Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help! Slow running computer...


  • Please log in to reply
10 replies to this topic

#1 88mike

88mike

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:53 AM

Posted 21 March 2014 - 03:34 PM

My computer had alot of adware so I ran Malwarebytes & it found 12 Pup's. It removed them. My PC is still running slow I have also noticed a program named "DefaultTab" in add remove programs but I am unable to uninstall it. Could this be a virus? It seems like this is bogging down my PC & won't let go of it.


Edited by 88mike, 21 March 2014 - 04:09 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:53 AM

Posted 21 March 2014 - 07:32 PM

Hello 88mike, also do these.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 88mike

88mike
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:53 AM

Posted 28 March 2014 - 06:35 AM

          Sorry for the delay I was on vacation....Here are the MiniToolBox results you requested. -

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by BigDog (administrator) on 28-03-2014 at 05:57:07
Running from "C:\Users\BigDog\Desktop"
Microsoft Windows 7 Professional  Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================



127.0.0.1                activate.adobe.com
127.0.0.1                practivate.adobe.com
127.0.0.1                ereg.adobe.com
127.0.0.1                activate.wip3.adobe.com
127.0.0.1                wip3.adobe.com
127.0.0.1                3dns-3.adobe.com
127.0.0.1                3dns-2.adobe.com
127.0.0.1                adobe-dns.adobe.com
127.0.0.1                adobe-dns-2.adobe.com
127.0.0.1                adobe-dns-3.adobe.com
127.0.0.1                ereg.wip3.adobe.com
127.0.0.1                activate-sea.adobe.com
127.0.0.1                wwis-dubc1-vip60.adobe.com
127.0.0.1                activate-sjc0.adobe.com
127.0.0.1                               adobe.activate.com
127.0.0.1                               adobeereg.com                        
127.0.0.1                               www.adobeereg.com                    
127.0.0.1                               wwis-dubc1-vip60.adobe.com           
127.0.0.1                               125.252.224.90                       

There are 1 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

802.11n Wireless LAN Card = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=64 icmpredirects=enabled taskoffload=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : BigDog-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : Belkin

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 00-16-44-FA-F0-CF
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 00-22-15-82-45-14
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : Belkin
   Description . . . . . . . . . . . : 802.11n Wireless LAN Card
   Physical Address. . . . . . . . . : 00-16-44-FA-F0-CE
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::dff:6669:86f1:d0ad%9(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.2.16(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, November 01, 2011 6:26:07 AM
   Lease Expires . . . . . . . . . . : Monday, May 04, 2150 12:25:34 PM
   Default Gateway . . . . . . . . . : 192.168.2.1
   DHCP Server . . . . . . . . . . . : 192.168.2.1
   DHCPv6 IAID . . . . . . . . . . . : 184555076
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-44-56-D8-00-22-15-82-45-14
   DNS Servers . . . . . . . . . . . : 192.168.2.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.Belkin:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  router.belkin
Address:  192.168.2.1

Name:    google.com
Addresses:  2607:f8b0:4002:c01::66
      74.125.196.113
      74.125.196.101
      74.125.196.102
      74.125.196.138
      74.125.196.139
      74.125.196.100


Pinging google.com [74.125.196.113] with 32 bytes of data:
Reply from 74.125.196.113: bytes=32 time=19ms TTL=38
Reply from 74.125.196.113: bytes=32 time=20ms TTL=38

Ping statistics for 74.125.196.113:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 19ms, Maximum = 20ms, Average = 19ms
Server:  router.belkin
Address:  192.168.2.1

Name:    yahoo.com
Addresses:  98.138.253.109
      206.190.36.45
      98.139.183.24


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=90ms TTL=43
Reply from 98.138.253.109: bytes=32 time=87ms TTL=43

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 87ms, Maximum = 90ms, Average = 88ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64
Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 16...00 16 44 fa f0 cf ......Microsoft Virtual WiFi Miniport Adapter
 10...00 22 15 82 45 14 ......Realtek PCIe GBE Family Controller
  9...00 16 44 fa f0 ce ......802.11n Wireless LAN Card
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.2.1     192.168.2.16     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.2.0    255.255.255.0         On-link      192.168.2.16    281
     192.168.2.16  255.255.255.255         On-link      192.168.2.16    281
    192.168.2.255  255.255.255.255         On-link      192.168.2.16    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.2.16    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.2.16    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  9    281 fe80::/64                On-link
  9    281 fe80::dff:6669:86f1:d0ad/128
                                    On-link
  1    306 ff00::/8                 On-link
  9    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [231424] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/28/2014 03:00:33 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Skype™ 6.11 -- Error 1316. A network error occurred while attempting to read from the file: C:\ProgramData\Skype\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeSetup_6.3.0.105.msi

Error: (03/27/2014 08:31:44 PM) (Source: Application Error) (User: )
Description: Faulting application name: firefox.exe, version: 27.0.1.5156, time stamp: 0x52fc0faa
Faulting module name: xul.dll, version: 27.0.1.5156, time stamp: 0x52fc0f79
Exception code: 0xc0000005
Fault offset: 0x001560c7
Faulting process id: 0x3ea0
Faulting application start time: 0xfirefox.exe0
Faulting application path: firefox.exe1
Faulting module path: firefox.exe2
Report Id: firefox.exe3

Error: (03/27/2014 08:41:12 AM) (Source: Application Error) (User: )
Description: Faulting application name: firefox.exe, version: 27.0.1.5156, time stamp: 0x52fc0faa
Faulting module name: xul.dll, version: 27.0.1.5156, time stamp: 0x52fc0f79
Exception code: 0xc0000005
Fault offset: 0x001560c7
Faulting process id: 0x41a0
Faulting application start time: 0xfirefox.exe0
Faulting application path: firefox.exe1
Faulting module path: firefox.exe2
Report Id: firefox.exe3

Error: (03/27/2014 06:17:34 AM) (Source: Application Hang) (User: )
Description: The program Photoshop.exe version 7.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 2924

Start Time: 01cf49bed202ebe3

Termination Time: 1206

Application Path: C:\Program Files\Adobe\Photoshop 7.0\Photoshop.exe

Report Id:

Error: (03/27/2014 03:00:32 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Skype™ 6.11 -- Error 1316. A network error occurred while attempting to read from the file: C:\ProgramData\Skype\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeSetup_6.3.0.105.msi

Error: (03/26/2014 11:49:29 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (03/26/2014 11:48:25 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (11/02/2011 05:46:21 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

Error: (11/02/2011 05:45:00 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (11/02/2011 03:00:30 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Skype™ 6.11 -- Error 1316. A network error occurred while attempting to read from the file: C:\ProgramData\Skype\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeSetup_6.3.0.105.msi


System errors:
=============
Error: (03/28/2014 03:00:57 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Skype for Windows desktop 6.11 (KB2876229).

Error: (03/27/2014 03:01:26 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Skype for Windows desktop 6.11 (KB2876229).

Error: (11/02/2011 03:00:57 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Update for Skype for Windows desktop 6.11 (KB2876229).

Error: (11/01/2011 06:19:32 AM) (Source: Service Control Manager) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error:
%%1053

Error: (11/01/2011 06:19:32 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Google Update Service (gupdate) service to connect.

Error: (11/01/2011 06:17:32 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
WRkrn

Error: (11/01/2011 06:17:32 AM) (Source: Service Control Manager) (User: )
Description: The Sandboxie Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (11/01/2011 06:17:30 AM) (Source: Service Control Manager) (User: )
Description: The KAVSafe service failed to start due to the following error:
%%31

Error: (11/01/2011 06:17:30 AM) (Source: SbieSvc) (User: )
Description: level 9153 status=C0000034 error=-1073741772

Error: (11/01/2011 06:17:29 AM) (Source: Service Control Manager) (User: )
Description: The TOSHIBA UDF2.5 Reader File System Driver service failed to start due to the following error:
%%2


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

µTorrent (Version: 3.3.2.30180)
7-Zip 4.65
Adobe After Effects CS4 (Version: 9.0.2)
Adobe After Effects CS4 Presets (Version: 9)
Adobe After Effects CS4 Third Party Content (Version: 9.0.2)
Adobe AIR (Version: 1.1.0.5790)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe Color Video Profiles AE CS4 (Version: 2.0)
Adobe CS4 American English Speech Analysis Models (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Dynamiclink Support (Version: 1)
Adobe Encore CS4 (Version: 4)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Flash Player 12 Plugin (Version: 12.0.0.77)
Adobe Fonts All (Version: 2.0)
Adobe Media Encoder CS4 (Version: 1.0)
Adobe Media Encoder CS4 Additional Exporter (Version: 1.0)
Adobe Media Encoder CS4 Dolby (Version: 1.0)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe MotionPicture Color Files CS4 (Version: 2.0)
Adobe OnLocation CS4 (Version: 4)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe Photoshop 7.0 (Version: 7.0)
Adobe Premiere Pro CS4 (Version: 4.2.1)
Adobe Premiere Pro CS4 Functional Content (Version: 4)
Adobe Reader XI (11.0.06) (Version: 11.0.06)
Adobe Setup (Version: 2.0)
Adobe Shockwave Player 12.0 (Version: 12.0.4.144)
Adobe Type Support CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Alcor Micro USB Card Reader Driver  (Version: 20.22.2217.13862)
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
Belkin Setup and Router Monitor
Bonjour (Version: 3.0.0.10)
Canon Easy-WebPrint EX (Version: 1.3.5.0)
Canon MG2500 series On-screen Manual (Version: 7.6.1)
Canon MG2500 series User Registration
Canon My Image Garden (Version: 2.0.1)
Canon My Image Garden Design Files (Version: 2.0.0)
Canon My Printer (Version: 3.1.0)
Canon Quick Menu (Version: 2.2.1)
CloneDVD2 (Version: 2.9.2.8)
CyberLink PowerDVD 10 (Version: 10.0.1516)
DMUninstaller
Driver Reviver (Version: 4.0.1.30)
Dropbox (Version: 2.4.11)
DUNE 1.31
EASEUS Partition Master 9.1.0 Home Edition
Epson Easy Photo Print 2 (Version: 2.2.0.0)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (Version: 1.00.0000)
Epson Event Manager (Version: 2.40.0001)
EPSON Scan
EpsonNet Setup 3.3 (Version: 3.3b)
ESET Online Scanner v3
ffdshow v1.2.4422 [2012-04-09] (Version: 1.2.4422.0)
GIMP 2.6.7
Haali Media Splitter
HijackThis 2.0.2 (Version: 2.0.2)
HP Deskjet 2540 series Basic Device Software (Version: 32.0.1180.44630)
HP Deskjet 2540 series Help (Version: 30.0.0)
HP Photo Creations (Version: 1.0.0.7702)
HP Update (Version: 5.005.002.002)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.1912)
Intel® TV Wizard
iTunes (Version: 10.6.3.25)
Java 7 Update 40 (Version: 7.0.400)
Java Auto Updater (Version: 2.1.9.8)
JavaFX 2.1.0 (Version: 2.1.0)
Kingsoft AntiVirus (Version: Kingsoft AntiVirus)
LUXONIX Purity (Version: 1.2.5)
Magic ISO Maker v5.4 (build 0256)
MAGIX Movie Edit Pro MX Premium Download Version (Version: 11.0.1.4)
MAGIX Screenshare (Version: 4.3.6.1987)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
ManyCam 3.1.59 (Version: 3.1.59)
Matroska Pack
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
MixMeister BPM Analyzer 1.0
Mozilla Firefox 27.0.1 (x86 en-US) (Version: 27.0.1)
Mozilla Maintenance Service (Version: 27.0.1)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
ooVoo (Version: 3.6.1008)
PhoneClean 2.2.0 (Version: 2.2.0)
PhoneClean 3.1.0 (Version: 3.1.0)
PhotoFiltre Studio X
Photoshop Camera Raw (Version: 5.0)
PhotoSync (Version: 1.6.4)
Pixel Bender Toolkit (Version: 1.0)
PlayMemories Home (Version: 8.0.02.10010)
PowerISO (Version: 5.4)
Premiere Pro CS4 and After Effects CS4, 32-bit support for CS5 (Version: 4.4.0)
QuickTime (Version: 7.74.80.86)
Reason 4.0 (Version: 4.0)
Revo Uninstaller 1.75 (Version: 1.75)
ROCCAT Power-Grid version 0.458 (Version: 0.458)
Screenshot Captor 4.7.2
Skype™ 6.3 (Version: 6.3.105)
SOHLib for PlayMemories Home (Version: 1.0.0.09130)
Steinberg Cubase SE
StreamTorrent 1.0
Suite Shared Configuration CS4 (Version: 1.0)
swMSM (Version: 12.0.0.1)
TubeMaster++ 2.7 (Version: 2.7)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2878234) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
VLC media player 2.0.0 (Version: 2.0.0)
WinPcap 4.1.2 (Version: 4.1.0.2001)
WinRAR 4.20 (32-bit) (Version: 4.20.0)
Yawcam 0.4.1
Youtube Video Downloader PRO 3.9.0.2

========================= Memory info: ===================================

Percentage of memory in use: 26%
Total physical RAM: 3319.22 MB
Available physical RAM: 2439.2 MB
Total Pagefile: 8295.51 MB
Available Pagefile: 7163.95 MB
Total Virtual: 2047.88 MB
Available Virtual: 1928.57 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:73.52 GB) (Free:32.82 GB) NTFS
3 Drive e: () (Removable) (Total:14.83 GB) (Free:14.64 GB) FAT32
4 Drive f: (TOSHIBA EXT) (Fixed) (Total:931.51 GB) (Free:902.85 GB) NTFS
5 Drive g: () (Fixed) (Total:1 GB) (Free:0.15 GB) NTFS

========================= Users: ========================================

User accounts for \\BIGDOG-PC

Administrator            BigDog                   Guest                    


**** End of log ****
 


Edited by 88mike, 28 March 2014 - 06:42 AM.


#4 88mike

88mike
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:53 AM

Posted 28 March 2014 - 06:45 AM

Here are the TDSSKiller results...

 

07:21:02.0226 0x17cc  TDSS rootkit removing tool 3.0.0.26 Mar 24 2014 07:28:43
07:21:05.0330 0x17cc  ============================================================
07:21:05.0330 0x17cc  Current date / time: 2014/03/28 07:21:05.0330
07:21:05.0330 0x17cc  SystemInfo:
07:21:05.0330 0x17cc  
07:21:05.0330 0x17cc  OS Version: 6.1.7601 ServicePack: 1.0
07:21:05.0330 0x17cc  Product type: Workstation
07:21:05.0330 0x17cc  ComputerName: BIGDOG-PC
07:21:05.0330 0x17cc  UserName: BigDog
07:21:05.0330 0x17cc  Windows directory: C:\Windows
07:21:05.0330 0x17cc  System windows directory: C:\Windows
07:21:05.0330 0x17cc  Processor architecture: Intel x86
07:21:05.0330 0x17cc  Number of processors: 2
07:21:05.0330 0x17cc  Page size: 0x1000
07:21:05.0330 0x17cc  Boot type: Normal boot
07:21:05.0330 0x17cc  ============================================================
07:21:07.0546 0x17cc  KLMD registered as C:\Windows\system32\drivers\40021068.sys
07:21:07.0592 0x17cc  System UUID: {73DD6997-36D4-0C5F-53F5-9194B30435EA}
07:21:07.0982 0x17cc  Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
07:21:07.0982 0x17cc  Drive \Device\Harddisk1\DR1 - Size: 0x3B5980000 (14.84 Gb), SectorSize: 0x200, Cylinders: 0x790, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
07:21:07.0982 0x17cc  Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
07:21:18.0029 0x17cc  ============================================================
07:21:18.0029 0x17cc  \Device\Harddisk0\DR0:
07:21:18.0029 0x17cc  MBR partitions:
07:21:18.0029 0x17cc  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x930C7BF
07:21:18.0029 0x17cc  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x930C7FE, BlocksNum 0x201CC3
07:21:18.0029 0x17cc  \Device\Harddisk1\DR1:
07:21:18.0029 0x17cc  MBR partitions:
07:21:18.0029 0x17cc  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x2000, BlocksNum 0x1DAAC00
07:21:18.0029 0x17cc  \Device\Harddisk2\DR2:
07:21:18.0029 0x17cc  MBR partitions:
07:21:18.0029 0x17cc  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705DB0
07:21:18.0029 0x17cc  ============================================================
07:21:18.0965 0x17cc  C: <-> \Device\Harddisk0\DR0\Partition1
07:21:19.0012 0x17cc  F: <-> \Device\Harddisk2\DR2\Partition1
07:21:19.0074 0x17cc  G: <-> \Device\Harddisk0\DR0\Partition2
07:21:19.0074 0x17cc  ============================================================
07:21:19.0074 0x17cc  Initialize success
07:21:19.0074 0x17cc  ============================================================
07:21:20.0509 0x472c  ============================================================
07:21:20.0509 0x472c  Scan started
07:21:20.0509 0x472c  Mode: Manual;
07:21:20.0509 0x472c  ============================================================
07:21:20.0509 0x472c  KSN ping started
07:21:22.0958 0x472c  KSN ping finished: true
07:21:23.0816 0x472c  ================ Scan system memory ========================
07:21:23.0816 0x472c  System memory - ok
07:21:23.0816 0x472c  ================ Scan services =============================
07:21:24.0019 0x472c  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
07:21:24.0019 0x472c  1394ohci - ok
07:21:24.0066 0x472c  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
07:21:24.0082 0x472c  ACPI - ok
07:21:24.0113 0x472c  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
07:21:24.0113 0x472c  AcpiPmi - ok
07:21:24.0144 0x472c  [ 3877C2A56BCC0AB486CBB4C260AA0B3E, 6486E53DBA7767A5FF01E77B704A2A6F0A70F51A8DC08E24E8D01E57E0DCCFB8 ] ACPIService     C:\Windows\system32\DRIVERS\OSDACPI.SYS
07:21:24.0144 0x472c  ACPIService - ok
07:21:24.0206 0x472c  [ 9AE87D8E973B18B0CDA4A6AC69943BA5, 9286105DE01179B4FCD743E8AE87B59B58542672C094ECA70F66E5EB48E48F6A ] ADIHdAudAddService C:\Windows\system32\drivers\ADIHdAud.sys
07:21:24.0222 0x472c  ADIHdAudAddService - ok
07:21:24.0347 0x472c  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
07:21:24.0362 0x472c  AdobeARMservice - ok
07:21:24.0425 0x472c  [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
07:21:24.0425 0x472c  AdobeFlashPlayerUpdateSvc - ok
07:21:24.0487 0x472c  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
07:21:24.0487 0x472c  adp94xx - ok
07:21:24.0518 0x472c  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
07:21:24.0518 0x472c  adpahci - ok
07:21:24.0550 0x472c  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
07:21:24.0550 0x472c  adpu320 - ok
07:21:24.0596 0x472c  [ 4DC6B0772D1698F04FC79053A21C8260, 010D4660DB9F7BC49C72691B5D9936EAB6F4A0799374B4019B97343B517D86F4 ] AEADIFilters    C:\Windows\system32\AEADISRV.EXE
07:21:24.0596 0x472c  AEADIFilters - ok
07:21:24.0643 0x472c  [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
07:21:24.0643 0x472c  AeLookupSvc - ok
07:21:24.0690 0x472c  [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] AFD             C:\Windows\system32\drivers\afd.sys
07:21:24.0690 0x472c  AFD - ok
07:21:24.0784 0x472c  [ B29BC445561F1AC7B1DAF67AF954C36B, F7014CD522CCEB2A87AF4CF08970B29F261D32E8E0FFD19206405976E6DEC40D ] AffinegyService C:\Program Files\Belkin\Router Setup and Monitor\BelkinService.exe
07:21:24.0799 0x472c  AffinegyService - ok
07:21:24.0830 0x472c  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
07:21:24.0830 0x472c  agp440 - ok
07:21:24.0862 0x472c  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\DRIVERS\djsvs.sys
07:21:24.0877 0x472c  aic78xx - ok
07:21:24.0908 0x472c  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
07:21:24.0908 0x472c  ALG - ok
07:21:24.0955 0x472c  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
07:21:24.0955 0x472c  aliide - ok
07:21:24.0986 0x472c  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
07:21:24.0986 0x472c  amdagp - ok
07:21:25.0018 0x472c  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
07:21:25.0018 0x472c  amdide - ok
07:21:25.0064 0x472c  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
07:21:25.0064 0x472c  AmdK8 - ok
07:21:25.0096 0x472c  [ 095755431562D86F069FB527924ED339, 8881FFD9B0E137B8B4DEBF8A1CB228239A51F39A6E61DB2B73078E5829DE49F5 ] amdkmpfd        C:\Windows\system32\DRIVERS\amdkmpfd.sys
07:21:25.0096 0x472c  amdkmpfd - ok
07:21:25.0111 0x472c  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
07:21:25.0111 0x472c  AmdPPM - ok
07:21:25.0158 0x472c  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
07:21:25.0158 0x472c  amdsata - ok
07:21:25.0189 0x472c  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
07:21:25.0189 0x472c  amdsbs - ok
07:21:25.0205 0x472c  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
07:21:25.0205 0x472c  amdxata - ok
07:21:25.0236 0x472c  [ 1B0230A6950F87F7E193AEC836ED060A, 2B3CE2B00E9495C256CF143435753C373B49CDC15B8D956C4CD86B5AA0814B2A ] AmUStor         C:\Windows\system32\drivers\AmUStor.SYS
07:21:25.0252 0x472c  AmUStor - ok
07:21:25.0283 0x472c  [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID           C:\Windows\system32\drivers\appid.sys
07:21:25.0283 0x472c  AppID - ok
07:21:25.0330 0x472c  [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc        C:\Windows\System32\appidsvc.dll
07:21:25.0330 0x472c  AppIDSvc - ok
07:21:25.0376 0x472c  [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo         C:\Windows\System32\appinfo.dll
07:21:25.0376 0x472c  Appinfo - ok
07:21:25.0454 0x472c  [ F401929EE0CC92BFE7F15161CA535383, 61E1C0630B8BBC65C51121D5DC7F095C59B475F39BB7B0DC68133EF7D9D0A29D ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:21:25.0454 0x472c  Apple Mobile Device - ok
07:21:25.0486 0x472c  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
07:21:25.0486 0x472c  AppMgmt - ok
07:21:25.0517 0x472c  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\DRIVERS\arc.sys
07:21:25.0532 0x472c  arc - ok
07:21:25.0548 0x472c  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
07:21:25.0548 0x472c  arcsas - ok
07:21:25.0657 0x472c  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
07:21:25.0657 0x472c  aspnet_state - ok
07:21:25.0673 0x472c  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
07:21:25.0673 0x472c  AsyncMac - ok
07:21:25.0688 0x472c  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
07:21:25.0688 0x472c  atapi - ok
07:21:25.0751 0x472c  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
07:21:25.0766 0x472c  AudioEndpointBuilder - ok
07:21:25.0798 0x472c  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv        C:\Windows\System32\Audiosrv.dll
07:21:25.0798 0x472c  Audiosrv - ok
07:21:25.0844 0x472c  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
07:21:25.0844 0x472c  AxInstSV - ok
07:21:25.0907 0x472c  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbdx.sys
07:21:25.0907 0x472c  b06bdrv - ok
07:21:25.0938 0x472c  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
07:21:25.0954 0x472c  b57nd60x - ok
07:21:26.0000 0x472c  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
07:21:26.0000 0x472c  BDESVC - ok
07:21:26.0016 0x472c  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
07:21:26.0016 0x472c  Beep - ok
07:21:26.0078 0x472c  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
07:21:26.0094 0x472c  BFE - ok
07:21:26.0156 0x472c  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\System32\qmgr.dll
07:21:26.0172 0x472c  BITS - ok
07:21:26.0203 0x472c  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
07:21:26.0203 0x472c  blbdrive - ok
07:21:26.0234 0x472c  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
07:21:26.0250 0x472c  Bonjour Service - ok
07:21:26.0281 0x472c  [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
07:21:26.0281 0x472c  bowser - ok
07:21:26.0328 0x472c  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
07:21:26.0328 0x472c  BrFiltLo - ok
07:21:26.0344 0x472c  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
07:21:26.0344 0x472c  BrFiltUp - ok
07:21:26.0375 0x472c  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser         C:\Windows\System32\browser.dll
07:21:26.0390 0x472c  Browser - ok
07:21:26.0406 0x472c  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
07:21:26.0422 0x472c  Brserid - ok
07:21:26.0453 0x472c  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
07:21:26.0453 0x472c  BrSerWdm - ok
07:21:26.0468 0x472c  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
07:21:26.0468 0x472c  BrUsbMdm - ok
07:21:26.0515 0x472c  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
07:21:26.0515 0x472c  BrUsbSer - ok
07:21:26.0546 0x472c  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
07:21:26.0546 0x472c  BTHMODEM - ok
07:21:26.0593 0x472c  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
07:21:26.0593 0x472c  bthserv - ok
07:21:26.0609 0x472c  [ 248DFA5762DDE38DFDDBBD44149E9D7A, D696D5698B7B5B331A6ED39172015349685450D10F63B1E4D4112199198FA5C7 ] BVRPMPR5        C:\Windows\system32\drivers\BVRPMPR5.SYS
07:21:26.0624 0x472c  BVRPMPR5 - ok
07:21:26.0640 0x472c  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
07:21:26.0640 0x472c  cdfs - ok
07:21:26.0671 0x472c  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
07:21:26.0671 0x472c  cdrom - ok
07:21:26.0734 0x472c  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
07:21:26.0734 0x472c  CertPropSvc - ok
07:21:26.0780 0x472c  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
07:21:26.0796 0x472c  circlass - ok
07:21:26.0843 0x472c  [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS            C:\Windows\system32\CLFS.sys
07:21:26.0843 0x472c  CLFS - ok
07:21:26.0921 0x472c  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:21:26.0921 0x472c  clr_optimization_v2.0.50727_32 - ok
07:21:26.0952 0x472c  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:21:26.0968 0x472c  clr_optimization_v4.0.30319_32 - ok
07:21:26.0983 0x472c  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
07:21:26.0983 0x472c  CmBatt - ok
07:21:27.0030 0x472c  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
07:21:27.0030 0x472c  cmdide - ok
07:21:27.0077 0x472c  [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG             C:\Windows\system32\Drivers\cng.sys
07:21:27.0077 0x472c  CNG - ok
07:21:27.0233 0x472c  [ 1C15404EA8FC42DAB8A7B3765ED53E58, 270338A946E73D27532D252C503E8653A49F97037050C1C913351457F6C1D71F ] CodeMeter.exe   C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe
07:21:27.0280 0x472c  CodeMeter.exe - ok
07:21:27.0311 0x472c  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
07:21:27.0311 0x472c  Compbatt - ok
07:21:27.0326 0x472c  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
07:21:27.0326 0x472c  CompositeBus - ok
07:21:27.0342 0x472c  COMSysApp - ok
07:21:27.0389 0x472c  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
07:21:27.0389 0x472c  crcdisk - ok
07:21:27.0420 0x472c  [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
07:21:27.0436 0x472c  CryptSvc - ok
07:21:27.0482 0x472c  [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC             C:\Windows\system32\drivers\csc.sys
07:21:27.0498 0x472c  CSC - ok
07:21:27.0560 0x472c  [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService      C:\Windows\System32\cscsvc.dll
07:21:27.0576 0x472c  CscService - ok
07:21:27.0607 0x472c  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch      C:\Windows\system32\rpcss.dll
07:21:27.0623 0x472c  DcomLaunch - ok
07:21:27.0685 0x472c  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
07:21:27.0685 0x472c  defragsvc - ok
07:21:27.0732 0x472c  [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
07:21:27.0732 0x472c  DfsC - ok
07:21:27.0763 0x472c  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
07:21:27.0763 0x472c  Dhcp - ok
07:21:27.0826 0x472c  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
07:21:27.0826 0x472c  discache - ok
07:21:27.0842 0x472c  [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
07:21:27.0842 0x472c  Disk - ok
07:21:27.0873 0x472c  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
07:21:27.0873 0x472c  Dnscache - ok
07:21:27.0920 0x472c  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
07:21:27.0936 0x472c  dot3svc - ok
07:21:27.0951 0x472c  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
07:21:27.0951 0x472c  DPS - ok
07:21:27.0983 0x472c  [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
07:21:27.0998 0x472c  drmkaud - ok
07:21:28.0045 0x472c  [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
07:21:28.0061 0x472c  DXGKrnl - ok
07:21:28.0123 0x472c  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
07:21:28.0123 0x472c  EapHost - ok
07:21:28.0310 0x472c  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\DRIVERS\evbdx.sys
07:21:28.0388 0x472c  ebdrv - ok
07:21:28.0419 0x472c  [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] EFS             C:\Windows\System32\lsass.exe
07:21:28.0419 0x472c  EFS - ok
07:21:28.0529 0x472c  [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
07:21:28.0544 0x472c  ehRecvr - ok
07:21:28.0591 0x472c  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
07:21:28.0591 0x472c  ehSched - ok
07:21:28.0653 0x472c  [ 309AC30471A0F1C3A89DEE1C81230576, A324CA195B05732906ADFFBE6D6B689EA12F9AA8EDFE360A31DE411F4F627B69 ] ElbyCDIO        C:\Windows\system32\Drivers\ElbyCDIO.sys
07:21:28.0653 0x472c  ElbyCDIO - ok
07:21:28.0700 0x472c  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
07:21:28.0700 0x472c  elxstor - ok
07:21:28.0731 0x472c  [ 539CA34FBC74EC366A0D751028C32A08, 5A52964970564D363B9D676A182892B3CE61B3A1BAA67BEF59DFA29F15ED5815 ] epmntdrv        C:\Windows\system32\epmntdrv.sys
07:21:28.0731 0x472c  epmntdrv - ok
07:21:28.0763 0x472c  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
07:21:28.0763 0x472c  ErrDev - ok
07:21:28.0778 0x472c  [ 1F2F4AB15CE03ECC257FEB2F6DC5A013, FB06406AD9CCD946155C4E8CA769E0430589A4E4BBBDA2C90A67C84E0D2F8EE0 ] EuGdiDrv        C:\Windows\system32\EuGdiDrv.sys
07:21:28.0778 0x472c  EuGdiDrv - ok
07:21:28.0856 0x472c  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
07:21:28.0872 0x472c  EventSystem - ok
07:21:28.0903 0x472c  [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat           C:\Windows\system32\drivers\exfat.sys
07:21:28.0903 0x472c  exfat - ok
07:21:28.0919 0x472c  [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
07:21:28.0934 0x472c  fastfat - ok
07:21:28.0997 0x472c  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
07:21:28.0997 0x472c  Fax - ok
07:21:29.0043 0x472c  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
07:21:29.0043 0x472c  fdc - ok
07:21:29.0090 0x472c  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
07:21:29.0090 0x472c  fdPHost - ok
07:21:29.0106 0x472c  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
07:21:29.0106 0x472c  FDResPub - ok
07:21:29.0121 0x472c  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
07:21:29.0121 0x472c  FileInfo - ok
07:21:29.0137 0x472c  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
07:21:29.0137 0x472c  Filetrace - ok
07:21:29.0215 0x472c  [ 1F63900E2EB00101B9ACA2B7A870704E, 5AFE1FC852937FECE6B33147BD0110436FE97F33BFDA3F69B1F5EDAD6FFC09C6 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
07:21:29.0231 0x472c  FLEXnet Licensing Service - ok
07:21:29.0246 0x472c  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
07:21:29.0246 0x472c  flpydisk - ok
07:21:29.0277 0x472c  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
07:21:29.0293 0x472c  FltMgr - ok
07:21:29.0371 0x472c  [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache       C:\Windows\system32\FntCache.dll
07:21:29.0387 0x472c  FontCache - ok
07:21:29.0480 0x472c  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
07:21:29.0480 0x472c  FontCache3.0.0.0 - ok
07:21:29.0496 0x472c  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
07:21:29.0496 0x472c  FsDepends - ok
07:21:29.0527 0x472c  [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
07:21:29.0527 0x472c  Fs_Rec - ok
07:21:29.0589 0x472c  [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
07:21:29.0589 0x472c  fvevol - ok
07:21:29.0621 0x472c  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
07:21:29.0621 0x472c  gagp30kx - ok
07:21:29.0652 0x472c  [ 8182FF89C65E4D38B2DE4BB0FB18564E, 2ACFA64D48BF7D25641EC5819C8722144284B8A8E071BF297C1881B07EEAFE88 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
07:21:29.0652 0x472c  GEARAspiWDM - ok
07:21:29.0714 0x472c  [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc           C:\Windows\System32\gpsvc.dll
07:21:29.0730 0x472c  gpsvc - ok
07:21:29.0792 0x472c  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
07:21:29.0792 0x472c  gupdate - ok
07:21:29.0808 0x472c  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
07:21:29.0808 0x472c  gupdatem - ok
07:21:29.0855 0x472c  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
07:21:29.0855 0x472c  hcw85cir - ok
07:21:29.0917 0x472c  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
07:21:29.0917 0x472c  HdAudAddService - ok
07:21:29.0964 0x472c  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
07:21:29.0964 0x472c  HDAudBus - ok
07:21:29.0979 0x472c  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
07:21:29.0979 0x472c  HidBatt - ok
07:21:29.0995 0x472c  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
07:21:30.0011 0x472c  HidBth - ok
07:21:30.0026 0x472c  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
07:21:30.0026 0x472c  HidIr - ok
07:21:30.0073 0x472c  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\system32\hidserv.dll
07:21:30.0073 0x472c  hidserv - ok
07:21:30.0120 0x472c  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
07:21:30.0120 0x472c  HidUsb - ok
07:21:30.0167 0x472c  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
07:21:30.0167 0x472c  hkmsvc - ok
07:21:30.0213 0x472c  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
07:21:30.0229 0x472c  HomeGroupListener - ok
07:21:30.0276 0x472c  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
07:21:30.0291 0x472c  HomeGroupProvider - ok
07:21:30.0307 0x472c  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
07:21:30.0307 0x472c  HpSAMD - ok
07:21:30.0385 0x472c  [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
07:21:30.0401 0x472c  HTTP - ok
07:21:30.0432 0x472c  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
07:21:30.0432 0x472c  hwpolicy - ok
07:21:30.0463 0x472c  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
07:21:30.0479 0x472c  i8042prt - ok
07:21:30.0557 0x472c  [ 26541A068572F650A2FA490726FE81BE, 9D6EF745731D45C4482274BE9C56300BBE8843D6C182F0E5C621AB121DBE371E ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
07:21:30.0572 0x472c  iaStor - ok
07:21:30.0619 0x472c  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
07:21:30.0635 0x472c  iaStorV - ok
07:21:30.0744 0x472c  [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
07:21:30.0759 0x472c  idsvc - ok
07:21:30.0775 0x472c  IEEtwCollectorService - ok
07:21:31.0056 0x472c  [ A79416044080F5ADE931517C45BE9D58, 532B63B297A42A9ACE91353074CAAB11601B48869EBF0E5E0CEC3C6FCF114C0F ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
07:21:31.0149 0x472c  igfx - ok
07:21:31.0212 0x472c  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
07:21:31.0212 0x472c  iirsp - ok
07:21:31.0290 0x472c  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT          C:\Windows\System32\ikeext.dll
07:21:31.0305 0x472c  IKEEXT - ok
07:21:31.0352 0x472c  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
07:21:31.0352 0x472c  intelide - ok
07:21:31.0368 0x472c  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
07:21:31.0368 0x472c  intelppm - ok
07:21:31.0415 0x472c  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
07:21:31.0415 0x472c  IPBusEnum - ok
07:21:31.0430 0x472c  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:21:31.0446 0x472c  IpFilterDriver - ok
07:21:31.0493 0x472c  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
07:21:31.0508 0x472c  iphlpsvc - ok
07:21:31.0539 0x472c  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
07:21:31.0539 0x472c  IPMIDRV - ok
07:21:31.0571 0x472c  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
07:21:31.0571 0x472c  IPNAT - ok
07:21:31.0633 0x472c  [ E6BE7A41A28D8F2DB174957454D32448, 9077FCD816AB3E59D39ED30BED5D4272A98993872ADA77F9121BDBA0200A28C6 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
07:21:31.0649 0x472c  iPod Service - ok
07:21:31.0664 0x472c  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
07:21:31.0664 0x472c  IRENUM - ok
07:21:31.0695 0x472c  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
07:21:31.0695 0x472c  isapnp - ok
07:21:31.0711 0x472c  [ CB7A9ABB12B8415BCE5D74994C7BA3AE, 464BFF3F5EEE985BE075E23E1813F5CB82A9A0771A92C6D889B13B867BCDF647 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
07:21:31.0711 0x472c  iScsiPrt - ok
07:21:31.0773 0x472c  [ D99A2DC4B50D9ADE64DC377E47DBF61A, 49D5C2FE57B29309355DEC79C63C3588684D5F09441F4622E0F7824BF282E137 ] KAVBootC        C:\Windows\system32\drivers\KAVBootC.sys
07:21:31.0773 0x472c  KAVBootC - ok
07:21:31.0820 0x472c  [ 09CC3542C6AA14B79EDDCB8CA2736D0E, C1A6421D1AD97C3278C98EDFA803CD92D4FF90FCBAFFD0CA875601411F5E8C1C ] KAVSafe         C:\Windows\system32\Drivers\KAVSafe.sys
07:21:31.0820 0x472c  KAVSafe - ok
07:21:31.0836 0x472c  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
07:21:31.0836 0x472c  kbdclass - ok
07:21:31.0867 0x472c  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
07:21:31.0867 0x472c  kbdhid - ok
07:21:31.0883 0x472c  [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] KeyIso          C:\Windows\system32\lsass.exe
07:21:31.0898 0x472c  KeyIso - ok
07:21:31.0929 0x472c  [ F286830298323272260332D6ABC905C1, FF4CD182A95CA53119B228690D682EE9214BE131A0DBCB09B6189FBEBBFF902C ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
07:21:31.0929 0x472c  KSecDD - ok
07:21:31.0945 0x472c  [ D7C760D57B1656DD748B9E4AB6CB5A51, F8AE4185A6A9F7005DEFF1FDC03F395C6189825B482B8C650637FD29DE93AB68 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
07:21:31.0945 0x472c  KSecPkg - ok
07:21:32.0007 0x472c  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
07:21:32.0007 0x472c  KtmRm - ok
07:21:32.0085 0x472c  [ 5069A77C3F7254B2D27FCDF1FA309DF2, 161BF4EDB24A33A0CF8D87D2ADE3F32F850A3220DBAFCB91890612ACF6C093AE ] kxesapp         C:\Program Files\Common Files\Kingsoft\kiscommon\kxesapp.exe
07:21:32.0085 0x472c  kxesapp - ok
07:21:32.0117 0x472c  [ C629FF9429082422BAAFDFB6988BCFE4, 70BE2530E5BC930B8965F1EE12730E9D379F99378AB5003144456E80E9DB96D0 ] kxescore        C:\Program Files\Common Files\Kingsoft\kiscommon\kxescore.exe
07:21:32.0117 0x472c  kxescore - ok
07:21:32.0179 0x472c  [ 717C3E7542FBA91E77968A5C98C4855A, CFA74AEBF0A85840E79A68E6F6D8D5B884425A92FA08260C163F81456C8C6046 ] KxEServ         C:\Program Files\Common Files\Kingsoft\kiscommon\kxeserv.exe
07:21:32.0179 0x472c  KxEServ - ok
07:21:32.0226 0x472c  [ DD2C5B4E7E584800218B5E7DE0DFDC11, EC038B061EEF4360DE9F999F6D3633C9496A7978FD7BF82677AE8D904AFCBC32 ] KxEUpSrv        C:\Program Files\Common Files\Kingsoft\kiscommon\upsvc.exe
07:21:32.0226 0x472c  KxEUpSrv - ok
07:21:32.0273 0x472c  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\Windows\system32\srvsvc.dll
07:21:32.0288 0x472c  LanmanServer - ok
07:21:32.0319 0x472c  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
07:21:32.0319 0x472c  LanmanWorkstation - ok
07:21:32.0382 0x472c  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
07:21:32.0382 0x472c  lltdio - ok
07:21:32.0429 0x472c  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
07:21:32.0444 0x472c  lltdsvc - ok
07:21:32.0460 0x472c  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
07:21:32.0460 0x472c  lmhosts - ok
07:21:32.0475 0x472c  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
07:21:32.0491 0x472c  LSI_FC - ok
07:21:32.0507 0x472c  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
07:21:32.0507 0x472c  LSI_SAS - ok
07:21:32.0522 0x472c  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
07:21:32.0522 0x472c  LSI_SAS2 - ok
07:21:32.0538 0x472c  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
07:21:32.0553 0x472c  LSI_SCSI - ok
07:21:32.0569 0x472c  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv           C:\Windows\system32\drivers\luafv.sys
07:21:32.0569 0x472c  luafv - ok
07:21:32.0600 0x472c  [ D8C0B2EB928D57C928522EFF500C4BA8, B7261AB2DD262140489087C1A8F1A1DA5EE6373D453E5BC8A3F7B93A5540CE6C ] ManyCam         C:\Windows\system32\DRIVERS\mcvidrv.sys
07:21:32.0600 0x472c  ManyCam - ok
07:21:32.0616 0x472c  [ DFAA87E30868FE4CB7D335837A4BF39C, 7BB65D4DC5CA2A4B4FE531F23E217CFA8BCFFE20E78BF18B04486345FC1E0B6E ] mcaudrv_simple  C:\Windows\system32\drivers\mcaudrv.sys
07:21:32.0616 0x472c  mcaudrv_simple - ok
07:21:32.0631 0x472c  mcdbus - ok
07:21:32.0678 0x472c  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
07:21:32.0678 0x472c  Mcx2Svc - ok
07:21:32.0694 0x472c  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
07:21:32.0694 0x472c  megasas - ok
07:21:32.0725 0x472c  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
07:21:32.0741 0x472c  MegaSR - ok
07:21:32.0803 0x472c  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
07:21:32.0803 0x472c  Microsoft Office Groove Audit Service - ok
07:21:32.0850 0x472c  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
07:21:32.0850 0x472c  MMCSS - ok
07:21:32.0865 0x472c  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
07:21:32.0865 0x472c  Modem - ok
07:21:32.0912 0x472c  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
07:21:32.0912 0x472c  monitor - ok
07:21:32.0943 0x472c  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
07:21:32.0943 0x472c  mouclass - ok
07:21:32.0943 0x472c  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
07:21:32.0943 0x472c  mouhid - ok
07:21:32.0990 0x472c  [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
07:21:32.0990 0x472c  mountmgr - ok
07:21:33.0037 0x472c  [ 338037EFA0E8E8699B2667D57B751574, 59E0D39806D0C4EB57913AA013242837FD39AD378726AEE42D250CBA87C1C3BF ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
07:21:33.0037 0x472c  MozillaMaintenance - ok
07:21:33.0053 0x472c  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\Windows\system32\drivers\mpio.sys
07:21:33.0068 0x472c  mpio - ok
07:21:33.0084 0x472c  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
07:21:33.0084 0x472c  mpsdrv - ok
07:21:33.0146 0x472c  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\Windows\system32\mpssvc.dll
07:21:33.0162 0x472c  MpsSvc - ok
07:21:33.0209 0x472c  [ 9BD4DCB5412921864A7AACDEDFBD1923, 46DEE9B9414D26203B62F0D6CAEBF37A3CEFD118556129547B2C5FC7B6FDBA05 ] MREMP50         C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
07:21:33.0209 0x472c  MREMP50 - ok
07:21:33.0224 0x472c  [ 07C02C892E8E1A72D6BF35004F0E9C5E, 09ECD59AADF08E2AA0C1BAF5D3D7CBB0948153E531E1F82ECACD43F14F88106B ] MRESP50         C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
07:21:33.0240 0x472c  MRESP50 - ok
07:21:33.0271 0x472c  [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
07:21:33.0271 0x472c  MRxDAV - ok
07:21:33.0302 0x472c  [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
07:21:33.0302 0x472c  mrxsmb - ok
07:21:33.0333 0x472c  [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:21:33.0333 0x472c  mrxsmb10 - ok
07:21:33.0349 0x472c  [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:21:33.0349 0x472c  mrxsmb20 - ok
07:21:33.0396 0x472c  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\Windows\system32\drivers\msahci.sys
07:21:33.0396 0x472c  msahci - ok
07:21:33.0443 0x472c  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
07:21:33.0443 0x472c  msdsm - ok
07:21:33.0458 0x472c  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe
07:21:33.0458 0x472c  MSDTC - ok
07:21:33.0521 0x472c  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys
07:21:33.0521 0x472c  Msfs - ok
07:21:33.0536 0x472c  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
07:21:33.0536 0x472c  mshidkmdf - ok
07:21:33.0567 0x472c  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
07:21:33.0567 0x472c  msisadrv - ok
07:21:33.0630 0x472c  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
07:21:33.0630 0x472c  MSiSCSI - ok
07:21:33.0645 0x472c  msiserver - ok
07:21:33.0661 0x472c  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
07:21:33.0661 0x472c  MSKSSRV - ok
07:21:33.0677 0x472c  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
07:21:33.0677 0x472c  MSPCLOCK - ok
07:21:33.0677 0x472c  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
07:21:33.0677 0x472c  MSPQM - ok
07:21:33.0708 0x472c  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
07:21:33.0708 0x472c  MsRPC - ok
07:21:33.0755 0x472c  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
07:21:33.0755 0x472c  mssmbios - ok
07:21:33.0786 0x472c  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
07:21:33.0801 0x472c  MSTEE - ok
07:21:33.0817 0x472c  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
07:21:33.0817 0x472c  MTConfig - ok
07:21:33.0833 0x472c  [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup             C:\Windows\system32\Drivers\mup.sys
07:21:33.0833 0x472c  Mup - ok
07:21:33.0895 0x472c  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\Windows\system32\qagentRT.dll
07:21:33.0911 0x472c  napagent - ok
07:21:33.0957 0x472c  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
07:21:33.0973 0x472c  NativeWifiP - ok
07:21:34.0051 0x472c  [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS            C:\Windows\system32\drivers\ndis.sys
07:21:34.0051 0x472c  NDIS - ok
07:21:34.0082 0x472c  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
07:21:34.0082 0x472c  NdisCap - ok
07:21:34.0113 0x472c  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
07:21:34.0113 0x472c  NdisTapi - ok
07:21:34.0160 0x472c  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
07:21:34.0160 0x472c  Ndisuio - ok
07:21:34.0207 0x472c  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
07:21:34.0207 0x472c  NdisWan - ok
07:21:34.0269 0x472c  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
07:21:34.0269 0x472c  NDProxy - ok
07:21:34.0301 0x472c  [ 1352E1648213551923A0A822E441553C, F9BCA299249D8E1ADF88F54554F72428E267E39911143F4C99DFF562F0EE4E70 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl.sys
07:21:34.0301 0x472c  Netaapl - ok
07:21:34.0347 0x472c  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
07:21:34.0347 0x472c  NetBIOS - ok
07:21:34.0410 0x472c  [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
07:21:34.0425 0x472c  NetBT - ok
07:21:34.0441 0x472c  [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] Netlogon        C:\Windows\system32\lsass.exe
07:21:34.0441 0x472c  Netlogon - ok
07:21:34.0503 0x472c  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll
07:21:34.0503 0x472c  Netman - ok
07:21:34.0535 0x472c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
07:21:34.0535 0x472c  NetMsmqActivator - ok
07:21:34.0550 0x472c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
07:21:34.0550 0x472c  NetPipeActivator - ok
07:21:34.0597 0x472c  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll
07:21:34.0597 0x472c  netprofm - ok
07:21:34.0737 0x472c  [ 6B125FF82D34255F42853E11A9AE9E48, 0F8EA508859DC185863BC6DD8D9C6606C903790F5F60D2BD1C2C4B28DE1CA353 ] netr28          C:\Windows\system32\DRIVERS\netr28.sys
07:21:34.0784 0x472c  netr28 - ok
07:21:34.0800 0x472c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
07:21:34.0800 0x472c  NetTcpActivator - ok
07:21:34.0815 0x472c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
07:21:34.0815 0x472c  NetTcpPortSharing - ok
07:21:34.0862 0x472c  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
07:21:34.0862 0x472c  nfrd960 - ok
07:21:34.0909 0x472c  [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc          C:\Windows\System32\nlasvc.dll
07:21:34.0925 0x472c  NlaSvc - ok
07:21:34.0956 0x472c  [ B48DC6ABCD3AEFF8618350CCBDC6B09A, 824D8B03E061DDD0D33EF9F03C669B13E7B6E339684009BD44D69178C45E2DE1 ] NPF             C:\Windows\system32\drivers\npf.sys
07:21:34.0956 0x472c  NPF - ok
07:21:34.0971 0x472c  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
07:21:34.0971 0x472c  Npfs - ok
07:21:35.0018 0x472c  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi             C:\Windows\system32\nsisvc.dll
07:21:35.0018 0x472c  nsi - ok
07:21:35.0034 0x472c  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
07:21:35.0034 0x472c  nsiproxy - ok
07:21:35.0127 0x472c  [ 5E43D2B0EE64123D4880DFA6626DEFDE, 164413A22DE58B19EA2B4120034B46D6BE1F424B80C3421E10BE5C81153D049F ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
07:21:35.0159 0x472c  Ntfs - ok
07:21:35.0190 0x472c  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys
07:21:35.0190 0x472c  Null - ok
07:21:35.0237 0x472c  [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
07:21:35.0237 0x472c  nvraid - ok
07:21:35.0252 0x472c  [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
07:21:35.0252 0x472c  nvstor - ok
07:21:35.0299 0x472c  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
07:21:35.0299 0x472c  nv_agp - ok
07:21:35.0393 0x472c  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
07:21:35.0408 0x472c  odserv - ok
07:21:35.0439 0x472c  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
07:21:35.0439 0x472c  ohci1394 - ok
07:21:35.0471 0x472c  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:21:35.0471 0x472c  ose - ok
07:21:35.0533 0x472c  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
07:21:35.0533 0x472c  p2pimsvc - ok
07:21:35.0564 0x472c  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll
07:21:35.0564 0x472c  p2psvc - ok
07:21:35.0627 0x472c  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\DRIVERS\parport.sys
07:21:35.0627 0x472c  Parport - ok
07:21:35.0658 0x472c  [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
07:21:35.0658 0x472c  partmgr - ok
07:21:35.0673 0x472c  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
07:21:35.0673 0x472c  Parvdm - ok
07:21:35.0705 0x472c  [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc          C:\Windows\System32\pcasvc.dll
07:21:35.0720 0x472c  PcaSvc - ok
07:21:35.0751 0x472c  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\Windows\system32\drivers\pci.sys
07:21:35.0751 0x472c  pci - ok
07:21:35.0798 0x472c  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
07:21:35.0798 0x472c  pciide - ok
07:21:35.0829 0x472c  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
07:21:35.0829 0x472c  pcmcia - ok
07:21:35.0876 0x472c  [ 5B6C11DE7E839C05248CED8825470FEF, DB57DFD02C18461B1B383DF759730FFEE9C7FA8577E1679FD4740A590303EE79 ] pcouffin        C:\Windows\system32\Drivers\pcouffin.sys
07:21:35.0876 0x472c  pcouffin - ok
07:21:35.0892 0x472c  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys
07:21:35.0892 0x472c  pcw - ok
07:21:35.0939 0x472c  [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
07:21:35.0954 0x472c  PEAUTH - ok
07:21:36.0048 0x472c  [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
07:21:36.0063 0x472c  PeerDistSvc - ok
07:21:36.0204 0x472c  [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla             C:\Windows\system32\pla.dll
07:21:36.0235 0x472c  pla - ok
07:21:36.0297 0x472c  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
07:21:36.0313 0x472c  PlugPlay - ok
07:21:36.0407 0x472c  [ 78CEC2F64577FEF62F9A9AFE2F312578, 22A0439381032A4AC5DC76151982C094AA4376D3038752266A673B80603AAE26 ] PMBDeviceInfoProvider C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
07:21:36.0422 0x472c  PMBDeviceInfoProvider - ok
07:21:36.0438 0x472c  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
07:21:36.0438 0x472c  PNRPAutoReg - ok
07:21:36.0469 0x472c  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
07:21:36.0485 0x472c  PNRPsvc - ok
07:21:36.0531 0x472c  [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
07:21:36.0547 0x472c  PolicyAgent - ok
07:21:36.0594 0x472c  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\Windows\system32\umpo.dll
07:21:36.0609 0x472c  Power - ok
07:21:36.0656 0x472c  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
07:21:36.0656 0x472c  PptpMiniport - ok
07:21:36.0672 0x472c  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
07:21:36.0672 0x472c  Processor - ok
07:21:36.0703 0x472c  [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc         C:\Windows\system32\profsvc.dll
07:21:36.0719 0x472c  ProfSvc - ok
07:21:36.0734 0x472c  [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] ProtectedStorage C:\Windows\system32\lsass.exe
07:21:36.0734 0x472c  ProtectedStorage - ok
07:21:36.0750 0x472c  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
07:21:36.0750 0x472c  Psched - ok
07:21:36.0797 0x472c  [ 05A0C2744CEAC6F1B723EC469B650EF0, D9F2E0E4431217C6A7CDE38D36362CD5A06E93B9F45F92638120EF151089B370 ] PSKMAD          C:\Windows\system32\DRIVERS\PSKMAD.sys
07:21:36.0797 0x472c  PSKMAD - ok
07:21:36.0875 0x472c  [ D970470F8F39470BDAE94D313A1CCDCE, C41B314F3A1CD6A747A4578C2A1F20373884C2AD96880A81255E66BA9D886EB4 ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
07:21:36.0875 0x472c  PxHelp20 - ok
07:21:36.0906 0x472c  [ 8075C797F81AA2E2D9AB92438C0A4A8B, E22437C861DC5C4DDA07C547F9F6B64AB4F3B35C14DDF5C1EBB3285488ADD05C ] qcusbser        C:\Windows\system32\DRIVERS\qcusbser.sys
07:21:36.0921 0x472c  qcusbser - ok
07:21:36.0999 0x472c  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
07:21:37.0015 0x472c  ql2300 - ok
07:21:37.0077 0x472c  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
07:21:37.0077 0x472c  ql40xx - ok
07:21:37.0124 0x472c  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll
07:21:37.0124 0x472c  QWAVE - ok
07:21:37.0140 0x472c  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
07:21:37.0140 0x472c  QWAVEdrv - ok
07:21:37.0155 0x472c  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
07:21:37.0155 0x472c  RasAcd - ok
07:21:37.0202 0x472c  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
07:21:37.0202 0x472c  RasAgileVpn - ok
07:21:37.0218 0x472c  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll
07:21:37.0233 0x472c  RasAuto - ok
07:21:37.0249 0x472c  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
07:21:37.0249 0x472c  Rasl2tp - ok
07:21:37.0296 0x472c  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\Windows\System32\rasmans.dll
07:21:37.0311 0x472c  RasMan - ok
07:21:37.0327 0x472c  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
07:21:37.0327 0x472c  RasPppoe - ok
07:21:37.0343 0x472c  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
07:21:37.0358 0x472c  RasSstp - ok
07:21:37.0405 0x472c  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
07:21:37.0405 0x472c  rdbss - ok
07:21:37.0421 0x472c  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
07:21:37.0421 0x472c  rdpbus - ok
07:21:37.0467 0x472c  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
07:21:37.0467 0x472c  RDPCDD - ok
07:21:37.0499 0x472c  [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
07:21:37.0514 0x472c  RDPDR - ok
07:21:37.0530 0x472c  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
07:21:37.0530 0x472c  RDPENCDD - ok
07:21:37.0545 0x472c  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
07:21:37.0545 0x472c  RDPREFMP - ok
07:21:37.0592 0x472c  [ F031683E6D1FEA157ABB2FF260B51E61, 83B552819A5964152882C527E1421DBCEAACC74DEB897E3C4B53F52F1467FED3 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
07:21:37.0592 0x472c  RDPWD - ok
07:21:37.0639 0x472c  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
07:21:37.0655 0x472c  rdyboost - ok
07:21:37.0717 0x472c  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll
07:21:37.0717 0x472c  RemoteAccess - ok
07:21:37.0764 0x472c  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\Windows\system32\regsvc.dll
07:21:37.0764 0x472c  RemoteRegistry - ok
07:21:37.0795 0x472c  [ B60F58F175DE20A6739194E85B035178, 6E66D6041AF0B69896E4556F9FF3A3AA70CF4B09FFBE68E14E60313C5E3FFDDB ] rpcapd          C:\Program Files\WinPcap\rpcapd.exe
07:21:37.0811 0x472c  rpcapd - ok
07:21:37.0857 0x472c  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
07:21:37.0857 0x472c  RpcEptMapper - ok
07:21:37.0904 0x472c  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe
07:21:37.0904 0x472c  RpcLocator - ok
07:21:37.0935 0x472c  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs           C:\Windows\system32\rpcss.dll
07:21:37.0951 0x472c  RpcSs - ok
07:21:37.0998 0x472c  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
07:21:37.0998 0x472c  rspndr - ok
07:21:38.0029 0x472c  [ 3F677597AEFEEFB859DFFFC9C807F42A, 4EC1534C0703DAF6278162229B9965D24F1197E5E6A7F66C98D7F3F42913E5DE ] rspSanity       C:\Windows\system32\DRIVERS\rspSanity32.sys
07:21:38.0029 0x472c  Suspicious file ( Forged ): C:\Windows\system32\DRIVERS\rspSanity32.sys. Real md5: 3F677597AEFEEFB859DFFFC9C807F42A, sha256: 4EC1534C0703DAF6278162229B9965D24F1197E5E6A7F66C98D7F3F42913E5DE, fake md5: BC643D24EC88EE90A73605E89543FECF, fake sha256: C4CFA7324382D465AA74D43D29465627891724222085CD728B96E9E0ADA308BE
07:21:38.0029 0x472c  rspSanity - detected ForgedFile.Multi.Generic ( 1 )
07:21:40.0541 0x472c  rspSanity ( ForgedFile.Multi.Generic ) - warning
07:21:40.0541 0x472c  Force sending object to P2P due to detect: C:\Windows\system32\DRIVERS\rspSanity32.sys
07:21:43.0427 0x472c  Object send P2P result: true
07:21:46.0547 0x472c  [ 282C64DEE8300FA717844ECC9BA5B27A, 59245166F8ABBA649962E0986090ACA1A1B6BE9767A89E09108BF16F3928B2F1 ] RTL8167         C:\Windows\system32\DRIVERS\Rt86win7.sys
07:21:46.0562 0x472c  RTL8167 - ok
07:21:46.0593 0x472c  [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
07:21:46.0593 0x472c  s3cap - ok
07:21:46.0609 0x472c  [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] SamSs           C:\Windows\system32\lsass.exe
07:21:46.0609 0x472c  SamSs - ok
07:21:46.0703 0x472c  [ 75B191596E6C2F149AA8E0228B3E0B3A, ECE764D5FFCCCF8F23A2E74F60EBF6601DCB62F9C474158CE735B7C71871ADD3 ] SbieSvc         C:\Program Files\Sandboxie\SbieSvc.exe
07:21:46.0718 0x472c  SbieSvc - ok
07:21:46.0749 0x472c  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
07:21:46.0765 0x472c  sbp2port - ok
07:21:46.0812 0x472c  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
07:21:46.0812 0x472c  SCardSvr - ok
07:21:46.0859 0x472c  [ BC7C602A9202429D37CCD07E7EBB6404, 5E9AB2279FF22C14121954721CB9B87B7BEA70C3C3530A62D9C3FB8ACDB0403C ] SCDEmu          C:\Windows\system32\drivers\SCDEmu.sys
07:21:46.0874 0x472c  SCDEmu - ok
07:21:46.0890 0x472c  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
07:21:46.0890 0x472c  scfilter - ok
07:21:46.0952 0x472c  [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule        C:\Windows\system32\schedsvc.dll
07:21:46.0983 0x472c  Schedule - ok
07:21:47.0030 0x472c  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\Windows\System32\certprop.dll
07:21:47.0030 0x472c  SCPolicySvc - ok
07:21:47.0077 0x472c  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
07:21:47.0093 0x472c  SDRSVC - ok
07:21:47.0139 0x472c  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
07:21:47.0139 0x472c  secdrv - ok
07:21:47.0171 0x472c  [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon        C:\Windows\system32\seclogon.dll
07:21:47.0171 0x472c  seclogon - ok
07:21:47.0233 0x472c  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\System32\sens.dll
07:21:47.0233 0x472c  SENS - ok
07:21:47.0249 0x472c  [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
07:21:47.0249 0x472c  SensrSvc - ok
07:21:47.0280 0x472c  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
07:21:47.0280 0x472c  Serenum - ok
07:21:47.0295 0x472c  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\DRIVERS\serial.sys
07:21:47.0295 0x472c  Serial - ok
07:21:47.0327 0x472c  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
07:21:47.0327 0x472c  sermouse - ok
07:21:47.0389 0x472c  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\Windows\system32\sessenv.dll
07:21:47.0405 0x472c  SessionEnv - ok
07:21:47.0436 0x472c  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
07:21:47.0436 0x472c  sffdisk - ok
07:21:47.0451 0x472c  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
07:21:47.0451 0x472c  sffp_mmc - ok
07:21:47.0467 0x472c  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
07:21:47.0467 0x472c  sffp_sd - ok
07:21:47.0498 0x472c  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
07:21:47.0498 0x472c  sfloppy - ok
07:21:47.0576 0x472c  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
07:21:47.0576 0x472c  SharedAccess - ok
07:21:47.0654 0x472c  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
07:21:47.0670 0x472c  ShellHWDetection - ok
07:21:47.0701 0x472c  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\drivers\sisagp.sys
07:21:47.0701 0x472c  sisagp - ok
07:21:47.0732 0x472c  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
07:21:47.0732 0x472c  SiSRaid2 - ok
07:21:47.0763 0x472c  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
07:21:47.0763 0x472c  SiSRaid4 - ok
07:21:47.0795 0x472c  [ 7C15061CD0372487903B07B9BB03AFAD, FB96CDA29C7C1E8A315BA89E8B150918E59F32CE749D3EF43FCBEB3FB57BF1C6 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
07:21:47.0795 0x472c  SkypeUpdate - ok
07:21:47.0826 0x472c  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
07:21:47.0826 0x472c  Smb - ok
07:21:47.0888 0x472c  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
07:21:47.0888 0x472c  SNMPTRAP - ok
07:21:47.0997 0x472c  [ F8A77E1629679A6AB2E79B2A8ACCCD9A, 1B7DDC439E08D0E3390EBAAD53F91CEBEC743E66D7DC8E261E8B5C47A6D96200 ] SOHDms          C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDms.exe
07:21:48.0013 0x472c  SOHDms - ok
07:21:48.0029 0x472c  [ FA4AC5624B245FA03D4CCBA9C48D385E, 3125359763D34EE51EB1125217050DB29045154E76673F7CFED25B6301C7EEBE ] SOHDs           C:\Program Files\Common Files\Sony Shared\SOHLib\SOHDs.exe
07:21:48.0044 0x472c  SOHDs - ok
07:21:48.0107 0x472c  [ 8A9B5B6F3AA138761F888038B1CC9DA3, 3279C212133E9CB6D4149D98FABFE4D5DB72784FFFE0CC10ED6DB8BC910169A7 ] SpfService      C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService.exe
07:21:48.0107 0x472c  SpfService - ok
07:21:48.0153 0x472c  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys
07:21:48.0153 0x472c  spldr - ok
07:21:48.0216 0x472c  [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler         C:\Windows\System32\spoolsv.exe
07:21:48.0216 0x472c  Spooler - ok
07:21:48.0419 0x472c  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\Windows\system32\sppsvc.exe
07:21:48.0481 0x472c  sppsvc - ok
07:21:48.0543 0x472c  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\Windows\system32\sppuinotify.dll
07:21:48.0543 0x472c  sppuinotify - ok
07:21:48.0590 0x472c  [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv             C:\Windows\system32\DRIVERS\srv.sys
07:21:48.0606 0x472c  srv - ok
07:21:48.0637 0x472c  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
07:21:48.0637 0x472c  srv2 - ok
07:21:48.0668 0x472c  [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
07:21:48.0668 0x472c  srvnet - ok
07:21:48.0715 0x472c  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
07:21:48.0715 0x472c  SSDPSRV - ok
07:21:48.0746 0x472c  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
07:21:48.0746 0x472c  SstpSvc - ok
07:21:48.0793 0x472c  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
07:21:48.0793 0x472c  stexstor - ok
07:21:48.0840 0x472c  [ EDB05BD63148796F23EA78506404A538, 8EBF623D3DEB6CCAC75AAFCF8B23271029A28BE29D459088E40FBF109E80AA17 ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
07:21:48.0840 0x472c  StillCam - ok
07:21:48.0902 0x472c  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\Windows\System32\wiaservc.dll
07:21:48.0918 0x472c  StiSvc - ok
07:21:48.0933 0x472c  [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
07:21:48.0949 0x472c  storflt - ok
07:21:49.0011 0x472c  [ 0BF669F0A910BEDA4A32258D363AF2A5, 83EEBACDE4F69A2866B69CAA633F5C8B3CB01D88CEDB01B6EA5988E0A25CEE47 ] StorSvc         C:\Windows\system32\storsvc.dll
07:21:49.0011 0x472c  StorSvc - ok
07:21:49.0043 0x472c  [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
07:21:49.0043 0x472c  storvsc - ok
07:21:49.0074 0x472c  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\drivers\swenum.sys
07:21:49.0074 0x472c  swenum - ok
07:21:49.0136 0x472c  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll
07:21:49.0152 0x472c  swprv - ok
07:21:49.0245 0x472c  [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain         C:\Windows\system32\sysmain.dll
07:21:49.0277 0x472c  SysMain - ok
07:21:49.0323 0x472c  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
07:21:49.0323 0x472c  TabletInputService - ok
07:21:49.0386 0x472c  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll
07:21:49.0386 0x472c  TapiSrv - ok
07:21:49.0448 0x472c  [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS             C:\Windows\System32\tbssvc.dll
07:21:49.0448 0x472c  TBS - ok
07:21:49.0542 0x472c  [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
07:21:49.0573 0x472c  Tcpip - ok
07:21:49.0651 0x472c  [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
07:21:49.0682 0x472c  TCPIP6 - ok
07:21:49.0745 0x472c  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
07:21:49.0745 0x472c  tcpipreg - ok
07:21:49.0760 0x472c  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
07:21:49.0776 0x472c  TDPIPE - ok
07:21:49.0776 0x472c  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
07:21:49.0776 0x472c  TDTCP - ok
07:21:49.0823 0x472c  [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
07:21:49.0823 0x472c  tdx - ok
07:21:49.0869 0x472c  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\drivers\termdd.sys
07:21:49.0869 0x472c  TermDD - ok
07:21:49.0932 0x472c  [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService     C:\Windows\System32\termsrv.dll
07:21:49.0947 0x472c  TermService - ok
07:21:49.0963 0x472c  thdudf - ok
07:21:49.0994 0x472c  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
07:21:50.0010 0x472c  Themes - ok
07:21:50.0025 0x472c  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
07:21:50.0025 0x472c  THREADORDER - ok
07:21:50.0088 0x472c  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
07:21:50.0088 0x472c  TrkWks - ok
07:21:50.0166 0x472c  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
07:21:50.0166 0x472c  TrustedInstaller - ok
07:21:50.0213 0x472c  [ B37B08F2E5EEB1A37E448E09BACE1101, 32CC9E06B88BAB6FAB4696B744548DFCE9199A7FD2BA8B019F269CA75895852C ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
07:21:50.0213 0x472c  tssecsrv - ok
07:21:50.0259 0x472c  [ FD1D6C73E6333BE727CBCC6054247654, 6F7B9AE1A5986204DB3348D13B303F30FC17624939DA74D6BD114FAEED0FB30E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
07:21:50.0259 0x472c  TsUsbFlt - ok
07:21:50.0306 0x472c  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
07:21:50.0306 0x472c  tunnel - ok
07:21:50.0369 0x472c  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
07:21:50.0369 0x472c  uagp35 - ok
07:21:50.0400 0x472c  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
07:21:50.0400 0x472c  udfs - ok
07:21:50.0478 0x472c  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
07:21:50.0478 0x472c  UI0Detect - ok
07:21:50.0509 0x472c  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
07:21:50.0509 0x472c  uliagpkx - ok
07:21:50.0540 0x472c  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\drivers\umbus.sys
07:21:50.0540 0x472c  umbus - ok
07:21:50.0556 0x472c  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
07:21:50.0556 0x472c  UmPass - ok
07:21:50.0618 0x472c  [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService    C:\Windows\System32\umrdp.dll
07:21:50.0618 0x472c  UmRdpService - ok
07:21:50.0681 0x472c  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
07:21:50.0696 0x472c  upnphost - ok
07:21:50.0727 0x472c  [ EAFE1E00739AFE6C51487A050E772E17, C005E635470AEB68131D922CAFFE2703626EAB4612932237B35F5562E559258A ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
07:21:50.0727 0x472c  USBAAPL - ok
07:21:50.0774 0x472c  [ A1977C315BF5691DA99235AA4A6907AF, 34B52FBA83F0E1C6B001D0AD1808B00152F731D18AAECC3C53B9918AA89BACEC ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
07:21:50.0774 0x472c  usbaudio - ok
07:21:50.0805 0x472c  [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
07:21:50.0805 0x472c  usbccgp - ok
07:21:50.0868 0x472c  [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir          C:\Windows\system32\drivers\usbcir.sys
07:21:50.0868 0x472c  usbcir - ok
07:21:50.0915 0x472c  [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci         C:\Windows\system32\drivers\usbehci.sys
07:21:50.0915 0x472c  usbehci - ok
07:21:50.0946 0x472c  [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
07:21:50.0961 0x472c  usbhub - ok
07:21:50.0977 0x472c  [ 9828C8D14CC2676421778F0DE638CF97, 479A28211FFB85190A01FAB0283B927588805D2C0CDB03F85F8F814B88E4F453 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
07:21:50.0977 0x472c  usbohci - ok
07:21:51.0024 0x472c  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
07:21:51.0024 0x472c  usbprint - ok
07:21:51.0071 0x472c  [ FC6B21DB4B5B398AB93DBE59CBF11036, A94094C208F376405C07822A6143001EF1B12AE93205CD8002E87F6EB45F6374 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
07:21:51.0071 0x472c  usbscan - ok
07:21:51.0117 0x472c  [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:21:51.0117 0x472c  USBSTOR - ok
07:21:51.0133 0x472c  [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
07:21:51.0133 0x472c  usbuhci - ok
07:21:51.0149 0x472c  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
07:21:51.0164 0x472c  usbvideo - ok
07:21:51.0211 0x472c  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
07:21:51.0211 0x472c  UxSms - ok
07:21:51.0242 0x472c  [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] VaultSvc        C:\Windows\system32\lsass.exe
07:21:51.0242 0x472c  VaultSvc - ok
07:21:51.0258 0x472c  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
07:21:51.0258 0x472c  vdrvroot - ok
07:21:51.0336 0x472c  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe
07:21:51.0336 0x472c  vds - ok
07:21:51.0398 0x472c  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
07:21:51.0398 0x472c  vga - ok
07:21:51.0414 0x472c  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
07:21:51.0414 0x472c  VgaSave - ok
07:21:51.0461 0x472c  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
07:21:51.0461 0x472c  vhdmp - ok
07:21:51.0476 0x472c  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
07:21:51.0492 0x472c  viaagp - ok
07:21:51.0507 0x472c  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\DRIVERS\viac7.sys
07:21:51.0507 0x472c  ViaC7 - ok
07:21:51.0539 0x472c  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\drivers\viaide.sys
07:21:51.0539 0x472c  viaide - ok
07:21:51.0585 0x472c  [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus           C:\Windows\system32\drivers\vmbus.sys
07:21:51.0585 0x472c  vmbus - ok
07:21:51.0617 0x472c  [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
07:21:51.0617 0x472c  VMBusHID - ok
07:21:51.0648 0x472c  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
07:21:51.0648 0x472c  volmgr - ok
07:21:51.0695 0x472c  [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
07:21:51.0710 0x472c  volmgrx - ok
07:21:51.0757 0x472c  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
07:21:51.0773 0x472c  volsnap - ok
07:21:51.0804 0x472c  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
07:21:51.0804 0x472c  vsmraid - ok
07:21:51.0897 0x472c  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\Windows\system32\vssvc.exe
07:21:51.0913 0x472c  VSS - ok
07:21:51.0960 0x472c  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
07:21:51.0960 0x472c  vwifibus - ok
07:21:51.0975 0x472c  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
07:21:51.0975 0x472c  vwififlt - ok
07:21:51.0991 0x472c  [ A3F04CBEA6C2A10E6CB01F8B47611882, 32AFE18B07FECA30BC95831A5DC94C784E543784DF16165334A777DC84E91EF3 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
07:21:51.0991 0x472c  vwifimp - ok
07:21:52.0053 0x472c  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
07:21:52.0053 0x472c  W32Time - ok
07:21:52.0085 0x472c  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
07:21:52.0085 0x472c  WacomPen - ok
07:21:52.0131 0x472c  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
07:21:52.0131 0x472c  WANARP - ok
07:21:52.0147 0x472c  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
07:21:52.0147 0x472c  Wanarpv6 - ok
07:21:52.0241 0x472c  [ 353A04C273EC58475D8633E75CCD5604, FFAE53B6B53AEFC9E8A10BF27480E072D74430276BEB532FE1D473E9616D8CE0 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
07:21:52.0272 0x472c  WatAdminSvc - ok
07:21:52.0381 0x472c  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\Windows\system32\wbengine.exe
07:21:52.0397 0x472c  wbengine - ok
07:21:52.0459 0x472c  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
07:21:52.0459 0x472c  WbioSrvc - ok
07:21:52.0506 0x472c  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\Windows\System32\wcncsvc.dll
07:21:52.0521 0x472c  wcncsvc - ok
07:21:52.0553 0x472c  [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
07:21:52.0553 0x472c  WcsPlugInService - ok
07:21:52.0599 0x472c  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
07:21:52.0599 0x472c  Wd - ok
07:21:52.0677 0x472c  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
07:21:52.0693 0x472c  Wdf01000 - ok
07:21:52.0709 0x472c  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost  C:\Windows\system32\wdi.dll
07:21:52.0709 0x472c  WdiServiceHost - ok
07:21:52.0724 0x472c  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost   C:\Windows\system32\wdi.dll
07:21:52.0724 0x472c  WdiSystemHost - ok
07:21:52.0771 0x472c  [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient       C:\Windows\System32\webclnt.dll
07:21:52.0787 0x472c  WebClient - ok
07:21:52.0833 0x472c  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
07:21:52.0833 0x472c  Wecsvc - ok
07:21:52.0849 0x472c  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
07:21:52.0849 0x472c  wercplsupport - ok
07:21:52.0880 0x472c  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
07:21:52.0880 0x472c  WerSvc - ok
07:21:52.0943 0x472c  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
07:21:52.0943 0x472c  WfpLwf - ok
07:21:52.0958 0x472c  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
07:21:52.0958 0x472c  WIMMount - ok
07:21:53.0052 0x472c  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
07:21:53.0067 0x472c  WinDefend - ok
07:21:53.0083 0x472c  WinHttpAutoProxySvc - ok
07:21:53.0192 0x472c  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
07:21:53.0208 0x472c  Winmgmt - ok
07:21:53.0301 0x472c  [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM           C:\Windows\system32\WsmSvc.dll
07:21:53.0333 0x472c  WinRM - ok
07:21:53.0379 0x472c  [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
07:21:53.0379 0x472c  WinUsb - ok
07:21:53.0457 0x472c  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc         C:\Windows\System32\wlansvc.dll
07:21:53.0473 0x472c  Wlansvc - ok
07:21:53.0504 0x472c  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
07:21:53.0504 0x472c  WmiAcpi - ok
07:21:53.0551 0x472c  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
07:21:53.0551 0x472c  wmiApSrv - ok
07:21:53.0676 0x472c  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
07:21:53.0707 0x472c  WMPNetworkSvc - ok
07:21:53.0754 0x472c  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
07:21:53.0754 0x472c  WPCSvc - ok
07:21:53.0816 0x472c  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
07:21:53.0816 0x472c  WPDBusEnum - ok
07:21:53.0832 0x472c  WRkrn - ok
07:21:53.0879 0x472c  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
07:21:53.0879 0x472c  ws2ifsl - ok
07:21:53.0910 0x472c  [ 4160CBE59D9B5BE22E4C3897E8DB9D56, 8E79ED5925A803225DF4AE069F3FEE606A48BB2526E994BF9C4947543A580211 ] WsAudio_DeviceS(1) C:\Windows\system32\drivers\WsAudio_DeviceS(1).sys
07:21:53.0910 0x472c  WsAudio_DeviceS(1) - ok
07:21:53.0925 0x472c  [ 4160CBE59D9B5BE22E4C3897E8DB9D56, 8E79ED5925A803225DF4AE069F3FEE606A48BB2526E994BF9C4947543A580211 ] WsAudio_DeviceS(2) C:\Windows\system32\drivers\WsAudio_DeviceS(2).sys
07:21:53.0925 0x472c  WsAudio_DeviceS(2) - ok
07:21:53.0941 0x472c  [ 4160CBE59D9B5BE22E4C3897E8DB9D56, 8E79ED5925A803225DF4AE069F3FEE606A48BB2526E994BF9C4947543A580211 ] WsAudio_DeviceS(3) C:\Windows\system32\drivers\WsAudio_DeviceS(3).sys
07:21:53.0957 0x472c  WsAudio_DeviceS(3) - ok
07:21:53.0957 0x472c  [ 4160CBE59D9B5BE22E4C3897E8DB9D56, 8E79ED5925A803225DF4AE069F3FEE606A48BB2526E994BF9C4947543A580211 ] WsAudio_DeviceS(4) C:\Windows\system32\drivers\WsAudio_DeviceS(4).sys
07:21:53.0957 0x472c  WsAudio_DeviceS(4) - ok
07:21:53.0972 0x472c  [ 4160CBE59D9B5BE22E4C3897E8DB9D56, 8E79ED5925A803225DF4AE069F3FEE606A48BB2526E994BF9C4947543A580211 ] WsAudio_DeviceS(5) C:\Windows\system32\drivers\WsAudio_DeviceS(5).sys
07:21:53.0972 0x472c  WsAudio_DeviceS(5) - ok
07:21:54.0019 0x472c  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
07:21:54.0035 0x472c  wscsvc - ok
07:21:54.0035 0x472c  WSearch - ok
07:21:54.0175 0x472c  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
07:21:54.0222 0x472c  wuauserv - ok
07:21:54.0269 0x472c  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
07:21:54.0269 0x472c  WudfPf - ok
07:21:54.0284 0x472c  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
07:21:54.0300 0x472c  WUDFRd - ok
07:21:54.0331 0x472c  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
07:21:54.0331 0x472c  wudfsvc - ok
07:21:54.0378 0x472c  [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc         C:\Windows\System32\wwansvc.dll
07:21:54.0378 0x472c  WwanSvc - ok
07:21:54.0487 0x472c  [ 74EC37B9EAF9FCA015B933A526825C7A, E75D73422B4383210F912B424377D5F2DBBF0E9418A2F450636B689572B1B9F6 ] {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl
07:21:54.0487 0x472c  {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok
07:21:54.0518 0x472c  ================ Scan global ===============================
07:21:54.0581 0x472c  [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
07:21:54.0627 0x472c  [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
07:21:54.0643 0x472c  [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\Windows\system32\winsrv.dll
07:21:54.0705 0x472c  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
07:21:54.0752 0x472c  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
07:21:54.0768 0x472c  [ Global ] - ok
07:21:54.0768 0x472c  ================ Scan MBR ==================================
07:21:54.0783 0x472c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
07:21:55.0267 0x472c  \Device\Harddisk0\DR0 - ok
07:21:55.0283 0x472c  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
07:21:55.0283 0x472c  \Device\Harddisk1\DR1 - ok
07:21:55.0298 0x472c  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk2\DR2
07:21:55.0314 0x472c  \Device\Harddisk2\DR2 - ok
07:21:55.0314 0x472c  ================ Scan VBR ==================================
07:21:55.0314 0x472c  [ A7372729B2821E81B815511520AFF157 ] \Device\Harddisk0\DR0\Partition1
07:21:55.0314 0x472c  \Device\Harddisk0\DR0\Partition1 - ok
07:21:55.0314 0x472c  [ 60C218DEF0A09E6C96B2676380302E51 ] \Device\Harddisk0\DR0\Partition2
07:21:55.0314 0x472c  \Device\Harddisk0\DR0\Partition2 - ok
07:21:55.0329 0x472c  [ 1275A75F9E779D514D5E078E9016842E ] \Device\Harddisk1\DR1\Partition1
07:21:55.0329 0x472c  \Device\Harddisk1\DR1\Partition1 - ok
07:21:55.0329 0x472c  [ 3E5CEB534ECFA4C8BD34C96DDC95B733 ] \Device\Harddisk2\DR2\Partition1
07:21:55.0641 0x472c  \Device\Harddisk2\DR2\Partition1 - ok
07:21:55.0641 0x472c  Waiting for KSN requests completion. In queue: 148
07:21:56.0655 0x472c  Waiting for KSN requests completion. In queue: 148
07:21:57.0669 0x472c  Waiting for KSN requests completion. In queue: 148
07:21:58.0699 0x472c  Win FW state via NFP2: enabled
07:22:01.0211 0x472c  ============================================================
07:22:01.0211 0x472c  Scan finished
07:22:01.0211 0x472c  ============================================================
07:22:01.0211 0x4314  Detected object count: 1
07:22:01.0211 0x4314  Actual detected object count: 1
07:22:10.0352 0x4314  rspSanity ( ForgedFile.Multi.Generic ) - skipped by user
07:22:10.0352 0x4314  rspSanity ( ForgedFile.Multi.Generic ) - User select action: Skip
07:26:37.0843 0x4bb4  Deinitialize success
 



#5 88mike

88mike
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:53 AM

Posted 28 March 2014 - 07:14 AM

Here are the AdwCleaner results after the reboot...

 

# AdwCleaner v3.022 - Report created 28/03/2014 at 08:02:15
# Updated 13/03/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : BigDog - BIGDOG-PC
# Running from : C:\Users\BigDog\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\AI_RecycleBin
Folder Deleted : C:\Program Files\GreenTree Applications
Folder Deleted : C:\Windows\system32\AI_RecycleBin
Folder Deleted : C:\Users\BigDog\AppData\Local\NativeMessaging
File Deleted : C:\Program Files\Mozilla Firefox\browser\searchplugins\sweettunes_search.xml

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16521


-\\ Mozilla Firefox v27.0.1 (en-US)

[ File : C:\Users\BigDog\AppData\Roaming\Mozilla\Firefox\Profiles\mwl7m1rq.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [8406 octets] - [08/10/2013 12:08:22]
AdwCleaner[R1].txt - [6690 octets] - [17/11/2013 12:11:25]
AdwCleaner[R2].txt - [1243 octets] - [17/11/2013 12:26:31]
AdwCleaner[R3].txt - [1589 octets] - [11/01/2014 05:43:55]
AdwCleaner[R4].txt - [1371 octets] - [11/01/2014 05:51:07]
AdwCleaner[R5].txt - [1889 octets] - [03/02/2014 18:21:44]
AdwCleaner[R6].txt - [1789 octets] - [28/03/2014 07:40:28]
AdwCleaner[S0].txt - [8646 octets] - [08/10/2013 12:15:10]
AdwCleaner[S1].txt - [6276 octets] - [17/11/2013 12:13:35]
AdwCleaner[S2].txt - [1313 octets] - [17/11/2013 12:33:15]
AdwCleaner[S3].txt - [1574 octets] - [11/01/2014 05:46:08]
AdwCleaner[S4].txt - [1872 octets] - [03/02/2014 18:23:23]
AdwCleaner[S5].txt - [1730 octets] - [28/03/2014 08:02:15]

########## EOF - C:\AdwCleaner\AdwCleaner[S5].txt - [1790 octets] ##########
 



#6 88mike

88mike
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:53 AM

Posted 28 March 2014 - 07:39 AM

JRT Removal Tool is saying a bad module has been detected. A reboot is required to remove modules. I bought this computer from a friend & I want to keep the programs that are on there. Will I have to reformat the computer? Or take it to a shop or something for repair? What does this mean? I have not rebooted...awaiting further instructions!



#7 88mike

88mike
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:53 AM

Posted 28 March 2014 - 09:06 AM

I went ahead & rebooted then ran JRT again then selected not to reboot...Scan completed!

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows 7 Professional x86
Ran by BigDog on Fri 03/28/2014 at  9:16:24.51
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-4129162598-3321114440-1380971206-1001\Software\Microsoft\Internet Explorer\Main\\Start Page



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\strongvaultapp_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\strongvaultapp_rasmancs



~~~ Files

Successfully deleted: [File] "C:\Users\BigDog\appdata\locallow\SkwConfig.bin"



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader"
Successfully deleted: [Folder] "C:\Users\BigDog\appdata\local\cre"
Successfully deleted: [Folder] "C:\Users\BigDog\AppData\Roaming\microsoft\windows\start menu\programs\ytd video downloader"



~~~ FireFox

Emptied folder: C:\Users\BigDog\AppData\Roaming\mozilla\firefox\profiles\mwl7m1rq.default\minidumps [49 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Fri 03/28/2014 at  9:20:45.50
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#8 88mike

88mike
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:53 AM

Posted 28 March 2014 - 11:21 AM

Here are the results of the ESET Scan...

 

C:\AdwCleaner\Quarantine\C\Program Files\Conduit\Community Alerts\Alert.dll.vir    Win32/Toolbar.Conduit.Y potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\apn\APN-Stub\W3IV6-G\APNIC.7z.vir    a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\ProgramData\apn\APN-Stub\W3IV6-G\APNIC.dll.vir    a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\BigDog\AppData\Local\Google\Chrome\User Data\Default\Extensions\blklojfklgnogjaijkibhfjepakiocng\10.22.0.88_0\TBHostSupport\TBHostSupport.dll.vir    a variant of Win32/Toolbar.Conduit.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\BigDog\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpfboklmeiefoedekjeigdcnfbpjeaii\10.22.0.588_0\TBHostSupport\TBHostSupport.dll.vir    a variant of Win32/Toolbar.Conduit.AA potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\BigDog\AppData\Local\Temp\Conduit\mchecktbexist.exe.vir    Win32/Toolbar.Conduit.S potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\BigDog\AppData\Local\Temp\Conduit\mconduitinstaller.exe.vir    Win32/Toolbar.Conduit.S potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\BigDog\AppData\Roaming\OpenCandy\21D5101BDFA1468A868A69672F6B19B2\StubInstaller_SweetTunes_v4.exe.vir    Win32/Toolbar.Conduit.S potentially unwanted application    deleted - quarantined
C:\Users\BigDog\AppData\LocalLow\Vafmusic2\tbVafm.dll    a variant of Win32/Toolbar.Conduit.X potentially unwanted application    deleted - quarantined
C:\Users\BigDog\AppData\Roaming\PowerISO\Upgrade\PowerISO5.exe    Win32/Toolbar.Conduit.R potentially unwanted application    deleted - quarantined
C:\Windows\System32\Adobe\Shockwave 12\gt.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
F:\BigDog\AppData\Local\CRE\blklojfklgnogjaijkibhfjepakiocng.crx    a variant of Win32/Toolbar.Conduit.AA potentially unwanted application    deleted - quarantined
F:\Dropbox\Misc Files\Android (Kindle)\plants_vs_zombies_2.apk    a variant of Android/SMSreg.GS potentially unsafe application    deleted - quarantined
F:\Dropbox\Misc Files\Android (Kindle)\the_sims_freeplay.apk    a variant of Android/Inmobi.A potentially unsafe application    deleted - quarantined
F:\Dropbox\Misc Files\Top.paid.android.apps and.games.compilation_-_April_Edition_2013.by.KaBeRnA\QuitNow! Pro v3.03.apk    a variant of Android/AdDisplay.AirPush.K potentially unwanted application    deleted - quarantined
 



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:53 AM

Posted 28 March 2014 - 03:13 PM

This was a good clean.. Should be running better..

Uninstall this in Control Panel

Java 7 Update 40 (Version: 7.0.400)


Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 88mike

88mike
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:53 AM

Posted 28 March 2014 - 04:38 PM

Thank You! Kindly good sir.... you saved my day I tell ya... It's running like a champ now!

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:53 AM

Posted 28 March 2014 - 07:41 PM

:clapping:  You're welcome from us all !


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users