Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Bit Defender running numerous in background - high memory


  • Please log in to reply
10 replies to this topic

#1 ecarnell

ecarnell

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:59 AM

Posted 30 December 2013 - 08:15 PM

I can't for the life of me remember when this program was ever downloaded - though could be my son/daughter whos on mindcraft a bit.....

For some reason computer goes very slow due to low memory. Windows task manger usualy bring up 4-6 sessions of bitdefender antivirus scanner working in the background - some with large memory usuage (200,000-800,000 K). I can try deleting them - and they always come back.

I can't find the program in my installed programs to try and remove - but does show up on my start-up program list - and I uncheck it, but same thing.

 

Any help would be greatly appreciated...

 

Thanks

 

Eric

 



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,917 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:59 AM

Posted 31 December 2013 - 12:03 AM

Hi eric these scans should find some things and let us see other things.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 ecarnell

ecarnell
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:59 AM

Posted 31 December 2013 - 05:14 PM

Mini and TSS below:

 

MiniToolBox by Farbar  Version: 18-12-2013
Ran by Carnell (administrator) on 31-12-2013 at 16:54:55
Running from "C:\Users\Carnell\Desktop"
Windows Vista ™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

::1             localhost

127.0.0.1       localhost

========================= IP Configuration: ================================

 

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Carnell-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Peer-Peer
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : tnt21.com

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : tnt21.com
   Description . . . . . . . . . . . : NVIDIA nForce Networking Controller #2
   Physical Address. . . . . . . . . : 00-26-18-33-93-C6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::3d2c:a812:41f1:cb88%14(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.101(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : December-31-13 8:43:16 AM
   Lease Expires . . . . . . . . . . : January-07-14 10:21:19 AM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 285222424
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-11-EF-D2-51-00-26-18-33-93-C6
   DNS Servers . . . . . . . . . . . : 192.168.0.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.{50264075-DEE9-45B7-9C8C-6C05BC978914}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 02-00-54-55-4E-01
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.0.1

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Name:    google.com
Addresses:  24.156.153.24
   24.156.153.25
   24.156.153.29
   24.156.153.30
   24.156.153.34
   24.156.153.35
   24.156.153.39
   24.156.153.40
   24.156.153.44
   24.156.153.45
   24.156.153.49
   24.156.153.50
   24.156.153.54
   24.156.153.55
   24.156.153.59
   24.156.153.20

 

Pinging google.com [64.71.249.109] with 32 bytes of data:

Reply from 64.71.249.109: bytes=32 time=202ms TTL=56

Reply from 64.71.249.109: bytes=32 time=239ms TTL=56

 

Ping statistics for 64.71.249.109:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 202ms, Maximum = 239ms, Average = 220ms

Server:  UnKnown
Address:  192.168.0.1

DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Name:    yahoo.com
Addresses:  98.138.253.109
   98.139.183.24
   206.190.36.45

 

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

Reply from 206.190.36.45: bytes=32 time=246ms TTL=47

Reply from 206.190.36.45: bytes=32 time=206ms TTL=47

 

Ping statistics for 206.190.36.45:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 206ms, Maximum = 246ms, Average = 226ms

 

Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
 14 ...00 26 18 33 93 c6 ...... NVIDIA nForce Networking Controller #2
  1 ........................... Software Loopback Interface 1
 16 ...00 00 00 00 00 00 00 e0  isatap.{50264075-DEE9-45B7-9C8C-6C05BC978914}
 10 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1    192.168.0.101     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link     192.168.0.101    276
    192.168.0.101  255.255.255.255         On-link     192.168.0.101    276
    192.168.0.255  255.255.255.255         On-link     192.168.0.101    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.0.101    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.0.101    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 14    276 fe80::/64                On-link
 14    276 fe80::3d2c:a812:41f1:cb88/128
                                    On-link
  1    306 ff00::/8                 On-link
 14    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 mswsock.dll [] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 06 C:\Windows\system32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/30/2013 07:42:37 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (12/30/2013 06:14:24 PM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (12/30/2013 04:35:56 PM) (Source: Application Error) (User: )
Description: Faulting application ynveic.exe, version 240.0.48335.56444, time stamp 0x5287b82d, faulting module mshtml.dll, version 9.0.8112.16526, time stamp 0x528558ea, exception code 0xc0000005, fault offset 0x001d8bf8,
process id 0x1a68, application start time 0xynveic.exe0.

Error: (12/30/2013 03:46:55 PM) (Source: Application Error) (User: )
Description: Faulting application wswc.exe, version 4.6.0.4914, time stamp 0x4d5f2088, faulting module ntdll.dll, version 6.0.6002.18881, time stamp 0x51da3e27, exception code 0xc0000374, fault offset 0x000b06fc,
process id 0x1018, application start time 0xwswc.exe0.

Error: (12/30/2013 09:54:25 AM) (Source: Application Error) (User: )
Description: Faulting application ynveic.exe, version 240.0.48335.56444, time stamp 0x5287b82d, faulting module mshtml.dll, version 9.0.8112.16526, time stamp 0x528558ea, exception code 0xc0000005, fault offset 0x001d8bf8,
process id 0x15f8, application start time 0xynveic.exe0.

Error: (12/30/2013 09:52:18 AM) (Source: Application Error) (User: )
Description: Faulting application ynveic.exe, version 240.0.48335.56444, time stamp 0x5287b82d, faulting module Flash32_11_9_900_170.ocx, version 11.9.900.170, time stamp 0x529b7962, exception code 0xc0000005, fault offset 0x001b5fa9,
process id 0xdd8, application start time 0xynveic.exe0.

Error: (12/29/2013 01:59:00 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16526 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 1028
Start Time: 01cf04c62b772128
Termination Time: 47

Error: (12/27/2013 11:50:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9594

Error: (12/27/2013 11:50:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9594

Error: (12/27/2013 11:50:15 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

System errors:
=============
Error: (12/31/2013 04:55:26 PM) (Source: DCOM) (User: )
Description: {8BC3F05E-D86B-11D0-A075-00C04FB68820}

Error: (12/31/2013 08:46:52 AM) (Source: DCOM) (User: )
Description: {8BC3F05E-D86B-11D0-A075-00C04FB68820}

Error: (12/31/2013 08:44:32 AM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT AUTHORITY)
Description: 0x80070032

Error: (12/31/2013 05:00:41 AM) (Source: Schannel) (User: )
Description: An SSL connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.

Error: (12/30/2013 07:50:18 PM) (Source: DCOM) (User: )
Description: {8BC3F05E-D86B-11D0-A075-00C04FB68820}

Error: (12/30/2013 07:47:34 PM) (Source: Microsoft-Windows-LanguagePackSetup) (User: NT AUTHORITY)
Description: 0x80070032

Error: (12/30/2013 07:44:44 PM) (Source: DCOM) (User: )
Description: 1084MSIServer{000C101C-0000-0000-C000-000000000046}

Error: (12/30/2013 07:43:16 PM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (12/30/2013 07:43:16 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (12/30/2013 07:42:42 PM) (Source: DCOM) (User: )
Description: 1068netprofm{A47979D2-C419-11D9-A5B4-001185AD2B89}

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2013-12-30 20:43:26.105
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-30 20:43:25.143
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-30 20:43:24.132
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-30 20:43:22.911
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-30 20:43:21.788
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-30 20:43:20.755
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-30 20:43:18.817
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-30 20:43:16.885
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-30 20:43:15.568
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-12-30 20:43:14.726
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidsdriverx.sys because the set of per-page image hashes could not be found on the system.

=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 3.3.2.30303)
Acrobat.com (Version: 1.7.186)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0.1)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2)
Adobe AIR (Version: 1.5.1.8210)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170)
Adobe Reader 9.5.5 (Version: 9.5.5)
Adobe Shockwave Player 11.5 (Version: 11.5.2.602)
Agere Systems PCI-SV92EX Soft Modem
Air Video Server 2.4.3 (Version: 2.4.3)
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
AVG 2014 (Version: 14.0.3609)
AVG 2014 (Version: 14.0.4142)
AVG 2014 (Version: 2014.0.4142)
AviSynth 2.5
Bing Bar (Version: 7.3.124.0)
BlackBerry Desktop Software 7.1 (Version: 7.1.0.32)
BlackBerry Device Manager 7.0 (Version: 7.0.0.40)
Bonjour (Version: 3.0.0.10)
Citrix XenApp Web Plugin (Version: 11.0.0.5357)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
ConvertXtoDVD 2.2.3.258 (Version: 2.2.3.258)
CyberLink DVD Suite Deluxe (Version: 6.0.2602)
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
Epson Event Manager (Version: 2.20.00)
EPSON NX110 Series Printer Uninstall
EPSON Scan
Garmin BaseCamp (Version: 4.1.2)
Garmin Trip and Waypoint Manager v5 (Version: 5.0.0.0)
Garmin USB Drivers (Version: 2.3.1.0)
Garmin WebUpdater (Version: 2.4.2)
Google Chrome (Version: 31.0.1650.63)
Google Earth (Version: 7.1.2.2041)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Update Helper (Version: 1.3.22.3)
GPSBabel 1.4.1
Hardware Diagnostic Tools (Version: 5.1.5144.16)
HP Active Support Library (Version: 3.1.10.1)
HP Advisor (Version: 3.1.1000.1002)
HP Customer Experience Enhancements (Version: 5.7.0.2945)
HP Deskjet 1050 J410 series Basic Device Software (Version: 22.50.231.0)
HP Deskjet 1050 J410 series Help (Version: 140.0.66.66)
HP Deskjet 1050 J410 series Product Improvement Study (Version: 22.50.231.0)
HP Odometer (Version: 2.10.0000)
HP Photo Creations (Version: 1.0.0.3781)
HP Recovery Manager RSS (Version: 92.0.0.11)
HP Support Information (Version: 10.1.0001)
HP Total Care Setup (Version: 1.2.2854.2975)
HP Update (Version: 5.002.006.003)
HPAsset component for HP Active Support Library (Version: 3.0.2.2)
iTunes (Version: 11.1.1.11)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Juniper Citrix Services Client (Version: 7.4.0.25351)
Juniper Networks, Inc. Setup Client (Version: 7.4.7.41347)
Juniper Networks, Inc. Setup Client Activex Control (Version: 2.1.1.1)
Juniper Terminal Services Client (Version: 7.4.0.28091)
LabelPrint (Version: 2.5.1402)
LightScribe System Software (Version: 1.18.3.2)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
MapSource - Topo Canada v2 (Version: 2.00)
MapSource (Version: 5.4)
McAfee Security Scan Plus (Version: 3.8.130.10)
MICHIGAN TOPO
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.4.0304.0)
Microsoft Security Essentials (Version: 4.4.304.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SkyDrive (Version: 17.0.2015.0811)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works (Version: 9.7.0621)
MobileMe Control Panel (Version: 3.1.3.0)
Norton Internet Security (Version: 16.0.0.125)
ON Snowmobile Trails Free 2009 v1.0
Ontario Sled Trails - Reved 1.08
PowerDirector (Version: 7.0.2611)
Python 2.6 pywin32-212 (Version: 2.12)
Python 2.6.1 (Version: 2.6.1150)
QuickTax 2009 (Version: 1.00.0000)
QuickTime (Version: 7.74.80.86)
Realtek High Definition Audio Driver (Version: 6.0.1.5789)
Safari (Version: 5.34.57.2)
Shopping Helper Smartbar (Version: 1.70.63.11758)
TurboTax 2010 (Version: 1.00.0000)
TurboTax 2011 (Version: 1.00.0000)
TurboTax 2012 (Version: 1.00.0000)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Videora iPod Converter 6 (Version: 6)
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
VLC media player 2.0.5 (Version: 2.0.5)
VMware View Client (Version: 4.6.0.366101)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (Version: 04/19/2012 2.3.1.0)
Windows Movie Maker 2.6 (Version: 2.6.4040.0)
World western Topo Map

========================= Memory info: ===================================

Percentage of memory in use: 43%
Total physical RAM: 2941.77 MB
Available physical RAM: 1674.62 MB
Total Pagefile: 6127.99 MB
Available Pagefile: 4203.26 MB
Total Virtual: 2047.88 MB
Available Virtual: 1947.82 MB

========================= Partitions: =====================================

1 Drive c: (COMPAQ) (Fixed) (Total:286.61 GB) (Free:44.82 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:11.48 GB) (Free:1.62 GB) NTFS

========================= Users: ========================================

User accounts for \\CARNELL-PC

Administrator            Carnell                  Guest                   

**** End of log ****

 

 

16:58:35.0775 0x106c TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50

16:58:47.0415 0x106c ============================================================

16:58:47.0415 0x106c Current date / time: 2013/12/31 16:58:47.0415

16:58:47.0415 0x106c SystemInfo:

16:58:47.0421 0x106c

16:58:47.0421 0x106c OS Version: 6.0.6002 ServicePack: 2.0

16:58:47.0421 0x106c Product type: Workstation

16:58:47.0421 0x106c ComputerName: CARNELL-PC

16:58:47.0421 0x106c UserName: Carnell

16:58:47.0421 0x106c Windows directory: C:\Windows

16:58:47.0421 0x106c System windows directory: C:\Windows

16:58:47.0421 0x106c Processor architecture: Intel x86

16:58:47.0421 0x106c Number of processors: 2

16:58:47.0421 0x106c Page size: 0x1000

16:58:47.0421 0x106c Boot type: Normal boot

16:58:47.0421 0x106c ============================================================

16:58:49.0462 0x106c KLMD registered as C:\Windows\system32\drivers\16939892.sys

16:58:50.0422 0x106c System UUID: {ADB5C4F3-9C88-5917-7F50-16FDC963ABE0}

16:58:54.0906 0x106c Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050

16:58:55.0281 0x106c ============================================================

16:58:55.0281 0x106c \Device\Harddisk0\DR0:

16:58:55.0281 0x106c MBR partitions:

16:58:55.0281 0x106c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x23D36267

16:58:55.0281 0x106c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x23D362A6, BlocksNum 0x16F741B

16:58:55.0281 0x106c ============================================================

16:58:55.0432 0x106c C: <-> \Device\Harddisk0\DR0\Partition1

16:58:55.0462 0x106c D: <-> \Device\Harddisk0\DR0\Partition2

16:58:55.0595 0x106c ============================================================

16:58:55.0595 0x106c Initialize success

16:58:55.0595 0x106c ============================================================

16:58:57.0254 0x2480 ============================================================

16:58:57.0256 0x2480 Scan started

16:58:57.0256 0x2480 Mode: Manual;

16:58:57.0256 0x2480 ============================================================

16:58:57.0256 0x2480 KSN ping started

16:59:30.0051 0x2480 KSN ping finished: true

16:59:31.0258 0x2480 ================ Scan system memory ========================

16:59:31.0258 0x2480 System memory - ok

16:59:31.0259 0x2480 ================ Scan services =============================

16:59:31.0412 0x2480 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys

16:59:31.0457 0x2480 ACPI - ok

16:59:31.0490 0x2480 adjdsgww - ok

16:59:31.0625 0x2480 [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

16:59:31.0643 0x2480 AdobeFlashPlayerUpdateSvc - ok

16:59:31.0695 0x2480 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx C:\Windows\system32\drivers\adp94xx.sys

16:59:31.0736 0x2480 adp94xx - ok

16:59:31.0768 0x2480 [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci C:\Windows\system32\drivers\adpahci.sys

16:59:31.0785 0x2480 adpahci - ok

16:59:31.0810 0x2480 [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys

16:59:31.0814 0x2480 adpu160m - ok

16:59:31.0845 0x2480 [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320 C:\Windows\system32\drivers\adpu320.sys

16:59:31.0851 0x2480 adpu320 - ok

16:59:31.0898 0x2480 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll

16:59:31.0900 0x2480 AeLookupSvc - ok

16:59:31.0969 0x2480 [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD C:\Windows\system32\drivers\afd.sys

16:59:31.0986 0x2480 AFD - ok

16:59:32.0029 0x2480 [ 9C9D3B7A05445B1AB2DF4D0C4D6B77E8, D1B2DCE068C355941189564A98A06E1981CD04E25A12C6B7156E8AE7ED674E33 ] AgereModemAudio C:\Program Files\LSI SoftModem\agrsmsvc.exe

16:59:32.0031 0x2480 AgereModemAudio - ok

16:59:32.0105 0x2480 [ 724262247645120A28C2743B7278A91A, 39ADC5FE6867AD040B086F6409364001BCE1CBE529D4463A873A071E9AA15EFA ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys

16:59:32.0172 0x2480 AgereSoftModem - ok

16:59:32.0278 0x2480 [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440 C:\Windows\system32\drivers\agp440.sys

16:59:32.0368 0x2480 agp440 - ok

16:59:32.0415 0x2480 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys

16:59:32.0438 0x2480 aic78xx - ok

16:59:32.0531 0x2480 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe

16:59:32.0553 0x2480 ALG - ok

16:59:32.0596 0x2480 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide C:\Windows\system32\drivers\aliide.sys

16:59:32.0597 0x2480 aliide - ok

16:59:32.0614 0x2480 [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp C:\Windows\system32\drivers\amdagp.sys

16:59:32.0621 0x2480 amdagp - ok

16:59:32.0659 0x2480 [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide C:\Windows\system32\drivers\amdide.sys

16:59:32.0666 0x2480 amdide - ok

16:59:32.0713 0x2480 [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7 C:\Windows\system32\drivers\amdk7.sys

16:59:32.0728 0x2480 AmdK7 - ok

16:59:32.0759 0x2480 [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\drivers\amdk8.sys

16:59:32.0797 0x2480 AmdK8 - ok

16:59:32.0842 0x2480 [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo C:\Windows\System32\appinfo.dll

16:59:32.0843 0x2480 Appinfo - ok

16:59:32.0939 0x2480 [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

16:59:32.0964 0x2480 Apple Mobile Device - ok

16:59:33.0005 0x2480 [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc C:\Windows\system32\drivers\arc.sys

16:59:33.0009 0x2480 arc - ok

16:59:33.0048 0x2480 [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas C:\Windows\system32\drivers\arcsas.sys

16:59:33.0052 0x2480 arcsas - ok

16:59:33.0073 0x2480 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys

16:59:33.0075 0x2480 AsyncMac - ok

16:59:33.0093 0x2480 [ 2D9C903DC76A66813D350A562DE40ED9, 82609F01A08C6842E4C17C077BB641C1429C0E6657964B7F2D114035E1BDCBF3 ] atapi C:\Windows\system32\drivers\atapi.sys

16:59:33.0095 0x2480 atapi - ok

16:59:33.0138 0x2480 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

16:59:33.0156 0x2480 AudioEndpointBuilder - ok

16:59:33.0172 0x2480 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv C:\Windows\System32\Audiosrv.dll

16:59:33.0180 0x2480 Audiosrv - ok

16:59:33.0258 0x2480 [ D39A1C2FB0486D55F2CFBB4359363788, 07F633B089D605BA4BC9AC9F127C8AE8BF9A1D61AFB998B16712169048F7C12F ] Avgdiskx C:\Windows\system32\DRIVERS\avgdiskx.sys

16:59:33.0264 0x2480 Avgdiskx - ok

16:59:34.0544 0x2480 [ 75295E1C49F068F0C7C3ED1211DF3EFB, EFC0E3BABD41067242E666D1FA072BCF25BB1FA3D6E621974E3514A37446CF96 ] AVGIDSAgent C:\Program Files\AVG\AVG2014\avgidsagent.exe

16:59:36.0691 0x2480 AVGIDSAgent - ok

16:59:36.0868 0x2480 [ E2D441E3F58C04DD91286F38916CE102, C03F50CE5BDFCBC2B0DB062D6517ADE99DFF8EB65859CF6122DC95D3167E7C7E ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdriverx.sys

16:59:36.0891 0x2480 AVGIDSDriver - ok

16:59:36.0945 0x2480 [ 7E7E946C5620BD398BFCFA41E435545B, 0B2F496367F36BE20AD075DF0054E8DE083E690179F9C5C9ECF9B3677069D6CF ] AVGIDSHX C:\Windows\system32\DRIVERS\avgidshx.sys

16:59:36.0951 0x2480 AVGIDSHX - ok

16:59:37.0012 0x2480 [ C3828E5C49924969799ED8B1E123A267, 26713E308FC9BBDF28BD4E47234002D6928AAA234F73B2248BB2466EBA41747E ] AVGIDSShim C:\Windows\system32\DRIVERS\avgidsshimx.sys

16:59:37.0014 0x2480 AVGIDSShim - ok

16:59:37.0092 0x2480 [ A997D4A7361F4870A4F13BA5BF36F388, 1DF529F4207081E154BC377154A02FD641C20EF8BDB913C232465519AAC48827 ] Avgldx86 C:\Windows\system32\DRIVERS\avgldx86.sys

16:59:37.0099 0x2480 Avgldx86 - ok

16:59:37.0162 0x2480 [ 62C926243D7875BDE097904E4DE4FFAD, 32730FEB5133F51A62DEDB9528EDE5A8F9A3C8121753D09699C5EEB930E4E217 ] Avglogx C:\Windows\system32\DRIVERS\avglogx.sys

16:59:37.0171 0x2480 Avglogx - ok

16:59:37.0189 0x2480 [ 02C25C2974F728391E33A2E45A23FFA4, B36A9601BF855ABAC4855023913A8D977567AD15EDCC3FFAB3028A9B6FE5D2CA ] Avgmfx86 C:\Windows\system32\DRIVERS\avgmfx86.sys

16:59:37.0193 0x2480 Avgmfx86 - ok

16:59:37.0264 0x2480 [ 9745AD34365318593909EDDEDAE66B9A, 16374BF9789053AA0124CB8437E1192442F44E46D14435BF80A049CD0D47F16A ] Avgrkx86 C:\Windows\system32\DRIVERS\avgrkx86.sys

16:59:37.0286 0x2480 Avgrkx86 - ok

16:59:37.0335 0x2480 [ E98603F9D1F412F38ADF2F76053F9E5A, 1CE4668E0202ADD8C4C3D7D883DC837F7888F5D6E3B6FEE8338E15A86FE6AC22 ] Avgtdix C:\Windows\system32\DRIVERS\avgtdix.sys

16:59:37.0355 0x2480 Avgtdix - ok

16:59:37.0423 0x2480 [ 311C5A8D894563CD2712CD297A34FAFB, 6E001F1D5BE331E991ACA1823B385B58D558301B2A0AF3BDC99131130B5B5AFD ] avgtp C:\Windows\system32\drivers\avgtpx86.sys

16:59:37.0427 0x2480 avgtp - ok

16:59:37.0500 0x2480 [ D9EB91D8DD04D4DCE41C8FAE67D20449, 32A2BFFE546A7A8315CF7B8481E640E761BB2F0D7BFC2F6A7DD542F74224BA9D ] avgwd C:\Program Files\AVG\AVG2014\avgwdsvc.exe

16:59:37.0517 0x2480 avgwd - ok

16:59:37.0709 0x2480 [ F2E8CEFC8CF4D6454F4121C5FF93136A, DFD05AD328BD0FDD8BF44043C40084A6DF98BF6F5CEAE71BF793176AF6ADFBBB ] BBSvc C:\Program Files\Microsoft\BingBar\7.3.124.0\BBSvc.exe

16:59:37.0715 0x2480 BBSvc - ok

16:59:37.0906 0x2480 [ 6E1BCC590C9D30FEE8FC14DBD053CE94, 4F698D399225A890B7FDCE3773E504B2880534ED1C0F4C37589568C44BA51743 ] BBUpdate C:\Program Files\Microsoft\BingBar\7.3.124.0\SeaPort.exe

16:59:37.0942 0x2480 BBUpdate - ok

16:59:38.0040 0x2480 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys

16:59:38.0067 0x2480 Beep - ok

16:59:38.0280 0x2480 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll

16:59:38.0329 0x2480 BFE - ok

16:59:38.0685 0x2480 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll

16:59:38.0774 0x2480 BITS - ok

16:59:38.0843 0x2480 [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys

16:59:38.0869 0x2480 blbdrive - ok

16:59:39.0032 0x2480 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

16:59:39.0089 0x2480 Bonjour Service - ok

16:59:39.0170 0x2480 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys

16:59:39.0175 0x2480 bowser - ok

16:59:39.0257 0x2480 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys

16:59:39.0259 0x2480 BrFiltLo - ok

16:59:39.0289 0x2480 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys

16:59:39.0292 0x2480 BrFiltUp - ok

16:59:39.0376 0x2480 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll

16:59:39.0406 0x2480 Browser - ok

16:59:39.0473 0x2480 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys

16:59:39.0525 0x2480 Brserid - ok

16:59:39.0584 0x2480 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys

16:59:39.0629 0x2480 BrSerWdm - ok

16:59:39.0649 0x2480 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys

16:59:39.0678 0x2480 BrUsbMdm - ok

16:59:39.0714 0x2480 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys

16:59:39.0738 0x2480 BrUsbSer - ok

16:59:39.0786 0x2480 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys

16:59:39.0812 0x2480 BTHMODEM - ok

16:59:39.0902 0x2480 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys

16:59:39.0935 0x2480 cdfs - ok

16:59:40.0026 0x2480 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys

16:59:40.0059 0x2480 cdrom - ok

16:59:40.0142 0x2480 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll

16:59:40.0164 0x2480 CertPropSvc - ok

16:59:40.0375 0x2480 [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\drivers\circlass.sys

16:59:40.0409 0x2480 circlass - ok

16:59:40.0533 0x2480 [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys

16:59:40.0561 0x2480 CLFS - ok

16:59:40.0926 0x2480 [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

16:59:40.0955 0x2480 clr_optimization_v2.0.50727_32 - ok

16:59:41.0210 0x2480 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

16:59:41.0245 0x2480 clr_optimization_v4.0.30319_32 - ok

16:59:41.0325 0x2480 [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide C:\Windows\system32\drivers\cmdide.sys

16:59:41.0349 0x2480 cmdide - ok

16:59:41.0396 0x2480 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\drivers\compbatt.sys

16:59:41.0419 0x2480 Compbatt - ok

16:59:41.0425 0x2480 COMSysApp - ok

16:59:41.0466 0x2480 [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys

16:59:41.0488 0x2480 crcdisk - ok

16:59:41.0516 0x2480 [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe C:\Windows\system32\drivers\crusoe.sys

16:59:41.0541 0x2480 Crusoe - ok

16:59:41.0638 0x2480 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll

16:59:41.0643 0x2480 CryptSvc - ok

16:59:41.0949 0x2480 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll

16:59:42.0016 0x2480 DcomLaunch - ok

16:59:42.0080 0x2480 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys

16:59:42.0123 0x2480 DfsC - ok

16:59:42.0911 0x2480 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe

16:59:44.0209 0x2480 DFSR - ok

16:59:44.0268 0x2480 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll

16:59:44.0300 0x2480 Dhcp - ok

16:59:44.0346 0x2480 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys

16:59:44.0368 0x2480 disk - ok

16:59:44.0423 0x2480 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll

16:59:44.0459 0x2480 Dnscache - ok

16:59:44.0590 0x2480 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll

16:59:44.0620 0x2480 dot3svc - ok

16:59:44.0690 0x2480 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll

16:59:44.0711 0x2480 DPS - ok

16:59:44.0799 0x2480 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys

16:59:44.0908 0x2480 drmkaud - ok

16:59:45.0273 0x2480 [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys

16:59:45.0466 0x2480 DXGKrnl - ok

16:59:45.0528 0x2480 [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys

16:59:45.0539 0x2480 E1G60 - ok

16:59:45.0584 0x2480 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll

16:59:45.0588 0x2480 EapHost - ok

16:59:45.0625 0x2480 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys

16:59:45.0630 0x2480 Ecache - ok

16:59:45.0669 0x2480 [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe

16:59:45.0685 0x2480 ehRecvr - ok

16:59:45.0710 0x2480 [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe

16:59:45.0714 0x2480 ehSched - ok

16:59:45.0745 0x2480 [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll

16:59:45.0747 0x2480 ehstart - ok

16:59:45.0788 0x2480 [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor C:\Windows\system32\drivers\elxstor.sys

16:59:45.0822 0x2480 elxstor - ok

16:59:45.0874 0x2480 [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll

16:59:45.0907 0x2480 EMDMgmt - ok

16:59:45.0921 0x2480 erpyhcxa - ok

16:59:45.0980 0x2480 [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev C:\Windows\system32\drivers\errdev.sys

16:59:45.0981 0x2480 ErrDev - ok

16:59:46.0027 0x2480 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll

16:59:46.0044 0x2480 EventSystem - ok

16:59:46.0089 0x2480 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys

16:59:46.0106 0x2480 exfat - ok

16:59:46.0154 0x2480 [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat C:\Windows\system32\drivers\fastfat.sys

16:59:46.0163 0x2480 fastfat - ok

16:59:46.0206 0x2480 [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc C:\Windows\system32\DRIVERS\fdc.sys

16:59:46.0208 0x2480 fdc - ok

16:59:46.0238 0x2480 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll

16:59:46.0240 0x2480 fdPHost - ok

16:59:46.0251 0x2480 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll

16:59:46.0253 0x2480 FDResPub - ok

16:59:46.0287 0x2480 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys

16:59:46.0309 0x2480 FileInfo - ok

16:59:46.0338 0x2480 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys

16:59:46.0340 0x2480 Filetrace - ok

16:59:46.0362 0x2480 [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys

16:59:46.0370 0x2480 flpydisk - ok

16:59:46.0428 0x2480 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys

16:59:46.0437 0x2480 FltMgr - ok

16:59:46.0526 0x2480 [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll

16:59:46.0623 0x2480 FontCache - ok

16:59:46.0693 0x2480 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe

16:59:46.0695 0x2480 FontCache3.0.0.0 - ok

16:59:46.0727 0x2480 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys

16:59:46.0729 0x2480 Fs_Rec - ok

16:59:46.0748 0x2480 [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys

16:59:46.0752 0x2480 gagp30kx - ok

16:59:46.0812 0x2480 [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

16:59:46.0814 0x2480 GEARAspiWDM - ok

16:59:46.0867 0x2480 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll

16:59:46.0912 0x2480 gpsvc - ok

16:59:46.0972 0x2480 [ CEC45180029F1012054A41CEEEA9CEAB, FCE330FB9E4A9BA0BD1C31D94A5A73034175DB5FF4115009B3B3FFE327E31995 ] grmnusb C:\Windows\system32\drivers\grmnusb.sys

16:59:46.0974 0x2480 grmnusb - ok

16:59:47.0045 0x2480 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe

16:59:47.0051 0x2480 gupdate - ok

16:59:47.0062 0x2480 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe

16:59:47.0066 0x2480 gupdatem - ok

16:59:47.0143 0x2480 [ CC839E8D766CC31A7710C9F38CF3E375, 327D57F18B4A2D1CB06C5682D3364097ECD3CF40C2719AA1F41D0B49A26003E4 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

16:59:47.0154 0x2480 gusvc - ok

16:59:47.0210 0x2480 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys

16:59:47.0367 0x2480 HDAudBus - ok

16:59:47.0403 0x2480 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys

16:59:47.0405 0x2480 HidBth - ok

16:59:47.0435 0x2480 [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys

16:59:47.0438 0x2480 HidIr - ok

16:59:47.0462 0x2480 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll

16:59:47.0464 0x2480 hidserv - ok

16:59:47.0487 0x2480 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys

16:59:47.0489 0x2480 HidUsb - ok

16:59:47.0515 0x2480 [ CE77439BAF613019D6B7658292D1E4A6, EF0BCD841FB884F409102DED41EEB4B9E093B3B2FF9C2D932CE581767D892007 ] hitmanpro37 C:\Windows\system32\drivers\hitmanpro37.sys

16:59:47.0518 0x2480 hitmanpro37 - ok

16:59:47.0566 0x2480 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll

16:59:47.0570 0x2480 hkmsvc - ok

16:59:47.0616 0x2480 [ AA9EF0B395097F24D289F64445B2FD2E, D7B38E16A0EC9572A5F474E9463592AAC42E35F54009DA8CDA986F86FD38354E ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe

16:59:47.0713 0x2480 HP Health Check Service - ok

16:59:47.0754 0x2480 [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys

16:59:47.0756 0x2480 HpCISSs - ok

16:59:47.0815 0x2480 [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys

16:59:47.0832 0x2480 HTTP - ok

16:59:47.0886 0x2480 [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp C:\Windows\system32\drivers\i2omp.sys

16:59:47.0893 0x2480 i2omp - ok

16:59:47.0933 0x2480 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys

16:59:47.0936 0x2480 i8042prt - ok

16:59:47.0971 0x2480 [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV C:\Windows\system32\drivers\iastorv.sys

16:59:47.0988 0x2480 iaStorV - ok

16:59:48.0089 0x2480 [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

16:59:48.0124 0x2480 idsvc - ok

16:59:48.0145 0x2480 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys

16:59:48.0155 0x2480 iirsp - ok

16:59:48.0200 0x2480 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll

16:59:48.0226 0x2480 IKEEXT - ok

16:59:48.0366 0x2480 [ 84ED2154239F9D013BBD3220755ADA8B, 36A1B03DCFD8BFC7905425DF54EAAC9E6B2ACF3A5A0EF1A3EF608938DA63D42C ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys

16:59:48.0635 0x2480 IntcAzAudAddService - ok

16:59:48.0697 0x2480 [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys

16:59:48.0701 0x2480 intelide - ok

16:59:48.0712 0x2480 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys

16:59:48.0715 0x2480 intelppm - ok

16:59:48.0736 0x2480 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll

16:59:48.0740 0x2480 IPBusEnum - ok

16:59:48.0758 0x2480 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys

16:59:48.0764 0x2480 IpFilterDriver - ok

16:59:48.0816 0x2480 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll

16:59:48.0833 0x2480 iphlpsvc - ok

16:59:48.0841 0x2480 IpInIp - ok

16:59:48.0865 0x2480 [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys

16:59:48.0870 0x2480 IPMIDRV - ok

16:59:48.0888 0x2480 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys

16:59:48.0893 0x2480 IPNAT - ok

16:59:48.0938 0x2480 [ 061614179585BE398A73B9B3AF111310, BE715790531CBF3E038C6C2083A0802FA492D1DCAB3ACFE035DF72E3D6A4B83B ] iPod Service C:\Program Files\iPod\bin\iPodService.exe

16:59:48.0965 0x2480 iPod Service - ok

16:59:48.0990 0x2480 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys

16:59:48.0995 0x2480 IRENUM - ok

16:59:49.0016 0x2480 [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp C:\Windows\system32\drivers\isapnp.sys

16:59:49.0019 0x2480 isapnp - ok

16:59:49.0054 0x2480 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys

16:59:49.0061 0x2480 iScsiPrt - ok

16:59:49.0076 0x2480 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys

16:59:49.0079 0x2480 iteatapi - ok

16:59:49.0101 0x2480 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys

16:59:49.0106 0x2480 iteraid - ok

16:59:49.0112 0x2480 jkibndka - ok

16:59:49.0133 0x2480 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys

16:59:49.0141 0x2480 kbdclass - ok

16:59:49.0162 0x2480 [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys

16:59:49.0168 0x2480 kbdhid - ok

16:59:49.0228 0x2480 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe

16:59:49.0232 0x2480 KeyIso - ok

16:59:49.0240 0x2480 kidbeuoa - ok

16:59:49.0313 0x2480 [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys

16:59:49.0339 0x2480 KSecDD - ok

16:59:49.0380 0x2480 kszlpvgm - ok

16:59:49.0419 0x2480 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll

16:59:49.0436 0x2480 KtmRm - ok

16:59:49.0508 0x2480 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll

16:59:49.0514 0x2480 LanmanServer - ok

16:59:49.0561 0x2480 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

16:59:49.0578 0x2480 LanmanWorkstation - ok

16:59:49.0634 0x2480 [ DFEFF67508D3A9AEB1A85D7B0F513B24, 34A02E6BEAFB22B1527C72E0E2D65FA1DBCFB022672116BFF4A903FBBEA8419D ] LightScribeService c:\Program Files\Common Files\LightScribe\LSSrvc.exe

16:59:49.0639 0x2480 LightScribeService - ok

16:59:49.0683 0x2480 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys

16:59:49.0690 0x2480 lltdio - ok

16:59:49.0740 0x2480 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll

16:59:49.0756 0x2480 lltdsvc - ok

16:59:49.0790 0x2480 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll

16:59:49.0792 0x2480 lmhosts - ok

16:59:49.0798 0x2480 lmhqngla - ok

16:59:49.0804 0x2480 lmnejjaw - ok

16:59:49.0845 0x2480 [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys

16:59:49.0849 0x2480 LSI_FC - ok

16:59:49.0890 0x2480 [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys

16:59:49.0893 0x2480 LSI_SAS - ok

16:59:49.0938 0x2480 [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys

16:59:49.0943 0x2480 LSI_SCSI - ok

16:59:49.0990 0x2480 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys

16:59:49.0993 0x2480 luafv - ok

16:59:50.0057 0x2480 [ 0DB7527DB188C7D967A37BB51BBF3963, 3812E26626EC49BE61B0B8DA5FE6E838C0FEF8A08363C239F64E6CCA0BA949D5 ] MBAMSwissArmy C:\Windows\system32\drivers\mbamswissarmy.sys

16:59:50.0064 0x2480 MBAMSwissArmy - ok

16:59:50.0144 0x2480 [ E4DFBE4C4A9C2BD87C1430F445F3E3CB, 34A0295D0AC37537B010FEC4534535D92AA4C30900DC37444C992C15F86D3AA4 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe

16:59:50.0162 0x2480 McComponentHostService - ok

16:59:50.0189 0x2480 [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll

16:59:50.0193 0x2480 Mcx2Svc - ok

16:59:50.0222 0x2480 [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys

16:59:50.0223 0x2480 mdmxsdk - ok

16:59:50.0253 0x2480 [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas C:\Windows\system32\drivers\megasas.sys

16:59:50.0257 0x2480 megasas - ok

16:59:50.0288 0x2480 [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR C:\Windows\system32\drivers\megasr.sys

16:59:50.0306 0x2480 MegaSR - ok

16:59:50.0317 0x2480 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll

16:59:50.0320 0x2480 MMCSS - ok

16:59:50.0326 0x2480 mmiesizi - ok

16:59:50.0334 0x2480 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys

16:59:50.0339 0x2480 Modem - ok

16:59:50.0353 0x2480 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys

16:59:50.0375 0x2480 monitor - ok

16:59:50.0442 0x2480 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys

16:59:50.0445 0x2480 mouclass - ok

16:59:50.0470 0x2480 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys

16:59:50.0472 0x2480 mouhid - ok

16:59:50.0513 0x2480 [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys

16:59:50.0534 0x2480 MountMgr - ok

16:59:50.0584 0x2480 [ E77DC03DD3C8E5A388BF9EED2A28F3D1, ED0DAA975D1EC35CE036F02596218E15CC6A054167628D12A0A5AD91B841F422 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys

16:59:50.0601 0x2480 MpFilter - ok

16:59:50.0662 0x2480 [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio C:\Windows\system32\drivers\mpio.sys

16:59:50.0669 0x2480 mpio - ok

16:59:50.0800 0x2480 [ 06D4F934E09C359B0EFBFB3146F1D910, 484F57CD6F8757137F3B3491B8AC8ECF6C6385A666CD1671833DDD9E962AAB4A ] MpKsl85c94bf0 c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3BEE17F6-DCBA-4E77-9931-16B575DA0E70}\MpKsl85c94bf0.sys

16:59:50.0801 0x2480 MpKsl85c94bf0 - ok

16:59:50.0821 0x2480 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys

16:59:50.0824 0x2480 mpsdrv - ok

16:59:50.0866 0x2480 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll

16:59:50.0889 0x2480 MpsSvc - ok

16:59:50.0907 0x2480 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys

16:59:50.0913 0x2480 Mraid35x - ok

16:59:50.0950 0x2480 [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys

16:59:50.0955 0x2480 MRxDAV - ok

16:59:51.0015 0x2480 [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys

16:59:51.0019 0x2480 mrxsmb - ok

16:59:51.0088 0x2480 [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys

16:59:51.0105 0x2480 mrxsmb10 - ok

16:59:51.0135 0x2480 [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys

16:59:51.0140 0x2480 mrxsmb20 - ok

16:59:51.0159 0x2480 [ 28023E86F17001F7CD9B15A5BC9AE07D, FC7EAA592C5F796E3BCD7F7EF261709CD899B33FC8486E594A480F143D0D6320 ] msahci C:\Windows\system32\drivers\msahci.sys

16:59:51.0166 0x2480 msahci - ok

16:59:51.0189 0x2480 [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm C:\Windows\system32\drivers\msdsm.sys

16:59:51.0193 0x2480 msdsm - ok

16:59:51.0219 0x2480 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe

16:59:51.0224 0x2480 MSDTC - ok

16:59:51.0251 0x2480 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys

16:59:51.0253 0x2480 Msfs - ok

16:59:51.0262 0x2480 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

16:59:51.0270 0x2480 msisadrv - ok

16:59:51.0298 0x2480 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll

16:59:51.0303 0x2480 MSiSCSI - ok

16:59:51.0309 0x2480 msiserver - ok

16:59:51.0328 0x2480 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

16:59:51.0331 0x2480 MSKSSRV - ok

16:59:51.0436 0x2480 [ B0F49DA36F30922F5DDC3B623B778FCE, EE025AEFA4A2095AFEABFB3A49639DA77D78068A3F5EEDA6C15D34853AFD5609 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe

16:59:51.0439 0x2480 MsMpSvc - ok

16:59:51.0455 0x2480 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

16:59:51.0461 0x2480 MSPCLOCK - ok

16:59:51.0478 0x2480 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

16:59:51.0482 0x2480 MSPQM - ok

16:59:51.0604 0x2480 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

16:59:51.0642 0x2480 MsRPC - ok

16:59:51.0688 0x2480 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys

16:59:51.0690 0x2480 mssmbios - ok

16:59:51.0702 0x2480 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

16:59:51.0705 0x2480 MSTEE - ok

16:59:51.0754 0x2480 [ 00C7B2306F1CA5389A1AC6D1DF9C2E25, 0D6A9C046BDFBB6B36C6A89058946138A880F00F9D8ED826C4A350E39772AD57 ] msvad_simple C:\Windows\system32\drivers\povrtdev.sys

16:59:51.0757 0x2480 msvad_simple - ok

16:59:51.0786 0x2480 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys

16:59:51.0790 0x2480 Mup - ok

16:59:51.0832 0x2480 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll

16:59:51.0850 0x2480 napagent - ok

16:59:51.0879 0x2480 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

16:59:51.0885 0x2480 NativeWifiP - ok

16:59:51.0927 0x2480 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys

16:59:51.0953 0x2480 NDIS - ok

16:59:51.0983 0x2480 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

16:59:51.0985 0x2480 NdisTapi - ok

16:59:52.0003 0x2480 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

16:59:52.0005 0x2480 Ndisuio - ok

16:59:52.0032 0x2480 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

16:59:52.0037 0x2480 NdisWan - ok

16:59:52.0052 0x2480 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

16:59:52.0055 0x2480 NDProxy - ok

16:59:52.0115 0x2480 [ 7AFD0E39AB15CB355487B7CC19F4E2C5, E6AFC722743ABEBC1CB9909912AB822F2996EAA7F42774BD7C77F24A6DAAA7A5 ] Netaapl C:\Windows\system32\DRIVERS\netaapl.sys

16:59:52.0140 0x2480 Netaapl - ok

16:59:52.0148 0x2480 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

16:59:52.0154 0x2480 NetBIOS - ok

16:59:52.0186 0x2480 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys

16:59:52.0203 0x2480 netbt - ok

16:59:52.0219 0x2480 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe

16:59:52.0221 0x2480 Netlogon - ok

16:59:52.0246 0x2480 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll

16:59:52.0264 0x2480 Netman - ok

16:59:52.0284 0x2480 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll

16:59:52.0302 0x2480 netprofm - ok

16:59:52.0329 0x2480 [ D6C4E4A39A36029AC0813D476FBD0248, A0907D98580D1CD3007365CBBB53E84BEF39001E05912776F68EB0564B54B6EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe

16:59:52.0384 0x2480 NetTcpPortSharing - ok

16:59:52.0423 0x2480 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys

16:59:52.0426 0x2480 nfrd960 - ok

16:59:52.0472 0x2480 [ 32FF06EC6D946EF791D98D6C838A3090, 319BDD491CB22D0CCCCE76A2854CF469D7AF046289F9C56CD03AE3D3CBC0275E ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys

16:59:52.0476 0x2480 NisDrv - ok

16:59:52.0514 0x2480 [ 42D33042371BFB1A7D40834590CAFD30, 53DA3618EC10293B2DF686E291A4EF6ACBBD41D116EC762D54106D201A784E87 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe

16:59:52.0532 0x2480 NisSrv - ok

16:59:52.0540 0x2480 nixlmfes - ok

16:59:52.0583 0x2480 [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc C:\Windows\System32\nlasvc.dll

16:59:52.0590 0x2480 NlaSvc - ok

16:59:52.0619 0x2480 [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys

16:59:52.0623 0x2480 Npfs - ok

16:59:52.0640 0x2480 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll

16:59:52.0643 0x2480 nsi - ok

16:59:52.0658 0x2480 [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

16:59:52.0660 0x2480 nsiproxy - ok

16:59:52.0810 0x2480 [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

16:59:52.0871 0x2480 Ntfs - ok

16:59:52.0893 0x2480 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys

16:59:52.0896 0x2480 ntrigdigi - ok

16:59:52.0915 0x2480 [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys

16:59:52.0916 0x2480 Null - ok

16:59:52.0944 0x2480 [ 1657F3FBD9061526C14FF37E79306F98, 8A3378E7A3D3314380EC76D21542B9A8A7AB0191338729B830AB6BEF786297BC ] NVENETFD C:\Windows\system32\DRIVERS\nvm60x32.sys

16:59:52.0966 0x2480 NVENETFD - ok

16:59:53.0235 0x2480 [ CFDDEDC1151839DD71F78472645214A5, 5A193466B0340F2D9E69F8AE2BB7F88B52271497D20C8EBDEB4D936ABA23AC62 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys

16:59:54.0027 0x2480 nvlddmkm - ok

16:59:54.0132 0x2480 [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid C:\Windows\system32\drivers\nvraid.sys

16:59:54.0343 0x2480 nvraid - ok

16:59:54.0398 0x2480 [ 5DD1242CABC1EF8DCE4438D72D72A436, BC2ED6FCDF49E7A7F2B1CF5FE72AF8EC2BFD67FFF42EE25CDE59877EA01BEE03 ] nvrd32 C:\Windows\system32\drivers\nvrd32.sys

16:59:54.0420 0x2480 nvrd32 - ok

16:59:54.0439 0x2480 [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor C:\Windows\system32\drivers\nvstor.sys

16:59:54.0445 0x2480 nvstor - ok

16:59:54.0493 0x2480 [ BB4DD678706510D9249EED1DA0219900, 38242C72C4690F9560CBA34C68EF9B481A39EA48DEE926F337DF1360DA4F78D3 ] nvstor32 C:\Windows\system32\drivers\nvstor32.sys

16:59:54.0497 0x2480 nvstor32 - ok

16:59:54.0530 0x2480 [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

16:59:54.0534 0x2480 nv_agp - ok

16:59:54.0540 0x2480 NwlnkFlt - ok

16:59:54.0549 0x2480 NwlnkFwd - ok

16:59:54.0556 0x2480 nyhdshnq - ok

16:59:54.0661 0x2480 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

16:59:54.0712 0x2480 odserv - ok

16:59:54.0737 0x2480 [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys

16:59:54.0745 0x2480 ohci1394 - ok

16:59:54.0832 0x2480 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE

16:59:54.0841 0x2480 ose - ok

16:59:54.0894 0x2480 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll

16:59:54.0962 0x2480 p2pimsvc - ok

16:59:54.0988 0x2480 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll

16:59:55.0008 0x2480 p2psvc - ok

16:59:55.0038 0x2480 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys

16:59:55.0072 0x2480 Parport - ok

16:59:55.0094 0x2480 [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys

16:59:55.0099 0x2480 partmgr - ok

16:59:55.0114 0x2480 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys

16:59:55.0137 0x2480 Parvdm - ok

16:59:55.0232 0x2480 [ A88F42AD20418620D08A13AD1A70C083, 8230EDDE3C69F90BDA02C8B243473010A598D238BBBF81D9F7708D8DB1B5815B ] PCDSRVC{4F253FFC-7957E8FC-06000000}_0 c:\program files\pc-doctor for windows\pcdsrvc.pkms

16:59:55.0562 0x2480 PCDSRVC{4F253FFC-7957E8FC-06000000}_0 - ok

16:59:55.0596 0x2480 [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys

16:59:55.0663 0x2480 pci - ok

16:59:55.0712 0x2480 [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide C:\Windows\system32\drivers\pciide.sys

16:59:55.0714 0x2480 pciide - ok

16:59:55.0752 0x2480 [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys

16:59:55.0758 0x2480 pcmcia - ok

16:59:55.0790 0x2480 [ 5B6C11DE7E839C05248CED8825470FEF, DB57DFD02C18461B1B383DF759730FFEE9C7FA8577E1679FD4740A590303EE79 ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys

16:59:55.0873 0x2480 pcouffin - ok

16:59:55.0920 0x2480 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys

16:59:56.0021 0x2480 PEAUTH - ok

16:59:56.0113 0x2480 [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll

16:59:56.0384 0x2480 pla - ok

16:59:56.0480 0x2480 [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll

16:59:56.0576 0x2480 PlugPlay - ok

16:59:56.0636 0x2480 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll

16:59:56.0662 0x2480 PNRPAutoReg - ok

16:59:56.0736 0x2480 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll

16:59:56.0753 0x2480 PNRPsvc - ok

16:59:56.0791 0x2480 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys

16:59:56.0842 0x2480 PptpMiniport - ok

16:59:56.0854 0x2480 [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\DRIVERS\processr.sys

16:59:56.0860 0x2480 Processor - ok

16:59:56.0898 0x2480 [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc C:\Windows\system32\profsvc.dll

16:59:56.0915 0x2480 ProfSvc - ok

16:59:56.0935 0x2480 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe

16:59:56.0938 0x2480 ProtectedStorage - ok

16:59:56.0965 0x2480 [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys

16:59:56.0968 0x2480 PSched - ok

16:59:57.0033 0x2480 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300 C:\Windows\system32\drivers\ql2300.sys

16:59:57.0100 0x2480 ql2300 - ok

16:59:57.0171 0x2480 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys

16:59:57.0190 0x2480 ql40xx - ok

16:59:57.0196 0x2480 qlqztiiz - ok

16:59:57.0248 0x2480 [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll

16:59:57.0264 0x2480 QWAVE - ok

16:59:57.0279 0x2480 [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys

16:59:57.0281 0x2480 QWAVEdrv - ok

16:59:57.0292 0x2480 [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

16:59:57.0297 0x2480 RasAcd - ok

16:59:57.0358 0x2480 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll

16:59:57.0363 0x2480 RasAuto - ok

16:59:57.0386 0x2480 [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys

16:59:57.0390 0x2480 Rasl2tp - ok

16:59:57.0560 0x2480 [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll

16:59:57.0572 0x2480 RasMan - ok

16:59:57.0613 0x2480 [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys

16:59:57.0626 0x2480 RasPppoe - ok

16:59:57.0673 0x2480 [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys

16:59:57.0682 0x2480 RasSstp - ok

16:59:57.0739 0x2480 [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys

16:59:57.0756 0x2480 rdbss - ok

16:59:57.0799 0x2480 [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys

16:59:57.0801 0x2480 RDPCDD - ok

16:59:57.0856 0x2480 [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys

16:59:57.0874 0x2480 rdpdr - ok

16:59:57.0882 0x2480 [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys

16:59:57.0884 0x2480 RDPENCDD - ok

16:59:57.0932 0x2480 [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys

16:59:57.0948 0x2480 RDPWD - ok

16:59:58.0002 0x2480 [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll

16:59:58.0008 0x2480 RemoteRegistry - ok

16:59:58.0052 0x2480 [ 4F4A4C09CC5BE58A76CAC1C337E004E6, 5DFFB1C60709A80DAC46BCBB9BA76408332A681EFA6ABB330CD74236109F4296 ] RimUsb C:\Windows\system32\Drivers\RimUsb.sys

16:59:58.0058 0x2480 RimUsb - ok

16:59:58.0090 0x2480 [ 3A5633AD615E2B15291BD0B1B97CCD8A, 17E6FE788E8FBC6CB84B68F49FAFB4F63398EA97D89AACF677B338464B68E2AD ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial.sys

16:59:58.0096 0x2480 RimVSerPort - ok

16:59:58.0123 0x2480 [ 75E8A6BFA7374ABA833AE92BF41AE4E6, 5A4CF4CDEFFCC4892D01FF4A5918D91193AA44AA29469B52E83824E6BCC877A5 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys

16:59:58.0124 0x2480 ROOTMODEM - ok

16:59:58.0139 0x2480 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe

16:59:58.0141 0x2480 RpcLocator - ok

16:59:58.0189 0x2480 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll

16:59:58.0209 0x2480 RpcSs - ok

16:59:58.0228 0x2480 [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys

16:59:58.0231 0x2480 rspndr - ok

16:59:58.0237 0x2480 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe

16:59:58.0239 0x2480 SamSs - ok

16:59:58.0261 0x2480 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys

16:59:58.0272 0x2480 sbp2port - ok

16:59:58.0304 0x2480 [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll

16:59:58.0310 0x2480 SCardSvr - ok

16:59:58.0378 0x2480 [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll

16:59:58.0412 0x2480 Schedule - ok

16:59:58.0441 0x2480 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll

16:59:58.0443 0x2480 SCPolicySvc - ok

16:59:58.0464 0x2480 [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll

16:59:58.0470 0x2480 SDRSVC - ok

16:59:58.0497 0x2480 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys

16:59:58.0502 0x2480 secdrv - ok

16:59:58.0517 0x2480 [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll

16:59:58.0527 0x2480 seclogon - ok

16:59:58.0553 0x2480 [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll

16:59:58.0557 0x2480 SENS - ok

16:59:58.0578 0x2480 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys

16:59:58.0601 0x2480 Serenum - ok

16:59:58.0631 0x2480 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys

16:59:58.0653 0x2480 Serial - ok

16:59:58.0678 0x2480 [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys

16:59:58.0700 0x2480 sermouse - ok

16:59:58.0750 0x2480 [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll

16:59:58.0755 0x2480 SessionEnv - ok

16:59:58.0778 0x2480 [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\drivers\sffdisk.sys

16:59:58.0779 0x2480 sffdisk - ok

16:59:58.0794 0x2480 [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys

16:59:58.0816 0x2480 sffp_mmc - ok

16:59:58.0827 0x2480 [ 3D0EA348784B7AC9EA9BD9F317980979, 2500CE188C9B71C50E966FA575303AEFE50934E376C530AECEC7C7533C15EF08 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys

16:59:58.0838 0x2480 sffp_sd - ok

16:59:58.0852 0x2480 [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys

16:59:58.0854 0x2480 sfloppy - ok

16:59:58.0883 0x2480 [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll

16:59:58.0916 0x2480 SharedAccess - ok

16:59:58.0991 0x2480 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

16:59:59.0008 0x2480 ShellHWDetection - ok

16:59:59.0028 0x2480 [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp C:\Windows\system32\drivers\sisagp.sys

16:59:59.0032 0x2480 sisagp - ok

16:59:59.0052 0x2480 [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys

16:59:59.0144 0x2480 SiSRaid2 - ok

16:59:59.0162 0x2480 [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys

16:59:59.0196 0x2480 SiSRaid4 - ok

16:59:59.0416 0x2480 [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe

17:00:00.0308 0x2480 slsvc - ok

17:00:00.0382 0x2480 [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll

17:00:00.0388 0x2480 SLUINotify - ok

17:00:00.0416 0x2480 [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys

17:00:00.0419 0x2480 Smb - ok

17:00:00.0444 0x2480 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe

17:00:00.0446 0x2480 SNMPTRAP - ok

17:00:00.0469 0x2480 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys

17:00:00.0471 0x2480 spldr - ok

17:00:00.0531 0x2480 [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe

17:00:00.0548 0x2480 Spooler - ok

17:00:00.0623 0x2480 [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys

17:00:00.0674 0x2480 srv - ok

17:00:00.0749 0x2480 [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys

17:00:00.0815 0x2480 srv2 - ok

17:00:00.0887 0x2480 [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys

17:00:00.0904 0x2480 srvnet - ok

17:00:00.0932 0x2480 [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll

17:00:00.0949 0x2480 SSDPSRV - ok

17:00:00.0988 0x2480 [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll

17:00:00.0994 0x2480 SstpSvc - ok

17:00:01.0052 0x2480 [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll

17:00:01.0153 0x2480 stisvc - ok

17:00:01.0201 0x2480 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys

17:00:01.0233 0x2480 swenum - ok

17:00:01.0292 0x2480 [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll

17:00:01.0309 0x2480 swprv - ok

17:00:01.0360 0x2480 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys

17:00:01.0402 0x2480 Symc8xx - ok

17:00:01.0416 0x2480 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys

17:00:01.0435 0x2480 Sym_hi - ok

17:00:01.0450 0x2480 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys

17:00:01.0460 0x2480 Sym_u3 - ok

17:00:01.0512 0x2480 [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll

17:00:01.0534 0x2480 SysMain - ok

17:00:01.0563 0x2480 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll

17:00:01.0572 0x2480 TabletInputService - ok

17:00:01.0616 0x2480 [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll

17:00:01.0633 0x2480 TapiSrv - ok

17:00:01.0654 0x2480 [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll

17:00:01.0686 0x2480 TBS - ok

17:00:01.0790 0x2480 [ 6D0D344F643E28B31262AC2682109A3C, 276736661876CE69A30CEED117AFCF26677221F278E234B9C7D03B85869B2C92 ] Tcpip C:\Windows\system32\drivers\tcpip.sys

17:00:01.0868 0x2480 Tcpip - ok

17:00:01.0962 0x2480 [ 6D0D344F643E28B31262AC2682109A3C, 276736661876CE69A30CEED117AFCF26677221F278E234B9C7D03B85869B2C92 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys

17:00:01.0983 0x2480 Tcpip6 - ok

17:00:02.0048 0x2480 [ 5877A786EF27E42C4E84D1356F922302, 1CDCC7D91086DC0FE80057EE8E1AE609A38DD9D241BC17145E7811C916E662C3 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys

17:00:02.0066 0x2480 tcpipreg - ok

17:00:02.0113 0x2480 [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys

17:00:02.0129 0x2480 TDPIPE - ok

17:00:02.0146 0x2480 [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys

17:00:02.0166 0x2480 TDTCP - ok

17:00:02.0206 0x2480 [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys

17:00:02.0211 0x2480 tdx - ok

17:00:02.0224 0x2480 [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys

17:00:02.0229 0x2480 TermDD - ok

17:00:02.0278 0x2480 [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService C:\Windows\System32\termsrv.dll

17:00:02.0293 0x2480 TermService - ok

17:00:02.0333 0x2480 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll

17:00:02.0341 0x2480 Themes - ok

17:00:02.0442 0x2480 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll

17:00:02.0445 0x2480 THREADORDER - ok

17:00:02.0554 0x2480 [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll

17:00:02.0579 0x2480 TrkWks - ok

17:00:02.0793 0x2480 [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

17:00:02.0795 0x2480 TrustedInstaller - ok

17:00:02.0861 0x2480 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys

17:00:02.0890 0x2480 tssecsrv - ok

17:00:02.0950 0x2480 [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys

17:00:02.0979 0x2480 tunmp - ok

17:00:03.0028 0x2480 [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys

17:00:03.0031 0x2480 tunnel - ok

17:00:03.0057 0x2480 [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35 C:\Windows\system32\drivers\uagp35.sys

17:00:03.0060 0x2480 uagp35 - ok

17:00:03.0106 0x2480 [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys

17:00:03.0122 0x2480 udfs - ok

17:00:03.0175 0x2480 [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe

17:00:03.0179 0x2480 UI0Detect - ok

17:00:03.0198 0x2480 [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys

17:00:03.0203 0x2480 uliagpkx - ok

17:00:03.0231 0x2480 [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci C:\Windows\system32\drivers\uliahci.sys

17:00:03.0248 0x2480 uliahci - ok

17:00:03.0294 0x2480 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys

17:00:03.0317 0x2480 UlSata - ok

17:00:03.0351 0x2480 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys

17:00:03.0381 0x2480 ulsata2 - ok

17:00:03.0398 0x2480 [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys

17:00:03.0401 0x2480 umbus - ok

17:00:03.0461 0x2480 [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll

17:00:03.0478 0x2480 upnphost - ok

17:00:03.0539 0x2480 [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys

17:00:03.0570 0x2480 USBAAPL - ok

17:00:03.0640 0x2480 [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys

17:00:03.0694 0x2480 usbccgp - ok

17:00:03.0744 0x2480 [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys

17:00:03.0774 0x2480 usbcir - ok

17:00:03.0802 0x2480 [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys

17:00:03.0814 0x2480 usbehci - ok

17:00:03.0831 0x2480 [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys

17:00:03.0848 0x2480 usbhub - ok

17:00:03.0875 0x2480 [ D457EBD0C3A8B3A3A144355B5EE91CBC, 6AD52BDBB1607A48F0B02E663B97C3A00E3345B1B12C259608A5AE728C1C06B2 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys

17:00:03.0885 0x2480 usbohci - ok

17:00:03.0915 0x2480 [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys

17:00:03.0919 0x2480 usbprint - ok

17:00:03.0985 0x2480 [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys

17:00:04.0006 0x2480 usbscan - ok

17:00:04.0091 0x2480 [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS

17:00:04.0109 0x2480 USBSTOR - ok

17:00:04.0178 0x2480 [ 814D653EFC4D48BE3B04A307ECEFF56F, D73D62F51AEFE2F8F2B938B20107C246F2AC2F62ED49112DBD092A5D2E4024B3 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys

17:00:04.0180 0x2480 usbuhci - ok

17:00:04.0198 0x2480 [ 228F444F9AF0D3B9ECA9FC3F4FEB12F2, D29C9A0ED5602BCD529A0D7F538DFA8771B1CAC6F433AA686C3A4917DC596369 ] usb_rndisx C:\Windows\system32\DRIVERS\usb8023x.sys

17:00:04.0203 0x2480 usb_rndisx - ok

17:00:04.0241 0x2480 [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll

17:00:04.0245 0x2480 UxSms - ok

17:00:04.0320 0x2480 [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe

17:00:04.0365 0x2480 vds - ok

17:00:04.0397 0x2480 [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys

17:00:04.0401 0x2480 vga - ok

17:00:04.0421 0x2480 [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys

17:00:04.0424 0x2480 VgaSave - ok

17:00:04.0445 0x2480 [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp C:\Windows\system32\drivers\viaagp.sys

17:00:04.0450 0x2480 viaagp - ok

17:00:04.0470 0x2480 [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7 C:\Windows\system32\drivers\viac7.sys

17:00:04.0497 0x2480 ViaC7 - ok

17:00:04.0513 0x2480 [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide C:\Windows\system32\drivers\viaide.sys

17:00:04.0541 0x2480 viaide - ok

17:00:04.0593 0x2480 [ 6BA3ED102AB24310A0259C8F9E29D5B8, 3D9689AEDC12BD2EFF3D71343F772E985B14DBDDA9C311F2E1B6096136E33180 ] vmwvusb C:\Windows\system32\Drivers\vmwvusb.sys

17:00:04.0611 0x2480 vmwvusb - ok

17:00:04.0656 0x2480 [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys

17:00:04.0665 0x2480 volmgr - ok

17:00:04.0712 0x2480 [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys

17:00:04.0759 0x2480 volmgrx - ok

17:00:04.0884 0x2480 [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys

17:00:04.0892 0x2480 volsnap - ok

17:00:04.0936 0x2480 [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid C:\Windows\system32\drivers\vsmraid.sys

17:00:04.0951 0x2480 vsmraid - ok

17:00:05.0027 0x2480 [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe

17:00:05.0077 0x2480 VSS - ok

17:00:05.0158 0x2480 vToolbarUpdater15.5.0 - ok

17:00:05.0244 0x2480 [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll

17:00:05.0262 0x2480 W32Time - ok

17:00:05.0312 0x2480 [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys

17:00:05.0324 0x2480 WacomPen - ok

17:00:05.0362 0x2480 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys

17:00:05.0439 0x2480 Wanarp - ok

17:00:05.0444 0x2480 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys

17:00:05.0446 0x2480 Wanarpv6 - ok

17:00:05.0490 0x2480 [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll

17:00:05.0516 0x2480 wcncsvc - ok

17:00:05.0613 0x2480 [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

17:00:05.0626 0x2480 WcsPlugInService - ok

17:00:05.0738 0x2480 [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd C:\Windows\system32\drivers\wd.sys

17:00:05.0755 0x2480 Wd - ok

17:00:05.0829 0x2480 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys

17:00:05.0861 0x2480 Wdf01000 - ok

17:00:05.0904 0x2480 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll

17:00:05.0931 0x2480 WdiServiceHost - ok

17:00:05.0944 0x2480 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll

17:00:05.0950 0x2480 WdiSystemHost - ok

17:00:06.0010 0x2480 [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll

17:00:06.0026 0x2480 WebClient - ok

17:00:06.0096 0x2480 [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll

17:00:06.0107 0x2480 Wecsvc - ok

17:00:06.0145 0x2480 [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll

17:00:06.0151 0x2480 wercplsupport - ok

17:00:06.0190 0x2480 [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll

17:00:06.0195 0x2480 WerSvc - ok

17:00:06.0247 0x2480 [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll

17:00:06.0356 0x2480 WinDefend - ok

17:00:06.0376 0x2480 WinHttpAutoProxySvc - ok

17:00:06.0398 0x2480 Winmgmt - ok

17:00:06.0484 0x2480 [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll

17:00:06.0543 0x2480 WinRM - ok

17:00:06.0610 0x2480 [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll

17:00:06.0645 0x2480 Wlansvc - ok

17:00:06.0678 0x2480 [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys

17:00:06.0688 0x2480 WmiAcpi - ok

17:00:06.0749 0x2480 [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe

17:00:06.0755 0x2480 wmiApSrv - ok

17:00:06.0841 0x2480 [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe

17:00:06.0887 0x2480 WMPNetworkSvc - ok

17:00:06.0989 0x2480 [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll

17:00:07.0005 0x2480 WPCSvc - ok

17:00:07.0068 0x2480 [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll

17:00:07.0073 0x2480 WPDBusEnum - ok

17:00:07.0119 0x2480 [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys

17:00:07.0124 0x2480 WpdUsb - ok

17:00:07.0385 0x2480 [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe

17:00:07.0438 0x2480 WPFFontCache_v0400 - ok

17:00:07.0488 0x2480 [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys

17:00:07.0489 0x2480 ws2ifsl - ok

17:00:07.0519 0x2480 [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\System32\wscsvc.dll

17:00:07.0524 0x2480 wscsvc - ok

17:00:07.0530 0x2480 WSearch - ok

17:00:07.0687 0x2480 [ 3CF81F104137457A7F32C274709635BE, FE6FB8C90F5DC17AA9205E1D0542D2D7D5298AC7D0C6EE8A0141569711550586 ] wsnm C:\Program Files\VMware\VMware View\Client\bin\wsnm.exe

17:00:07.0711 0x2480 wsnm - ok

17:00:07.0759 0x2480 [ 930762671268B7754FFADCCBF1D1BB95, F67153E6E95260A39D2CDDAC545A688E0A104FD1A895504B270E070B2257758D ] wsnm_usbctrl C:\Program Files\VMware\VMware View\Client\bin\wsnm_usbctrl.exe

17:00:07.0817 0x2480 wsnm_usbctrl - ok

17:00:07.0939 0x2480 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll

17:00:08.0032 0x2480 wuauserv - ok

17:00:08.0098 0x2480 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys

17:00:08.0101 0x2480 WudfPf - ok

17:00:08.0164 0x2480 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys

17:00:08.0215 0x2480 WUDFRd - ok

17:00:08.0274 0x2480 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll

17:00:08.0292 0x2480 wudfsvc - ok

17:00:08.0324 0x2480 [ BFCC507ECA58F11C5FED96E192B878CB, EE9A8AFED52D66E4B7BA1CB9DD8FD3C666D4E89597A429960A9C6776937FD679 ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys

17:00:08.0344 0x2480 XAudio - ok

17:00:08.0355 0x2480 XAudioService - ok

17:00:08.0380 0x2480 xbwkmlhm - ok

17:00:08.0388 0x2480 xeflafbq - ok

17:00:08.0398 0x2480 xtzsauog - ok

17:00:08.0433 0x2480 ================ Scan global ===============================

17:00:08.0569 0x2480 [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll

17:00:08.0654 0x2480 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll

17:00:08.0691 0x2480 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll

17:00:08.0786 0x2480 [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe

17:00:08.0802 0x2480 [ Global ] - ok

17:00:08.0804 0x2480 ================ Scan MBR ==================================

17:00:08.0830 0x2480 [ 03BA8F890B47C0BE359A4D5A636D214D ] \Device\Harddisk0\DR0

17:00:09.0481 0x2480 \Device\Harddisk0\DR0 - ok

17:00:09.0482 0x2480 ================ Scan VBR ==================================

17:00:09.0505 0x2480 [ 80496E9E0933A0C9656E628BED5C49BF ] \Device\Harddisk0\DR0\Partition1

17:00:09.0534 0x2480 \Device\Harddisk0\DR0\Partition1 - ok

17:00:09.0556 0x2480 [ DBCB5CBC595762472584B990E0258A32 ] \Device\Harddisk0\DR0\Partition2

17:00:09.0558 0x2480 \Device\Harddisk0\DR0\Partition2 - ok

17:00:09.0558 0x2480 Waiting for KSN requests completion. In queue: 50

17:00:10.0559 0x2480 Waiting for KSN requests completion. In queue: 50

17:00:11.0559 0x2480 Waiting for KSN requests completion. In queue: 50

17:00:12.0559 0x2480 Waiting for KSN requests completion. In queue: 50

17:00:13.0559 0x2480 Waiting for KSN requests completion. In queue: 50

17:00:14.0559 0x2480 Waiting for KSN requests completion. In queue: 50

17:00:15.0559 0x2480 Waiting for KSN requests completion. In queue: 50

17:00:16.0559 0x2480 Waiting for KSN requests completion. In queue: 50

17:00:17.0559 0x2480 Waiting for KSN requests completion. In queue: 50

17:00:18.0559 0x2480 Waiting for KSN requests completion. In queue: 50

17:00:19.0559 0x2480 Waiting for KSN requests completion. In queue: 50

17:00:20.0559 0x2480 Waiting for KSN requests completion. In queue: 50

17:00:21.0560 0x2480 Waiting for KSN requests completion. In queue: 50

17:00:22.0560 0x2480 Waiting for KSN requests completion. In queue: 50

17:01:23.0646 0x2480 Win FW state via NFP2: enabled

17:01:43.0647 0x2480 ============================================================

17:01:43.0647 0x2480 Scan finished

17:01:43.0647 0x2480 ============================================================

17:01:43.0668 0x26ec Detected object count: 0

17:01:43.0668 0x26ec Actual detected object count: 0



#4 ecarnell

ecarnell
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:59 AM

Posted 31 December 2013 - 07:14 PM

# AdwCleaner v3.016 - Report created 31/12/2013 at 17:14:40
# Updated 23/12/2013 by Xplode
# Operating System : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# Username : Carnell - CARNELL-PC
# Running from : C:\Users\Carnell\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Users\Carnell\AppData\Local\Temp\Smartbar
Folder Deleted : C:\Users\Carnell\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdkednngfjmpnljkolbapdednncafhen

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DCABB943-792E-44C4-9029-ECBEE6265AF9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{687578B9-7132-4A7A-80E4-30EE31099E03}]
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16526

-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Carnell\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [22971 octets] - [09/09/2013 18:33:21]
AdwCleaner[R1].txt - [21999 octets] - [09/09/2013 18:39:40]
AdwCleaner[R2].txt - [2598 octets] - [01/11/2013 14:58:06]
AdwCleaner[R3].txt - [2043 octets] - [31/12/2013 17:08:12]
AdwCleaner[S0].txt - [1347 octets] - [09/09/2013 18:34:17]
AdwCleaner[S1].txt - [20919 octets] - [09/09/2013 18:41:58]
AdwCleaner[S2].txt - [2250 octets] - [01/11/2013 15:00:30]
AdwCleaner[S3].txt - [1986 octets] - [31/12/2013 17:14:40]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [2046 octets] ##########

 

Can't get JRT to work - goes:

Creating a registry backup

Checking Startup

Checking Modules

ERROR: Server execution failed

Checking Processes

 

and hangs up there for 1hr or greater. Not sure if it's because bit defender is still running multiple copies in background?



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,917 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:59 AM

Posted 31 December 2013 - 07:36 PM

Ok,,, Un and reinstall Bitdefender. You also have AVG installed . More than one AV will cause issues. Uninstall AVG if you want Bitdefender. Reboot after any uninstall.

Also your Winsock needs fixing.

Go to Start ... Run and type in cmd
A dos Window will appear.
Type in the dos window: netsh winsock reset
Click on the enter key.

Reboot your system to complete the process.

 

 

I am leaving now but will loo back tomorrow.

 

Happy New Year.

 


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 ecarnell

ecarnell
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:59 AM

Posted 31 December 2013 - 08:33 PM

JRT did finish - didn't leave it running long enough it seems.

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows Vista ™ Home Premium x86
Ran by Carnell on 31/12/2013 at 18:05:40.81
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\solid savings

 

~~~ Files

 

~~~ Folders

Successfully deleted: [Folder] "C:\Users\Carnell\appdata\local\solid savings"

 

~~~ Chrome

Successfully deleted: [Folder] C:\Users\Carnell\appdata\local\Google\Chrome\User Data\Default\Extensions\cijeeimilokkhlfjombmalgpabbonmah

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 31/12/2013 at 20:28:47.91
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#7 ecarnell

ecarnell
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:59 AM

Posted 01 January 2014 - 08:09 AM

AVg removed.

ESET below.

I can't remove or find Bit defender in any programs (hence the problem).

 

Winsock reset.

 

 

C:\Users\All Users\Microsoft\Windows\DRM\A2F1.tmp a variant of Generik.IWMGOQC trojan 
C:\AdwCleaner\Quarantine\C\Program Files\MixiDJ_V30\ldrtbMixi.dll.vir a variant of Win32/Toolbar.Conduit.P application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\MixiDJ_V30\prxtbMixi.dll.vir Win32/Toolbar.Conduit.N application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\MixiDJ_V30\tbMixi.dll.vir a variant of Win32/Toolbar.Conduit.B application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\MWSOESTB.DLL.vir Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\Local\Smartbar\Application\BrowserHelper.exe.vir a variant of MSIL/Toolbar.Linkury.A application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\Local\Smartbar\Application\Smartbar.exe.vir a variant of Win32/Toolbar.Linkury.A application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\Local\Smartbar\Application\Smartbar.Resources.SetBrowsersSettings.dll.vir a variant of MSIL/Toolbar.Linkury.C application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\Local\Smartbar\Application\SmartbarInternetExplorerExtension.dll.vir a variant of MSIL/Toolbar.Linkury.D application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\Local\Smartbar\Application\SmartbarInternetExplorerExtension2.dll.vir a variant of MSIL/Toolbar.Linkury.D application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\Local\Smartbar\Application\amfclgbdpgndipgoegfpkkgobahigbcl\GoogleChromeRemotePlugin.dll.vir Win32/Toolbar.Linkury.D application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_16.dll.vir Win32/Toolbar.Linkury.D application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_17.dll.vir Win32/Toolbar.Linkury.D application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_18.dll.vir Win32/Toolbar.Linkury.D application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_19.dll.vir Win32/Toolbar.Linkury.D application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_20.dll.vir Win32/Toolbar.Linkury.D application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_21.dll.vir Win32/Toolbar.Linkury.D application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_22.dll.vir a variant of Win32/Toolbar.Linkury.D application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\Local\Smartbar\Application\helperbar@helperbar.com\components\SmartbarFireFoxRemotePlugin_23.dll.vir a variant of Win32/Toolbar.Linkury.D application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\LocalLow\MixiDJ_V30\ldrtbMix0.dll.vir a variant of Win32/Toolbar.Conduit.P application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\LocalLow\MixiDJ_V30\ldrtbMixi.dll.vir a variant of Win32/Toolbar.Conduit.P application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\LocalLow\MixiDJ_V30\tbMix0.dll.vir a variant of Win32/Toolbar.Conduit.B application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\LocalLow\MixiDJ_V30\tbMixi.dll.vir a variant of Win32/Toolbar.Conduit.B application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Carnell\AppData\LocalLow\MixiDJ_V30\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.6.12\bin\PriceGongIE.dll.vir a variant of Win32/PriceGong.A application cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\A2F1.tmp a variant of Generik.IWMGOQC trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MUMVHYN5\FLVPlayerSetup-aoQ9qRU[1].exe Win32/Somoto.A application cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Local\Otlvics\AppleWan80.dll a variant of Win32/Sefnit.CV trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\Carnell\AppData\Local\Temp\BF58.tmp a variant of Generik.IWMGOQC trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Local\Temp\hiii.exe a variant of Generik.HICJYBZ trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Local\Temp\jar_cache1590239965701653491.tmp multiple threats cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Local\Temp\jar_cache3801165580409860437.tmp Java/Exploit.Agent.QPN trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Local\Temp\jar_cache6147422910776567036.tmp multiple threats cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Local\Temp\jar_cache6326160749555546469.tmp multiple threats cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Local\Temp\jar_cache6436659483278406234.tmp a variant of Java/Exploit.Agent.PZF trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\1c90accb-5e607c08 multiple threats cleaned by deleting - quarantined
C:\Users\Carnell\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\5780c48b-74c82bcb multiple threats cleaned by deleting - quarantined
C:\Users\Carnell\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2\43e54002-158e0c97-temp Win32/Boaxxe.BE trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\34\26e2bde2-6d2085a0 Java/Exploit.Agent.QPD trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\3210f73-6ba12c14 a variant of Java/Exploit.CVE-2012-4681.CT trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Roaming\Aqpuonyl\muuvzig.exe a variant of Win32/Kryptik.BSCE trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Roaming\Byzylige\ipilyrw.exe a variant of Win32/Kryptik.BSCE trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Roaming\Hyyqho\epalhya.exe a variant of Win32/Kryptik.BSCE trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Roaming\Ifebxaon\buefas.exe a variant of Win32/Kryptik.BSCE trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Roaming\Koefxaa\ynveic.exe a variant of Win32/Kryptik.BSCE trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Roaming\Liimabah\uxuwk.exe a variant of Win32/Kryptik.BSCE trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Roaming\Reybywol\ivulc.exe a variant of Win32/Kryptik.BSCE trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Roaming\Soindide\oludt.exe a variant of Win32/Kryptik.BSCE trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Roaming\Vso\WINA8CB.exe a variant of Generik.HICJYBZ trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Roaming\Waywsoi\ebagg.exe a variant of Win32/Kryptik.BSCE trojan cleaned by deleting - quarantined
C:\Users\Carnell\AppData\Roaming\Yvpeze\epzoy.exe a variant of Win32/Kryptik.BSCE trojan cleaned by deleting - quarantined
Operating memory multiple threats 
 



#8 ecarnell

ecarnell
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:59 AM

Posted 01 January 2014 - 11:03 AM

The half dozen "BitDefender Antivirus Scanner" programs are listed as  Image Name = "ynveic.exe" when I go to task manager. The Memory (Private Working Set) are from 5,56K to 195,580 K + for these .



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,917 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:59 AM

Posted 01 January 2014 - 02:38 PM

See if End Task stops them.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 ecarnell

ecarnell
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:59 AM

Posted 01 January 2014 - 03:28 PM

See if End Task stops them.

you mean end task in task manager? I've done that 100's on time so far - but they always seem to automatically start back up in Task Manager for some reason, and slowly keep increasing Memory usage.



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,917 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:59 AM

Posted 01 January 2014 - 06:51 PM

Yes, I meant that.. It appears we need a deeper look to find what is going on.. You have to start a new topic and include that AVG log and a DDS log from this Preparation Guide . Let me know if that went well.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users