Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Firewall Problems


  • Please log in to reply
17 replies to this topic

#1 iamifk

iamifk

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 06 February 2014 - 03:30 PM

Mod Edit:  Split from http://www.bleepingcomputer.com/forums/t/464864/windows-firewall/ - Hamluis.

 

 

sir cant start my windows firewall. after running the FSS.exe i am getting the following report.please help me out through it

 

 

Farbar Service Scanner Version: 02-02-2014
Ran by irfan (administrator) on 07-02-2014 at 01:43:06
Running from "C:\Users\irfan\Downloads"
Microsoft Windows 7 Home Basic  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
WAN connected
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.
 
 
Firewall Disabled Policy: 
==================
"HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile" registry key does not exist.
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend: "%ProgramFiles(x86)%\Windows Defender\mpsvc.dll".
 
 
Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
 
 
Other Services:
==============
Checking Start type of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.
Checking ImagePath of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.
Checking ServiceDll of iphlpsvc: ATTENTION!=====> Unable to open iphlpsvc registry key. The service key does not exist.
 
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.
Checking FirewallRules of SharedAccess: ATTENTION!=====> Unable to open "SharedAccess\Defaults\FirewallPolicy\FirewallRules" registry key. The key does not exist.
Checking FirewallRules of SharedAccess: ATTENTION!=====> Unable to open "SharedAccess\Parameters\FirewallPolicy\FirewallRules" registry key. The key does not exist.
 
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
 
ATTENTION!=====> C:\Program Files\Windows Defender\MpSvc.dll Reparse point on file detected.
 
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
 
 
**** End of log ****

Edited by hamluis, 06 February 2014 - 06:42 PM.
PM sent new OP - Hamluis.


BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 55,754 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:02:58 AM

Posted 06 February 2014 - 06:47 PM

Please download MiniToolBox  , save it to your desktop and run it.
 
Checkmark the following checkboxes:
  List last 10 Event Viewer log
  List Installed Programs
  List Users, Partitions and Memory size.
 
Click Go and paste the content into your next post.
 
Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link of the snapshot in your next post.
 
Louis



#3 Greg62702

Greg62702

  • Banned
  • 717 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:58 AM

Posted 06 February 2014 - 10:44 PM

If you are not using the computer outside of your LAN, you really need to keep the Firewall off.  As for it not working, it helps to go through the checks for making sure that you do not have a third party Internet Security program, that is forcing Windows Firewall into a disabled mode.  Also Malware can cause the firewall to be shut down, and you not able to turn it back on.

 

The bad thing is that with you running Windows 7 Home, you are limited in getting into the nuts & bolts of Windows 7, by editing the Security Policy, which you can do with the Pro version of Windows 7.

 

See this KB article from Microsoft.  Try the Fix-It solution, to see if it corrects the problem.  http://support.microsoft.com/kb/2530126



#4 iamifk

iamifk
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 07 February 2014 - 12:09 PM

MiniToolBox by Farbar  Version: 23-01-2014
Ran by irfan (administrator) on 07-02-2014 at 22:38:52
Running from "C:\Users\irfan\Downloads"
Microsoft Windows 7 Home Basic  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (02/07/2014 10:23:44 PM) (Source: RasClient) (User: )
Description: CoId={5A08DA0E-7A9D-4F72-8B6E-F7B78684B737}: The user irfan-HP\irfan dialed a connection named Aircel Karnataka which has failed. The error code returned on failure is 734.
 
Error: (02/07/2014 10:23:37 PM) (Source: RasClient) (User: )
Description: CoId={2E41607A-2CB7-4906-ACA6-5DC5B1F1BDA5}: The user irfan-HP\irfan dialed a connection named Aircel Karnataka which has failed. The error code returned on failure is 734.
 
Error: (02/07/2014 10:23:31 PM) (Source: RasClient) (User: )
Description: CoId={F7DD7EA7-ADE8-4652-814E-E850527D00A4}: The user irfan-HP\irfan dialed a connection named Aircel Karnataka which has failed. The error code returned on failure is 734.
 
Error: (02/07/2014 10:23:24 PM) (Source: RasClient) (User: )
Description: CoId={1E0A8CC8-61E2-4E15-9299-E5532601615E}: The user irfan-HP\irfan dialed a connection named Aircel Karnataka which has failed. The error code returned on failure is 734.
 
Error: (02/07/2014 10:23:17 PM) (Source: RasClient) (User: )
Description: CoId={D1D04A9C-5533-40A7-A34A-E3638EB063E9}: The user irfan-HP\irfan dialed a connection named Aircel Karnataka which has failed. The error code returned on failure is 734.
 
Error: (02/07/2014 10:23:11 PM) (Source: RasClient) (User: )
Description: CoId={1F90A7D3-F14C-489F-B0A9-C318766A0F2A}: The user irfan-HP\irfan dialed a connection named Aircel Karnataka which has failed. The error code returned on failure is 734.
 
Error: (02/07/2014 10:23:03 PM) (Source: RasClient) (User: )
Description: CoId={0AA1B9F1-1A93-4ADB-BFB3-A3D356A38F4C}: The user irfan-HP\irfan dialed a connection named Aircel Karnataka which has failed. The error code returned on failure is 734.
 
Error: (02/07/2014 10:22:59 PM) (Source: RasClient) (User: )
Description: CoId={293BF789-3DF6-49E6-8125-7DD378C2A303}: The user irfan-HP\irfan dialed a connection named Aircel Karnataka which has failed. The error code returned on failure is 734.
 
Error: (02/07/2014 10:22:56 PM) (Source: RasClient) (User: )
Description: CoId={98947395-7D5C-4246-B6CC-C0DB51CE99F3}: The user irfan-HP\irfan dialed a connection named Aircel Karnataka which has failed. The error code returned on failure is 734.
 
Error: (02/07/2014 10:10:35 PM) (Source: RasClient) (User: )
Description: CoId={CF663586-B545-4C25-AC42-7A30BFE7AF6E}: The user irfan-HP\irfan dialed a connection named Aircel Karnataka which has failed. The error code returned on failure is 633.
 
 
System errors:
=============
Error: (02/07/2014 09:56:31 PM) (Source: Service Control Manager) (User: )
Description: The WinDefend service terminated with the following error: 
%%126
 
Error: (02/07/2014 09:54:29 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
 
Error: (02/07/2014 09:54:24 PM) (Source: Service Control Manager) (User: )
Description: The ICM_UpdaterService Disp service failed to start due to the following error: 
%%2
 
Error: (02/07/2014 09:54:23 PM) (Source: Service Control Manager) (User: )
Description: The Windows Firewall service terminated with service-specific error %%5.
 
Error: (02/07/2014 09:53:09 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error: 
%%5
 
Error: (02/07/2014 09:53:08 PM) (Source: Service Control Manager) (User: )
Description: The Windows Update service did not shut down properly after receiving a preshutdown control.
 
Error: (02/07/2014 09:49:17 PM) (Source: DCOM) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}
 
Error: (02/07/2014 08:15:22 PM) (Source: Service Control Manager) (User: )
Description: The WinDefend service terminated with the following error: 
%%126
 
Error: (02/07/2014 08:13:20 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
 
Error: (02/07/2014 08:13:12 PM) (Source: Service Control Manager) (User: )
Description: The ICM_UpdaterService Disp service failed to start due to the following error: 
%%2
 
 
Microsoft Office Sessions:
=========================
 
=========================== Installed Programs ============================
 
Absolute Reminder (Version: 2.0.0.17)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.197)
Adobe Flash Player 11 Plugin (Version: 11.5.502.146)
Adobe Help Manager (Version: 4.0.244)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Reader X (10.1.5) MUI (Version: 10.1.5)
Adobe Shockwave Player 11.6 (Version: 11.6.3.633)
Adobe Widget Browser (Version: 2.0 Build 348)
Adobe Widget Browser (Version: 2.0.348)
AuthenTec TrueAPI 64-bit (Version: 1.6.0.87)
AVG 2013 (Version: 13.0.3462)
AVG 2013 (Version: 13.0.3697)
AVG 2013 (Version: 2013.0.3462)
Bejeweled 3 (Version: 2.2.0.97)
Bing Bar (Version: 7.3.124.0)
BitTorrent (Version: 7.8.0.29039)
Blackhawk Striker 2 (Version: 2.2.0.95)
BlueStacks App Player (Version: 0.7.10.869)
BlueStacks Notification Center (Version: 0.7.10.869)
Broadcom 802.11 Wireless LAN Adapter (Version: 5.100.82.140)
Broadcom Bluetooth Software (Version: 6.5.1.2300)
CCleaner (Version: 3.23)
Chuzzle Deluxe (Version: 2.2.0.95)
Cradle of Rome 2 (Version: 2.2.0.98)
CyberLink PowerDVD (Version: 10.0.5.3817)
CyberLink YouCam (Version: 3.5.4.5822)
D3DX10 (Version: 15.4.2368.0902)
Dora's World Adventure (Version: 2.2.0.95)
Dropbox (Version: 2.4.11)
eBay Icon
ESU for Microsoft Windows 7 SP1 (Version: 5.1.3)
Evernote v. 4.5.2 (Version: 4.5.2.5904)
Ewisoft Template Builder 1.1
Facebook Video Calling 2.0.0.447 (Version: 2.0.447)
Farm Frenzy (Version: 2.2.0.98)
Farmscapes (Version: 2.2.0.98)
Final Drive Fury (Version: 2.2.0.95)
Foxit Reader (Version: 5.4.5.124)
Google Drive (Version: 1.13.5782.599)
Google Earth (Version: 6.2.2.6613)
Google Talk (remove only)
Google Talk Plugin (Version: 4.9.1.16010)
Google Update Helper (Version: 1.3.22.3)
Hewlett-Packard ACLM.NET v1.2.1.1 (Version: 1.00.0000)
Hoyle Card Games (Version: 2.2.0.95)
HP 3D DriveGuard (Version: 4.2.9.1)
HP Auto (Version: 1.0.12935.3667)
HP Connection Manager (Version: 4.1.25.1)
HP CoolSense (Version: 2.10.51)
HP Customer Experience Enhancements (Version: 6.0.1.8)
HP Documentation (Version: 1.1.0.0)
HP Games (Version: 1.0.2.5)
HP Launch Box (Version: 1.1.5)
HP On Screen Display (Version: 1.3.5)
HP Power Manager (Version: 1.4.8)
HP Quick Launch (Version: 2.7.2)
HP Recovery Manager (Version: 2.0.0)
HP Security Assistant (Version: 3.0.3)
HP Setup (Version: 9.1.15430.4033)
HP SimplePass PE (Version: 6.0.100.272)
HP Software Framework (Version: 4.6.10.1)
HP Support Assistant (Version: 7.0.39.15)
IDT Audio (Version: 1.0.6395.0)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 8.0.2.1410)
Intel® OpenCL CPU Runtime
Intel® Processor Graphics (Version: 8.15.10.2712)
Intel® Rapid Start Technology (Version: 1.0.0.1021)
Intel® Rapid Storage Technology (Version: 11.1.0.1006)
Intel® USB 3.0 eXtensible Host Controller Driver (Version: 1.0.3.214)
Intel® Trusted Connect Service Client (Version: 1.23.605.1)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Jewel Match 3 (Version: 2.2.0.98)
Jewel Quest Mysteries: The Seventh Gate Collector's Edition (Version: 2.2.0.98)
John Deere Drive Green (Version: 2.2.0.95)
John's Background Switcher 4.6 (Version: 4.6)
Junk Mail filter update (Version: 15.4.3502.0922)
K-Lite Codec Pack 9.3.0 (Full) (Version: 9.3.0)
Letters from Nowhere 2 (Version: 2.2.0.97)
Luxor HD (Version: 2.2.0.98)
Macromedia Extension Manager (Version: 1.7.240)
Mah Jong Medley (Version: 2.2.0.95)
Mesh Runtime (Version: 15.4.5722.2)
mHotspot version 7.5.0.0 (Version: 7.5.0.0)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Save as PDF Add-in for 2007 Microsoft Office programs (Version: 12.0.4518.1014)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1)
Microsoft_VC100_CRT_SP1_x86 (Version: 10.0.40219.1)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
MMX377G 3G USB Manager v06.100413.377G
Mozilla Firefox 26.0 (x86 en-US) (Version: 26.0)
Mozilla Maintenance Service (Version: 26.0)
MSVC80_x64_v2 (Version: 1.0.3.0)
MSVC80_x86_v2 (Version: 1.0.3.0)
MSVC90_x64 (Version: 1.0.1.2)
MSVC90_x86 (Version: 1.0.1.2)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nokia Connectivity Cable Driver (Version: 7.1.92.0)
opensource (Version: 1.0.14960.3876)
PC Connectivity Solution (Version: 12.0.48.0)
PDF Settings CS6 (Version: 11.0)
Penguins! (Version: 2.2.0.98)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.98)
PlayReady PC Runtime x86 (Version: 1.3.0)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.97)
Polar Golfer (Version: 2.2.0.98)
RealDownloader (Version: 1.3.3)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealPlayer (Version: 16.0.3)
Realtek Ethernet Controller Driver (Version: 7.49.927.2011)
Realtek PCIE Card Reader (Version: 6.1.7601.27012)
RealUpgrade 1.1 (Version: 1.1.0)
RollerCoaster Tycoon 3: Platinum (Version: 2.2.0.98)
Samsung Networking Wizard (Version: 1.0.10091.1)
SAMSUNG USB Driver for Mobile Phones (Version: 1.3.2000.0)
Savevid (Version: 0.0.0.1011)
Search Protect (Version: 2.9.65.0)
Shipra's Dictionary 1.0
Skype Click to Call (Version: 6.12.13601)
Skype™ 6.6 (Version: 6.6.106)
swMSM (Version: 12.0.0.1)
Synaptics ClickPad Driver (Version: 16.0.5.1)
The Treasures of Mystery Island: The Ghost Ship (Version: 2.2.0.98)
tools-freebsd (Version: 8.4.4.14247)
tools-linux (Version: 8.4.4.14247)
tools-netware (Version: 8.4.4.14247)
tools-solaris (Version: 8.4.4.14247)
tools-windows (Version: 8.4.4.14247)
tools-winPre2k (Version: 8.4.4.14247)
Torch (Version: 29.0.0.5503)
Torchlight (Version: 2.2.0.98)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Installer for WildTangent Games App
VIP Access SDK (1.1.0.4)  (Version: 1.1.0.4)
Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.98)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VMware Workstation (Version: 7.1.2.14247)
WampServer 2.0
WildTangent Games App (HP Games) (Version: 4.0.5.36)
Windows Driver Package - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (Version: 05/31/2012 7.1.2.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinZip 17.0 (Version: 17.0.10381)
WordWeb (Version: 6)
Zuma's Revenge (Version: 2.2.0.98)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 76%
Total physical RAM: 3998.31 MB
Available physical RAM: 930.65 MB
Total Pagefile: 7994.8 MB
Available Pagefile: 4111.21 MB
Total Virtual: 4095.88 MB
Available Virtual: 3969.59 MB
 
========================= Partitions: =====================================
 
1 Drive c: (Irfan) (Fixed) (Total:445.86 GB) (Free:308.94 GB) NTFS
2 Drive d: (Recovery) (Fixed) (Total:19.6 GB) (Free:2.13 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\IRFAN-HP
 
__vmware_user__          Administrator            Guest                    
irfan                    
 
 
**** End of log ****


#5 hamluis

hamluis

    Moderator


  • Moderator
  • 55,754 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:02:58 AM

Posted 07 February 2014 - 12:17 PM

Search Protect (Version: 2.9.65.0)
 
Malware, moved topic to Am I infected.
 
Louis


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:58 AM

Posted 07 February 2014 - 12:22 PM

Hello iamifk, running these should remove this


Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 iamifk

iamifk
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 07 February 2014 - 12:30 PM

22:56:08.0716 0x28b4  TDSS rootkit removing tool 3.0.0.22 Feb  3 2014 16:45:35
22:56:18.0606 0x28b4  ============================================================
22:56:18.0606 0x28b4  Current date / time: 2014/02/07 22:56:18.0606
22:56:18.0606 0x28b4  SystemInfo:
22:56:18.0606 0x28b4  
22:56:18.0606 0x28b4  OS Version: 6.1.7601 ServicePack: 1.0
22:56:18.0606 0x28b4  Product type: Workstation
22:56:18.0606 0x28b4  ComputerName: IRFAN-HP
22:56:18.0607 0x28b4  UserName: irfan
22:56:18.0607 0x28b4  Windows directory: C:\Windows
22:56:18.0607 0x28b4  System windows directory: C:\Windows
22:56:18.0607 0x28b4  Running under WOW64
22:56:18.0607 0x28b4  Processor architecture: Intel x64
22:56:18.0607 0x28b4  Number of processors: 4
22:56:18.0607 0x28b4  Page size: 0x1000
22:56:18.0607 0x28b4  Boot type: Normal boot
22:56:18.0607 0x28b4  ============================================================
22:56:18.0859 0x28b4  KLMD registered as C:\Windows\system32\drivers\51858349.sys
22:56:18.0970 0x28b4  System UUID: {D301A5E4-C75F-9B61-AD1C-B2E1BF995EB4}
22:56:19.0414 0x28b4  Drive \Device\Harddisk0\DR0 - Size: 0x7470900000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:56:19.0414 0x28b4  Drive \Device\Harddisk1\DR1 - Size: 0x100000000 (4.00 Gb), SectorSize: 0x200, Cylinders: 0x20A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:56:19.0424 0x28b4  ============================================================
22:56:19.0424 0x28b4  \Device\Harddisk0\DR0:
22:56:19.0424 0x28b4  MBR partitions:
22:56:19.0424 0x28b4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
22:56:19.0424 0x28b4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x37BB7800
22:56:19.0424 0x28b4  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x37C1B800, BlocksNum 0x2732800
22:56:19.0424 0x28b4  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x3A34E000, BlocksNum 0x36000
22:56:19.0424 0x28b4  \Device\Harddisk1\DR1:
22:56:19.0424 0x28b4  MBR partitions:
22:56:19.0424 0x28b4  ============================================================
22:56:19.0426 0x28b4  C: <-> \Device\Harddisk0\DR0\Partition2
22:56:19.0427 0x28b4  D: <-> \Device\Harddisk0\DR0\Partition3
22:56:19.0427 0x28b4  ============================================================
22:56:19.0427 0x28b4  Initialize success
22:56:19.0427 0x28b4  ============================================================
22:56:22.0901 0x0cf4  ============================================================
22:56:22.0901 0x0cf4  Scan started
22:56:22.0901 0x0cf4  Mode: Manual; 
22:56:22.0901 0x0cf4  ============================================================
22:56:22.0901 0x0cf4  KSN ping started
22:56:25.0851 0x0cf4  KSN ping finished: true
22:56:26.0389 0x0cf4  ================ Scan system memory ========================
22:56:26.0389 0x0cf4  System memory - ok
22:56:26.0393 0x0cf4  ================ Scan services =============================
22:56:26.0483 0x0cf4  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
22:56:26.0531 0x0cf4  1394ohci - ok
22:56:26.0561 0x0cf4  [ 899B7E724BF19F17978B6A37B864A277, F7D166DC5F7642D4B834B1E0D956929BA94F3E4D402989FC1A681A08FA1F86B6 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
22:56:26.0578 0x0cf4  Accelerometer - ok
22:56:26.0595 0x0cf4  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
22:56:26.0609 0x0cf4  ACPI - ok
22:56:26.0622 0x0cf4  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
22:56:26.0635 0x0cf4  AcpiPmi - ok
22:56:26.0642 0x0cf4  [ 3927397AC60D943DAF8808AFFED582B7, 2688254085C219E8CA9C5494ABDAD8FAE52533CEF7FA3C152715E0B78D591BCF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:56:26.0645 0x0cf4  AdobeARMservice - ok
22:56:26.0666 0x0cf4  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
22:56:26.0691 0x0cf4  adp94xx - ok
22:56:26.0709 0x0cf4  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
22:56:26.0731 0x0cf4  adpahci - ok
22:56:26.0741 0x0cf4  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
22:56:26.0762 0x0cf4  adpu320 - ok
22:56:26.0768 0x0cf4  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:56:26.0772 0x0cf4  AeLookupSvc - ok
22:56:26.0793 0x0cf4  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
22:56:26.0807 0x0cf4  AFD - ok
22:56:26.0812 0x0cf4  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
22:56:26.0827 0x0cf4  agp440 - ok
22:56:26.0833 0x0cf4  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
22:56:26.0837 0x0cf4  ALG - ok
22:56:26.0842 0x0cf4  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:56:26.0854 0x0cf4  aliide - ok
22:56:26.0859 0x0cf4  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
22:56:26.0872 0x0cf4  amdide - ok
22:56:26.0878 0x0cf4  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
22:56:26.0895 0x0cf4  AmdK8 - ok
22:56:26.0901 0x0cf4  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
22:56:26.0918 0x0cf4  AmdPPM - ok
22:56:26.0926 0x0cf4  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:56:26.0941 0x0cf4  amdsata - ok
22:56:26.0950 0x0cf4  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
22:56:26.0968 0x0cf4  amdsbs - ok
22:56:26.0973 0x0cf4  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:56:26.0975 0x0cf4  amdxata - ok
22:56:27.0038 0x0cf4  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
22:56:27.0064 0x0cf4  AppID - ok
22:56:27.0071 0x0cf4  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:56:27.0073 0x0cf4  AppIDSvc - ok
22:56:27.0079 0x0cf4  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
22:56:27.0082 0x0cf4  Appinfo - ok
22:56:27.0089 0x0cf4  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
22:56:27.0105 0x0cf4  arc - ok
22:56:27.0112 0x0cf4  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
22:56:27.0129 0x0cf4  arcsas - ok
22:56:27.0149 0x0cf4  [ 108FB6DDB69E537A2EA53F425363FAE5, B12A9F5338D39805E08A44A335FF7AA77F2266F535A2F5C8412CC746C75E5B1D ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:56:27.0166 0x0cf4  aspnet_state - ok
22:56:27.0170 0x0cf4  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:56:27.0172 0x0cf4  AsyncMac - ok
22:56:27.0176 0x0cf4  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
22:56:27.0191 0x0cf4  atapi - ok
22:56:27.0222 0x0cf4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:56:27.0244 0x0cf4  AudioEndpointBuilder - ok
22:56:27.0266 0x0cf4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:56:27.0282 0x0cf4  AudioSrv - ok
22:56:27.0432 0x0cf4  [ 4DB93F4DB7077801D2D82013506AC1D0, 3D71655D1557021D5D828E37EAFDBA35C631061E48D64B9D376746F8FCC760B3 ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
22:56:27.0562 0x0cf4  AVGIDSAgent - ok
22:56:27.0579 0x0cf4  [ 92B7689FBC131E143421A19C18320E34, D3A323015790355070A380731CA56547F518F8AF800BC71670481A646C8FEEB3 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
22:56:27.0597 0x0cf4  AVGIDSDriver - ok
22:56:27.0602 0x0cf4  [ C8D9EEACF266512C1FA52E2ECF5AD944, 01972886F4324C55BE4450F2E18F263FBF0BE7525A9390714216E6C7A1827B1D ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
22:56:27.0604 0x0cf4  AVGIDSHA - ok
22:56:27.0614 0x0cf4  [ FACD18A89FDEBC35C85CAF762B294BE2, FD6EBE87ACA6CC017AB7ED886B2BC13CA05BDA38E4B7E8A63F33EF7E5C755BB8 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
22:56:27.0631 0x0cf4  Avgldx64 - ok
22:56:27.0646 0x0cf4  [ 29FCDEAC6086FB7E55344B51E35D99CE, 06408D79DF92B8A31DE0CA518BD93CA211D3192496CA3783762F289549F8F615 ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
22:56:27.0654 0x0cf4  Avgloga - ok
22:56:27.0662 0x0cf4  [ 85053293DCDE19829E8691A9E9E8A6FF, 1F115376DCF888C0ED928D5E7150CC4602510FDA785DE76912D415366D8D7393 ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
22:56:27.0666 0x0cf4  Avgmfx64 - ok
22:56:27.0671 0x0cf4  [ E191E443B0F7B05E784279A1C29B9D2A, 24B2B048C2CE5520A6B0E6702F55B5B65411E3E3D0857301E430EF2F9D7ECAFE ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
22:56:27.0674 0x0cf4  Avgrkx64 - ok
22:56:27.0684 0x0cf4  [ 69BD90E337625F96C718CACE7A9C9E29, 586948D6715ACB845D58BB5A73B8E5DA96A5415BC67D0508054F03D9A5C21768 ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
22:56:27.0703 0x0cf4  Avgtdia - ok
22:56:27.0713 0x0cf4  [ D646FA5135A1CD795877AFE9D17FA9ED, 2F97FBCD7BD75727A77C17D75D2482AE819D5D2EB9760D96412F9C20AA7D9473 ] avgwd           C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
22:56:27.0721 0x0cf4  avgwd - ok
22:56:27.0729 0x0cf4  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:56:27.0733 0x0cf4  AxInstSV - ok
22:56:27.0750 0x0cf4  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
22:56:27.0776 0x0cf4  b06bdrv - ok
22:56:27.0788 0x0cf4  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:56:27.0805 0x0cf4  b57nd60a - ok
22:56:27.0818 0x0cf4  [ F2E8CEFC8CF4D6454F4121C5FF93136A, DFD05AD328BD0FDD8BF44043C40084A6DF98BF6F5CEAE71BF793176AF6ADFBBB ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.exe
22:56:27.0823 0x0cf4  BBSvc - ok
22:56:27.0834 0x0cf4  [ 6E1BCC590C9D30FEE8FC14DBD053CE94, 4F698D399225A890B7FDCE3773E504B2880534ED1C0F4C37589568C44BA51743 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe
22:56:27.0841 0x0cf4  BBUpdate - ok
22:56:27.0848 0x0cf4  [ BC9E4469FE2CE605902D4C8BB09E8236, 13C906DEE487E46037F6DAB82CD65B49CECCA8A7BAC9E1FFD34767AA288A9B76 ] bcbtums         C:\Windows\system32\drivers\bcbtums.sys
22:56:27.0853 0x0cf4  bcbtums - ok
22:56:27.0999 0x0cf4  [ D41E6CCB9752F551049D2E0C437DD03D, 25D021CDE719CDFCF3645457DFE4D30248C5EBC943D9FEACE4D1B8DEAEFE2C7A ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
22:56:28.0126 0x0cf4  BCM43XX - ok
22:56:28.0138 0x0cf4  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:56:28.0141 0x0cf4  BDESVC - ok
22:56:28.0148 0x0cf4  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:56:28.0156 0x0cf4  Beep - ok
22:56:28.0183 0x0cf4  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
22:56:28.0202 0x0cf4  BFE - ok
22:56:28.0230 0x0cf4  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
22:56:28.0258 0x0cf4  BITS - ok
22:56:28.0263 0x0cf4  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
22:56:28.0273 0x0cf4  blbdrive - ok
22:56:28.0278 0x0cf4  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:56:28.0343 0x0cf4  bowser - ok
22:56:28.0349 0x0cf4  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
22:56:28.0366 0x0cf4  BrFiltLo - ok
22:56:28.0376 0x0cf4  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
22:56:28.0390 0x0cf4  BrFiltUp - ok
22:56:28.0399 0x0cf4  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
22:56:28.0404 0x0cf4  Browser - ok
22:56:28.0418 0x0cf4  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:56:28.0443 0x0cf4  Brserid - ok
22:56:28.0447 0x0cf4  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:56:28.0460 0x0cf4  BrSerWdm - ok
22:56:28.0464 0x0cf4  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:56:28.0478 0x0cf4  BrUsbMdm - ok
22:56:28.0482 0x0cf4  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:56:28.0494 0x0cf4  BrUsbSer - ok
22:56:28.0516 0x0cf4  [ 8E4204330FD4890E61C762955B22BEC2, ED4B62B726558C7F1669F012D3A2E9FCE2A736CC4AAAFC3DD900E54CF34C46BE ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
22:56:28.0530 0x0cf4  BstHdAndroidSvc - ok
22:56:28.0538 0x0cf4  [ DB34C651FA1E6888067AB1E44990FF10, BF80AE2D337D598162C3D4C497AC2886EB9887DF95985A362C9D29565358D23B ] BstHdDrv        C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
22:56:28.0541 0x0cf4  BstHdDrv - ok
22:56:28.0560 0x0cf4  [ 222501D38D101A3E088A5E9009F6FFB1, 3B0165702159F6081D355534FB7BA7393720B6B2D60EE54336E44799152D879C ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
22:56:28.0573 0x0cf4  BstHdLogRotatorSvc - ok
22:56:28.0580 0x0cf4  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
22:56:28.0583 0x0cf4  BthEnum - ok
22:56:28.0603 0x0cf4  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
22:56:28.0607 0x0cf4  BTHMODEM - ok
22:56:28.0614 0x0cf4  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
22:56:28.0631 0x0cf4  BthPan - ok
22:56:28.0655 0x0cf4  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
22:56:28.0673 0x0cf4  BTHPORT - ok
22:56:28.0681 0x0cf4  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
22:56:28.0685 0x0cf4  bthserv - ok
22:56:28.0691 0x0cf4  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
22:56:28.0694 0x0cf4  BTHUSB - ok
22:56:28.0720 0x0cf4  [ 93F0E54C65EF7FCB56287FA685E4C4B7, FF8644C2F9DC4CDB1BDBD7C25968225769B2DAE7E063BE0FEDCD51809C48CB4D ] btwampfl        C:\Windows\system32\drivers\btwampfl.sys
22:56:28.0741 0x0cf4  btwampfl - ok
22:56:28.0753 0x0cf4  [ D1F3C58892C621935947C0261BAEF3C0, AEDAF86A78F615C9124A968568FAA41AA145E6AAE910AB16E370B83BC67BB603 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
22:56:28.0760 0x0cf4  btwaudio - ok
22:56:28.0772 0x0cf4  [ 9C7A3858D87F3A2574C1D326CA6C1461, EA98D1DE3E1BF3BB952FC11511082EC1D398B448C712141B7FC35AFB7E40C4E5 ] btwavdt         C:\Windows\system32\DRIVERS\btwavdt.sys
22:56:28.0780 0x0cf4  btwavdt - ok
22:56:28.0833 0x0cf4  [ CE6AD9E2874D19069569F03C819B558C, 719326983BC442B416651DB51DD20AA32455B93A79C48B386913296F65B50E6F ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
22:56:28.0865 0x0cf4  btwdins - ok
22:56:28.0873 0x0cf4  [ AC602E3B6940B48E454D90545D85E8C3, EA178018C7EF6B99D7F1E68314DD9E54EFBDEADD9EF649E46975E546956232A9 ] BTWDPAN         C:\Windows\system32\DRIVERS\btwdpan.sys
22:56:28.0876 0x0cf4  BTWDPAN - ok
22:56:28.0880 0x0cf4  [ B1ACFD00CDD13B48D86F46BFEC153BF9, CD7BE27D93364735511CC714B85CB7D97E21E84E3C2361EC405BADAAEA550925 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
22:56:28.0882 0x0cf4  btwl2cap - ok
22:56:28.0886 0x0cf4  [ BB892C59D453E127797F8C5B203678DC, 9ED6E44B1E1050F275BEDE733970F455867147F6EC08CD6522E5AA2F55CB5B71 ] btwrchid        C:\Windows\system32\drivers\btwrchid.sys
22:56:28.0888 0x0cf4  btwrchid - ok
22:56:28.0893 0x0cf4  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:56:28.0897 0x0cf4  cdfs - ok
22:56:28.0905 0x0cf4  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:56:28.0910 0x0cf4  cdrom - ok
22:56:28.0917 0x0cf4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
22:56:28.0920 0x0cf4  CertPropSvc - ok
22:56:28.0929 0x0cf4  [ 74FFFB94D7FFD4750BD429CCB197720E, 15D94DA7B545F9B5591E87818C96AA1FE4D3DB60C2260C7E4F8F56DD32B4E147 ] Change Modem Device Service C:\Program Files (x86)\MMX353G 3G USB Manager\Driver\ChgService.exe
22:56:28.0935 0x0cf4  Change Modem Device Service - ok
22:56:28.0940 0x0cf4  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
22:56:28.0957 0x0cf4  circlass - ok
22:56:28.0973 0x0cf4  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
22:56:28.0983 0x0cf4  CLFS - ok
22:56:29.0006 0x0cf4  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:56:29.0039 0x0cf4  clr_optimization_v2.0.50727_32 - ok
22:56:29.0047 0x0cf4  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:56:29.0060 0x0cf4  clr_optimization_v2.0.50727_64 - ok
22:56:29.0076 0x0cf4  [ 6D7C8A951AF6AD6835C029B3CB88D333, 66F3D79887B2449B4C6912D1A258D1A96056888F51A8AA24FEDF37942AD5BDBB ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:56:29.0095 0x0cf4  clr_optimization_v4.0.30319_32 - ok
22:56:29.0101 0x0cf4  [ 86329C35FF23CFEF0FB6C0023BA06BCE, D915CE7AD564F97A1C3B047D5248B7EF67ADDC59687FBC90F1776C21DAA0D3FD ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:56:29.0107 0x0cf4  clr_optimization_v4.0.30319_64 - ok
22:56:29.0188 0x0cf4  [ BF0EBA757BA82A33ED0763695DB0CBAA, 5852FF51863E296FB4B7C5E0CA49DD961A05404E27C0F473520A66AA5ACC9CD6 ] CltMngSvc       C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe
22:56:29.0252 0x0cf4  CltMngSvc - ok
22:56:29.0274 0x0cf4  [ A4DC4C58F4B8D798E5F5D59099ADCF8A, 9EA32AAD464FFBE419F439C2761BB65556611E700589AD1EF3907962101159EA ] clwvd           C:\Windows\system32\DRIVERS\clwvd.sys
22:56:29.0288 0x0cf4  clwvd - ok
22:56:29.0292 0x0cf4  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
22:56:29.0302 0x0cf4  CmBatt - ok
22:56:29.0306 0x0cf4  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:56:29.0317 0x0cf4  cmdide - ok
22:56:29.0320 0x0cf4  cmnsusbser - ok
22:56:29.0337 0x0cf4  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
22:56:29.0350 0x0cf4  CNG - ok
22:56:29.0356 0x0cf4  [ F7CE5A215B0CF6929FEDC8857AAF699A, 62D46BFC1D6E0F51E0790078A04423E9EE6A9D827534D43FEF34196B9534A50A ] cnnctfy3        C:\Windows\system32\DRIVERS\cnnctfy3.sys
22:56:29.0370 0x0cf4  cnnctfy3 - ok
22:56:29.0374 0x0cf4  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
22:56:29.0376 0x0cf4  Compbatt - ok
22:56:29.0381 0x0cf4  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
22:56:29.0394 0x0cf4  CompositeBus - ok
22:56:29.0398 0x0cf4  COMSysApp - ok
22:56:29.0443 0x0cf4  [ 93CD080CE1F427A2258C5C2E1702986E, E5084189F539FE789D936A6DF21712DF0A6291F08412069166C7815F9348FA29 ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
22:56:29.0490 0x0cf4  cphs - ok
22:56:29.0519 0x0cf4  cpuz136 - ok
22:56:29.0522 0x0cf4  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
22:56:29.0534 0x0cf4  crcdisk - ok
22:56:29.0544 0x0cf4  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:56:29.0550 0x0cf4  CryptSvc - ok
22:56:29.0569 0x0cf4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:56:29.0584 0x0cf4  DcomLaunch - ok
22:56:29.0597 0x0cf4  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
22:56:29.0606 0x0cf4  defragsvc - ok
22:56:29.0612 0x0cf4  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:56:29.0616 0x0cf4  DfsC - ok
22:56:29.0629 0x0cf4  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:56:29.0638 0x0cf4  Dhcp - ok
22:56:29.0643 0x0cf4  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
22:56:29.0644 0x0cf4  discache - ok
22:56:29.0651 0x0cf4  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
22:56:29.0654 0x0cf4  Disk - ok
22:56:29.0664 0x0cf4  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:56:29.0669 0x0cf4  Dnscache - ok
22:56:29.0680 0x0cf4  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:56:29.0688 0x0cf4  dot3svc - ok
22:56:29.0697 0x0cf4  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
22:56:29.0702 0x0cf4  DPS - ok
22:56:29.0706 0x0cf4  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:56:29.0716 0x0cf4  drmkaud - ok
22:56:29.0748 0x0cf4  [ 53BD875C7C0808235BFB803C1A8BE009, E56CFA0BD65E09C5F6957E1BF89824A3DF53E715A5BAE5B649D85C3AFF23D2C4 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:56:29.0800 0x0cf4  DXGKrnl - ok
22:56:29.0808 0x0cf4  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
22:56:29.0813 0x0cf4  EapHost - ok
22:56:29.0966 0x0cf4  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
22:56:30.0107 0x0cf4  ebdrv - ok
22:56:30.0115 0x0cf4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
22:56:30.0118 0x0cf4  EFS - ok
22:56:30.0136 0x0cf4  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
22:56:30.0162 0x0cf4  elxstor - ok
22:56:30.0166 0x0cf4  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:56:30.0179 0x0cf4  ErrDev - ok
22:56:30.0196 0x0cf4  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
22:56:30.0207 0x0cf4  EventSystem - ok
22:56:30.0217 0x0cf4  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
22:56:30.0235 0x0cf4  exfat - ok
22:56:30.0244 0x0cf4  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:56:30.0261 0x0cf4  fastfat - ok
22:56:30.0285 0x0cf4  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
22:56:30.0304 0x0cf4  Fax - ok
22:56:30.0308 0x0cf4  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
22:56:30.0320 0x0cf4  fdc - ok
22:56:30.0325 0x0cf4  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
22:56:30.0328 0x0cf4  fdPHost - ok
22:56:30.0332 0x0cf4  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:56:30.0335 0x0cf4  FDResPub - ok
22:56:30.0341 0x0cf4  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:56:30.0344 0x0cf4  FileInfo - ok
22:56:30.0348 0x0cf4  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:56:30.0350 0x0cf4  Filetrace - ok
22:56:30.0353 0x0cf4  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
22:56:30.0362 0x0cf4  flpydisk - ok
22:56:30.0374 0x0cf4  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:56:30.0382 0x0cf4  FltMgr - ok
22:56:30.0419 0x0cf4  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
22:56:30.0458 0x0cf4  FontCache - ok
22:56:30.0464 0x0cf4  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:56:30.0466 0x0cf4  FontCache3.0.0.0 - ok
22:56:30.0520 0x0cf4  [ 3A5C8F2F3500833F614BB509A1270971, 8B48B9F7C194831FA003B7ABD34BA7ECB05417338A3CADDBAAB8BB58ADBDC396 ] FPLService      C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
22:56:30.0563 0x0cf4  FPLService - ok
22:56:30.0570 0x0cf4  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:56:30.0572 0x0cf4  FsDepends - ok
22:56:30.0576 0x0cf4  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:56:30.0578 0x0cf4  Fs_Rec - ok
22:56:30.0590 0x0cf4  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:56:30.0596 0x0cf4  fvevol - ok
22:56:30.0602 0x0cf4  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
22:56:30.0615 0x0cf4  gagp30kx - ok
22:56:30.0625 0x0cf4  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
22:56:30.0655 0x0cf4  GamesAppService - ok
22:56:30.0682 0x0cf4  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
22:56:30.0704 0x0cf4  gpsvc - ok
22:56:30.0713 0x0cf4  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:56:30.0717 0x0cf4  gupdate - ok
22:56:30.0723 0x0cf4  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:56:30.0726 0x0cf4  gupdatem - ok
22:56:30.0731 0x0cf4  [ 94D46DED293C216822FB39DF2EC6ADD4, 67C16482B6DFD3A490111EAF9ECBABC6D942A1252D66C1DDC6272CEE3D10C375 ] hcmon           C:\Windows\system32\drivers\hcmon.sys
22:56:30.0733 0x0cf4  hcmon - ok
22:56:30.0737 0x0cf4  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:56:30.0751 0x0cf4  hcw85cir - ok
22:56:30.0764 0x0cf4  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:56:30.0788 0x0cf4  HdAudAddService - ok
22:56:30.0795 0x0cf4  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
22:56:30.0799 0x0cf4  HDAudBus - ok
22:56:30.0803 0x0cf4  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
22:56:30.0814 0x0cf4  HidBatt - ok
22:56:30.0819 0x0cf4  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
22:56:30.0832 0x0cf4  HidBth - ok
22:56:30.0835 0x0cf4  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
22:56:30.0846 0x0cf4  HidIr - ok
22:56:30.0851 0x0cf4  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
22:56:30.0853 0x0cf4  hidserv - ok
22:56:30.0858 0x0cf4  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:56:30.0869 0x0cf4  HidUsb - ok
22:56:30.0874 0x0cf4  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:56:30.0878 0x0cf4  hkmsvc - ok
22:56:30.0888 0x0cf4  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:56:30.0895 0x0cf4  HomeGroupListener - ok
22:56:30.0904 0x0cf4  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:56:30.0910 0x0cf4  HomeGroupProvider - ok
22:56:30.0918 0x0cf4  [ BB1FC298BE53AAB1E110F6E786BD8AC5, C2DA2C3CE96D5F8B50013063B5EF7BED7478636896C709A7AF34855B2E69B9F1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
22:56:30.0920 0x0cf4  HP Support Assistant Service - ok
22:56:30.0945 0x0cf4  [ 7B8C1B09C11E8DB7C4480ABD7D17E821, 0E35FD439B24CEAD623A5D7319B865A6BCE6F1F3057671F62B4F844D8EC3D206 ] HPAuto          C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
22:56:30.0964 0x0cf4  HPAuto - ok
22:56:31.0003 0x0cf4  [ E07F8E78D08D9269E3365C2A4F637191, D409596D334F9C968240647694681C31E5AB8A7924FB48281F5A2D53E6A0021A ] hpCMSrv         C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
22:56:31.0033 0x0cf4  hpCMSrv - ok
22:56:31.0042 0x0cf4  [ C958976C7DAAF47084A33EBBC6E28B84, AAC98901E25911EA6FF65E95007CE2F75B31145ACFADF92CBA48BCAE54CD96EE ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
22:56:31.0045 0x0cf4  HPDrvMntSvc.exe - ok
22:56:31.0049 0x0cf4  [ D104FF402FC3DDB686E6DEF00334DB26, 6CCE56587C02ECE474C6BF959C4A6F752A1FF0B718FBE8EE4FD9755313A207C1 ] hpdskflt        C:\Windows\system32\drivers\hpdskflt.sys
22:56:31.0051 0x0cf4  hpdskflt - ok
22:56:31.0084 0x0cf4  [ 514455F6586473791C5C6B25BA4E1BAB, 0C2CAE8F35241F1B936C502AAB7C9303C643D898BAB1D060FCA1E6B3A7D9FDB9 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
22:56:31.0110 0x0cf4  hpqwmiex - ok
22:56:31.0118 0x0cf4  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
22:56:31.0131 0x0cf4  HpSAMD - ok
22:56:31.0135 0x0cf4  [ 55FFCBB036D7BE4BCA6FA1421203A27F, 5BB865FC631390F59AF5F2452D4D2DA47E34A49E194C8010E942F5A2013F3895 ] hpsrv           C:\Windows\system32\Hpservice.exe
22:56:31.0137 0x0cf4  hpsrv - ok
22:56:31.0142 0x0cf4  [ 2BEC76BDCD1BC080210325E7B5094834, 9CD9DF5C974C20F38423B07063A4F44E533B3B4EF39E01AC701C04BFC5F3EC53 ] HPWMISVC        C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
22:56:31.0144 0x0cf4  HPWMISVC - ok
22:56:31.0169 0x0cf4  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:56:31.0189 0x0cf4  HTTP - ok
22:56:31.0197 0x0cf4  hwdatacard - ok
22:56:31.0200 0x0cf4  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:56:31.0201 0x0cf4  hwpolicy - ok
22:56:31.0205 0x0cf4  hwusbdev - ok
22:56:31.0213 0x0cf4  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
22:56:31.0227 0x0cf4  i8042prt - ok
22:56:31.0248 0x0cf4  [ D1753C06EE17E29352B065EACF3F10D0, 4DD4C991FAA3CCF99DF8DC9F8F5DEEDEECD55977F0C3AA8C404DEFD21E32A62B ] iaStor          C:\Windows\system32\drivers\iaStor.sys
22:56:31.0261 0x0cf4  iaStor - ok
22:56:31.0268 0x0cf4  [ 545462D0DBE24AF379BA869B7C185CCD, 056F9D0D5FD4FEF37665A35A4029722FF60D02A69854E952DC361CC0E5CD26F9 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
22:56:31.0270 0x0cf4  IAStorDataMgrSvc - ok
22:56:31.0285 0x0cf4  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:56:31.0306 0x0cf4  iaStorV - ok
22:56:31.0311 0x0cf4  ICM_UpdaterService - ok
22:56:31.0338 0x0cf4  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:56:31.0390 0x0cf4  idsvc - ok
22:56:31.0860 0x0cf4  [ 3FB253E8059A1AAC3A8B83A31D094CC5, 4D4988BF7D81FB6D75CDB65E1E42AC72DA76D3F84712AA1A27428A6490E342D0 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
22:56:32.0257 0x0cf4  igfx - ok
22:56:32.0279 0x0cf4  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
22:56:32.0291 0x0cf4  iirsp - ok
22:56:32.0321 0x0cf4  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
22:56:32.0343 0x0cf4  IKEEXT - ok
22:56:32.0360 0x0cf4  [ 6C9FFFECA9FED31347D211C5D1FFBD2D, 36CF8B847FAED0D978B3169ED550CC958025902CAC1D7D304E2684B2483E72B8 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
22:56:32.0379 0x0cf4  IntcDAud - ok
22:56:32.0401 0x0cf4  [ 832CE330DD987227B7DEA8C03F22AEFA, 3DE64D9519D9D865D4C1AA7483D846F0154392B6685BDC451DEC7DA5EA0E2B2E ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
22:56:32.0418 0x0cf4  Intel® Capability Licensing Service Interface - ok
22:56:32.0422 0x0cf4  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
22:56:32.0433 0x0cf4  intelide - ok
22:56:32.0497 0x0cf4  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
22:56:32.0504 0x0cf4  intelppm - ok
22:56:32.0517 0x0cf4  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:56:32.0526 0x0cf4  IPBusEnum - ok
22:56:32.0537 0x0cf4  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:56:32.0568 0x0cf4  IpFilterDriver - ok
22:56:32.0581 0x0cf4  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
22:56:32.0600 0x0cf4  IPMIDRV - ok
22:56:32.0610 0x0cf4  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:56:32.0629 0x0cf4  IPNAT - ok
22:56:32.0634 0x0cf4  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:56:32.0637 0x0cf4  IRENUM - ok
22:56:32.0643 0x0cf4  [ 6DC22BDAA595BE00F19696E72F2F3312, B46B50395100D3A23663C56CC395A874130B72E314997AAD6C52F0C5C23364C4 ] irstrtdv        C:\Windows\system32\drivers\irstrtdv.sys
22:56:32.0657 0x0cf4  irstrtdv - ok
22:56:32.0703 0x0cf4  [ 205FD80EF4B9832F9763B9A187957260, 560410A01B4C2395F7129413C2460F6A0776DF52D08758E3AE68EC41FC79A2D3 ] irstrtsv        C:\Windows\SysWOW64\irstrtsv.exe
22:56:32.0711 0x0cf4  irstrtsv - ok
22:56:32.0718 0x0cf4  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:56:32.0733 0x0cf4  isapnp - ok
22:56:32.0748 0x0cf4  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
22:56:32.0778 0x0cf4  iScsiPrt - ok
22:56:32.0784 0x0cf4  [ 6BCEF45131C8B8E1C558BE540B190B3C, DFFED7FD9DCC15808184E65065DE6138FE010AC01217E5016B2D20A5B89AC570 ] iusb3hcs        C:\Windows\system32\drivers\iusb3hcs.sys
22:56:32.0786 0x0cf4  iusb3hcs - ok
22:56:32.0808 0x0cf4  [ F080EADA8715F811B58BD35BB774F2F9, 06D5A70CBA89561A71B9CB64D7A298767F098395411A7022F414C7D0AC89A44D ] iusb3hub        C:\Windows\system32\drivers\iusb3hub.sys
22:56:32.0840 0x0cf4  iusb3hub - ok
22:56:32.0874 0x0cf4  [ 0F1756D9396740F053221FA6260FCE66, 0B722BF6BCF66BBD49DE0E92555742976AB33319CF504461A50181BF7A77E886 ] iusb3xhc        C:\Windows\system32\drivers\iusb3xhc.sys
22:56:32.0919 0x0cf4  iusb3xhc - ok
22:56:32.0932 0x0cf4  [ DBD76BC1D498FE368F2C8CB76C3E00A4, CDFB082B57807CE89509A16D1C8A5BAEEC026EDD7068F5E359AA50557D2525DC ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
22:56:32.0938 0x0cf4  jhi_service - ok
22:56:32.0944 0x0cf4  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
22:56:32.0961 0x0cf4  kbdclass - ok
22:56:32.0967 0x0cf4  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
22:56:32.0981 0x0cf4  kbdhid - ok
22:56:32.0986 0x0cf4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
22:56:32.0989 0x0cf4  KeyIso - ok
22:56:32.0996 0x0cf4  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:56:33.0001 0x0cf4  KSecDD - ok
22:56:33.0010 0x0cf4  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:56:33.0017 0x0cf4  KSecPkg - ok
22:56:33.0023 0x0cf4  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:56:33.0037 0x0cf4  ksthunk - ok
22:56:33.0055 0x0cf4  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:56:33.0092 0x0cf4  KtmRm - ok
22:56:33.0106 0x0cf4  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
22:56:33.0116 0x0cf4  LanmanServer - ok
22:56:33.0125 0x0cf4  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:56:33.0132 0x0cf4  LanmanWorkstation - ok
22:56:33.0140 0x0cf4  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:56:33.0144 0x0cf4  lltdio - ok
22:56:33.0160 0x0cf4  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:56:33.0182 0x0cf4  lltdsvc - ok
22:56:33.0187 0x0cf4  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:56:33.0190 0x0cf4  lmhosts - ok
22:56:33.0204 0x0cf4  [ 86E4CC39C953D11EF57CF54C4DC78238, 076973CA22E8BA94877241EC39D97612C32F3E744E026FA0E518C4DDE8277A55 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:56:33.0215 0x0cf4  LMS - ok
22:56:33.0225 0x0cf4  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
22:56:33.0243 0x0cf4  LSI_FC - ok
22:56:33.0252 0x0cf4  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
22:56:33.0270 0x0cf4  LSI_SAS - ok
22:56:33.0277 0x0cf4  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
22:56:33.0293 0x0cf4  LSI_SAS2 - ok
22:56:33.0371 0x0cf4  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
22:56:33.0400 0x0cf4  LSI_SCSI - ok
22:56:33.0409 0x0cf4  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
22:56:33.0414 0x0cf4  luafv - ok
22:56:33.0419 0x0cf4  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
22:56:33.0436 0x0cf4  megasas - ok
22:56:33.0452 0x0cf4  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
22:56:33.0477 0x0cf4  MegaSR - ok
22:56:33.0484 0x0cf4  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
22:56:33.0487 0x0cf4  MEIx64 - ok
22:56:33.0500 0x0cf4  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
22:56:33.0516 0x0cf4  Microsoft Office Groove Audit Service - ok
22:56:33.0522 0x0cf4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
22:56:33.0527 0x0cf4  MMCSS - ok
22:56:33.0532 0x0cf4  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
22:56:33.0535 0x0cf4  Modem - ok
22:56:33.0541 0x0cf4  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:56:33.0544 0x0cf4  monitor - ok
22:56:33.0550 0x0cf4  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:56:33.0566 0x0cf4  mouclass - ok
22:56:33.0572 0x0cf4  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:56:33.0594 0x0cf4  mouhid - ok
22:56:33.0602 0x0cf4  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:56:33.0607 0x0cf4  mountmgr - ok
22:56:33.0616 0x0cf4  [ 3B9398E0146855B1DC0E3D9769C80F01, DF69DB5CA30A5577648635C27DD468AF98515D07DF379B3FFDCC6B40744EDE66 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:56:33.0807 0x0cf4  MozillaMaintenance - ok
22:56:33.0821 0x0cf4  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:56:33.0844 0x0cf4  mpio - ok
22:56:33.0853 0x0cf4  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:56:33.0857 0x0cf4  mpsdrv - ok
22:56:33.0897 0x0cf4  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:56:33.0922 0x0cf4  MpsSvc - ok
22:56:33.0930 0x0cf4  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:56:33.0947 0x0cf4  MRxDAV - ok
22:56:33.0955 0x0cf4  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:56:33.0961 0x0cf4  mrxsmb - ok
22:56:33.0973 0x0cf4  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:56:33.0982 0x0cf4  mrxsmb10 - ok
22:56:33.0988 0x0cf4  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:56:33.0992 0x0cf4  mrxsmb20 - ok
22:56:33.0996 0x0cf4  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:56:34.0007 0x0cf4  msahci - ok
22:56:34.0014 0x0cf4  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:56:34.0033 0x0cf4  msdsm - ok
22:56:34.0040 0x0cf4  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
22:56:34.0057 0x0cf4  MSDTC - ok
22:56:34.0063 0x0cf4  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:56:34.0073 0x0cf4  Msfs - ok
22:56:34.0077 0x0cf4  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:56:34.0078 0x0cf4  mshidkmdf - ok
22:56:34.0082 0x0cf4  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:56:34.0084 0x0cf4  msisadrv - ok
22:56:34.0093 0x0cf4  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:56:34.0107 0x0cf4  MSiSCSI - ok
22:56:34.0110 0x0cf4  msiserver - ok
22:56:34.0114 0x0cf4  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:56:34.0123 0x0cf4  MSKSSRV - ok
22:56:34.0127 0x0cf4  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:56:34.0129 0x0cf4  MSPCLOCK - ok
22:56:34.0132 0x0cf4  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:56:34.0134 0x0cf4  MSPQM - ok
22:56:34.0148 0x0cf4  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:56:34.0158 0x0cf4  MsRPC - ok
22:56:34.0164 0x0cf4  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
22:56:34.0166 0x0cf4  mssmbios - ok
22:56:34.0170 0x0cf4  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:56:34.0179 0x0cf4  MSTEE - ok
22:56:34.0183 0x0cf4  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
22:56:34.0195 0x0cf4  MTConfig - ok
22:56:34.0206 0x0cf4  [ 81AB6B6A13CD0FF378FC8EAE61B21E4D, 8FF26FF69F7606013781D239D20ABAEB46C2E115B68CEC96DE826B5A8466E8CA ] mtkmbim         C:\Windows\system32\DRIVERS\mtkmbim7_x64.sys
22:56:34.0212 0x0cf4  mtkmbim - ok
22:56:34.0218 0x0cf4  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
22:56:34.0220 0x0cf4  Mup - ok
22:56:34.0237 0x0cf4  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
22:56:34.0251 0x0cf4  napagent - ok
22:56:34.0265 0x0cf4  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:56:34.0274 0x0cf4  NativeWifiP - ok
22:56:34.0306 0x0cf4  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:56:34.0332 0x0cf4  NDIS - ok
22:56:34.0337 0x0cf4  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:56:34.0348 0x0cf4  NdisCap - ok
22:56:34.0352 0x0cf4  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:56:34.0363 0x0cf4  NdisTapi - ok
22:56:34.0368 0x0cf4  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:56:34.0371 0x0cf4  Ndisuio - ok
22:56:34.0379 0x0cf4  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:56:34.0395 0x0cf4  NdisWan - ok
22:56:34.0400 0x0cf4  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:56:34.0412 0x0cf4  NDProxy - ok
22:56:34.0417 0x0cf4  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:56:34.0428 0x0cf4  NetBIOS - ok
22:56:34.0439 0x0cf4  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:56:34.0446 0x0cf4  NetBT - ok
22:56:34.0451 0x0cf4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
22:56:34.0453 0x0cf4  Netlogon - ok
22:56:34.0467 0x0cf4  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
22:56:34.0479 0x0cf4  Netman - ok
22:56:34.0496 0x0cf4  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:56:34.0501 0x0cf4  NetMsmqActivator - ok
22:56:34.0508 0x0cf4  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:56:34.0512 0x0cf4  NetPipeActivator - ok
22:56:34.0529 0x0cf4  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
22:56:34.0542 0x0cf4  netprofm - ok
22:56:34.0550 0x0cf4  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:56:34.0554 0x0cf4  NetTcpActivator - ok
22:56:34.0560 0x0cf4  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:56:34.0563 0x0cf4  NetTcpPortSharing - ok
22:56:34.0569 0x0cf4  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
22:56:34.0581 0x0cf4  nfrd960 - ok
22:56:34.0595 0x0cf4  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:56:34.0604 0x0cf4  NlaSvc - ok
22:56:34.0609 0x0cf4  [ 4903177FC90E77ABEB19021451E9475E, D37E0D4F145822DE9AB74F9669D7C6D07EA026B40235DDB73720C09070A245FE ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
22:56:34.0622 0x0cf4  nmwcd - ok
22:56:34.0627 0x0cf4  [ E6844A4C97E5409BBE24BB4ED000320D, F12CEE6C88B379C00AA47F20F433288F5F3E902A8050E7DAF2D40EBBF4D16AFF ] nmwcdc          C:\Windows\system32\drivers\ccdcmbox64.sys
22:56:34.0640 0x0cf4  nmwcdc - ok
22:56:34.0644 0x0cf4  [ F59F8CF59F7905622686637177E2A828, 56BC38326308652593AC95D1B5037B55261AF330E68F00671F340A57368E7746 ] nmwcdnsucx64    C:\Windows\system32\drivers\nmwcdnsucx64.sys
22:56:34.0653 0x0cf4  nmwcdnsucx64 - ok
22:56:34.0664 0x0cf4  [ A0E7F80157AF77B1CEAA8ADD3A3E7D85, E69FBB3480B4A0921DE0EA6C0EDAB50F46A7EDCBAAE433F8404A2FE9D9AF92C9 ] nmwcdnsux64     C:\Windows\system32\drivers\nmwcdnsux64.sys
22:56:34.0679 0x0cf4  nmwcdnsux64 - ok
22:56:34.0684 0x0cf4  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:56:34.0697 0x0cf4  Npfs - ok
22:56:34.0701 0x0cf4  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
22:56:34.0704 0x0cf4  nsi - ok
22:56:34.0708 0x0cf4  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:56:34.0709 0x0cf4  nsiproxy - ok
22:56:34.0762 0x0cf4  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:56:34.0806 0x0cf4  Ntfs - ok
22:56:34.0811 0x0cf4  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
22:56:34.0820 0x0cf4  Null - ok
22:56:34.0836 0x0cf4  [ A85B4F2EF3A7304A5399EF0526423040, E45854691BA6AE36E53C2922CC93FF13DC2D84CBE7FE13A2F0B1CE1C16D1D158 ] NVENETFD        C:\Windows\system32\DRIVERS\nvm62x64.sys
22:56:34.0857 0x0cf4  NVENETFD - ok
22:56:34.0865 0x0cf4  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:56:34.0881 0x0cf4  nvraid - ok
22:56:34.0889 0x0cf4  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:56:34.0904 0x0cf4  nvstor - ok
22:56:34.0910 0x0cf4  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:56:34.0925 0x0cf4  nv_agp - ok
22:56:34.0944 0x0cf4  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:56:34.0991 0x0cf4  odserv - ok
22:56:34.0997 0x0cf4  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:56:35.0010 0x0cf4  ohci1394 - ok
22:56:35.0019 0x0cf4  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:56:35.0043 0x0cf4  ose - ok
22:56:35.0057 0x0cf4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:56:35.0068 0x0cf4  p2pimsvc - ok
22:56:35.0084 0x0cf4  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
22:56:35.0104 0x0cf4  p2psvc - ok
22:56:35.0112 0x0cf4  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
22:56:35.0129 0x0cf4  Parport - ok
22:56:35.0136 0x0cf4  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:56:35.0140 0x0cf4  partmgr - ok
22:56:35.0152 0x0cf4  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:56:35.0162 0x0cf4  PcaSvc - ok
22:56:35.0167 0x0cf4  [ 3FDE033DFB0D07F8B7D5C9A3044AA121, 2C23B4FA34BA3060884B0168A830DD395A3853855CD6DF4065FBB303DFB4A87E ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
22:56:35.0180 0x0cf4  pccsmcfd - ok
22:56:35.0192 0x0cf4  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
22:56:35.0202 0x0cf4  pci - ok
22:56:35.0207 0x0cf4  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
22:56:35.0297 0x0cf4  pciide - ok
22:56:35.0308 0x0cf4  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
22:56:35.0330 0x0cf4  pcmcia - ok
22:56:35.0335 0x0cf4  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:56:35.0337 0x0cf4  pcw - ok
22:56:35.0358 0x0cf4  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:56:35.0377 0x0cf4  PEAUTH - ok
22:56:35.0416 0x0cf4  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:56:35.0421 0x0cf4  PerfHost - ok
22:56:35.0505 0x0cf4  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
22:56:35.0550 0x0cf4  pla - ok
22:56:35.0571 0x0cf4  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:56:35.0585 0x0cf4  PlugPlay - ok
22:56:35.0591 0x0cf4  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:56:35.0595 0x0cf4  PNRPAutoReg - ok
22:56:35.0610 0x0cf4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:56:35.0620 0x0cf4  PNRPsvc - ok
22:56:35.0643 0x0cf4  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:56:35.0660 0x0cf4  PolicyAgent - ok
22:56:35.0671 0x0cf4  [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power           C:\Windows\system32\umpo.dll
22:56:35.0678 0x0cf4  Power - ok
22:56:35.0686 0x0cf4  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:56:35.0703 0x0cf4  PptpMiniport - ok
22:56:35.0708 0x0cf4  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
22:56:35.0725 0x0cf4  Processor - ok
22:56:35.0736 0x0cf4  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
22:56:35.0744 0x0cf4  ProfSvc - ok
22:56:35.0749 0x0cf4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
22:56:35.0751 0x0cf4  ProtectedStorage - ok
22:56:35.0760 0x0cf4  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:56:35.0765 0x0cf4  Psched - ok
22:56:35.0885 0x0cf4  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
22:56:35.0941 0x0cf4  ql2300 - ok
22:56:35.0949 0x0cf4  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
22:56:35.0969 0x0cf4  ql40xx - ok
22:56:35.0980 0x0cf4  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
22:56:35.0989 0x0cf4  QWAVE - ok
22:56:35.0994 0x0cf4  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:56:35.0996 0x0cf4  QWAVEdrv - ok
22:56:36.0000 0x0cf4  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:56:36.0011 0x0cf4  RasAcd - ok
22:56:36.0017 0x0cf4  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:56:36.0030 0x0cf4  RasAgileVpn - ok
22:56:36.0037 0x0cf4  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
22:56:36.0041 0x0cf4  RasAuto - ok
22:56:36.0048 0x0cf4  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:56:36.0064 0x0cf4  Rasl2tp - ok
22:56:36.0078 0x0cf4  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
22:56:36.0088 0x0cf4  RasMan - ok
22:56:36.0095 0x0cf4  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:56:36.0109 0x0cf4  RasPppoe - ok
22:56:36.0115 0x0cf4  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:56:36.0131 0x0cf4  RasSstp - ok
22:56:36.0142 0x0cf4  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:56:36.0167 0x0cf4  rdbss - ok
22:56:36.0171 0x0cf4  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
22:56:36.0181 0x0cf4  rdpbus - ok
22:56:36.0184 0x0cf4  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:56:36.0185 0x0cf4  RDPCDD - ok
22:56:36.0190 0x0cf4  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:56:36.0191 0x0cf4  RDPENCDD - ok
22:56:36.0196 0x0cf4  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:56:36.0197 0x0cf4  RDPREFMP - ok
22:56:36.0204 0x0cf4  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
22:56:36.0213 0x0cf4  RdpVideoMiniport - ok
22:56:36.0223 0x0cf4  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:56:36.0241 0x0cf4  RDPWD - ok
22:56:36.0252 0x0cf4  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:56:36.0259 0x0cf4  rdyboost - ok
22:56:36.0266 0x0cf4  [ 96EFEC24346A8EB1157E80523079ADDC, 7F8FC284029856C754E400B6C954369FFE27763C81D8F4AF4E58BFDD44CBC24A ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
22:56:36.0268 0x0cf4  RealNetworks Downloader Resolver Service - ok
22:56:36.0275 0x0cf4  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:56:36.0279 0x0cf4  RemoteAccess - ok
22:56:36.0288 0x0cf4  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:56:36.0294 0x0cf4  RemoteRegistry - ok
22:56:36.0304 0x0cf4  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
22:56:36.0309 0x0cf4  RFCOMM - ok
22:56:36.0315 0x0cf4  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:56:36.0318 0x0cf4  RpcEptMapper - ok
22:56:36.0322 0x0cf4  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
22:56:36.0325 0x0cf4  RpcLocator - ok
22:56:36.0343 0x0cf4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
22:56:36.0357 0x0cf4  RpcSs - ok
22:56:36.0369 0x0cf4  [ 704743274BF9476D34C6DAD3D6C091AA, EFE6521B7A111FDB58CD37AD8B5452B989EDF8D2747B1D55B6F12299446D6601 ] RSBASTOR        C:\Windows\system32\DRIVERS\RtsBaStor.sys
22:56:36.0387 0x0cf4  RSBASTOR - ok
22:56:36.0394 0x0cf4  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:56:36.0397 0x0cf4  rspndr - ok
22:56:36.0419 0x0cf4  [ 7F4F11527AF5A7E4526CB6A146B3E40C, 705177014374AB2F12AF4558344C35C206C2820BD1A16770173EA10D094D182B ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
22:56:36.0448 0x0cf4  RTL8167 - ok
22:56:36.0452 0x0cf4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
22:56:36.0454 0x0cf4  SamSs - ok
22:56:36.0460 0x0cf4  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:56:36.0476 0x0cf4  sbp2port - ok
22:56:36.0485 0x0cf4  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:56:36.0492 0x0cf4  SCardSvr - ok
22:56:36.0496 0x0cf4  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:56:36.0498 0x0cf4  scfilter - ok
22:56:36.0534 0x0cf4  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
22:56:36.0565 0x0cf4  Schedule - ok
22:56:36.0572 0x0cf4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:56:36.0575 0x0cf4  SCPolicySvc - ok
22:56:36.0583 0x0cf4  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
22:56:36.0595 0x0cf4  sdbus - ok
22:56:36.0604 0x0cf4  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:56:36.0610 0x0cf4  SDRSVC - ok
22:56:36.0615 0x0cf4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:56:36.0617 0x0cf4  secdrv - ok
22:56:36.0621 0x0cf4  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
22:56:36.0624 0x0cf4  seclogon - ok
22:56:36.0629 0x0cf4  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
22:56:36.0633 0x0cf4  SENS - ok
22:56:36.0638 0x0cf4  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:56:36.0641 0x0cf4  SensrSvc - ok
22:56:36.0645 0x0cf4  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
22:56:36.0654 0x0cf4  Serenum - ok
22:56:36.0660 0x0cf4  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
22:56:36.0673 0x0cf4  Serial - ok
22:56:36.0736 0x0cf4  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
22:56:36.0747 0x0cf4  sermouse - ok
22:56:36.0793 0x0cf4  [ 9BDE8F1F5D060E912FCF9FB58B71CBC1, 632F92CF96D9A48FD6F56D4BB18D354AACEB1048B6725759496BF4CD2DFC8863 ] ServiceLayer    C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
22:56:36.0847 0x0cf4  ServiceLayer - ok
22:56:36.0860 0x0cf4  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
22:56:36.0865 0x0cf4  SessionEnv - ok
22:56:36.0869 0x0cf4  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:56:36.0878 0x0cf4  sffdisk - ok
22:56:36.0882 0x0cf4  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:56:36.0894 0x0cf4  sffp_mmc - ok
22:56:36.0898 0x0cf4  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:56:36.0910 0x0cf4  sffp_sd - ok
22:56:36.0914 0x0cf4  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
22:56:36.0924 0x0cf4  sfloppy - ok
22:56:36.0940 0x0cf4  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:56:36.0952 0x0cf4  ShellHWDetection - ok
22:56:36.0957 0x0cf4  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
22:56:36.0970 0x0cf4  SiSRaid2 - ok
22:56:36.0976 0x0cf4  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
22:56:36.0989 0x0cf4  SiSRaid4 - ok
22:56:37.0099 0x0cf4  [ 73E3B5D1F1EB5FDC51A5C3437EEE3348, AE4059D62AF5AC6F6174EE39CEA5B4DFBD7B91DDAD7D6BC4E38173221EAAE7AC ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
22:56:37.0186 0x0cf4  Skype C2C Service - ok
22:56:37.0201 0x0cf4  [ 3E587DBBDFF938DDE5D4CE4047BE9041, CA13B2C50FB09365362077AEC4B25120CF09F8C35702F645922D618FE57B5E05 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:56:37.0207 0x0cf4  SkypeUpdate - ok
22:56:37.0213 0x0cf4  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:56:37.0226 0x0cf4  Smb - ok
22:56:37.0232 0x0cf4  [ 54A2D7457F6B13D9641D8BA2C92E9D6E, 381173BB8CA814548C6224110E5E452DF418D184D70A9C429F727C673FD8F38F ] SmbDrv          C:\Windows\system32\drivers\Smb_driver.sys
22:56:37.0245 0x0cf4  SmbDrv - ok
22:56:37.0250 0x0cf4  [ B9EECC2BDA778921C2B49F828B88CDD4, ADC07147CAAE79BC178080B5DF66C21FD2F235DD770B22E955FC2141706877DE ] SmbDrvIntel     C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
22:56:37.0263 0x0cf4  SmbDrvIntel - ok
22:56:37.0271 0x0cf4  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:56:37.0274 0x0cf4  SNMPTRAP - ok
22:56:37.0278 0x0cf4  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:56:37.0279 0x0cf4  spldr - ok
22:56:37.0300 0x0cf4  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
22:56:37.0317 0x0cf4  Spooler - ok
22:56:37.0426 0x0cf4  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
22:56:37.0523 0x0cf4  sppsvc - ok
22:56:37.0533 0x0cf4  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:56:37.0537 0x0cf4  sppuinotify - ok
22:56:37.0554 0x0cf4  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:56:37.0567 0x0cf4  srv - ok
22:56:37.0582 0x0cf4  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:56:37.0594 0x0cf4  srv2 - ok
22:56:37.0671 0x0cf4  [ 0C4540311E11664B245A263E1154CEF8, 63376322BFFAFF2F166AF3FDD3F1A346C21FAE21F406F659F8630779D1D6525D ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
22:56:37.0714 0x0cf4  SrvHsfHDA - ok
22:56:37.0792 0x0cf4  [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
22:56:37.0844 0x0cf4  SrvHsfV92 - ok
22:56:37.0871 0x0cf4  [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
22:56:37.0900 0x0cf4  SrvHsfWinac - ok
22:56:37.0909 0x0cf4  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:56:37.0914 0x0cf4  srvnet - ok
22:56:37.0924 0x0cf4  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:56:37.0930 0x0cf4  SSDPSRV - ok
22:56:37.0936 0x0cf4  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:56:37.0940 0x0cf4  SstpSvc - ok
22:56:37.0948 0x0cf4  [ EF806D212D34B0E173BAEB3564D53E37, 6EF229A7B7AFF0268CDF47B77F961BD44335C3B35499BB00CBA494A22B2BA39E ] ss_bbus         C:\Windows\system32\DRIVERS\ss_bbus.sys
22:56:37.0952 0x0cf4  ss_bbus - ok
22:56:37.0957 0x0cf4  [ 08B1B34ABEBEB6AC2DEA06900C56411E, 928EF9B9F194DB07049BA2D7127756B021C2729F562E54F7FECD0F2B2FF5A209 ] ss_bmdfl        C:\Windows\system32\DRIVERS\ss_bmdfl.sys
22:56:37.0958 0x0cf4  ss_bmdfl - ok
22:56:37.0967 0x0cf4  [ 71A9DA6BEAA4CB54DFB827FB78600A5D, 6393CA17CF6A6F30447FF599B2D27CAB44BA1A709D986AC5E14463303094BE5F ] ss_bmdm         C:\Windows\system32\DRIVERS\ss_bmdm.sys
22:56:37.0971 0x0cf4  ss_bmdm - ok
22:56:37.0980 0x0cf4  [ 677CDC98F8363ACCAAE783FDE1599C2A, 2ED5125A93AF824CA4D394A36F79996F9EBC84305F565F6024ECDD490A4A1FE2 ] ss_bserd        C:\Windows\system32\DRIVERS\ss_bserd.sys
22:56:37.0983 0x0cf4  ss_bserd - ok
22:56:38.0038 0x0cf4  [ AB21242D89211581967C3FCAA20F492E, 1F06D0E272B3BBE62DC4B21F9ECB9A5420684EB71E59F7D9D0E658B34533EC59 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
22:56:38.0059 0x0cf4  STacSV - ok
22:56:38.0068 0x0cf4  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
22:56:38.0094 0x0cf4  stexstor - ok
22:56:38.0132 0x0cf4  [ 5CAD02278FE232A8711444A9F517C85F, 0E767A2CEF250E5F3AE6A98A4DA3DCB835A99291EC4E546A2D6618C4C39077C3 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
22:56:38.0182 0x0cf4  STHDA - ok
22:56:38.0227 0x0cf4  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
22:56:38.0252 0x0cf4  stisvc - ok
22:56:38.0257 0x0cf4  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
22:56:38.0272 0x0cf4  swenum - ok
22:56:38.0298 0x0cf4  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
22:56:38.0320 0x0cf4  SwitchBoard - ok
22:56:38.0344 0x0cf4  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
22:56:38.0365 0x0cf4  swprv - ok
22:56:38.0387 0x0cf4  [ 50647FA8EFACB6C80FD29669FE9C1666, A1307C46B86F658BDAE29C34FEACFE841ABECDE1EA9A04B1A2C7C36295811FA3 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
22:56:38.0422 0x0cf4  SynTP - ok
22:56:38.0486 0x0cf4  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
22:56:38.0534 0x0cf4  SysMain - ok
22:56:38.0542 0x0cf4  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:56:38.0547 0x0cf4  TabletInputService - ok
22:56:38.0560 0x0cf4  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:56:38.0570 0x0cf4  TapiSrv - ok
22:56:38.0576 0x0cf4  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
22:56:38.0579 0x0cf4  TBS - ok
22:56:39.0088 0x0cf4  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:56:39.0159 0x0cf4  Tcpip - ok
22:56:39.0303 0x0cf4  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:56:39.0348 0x0cf4  TCPIP6 - ok
22:56:39.0360 0x0cf4  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:56:39.0362 0x0cf4  tcpipreg - ok
22:56:39.0368 0x0cf4  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:56:39.0379 0x0cf4  TDPIPE - ok
22:56:39.0385 0x0cf4  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:56:39.0398 0x0cf4  TDTCP - ok
22:56:39.0407 0x0cf4  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:56:39.0422 0x0cf4  tdx - ok
22:56:39.0427 0x0cf4  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
22:56:39.0444 0x0cf4  TermDD - ok
22:56:39.0469 0x0cf4  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
22:56:39.0490 0x0cf4  TermService - ok
22:56:39.0496 0x0cf4  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
22:56:39.0499 0x0cf4  Themes - ok
22:56:39.0505 0x0cf4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
22:56:39.0508 0x0cf4  THREADORDER - ok
22:56:39.0625 0x0cf4  [ 352761BE30E0DD24B509EF2C0CCFA72E, E921B7C3A1C9E20FE907439E5885264A94B389601FFB067E4A2126CD3976AB50 ] TorchCrashHandler C:\Users\irfan\AppData\Local\Torch\Update\TorchCrashHandler.exe
22:56:39.0658 0x0cf4  TorchCrashHandler - ok
22:56:39.0665 0x0cf4  [ DBCC20C02E8A3E43B03C304A4E40A84F, BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 ] TPM             C:\Windows\system32\drivers\tpm.sys
22:56:39.0680 0x0cf4  TPM - ok
22:56:39.0687 0x0cf4  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
22:56:39.0692 0x0cf4  TrkWks - ok
22:56:39.0709 0x0cf4  [ 6BFB75B76411CC57A72FCC1D0201E166, 8F3A97E7651501F58018EB6081178B2A05ADFBF48C6126E0176FE231A261893E ] TrueService     C:\Program Files\Common Files\AuthenTec\TrueService.exe
22:56:39.0764 0x0cf4  TrueService - ok
22:56:39.0775 0x0cf4  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:56:39.0781 0x0cf4  TrustedInstaller - ok
22:56:39.0788 0x0cf4  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:56:39.0790 0x0cf4  tssecsrv - ok
22:56:39.0797 0x0cf4  [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
22:56:39.0813 0x0cf4  TsUsbFlt - ok
22:56:39.0818 0x0cf4  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
22:56:39.0833 0x0cf4  TsUsbGD - ok
22:56:39.0841 0x0cf4  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:56:39.0857 0x0cf4  tunnel - ok
22:56:39.0863 0x0cf4  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
22:56:39.0877 0x0cf4  uagp35 - ok
22:56:39.0891 0x0cf4  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:56:39.0911 0x0cf4  udfs - ok
22:56:39.0925 0x0cf4  [ 215462AE7E6A897D675E84DD1E3B3B56, 7F45E77F971E9AC3E1402663EF5F6A2D496F9BB758C8E50D2D329E834E20B7D8 ] ufad-ws60       C:\Program Files (x86)\VMware\VMware Workstation\vmware-ufad.exe
22:56:39.0951 0x0cf4  ufad-ws60 - ok
22:56:39.0959 0x0cf4  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:56:39.0963 0x0cf4  UI0Detect - ok
22:56:39.0969 0x0cf4  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:56:39.0983 0x0cf4  uliagpkx - ok
22:56:39.0989 0x0cf4  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:56:40.0003 0x0cf4  umbus - ok
22:56:40.0007 0x0cf4  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
22:56:40.0019 0x0cf4  UmPass - ok
22:56:40.0037 0x0cf4  [ D80B1075B69B57A3AB78F750CE463ECE, E8435B723C3D9F5B28D5588365E7D6BED298565BCF61240C2B505B1033180DAA ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
22:56:40.0048 0x0cf4  UNS - ok
22:56:40.0064 0x0cf4  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
22:56:40.0076 0x0cf4  upnphost - ok
22:56:40.0085 0x0cf4  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
22:56:40.0104 0x0cf4  usbaudio - ok
22:56:40.0110 0x0cf4  [ 2B26FCB7C634C49313FD72120FB9946E, EF0C46AC9C8A911433543EBDEED905FA9ABE97D47F0BEC84B53B63FDAA8E3BAE ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:56:40.0114 0x0cf4  usbccgp - ok
22:56:40.0121 0x0cf4  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:56:40.0138 0x0cf4  usbcir - ok
22:56:40.0144 0x0cf4  [ AA68C758B3F225618A5FD1ED40C383C4, 554C0D905D293EE0CFE3E09B85F17DA0335D444ED19E6082DB1FCD7B00490D62 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
22:56:40.0155 0x0cf4  usbehci - ok
22:56:40.0170 0x0cf4  [ 66E1EF753543785D7E2C44719B2C5DAD, DC46080D3C02B91DE753A38B32AF4E1A42DB16856EEC9DA52B8E5D220180959A ] usbhub          C:\Windows\system32\drivers\usbhub.sys
22:56:40.0194 0x0cf4  usbhub - ok
22:56:40.0199 0x0cf4  [ B26ACA4784AD1295C25A7501FD4AB79E, 85AF98DE6D900C0986C9C5C808D0556DC3704C01EA0137F34C962D3B295455CE ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:56:40.0209 0x0cf4  usbohci - ok
22:56:40.0214 0x0cf4  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
22:56:40.0228 0x0cf4  usbprint - ok
22:56:40.0235 0x0cf4  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:56:40.0239 0x0cf4  USBSTOR - ok
22:56:40.0245 0x0cf4  [ 35944CFF264134FFD2E7EED0F8B81A56, 48D4CD3143950B2D2650B7F37EDE0B9B94921C1E1FB2A3FFF8C23B399929726F ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
22:56:40.0256 0x0cf4  usbuhci - ok
22:56:40.0266 0x0cf4  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
22:56:40.0272 0x0cf4  usbvideo - ok
22:56:40.0278 0x0cf4  [ 7B28E2FBE75115660FAB31079C0A9F29, 81BB5A3E64B652A672A0782A88ABF6DDD729D38712D0706CE0FB9DE6D1EE1515 ] usb_rndisx      C:\Windows\system32\DRIVERS\usb8023x.sys
22:56:40.0292 0x0cf4  usb_rndisx - ok
22:56:40.0298 0x0cf4  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
22:56:40.0305 0x0cf4  UxSms - ok
22:56:40.0312 0x0cf4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
22:56:40.0315 0x0cf4  VaultSvc - ok
22:56:40.0325 0x0cf4  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
22:56:40.0328 0x0cf4  vdrvroot - ok
22:56:40.0350 0x0cf4  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
22:56:40.0375 0x0cf4  vds - ok
22:56:40.0383 0x0cf4  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:56:40.0398 0x0cf4  vga - ok
22:56:40.0404 0x0cf4  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:56:40.0419 0x0cf4  VgaSave - ok
22:56:40.0432 0x0cf4  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
22:56:40.0458 0x0cf4  vhdmp - ok
22:56:40.0464 0x0cf4  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:56:40.0480 0x0cf4  viaide - ok
22:56:40.0489 0x0cf4  [ 1F80AFAC99745122BAA8024E93A35C5B, FCCB6B4F06DBA9C1A78F7FFB5127F8BDE2C4AB72198B9D359C3C61610F43F1C7 ] VMAuthdService  C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
22:56:40.0495 0x0cf4  VMAuthdService - ok
22:56:40.0503 0x0cf4  [ 72433D7CFE64134C7D1492785C79EFD6, 436FFCE40DB73B836CC4E60407D3F74A8FAF83F3A7E01BD3AE12BB6B0D419068 ] vmci            C:\Windows\system32\drivers\vmci.sys
22:56:40.0509 0x0cf4  vmci - ok
22:56:40.0516 0x0cf4  [ 95569794560DB9AA8CF27F890096FFE9, A0A6981A9410D0957E6BF63F0DC884AEF483D125A81D55318CD2453119C56406 ] vmkbd           C:\Windows\system32\drivers\VMkbd.sys
22:56:40.0538 0x0cf4  vmkbd - ok
22:56:40.0544 0x0cf4  [ 9D54F1339E78C95BF3D9939EBCB66378, 99E29225443049B35E633BB7E709AC89B555F6A1EC5FAE075825A74F088FDC9A ] VMnetAdapter    C:\Windows\system32\DRIVERS\vmnetadapter.sys
22:56:40.0545 0x0cf4  VMnetAdapter - ok
22:56:40.0550 0x0cf4  [ FB54EF3AA613D2832FD3812E7CB2FC75, 2D638EFE2E457C4F9B50AF49C7A0B0DA82A98FF10049C2E5DABE32B7E0BA2B23 ] VMnetBridge     C:\Windows\system32\DRIVERS\vmnetbridge.sys
22:56:40.0552 0x0cf4  VMnetBridge - ok
22:56:40.0556 0x0cf4  VMnetDHCP - ok
22:56:40.0561 0x0cf4  [ C220E38410A4E4BA359A366DB081D2EA, 0D6DF8C018879E70832E3DB9455272571D1BDE027C2AEC69E6E0009217B7A673 ] VMnetuserif     C:\Windows\system32\drivers\vmnetuserif.sys
22:56:40.0562 0x0cf4  VMnetuserif - ok
22:56:40.0568 0x0cf4  [ 415B167695C4B5960A13098622EF3D80, E68AE845A6967E68FB22EB0F4D95631D041DA906801202F7662B22EAD34B2371 ] vmusb           C:\Windows\system32\Drivers\vmusb.sys
22:56:40.0672 0x0cf4  vmusb - ok
22:56:40.0713 0x0cf4  [ DFEF590C1818955E101654C30283F8EA, 4DAB7B846DBBDE9672F0B4A0BB71A2C726DD290BA9CD966815627F962A029A04 ] VMUSBArbService C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe
22:56:40.0747 0x0cf4  VMUSBArbService - ok
22:56:40.0760 0x0cf4  VMware NAT Service - ok
22:56:40.0773 0x0cf4  [ 8BAF654FDAD3420D1DAFD57196147457, 1A6FAB218DC5DE5BD3D7FE6747FF69178B173E955F25E9A965A6FB05367B5EEB ] vmx86           C:\Windows\system32\drivers\vmx86.sys
22:56:40.0779 0x0cf4  vmx86 - ok
22:56:40.0792 0x0cf4  [ 1E4D31FEC921300C5F262C52F5FCC666, 19FF08BD37908C1C49427DE8E6E69AA84E8EEEBD5A4B0F2226ED1A73C862D63D ] vodafone_K3805-z_dc_enum C:\Windows\system32\DRIVERS\vodafone_K3805-z_dc_enum.sys
22:56:40.0845 0x0cf4  vodafone_K3805-z_dc_enum - ok
22:56:40.0860 0x0cf4  [ CD9E990F5E9DA640FF9B61CCDF8F6F41, 53BA019208352DFCE38858AE27C75E7CB43116D9991BB731CDE42E626F7BD989 ] vodafone_zte_cdc_acm C:\Windows\system32\DRIVERS\vodafone_zte_cdc_acm.sys
22:56:40.0893 0x0cf4  vodafone_zte_cdc_acm - ok
22:56:40.0904 0x0cf4  [ 38D96C6C41281FD87DFE97C21AE19F9C, E7534F3BEB304FF66ABBE06AFE6F3349830BD4FCB3FE4F8352C1184596D0DD11 ] vodafone_zte_cdc_ecm C:\Windows\system32\DRIVERS\vodafone_zte_cdc_ecm.sys
22:56:40.0922 0x0cf4  vodafone_zte_cdc_ecm - ok
22:56:40.0929 0x0cf4  [ 8B011E1083749E0333B7142C20DBD8D3, B1783C02CEFB402B3B142FFDBE63DC0B08DCC803F06BBDDDEF3BC128B92E6CD6 ] vodafone_zte_cpo C:\Windows\system32\DRIVERS\vodafone_zte_cpo.sys
22:56:40.0939 0x0cf4  vodafone_zte_cpo - ok
22:56:40.0947 0x0cf4  [ 050CBF9057BC646F6CDD3F14879916A0, A1EB593DDFC9D9944E0D7904F400B11CC65D06B8F4F1B27C2F3F530A5917ECBF ] vodafone_zte_ecm_enum C:\Windows\system32\DRIVERS\vodafone_zte_ecm_enum.sys
22:56:40.0964 0x0cf4  vodafone_zte_ecm_enum - ok
22:56:40.0970 0x0cf4  [ 050CBF9057BC646F6CDD3F14879916A0, A1EB593DDFC9D9944E0D7904F400B11CC65D06B8F4F1B27C2F3F530A5917ECBF ] vodafone_zte_ecm_enum_filter C:\Windows\system32\DRIVERS\vodafone_zte_ecm_enum_filter.sys
22:56:40.0988 0x0cf4  vodafone_zte_ecm_enum_filter - ok
22:56:40.0995 0x0cf4  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:56:40.0998 0x0cf4  volmgr - ok
22:56:41.0016 0x0cf4  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:56:41.0029 0x0cf4  volmgrx - ok
22:56:41.0045 0x0cf4  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:56:41.0056 0x0cf4  volsnap - ok
22:56:41.0066 0x0cf4  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
22:56:41.0086 0x0cf4  vsmraid - ok
22:56:41.0149 0x0cf4  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
22:56:41.0206 0x0cf4  VSS - ok
22:56:41.0213 0x0cf4  [ E61C910E2DDF4797C1B1F9239636E894, BEC555AB66BD0D33BBC9ABFF7F3955F7D0821383549C8BAC1944B63A85F897E8 ] vstor2-ws60     C:\Program Files (x86)\VMware\VMware Workstation\vstor2-ws60.sys
22:56:41.0216 0x0cf4  vstor2-ws60 - ok
22:56:41.0221 0x0cf4  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
22:56:41.0236 0x0cf4  vwifibus - ok
22:56:41.0243 0x0cf4  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
22:56:41.0258 0x0cf4  vwififlt - ok
22:56:41.0264 0x0cf4  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
22:56:41.0266 0x0cf4  vwifimp - ok
22:56:41.0284 0x0cf4  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
22:56:41.0299 0x0cf4  W32Time - ok
22:56:41.0306 0x0cf4  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
22:56:41.0321 0x0cf4  WacomPen - ok
22:56:41.0388 0x0cf4  [ 375640F39F2D613B6FDCF8C2F956205A, C036BF7D125664508E07541EE8F8A5A386E55162C178AF2FC7C20E9E830A6ACF ] wampapache      c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
22:56:41.0411 0x0cf4  wampapache - ok
22:56:41.0427 0x0cf4  wampmysqld - ok
22:56:41.0435 0x0cf4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:56:41.0453 0x0cf4  WANARP - ok
22:56:41.0460 0x0cf4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:56:41.0464 0x0cf4  Wanarpv6 - ok
22:56:41.0528 0x0cf4  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
22:56:41.0572 0x0cf4  wbengine - ok
22:56:41.0583 0x0cf4  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:56:41.0591 0x0cf4  WbioSrvc - ok
22:56:41.0605 0x0cf4  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:56:41.0617 0x0cf4  wcncsvc - ok
22:56:41.0622 0x0cf4  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:56:41.0625 0x0cf4  WcsPlugInService - ok
22:56:41.0630 0x0cf4  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
22:56:41.0642 0x0cf4  Wd - ok
22:56:41.0669 0x0cf4  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:56:41.0690 0x0cf4  Wdf01000 - ok
22:56:41.0698 0x0cf4  [ CABA2C0BBBDA1410EB18D4C7C574F355, 3BB9E09B50D68295A62295B70D5BAADFA4CBA31247C60593A2F17B9AF41E1F94 ] wdf_usb         C:\Windows\system32\DRIVERS\usb2ser.sys
22:56:41.0701 0x0cf4  wdf_usb - ok
22:56:41.0708 0x0cf4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:56:41.0712 0x0cf4  WdiServiceHost - ok
22:56:41.0717 0x0cf4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:56:41.0721 0x0cf4  WdiSystemHost - ok
22:56:41.0732 0x0cf4  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
22:56:41.0741 0x0cf4  WebClient - ok
22:56:41.0752 0x0cf4  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:56:41.0760 0x0cf4  Wecsvc - ok
22:56:41.0767 0x0cf4  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:56:41.0771 0x0cf4  wercplsupport - ok
22:56:41.0777 0x0cf4  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:56:41.0781 0x0cf4  WerSvc - ok
22:56:41.0786 0x0cf4  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:56:41.0797 0x0cf4  WfpLwf - ok
22:56:41.0801 0x0cf4  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:56:41.0812 0x0cf4  WIMMount - ok
22:56:41.0818 0x0cf4  WinDefend - ok
22:56:41.0823 0x0cf4  WinHttpAutoProxySvc - ok
22:56:41.0838 0x0cf4  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:56:41.0845 0x0cf4  Winmgmt - ok
22:56:41.0911 0x0cf4  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
22:56:41.0968 0x0cf4  WinRM - ok
22:56:42.0109 0x0cf4  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:56:42.0148 0x0cf4  WinUsb - ok
22:56:42.0195 0x0cf4  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:56:42.0230 0x0cf4  Wlansvc - ok
22:56:42.0237 0x0cf4  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:56:42.0280 0x0cf4  wlcrasvc - ok
22:56:42.0352 0x0cf4  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:56:42.0413 0x0cf4  wlidsvc - ok
22:56:42.0420 0x0cf4  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
22:56:42.0422 0x0cf4  WmiAcpi - ok
22:56:42.0433 0x0cf4  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:56:42.0439 0x0cf4  wmiApSrv - ok
22:56:42.0442 0x0cf4  WMPNetworkSvc - ok
22:56:42.0446 0x0cf4  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:56:42.0449 0x0cf4  WPCSvc - ok
22:56:42.0455 0x0cf4  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:56:42.0460 0x0cf4  WPDBusEnum - ok
22:56:42.0465 0x0cf4  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:56:42.0473 0x0cf4  ws2ifsl - ok
22:56:42.0481 0x0cf4  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
22:56:42.0486 0x0cf4  wscsvc - ok
22:56:42.0489 0x0cf4  WSearch - ok
22:56:42.0565 0x0cf4  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:56:42.0633 0x0cf4  wuauserv - ok
22:56:42.0642 0x0cf4  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:56:42.0646 0x0cf4  WudfPf - ok
22:56:42.0655 0x0cf4  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:56:42.0662 0x0cf4  WUDFRd - ok
22:56:42.0668 0x0cf4  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:56:42.0673 0x0cf4  wudfsvc - ok
22:56:42.0683 0x0cf4  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:56:42.0692 0x0cf4  WwanSvc - ok
22:56:42.0701 0x0cf4  [ B36E54DD76DCAC72581306F5504C6491, 6409F682B2A02C9D8098C2B8B513020E0F2A0FE407A0A4C00CAA9DF787CF3129 ] ztemtusbser     C:\Windows\system32\DRIVERS\CT_ZTEMT_U_USBSER.sys
22:56:42.0807 0x0cf4  ztemtusbser - ok
22:56:42.0860 0x0cf4  ================ Scan global ===============================
22:56:42.0869 0x0cf4  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
22:56:42.0890 0x0cf4  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
22:56:42.0918 0x0cf4  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
22:56:42.0931 0x0cf4  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
22:56:42.0948 0x0cf4  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
22:56:42.0961 0x0cf4  [ Global ] - ok
22:56:42.0961 0x0cf4  ================ Scan MBR ==================================
22:56:42.0986 0x0cf4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:56:43.0134 0x0cf4  \Device\Harddisk0\DR0 - ok
22:56:43.0135 0x0cf4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
22:56:43.0142 0x0cf4  \Device\Harddisk1\DR1 - ok
22:56:43.0142 0x0cf4  ================ Scan VBR ==================================
22:56:43.0143 0x0cf4  [ F175E89C443B0249D87CFB90F17209F9 ] \Device\Harddisk0\DR0\Partition1
22:56:43.0145 0x0cf4  \Device\Harddisk0\DR0\Partition1 - ok
22:56:43.0147 0x0cf4  [ 7DA981FBB68BDDE0AAE6FA4905F299A0 ] \Device\Harddisk0\DR0\Partition2
22:56:43.0149 0x0cf4  \Device\Harddisk0\DR0\Partition2 - ok
22:56:43.0151 0x0cf4  [ 22C175BB12D16AF96B2B0DD85A72760A ] \Device\Harddisk0\DR0\Partition3
22:56:43.0153 0x0cf4  \Device\Harddisk0\DR0\Partition3 - ok
22:56:43.0154 0x0cf4  [ CDA5BD4F3B00664D880CFF4BD240516F ] \Device\Harddisk0\DR0\Partition4
22:56:43.0156 0x0cf4  \Device\Harddisk0\DR0\Partition4 - ok
22:56:43.0156 0x0cf4  Waiting for KSN requests completion. In queue: 371
22:56:44.0157 0x0cf4  Waiting for KSN requests completion. In queue: 371
22:56:45.0157 0x0cf4  Waiting for KSN requests completion. In queue: 66
22:56:46.0157 0x0cf4  Waiting for KSN requests completion. In queue: 66
22:56:47.0233 0x0cf4  AV detected via SS2: AVG AntiVirus Free Edition 2013, C:\Program Files (x86)\AVG\AVG2013\avgwsc.exe ( 13.0.0.3300 ), 0x41000 ( enabled : updated )
22:56:47.0251 0x0cf4  Win FW state via NFP2: enabled
22:56:50.0334 0x0cf4  ============================================================
22:56:50.0334 0x0cf4  Scan finished
22:56:50.0334 0x0cf4  ============================================================
22:56:50.0340 0x0598  Detected object count: 0
22:56:50.0340 0x0598  Actual detected object count: 0


#8 iamifk

iamifk
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 07 February 2014 - 12:40 PM

# AdwCleaner v3.018 - Report created 07/02/2014 at 23:03:03
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Home Basic Service Pack 1 (64 bits)
# Username : irfan - IRFAN-HP
# Running from : C:\Users\irfan\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : CltMngSvc
Service Deleted : torchcrashhandler

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\torchcrashhandler
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Searchprotect
Folder Deleted : C:\Program Files (x86)\yourfiledownloader
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Users\irfan\AppData\Local\Conduit
Folder Deleted : C:\Users\irfan\AppData\Local\Searchprotect
Folder Deleted : C:\Users\irfan\AppData\Local\torch
Folder Deleted : C:\Users\irfan\AppData\Roaming\Babylon
Folder Deleted : C:\Users\irfan\AppData\Roaming\Desktopicon
Folder Deleted : C:\Users\irfan\AppData\Roaming\goforfiles
Folder Deleted : C:\Users\irfan\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\irfan\AppData\Roaming\yourfiledownloader
Folder Deleted : C:\Users\irfan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\torch
Folder Deleted : C:\Users\irfan\AppData\Roaming\Mozilla\Firefox\Profiles\ud98x3bl.default\Extensions\{94CD2CC3-083F-49BA-A218-4CDA4B4829FD}
File Deleted : C:\END
File Deleted : C:\Users\irfan\AppData\Roaming\Microsoft\Windows\Start Menu\eBay.lnk
File Deleted : C:\Users\irfan\AppData\Roaming\Mozilla\Firefox\Profiles\ud98x3bl.default\bprotector_extensions.sqlite
File Deleted : C:\Users\irfan\AppData\Roaming\Mozilla\Firefox\Profiles\ud98x3bl.default\searchplugins\conduit-search.xml
File Deleted : C:\Users\irfan\AppData\Roaming\Mozilla\Firefox\Profiles\ud98x3bl.default\user.js
File Deleted : C:\Windows\System32\Tasks\GoforFilesUpdate

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\kiplfnciaokpcennlkldkdaeaaomamof
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKCU\Software\59edc8fb53de817
Key Deleted : HKLM\SOFTWARE\59edc8fb53de817
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_youwave_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_youwave_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{F63AAEDC-3602-49EF-AA45-262380A98980}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\BabylonToolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\torch
Key Deleted : HKCU\Software\YourFileDownloader
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\SearchProtect
Key Deleted : HKLM\Software\torch
Key Deleted : HKLM\Software\YourFileDownloader
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\torch
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16750

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v26.0 (en-US)

[ File : C:\Users\irfan\AppData\Roaming\Mozilla\Firefox\Profiles\ud98x3bl.default\prefs.js ]

Line Deleted : user_pref("accessibility.lightning.homepage", "hxxp://search.conduit.com/?ctid=CT3322287&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP6D29DB93-6DC6-4A81-8784-3D52A305CDA6&SSPV=");
Line Deleted : user_pref("browser.newtab.url", "hxxp://search.conduit.com/?ctid=CT3322287&octid=EB_ORIGINAL_CTID&SearchSource=69&CUI=&SSPV=&Lay=1&UM=4&UP=SP6D29DB93-6DC6-4A81-8784-3D52A305CDA6");
Line Deleted : user_pref("browser.search.defaultenginename", "Conduit Search");
Line Deleted : user_pref("browser.search.selectedEngine", "Conduit Search");
Line Deleted : user_pref("browser.startup.homepage", "hxxp://search.conduit.com/?ctid=CT3322287&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP6D29DB93-6DC6-4A81-8784-3D52A305CDA6&SSPV=");

*************************

AdwCleaner[R0].txt - [8227 octets] - [07/02/2014 23:01:50]
AdwCleaner[S0].txt - [7296 octets] - [07/02/2014 23:03:03]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7356 octets] ##########
 



#9 iamifk

iamifk
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 07 February 2014 - 12:55 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.1 (02.04.2014:1)
OS: Windows 7 Home Basic x64
Ran by irfan on 07-02-2014 at 23:15:27.24
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Suspicious HKCU\..\Run entries found. Trojan:JS/Medfos.B?

    Value Name          Type                             Value Data                     
========================================================================================
    NextLive    REG_SZ    C:\Windows\SysWOW64\rundll32.exe "C:\Users\irfan\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l




~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A2DF06F9-A21A-44A8-8A99-8B9C84F29160}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\torch.exe
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askChecker_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\askChecker_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\askChecker_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\askChecker_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25EB66FC-03A7-40AA-A073-EAAF723CDD90}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{25EB66FC-03A7-40AA-A073-EAAF723CDD90}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25EB66FC-03A7-40AA-A073-EAAF723CDD90}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Program Files (x86)\savesense"
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{0872AD27-845B-4B20-9720-D2321F80C63D}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{13E162E8-2A3A-4141-9FCE-6F8C6908A622}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{221D446B-77CD-484F-99EE-075835C93F18}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{235B9477-3940-4BEC-9FCA-80AE6BDB57D8}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{2C27F283-9947-4A09-897B-33A088428C30}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{3528CB80-D9B0-4918-A1DE-F8A2CCF422D1}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{4CAC0E72-239A-41D0-9B4B-958C1006955A}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{5B98149F-3E4A-46C6-B7AD-8B7302B72EC7}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{61BF8484-C28E-4BAD-AD59-A9A65C1A5A99}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{750FA59E-0B14-4F9C-A259-A93F7EFAF99F}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{845B7849-3C57-4FCB-A136-3665F5295D92}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{8C626F2E-82E2-4B09-8B7B-605480716F4F}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{96A7FF0E-0541-4D39-B565-9E4B1D27F1F9}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{9ADB1F2A-D1B8-46EA-BA57-352AE20AA6E7}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{AF99E58D-6D32-4AEB-B28A-FC43B9A4ACC0}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{C0889132-1E31-4649-978A-6635C21449F1}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{C1BA1D32-2021-41A8-AC38-961247A2B98B}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{C4602AF1-6DF7-46E1-8036-07F8BA0E075D}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{D404B38D-E6C4-4D02-BA48-C1D7A4C2DA4F}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{D664E193-D93B-4010-83E9-9138D50D7E75}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{E8E40047-5DDE-415D-8FD9-AAA2842A6A12}
Successfully deleted: [Empty Folder] C:\Users\irfan\appdata\local\{ED3AFDB4-5F55-496C-936B-AF94DD0F32F9}



~~~ FireFox

Emptied folder: C:\Users\irfan\AppData\Roaming\mozilla\firefox\profiles\ud98x3bl.default\minidumps [21 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 07-02-2014 at 23:24:34.85
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:58 AM

Posted 07 February 2014 - 12:59 PM

Also look in Control Panel, Uninstall for Search Protect. If something is there uninstall that too.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 iamifk

iamifk
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 07 February 2014 - 09:37 PM

C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\Main\bin\CltMngSvc.exe.vir    a variant of Win32/Conduit.SearchProtect.H potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\Main\bin\SPTool.dll.vir    a variant of Win32/Conduit.SearchProtect.H potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\Main\bin\uninstall.exe.vir    a variant of Win32/Conduit.SearchProtect.H potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\cltmng.exe.vir    a variant of Win32/Conduit.SearchProtect.I potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\SPTool64.exe.vir    a variant of Win64/Conduit.SearchProtect.A potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\SPVC32.dll.vir    a variant of Win32/Conduit.SearchProtect.H potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\SPVC32Loader.dll.vir    a variant of Win32/Conduit.SearchProtect.H potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\SPVC64.dll.vir    a variant of Win64/Conduit.SearchProtect.A potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\SPVC64Loader.dll.vir    a variant of Win64/Conduit.SearchProtect.A potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\UI\bin\cltmngui.exe.vir    a variant of Win32/Conduit.SearchProtect.I potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\yourfiledownloader\uninstall.exe.vir    a variant of Win32/YourFileDownloader.A potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\irfan\AppData\Roaming\Microsoft\Windows\Start Menu\eBay.lnk.vir    Win32/Adware.ADON potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\irfan\AppData\Roaming\OpenCandy\732688594BE84167B3BE701B712FD294\sp-downloader.exe.vir    Win32/Toolbar.Conduit.R potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\irfan\AppData\Roaming\OpenCandy\A52A1EEE09774590B23B027653D7B28F\sp-downloader.exe.vir    Win32/Toolbar.Conduit.R potentially unwanted application    deleted - quarantined
C:\Program Files (x86)\Mobogenie\nengine.dll    Win32/NextLive.A potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\genienext\nengine.dll    Win32/NextLive.A potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KHDQU1NE\spstub[1].exe    Win32/Conduit.SearchProtect.L potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NEIOBRRE\checktbexist[1].exe    Win32/Toolbar.Conduit.S potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NEIOBRRE\SPSetup[1].exe    a variant of Win32/Conduit.SearchProtect.H potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NEIOBRRE\ValueApps[1].exe    Win32/Toolbar.Conduit.T potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QPM26SRC\Connectify_4_downloader-3vwQLqhg[1].exe    Win32/Somoto.H potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QPM26SRC\Setup[1].exe    Win32/BrowseFox.B potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UNT93OO5\stubinst_pkg_en-ap[1].cab    Win32/OpenCandy potentially unsafe application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\DownloadManager.exe    a variant of Win32/OutBrowse.D potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\Mobogenie_Setup_565.exe    Win32/Mobogenie.A potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\toolbar4223586.exe    Win32/OutBrowse.C potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\toolbar4247205.exe    Win32/OutBrowse.C potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\toolbar4294005.exe    Win32/OutBrowse.G potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\uninstall4383004.exe    a variant of Win32/ExpressDownloader.H potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\UpdateCheckerSetup.exe    a variant of Win32/Somoto.D potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\dlm6826.tmp\mHotspot_setup_7.2.0.0.exe    Win32/OpenCandy potentially unsafe application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\fullpackage_temp1391707323\tmp\SupTab.exe    a variant of Win32/ELEX.AB potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\fullpackage_temp1391707323\tmp\wpm.exe    a variant of Win32/ELEX.Y potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\mam-ct3317212\ctbe.exe    Win32/Toolbar.Conduit.S potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\mam-ct3317212\mam_ie.exe    Win32/Toolbar.Conduit.T potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\nsbDF7A\SpSetup.exe    a variant of Win32/Conduit.SearchProtect.H potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\nskEB4B\SpSetup.exe    a variant of Win32/Conduit.SearchProtect.H potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Local\Temp\nswF4BF\SpSetup.exe    a variant of Win32/Conduit.SearchProtect.H potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\eBay.lnk    Win32/Adware.ADON potentially unwanted application    deleted - quarantined
C:\Users\irfan\AppData\Roaming\newnext.me\nengine.dll    Win32/NextLive.A potentially unwanted application    deleted - quarantined
C:\Users\irfan\Downloads\bs_Connectify.exe    a variant of Win32/Wajam.F potentially unwanted application    deleted - quarantined
C:\Users\irfan\Downloads\cbsidlm-cbsi176-mHotspot-BP-75452123.exe    a variant of Win32/CNETInstaller.B potentially unwanted application    deleted - quarantined
C:\Users\irfan\Downloads\cdma_workshop_3.3.5.rar    a variant of Win32/Packed.Themida potentially unwanted application    deleted - quarantined
C:\Users\irfan\Downloads\FoxitReader545.0124_enu_Setup.exe    a variant of Win32/Bundled.Toolbar.Ask.D potentially unsafe application    deleted - quarantined
C:\Users\irfan\Downloads\INTRODUCTION_TO_OPERATIONS_RESEARCH.exe    Win32/Adware.1ClickDownload.AM application    cleaned by deleting - quarantined
C:\Users\irfan\Downloads\mHotspot_setup_7.5.0.0.exe    Win32/OpenCandy potentially unsafe application    deleted - quarantined
C:\Users\irfan\Downloads\principles_of_management_pc_tripathi_pdf_downloader_386.exe    a variant of Win32/YourFileDownloader.A potentially unwanted application    deleted - quarantined
C:\Users\irfan\Downloads\rss-reader.exe    Win32/Packed.ScrambleWrapper.C potentially unwanted application    deleted - quarantined
C:\Users\irfan\Downloads\SoftonicDownloader_for_sms-free-send.exe    a variant of Win32/SoftonicDownloader.E potentially unwanted application    deleted - quarantined
C:\Users\irfan\Downloads\SoftonicDownloader_for_youwave.exe    Win32/SoftonicDownloader.E potentially unwanted application    deleted - quarantined
C:\Users\irfan\Downloads\spsetup125.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Users\irfan\Downloads\VaudiX.exe    Win32/InstalleRex.J potentially unwanted application    deleted - quarantined
C:\Users\irfan\Downloads\WinZip170.exe    a variant of Win32/OpenInstall potentially unwanted application    deleted - quarantined
C:\Users\irfan\Downloads\z_downloader (1).exe    a variant of Win32/Toolbar.Visicom.A potentially unwanted application    deleted - quarantined
C:\Users\irfan\Downloads\z_downloader.exe    a variant of Win32/Toolbar.Visicom.A potentially unwanted application    deleted - quarantined
C:\z.irfan\FromMyPc\spiritual\Azhar\ccsetup323.exe    Win32/Bundled.Toolbar.Google.E potentially unsafe application    deleted - quarantined
C:\z.irfan\FromMyPc\spiritual\Azhar\FreemakeVideoConverter_3.0.1.21.exe    Win32/Toolbar.Escort.A potentially unwanted application    deleted - quarantined
C:\z.irfan\software\Apps\Top 100 Apps\Health & Fitness\Foods That Burn Fat 1.0(1).apk    a variant of Android/Adware.AirPush.G application    deleted - quarantined
C:\z.irfan\software\Apps\Top 100 Apps\Music & Videos\com.DSquareAndroid.Mogli-5-v1.4.apk    a variant of Android/Plankton.I trojan    deleted - quarantined
C:\z.irfan\software\Apps\Top 100 Apps\Social\SMS Jokes Khazana 1.0(1).apk    a variant of Android/Adware.Viser.B application    deleted - quarantined
C:\z.irfan\software\Apps\Top 100 Apps\Tools\com.truecaller-101-v2.992.apk    a variant of Android/Truecaller.A potentially unsafe application    deleted - quarantined
C:\z.irfan\software\Format Factory\Format Factory.exe    Win32/Adware.ADON potentially unwanted application    deleted - quarantined
C:\z.irfan\studymaterials\php_internship\anilk\REMOVAL DIS\autorun.inf    INF/Autorun.gen worm    cleaned by deleting - quarantined
 



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:58 AM

Posted 07 February 2014 - 10:17 PM

Looks good, did you see post 10?
How is it now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 iamifk

iamifk
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 08 February 2014 - 02:51 AM

Search protect was already uninstalled.

but still i am unable to turn on windows firewall



#14 iamifk

iamifk
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:01:28 PM

Posted 08 February 2014 - 02:54 AM

after clicking on "use recommended settings" for turning on. the round mouse logo rotates for sometime and then disappears.



#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:58 AM

Posted 10 February 2014 - 08:59 PM

Lets see if some files got screwy.

Download Windows Repair (All in One) from this site

Install the program then run it.

NOTE 1. In Windows Vista, 7 and 8 right click on the program, click "Run As Administrator".
NOTE 2. Disable your antivirus program before running Windows Repair.


Go to Step 2 and click on Check button next to 1. See If Check Disk Is Needed.
If the tool that the Check Disk is needed click on Do It button next to 2. Check Disk.
In that case make sure you restart computer.

p22004342.gif


Once the above is done go to Step 3 and allow it to run System File Check by clicking on Do It button:

p22004343.gif


Go to Step 4 and under "System Restore" click on Create button:

p22004346.gif


Go to Start Repairs tab and click Start button.

Leave all checkmarks as they're.
NOTE for Windows 8 users. Reset Registry Permissions is NOT checked by design.

Click on Start button.

p22004347.gif

Post Windows Repair log which is located in the following folder:
64-bit systems - C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs
32-bit systems - C:\Program Files\Tweaking.com\Windows Repair (All in One)\Logs
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users