Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google search defaults to Yahoo -page not found


  • Please log in to reply
15 replies to this topic

#1 john4541

john4541

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 23 February 2014 - 02:27 PM

Hi

 

I am new to this forum.

 

I purchased a new computer about 10 days ago(Dell Inspiron 660-windows 8). I think that I downloaded something attached to either AVG or Firefox. I imported profiles for both Chrome and Firefox from the old computer.

 

Intermittently a search on google will default to half a page of yahoo listing search answers. An example of the bebsite address is http://uk.yhs4.search.yahoo.com/yhs/errorhandler?hspart=visicom&hsimp=yhse-visicom&type=vmn__antiphishing-internethelper__1_0_1_106__yhse__antiphishing_dn__rp&q=www.independent.co.uk. Clicking on one of the page options repeats this. This example is from Firefox but Chrome has a similar problem. I did try internet explorer but this was worse. I have been reading your site amongst others and tried options including malwarebytes, superantispyware and adwcleaner. This seems to resolve the problem,sometimes for several hours, but it then starts again. Another side effect are that search requests are getting slower and occasionally do not complete.

 

Could someone please help me with this.

 

 

 



BC AdBot (Login to Remove)

 


#2 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:11:30 AM

Posted 23 February 2014 - 03:01 PM

Please download MiniToolBox, and save it to your desktop and run it, and checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

Please download TDSSKiller exe version to your desktop. Double-click on TDSSKiller.exe to run the tool for known TDSS variants. Vista/Windows 7 users right-click and select Run As Administrator.
  •     Click on Change Parameters and click Detect TDLFS File System.
  •     Click the Start Scan button.
  •     Do not use the computer during the scan
  •     If the scan completes with nothing found, click Close to exit.
  •     If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  •     Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
  •     Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  •     A TDSSKiller text file would be saved in Local Disk C.
  •     Copy and paste the contents of that file in your next reply.
ADW Cleaner


Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Clean.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


#3 john4541

john4541
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 23 February 2014 - 04:17 PM

Hello Bleepin Madman

Thanks for the quick response. The information requested is below.  TDSS killer found nothing.

MiniToolBox by Farbar  Version: 23-01-2014
Ran by J (administrator) on 23-02-2014 at 20:29:49
Running from "C:\Users\J\Desktop"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Ethernet (Connected)
Dell Wireless 1506 802.11b|g|n (2.4GHz) = Wi-Fi (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="ethernet_3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : pc
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : lan

Wireless LAN adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 16-23-87-08-42-D2
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet:

   Connection-specific DNS Suffix  . : lan
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : C8-1F-66-1A-0E-59
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::212d:bcd:a8ab:7c01%4(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.64(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 23 February 2014 18:09:06
   Lease Expires . . . . . . . . . . : 24 February 2014 18:09:06
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 365436774
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-82-A6-A8-34-23-87-08-42-D2
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Wireless LAN adapter Wi-Fi:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Dell Wireless 1506 802.11b|g|n (2.4GHz)
   Physical Address. . . . . . . . . : 34-23-87-08-42-D2
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
Server:  dsldevice.lan
Address:  192.168.1.254

Name:    google.com
Addresses:  2607:f8b0:4000:801::1006
      212.56.71.155
      212.56.71.152
      212.56.71.181
      212.56.71.165
      212.56.71.187
      212.56.71.154
      212.56.71.148
      212.56.71.170
      212.56.71.159
      212.56.71.176
      212.56.71.144
      212.56.71.185
      212.56.71.174
      212.56.71.163
      212.56.71.166
      212.56.71.177


Pinging google.com [212.56.71.155] with 32 bytes of data:
Reply from 212.56.71.155: bytes=32 time=23ms TTL=59
Reply from 212.56.71.155: bytes=32 time=26ms TTL=59

Ping statistics for 212.56.71.155:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 23ms, Maximum = 26ms, Average = 24ms
Server:  dsldevice.lan
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  206.190.36.45
      98.139.183.24
      98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=160ms TTL=47
Reply from 98.138.253.109: bytes=32 time=166ms TTL=47

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 160ms, Maximum = 166ms, Average = 163ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  5...16 23 87 08 42 d2 ......Microsoft Wi-Fi Direct Virtual Adapter
  4...c8 1f 66 1a 0e 59 ......Realtek PCIe GBE Family Controller
  3...34 23 87 08 42 d2 ......Dell Wireless 1506 802.11b|g|n (2.4GHz)
  1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.64     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.64    276
     192.168.1.64  255.255.255.255         On-link      192.168.1.64    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.64    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.64    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.64    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  4    276 fe80::/64                On-link
  4    276 fe80::212d:bcd:a8ab:7c01/128
                                    On-link
  1    306 ff00::/8                 On-link
  4    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [84480] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/23/2014 08:27:18 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.

Error: (02/23/2014 07:51:04 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.

Error: (02/23/2014 07:48:13 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"1".
Dependent Assembly rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (02/23/2014 06:09:27 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"1".
Dependent Assembly rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (02/23/2014 06:03:54 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"1".
Dependent Assembly rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (02/23/2014 05:48:48 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"1".
Dependent Assembly rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (02/23/2014 05:05:59 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.

Error: (02/23/2014 05:05:58 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.

Error: (02/23/2014 05:05:52 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.

Error: (02/23/2014 05:05:52 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.


System errors:
=============
Error: (02/23/2014 10:00:00 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

Error: (02/22/2014 02:31:15 PM) (Source: DCOM) (User: PC)
Description: Windows.Store

Error: (02/22/2014 10:00:01 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

Error: (02/19/2014 10:52:14 PM) (Source: DCOM) (User: PC)
Description: Microsoft.Windows.PhotoManager

Error: (02/19/2014 10:05:22 PM) (Source: DCOM) (User: PC)
Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}pcJS-1-5-21-2166532044-2855370948-3210927221-1001LocalHost (Using LRPC)Microsoft.BingSports_3.0.1.174_x64__8wekyb3d8bbweS-1-15-2-1457613951-1028716704-1089715812-858319886-3420779130-1191463368-1428868892

Error: (02/19/2014 09:12:36 PM) (Source: NETLOGON) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Error: (02/19/2014 09:12:05 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error:
%%1058

Error: (02/19/2014 09:12:05 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error:
%%1058

Error: (02/19/2014 09:12:05 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error:
%%1058

Error: (02/19/2014 09:12:05 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Workstation service which failed to start because of the following error:
%%1058


Microsoft Office Sessions:
=========================
Error: (02/23/2014 08:27:18 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\J\Downloads\esetsmartinstaller_enu.exe

Error: (02/23/2014 07:51:04 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\J\Downloads\esetsmartinstaller_enu.exe

Error: (02/23/2014 07:48:13 PM) (Source: SideBySide)(User: )
Description: rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"C:\Windows\Installer\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}\recordingmanager.exe

Error: (02/23/2014 06:09:27 PM) (Source: SideBySide)(User: )
Description: rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"C:\Windows\Installer\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}\recordingmanager.exe

Error: (02/23/2014 06:03:54 PM) (Source: SideBySide)(User: )
Description: rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"C:\Windows\Installer\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}\recordingmanager.exe

Error: (02/23/2014 05:48:48 PM) (Source: SideBySide)(User: )
Description: rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"C:\Windows\Installer\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}\recordingmanager.exe

Error: (02/23/2014 05:05:59 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\J\Downloads\esetsmartinstaller_enu.exe

Error: (02/23/2014 05:05:58 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\J\Downloads\esetsmartinstaller_enu.exe

Error: (02/23/2014 05:05:52 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\J\Downloads\esetsmartinstaller_enu.exe

Error: (02/23/2014 05:05:52 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\J\Downloads\esetsmartinstaller_enu.exe


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 7.2.8)
Adobe Flash Player 12 Plugin (Version: 12.0.0.70)
AIO_Scan (Version: 130.0.421.000)
AVG 2014 (Version: 14.0.3705)
AVG 2014 (Version: 14.0.4335)
AVG 2014 (Version: 2014.0.4335)
BCL easyConverter SDK 3 (Word Version) 64 (Version: 3.0.64)
Bing Bar (Version: 7.3.124.0)
BufferChm (Version: 140.0.298.000)
Classic Shell (Version: 3.6.8)
Conexant SmartAudio HD (Version: 8.50.12.0)
Copy (Version: 140.0.298.000)
CyberLink LabelPrint 2.5 (Version: 2.5.5415)
CyberLink Media Suite 10 (Version: 10.0.1.2417)
CyberLink Media Suite Essentials (Version: 10.0)
CyberLink Power2Go 8 (Version: 8.0.0.2126)
CyberLink PowerDirector 10 (Version: 10.0.1.2413)
CyberLink PowerDVD 10 (Version: 10.0.4828.52)
Dell Backup and Recovery - Support Software (Version: 1.6.0.3)
Dell Backup and Recovery (Version: 1.6.0.3)
Dell Digital Delivery (Version: 2.8.5000.0)
Dell Wireless Driver Installation (Version: 10.0)
DesktopWeatherAlerts (Version: 1.0.13.0)
Destinations (Version: 140.0.253.000)
DeviceDiscovery (Version: 140.0.298.000)
DJ_AIO_NS_LP_DocCD (Version: 90.0.222.000)
DJ_AIO_ProductContext (Version: 140.0.425.000)
DJ_AIO_Software (Version: 140.0.428.000)
DJ_AIO_Software_min (Version: 140.0.425.000)
DocProc (Version: 140.0.185.000)
DSC/AA Factory Installer (Version: 3.4.6299.48)
F4100 (Version: 140.0.425.000)
F4100_Help (Version: 90.0.222.000)
Family Tree Maker 2014 (Version: 22.0.207)
Google Chrome (Version: 33.0.1750.117)
Google Chrome Frame (Version: 65.169.107)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4805.320)
Google Update Helper (Version: 1.3.22.5)
GPBaseService2 (Version: 140.0.297.000)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Deskjet All-In-One Software (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photo Creations (Version: 1.0.0.2024)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.002.006.003)
HPPhotoGadget (Version: 140.0.524.000)
HPProductAssistant (Version: 140.0.298.000)
HPSSupply (Version: 140.0.297.000)
Intel® Control Center (Version: 1.2.1.1008)
Intel® Management Engine Components (Version: 8.1.0.1281)
Intel® Processor Graphics (Version: 10.18.10.3379)
Intel® Rapid Storage Technology (Version: 11.6.0.1030)
Intel® Trusted Connect Service Client (Version: 1.24.738.1)
Internet Helper Anti-phishing (Version: 1.3.1.0)
MarketResearch (Version: 140.0.299.000)
Microsoft Office 365 ProPlus - en-us (Version: 15.0.4551.1512)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works 6-9 Converter (Version: 14.0.6120.5002)
Mozilla Firefox 27.0.1 (x86 en-US) (Version: 27.0.1)
Mozilla Maintenance Service (Version: 27.0.1)
My Dell (Version: 3.4.6422.14)
OCR Software by I.R.I.S. 14.0 (Version: 14.0)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4551.1512)
Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1512)
Office 15 Click-to-Run Localization Component (Version: 15.0.4551.1512)
PhotoPad Image Editor (Version: 2.35)
Rapport (Version: 3.5.1304.48)
RealDownloader (Version: 1.3.3)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealPlayer (Version: 16.0.3)
Realtek USB 2.0 Card Reader (Version: 6.1.8400.30136)
RealUpgrade 1.1 (Version: 1.1.0)
SavingsBull (Version: 1.0.0.0)
Scan (Version: 140.0.253.000)
Shop for HP Supplies (Version: 14.0)
SolutionCenter (Version: 140.0.299.000)
Status (Version: 140.0.342.000)
SUPERAntiSpyware (Version: 5.7.1018)
Toolbox (Version: 140.0.596.000)
TrayApp (Version: 140.0.297.000)
Trusteer Endpoint Protection (Version: 3.5.1304.48)
UnloadSupport (Version: 11.0.0)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1)
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
WebReg (Version: 140.0.297.017)

========================= Memory info: ===================================

Percentage of memory in use: 24%
Total physical RAM: 8066.01 MB
Available physical RAM: 6058.5 MB
Total Pagefile: 9346.01 MB
Available Pagefile: 6836.23 MB
Total Virtual: 4095.88 MB
Available Virtual: 3980.53 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:917.06 GB) (Free:880.7 GB) NTFS

========================= Users: ========================================

User accounts for \\PC

Administrator            Guest                    J                        


**** End of log ****

 

# AdwCleaner v3.019 - Report created 23/02/2014 at 20:44:32
# Updated 17/02/2014 by Xplode
# Operating System : Windows 8.1  (64 bits)
# Username : J - PC
# Running from : C:\Users\J\Desktop\AdwCleaner(2).exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

File Deleted : C:\WINDOWS\System32\Tasks\NCH Software

***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16518


-\\ Mozilla Firefox v27.0.1 (en-US)

[ File : C:\Users\J\AppData\Roaming\Mozilla\Firefox\Profiles\vbenlfl9.default-1393087818197\prefs.js ]


-\\ Google Chrome v33.0.1750.117

[ File : C:\Users\J\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [20941 octets] - [14/02/2014 14:49:24]
AdwCleaner[R1].txt - [21002 octets] - [14/02/2014 14:52:25]
AdwCleaner[R2].txt - [1156 octets] - [14/02/2014 15:01:49]
AdwCleaner[R3].txt - [3753 octets] - [23/02/2014 16:44:07]
AdwCleaner[R4].txt - [1465 octets] - [23/02/2014 16:50:48]
AdwCleaner[R5].txt - [1468 octets] - [23/02/2014 18:05:59]
AdwCleaner[R6].txt - [1588 octets] - [23/02/2014 18:11:06]
AdwCleaner[R7].txt - [1646 octets] - [23/02/2014 20:43:59]
AdwCleaner[S0].txt - [20713 octets] - [14/02/2014 14:54:02]
AdwCleaner[S1].txt - [1220 octets] - [14/02/2014 15:03:27]
AdwCleaner[S2].txt - [3437 octets] - [23/02/2014 16:45:22]
AdwCleaner[S3].txt - [1530 octets] - [23/02/2014 16:51:33]
AdwCleaner[S4].txt - [1531 octets] - [23/02/2014 18:08:10]
AdwCleaner[S5].txt - [1569 octets] - [23/02/2014 20:44:32]

########## EOF - C:\AdwCleaner\AdwCleaner[S5].txt - [1629 octets] ##########

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.2 (02.20.2014:1)
OS: Windows 8.1 x64
Ran by J on 23/02/2014 at 20:53:41.37
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23/02/2014 at 20:59:50.87
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

Farbar Service Scanner Version: 16-02-2014
Ran by J (administrator) on 23-02-2014 at 21:08:40
Running from "C:\Users\J\Desktop"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Demand. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
 



#4 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:11:30 AM

Posted 23 February 2014 - 04:34 PM

Still redirecting?

#5 john4541

john4541
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 24 February 2014 - 01:31 AM

Hello

 

Cannot get it to redirect at the moment. However, it did clear for a few hours before. I will use it today and update you later.



#6 john4541

john4541
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 24 February 2014 - 12:59 PM

Hello

 

There is no redirecting at the moment. However, the computer is maybe 10/20% slower. Also 3 searches on Firefox created the following. These same searches worked on Chrome. Could this be linked?

 

 

Not Found

The requested URL /yhs/errorhandler was not found on this server.

Apache/2.2.9 (Debian) PHP/5.2.6-1+lenny9 with Suhosin-Patch Server at uk.yhs4.search.yahoo.com Port 81

 

one of them was a redirect and showed the web address of

http://uk.yhs4.search.yahoo.com/yhs/errorhandler?hspart=visicom&hsimp=yhse-visicom&type=vmn__antiphishing-internethelper__1_0_1_106__yhse__antiphishing_dn__rp&q=t.cotc4ivtgyzi



#7 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:11:30 AM

Posted 24 February 2014 - 07:02 PM

Please download and run Malwarebytes Anti-Rootkit and follow the instructions on the site. Post the log when done.

#8 john4541

john4541
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 25 February 2014 - 01:47 AM

Hello

 

No log to print. Screen is

'Congratulations. Scan finished: no malware found'

 

Also tried one of the sites that caused an error yesterday and it opened correctly



#9 john4541

john4541
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 25 February 2014 - 01:25 PM

Hello

 

Tried maybe 100 searches on Firefox to test it. Speed has been fast with no errors. Then the original problem.

Clicked on a link to take me to www.martinmccoll.co.uk

 

This defaulted to yahoo on the left hand side of the screen with a page of results as before. The web address at the top is

 

Searched for http://uk.yhs4.search.yahoo.com/yhs/errorhandler?hspart=visicom&hsimp=yhse-visicom&type=vmn__antiphishing-internethelper__1_0_1_106__yhse__antiphishing_dn__rp&q=www.martinmccoll.co.uk

 

clicking on the link refreshes the same page. The search worked on chrome.

 

I have followed up with more searches on my regular sites and have been unable to access 3  out of 6 searched. I powered the computer down and restarted. One out of 50 searches defaulted to Yahoo. All the rest were fine.



#10 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:11:30 AM

Posted 25 February 2014 - 06:53 PM

Remove this:

Internet Helper Anti-phishing (Version: 1.3.1.0)

And see if you get that redirect?

#11 john4541

john4541
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:12:30 PM

Posted 26 February 2014 - 03:11 PM

Hi

 

I think you have sorted it. No errors all day. Thank you for all your help which is really appreciated.



#12 Artkoudos

Artkoudos

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:30 AM

Posted 02 December 2016 - 07:39 AM

Hello guys,

I guess this is an old thread but since I have the same problem I thought of reviving it.

I will be going through the steps cryptodan adviced and will be posting my results soon.

#13 Artkoudos

Artkoudos

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:30 AM

Posted 02 December 2016 - 08:34 AM

I just went through the whole process and it looks like the redirection has stopped.  I tried all the websites where it was predominantly happening and all works fine at the moment but will keep and eye and report back.

 

As you prompted here are the reports of the various cleaning steps starting with the Mini Toolkit Box

 

 

 

 

MiniToolBox by Farbar  Version: 17-06-2016
Ran by Mafezinha (administrator) on 02-12-2016 at 12:27:02
Running from "C:\Users\Mafezinha\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: 530U3BI/530U4BI/530U4BH Manufacturer: SAMSUNG ELECTRONICS CO., LTD.
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
========================= IP Configuration: ================================

Intel® Centrino® Advanced-N 6230 = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="Wireless Network Connection 3" address=192.168.16.2 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Mafezinha-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Mixed
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 88-53-2E-A8-8C-A6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 3:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
   Physical Address. . . . . . . . . : 88-53-2E-A8-8C-A3
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 88-53-2E-A8-8C-A3
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Intel® Centrino® Advanced-N 6230
   Physical Address. . . . . . . . . : 88-53-2E-A8-8C-A2
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : fdaa:bbcc:ddee:0:81db:ec6f:7adc:e1f2(Preferred)
   Temporary IPv6 Address. . . . . . : fdaa:bbcc:ddee:0:7417:bd8:ffb5:af10(Preferred)
   Link-local IPv6 Address . . . . . : fe80::81db:ec6f:7adc:e1f2%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.144(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 02 December 2016 11:50:04
   Lease Expires . . . . . . . . . . : 03 December 2016 11:52:41
   Default Gateway . . . . . . . . . : fe80::924d:4aff:fe14:8695%12
                                       192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 310924078
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-37-CE-55-E8-03-9A-31-31-77
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : E8-03-9A-31-31-77
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 34:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.home:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  bthub
Address:  192.168.1.254

Name:    google.com
Addresses:  2a00:1450:4009:807::200e
      172.217.23.14


Pinging google.com [172.217.23.14] with 32 bytes of data:
Reply from 172.217.23.14: bytes=32 time=7ms TTL=54
Reply from 172.217.23.14: bytes=32 time=6ms TTL=54

Ping statistics for 172.217.23.14:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 6ms, Maximum = 7ms, Average = 6ms
Server:  bthub
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  2001:4998:58:c02::a9
      2001:4998:c:a06::2:4008
      2001:4998:44:204::a7
      98.138.253.109
      206.190.36.45
      98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=82ms TTL=50
Reply from 98.139.183.24: bytes=32 time=82ms TTL=50

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 82ms, Maximum = 82ms, Average = 82ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 15...88 53 2e a8 8c a6 ......Bluetooth Device (Personal Area Network)
 14...88 53 2e a8 8c a3 ......Microsoft Virtual WiFi Miniport Adapter #2
 13...88 53 2e a8 8c a3 ......Microsoft Virtual WiFi Miniport Adapter
 12...88 53 2e a8 8c a2 ......Intel® Centrino® Advanced-N 6230
 11...e8 03 9a 31 31 77 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 42...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 45...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254    192.168.1.144     30
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.144    286
    192.168.1.144  255.255.255.255         On-link     192.168.1.144    286
    192.168.1.255  255.255.255.255         On-link     192.168.1.144    286
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.144    286
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.144    286
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 12    286 ::/0                     fe80::924d:4aff:fe14:8695
  1    306 ::1/128                  On-link
 12     38 fdaa:bbcc:ddee::/64      On-link
 12    286 fdaa:bbcc:ddee::/64      fe80::924d:4aff:fe14:8695
 12    286 fdaa:bbcc:ddee:0:7417:bd8:ffb5:af10/128
                                    On-link
 12    286 fdaa:bbcc:ddee:0:81db:ec6f:7adc:e1f2/128
                                    On-link
 12    286 fe80::/64                On-link
 12    286 fe80::81db:ec6f:7adc:e1f2/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    286 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/02/2016 11:50:12 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/02/2016 11:50:02 AM) (Source: BstHdAndroidSvc) (User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (12/02/2016 10:09:04 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/02/2016 10:08:38 AM) (Source: BstHdAndroidSvc) (User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (12/01/2016 01:12:32 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/01/2016 01:12:25 PM) (Source: BstHdAndroidSvc) (User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (12/01/2016 10:19:59 AM) (Source: BstHdAndroidSvc) (User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (12/01/2016 10:19:58 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/01/2016 05:32:52 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/01/2016 05:32:50 AM) (Source: BstHdAndroidSvc) (User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)


System errors:
=============
Error: (12/02/2016 11:51:13 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/02/2016 11:50:23 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5 = Access is denied.


Error: (12/02/2016 11:50:15 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: D@01010004

Error: (12/02/2016 11:50:02 AM) (Source: Service Control Manager) (User: )
Description: The BlueStacks Android Service service terminated with the following error:
%%1064 = An exception occurred in the service when handling the control request.


Error: (12/02/2016 11:49:16 AM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5 = Access is denied.


Error: (12/02/2016 10:09:50 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/02/2016 10:08:38 AM) (Source: Service Control Manager) (User: )
Description: The BlueStacks Android Service service terminated with the following error:
%%1064 = An exception occurred in the service when handling the control request.


Error: (12/01/2016 11:31:48 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5 = Access is denied.


Error: (12/01/2016 01:13:28 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (12/01/2016 01:12:37 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5 = Access is denied.



Microsoft Office Sessions:
=========================
Error: (12/02/2016 11:50:12 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/02/2016 11:50:02 AM) (Source: BstHdAndroidSvc)(User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (12/02/2016 10:09:04 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/02/2016 10:08:38 AM) (Source: BstHdAndroidSvc)(User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (12/01/2016 01:12:32 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/01/2016 01:12:25 PM) (Source: BstHdAndroidSvc)(User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (12/01/2016 10:19:59 AM) (Source: BstHdAndroidSvc)(User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (12/01/2016 10:19:58 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/01/2016 05:32:52 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (12/01/2016 05:32:50 AM) (Source: BstHdAndroidSvc)(User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)


=========================== Installed Programs ============================

„Windows Live Essentials“ (HKLM-x32\...\{19ADD3BF-C42B-47DC-81C6-5E9731B668C4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
„Windows Live Mail“ (HKLM-x32\...\{2720009D-9566-45A7-A370-0E6DAC313F3F}) (Version: 15.4.3502.0922 - „Microsoft Corporation“) Hidden
„Windows Live Messenger“ (HKLM-x32\...\{122800FE-3AAF-4974-9FBD-54B023FA756A}) (Version: 15.4.3538.0513 - „Microsoft Corporation“) Hidden
„Windows Live“ fotogalerija (HKLM-x32\...\{C877E454-FA36-409A-A00E-1240CEC61BBD}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
µTorrent (HKCU\...\uTorrent) (Version: 3.4.9.42973 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (HKLM\...\{55D55008-E5F6-47D6-B16F-B2A40D4D145F}) (Version: 6.2.1 - Hewlett-Packard) Hidden
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
Accelerometer (HKLM-x32\...\{87434D51-51DB-4109-B68F-A829ECDCF380}) (Version: 1.06.08.53 - STMicroelectronics)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe Flash Player 10 ActiveX (HKLM-x32\...\{B7B3E9B3-FB14-4927-894B-E9124509AF5A}) (Version: 10.0.32.18 - Adobe Systems, Inc.)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.185 - Adobe Systems Incorporated)
AIO_CDB_ProductContext (HKLM-x32\...\{E7112940-5F8E-4918-B9FE-251F2F8DC81F}) (Version: 130.0.365.000 - Hewlett-Packard) Hidden
AIO_CDB_Software (HKLM-x32\...\{9F6B13E2-B93F-4203-9BD4-5DC18C9F9DEB}) (Version: 130.0.365.000 - Hewlett-Packard) Hidden
AIO_Scan (HKLM-x32\...\{104066F4-5897-4067-85D3-4C88B67CCF75}) (Version: 130.0.421.000 - Hewlett-Packard) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
Auto Gordian Knot 2.55 (HKLM-x32\...\AutoGK) (Version: 2.55 - len0x)
AVG (HKLM\...\{3D49031D-AEDF-4FC2-816F-CCE428CFA58A}) (Version: 16.131.7924 - AVG Technologies) Hidden
AVG (HKLM\...\AvgZen) (Version: 1.113.2.50020 - AVG Technologies)
AVG 2016 (HKLM\...\{E6D91868-5C9A-4E48-93CD-4F3603E3042C}) (Version: 16.0.4728 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.131.7924 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.6.255 - AVG Technologies)
AVG Zen (HKLM\...\{50B62078-D231-46A3-BA7C-23DCFA0E6101}) (Version: 1.113.1 - AVG Technologies) Hidden
Avid Audio Drivers (x64) (HKLM\...\{2F227ACA-204C-4529-BA33-D095C42C72DB}) (Version: 8.0.5 - Avid Technology)
Avid Mbox Driver 1.0.19 (x64) (HKLM\...\{282EA548-CEF6-4014-96B4-CC06C58A5E88}) (Version: 1.0.19 - Avid)
Avid Mbox Mini Driver 1.0.6 (x64) (HKLM\...\{B9F2C1A5-4080-4F9B-B3EA-A182DAD69A85}) (Version: 1.0.6 - Avid)
Avid Mbox Pro Driver 1.0.11 (x64) (HKLM\...\{62C2B2D5-8650-4889-8FF2-4479532F9397}) (Version: 1.0.11 - Avid)
Avid Pro Tools Creative Collection 8.0.5 (HKLM-x32\...\{3BB2CF34-1FC8-46E2-9D64-4A8D1D577549}) (Version: 8.0.5 - Avid Technology, Inc.)
Avid Pro Tools LE 8.0.5 (HKLM-x32\...\{409A13BD-5F3E-442B-BA7B-A1E32B2D8927}) (Version: 8.0.5 - Avid Technology, Inc.)
AvidCoreRuntime (HKLM-x32\...\{623E95CB-145C-4A6A-8404-DE9C31D0853B}) (Version: 5.10.4 - Avid Technology, Inc.)
AvidDIORuntime (HKLM-x32\...\{1E4ACBD8-9F9B-4DA8-BCF3-277EA4442D52}) (Version: 5.10.1 - Avid Technology, Inc.)
AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version:  - )
BlueStacks App Player (HKLM-x32\...\{2A19A03A-A339-4697-99A4-EBA3D035D41A}) (Version: 2.2.19.6015 - BlueStack Systems, Inc.)
BufferChm (HKLM-x32\...\{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}) (Version: 130.0.331.000 - Hewlett-Packard) Hidden
Canon MP610 series (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP610_series) (Version:  - )
Citrix Online Launcher (HKLM-x32\...\{1EFF9E6C-76E1-43F9-81FB-BC8C037B0902}) (Version: 1.0.258 - Citrix)
Copy (HKLM-x32\...\{3C92B2E6-380D-4fef-B4DF-4A3B4B669771}) (Version: 130.0.428.000 - Hewlett-Packard) Hidden
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2227 - CyberLink Corp.)
CyberLink Media+ Player10 (HKLM-x32\...\InstallShield_{34FBC7C4-CD31-4D93-A428-0E524EAC4586}) (Version: 10.0.1110.00 - CyberLink Corp.)
CyberLink MediaShow (HKLM-x32\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 5.0.1130a - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3802 - CyberLink Corp.)
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.3306 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.4417 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (HKLM-x32\...\{2FF8C687-DB7D-4adc-A5DC-57983EC25046}) (Version: 130.0.465.000 - Hewlett-Packard) Hidden
Digidesign DV Toolkit 2 8.0 (HKLM-x32\...\{89877B9C-80B4-41FB-9BCB-6544C6F39BF4}) (Version: 8.0 - Digidesign, A Division of Avid Technology, Inc.)
Digidesign ElevenRack Driver 1.0.8 (x64) (HKLM\...\{DFE96CF0-A611-40C4-AE24-2E4C21E3FF3E}) (Version: 1.0.8 - Digidesign)
Digidesign HFS+ Disk Support (HKLM\...\{F8EFEC11-933A-4F67-AB51-773293FA20BB}) (Version: 8.0.2.3 - Digidesign, A Division of Avid Technology, Inc.)
DocProc (HKLM-x32\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Easy File Share (HKLM-x32\...\{12F81925-F3C1-40DB-91F7-777817974319}) (Version: 1.1.1705 - Samsung Electronics Co., Ltd.)
Easy Migration (HKLM-x32\...\{AD86049C-3D9C-43E1-BE73-643F57D83D50}) (Version: 1.0 - Samsung Electronics Co., Ltd.)
Easy Settings (HKLM-x32\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 1.1 - Samsung Electronics Co., Ltd.)
Easy Support Center 1.0 (HKLM-x32\...\{F687E657-F636-44DF-8125-9FEEA2C362F5}) (Version: 1.1.47 - Samsung)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
ETDWare PS/2-X64 10.0.7.3_WHQL (HKLM\...\Elantech) (Version: 10.0.7.3 - ELAN Microelectronic Corp.)
ExpressCache (HKLM\...\{F9EB0DDE-931C-4E89-96B2-DE8286EDFA6C}) (Version: 1.0.64 - Diskeeper Corporation)
F300 (HKLM-x32\...\{2E87F4AB-99BF-421C-AF7B-365A9C08549A}) (Version: 130.0.365.000 - Hewlett-Packard) Hidden
F300_Help (HKLM-x32\...\{5E6D6161-5509-4f55-9372-1E01792F843A}) (Version: 82.0.242.000 - Hewlett-Packard) Hidden
F300Trb (HKLM-x32\...\{F6AC5364-2FB7-437a-811A-D645F22AA6AC}) (Version: 82.0.242.000 - Hewlett-Packard) Hidden
Fast Flash Sleep Resume (HKLM-x32\...\{16D80FCD-CE38-47E3-BD08-DA14422F8B95}) (Version: 1.0.11 - Samsung) Hidden
Fax (HKLM-x32\...\{440B915A-0C85-45DB-92AE-75AE14704A64}) (Version: 130.0.418.000 - Hewlett-Packard) Hidden
FMW 1 (HKLM\...\{2B084330-F170-4A2D-8642-EFD173315566}) (Version: 1.143.1 - AVG Technologies) Hidden
Fotogalerija Windows Live (HKLM-x32\...\{E59969EA-3B5B-4B24-8B94-43842A7FBFE9}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Free DigiRack Plug-Ins 8.0.5 (HKLM-x32\...\{A24C2C43-4312-493E-96B3-5D1DCE24DEBF}) (Version: 8.0.5 - Avid Technology, Inc.)
Free XPS to PDF Converter (HKLM-x32\...\{81CDCC57-F52D-4824-9725-6DC993F26001}) (Version: 1.1.0 - FreeXPSToPDF.com)
Galeria de Fotografias do Windows Live (HKLM-x32\...\{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (HKLM-x32\...\{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie foto Windows Live (HKLM-x32\...\{CB66242D-12B1-4494-82D2-6F53A7E024A3}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.31.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GoToMeeting 7.27.0.5922 (HKCU\...\GoToMeeting) (Version: 7.27.0.5922 - CitrixOnline)
GPBaseService2 (HKLM-x32\...\{63FF21C9-A810-464F-B60A-3111747B1A6D}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B (HKLM\...\{B61ED343-0B14-4241-999C-490CB1A20DA4}) (Version: 13.0 - HP)
HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (HKLM-x32\...\{681B698F-C997-42C3-B184-B489C6CA24C9}) (Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (HKLM-x32\...\{D79113E7-274C-470B-BD46-01B10219DF6A}) (Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (HKLM-x32\...\{C43326F5-F135-4551-8270-7F7ABA0462E1}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{6B2FFB21-AC88-45C3-9A7D-4BB3E744EC91}) (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Intel PROSet Wireless (HKLM-x32\...\ProInst) (Version:  - ) Hidden
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2462 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology (HKLM\...\{2ABA2E8D-23CF-418F-BC8F-2EC99FA51A3F}) (Version: 1.2.1.0608 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{295AEB79-B53A-4F1B-860F-7800BB7E3681}) (Version: 14.2.1000 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.5.1001 - Intel Corporation)
Intel® WiDi (HKLM-x32\...\{E1B934BB-6AFA-429F-98E4-76F9CBC72BF6}) (Version: 2.2.14.0 - Intel Corporation)
Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version:  - )
Interlok driver setup x64 (HKLM\...\{25613C10-27D2-410B-942B-D922D5C3A7BE}) (Version: 5.8.13 - PACE Anti-Piracy)
iZotope RX 3 (HKLM-x32\...\iZotope RX 3_is1) (Version: 3.02 - iZotope, Inc.)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
LibreOffice 5.0.4.2 (HKLM-x32\...\{14B5DDCF-61C4-4F1E-A621-844685D60B5A}) (Version: 5.0.4.2 - The Document Foundation)
MarketResearch (HKLM-x32\...\{175F0111-2968-4935-8F70-33108C6A4DE3}) (Version: 130.0.374.000 - Hewlett-Packard) Hidden
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0409-0000-0000000FF1CE}) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Mozilla Firefox 50.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 50.0.2 (x86 en-US)) (Version: 50.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.2.6177 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network64 (HKLM\...\{05EFBF37-0E52-4579-875C-7EEF0DFB4FCB}) (Version: 130.0.572.000 - Hewlett-Packard) Hidden
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
Oracle VM VirtualBox 4.3.12_ZZZZ (HKLM\...\{B5121457-0126-4E62-BCBF-6DC7C73D9E4A}) (Version: 4.3.12 - Oracle Corporation)
Poczta usługi Windows Live (HKLM-x32\...\{64376910-1860-4CEF-8B34-AA5D205FC5F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (HKLM-x32\...\{7A9D47BA-6D50-4087-866F-0800D8B89383}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Pošta Windows Live (HKLM-x32\...\{7BA19818-F717-4DFB-BC11-FAF17B2B8AEE}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Pro Tools Video Engine (HKLM-x32\...\{8563F894-20E0-4D28-AC84-F57AD52B68F6}) (Version: 8.0.5 - Avid Technology)
QuickTime 7 (HKLM-x32\...\{627FFC10-CE0A-497F-BA2B-208CAC638010}) (Version: 7.77.80.95 - Apple Inc.)
Raccolta foto di Windows Live (HKLM-x32\...\{ED16B700-D91F-44B0-867C-7EB5253CA38D}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.45.516.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6515 - Realtek Semiconductor Corp.)
RescuePRO 3.3 (HKLM-x32\...\RescuePRO-3.0) (Version:  - )
S Agent (HKLM\...\{CFEA455B-E368-45B2-A01E-1C3A6C0F06B6}) (Version: 1.1.45 - Samsung Electronics CO., LTD.) Hidden
Samsung Recovery Solution 5 (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 5.0.1.8 - Samsung)
Scan (HKLM-x32\...\{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
SISShortcut (HKLM-x32\...\{FDAE128F-A355-42B1-8422-1AF3ACEE34F4}) (Version: 1.0.0.3 - Samsung)
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.9.12585 - Skype Technologies S.A.)
Skype™ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.)
SmartWebPrinting (HKLM-x32\...\{DC635845-46D3-404B-BCB1-FC4A91091AFA}) (Version: 130.0.457.000 - Hewlett-Packard) Hidden
Software Launcher (HKLM-x32\...\{B750B5C2-CC17-4967-905B-29F4EB986131}) (Version: 1.0.2 - Samsung)
SolutionCenter (HKLM-x32\...\{4A70EF07-7F88-4434-BB61-D1DE8AE93DD4}) (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Status (HKLM-x32\...\{0EF5BEA9-B9D3-46d7-8958-FB69A0BAEACC}) (Version: 130.0.469.000 - Hewlett-Packard) Hidden
SW Update (HKLM-x32\...\{DA06101F-FD76-4BF0-88BD-B26A197005E3}) (Version: 2.1.21 - Samsung Electronics CO., LTD.)
Toolbox (HKLM-x32\...\{6BBA26E9-AB03-4FE7-831A-3535584CA002}) (Version: 130.0.648.000 - Hewlett-Packard) Hidden
TrayApp (HKLM-x32\...\{1EC71BFB-01A3-4239-B6AF-B1AE656B15C0}) (Version: 130.0.422.000 - Hewlett-Packard) Hidden
UnloadSupport (HKLM-x32\...\{4E7C28C7-D5DA-4E9F-A1CA-60490B54AE35}) (Version: 11.0.0 - Hewlett-Packard) Hidden
User Guide (HKLM-x32\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.1 - )
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VobSub v2.23 (Remove Only) (HKLM-x32\...\VobSub) (Version:  - )
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.2.0.13 - VSO Software)
Waves Complete V9r5 (HKLM-x32\...\{91000001-C561-4E32-99EB-3C5AD3683A70}) (Version: 9.1.1 - Waves)
WebReg (HKLM-x32\...\{43CDF946-F5D9-4292-B006-BA0D92013021}) (Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Live 程式集 (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
WinRAR 4.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
XviD MPEG4 Video Codec (remove only) (HKLM-x32\...\XviD MPEG4 Video Codec) (Version:  - )
Συλλογή φωτογραφιών του Windows Live (HKLM-x32\...\{C00C2A91-6CB3-483F-80B3-2958E29468F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (HKLM-x32\...\{E83DC314-C926-4214-AD58-147691D6FE9F}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (HKLM-x32\...\{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}) (Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (HKLM-x32\...\{77F69CA1-E53D-4D77-8BA3-FA07606CC851}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотогалерия на Windows Live (HKLM-x32\...\{4444F27C-B1A8-464E-9486-4C37BAB39A09}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
גלריית התמונות של Windows Live (HKLM-x32\...\{CE929F09-3853-4180-BD90-30764BFF7136}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
بريد Windows Live (HKLM-x32\...\{0A4C4B29-5A9D-4910-A13C-B920D5758744}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
معرض صور Windows Live (HKLM-x32\...\{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

========================= Memory info: ===================================

Percentage of memory in use: 41%
Total physical RAM: 3990.23 MB
Available physical RAM: 2331.91 MB
Total Virtual: 7978.67 MB
Available Virtual: 5741.42 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:442.73 GB) (Free:42.22 GB) NTFS

========================= Users: ========================================

User accounts for \\MAFEZINHA-PC

92BD0ADD4A234B1B93AB     Administrator            Guest                    
Mafezinha                


**** End of log ****
 



#14 Artkoudos

Artkoudos

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:30 AM

Posted 02 December 2016 - 08:37 AM

BTW Both the MiniToolkitBox and the TDS Killer found no problems but the AdwCleaner did.

 

Here is TDS Log File

 

 

12:39:55.0697 0x1e5c  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
12:40:04.0573 0x1e5c  ============================================================
12:40:04.0573 0x1e5c  Current date / time: 2016/12/02 12:40:04.0573
12:40:04.0573 0x1e5c  SystemInfo:
12:40:04.0573 0x1e5c  
12:40:04.0573 0x1e5c  OS Version: 6.1.7601 ServicePack: 1.0
12:40:04.0573 0x1e5c  Product type: Workstation
12:40:04.0573 0x1e5c  ComputerName: MAFEZINHA-PC
12:40:04.0589 0x1e5c  UserName: Mafezinha
12:40:04.0589 0x1e5c  Windows directory: C:\windows
12:40:04.0589 0x1e5c  System windows directory: C:\windows
12:40:04.0589 0x1e5c  Running under WOW64
12:40:04.0589 0x1e5c  Processor architecture: Intel x64
12:40:04.0589 0x1e5c  Number of processors: 4
12:40:04.0589 0x1e5c  Page size: 0x1000
12:40:04.0589 0x1e5c  Boot type: Normal boot
12:40:04.0589 0x1e5c  CodeIntegrityOptions = 0x00000001
12:40:04.0589 0x1e5c  ============================================================
12:40:04.0776 0x1e5c  KLMD registered as C:\windows\system32\drivers\93689579.sys
12:40:04.0776 0x1e5c  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.18939, osProperties = 0x1
12:40:05.0494 0x1e5c  System UUID: {987D5210-F3FE-A1E0-9B23-0F535AFB8867}
12:40:05.0977 0x1e5c  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:40:05.0977 0x1e5c  Drive \Device\Harddisk1\DR1 - Size: 0x3BA816000 ( 14.91 Gb ), SectorSize: 0x200, Cylinders: 0x79A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:40:05.0993 0x1e5c  ============================================================
12:40:05.0993 0x1e5c  \Device\Harddisk0\DR0:
12:40:05.0993 0x1e5c  MBR partitions:
12:40:05.0993 0x1e5c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:40:05.0993 0x1e5c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x37578000
12:40:05.0993 0x1e5c  \Device\Harddisk1\DR1:
12:40:05.0993 0x1e5c  MBR partitions:
12:40:05.0993 0x1e5c  ============================================================
12:40:06.0024 0x1e5c  C: <-> \Device\Harddisk0\DR0\Partition2
12:40:06.0024 0x1e5c  ============================================================
12:40:06.0024 0x1e5c  Initialize success
12:40:06.0024 0x1e5c  ============================================================
12:40:22.0669 0x18a0  ============================================================
12:40:22.0669 0x18a0  Scan started
12:40:22.0669 0x18a0  Mode: Manual; TDLFS;
12:40:22.0669 0x18a0  ============================================================
12:40:22.0669 0x18a0  KSN ping started
12:40:25.0384 0x18a0  KSN ping finished: true
12:40:25.0649 0x18a0  ================ Scan system memory ========================
12:40:25.0649 0x18a0  System memory - ok
12:40:25.0649 0x18a0  ================ Scan services =============================
12:40:25.0867 0x18a0  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
12:40:25.0867 0x18a0  1394ohci - ok
12:40:25.0930 0x18a0  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\windows\system32\drivers\ACPI.sys
12:40:25.0945 0x18a0  ACPI - ok
12:40:25.0977 0x18a0  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
12:40:25.0977 0x18a0  AcpiPmi - ok
12:40:26.0179 0x18a0  [ C92B0A0957ACAD3CEEF502A2CA10ACB8, 78BF46318B69D9479ECDC83446DD8D454AA2A9A9D94B33C5FC68933DB18AFA3B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:40:26.0179 0x18a0  AdobeARMservice - ok
12:40:26.0289 0x18a0  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
12:40:26.0304 0x18a0  adp94xx - ok
12:40:26.0335 0x18a0  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\windows\system32\drivers\adpahci.sys
12:40:26.0351 0x18a0  adpahci - ok
12:40:26.0382 0x18a0  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\windows\system32\drivers\adpu320.sys
12:40:26.0398 0x18a0  adpu320 - ok
12:40:26.0460 0x18a0  [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
12:40:26.0460 0x18a0  AeLookupSvc - ok
12:40:26.0616 0x18a0  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\windows\system32\drivers\afd.sys
12:40:26.0632 0x18a0  AFD - ok
12:40:26.0663 0x18a0  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\windows\system32\drivers\agp440.sys
12:40:26.0663 0x18a0  agp440 - ok
12:40:26.0694 0x18a0  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\windows\System32\alg.exe
12:40:26.0710 0x18a0  ALG - ok
12:40:26.0772 0x18a0  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\windows\system32\drivers\aliide.sys
12:40:26.0772 0x18a0  aliide - ok
12:40:26.0788 0x18a0  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\windows\system32\drivers\amdide.sys
12:40:26.0788 0x18a0  amdide - ok
12:40:26.0819 0x18a0  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\windows\system32\drivers\amdk8.sys
12:40:26.0819 0x18a0  AmdK8 - ok
12:40:26.0897 0x18a0  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys
12:40:26.0897 0x18a0  AmdPPM - ok
12:40:26.0944 0x18a0  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\windows\system32\drivers\amdsata.sys
12:40:26.0944 0x18a0  amdsata - ok
12:40:26.0991 0x18a0  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
12:40:26.0991 0x18a0  amdsbs - ok
12:40:27.0022 0x18a0  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\windows\system32\drivers\amdxata.sys
12:40:27.0022 0x18a0  amdxata - ok
12:40:27.0084 0x18a0  [ 3BC90482A834F998C3B7A9C934A20342, D49765D1DCDE0D7FB2478D33BD28A3733ADA951C5AE7628A5E316F039A3AA0B1 ] AMPPAL          C:\windows\system32\DRIVERS\AMPPAL.sys
12:40:27.0084 0x18a0  AMPPAL - ok
12:40:27.0100 0x18a0  [ 3BC90482A834F998C3B7A9C934A20342, D49765D1DCDE0D7FB2478D33BD28A3733ADA951C5AE7628A5E316F039A3AA0B1 ] AMPPALP         C:\windows\system32\DRIVERS\amppal.sys
12:40:27.0115 0x18a0  AMPPALP - ok
12:40:27.0256 0x18a0  [ A47D7FEBD9381D34DDB4FF38B15A67FE, 2935E312C0BEDC2B8CABAA9B20C653B87373BE72F9AEEE0980E329CC30FCF678 ] AMPPALR3        C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
12:40:27.0303 0x18a0  AMPPALR3 - ok
12:40:27.0381 0x18a0  [ A0711D119BA4B48A1470C768D301013E, 536366F809125D2C2171597C8C2CB3271BE5C6B373152112E0D970749776E00A ] AppID           C:\windows\system32\drivers\appid.sys
12:40:27.0381 0x18a0  AppID - ok
12:40:27.0521 0x18a0  [ 173C90AF5B243B4DD86F95CA154CB58A, 349F566DADC96B31FDC34C4F26545FB880844DBF84E5821AA0D0CAA91FB837E1 ] AppIDSvc        C:\windows\System32\appidsvc.dll
12:40:27.0521 0x18a0  AppIDSvc - ok
12:40:27.0583 0x18a0  [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo         C:\windows\System32\appinfo.dll
12:40:27.0583 0x18a0  Appinfo - ok
12:40:27.0630 0x18a0  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\windows\system32\drivers\arc.sys
12:40:27.0630 0x18a0  arc - ok
12:40:27.0661 0x18a0  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\windows\system32\drivers\arcsas.sys
12:40:27.0677 0x18a0  arcsas - ok
12:40:27.0771 0x18a0  [ 0AA7A996792FB0287B33A57A8093AE44, 41894F055F3CDA05794FC46E1F2C59979D1DAF7602F44E4ADF6347E199B8137C ] asmthub3        C:\windows\system32\DRIVERS\asmthub3.sys
12:40:27.0771 0x18a0  asmthub3 - ok
12:40:27.0802 0x18a0  [ 125DC3ABF5BFCCFE82AD17D078E0B9EC, FEFF8C37CD688F39C8E341F8BF7A712AA8C0F431B064E07C3EA66A96250D855B ] asmtxhci        C:\windows\system32\DRIVERS\asmtxhci.sys
12:40:27.0817 0x18a0  asmtxhci - ok
12:40:28.0129 0x18a0  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:40:28.0129 0x18a0  aspnet_state - ok
12:40:28.0161 0x18a0  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
12:40:28.0176 0x18a0  AsyncMac - ok
12:40:28.0239 0x18a0  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\windows\system32\drivers\atapi.sys
12:40:28.0239 0x18a0  atapi - ok
12:40:28.0379 0x18a0  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
12:40:28.0410 0x18a0  AudioEndpointBuilder - ok
12:40:28.0441 0x18a0  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\windows\System32\Audiosrv.dll
12:40:28.0457 0x18a0  AudioSrv - ok
12:40:28.0644 0x18a0  [ 96E191F5F901A8385027B872FCF417AC, 1D632CFBA9325BE963403F918E610476A9A1E87DDDD0878B15C786221B7D50EB ] AvgAMPS         C:\Program Files (x86)\AVG\Av\avgamps.exe
12:40:28.0675 0x18a0  AvgAMPS - ok
12:40:28.0816 0x18a0  [ EBE91430DEC70E1F81D1C48B31160CAE, DFFF9663D797D7E289EEB5591ACFED49454FAEB9840CBCB319B60043CD989550 ] Avgdiska        C:\windows\system32\DRIVERS\avgdiska.sys
12:40:28.0816 0x18a0  Avgdiska - ok
12:40:29.0019 0x18a0  [ 9BB687A9BEC4A8D99E1155F140769C6D, 67037909EC06C69143E3FC9202F2A5B1EA42482C51E2548402E75D67297EB692 ] AVGIDSAgent     C:\Program Files (x86)\AVG\Av\avgidsagenta.exe
12:40:29.0190 0x18a0  AVGIDSAgent - ok
12:40:29.0253 0x18a0  [ B86C75AB2F51C796611207EB97D1CD40, 2844F9997091EA0F32B8A445938D59E2EEFC0BA1E646370127BCEC412C1EDD6D ] AVGIDSDriver    C:\windows\system32\DRIVERS\avgidsdrivera.sys
12:40:29.0268 0x18a0  AVGIDSDriver - ok
12:40:29.0331 0x18a0  [ D4CCC55958DC87A0F7EF8A809BE5D656, D2CA777B31B894C5C5AC1D8CE088138DE3A69CB342B647649546EA2987F8D20B ] AVGIDSHA        C:\windows\system32\DRIVERS\avgidsha.sys
12:40:29.0346 0x18a0  AVGIDSHA - ok
12:40:29.0362 0x18a0  [ 4CB2D2D75AC92C4763A54695179DE96F, 4D423EC65D7174CCED8F53BC1B5B44C95471BF774F8C5026E708EEF97A0DA7A5 ] Avgldx64        C:\windows\system32\DRIVERS\avgldx64.sys
12:40:29.0362 0x18a0  Avgldx64 - ok
12:40:29.0502 0x18a0  [ 301E95F388C93D3C73EE35E3693C6A97, 512BA2905EDCC900B12037701A120EE527A14894BF562610F3CF57A65D20FCD5 ] Avgloga         C:\windows\system32\DRIVERS\avgloga.sys
12:40:29.0518 0x18a0  Avgloga - ok
12:40:29.0596 0x18a0  [ A8524438C36CEB9C1F6C6CF7CC56FC7B, 984AA0DA36D3586D5C525B41AD378DD1FC5F446105FF8306C541B116305BF152 ] Avgmfx64        C:\windows\system32\DRIVERS\avgmfx64.sys
12:40:29.0596 0x18a0  Avgmfx64 - ok
12:40:29.0643 0x18a0  [ 2A0D6982D0492BF6266E64F25C23EAE8, 7400F85784C0658B4DF6C7424E3ACDCF421D8293D247E80D6AEE14FA91EBFBDC ] Avgrkx64        C:\windows\system32\DRIVERS\avgrkx64.sys
12:40:29.0643 0x18a0  Avgrkx64 - ok
12:40:29.0908 0x18a0  [ 91A6ACD72F288973BE43420A90E23E8E, C742E79A1EA514EBFBCF305902CB5025E6E7BB7F67CA0747A5EEA44796888BD5 ] avgsvc          C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
12:40:29.0939 0x18a0  avgsvc - ok
12:40:30.0001 0x18a0  [ 62106EC9E7AE887CC4A627206E082296, 3947A8A74C60D5E2709277A80D45B78DA07F3CDC01A8C260BD230EEFDAB145AB ] Avgtdia         C:\windows\system32\DRIVERS\avgtdia.sys
12:40:30.0001 0x18a0  Avgtdia - ok
12:40:30.0142 0x18a0  [ 1EEB894456B375A486950D343F6DB81F, C5D6EBAC49A4AABE360EE2FA791628C164608FAF5CF37049368CE061D8ABFC10 ] avguniva        C:\windows\system32\DRIVERS\avguniva.sys
12:40:30.0142 0x18a0  avguniva - ok
12:40:30.0220 0x18a0  [ 7417B94087F8A083A368508266B327FF, 649D93A10924D4DD443EA00BD7108FF92EDBF495BFBF70241684FC68CBCDCF40 ] avgwd           C:\Program Files (x86)\AVG\Av\avgwdsvca.exe
12:40:30.0235 0x18a0  avgwd - ok
12:40:30.0282 0x18a0  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\windows\System32\AxInstSV.dll
12:40:30.0282 0x18a0  AxInstSV - ok
12:40:30.0329 0x18a0  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
12:40:30.0345 0x18a0  b06bdrv - ok
12:40:30.0376 0x18a0  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
12:40:30.0376 0x18a0  b57nd60a - ok
12:40:30.0391 0x18a0  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\windows\System32\bdesvc.dll
12:40:30.0391 0x18a0  BDESVC - ok
12:40:30.0423 0x18a0  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\windows\system32\drivers\Beep.sys
12:40:30.0423 0x18a0  Beep - ok
12:40:30.0469 0x18a0  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\windows\System32\bfe.dll
12:40:30.0485 0x18a0  BFE - ok
12:40:30.0532 0x18a0  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\windows\System32\qmgr.dll
12:40:30.0563 0x18a0  BITS - ok
12:40:30.0610 0x18a0  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
12:40:30.0610 0x18a0  blbdrive - ok
12:40:30.0719 0x18a0  [ 0F46D2845BD7DDACA52340ECC2B65DA3, 275984285080DF9907632964531B6F60F508D4B3A5EDE981E3441A962B8038B4 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
12:40:30.0750 0x18a0  Bluetooth Device Monitor - ok
12:40:30.0828 0x18a0  [ 3341DE556EC28252D603277609EEF8BF, 49964DBF402AF9465A911FF484FEFF4EFE74AFB47635B4AD7860AC21D2C5D7EA ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
12:40:30.0875 0x18a0  Bluetooth Media Service - ok
12:40:30.0922 0x18a0  [ 5D5C3EC9BE1107DEDF0FEB55B7F3BD77, E1FFDF4399919C7E1AAF0A30A194EFB324C9659A69847F8FB79E5A861B670D40 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
12:40:30.0953 0x18a0  Bluetooth OBEX Service - ok
12:40:30.0984 0x18a0  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
12:40:30.0984 0x18a0  bowser - ok
12:40:31.0015 0x18a0  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys
12:40:31.0015 0x18a0  BrFiltLo - ok
12:40:31.0031 0x18a0  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys
12:40:31.0031 0x18a0  BrFiltUp - ok
12:40:31.0062 0x18a0  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\windows\System32\browser.dll
12:40:31.0062 0x18a0  Browser - ok
12:40:31.0109 0x18a0  [ 63A00CDBEB300522C49EC7CA77324060, 99CB6D37C7D898982A192AAA8DE5CE255E6FA482E19FE9032BAA7069E652F6F5 ] BrSerIb         C:\windows\system32\DRIVERS\BrSerIb.sys
12:40:31.0109 0x18a0  BrSerIb - ok
12:40:31.0140 0x18a0  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\windows\System32\Drivers\Brserid.sys
12:40:31.0140 0x18a0  Brserid - ok
12:40:31.0156 0x18a0  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
12:40:31.0156 0x18a0  BrSerWdm - ok
12:40:31.0171 0x18a0  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
12:40:31.0171 0x18a0  BrUsbMdm - ok
12:40:31.0203 0x18a0  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
12:40:31.0203 0x18a0  BrUsbSer - ok
12:40:31.0249 0x18a0  [ BBCFD6C6EF66449F55AF1BFDB08C9B12, D6D5D408FCFFF9ED69D095948E786C08EEECD5F55905A3D8FE2BB08944C5E1F2 ] BrUsbSIb        C:\windows\system32\DRIVERS\BrUsbSIb.sys
12:40:31.0249 0x18a0  BrUsbSIb - ok
12:40:31.0390 0x18a0  [ 5F1B5DFCC48208384F85BD5E770DEB06, 0588FC607DA3AC679829F5F900DC556A8F7F9A4EF9C7DB3C83F006244E57CA6C ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
12:40:31.0405 0x18a0  BstHdAndroidSvc - ok
12:40:31.0468 0x18a0  [ FA475721CD756ABF85B5B809F9688B12, 60C2554C7C3437453A57E284E557D6C4438B84406F925C32C3C7195695B8A455 ] BstHdDrv        C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
12:40:31.0468 0x18a0  BstHdDrv - ok
12:40:31.0515 0x18a0  [ 46336263A7EA32D99306DDE7DED3608B, 4361BB5A0C285AA280487AEA9BA6F97CE8E53E6AC32689CFBF7782129806CF4E ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
12:40:31.0530 0x18a0  BstHdLogRotatorSvc - ok
12:40:31.0546 0x18a0  [ 2EEFBB3B949276CA13F39176FA8445A5, F1D0F32C968054C2F5CBC3A4D157EC56FE2055255D044D4896A91FAC96FD4551 ] BstHdPlusAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe
12:40:31.0561 0x18a0  BstHdPlusAndroidSvc - ok
12:40:31.0655 0x18a0  [ BA94155BABA8A30D475865A2EB36F43B, 7565981F2BB002476DBCE4EEFAAA37A8E45FA2CA77E4BF960D8FED5036111C64 ] BstHdUpdaterSvc C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
12:40:31.0671 0x18a0  BstHdUpdaterSvc - ok
12:40:31.0764 0x18a0  [ B6FC31F187DA42B7F3AB036030F82426, 0899A947589DD98B3169C54C3715E16731C2FF38CD159C55028C20741CB58E5E ] BstkDrv         C:\Program Files (x86)\BlueStacks\BstkDrv.sys
12:40:31.0764 0x18a0  BstkDrv - ok
12:40:31.0811 0x18a0  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\windows\system32\drivers\BthEnum.sys
12:40:31.0811 0x18a0  BthEnum - ok
12:40:31.0827 0x18a0  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\windows\system32\DRIVERS\bthmodem.sys
12:40:31.0827 0x18a0  BTHMODEM - ok
12:40:31.0842 0x18a0  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\windows\system32\DRIVERS\bthpan.sys
12:40:31.0858 0x18a0  BthPan - ok
12:40:31.0889 0x18a0  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\windows\System32\Drivers\BTHport.sys
12:40:31.0905 0x18a0  BTHPORT - ok
12:40:31.0920 0x18a0  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\windows\system32\bthserv.dll
12:40:31.0936 0x18a0  bthserv - ok
12:40:31.0983 0x18a0  [ 9E2AF97302B9F4BF97E952A865EB31AE, 2DE38CF8A24CC1E31604EF870704DE342D800762A2ECCF3E4AF0B183C1408456 ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
12:40:31.0983 0x18a0  BTHSSecurityMgr - ok
12:40:31.0998 0x18a0  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\windows\System32\Drivers\BTHUSB.sys
12:40:31.0998 0x18a0  BTHUSB - ok
12:40:32.0029 0x18a0  [ 274E47BD9C1367BDBFA9DF10C2E6C544, 196D7274AE0A461F58E8D18866DFC5C5ED35740EFEE34C348A7B9B225E4ED438 ] btmaudio        C:\windows\system32\drivers\btmaud.sys
12:40:32.0029 0x18a0  btmaudio - ok
12:40:32.0045 0x18a0  [ AB0A33001FE7EBB209D9D52CED11BE1A, 1761D2EEEC745E649DDF8465E465F4C7EB07965E92B8E3D69B2CB9D634A167CF ] btmaux          C:\windows\system32\DRIVERS\btmaux.sys
12:40:32.0045 0x18a0  btmaux - ok
12:40:32.0076 0x18a0  [ 5BA4C6F82A5CA3307C0579D9F7B36E28, 4F6719AFB08BFE18C9124488233EC345BEF06D05D8E30EB9BBB8980446A4C08E ] btmhsf          C:\windows\system32\DRIVERS\btmhsf.sys
12:40:32.0092 0x18a0  btmhsf - ok
12:40:32.0139 0x18a0  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
12:40:32.0139 0x18a0  cdfs - ok
12:40:32.0154 0x18a0  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
12:40:32.0154 0x18a0  cdrom - ok
12:40:32.0170 0x18a0  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\windows\System32\certprop.dll
12:40:32.0170 0x18a0  CertPropSvc - ok
12:40:32.0201 0x18a0  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\windows\system32\drivers\circlass.sys
12:40:32.0201 0x18a0  circlass - ok
12:40:32.0263 0x18a0  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\windows\system32\CLFS.sys
12:40:32.0279 0x18a0  CLFS - ok
12:40:32.0373 0x18a0  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:40:32.0373 0x18a0  clr_optimization_v2.0.50727_32 - ok
12:40:32.0435 0x18a0  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:40:32.0435 0x18a0  clr_optimization_v2.0.50727_64 - ok
12:40:32.0544 0x18a0  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:40:32.0544 0x18a0  clr_optimization_v4.0.30319_32 - ok
12:40:32.0560 0x18a0  [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:40:32.0560 0x18a0  clr_optimization_v4.0.30319_64 - ok
12:40:32.0591 0x18a0  [ E13A438F9E51DD034730678E33B73290, 3BB111DFDAEAB8DA6124600C7F6E080C2950A0BB420803FC12560343E1A9280A ] clwvd           C:\windows\system32\DRIVERS\clwvd.sys
12:40:32.0591 0x18a0  clwvd - ok
12:40:32.0638 0x18a0  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
12:40:32.0638 0x18a0  CmBatt - ok
12:40:32.0700 0x18a0  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\windows\system32\drivers\cmdide.sys
12:40:32.0700 0x18a0  cmdide - ok
12:40:32.0841 0x18a0  [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG             C:\windows\system32\Drivers\cng.sys
12:40:32.0856 0x18a0  CNG - ok
12:40:32.0887 0x18a0  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\windows\system32\DRIVERS\compbatt.sys
12:40:32.0903 0x18a0  Compbatt - ok
12:40:32.0919 0x18a0  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys
12:40:32.0919 0x18a0  CompositeBus - ok
12:40:32.0919 0x18a0  COMSysApp - ok
12:40:32.0950 0x18a0  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys
12:40:32.0950 0x18a0  crcdisk - ok
12:40:33.0012 0x18a0  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\windows\system32\cryptsvc.dll
12:40:33.0012 0x18a0  CryptSvc - ok
12:40:33.0090 0x18a0  [ 72794D112CBAFF3BC0C29BF7350D4741, 060C207F27306A3464FBCD8B08BDC97E34923ECA349933ECB059848BD08F41ED ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
12:40:33.0121 0x18a0  cvhsvc - ok
12:40:33.0168 0x18a0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\windows\system32\rpcss.dll
12:40:33.0184 0x18a0  DcomLaunch - ok
12:40:33.0215 0x18a0  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\windows\System32\defragsvc.dll
12:40:33.0231 0x18a0  defragsvc - ok
12:40:33.0246 0x18a0  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\windows\system32\Drivers\dfsc.sys
12:40:33.0262 0x18a0  DfsC - ok
12:40:33.0324 0x18a0  [ 18FE76610C8AB90340D3BDDB4F48BD49, 14B61E66A743E6DEB1A13D542DB55198566690C6B56ABB7F95F9806D1FAC6CA3 ] DGUSBAP         C:\windows\system32\DRIVERS\dgmbx2.sys
12:40:33.0340 0x18a0  DGUSBAP - ok
12:40:33.0371 0x18a0  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\windows\system32\dhcpcore.dll
12:40:33.0371 0x18a0  Dhcp - ok
12:40:33.0558 0x18a0  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\windows\system32\diagtrack.dll
12:40:33.0605 0x18a0  DiagTrack - ok
12:40:33.0636 0x18a0  [ FAA97C2E28A2A7AFBB156B78FF30F710, 9F562DAFE056F0987643DF6E727C1EE836CF807624F81756E9CD7087F33D98C2 ] DigiNet         C:\windows\system32\DRIVERS\diginet.sys
12:40:33.0652 0x18a0  DigiNet - ok
12:40:33.0730 0x18a0  DigiRefresh - ok
12:40:33.0855 0x18a0  [ BC14A2EB17BECECE3BD3BB37F2AE682C, 1BE7AEE4600D0DA77C3FD1DB25ECCCD64FDBF574280FF7C52C37A9ABCDF01FCA ] digiSPTIService C:\Program Files (x86)\Digidesign\Pro Tools\digiSPTIService.exe
12:40:33.0870 0x18a0  digiSPTIService - ok
12:40:33.0886 0x18a0  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\windows\system32\drivers\discache.sys
12:40:33.0886 0x18a0  discache - ok
12:40:33.0901 0x18a0  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\windows\system32\drivers\disk.sys
12:40:33.0917 0x18a0  Disk - ok
12:40:33.0948 0x18a0  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\windows\System32\dnsrslvr.dll
12:40:33.0964 0x18a0  Dnscache - ok
12:40:33.0995 0x18a0  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\windows\System32\dot3svc.dll
12:40:33.0995 0x18a0  dot3svc - ok
12:40:34.0057 0x18a0  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\windows\system32\DRIVERS\Dot4.sys
12:40:34.0057 0x18a0  Dot4 - ok
12:40:34.0120 0x18a0  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\windows\system32\DRIVERS\Dot4Prt.sys
12:40:34.0120 0x18a0  Dot4Print - ok
12:40:34.0135 0x18a0  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\windows\system32\DRIVERS\dot4usb.sys
12:40:34.0135 0x18a0  dot4usb - ok
12:40:34.0135 0x18a0  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\windows\system32\dps.dll
12:40:34.0151 0x18a0  DPS - ok
12:40:34.0198 0x18a0  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
12:40:34.0198 0x18a0  drmkaud - ok
12:40:34.0245 0x18a0  [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
12:40:34.0291 0x18a0  DXGKrnl - ok
12:40:34.0323 0x18a0  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\windows\System32\eapsvc.dll
12:40:34.0323 0x18a0  EapHost - ok
12:40:34.0463 0x18a0  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\windows\system32\drivers\evbda.sys
12:40:34.0588 0x18a0  ebdrv - ok
12:40:34.0650 0x18a0  [ 3E9BDCA3994E2B6B6AC16BAA76722934, A77FEE9D78C1151B13C9509FA89B64024442D00C3C9EA19954045413D8A69D73 ] EFS             C:\windows\System32\lsass.exe
12:40:34.0650 0x18a0  EFS - ok
12:40:34.0744 0x18a0  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
12:40:34.0759 0x18a0  ehRecvr - ok
12:40:34.0759 0x18a0  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\windows\ehome\ehsched.exe
12:40:34.0775 0x18a0  ehSched - ok
12:40:34.0837 0x18a0  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\windows\system32\drivers\elxstor.sys
12:40:34.0853 0x18a0  elxstor - ok
12:40:34.0869 0x18a0  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\windows\system32\drivers\errdev.sys
12:40:34.0869 0x18a0  ErrDev - ok
12:40:34.0915 0x18a0  [ FD0D922DE7D2AD9E98562CAA19A7CD2D, 9EA5970EFAE68E84D657E68BEFE883E384F765CA86601E4EEC634E6F81E4AEF8 ] ETD             C:\windows\system32\DRIVERS\ETD.sys
12:40:34.0915 0x18a0  ETD - ok
12:40:34.0962 0x18a0  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\windows\system32\es.dll
12:40:34.0978 0x18a0  EventSystem - ok
12:40:35.0071 0x18a0  [ B20A788579E443F768AAB1A24F705D0A, 7F861BFAE038F44FABE96F91FA9C28D6FFEBA61A400F49B77F60829DE3C31638 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
12:40:35.0118 0x18a0  EvtEng - ok
12:40:35.0149 0x18a0  [ F5EDAE6D881BEC339AB53020082F6C61, 97000DDB781AB8CE89A45159CAE70A29507C35923DBFBF9EE3F658BE72B70761 ] excfs           C:\windows\system32\DRIVERS\excfs.sys
12:40:35.0149 0x18a0  excfs - ok
12:40:35.0165 0x18a0  [ 01F4DE24BF8ADB020F2515B69A6255E7, 0B6711A28C01A0999A41E84B31B9E19CE46A80D22ACB7AC1DA00E327EF5CAF55 ] excsd           C:\windows\system32\DRIVERS\excsd.sys
12:40:35.0165 0x18a0  excsd - ok
12:40:35.0181 0x18a0  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\windows\system32\drivers\exfat.sys
12:40:35.0196 0x18a0  exfat - ok
12:40:35.0243 0x18a0  [ 76BCB62E9BF82AF629B70A6553BF7428, 84E3544A44AFDE631A443EC230E3B30A18F86F1B8C82B569C80EC7FE98485C88 ] ExpressCache    C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
12:40:35.0243 0x18a0  ExpressCache - ok
12:40:35.0259 0x18a0  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\windows\system32\drivers\fastfat.sys
12:40:35.0274 0x18a0  fastfat - ok
12:40:35.0321 0x18a0  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\windows\system32\fxssvc.exe
12:40:35.0337 0x18a0  Fax - ok
12:40:35.0368 0x18a0  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\windows\system32\drivers\fdc.sys
12:40:35.0368 0x18a0  fdc - ok
12:40:35.0399 0x18a0  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\windows\system32\fdPHost.dll
12:40:35.0399 0x18a0  fdPHost - ok
12:40:35.0415 0x18a0  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\windows\system32\fdrespub.dll
12:40:35.0415 0x18a0  FDResPub - ok
12:40:35.0430 0x18a0  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
12:40:35.0430 0x18a0  FileInfo - ok
12:40:35.0446 0x18a0  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
12:40:35.0446 0x18a0  Filetrace - ok
12:40:35.0477 0x18a0  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\windows\system32\drivers\flpydisk.sys
12:40:35.0477 0x18a0  flpydisk - ok
12:40:35.0508 0x18a0  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
12:40:35.0524 0x18a0  FltMgr - ok
12:40:35.0617 0x18a0  [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache       C:\windows\system32\FntCache.dll
12:40:35.0649 0x18a0  FontCache - ok
12:40:35.0711 0x18a0  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:40:35.0711 0x18a0  FontCache3.0.0.0 - ok
12:40:35.0711 0x18a0  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
12:40:35.0727 0x18a0  FsDepends - ok
12:40:35.0758 0x18a0  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
12:40:35.0758 0x18a0  Fs_Rec - ok
12:40:35.0805 0x18a0  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
12:40:35.0805 0x18a0  fvevol - ok
12:40:35.0836 0x18a0  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
12:40:35.0836 0x18a0  gagp30kx - ok
12:40:35.0883 0x18a0  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\windows\System32\gpsvc.dll
12:40:35.0914 0x18a0  gpsvc - ok
12:40:35.0992 0x18a0  [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:40:36.0007 0x18a0  gupdate - ok
12:40:36.0007 0x18a0  [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:40:36.0007 0x18a0  gupdatem - ok
12:40:36.0039 0x18a0  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
12:40:36.0039 0x18a0  hcw85cir - ok
12:40:36.0070 0x18a0  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
12:40:36.0085 0x18a0  HdAudAddService - ok
12:40:36.0101 0x18a0  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
12:40:36.0101 0x18a0  HDAudBus - ok
12:40:36.0132 0x18a0  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\windows\system32\drivers\HidBatt.sys
12:40:36.0132 0x18a0  HidBatt - ok
12:40:36.0148 0x18a0  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\windows\system32\drivers\hidbth.sys
12:40:36.0148 0x18a0  HidBth - ok
12:40:36.0179 0x18a0  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\windows\system32\drivers\hidir.sys
12:40:36.0179 0x18a0  HidIr - ok
12:40:36.0210 0x18a0  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\windows\system32\hidserv.dll
12:40:36.0210 0x18a0  hidserv - ok
12:40:36.0288 0x18a0  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
12:40:36.0288 0x18a0  HidUsb - ok
12:40:36.0304 0x18a0  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\windows\system32\kmsvc.dll
12:40:36.0319 0x18a0  hkmsvc - ok
12:40:36.0319 0x18a0  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll
12:40:36.0335 0x18a0  HomeGroupListener - ok
12:40:36.0366 0x18a0  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll
12:40:36.0366 0x18a0  HomeGroupProvider - ok
12:40:36.0522 0x18a0  [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
12:40:36.0538 0x18a0  hpqcxs08 - ok
12:40:36.0631 0x18a0  [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
12:40:36.0631 0x18a0  hpqddsvc - ok
12:40:36.0663 0x18a0  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
12:40:36.0663 0x18a0  HpSAMD - ok
12:40:36.0772 0x18a0  [ 7F57926169C1B8ABA9274EA7D4B70F18, A2BB01054737C6B0461381221D1C344951AC2BE9E5AE01E15A6871B31B62BE78 ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
12:40:36.0803 0x18a0  HPSLPSVC - ok
12:40:36.0865 0x18a0  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\windows\system32\drivers\HTTP.sys
12:40:36.0897 0x18a0  HTTP - ok
12:40:36.0912 0x18a0  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
12:40:36.0912 0x18a0  hwpolicy - ok
12:40:36.0943 0x18a0  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys
12:40:36.0943 0x18a0  i8042prt - ok
12:40:36.0990 0x18a0  [ 53CC5BF8B5A219119953C7ABB19A7705, F342A9732978D893729EA2591CB72E5F5BD1B3E6C9E4DBFFE54EC866E534A8C0 ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
12:40:36.0990 0x18a0  iaStor - ok
12:40:37.0037 0x18a0  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
12:40:37.0053 0x18a0  iaStorV - ok
12:40:37.0068 0x18a0  [ 806422F30DF9CE8307457485779C77B7, C70C9D778688B8D67D1AD76D5149AA3D46DC7029CD403BAEDA68A63EBFB96768 ] iBtFltCoex      C:\windows\system32\DRIVERS\iBtFltCoex.sys
12:40:37.0068 0x18a0  iBtFltCoex - ok
12:40:37.0162 0x18a0  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:40:37.0193 0x18a0  idsvc - ok
12:40:37.0630 0x18a0  [ 10BB0DC3361C9420CC1B0B2128BB89DB, 566CB4FFFDFAB224D472455DE04A0D5E73EA72F17C93896204B60E3B7514F29F ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
12:40:38.0020 0x18a0  igfx - ok
12:40:38.0082 0x18a0  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\windows\system32\drivers\iirsp.sys
12:40:38.0082 0x18a0  iirsp - ok
12:40:38.0176 0x18a0  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\windows\System32\ikeext.dll
12:40:38.0207 0x18a0  IKEEXT - ok
12:40:38.0254 0x18a0  [ 57AE484D280AEBD405F65166363E98DC, 9F8D333D2BE779C2078C3BD411839CC53ACC1A2BA6F1C92E899D6823A5991813 ] InstallFilterService C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe
12:40:38.0269 0x18a0  InstallFilterService - ok
12:40:38.0285 0x18a0  [ CADDF0927DAC63EDAE48F5C35A61D87D, C46006461311B1563C1D149B9D60B202F30147265B9D93069B084D03A09D2BEC ] intaud_WaveExtensible C:\windows\system32\drivers\intelaud.sys
12:40:38.0285 0x18a0  intaud_WaveExtensible - ok
12:40:38.0503 0x18a0  [ 22B69773BA38018E332CF7DF5A581BBF, 101A89E2EE31D821A94A9497105B4338BDD3F350E16ECDF2A34F60A3C9D76446 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
12:40:38.0644 0x18a0  IntcAzAudAddService - ok
12:40:38.0706 0x18a0  [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud        C:\windows\system32\DRIVERS\IntcDAud.sys
12:40:38.0722 0x18a0  IntcDAud - ok
12:40:38.0737 0x18a0  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\windows\system32\drivers\intelide.sys
12:40:38.0737 0x18a0  intelide - ok
12:40:38.0784 0x18a0  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
12:40:38.0784 0x18a0  intelppm - ok
12:40:38.0800 0x18a0  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\windows\system32\ipbusenum.dll
12:40:38.0815 0x18a0  IPBusEnum - ok
12:40:38.0831 0x18a0  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
12:40:38.0831 0x18a0  IpFilterDriver - ok
12:40:38.0878 0x18a0  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
12:40:38.0893 0x18a0  iphlpsvc - ok
12:40:38.0925 0x18a0  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
12:40:38.0925 0x18a0  IPMIDRV - ok
12:40:38.0940 0x18a0  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\windows\system32\drivers\ipnat.sys
12:40:38.0940 0x18a0  IPNAT - ok
12:40:38.0956 0x18a0  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\windows\system32\drivers\irenum.sys
12:40:38.0956 0x18a0  IRENUM - ok
12:40:38.0971 0x18a0  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\windows\system32\drivers\isapnp.sys
12:40:38.0971 0x18a0  isapnp - ok
12:40:39.0034 0x18a0  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
12:40:39.0034 0x18a0  iScsiPrt - ok
12:40:39.0065 0x18a0  [ 716F66336F10885D935B08174DC54242, 1992708956A2A45A8870CFCB532F3ABF24B1143B75EF32AB1F59D5D86E65F493 ] iwdbus          C:\windows\system32\DRIVERS\iwdbus.sys
12:40:39.0065 0x18a0  iwdbus - ok
12:40:39.0096 0x18a0  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
12:40:39.0096 0x18a0  kbdclass - ok
12:40:39.0127 0x18a0  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\windows\system32\drivers\kbdhid.sys
12:40:39.0127 0x18a0  kbdhid - ok
12:40:39.0143 0x18a0  [ 3E9BDCA3994E2B6B6AC16BAA76722934, A77FEE9D78C1151B13C9509FA89B64024442D00C3C9EA19954045413D8A69D73 ] KeyIso          C:\windows\system32\lsass.exe
12:40:39.0143 0x18a0  KeyIso - ok
12:40:39.0205 0x18a0  [ 1DAC21EC0705A6AFEFACCE265798F0F9, 16B66AE2578C6744825B0DFBB9CBA35FBDF5C04E8999F7629BA43D566FA9277F ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
12:40:39.0205 0x18a0  KSecDD - ok
12:40:39.0268 0x18a0  [ 2737840E7F6F6FF439966A67A35D59F8, 7442A8864D0A92C3A7EDBF889EC1AA9F743D6B48C4075CA8F3C0F1D836DFB9CE ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
12:40:39.0268 0x18a0  KSecPkg - ok
12:40:39.0283 0x18a0  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
12:40:39.0283 0x18a0  ksthunk - ok
12:40:39.0330 0x18a0  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\windows\system32\msdtckrm.dll
12:40:39.0346 0x18a0  KtmRm - ok
12:40:39.0377 0x18a0  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\windows\system32\srvsvc.dll
12:40:39.0393 0x18a0  LanmanServer - ok
12:40:39.0408 0x18a0  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
12:40:39.0408 0x18a0  LanmanWorkstation - ok
12:40:39.0439 0x18a0  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
12:40:39.0455 0x18a0  lltdio - ok
12:40:39.0502 0x18a0  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\windows\System32\lltdsvc.dll
12:40:39.0502 0x18a0  lltdsvc - ok
12:40:39.0517 0x18a0  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\windows\System32\lmhsvc.dll
12:40:39.0517 0x18a0  lmhosts - ok
12:40:39.0580 0x18a0  [ 386FC27B5A07BFFD387CE0581BA8C061, D690CFDCF5915EFDEE8684ED235E00E73C6B7EC9744093B9AD31362F34CE3B20 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
12:40:39.0595 0x18a0  LMS - ok
12:40:39.0611 0x18a0  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys
12:40:39.0611 0x18a0  LSI_FC - ok
12:40:39.0642 0x18a0  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
12:40:39.0642 0x18a0  LSI_SAS - ok
12:40:39.0673 0x18a0  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
12:40:39.0673 0x18a0  LSI_SAS2 - ok
12:40:39.0705 0x18a0  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
12:40:39.0705 0x18a0  LSI_SCSI - ok
12:40:39.0720 0x18a0  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\windows\system32\drivers\luafv.sys
12:40:39.0720 0x18a0  luafv - ok
12:40:39.0783 0x18a0  [ E09A31C9A59ACAB892C9A3D7A531B380, A89149C89802EB786734A2E5D23DB2D00EDD636115098015EC5AA60AE980EFE0 ] MacDrive8ServiceD C:\Program Files\Mediafour\MacDrive 8\MacDrive8ServiceD.exe
12:40:39.0783 0x18a0  MacDrive8ServiceD - ok
12:40:39.0923 0x18a0  [ 61E67854128C13FBEA71C7FAC3B822C9, 0073E04585ECF63E64299E2F92E0A9EDD20BA2AB8482D7BCEA882B1A0A04CD3E ] MboxAudioDevMon C:\Program Files (x86)\Avid\Mbox\AudioDevMon.exe
12:40:39.0970 0x18a0  MboxAudioDevMon - ok
12:40:40.0095 0x18a0  [ F53519F56E9BC133753D444B930775DA, A89EA6FA2298AA3266B9A07F09986B0A2B48CBE69B34AE213F75DC868E89214D ] MboxMiniAudioDevMon C:\Program Files (x86)\Avid\Mbox Mini\AudioDevMon.exe
12:40:40.0157 0x18a0  MboxMiniAudioDevMon - ok
12:40:40.0219 0x18a0  [ B4A6BCEC84AC9C1AADEDB24E2FE531D8, D5AA9F1D6697242227A48E7BEADC2A7F96206852BDB7E648AD1C2FBFB031D1BA ] MboxProAudioDevMon C:\Program Files (x86)\Avid\Mbox Pro\AudioDevMon.exe
12:40:40.0282 0x18a0  MboxProAudioDevMon - ok
12:40:40.0360 0x18a0  [ AB817DDC828CE19A7114383B5F28F4CC, B41E45ED792E88CAC0FD9B13581A638908D5EC83E21414EC3DE94EDFA64DF36F ] MBX2DFU         C:\windows\system32\DRIVERS\dgmbx2fu.sys
12:40:40.0360 0x18a0  MBX2DFU - ok
12:40:40.0438 0x18a0  [ A8E67055E039356F81C29D25357F22F2, 6F884CDC5D6FDE8CB4EF9FD0D94D9C2F3B0E601D7A416B6BC8E79996761DAB77 ] MBX2MIDK        C:\windows\system32\drivers\mbx2midk.sys
12:40:40.0438 0x18a0  MBX2MIDK - ok
12:40:40.0469 0x18a0  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
12:40:40.0485 0x18a0  Mcx2Svc - ok
12:40:40.0516 0x18a0  [ 1E62254F06794A258FF4C5AC2BBE8D01, 3410704AA315ECC1FC01E6EA9A0D439D293DCDD0EA2C4A1CD93C7F43CFD7CAD4 ] MDFSYSNT        C:\windows\system32\drivers\MDFSYSNT.sys
12:40:40.0531 0x18a0  MDFSYSNT - ok
12:40:40.0547 0x18a0  [ 998DAAF47DC97B83361F50A7A0BF2819, 829192FAA0719031421D6A47698AD6FDD9F16BA669158B75FD8595D3281ECC06 ] MDPMGRNT        C:\windows\system32\DRIVERS\MDPMGRNT.SYS
12:40:40.0547 0x18a0  MDPMGRNT - ok
12:40:40.0578 0x18a0  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\windows\system32\drivers\megasas.sys
12:40:40.0578 0x18a0  megasas - ok
12:40:40.0609 0x18a0  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
12:40:40.0625 0x18a0  MegaSR - ok
12:40:40.0734 0x18a0  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\windows\system32\DRIVERS\HECIx64.sys
12:40:40.0734 0x18a0  MEIx64 - ok
12:40:40.0750 0x18a0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\windows\system32\mmcss.dll
12:40:40.0750 0x18a0  MMCSS - ok
12:40:40.0765 0x18a0  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\windows\system32\drivers\modem.sys
12:40:40.0781 0x18a0  Modem - ok
12:40:40.0781 0x18a0  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\windows\system32\DRIVERS\monitor.sys
12:40:40.0797 0x18a0  monitor - ok
12:40:40.0828 0x18a0  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
12:40:40.0828 0x18a0  mouclass - ok
12:40:40.0843 0x18a0  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
12:40:40.0843 0x18a0  mouhid - ok
12:40:40.0906 0x18a0  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
12:40:40.0921 0x18a0  mountmgr - ok
12:40:40.0968 0x18a0  [ 7AAFF443581F9B6F86CDF761ED0A437D, 6E159C875F5666E6D17C58628EEAF79818697355AFE213CE778BD3FEA04248C0 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:40:40.0968 0x18a0  MozillaMaintenance - ok
12:40:40.0984 0x18a0  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\windows\system32\drivers\mpio.sys
12:40:40.0999 0x18a0  mpio - ok
12:40:41.0015 0x18a0  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
12:40:41.0015 0x18a0  mpsdrv - ok
12:40:41.0077 0x18a0  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\windows\system32\mpssvc.dll
12:40:41.0093 0x18a0  MpsSvc - ok
12:40:41.0171 0x18a0  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
12:40:41.0171 0x18a0  MRxDAV - ok
12:40:41.0233 0x18a0  [ DB8E6BA1D110A4E40D48612E9009E366, 678728CC8BBCD0D99E67DA63F53A99AC6D6D12EAE3E26655D372940BE7411098 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
12:40:41.0249 0x18a0  mrxsmb - ok
12:40:41.0311 0x18a0  [ 24432705B02BC1EFC42A83F93BA202A3, 13F2CA069FAEDA9CEAC6E09D10807DBFF729EAF6133DC46DE5A14C5694E9510B ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
12:40:41.0327 0x18a0  mrxsmb10 - ok
12:40:41.0327 0x18a0  [ 5E7E31C6426F000AF29E7C452826AF5E, F66102138458BDBD2CE586C95FF90F9B90F5DC8832EA1ACFAD694F1D0B949B21 ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
12:40:41.0343 0x18a0  mrxsmb20 - ok
12:40:41.0374 0x18a0  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\windows\system32\drivers\msahci.sys
12:40:41.0374 0x18a0  msahci - ok
12:40:41.0405 0x18a0  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\windows\system32\drivers\msdsm.sys
12:40:41.0421 0x18a0  msdsm - ok
12:40:41.0436 0x18a0  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\windows\System32\msdtc.exe
12:40:41.0452 0x18a0  MSDTC - ok
12:40:41.0452 0x18a0  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\windows\system32\drivers\Msfs.sys
12:40:41.0452 0x18a0  Msfs - ok
12:40:41.0467 0x18a0  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
12:40:41.0467 0x18a0  mshidkmdf - ok
12:40:41.0483 0x18a0  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
12:40:41.0483 0x18a0  msisadrv - ok
12:40:41.0514 0x18a0  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
12:40:41.0514 0x18a0  MSiSCSI - ok
12:40:41.0514 0x18a0  msiserver - ok
12:40:41.0530 0x18a0  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
12:40:41.0530 0x18a0  MSKSSRV - ok
12:40:41.0561 0x18a0  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
12:40:41.0561 0x18a0  MSPCLOCK - ok
12:40:41.0577 0x18a0  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
12:40:41.0577 0x18a0  MSPQM - ok
12:40:41.0608 0x18a0  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
12:40:41.0623 0x18a0  MsRPC - ok
12:40:41.0655 0x18a0  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys
12:40:41.0655 0x18a0  mssmbios - ok
12:40:41.0670 0x18a0  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
12:40:41.0670 0x18a0  MSTEE - ok
12:40:41.0701 0x18a0  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\windows\system32\drivers\MTConfig.sys
12:40:41.0701 0x18a0  MTConfig - ok
12:40:41.0717 0x18a0  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\windows\system32\Drivers\mup.sys
12:40:41.0717 0x18a0  Mup - ok
12:40:41.0764 0x18a0  [ F217D7718FD7577AF331E89910B2D21E, 216605E4F3F7E2FDB531E4197FBDE46166D5C7D812099D322E20E0CA4BF4797C ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
12:40:41.0764 0x18a0  MyWiFiDHCPDNS - ok
12:40:41.0811 0x18a0  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\windows\system32\qagentRT.dll
12:40:41.0826 0x18a0  napagent - ok
12:40:41.0857 0x18a0  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
12:40:41.0873 0x18a0  NativeWifiP - ok
12:40:41.0951 0x18a0  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\windows\system32\drivers\ndis.sys
12:40:41.0982 0x18a0  NDIS - ok
12:40:42.0013 0x18a0  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
12:40:42.0013 0x18a0  NdisCap - ok
12:40:42.0045 0x18a0  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
12:40:42.0045 0x18a0  NdisTapi - ok
12:40:42.0060 0x18a0  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
12:40:42.0060 0x18a0  Ndisuio - ok
12:40:42.0076 0x18a0  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
12:40:42.0076 0x18a0  NdisWan - ok
12:40:42.0091 0x18a0  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
12:40:42.0091 0x18a0  NDProxy - ok
12:40:42.0154 0x18a0  [ D5AC41AE382738483FAFFBD7E373D49A, 68793D15566F387650E9C5010E1CA73BDE3EB4BA431EA0A1673004CAE08413B0 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
12:40:42.0154 0x18a0  Net Driver HPZ12 - ok
12:40:42.0169 0x18a0  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
12:40:42.0169 0x18a0  NetBIOS - ok
12:40:42.0201 0x18a0  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
12:40:42.0201 0x18a0  NetBT - ok
12:40:42.0216 0x18a0  [ 3E9BDCA3994E2B6B6AC16BAA76722934, A77FEE9D78C1151B13C9509FA89B64024442D00C3C9EA19954045413D8A69D73 ] Netlogon        C:\windows\system32\lsass.exe
12:40:42.0216 0x18a0  Netlogon - ok
12:40:42.0263 0x18a0  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\windows\System32\netman.dll
12:40:42.0279 0x18a0  Netman - ok
12:40:42.0341 0x18a0  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:40:42.0357 0x18a0  NetMsmqActivator - ok
12:40:42.0357 0x18a0  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:40:42.0357 0x18a0  NetPipeActivator - ok
12:40:42.0388 0x18a0  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\windows\System32\netprofm.dll
12:40:42.0403 0x18a0  netprofm - ok
12:40:42.0403 0x18a0  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:40:42.0419 0x18a0  NetTcpActivator - ok
12:40:42.0419 0x18a0  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:40:42.0419 0x18a0  NetTcpPortSharing - ok
12:40:42.0762 0x18a0  [ 9FD1BE1881446D954FF77244AE58FBCB, 4FC9FFDB8F3079372C33F87102E38DC6A82E47FB8751498447CA4B00C2A17694 ] NETwNs64        C:\windows\system32\DRIVERS\NETwNs64.sys
12:40:43.0027 0x18a0  NETwNs64 - ok
12:40:43.0121 0x18a0  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
12:40:43.0121 0x18a0  nfrd960 - ok
12:40:43.0183 0x18a0  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\windows\System32\nlasvc.dll
12:40:43.0199 0x18a0  NlaSvc - ok
12:40:43.0261 0x18a0  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\windows\system32\drivers\Npfs.sys
12:40:43.0261 0x18a0  Npfs - ok
12:40:43.0277 0x18a0  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\windows\system32\nsisvc.dll
12:40:43.0277 0x18a0  nsi - ok
12:40:43.0293 0x18a0  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
12:40:43.0293 0x18a0  nsiproxy - ok
12:40:43.0417 0x18a0  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
12:40:43.0464 0x18a0  Ntfs - ok
12:40:43.0495 0x18a0  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\windows\system32\drivers\Null.sys
12:40:43.0495 0x18a0  Null - ok
12:40:43.0542 0x18a0  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\windows\system32\drivers\nvraid.sys
12:40:43.0558 0x18a0  nvraid - ok
12:40:43.0573 0x18a0  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\windows\system32\drivers\nvstor.sys
12:40:43.0573 0x18a0  nvstor - ok
12:40:43.0589 0x18a0  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
12:40:43.0605 0x18a0  nv_agp - ok
12:40:43.0620 0x18a0  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
12:40:43.0636 0x18a0  ohci1394 - ok
12:40:43.0667 0x18a0  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:40:43.0667 0x18a0  ose - ok
12:40:43.0917 0x18a0  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:40:44.0073 0x18a0  osppsvc - ok
12:40:44.0119 0x18a0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
12:40:44.0135 0x18a0  p2pimsvc - ok
12:40:44.0151 0x18a0  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\windows\system32\p2psvc.dll
12:40:44.0166 0x18a0  p2psvc - ok
12:40:44.0197 0x18a0  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\windows\system32\drivers\parport.sys
12:40:44.0197 0x18a0  Parport - ok
12:40:44.0244 0x18a0  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\windows\system32\drivers\partmgr.sys
12:40:44.0244 0x18a0  partmgr - ok
12:40:44.0307 0x18a0  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\windows\System32\pcasvc.dll
12:40:44.0322 0x18a0  PcaSvc - ok
12:40:44.0322 0x18a0  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\windows\system32\drivers\pci.sys
12:40:44.0338 0x18a0  pci - ok
12:40:44.0385 0x18a0  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\windows\system32\drivers\pciide.sys
12:40:44.0385 0x18a0  pciide - ok
12:40:44.0416 0x18a0  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
12:40:44.0416 0x18a0  pcmcia - ok
12:40:44.0431 0x18a0  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\windows\system32\drivers\pcw.sys
12:40:44.0431 0x18a0  pcw - ok
12:40:44.0509 0x18a0  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\windows\system32\drivers\peauth.sys
12:40:44.0525 0x18a0  PEAUTH - ok
12:40:44.0587 0x18a0  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\windows\SysWow64\perfhost.exe
12:40:44.0587 0x18a0  PerfHost - ok
12:40:44.0665 0x18a0  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\windows\system32\pla.dll
12:40:44.0712 0x18a0  pla - ok
12:40:44.0759 0x18a0  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
12:40:44.0775 0x18a0  PlugPlay - ok
12:40:44.0821 0x18a0  [ 37F6046CDC630442D7DC087501FF6FC6, EFC0F3DA49839CA263CD95AE5015F4FC554D9D845A58A699C542C8C96E70ED3C ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
12:40:44.0837 0x18a0  Pml Driver HPZ12 - ok
12:40:44.0853 0x18a0  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
12:40:44.0853 0x18a0  PNRPAutoReg - ok
12:40:44.0884 0x18a0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
12:40:44.0899 0x18a0  PNRPsvc - ok
12:40:44.0962 0x18a0  [ E4799B87675C59AA1F620DE5C6F113BB, 094EE16D4CEC68DB316002994482344A6BFCFDE399131F7FA11BB46C2DCBF218 ] Point64         C:\windows\system32\DRIVERS\point64.sys
12:40:44.0962 0x18a0  Point64 - ok
12:40:45.0009 0x18a0  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
12:40:45.0024 0x18a0  PolicyAgent - ok
12:40:45.0055 0x18a0  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\windows\system32\umpo.dll
12:40:45.0055 0x18a0  Power - ok
12:40:45.0087 0x18a0  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
12:40:45.0087 0x18a0  PptpMiniport - ok
12:40:45.0102 0x18a0  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\windows\system32\drivers\processr.sys
12:40:45.0118 0x18a0  Processor - ok
12:40:45.0149 0x18a0  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\windows\system32\profsvc.dll
12:40:45.0149 0x18a0  ProfSvc - ok
12:40:45.0180 0x18a0  [ 3E9BDCA3994E2B6B6AC16BAA76722934, A77FEE9D78C1151B13C9509FA89B64024442D00C3C9EA19954045413D8A69D73 ] ProtectedStorage C:\windows\system32\lsass.exe
12:40:45.0180 0x18a0  ProtectedStorage - ok
12:40:45.0196 0x18a0  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\windows\system32\DRIVERS\pacer.sys
12:40:45.0196 0x18a0  Psched - ok
12:40:45.0274 0x18a0  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\windows\system32\drivers\ql2300.sys
12:40:45.0321 0x18a0  ql2300 - ok
12:40:45.0352 0x18a0  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\windows\system32\drivers\ql40xx.sys
12:40:45.0352 0x18a0  ql40xx - ok
12:40:45.0383 0x18a0  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\windows\system32\qwave.dll
12:40:45.0399 0x18a0  QWAVE - ok
12:40:45.0399 0x18a0  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
12:40:45.0414 0x18a0  QWAVEdrv - ok
12:40:45.0430 0x18a0  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
12:40:45.0430 0x18a0  RasAcd - ok
12:40:45.0461 0x18a0  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
12:40:45.0461 0x18a0  RasAgileVpn - ok
12:40:45.0461 0x18a0  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\windows\System32\rasauto.dll
12:40:45.0477 0x18a0  RasAuto - ok
12:40:45.0477 0x18a0  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
12:40:45.0492 0x18a0  Rasl2tp - ok
12:40:45.0508 0x18a0  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\windows\System32\rasmans.dll
12:40:45.0523 0x18a0  RasMan - ok
12:40:45.0523 0x18a0  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
12:40:45.0523 0x18a0  RasPppoe - ok
12:40:45.0555 0x18a0  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
12:40:45.0555 0x18a0  RasSstp - ok
12:40:45.0586 0x18a0  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
12:40:45.0586 0x18a0  rdbss - ok
12:40:45.0601 0x18a0  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\windows\system32\drivers\rdpbus.sys
12:40:45.0601 0x18a0  rdpbus - ok
12:40:45.0633 0x18a0  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
12:40:45.0633 0x18a0  RDPCDD - ok
12:40:45.0633 0x18a0  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
12:40:45.0633 0x18a0  RDPENCDD - ok
12:40:45.0633 0x18a0  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
12:40:45.0648 0x18a0  RDPREFMP - ok
12:40:45.0757 0x18a0  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
12:40:45.0757 0x18a0  RdpVideoMiniport - ok
12:40:45.0820 0x18a0  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
12:40:45.0835 0x18a0  RDPWD - ok
12:40:45.0851 0x18a0  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
12:40:45.0867 0x18a0  rdyboost - ok
12:40:45.0945 0x18a0  [ B9A0810D16EA7935B10A5499ABA61DC3, 231D8E9E07FACC03D2E0A4AC97B1151DB942B0B297FFF20A703878EC3A20770D ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
12:40:45.0976 0x18a0  RegSrvc - ok
12:40:46.0007 0x18a0  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\windows\System32\mprdim.dll
12:40:46.0007 0x18a0  RemoteAccess - ok
12:40:46.0023 0x18a0  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\windows\system32\regsvc.dll
12:40:46.0038 0x18a0  RemoteRegistry - ok
12:40:46.0085 0x18a0  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\windows\system32\DRIVERS\rfcomm.sys
12:40:46.0085 0x18a0  RFCOMM - ok
12:40:46.0179 0x18a0  [ F12A68ED55053940CADD59CA5E3468DD, 75331E6DA4E30717085E7D8131989241EBC492DC3EE455546F91DA9DFFFD2BFC ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
12:40:46.0179 0x18a0  RichVideo - ok
12:40:46.0210 0x18a0  [ 7B04C9843921AB1F695FB395422C5360, C9B02BE0384357FD242613C2A12029B45322AF9A795CD69F33500CA7530899A7 ] RimUsb          C:\windows\system32\Drivers\RimUsb_AMD64.sys
12:40:46.0210 0x18a0  RimUsb - ok
12:40:46.0225 0x18a0  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
12:40:46.0225 0x18a0  RpcEptMapper - ok
12:40:46.0241 0x18a0  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\windows\system32\locator.exe
12:40:46.0241 0x18a0  RpcLocator - ok
12:40:46.0272 0x18a0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\windows\system32\rpcss.dll
12:40:46.0288 0x18a0  RpcSs - ok
12:40:46.0319 0x18a0  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
12:40:46.0335 0x18a0  rspndr - ok
12:40:46.0381 0x18a0  [ E50CFB92986DCAB49DE93788FD695813, EAE103008B967B0F064EDDA551AA553EE7C22D39D14FA0BBFEF41C4D1B6C99E5 ] RTL8167         C:\windows\system32\DRIVERS\Rt64win7.sys
12:40:46.0397 0x18a0  RTL8167 - ok
12:40:46.0428 0x18a0  [ 62DB6CC4B0818F1B5F3441241B098F12, 7A53B3FBA3F82EDE6FA688E531FBE7EC9E1AE329090C0AFE0DCD64F65BD90F21 ] SABI            C:\windows\system32\Drivers\SABI.sys
12:40:46.0428 0x18a0  SABI - ok
12:40:46.0444 0x18a0  [ 3E9BDCA3994E2B6B6AC16BAA76722934, A77FEE9D78C1151B13C9509FA89B64024442D00C3C9EA19954045413D8A69D73 ] SamSs           C:\windows\system32\lsass.exe
12:40:46.0444 0x18a0  SamSs - ok
12:40:46.0475 0x18a0  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
12:40:46.0475 0x18a0  sbp2port - ok
12:40:46.0506 0x18a0  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\windows\System32\SCardSvr.dll
12:40:46.0522 0x18a0  SCardSvr - ok
12:40:46.0522 0x18a0  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
12:40:46.0522 0x18a0  scfilter - ok
12:40:46.0600 0x18a0  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\windows\system32\schedsvc.dll
12:40:46.0662 0x18a0  Schedule - ok
12:40:46.0693 0x18a0  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\windows\System32\certprop.dll
12:40:46.0693 0x18a0  SCPolicySvc - ok
12:40:46.0709 0x18a0  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\windows\System32\SDRSVC.dll
12:40:46.0709 0x18a0  SDRSVC - ok
12:40:46.0725 0x18a0  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\windows\system32\drivers\secdrv.sys
12:40:46.0725 0x18a0  secdrv - ok
12:40:46.0756 0x18a0  [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon        C:\windows\system32\seclogon.dll
12:40:46.0756 0x18a0  seclogon - ok
12:40:46.0787 0x18a0  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\windows\System32\sens.dll
12:40:46.0787 0x18a0  SENS - ok
12:40:46.0803 0x18a0  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\windows\system32\sensrsvc.dll
12:40:46.0803 0x18a0  SensrSvc - ok
12:40:46.0818 0x18a0  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\windows\system32\drivers\serenum.sys
12:40:46.0818 0x18a0  Serenum - ok
12:40:46.0865 0x18a0  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\windows\system32\drivers\serial.sys
12:40:46.0865 0x18a0  Serial - ok
12:40:46.0881 0x18a0  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\windows\system32\drivers\sermouse.sys
12:40:46.0881 0x18a0  sermouse - ok
12:40:46.0896 0x18a0  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\windows\system32\sessenv.dll
12:40:46.0896 0x18a0  SessionEnv - ok
12:40:46.0912 0x18a0  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
12:40:46.0927 0x18a0  sffdisk - ok
12:40:46.0927 0x18a0  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
12:40:46.0927 0x18a0  sffp_mmc - ok
12:40:46.0959 0x18a0  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
12:40:46.0959 0x18a0  sffp_sd - ok
12:40:46.0974 0x18a0  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys
12:40:46.0974 0x18a0  sfloppy - ok
12:40:47.0052 0x18a0  [ C6CC9297BD53E5229653303E556AA539, 921E21EDED244FEE15B56564B97C97785F45AB862C1012BFA0B96B121DC90076 ] Sftfs           C:\windows\system32\DRIVERS\Sftfslh.sys
12:40:47.0068 0x18a0  Sftfs - ok
12:40:47.0130 0x18a0  [ 13693B6354DD6E72DC5131DA7D764B90, 447EFDA7CFB1F62EA316219D996406C8DC374097DB903F362D6E945227D8BB2D ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
12:40:47.0146 0x18a0  sftlist - ok
12:40:47.0193 0x18a0  [ 390AA7BC52CEE43F6790CDEA1E776703, 0D008289E4B14EF56D5233B7C8C789A36503FBAA8896660776557D6F08808FA7 ] Sftplay         C:\windows\system32\DRIVERS\Sftplaylh.sys
12:40:47.0193 0x18a0  Sftplay - ok
12:40:47.0224 0x18a0  [ 617E29A0B0A2807466560D4C4E338D3E, 5E95D38DB9A6776EB4A15A952FA7949831D6F660EED8C3E79BD09D102BAC5D67 ] Sftredir        C:\windows\system32\DRIVERS\Sftredirlh.sys
12:40:47.0224 0x18a0  Sftredir - ok
12:40:47.0239 0x18a0  [ 8F571F016FA1976F445147E9E6C8AE9B, 527AB960F2E08F598D1B953BDA4EA749831DD3C765DA278044B8AB22365F02B5 ] Sftvol          C:\windows\system32\DRIVERS\Sftvollh.sys
12:40:47.0239 0x18a0  Sftvol - ok
12:40:47.0255 0x18a0  [ C3CDDD18F43D44AB713CF8C4916F7696, 38093295825AFDD08D7E32CC4EF2A6C447F6D6E3C6F7EA5554C25E7C3F16FC92 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
12:40:47.0255 0x18a0  sftvsa - ok
12:40:47.0286 0x18a0  [ 2FE1CD3AA602414841DB10AD96C95A5E, 1A2489DF37C13B578E69AA0D3D5DB3627C77750C45D78BB2872E29DD10253326 ] SGDrv           C:\windows\system32\DRIVERS\SGdrv64.sys
12:40:47.0286 0x18a0  SGDrv - ok
12:40:47.0333 0x18a0  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\windows\System32\ipnathlp.dll
12:40:47.0349 0x18a0  SharedAccess - ok
12:40:47.0380 0x18a0  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll
12:40:47.0395 0x18a0  ShellHWDetection - ok
12:40:47.0411 0x18a0  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
12:40:47.0411 0x18a0  SiSRaid2 - ok
12:40:47.0458 0x18a0  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
12:40:47.0458 0x18a0  SiSRaid4 - ok
12:40:47.0645 0x18a0  [ 0F97E7A47A52F4A36969F0FC319654C2, 8A9E5974DE60F993BED44ACAAC469B146D6C91ECB8E3D14BF66E6D1634AC604E ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
12:40:47.0739 0x18a0  Skype C2C Service - ok
12:40:47.0879 0x18a0  [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
12:40:47.0879 0x18a0  SkypeUpdate - ok
12:40:47.0910 0x18a0  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\windows\system32\DRIVERS\smb.sys
12:40:47.0910 0x18a0  Smb - ok
12:40:47.0941 0x18a0  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\windows\System32\snmptrap.exe
12:40:47.0941 0x18a0  SNMPTRAP - ok
12:40:47.0973 0x18a0  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\windows\system32\drivers\spldr.sys
12:40:47.0973 0x18a0  spldr - ok
12:40:48.0004 0x18a0  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\windows\System32\spoolsv.exe
12:40:48.0035 0x18a0  Spooler - ok
12:40:48.0160 0x18a0  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\windows\system32\sppsvc.exe
12:40:48.0285 0x18a0  sppsvc - ok
12:40:48.0285 0x18a0  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\windows\system32\sppuinotify.dll
12:40:48.0300 0x18a0  sppuinotify - ok
12:40:48.0347 0x18a0  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\windows\system32\DRIVERS\srv.sys
12:40:48.0363 0x18a0  srv - ok
12:40:48.0378 0x18a0  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
12:40:48.0394 0x18a0  srv2 - ok
12:40:48.0394 0x18a0  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
12:40:48.0409 0x18a0  srvnet - ok
12:40:48.0425 0x18a0  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
12:40:48.0441 0x18a0  SSDPSRV - ok
12:40:48.0456 0x18a0  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\windows\system32\sstpsvc.dll
12:40:48.0456 0x18a0  SstpSvc - ok
12:40:48.0487 0x18a0  [ 3D69F5F3BEB8AA28D7F46F5548B8D6D7, F14E6174D34D64BF3B15E707A083B636BE07863120879CF6E198EFFC9A0BB0BB ] stdflt          C:\windows\system32\DRIVERS\stdflt.sys
12:40:48.0487 0x18a0  stdflt - ok
12:40:48.0519 0x18a0  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\windows\system32\drivers\stexstor.sys
12:40:48.0519 0x18a0  stexstor - ok
12:40:48.0550 0x18a0  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\windows\System32\wiaservc.dll
12:40:48.0565 0x18a0  stisvc - ok
12:40:48.0597 0x18a0  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\windows\system32\DRIVERS\swenum.sys
12:40:48.0597 0x18a0  swenum - ok
12:40:48.0628 0x18a0  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\windows\System32\swprv.dll
12:40:48.0643 0x18a0  swprv - ok
12:40:48.0721 0x18a0  SWUpdateService - ok
12:40:48.0831 0x18a0  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\windows\system32\sysmain.dll
12:40:48.0893 0x18a0  SysMain - ok
12:40:48.0909 0x18a0  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll
12:40:48.0909 0x18a0  TabletInputService - ok
12:40:48.0924 0x18a0  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\windows\System32\tapisrv.dll
12:40:48.0940 0x18a0  TapiSrv - ok
12:40:48.0955 0x18a0  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\windows\System32\tbssvc.dll
12:40:48.0971 0x18a0  TBS - ok
12:40:49.0111 0x18a0  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\windows\system32\drivers\tcpip.sys
12:40:49.0174 0x18a0  Tcpip - ok
12:40:49.0236 0x18a0  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
12:40:49.0283 0x18a0  TCPIP6 - ok
12:40:49.0314 0x18a0  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
12:40:49.0314 0x18a0  tcpipreg - ok
12:40:49.0345 0x18a0  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
12:40:49.0345 0x18a0  TDPIPE - ok
12:40:49.0377 0x18a0  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
12:40:49.0377 0x18a0  TDTCP - ok
12:40:49.0439 0x18a0  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\windows\system32\DRIVERS\tdx.sys
12:40:49.0455 0x18a0  tdx - ok
12:40:49.0455 0x18a0  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\windows\system32\DRIVERS\termdd.sys
12:40:49.0470 0x18a0  TermDD - ok
12:40:49.0548 0x18a0  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\windows\System32\termsrv.dll
12:40:49.0579 0x18a0  TermService - ok
12:40:49.0595 0x18a0  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\windows\system32\themeservice.dll
12:40:49.0595 0x18a0  Themes - ok
12:40:49.0611 0x18a0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\windows\system32\mmcss.dll
12:40:49.0626 0x18a0  THREADORDER - ok
12:40:49.0657 0x18a0  [ C676B0F52F2B6483AFB88F79CABB011E, 8F10C7C91B47F87C3E29785BDACA49831857849F688C34A1F097C9D6593003AA ] Tpkd            C:\windows\system32\drivers\Tpkd.sys
12:40:49.0673 0x18a0  Tpkd - ok
12:40:49.0673 0x18a0  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\windows\System32\trkwks.dll
12:40:49.0689 0x18a0  TrkWks - ok
12:40:49.0720 0x18a0  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
12:40:49.0735 0x18a0  TrustedInstaller - ok
12:40:49.0767 0x18a0  [ 19BEDA57F3E0A06B8D5EB6D619BD5624, 952D5FAFD662C93628C12A6F7EB8E240A44216C0A15CBD2F5016BC357CBFE821 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
12:40:49.0767 0x18a0  tssecsrv - ok
12:40:49.0798 0x18a0  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
12:40:49.0813 0x18a0  TsUsbFlt - ok
12:40:49.0845 0x18a0  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys
12:40:49.0845 0x18a0  TsUsbGD - ok
12:40:49.0891 0x18a0  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
12:40:49.0891 0x18a0  tunnel - ok
12:40:49.0923 0x18a0  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\windows\system32\drivers\uagp35.sys
12:40:49.0923 0x18a0  uagp35 - ok
12:40:49.0954 0x18a0  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
12:40:49.0969 0x18a0  udfs - ok
12:40:50.0016 0x18a0  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\windows\system32\UI0Detect.exe
12:40:50.0032 0x18a0  UI0Detect - ok
12:40:50.0047 0x18a0  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
12:40:50.0047 0x18a0  uliagpkx - ok
12:40:50.0063 0x18a0  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\windows\system32\DRIVERS\umbus.sys
12:40:50.0063 0x18a0  umbus - ok
12:40:50.0079 0x18a0  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\windows\system32\drivers\umpass.sys
12:40:50.0094 0x18a0  UmPass - ok
12:40:50.0266 0x18a0  [ B1719E9B50C48512FB51A0CC94DB5879, 6CFB657DC171BC3EBC5B09558C5F85820D49A846D9A19DDB1BDF6511682DA1B6 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
12:40:50.0359 0x18a0  UNS - ok
12:40:50.0406 0x18a0  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\windows\System32\upnphost.dll
12:40:50.0422 0x18a0  upnphost - ok
12:40:50.0484 0x18a0  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
12:40:50.0484 0x18a0  usbccgp - ok
12:40:50.0515 0x18a0  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\windows\system32\drivers\usbcir.sys
12:40:50.0515 0x18a0  usbcir - ok
12:40:50.0578 0x18a0  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\windows\system32\drivers\usbehci.sys
12:40:50.0578 0x18a0  usbehci - ok
12:40:50.0609 0x18a0  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
12:40:50.0625 0x18a0  usbhub - ok
12:40:50.0640 0x18a0  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\windows\system32\drivers\usbohci.sys
12:40:50.0640 0x18a0  usbohci - ok
12:40:50.0687 0x18a0  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\windows\system32\DRIVERS\usbprint.sys
12:40:50.0687 0x18a0  usbprint - ok
12:40:50.0734 0x18a0  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\windows\system32\DRIVERS\usbscan.sys
12:40:50.0749 0x18a0  usbscan - ok
12:40:50.0796 0x18a0  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
12:40:50.0796 0x18a0  USBSTOR - ok
12:40:50.0827 0x18a0  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
12:40:50.0827 0x18a0  usbuhci - ok
12:40:50.0859 0x18a0  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys
12:40:50.0859 0x18a0  usbvideo - ok
12:40:50.0890 0x18a0  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\windows\System32\uxsms.dll
12:40:50.0890 0x18a0  UxSms - ok
12:40:50.0921 0x18a0  [ 3E9BDCA3994E2B6B6AC16BAA76722934, A77FEE9D78C1151B13C9509FA89B64024442D00C3C9EA19954045413D8A69D73 ] VaultSvc        C:\windows\system32\lsass.exe
12:40:50.0921 0x18a0  VaultSvc - ok
12:40:50.0999 0x18a0  [ CDA796F41C2B64CEEC143B3A86904CFB, 8D9CACB74608C145A75424F4169E447A9EFA0EC3DD1412F097B56F86C0FC8E6E ] VBoxDrv         C:\windows\system32\DRIVERS\VBoxDrv.sys
12:40:50.0999 0x18a0  VBoxDrv - ok
12:40:51.0030 0x18a0  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
12:40:51.0046 0x18a0  vdrvroot - ok
12:40:51.0061 0x18a0  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\windows\System32\vds.exe
12:40:51.0093 0x18a0  vds - ok
12:40:51.0108 0x18a0  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
12:40:51.0108 0x18a0  vga - ok
12:40:51.0139 0x18a0  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\windows\System32\drivers\vga.sys
12:40:51.0139 0x18a0  VgaSave - ok
12:40:51.0171 0x18a0  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
12:40:51.0171 0x18a0  vhdmp - ok
12:40:51.0233 0x18a0  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\windows\system32\drivers\viaide.sys
12:40:51.0233 0x18a0  viaide - ok
12:40:51.0233 0x18a0  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\windows\system32\drivers\volmgr.sys
12:40:51.0249 0x18a0  volmgr - ok
12:40:51.0264 0x18a0  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
12:40:51.0264 0x18a0  volmgrx - ok
12:40:51.0311 0x18a0  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap         C:\windows\system32\drivers\volsnap.sys
12:40:51.0311 0x18a0  volsnap - ok
12:40:51.0342 0x18a0  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
12:40:51.0342 0x18a0  vsmraid - ok
12:40:51.0420 0x18a0  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\windows\system32\vssvc.exe
12:40:51.0467 0x18a0  VSS - ok
12:40:51.0623 0x18a0  [ 8A46AEE1438647F7288106EC11832508, 412F544C87DA75BA7B22DDC2D47EC5E517D6B1CB9F05FF455D78E8F2C03842A8 ] vToolbarUpdater40.3.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.6\ToolbarUpdater.exe
12:40:51.0654 0x18a0  vToolbarUpdater40.3.6 - ok
12:40:51.0685 0x18a0  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
12:40:51.0685 0x18a0  vwifibus - ok
12:40:51.0717 0x18a0  [ 13A0DECD1794DE60A8427862C8669D27, 4024AF9F2F052BC80C85F5B9A671499C20AF38838206CC649E6EFE37C380D3BF ] VWiFiFlt        C:\windows\system32\DRIVERS\vwififlt.sys
12:40:51.0717 0x18a0  VWiFiFlt - ok
12:40:51.0748 0x18a0  [ 49003B357D101CDC474937437ECF5ABC, D3EC570D616DC39FE6BF02DA1CD6C30CD07C27CC5B4B6FD6DACB5D8A4F1596A6 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
12:40:51.0748 0x18a0  vwifimp - ok
12:40:51.0779 0x18a0  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\windows\system32\w32time.dll
12:40:51.0795 0x18a0  W32Time - ok
12:40:51.0826 0x18a0  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\windows\system32\drivers\wacompen.sys
12:40:51.0826 0x18a0  WacomPen - ok
12:40:51.0841 0x18a0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
12:40:51.0841 0x18a0  WANARP - ok
12:40:51.0841 0x18a0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
12:40:51.0857 0x18a0  Wanarpv6 - ok
12:40:51.0951 0x18a0  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
12:40:51.0982 0x18a0  WatAdminSvc - ok
12:40:52.0060 0x18a0  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\windows\system32\wbengine.exe
12:40:52.0107 0x18a0  wbengine - ok
12:40:52.0138 0x18a0  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
12:40:52.0138 0x18a0  WbioSrvc - ok
12:40:52.0153 0x18a0  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\windows\System32\wcncsvc.dll
12:40:52.0169 0x18a0  wcncsvc - ok
12:40:52.0185 0x18a0  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
12:40:52.0185 0x18a0  WcsPlugInService - ok
12:40:52.0216 0x18a0  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\windows\system32\drivers\wd.sys
12:40:52.0216 0x18a0  Wd - ok
12:40:52.0278 0x18a0  [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM         C:\windows\system32\DRIVERS\wdcsam64.sys
12:40:52.0278 0x18a0  WDC_SAM - ok
12:40:52.0356 0x18a0  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
12:40:52.0387 0x18a0  Wdf01000 - ok
12:40:52.0434 0x18a0  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\windows\system32\wdi.dll
12:40:52.0450 0x18a0  WdiServiceHost - ok
12:40:52.0450 0x18a0  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\windows\system32\wdi.dll
12:40:52.0450 0x18a0  WdiSystemHost - ok
12:40:52.0528 0x18a0  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\windows\System32\webclnt.dll
12:40:52.0543 0x18a0  WebClient - ok
12:40:52.0559 0x18a0  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\windows\system32\wecsvc.dll
12:40:52.0559 0x18a0  Wecsvc - ok
12:40:52.0575 0x18a0  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\windows\System32\wercplsupport.dll
12:40:52.0575 0x18a0  wercplsupport - ok
12:40:52.0590 0x18a0  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\windows\System32\WerSvc.dll
12:40:52.0590 0x18a0  WerSvc - ok
12:40:52.0606 0x18a0  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
12:40:52.0606 0x18a0  WfpLwf - ok
12:40:52.0637 0x18a0  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\windows\system32\drivers\wimmount.sys
12:40:52.0653 0x18a0  WIMMount - ok
12:40:52.0684 0x18a0  WinDefend - ok
12:40:52.0684 0x18a0  WinHttpAutoProxySvc - ok
12:40:52.0746 0x18a0  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
12:40:52.0746 0x18a0  Winmgmt - ok
12:40:52.0887 0x18a0  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\windows\system32\WsmSvc.dll
12:40:52.0949 0x18a0  WinRM - ok
12:40:53.0105 0x18a0  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
12:40:53.0105 0x18a0  WinUsb - ok
12:40:53.0183 0x18a0  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\windows\System32\wlansvc.dll
12:40:53.0214 0x18a0  Wlansvc - ok
12:40:53.0261 0x18a0  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
12:40:53.0261 0x18a0  wlcrasvc - ok
12:40:53.0386 0x18a0  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:40:53.0448 0x18a0  wlidsvc - ok
12:40:53.0464 0x18a0  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\windows\system32\drivers\wmiacpi.sys
12:40:53.0479 0x18a0  WmiAcpi - ok
12:40:53.0495 0x18a0  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
12:40:53.0511 0x18a0  wmiApSrv - ok
12:40:53.0542 0x18a0  WMPNetworkSvc - ok
12:40:53.0557 0x18a0  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\windows\System32\wpcsvc.dll
12:40:53.0557 0x18a0  WPCSvc - ok
12:40:53.0573 0x18a0  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
12:40:53.0573 0x18a0  WPDBusEnum - ok
12:40:53.0589 0x18a0  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
12:40:53.0589 0x18a0  ws2ifsl - ok
12:40:53.0604 0x18a0  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\windows\System32\wscsvc.dll
12:40:53.0604 0x18a0  wscsvc - ok
12:40:53.0667 0x18a0  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\windows\system32\DRIVERS\WSDPrint.sys
12:40:53.0667 0x18a0  WSDPrintDevice - ok
12:40:53.0682 0x18a0  [ 4A2A5C50DD1A63577D3ACA94269FBC7F, F75C1906D431CF871AD954218DF32A0F206E45FF49332DEF9F13C0A36A407047 ] WSDScan         C:\windows\system32\DRIVERS\WSDScan.sys
12:40:53.0698 0x18a0  WSDScan - ok
12:40:53.0698 0x18a0  WSearch - ok
12:40:53.0854 0x18a0  [ E20FC4FC2F02A37CCE9ACC2ACB9BA668, 7E86E72E8717198DCBD56EA8FB8D95493E51C2D89E73870E7E64CA32F877C805 ] WtuSystemSupport C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
12:40:53.0885 0x18a0  WtuSystemSupport - ok
12:40:54.0041 0x18a0  [ 86F11B85102AFA6A1A6101DCE2F09386, 68A0F0E628C8F33FDAC114876DA8ED14776DD74E80AC5A6A52257E19DE011091 ] wuauserv        C:\windows\system32\wuaueng.dll
12:40:54.0135 0x18a0  wuauserv - ok
12:40:54.0150 0x18a0  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
12:40:54.0166 0x18a0  WudfPf - ok
12:40:54.0197 0x18a0  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
12:40:54.0197 0x18a0  WUDFRd - ok
12:40:54.0213 0x18a0  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
12:40:54.0213 0x18a0  wudfsvc - ok
12:40:54.0244 0x18a0  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\windows\System32\wwansvc.dll
12:40:54.0259 0x18a0  WwanSvc - ok
12:40:54.0275 0x18a0  ================ Scan global ===============================
12:40:54.0322 0x18a0  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\windows\system32\basesrv.dll
12:40:54.0353 0x18a0  [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\windows\system32\winsrv.dll
12:40:54.0384 0x18a0  [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\windows\system32\winsrv.dll
12:40:54.0431 0x18a0  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll
12:40:54.0493 0x18a0  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\windows\system32\services.exe
12:40:54.0509 0x18a0  [ Global ] - ok
12:40:54.0509 0x18a0  ================ Scan MBR ==================================
12:40:54.0525 0x18a0  [ 2E5DEBB2116B3417023E0D6562D7ED07 ] \Device\Harddisk0\DR0
12:40:54.0805 0x18a0  \Device\Harddisk0\DR0 - ok
12:40:54.0805 0x18a0  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
12:40:54.0899 0x18a0  \Device\Harddisk1\DR1 - ok
12:40:54.0899 0x18a0  ================ Scan VBR ==================================
12:40:54.0915 0x18a0  [ 059840F4BDA333C67001CECA8962D0B9 ] \Device\Harddisk0\DR0\Partition1
12:40:54.0915 0x18a0  \Device\Harddisk0\DR0\Partition1 - ok
12:40:54.0915 0x18a0  [ 0F315D7F91D9FAECFCF0E470E75A48EA ] \Device\Harddisk0\DR0\Partition2
12:40:54.0915 0x18a0  \Device\Harddisk0\DR0\Partition2 - ok
12:40:54.0915 0x18a0  ================ Scan generic autorun ======================
12:40:55.0414 0x18a0  [ DAF3E0FD7649F0CAC4BAB4938729BA1B, 49B5D9AE8929336CBA1CA95AEB43B9A3610A94E8D7D79764F5B9D35A2E85F404 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
12:40:55.0835 0x18a0  RtHDVCpl - ok
12:40:55.0851 0x18a0  ETDCtrl - ok
12:40:55.0851 0x18a0  BTMTrayAgent - ok
12:40:55.0913 0x18a0  [ 6E8F57514F0B1015649D82C5AEC52D4C, 6B626EC55BDF6FDB9575B49B2DCEC327DD4E85B3A1F2E9A7D30A8868FA9DE3CE ] C:\Program Files\Mediafour\MacDrive 8\MacDriveD.exe
12:40:55.0913 0x18a0  MacDrive 8 application for Digidesign - ok
12:40:55.0975 0x18a0  [ 61E4289E91E88C90478D7F4BEB10DCF7, 1D0F4034E0111CF5758F470C15A22A0A28EB8269CB5BF07222C9C0FB07A15C55 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
12:40:55.0991 0x18a0  APSDaemon - ok
12:40:56.0053 0x18a0  [ 9C1CD28FC179DB3611FB7E68E76EA0F9, 6250C7F21250C2B48CA10DCF9B006F3CDE1C6B7C04C5C88B649EC5455E94BE73 ] C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
12:40:56.0069 0x18a0  DigidesignMMERefresh - ok
12:40:56.0209 0x18a0  [ 21293443961A4E2597453EE7A9347F22, FDA88181C975C251E56D5A38E5473F45B9CB4E1258A6E93320D34D656AB1E6ED ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
12:40:56.0209 0x18a0  HP Software Update - ok
12:40:56.0319 0x18a0  [ 72860972F8196EBB3C896F53D2B95470, 95C046A66DD0089377867F073CADCE585B7C69CA23E724DCAD9D896BF01E023D ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
12:40:56.0319 0x18a0  hpqSRMon - ok
12:40:56.0381 0x18a0  [ C2CE42005E3381A95460876020518440, 562EB30DA9A1DB58DB221423177C0680E69A4C38EEE2D5FD936633B2EB8A616E ] C:\Program Files (x86)\QuickTime\QTTask.exe
12:40:56.0397 0x18a0  QuickTime Task - ok
12:40:56.0475 0x18a0  [ 090D95190F02F5BC351C97CFD560AA20, ACEB05D30B73D9DCC1C9CC8A1A7938BED8C008FF2E07C1F50AF858E6600BB922 ] C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
12:40:56.0553 0x18a0  vProt - ok
12:40:56.0662 0x18a0  [ A73FFE3B8CE0CBD58627AD5C350EC62B, 7507044BF330B9447CC4AF5275B856BEEB3EB2EE1E125739DB5C66C7DDEF6F05 ] C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe
12:40:56.0662 0x18a0  AvgUi - ok
12:40:56.0677 0x18a0  [ A73FFE3B8CE0CBD58627AD5C350EC62B, 7507044BF330B9447CC4AF5275B856BEEB3EB2EE1E125739DB5C66C7DDEF6F05 ] C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe
12:40:56.0677 0x18a0  AVG_UI - ok
12:40:56.0755 0x18a0  [ 5153C06FC9D4D094D1A785545928B134, 0037C935722663F9EF028F841DE222FC6418E9D60939AB60C965807E67A458DC ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
12:40:56.0771 0x18a0  SunJavaUpdateSched - ok
12:40:56.0880 0x18a0  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:40:56.0927 0x18a0  Sidebar - ok
12:40:56.0974 0x18a0  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:40:56.0974 0x18a0  mctadmin - ok
12:40:57.0005 0x18a0  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:40:57.0052 0x18a0  Sidebar - ok
12:40:57.0052 0x18a0  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:40:57.0052 0x18a0  mctadmin - ok
12:40:57.0083 0x18a0  [ C2CE42005E3381A95460876020518440, 562EB30DA9A1DB58DB221423177C0680E69A4C38EEE2D5FD936633B2EB8A616E ] C:\Program Files (x86)\QuickTime\QTTask.exe
12:40:57.0099 0x18a0  QuickTime Task - ok
12:40:57.0239 0x18a0  [ 41396A5B8D53B23EF02C861BCB2A5553, 6CCCCE51F53188E8D79ECE2EA340797C0634BEC5250EC4A801E1CDB73646705A ] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
12:40:57.0270 0x18a0  BlueStacks Agent - ok
12:40:57.0270 0x18a0  Waiting for KSN requests completion. In queue: 160
12:40:58.0284 0x18a0  Waiting for KSN requests completion. In queue: 160
12:40:59.0298 0x18a0  Waiting for KSN requests completion. In queue: 160
12:41:00.0343 0x18a0  AV detected via SS2: AVG AntiVirus Free Edition, C:\Program Files (x86)\AVG\Av\avgwsc.exe ( 16.131.0.7924 ), 0x41000 ( enabled : updated )
12:41:00.0359 0x18a0  Win FW state via NFP2: enabled ( trusted )
12:41:02.0761 0x18a0  ============================================================
12:41:02.0761 0x18a0  Scan finished
12:41:02.0761 0x18a0  ============================================================
12:41:02.0761 0x05e4  Detected object count: 0
12:41:02.0761 0x05e4  Actual detected object count: 0
 



#15 Artkoudos

Artkoudos

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:30 AM

Posted 02 December 2016 - 08:40 AM

Here is the AdwCleaner Log

 

 

# AdwCleaner v6.030 - Logfile created 02/12/2016 at 12:46:46
# Updated on 19/10/2016 by Malwarebytes
# Database : 2016-12-01.1 [Server]
# Operating System : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Mafezinha - MAFEZINHA-PC
# Running from : C:\Users\Mafezinha\Downloads\AdwCleaner.exe
# Mode: Clean
# Support : hxxps://www.malwarebytes.com/support



***** [ Services ] *****

[-] Service deleted: vToolbarUpdater40.3.6
[-] Service deleted: WtuSystemSupport


***** [ Folders ] *****

[-] Folder deleted: C:\Users\Mafezinha\AppData\Local\avg web tuneup
[-] Folder deleted: C:\Program Files\Common Files\AVG Secure Search
[-] Folder deleted: C:\ProgramData\Ask
[-] Folder deleted: C:\ProgramData\AVG Secure Search
[-] Folder deleted: C:\ProgramData\AVG Security Toolbar
[-] Folder deleted: C:\ProgramData\Search Protection
[-] Folder deleted: C:\ProgramData\avg web tuneup
[-] Folder deleted: C:\ProgramData\Thunder Network
[#] Folder deleted on reboot: C:\ProgramData\thunder network
[#] Folder deleted on reboot: C:\ProgramData\Application Data\Ask
[#] Folder deleted on reboot: C:\ProgramData\Application Data\AVG Secure Search
[#] Folder deleted on reboot: C:\ProgramData\Application Data\AVG Security Toolbar
[#] Folder deleted on reboot: C:\ProgramData\Application Data\Search Protection
[#] Folder deleted on reboot: C:\ProgramData\Application Data\avg web tuneup
[#] Folder deleted on reboot: C:\ProgramData\Application Data\Thunder Network
[#] Folder deleted on reboot: C:\ProgramData\Application Data\thunder network
[-] Folder deleted: C:\Program Files (x86)\avg web tuneup
[-] Folder deleted: C:\Program Files (x86)\Common Files\AVG Secure Search
[-] Folder deleted: C:\windows\SysWOW64\config\systemprofile\AppData\LocalLow\AVG Secure Search
[-] Folder deleted: C:\windows\SysWOW64\config\systemprofile\AppData\LocalLow\avg web tuneup


***** [ Files ] *****

[-] File deleted: C:\Program Files (x86)\Mozilla Firefox\avg-secure-search.xml
[-] File deleted: C:\Users\Mafezinha\AppData\Roaming\Mozilla\Firefox\Profiles\ye8ebsu6.default-1426673143854\extensions\Avg@toolbar.xpi
[-] File deleted: C:\Users\Mafezinha\AppData\Roaming\Mozilla\Firefox\Profiles\ye8ebsu6.default-1426673143854\searchplugins\avg-secure-search.xml
[-] File deleted: C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml
[#] File deleted: C:\Program Files (x86)\Mozilla Firefox\avg-secure-search.xml
[#] File deleted: C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml
[#] File deleted: C:\Program Files (x86)\Mozilla Firefox\avg-secure-search.xml
[#] File deleted: C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml
[#] File deleted: C:\Program Files (x86)\Mozilla Firefox\avg-secure-search.xml


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Shortcuts ] *****



***** [ Scheduled Tasks ] *****



***** [ Registry ] *****

[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Key deleted: HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Key deleted: HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj
[-] Key deleted: HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\WtuServer.WtuServerObj.1
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
[-] Key deleted: HKCU\Software\Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{D879A501-50A7-BEFC-A4C5-32DC6E0CB208}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{4BC8AD89-AC5F-4DBD-A38F-C355C7DD33D7}
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key deleted: HKU\.DEFAULT\Software\Auslogics
[-] Key deleted: HKU\S-1-5-21-1315019188-1793443029-2000615729-1000\Software\IGearSettings
[-] Key deleted: HKU\S-1-5-21-1315019188-1793443029-2000615729-1000\Software\WEBAPP
[-] Key deleted: HKU\S-1-5-21-1315019188-1793443029-2000615729-1000\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
[-] Key deleted: HKU\S-1-5-21-1315019188-1793443029-2000615729-1000\Software\AppDataLow\Software\dealscompare-3
[#] Key deleted on reboot: HKU\S-1-5-18\Software\Auslogics
[#] Key deleted on reboot: HKCU\Software\IGearSettings
[#] Key deleted on reboot: HKCU\Software\WEBAPP
[#] Key deleted on reboot: HKCU\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
[#] Key deleted on reboot: HKCU\Software\AppDataLow\Software\dealscompare-3
[-] Key deleted: HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
[-] Key deleted: HKLM\SOFTWARE\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
[-] Key deleted: HKLM\SOFTWARE\Email Notifier
[-] Key deleted: HKLM\SOFTWARE\AVG Tuneup
[#] Key deleted on reboot: [x64] HKCU\Software\IGearSettings
[#] Key deleted on reboot: [x64] HKCU\Software\WEBAPP
[#] Key deleted on reboot: [x64] HKCU\Software\AppDataLow\{4A0F38A9-FE55-4B89-B73F-E60FDC0F72E9}
[#] Key deleted on reboot: [x64] HKCU\Software\AppDataLow\Software\dealscompare-3
[-] Key deleted: [x64] HKLM\SOFTWARE\Tarma Installer
[-] Data restored: HKU\S-1-5-21-1315019188-1793443029-2000615729-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data restored: HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data restored: [x64] HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Key deleted: HKU\S-1-5-21-1315019188-1793443029-2000615729-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[#] Key deleted on reboot: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Value deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
[-] Key deleted: HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
[-] Key deleted: HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Key deleted: HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin


***** [ Web browsers ] *****

[-] Chrome preferences cleaned: "avg.wtu.ext.extParams" -  "{\"action\":\"extParams\",\"data\":{\"searchParams\":{\"pid\":\"wtu\",\"cid\":\"{979828c2-b397-4cdc-b5a9-5d327ff69752}\",\"mid\":\"7bf2595e274f47d08298591a684c6555-2a1ee7f5a2add8d9bb8bf04d580ce97370d295e3\",\"ds\":\"AVG\",\"v\":\"4.3.6.255\",\"lang\":\"en\",\"pr\":\"fr\",\"d\":\"2015-10-28%2021%3A45%3A16\",\"ud\":\"2016-10-02%2010%3A53%3A24\",\"cmpid\":\"1015av\",\"domain\":\"mysearch.avg.com\",\"protocol\":\"hxxps\",\"FileUpdateDate\":\"\",\"form\":\"AVGSDF\",\"pc\":\"AVG2\"},\"cmpIds\":{\"hp\":\"1015av\",\"nt\":\"1015av\",\"dsp\":\"1015av\"},\"install\":{\"RevertUrlHp\":\"hxxp://www.greensuffolk.org/assets/Greenest-County/Adaptation/General/Your-Home-in-Changing-Climate.pdf hxxp://ecosummit.net/ hxxp://www.mfa.gr/uk/en/services/services-for-greeks/military-service.html\",\"RevertUrlSp\":\"Google\",\"RevertUrlNt\":\"about:newtab\",\"hp\":1,\"sp\":1,\"nt\":1},\"manifest\":{\"domain_display_name\":\"AVG Secure Search\"}}}"
[-] Chrome preferences cleaned: "browser.search.defaultenginename" -  "AVG Secure Search"
[-] [C:\Users\Mafezinha\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: uk.ask.com
[-] [C:\Users\Mafezinha\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: Search The Web


*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [10446 Bytes] - [02/12/2016 12:46:46]
C:\AdwCleaner\AdwCleaner[S0].txt - [9566 Bytes] - [02/12/2016 12:44:59]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [10593 Bytes] ##########
 


The Junk Removal Tool Report


Here is the Junk Removal Report

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.9 (09.30.2016)
Operating System: Windows 7 Home Premium x64
Ran by Mafezinha (Administrator) on 02/12/2016 at 13:00:42.20
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 40

Successfully deleted: C:\Users\Mafezinha\AppData\Local\{676C2142-8F27-4D82-ADD2-C8883661933E} (Empty Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\{6782C9D4-FB01-4F86-9377-C356EF6B529B} (Empty Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\{87EFA5A1-1584-438F-99AA-3756EA0285D8} (Empty Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\{8ACEF0FC-839A-4C99-AC28-7A48F60DC311} (Empty Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\{8B813867-90C6-4852-AD9F-D9A7ADB5DAB1} (Empty Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\{B61903BB-AF69-413B-9852-B10D3E9836D1} (Empty Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\{C3F95E27-D3F7-4C8D-B066-B673BA691C67} (Empty Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\{C52C4DDB-EEC3-4A42-A95D-F71B319D302B} (Empty Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\{C59E31B6-8473-4DBB-A638-E73282B0DC7F} (Empty Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\{D16F85FE-76A5-43DF-B647-CE4DD1D424AC} (Empty Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\{D2B7F17F-C5A8-4C22-96FC-C2ED0FB20632} (Empty Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\{DB0F8C54-92CE-4D74-8093-4976C0670D36} (Empty Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\{DFA8EC8C-495B-4A01-8834-763A058C23E6} (Empty Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Roaming\Mozilla\Firefox\Profiles\ye8ebsu6.default-1426673143854\extensions\trash (Folder)
Successfully deleted: C:\Users\Public\thunder network (Folder)
Successfully deleted: C:\windows\system32\Tasks\0915avUpdateInfo (Task)
Successfully deleted: C:\windows\system32\Tasks\1015avUpdateInfo (Task)
Successfully deleted: C:\windows\system32\Tasks\EasySpeedUpManager (Task)
Successfully deleted: C:\windows\Tasks\0915avUpdateInfo.job (Task)
Successfully deleted: C:\windows\Tasks\1015avUpdateInfo.job (Task)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0E63TKKN (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4OVOEAWJ (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7DVF3PRZ (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7GOS5X20 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8ORY83AY (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GJ1JAMO7 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LSDCTZHQ (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MNNXDFX3 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WRF8J66C (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Mafezinha\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XSLQ0QVV (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0E63TKKN (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4OVOEAWJ (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7DVF3PRZ (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7GOS5X20 (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8ORY83AY (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GJ1JAMO7 (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LSDCTZHQ (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MNNXDFX3 (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WRF8J66C (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XSLQ0QVV (Temporary Internet Files Folder)



Registry: 4

Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8845136e-dae0-4636-a4fb-15d7922f2f38} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ec493723-f88a-480b-9a23-5c8ebfc29b33} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8845136e-dae0-4636-a4fb-15d7922f2f38} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ec493723-f88a-480b-9a23-5c8ebfc29b33} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 02/12/2016 at 13:05:05.39
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users