Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Sudden slowdown. Virus related?


  • Please log in to reply
11 replies to this topic

#1 CalusBlade

CalusBlade

  • Members
  • 538 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 05 January 2014 - 01:06 AM

My computer started to slow down a tiny bit about 4 days ago but waste too bad, I thought it was just the stuff I got in my computer.  Today it was really noticealbe.  Below is the a quick scan log completed scan and below that will be unfinished full scan in which all threatens have been or will be removed upon my posting this.

 

Edit:  I notice something old in my last reset.  I can't use the tabs on my post (edit, quote, etc. . .).  I need to right click and open in new tab in order to edit.  Also it seems my internet broswers refresh themselves but doesn't reset videos (sites like youtube).

 

Also I used Rkill (the one on this site upon doing the quick scan).

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.04.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Installer :: INSTALLER-PC [administrator]

2014/01/05 0:51:02
mbam-log-2014-01-05 (00-51-02).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 281606
Time elapsed: 5 minute(s), 22 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 5
HKCU\Software\Conduit\ValueApps (PUP.Optional.ValueApps.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{DD7858C7-889A-42E4-9863-E4AA3A0BFE65} (PUP.Optional.ValueAppsplugin.A) -> Quarantined and deleted successfully.
HKCR\Interface\{68FD483F-A55D-4B78-AE10-48EF2BBE317E} (PUP.Optional.ValueAppsplugin.A) -> Quarantined and deleted successfully.

Registry Values Detected: 2
HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: 1590556103064027135 -> Quarantined and deleted successfully.
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: 1590556103064027135 -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 3
C:\Users\Installer\AppData\Local\Conduit\ValueApps (PUP.Optional.ValueAppsplugin.A) -> Quarantined and deleted successfully.
C:\Users\Installer\AppData\Local\Conduit\ValueApps\IE (PUP.Optional.ValueAppsplugin.A) -> Quarantined and deleted successfully.
C:\Users\Installer\AppData\Local\Conduit\ValueApps\IE\64 (PUP.Optional.ValueAppsplugin.A) -> Quarantined and deleted successfully.

Files Detected: 4
C:\Users\Installer\AppData\Local\temp\nsd5979.exe (PUP.Optional.SearchProtect.A) -> Quarantined and deleted successfully.
C:\Users\Installer\AppData\Local\Conduit\ValueApps\IE\ValueApps.exe (PUP.Optional.ValueAppsplugin.A) -> Quarantined and deleted successfully.
C:\Users\Installer\AppData\Local\Conduit\ValueApps\IE\64\MonPrx.dll (PUP.Optional.ValueAppsplugin.A) -> Quarantined and deleted successfully.
C:\Users\Installer\AppData\Local\Conduit\ValueApps\IE\64\ValueApps.exe (PUP.Optional.ValueAppsplugin.A) -> Quarantined and deleted successfully.

(end)

 

 

Registry Keys Detected: 12
HKCR\CLSID\{93DBF2BB-A2B3-4683-A92E-57E60751F346} (PUP.Optional.ValueApps.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{4A36AF02-3E2F-47DD-A102-784D22E8C2B8} (PUP.Optional.ValueApps.A) -> Quarantined and deleted successfully.
HKCR\Interface\{B71BC738-1C95-4784-B6AF-5B0964B895D9} (PUP.Optional.ValueApps.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{93DBF2BB-A2B3-4683-A92E-57E60751F346} (PUP.Optional.ValueApps.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{93DBF2BB-A2B3-4683-A92E-57E60751F346} (PUP.Optional.ValueApps.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{93DBF2BB-A2B3-4683-A92E-57E60751F346} (PUP.Optional.ValueApps.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{93DBF2BB-A2B3-4683-A92E-57E60751F346} (PUP.Optional.ValueApps.A) -> Quarantined and deleted successfully.
HKCR\CLSID\{F63AAEDC-3602-49EF-AA45-262380A98980} (PUP.Optional.ValueApps.A) -> Quarantined and deleted successfully.
HKCR\TypeLib\{C9A54DFE-051F-49C5-9FC7-ECB81DC6C69F} (PUP.Optional.ValueApps.A) -> Quarantined and deleted successfully.
HKCR\Interface\{8050556E-4AD3-40BD-B338-7DBB0D5C10C8} (PUP.Optional.ValueApps.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B} (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B} (PUP.Optional.SafeMonitor.A) -> Quarantined and deleted successfully.
 

Files Detected: 2
C:\Program Files\Conduit\ValueApps\IE\ValueAppsLoader.dll (PUP.Optional.ValueApps.A) -> Delete on reboot.
C:\Program Files (x86)\Conduit\ValueApps\IE\ValueAppsLoader.dll (PUP.Optional.ValueApps.A) -> Delete on reboot.

 

Files Detected: 3
C:\Users\All Users\RHelpers\ChromeHelper\ChromeHelper.exe (PUP.Optional.SearchDonkey.A) -> Delete on reboot.
C:\Users\All Users\RHelpers\FirefoxHelper\FirefoxHelper.exe (PUP.Optional.SearchDonkey.A) -> Delete on reboot.
C:\Users\All Users\RHelpers\IeHelper\IeHelper.exe (PUP.Optional.SearchDonkey.A) -> Delete on reboot.

 

 

The following is after the above post, I decided to scan again. I only posted the infections and removal process.

 

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Quarantined and deleted successfully.

Registry Values Detected: 2
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Data: 0I2W2W2W1F1H1G1OtF0XtFtI -> Quarantined and deleted successfully.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Updater (Trojan.Agent) -> Data: C:\ProgramData\Updater\updater.exe -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
 

 


Edited by CalusBlade, 05 January 2014 - 02:11 AM.


BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:39 AM

Posted 05 January 2014 - 08:38 AM

Please download MINITOOLBOX and run it.

Checkmark following boxes:



Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.

 

 


Download Security Check by screen317 from here.


  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Download Autoruns and Autorunsc Unzip it to your desktop and then double click autoruns.exe After the scan is finished then click on File>>>>>>>>>>>Save The default name will be autoruns.arn make sure to save it as Autoruns.txt under the file type option. in other words make sure it is a .txt file instead of .arn Attach the text in your next reply.

 

 


Update and do a quick scan with Malwarebytes remove all that it finds and reboot.
http://www.malwarebytes.org/mbam/program/mbam-setup.exe

Post the log here,

 

 

 

  • Please download Adware cleaner from the link below.
  • http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner
  • Save it to your desktop.
  • Right click run as admin.
  • Hit the scan button.
  • Allow completion.
  • Make sure all items are ticked.
  • Hit the clean button.
  • Even if no items are displayed to be ticked hit the clean button anyway.
  • The machine will reboot this is normal.
  • Post the log in your next reply.

 

Please download JRT from here & double click to start the program.

  1. Hit any key when prompted and allow it to run through it's process.

    H2HaYv4.png
  2. Post the log when it's finished.


#3 CalusBlade

CalusBlade
  • Topic Starter

  • Members
  • 538 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 05 January 2014 - 12:12 PM

MiniToolBox by Farbar  Version: 18-12-2013
Ran by Installer (administrator) on 05-01-2014 at 11:14:48
Running from "C:\Users\Games\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Installer-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 50-E5-49-55-4B-85
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::8858:2bc1:9ab3:7670%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.10.157(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 2014年1月5日 11:08:14
   Lease Expires . . . . . . . . . . : 2014年1月12日 11:08:13
   Default Gateway . . . . . . . . . : 192.168.10.1
   DHCP Server . . . . . . . . . . . : 192.168.10.1
   DHCPv6 IAID . . . . . . . . . . . : 324068681
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-E4-16-B4-50-E5-49-55-4B-85
   DNS Servers . . . . . . . . . . . : 192.168.10.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
Server:  UnKnown
Address:  192.168.10.1

Name:    google.com
Addresses:  2607:f8b0:4006:803::1003
      167.206.10.221
      167.206.10.236
      167.206.10.232
      167.206.10.216
      167.206.10.246
      167.206.10.247
      167.206.10.251
      167.206.10.237
      167.206.10.227
      167.206.10.226
      167.206.10.231
      167.206.10.217
      167.206.10.222
      167.206.10.212
      167.206.10.241
      167.206.10.242


Pinging google.com [167.206.10.242] with 32 bytes of data:
Reply from 167.206.10.242: bytes=32 time=11ms TTL=59
Reply from 167.206.10.242: bytes=32 time=23ms TTL=59

Ping statistics for 167.206.10.242:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 11ms, Maximum = 23ms, Average = 17ms
Server:  UnKnown
Address:  192.168.10.1

Name:    yahoo.com
Addresses:  98.138.253.109
      98.139.183.24
      206.190.36.45


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=122ms TTL=45
Reply from 206.190.36.45: bytes=32 time=114ms TTL=45

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 114ms, Maximum = 122ms, Average = 118ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 12...50 e5 49 55 4b 85 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     192.168.10.1   192.168.10.157     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
     192.168.10.0    255.255.255.0         On-link    192.168.10.157    276
   192.168.10.157  255.255.255.255         On-link    192.168.10.157    276
   192.168.10.255  255.255.255.255         On-link    192.168.10.157    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link    192.168.10.157    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link    192.168.10.157    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 12    276 fe80::/64                On-link
 12    276 fe80::8858:2bc1:9ab3:7670/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 09 c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 \Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 \Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 \Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 \Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 \Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 09 c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog9 01 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/03/2014 06:27:24 PM) (Source: Application Error) (User: )
Description: Faulting application name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Faulting module name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Exception code: 0xc0000005
Fault offset: 0x00017efb
Faulting process id: 0x1700
Faulting application start time: 0xKMPlayer.exe0
Faulting application path: KMPlayer.exe1
Faulting module path: KMPlayer.exe2
Report Id: KMPlayer.exe3

Error: (01/03/2014 06:27:21 PM) (Source: Application Error) (User: )
Description: Faulting application name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00101010
Faulting process id: 0x1700
Faulting application start time: 0xKMPlayer.exe0
Faulting application path: KMPlayer.exe1
Faulting module path: KMPlayer.exe2
Report Id: KMPlayer.exe3

Error: (01/03/2014 06:22:51 PM) (Source: Application Error) (User: )
Description: Faulting application name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Faulting module name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Exception code: 0xc0000005
Fault offset: 0x00017f3c
Faulting process id: 0x162c
Faulting application start time: 0xKMPlayer.exe0
Faulting application path: KMPlayer.exe1
Faulting module path: KMPlayer.exe2
Report Id: KMPlayer.exe3

Error: (01/03/2014 06:22:50 PM) (Source: Application Error) (User: )
Description: Faulting application name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00101010
Faulting process id: 0x162c
Faulting application start time: 0xKMPlayer.exe0
Faulting application path: KMPlayer.exe1
Faulting module path: KMPlayer.exe2
Report Id: KMPlayer.exe3

Error: (01/03/2014 06:22:27 PM) (Source: Application Error) (User: )
Description: Faulting application name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Faulting module name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Exception code: 0xc0000005
Fault offset: 0x00017f06
Faulting process id: 0x1460
Faulting application start time: 0xKMPlayer.exe0
Faulting application path: KMPlayer.exe1
Faulting module path: KMPlayer.exe2
Report Id: KMPlayer.exe3

Error: (01/03/2014 06:22:25 PM) (Source: Application Error) (User: )
Description: Faulting application name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00101010
Faulting process id: 0x1460
Faulting application start time: 0xKMPlayer.exe0
Faulting application path: KMPlayer.exe1
Faulting module path: KMPlayer.exe2
Report Id: KMPlayer.exe3

Error: (01/03/2014 06:22:09 PM) (Source: Application Error) (User: )
Description: Faulting application name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Faulting module name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Exception code: 0xc0000005
Fault offset: 0x00017bfb
Faulting process id: 0x16f4
Faulting application start time: 0xKMPlayer.exe0
Faulting application path: KMPlayer.exe1
Faulting module path: KMPlayer.exe2
Report Id: KMPlayer.exe3

Error: (01/03/2014 06:22:07 PM) (Source: Application Error) (User: )
Description: Faulting application name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00101010
Faulting process id: 0x16f4
Faulting application start time: 0xKMPlayer.exe0
Faulting application path: KMPlayer.exe1
Faulting module path: KMPlayer.exe2
Report Id: KMPlayer.exe3

Error: (01/03/2014 06:22:03 PM) (Source: Application Error) (User: )
Description: Faulting application name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Faulting module name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Exception code: 0xc0000005
Fault offset: 0x00017c2a
Faulting process id: 0x11d4
Faulting application start time: 0xKMPlayer.exe0
Faulting application path: KMPlayer.exe1
Faulting module path: KMPlayer.exe2
Report Id: KMPlayer.exe3

Error: (01/03/2014 06:22:01 PM) (Source: Application Error) (User: )
Description: Faulting application name: KMPlayer.exe, version: 3.6.0.87, time stamp: 0x516bbfa0
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00101010
Faulting process id: 0x11d4
Faulting application start time: 0xKMPlayer.exe0
Faulting application path: KMPlayer.exe1
Faulting module path: KMPlayer.exe2
Report Id: KMPlayer.exe3


System errors:
=============
Error: (01/05/2014 11:08:18 AM) (Source: Service Control Manager) (User: )
Description: The Htsysm service failed to start due to the following error:
%%2

Error: (01/05/2014 11:08:04 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 2:11:27 AM on ?1/?5/?2014 was unexpected.

Error: (01/05/2014 01:25:32 AM) (Source: Service Control Manager) (User: )
Description: The Htsysm service failed to start due to the following error:
%%2

Error: (01/05/2014 01:25:26 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 1:24:38 AM on ?1/?5/?2014 was unexpected.

Error: (01/05/2014 01:08:46 AM) (Source: WMPNetworkSvc) (User: )
Description: Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.

Error: (01/05/2014 01:07:44 AM) (Source: Service Control Manager) (User: )
Description: The Htsysm service failed to start due to the following error:
%%2

Error: (01/05/2014 01:07:37 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 1:06:36 AM on ?1/?5/?2014 was unexpected.

Error: (01/05/2014 00:44:15 AM) (Source: WMPNetworkSvc) (User: )
Description: Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.

Error: (01/05/2014 00:42:58 AM) (Source: Service Control Manager) (User: )
Description: The Htsysm service failed to start due to the following error:
%%2

Error: (01/05/2014 00:42:35 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 12:41:05 AM on ?1/?5/?2014 was unexpected.


Microsoft Office Sessions:
=========================
Error: (01/03/2014 06:27:24 PM) (Source: Application Error)(User: )
Description: KMPlayer.exe3.6.0.87516bbfa0KMPlayer.exe3.6.0.87516bbfa0c000000500017efb170001cf08db58792230C:\Program Files (x86)\The KMPlayer\KMPlayer.exeC:\Program Files (x86)\The KMPlayer\KMPlayer.exe994753c6-74ce-11e3-947d-50e549554b85

Error: (01/03/2014 06:27:21 PM) (Source: Application Error)(User: )
Description: KMPlayer.exe3.6.0.87516bbfa0unknown0.0.0.000000000c000000500101010170001cf08db58792230C:\Program Files (x86)\The KMPlayer\KMPlayer.exeunknown9778f5a1-74ce-11e3-947d-50e549554b85

Error: (01/03/2014 06:22:51 PM) (Source: Application Error)(User: )
Description: KMPlayer.exe3.6.0.87516bbfa0KMPlayer.exe3.6.0.87516bbfa0c000000500017f3c162c01cf08dab7cb3064C:\PROGRA~2\THEKMP~1\KMPlayer.exeC:\PROGRA~2\THEKMP~1\KMPlayer.exef6ce3830-74cd-11e3-947d-50e549554b85

Error: (01/03/2014 06:22:50 PM) (Source: Application Error)(User: )
Description: KMPlayer.exe3.6.0.87516bbfa0unknown0.0.0.000000000c000000500101010162c01cf08dab7cb3064C:\PROGRA~2\THEKMP~1\KMPlayer.exeunknownf5d79f94-74cd-11e3-947d-50e549554b85

Error: (01/03/2014 06:22:27 PM) (Source: Application Error)(User: )
Description: KMPlayer.exe3.6.0.87516bbfa0KMPlayer.exe3.6.0.87516bbfa0c000000500017f06146001cf08daa94d1b81C:\PROGRA~2\THEKMP~1\KMPlayer.exeC:\PROGRA~2\THEKMP~1\KMPlayer.exee8231f35-74cd-11e3-947d-50e549554b85

Error: (01/03/2014 06:22:25 PM) (Source: Application Error)(User: )
Description: KMPlayer.exe3.6.0.87516bbfa0unknown0.0.0.000000000c000000500101010146001cf08daa94d1b81C:\PROGRA~2\THEKMP~1\KMPlayer.exeunknowne7565655-74cd-11e3-947d-50e549554b85

Error: (01/03/2014 06:22:09 PM) (Source: Application Error)(User: )
Description: KMPlayer.exe3.6.0.87516bbfa0KMPlayer.exe3.6.0.87516bbfa0c000000500017bfb16f401cf08da9e7fc063C:\PROGRA~2\THEKMP~1\KMPlayer.exeC:\PROGRA~2\THEKMP~1\KMPlayer.exedd9231b9-74cd-11e3-947d-50e549554b85

Error: (01/03/2014 06:22:07 PM) (Source: Application Error)(User: )
Description: KMPlayer.exe3.6.0.87516bbfa0unknown0.0.0.000000000c00000050010101016f401cf08da9e7fc063C:\PROGRA~2\THEKMP~1\KMPlayer.exeunknowndc863c0d-74cd-11e3-947d-50e549554b85

Error: (01/03/2014 06:22:03 PM) (Source: Application Error)(User: )
Description: KMPlayer.exe3.6.0.87516bbfa0KMPlayer.exe3.6.0.87516bbfa0c000000500017c2a11d401cf08da9a5bd0beC:\PROGRA~2\THEKMP~1\KMPlayer.exeC:\PROGRA~2\THEKMP~1\KMPlayer.exed9d7178d-74cd-11e3-947d-50e549554b85

Error: (01/03/2014 06:22:01 PM) (Source: Application Error)(User: )
Description: KMPlayer.exe3.6.0.87516bbfa0unknown0.0.0.000000000c00000050010101011d401cf08da9a5bd0beC:\PROGRA~2\THEKMP~1\KMPlayer.exeunknownd8800e07-74cd-11e3-947d-50e549554b85


CodeIntegrity Errors:
===================================
  Date: 2013-05-17 21:17:25.310
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-17 21:17:25.266
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-17 21:17:25.220
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-17 21:17:25.176
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-17 13:57:25.721
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-05-17 13:57:25.672
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-10-20 21:15:38.147
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Games\Desktop\New folder\SysInfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-10-20 21:15:38.124
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Games\Desktop\New folder\SysInfo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

7-Zip 9.20
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Reader XI (11.0.03) (Version: 11.0.03)
Adobe Shockwave Player 11.6 (Version: 11.6.4.634)
Aeria Ignite (Version: 1.13.3296)
Akamai NetSession Interface
AMD APP SDK Runtime (Version: 2.5.709.2)
AMD Catalyst Install Manager (Version: 3.0.838.0)
AMD Fuel (Version: 2011.0728.1756.30366)
AMD VISION Engine Control Center (Version: 2011.0728.1756.30366)
Any Video Converter 3.5.7
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Arc (Version: 1.0.0.5510)
ATI AVIVO64 Codecs (Version: 11.6.0.10627)
Aura Kingdom
Bandisoft MPEG-1 Decoder
Battle.net
Beat Hazard
Bonjour (Version: 3.0.0.10)
Catalyst Control Center InstallProxy (Version: 2011.0728.1756.30366)
Catalyst Control Center InstallProxy (Version: 2012.0214.2218.39913)
Catalyst Control Center Localization All (Version: 2011.0728.1756.30366)
Catalyst Control Center Profiles Mobile (Version: 2011.0728.1756.30366)
CCC Help Chinese Standard (Version: 2011.0728.1755.30366)
CCC Help Chinese Traditional (Version: 2011.0728.1755.30366)
CCC Help Czech (Version: 2011.0728.1755.30366)
CCC Help Danish (Version: 2011.0627.1557.26805)
CCC Help Danish (Version: 2011.0728.1755.30366)
CCC Help Dutch (Version: 2011.0728.1755.30366)
CCC Help English (Version: 2011.0728.1755.30366)
CCC Help Finnish (Version: 2011.0728.1755.30366)
CCC Help French (Version: 2011.0728.1755.30366)
CCC Help German (Version: 2011.0728.1755.30366)
CCC Help Greek (Version: 2011.0728.1755.30366)
CCC Help Hungarian (Version: 2011.0728.1755.30366)
CCC Help Italian (Version: 2011.0728.1755.30366)
CCC Help Japanese (Version: 2011.0728.1755.30366)
CCC Help Korean (Version: 2011.0728.1755.30366)
CCC Help Norwegian (Version: 2011.0728.1755.30366)
CCC Help Polish (Version: 2011.0728.1755.30366)
CCC Help Portuguese (Version: 2011.0728.1755.30366)
CCC Help Russian (Version: 2011.0728.1755.30366)
CCC Help Spanish (Version: 2011.0728.1755.30366)
CCC Help Swedish (Version: 2011.0728.1755.30366)
CCC Help Thai (Version: 2011.0728.1755.30366)
CCC Help Turkish (Version: 2011.0728.1755.30366)
ccc-utility64 (Version: 2011.0728.1756.30366)
CCleaner (Version: 3.16)
Core Temp 1.0 RC3 (Version: 1.0)
CPUID HWMonitor 1.19
DAEMON Tools Lite (Version: 4.45.3.0297)
Diablo III
Easy Tune 6 B11.0822.1 (Version: 1.00.0000)
Eden Eternal
Elsword version v3.1016.5.1 (Version: v3.1016.5.1)
Etron USB3.0 Host Controller (Version: 0.104)
FileASSASSIN (Version: 1.06)
FileParade Bundle (Version: 1.0.0.0)
Fraps
Free Audio Editor
Google Chrome (Version: 23.0.1271.64)
Google Update Helper (Version: 1.3.21.123)
Grand Chase
GunboundIS
Hearthstone
Hitman: Absolution
HitmanPro 3.7 (Version: 3.7.6.201)
ILLUSION @ふぉーむメイト (Version: 1.00.0000)
ILLUSION FIELD -幻影現実- (Version: 1.00.0000)
ILLUSION ジンコウガクエン (Version: 1.00.0000)
ILLUSION ジンコウガクエン きゃらめいく (Version: 1.00.0000)
ILLUSION 人工少女3 (Version: 1.00.0000)
iTunes (Version: 10.6.0.40)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Junk Mail filter update (Version: 14.0.8117.416)
Kaspersky Anti-Virus 2012 (Version: 12.0.0.374)
League of Legends (Version: 1.3)
Mabinogi
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
MapleStory
McAfee Security Scan Plus (Version: 3.8.130.10)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Extended (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft IE ActiveX Analyzer (Version: 1.5.0)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Office Word Viewer 2003 (Version: 11.0.8173.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox 26.0 (x86 en-US) (Version: 26.0)
Mozilla Maintenance Service (Version: 26.0)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NavyFIELD NorthAmerica (Version: 1.00.0000)
Nexon Game Manager
NVIDIA PhysX (Version: 9.10.0514)
OGPlanet Game Launcher (Version: 1.0.0)
ON_OFF Charge B11.0110.1 (Version: 1.00.0001)
OpenAL
Pando Media Booster (Version: 2.6.0.9)
Pandora Service
Path of Exile (Version: 0.10.0.22571)
Pokemon Trading Card Game Online (Version: 1.0.0)
PunkBuster Services (Version: 0.989)
Ragnarok Online 2
Realtek Ethernet Controller Driver (Version: 7.46.531.2011)
Realtek HDMI Audio Driver for ATI (Version: 6.0.1.6409)
RGSS-RTP Standard (Version: 1.03)
RPG MAKER VX Ace RTP (Version: 1.00)
RPG Maker VX RTP (Version: 1.02)
RPGツクール2000 ランタイムパッケージ
Seagate Manager Installer (Version: 2.02.0109)
Search Protection (Version: 7.5.0.1)
SeaTools for Windows (Version: 1.2.0.6)
Sid Meier's Civilization V
Sid Meier's Civilization V SDK
Speccy (Version: 1.16)
SpeedFan (remove only)
Star Wars The Old Republic (Version: 7.0.0.23)
Star Wars: The Old Republic (Version: 1.00)
StarCraft II
StarCraft II Beta (Version: 2.0.0.23077)
Steam (Version: 1.0.0.0)
SUPERAntiSpyware (Version: 5.0.1144)
swMSM (Version: 12.0.0.1)
Synthesia (Version: 8.4)
System Requirements Lab CYRI (Version: 6.0.8.0)
Team Fortress 2
TERA (Version: 1.38)
The KMPlayer (remove only) (Version: 3.7.0.109)
The Weather Channel App
Total War: SHOGUN 2
Total War: Shogun 2 - Assembly Kit
Total War: Shogun 2 - TEd
Unlocker 1.9.2 (Version: 1.9.2)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (Version: 3)
Vindictus
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Movie Maker (Version: 14.0.8117.0416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Writer (Version: 14.0.8117.0416)
WinRAR 4.11 (64-bit) (Version: 4.11.0)
Wonderland Online (Version: 6.0.1)
μTorrent (Version: 3.3.0.29544)
μTorrent (Version: 3.3.2.30303)
らぶデス4 (Version: 1.00.0000)

========================= Devices: ================================

Name: Microsoft Teredo Tunneling Adapter
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


========================= Memory info: ===================================

Percentage of memory in use: 24%
Total physical RAM: 11773.37 MB
Available physical RAM: 8905.49 MB
Total Pagefile: 23544.91 MB
Available Pagefile: 20625.81 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.02 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:931.41 GB) (Free:333.64 GB) NTFS
5 Drive g: (FreeAgent GoFlex Drive) (Fixed) (Total:1863.01 GB) (Free:1522.61 GB) NTFS

========================= Users: ========================================

User accounts for \\INSTALLER-PC

Administrator            ASPNET                   Games                    
Guest                    H                        Installer                


**** End of log ****

 

--------------------------------------------------------------------------------------------------

 

 Results of screen317's Security Check version 0.99.78  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
Kaspersky Anti-Virus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Java 7 Update 45  
 Adobe Flash Player 11.9.900.170  
 Adobe Reader XI  
 Mozilla Firefox (26.0)
 Google Chrome 21.0.1180.83  
 Google Chrome 21.0.1180.89  
 Google Chrome 22.0.1229.79  
 Google Chrome 22.0.1229.92  
 Google Chrome 22.0.1229.94  
 Google Chrome 23.0.1271.64  
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbamgui.exe  
 Kaspersky Lab Kaspersky Anti-Virus 2012 avp.exe  
 Malwarebytes' Anti-Malware mbamscheduler.exe   
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 5%
````````````````````End of Log``````````````````````

 

 

---------------------------------------------------------------------------------------------------------------------------------------

 

Autoruns.exe

 

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms"    ""    ""    ""    "2012/11/14 21:51"
+ "rdpclip"    ""    ""    "File not found: rdpclip"    ""
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""    "2014/01/05 11:07"
+ "Aeria Ignite"    "Aeria Ignite"    "Aeria Games & Entertainment"    "c:\program files (x86)\aeria games\ignite\aeriaignite.exe"    "2013/06/06 16:58"
+ "AVP"    "Kaspersky Anti-Virus"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\avp.exe"    "2012/10/03 11:26"
+ "SunJavaUpdateSched"    "Java™ Update Scheduler"    "Oracle Corporation"    "c:\program files (x86)\common files\java\java update\jusched.exe"    "2013/07/02 11:16"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce"    ""    ""    ""    "2014/01/05 11:07"
+ "Malwarebytes Anti-Malware (cleanup)"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\programdata\malwarebytes\malwarebytes' anti-malware\cleanup.dll"    "2013/04/04 13:43"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components"    ""    ""    ""    "2011/03/01 17:27"
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files\windows mail\winmail.exe"    "2009/07/13 18:58"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components"    ""    ""    ""    "2013/06/10 10:50"
+ "Internet Explorer"    ""    ""    "File not found: C:\Windows\system32\ie4uinit.exe"    ""
+ "Microsoft Windows"    "Windows Mail"    "Microsoft Corporation"    "c:\program files (x86)\windows mail\winmail.exe"    "2009/07/13 18:42"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run"    ""    ""    ""    "2013/05/17 20:08"
+ "Akamai NetSession Interface"    "Akamai NetSession Client"    "Akamai Technologies, Inc."    "c:\users\installer\appdata\local\akamai\netsession_win.exe"    "2013/06/04 19:47"
+ "ConduitFloatingPlugin_lcnnhcneegeeojhgpfijnlnocjdmlaon"    "Conduit Toolbar Verifier"    "Conduit Ltd."    "c:\users\installer\appdata\roaming\valueapps\ch\tbverifier.dll"    "2013/08/25 8:25"
+ "DW7"    "The Weather Channel App"    "The Weather Channel"    "c:\program files (x86)\the weather channel\the weather channel app\twcapp.exe"    "2013/11/18 14:35"
"HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce"    ""    ""    ""    "2013/05/17 20:08"
+ "del_stmenuexe_22797440"    ""    ""    "File not found: del"    ""
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""    "2009/07/13 23:53"
+ "Kaspersky Anti-Virus"    "Windows Shell Extension"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\x64\shellex.dll"    "2011/06/27 5:04"
+ "SASContextMenu Class"    "SUPERAntiSpyware Context Menu Extension"    "SUPERAntiSpyware.com"    "c:\program files\superantispyware\sasctxmn64.dll"    "2011/07/18 18:36"
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"    "2012/02/17 9:55"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers"    ""    ""    ""    "2009/07/13 23:53"
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\program files (x86)\7-zip\7-zip.dll"    "2010/11/18 11:08"
+ "Kaspersky Anti-Virus"    "Windows Shell Extension"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\shellex.dll"    "2011/06/27 5:05"
+ "WinRAR32"    ""    ""    "c:\program files\winrar\rarext32.dll"    "2012/02/17 9:55"
"HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers"    ""    ""    ""    "2012/11/14 21:51"
+ "Kaspersky Anti-Virus"    "Windows Shell Extension"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\x64\shellex.dll"    "2011/06/27 5:04"
"HKLM\Software\Wow6432Node\Classes\Drive\ShellEx\ContextMenuHandlers"    ""    ""    ""    "2012/11/14 21:51"
+ "Kaspersky Anti-Virus"    "Windows Shell Extension"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\shellex.dll"    "2011/06/27 5:05"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""    "2012/11/14 21:51"
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"    "2012/12/14 15:52"
"HKLM\Software\Wow6432Node\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"    ""    ""    ""    "2012/11/14 21:51"
+ "FAExt"    "FileASSASSIN Shell Extension"    "Malwarebytes"    "c:\program files (x86)\fileassassin\fileassassinext.dll"    "2007/03/30 17:34"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""    "2012/11/14 21:51"
+ "Kaspersky Anti-Virus"    "Windows Shell Extension"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\x64\shellex.dll"    "2011/06/27 5:04"
+ "SASContextMenu Class"    "SUPERAntiSpyware Context Menu Extension"    "SUPERAntiSpyware.com"    "c:\program files\superantispyware\sasctxmn64.dll"    "2011/07/18 18:36"
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"    "2012/02/17 9:55"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers"    ""    ""    ""    "2012/11/14 21:51"
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\program files (x86)\7-zip\7-zip.dll"    "2010/11/18 11:08"
+ "Kaspersky Anti-Virus"    "Windows Shell Extension"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\shellex.dll"    "2011/06/27 5:05"
+ "WinRAR32"    ""    ""    "c:\program files\winrar\rarext32.dll"    "2012/02/17 9:55"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers"    ""    ""    ""    "2012/11/14 21:51"
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"    "2012/02/17 9:55"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers"    ""    ""    ""    "2012/11/14 21:51"
+ "7-Zip"    "7-Zip Shell Extension"    "Igor Pavlov"    "c:\program files (x86)\7-zip\7-zip.dll"    "2010/11/18 11:08"
+ "WinRAR32"    ""    ""    "c:\program files\winrar\rarext32.dll"    "2012/02/17 9:55"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""    "2012/11/14 21:51"
+ "ACE"    "AMD Desktop Control Panel"    "Advanced Micro Devices, Inc."    "c:\program files (x86)\ati technologies\ati.ace\core-static\atiacm64.dll"    "2011/07/28 16:51"
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files\windows sidebar\sbdrop.dll"    "2009/07/13 20:32"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers"    ""    ""    ""    "2012/11/14 21:51"
+ "Gadgets"    "Sidebar droptarget"    "Microsoft Corporation"    "c:\program files (x86)\windows sidebar\sbdrop.dll"    "2009/07/13 20:09"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers"    ""    ""    ""    "2013/05/19 11:23"
+ "PDF Shell Extension"    "PDF Shell Extension"    "Adobe Systems, Inc."    "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"    "2013/05/11 4:34"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""    "2013/05/19 11:23"
+ "Kaspersky Anti-Virus"    "Windows Shell Extension"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\x64\shellex.dll"    "2011/06/27 5:04"
+ "MBAMShlExt"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"    "2012/12/14 15:52"
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"    "2012/02/17 9:55"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers"    ""    ""    ""    "2013/05/19 11:23"
+ "Kaspersky Anti-Virus"    "Windows Shell Extension"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\shellex.dll"    "2011/06/27 5:05"
+ "WinRAR32"    ""    ""    "c:\program files\winrar\rarext32.dll"    "2012/02/17 9:55"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers"    ""    ""    ""    "2013/05/19 11:23"
+ "WinRAR"    ""    ""    "c:\program files\winrar\rarext.dll"    "2012/02/17 9:55"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers"    ""    ""    ""    "2013/05/19 11:23"
+ "WinRAR32"    ""    ""    "c:\program files\winrar\rarext32.dll"    "2012/02/17 9:55"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""    "2013/12/20 10:38"
+ "FilterBHO Class"    "WebToolBar component"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\x64\klwtbbho.dll"    "2011/04/24 14:06"
+ "IEVkbdBHO Class"    "IE Virtual Keyboard"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\x64\ievkbd.dll"    "2011/04/24 14:08"
+ "Java™ Plug-In 2 SSV Helper"    ""    ""    "File not found: C:\Program Files\Java\jre6\bin\jp2ssv.dll"    ""
+ "ValueApps"    ""    ""    "File not found: C:\Program Files\Conduit\ValueApps\IE\ValueAppsLoader.dll"    ""
+ "Windows Live ID Sign-in Helper"    "Microsoft® Windows Live ID Login Helper"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"    "2009/08/18 14:47"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"    ""    ""    ""    "2014/01/05 11:23"
+ "ArcPluginIEBHO Class"    "ArcPlugin Dynamic Link Library Supporting IE"    "Perfect World Entertainment Inc"    "c:\program files (x86)\perfect world entertainment\arc\plugins\arcpluginie.dll"    "2013/09/03 5:22"
+ "FilterBHO Class"    "WebToolBar component"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\klwtbbho.dll"    "2011/04/24 14:11"
+ "IEVkbdBHO Class"    "IE Virtual Keyboard"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\ievkbd.dll"    "2011/04/24 14:11"
+ "Java™ Plug-In 2 SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"    "2013/10/08 9:43"
+ "Java™ Plug-In SSV Helper"    "Java™ Platform SE binary"    "Oracle Corporation"    "c:\program files (x86)\java\jre7\bin\ssv.dll"    "2013/10/08 9:43"
+ "MSS+ Identifier"    "Quick Browser Identifier for MSS+ Tool"    "McAfee, Inc."    "c:\program files\mcafee security scan\3.8.130\mcafeemss_ie.dll"    "2013/09/06 11:05"
+ "Windows Live ID Sign-in Helper"    "Microsoft® Windows Live ID Login Helper"    "Microsoft Corporation"    "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"    "2009/08/18 13:28"
"HKLM\Software\Microsoft\Internet Explorer\Extensions"    ""    ""    ""    "2013/12/11 18:23"
+ "&Virtual Keyboard"    "IE Virtual Keyboard"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\x64\ievkbd.dll"    "2011/04/24 14:08"
+ "URLs c&heck"    "WebToolBar component"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\x64\klwtbbho.dll"    "2011/04/24 14:06"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions"    ""    ""    ""    "2013/12/11 18:23"
+ "&Blog This in Windows Live Writer"    "Windows Live Writer Blog This Extension"    "Microsoft Corporation"    "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"    "2010/04/16 21:14"
+ "&Virtual Keyboard"    "IE Virtual Keyboard"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\ievkbd.dll"    "2011/04/24 14:11"
+ "URLs c&heck"    "WebToolBar component"    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\klwtbbho.dll"    "2011/04/24 14:11"
"Task Scheduler"    ""    ""    ""    ""
+ "\Adobe Flash Player Updater"    "Adobe® Flash® Player Update Service 11.9 r900"    "Adobe Systems Incorporated"    "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"    "2013/12/01 13:09"
+ "\Apple\AppleSoftwareUpdate"    "Apple Software Update"    "Apple Inc."    "c:\program files (x86)\apple software update\softwareupdate.exe"    "2011/06/01 19:46"
X "\GoogleUpdateTaskMachineCore"    "Google Installer"    "Google Inc."    "c:\program files (x86)\google\update\googleupdate.exe"    "2010/03/09 1:10"
X "\GoogleUpdateTaskMachineUA"    "Google Installer"    "Google Inc."    "c:\program files (x86)\google\update\googleupdate.exe"    "2010/03/09 1:10"
+ "\Microsoft\Windows Defender\MP Scheduled Scan"    "Microsoft Malware Protection Command Line Utility"    "Microsoft Corporation"    "c:\program files\windows defender\mpcmdrun.exe"    "2009/07/13 18:53"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo"    ""    ""    "c:\windows\system32\gathernetworkinfo.vbs"    "2009/06/10 15:36"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary"    "Windows Media Player Network Sharing Service Configuration Application"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnscfg.exe"    "2009/07/13 19:24"
+ "\Microsoft_Hardware_Launch_devicecenter_exe"    ""    ""    "File not found: c:\Program Files\Microsoft Device Center\devicecenter.exe"    ""
+ "\Microsoft_Hardware_Launch_ipoint_exe"    ""    ""    "File not found: c:\Program Files\Microsoft Device Center\ipoint.exe"    ""
+ "\Microsoft_Hardware_Launch_itype_exe"    ""    ""    "File not found: c:\Program Files\Microsoft Device Center\itype.exe"    ""
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""    "2013/10/08 21:08"
+ "!SASCORE"    "SUPERAntiSpyware Core Service"    "SUPERAntiSpyware.com"    "c:\program files\superantispyware\sascore64.exe"    "2011/08/11 12:54"
+ "AdobeARMservice"    "Adobe Acrobat Updater keeps your Adobe software up to date."    "Adobe Systems Incorporated"    "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"    "2013/04/04 16:05"
+ "AdobeFlashPlayerUpdateSvc"    "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes."    "Adobe Systems Incorporated"    "c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"    "2013/12/01 13:09"
+ "AMD External Events Utility"    "AMD External Events Service Module"    "AMD"    "c:\windows\system32\atiesrxx.exe"    "2011/10/25 21:00"
+ "AMD FUEL Service"    "Provides FUEL Functionality"    "Advanced Micro Devices, Inc."    "c:\program files\ati technologies\ati.ace\fuel\fuel.service.exe"    "2011/07/28 16:43"
+ "Apple Mobile Device"    "Provides the interface to Apple mobile devices."    "Apple Inc."    "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"    "2012/01/19 13:31"
+ "AppleChargerSrv"    "Apple mobile devices charging service"    ""    "c:\windows\system32\applechargersrv.exe"    "2010/04/06 3:23"
+ "ArcService"    " Launch Arc game platform"    "Perfect World Entertainment Inc"    "c:\program files (x86)\perfect world entertainment\arc\arcservice.exe"    "2013/09/03 5:22"
+ "AVP"    "Provides computer protection against viruses, dangerous software, network attacks, internet fraud and spam."    "Kaspersky Lab ZAO"    "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2012\avp.exe"    "2012/10/03 11:26"
+ "Bonjour Service"    "ハードウェア デバイスおよびソフトウェア サービスが、ネットワーク上で自動構成を実行して、利用可能な状態であることを通知できるようにします。"    "Apple Inc."    "c:\program files\bonjour\mdnsresponder.exe"    "2011/08/31 0:52"
+ "FreeAgentGoNext Service"    "Seagate Service"    "Seagate Technology LLC"    "c:\program files (x86)\seagate\seagatemanager\sync\freeagentservice.exe"    "2009/05/01 16:24"
+ "HitmanProScheduler"    "HitmanPro Scheduler controls scheduled scans"    "SurfRight B.V."    "c:\program files\hitmanpro\hmpsched.exe"    "2013/05/01 7:32"
+ "IDriverT"    "Provides support for the Running Object Table for InstallShield Drivers"    "Macrovision Corporation"    "c:\program files (x86)\common files\installshield\driver\11\intel 32\idrivert.exe"    "2005/04/04 0:41"
+ "iPod Service"    "iPod ハードウェア管理サービス"    "Apple Inc."    "c:\program files\ipod\bin\ipodservice.exe"    "2012/03/06 21:25"
+ "MBAMScheduler"    "Malwarebytes Anti-Malware scheduler"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamscheduler.exe"    "2013/02/28 15:38"
+ "MBAMService"    "Malwarebytes Anti-Malware service"    "Malwarebytes Corporation"    "c:\program files (x86)\malwarebytes' anti-malware\mbamservice.exe"    "2013/02/28 15:38"
+ "McComponentHostService"    "McAfee Security Scan Component Host Service"    "McAfee, Inc."    "c:\program files\mcafee security scan\3.8.130\mcchsvc.exe"    "2013/09/06 11:22"
+ "MDM"    "Supports local and remote debugging for Visual Studio and script debuggers. If this service is stopped, the debuggers will not function properly."    "Microsoft Corporation"    "c:\program files (x86)\common files\microsoft shared\vs7debug\mdm.exe"    "2002/01/05 11:00"
+ "MozillaMaintenance"    "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled."    "Mozilla Foundation"    "c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe"    "2013/12/05 12:09"
+ "npggsvc"    "nProtect GameGuard Service"    "INCA Internet Co., Ltd."    "c:\windows\syswow64\gamemon.des"    "2011/11/10 21:49"
+ "ose"    "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports."    "Microsoft Corporation"    "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"    "2003/07/27 11:52"
+ "PanService"    "This is a description for Pandora.TV Service Application."    "Pandora.TV"    "c:\program files (x86)\pandora.tv\panservice\pandoraservice.exe"    "2012/04/05 19:36"
+ "PnkBstrA"    "PunkBuster Service Component [v1032] http://www.evenbalance.com"    ""    "c:\windows\syswow64\pnkbstra.exe"    "2009/02/17 17:07"
+ "PnkBstrB"    "PunkBuster Service Component [v2.184 AAV3] http://www.evenbalance.com"    ""    "c:\windows\syswow64\pnkbstrb.exe"    "2009/05/12 18:19"
+ "Steam Client Service"    "Steam Client Service monitors and updates Steam content"    "Valve Corporation"    "c:\program files (x86)\common files\steam\steamservice.exe"    "2013/12/11 13:57"
+ "WinDefend"    "Protection against spyware and potentially unwanted software"    "Microsoft Corporation"    "c:\program files\windows defender\mpsvc.dll"    "2013/05/27 0:51"
+ "wlidsvc"    "Enables Windows Live ID authentication."    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"    "2009/08/18 14:47"
+ "WMPNetworkSvc"    "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play"    "Microsoft Corporation"    "c:\program files\windows media player\wmpnetwk.exe"    "2010/11/20 6:18"
"HKLM\System\CurrentControlSet\Services"    ""    ""    ""    "2013/10/08 21:08"
+ "adp94xx"    "Adaptec Windows SAS/SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adp94xx.sys"    "2008/12/05 18:54"
+ "adpahci"    "Adaptec Windows SATA Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpahci.sys"    "2007/05/01 12:30"
+ "adpu320"    "Adaptec StorPort Ultra320 SCSI Driver (X64)"    "Adaptec, Inc."    "c:\windows\system32\drivers\adpu320.sys"    "2007/02/27 19:04"
+ "aliide"    "ALi mini IDE Driver"    "Acer Laboratories Inc."    "c:\windows\system32\drivers\aliide.sys"    "2009/07/13 18:19"
+ "ALSysIO"    ""    ""    "File not found: C:\Users\INSTAL~1\AppData\Local\Temp\ALSysIO64.sys"    ""
+ "amdhub30"    "AMD USB 3.0 Hub Driver"    "Advanced Micro Devices, INC."    "c:\windows\system32\drivers\amdhub30.sys"    "2011/03/17 17:03"
+ "amdide64"    "AMD miniIDE Driver"    "Advanced Micro Devices Inc."    "c:\windows\system32\drivers\amdide64.sys"    "2010/03/30 9:48"
+ "amdiox64"    "AMD IO Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdiox64.sys"    "2010/02/18 10:17"
+ "amdkmdag"    "ATI Radeon Kernel Mode Driver"    "ATI Technologies Inc."    "c:\windows\system32\drivers\atikmdag.sys"    "2011/10/25 20:59"
+ "amdkmdap"    "AMD multi-vendor Miniport Driver"    "Advanced Micro Devices, Inc."    "c:\windows\system32\drivers\atikmpag.sys"    "2011/10/25 20:21"
+ "amdsata"    "AHCI 1.2 Device Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdsata.sys"    "2010/03/18 19:45"
+ "amdsbs"    "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform"    "AMD Technologies Inc."    "c:\windows\system32\drivers\amdsbs.sys"    "2009/03/20 13:36"
+ "amdxata"    "Storage Filter Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\amdxata.sys"    "2010/03/19 11:18"
+ "amdxhc"    "AMD USB 3.0 Host Controller Driver"    "Advanced Micro Devices, INC."    "c:\windows\system32\drivers\amdxhc.sys"    "2011/03/17 17:03"
+ "AppleCharger"    "Apple mobile devices charging program"    ""    "c:\windows\system32\drivers\applecharger.sys"    "2011/01/10 4:57"
+ "arc"    "Adaptec RAID Storport Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arc.sys"    "2007/05/24 16:27"
+ "arcsas"    "Adaptec SAS RAID WS03 Driver"    "Adaptec, Inc."    "c:\windows\system32\drivers\arcsas.sys"    "2009/01/14 14:27"
+ "AtiHDAudioService"    "AMD High Definition Audio Function Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\atihdw76.sys"    "2011/06/07 5:34"
+ "atikmdag"    "ATI Radeon Kernel Mode Driver"    "ATI Technologies Inc."    "c:\windows\system32\drivers\atikmdag.sys"    "2011/10/25 20:59"
+ "avgtp"    ""    "AVG Technologies"    "c:\windows\system32\drivers\avgtpx64.sys"    "2013/01/29 5:44"
+ "b06bdrv"    "Broadcom NetXtreme II GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\bxvbda.sys"    "2009/02/13 17:18"
+ "b57nd60a"    "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver."    "Broadcom Corporation"    "c:\windows\system32\drivers\b57nd60a.sys"    "2009/04/26 6:14"
+ "BrFiltLo"    "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltlo.sys"    "2006/08/06 20:51"
+ "BrFiltUp"    "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver"    "Brother Industries, Ltd."    "c:\windows\system32\drivers\brfiltup.sys"    "2006/08/06 20:51"
+ "Brserid"    "Brotehr Serial I/F Driver (WDM)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserid.sys"    "2006/08/06 20:51"
+ "BrSerWdm"    "Brother Serial driver (WDM version)"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brserwdm.sys"    "2006/08/06 20:51"
+ "BrUsbMdm"    "Brother USB MDM Driver "    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbmdm.sys"    "2006/08/06 20:51"
+ "BrUsbSer"    "Brother USB Serial Driver"    "Brother Industries Ltd."    "c:\windows\system32\drivers\brusbser.sys"    "2006/08/09 7:11"
+ "cmdide"    "CMD PCI IDE Bus Driver"    "CMD Technology, Inc."    "c:\windows\system32\drivers\cmdide.sys"    "2009/07/13 18:19"
+ "cpuz135"    "CPUID Driver"    "CPUID"    "c:\windows\system32\drivers\cpuz135_x64.sys"    "2011/09/21 3:23"
+ "dtsoftbus01"    "DAEMON Tools Virtual Bus Driver"    "DT Soft Ltd"    "c:\windows\system32\drivers\dtsoftbus01.sys"    "2012/01/13 8:45"
+ "EagleX64"    ""    ""    "File not found: C:\Windows\system32\drivers\EagleX64.sys"    ""
+ "ebdrv"    "Broadcom NetXtreme II 10 GigE VBD"    "Broadcom Corporation"    "c:\windows\system32\drivers\evbda.sys"    "2008/12/31 11:29"
+ "elxstor"    "Storport Miniport Driver for LightPulse HBAs"    "Emulex"    "c:\windows\system32\drivers\elxstor.sys"    "2009/02/03 17:52"
+ "etdrv"    "GIGABYTE Tools"    "Windows ® Server 2003 DDK provider"    "c:\windows\etdrv.sys"    "2009/03/19 21:59"
+ "EtronHub3"    "Etron eXtensible Hub Driver."    "Etron Technology Inc"    "c:\windows\system32\drivers\etronhub3.sys"    "2011/07/25 16:30"
+ "EtronXHCI"    "Etron eXtensible Host Controller Driver."    "Etron Technology Inc"    "c:\windows\system32\drivers\etronxhci.sys"    "2011/07/25 16:30"
+ "gdrv"    "GIGABYTE Tools"    "Windows ® Server 2003 DDK provider"    "c:\windows\gdrv.sys"    "2009/03/12 22:22"
+ "GEARAspiWDM"    "CD DVD Filter"    "GEAR Software Inc."    "c:\windows\system32\drivers\gearaspiwdm.sys"    "2009/05/18 7:17"
+ "Gun"    ""    ""    "c:\game\softnyxgame\gunboundis\gun64.sys"    "2011/05/23 21:01"
+ "GVTDrv64"    ""    ""    "c:\windows\gvtdrv64.sys"    "2006/09/05 2:10"
+ "hcw85cir"    "Hauppauge WinTV 885 Consumer IR Driver for eHome"    "Hauppauge Computer Works, Inc."    "c:\windows\system32\drivers\hcw85cir.sys"    "2009/05/11 3:26"
+ "HpSAMD"    "Smart Array SAS/SATA Controller Media Driver"    "Hewlett-Packard Company"    "c:\windows\system32\drivers\hpsamd.sys"    "2010/04/20 13:32"
+ "Htsysm"    ""    ""    "File not found: C:\Windows\system32\HtsysmNT.sys"    ""
+ "hxsyol"    ""    ""    "c:\aeriagames\aurakingdom\avital\hxsy64.sys"    "2013/09/26 22:25"
+ "iaStorV"    "Intel Matrix Storage Manager driver - x64"    "Intel Corporation"    "c:\windows\system32\drivers\iastorv.sys"    "2010/06/10 19:46"
+ "iirsp"    "Intel/ICP Raid Storport Driver"    "Intel Corp./ICP vortex GmbH"    "c:\windows\system32\drivers\iirsp.sys"    "2005/12/13 16:47"
+ "IntcAzAudAddService"    ""    ""    "File not found: system32\drivers\RTKVHD64.sys"    ""
+ "KL1"    "Kaspersky Unified Driver"    "Kaspersky Lab ZAO"    "c:\windows\system32\drivers\kl1.sys"    "2011/03/04 4:20"
+ "kl2"    "Kaspersky Unified Driver"    "Kaspersky Lab ZAO"    "c:\windows\system32\drivers\kl2.sys"    "2011/03/04 4:17"
+ "KLIF"    "Kaspersky Lab Interceptor and Filter"    "Kaspersky Lab"    "c:\windows\system32\drivers\klif.sys"    "2012/09/25 9:28"
+ "KLIM6"    "Kaspersky Anti-Virus NDIS 6 Filter"    "Kaspersky Lab ZAO"    "c:\windows\system32\drivers\klim6.sys"    "2011/03/10 9:36"
+ "klmouflt"    "Kaspersky Lab Mouse Class Filter"    "Kaspersky Lab"    "c:\windows\system32\drivers\klmouflt.sys"    "2009/11/02 11:26"
+ "LSI_FC"    "LSI Fusion-MPT FC Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_fc.sys"    "2008/12/09 17:46"
+ "LSI_SAS"    "LSI Fusion-MPT SAS Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas.sys"    "2009/05/18 19:20"
+ "LSI_SAS2"    "LSI SAS Gen2 Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_sas2.sys"    "2009/05/18 19:31"
+ "LSI_SCSI"    "LSI Fusion-MPT SCSI Driver (StorPort)"    "LSI Corporation"    "c:\windows\system32\drivers\lsi_scsi.sys"    "2009/04/16 17:13"
+ "MBAMProtector"    "Malwarebytes Anti-Malware"    "Malwarebytes Corporation"    "c:\windows\system32\drivers\mbam.sys"    "2013/02/28 15:33"
+ "megasas"    "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64"    "LSI Corporation"    "c:\windows\system32\drivers\megasas.sys"    "2009/05/18 20:09"
+ "MegaSR"    "LSI MegaRAID Software RAID Driver"    "LSI Corporation, Inc."    "c:\windows\system32\drivers\megasr.sys"    "2009/05/18 20:25"
+ "nfrd960"    "IBM ServeRAID Controller Driver"    "IBM Corporation"    "c:\windows\system32\drivers\nfrd960.sys"    "2006/06/06 16:11"
+ "NPPTNT2"    ""    ""    "File not found: C:\Windows\system32\npptNT2.sys"    ""
+ "nvlddmkm"    "NVIDIA Windows Kernel Mode Driver, Version 185.93 "    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvlddmkm.sys"    "2009/05/14 15:48"
+ "nvraid"    "NVIDIA® nForce™ RAID Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvraid.sys"    "2010/03/19 15:59"
+ "nvstor"    "NVIDIA® nForce™ Sata Performance Driver"    "NVIDIA Corporation"    "c:\windows\system32\drivers\nvstor.sys"    "2010/03/19 15:45"
+ "ql2300"    "QLogic Fibre Channel Stor Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql2300.sys"    "2009/01/22 18:05"
+ "ql40xx"    "QLogic iSCSI Storport Miniport Driver"    "QLogic Corporation"    "c:\windows\system32\drivers\ql40xx.sys"    "2009/05/18 20:18"
+ "RTHDMIAzAudService"    "Realtek® High Definition Audio Function Driver"    "Realtek Semiconductor Corp."    "c:\windows\system32\drivers\rthdmivx.sys"    "2011/07/06 5:09"
+ "RTL8167"    "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver                "    "Realtek                                            "    "c:\windows\system32\drivers\rt64win7.sys"    "2011/05/31 22:15"
+ "SASDIFSV"    "SASDIFSV64.SYS"    "SUPERAdBlocker.com and SUPERAntiSpyware.com"    "c:\program files\superantispyware\sasdifsv64.sys"    "2011/07/21 18:03"
+ "SASKUTIL"    "SASKUTIL64.SYS"    "SUPERAdBlocker.com and SUPERAntiSpyware.com"    "c:\program files\superantispyware\saskutil64.sys"    "2011/07/12 16:00"
+ "secdrv"    "Macrovision SECURITY Driver"    "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K."    "c:\windows\system32\drivers\secdrv.sys"    "2006/09/13 8:18"
+ "SiSRaid2"    "SiS RAID Stor Miniport Driver"    "Silicon Integrated Systems Corp."    "c:\windows\system32\drivers\sisraid2.sys"    "2008/09/24 13:28"
+ "SiSRaid4"    "SiS AHCI Stor-Miniport Driver"    "Silicon Integrated Systems"    "c:\windows\system32\drivers\sisraid4.sys"    "2008/10/01 16:56"
+ "speedfan"    "SpeedFan x64 Driver"    "Almico Software"    "c:\windows\syswow64\speedfan.sys"    "2011/03/18 11:08"
+ "stexstor"    "Promise  SuperTrak EX Series Driver for Windows "    "Promise Technology"    "c:\windows\system32\drivers\stexstor.sys"    "2009/02/17 18:03"
+ "USBAAPL64"    "Apple Mobile Device USB Driver"    "Apple, Inc."    "c:\windows\system32\drivers\usbaapl64.sys"    "2012/01/10 19:56"
+ "usbfilter"    "AMD USB Filter Driver"    "Advanced Micro Devices"    "c:\windows\system32\drivers\usbfilter.sys"    "2010/12/15 5:34"
+ "usj"    ""    ""    "c:\aeriagames\edeneternal\avital\ussjcs64.sys"    "2012/05/31 3:11"
+ "viaide"    "VIA Generic PCI IDE Bus Driver"    "VIA Technologies, Inc."    "c:\windows\system32\drivers\viaide.sys"    "2009/07/13 18:19"
+ "vsmraid"    "VIA RAID DRIVER FOR AMD-X86-64"    "VIA Technologies Inc.,Ltd"    "c:\windows\system32\drivers\vsmraid.sys"    "2009/01/30 20:18"
+ "X6va006"    ""    ""    "File not found: C:\Users\INSTAL~1\AppData\Local\Temp\006AB4C.tmp"    ""
+ "X6va011"    ""    ""    "File not found: C:\Windows\SysWOW64\Drivers\X6va011"    ""
+ "X6va015"    ""    ""    "File not found: C:\Windows\SysWOW64\Drivers\X6va015"    ""
+ "yukonw7"    "Miniport Driver for Marvell Yukon Ethernet Controller."    "Marvell"    "c:\windows\system32\drivers\yk62x64.sys"    "2009/02/23 10:02"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""    "2013/10/10 17:16"
+ "msacm.bdmpeg"    ""    ""    "c:\windows\system32\bdmpega64.acm"    "2011/05/31 1:38"
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\system32\l3codeca.acm"    "2009/07/13 20:28"
+ "VIDC.FPS1"    "Fraps"    "Beepa P/L"    "c:\windows\system32\frapsv64.dll"    "2012/08/30 8:46"
+ "vidc.mjpg"    ""    ""    "c:\windows\system32\bdmjpeg64.dll"    "2011/05/31 1:38"
+ "vidc.mpeg"    ""    ""    "c:\windows\system32\bdmpegv64.dll"    "2011/05/31 1:39"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32"    ""    ""    ""    "2014/01/05 11:07"
+ "msacm.bdmpeg"    ""    ""    "c:\windows\syswow64\bdmpega.acm"    "2011/05/31 1:38"
+ "msacm.l3acm"    "MPEG Layer-3 Audio Codec for MSACM"    "Fraunhofer Institut Integrierte Schaltungen IIS"    "c:\windows\syswow64\l3codeca.acm"    "2009/07/13 20:06"
+ "vidc.cvid"    "Cinepak® Codec"    "Radius Inc."    "c:\windows\syswow64\iccvid.dll"    "2010/11/20 6:59"
+ "VIDC.FPS1"    ""    ""    "File not found: frapsvid.dll"    ""
+ "vidc.mjpg"    ""    ""    "c:\windows\syswow64\bdmjpeg.dll"    "2011/05/31 1:38"
+ "vidc.mpeg"    ""    ""    "c:\windows\syswow64\bdmpegv.dll"    "2011/05/31 1:39"
+ "vidc.VP60"    "VP6 VIDEO FOR WINDOWS CODEC "    "On2.com"    "c:\windows\syswow64\vp6vfw.dll"    "2003/10/02 15:38"
+ "vidc.VP61"    "VP6 VIDEO FOR WINDOWS CODEC "    "On2.com"    "c:\windows\syswow64\vp6vfw.dll"    "2003/10/02 15:38"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""    "2009/07/13 23:53"
+ "ATI MPEG Audio Encoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"    "2011/06/27 14:49"
+ "ATI MPEG File Writer"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"    "2011/06/27 14:49"
+ "ATI MPEG Multiplexer"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"    "2011/06/27 14:49"
+ "ATI MPEG Video Decoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"    "2011/06/27 14:49"
+ "ATI MPEG Video Encoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"    "2011/06/27 14:49"
+ "ATI Video Rotation Filter"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"    "2011/06/27 14:49"
+ "ATI Video Scaler Filter"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc64.dll"    "2011/06/27 14:49"
+ "Bandisoft MPEG-1 Audio Decoder"    "Bandisoft Directshow Filter"    "www.Bandisoft.com"    "c:\program files (x86)\bandimpeg1\bdfilters64.dll"    "2011/05/31 1:40"
+ "Bandisoft MPEG-1 Video Decoder"    "Bandisoft Directshow Filter"    "www.Bandisoft.com"    "c:\program files (x86)\bandimpeg1\bdfilters64.dll"    "2011/05/31 1:40"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"    ""    ""    ""    "2012/11/14 21:51"
+ "ATI MPEG Audio Encoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"    "2011/06/27 14:44"
+ "ATI MPEG File Writer"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"    "2011/06/27 14:44"
+ "ATI MPEG Multiplexer"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"    "2011/06/27 14:44"
+ "ATI MPEG Video Decoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"    "2011/06/27 14:44"
+ "ATI MPEG Video Encoder"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"    "2011/06/27 14:44"
+ "ATI Video Rotation Filter"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"    "2011/06/27 14:44"
+ "ATI Video Scaler Filter"    "ATI MPEG Encoder"    "Advanced Micro Devices Inc."    "c:\program files\common files\ati technologies\multimedia\atimpenc.dll"    "2011/06/27 14:44"
+ "Bandisoft MPEG-1 Audio Decoder"    "Bandisoft Directshow Filter"    "www.Bandisoft.com"    "c:\program files (x86)\bandimpeg1\bdfilters.dll"    "2011/05/31 1:40"
+ "Bandisoft MPEG-1 Video Decoder"    "Bandisoft Directshow Filter"    "www.Bandisoft.com"    "c:\program files (x86)\bandimpeg1\bdfilters.dll"    "2011/05/31 1:40"
+ "Capture File Writer"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "2010/04/17 1:47"
+ "Record Queue"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "2010/04/17 1:47"
+ "WM VIH2 Fix"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "2010/04/17 1:47"
+ "WMT DV Extract Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "2010/04/17 1:47"
+ "WMT Sample Info Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "2010/04/17 1:47"
+ "WMT Switch Filter"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "2010/04/17 1:47"
+ "WMT Virtual Renderer"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "2010/04/17 1:47"
+ "WMT Virtual Source"    "Windows Live Video Acquisition Filters"    "Microsoft Corporation"    "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"    "2010/04/17 1:47"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers"    ""    ""    ""    "2009/07/13 23:53"
+ "WLIDCredentialProvider"    "Microsoft® Windows Live ID Credential Provider"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"    "2009/08/18 14:47"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify"    ""    ""    ""    "2014/01/05 11:08"
+ "klogon"    "Logon Visualizer"    "Kaspersky Lab ZAO"    "c:\windows\system32\klogon.dll"    "2011/04/24 14:10"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries"    ""    ""    ""    "2013/04/24 21:47"
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files (x86)\bonjour\mdnsnsp.dll"    "2011/08/31 0:44"
+ "WindowsLive Local NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corporation"    "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"    "2009/08/18 13:28"
+ "WindowsLive NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corporation"    "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"    "2009/08/18 13:28"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64"    ""    ""    ""    "2013/04/24 21:47"
+ "mdnsNSP"    "Bonjour Namespace Provider"    "Apple Inc."    "c:\program files\bonjour\mdnsnsp.dll"    "2011/08/31 0:53"
+ "WindowsLive Local NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"    "2009/08/18 14:47"
+ "WindowsLive NSP"    "Microsoft® Windows Live ID Namespace Provider"    "Microsoft Corporation"    "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"    "2009/08/18 14:47"

 

-----------------------------------------------------------------------------------------------------------

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.05.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Games :: INSTALLER-PC [limited]

1/5/2014 11:25:52 AM
mbam-log-2014-01-05 (11-25-52).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 257439
Time elapsed: 4 minute(s), 21 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

-------------------------------------------------------------------------------------------------------------------------------

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.9 (01.01.2014:1)
OS: Windows 7 Home Premium x64
Ran by Installer on 2014/01/05 at 12:05:41.57
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 2014/01/05 at 12:05:41.81
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~





 



#4 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:39 AM

Posted 05 January 2014 - 12:35 PM

Adware cleaner log??

 

 

Please download FarbarServiceScanner and run it on the computer with the issue.


Make sure the following options are checked:
Internet Services
Windows Firewall
System Restore
Security Center/Action Center
Windows Update

Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.

 

___________________-

 

Download tdss killer

http://support.kaspersky.com/downloads/utils/tdsskiller.exe


Right Click it Run As Admin xp users double click . Click on Change parameters Select TDLFS file system

Hit the Scan button Post the LOG In your next reply

Do not change the default options on scan results

 

___________________________________________-
 

 

Download, & save & then run the MS Safety scanner
Run a Full Scan
http://www.microsoft.com/security/scanner/en-us/default.aspx
Post. the result.

The safety scanner log should be called msert.txt
It should be located in the same folder as where you had msert.exe
If not there, then look for it under c:\windows

 

 

 

____________________________________________-

 

Run a scan with Eset. You will need to disable your antivirus during this scan.
http://www.eset.com/us/online-scanner/
Make sure remove found threats and scan archives is checked.
When the scan finish list found threats save to clipboard copy to notepad Post the log here.


Tell me how the machine is running now.



#5 CalusBlade

CalusBlade
  • Topic Starter

  • Members
  • 538 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 05 January 2014 - 04:01 PM

I could not find MS Safety scanner.  Its not where I put the .exe file nor is it in the windows folder.  I managed to find the ADwcleaner in the programs folder.

 

 

# AdwCleaner v3.016 - Report created 05/01/2014 at 12:00:39
# Updated 23/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Installer - INSTALLER-PC
# Running from : C:\Users\Games\Downloads\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\NCH Software
Folder Deleted : C:\Program Files (x86)\MyPC Backup
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Users\Installer\AppData\Local\Conduit
Folder Deleted : C:\Users\Installer\AppData\Roaming\Search Protection
Folder Deleted : C:\Users\Installer\AppData\Roaming\ValueApps
Folder Deleted : C:\Users\Games\AppData\Roaming\NCH Software
Folder Deleted : C:\Users\Games\AppData\Roaming\Splashtop
Folder Deleted : C:\Users\Installer\AppData\Roaming\Mozilla\Firefox\Profiles\ktwhdeg3.default\Extensions\{94CD2CC3-083F-49BA-A218-4CDA4B4829FD}
Folder Deleted : C:\Users\Games\AppData\Roaming\Mozilla\Firefox\Profiles\2wmqvjok.default\Extensions\anttoolbar@ant.com
Folder Deleted : C:\Users\Installer\AppData\Roaming\Mozilla\Firefox\Profiles\ktwhdeg3.default\Extensions\wecarereminder@bryan
File Deleted : C:\Windows\System32\Tasks\NCH Software

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL
Key Deleted : HKLM\SOFTWARE\Classes\driverscanner
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\blekkoTb_1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\blekkoTb_1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GunboundIS_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_kmplayer_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_kmplayer_RASMANCS
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [ConduitFloatingPlugin_lcnnhcneegeeojhgpfijnlnocjdmlaon]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FFE66D00-A56A-4F7F-81D7-4A28C5816D6C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{F63AAEDC-3602-49EF-AA45-262380A98980}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\wecarereminder
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\Uniblue

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v26.0 (en-US)

[ File : C:\Users\Installer\AppData\Roaming\Mozilla\Firefox\Profiles\ktwhdeg3.default\prefs.js ]


[ File : C:\Users\Games\AppData\Roaming\Mozilla\Firefox\Profiles\2wmqvjok.default\prefs.js ]


-\\ Google Chrome v23.0.1271.64

[ File : C:\Users\Installer\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ File : C:\Users\Games\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [5838 octets] - [05/01/2014 11:31:28]
AdwCleaner[S0].txt - [5665 octets] - [05/01/2014 12:00:39]

########## EOF - \AdwCleaner\AdwCleaner[S0].txt - [5725 octets] ##########
 

-----------------------------------------------------------------------------------------------------------------------------------------------------------------

 

Farbar Service Scanner Version: 05-12-2013
Ran by Installer (administrator) on 05-01-2014 at 12:41:05
Running from "C:\Users\Games\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

 

---------------------------------------------------------------------------------------------------------------------------------------------------------------

 

12:43:40.0092 0x09b0  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
12:43:43.0068 0x09b0  ============================================================
12:43:43.0068 0x09b0  Current date / time: 2014/01/05 12:43:43.0068
12:43:43.0068 0x09b0  SystemInfo:
12:43:43.0069 0x09b0  
12:43:43.0069 0x09b0  OS Version: 6.1.7601 ServicePack: 1.0
12:43:43.0069 0x09b0  Product type: Workstation
12:43:43.0069 0x09b0  ComputerName: INSTALLER-PC
12:43:43.0069 0x09b0  UserName: Installer
12:43:43.0069 0x09b0  Windows directory: C:\Windows
12:43:43.0069 0x09b0  System windows directory: C:\Windows
12:43:43.0069 0x09b0  Running under WOW64
12:43:43.0069 0x09b0  Processor architecture: Intel x64
12:43:43.0069 0x09b0  Number of processors: 4
12:43:43.0069 0x09b0  Page size: 0x1000
12:43:43.0069 0x09b0  Boot type: Normal boot
12:43:43.0069 0x09b0  ============================================================
12:43:44.0941 0x09b0  KLMD registered as C:\Windows\system32\drivers\25995142.sys
12:43:45.0385 0x09b0  System UUID: {A89F8AAB-B489-9F46-6B47-5A456A335618}
12:43:46.0031 0x09b0  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1F8B1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
12:43:46.0038 0x09b0  Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1115E00 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:43:46.0043 0x09b0  ============================================================
12:43:46.0043 0x09b0  \Device\Harddisk0\DR0:
12:43:46.0043 0x09b0  MBR partitions:
12:43:46.0043 0x09b0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:43:46.0043 0x09b0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
12:43:46.0043 0x09b0  \Device\Harddisk1\DR1:
12:43:46.0083 0x09b0  MBR partitions:
12:43:46.0083 0x09b0  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE8E07482
12:43:46.0083 0x09b0  ============================================================
12:43:46.0153 0x09b0  C: <-> \Device\Harddisk0\DR0\Partition2
12:43:46.0314 0x09b0  G: <-> \Device\Harddisk1\DR1\Partition1
12:43:46.0314 0x09b0  ============================================================
12:43:46.0314 0x09b0  Initialize success
12:43:46.0315 0x09b0  ============================================================
12:44:12.0682 0x01c8  ============================================================
12:44:12.0682 0x01c8  Scan started
12:44:12.0682 0x01c8  Mode: Manual; TDLFS;
12:44:12.0682 0x01c8  ============================================================
12:44:12.0682 0x01c8  KSN ping started
12:44:15.0869 0x01c8  KSN ping finished: true
12:44:21.0762 0x01c8  ================ Scan system memory ========================
12:44:21.0762 0x01c8  System memory - ok
12:44:21.0762 0x01c8  ================ Scan services =============================
12:44:22.0144 0x01c8  [ 7D9D615201A483D6FA99491C2E655A5A, EF24EBC4E08B555E5A90E6D560F375267137064AED1A9DC5251BB1FF2B65BA37 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
12:44:22.0170 0x01c8  !SASCORE - ok
12:44:29.0286 0x01c8  1394hub - ok
12:44:30.0163 0x01c8  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
12:44:30.0180 0x01c8  1394ohci - ok
12:44:30.0328 0x01c8  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
12:44:30.0350 0x01c8  ACPI - ok
12:44:30.0387 0x01c8  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
12:44:30.0413 0x01c8  AcpiPmi - ok
12:44:31.0263 0x01c8  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:44:31.0339 0x01c8  AdobeARMservice - ok
12:44:33.0849 0x01c8  [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:44:33.0872 0x01c8  AdobeFlashPlayerUpdateSvc - ok
12:44:33.0999 0x01c8  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
12:44:34.0014 0x01c8  adp94xx - ok
12:44:34.0109 0x01c8  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
12:44:34.0120 0x01c8  adpahci - ok
12:44:34.0253 0x01c8  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
12:44:34.0274 0x01c8  adpu320 - ok
12:44:34.0344 0x01c8  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:44:34.0365 0x01c8  AeLookupSvc - ok
12:44:34.0569 0x01c8  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
12:44:34.0582 0x01c8  AFD - ok
12:44:34.0647 0x01c8  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
12:44:34.0668 0x01c8  agp440 - ok
12:44:34.0794 0x01c8  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
12:44:34.0816 0x01c8  ALG - ok
12:44:34.0888 0x01c8  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
12:44:34.0912 0x01c8  aliide - ok
12:44:36.0523 0x01c8  ALSysIO - ok
12:44:36.0847 0x01c8  [ 812349D328EB406815183A5D17B49E7C, EB26EC80587283EE3996C531385F102BEB1396378E1BA5628059B6ED4B2B398D ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:44:36.0876 0x01c8  AMD External Events Utility - ok
12:44:37.0197 0x01c8  AMD FUEL Service - ok
12:44:37.0321 0x01c8  [ 30BFEEE0DFFD5BD79D29157CF080DEED, D3176AA5CFD43CAE7180E9E51A2C76DC2AC02897CA730391A54F647D263ED4E0 ] amdhub30        C:\Windows\system32\DRIVERS\amdhub30.sys
12:44:37.0348 0x01c8  amdhub30 - ok
12:44:37.0417 0x01c8  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
12:44:37.0435 0x01c8  amdide - ok
12:44:37.0589 0x01c8  [ 4249DA806451D394712B4D66C8652DBB, 36756510F31B3C7FD1E3D89ADA69996CE3BE307C24F0A7CACA90E6F21871A53A ] amdide64        C:\Windows\system32\DRIVERS\amdide64.sys
12:44:37.0615 0x01c8  amdide64 - ok
12:44:37.0734 0x01c8  [ 6A2EEB0C4133B20773BB3DD0B7B377B4, E4CB35C6937C70A145A13E5AE5B34A271B49101DA623171ACBFDA8601E5A70EA ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
12:44:37.0755 0x01c8  amdiox64 - ok
12:44:37.0839 0x01c8  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
12:44:37.0843 0x01c8  AmdK8 - ok
12:44:38.0157 0x01c8  [ 0415FFE1B6A6EA141FEAFCA57567F57F, B3F18608B8C8796988C20BC47B7D3325FFC2CB6EE9FB9012BDB524DB0D07FDF1 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
12:44:38.0453 0x01c8  amdkmdag - ok
12:44:38.0524 0x01c8  [ DC24D6F38F17C0D643D9AA8A6852F8D0, BDD39D5A7AA82020A5A124B239094A56787B99B1CDBA54F1F67B519517BE2F4F ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
12:44:38.0533 0x01c8  amdkmdap - ok
12:44:38.0554 0x01c8  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
12:44:38.0556 0x01c8  AmdPPM - ok
12:44:38.0609 0x01c8  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
12:44:38.0619 0x01c8  amdsata - ok
12:44:38.0678 0x01c8  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
12:44:38.0697 0x01c8  amdsbs - ok
12:44:38.0744 0x01c8  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
12:44:38.0755 0x01c8  amdxata - ok
12:44:38.0790 0x01c8  [ 321533578132C811EC834A1B741C994C, 82B62C52018655B8A596E1E503CB31F0FA581780425A9FF44BE1248C0F3D4B3E ] amdxhc          C:\Windows\system32\DRIVERS\amdxhc.sys
12:44:38.0804 0x01c8  amdxhc - ok
12:44:38.0831 0x01c8  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
12:44:38.0836 0x01c8  AppID - ok
12:44:38.0860 0x01c8  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:44:38.0863 0x01c8  AppIDSvc - ok
12:44:38.0930 0x01c8  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
12:44:38.0935 0x01c8  Appinfo - ok
12:44:39.0027 0x01c8  [ 7EF47644B74EBE721CC32211D3C35E76, 1381908E70567AAE5A8C96C4B7BF8E68748F64DE3243FD0FA8CC0E72DEEDA9A7 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:44:39.0044 0x01c8  Apple Mobile Device - ok
12:44:39.0121 0x01c8  [ 6BE11AD81D4527D299F0CB5F3731AABC, 9C01278D3336CD74B9672A2A9EF7AF836CB0E7F2EA5BC310E9ADDD1238B92229 ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
12:44:39.0125 0x01c8  AppleCharger - ok
12:44:39.0142 0x01c8  [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
12:44:39.0147 0x01c8  AppleChargerSrv - ok
12:44:39.0239 0x01c8  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
12:44:39.0243 0x01c8  arc - ok
12:44:39.0258 0x01c8  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:44:39.0262 0x01c8  arcsas - ok
12:44:39.0497 0x01c8  [ 4F68A6B5705221CCC1CC73F00D79A9E9, DAF6D0E7A6594204F6E7A95CB522A24B3CB611EFF2E7F1CB504437ED36621D3B ] ArcService      C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcService.exe
12:44:39.0511 0x01c8  ArcService - ok
12:44:39.0732 0x01c8  [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:44:39.0735 0x01c8  aspnet_state - ok
12:44:39.0789 0x01c8  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:44:39.0791 0x01c8  AsyncMac - ok
12:44:39.0831 0x01c8  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
12:44:39.0833 0x01c8  atapi - ok
12:44:39.0913 0x01c8  [ DBB487D09F56C674430AC454FD8BCAB9, CF6413DD5D4876CE1F65E40115994423804AA5EA5CBDEB433DB751B445C17BB8 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
12:44:39.0920 0x01c8  AtiHDAudioService - ok
12:44:40.0233 0x01c8  [ 0415FFE1B6A6EA141FEAFCA57567F57F, B3F18608B8C8796988C20BC47B7D3325FFC2CB6EE9FB9012BDB524DB0D07FDF1 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
12:44:40.0428 0x01c8  atikmdag - ok
12:44:40.0517 0x01c8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:44:40.0533 0x01c8  AudioEndpointBuilder - ok
12:44:40.0552 0x01c8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
12:44:40.0565 0x01c8  AudioSrv - ok
12:44:40.0654 0x01c8  [ B4FBFADDA6B39AB24456C45C03EF3991, 41BE325E66A4D085F4D624986B97D6E2BEBD0B0BEA077DE166FDD36E2AFEC193 ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
12:44:40.0660 0x01c8  avgtp - ok
12:44:40.0790 0x01c8  [ 6C9D5BADC8F83D410A278717C2EEA6F6, B047E3F21D153A2E32FA907EE9830A4A9A152C3AA95FD978E61189EEF6564D40 ] AVP             C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\avp.exe
12:44:40.0810 0x01c8  AVP - ok
12:44:40.0893 0x01c8  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:44:40.0901 0x01c8  AxInstSV - ok
12:44:40.0944 0x01c8  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
12:44:40.0958 0x01c8  b06bdrv - ok
12:44:41.0007 0x01c8  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
12:44:41.0016 0x01c8  b57nd60a - ok
12:44:41.0050 0x01c8  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
12:44:41.0053 0x01c8  BDESVC - ok
12:44:41.0093 0x01c8  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:44:41.0095 0x01c8  Beep - ok
12:44:41.0177 0x01c8  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
12:44:41.0200 0x01c8  BFE - ok
12:44:41.0345 0x01c8  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
12:44:41.0429 0x01c8  BITS - ok
12:44:41.0459 0x01c8  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
12:44:41.0462 0x01c8  blbdrive - ok
12:44:41.0511 0x01c8  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:44:41.0535 0x01c8  Bonjour Service - ok
12:44:41.0599 0x01c8  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:44:41.0605 0x01c8  bowser - ok
12:44:41.0629 0x01c8  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
12:44:41.0633 0x01c8  BrFiltLo - ok
12:44:41.0649 0x01c8  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
12:44:41.0652 0x01c8  BrFiltUp - ok
12:44:41.0716 0x01c8  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
12:44:41.0721 0x01c8  BridgeMP - ok
12:44:41.0786 0x01c8  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
12:44:41.0795 0x01c8  Browser - ok
12:44:41.0830 0x01c8  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
12:44:41.0847 0x01c8  Brserid - ok
12:44:41.0873 0x01c8  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
12:44:41.0877 0x01c8  BrSerWdm - ok
12:44:41.0889 0x01c8  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
12:44:41.0891 0x01c8  BrUsbMdm - ok
12:44:41.0914 0x01c8  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
12:44:41.0916 0x01c8  BrUsbSer - ok
12:44:41.0935 0x01c8  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
12:44:41.0940 0x01c8  BTHMODEM - ok
12:44:41.0958 0x01c8  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
12:44:41.0962 0x01c8  bthserv - ok
12:44:41.0980 0x01c8  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:44:41.0983 0x01c8  cdfs - ok
12:44:42.0007 0x01c8  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:44:42.0011 0x01c8  cdrom - ok
12:44:42.0079 0x01c8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:44:42.0084 0x01c8  CertPropSvc - ok
12:44:42.0101 0x01c8  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
12:44:42.0104 0x01c8  circlass - ok
12:44:42.0131 0x01c8  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
12:44:42.0142 0x01c8  CLFS - ok
12:44:42.0354 0x01c8  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:44:42.0384 0x01c8  clr_optimization_v2.0.50727_32 - ok
12:44:42.0423 0x01c8  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:44:42.0429 0x01c8  clr_optimization_v2.0.50727_64 - ok
12:44:42.0519 0x01c8  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:44:42.0553 0x01c8  clr_optimization_v4.0.30319_32 - ok
12:44:42.0582 0x01c8  [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:44:42.0596 0x01c8  clr_optimization_v4.0.30319_64 - ok
12:44:42.0625 0x01c8  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
12:44:42.0628 0x01c8  CmBatt - ok
12:44:42.0672 0x01c8  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:44:42.0689 0x01c8  cmdide - ok
12:44:42.0739 0x01c8  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
12:44:42.0766 0x01c8  CNG - ok
12:44:42.0797 0x01c8  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
12:44:42.0800 0x01c8  Compbatt - ok
12:44:42.0816 0x01c8  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
12:44:42.0819 0x01c8  CompositeBus - ok
12:44:42.0831 0x01c8  COMSysApp - ok
12:44:42.0890 0x01c8  [ C08063F052308B6F5882482615387F30, 523D1D43E896077F32CD9ACAA8E85B513BFB7B013A625E56F0D4E9675D9822BA ] cpuz135         C:\Windows\system32\drivers\cpuz135_x64.sys
12:44:42.0892 0x01c8  cpuz135 - ok
12:44:42.0904 0x01c8  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
12:44:42.0906 0x01c8  crcdisk - ok
12:44:42.0933 0x01c8  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:44:42.0937 0x01c8  CryptSvc - ok
12:44:42.0974 0x01c8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:44:42.0985 0x01c8  DcomLaunch - ok
12:44:43.0013 0x01c8  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
12:44:43.0022 0x01c8  defragsvc - ok
12:44:43.0047 0x01c8  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:44:43.0051 0x01c8  DfsC - ok
12:44:43.0066 0x01c8  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:44:43.0072 0x01c8  Dhcp - ok
12:44:43.0088 0x01c8  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
12:44:43.0090 0x01c8  discache - ok
12:44:43.0096 0x01c8  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
12:44:43.0099 0x01c8  Disk - ok
12:44:43.0162 0x01c8  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:44:43.0167 0x01c8  Dnscache - ok
12:44:43.0193 0x01c8  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
12:44:43.0213 0x01c8  dot3svc - ok
12:44:43.0254 0x01c8  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
12:44:43.0259 0x01c8  DPS - ok
12:44:43.0310 0x01c8  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:44:43.0322 0x01c8  drmkaud - ok
12:44:43.0390 0x01c8  [ 46571ED73AE84469DCA53081D33CF3C8, 8BB386BB4F6AD39F06A8607CD1DF3D67CFA45BBE52E40EDB90EB8C862283EBFF ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
12:44:43.0402 0x01c8  dtsoftbus01 - ok
12:44:43.0515 0x01c8  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:44:43.0539 0x01c8  DXGKrnl - ok
12:44:43.0564 0x01c8  EagleX64 - ok
12:44:43.0592 0x01c8  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
12:44:43.0596 0x01c8  EapHost - ok
12:44:43.0699 0x01c8  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
12:44:43.0844 0x01c8  ebdrv - ok
12:44:43.0902 0x01c8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
12:44:43.0904 0x01c8  EFS - ok
12:44:44.0018 0x01c8  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:44:44.0039 0x01c8  ehRecvr - ok
12:44:44.0069 0x01c8  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
12:44:44.0074 0x01c8  ehSched - ok
12:44:44.0116 0x01c8  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
12:44:44.0130 0x01c8  elxstor - ok
12:44:44.0143 0x01c8  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
12:44:44.0145 0x01c8  ErrDev - ok
12:44:44.0207 0x01c8  [ 84486624268E078255BC7AA47F0960BC, EC2540698B974572F0AC4A93D57C63295BAF66BF50F7416B9DFF5DE790EBDBE7 ] etdrv           C:\Windows\etdrv.sys
12:44:44.0217 0x01c8  etdrv - ok
12:44:44.0248 0x01c8  [ DB6AEC32FAF5BD002D9ED6C38692D42B, 8BB85AE88E783B678B05D5937B7EE261BB6ECC9BF82CCB0D9A4009A1535F62B3 ] EtronHub3       C:\Windows\system32\Drivers\EtronHub3.sys
12:44:44.0251 0x01c8  EtronHub3 - ok
12:44:44.0281 0x01c8  [ 9CC2F24274741E12F9DF92125EA6D6D8, AC51B2A81A4D285E2E17880597B491EBBFEC533A5009B810E4AD0D9FC589EB22 ] EtronXHCI       C:\Windows\system32\Drivers\EtronXHCI.sys
12:44:44.0285 0x01c8  EtronXHCI - ok
12:44:44.0322 0x01c8  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
12:44:44.0331 0x01c8  EventSystem - ok
12:44:44.0398 0x01c8  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:44:44.0415 0x01c8  exfat - ok
12:44:44.0445 0x01c8  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:44:44.0452 0x01c8  fastfat - ok
12:44:44.0493 0x01c8  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
12:44:44.0511 0x01c8  Fax - ok
12:44:44.0521 0x01c8  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
12:44:44.0523 0x01c8  fdc - ok
12:44:44.0544 0x01c8  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
12:44:44.0569 0x01c8  fdPHost - ok
12:44:44.0581 0x01c8  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:44:44.0584 0x01c8  FDResPub - ok
12:44:44.0602 0x01c8  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:44:44.0605 0x01c8  FileInfo - ok
12:44:44.0613 0x01c8  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:44:44.0616 0x01c8  Filetrace - ok
12:44:44.0640 0x01c8  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
12:44:44.0643 0x01c8  flpydisk - ok
12:44:44.0659 0x01c8  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:44:44.0666 0x01c8  FltMgr - ok
12:44:44.0732 0x01c8  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
12:44:44.0813 0x01c8  FontCache - ok
12:44:44.0895 0x01c8  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:44:44.0907 0x01c8  FontCache3.0.0.0 - ok
12:44:44.0982 0x01c8  [ 07AF7870ABF051EBBAE8A8A92FF34ABE, D5FD122A8F1984DA33EB8A0B70F11E5C7B48744B80C182A3B7891CFBC30B2BD3 ] FreeAgentGoNext Service C:\Program Files (x86)\Seagate\SeagateManager\Sync\FreeAgentService.exe
12:44:44.0994 0x01c8  FreeAgentGoNext Service - ok
12:44:45.0014 0x01c8  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:44:45.0017 0x01c8  FsDepends - ok
12:44:45.0056 0x01c8  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:44:45.0058 0x01c8  Fs_Rec - ok
12:44:45.0130 0x01c8  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:44:45.0160 0x01c8  fvevol - ok
12:44:45.0190 0x01c8  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:44:45.0213 0x01c8  gagp30kx - ok
12:44:45.0290 0x01c8  [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv            C:\Windows\gdrv.sys
12:44:45.0294 0x01c8  gdrv - ok
12:44:45.0320 0x01c8  [ E403AACF8C7BB11375122D2464560311, 0427B8FFD999D256EA1A5135F218692959A7577CB32354D3087CF0FB4F0577DF ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:44:45.0324 0x01c8  GEARAspiWDM - ok
12:44:45.0400 0x01c8  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
12:44:45.0425 0x01c8  gpsvc - ok
12:44:45.0600 0x01c8  [ 721CE1551F8198714F3CABFE2147939B, 073275A49045AD557F42FD48E423B9186C644B426BD5D4820472C6475942747E ] Gun             C:\Game\SoftnyxGame\GunboundIS\Gun64.sys
12:44:45.0604 0x01c8  Gun - ok
12:44:45.0701 0x01c8  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:44:45.0707 0x01c8  gupdate - ok
12:44:45.0733 0x01c8  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:44:45.0735 0x01c8  gupdatem - ok
12:44:45.0781 0x01c8  [ 8126331FBD4ED29EB3B356F9C905064D, A58BCE904591DD762410E99960FD956FB579C2CE78FA7BF1406075D29537EF82 ] GVTDrv64        C:\Windows\GVTDrv64.sys
12:44:45.0784 0x01c8  GVTDrv64 - ok
12:44:45.0804 0x01c8  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
12:44:45.0807 0x01c8  hcw85cir - ok
12:44:45.0835 0x01c8  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:44:45.0858 0x01c8  HdAudAddService - ok
12:44:45.0885 0x01c8  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
12:44:45.0893 0x01c8  HDAudBus - ok
12:44:45.0905 0x01c8  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
12:44:45.0907 0x01c8  HidBatt - ok
12:44:45.0928 0x01c8  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
12:44:45.0932 0x01c8  HidBth - ok
12:44:45.0954 0x01c8  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
12:44:45.0957 0x01c8  HidIr - ok
12:44:45.0968 0x01c8  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
12:44:45.0971 0x01c8  hidserv - ok
12:44:46.0037 0x01c8  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
12:44:46.0038 0x01c8  HidUsb - ok
12:44:46.0142 0x01c8  [ 1712747C844CC12EED8BC92FB0E56E4C, 2DAD9F578B37BBB59E0BF572C64C3EDB96215ADE710EBB79FEFB1194C5E9B02F ] HitmanProScheduler C:\Program Files\HitmanPro\hmpsched.exe
12:44:46.0154 0x01c8  HitmanProScheduler - ok
12:44:46.0167 0x01c8  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:44:46.0171 0x01c8  hkmsvc - ok
12:44:46.0190 0x01c8  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:44:46.0196 0x01c8  HomeGroupListener - ok
12:44:46.0214 0x01c8  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:44:46.0219 0x01c8  HomeGroupProvider - ok
12:44:46.0238 0x01c8  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
12:44:46.0241 0x01c8  HpSAMD - ok
12:44:46.0250 0x01c8  Htsysm - ok
12:44:46.0329 0x01c8  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:44:46.0346 0x01c8  HTTP - ok
12:44:46.0362 0x01c8  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:44:46.0365 0x01c8  hwpolicy - ok
12:44:46.0499 0x01c8  [ B2EA4C4B2BA808C9E487F0AB651A22FA, 31ADEBE7DA658E5B1F6C9995412A80771F56FF593184F90BA177D220746B0A4C ] hxsyol          C:\AeriaGames\AuraKingdom\avital\hxsy64.sys
12:44:46.0530 0x01c8  hxsyol - ok
12:44:46.0565 0x01c8  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
12:44:46.0569 0x01c8  i8042prt - ok
12:44:46.0626 0x01c8  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
12:44:46.0637 0x01c8  iaStorV - ok
12:44:46.0737 0x01c8  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
12:44:46.0744 0x01c8  IDriverT - ok
12:44:46.0814 0x01c8  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:44:46.0838 0x01c8  idsvc - ok
12:44:46.0911 0x01c8  IEEtwCollectorService - ok
12:44:46.0942 0x01c8  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
12:44:46.0945 0x01c8  iirsp - ok
12:44:47.0002 0x01c8  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
12:44:47.0027 0x01c8  IKEEXT - ok
12:44:47.0064 0x01c8  IntcAzAudAddService - ok
12:44:47.0107 0x01c8  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:44:47.0121 0x01c8  intelide - ok
12:44:47.0158 0x01c8  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
12:44:47.0164 0x01c8  intelppm - ok
12:44:47.0184 0x01c8  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:44:47.0189 0x01c8  IPBusEnum - ok
12:44:47.0207 0x01c8  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:44:47.0211 0x01c8  IpFilterDriver - ok
12:44:47.0281 0x01c8  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:44:47.0297 0x01c8  iphlpsvc - ok
12:44:47.0313 0x01c8  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
12:44:47.0330 0x01c8  IPMIDRV - ok
12:44:47.0369 0x01c8  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:44:47.0391 0x01c8  IPNAT - ok
12:44:47.0513 0x01c8  [ 755E4BA6DCE627A2683BB7640553C8D6, 7E88C31CE78A784F3FCB6D99412A09D5100E7A4FD779BE0B81489BD1D20D5F68 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
12:44:47.0559 0x01c8  iPod Service - ok
12:44:47.0579 0x01c8  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:44:47.0581 0x01c8  IRENUM - ok
12:44:47.0611 0x01c8  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:44:47.0614 0x01c8  isapnp - ok
12:44:47.0647 0x01c8  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
12:44:47.0654 0x01c8  iScsiPrt - ok
12:44:47.0706 0x01c8  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
12:44:47.0711 0x01c8  kbdclass - ok
12:44:47.0760 0x01c8  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
12:44:47.0762 0x01c8  kbdhid - ok
12:44:47.0778 0x01c8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
12:44:47.0781 0x01c8  KeyIso - ok
12:44:47.0883 0x01c8  [ E656FE10D6D27794AFA08136685A69E8, 2D38603B546235B555978340A63E052D06CA7E7EF117CF148F9A002D423B2949 ] KL1             C:\Windows\system32\DRIVERS\kl1.sys
12:44:47.0895 0x01c8  KL1 - ok
12:44:47.0906 0x01c8  [ D865DD8B0448E3F963D68C04C532858F, AD51013E65289CA8FD1313780A93610132B1570F7A85C7A2E7DD8FD1FBE8701D ] kl2             C:\Windows\system32\DRIVERS\kl2.sys
12:44:47.0922 0x01c8  kl2 - ok
12:44:48.0010 0x01c8  [ 8490798365236B6C8E54DEDD27A42D07, 603C1AC0447DE3C7C1824920FF28475E507C269F91CD8B6557296AE3BE9AE2C4 ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
12:44:48.0045 0x01c8  KLIF - ok
12:44:48.0097 0x01c8  [ 89FB5A33D7171B6D84F5EB721D5055E1, 1F36C1C043E9BA57496A50F4F28135CE78C4EF3F0277B566787CD1DDD173AEF6 ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
12:44:48.0100 0x01c8  KLIM6 - ok
12:44:48.0124 0x01c8  [ 9468D07E91BA136D82415F5DFC1FE168, EF9AA5CD94093E06023A42501557B2C4684806DBBC07D2F77F9AE2F3C6EA2430 ] klmouflt        C:\Windows\system32\DRIVERS\klmouflt.sys
12:44:48.0127 0x01c8  klmouflt - ok
12:44:48.0172 0x01c8  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:44:48.0187 0x01c8  KSecDD - ok
12:44:48.0221 0x01c8  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:44:48.0232 0x01c8  KSecPkg - ok
12:44:48.0261 0x01c8  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
12:44:48.0264 0x01c8  ksthunk - ok
12:44:48.0293 0x01c8  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:44:48.0306 0x01c8  KtmRm - ok
12:44:48.0355 0x01c8  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
12:44:48.0366 0x01c8  LanmanServer - ok
12:44:48.0393 0x01c8  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:44:48.0402 0x01c8  LanmanWorkstation - ok
12:44:48.0431 0x01c8  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:44:48.0436 0x01c8  lltdio - ok
12:44:48.0458 0x01c8  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:44:48.0473 0x01c8  lltdsvc - ok
12:44:48.0492 0x01c8  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:44:48.0495 0x01c8  lmhosts - ok
12:44:48.0522 0x01c8  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
12:44:48.0526 0x01c8  LSI_FC - ok
12:44:48.0547 0x01c8  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:44:48.0552 0x01c8  LSI_SAS - ok
12:44:48.0567 0x01c8  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
12:44:48.0571 0x01c8  LSI_SAS2 - ok
12:44:48.0618 0x01c8  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
12:44:48.0623 0x01c8  LSI_SCSI - ok
12:44:48.0642 0x01c8  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
12:44:48.0648 0x01c8  luafv - ok
12:44:48.0723 0x01c8  [ 0BB97D43299910CBFBA59C461B99B910, 27C22D9D9EE8A410D7396960DA93E9E260D4DCDD38DCE06E85E45C5E24C067DE ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
12:44:48.0726 0x01c8  MBAMProtector - ok
12:44:48.0862 0x01c8  [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
12:44:48.0887 0x01c8  MBAMScheduler - ok
12:44:49.0045 0x01c8  [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
12:44:49.0096 0x01c8  MBAMService - ok
12:44:49.0171 0x01c8  [ 968BFF74AEB683C962960ECE0CAE4135, 3E08B39DE27FE27A27BD3E81486F0FCA1947D4B50BFE0167A0C27CE48DD56793 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe
12:44:49.0193 0x01c8  McComponentHostService - ok
12:44:49.0212 0x01c8  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:44:49.0218 0x01c8  Mcx2Svc - ok
12:44:49.0316 0x01c8  [ 11F714F85530A2BD134074DC30E99FCA, BDB5FD3B2DF4ADD19B31965B3E789768B59E872B3EA85912B1FFB32B2AF9D5D8 ] MDM             C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
12:44:49.0324 0x01c8  MDM - ok
12:44:49.0347 0x01c8  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
12:44:49.0349 0x01c8  megasas - ok
12:44:49.0373 0x01c8  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
12:44:49.0380 0x01c8  MegaSR - ok
12:44:49.0399 0x01c8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
12:44:49.0402 0x01c8  MMCSS - ok
12:44:49.0417 0x01c8  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
12:44:49.0420 0x01c8  Modem - ok
12:44:49.0450 0x01c8  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:44:49.0452 0x01c8  monitor - ok
12:44:49.0500 0x01c8  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:44:49.0508 0x01c8  mouclass - ok
12:44:49.0561 0x01c8  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:44:49.0564 0x01c8  mouhid - ok
12:44:49.0590 0x01c8  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:44:49.0594 0x01c8  mountmgr - ok
12:44:49.0674 0x01c8  [ 3B9398E0146855B1DC0E3D9769C80F01, DF69DB5CA30A5577648635C27DD468AF98515D07DF379B3FFDCC6B40744EDE66 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:44:49.0768 0x01c8  MozillaMaintenance - ok
12:44:49.0802 0x01c8  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:44:49.0806 0x01c8  mpio - ok
12:44:49.0848 0x01c8  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:44:49.0850 0x01c8  mpsdrv - ok
12:44:49.0914 0x01c8  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:44:49.0930 0x01c8  MpsSvc - ok
12:44:50.0009 0x01c8  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:44:50.0017 0x01c8  MRxDAV - ok
12:44:50.0101 0x01c8  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:44:50.0110 0x01c8  mrxsmb - ok
12:44:50.0145 0x01c8  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:44:50.0153 0x01c8  mrxsmb10 - ok
12:44:50.0196 0x01c8  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:44:50.0202 0x01c8  mrxsmb20 - ok
12:44:50.0246 0x01c8  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
12:44:50.0250 0x01c8  msahci - ok
12:44:50.0289 0x01c8  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:44:50.0310 0x01c8  msdsm - ok
12:44:50.0330 0x01c8  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
12:44:50.0336 0x01c8  MSDTC - ok
12:44:50.0356 0x01c8  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:44:50.0358 0x01c8  Msfs - ok
12:44:50.0373 0x01c8  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:44:50.0375 0x01c8  mshidkmdf - ok
12:44:50.0390 0x01c8  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:44:50.0401 0x01c8  msisadrv - ok
12:44:50.0428 0x01c8  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:44:50.0434 0x01c8  MSiSCSI - ok
12:44:50.0439 0x01c8  msiserver - ok
12:44:50.0479 0x01c8  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:44:50.0481 0x01c8  MSKSSRV - ok
12:44:50.0505 0x01c8  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:44:50.0508 0x01c8  MSPCLOCK - ok
12:44:50.0539 0x01c8  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:44:50.0542 0x01c8  MSPQM - ok
12:44:50.0572 0x01c8  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:44:50.0584 0x01c8  MsRPC - ok
12:44:50.0612 0x01c8  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
12:44:50.0627 0x01c8  mssmbios - ok
12:44:50.0664 0x01c8  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:44:50.0667 0x01c8  MSTEE - ok
12:44:50.0687 0x01c8  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
12:44:50.0690 0x01c8  MTConfig - ok
12:44:50.0705 0x01c8  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
12:44:50.0709 0x01c8  Mup - ok
12:44:50.0734 0x01c8  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
12:44:50.0746 0x01c8  napagent - ok
12:44:50.0780 0x01c8  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:44:50.0788 0x01c8  NativeWifiP - ok
12:44:50.0849 0x01c8  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:44:50.0888 0x01c8  NDIS - ok
12:44:50.0926 0x01c8  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:44:50.0929 0x01c8  NdisCap - ok
12:44:50.0957 0x01c8  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:44:50.0960 0x01c8  NdisTapi - ok
12:44:50.0980 0x01c8  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:44:50.0984 0x01c8  Ndisuio - ok
12:44:51.0001 0x01c8  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:44:51.0007 0x01c8  NdisWan - ok
12:44:51.0032 0x01c8  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:44:51.0035 0x01c8  NDProxy - ok
12:44:51.0055 0x01c8  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:44:51.0058 0x01c8  NetBIOS - ok
12:44:51.0095 0x01c8  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:44:51.0128 0x01c8  NetBT - ok
12:44:51.0144 0x01c8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
12:44:51.0147 0x01c8  Netlogon - ok
12:44:51.0170 0x01c8  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
12:44:51.0182 0x01c8  Netman - ok
12:44:51.0268 0x01c8  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:44:51.0282 0x01c8  NetMsmqActivator - ok
12:44:51.0347 0x01c8  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:44:51.0353 0x01c8  NetPipeActivator - ok
12:44:51.0382 0x01c8  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
12:44:51.0407 0x01c8  netprofm - ok
12:44:51.0454 0x01c8  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:44:51.0457 0x01c8  NetTcpActivator - ok
12:44:51.0465 0x01c8  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:44:51.0468 0x01c8  NetTcpPortSharing - ok
12:44:51.0492 0x01c8  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
12:44:51.0495 0x01c8  nfrd960 - ok
12:44:51.0536 0x01c8  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:44:51.0545 0x01c8  NlaSvc - ok
12:44:51.0559 0x01c8  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:44:51.0562 0x01c8  Npfs - ok
12:44:51.0598 0x01c8  npggsvc - ok
12:44:51.0605 0x01c8  NPPTNT2 - ok
12:44:51.0638 0x01c8  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
12:44:51.0640 0x01c8  nsi - ok
12:44:51.0666 0x01c8  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:44:51.0667 0x01c8  nsiproxy - ok
12:44:51.0760 0x01c8  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:44:51.0857 0x01c8  Ntfs - ok
12:44:51.0884 0x01c8  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
12:44:51.0886 0x01c8  Null - ok
12:44:52.0224 0x01c8  [ DD81FBC57AB9134CDDC5CE90880BFD80, 16DF4D9645238D1014FA9189FF171DCF7B7C7573F759B5AC73025518139D86B1 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:44:52.0527 0x01c8  nvlddmkm - ok
12:44:52.0594 0x01c8  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:44:52.0598 0x01c8  nvraid - ok
12:44:52.0639 0x01c8  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:44:52.0645 0x01c8  nvstor - ok
12:44:52.0662 0x01c8  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:44:52.0668 0x01c8  nv_agp - ok
12:44:52.0713 0x01c8  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:44:52.0717 0x01c8  ohci1394 - ok
12:44:52.0765 0x01c8  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:44:52.0771 0x01c8  ose - ok
12:44:52.0810 0x01c8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:44:52.0825 0x01c8  p2pimsvc - ok
12:44:52.0851 0x01c8  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
12:44:52.0875 0x01c8  p2psvc - ok
12:44:52.0979 0x01c8  [ 77CDC6C43D8C3E05D0E21B36EAABEBAE, 4B81147E8ACD04636F5381BC5D121F428F946C7735C97CD3E1C3BCCD47D0F5BB ] PanService      C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
12:44:53.0018 0x01c8  PanService - ok
12:44:53.0053 0x01c8  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
12:44:53.0059 0x01c8  Parport - ok
12:44:53.0103 0x01c8  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:44:53.0110 0x01c8  partmgr - ok
12:44:53.0147 0x01c8  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:44:53.0156 0x01c8  PcaSvc - ok
12:44:53.0198 0x01c8  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
12:44:53.0205 0x01c8  pci - ok
12:44:53.0263 0x01c8  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:44:53.0266 0x01c8  pciide - ok
12:44:53.0297 0x01c8  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:44:53.0309 0x01c8  pcmcia - ok
12:44:53.0327 0x01c8  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
12:44:53.0330 0x01c8  pcw - ok
12:44:53.0359 0x01c8  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:44:53.0376 0x01c8  PEAUTH - ok
12:44:53.0937 0x01c8  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
12:44:53.0940 0x01c8  PerfHost - ok
12:44:53.0991 0x01c8  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
12:44:54.0034 0x01c8  pla - ok
12:44:54.0092 0x01c8  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:44:54.0102 0x01c8  PlugPlay - ok
12:44:54.0155 0x01c8  PnkBstrA - ok
12:44:54.0184 0x01c8  PnkBstrB - ok
12:44:54.0200 0x01c8  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:44:54.0208 0x01c8  PNRPAutoReg - ok
12:44:54.0221 0x01c8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:44:54.0229 0x01c8  PNRPsvc - ok
12:44:54.0286 0x01c8  [ 32D374C60778253B81FA76C2FE19E155, 6BD6B360EAC4F9988921281B52B4B1A29DDD287C6DB18688B4CEA5B1B4F22106 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
12:44:54.0289 0x01c8  Point64 - ok
12:44:54.0338 0x01c8  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:44:54.0358 0x01c8  PolicyAgent - ok
12:44:54.0413 0x01c8  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
12:44:54.0418 0x01c8  Power - ok
12:44:54.0442 0x01c8  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:44:54.0446 0x01c8  PptpMiniport - ok
12:44:54.0462 0x01c8  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
12:44:54.0465 0x01c8  Processor - ok
12:44:54.0509 0x01c8  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
12:44:54.0526 0x01c8  ProfSvc - ok
12:44:54.0544 0x01c8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
12:44:54.0547 0x01c8  ProtectedStorage - ok
12:44:54.0574 0x01c8  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:44:54.0578 0x01c8  Psched - ok
12:44:54.0622 0x01c8  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
12:44:54.0683 0x01c8  ql2300 - ok
12:44:54.0712 0x01c8  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
12:44:54.0716 0x01c8  ql40xx - ok
12:44:54.0748 0x01c8  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
12:44:54.0758 0x01c8  QWAVE - ok
12:44:54.0768 0x01c8  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:44:54.0771 0x01c8  QWAVEdrv - ok
12:44:54.0786 0x01c8  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:44:54.0788 0x01c8  RasAcd - ok
12:44:54.0825 0x01c8  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
12:44:54.0828 0x01c8  RasAgileVpn - ok
12:44:54.0843 0x01c8  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
12:44:54.0849 0x01c8  RasAuto - ok
12:44:54.0870 0x01c8  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:44:54.0874 0x01c8  Rasl2tp - ok
12:44:54.0891 0x01c8  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
12:44:54.0902 0x01c8  RasMan - ok
12:44:54.0923 0x01c8  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:44:54.0926 0x01c8  RasPppoe - ok
12:44:54.0942 0x01c8  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:44:54.0945 0x01c8  RasSstp - ok
12:44:54.0967 0x01c8  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:44:54.0974 0x01c8  rdbss - ok
12:44:54.0989 0x01c8  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
12:44:54.0991 0x01c8  rdpbus - ok
12:44:55.0033 0x01c8  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:44:55.0035 0x01c8  RDPCDD - ok
12:44:55.0069 0x01c8  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:44:55.0071 0x01c8  RDPENCDD - ok
12:44:55.0097 0x01c8  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
12:44:55.0099 0x01c8  RDPREFMP - ok
12:44:55.0160 0x01c8  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
12:44:55.0173 0x01c8  RdpVideoMiniport - ok
12:44:55.0212 0x01c8  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:44:55.0219 0x01c8  RDPWD - ok
12:44:55.0252 0x01c8  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:44:55.0259 0x01c8  rdyboost - ok
12:44:55.0284 0x01c8  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:44:55.0290 0x01c8  RemoteAccess - ok
12:44:55.0311 0x01c8  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:44:55.0319 0x01c8  RemoteRegistry - ok
12:44:55.0328 0x01c8  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:44:55.0333 0x01c8  RpcEptMapper - ok
12:44:55.0345 0x01c8  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
12:44:55.0347 0x01c8  RpcLocator - ok
12:44:55.0367 0x01c8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\System32\rpcss.dll
12:44:55.0378 0x01c8  RpcSs - ok
12:44:55.0412 0x01c8  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:44:55.0415 0x01c8  rspndr - ok
12:44:55.0446 0x01c8  [ 2E7D1CA91D62501713C9D6E6704395C6, 823D9D9CC0971732D9121B67C534E30A78C83869594E4CCA91FCC0BE743610EF ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
12:44:55.0456 0x01c8  RTHDMIAzAudService - ok
12:44:55.0505 0x01c8  [ 0039DE6A0A1293889A3F21ECC473263D, 43B5049BFF9CFB5AF8E842E8B6C10B848B9636CFC15B3464E296CF3B717AC8AA ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
12:44:55.0520 0x01c8  RTL8167 - ok
12:44:55.0527 0x01c8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
12:44:55.0529 0x01c8  SamSs - ok
12:44:55.0632 0x01c8  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
12:44:55.0644 0x01c8  SASDIFSV - ok
12:44:55.0670 0x01c8  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
12:44:55.0673 0x01c8  SASKUTIL - ok
12:44:55.0702 0x01c8  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:44:55.0711 0x01c8  sbp2port - ok
12:44:55.0732 0x01c8  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:44:55.0744 0x01c8  SCardSvr - ok
12:44:55.0763 0x01c8  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:44:55.0766 0x01c8  scfilter - ok
12:44:55.0818 0x01c8  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
12:44:55.0862 0x01c8  Schedule - ok
12:44:55.0879 0x01c8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:44:55.0881 0x01c8  SCPolicySvc - ok
12:44:55.0896 0x01c8  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:44:55.0900 0x01c8  SDRSVC - ok
12:44:55.0918 0x01c8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:44:55.0920 0x01c8  secdrv - ok
12:44:55.0930 0x01c8  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
12:44:55.0940 0x01c8  seclogon - ok
12:44:55.0953 0x01c8  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
12:44:55.0956 0x01c8  SENS - ok
12:44:55.0963 0x01c8  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:44:55.0966 0x01c8  SensrSvc - ok
12:44:55.0972 0x01c8  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
12:44:55.0973 0x01c8  Serenum - ok
12:44:55.0999 0x01c8  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
12:44:56.0002 0x01c8  Serial - ok
12:44:56.0015 0x01c8  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
12:44:56.0017 0x01c8  sermouse - ok
12:44:56.0046 0x01c8  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
12:44:56.0058 0x01c8  SessionEnv - ok
12:44:56.0092 0x01c8  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:44:56.0094 0x01c8  sffdisk - ok
12:44:56.0107 0x01c8  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:44:56.0110 0x01c8  sffp_mmc - ok
12:44:56.0131 0x01c8  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:44:56.0133 0x01c8  sffp_sd - ok
12:44:56.0149 0x01c8  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
12:44:56.0152 0x01c8  sfloppy - ok
12:44:56.0179 0x01c8  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:44:56.0201 0x01c8  SharedAccess - ok
12:44:56.0227 0x01c8  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:44:56.0236 0x01c8  ShellHWDetection - ok
12:44:56.0254 0x01c8  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
12:44:56.0257 0x01c8  SiSRaid2 - ok
12:44:56.0269 0x01c8  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:44:56.0272 0x01c8  SiSRaid4 - ok
12:44:56.0300 0x01c8  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:44:56.0305 0x01c8  Smb - ok
12:44:56.0325 0x01c8  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:44:56.0335 0x01c8  SNMPTRAP - ok
12:44:56.0386 0x01c8  [ 12583AF6CBE0050651EAF2723B3AD7B3, 965D4F981B54669A96C5AB02D09BF0A9850D13862425B8981F1A9271350F28BB ] speedfan        C:\Windows\syswow64\speedfan.sys
12:44:56.0389 0x01c8  speedfan - ok
12:44:56.0400 0x01c8  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:44:56.0402 0x01c8  spldr - ok
12:44:56.0447 0x01c8  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
12:44:56.0471 0x01c8  Spooler - ok
12:44:56.0700 0x01c8  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
12:44:56.0828 0x01c8  sppsvc - ok
12:44:56.0853 0x01c8  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
12:44:56.0857 0x01c8  sppuinotify - ok
12:44:56.0986 0x01c8  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:44:57.0040 0x01c8  srv - ok
12:44:57.0090 0x01c8  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:44:57.0102 0x01c8  srv2 - ok
12:44:57.0115 0x01c8  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:44:57.0120 0x01c8  srvnet - ok
12:44:57.0139 0x01c8  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:44:57.0144 0x01c8  SSDPSRV - ok
12:44:57.0169 0x01c8  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:44:57.0173 0x01c8  SstpSvc - ok
12:44:57.0242 0x01c8  [ A87A39F9B42D82F5D60D36BB1D3CC9D3, F609CC721B898B5053FE34B24C94970453BD57441F9A2C93D4F77CB297D56169 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
12:44:57.0264 0x01c8  Steam Client Service - ok
12:44:57.0318 0x01c8  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
12:44:57.0322 0x01c8  stexstor - ok
12:44:57.0371 0x01c8  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
12:44:57.0391 0x01c8  stisvc - ok
12:44:57.0411 0x01c8  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
12:44:57.0413 0x01c8  swenum - ok
12:44:57.0447 0x01c8  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
12:44:57.0466 0x01c8  swprv - ok
12:44:57.0566 0x01c8  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
12:44:57.0614 0x01c8  SysMain - ok
12:44:57.0638 0x01c8  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:44:57.0642 0x01c8  TabletInputService - ok
12:44:57.0669 0x01c8  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:44:57.0678 0x01c8  TapiSrv - ok
12:44:57.0695 0x01c8  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
12:44:57.0699 0x01c8  TBS - ok
12:44:57.0813 0x01c8  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:44:57.0849 0x01c8  Tcpip - ok
12:44:57.0963 0x01c8  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:44:57.0998 0x01c8  TCPIP6 - ok
12:44:58.0058 0x01c8  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:44:58.0078 0x01c8  tcpipreg - ok
12:44:58.0123 0x01c8  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:44:58.0126 0x01c8  TDPIPE - ok
12:44:58.0166 0x01c8  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:44:58.0170 0x01c8  TDTCP - ok
12:44:58.0209 0x01c8  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:44:58.0215 0x01c8  tdx - ok
12:44:58.0231 0x01c8  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
12:44:58.0234 0x01c8  TermDD - ok
12:44:58.0274 0x01c8  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
12:44:58.0290 0x01c8  TermService - ok
12:44:58.0303 0x01c8  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
12:44:58.0306 0x01c8  Themes - ok
12:44:58.0324 0x01c8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
12:44:58.0327 0x01c8  THREADORDER - ok
12:44:58.0348 0x01c8  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
12:44:58.0354 0x01c8  TrkWks - ok
12:44:58.0415 0x01c8  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:44:58.0427 0x01c8  TrustedInstaller - ok
12:44:58.0473 0x01c8  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:44:58.0486 0x01c8  tssecsrv - ok
12:44:58.0523 0x01c8  [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
12:44:58.0528 0x01c8  TsUsbFlt - ok
12:44:58.0547 0x01c8  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
12:44:58.0551 0x01c8  TsUsbGD - ok
12:44:58.0588 0x01c8  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:44:58.0593 0x01c8  tunnel - ok
12:44:58.0612 0x01c8  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:44:58.0616 0x01c8  uagp35 - ok
12:44:58.0652 0x01c8  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:44:58.0662 0x01c8  udfs - ok
12:44:58.0694 0x01c8  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:44:58.0698 0x01c8  UI0Detect - ok
12:44:58.0717 0x01c8  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:44:58.0723 0x01c8  uliagpkx - ok
12:44:58.0758 0x01c8  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
12:44:58.0762 0x01c8  umbus - ok
12:44:58.0773 0x01c8  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
12:44:58.0775 0x01c8  UmPass - ok
12:44:58.0864 0x01c8  [ 9DC07E73A4ABB9ACF692113B36A5009F, CA7176FC219515D58DCFA66EC61880ECE5617275C9B83701BB74D8B60E733D34 ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys
12:44:58.0878 0x01c8  UnlockerDriver5 - ok
12:44:58.0984 0x01c8  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
12:44:58.0996 0x01c8  upnphost - ok
12:44:59.0100 0x01c8  [ FB251567F41BC61988B26731DEC19E4B, 6A535F5A18EB43DD2E18AF0A05301630A1D1484B7D85DA79A7CD122DA4D018E2 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
12:44:59.0126 0x01c8  USBAAPL64 - ok
12:44:59.0177 0x01c8  [ ACCEA6BC68D0C9A78EB97EE159028B4E, 132F7A543C1DA9456FBABA50552B37E3162ACA612A8567BB3FF0F7DA84231419 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:44:59.0205 0x01c8  usbccgp - ok
12:44:59.0265 0x01c8  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:44:59.0292 0x01c8  usbcir - ok
12:44:59.0345 0x01c8  [ 311C1DD1088E55BEAE15954D17F50646, A663344ABD1414D570617F59CC00020640F31DB34265142EFCA8817328DB842A ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
12:44:59.0379 0x01c8  usbehci - ok
12:44:59.0530 0x01c8  [ 573D192E268F0C5B486B7E96F661E538, 0F32BD82CA7B5D4DE234EFC6527EF4C854BD15B3057FE4A0151C70115493FFDC ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
12:44:59.0557 0x01c8  usbfilter - ok
12:44:59.0685 0x01c8  [ 280E90CBF4B2DDD169F0728CB44D726F, 2B39666C022A4F7338BDDB4CB0D7B4D0CC6B398298D29E38826F27FADF4C29DD ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
12:44:59.0722 0x01c8  usbhub - ok
12:44:59.0779 0x01c8  [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
12:44:59.0813 0x01c8  usbohci - ok
12:44:59.0889 0x01c8  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
12:44:59.0925 0x01c8  usbprint - ok
12:44:59.0988 0x01c8  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:45:00.0022 0x01c8  USBSTOR - ok
12:45:00.0088 0x01c8  [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
12:45:00.0116 0x01c8  usbuhci - ok
12:45:00.0563 0x01c8  [ 659BA43F61FC37609288A5340A8D37D4, E02189C82C2D0CDCDB83FB0F56218B9F15A3269F9209478922B5A1315AB447D0 ] usj             C:\AeriaGames\EdenEternal\avital\ussjcs64.sys
12:45:00.0586 0x01c8  usj - ok
12:45:00.0667 0x01c8  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
12:45:00.0696 0x01c8  UxSms - ok
12:45:00.0708 0x01c8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
12:45:00.0720 0x01c8  VaultSvc - ok
12:45:00.0851 0x01c8  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
12:45:00.0878 0x01c8  vdrvroot - ok
12:45:01.0074 0x01c8  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
12:45:01.0101 0x01c8  vds - ok
12:45:01.0206 0x01c8  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:45:01.0235 0x01c8  vga - ok
12:45:01.0306 0x01c8  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:45:01.0343 0x01c8  VgaSave - ok
12:45:01.0412 0x01c8  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
12:45:01.0434 0x01c8  vhdmp - ok
12:45:01.0558 0x01c8  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
12:45:01.0592 0x01c8  viaide - ok
12:45:01.0671 0x01c8  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:45:01.0696 0x01c8  volmgr - ok
12:45:01.0798 0x01c8  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:45:01.0816 0x01c8  volmgrx - ok
12:45:01.0917 0x01c8  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:45:01.0940 0x01c8  volsnap - ok
12:45:02.0011 0x01c8  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:45:02.0024 0x01c8  vsmraid - ok
12:45:02.0558 0x01c8  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
12:45:02.0595 0x01c8  VSS - ok
12:45:02.0914 0x01c8  vToolbarUpdater14.1.7 - ok
12:45:02.0981 0x01c8  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
12:45:03.0013 0x01c8  vwifibus - ok
12:45:03.0247 0x01c8  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
12:45:03.0260 0x01c8  W32Time - ok
12:45:03.0303 0x01c8  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
12:45:03.0332 0x01c8  WacomPen - ok
12:45:03.0459 0x01c8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
12:45:03.0497 0x01c8  WANARP - ok
12:45:03.0558 0x01c8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:45:03.0560 0x01c8  Wanarpv6 - ok
12:45:04.0111 0x01c8  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
12:45:04.0241 0x01c8  WatAdminSvc - ok
12:45:04.0490 0x01c8  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
12:45:04.0553 0x01c8  wbengine - ok
12:45:04.0823 0x01c8  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:45:04.0837 0x01c8  WbioSrvc - ok
12:45:04.0906 0x01c8  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:45:04.0921 0x01c8  wcncsvc - ok
12:45:05.0011 0x01c8  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:45:05.0040 0x01c8  WcsPlugInService - ok
12:45:05.0086 0x01c8  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
12:45:05.0115 0x01c8  Wd - ok
12:45:05.0255 0x01c8  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:45:05.0276 0x01c8  Wdf01000 - ok
12:45:05.0460 0x01c8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:45:05.0486 0x01c8  WdiServiceHost - ok
12:45:05.0499 0x01c8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:45:05.0502 0x01c8  WdiSystemHost - ok
12:45:05.0605 0x01c8  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
12:45:05.0685 0x01c8  WebClient - ok
12:45:05.0824 0x01c8  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:45:05.0857 0x01c8  Wecsvc - ok
12:45:05.0935 0x01c8  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:45:05.0943 0x01c8  wercplsupport - ok
12:45:06.0082 0x01c8  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:45:06.0117 0x01c8  WerSvc - ok
12:45:06.0308 0x01c8  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
12:45:06.0336 0x01c8  WfpLwf - ok
12:45:06.0367 0x01c8  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:45:06.0402 0x01c8  WIMMount - ok
12:45:06.0480 0x01c8  WinDefend - ok
12:45:06.0531 0x01c8  WinHttpAutoProxySvc - ok
12:45:06.0736 0x01c8  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:45:06.0744 0x01c8  Winmgmt - ok
12:45:07.0112 0x01c8  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
12:45:07.0208 0x01c8  WinRM - ok
12:45:07.0429 0x01c8  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUSB          C:\Windows\system32\DRIVERS\WinUSB.sys
12:45:07.0463 0x01c8  WinUSB - ok
12:45:07.0673 0x01c8  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:45:07.0755 0x01c8  Wlansvc - ok
12:45:08.0460 0x01c8  [ 98F138897EF4246381D197CB81846D62, A9FA88475AFBB8883297708608EC7C1AC29F229C3299A84D557172604813A18C ] wlidsvc         c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:45:08.0530 0x01c8  wlidsvc - ok
12:45:08.0584 0x01c8  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
12:45:08.0610 0x01c8  WmiAcpi - ok
12:45:08.0769 0x01c8  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:45:08.0848 0x01c8  wmiApSrv - ok
12:45:08.0954 0x01c8  WMPNetworkSvc - ok
12:45:09.0050 0x01c8  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:45:09.0083 0x01c8  WPCSvc - ok
12:45:09.0121 0x01c8  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:45:09.0152 0x01c8  WPDBusEnum - ok
12:45:09.0238 0x01c8  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:45:09.0262 0x01c8  ws2ifsl - ok
12:45:09.0347 0x01c8  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
12:45:09.0351 0x01c8  wscsvc - ok
12:45:09.0357 0x01c8  WSearch - ok
12:45:09.0686 0x01c8  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:45:09.0737 0x01c8  wuauserv - ok
12:45:09.0828 0x01c8  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:45:09.0856 0x01c8  WudfPf - ok
12:45:10.0025 0x01c8  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:45:10.0038 0x01c8  WUDFRd - ok
12:45:10.0112 0x01c8  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:45:10.0182 0x01c8  wudfsvc - ok
12:45:10.0282 0x01c8  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\Windows\System32\wwansvc.dll
12:45:10.0308 0x01c8  WwanSvc - ok
12:45:12.0025 0x01c8  X6va006 - ok
12:45:15.0055 0x01c8  X6va011 - ok
12:45:15.0079 0x01c8  X6va015 - ok
12:45:15.0112 0x01c8  [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
12:45:15.0121 0x01c8  yukonw7 - ok
12:45:15.0133 0x01c8  ================ Scan global ===============================
12:45:15.0149 0x01c8  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
12:45:15.0192 0x01c8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
12:45:15.0206 0x01c8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
12:45:15.0228 0x01c8  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
12:45:15.0272 0x01c8  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
12:45:15.0280 0x01c8  [ Global ] - ok
12:45:15.0280 0x01c8  ================ Scan MBR ==================================
12:45:15.0286 0x01c8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:45:15.0539 0x01c8  \Device\Harddisk0\DR0 - ok
12:45:15.0586 0x01c8  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
12:45:36.0902 0x01c8  \Device\Harddisk1\DR1 - ok
12:45:36.0903 0x01c8  ================ Scan VBR ==================================
12:45:36.0926 0x01c8  [ FFAA73DD120CFC755A01F83A423DCE9D ] \Device\Harddisk0\DR0\Partition1
12:45:36.0948 0x01c8  \Device\Harddisk0\DR0\Partition1 - ok
12:45:36.0970 0x01c8  [ 7B69EB8AA4303A6103CC4B4598000F02 ] \Device\Harddisk0\DR0\Partition2
12:45:36.0987 0x01c8  \Device\Harddisk0\DR0\Partition2 - ok
12:45:37.0055 0x01c8  [ 0EBA85F166783D2F34DAE1E26D95DFC8 ] \Device\Harddisk1\DR1\Partition1
12:45:37.0378 0x01c8  \Device\Harddisk1\DR1\Partition1 - ok
12:45:37.0443 0x01c8  AV detected via SS2: Kaspersky Anti-Virus, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2012\wmiav.exe ( 12.0.0.374 ), 0x41000 ( enabled : updated )
12:45:37.0473 0x01c8  Win FW state via NFP2: enabled
12:45:40.0268 0x01c8  ============================================================
12:45:40.0268 0x01c8  Scan finished
12:45:40.0268 0x01c8  ============================================================
12:45:40.0282 0x08dc  Detected object count: 0
12:45:40.0282 0x08dc  Actual detected object count: 0
 

 

For the Eset scan, I'll post that later on.  I need to step out to do something.

 

 



#6 CalusBlade

CalusBlade
  • Topic Starter

  • Members
  • 538 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 05 January 2014 - 06:20 PM

Alright I didn't get the log but nothing found.  It seems alittle sluggish, I guessing its due to be deleting about 300+GB worth of files that I still had in my computer.  I'm gonna defragment and see what happens.

 

On a side note, how do I fix the inability to click post.  when i left click, nothing happens, I need to open into a new tab and post it form there.

 

Edit:  I notice something.  Some words on some forum sites have a hot link on them.  Usually they don't have them where I go.

 

Edit 2:  Never mind.  I found the source that caused all the problems.  It seems an add-on decided to install itself without permission which then caused me to accidentally click on the ads.  And this caused this problem.


Edited by CalusBlade, 05 January 2014 - 06:57 PM.


#7 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:39 AM

Posted 06 January 2014 - 08:19 AM

Lets run another scan on the machine.


 

Please download Dr.Web CureIt and save it to your desktop. DO NOT perform a scan yet.
alternate download link
Note: The file will be randomly named (i.e. 5mkuvc4z.exe).

Reboot your computer in "Safe Mode" using the F8
method. To do this, restart your computer and after hearing your
computer beep once during startup (but before the Windows icon appears)
press the F8 key repeatedly. A menu will appear with several options.
Use the arrow keys to navigate and select the option to run Windows in
"Safe Mode".

Scan with Dr.Web CureIt as follows:

  • Double-click on the randomly named file to open the program and click Start. (There is no need to update if you just downloaded the most current version
  • Read the anti-virus check by DrWeb scanner prompt and click Ok where asked to Start scan now? Allow the setup.exe to load if asked by any of your security programs.
  • The Express scan will automatically begin.
    (This is a short scan of files currently running in memory, boot sectors, and targeted folders).
  • If prompted to dowload the Full version Free Trial, ignore and click the X to close the window.
  • If an infected object is found, you will be prompted to move anything that cannot be cured. Click Yes to All. (This will move any detected files to the C:\Documents and Settings\userprofile\DoctorWeb\Quarantine folder if they can't be cured)
  • After the Express Scan is finished, put a check next to Complete scan to scan all local disks and removable media.
  • In the top menu, click Settings > Change settings, and uncheck "Heuristic analysis" under the "Scanning" tab, then click Apply, Ok.
  • Back at the main window, click the green arrow "Start Scanning" button on the right under the Dr.Web logo.
  • Please be patient as this scan could take a long time to complete.
  • When the scan has finished, a message will be displayed at the bottom indicating if any viruses were found.
  • Click Select All, then choose Cure > Move incurable.
  • In the top menu, click file and choose save report list.
  • Save the DrWeb.csv report to your desktop.
  • Exit Dr.Web Cureit when done.
  • Important! Reboot your computer because it could be possible that files in use will be moved/deleted during reboot.
  • After reboot, post the contents of the log from Dr.Web in your next reply. (You can use Notepad to open the DrWeb.cvs report)

 

 

 

 

 

 

 

 

 



#8 CalusBlade

CalusBlade
  • Topic Starter

  • Members
  • 538 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 06 January 2014 - 10:55 PM

Alright so it wouldn't let me scan with that version.  It says something about my licenses expiring.  I downloaded the other version that it sent me too and used that to scan.  It found nothing.



#9 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:39 AM

Posted 06 January 2014 - 11:05 PM

How is your machine running?



#10 CalusBlade

CalusBlade
  • Topic Starter

  • Members
  • 538 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 06 January 2014 - 11:21 PM

It seems fine now.  Don't notice anything strange anymore.  Thanks for the help.



#11 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:39 AM

Posted 06 January 2014 - 11:27 PM

Does your version of kaspersky have a firewall ? If so you need to disable the windows firewall.

 

 

Now that we are done we need to clean up the disinfection tools we used along the way.
Download DelFix by "Xplode" to your Desktop.
Right Click the tool and Run as Admin ( Xp Users Double Click)

Put a check mark next the items below:

 

 

  • Remove disinfection tools
  • Create registry backup
  • Purge System Restore

Now click on "Run" button.
Allow the program to complete its work.
All the tools we used will be removed.
Tool will create and open a log report (DelFix.txt)
Note: The report can be located at the following location C:\DelFix.txt



#12 CalusBlade

CalusBlade
  • Topic Starter

  • Members
  • 538 posts
  • OFFLINE
  •  
  • Local time:11:39 AM

Posted 09 January 2014 - 05:52 AM

# DelFix v10.6 - Logfile created 09/01/2014 at 05:51:29
# Updated 11/11/2013 by Xplode
# Username : Installer - INSTALLER-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : \Qoobox
Deleted : \JRT
Deleted : \AdwCleaner
Deleted : C:\Users\Installer\DoctorWeb
Deleted : C:\Users\Installer\Desktop\RK_Quarantine
Deleted : \TDSSKiller.2.8.16.0_05.01.2014_12.42.18_log.txt
Deleted : \TDSSKiller.2.8.16.0_05.01.2014_12.43.04_log.txt
Deleted : \TDSSKiller.3.0.0.19_05.01.2014_12.43.40_log.txt
Deleted : C:\Users\Installer\Desktop\JRT.txt
Deleted : C:\Users\Installer\Desktop\Rkill.txt
Deleted : C:\Users\Installer\Desktop\RKreport[0]_S_06202013_082126.txt
Deleted : C:\Users\Installer\Desktop\RKreport[0]_S_07042013_121239.txt
Deleted : HKCU\Software\IDAVLab
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR

~ Creating registry backup ... OK

~ Cleaning system restore ...

Deleted : RP #404 [Windows Update | 01/07/2014 18:32:54]

New restore point created !

########## - EOF - ##########
 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users