Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

computer/browser acting strange


  • Please log in to reply
12 replies to this topic

#1 vtek

vtek

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:46 AM

Posted 26 December 2013 - 09:31 AM

my gf has been using the comp for a few weeks and it has been acting strange since. she claims she hasn't downloaded anything dodgy nor visited any sketchy sites.

 

what's going on is that connectivity is slow and, worse, when typing, the cursor keeps leaving the field meaning that in order to type this, I have to click back onto the field every few characters or wait for the cursor to return. it's more than annoying; the computer is no longer fit for purpose.

 

I have no idea what can be causing the cursor to move around or disappear - whether it's a hardware or software issue - but I'm hoping that the experts here can take a stab at it.



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:46 PM

Posted 26 December 2013 - 11:42 AM

Hi vtek, run these and see.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 vtek

vtek
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:46 AM

Posted 26 December 2013 - 06:45 PM

hi, thanks for the reply.

 

here is the result of the mini tool box scan:

 

+MiniToolBox by Farbar  Version: 18-12-2013
Ran by vtek (administrator) on 26-12-2013 at 23:19:47
Running from "C:\Users\vtek\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Broadcom 802.11n Network Adapter = Wireless Network Connection (Connected)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : vtek
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : Home

Ethernet adapter Local Area Connection* 9:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Anchorfree HSS VPN Adapter
   Physical Address. . . . . . . . . : 00-FF-54-31-88-F9
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : Home
   Description . . . . . . . . . . . : Broadcom 802.11n Network Adapter
   Physical Address. . . . . . . . . : 38-59-F9-B2-F5-18
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::787d:6aa6:3bf5:2064%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.2(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 25 December 2013 17:02:30
   Lease Expires . . . . . . . . . . : 27 December 2013 13:36:05
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 389569017
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-E6-02-31-B8-70-F4-AA-8F-DB
   DNS Servers . . . . . . . . . . . : 192.168.0.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
   Physical Address. . . . . . . . . : B8-70-F4-AA-8F-DB
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.Home:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : Home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{543188F9-BAED-4653-8A56-FA310C8748F6}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:b:1918:a1fa:f12c(Preferred)
   Link-local IPv6 Address . . . . . : fe80::b:1918:a1fa:f12c%16(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{8A828044-C5EF-4A5E-AD5C-074C260BE8C4}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  SkyRouter.Home
Address:  192.168.0.1

Name:    google.com
Addresses:  2a00:1450:4009:808::1001
   173.194.41.131
   173.194.41.130
   173.194.41.135
   173.194.41.132
   173.194.41.133
   173.194.41.136
   173.194.41.129
   173.194.41.142
   173.194.41.137
   173.194.41.134
   173.194.41.128

Pinging google.com [173.194.41.130] with 32 bytes of data:
Reply from 173.194.41.130: bytes=32 time=370ms TTL=58
Request timed out.

Ping statistics for 173.194.41.130:
    Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
    Minimum = 370ms, Maximum = 370ms, Average = 370ms
Server:  SkyRouter.Home
Address:  192.168.0.1

Name:    yahoo.com
Addresses:  98.139.183.24
   98.138.253.109
   206.190.36.45

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=505ms TTL=51
Reply from 98.138.253.109: bytes=32 time=154ms TTL=51

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 154ms, Maximum = 505ms, Average = 329ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 14...00 ff 54 31 88 f9 ......Anchorfree HSS VPN Adapter
 12...38 59 f9 b2 f5 18 ......Broadcom 802.11n Network Adapter
 11...b8 70 f4 aa 8f db ......Broadcom NetLink ™ Gigabit Ethernet
  1...........................Software Loopback Interface 1
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.2     30
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link       192.168.0.2    286
      192.168.0.2  255.255.255.255         On-link       192.168.0.2    286
    192.168.0.255  255.255.255.255         On-link       192.168.0.2    286
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.0.2    286
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.0.2    286
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 16     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 16     58 2001::/32                On-link
 16    306 2001:0:9d38:6abd:b:1918:a1fa:f12c/128
                                    On-link
 12    286 fe80::/64                On-link
 16    306 fe80::/64                On-link
 16    306 fe80::b:1918:a1fa:f12c/128
                                    On-link
 12    286 fe80::787d:6aa6:3bf5:2064/128
                                    On-link
  1    306 ff00::/8                 On-link
 16    306 ff00::/8                 On-link
 12    286 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/26/2013 11:20:15 PM) (Source: Application Error) (User: )
Description: Faulting application name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Faulting module name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Exception code: 0x40000015
Fault offset: 0x000861fd
Faulting process id: 0xbb78
Faulting application start time: 0xcmw_srv.exe0
Faulting application path: cmw_srv.exe1
Faulting module path: cmw_srv.exe2
Report Id: cmw_srv.exe3

Error: (12/26/2013 11:20:13 PM) (Source: Application Error) (User: )
Description: Faulting application name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Faulting module name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Exception code: 0x40000015
Fault offset: 0x000861fd
Faulting process id: 0xb50c
Faulting application start time: 0xcmw_srv.exe0
Faulting application path: cmw_srv.exe1
Faulting module path: cmw_srv.exe2
Report Id: cmw_srv.exe3

Error: (12/26/2013 11:20:10 PM) (Source: Application Error) (User: )
Description: Faulting application name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Faulting module name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Exception code: 0x40000015
Fault offset: 0x000861fd
Faulting process id: 0xbd48
Faulting application start time: 0xcmw_srv.exe0
Faulting application path: cmw_srv.exe1
Faulting module path: cmw_srv.exe2
Report Id: cmw_srv.exe3

Error: (12/26/2013 11:20:07 PM) (Source: Application Error) (User: )
Description: Faulting application name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Faulting module name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Exception code: 0x40000015
Fault offset: 0x000861fd
Faulting process id: 0xbcd8
Faulting application start time: 0xcmw_srv.exe0
Faulting application path: cmw_srv.exe1
Faulting module path: cmw_srv.exe2
Report Id: cmw_srv.exe3

Error: (12/26/2013 11:20:01 PM) (Source: Application Error) (User: )
Description: Faulting application name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Faulting module name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Exception code: 0x40000015
Fault offset: 0x000861fd
Faulting process id: 0xbed8
Faulting application start time: 0xcmw_srv.exe0
Faulting application path: cmw_srv.exe1
Faulting module path: cmw_srv.exe2
Report Id: cmw_srv.exe3

Error: (12/26/2013 11:19:58 PM) (Source: Application Error) (User: )
Description: Faulting application name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Faulting module name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Exception code: 0x40000015
Fault offset: 0x000861fd
Faulting process id: 0xbf5c
Faulting application start time: 0xcmw_srv.exe0
Faulting application path: cmw_srv.exe1
Faulting module path: cmw_srv.exe2
Report Id: cmw_srv.exe3

Error: (12/26/2013 11:19:56 PM) (Source: Application Error) (User: )
Description: Faulting application name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Faulting module name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Exception code: 0x40000015
Fault offset: 0x000861fd
Faulting process id: 0xbecc
Faulting application start time: 0xcmw_srv.exe0
Faulting application path: cmw_srv.exe1
Faulting module path: cmw_srv.exe2
Report Id: cmw_srv.exe3

Error: (12/26/2013 11:19:53 PM) (Source: Application Error) (User: )
Description: Faulting application name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Faulting module name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Exception code: 0x40000015
Fault offset: 0x000861fd
Faulting process id: 0xbd8c
Faulting application start time: 0xcmw_srv.exe0
Faulting application path: cmw_srv.exe1
Faulting module path: cmw_srv.exe2
Report Id: cmw_srv.exe3

Error: (12/26/2013 11:19:51 PM) (Source: Application Error) (User: )
Description: Faulting application name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Faulting module name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Exception code: 0x40000015
Fault offset: 0x000861fd
Faulting process id: 0xb94c
Faulting application start time: 0xcmw_srv.exe0
Faulting application path: cmw_srv.exe1
Faulting module path: cmw_srv.exe2
Report Id: cmw_srv.exe3

Error: (12/26/2013 11:19:48 PM) (Source: Application Error) (User: )
Description: Faulting application name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Faulting module name: cmw_srv.exe, version: 3.20.0.21481, time stamp: 0x5295405c
Exception code: 0x40000015
Fault offset: 0x000861fd
Faulting process id: 0xb95c
Faulting application start time: 0xcmw_srv.exe0
Faulting application path: cmw_srv.exe1
Faulting module path: cmw_srv.exe2
Report Id: cmw_srv.exe3

System errors:
=============
Error: (12/26/2013 11:20:14 PM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Service service terminated unexpectedly.  It has done this 19008 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (12/26/2013 11:20:12 PM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Service service terminated unexpectedly.  It has done this 19007 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (12/26/2013 11:20:09 PM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Service service terminated unexpectedly.  It has done this 19006 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (12/26/2013 11:20:03 PM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Service service terminated unexpectedly.  It has done this 19005 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (12/26/2013 11:20:00 PM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Service service terminated unexpectedly.  It has done this 19004 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (12/26/2013 11:19:58 PM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Service service terminated unexpectedly.  It has done this 19003 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (12/26/2013 11:19:55 PM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Service service terminated unexpectedly.  It has done this 19002 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (12/26/2013 11:19:53 PM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Service service terminated unexpectedly.  It has done this 19001 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (12/26/2013 11:19:50 PM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Service service terminated unexpectedly.  It has done this 19000 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (12/26/2013 11:19:47 PM) (Source: Service Control Manager) (User: )
Description: The Hotspot Shield Service service terminated unexpectedly.  It has done this 18999 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Microsoft Office Sessions:
=========================
Error: (12/26/2013 11:20:15 PM) (Source: Application Error)(User: )
Description: cmw_srv.exe3.20.0.214815295405ccmw_srv.exe3.20.0.214815295405c40000015000861fdbb7801cf0291084687f3C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exeC:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe46596dff-6e84-11e3-98a1-b870f4aa8fdb

Error: (12/26/2013 11:20:13 PM) (Source: Application Error)(User: )
Description: cmw_srv.exe3.20.0.214815295405ccmw_srv.exe3.20.0.214815295405c40000015000861fdb50c01cf0291069a1042C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exeC:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe44d7cf13-6e84-11e3-98a1-b870f4aa8fdb

Error: (12/26/2013 11:20:10 PM) (Source: Application Error)(User: )
Description: cmw_srv.exe3.20.0.214815295405ccmw_srv.exe3.20.0.214815295405c40000015000861fdbd4801cf029104e8d5d0C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exeC:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe432694a1-6e84-11e3-98a1-b870f4aa8fdb

Error: (12/26/2013 11:20:07 PM) (Source: Application Error)(User: )
Description: cmw_srv.exe3.20.0.214815295405ccmw_srv.exe3.20.0.214815295405c40000015000861fdbcd801cf02910175b74aC:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exeC:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe417c7e50-6e84-11e3-98a1-b870f4aa8fdb

Error: (12/26/2013 11:20:01 PM) (Source: Application Error)(User: )
Description: cmw_srv.exe3.20.0.214815295405ccmw_srv.exe3.20.0.214815295405c40000015000861fdbed801cf0290fff679beC:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exeC:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe3df19207-6e84-11e3-98a1-b870f4aa8fdb

Error: (12/26/2013 11:19:58 PM) (Source: Application Error)(User: )
Description: cmw_srv.exe3.20.0.214815295405ccmw_srv.exe3.20.0.214815295405c40000015000861fdbf5c01cf0290fe6db6b1C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exeC:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe3c5f4979-6e84-11e3-98a1-b870f4aa8fdb

Error: (12/26/2013 11:19:56 PM) (Source: Application Error)(User: )
Description: cmw_srv.exe3.20.0.214815295405ccmw_srv.exe3.20.0.214815295405c40000015000861fdbecc01cf0290fcd44a02C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exeC:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe3ac37b6a-6e84-11e3-98a1-b870f4aa8fdb

Error: (12/26/2013 11:19:53 PM) (Source: Application Error)(User: )
Description: cmw_srv.exe3.20.0.214815295405ccmw_srv.exe3.20.0.214815295405c40000015000861fdbd8c01cf0290fb4de855C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exeC:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe395024bf-6e84-11e3-98a1-b870f4aa8fdb

Error: (12/26/2013 11:19:51 PM) (Source: Application Error)(User: )
Description: cmw_srv.exe3.20.0.214815295405ccmw_srv.exe3.20.0.214815295405c40000015000861fdb94c01cf0290f9ad5785C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exeC:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe37c03d91-6e84-11e3-98a1-b870f4aa8fdb

Error: (12/26/2013 11:19:48 PM) (Source: Application Error)(User: )
Description: cmw_srv.exe3.20.0.214815295405ccmw_srv.exe3.20.0.214815295405c40000015000861fdb95c01cf0290f7fc1d13C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exeC:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe3639dbe4-6e84-11e3-98a1-b870f4aa8fdb

=========================== Installed Programs ============================

??? ActiveX ?? Windows Live Mesh ???? ??????? ??????? (Version: 15.4.5722.2)
???? ??? Windows Live (Version: 15.4.3502.0922)
???? ???? ActiveX ????? ?? Windows Live Mesh ????????? ??????? (Version: 15.4.5722.2)
???? Windows Live (Version: 15.4.3502.0922)
?????? ??????? ?? Windows Live (Version: 15.4.3502.0922)
??????? ?????????? Windows Live Mesh ActiveX ??? ????????? ??????????? (Version: 15.4.5722.2)
??????? Windows Live Mesh ActiveX ??? (Version: 15.4.5722.2)
???????? ?????????? Windows Live (Version: 15.4.3502.0922)
????????? ActiveX ?? Windows Live Mesh ????????????????????????? (???) (Version: 15.4.5722.2)
?????????? Windows Live (Version: 15.4.3502.0922)
??????????? ?? Windows Live (Version: 15.4.3502.0922)
µTorrent (Version: 3.2.0)
Acer Backup Manager (Version: 3.0.0.99)
Acer Crystal Eye Webcam (Version: 1.0.1904)
Acer ePower Management (Version: 6.00.3007)
Acer eRecovery Management (Version: 5.00.3502)
Acer Registration (Version: 1.04.3502)
Acer ScreenSaver (Version: 1.1.0519.2011)
Acer Updater (Version: 1.02.3500)
ActiveX ???????? ?? Windows Live Mesh ?? ?????????? ?????? (Version: 15.4.5722.2)
ActiveX-kontroll för fjärranslutningar för Windows Live Mesh (Version: 15.4.5722.2)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Reader X (10.1.8) MUI (Version: 10.1.8)
Akamai NetSession Interface
Backup Manager V3 (Version: 3.0.0.99)
Bing Bar (Version: 7.0.765.0)
BlueStacks App Player (Version: 0.7.14.901)
BlueStacks Notification Center (Version: 0.7.14.901)
Broadcom Card Reader Driver Installer (Version: 14.8.2.2)
Broadcom NetLink Controller (Version: 14.8.4.1)
Citrix Online Launcher (Version: 1.0.122)
clear.fi (Version: 1.0.1517_36458)
clear.fi (Version: 1.0.1720.00)
clear.fi (Version: 9.0.7709)
clear.fi Client (Version: 1.00.3500)
Control ActiveX de Windows Live Mesh para conexiones remotas (Version: 15.4.5722.2)
Control ActiveX del Windows Live Mesh per a connexions remotes (Version: 15.4.5722.2)
Control ActiveX Windows Live Mesh pentru conexiuni la distan?a (Version: 15.4.5722.2)
Controle ActiveX do Windows Live Mesh para Conexões Remotas (Version: 15.4.5722.2)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (Version: 15.4.5722.2)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (Version: 15.4.5722.2)
D3DX10 (Version: 15.4.2368.0902)
Diablo II
DivX Setup (Version: 2.6.1.24)
Dolby Advanced Audio v2 (Version: 7.2.7000.4)
Dragon Age II (Version: 1.00)
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsluge polaczen zdalnych (Version: 15.4.5722.2)
Fotogalerija Windows Live (Version: 15.4.3502.0922)
Galeria de Fotografias do Windows Live (Version: 15.4.3502.0922)
Galería fotográfica de Windows Live (Version: 15.4.3502.0922)
Galeria fotogràfica del Windows Live (Version: 15.4.3502.0922)
Galeria fotografii uslugi Windows Live (Version: 15.4.3502.0922)
Galerie de photos Windows Live (Version: 15.4.3502.0922)
Galerie foto Windows Live (Version: 15.4.3502.0922)
GMATPrep (Version: 2.2.306)
Google Chrome (Version: 31.0.1650.63)
Google Talk (remove only)
Google Talk Plugin (Version: 4.9.1.16010)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4601.54)
Google Update Helper (Version: 1.3.22.3)
GoToMeeting 5.5.0.1132 (Version: 5.5.0.1132)
Hotspot Shield 3.20 (Version: 3.20)
Identity Card (Version: 1.00.3501)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2418)
Intel® Rapid Storage Technology (Version: 10.5.0.1026)
Intel® Turbo Boost Technology Monitor 2.0 (Version: 2.1.23.0)
Junk Mail filter update (Version: 15.4.3502.0922)
Kontrola Windows Live Mesh ActiveX za daljinske veze (Version: 15.4.5722.2)
Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave (Version: 15.4.5722.2)
Launch Manager (Version: 5.1.7)
League of Legends (Version: 1.3)
Legend of Grimrock
McAfee Internet Security Suite (Version: 11.0.678)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Mouse and Keyboard Center (Version: 2.2.173.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.5131.5000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 24.0 (x86 en-US) (Version: 24.0)
Mozilla Maintenance Service (Version: 24.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MyWinLocker (Version: 4.0.14.25)
MyWinLocker 4 (Version: 4.0.14.25)
MyWinLocker Suite (Version: 4.0.14.15)
Norton Online Backup (Version: 2.1.17869)
Norton Security Scan (Version: 3.7.2.5)
NTI Media Maker 9 (Version: 9.0.2.8942)
NVIDIA Control Panel 268.00 (Version: 268.00)
NVIDIA Graphics Driver 268.00 (Version: 268.00)
NVIDIA Install Application (Version: 2.265.39.0)
NVIDIA Optimus 1.0.21 (Version: 1.0.21)
NVIDIA PhysX (Version: 9.10.0514)
NVIDIA Update Components (Version: 1.0.21)
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená pripojení (Version: 15.4.5722.2)
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (Version: 15.4.5722.2)
Paint.NET v3.5.10 (Version: 3.60.0)
Poczta uslugi Windows Live (Version: 15.4.3502.0922)
Podstawowe programy Windows Live (Version: 15.4.3502.0922)
Pošta Windows Live (Version: 15.4.3502.0922)
Raccolta foto di Windows Live (Version: 15.4.3502.0922)
Realtek High Definition Audio Driver (Version: 6.0.1.6339)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.34.0)
S?????? f?t???af??? t?? Windows Live (Version: 15.4.3502.0922)
Shredder (Version: 2.0.8.9)
Skype Click to Call (Version: 6.13.13771)
Skype™ 6.6 (Version: 6.6.106)
St???e?? e?????? ActiveX t?? Windows Live Mesh ??a ap?µa???sµ??e? s??d?se?? (Version: 15.4.5722.2)
Super TextTwist
Synaptics Pointing Device Driver (Version: 15.1.6.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
Urruneko konexioetarako Windows Live Mesh ActiveX kontrola (Version: 15.4.5722.2)
Uzak Baglantilar Için Windows Live Mesh ActiveX Denetimi (Version: 15.4.5722.2)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
Welcome Center (Version: 1.02.3503)
William Hill Poker
WinAce Archiver (Version: 2.69)
Windows Live ??? (Version: 15.4.3502.0922)
Windows Live ???? (Version: 15.4.3502.0922)
Windows Live Argazki Galeria (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Fotogaléria (Version: 15.4.3502.0922)
Windows Live Fotogalerie (Version: 15.4.3502.0922)
Windows Live Fotogalleri (Version: 15.4.3502.0922)
Windows Live Fotograf Galerisi (Version: 15.4.3502.0922)
Windows Live Fotótár (Version: 15.4.3502.0922)
Windows Live Galeria de Fotos (Version: 15.4.3502.0922)
Windows Live Galerija fotografija (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (Version: 15.4.5722.2)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX control for remote connections (Version: 15.4.5722.2)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger (Version: 15.4.5722.2)
Windows Live Mesh ActiveX-objekt til fjernforbindelser (Version: 15.4.5722.2)
Windows Live Mesh ActiveX-vezérlo távoli kapcsolatokhoz (Version: 15.4.5722.2)
Windows Live Meshin etäyhteyksien ActiveX-komponentti (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Temel Parçalar (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Liven asennustyökalu (Version: 15.4.3502.0922)
Windows Liven sähköposti (Version: 15.4.3502.0922)
Windows Liven valokuvavalikoima (Version: 15.4.3502.0922)

========================= Memory info: ===================================

Percentage of memory in use: 48%
Total physical RAM: 5995.86 MB
Available physical RAM: 3110.67 MB
Total Pagefile: 11989.9 MB
Available Pagefile: 8139.79 MB
Total Virtual: 4095.88 MB
Available Virtual: 3971.33 MB

========================= Partitions: =====================================

1 Drive c: (Acer) (Fixed) (Total:680.54 GB) (Free:419.68 GB) NTFS

========================= Users: ========================================

User accounts for \\VTEK

Administrator            fbwuser                  Guest                   
UpdatusUser              vtek                  

**** End of log ****



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:46 PM

Posted 26 December 2013 - 07:14 PM

You have a lot of errors from this... Hotspot Shield 3.20 (Version: 3.20)

You may want to Un and Re install it.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 vtek

vtek
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:46 AM

Posted 26 December 2013 - 07:16 PM

ok. I'm having a hard time posting the Kaspersky.

 

here's jrt

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by vtek on 26/12/2013 at 23:48:02.57
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

Failed to stop: [Service] hshld
Successfully stopped: [Service] hsstrayservice
Successfully deleted: [Service] hsstrayservice
Failed to stop: [Service] hsswd

 

~~~ Registry Values

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\protector_dll.protectorbho.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\anchorfree
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\distromatic
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\conduitsearchscopes
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\pricegong
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\smartbar
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\hotspotshield
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\videodownloadconverter_4z.pseudotransparentplugin
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\conduitinstaller_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\conduitinstaller_rasmancs
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT1561552
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{241B5929-C642-454C-AF47-D0F6A118247E}

 

~~~ Files

Successfully deleted: [File] "C:\end"
Successfully deleted: [File] C:\Windows\syswow64\sho8429.tmp

 

~~~ Folders

Failed to delete: [Folder] "C:\ProgramData\hotspot shield"
Successfully deleted: [Folder] "C:\Users\vtek\AppData\Roaming\thinstall"
Successfully deleted: [Folder] "C:\Users\vtek\appdata\local\conduit"
Successfully deleted: [Folder] "C:\Users\vtek\appdata\local\thinstall"
Successfully deleted: [Folder] "C:\Users\vtek\appdata\locallow\boost_interprocess"
Successfully deleted: [Folder] "C:\Users\vtek\appdata\locallow\conduit"
Successfully deleted: [Folder] "C:\Users\vtek\appdata\locallow\pricegong"
Successfully deleted: [Folder] "C:\Program Files (x86)\conduit"
Failed to delete: [Folder] "C:\Program Files (x86)\hotspot shield"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{0118D085-F56D-4E01-8F5E-9F679CED0ADE}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{01633907-D02A-47CD-B055-768A237EBA0F}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{0360AA83-80C9-469B-A3CE-CCC3B9E236E4}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{04CAC121-0977-4D27-8F15-EB0D5D3AD786}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{069502DD-BC23-458E-9412-84E0D37085EF}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{0A6D80BA-823C-48DF-9C5E-496CCB320FF3}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{0CDEC44A-0844-40DF-BEE0-28C2BBD5FB1E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{0D8EF4C3-A690-4844-875D-6F3F6D4FB39D}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{0DA4286E-4F6F-4845-971C-BEAAF230168B}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{0E4CF176-A881-4B05-B5E5-692D8114B003}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{0E96A3FD-9420-4D13-8BE0-074A4647DFEA}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{0F8ECE7C-532C-455F-85F4-9039C30CE151}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{1039AE3B-F0B1-4207-9188-A8DB52A05D94}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{1138441F-C371-41AA-A79A-2A85B2CE6B87}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{132C4D96-8A01-4E2F-B783-8542F2394919}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{137CC511-DFBC-416A-BDAB-D8F06DDFBB0F}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{17C7DD31-0EA5-4C56-80E6-0D4154C0FC26}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{184F80DC-D292-4319-AF48-03A7C33DC4E0}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{19302D8D-A5A7-4481-880C-1B6EF93C4CBF}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{1A491E41-031C-4EAB-8477-023286BCDE5F}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{1AFD8F51-E792-45AF-96F2-D54C344741EF}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{1CE198C3-DC2A-4BE7-8A63-EA860407F145}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{1D8ABEBF-1322-4B18-B140-07D2C875C01E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{1DBDE5B2-4FEC-4E30-BFF1-447326112F36}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{2353F12D-CBF7-4DB2-8A6B-3F23C651C4C7}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{26F8CCB2-FFF4-4B22-991F-FCA8C6563712}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{2720EAB8-369A-4A6D-AF5E-14E2D6523934}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{2776BF91-2ADD-42FA-900B-2A72ACAF1862}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{27E00C83-0B42-4027-98B7-1AA3A32CF58A}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{28817D29-9896-4829-A2A0-A74C5EA23200}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{29AABED5-AA3F-452E-BCC2-708B992793E5}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{29CCD473-56C1-413F-B466-E0D68B673DE6}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{2A48BE8F-37B2-46EA-9410-3E5C290E9650}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{2BA562FC-D9FC-4299-8DE5-FE17323ABC76}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{2C04D805-D700-4FD7-BB8F-5AB196F1536F}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{2DF878A9-B7EF-41D5-A8FE-F54FEFDECD5B}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{2E1B6FE5-EC6D-4A3C-811E-1328AF944FEA}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{2E6DA641-949F-4D53-AF90-BFAC30A5F0E2}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{2E976DBB-DB93-4C1F-B07E-A9DA1913EA5D}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{2FAAD819-F2B1-44DF-A983-F4082B44094D}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{2FCA5EAE-469F-4612-906D-744E0A49CBAE}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{2FD919BD-D54A-4E13-B5A1-30B1911732BD}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{325D2466-7822-45CD-8979-A065E9BEC19D}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{32C1283C-2BEA-44D5-81A1-744F9D08CA1E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{32C58CB3-32C9-4698-8F47-B7365DC03DB2}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{3389A098-C3BC-48DA-AEE5-1B0727F8C4B1}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{33C04374-BA88-445B-82A8-D8F513C67DD0}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{34C9343D-97CB-4BBC-95B3-30EF45E5393E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{354CA4F7-D09D-43D7-A4A3-96BF73A0F635}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{35909BC6-0E2E-45FC-8B8D-7F6C8BC4A34E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{35981DBA-79C7-43BC-BF9C-DE9EC49A1BCE}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{35E7FE7D-F5EC-4E99-8900-89CB3680C674}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{3624EEC1-97CB-4267-BD50-BC04DC73F1C4}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{36BCD41F-4A24-4B44-B5F5-5644785AEF0C}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{371E66B2-E79C-49F6-A3F3-29CDDEB0E119}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{386CA10C-641C-42D5-8D76-539BC0F6011A}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{39DD50BA-180B-4A31-AC4D-FCF6AB12EE52}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{3C4CBAED-6C96-4187-A697-8775FF02466C}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{3C912CD3-898E-4E92-931E-B1D1B3ABE92F}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{3D37B70A-7291-4942-8317-C643D457C9E2}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{3EAE13D5-9EB7-498E-AD1E-00D6893FF5B7}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{3EB989D0-3365-4319-8B52-CEF30E915DF1}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{4187187E-0C5F-4346-B653-DF765B7C8E95}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{42FCE31B-1536-41CC-B76D-420E0B40EE33}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{44B5335D-CCCF-4733-9EF4-B75D47EAD40A}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{45EC75A5-1746-4EAE-86B2-20A584F43E67}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{4903D740-0038-4100-9551-D0693AE5B235}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{49B43802-FD96-494B-8ECE-9B2213F74D45}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{4C229677-B810-4AED-BBBB-70D6C6D06140}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{4C2CFD13-EEB3-4A4F-BC47-A34F9832ECC5}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{50E46620-3BD3-43AB-8ECB-EA7A93F9C3F1}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{524B5A88-6819-4D72-B0A9-0BAB22C1CC94}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{52FCA208-4F2A-4A08-958E-11AB9798CBD0}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{53A6315F-18F3-4FCE-AAE0-B4BD6085B5CC}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5411B183-C8AC-4AC9-B464-0F942B116F13}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{56D1FCD3-F8FF-4668-B6EB-326327991909}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{57BB72A5-2201-4A6F-A406-DF04C1275C91}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{57ECA82D-62AF-4003-AE4B-BF675047FC2E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5958C505-5C6A-4F41-B0A4-50A62524FFC5}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5A456577-5BBE-4501-A8C3-56BCB796A965}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5A88C0B5-16D7-4271-8351-4DA452EE873C}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5BB6DD02-E3D5-49A2-A167-224F81E291AE}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5C25CF54-4C72-4B0A-B918-092B09891E5C}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5C264722-B926-4E8A-B2D2-D11A855F424F}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5D10D6D1-B87E-424E-93E5-6CF12E839291}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5D591C5A-51C3-4736-A8D3-E598A602EF96}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5D8DDA60-63A7-46F2-B00B-85501F89974A}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5DA3341C-95CA-4139-AFF7-8C7756F2EE1F}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5DF1349A-AE4D-4697-AC5F-D83F84AFF6EE}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5F402484-08BE-4BB4-B322-82784FEF97F3}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5F58D45F-8EE6-47C3-B1CC-DC7F8F1FDCF2}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{5F5EE581-EB74-4E9C-9B26-2ACF5C0FB29D}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{601C6E90-FA79-40A4-97CF-428033E3FE53}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{6242E6D7-1EBB-45F0-8789-EA8C7092857D}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{63BD926F-7EEA-402B-ADE3-2BE2D2D12303}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{656F7F95-81B5-4AF0-9FE6-1A65E7B8EC57}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{65F3B5A8-4467-48DE-A708-DC1CD61C91BD}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{679A8179-7C10-451E-99A8-3D6F85DA1E2A}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{67CC430C-2F52-40D3-BD04-92E1A832BFDD}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{687B98E2-A0D2-47A9-B6C0-C74BD71DDBBE}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{69ED4B2D-C9B4-47A3-AE8A-F9A47BBE28D4}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{6C286E6B-EA73-40FE-A085-12897981FF98}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{6C8AE633-905D-4ED8-8BBC-D4AB00D1F3C0}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{6E9B92CB-0D22-44C9-A510-7053FAAFBCAD}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{6F495BF8-95AB-42CF-B26F-177229CE4F16}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{7114175C-BB04-40AB-A5E7-BF9E42D6AF76}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{718265C4-2C77-4B8D-B03A-D891098DD6D9}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{723B58E7-2920-4717-A338-9AC357628DFF}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{748DB124-89F7-4E14-8158-E48142629507}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{74BFFF85-1374-4FD5-AD4E-6F1690B8BFDE}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{7506836F-24EA-483D-ACB3-7E55F3890160}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{756B82B0-DCD0-4207-9631-4F63A55FD070}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{768F4C4E-501D-443B-9BF1-3D69CC7FA913}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{78190BA9-12F2-418B-9E9D-891AB603F7CA}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{7833308D-86ED-4D8B-AF37-1F8F0540213B}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{7A27F95B-DA28-4777-B0EE-086D1531959E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{7B55DA4D-5985-470B-9F46-4F4D4209BFC9}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{7BCEDCC0-50BC-419A-9B88-D44984D7C2D0}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{7C4ACD4F-8D61-4439-815F-1C1FAA89A935}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{7CF45E98-43A9-4EC4-A540-68DA228782AC}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{7FFF4972-6673-4A44-910F-8915B07FF48E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{80795F1C-228F-45E1-A76A-12D21A6219D5}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{82923357-8864-49C1-827D-CEE880072B42}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{83226F59-848D-479F-8D5C-5B8C02DC4594}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{87A93754-683D-457A-9709-FC37047190FB}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{88128382-8A64-4A34-8EA8-8F391630475E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{88278B16-2BDD-4D04-A479-C7D81ED1F280}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{8961E75D-31F6-420A-B203-6FB6BCC9FF8B}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{8AF0DDD4-54BE-4117-A5D7-3B3DADDB21A9}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{8CD78F49-07B0-4AE7-8F45-B3825F322D81}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{8F098CF6-0DB0-4BC4-803B-8BED0BEFC52F}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{9127533C-D24B-48FA-852B-4C0149D3FEA7}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{925E42E4-B0F1-434C-B74F-188465B13113}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{95ACEE1F-0032-49A2-84B3-6FC59D54408B}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{962593C1-4DFB-4ABB-A601-1F6A95B5EC5D}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{979E7560-E649-4414-A312-ADAFDB76844B}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{99159354-2EB0-4EFC-9696-36208BCF247C}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{9A09B569-AF2B-4ACE-B652-4A18C79A51E2}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{9A2A8DB1-F158-4591-9246-E5502927826F}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{9A9746D9-E9E3-4588-9AF3-510BCFA9BF97}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{9AFDB0EB-3818-474F-9476-7D287B9FDD65}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{9C0B7297-40EE-4C64-B7AE-D5BCF2E0FEE8}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{9C8164A2-5413-483D-AF76-9F0A3F5AFCC9}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{9E92E1F2-8C5C-404C-9E59-B8B14C994197}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{9F352A3E-6A4E-47AA-8AE4-8130ADA38EFE}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{A069A9E1-0B04-4468-B660-5BC712628494}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{A185E81B-5C89-4284-A7DD-BD9B1895DA32}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{A1F0D52E-5474-4C07-BCA0-917D472299DA}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{A2E9C1B1-8259-4464-A3A2-152DF8DB788E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{A3294BE9-DA0C-47B9-9A2E-9B39AB0AC77D}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{A6D130BD-5C8B-42EE-B887-37A9AED697A4}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{A8D58D39-C8FF-4CF0-B9CC-1E820AEB0B23}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{A904C917-92FC-4A29-B0E0-05B49ACE62FB}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{A94D1147-3258-49FC-A5F0-97A00D0AFF57}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{A96CED1E-0EE1-4F72-9332-A75C75D9C929}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{AA78C998-BC6E-4160-A021-5042CF4ED585}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{AAFEF9C3-4CCF-4972-9C09-28489F15B692}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{AF892851-BB7F-4BE6-91EB-83DEEE592C7F}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{AF9C3C3F-EB7C-4D10-A4B8-AB8DC86C061E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{B070EB83-DE6C-4C40-B4D6-823B2DBB77F6}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{B14FDD99-7294-4299-84BD-1103524A087B}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{B4D5E08B-CE7F-4ADD-92D5-841C4E43F5F0}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{B530BF31-8E59-4BCA-99D2-47B01FBAD8B2}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{B6158196-2245-46AA-88AD-FE281AF599E6}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{B771A155-C568-4D46-ACF5-784CD826E1C5}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{B8738734-1775-48B1-BAE3-8D0EE0307749}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{B8B9DEE3-78FE-4785-8672-4B0F3856A65F}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{B923EA1C-39B3-4844-99CE-618523013812}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{B992A40C-D0D4-4A33-B0AF-EB425026800C}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{B99CD8B5-1C27-4961-B63B-80EE383A225A}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{BACDCFC4-E422-4AC9-A761-0B60F864A94E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{BBAEF10E-8084-4448-BE2E-4C05C7629014}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{BD801971-BAFA-45CF-8A23-534EE4F2206E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{BDC391F1-E1BB-4C21-8ECB-DA8F76BF8F61}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{BE55F603-7D1A-4BDE-AC10-CC34FAABBC91}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{BF1C4D73-4F0A-461F-8803-62DCC5F17826}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{C036BC33-6300-4976-8E11-78BAD073DC0F}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{C313978A-BF24-4EED-B99F-33A7AFFB0C0A}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{C3201D79-69B6-4390-B821-FC7A2C805D5E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{C503FA59-7906-467C-A32B-C425F5F3D990}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{C84FABF3-AC10-458B-B3F0-D75D8CA040BB}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{C8D100A3-4216-4CAE-8CEF-E1380E883FE5}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{C9D4F0AB-D33B-479F-A854-44F81943BD37}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{C9D77206-2309-425F-91D3-0181A0E34632}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{CA3D887D-0994-452A-AED6-6B56F424C87E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{CA57CB65-79AE-4F6C-BCC3-7B4220A8A01D}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{CC7E8899-504E-4895-B49F-8BC3289E3D51}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{CE39D46B-E1ED-4099-B758-26DA258A777C}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{CE8034F6-FE27-44DB-89B9-79039D3F9830}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D113D127-7BD8-491E-8193-E3D9A95ADF39}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D16E4A95-034A-40C5-81E5-AE24165B0BB2}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D1B57B16-9916-4FCE-A8F9-40E7FF5E5E0D}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D1F0E880-DC6D-496B-9E9F-8296A0CB5E70}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D2FF7196-7AD4-4F9C-877A-3143FC0BFBEB}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D3FB9F89-45B1-4E0F-AA91-553F4DB6DA83}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D45B20EB-5A5F-4FBA-84DE-DC5232AD4FD1}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D4644BFC-7FE5-42C5-A7C0-101318D3299A}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D480BD4E-F00D-4BFC-84F3-0BAC150AF8B1}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D4DECBED-3CAE-4700-A449-0111A1CCC9A9}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D4EBD5B4-A5EE-4CB2-ACB2-A66CC37B0511}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D5CCDEED-496A-4B32-87BE-9B40509D58B8}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D5EDB2B6-0421-43E2-8DFC-FE5B2A6F1830}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D6528C77-0B6A-42FE-8DFE-552216A2692A}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D8BA7537-A3C8-49A9-ABE5-88438E880D23}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{D976E059-6F38-494E-B649-583CF1732A27}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{DB85DCD2-33AC-42DC-8432-6E04AAD53800}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{DBD61515-C4E2-4039-B050-7C8BEEF4F5A1}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{DBE88FC9-CEB8-4A27-8B04-B97001B3E9EB}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{DC8B7E14-2A00-4558-9164-0C0596F99A60}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{DEB2C78D-7462-4C99-BF98-8D815DC7DB2A}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{DEE93272-EAF5-47BE-8F07-4C638AB85D92}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{DF0A5978-4C1F-4DE5-A6E2-797E92014108}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{E02A2667-86C7-490D-9DA9-4C6085D0E0E6}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{E0CC1705-5EEC-4AD9-A985-259AEA4E1721}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{E2A7A925-B3D2-45F1-8357-DBFCCEFA5C55}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{E5989D6E-854F-4B00-BAE5-95C0ABCE84F7}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{E6544770-0147-4E74-8235-A47A3291A81B}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{E675FF75-BABF-4C5F-8283-F4841AD41E8D}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{E7191C37-4568-495F-8187-051D75185690}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{E773DC0E-3F32-4568-BB5E-B7617D96DF5E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{E85FABBF-DDBC-4A7B-A7FB-C2829EB1605D}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{E9158CFD-9909-4138-A671-749C16B203C0}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{EB85D7FF-419D-476D-8AC1-08BCBE7A983B}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{EB8FB87F-1C36-483B-840B-FCB5E602D6D2}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{ECA1030D-770F-49CC-80CC-F109643D16FD}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{EF7FE9A0-5C98-458D-9941-E48FD4C9DEE1}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{F0803E08-EDDC-4D1D-9447-6DB88EF0643E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{F0DB9052-3E32-404A-81A9-3E33116F7882}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{F0EEFBE3-4DF9-4A46-8D26-34CCB406754C}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{F1B6756B-819C-4ED8-AB8E-1A57EF855066}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{F2979D02-EB3C-465C-A5E3-2E402AA308F8}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{F56E7D51-3DCD-4BB0-BCF2-7409C37B5A65}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{F79AF585-4969-414E-A757-C2D5767D5305}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{F7F32FCE-5889-4384-8B7F-4A9B3ECAFAFA}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{F892F4C5-DF3C-4D3E-9C93-E3D98DFFB21A}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{F975F55D-EE27-45D1-A43B-060A5D3C4D9E}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{FA30E89B-34DF-4BB0-951B-16601CE2EEB9}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{FA5978BA-D730-4EB3-AB71-0DF631A5864B}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{FA7E5DC4-76B8-4C27-B17B-0D2E41480528}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{FB2B64F7-DDE9-4033-A55A-1D480D5843C4}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{FD14027E-003E-479B-AC1E-132AFAA1C1A3}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{FDC692AC-79C0-456C-9F87-B0B3D91321D4}
Successfully deleted: [Empty Folder] C:\Users\vtek\appdata\local\{FE0387AC-A449-4E27-AA60-2D63F29CC8DE}

 

~~~ FireFox

Emptied folder: C:\Users\vtek\AppData\Roaming\mozilla\firefox\profiles\8kaqilq1.default\minidumps [7 files]

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 27/12/2013 at  0:08:02.10
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#6 vtek

vtek
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:46 AM

Posted 26 December 2013 - 07:22 PM

finaly here is kaspersky

 

23:45:39.0185 0xb3f4  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
23:45:42.0352 0xb3f4  ============================================================
23:45:42.0352 0xb3f4  Current date / time: 2013/12/26 23:45:42.0352
23:45:42.0352 0xb3f4  SystemInfo:
23:45:42.0352 0xb3f4 
23:45:42.0352 0xb3f4  OS Version: 6.1.7601 ServicePack: 1.0
23:45:42.0352 0xb3f4  Product type: Workstation
23:45:42.0352 0xb3f4  ComputerName: VTEK
23:45:42.0352 0xb3f4  UserName: vtek
23:45:42.0352 0xb3f4  Windows directory: C:\Windows
23:45:42.0352 0xb3f4  System windows directory: C:\Windows
23:45:42.0352 0xb3f4  Running under WOW64
23:45:42.0352 0xb3f4  Processor architecture: Intel x64
23:45:42.0352 0xb3f4  Number of processors: 8
23:45:42.0352 0xb3f4  Page size: 0x1000
23:45:42.0352 0xb3f4  Boot type: Normal boot
23:45:42.0352 0xb3f4  ============================================================
23:45:42.0415 0xb3f4  System UUID: {586DCB87-9C14-608F-C432-6B4031CE1EC3}
23:45:42.0789 0xb3f4  Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:45:42.0789 0xb3f4  ============================================================
23:45:42.0789 0xb3f4  \Device\Harddisk0\DR0:
23:45:42.0805 0xb3f4  MBR partitions:
23:45:42.0805 0xb3f4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2400800, BlocksNum 0x32000
23:45:42.0805 0xb3f4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2432800, BlocksNum 0x55113000
23:45:42.0805 0xb3f4  ============================================================
23:45:42.0820 0xb3f4  C: <-> \Device\Harddisk0\DR0\Partition2
23:45:42.0820 0xb3f4  ============================================================
23:45:42.0820 0xb3f4  Initialize success
23:45:42.0820 0xb3f4  ============================================================
23:45:55.0035 0xbe9c  ============================================================
23:45:55.0035 0xbe9c  Scan started
23:45:55.0035 0xbe9c  Mode: Manual;
23:45:55.0035 0xbe9c  ============================================================
23:45:55.0035 0xbe9c  KSN ping started
23:45:57.0843 0xbe9c  KSN ping finished: true
23:45:58.0888 0xbe9c  ================ Scan system memory ========================
23:45:58.0888 0xbe9c  System memory - ok
23:45:58.0888 0xbe9c  ================ Scan services =============================
23:45:59.0169 0xbe9c  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
23:45:59.0169 0xbe9c  1394ohci - ok
23:45:59.0263 0xbe9c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
23:45:59.0278 0xbe9c  ACPI - ok
23:45:59.0325 0xbe9c  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
23:45:59.0325 0xbe9c  AcpiPmi - ok
23:45:59.0419 0xbe9c  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:45:59.0419 0xbe9c  AdobeARMservice - ok
23:45:59.0653 0xbe9c  [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:45:59.0668 0xbe9c  AdobeFlashPlayerUpdateSvc - ok
23:45:59.0746 0xbe9c  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
23:45:59.0762 0xbe9c  adp94xx - ok
23:45:59.0840 0xbe9c  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
23:45:59.0871 0xbe9c  adpahci - ok
23:45:59.0918 0xbe9c  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
23:45:59.0933 0xbe9c  adpu320 - ok
23:45:59.0980 0xbe9c  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
23:45:59.0980 0xbe9c  AeLookupSvc - ok
23:46:00.0058 0xbe9c  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
23:46:00.0105 0xbe9c  AFD - ok
23:46:00.0152 0xbe9c  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
23:46:00.0167 0xbe9c  agp440 - ok
23:46:00.0183 0xbe9c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
23:46:00.0199 0xbe9c  ALG - ok
23:46:00.0245 0xbe9c  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
23:46:00.0261 0xbe9c  aliide - ok
23:46:00.0308 0xbe9c  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
23:46:00.0308 0xbe9c  amdide - ok
23:46:00.0339 0xbe9c  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
23:46:00.0339 0xbe9c  AmdK8 - ok
23:46:00.0355 0xbe9c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
23:46:00.0355 0xbe9c  AmdPPM - ok
23:46:00.0386 0xbe9c  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
23:46:00.0401 0xbe9c  amdsata - ok
23:46:00.0433 0xbe9c  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
23:46:00.0448 0xbe9c  amdsbs - ok
23:46:00.0495 0xbe9c  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
23:46:00.0495 0xbe9c  amdxata - ok
23:46:00.0526 0xbe9c  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
23:46:00.0542 0xbe9c  AppID - ok
23:46:00.0557 0xbe9c  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
23:46:00.0557 0xbe9c  AppIDSvc - ok
23:46:00.0604 0xbe9c  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
23:46:00.0620 0xbe9c  Appinfo - ok
23:46:00.0635 0xbe9c  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
23:46:00.0651 0xbe9c  arc - ok
23:46:00.0698 0xbe9c  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
23:46:00.0713 0xbe9c  arcsas - ok
23:46:00.0729 0xbe9c  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
23:46:00.0729 0xbe9c  AsyncMac - ok
23:46:00.0791 0xbe9c  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
23:46:00.0791 0xbe9c  atapi - ok
23:46:00.0885 0xbe9c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:46:00.0932 0xbe9c  AudioEndpointBuilder - ok
23:46:01.0010 0xbe9c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
23:46:01.0057 0xbe9c  AudioSrv - ok
23:46:01.0103 0xbe9c  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
23:46:01.0119 0xbe9c  AxInstSV - ok
23:46:01.0197 0xbe9c  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
23:46:01.0213 0xbe9c  b06bdrv - ok
23:46:01.0275 0xbe9c  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
23:46:01.0291 0xbe9c  b57nd60a - ok
23:46:01.0322 0xbe9c  [ A424CB46A145E5AABF15621550976DF2, B6CA183FD5ED72237D2DC1F599FD04A066C06A717A2CF63AF08D3AA0A227D7BA ] b57xdbd         C:\Windows\system32\drivers\b57xdbd.sys
23:46:01.0337 0xbe9c  b57xdbd - ok
23:46:01.0353 0xbe9c  [ BE4E6FD5A898812B85D5817AD9754A9F, 46A7C80283BE53F43A0D73DA3338461024DD002A7CF43660F9C7D640E0C72876 ] b57xdmp         C:\Windows\system32\drivers\b57xdmp.sys
23:46:01.0353 0xbe9c  b57xdmp - ok
23:46:01.0415 0xbe9c  [ 87F3BCF82A63E900AF896CD930BF7E05, A68141E81D0541DDC1863FAC0DDBF0362641B8B0DBE06D645D00CC0DB36B30BB ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
23:46:01.0431 0xbe9c  BBSvc - ok
23:46:01.0478 0xbe9c  [ 78779EE07231C658B483B1F38B5088DF, 42DE06151DA17C218067CA3A22509BC626CB505F87238E39D024CE29554EF47D ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
23:46:01.0493 0xbe9c  BBUpdate - ok
23:46:01.0883 0xbe9c  [ 11F844B46B631337395651ABE9C4167B, 98771B4D9DABEE4C485D718E3BB7D4EF365CA1D7CF043BE12431BC08F6D16EFD ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
23:46:02.0149 0xbe9c  BCM43XX - ok
23:46:02.0227 0xbe9c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
23:46:02.0227 0xbe9c  BDESVC - ok
23:46:02.0258 0xbe9c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
23:46:02.0258 0xbe9c  Beep - ok
23:46:02.0336 0xbe9c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
23:46:02.0383 0xbe9c  BFE - ok
23:46:02.0445 0xbe9c  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
23:46:02.0507 0xbe9c  BITS - ok
23:46:02.0539 0xbe9c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
23:46:02.0539 0xbe9c  blbdrive - ok
23:46:02.0554 0xbe9c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
23:46:02.0570 0xbe9c  bowser - ok
23:46:02.0585 0xbe9c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
23:46:02.0601 0xbe9c  BrFiltLo - ok
23:46:02.0617 0xbe9c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
23:46:02.0617 0xbe9c  BrFiltUp - ok
23:46:02.0663 0xbe9c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
23:46:02.0679 0xbe9c  Browser - ok
23:46:02.0710 0xbe9c  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
23:46:02.0726 0xbe9c  Brserid - ok
23:46:02.0741 0xbe9c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
23:46:02.0741 0xbe9c  BrSerWdm - ok
23:46:02.0757 0xbe9c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
23:46:02.0757 0xbe9c  BrUsbMdm - ok
23:46:02.0788 0xbe9c  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
23:46:02.0788 0xbe9c  BrUsbSer - ok
23:46:02.0819 0xbe9c  [ 0970D8B7151E9113BF8D44CE2E954DF7, D467DFFA1668F3BE29620154A13867568C25211ED823BE6A220D2DEE7E3A1278 ] bScsiMSa        C:\Windows\system32\drivers\bScsiMSa.sys
23:46:02.0835 0xbe9c  bScsiMSa - ok
23:46:02.0851 0xbe9c  [ 0C1EEE5AF32402D306874B110DE237EC, B0FE0F3B6A1E2C003E6F4B6330601C43126881262B328D7DD93AC2C0B714DC86 ] bScsiSDa        C:\Windows\system32\DRIVERS\bScsiSDa.sys
23:46:02.0851 0xbe9c  bScsiSDa - ok
23:46:02.0960 0xbe9c  [ 9A873075063B4B9E77E75835158AB60F, DD7A73E0A8117FE9A93F81A32B2FA5D52E0D7D467946D45B188E2DDB1B0E4725 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
23:46:02.0975 0xbe9c  BstHdAndroidSvc - ok
23:46:03.0038 0xbe9c  [ D867CC47E487C119F35CF0573B384EBF, 25939FAA0187DA3A0CCB30DE52E91E89C38102B2EDA78826FF0F3395AF0435A5 ] BstHdDrv        C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
23:46:03.0038 0xbe9c  BstHdDrv - ok
23:46:03.0100 0xbe9c  [ 120A276B3A78BEDEB39E1925405A201D, 7D054B2AB000791D3B9DEB153EE5456FB781CD0FD211973EEED0879749C070FA ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
23:46:03.0116 0xbe9c  BstHdLogRotatorSvc - ok
23:46:03.0163 0xbe9c  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
23:46:03.0163 0xbe9c  BTHMODEM - ok
23:46:03.0209 0xbe9c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
23:46:03.0225 0xbe9c  bthserv - ok
23:46:03.0256 0xbe9c  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
23:46:03.0256 0xbe9c  cdfs - ok
23:46:03.0319 0xbe9c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
23:46:03.0334 0xbe9c  cdrom - ok
23:46:03.0365 0xbe9c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
23:46:03.0365 0xbe9c  CertPropSvc - ok
23:46:03.0412 0xbe9c  [ 274CE03459896006F7A5069266E0469E, C7D12E8DE8E2CB927BA64ABD7EB1C255BD4AA232EB05992505966D676A84EE73 ] cfwids          C:\Windows\system32\drivers\cfwids.sys
23:46:03.0412 0xbe9c  cfwids - ok
23:46:03.0443 0xbe9c  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
23:46:03.0443 0xbe9c  circlass - ok
23:46:03.0490 0xbe9c  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
23:46:03.0506 0xbe9c  CLFS - ok
23:46:03.0599 0xbe9c  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:46:03.0599 0xbe9c  clr_optimization_v2.0.50727_32 - ok
23:46:03.0646 0xbe9c  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:46:03.0662 0xbe9c  clr_optimization_v2.0.50727_64 - ok
23:46:03.0740 0xbe9c  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:46:03.0740 0xbe9c  clr_optimization_v4.0.30319_32 - ok
23:46:03.0787 0xbe9c  [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:46:03.0802 0xbe9c  clr_optimization_v4.0.30319_64 - ok
23:46:03.0833 0xbe9c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
23:46:03.0849 0xbe9c  CmBatt - ok
23:46:03.0896 0xbe9c  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
23:46:03.0896 0xbe9c  cmdide - ok
23:46:03.0958 0xbe9c  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
23:46:03.0989 0xbe9c  CNG - ok
23:46:04.0021 0xbe9c  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
23:46:04.0021 0xbe9c  Compbatt - ok
23:46:04.0083 0xbe9c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
23:46:04.0083 0xbe9c  CompositeBus - ok
23:46:04.0099 0xbe9c  COMSysApp - ok
23:46:04.0145 0xbe9c  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
23:46:04.0145 0xbe9c  crcdisk - ok
23:46:04.0301 0xbe9c  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
23:46:04.0317 0xbe9c  CryptSvc - ok
23:46:04.0489 0xbe9c  [ FD557A50A65E44041CD2FCEF4BEB04DB, 746D5958F7198895D35A23566D3736D993D57726BF59D91421D8091C48926A26 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
23:46:04.0535 0xbe9c  cvhsvc - ok
23:46:04.0598 0xbe9c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
23:46:04.0629 0xbe9c  DcomLaunch - ok
23:46:04.0660 0xbe9c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
23:46:04.0676 0xbe9c  defragsvc - ok
23:46:04.0707 0xbe9c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
23:46:04.0707 0xbe9c  DfsC - ok
23:46:04.0769 0xbe9c  [ 0B3F6C8F93C5C25977EA5A8B2E656357, 1B1C8DA8592D2B892382E062017E60BF02B1B6642822039F21446DF01FAFDEE1 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
23:46:04.0769 0xbe9c  dg_ssudbus - ok
23:46:04.0801 0xbe9c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
23:46:04.0816 0xbe9c  Dhcp - ok
23:46:04.0847 0xbe9c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
23:46:04.0847 0xbe9c  discache - ok
23:46:04.0910 0xbe9c  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
23:46:04.0925 0xbe9c  Disk - ok
23:46:04.0957 0xbe9c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
23:46:04.0972 0xbe9c  Dnscache - ok
23:46:05.0003 0xbe9c  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
23:46:05.0019 0xbe9c  dot3svc - ok
23:46:05.0081 0xbe9c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
23:46:05.0081 0xbe9c  DPS - ok
23:46:05.0144 0xbe9c  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
23:46:05.0144 0xbe9c  drmkaud - ok
23:46:05.0206 0xbe9c  [ 9DD3A22F804697606C2B7FF9E912FF6B, BBE2FC0D554030BA9E3A96CC4A360D61DBCCAA1D81BD7547809F29A3AF0B3A25 ] DsiWMIService   C:\Program Files (x86)\Launch Manager\dsiwmis.exe
23:46:05.0222 0xbe9c  DsiWMIService - ok
23:46:05.0331 0xbe9c  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
23:46:05.0362 0xbe9c  DXGKrnl - ok
23:46:05.0393 0xbe9c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
23:46:05.0393 0xbe9c  EapHost - ok
23:46:05.0627 0xbe9c  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
23:46:05.0768 0xbe9c  ebdrv - ok
23:46:05.0815 0xbe9c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
23:46:05.0815 0xbe9c  EFS - ok
23:46:05.0877 0xbe9c  [ 18DD872DD46ACB24E106DC2C9C270466, 7531A880DE4EFA08828B7927A687A10B71BA272C9E88631ED39EAE42E2FF9AD2 ] EgisTec Ticket Service C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
23:46:05.0893 0xbe9c  EgisTec Ticket Service - ok
23:46:05.0971 0xbe9c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
23:46:06.0002 0xbe9c  ehRecvr - ok
23:46:06.0049 0xbe9c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
23:46:06.0049 0xbe9c  ehSched - ok
23:46:06.0111 0xbe9c  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
23:46:06.0142 0xbe9c  elxstor - ok
23:46:06.0267 0xbe9c  [ AC5C64F828C0A6A1350971501AC2A0C7, 920EB0AC38AD65930A747EDC98144010AE97A4B74153B90EE36E9C45055649A1 ] ePowerSvc       C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
23:46:06.0314 0xbe9c  ePowerSvc - ok
23:46:06.0329 0xbe9c  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
23:46:06.0329 0xbe9c  ErrDev - ok
23:46:06.0392 0xbe9c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
23:46:06.0407 0xbe9c  EventSystem - ok
23:46:06.0439 0xbe9c  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
23:46:06.0439 0xbe9c  exfat - ok
23:46:06.0470 0xbe9c  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
23:46:06.0470 0xbe9c  fastfat - ok
23:46:06.0563 0xbe9c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
23:46:06.0595 0xbe9c  Fax - ok
23:46:06.0626 0xbe9c  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
23:46:06.0626 0xbe9c  fdc - ok
23:46:06.0641 0xbe9c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
23:46:06.0641 0xbe9c  fdPHost - ok
23:46:06.0657 0xbe9c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
23:46:06.0657 0xbe9c  FDResPub - ok
23:46:06.0673 0xbe9c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
23:46:06.0673 0xbe9c  FileInfo - ok
23:46:06.0673 0xbe9c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
23:46:06.0688 0xbe9c  Filetrace - ok
23:46:06.0735 0xbe9c  [ BB0667B0171B632B97EA759515476F07, 07A123B2182D5813D2898928C231638353CF086606E9D5A5AF4A2A73E17CEC27 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
23:46:06.0766 0xbe9c  FLEXnet Licensing Service - ok
23:46:06.0797 0xbe9c  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
23:46:06.0797 0xbe9c  flpydisk - ok
23:46:06.0844 0xbe9c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
23:46:06.0860 0xbe9c  FltMgr - ok
23:46:06.0969 0xbe9c  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
23:46:07.0047 0xbe9c  FontCache - ok
23:46:07.0094 0xbe9c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:46:07.0094 0xbe9c  FontCache3.0.0.0 - ok
23:46:07.0125 0xbe9c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
23:46:07.0125 0xbe9c  FsDepends - ok
23:46:07.0172 0xbe9c  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
23:46:07.0172 0xbe9c  Fs_Rec - ok
23:46:07.0234 0xbe9c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
23:46:07.0250 0xbe9c  fvevol - ok
23:46:07.0297 0xbe9c  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
23:46:07.0297 0xbe9c  gagp30kx - ok
23:46:07.0421 0xbe9c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
23:46:07.0484 0xbe9c  gpsvc - ok
23:46:07.0609 0xbe9c  [ 84E58FEA8B1A7537696A20C59CB9B0C9, 21F36D45612247DD81CC55FCDA56496BE8BBE384E8FBCCB6184D69F77A59F5C0 ] GREGService     C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
23:46:07.0609 0xbe9c  GREGService - ok
23:46:07.0749 0xbe9c  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:46:07.0765 0xbe9c  gupdate - ok
23:46:07.0796 0xbe9c  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:46:07.0796 0xbe9c  gupdatem - ok
23:46:07.0858 0xbe9c  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
23:46:07.0858 0xbe9c  gusvc - ok
23:46:07.0905 0xbe9c  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
23:46:07.0905 0xbe9c  hcw85cir - ok
23:46:07.0952 0xbe9c  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:46:07.0967 0xbe9c  HdAudAddService - ok
23:46:08.0014 0xbe9c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
23:46:08.0014 0xbe9c  HDAudBus - ok
23:46:08.0045 0xbe9c  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
23:46:08.0045 0xbe9c  HidBatt - ok
23:46:08.0077 0xbe9c  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
23:46:08.0077 0xbe9c  HidBth - ok
23:46:08.0108 0xbe9c  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
23:46:08.0108 0xbe9c  HidIr - ok
23:46:08.0139 0xbe9c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
23:46:08.0139 0xbe9c  hidserv - ok
23:46:08.0217 0xbe9c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
23:46:08.0217 0xbe9c  HidUsb - ok
23:46:08.0233 0xbe9c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
23:46:08.0248 0xbe9c  hkmsvc - ok
23:46:08.0264 0xbe9c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:46:08.0279 0xbe9c  HomeGroupListener - ok
23:46:08.0295 0xbe9c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:46:08.0311 0xbe9c  HomeGroupProvider - ok
23:46:08.0342 0xbe9c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
23:46:08.0357 0xbe9c  HpSAMD - ok
23:46:08.0529 0xbe9c  [ 2E27D3CC5ABED98B85F81CE526083911, 2E8E976BB3E513516576382AC86E0F28B32BA8C02F62DC95EDC2C1B3C648F63A ] hshld           C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
23:46:08.0576 0xbe9c  hshld - ok
23:46:08.0638 0xbe9c  [ 88C43BDA9CF964600F6DF07F7C52452C, BBCA3204A6CAA095AE5FB2D07019632DE45B201532077B7BE5AAA2884D9056DD ] HssDRV6         C:\Windows\system32\DRIVERS\hssdrv6.sys
23:46:08.0638 0xbe9c  HssDRV6 - ok
23:46:08.0701 0xbe9c  [ C814923312630B27E7983364B8C2131F, 1E25B8CC75ACDE871112BAC74363B087C4273C9B2F13C0F51232A76A2A7C4F51 ] HssTrayService  C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE
23:46:08.0701 0xbe9c  HssTrayService - ok
23:46:08.0779 0xbe9c  [ A882434544B4B33BF945558AF0D9B1F2, 483C5391DFA68967FB814CD063FA47E609B29B1F7CADACAA8011BCB61D194DCE ] HssWd           C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
23:46:08.0810 0xbe9c  HssWd - ok
23:46:08.0872 0xbe9c  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
23:46:08.0919 0xbe9c  HTTP - ok
23:46:08.0935 0xbe9c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
23:46:08.0935 0xbe9c  hwpolicy - ok
23:46:08.0950 0xbe9c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
23:46:08.0966 0xbe9c  i8042prt - ok
23:46:09.0044 0xbe9c  [ 26CF4275034214ECEDD8EC17B0A18A99, 95A08C63971C28F1BC97040C0ADA247E3B43DE7D937B14E33A394B955D0AC8B7 ] iaStor          C:\Windows\system32\drivers\iaStor.sys
23:46:09.0059 0xbe9c  iaStor - ok
23:46:09.0122 0xbe9c  [ E79A8E33BD136D14BAE1FA20EB2EF124, 54AD784570282FEF21021BE76C57EE878EC6FF6423CE2FFC3A4372AF6C3112D4 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
23:46:09.0122 0xbe9c  IAStorDataMgrSvc - ok
23:46:09.0169 0xbe9c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
23:46:09.0184 0xbe9c  iaStorV - ok
23:46:09.0262 0xbe9c  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:46:09.0293 0xbe9c  idsvc - ok
23:46:09.0325 0xbe9c  IEEtwCollectorService - ok
23:46:10.0167 0xbe9c  [ 9937600A1584FF00565D5379EB4C9EDB, CF03333E9E7BD940B27194A9CF21ED8A6A10B698B545A898291976F650FC2675 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
23:46:10.0807 0xbe9c  igfx - ok
23:46:10.0853 0xbe9c  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
23:46:10.0853 0xbe9c  iirsp - ok
23:46:10.0931 0xbe9c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
23:46:10.0978 0xbe9c  IKEEXT - ok
23:46:11.0165 0xbe9c  [ 1CE438B31551746AB450D8FFA403BDB5, 56000B9A2E9EBCB3D5F1E516EECFC10BEEAC9CBF6E088FC23D9B4B2C7FC9686A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:46:11.0321 0xbe9c  IntcAzAudAddService - ok
23:46:11.0368 0xbe9c  [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
23:46:11.0384 0xbe9c  IntcDAud - ok
23:46:11.0462 0xbe9c  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
23:46:11.0462 0xbe9c  intelide - ok
23:46:11.0509 0xbe9c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
23:46:11.0509 0xbe9c  intelppm - ok
23:46:11.0540 0xbe9c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
23:46:11.0540 0xbe9c  IPBusEnum - ok
23:46:11.0555 0xbe9c  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:46:11.0571 0xbe9c  IpFilterDriver - ok
23:46:11.0618 0xbe9c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
23:46:11.0649 0xbe9c  iphlpsvc - ok
23:46:11.0711 0xbe9c  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
23:46:11.0711 0xbe9c  IPMIDRV - ok
23:46:11.0727 0xbe9c  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
23:46:11.0743 0xbe9c  IPNAT - ok
23:46:11.0758 0xbe9c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
23:46:11.0758 0xbe9c  IRENUM - ok
23:46:11.0789 0xbe9c  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
23:46:11.0789 0xbe9c  isapnp - ok
23:46:11.0821 0xbe9c  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
23:46:11.0821 0xbe9c  iScsiPrt - ok
23:46:11.0883 0xbe9c  [ 455B75C19BF3F1F2EE3AC10E1169826C, C8CE6DE48E0B4621F2851A994261FA787556A27F9868A8859E5E8A8354028257 ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys
23:46:11.0899 0xbe9c  k57nd60a - ok
23:46:11.0930 0xbe9c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
23:46:11.0930 0xbe9c  kbdclass - ok
23:46:11.0945 0xbe9c  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
23:46:11.0961 0xbe9c  kbdhid - ok
23:46:11.0977 0xbe9c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
23:46:11.0977 0xbe9c  KeyIso - ok
23:46:12.0008 0xbe9c  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
23:46:12.0023 0xbe9c  KSecDD - ok
23:46:12.0070 0xbe9c  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
23:46:12.0070 0xbe9c  KSecPkg - ok
23:46:12.0148 0xbe9c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
23:46:12.0148 0xbe9c  ksthunk - ok
23:46:12.0257 0xbe9c  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
23:46:12.0273 0xbe9c  KtmRm - ok
23:46:12.0320 0xbe9c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
23:46:12.0335 0xbe9c  LanmanServer - ok
23:46:12.0367 0xbe9c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:46:12.0367 0xbe9c  LanmanWorkstation - ok
23:46:12.0445 0xbe9c  [ 93B73DED2BC688F140C6AE2FBAD45789, B6859BC5D309B99BCCDC3717108B714497AAE9C5B26CE5B201344A41FC4CFF9D ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
23:46:12.0460 0xbe9c  Live Updater Service - ok
23:46:12.0476 0xbe9c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
23:46:12.0476 0xbe9c  lltdio - ok
23:46:12.0523 0xbe9c  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
23:46:12.0538 0xbe9c  lltdsvc - ok
23:46:12.0554 0xbe9c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
23:46:12.0554 0xbe9c  lmhosts - ok
23:46:12.0616 0xbe9c  [ D75C4B4A8FE6D7FD74A7EECDBAEC729F, 9BB0A3BE7CCDF62CF0A67CB67019364965F6567BE29BA6D153B8E36F88058302 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
23:46:12.0632 0xbe9c  LMS - ok
23:46:12.0663 0xbe9c  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
23:46:12.0679 0xbe9c  LSI_FC - ok
23:46:12.0694 0xbe9c  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
23:46:12.0694 0xbe9c  LSI_SAS - ok
23:46:12.0710 0xbe9c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
23:46:12.0725 0xbe9c  LSI_SAS2 - ok
23:46:12.0741 0xbe9c  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
23:46:12.0757 0xbe9c  LSI_SCSI - ok
23:46:12.0772 0xbe9c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
23:46:12.0788 0xbe9c  luafv - ok
23:46:12.0897 0xbe9c  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
23:46:12.0913 0xbe9c  McAfee SiteAdvisor Service - ok
23:46:12.0991 0xbe9c  [ 9504F1DDA1B67FB8D526FD4F8CC882F3, 99B35D5B8879B556CD0D1825F7AECC1124FFAD3EB39C10B77B7522E145FC00B3 ] McAWFwk         c:\PROGRA~1\mcafee\msc\mcawfwk.exe
23:46:13.0006 0xbe9c  McAWFwk - ok
23:46:13.0037 0xbe9c  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] McMPFSvc        C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
23:46:13.0037 0xbe9c  McMPFSvc - ok
23:46:13.0053 0xbe9c  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] mcmscsvc        C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
23:46:13.0069 0xbe9c  mcmscsvc - ok
23:46:13.0084 0xbe9c  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] McNaiAnn        C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
23:46:13.0100 0xbe9c  McNaiAnn - ok
23:46:13.0131 0xbe9c  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] McNASvc         C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
23:46:13.0131 0xbe9c  McNASvc - ok
23:46:13.0178 0xbe9c  [ DD2321925274F2902929D76CE2B0EB45, DAFE9431982D1F5E8527516546D45C921E9BC4B3EC4C8718F875CF0CB7FEDC86 ] McODS           C:\Program Files\mcafee\VirusScan\mcods.exe
23:46:13.0193 0xbe9c  McODS - ok
23:46:13.0209 0xbe9c  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] McOobeSv        C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
23:46:13.0209 0xbe9c  McOobeSv - ok
23:46:13.0225 0xbe9c  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] McProxy         C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
23:46:13.0240 0xbe9c  McProxy - ok
23:46:13.0271 0xbe9c  [ E998E3B12101288D716558466CBF6AE1, 77089927576541B32F525C2346E5AE63B472C725DBCBBF7A42318F1C14DFB4E5 ] McShield        C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
23:46:13.0271 0xbe9c  McShield - ok
23:46:13.0365 0xbe9c  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
23:46:13.0365 0xbe9c  Mcx2Svc - ok
23:46:13.0396 0xbe9c  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
23:46:13.0396 0xbe9c  megasas - ok
23:46:13.0427 0xbe9c  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
23:46:13.0443 0xbe9c  MegaSR - ok
23:46:13.0505 0xbe9c  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
23:46:13.0505 0xbe9c  MEIx64 - ok
23:46:13.0537 0xbe9c  [ 01884CB7655C8908B43FF5E364FE6FD2, 6D033F42D1490B79275182FBBA5E15C531D31104CDB4AC396120880B78E862DE ] mfeapfk         C:\Windows\system32\drivers\mfeapfk.sys
23:46:13.0537 0xbe9c  mfeapfk - ok
23:46:13.0568 0xbe9c  [ DAB9A9CDFB04E4D68924492AA043019D, 79140283CD36A82AA875E637653D469E36440C79B1B4E5DB7BA28325904D60C0 ] mfeavfk         C:\Windows\system32\drivers\mfeavfk.sys
23:46:13.0583 0xbe9c  mfeavfk - ok
23:46:13.0630 0xbe9c  mfeavfk01 - ok
23:46:13.0661 0xbe9c  [ B26782C3D6045B4464017D7926877560, F34C4A33E93A2F17105B61B637CCFC4551FA39857A97C6C613337F405CD7DC55 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
23:46:13.0661 0xbe9c  mfefire - ok
23:46:13.0708 0xbe9c  [ CE9A3680675C0907ADE16404CA967B49, 98DDCBB74C2CF350D99003769908A4D306E328D42F7AE7947C9F97D3E14800AA ] mfefirek        C:\Windows\system32\drivers\mfefirek.sys
23:46:13.0724 0xbe9c  mfefirek - ok
23:46:13.0786 0xbe9c  [ 60CF67458DD29CD17E77F2327B1A9A54, 803CEB205D56EF85C38698447099CEC499D3F8804BC8F2B7320C953978BAF81A ] mfehidk         C:\Windows\system32\drivers\mfehidk.sys
23:46:13.0802 0xbe9c  mfehidk - ok
23:46:13.0817 0xbe9c  [ A8129CFB919347F8533C934B365E9202, A1B84263714DFE92AF3C7D8DF5EBE5BBC7C96954337119BF9754676DDDE5DBED ] mfenlfk         C:\Windows\system32\DRIVERS\mfenlfk.sys
23:46:13.0817 0xbe9c  mfenlfk - ok
23:46:13.0849 0xbe9c  [ 5041FA2BD2B3A2693B015771BFBF6DCA, 0765A1410F4182626570F8B7CB9FB2F7AF8E21AC806A0E51DAF4CAB87003C554 ] mferkdet        C:\Windows\system32\drivers\mferkdet.sys
23:46:13.0849 0xbe9c  mferkdet - ok
23:46:13.0864 0xbe9c  [ 723A5EB6CEF7F408C3D0F15A82A6BFF8, 10D301327B29E753BE2774378DBF5FB878DAAEADB3D7853C99706BDC4A77C55F ] mfevtp          C:\Windows\system32\mfevtps.exe
23:46:13.0880 0xbe9c  mfevtp - ok
23:46:13.0895 0xbe9c  [ 919C56DB14A0E1E2AB6DA5D2821DC26E, FE7D2897FFD664A45FE821785D540AC18679630B64F5A600AC545E1B00EC6582 ] mfewfpk         C:\Windows\system32\drivers\mfewfpk.sys
23:46:13.0911 0xbe9c  mfewfpk - ok
23:46:13.0958 0xbe9c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
23:46:13.0958 0xbe9c  MMCSS - ok
23:46:13.0989 0xbe9c  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
23:46:13.0989 0xbe9c  Modem - ok
23:46:14.0005 0xbe9c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
23:46:14.0005 0xbe9c  monitor - ok
23:46:14.0036 0xbe9c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
23:46:14.0036 0xbe9c  mouclass - ok
23:46:14.0051 0xbe9c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
23:46:14.0051 0xbe9c  mouhid - ok
23:46:14.0083 0xbe9c  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
23:46:14.0083 0xbe9c  mountmgr - ok
23:46:14.0161 0xbe9c  [ 0329A45C849C9D77901094B8FFE8BBB9, 2151C15A4185FABBC3367B8213017B45E08C43E26E1D8942E707E217C6A5EDA7 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:46:14.0161 0xbe9c  MozillaMaintenance - ok
23:46:14.0192 0xbe9c  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
23:46:14.0192 0xbe9c  mpio - ok
23:46:14.0223 0xbe9c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
23:46:14.0239 0xbe9c  mpsdrv - ok
23:46:14.0301 0xbe9c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
23:46:14.0317 0xbe9c  MpsSvc - ok
23:46:14.0379 0xbe9c  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
23:46:14.0395 0xbe9c  MRxDAV - ok
23:46:14.0410 0xbe9c  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
23:46:14.0426 0xbe9c  mrxsmb - ok
23:46:14.0473 0xbe9c  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:46:14.0473 0xbe9c  mrxsmb10 - ok
23:46:14.0519 0xbe9c  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:46:14.0519 0xbe9c  mrxsmb20 - ok
23:46:14.0551 0xbe9c  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
23:46:14.0551 0xbe9c  msahci - ok
23:46:14.0582 0xbe9c  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
23:46:14.0582 0xbe9c  msdsm - ok
23:46:14.0613 0xbe9c  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
23:46:14.0613 0xbe9c  MSDTC - ok
23:46:14.0644 0xbe9c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
23:46:14.0644 0xbe9c  Msfs - ok
23:46:14.0675 0xbe9c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
23:46:14.0675 0xbe9c  mshidkmdf - ok
23:46:14.0691 0xbe9c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
23:46:14.0691 0xbe9c  msisadrv - ok
23:46:14.0722 0xbe9c  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
23:46:14.0722 0xbe9c  MSiSCSI - ok
23:46:14.0722 0xbe9c  msiserver - ok
23:46:14.0769 0xbe9c  [ ACB01BF1A905356AB7F978C7FE852209, AC0B08FAFD992F81B94ACB8A58D1C510C8F218D29CEA496467EA5709F63410AB ] MSK80Service    C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
23:46:14.0769 0xbe9c  MSK80Service - ok
23:46:14.0785 0xbe9c  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
23:46:14.0785 0xbe9c  MSKSSRV - ok
23:46:14.0800 0xbe9c  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
23:46:14.0800 0xbe9c  MSPCLOCK - ok
23:46:14.0831 0xbe9c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
23:46:14.0831 0xbe9c  MSPQM - ok
23:46:14.0847 0xbe9c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
23:46:14.0863 0xbe9c  MsRPC - ok
23:46:14.0894 0xbe9c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
23:46:14.0894 0xbe9c  mssmbios - ok
23:46:14.0909 0xbe9c  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
23:46:14.0909 0xbe9c  MSTEE - ok
23:46:14.0925 0xbe9c  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
23:46:14.0925 0xbe9c  MTConfig - ok
23:46:14.0941 0xbe9c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
23:46:14.0941 0xbe9c  Mup - ok
23:46:14.0956 0xbe9c  [ C009123B206C56854F4E88596035231D, 670403A40B425F77C90ECB048A0C8BC11FB19E40A8CECC2C3DCF79175B745863 ] mwlPSDFilter    C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
23:46:14.0956 0xbe9c  mwlPSDFilter - ok
23:46:14.0972 0xbe9c  [ BF3739EEB9F008B1DEBAC115089A53F8, 8546AB69087656259BBE17D6F80F4AB164B04171673CE2BF9FFD1B5C9584E9A4 ] mwlPSDNServ     C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
23:46:14.0972 0xbe9c  mwlPSDNServ - ok
23:46:14.0987 0xbe9c  [ 38DD143D95E7A01B86F219DDA9C28779, 5FA8C0595CCF835DBCE1CC5322E8FD4BFB6DFB6CF869BB7CB73F919445D469AA ] mwlPSDVDisk     C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
23:46:14.0987 0xbe9c  mwlPSDVDisk - ok
23:46:15.0034 0xbe9c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
23:46:15.0050 0xbe9c  napagent - ok
23:46:15.0128 0xbe9c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
23:46:15.0143 0xbe9c  NativeWifiP - ok
23:46:15.0221 0xbe9c  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
23:46:15.0253 0xbe9c  NDIS - ok
23:46:15.0268 0xbe9c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
23:46:15.0268 0xbe9c  NdisCap - ok
23:46:15.0299 0xbe9c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
23:46:15.0299 0xbe9c  NdisTapi - ok
23:46:15.0315 0xbe9c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
23:46:15.0315 0xbe9c  Ndisuio - ok
23:46:15.0331 0xbe9c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
23:46:15.0346 0xbe9c  NdisWan - ok
23:46:15.0362 0xbe9c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
23:46:15.0362 0xbe9c  NDProxy - ok
23:46:15.0377 0xbe9c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
23:46:15.0393 0xbe9c  NetBIOS - ok
23:46:15.0409 0xbe9c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
23:46:15.0424 0xbe9c  NetBT - ok
23:46:15.0440 0xbe9c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
23:46:15.0440 0xbe9c  Netlogon - ok
23:46:15.0471 0xbe9c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
23:46:15.0487 0xbe9c  Netman - ok
23:46:15.0518 0xbe9c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
23:46:15.0533 0xbe9c  netprofm - ok
23:46:15.0565 0xbe9c  [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:46:15.0565 0xbe9c  NetTcpPortSharing - ok
23:46:15.0596 0xbe9c  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
23:46:15.0596 0xbe9c  nfrd960 - ok
23:46:15.0658 0xbe9c  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
23:46:15.0674 0xbe9c  NlaSvc - ok
23:46:15.0799 0xbe9c  [ 009F4F1EC78A294A55C154430BA63C6F, 4466BBC8E835E469A43BAD598E62A919AB87B29118C80A86C920C0603B1AB5F5 ] nlsx86cc        C:\Windows\SysWOW64\nlssrv32.exe
23:46:15.0814 0xbe9c  nlsx86cc - ok
23:46:16.0048 0xbe9c  [ 5839A8027D6D324A7CD494051A96628C, 474F2D0BB463ABE68D7C4D2C630860AED4B722EC62C616C91EE00AA965378382 ] NOBU            C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
23:46:16.0142 0xbe9c  NOBU - ok
23:46:16.0157 0xbe9c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
23:46:16.0173 0xbe9c  Npfs - ok
23:46:16.0189 0xbe9c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
23:46:16.0189 0xbe9c  nsi - ok
23:46:16.0204 0xbe9c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
23:46:16.0220 0xbe9c  nsiproxy - ok
23:46:16.0329 0xbe9c  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
23:46:16.0423 0xbe9c  Ntfs - ok
23:46:16.0501 0xbe9c  [ 1873214666F6F0A883742DF91FBC48C9, DCF5382CE338D4B5B0C3A3B722A19B6C7BAB59EB7B266FEF04698B79070E2C4B ] NTI IScheduleSvc C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
23:46:16.0516 0xbe9c  NTI IScheduleSvc - ok
23:46:16.0579 0xbe9c  [ EE3BA1024594D5D09E314F206B94069E, 34C8EC3DF1C3088D8A0442CAA4F5506665AFB2DF016709457ED2AB7DA45F53A6 ] NTIDrvr         C:\Windows\system32\drivers\NTIDrvr.sys
23:46:16.0579 0xbe9c  NTIDrvr - ok
23:46:16.0594 0xbe9c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
23:46:16.0594 0xbe9c  Null - ok
23:46:16.0641 0xbe9c  [ 0EBC9D13CD96C15B1B18D8678A609E4B, B10896DE16B0C102DFB3E73A6C11A1982C5B428015DAE1F8776BCEF94A0F75C6 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
23:46:16.0641 0xbe9c  nusb3hub - ok
23:46:16.0672 0xbe9c  [ 7BDEC000D56D485021D9C1E63C2F81CA, 7F1303FD0371AF8715BFC38433B730C797170AEF10C7DB845B7B547DA8DBB5D5 ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
23:46:16.0688 0xbe9c  nusb3xhc - ok
23:46:17.0624 0xbe9c  [ 73DC184AF4D2ADDC41B37344636D2CC7, 6CB0AE9458A8E4DB7833C16238246D5850932462B618054FFBFF9B6B8368924F ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:46:18.0248 0xbe9c  nvlddmkm - ok
23:46:18.0326 0xbe9c  [ 477A3CF725C4040F77EB9E2C17B922A0, ED7C3CB741CF3E67F95AA7BBB95FB05EE9B2B8E07CEB3CE2A6866C06D6C9169F ] nvpciflt        C:\Windows\system32\DRIVERS\nvpciflt.sys
23:46:18.0326 0xbe9c  nvpciflt - ok
23:46:18.0357 0xbe9c  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
23:46:18.0357 0xbe9c  nvraid - ok
23:46:18.0388 0xbe9c  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
23:46:18.0404 0xbe9c  nvstor - ok
23:46:18.0497 0xbe9c  [ 6D1056430AFC72A6097409A70A716C15, 6CE87CAEAA2121E161BFAC05F0ED307E6B4E5A8406B6ACF2FF52009A86767B8D ] NVSvc           C:\Windows\system32\nvvsvc.exe
23:46:18.0544 0xbe9c  NVSvc - ok
23:46:18.0685 0xbe9c  [ A072423C3812472D326BC774610055CF, 5DD4B491A6FB038842B5D373B9665A4BE16AA92883FA81058B676F79FA058232 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
23:46:18.0778 0xbe9c  nvUpdatusService - ok
23:46:18.0809 0xbe9c  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
23:46:18.0825 0xbe9c  nv_agp - ok
23:46:18.0841 0xbe9c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
23:46:18.0841 0xbe9c  ohci1394 - ok
23:46:18.0934 0xbe9c  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:46:18.0934 0xbe9c  ose - ok
23:46:19.0293 0xbe9c  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:46:19.0527 0xbe9c  osppsvc - ok
23:46:19.0574 0xbe9c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
23:46:19.0589 0xbe9c  p2pimsvc - ok
23:46:19.0636 0xbe9c  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
23:46:19.0667 0xbe9c  p2psvc - ok
23:46:19.0683 0xbe9c  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
23:46:19.0699 0xbe9c  Parport - ok
23:46:19.0730 0xbe9c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
23:46:19.0730 0xbe9c  partmgr - ok
23:46:19.0761 0xbe9c  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
23:46:19.0777 0xbe9c  PcaSvc - ok
23:46:19.0792 0xbe9c  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
23:46:19.0808 0xbe9c  pci - ok
23:46:19.0855 0xbe9c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
23:46:19.0855 0xbe9c  pciide - ok
23:46:19.0886 0xbe9c  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
23:46:19.0901 0xbe9c  pcmcia - ok
23:46:19.0933 0xbe9c  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
23:46:19.0933 0xbe9c  pcw - ok
23:46:19.0979 0xbe9c  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
23:46:20.0011 0xbe9c  PEAUTH - ok
23:46:20.0057 0xbe9c  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
23:46:20.0073 0xbe9c  PerfHost - ok
23:46:20.0229 0xbe9c  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
23:46:20.0291 0xbe9c  pla - ok
23:46:20.0354 0xbe9c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
23:46:20.0385 0xbe9c  PlugPlay - ok
23:46:20.0401 0xbe9c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
23:46:20.0401 0xbe9c  PNRPAutoReg - ok
23:46:20.0432 0xbe9c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
23:46:20.0447 0xbe9c  PNRPsvc - ok
23:46:20.0510 0xbe9c  [ 520D48ECB54A33821C95EE496A4235AF, 3C7984E480F134E303E6AD03A3837515F3E03A4727F1AD184BD1D8C71D68FFEF ] Point64         C:\Windows\system32\DRIVERS\point64.sys
23:46:20.0510 0xbe9c  Point64 - ok
23:46:20.0557 0xbe9c  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
23:46:20.0572 0xbe9c  PolicyAgent - ok
23:46:20.0619 0xbe9c  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
23:46:20.0619 0xbe9c  Power - ok
23:46:20.0666 0xbe9c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
23:46:20.0666 0xbe9c  PptpMiniport - ok
23:46:20.0681 0xbe9c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
23:46:20.0681 0xbe9c  Processor - ok
23:46:20.0744 0xbe9c  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
23:46:20.0759 0xbe9c  ProfSvc - ok
23:46:20.0775 0xbe9c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
23:46:20.0791 0xbe9c  ProtectedStorage - ok
23:46:20.0806 0xbe9c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
23:46:20.0822 0xbe9c  Psched - ok
23:46:20.0915 0xbe9c  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
23:46:20.0993 0xbe9c  ql2300 - ok
23:46:21.0009 0xbe9c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
23:46:21.0025 0xbe9c  ql40xx - ok
23:46:21.0056 0xbe9c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
23:46:21.0071 0xbe9c  QWAVE - ok
23:46:21.0087 0xbe9c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
23:46:21.0087 0xbe9c  QWAVEdrv - ok
23:46:21.0103 0xbe9c  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
23:46:21.0118 0xbe9c  RasAcd - ok
23:46:21.0134 0xbe9c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
23:46:21.0149 0xbe9c  RasAgileVpn - ok
23:46:21.0165 0xbe9c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
23:46:21.0165 0xbe9c  RasAuto - ok
23:46:21.0196 0xbe9c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
23:46:21.0196 0xbe9c  Rasl2tp - ok
23:46:21.0227 0xbe9c  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
23:46:21.0243 0xbe9c  RasMan - ok
23:46:21.0259 0xbe9c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
23:46:21.0259 0xbe9c  RasPppoe - ok
23:46:21.0290 0xbe9c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
23:46:21.0290 0xbe9c  RasSstp - ok
23:46:21.0321 0xbe9c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
23:46:21.0337 0xbe9c  rdbss - ok
23:46:21.0352 0xbe9c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
23:46:21.0352 0xbe9c  rdpbus - ok
23:46:21.0368 0xbe9c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
23:46:21.0383 0xbe9c  RDPCDD - ok
23:46:21.0399 0xbe9c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
23:46:21.0399 0xbe9c  RDPENCDD - ok
23:46:21.0415 0xbe9c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
23:46:21.0415 0xbe9c  RDPREFMP - ok
23:46:21.0461 0xbe9c  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
23:46:21.0461 0xbe9c  RDPWD - ok
23:46:21.0524 0xbe9c  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
23:46:21.0539 0xbe9c  rdyboost - ok
23:46:21.0586 0xbe9c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
23:46:21.0586 0xbe9c  RemoteAccess - ok
23:46:21.0633 0xbe9c  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
23:46:21.0649 0xbe9c  RemoteRegistry - ok
23:46:21.0680 0xbe9c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
23:46:21.0680 0xbe9c  RpcEptMapper - ok
23:46:21.0727 0xbe9c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
23:46:21.0727 0xbe9c  RpcLocator - ok
23:46:21.0805 0xbe9c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
23:46:21.0836 0xbe9c  RpcSs - ok
23:46:21.0867 0xbe9c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
23:46:21.0883 0xbe9c  rspndr - ok
23:46:21.0898 0xbe9c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
23:46:21.0898 0xbe9c  SamSs - ok
23:46:21.0929 0xbe9c  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
23:46:21.0945 0xbe9c  sbp2port - ok
23:46:21.0976 0xbe9c  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
23:46:21.0976 0xbe9c  SCardSvr - ok
23:46:22.0007 0xbe9c  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
23:46:22.0007 0xbe9c  scfilter - ok
23:46:22.0101 0xbe9c  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
23:46:22.0179 0xbe9c  Schedule - ok
23:46:22.0195 0xbe9c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
23:46:22.0210 0xbe9c  SCPolicySvc - ok
23:46:22.0241 0xbe9c  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
23:46:22.0241 0xbe9c  sdbus - ok
23:46:22.0273 0xbe9c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
23:46:22.0273 0xbe9c  SDRSVC - ok
23:46:22.0304 0xbe9c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
23:46:22.0319 0xbe9c  secdrv - ok
23:46:22.0335 0xbe9c  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
23:46:22.0335 0xbe9c  seclogon - ok
23:46:22.0351 0xbe9c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
23:46:22.0366 0xbe9c  SENS - ok
23:46:22.0382 0xbe9c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
23:46:22.0397 0xbe9c  SensrSvc - ok
23:46:22.0413 0xbe9c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
23:46:22.0413 0xbe9c  Serenum - ok
23:46:22.0444 0xbe9c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
23:46:22.0444 0xbe9c  Serial - ok
23:46:22.0475 0xbe9c  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
23:46:22.0475 0xbe9c  sermouse - ok
23:46:22.0507 0xbe9c  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
23:46:22.0522 0xbe9c  SessionEnv - ok
23:46:22.0569 0xbe9c  sf - ok
23:46:22.0585 0xbe9c  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
23:46:22.0585 0xbe9c  sffdisk - ok
23:46:22.0600 0xbe9c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
23:46:22.0600 0xbe9c  sffp_mmc - ok
23:46:22.0616 0xbe9c  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
23:46:22.0616 0xbe9c  sffp_sd - ok
23:46:22.0647 0xbe9c  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
23:46:22.0647 0xbe9c  sfloppy - ok
23:46:22.0756 0xbe9c  [ 2046AA7491DE7EFA4D70E615D9BC9D09, A8763D059AD68D5842C407FA9644E0B129BEF0F63CD87E62B80B05441EDC3489 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
23:46:22.0803 0xbe9c  Sftfs - ok
23:46:22.0881 0xbe9c  [ 77C5A741A7452812F278EF2C18478862, 0B763679EB7EFB8ED9DCE7B429706E939BB65BA6BCF1BAE0E0426D4E87074B8C ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
23:46:22.0912 0xbe9c  sftlist - ok
23:46:22.0975 0xbe9c  [ 0E0446BC4D51BE4263ACB7E33491191C, 2AD039FB440560658C4E06F67CC192EF71577EF3FF789A43C08430CE5EAE5A70 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
23:46:22.0990 0xbe9c  Sftplay - ok
23:46:23.0037 0xbe9c  [ C5FB982CD266E604ED3142102C26D62C, A6BC0D72E98F924274ECAD49C85F0775D1CD45B97CD43F53DF3992B560835FC5 ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
23:46:23.0037 0xbe9c  Sftredir - ok
23:46:23.0053 0xbe9c  [ 2575511AF67AA1FA068CCC4918E2C2A3, 3152FF5AC2CF6FE966DA59B1B33E22F9BD9B6BB4310441870528364BA9501A4D ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
23:46:23.0053 0xbe9c  Sftvol - ok
23:46:23.0115 0xbe9c  [ 39B1D0A636A400304565D4521FAD6D77, 1F01DB35B5A477AA7A77585C9304E6B5F3E67807531305BCA93A7F494CED8F59 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
23:46:23.0131 0xbe9c  sftvsa - ok
23:46:23.0177 0xbe9c  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
23:46:23.0193 0xbe9c  SharedAccess - ok
23:46:23.0255 0xbe9c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:46:23.0271 0xbe9c  ShellHWDetection - ok
23:46:23.0302 0xbe9c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
23:46:23.0302 0xbe9c  SiSRaid2 - ok
23:46:23.0333 0xbe9c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
23:46:23.0333 0xbe9c  SiSRaid4 - ok
23:46:23.0599 0xbe9c  [ 9F712B26EE3B0242DE997A42FD302E2C, 12663EB108F158282A965EE70980627C2F2332BA7944D7DE03B78E18BEB87D26 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
23:46:23.0739 0xbe9c  Skype C2C Service - ok
23:46:23.0817 0xbe9c  [ CA058CB8320CF9E3F978D729E55C82CF, 9DE25EED21F1BD3D8A8BC0D190D7CE5343C62F9C8FD7495A234F54E0D663610E ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
23:46:23.0817 0xbe9c  SkypeUpdate - ok
23:46:23.0864 0xbe9c  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
23:46:23.0864 0xbe9c  Smb - ok
23:46:23.0911 0xbe9c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
23:46:23.0911 0xbe9c  SNMPTRAP - ok
23:46:23.0926 0xbe9c  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
23:46:23.0926 0xbe9c  spldr - ok
23:46:23.0989 0xbe9c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
23:46:24.0004 0xbe9c  Spooler - ok
23:46:24.0238 0xbe9c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
23:46:24.0363 0xbe9c  sppsvc - ok
23:46:24.0410 0xbe9c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
23:46:24.0410 0xbe9c  sppuinotify - ok
23:46:24.0519 0xbe9c  [ 4C33F139236FD9BD14A920F60C1CB072, 806650B2AE7DC299DEC49C519E2452427B819213F863BFCC4188EDF075EAAD2D ] sptd            C:\Windows\system32\Drivers\sptd.sys
23:46:24.0519 0xbe9c  Suspicious file ( NoAccess ): C:\Windows\system32\Drivers\sptd.sys. md5: 4C33F139236FD9BD14A920F60C1CB072, sha256: 806650B2AE7DC299DEC49C519E2452427B819213F863BFCC4188EDF075EAAD2D
23:46:24.0519 0xbe9c  sptd - detected LockedFile.Multi.Generic ( 1 )
23:46:28.0591 0xbe9c  Detect skipped due to KSN trusted
23:46:28.0591 0xbe9c  sptd - ok
23:46:28.0637 0xbe9c  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
23:46:28.0669 0xbe9c  srv - ok
23:46:28.0715 0xbe9c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
23:46:28.0731 0xbe9c  srv2 - ok
23:46:28.0762 0xbe9c  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
23:46:28.0762 0xbe9c  srvnet - ok
23:46:28.0825 0xbe9c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
23:46:28.0840 0xbe9c  SSDPSRV - ok
23:46:28.0871 0xbe9c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
23:46:28.0887 0xbe9c  SstpSvc - ok
23:46:28.0965 0xbe9c  [ EA8F41484CCC5BA6A1455C2AD3D1BE3C, B206AA8F4BA7C1E15561B4F2011FA483C5401B0300914F747804A116CCE972BF ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
23:46:28.0965 0xbe9c  ssudmdm - ok
23:46:29.0168 0xbe9c  [ B1691AF4A072CB674D600DB16DD7308E, 214E35001E7BA10E8C329CE8904E900AA54F9B35C5329F2FF20E3156D6F21A8E ] StarWindServiceAE C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
23:46:29.0183 0xbe9c  StarWindServiceAE - ok
23:46:29.0215 0xbe9c  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
23:46:29.0215 0xbe9c  stexstor - ok
23:46:29.0402 0xbe9c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
23:46:29.0433 0xbe9c  stisvc - ok
23:46:29.0542 0xbe9c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
23:46:29.0542 0xbe9c  swenum - ok
23:46:29.0620 0xbe9c  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
23:46:29.0651 0xbe9c  swprv - ok
23:46:29.0807 0xbe9c  [ EF51B22706DB03F0857FADE127C804EC, F3A97B8D94E96ACF93448CDF33DED97B076C3D8FFE42E9EAD088EE662306277B ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
23:46:29.0885 0xbe9c  SynTP - ok
23:46:30.0026 0xbe9c  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
23:46:30.0088 0xbe9c  SysMain - ok
23:46:30.0119 0xbe9c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:46:30.0135 0xbe9c  TabletInputService - ok
23:46:30.0197 0xbe9c  [ 95206567C7CA71A3D485146824224C40, 2687BB34D271E2B8D9D64B5961A0D3B053192CBFCF7BDEE048B3E50C1C38A81F ] taphss6         C:\Windows\system32\DRIVERS\taphss6.sys
23:46:30.0197 0xbe9c  taphss6 - ok
23:46:30.0229 0xbe9c  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
23:46:30.0244 0xbe9c  TapiSrv - ok
23:46:30.0260 0xbe9c  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
23:46:30.0260 0xbe9c  TBS - ok
23:46:30.0416 0xbe9c  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
23:46:30.0494 0xbe9c  Tcpip - ok
23:46:30.0619 0xbe9c  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
23:46:30.0697 0xbe9c  TCPIP6 - ok
23:46:30.0743 0xbe9c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
23:46:30.0743 0xbe9c  tcpipreg - ok
23:46:30.0775 0xbe9c  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
23:46:30.0775 0xbe9c  TDPIPE - ok
23:46:30.0806 0xbe9c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
23:46:30.0806 0xbe9c  TDTCP - ok
23:46:30.0837 0xbe9c  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
23:46:30.0837 0xbe9c  tdx - ok
23:46:30.0868 0xbe9c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
23:46:30.0868 0xbe9c  TermDD - ok
23:46:30.0931 0xbe9c  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
23:46:30.0946 0xbe9c  TermService - ok
23:46:30.0977 0xbe9c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
23:46:30.0977 0xbe9c  Themes - ok
23:46:31.0009 0xbe9c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
23:46:31.0009 0xbe9c  THREADORDER - ok
23:46:31.0024 0xbe9c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
23:46:31.0024 0xbe9c  TrkWks - ok
23:46:31.0102 0xbe9c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:46:31.0102 0xbe9c  TrustedInstaller - ok
23:46:31.0149 0xbe9c  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
23:46:31.0149 0xbe9c  tssecsrv - ok
23:46:31.0180 0xbe9c  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
23:46:31.0180 0xbe9c  TsUsbFlt - ok
23:46:31.0211 0xbe9c  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
23:46:31.0211 0xbe9c  TsUsbGD - ok
23:46:31.0258 0xbe9c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
23:46:31.0258 0xbe9c  tunnel - ok
23:46:31.0274 0xbe9c  [ FD24F98D2898BE093FE926604BE7DB99, F9851C57A2ED838AC76BB19FE2F62BB81C57DBBE2A2555F738B5D6725D39AD61 ] TurboB          C:\Windows\system32\DRIVERS\TurboB.sys
23:46:31.0274 0xbe9c  TurboB - ok
23:46:31.0321 0xbe9c  [ 600B406A04D90F577FEA8A88D7379F08, 77CC8E8AFB6F571A42D916C0B2FEFFD3A7A32A455C78228B407C6C9B6DED8CAD ] TurboBoost      C:\Program Files\Intel\TurboBoost\TurboBoost.exe
23:46:31.0321 0xbe9c  TurboBoost - ok
23:46:31.0336 0xbe9c  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
23:46:31.0336 0xbe9c  uagp35 - ok
23:46:31.0352 0xbe9c  [ A17D5E1A6DF4EAB0A480F2C490DE4C9D, 1EA835F172B6BF3D7F496E079DF1CDF00122B2110C08D61427582BC9405D2B7B ] UBHelper        C:\Windows\system32\drivers\UBHelper.sys
23:46:31.0367 0xbe9c  UBHelper - ok
23:46:31.0399 0xbe9c  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
23:46:31.0414 0xbe9c  udfs - ok
23:46:31.0445 0xbe9c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
23:46:31.0445 0xbe9c  UI0Detect - ok
23:46:31.0477 0xbe9c  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
23:46:31.0477 0xbe9c  uliagpkx - ok
23:46:31.0508 0xbe9c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
23:46:31.0508 0xbe9c  umbus - ok
23:46:31.0539 0xbe9c  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
23:46:31.0539 0xbe9c  UmPass - ok
23:46:31.0711 0xbe9c  [ 758C2CE427C343F780A205E28555C98D, E3413BA433CD26DD61D3257B08B8354478A049A972EFAC53C303690BC71DD7E1 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
23:46:31.0820 0xbe9c  UNS - ok
23:46:31.0851 0xbe9c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
23:46:31.0867 0xbe9c  upnphost - ok
23:46:31.0929 0xbe9c  [ ACCEA6BC68D0C9A78EB97EE159028B4E, 132F7A543C1DA9456FBABA50552B37E3162ACA612A8567BB3FF0F7DA84231419 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
23:46:31.0945 0xbe9c  usbccgp - ok
23:46:31.0991 0xbe9c  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
23:46:32.0007 0xbe9c  usbcir - ok
23:46:32.0038 0xbe9c  [ 311C1DD1088E55BEAE15954D17F50646, A663344ABD1414D570617F59CC00020640F31DB34265142EFCA8817328DB842A ] usbehci         C:\Windows\system32\drivers\usbehci.sys
23:46:32.0038 0xbe9c  usbehci - ok
23:46:32.0085 0xbe9c  [ 280E90CBF4B2DDD169F0728CB44D726F, 2B39666C022A4F7338BDDB4CB0D7B4D0CC6B398298D29E38826F27FADF4C29DD ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
23:46:32.0101 0xbe9c  usbhub - ok
23:46:32.0147 0xbe9c  [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci         C:\Windows\system32\drivers\usbohci.sys
23:46:32.0147 0xbe9c  usbohci - ok
23:46:32.0163 0xbe9c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
23:46:32.0163 0xbe9c  usbprint - ok
23:46:32.0179 0xbe9c  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:46:32.0194 0xbe9c  USBSTOR - ok
23:46:32.0210 0xbe9c  [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
23:46:32.0210 0xbe9c  usbuhci - ok
23:46:32.0272 0xbe9c  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
23:46:32.0272 0xbe9c  usbvideo - ok
23:46:32.0303 0xbe9c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
23:46:32.0303 0xbe9c  UxSms - ok
23:46:32.0319 0xbe9c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
23:46:32.0319 0xbe9c  VaultSvc - ok
23:46:32.0350 0xbe9c  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
23:46:32.0350 0xbe9c  vdrvroot - ok
23:46:32.0413 0xbe9c  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
23:46:32.0428 0xbe9c  vds - ok
23:46:32.0444 0xbe9c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
23:46:32.0444 0xbe9c  vga - ok
23:46:32.0459 0xbe9c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
23:46:32.0459 0xbe9c  VgaSave - ok
23:46:32.0491 0xbe9c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
23:46:32.0491 0xbe9c  vhdmp - ok
23:46:32.0553 0xbe9c  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
23:46:32.0553 0xbe9c  viaide - ok
23:46:32.0569 0xbe9c  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
23:46:32.0569 0xbe9c  volmgr - ok
23:46:32.0600 0xbe9c  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
23:46:32.0615 0xbe9c  volmgrx - ok
23:46:32.0647 0xbe9c  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
23:46:32.0662 0xbe9c  volsnap - ok
23:46:32.0693 0xbe9c  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
23:46:32.0693 0xbe9c  vsmraid - ok
23:46:32.0787 0xbe9c  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
23:46:32.0849 0xbe9c  VSS - ok
23:46:32.0881 0xbe9c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
23:46:32.0881 0xbe9c  vwifibus - ok
23:46:32.0896 0xbe9c  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
23:46:32.0896 0xbe9c  vwififlt - ok
23:46:32.0912 0xbe9c  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
23:46:32.0927 0xbe9c  W32Time - ok
23:46:32.0943 0xbe9c  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
23:46:32.0959 0xbe9c  WacomPen - ok
23:46:32.0990 0xbe9c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
23:46:32.0990 0xbe9c  WANARP - ok
23:46:33.0005 0xbe9c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
23:46:33.0021 0xbe9c  Wanarpv6 - ok
23:46:33.0146 0xbe9c  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
23:46:33.0193 0xbe9c  WatAdminSvc - ok
23:46:33.0286 0xbe9c  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
23:46:33.0333 0xbe9c  wbengine - ok
23:46:33.0349 0xbe9c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
23:46:33.0364 0xbe9c  WbioSrvc - ok
23:46:33.0380 0xbe9c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
23:46:33.0395 0xbe9c  wcncsvc - ok
23:46:33.0411 0xbe9c  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:46:33.0411 0xbe9c  WcsPlugInService - ok
23:46:33.0442 0xbe9c  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
23:46:33.0442 0xbe9c  Wd - ok
23:46:33.0473 0xbe9c  [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
23:46:33.0473 0xbe9c  WDC_SAM - ok
23:46:33.0551 0xbe9c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
23:46:33.0583 0xbe9c  Wdf01000 - ok
23:46:33.0614 0xbe9c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
23:46:33.0614 0xbe9c  WdiServiceHost - ok
23:46:33.0629 0xbe9c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
23:46:33.0629 0xbe9c  WdiSystemHost - ok
23:46:33.0676 0xbe9c  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
23:46:33.0692 0xbe9c  WebClient - ok
23:46:33.0707 0xbe9c  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
23:46:33.0723 0xbe9c  Wecsvc - ok
23:46:33.0739 0xbe9c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
23:46:33.0739 0xbe9c  wercplsupport - ok
23:46:33.0770 0xbe9c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
23:46:33.0770 0xbe9c  WerSvc - ok
23:46:33.0817 0xbe9c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
23:46:33.0817 0xbe9c  WfpLwf - ok
23:46:33.0832 0xbe9c  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
23:46:33.0832 0xbe9c  WIMMount - ok
23:46:33.0863 0xbe9c  WinDefend - ok
23:46:33.0879 0xbe9c  WinHttpAutoProxySvc - ok
23:46:33.0957 0xbe9c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
23:46:33.0957 0xbe9c  Winmgmt - ok
23:46:34.0082 0xbe9c  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
23:46:34.0144 0xbe9c  WinRM - ok
23:46:34.0222 0xbe9c  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
23:46:34.0238 0xbe9c  WinUsb - ok
23:46:34.0300 0xbe9c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
23:46:34.0331 0xbe9c  Wlansvc - ok
23:46:34.0409 0xbe9c  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:46:34.0409 0xbe9c  wlcrasvc - ok
23:46:34.0628 0xbe9c  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:46:34.0675 0xbe9c  wlidsvc - ok
23:46:34.0721 0xbe9c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
23:46:34.0737 0xbe9c  WmiAcpi - ok
23:46:34.0768 0xbe9c  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
23:46:34.0784 0xbe9c  wmiApSrv - ok
23:46:34.0815 0xbe9c  WMPNetworkSvc - ok
23:46:34.0846 0xbe9c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
23:46:34.0846 0xbe9c  WPCSvc - ok
23:46:34.0862 0xbe9c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
23:46:34.0877 0xbe9c  WPDBusEnum - ok
23:46:34.0893 0xbe9c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
23:46:34.0893 0xbe9c  ws2ifsl - ok
23:46:34.0909 0xbe9c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
23:46:34.0909 0xbe9c  wscsvc - ok
23:46:34.0909 0xbe9c  WSearch - ok
23:46:35.0033 0xbe9c  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
23:46:35.0096 0xbe9c  wuauserv - ok
23:46:35.0143 0xbe9c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
23:46:35.0143 0xbe9c  WudfPf - ok
23:46:35.0174 0xbe9c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
23:46:35.0189 0xbe9c  WUDFRd - ok
23:46:35.0221 0xbe9c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
23:46:35.0236 0xbe9c  wudfsvc - ok
23:46:35.0283 0xbe9c  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\Windows\System32\wwansvc.dll
23:46:35.0283 0xbe9c  WwanSvc - ok
23:46:35.0299 0xbe9c  ================ Scan global ===============================
23:46:35.0330 0xbe9c  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
23:46:35.0361 0xbe9c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
23:46:35.0392 0xbe9c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
23:46:35.0423 0xbe9c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
23:46:35.0455 0xbe9c  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
23:46:35.0470 0xbe9c  [ Global ] - ok
23:46:35.0470 0xbe9c  ================ Scan MBR ==================================
23:46:35.0470 0xbe9c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:46:36.0219 0xbe9c  \Device\Harddisk0\DR0 - ok
23:46:36.0219 0xbe9c  ================ Scan VBR ==================================
23:46:36.0235 0xbe9c  [ 60F2CCE67B5B086DB8303A32CACD48B2 ] \Device\Harddisk0\DR0\Partition1
23:46:36.0235 0xbe9c  \Device\Harddisk0\DR0\Partition1 - ok
23:46:36.0250 0xbe9c  [ D0374E09F056CF1ED0AD522031DA1F86 ] \Device\Harddisk0\DR0\Partition2
23:46:36.0250 0xbe9c  \Device\Harddisk0\DR0\Partition2 - ok
23:46:36.0266 0xbe9c  Waiting for KSN requests completion. In queue: 103
23:46:37.0280 0xbe9c  Waiting for KSN requests completion. In queue: 103
23:46:38.0294 0xbe9c  Waiting for KSN requests completion. In queue: 103
23:46:39.0308 0xbe9c  Waiting for KSN requests completion. In queue: 103
23:46:40.0322 0xbe9c  Waiting for KSN requests completion. In queue: 103
23:46:41.0336 0xbe9c  Waiting for KSN requests completion. In queue: 103
23:46:42.0365 0xbe9c  AV detected via SS2: McAfee Anti-Virus and Anti-Spyware, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 11.0.0.0 ), 0x50000 ( disabled : updated )
23:46:42.0365 0xbe9c  FW detected via SS2: McAfee Firewall, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 11.0.0.0 ), 0x50010 ( disabled )
23:46:42.0381 0xbe9c  Win FW state via NFP2: enabled
23:46:44.0939 0xbe9c  ============================================================
23:46:44.0939 0xbe9c  Scan finished
23:46:44.0939 0xbe9c  ============================================================
23:46:44.0955 0xbe20  Detected object count: 0
23:46:44.0955 0xbe20  Actual detected object count: 0
 



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:46 PM

Posted 26 December 2013 - 07:27 PM

Don't skip AdwCleaner


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 vtek

vtek
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:46 AM

Posted 26 December 2013 - 08:09 PM

ok here it is

 

# AdwCleaner v3.016 - Report created 27/12/2013 at 01:00:11
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : vtek - VTEK
# Running from : C:\Users\vtek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ARDVDQWZ\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : hshld
[#] Service Deleted : hsswd

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\hotspot shield
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\hotspot shield
Folder Deleted : C:\Program Files (x86)\hotspot shield
Folder Deleted : C:\Windows\SysWOW64\hotspot shield
Folder Deleted : C:\Program Files (x86)\Mozilla Firefox\Extensions\afurladvisor@anchorfree.com

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E69D4A59-73DE-4E38-9FB3-740EC4D9060D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : HKCU\Software\Alexa Internet
Key Deleted : HKCU\Software\AppDataLow\Software\Hotspot_Shield
Key Deleted : HKLM\Software\GamesBarSetup

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428

-\\ Mozilla Firefox v24.0 (en-US)

[ File : C:\Users\vtek\AppData\Roaming\Mozilla\Firefox\Profiles\8kaqilq1.default\prefs.js ]

-\\ Google Chrome v

[ File : C:\Users\vtek\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [4262 octets] - [26/12/2013 23:40:33]
AdwCleaner[R1].txt - [2916 octets] - [27/12/2013 00:58:01]
AdwCleaner[S0].txt - [2835 octets] - [27/12/2013 01:00:11]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2895 octets] ##########



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:46 PM

Posted 26 December 2013 - 08:21 PM

Thanks looking better. ESET is a lot longer but important.
Let me know how it is after.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 vtek

vtek
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:46 AM

Posted 27 December 2013 - 03:33 AM

finally, here is eset. it found a Trojan

 

C:\Users\vtek\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\8HEHKWC3\ww8_youtubevideodwonload_com[1].htm JS/Agent.NJV trojan cleaned by deleting - quarantined
C:\Users\vtek\AppData\Local\Temp\LDlrIx3Z.exe.part Win32/DownWare.G application cleaned by deleting - quarantined
C:\Users\vtek\AppData\Local\Temp\Qruc3RAf.exe.part multiple threats cleaned by deleting - quarantined
C:\Users\vtek\AppData\Local\Temp\tbHots.dll a variant of Win32/Toolbar.Conduit.B application cleaned by deleting - quarantined
C:\Users\vtek\AppData\Local\Temp\ct1561552\ieLogic.exe multiple threats cleaned by deleting - quarantined
C:\Users\vtek\Downloads\mplayer_Setup.exe a variant of Win32/Adware.iBryte.D application cleaned by deleting - quarantined
C:\Users\vtek\Downloads\setup (1).exe Win32/Adware.Bundlore application cleaned by deleting - quarantined
C:\Users\vtek\Downloads\setup (2).exe Win32/Adware.Bundlore application cleaned by deleting - quarantined
C:\Users\vtek\Downloads\setup.exe Win32/Adware.Bundlore application cleaned by deleting - quarantined
C:\Users\vtek\Downloads\Mass Effect 2 [PC ~ Multi6] (Razor1911)\rzr-me2a.iso Win32/Keygen.GU application deleted - quarantined
 



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:46 PM

Posted 27 December 2013 - 11:15 AM

OK that was great !

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
How is it running now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 vtek

vtek
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:04:46 AM

Posted 27 December 2013 - 04:32 PM

it's been much better. typing no longer seems to be an issue. thanks!



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:46 PM

Posted 27 December 2013 - 04:42 PM

You're welcome!!
reinstall that Hotspot shield if you have not yet.
 
Update to Version XI
 
Uncheck the install option here
Optional offer:



Yes, install Google Chrome as my default browser and Google Toolbar for Internet Explorer.

Google Toolbar and Google Chrome
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users