter after each.

 

The command prompt will tell you if the file is deleted.

 

del /f /s /q "C:\Users\IreAle\AppData\Local\Temp\mt_ffx\Softonic\Softonic\1.8.21.14\softonic.xpi"
del /f /s /q "C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.softonic.com_0.localstorage-journal"
del /f /s /q "C:\Users\IreAle\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_search.softonic.com_0.localstorage"

 

Now open chrome and see if it remains.


Edited by InadequateInfirmity, 24 December 2013 - 05:45 AM.


#13 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:51 AM

Posted 24 December 2013 - 05:25 AM

 

 

Remove Softonic Web Search extensions from Google Chrome.
Click the Chrome menu Chrome-button.png  button on the browser toolbar, select Tools and then click on Extensions.

 

In the Extensions tab, remove Softonic Chrome Toolbar 1.0 and any other unknown extensions by clicking the trash can Trash-Can-Chrome.png icon.
Basically, if you have not installed an extension, you should remove it from your web browser.

 

Set Google Chrome default search engine from Softonic Web Search to Google.
Click the Chrome menu Chrome-button.png  button, then select Settings and click on Manage search engines in the Search section.
In the Search Engines dialog that appears, select Google and click the Make Default button that appears in the row.

 

Search for Search the web (Softonic) in the Search Engines list, and click the X button that appears at the end of the row.

 

Change Google Chrome homepage from search.softonic.com to its default.
Softonic has modified your Google settings to open their webpage whenever you start your browser, so we will need to revert this change.
Click the Chrome menu Chrome-button.png  button, then select Settings and click on One the New Tab page in the On Startup section.

 



#14 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:51 AM

Posted 24 December 2013 - 06:22 AM

As a couple of final steps if the above fails you can reset chrome.

 

https://support.google.com/chrome/answer/3296214?hl=en

 

Or Export your bookmarks from chrome.

https://support.google.com/chrome/answer/96816?hl=en

 

And  un install and re install chrome.



#15 nabu

nabu
  • Topic Starter

  • Members
  • 107 posts
  • OFFLINE
  •  
  • Local time:03:51 AM

Posted 24 December 2013 - 06:23 AM

Ok that worked!

 

No softonic search anymore in chrome!

 

What about the lines in autoruns that i didn't find?

 

Am i clean now?






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users