Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

RKill results, Am I infected?


  • Please log in to reply
37 replies to this topic

#1 scorpion73

scorpion73

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:03:31 PM

Posted 07 April 2014 - 05:24 PM

Hello

 

My laptop has a strange behaviour every now and then for the last few days.
Sound is randomly muted and various symbols, letters are being typed in internet browser.
When watching a movie it could happen that suddenly sound is muted and movie is rewinded back to the very beginning.

 

I ran Rkill and copied and pasted results below.

Windows firewall and Defender are disabled as I am running Bitdefender AV.

Is there anything I should worry about and what are the next steps to see if my system is not infected?

Thank you for your assistance.

 

Program started at: 04/07/2014 10:52:12 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
 * Windows Firewall Disabled
 
   [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
   "EnableFirewall" = dword:00000000
 
Checking Windows Service Integrity: 
 
 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual
 
 * iphlpsvc [Missing ImagePath]
 * SharedAccess [Missing ImagePath]
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * HOSTS file entries found: 
 
  127.0.0.1       localhost
  ::1             localhost 
  0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
  0.0.0.0 media.opencandy.com
  0.0.0.0 cdn.opencandy.com
  0.0.0.0 tracking.opencandy.com
  0.0.0.0 api.opencandy.com
  0.0.0.0 installer.betterinstaller.com
  0.0.0.0 installer.filebulldog.com
  0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
  0.0.0.0 inno.bisrv.com
  0.0.0.0 nsis.bisrv.com
  0.0.0.0 cdn.file2desktop.com
  0.0.0.0 cdn.goateastcach.us
  0.0.0.0 cdn.guttastatdk.us
  0.0.0.0 cdn.inskinmedia.com
  0.0.0.0 cdn.insta.oibundles2.com
  0.0.0.0 cdn.insta.playbryte.com
  0.0.0.0 cdn.llogetfastcach.us
  0.0.0.0 cdn.montiera.com
 
  20 out of 35 HOSTS entries shown.
  Please review HOSTS file for further entries.
 
Program finished at: 04/07/2014 10:57:12 PM
Execution time: 0 hours(s), 4 minute(s), and 59 seconds(s)
 


BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:02:31 PM

Posted 07 April 2014 - 05:28 PM

Hello,
 
I will be helping you with your problems. Please be patient while I assist you.
 
Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us
  • Please do NOT run, install or uninstall any programs,  unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.
 
NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.
- Do NOT backup any unknown files ending in .exe, .com, .scr, .pif, and .bat since files of these types are more likely to be infected.
 
NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.
 
----------------------------------------------
 
Please do the following:
 
:step1:
 
Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Under Objects to scan, check the boxes next to Verify file digital signatures, Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do NOT choose Delete or Quarantine unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the full contents of that file in your next reply. - If the log is too long, then split it into multiple posts.
:step2:
 
Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Search.
  • A logfile will automatically open after the scan has finished.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[R1].txt as well.
:step3:
 
Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press Scan.
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the full contents of the log in your next reply.
:step4:
 
Please download MiniToolBox, save it to your desktop and run it.
 
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points
NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.
 
Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 scorpion73

scorpion73
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:03:31 PM

Posted 07 April 2014 - 06:09 PM

Hi dev00790

Thanks very much for the quick reply.

 

Below is the log from TDSS, 1 threat was found:

 

 

23:51:22.0667 0x1618  TDSS rootkit removing tool 3.0.0.30 Apr  7 2014 15:39:12
23:51:25.0808 0x1618  ============================================================
23:51:25.0808 0x1618  Current date / time: 2014/04/07 23:51:25.0808
23:51:25.0808 0x1618  SystemInfo:
23:51:25.0809 0x1618  
23:51:25.0809 0x1618  OS Version: 6.1.7601 ServicePack: 1.0
23:51:25.0809 0x1618  Product type: Workstation
23:51:25.0809 0x1618  ComputerName: SONY-VAIO
23:51:25.0809 0x1618  UserName: sony
23:51:25.0809 0x1618  Windows directory: C:\Windows
23:51:25.0809 0x1618  System windows directory: C:\Windows
23:51:25.0810 0x1618  Running under WOW64
23:51:25.0810 0x1618  Processor architecture: Intel x64
23:51:25.0810 0x1618  Number of processors: 4
23:51:25.0810 0x1618  Page size: 0x1000
23:51:25.0810 0x1618  Boot type: Normal boot
23:51:25.0810 0x1618  ============================================================
23:51:26.0001 0x1618  KLMD registered as C:\Windows\system32\drivers\99729577.sys
23:51:26.0348 0x1618  System UUID: {1F67FDA8-8EE9-038F-34F8-A3B272148740}
23:51:27.0181 0x1618  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:51:27.0202 0x1618  ============================================================
23:51:27.0202 0x1618  \Device\Harddisk0\DR0:
23:51:27.0202 0x1618  MBR partitions:
23:51:27.0202 0x1618  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x17A4800, BlocksNum 0x32000
23:51:27.0202 0x1618  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x17D6800, BlocksNum 0x38BAF030
23:51:27.0202 0x1618  ============================================================
23:51:27.0244 0x1618  C: <-> \Device\Harddisk0\DR0\Partition2
23:51:27.0245 0x1618  ============================================================
23:51:27.0245 0x1618  Initialize success
23:51:27.0245 0x1618  ============================================================
23:52:56.0639 0x0dc0  ============================================================
23:52:56.0639 0x0dc0  Scan started
23:52:56.0639 0x0dc0  Mode: Manual; SigCheck; TDLFS; 
23:52:56.0639 0x0dc0  ============================================================
23:52:56.0639 0x0dc0  KSN ping started
23:53:10.0464 0x0dc0  KSN ping finished: true
23:53:10.0718 0x0dc0  ================ Scan system memory ========================
23:53:10.0718 0x0dc0  System memory - ok
23:53:10.0718 0x0dc0  ================ Scan services =============================
23:53:10.0818 0x0dc0  [ 620C92D6EEFA9853A3EAD41B5EB9B5FD, 72DD7297179AC6629B816DD9656D5EC3F02BE677EA01A05A5EB808180F0D775F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
23:53:11.0017 0x0dc0  !SASCORE - ok
23:53:11.0220 0x0dc0  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
23:53:11.0309 0x0dc0  1394ohci - ok
23:53:11.0402 0x0dc0  [ D27A8B7BB0E15DFBFC6B4E774EE17AD9, CBAD45B3FFFD30C34AF918009F699B65F89043D0799FC25D2472381912F86F93 ] A2DDA           C:\EEK\RUN\a2ddax64.sys
23:53:11.0516 0x0dc0  A2DDA - ok
23:53:11.0603 0x0dc0  [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
23:53:11.0652 0x0dc0  ACDaemon - ok
23:53:11.0696 0x0dc0  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
23:53:11.0732 0x0dc0  ACPI - ok
23:53:11.0750 0x0dc0  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
23:53:11.0855 0x0dc0  AcpiPmi - ok
23:53:11.0969 0x0dc0  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:53:12.0027 0x0dc0  AdobeARMservice - ok
23:53:12.0176 0x0dc0  [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:53:12.0255 0x0dc0  AdobeFlashPlayerUpdateSvc - ok
23:53:12.0293 0x0dc0  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
23:53:12.0335 0x0dc0  adp94xx - ok
23:53:12.0364 0x0dc0  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
23:53:12.0492 0x0dc0  adpahci - ok
23:53:12.0526 0x0dc0  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
23:53:12.0569 0x0dc0  adpu320 - ok
23:53:12.0602 0x0dc0  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
23:53:12.0681 0x0dc0  AeLookupSvc - ok
23:53:12.0734 0x0dc0  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
23:53:12.0789 0x0dc0  AFD - ok
23:53:12.0814 0x0dc0  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
23:53:12.0849 0x0dc0  agp440 - ok
23:53:12.0883 0x0dc0  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
23:53:12.0917 0x0dc0  ALG - ok
23:53:12.0943 0x0dc0  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
23:53:12.0972 0x0dc0  aliide - ok
23:53:13.0021 0x0dc0  [ 3F9B03B72577A6A7405BF30801CBD159, BBB2A26136D6F9BBE0D2982689797C6FF89E2026589CCFBB35D9B845C88472DD ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
23:53:13.0099 0x0dc0  AMD External Events Utility - ok
23:53:13.0121 0x0dc0  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
23:53:13.0150 0x0dc0  amdide - ok
23:53:13.0178 0x0dc0  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
23:53:13.0237 0x0dc0  AmdK8 - ok
23:53:13.0518 0x0dc0  [ EA244A8B88DE8B5986BF3B7903B063AF, 44BB9CCCB9A15BF64494318CE047017AF27B373FB5B57E5D05C88A16AE913672 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
23:53:13.0788 0x0dc0  amdkmdag - ok
23:53:13.0818 0x0dc0  [ DCA6E341A4A7C31EA8A14C6166C9B249, 35319D428DD5BC055DC1E9B17BFC56C339E408929E9BC83878975DD01A68D652 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
23:53:13.0878 0x0dc0  amdkmdap - ok
23:53:13.0922 0x0dc0  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
23:53:14.0021 0x0dc0  AmdPPM - ok
23:53:14.0077 0x0dc0  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
23:53:14.0108 0x0dc0  amdsata - ok
23:53:14.0140 0x0dc0  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
23:53:14.0174 0x0dc0  amdsbs - ok
23:53:14.0192 0x0dc0  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
23:53:14.0221 0x0dc0  amdxata - ok
23:53:14.0252 0x0dc0  [ 1661F9C9E4B0049FA0A5E30264375A87, F6A457A9F63AF47E0429B039C043443F1EFFB18ED35B90DA448DE8AD16B3CBEC ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
23:53:14.0287 0x0dc0  ApfiltrService - ok
23:53:14.0319 0x0dc0  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
23:53:14.0413 0x0dc0  AppID - ok
23:53:14.0450 0x0dc0  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
23:53:14.0526 0x0dc0  AppIDSvc - ok
23:53:14.0557 0x0dc0  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
23:53:14.0606 0x0dc0  Appinfo - ok
23:53:14.0625 0x0dc0  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
23:53:14.0656 0x0dc0  arc - ok
23:53:14.0690 0x0dc0  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
23:53:14.0721 0x0dc0  arcsas - ok
23:53:14.0754 0x0dc0  [ C130BC4A51B1382B2BE8E44579EC4C0A, CC1FD33ED7CAD87A504D8678F8482CAECACD18C727BB97FFB86F39255563EEF2 ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
23:53:14.0782 0x0dc0  ArcSoftKsUFilter - ok
23:53:14.0844 0x0dc0  [ 022E25B6E0BA0B4F572FD0D848CE34B9, 1135D01858F8230B117EA0060538341E98E3E07155F042E7171072CCCB9BDB06 ] ASO3DiskOptimizer C:\Program Files (x86)\Advanced System Optimizer 3\ASO3DefragSrv64.exe
23:53:14.0891 0x0dc0  ASO3DiskOptimizer - ok
23:53:15.0007 0x0dc0  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:53:15.0058 0x0dc0  aspnet_state - ok
23:53:15.0096 0x0dc0  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
23:53:15.0169 0x0dc0  AsyncMac - ok
23:53:15.0203 0x0dc0  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
23:53:15.0236 0x0dc0  atapi - ok
23:53:15.0326 0x0dc0  [ 0ACC06FCF46F64ED4F11E57EE461C1F4, F2AB7198C7F7D36AB1D6D03C1FEFD929ED402002AC835B909FC14938BC0EE24B ] athr            C:\Windows\system32\DRIVERS\athrx.sys
23:53:15.0498 0x0dc0  athr - ok
23:53:15.0503 0x0dc0  athur - ok
23:53:15.0753 0x0dc0  [ EA244A8B88DE8B5986BF3B7903B063AF, 44BB9CCCB9A15BF64494318CE047017AF27B373FB5B57E5D05C88A16AE913672 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
23:53:15.0992 0x0dc0  atikmdag - ok
23:53:16.0055 0x0dc0  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:53:16.0194 0x0dc0  AudioEndpointBuilder - ok
23:53:16.0215 0x0dc0  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
23:53:16.0294 0x0dc0  AudioSrv - ok
23:53:16.0374 0x0dc0  [ 636B15879AE62E47444F99C60C900AA6, 335B1378037B2CFEBDAA95B1ABB619A4C18C5CD37A12688E606E7A12BE31735C ] avc3            C:\Windows\system32\DRIVERS\avc3.sys
23:53:16.0453 0x0dc0  avc3 - ok
23:53:16.0493 0x0dc0  [ 3B9549FEF98AB1768A1D6A919F355B70, 0014914051CB54CD7CC25561D29099A19DCFB2E1810FF635F9B6AD3D9C6FBC4B ] avchv           C:\Windows\system32\DRIVERS\avchv.sys
23:53:16.0529 0x0dc0  avchv - ok
23:53:16.0565 0x0dc0  [ 14023A39BC91AC5A2077766D28EBA7C5, 855FEE69105438ADE79C9389E0581C62FE1D134863F8D6FA27DE83737E4B4213 ] avckf           C:\Windows\system32\DRIVERS\avckf.sys
23:53:16.0643 0x0dc0  avckf - ok
23:53:16.0678 0x0dc0  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
23:53:16.0740 0x0dc0  AxInstSV - ok
23:53:16.0769 0x0dc0  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
23:53:16.0858 0x0dc0  b06bdrv - ok
23:53:16.0907 0x0dc0  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
23:53:16.0987 0x0dc0  b57nd60a - ok
23:53:17.0202 0x0dc0  [ B56C89AC51CDE54CBDC5E49B94ED54BF, 7EA4C4F838B498944F21E91640535B5507C00A71F2FBEA3A5E9E25900EE3C95D ] BdDesktopParental C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe
23:53:17.0233 0x0dc0  BdDesktopParental - ok
23:53:17.0273 0x0dc0  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
23:53:17.0318 0x0dc0  BDESVC - ok
23:53:17.0420 0x0dc0  [ 3FAFE12C5D1D4D5F3567E7A0A2F15A7C, B77455872683563C12963E1D8FC349FB33B048D615FD299571A2DCF1598C0A9F ] BdfNdisf        c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
23:53:17.0459 0x0dc0  BdfNdisf - ok
23:53:17.0508 0x0dc0  [ 4CE4B0098FC315C237FA8867F07886C4, 475B2D86EE7658372D868ABC9ACA965FDD8212D3AE2C6E4749DC53DBA3DC19D6 ] bdfwfpf         C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
23:53:17.0545 0x0dc0  bdfwfpf - ok
23:53:17.0578 0x0dc0  [ C0247341C1BCD7FF2742821D0AD7AFBC, EC2B246F3233302DB540394AC0F11F294CA16FB9E44110126CC9807BAC20EA35 ] bdfwfpf_pc      C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys
23:53:17.0609 0x0dc0  bdfwfpf_pc - ok
23:53:17.0629 0x0dc0  [ B9ECE7FD9F58DAF19450C88338DC5267, 9857DFE0BDDEA791F2DDA99C24A064D488B52E4AC1402A37EF22C244C9283681 ] BDSandBox       C:\Windows\system32\drivers\bdsandbox.sys
23:53:17.0659 0x0dc0  BDSandBox - ok
23:53:17.0713 0x0dc0  [ 50F796CB1E8C80F3D19435CB50C3DAB5, 20CE5C1242F8D0DFEE13C8D07EF1A67F670A078BA44E810A3A042C6A060FACC9 ] BDVEDISK        C:\Windows\system32\DRIVERS\bdvedisk.sys
23:53:17.0771 0x0dc0  BDVEDISK - ok
23:53:17.0795 0x0dc0  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
23:53:17.0868 0x0dc0  Beep - ok
23:53:17.0923 0x0dc0  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
23:53:18.0080 0x0dc0  BFE - ok
23:53:18.0103 0x0dc0  bhnprr - ok
23:53:18.0164 0x0dc0  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
23:53:18.0275 0x0dc0  BITS - ok
23:53:18.0305 0x0dc0  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
23:53:18.0342 0x0dc0  blbdrive - ok
23:53:18.0370 0x0dc0  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
23:53:18.0432 0x0dc0  bowser - ok
23:53:18.0462 0x0dc0  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
23:53:18.0499 0x0dc0  BrFiltLo - ok
23:53:18.0514 0x0dc0  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
23:53:18.0576 0x0dc0  BrFiltUp - ok
23:53:18.0607 0x0dc0  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
23:53:18.0645 0x0dc0  Browser - ok
23:53:18.0687 0x0dc0  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
23:53:18.0770 0x0dc0  Brserid - ok
23:53:18.0782 0x0dc0  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
23:53:18.0831 0x0dc0  BrSerWdm - ok
23:53:18.0862 0x0dc0  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
23:53:18.0918 0x0dc0  BrUsbMdm - ok
23:53:18.0954 0x0dc0  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
23:53:19.0001 0x0dc0  BrUsbSer - ok
23:53:19.0033 0x0dc0  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
23:53:19.0150 0x0dc0  BthEnum - ok
23:53:19.0195 0x0dc0  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
23:53:19.0254 0x0dc0  BTHMODEM - ok
23:53:19.0292 0x0dc0  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
23:53:19.0355 0x0dc0  BthPan - ok
23:53:19.0426 0x0dc0  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
23:53:19.0525 0x0dc0  BTHPORT - ok
23:53:19.0553 0x0dc0  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
23:53:19.0629 0x0dc0  bthserv - ok
23:53:19.0657 0x0dc0  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
23:53:19.0693 0x0dc0  BTHUSB - ok
23:53:19.0718 0x0dc0  [ 6E04458E98DAF28826482E41A7A62DF5, 995B371E7384CC05D3A0B462B31A3EA56D8715A93D15B45DB3A78C7F7CF13A40 ] btusbflt        C:\Windows\system32\drivers\btusbflt.sys
23:53:19.0747 0x0dc0  btusbflt - ok
23:53:19.0792 0x0dc0  [ 96E22173FD0E2670A2A20C1EEECA162A, 2CC26317DBA063058178EA9B775C2A0FA2CF94FEDC6DF89F3D8314207D56DA24 ] btwampfl        C:\Windows\system32\drivers\btwampfl.sys
23:53:19.0873 0x0dc0  btwampfl - ok
23:53:19.0908 0x0dc0  [ A771078558477068DFD8037B82EB00F8, 58E1686B12B747639FE3BF4CCA58D48B8BBB349C9D316315AD7237F44EF760A4 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
23:53:19.0943 0x0dc0  btwaudio - ok
23:53:20.0013 0x0dc0  [ 9FF58F76024D25784755B01F926B00BE, 7A2504E326E63B7225FA25EA6D6ED3E7267278F5D2343A375D7F3B3F74EC9F38 ] btwavdt         C:\Windows\system32\drivers\btwavdt.sys
23:53:20.0066 0x0dc0  btwavdt - ok
23:53:20.0206 0x0dc0  [ C540BEA575D4B2E74A2F4AF5B036AE03, 2292FCB9BA3510662C68326E52033A4C61D4AF73299F1929CF7899C1ABD182BA ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
23:53:20.0287 0x0dc0  btwdins - ok
23:53:20.0321 0x0dc0  [ B1ACFD00CDD13B48D86F46BFEC153BF9, CD7BE27D93364735511CC714B85CB7D97E21E84E3C2361EC405BADAAEA550925 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
23:53:20.0375 0x0dc0  btwl2cap - ok
23:53:20.0393 0x0dc0  [ EDD953D635F3AA89EF902E3F82D60D22, 22A60B225A1AD0F25B9715338C805FED9D5F4BCAC296BBC0D045C6935BDA55E7 ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
23:53:20.0422 0x0dc0  btwrchid - ok
23:53:20.0459 0x0dc0  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
23:53:20.0520 0x0dc0  cdfs - ok
23:53:20.0558 0x0dc0  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
23:53:20.0597 0x0dc0  cdrom - ok
23:53:20.0618 0x0dc0  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
23:53:20.0695 0x0dc0  CertPropSvc - ok
23:53:20.0737 0x0dc0  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
23:53:20.0794 0x0dc0  circlass - ok
23:53:20.0911 0x0dc0  [ B794DCF38C965FA2F93C45A7C3D582C5, 0E483EAF835B85AA4B6F449F9BB68AF0A3EE4192D29CD72F4B812F1E4D9E9A7C ] cleanhlp        C:\EEK\RUN\cleanhlp64.sys
23:53:20.0960 0x0dc0  cleanhlp - ok
23:53:21.0015 0x0dc0  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
23:53:21.0055 0x0dc0  CLFS - ok
23:53:21.0108 0x0dc0  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:53:21.0144 0x0dc0  clr_optimization_v2.0.50727_32 - ok
23:53:21.0209 0x0dc0  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:53:21.0258 0x0dc0  clr_optimization_v2.0.50727_64 - ok
23:53:21.0362 0x0dc0  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:53:21.0425 0x0dc0  clr_optimization_v4.0.30319_32 - ok
23:53:21.0455 0x0dc0  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:53:21.0489 0x0dc0  clr_optimization_v4.0.30319_64 - ok
23:53:21.0534 0x0dc0  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
23:53:21.0590 0x0dc0  CmBatt - ok
23:53:21.0618 0x0dc0  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
23:53:21.0648 0x0dc0  cmdide - ok
23:53:21.0693 0x0dc0  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
23:53:21.0746 0x0dc0  CNG - ok
23:53:21.0761 0x0dc0  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
23:53:21.0790 0x0dc0  Compbatt - ok
23:53:21.0817 0x0dc0  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
23:53:21.0869 0x0dc0  CompositeBus - ok
23:53:21.0875 0x0dc0  COMSysApp - ok
23:53:21.0910 0x0dc0  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
23:53:21.0956 0x0dc0  crcdisk - ok
23:53:21.0994 0x0dc0  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
23:53:22.0046 0x0dc0  CryptSvc - ok
23:53:22.0097 0x0dc0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
23:53:22.0181 0x0dc0  DcomLaunch - ok
23:53:22.0227 0x0dc0  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
23:53:22.0320 0x0dc0  defragsvc - ok
23:53:22.0354 0x0dc0  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
23:53:22.0430 0x0dc0  DfsC - ok
23:53:22.0477 0x0dc0  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
23:53:22.0555 0x0dc0  Dhcp - ok
23:53:22.0581 0x0dc0  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
23:53:22.0669 0x0dc0  discache - ok
23:53:22.0696 0x0dc0  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
23:53:22.0729 0x0dc0  Disk - ok
23:53:22.0762 0x0dc0  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
23:53:22.0828 0x0dc0  Dnscache - ok
23:53:22.0867 0x0dc0  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
23:53:22.0936 0x0dc0  dot3svc - ok
23:53:22.0956 0x0dc0  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
23:53:23.0089 0x0dc0  DPS - ok
23:53:23.0145 0x0dc0  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
23:53:23.0191 0x0dc0  drmkaud - ok
23:53:23.0265 0x0dc0  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
23:53:23.0360 0x0dc0  DXGKrnl - ok
23:53:23.0394 0x0dc0  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
23:53:23.0485 0x0dc0  EapHost - ok
23:53:23.0636 0x0dc0  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
23:53:23.0877 0x0dc0  ebdrv - ok
23:53:23.0911 0x0dc0  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
23:53:23.0947 0x0dc0  EFS - ok
23:53:24.0035 0x0dc0  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
23:53:24.0152 0x0dc0  ehRecvr - ok
23:53:24.0181 0x0dc0  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
23:53:24.0263 0x0dc0  ehSched - ok
23:53:24.0335 0x0dc0  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
23:53:24.0400 0x0dc0  elxstor - ok
23:53:24.0428 0x0dc0  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
23:53:24.0482 0x0dc0  ErrDev - ok
23:53:24.0551 0x0dc0  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
23:53:24.0646 0x0dc0  EventSystem - ok
23:53:24.0653 0x0dc0  ewusbnet - ok
23:53:24.0680 0x0dc0  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
23:53:24.0759 0x0dc0  exfat - ok
23:53:24.0787 0x0dc0  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
23:53:24.0853 0x0dc0  fastfat - ok
23:53:24.0907 0x0dc0  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
23:53:25.0043 0x0dc0  Fax - ok
23:53:25.0075 0x0dc0  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
23:53:25.0111 0x0dc0  fdc - ok
23:53:25.0155 0x0dc0  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
23:53:25.0263 0x0dc0  fdPHost - ok
23:53:25.0285 0x0dc0  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
23:53:25.0345 0x0dc0  FDResPub - ok
23:53:25.0365 0x0dc0  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
23:53:25.0396 0x0dc0  FileInfo - ok
23:53:25.0409 0x0dc0  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
23:53:25.0488 0x0dc0  Filetrace - ok
23:53:25.0515 0x0dc0  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
23:53:25.0549 0x0dc0  flpydisk - ok
23:53:25.0586 0x0dc0  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
23:53:25.0625 0x0dc0  FltMgr - ok
23:53:25.0691 0x0dc0  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
23:53:25.0841 0x0dc0  FontCache - ok
23:53:25.0881 0x0dc0  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:53:25.0922 0x0dc0  FontCache3.0.0.0 - ok
23:53:25.0946 0x0dc0  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
23:53:25.0978 0x0dc0  FsDepends - ok
23:53:26.0009 0x0dc0  [ 07DA62C960DDCCC2D35836AEAB4FC578, C67A29E928AF59BF7FB573FAC2176C5598F595406AA90DDB4A364A15BC89A6C4 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
23:53:26.0039 0x0dc0  fssfltr - ok
23:53:26.0179 0x0dc0  [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
23:53:26.0251 0x0dc0  fsssvc - ok
23:53:26.0279 0x0dc0  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
23:53:26.0308 0x0dc0  Fs_Rec - ok
23:53:26.0361 0x0dc0  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
23:53:26.0409 0x0dc0  fvevol - ok
23:53:26.0445 0x0dc0  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
23:53:26.0494 0x0dc0  gagp30kx - ok
23:53:26.0503 0x0dc0  GEARAspiWDM - ok
23:53:26.0560 0x0dc0  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
23:53:26.0677 0x0dc0  gpsvc - ok
23:53:26.0779 0x0dc0  [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:53:26.0838 0x0dc0  gupdate - ok
23:53:26.0866 0x0dc0  [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
23:53:26.0909 0x0dc0  gupdatem - ok
23:53:26.0961 0x0dc0  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
23:53:27.0034 0x0dc0  gusvc - ok
23:53:27.0111 0x0dc0  [ 0A9D58AABD01DA97B1D101473EFA7659, C18EA4F5BF569C230AD682A418F69B6E4209AD467BCCBDABD0515DBB582BF04B ] gzflt           C:\Windows\system32\DRIVERS\gzflt.sys
23:53:27.0170 0x0dc0  gzflt - ok
23:53:27.0209 0x0dc0  [ 091582DA724F54830012E3FAAF2F1D1A, B7EB5697C924C90BF70C64F71EBA004925C2948323E1B16E58FF2F71432AAFB1 ] Hardlock        C:\Windows\system32\drivers\hardlock.sys
23:53:27.0232 0x0dc0  Hardlock - detected UnsignedFile.Multi.Generic ( 1 )
23:53:29.0964 0x0dc0  Detect skipped due to KSN trusted
23:53:29.0964 0x0dc0  Hardlock - ok
23:53:30.0034 0x0dc0  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
23:53:30.0132 0x0dc0  hcw85cir - ok
23:53:30.0182 0x0dc0  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:53:30.0262 0x0dc0  HdAudAddService - ok
23:53:30.0289 0x0dc0  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
23:53:30.0348 0x0dc0  HDAudBus - ok
23:53:30.0381 0x0dc0  [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
23:53:30.0411 0x0dc0  HECIx64 - ok
23:53:30.0440 0x0dc0  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
23:53:30.0489 0x0dc0  HidBatt - ok
23:53:30.0533 0x0dc0  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
23:53:30.0591 0x0dc0  HidBth - ok
23:53:30.0632 0x0dc0  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
23:53:30.0681 0x0dc0  HidIr - ok
23:53:30.0714 0x0dc0  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
23:53:30.0786 0x0dc0  hidserv - ok
23:53:30.0846 0x0dc0  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
23:53:30.0898 0x0dc0  HidUsb - ok
23:53:30.0929 0x0dc0  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
23:53:30.0989 0x0dc0  hkmsvc - ok
23:53:31.0025 0x0dc0  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:53:31.0070 0x0dc0  HomeGroupListener - ok
23:53:31.0117 0x0dc0  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:53:31.0160 0x0dc0  HomeGroupProvider - ok
23:53:31.0196 0x0dc0  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
23:53:31.0229 0x0dc0  HpSAMD - ok
23:53:31.0296 0x0dc0  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
23:53:31.0411 0x0dc0  HTTP - ok
23:53:31.0425 0x0dc0  hwdatacard - ok
23:53:31.0448 0x0dc0  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
23:53:31.0476 0x0dc0  hwpolicy - ok
23:53:31.0490 0x0dc0  hwusbdev - ok
23:53:31.0528 0x0dc0  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
23:53:31.0565 0x0dc0  i8042prt - ok
23:53:31.0602 0x0dc0  [ 073A606333B6F7BBF20AA856DF7F0997, 513927CA430511A5B95F6CBE5FBD20F8C2202B609F88C4526C174A4FF7F761FC ] iaStor          C:\Windows\system32\drivers\iaStor.sys
23:53:31.0647 0x0dc0  iaStor - ok
23:53:31.0709 0x0dc0  [ CC800D2D9FD467542BAC7C186C4774AD, 2C2B975DAE6643D3CC5B93B6B58266C0B7E752651FB73B512ECA44FADB8AB839 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
23:53:31.0742 0x0dc0  IAStorDataMgrSvc - ok
23:53:31.0799 0x0dc0  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
23:53:31.0839 0x0dc0  iaStorV - ok
23:53:31.0902 0x0dc0  [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
23:53:32.0025 0x0dc0  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
23:53:35.0337 0x0dc0  Detect skipped due to KSN trusted
23:53:35.0337 0x0dc0  IDriverT - ok
23:53:35.0430 0x0dc0  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:53:35.0504 0x0dc0  idsvc - ok
23:53:35.0540 0x0dc0  IEEtwCollectorService - ok
23:53:35.0850 0x0dc0  [ 31D1AFF484D8A0906CF8D44251EC390F, 607644B1AE4F379BCE0824F263BFF4B4C026D7314D7A59E7FA7A1224307F0C82 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
23:53:36.0328 0x0dc0  igfx - detected UnsignedFile.Multi.Generic ( 1 )
23:53:39.0054 0x0dc0  Detect skipped due to KSN trusted
23:53:39.0056 0x0dc0  igfx - ok
23:53:39.0077 0x0dc0  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
23:53:39.0107 0x0dc0  iirsp - ok
23:53:39.0196 0x0dc0  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
23:53:39.0304 0x0dc0  IKEEXT - ok
23:53:39.0334 0x0dc0  [ 36FDF367A1DABFF903E2214023D71368, 60468692C1D048428AF25ED87DE23DAE756C7BA2B6CF6AF5EFD2E53C80F5FC68 ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
23:53:39.0410 0x0dc0  Impcd - ok
23:53:39.0564 0x0dc0  [ 0F144E5F46CB9043004B5E84AA4BCA6A, 7C5DCDD929310FB1B9ED91B83333B259BB9827CC08CC6589B60D5E285F48BD92 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:53:39.0712 0x0dc0  IntcAzAudAddService - ok
23:53:39.0748 0x0dc0  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
23:53:39.0794 0x0dc0  intelide - ok
23:53:39.0840 0x0dc0  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
23:53:39.0877 0x0dc0  intelppm - ok
23:53:39.0902 0x0dc0  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
23:53:39.0979 0x0dc0  IPBusEnum - ok
23:53:40.0020 0x0dc0  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:53:40.0081 0x0dc0  IpFilterDriver - ok
23:53:40.0126 0x0dc0  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
23:53:40.0180 0x0dc0  IPMIDRV - ok
23:53:40.0228 0x0dc0  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
23:53:40.0289 0x0dc0  IPNAT - ok
23:53:40.0337 0x0dc0  [ B960FA3B5A10588DC00BBECB662A9397, 2CD1D055F403971FF202D4AE5A02E91EEFCED203A5CA4252A8F34BC4BD86FB32 ] iPod Service    C:\Program Files (x86)\iPod\bin\iPodService.exe
23:53:40.0403 0x0dc0  iPod Service - ok
23:53:40.0425 0x0dc0  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
23:53:40.0465 0x0dc0  IRENUM - ok
23:53:40.0496 0x0dc0  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
23:53:40.0526 0x0dc0  isapnp - ok
23:53:40.0552 0x0dc0  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
23:53:40.0590 0x0dc0  iScsiPrt - ok
23:53:40.0630 0x0dc0  [ 213822072085B5BBAD9AF30AB577D817, 2C373B804D840933EC3A5F3ABFC43E47C2636CDB2431AB51846C565077B7C468 ] IviRegMgr       C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
23:53:40.0725 0x0dc0  IviRegMgr - ok
23:53:40.0769 0x0dc0  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
23:53:40.0801 0x0dc0  kbdclass - ok
23:53:40.0832 0x0dc0  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
23:53:40.0887 0x0dc0  kbdhid - ok
23:53:40.0910 0x0dc0  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
23:53:40.0945 0x0dc0  KeyIso - ok
23:53:40.0986 0x0dc0  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
23:53:41.0022 0x0dc0  KSecDD - ok
23:53:41.0041 0x0dc0  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
23:53:41.0075 0x0dc0  KSecPkg - ok
23:53:41.0107 0x0dc0  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
23:53:41.0165 0x0dc0  ksthunk - ok
23:53:41.0218 0x0dc0  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
23:53:41.0348 0x0dc0  KtmRm - ok
23:53:41.0395 0x0dc0  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
23:53:41.0488 0x0dc0  LanmanServer - ok
23:53:41.0520 0x0dc0  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:53:41.0586 0x0dc0  LanmanWorkstation - ok
23:53:41.0611 0x0dc0  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
23:53:41.0685 0x0dc0  lltdio - ok
23:53:41.0722 0x0dc0  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
23:53:41.0793 0x0dc0  lltdsvc - ok
23:53:41.0815 0x0dc0  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
23:53:41.0875 0x0dc0  lmhosts - ok
23:53:41.0949 0x0dc0  [ 5460828F8951D310B42B442877603B8D, B6F78F69EFFBD550D650C189A1295483C1F99FC406A10186F90818A8E53F82B8 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
23:53:42.0026 0x0dc0  LMS - ok
23:53:42.0066 0x0dc0  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
23:53:42.0098 0x0dc0  LSI_FC - ok
23:53:42.0110 0x0dc0  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
23:53:42.0142 0x0dc0  LSI_SAS - ok
23:53:42.0176 0x0dc0  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
23:53:42.0207 0x0dc0  LSI_SAS2 - ok
23:53:42.0244 0x0dc0  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
23:53:42.0276 0x0dc0  LSI_SCSI - ok
23:53:42.0314 0x0dc0  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
23:53:42.0395 0x0dc0  luafv - ok
23:53:42.0435 0x0dc0  [ B8EAC4507EB4655377B1E094FCE7F12E, FF094A752224F2A5F4866B56D84B80DB18467776645C01B4CADAB85C377B9EE8 ] Macromedia Licensing Service C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
23:53:42.0457 0x0dc0  Macromedia Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
23:53:45.0267 0x0dc0  Detect skipped due to KSN trusted
23:53:45.0268 0x0dc0  Macromedia Licensing Service - ok
23:53:45.0330 0x0dc0  [ 0BB97D43299910CBFBA59C461B99B910, 27C22D9D9EE8A410D7396960DA93E9E260D4DCDD38DCE06E85E45C5E24C067DE ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
23:53:45.0378 0x0dc0  MBAMProtector - ok
23:53:45.0458 0x0dc0  [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
23:53:45.0529 0x0dc0  MBAMScheduler - ok
23:53:45.0568 0x0dc0  [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
23:53:45.0631 0x0dc0  MBAMService - ok
23:53:45.0670 0x0dc0  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
23:53:45.0748 0x0dc0  Mcx2Svc - ok
23:53:45.0864 0x0dc0  [ 11F714F85530A2BD134074DC30E99FCA, BDB5FD3B2DF4ADD19B31965B3E789768B59E872B3EA85912B1FFB32B2AF9D5D8 ] MDM             C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
23:53:45.0938 0x0dc0  MDM - ok
23:53:45.0978 0x0dc0  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
23:53:46.0008 0x0dc0  megasas - ok
23:53:46.0049 0x0dc0  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
23:53:46.0088 0x0dc0  MegaSR - ok
23:53:46.0129 0x0dc0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
23:53:46.0213 0x0dc0  MMCSS - ok
23:53:46.0243 0x0dc0  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
23:53:46.0304 0x0dc0  Modem - ok
23:53:46.0322 0x0dc0  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
23:53:46.0382 0x0dc0  monitor - ok
23:53:46.0421 0x0dc0  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
23:53:46.0465 0x0dc0  mouclass - ok
23:53:46.0493 0x0dc0  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
23:53:46.0528 0x0dc0  mouhid - ok
23:53:46.0577 0x0dc0  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
23:53:46.0636 0x0dc0  mountmgr - ok
23:53:46.0668 0x0dc0  [ AE2E68527013EB4F761ECCC630F7F1A3, 1BD4453FB2310306E296EB56AA31262260426EB7CB3F0793038B07DF175741AF ] MPFP            C:\Windows\system32\Drivers\Mpfp.sys
23:53:46.0703 0x0dc0  MPFP - ok
23:53:46.0735 0x0dc0  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
23:53:46.0769 0x0dc0  mpio - ok
23:53:46.0805 0x0dc0  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
23:53:46.0871 0x0dc0  mpsdrv - ok
23:53:46.0944 0x0dc0  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
23:53:47.0073 0x0dc0  MpsSvc - ok
23:53:47.0124 0x0dc0  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
23:53:47.0183 0x0dc0  MRxDAV - ok
23:53:47.0232 0x0dc0  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
23:53:47.0273 0x0dc0  mrxsmb - ok
23:53:47.0312 0x0dc0  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:53:47.0370 0x0dc0  mrxsmb10 - ok
23:53:47.0405 0x0dc0  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:53:47.0440 0x0dc0  mrxsmb20 - ok
23:53:47.0474 0x0dc0  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
23:53:47.0567 0x0dc0  msahci - ok
23:53:47.0610 0x0dc0  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
23:53:47.0652 0x0dc0  msdsm - ok
23:53:47.0687 0x0dc0  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
23:53:47.0742 0x0dc0  MSDTC - ok
23:53:47.0793 0x0dc0  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
23:53:47.0855 0x0dc0  Msfs - ok
23:53:47.0881 0x0dc0  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
23:53:47.0961 0x0dc0  mshidkmdf - ok
23:53:48.0004 0x0dc0  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
23:53:48.0034 0x0dc0  msisadrv - ok
23:53:48.0080 0x0dc0  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
23:53:48.0176 0x0dc0  MSiSCSI - ok
23:53:48.0186 0x0dc0  msiserver - ok
23:53:48.0218 0x0dc0  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
23:53:48.0276 0x0dc0  MSKSSRV - ok
23:53:48.0292 0x0dc0  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
23:53:48.0350 0x0dc0  MSPCLOCK - ok
23:53:48.0365 0x0dc0  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
23:53:48.0425 0x0dc0  MSPQM - ok
23:53:48.0456 0x0dc0  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
23:53:48.0506 0x0dc0  MsRPC - ok
23:53:48.0557 0x0dc0  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
23:53:48.0590 0x0dc0  mssmbios - ok
23:53:48.0608 0x0dc0  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
23:53:48.0684 0x0dc0  MSTEE - ok
23:53:48.0716 0x0dc0  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
23:53:48.0762 0x0dc0  MTConfig - ok
23:53:48.0794 0x0dc0  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
23:53:48.0838 0x0dc0  Mup - ok
23:53:48.0879 0x0dc0  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
23:53:48.0982 0x0dc0  napagent - ok
23:53:49.0023 0x0dc0  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
23:53:49.0072 0x0dc0  NativeWifiP - ok
23:53:49.0154 0x0dc0  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
23:53:49.0340 0x0dc0  NDIS - ok
23:53:49.0380 0x0dc0  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
23:53:49.0454 0x0dc0  NdisCap - ok
23:53:49.0477 0x0dc0  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
23:53:49.0535 0x0dc0  NdisTapi - ok
23:53:49.0566 0x0dc0  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
23:53:49.0626 0x0dc0  Ndisuio - ok
23:53:49.0670 0x0dc0  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
23:53:49.0742 0x0dc0  NdisWan - ok
23:53:49.0769 0x0dc0  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
23:53:49.0826 0x0dc0  NDProxy - ok
23:53:49.0861 0x0dc0  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
23:53:49.0921 0x0dc0  NetBIOS - ok
23:53:49.0964 0x0dc0  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
23:53:50.0031 0x0dc0  NetBT - ok
23:53:50.0055 0x0dc0  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
23:53:50.0090 0x0dc0  Netlogon - ok
23:53:50.0140 0x0dc0  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
23:53:50.0212 0x0dc0  Netman - ok
23:53:50.0265 0x0dc0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:53:50.0317 0x0dc0  NetMsmqActivator - ok
23:53:50.0342 0x0dc0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:53:50.0379 0x0dc0  NetPipeActivator - ok
23:53:50.0436 0x0dc0  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
23:53:50.0524 0x0dc0  netprofm - ok
23:53:50.0538 0x0dc0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:53:50.0575 0x0dc0  NetTcpActivator - ok
23:53:50.0588 0x0dc0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:53:50.0624 0x0dc0  NetTcpPortSharing - ok
23:53:50.0670 0x0dc0  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
23:53:50.0700 0x0dc0  nfrd960 - ok
23:53:50.0802 0x0dc0  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
23:53:50.0883 0x0dc0  NlaSvc - ok
23:53:50.0917 0x0dc0  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
23:53:50.0978 0x0dc0  Npfs - ok
23:53:51.0020 0x0dc0  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
23:53:51.0092 0x0dc0  nsi - ok
23:53:51.0115 0x0dc0  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
23:53:51.0189 0x0dc0  nsiproxy - ok
23:53:51.0313 0x0dc0  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
23:53:51.0422 0x0dc0  Ntfs - ok
23:53:51.0459 0x0dc0  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
23:53:51.0522 0x0dc0  Null - ok
23:53:51.0574 0x0dc0  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
23:53:51.0690 0x0dc0  nvraid - ok
23:53:51.0738 0x0dc0  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
23:53:51.0781 0x0dc0  nvstor - ok
23:53:51.0821 0x0dc0  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
23:53:51.0868 0x0dc0  nv_agp - ok
23:53:51.0903 0x0dc0  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
23:53:51.0954 0x0dc0  ohci1394 - ok
23:53:52.0062 0x0dc0  [ 11E0B35479C895888BA3D7F619DCFFF3, 6ED82C19898101EC00BD64A9F90595C3D20AD2D2902AA8765B740FB3B9312DDF ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:53:52.0103 0x0dc0  ose64 - ok
23:53:52.0363 0x0dc0  [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:53:52.0645 0x0dc0  osppsvc - ok
23:53:52.0707 0x0dc0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
23:53:52.0781 0x0dc0  p2pimsvc - ok
23:53:52.0819 0x0dc0  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
23:53:52.0893 0x0dc0  p2psvc - ok
23:53:52.0941 0x0dc0  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
23:53:52.0988 0x0dc0  Parport - ok
23:53:53.0024 0x0dc0  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
23:53:53.0060 0x0dc0  partmgr - ok
23:53:53.0095 0x0dc0  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
23:53:53.0150 0x0dc0  PcaSvc - ok
23:53:53.0192 0x0dc0  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
23:53:53.0233 0x0dc0  pci - ok
23:53:53.0259 0x0dc0  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
23:53:53.0295 0x0dc0  pciide - ok
23:53:53.0343 0x0dc0  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
23:53:53.0392 0x0dc0  pcmcia - ok
23:53:53.0418 0x0dc0  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
23:53:53.0450 0x0dc0  pcw - ok
23:53:53.0500 0x0dc0  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
23:53:53.0664 0x0dc0  PEAUTH - ok
23:53:53.0765 0x0dc0  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
23:53:53.0841 0x0dc0  PerfHost - ok
23:53:53.0987 0x0dc0  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
23:53:54.0124 0x0dc0  pla - ok
23:53:54.0190 0x0dc0  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
23:53:54.0306 0x0dc0  PlugPlay - ok
23:53:54.0415 0x0dc0  [ 627FA58ADC043704F9D14CA44340956F, 92306D5EE64812775E2A2E65F6666A5805CC4DD8BEB3E2FC64CCA087EF471D1F ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
23:53:54.0465 0x0dc0  PMBDeviceInfoProvider - ok
23:53:54.0496 0x0dc0  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
23:53:54.0546 0x0dc0  PNRPAutoReg - ok
23:53:54.0585 0x0dc0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
23:53:54.0629 0x0dc0  PNRPsvc - ok
23:53:54.0677 0x0dc0  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
23:53:54.0758 0x0dc0  PolicyAgent - ok
23:53:54.0804 0x0dc0  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
23:53:54.0888 0x0dc0  Power - ok
23:53:54.0930 0x0dc0  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
23:53:54.0992 0x0dc0  PptpMiniport - ok
23:53:55.0021 0x0dc0  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
23:53:55.0056 0x0dc0  Processor - ok
23:53:55.0102 0x0dc0  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
23:53:55.0194 0x0dc0  ProfSvc - ok
23:53:55.0222 0x0dc0  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
23:53:55.0256 0x0dc0  ProtectedStorage - ok
23:53:55.0293 0x0dc0  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
23:53:55.0375 0x0dc0  Psched - ok
23:53:55.0430 0x0dc0  [ A6A7AD767BF5141665F5C675F671B3E1, 11D43F732C3B82679E53516F83E675B60B0EFEDE3F4EE3C42AC752AD8D5155AF ] PSI_SVC_2       C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
23:53:55.0485 0x0dc0  PSI_SVC_2 - ok
23:53:55.0554 0x0dc0  [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
23:53:55.0586 0x0dc0  PxHlpa64 - ok
23:53:55.0668 0x0dc0  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
23:53:55.0767 0x0dc0  ql2300 - ok
23:53:55.0819 0x0dc0  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
23:53:55.0868 0x0dc0  ql40xx - ok
23:53:55.0913 0x0dc0  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
23:53:55.0960 0x0dc0  QWAVE - ok
23:53:56.0007 0x0dc0  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
23:53:56.0065 0x0dc0  QWAVEdrv - ok
23:53:56.0107 0x0dc0  raeehd - ok
23:53:56.0254 0x0dc0  [ F98487B25828441B1C6488C642C2AC10, 7063CBB83CEE57BF71AD05A419627ACB46FC6F86B9279FDE80F6E2AD6B124FFC ] RapportCerberus_43926 C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\43926\RapportCerberus64_43926.sys
23:53:56.0326 0x0dc0  RapportCerberus_43926 - ok
23:53:56.0378 0x0dc0  [ 3E12A983E57F6A99C9A79D02690C40EC, E8315CE2D9186A80FD75A112190071D2F6340547A7FFD35BCBDED2F34CEFE30B ] RapportEI64     C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys
23:53:56.0413 0x0dc0  RapportEI64 - ok
23:53:56.0448 0x0dc0  [ D93DE87B860AB508D3617C4D0B5BA640, D5AFD67199B51A3B83875706575839CCC98FFCBC94CB14E31D34DD289D6D4C9E ] RapportKE64     C:\Windows\system32\Drivers\RapportKE64.sys
23:53:56.0480 0x0dc0  RapportKE64 - ok
23:53:56.0547 0x0dc0  [ 527A0FC8A548C0C85F05A9A914953570, C1E421AAFEB590BCDC10E2B0B67784A09483F3896052415CCDD68D4B39572420 ] RapportMgmtService C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
23:53:56.0928 0x0dc0  RapportMgmtService - ok
23:53:56.0967 0x0dc0  [ B211B34E6CAF80C460CC7A40D6A8E460, A520EECCF2BE3C79A24AE725C42B21A614F957E406C96CA14211D91CA6DCB6A2 ] RapportPG64     C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys
23:53:56.0996 0x0dc0  RapportPG64 - ok
23:53:57.0064 0x0dc0  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
23:53:57.0139 0x0dc0  RasAcd - ok
23:53:57.0201 0x0dc0  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
23:53:57.0304 0x0dc0  RasAgileVpn - ok
23:53:57.0339 0x0dc0  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
23:53:57.0413 0x0dc0  RasAuto - ok
23:53:57.0455 0x0dc0  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
23:53:57.0517 0x0dc0  Rasl2tp - ok
23:53:57.0569 0x0dc0  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
23:53:57.0638 0x0dc0  RasMan - ok
23:53:57.0668 0x0dc0  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
23:53:57.0729 0x0dc0  RasPppoe - ok
23:53:57.0743 0x0dc0  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
23:53:57.0820 0x0dc0  RasSstp - ok
23:53:57.0872 0x0dc0  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
23:53:57.0949 0x0dc0  rdbss - ok
23:53:57.0976 0x0dc0  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
23:53:58.0039 0x0dc0  rdpbus - ok
23:53:58.0080 0x0dc0  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
23:53:58.0138 0x0dc0  RDPCDD - ok
23:53:58.0167 0x0dc0  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
23:53:58.0224 0x0dc0  RDPENCDD - ok
23:53:58.0254 0x0dc0  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
23:53:58.0334 0x0dc0  RDPREFMP - ok
23:53:58.0392 0x0dc0  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
23:53:58.0459 0x0dc0  RDPWD - ok
23:53:58.0512 0x0dc0  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
23:53:58.0548 0x0dc0  rdyboost - ok
23:53:58.0582 0x0dc0  [ 4D9AFDDDA0EFE97CDBFD3B5FA48B05F6, A0E808EA9A58FC99D694A9EBF1F7248B79CAA44D9E6E30A07CDEDBC72A8F3610 ] regi            C:\Windows\system32\drivers\regi.sys
23:53:58.0610 0x0dc0  regi - ok
23:53:58.0640 0x0dc0  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
23:53:58.0725 0x0dc0  RemoteAccess - ok
23:53:58.0761 0x0dc0  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
23:53:58.0826 0x0dc0  RemoteRegistry - ok
23:53:58.0855 0x0dc0  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
23:53:58.0916 0x0dc0  RFCOMM - ok
23:53:58.0951 0x0dc0  [ 5CA4ABD888B602551B59BAA26941C167, F6FC0F828153E07EAFFAB6E11556DA23A5F6D9FC063E36947B1AC73E7E7E705E ] rimspci         C:\Windows\system32\drivers\rimssne64.sys
23:53:59.0029 0x0dc0  rimspci - ok
23:53:59.0068 0x0dc0  [ BB6E138AEB351728959DA5E2731D8140, E6656869A03380EB96A31E4E5FF4D565916EB0A7ED334330D2DD039390441D15 ] risdsnpe        C:\Windows\system32\drivers\risdsne64.sys
23:53:59.0127 0x0dc0  risdsnpe - ok
23:53:59.0176 0x0dc0  [ D151224BC11078895A60FA970728FF59, ECE7761258DABFFE0A3CECF1493A1022529999EC272902E4B8EC8CB218CA47F2 ] Roxio UPnP Renderer 10 C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
23:53:59.0223 0x0dc0  Roxio UPnP Renderer 10 - ok
23:53:59.0253 0x0dc0  [ 5022A927944878BD750960BD21E751AF, F0300F492E4B27F9103D116D814E23A669A439E790220471FD3748F1BBD10EAD ] Roxio Upnp Server 10 C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe
23:53:59.0297 0x0dc0  Roxio Upnp Server 10 - ok
23:53:59.0334 0x0dc0  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
23:53:59.0414 0x0dc0  RpcEptMapper - ok
23:53:59.0452 0x0dc0  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
23:53:59.0487 0x0dc0  RpcLocator - ok
23:53:59.0550 0x0dc0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
23:53:59.0636 0x0dc0  RpcSs - ok
23:53:59.0668 0x0dc0  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
23:53:59.0749 0x0dc0  rspndr - ok
23:53:59.0797 0x0dc0  [ 4E821C740A675F6D040BE41D59A62B1D, F09A0247DD21580AEE268FB88371D581B6383FC354B5FBBD147E5338BF7681A4 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
23:53:59.0830 0x0dc0  RTHDMIAzAudService - ok
23:53:59.0944 0x0dc0  [ E228C336F195FA629D00B02F9FFC5667, 114F562882EF2A439EC4783029A977A53588F3870AED158B46F8DA51B4CB2715 ] SafeBox         C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
23:53:59.0993 0x0dc0  SafeBox - ok
23:54:00.0047 0x0dc0  [ D46623730730DF7F8E8D6ECDBBB4FAF0, C5CDFAB5D34B70D5418A7A3585A1A0E5AAA33CB1E0693D2C1A3FB7AB4F2A103C ] Sage SData Service C:\Program Files (x86)\Common Files\Sage SData\Sage.SData.Service.exe
23:54:00.0093 0x0dc0  Sage SData Service - detected UnsignedFile.Multi.Generic ( 1 )
23:54:02.0820 0x0dc0  Detect skipped due to KSN trusted
23:54:02.0820 0x0dc0  Sage SData Service - ok
23:54:02.0888 0x0dc0  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
23:54:02.0935 0x0dc0  SamSs - ok
23:54:03.0005 0x0dc0  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
23:54:03.0048 0x0dc0  SASDIFSV - ok
23:54:03.0062 0x0dc0  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
23:54:03.0088 0x0dc0  SASKUTIL - ok
23:54:03.0219 0x0dc0  [ E20128053F3F4641A2627ECFA7149ECA, CE5620BC170E76E53FEDCCEE12BBFBEE7C67B96E53E5D9C63FA7773C36699DC6 ] SbieDrv         C:\Program Files\Sandboxie\SbieDrv.sys
23:54:03.0271 0x0dc0  SbieDrv - ok
23:54:03.0348 0x0dc0  [ 0FA1025D7AC725EEA5EA3076965EEA6B, 80AFCFD77BCE07F34C1276F5F416A156ABB9FEDC2AAF7AE68CEA500A4468D125 ] SbieSvc         C:\Program Files\Sandboxie\SbieSvc.exe
23:54:03.0407 0x0dc0  SbieSvc - ok
23:54:03.0442 0x0dc0  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
23:54:03.0474 0x0dc0  sbp2port - ok
23:54:03.0522 0x0dc0  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
23:54:03.0610 0x0dc0  SCardSvr - ok
23:54:03.0653 0x0dc0  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
23:54:03.0725 0x0dc0  scfilter - ok
23:54:03.0802 0x0dc0  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
23:54:03.0948 0x0dc0  Schedule - ok
23:54:03.0985 0x0dc0  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
23:54:04.0047 0x0dc0  SCPolicySvc - ok
23:54:04.0085 0x0dc0  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\drivers\sdbus.sys
23:54:04.0131 0x0dc0  sdbus - ok
23:54:04.0174 0x0dc0  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
23:54:04.0224 0x0dc0  SDRSVC - ok
23:54:04.0248 0x0dc0  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
23:54:04.0322 0x0dc0  secdrv - ok
23:54:04.0358 0x0dc0  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
23:54:04.0418 0x0dc0  seclogon - ok
23:54:04.0453 0x0dc0  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
23:54:04.0533 0x0dc0  SENS - ok
23:54:04.0567 0x0dc0  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
23:54:04.0636 0x0dc0  SensrSvc - ok
23:54:04.0667 0x0dc0  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
23:54:04.0702 0x0dc0  Serenum - ok
23:54:04.0729 0x0dc0  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
23:54:04.0765 0x0dc0  Serial - ok
23:54:04.0798 0x0dc0  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
23:54:04.0849 0x0dc0  sermouse - ok
23:54:04.0928 0x0dc0  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
23:54:04.0994 0x0dc0  SessionEnv - ok
23:54:05.0021 0x0dc0  [ 70F9C476B62DE4F2823E918A6C181ADE, E1A641418A6CB4FA38BB29B86934838B28D8909B8066E5089D85BF72FD61F4C4 ] SFEP            C:\Windows\system32\drivers\SFEP.sys
23:54:05.0085 0x0dc0  SFEP - ok
23:54:05.0123 0x0dc0  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
23:54:05.0163 0x0dc0  sffdisk - ok
23:54:05.0194 0x0dc0  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
23:54:05.0228 0x0dc0  sffp_mmc - ok
23:54:05.0257 0x0dc0  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
23:54:05.0297 0x0dc0  sffp_sd - ok
23:54:05.0331 0x0dc0  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
23:54:05.0365 0x0dc0  sfloppy - ok
23:54:05.0423 0x0dc0  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:54:05.0492 0x0dc0  ShellHWDetection - ok
23:54:05.0535 0x0dc0  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
23:54:05.0621 0x0dc0  SiSRaid2 - ok
23:54:05.0664 0x0dc0  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
23:54:05.0811 0x0dc0  SiSRaid4 - ok
23:54:05.0890 0x0dc0  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
23:54:05.0996 0x0dc0  SkypeUpdate - ok
23:54:06.0055 0x0dc0  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
23:54:06.0143 0x0dc0  Smb - ok
23:54:06.0206 0x0dc0  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
23:54:06.0253 0x0dc0  SNMPTRAP - ok
23:54:06.0338 0x0dc0  [ 98886C88A1CB13D61672AE2C638B7E1C, C0FCECA18FBE413C9B7D975CEE944D35215E89983BEEA935C7C8BC5D8E659E5F ] SOHCImp         C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
23:54:06.0378 0x0dc0  SOHCImp - ok
23:54:06.0398 0x0dc0  [ 442A13F395546F4564C377296D43B564, 971E62942996DF4674109127F6A147B26D8D3FDE37CF110642DED321FACBDCB9 ] SOHDBSvr        C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe
23:54:06.0432 0x0dc0  SOHDBSvr - ok
23:54:06.0471 0x0dc0  [ 556681BE668D71DC162391A45422B52C, 2968B0C4955E3211DE0E2BC5755896F81C76862F6FA1092C87490CB0BF63005E ] SOHDms          C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
23:54:06.0518 0x0dc0  SOHDms - ok
23:54:06.0540 0x0dc0  [ 72B46103E4111439109ACF5882627C24, 0D04C7FF33BB2CCDFDFCF9DE4123CCA383FD1FC703B41ED8813CD742AF4BA931 ] SOHDs           C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
23:54:06.0575 0x0dc0  SOHDs - ok
23:54:06.0604 0x0dc0  [ 725B6E9CD1959271AC993DC035E1606D, AF3EDDD1CDBAD300B23F20FCB490F334DC76C855D68FF6C405240B36327F66E4 ] SOHPlMgr        C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe
23:54:06.0650 0x0dc0  SOHPlMgr - ok
23:54:06.0677 0x0dc0  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
23:54:06.0706 0x0dc0  spldr - ok
23:54:06.0755 0x0dc0  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
23:54:06.0858 0x0dc0  Spooler - ok
23:54:07.0043 0x0dc0  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
23:54:07.0312 0x0dc0  sppsvc - ok
23:54:07.0348 0x0dc0  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
23:54:07.0417 0x0dc0  sppuinotify - ok
23:54:07.0472 0x0dc0  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
23:54:07.0537 0x0dc0  srv - ok
23:54:07.0574 0x0dc0  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
23:54:07.0634 0x0dc0  srv2 - ok
23:54:07.0673 0x0dc0  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
23:54:07.0727 0x0dc0  srvnet - ok
23:54:07.0773 0x0dc0  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
23:54:07.0841 0x0dc0  SSDPSRV - ok
23:54:07.0869 0x0dc0  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
23:54:07.0953 0x0dc0  SstpSvc - ok
23:54:07.0989 0x0dc0  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
23:54:08.0019 0x0dc0  stexstor - ok
23:54:08.0075 0x0dc0  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
23:54:08.0153 0x0dc0  stisvc - ok
23:54:08.0184 0x0dc0  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
23:54:08.0213 0x0dc0  swenum - ok
23:54:08.0283 0x0dc0  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
23:54:08.0413 0x0dc0  swprv - ok
23:54:08.0542 0x0dc0  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
23:54:08.0702 0x0dc0  SysMain - ok
23:54:08.0744 0x0dc0  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:54:08.0807 0x0dc0  TabletInputService - ok
23:54:08.0858 0x0dc0  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
23:54:08.0929 0x0dc0  TapiSrv - ok
23:54:08.0965 0x0dc0  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
23:54:09.0043 0x0dc0  TBS - ok
23:54:09.0163 0x0dc0  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
23:54:09.0307 0x0dc0  Tcpip - ok
23:54:09.0381 0x0dc0  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
23:54:09.0460 0x0dc0  TCPIP6 - ok
23:54:09.0526 0x0dc0  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
23:54:09.0595 0x0dc0  tcpipreg - ok
23:54:09.0645 0x0dc0  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
23:54:09.0695 0x0dc0  TDPIPE - ok
23:54:09.0727 0x0dc0  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
23:54:09.0760 0x0dc0  TDTCP - ok
23:54:09.0801 0x0dc0  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
23:54:09.0876 0x0dc0  tdx - ok
23:54:09.0902 0x0dc0  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
23:54:09.0932 0x0dc0  TermDD - ok
23:54:09.0978 0x0dc0  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
23:54:10.0085 0x0dc0  TermService - ok
23:54:10.0100 0x0dc0  TfFsMon - ok
23:54:10.0114 0x0dc0  TFSysMon - ok
23:54:10.0151 0x0dc0  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
23:54:10.0219 0x0dc0  Themes - ok
23:54:10.0252 0x0dc0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
23:54:10.0314 0x0dc0  THREADORDER - ok
23:54:10.0343 0x0dc0  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
23:54:10.0408 0x0dc0  TrkWks - ok
23:54:10.0485 0x0dc0  [ 325A512F98BEB97B1FFBE88927B8090D, 2A0C10516E3506D63290345DFAC98D5A623584767E034EBF652B9DBE6CF70547 ] trufos          C:\Windows\system32\DRIVERS\trufos.sys
23:54:10.0526 0x0dc0  trufos - ok
23:54:10.0586 0x0dc0  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:54:10.0673 0x0dc0  TrustedInstaller - ok
23:54:10.0723 0x0dc0  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
23:54:10.0796 0x0dc0  tssecsrv - ok
23:54:10.0825 0x0dc0  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
23:54:10.0870 0x0dc0  TsUsbFlt - ok
23:54:10.0904 0x0dc0  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
23:54:10.0985 0x0dc0  tunnel - ok
23:54:11.0030 0x0dc0  [ 1A006963644C7FDE5BE60036F3A43E68, BD596CD2D1AAE3A145DC9FD73FD53CD25242AF4CFCD2783D8FCB3B12EBCC7153 ] TVICHW64        C:\Windows\system32\DRIVERS\TVICHW64.SYS
23:54:11.0062 0x0dc0  TVICHW64 - ok
23:54:11.0104 0x0dc0  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
23:54:11.0134 0x0dc0  uagp35 - ok
23:54:11.0180 0x0dc0  [ 63F6D08C54D5B3C1B12A6172032055C7, 87D872731D2C85E1A0ED3128CB7AB91AF00D830B0E4307054ABFD1D3900C990D ] uCamMonitor     C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
23:54:11.0234 0x0dc0  uCamMonitor - ok
23:54:11.0304 0x0dc0  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
23:54:11.0403 0x0dc0  udfs - ok
23:54:11.0483 0x0dc0  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
23:54:11.0584 0x0dc0  UI0Detect - ok
23:54:11.0644 0x0dc0  [ 6640110398438BDC6CC8D48EEC8EDDC5, FDEF9250468CE85F9AE4239A139BFED21EF133D3050012D4DEBCFDF9B07E6D15 ] UimBus          C:\Windows\system32\DRIVERS\uimx64.sys
23:54:11.0675 0x0dc0  UimBus - ok
23:54:11.0721 0x0dc0  [ 20BABEFA37F38B3CC26C0E9A26B844FF, F032E66092D585D43B65F5BF4D7DFEE7A3BE1B22E7C63E1CF3D74F0791E99918 ] Uim_IM          C:\Windows\system32\Drivers\Uim_IMx64.sys
23:54:11.0798 0x0dc0  Uim_IM - ok
23:54:11.0833 0x0dc0  [ 441E8BC5E68200038F0F1941A10C85F4, B93FB9DEC5365D526737A50C7958DB7441C515DF4AAACB6306998E18CF14F69B ] Uim_VIM         C:\Windows\system32\Drivers\uim_vimx64.sys
23:54:11.0875 0x0dc0  Uim_VIM - ok
23:54:11.0914 0x0dc0  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
23:54:11.0946 0x0dc0  uliagpkx - ok
23:54:11.0988 0x0dc0  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
23:54:12.0024 0x0dc0  umbus - ok
23:54:12.0072 0x0dc0  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
23:54:12.0120 0x0dc0  UmPass - ok
23:54:12.0208 0x0dc0  [ 08AA0433420F6C435C0CC07F083746D7, 2BDD5B19146C09CB0D965A7E4C8CF46B4B87FEBC719ADEB2F4D8D345D1461258 ] Unchecky        C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
23:54:12.0250 0x0dc0  Unchecky - ok
23:54:12.0456 0x0dc0  [ 9E89C2D6945389270DE067CE51FF7425, C6FD14DF4FE967760F3127D6CF663CC0FB40C91D966AC17A571DD4E659498506 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
23:54:12.0571 0x0dc0  UNS - ok
23:54:12.0796 0x0dc0  [ 612AACDDFF7EF81375927C2D7E4E810C, 63B446E7DB4C31CBBA244F858335DAD386AE302E6B0EE8EABDE399439BC93D82 ] UPDATESRV       C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
23:54:12.0853 0x0dc0  UPDATESRV - ok
23:54:12.0909 0x0dc0  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
23:54:12.0981 0x0dc0  upnphost - ok
23:54:13.0015 0x0dc0  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
23:54:13.0070 0x0dc0  usbccgp - ok
23:54:13.0111 0x0dc0  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
23:54:13.0157 0x0dc0  usbcir - ok
23:54:13.0212 0x0dc0  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
23:54:13.0260 0x0dc0  usbehci - ok
23:54:13.0318 0x0dc0  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
23:54:13.0366 0x0dc0  usbhub - ok
23:54:13.0414 0x0dc0  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
23:54:13.0462 0x0dc0  usbohci - ok
23:54:13.0500 0x0dc0  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
23:54:13.0558 0x0dc0  usbprint - ok
23:54:13.0606 0x0dc0  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
23:54:13.0701 0x0dc0  usbscan - ok
23:54:13.0776 0x0dc0  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:54:13.0841 0x0dc0  USBSTOR - ok
23:54:13.0878 0x0dc0  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
23:54:13.0913 0x0dc0  usbuhci - ok
23:54:13.0955 0x0dc0  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
23:54:14.0027 0x0dc0  usbvideo - ok
23:54:14.0056 0x0dc0  [ 7B28E2FBE75115660FAB31079C0A9F29, 81BB5A3E64B652A672A0782A88ABF6DDD729D38712D0706CE0FB9DE6D1EE1515 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
23:54:14.0120 0x0dc0  usb_rndisx - ok
23:54:14.0161 0x0dc0  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
23:54:14.0243 0x0dc0  UxSms - ok
23:54:14.0329 0x0dc0  [ 4E7135D6D0127067E4CFEE12259F895D, 2542257E3912591AC4902FF08E43C46CC91BA97D67EED9375CC5DB5DEE71797F ] VAIO Entertainment TV Device Arbitration Service C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
23:54:14.0388 0x0dc0  VAIO Entertainment TV Device Arbitration Service - detected UnsignedFile.Multi.Generic ( 1 )
23:54:24.0469 0x0dc0  VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - warning
23:54:24.0469 0x0dc0  Force sending object to P2P due to detect: C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
23:54:29.0409 0x0dc0  Object send P2P result: true
23:54:32.0270 0x0dc0  [ 6B31C9CB94927DBEEB62E15275F4CC54, 5BA538D20824298A1AADB618E09226A23AC22E84A29CA9EA03F85A0801458CB4 ] VAIO Event Service C:\Program Files (x86)\SONY\VAIO Event Service\VESMgr.exe
23:54:32.0330 0x0dc0  VAIO Event Service - ok
23:54:32.0440 0x0dc0  [ B8C9A7010AFD5CBBE194CB9EF7C4FD14, 7763407EEE646FA4E74DC0C25853D2B94A91524EB6A1058ECB3A352A5BE7A730 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
23:54:32.0519 0x0dc0  VAIO Power Management - ok
23:54:32.0543 0x0dc0  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
23:54:32.0577 0x0dc0  VaultSvc - ok
23:54:32.0647 0x0dc0  [ 197AF90E01A473A1862BB5381BE77877, 5E7D219F7A982356D09F9742501267D38F96F2A493BBF1D59643B314A23C0573 ] VBoxDrv         C:\Windows\system32\DRIVERS\VBoxDrv.sys
23:54:32.0691 0x0dc0  VBoxDrv - ok
23:54:32.0755 0x0dc0  [ 9AFB83D5E465E7F3C2C20F968C774756, 232B35E10FCCD40C3D9A0CAC37D0B0256C39F999696647B70070FF1438AED95E ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
23:54:32.0793 0x0dc0  VBoxNetAdp - ok
23:54:32.0847 0x0dc0  [ 1205DFE6DF344DF80FB3AF10F6E9AC77, 2F5CF70E16963C10E3A484EFBF33C809C3719D1E3A5B3ACF52D1AF8350CF14C0 ] VBoxNetFlt      C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
23:54:32.0879 0x0dc0  VBoxNetFlt - ok
23:54:32.0921 0x0dc0  [ 132DFA8D09CE78952259D1A9B480C335, A172B67034F17EFA24151587BD1B9240C98543555DCA7DF7CB0430EB6068093D ] VBoxUSBMon      C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
23:54:32.0955 0x0dc0  VBoxUSBMon - ok
23:54:33.0061 0x0dc0  [ 6A740F5FF3246C3BE3DD317299EFC88E, 2A5792EA6AE6ADB84682413628E2518202EA0FF9002E2E85F33767DCEF68575C ] VCFw            C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
23:54:33.0145 0x0dc0  VCFw - ok
23:54:33.0230 0x0dc0  [ FD03AC6CD1571AA8B2FF56D3C600E26E, B92C35E7034FD4C2FD9534CE72A697A564CD99CDCC32A3B477B91931E70C64E2 ] VcmIAlzMgr      C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
23:54:33.0292 0x0dc0  VcmIAlzMgr - ok
23:54:33.0335 0x0dc0  [ 9D9B34B430B4DC683112F59C80D20AB8, 5C54E84F9349BAAA6FCF95C08C5CD266F524EF3F4EB9D7D34595046DCDF38878 ] VcmINSMgr       C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
23:54:33.0384 0x0dc0  VcmINSMgr - ok
23:54:33.0464 0x0dc0  [ DFE10C68EF4684F7754FCCA39A4CC6BA, 292AA33D849FD9E5A4ABB10F3ACA80E5287384932B0108BE2FC90BD2ADE3AEC2 ] VcmXmlIfHelper  C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
23:54:33.0507 0x0dc0  VcmXmlIfHelper - ok
23:54:33.0591 0x0dc0  [ D347D3ABE070AA09C22FC37121555D52, EE62F6A3489AAA54A5E3BD6264C473EF091CF848F9047A8446D2947D79B0A672 ] VCService       C:\Program Files\Sony\VAIO Care\VCService.exe
23:54:33.0657 0x0dc0  VCService - ok
23:54:33.0695 0x0dc0  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
23:54:33.0731 0x0dc0  vdrvroot - ok
23:54:33.0797 0x0dc0  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
23:54:33.0911 0x0dc0  vds - ok
23:54:33.0970 0x0dc0  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
23:54:34.0013 0x0dc0  vga - ok
23:54:34.0043 0x0dc0  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
23:54:34.0101 0x0dc0  VgaSave - ok
23:54:34.0154 0x0dc0  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
23:54:34.0203 0x0dc0  vhdmp - ok
23:54:34.0321 0x0dc0  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
23:54:34.0371 0x0dc0  viaide - ok
23:54:34.0413 0x0dc0  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
23:54:34.0445 0x0dc0  volmgr - ok
23:54:34.0502 0x0dc0  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
23:54:34.0542 0x0dc0  volmgrx - ok
23:54:34.0602 0x0dc0  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
23:54:34.0644 0x0dc0  volsnap - ok
23:54:34.0699 0x0dc0  [ B4A73CA4EF9A02B9738CEA9AD5FE5917, B6A8086189FE2F1C3FE5B3F484FBA3DB2E5E1836F3154D30090F136C27D16166 ] vpcbus          C:\Windows\system32\DRIVERS\vpchbus.sys
23:54:34.0736 0x0dc0  vpcbus - ok
23:54:34.0790 0x0dc0  [ 5FB42082B0D19A0268705F1DD343DF20, 62F8EEE6A507CE6A8BD638020118D71B78332F79BA82654AB702AE46B04767D9 ] vpcusb          C:\Windows\system32\DRIVERS\vpcusb.sys
23:54:34.0861 0x0dc0  vpcusb - ok
23:54:34.0898 0x0dc0  vqdtrh - ok
23:54:34.0942 0x0dc0  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
23:54:34.0977 0x0dc0  vsmraid - ok
23:54:35.0086 0x0dc0  [ 047F22BDFDAE6DF6F1E47E747A1237A2, D6B6996B0E3BB95A71FB425BD47294A175D29F258BAA7CDD167ABB477B56D5DB ] VSNService      C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
23:54:35.0156 0x0dc0  VSNService - detected UnsignedFile.Multi.Generic ( 1 )
23:54:37.0997 0x0dc0  Detect skipped due to KSN trusted
23:54:37.0997 0x0dc0  VSNService - ok
23:54:38.0140 0x0dc0  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
23:54:38.0317 0x0dc0  VSS - ok
23:54:38.0446 0x0dc0  [ F2E77091A09315A896F2FC5F973694B1, 72F98AE14DF2F01449CD9B76B8BA5EE4F2A590B9FA9E7655A0E3306ADAD5B87D ] VSSERV          C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
23:54:38.0562 0x0dc0  VSSERV - ok
23:54:38.0627 0x0dc0  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
23:54:38.0678 0x0dc0  vwifibus - ok
23:54:38.0714 0x0dc0  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
23:54:38.0773 0x0dc0  vwififlt - ok
23:54:38.0809 0x0dc0  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
23:54:38.0846 0x0dc0  vwifimp - ok
23:54:38.0908 0x0dc0  [ D8BEF4AC1EAC809DBDBD441D6CFF6C4C, 01E849A34BFE41CCC8DE74795BE0B3963742772E898D1CB216F1D330274A23A1 ] VzCdbSvc        C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
23:54:38.0956 0x0dc0  VzCdbSvc - detected UnsignedFile.Multi.Generic ( 1 )
23:54:41.0826 0x0dc0  Detect skipped due to KSN trusted
23:54:41.0826 0x0dc0  VzCdbSvc - ok
23:54:41.0949 0x0dc0  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
23:54:42.0038 0x0dc0  W32Time - ok
23:54:42.0087 0x0dc0  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
23:54:42.0138 0x0dc0  WacomPen - ok
23:54:42.0193 0x0dc0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
23:54:42.0271 0x0dc0  WANARP - ok
23:54:42.0293 0x0dc0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
23:54:42.0368 0x0dc0  Wanarpv6 - ok
23:54:42.0505 0x0dc0  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
23:54:42.0629 0x0dc0  WatAdminSvc - ok
23:54:42.0737 0x0dc0  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
23:54:42.0892 0x0dc0  wbengine - ok
23:54:42.0939 0x0dc0  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
23:54:43.0000 0x0dc0  WbioSrvc - ok
23:54:43.0051 0x0dc0  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
23:54:43.0118 0x0dc0  wcncsvc - ok
23:54:43.0159 0x0dc0  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:54:43.0253 0x0dc0  WcsPlugInService - ok
23:54:43.0286 0x0dc0  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
23:54:43.0317 0x0dc0  Wd - ok
23:54:43.0395 0x0dc0  [ 441BD2D7B4F98134C3A4F9FA570FD250, FF20815273014C5A27C2B75E2C70FE674809293627056199F502DFDF4CECFCA1 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
23:54:43.0475 0x0dc0  Wdf01000 - ok
23:54:43.0506 0x0dc0  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
23:54:43.0577 0x0dc0  WdiServiceHost - ok
23:54:43.0600 0x0dc0  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
23:54:43.0641 0x0dc0  WdiSystemHost - ok
23:54:43.0685 0x0dc0  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
23:54:43.0745 0x0dc0  WebClient - ok
23:54:43.0796 0x0dc0  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
23:54:43.0885 0x0dc0  Wecsvc - ok
23:54:43.0917 0x0dc0  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
23:54:43.0993 0x0dc0  wercplsupport - ok
23:54:44.0030 0x0dc0  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
23:54:44.0111 0x0dc0  WerSvc - ok
23:54:44.0146 0x0dc0  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
23:54:44.0205 0x0dc0  WfpLwf - ok
23:54:44.0247 0x0dc0  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
23:54:44.0277 0x0dc0  WIMMount - ok
23:54:44.0309 0x0dc0  WinDefend - ok
23:54:44.0354 0x0dc0  WinHttpAutoProxySvc - ok
23:54:44.0435 0x0dc0  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
23:54:44.0537 0x0dc0  Winmgmt - ok
23:54:44.0657 0x0dc0  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
23:54:44.0835 0x0dc0  WinRM - ok
23:54:44.0951 0x0dc0  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
23:54:45.0005 0x0dc0  WinUsb - ok
23:54:45.0074 0x0dc0  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
23:54:45.0195 0x0dc0  Wlansvc - ok
23:54:45.0268 0x0dc0  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:54:45.0320 0x0dc0  wlcrasvc - ok
23:54:45.0490 0x0dc0  [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:54:45.0637 0x0dc0  wlidsvc - ok
23:54:45.0682 0x0dc0  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
23:54:45.0717 0x0dc0  WmiAcpi - ok
23:54:45.0794 0x0dc0  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] WmiApSrv        C:\Windows\System32\wbem\WmiApSrv.exe
23:54:45.0851 0x0dc0  WmiApSrv - ok
23:54:45.0909 0x0dc0  WMPNetworkSvc - ok
23:54:45.0983 0x0dc0  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
23:54:46.0024 0x0dc0  WPCSvc - ok
23:54:46.0069 0x0dc0  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
23:54:46.0108 0x0dc0  WPDBusEnum - ok
23:54:46.0149 0x0dc0  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
23:54:46.0208 0x0dc0  ws2ifsl - ok
23:54:46.0244 0x0dc0  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
23:54:46.0307 0x0dc0  wscsvc - ok
23:54:46.0364 0x0dc0  WSearch - ok
23:54:46.0552 0x0dc0  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
23:54:46.0729 0x0dc0  wuauserv - ok
23:54:46.0774 0x0dc0  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
23:54:46.0855 0x0dc0  WudfPf - ok
23:54:46.0893 0x0dc0  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
23:54:46.0946 0x0dc0  WUDFRd - ok
23:54:46.0994 0x0dc0  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
23:54:47.0045 0x0dc0  wudfsvc - ok
23:54:47.0106 0x0dc0  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
23:54:47.0170 0x0dc0  WwanSvc - ok
23:54:47.0234 0x0dc0  [ 64F88AF327AA74E03658AE32B48CCB8B, 52C8941D96F2EF89BBC4A4268DC59E5BC89AE2DAB199C13BBFF11C2606BE7FFA ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
23:54:47.0337 0x0dc0  yukonw7 - ok
23:54:47.0500 0x0dc0  ================ Scan global ===============================
23:54:47.0566 0x0dc0  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
23:54:47.0607 0x0dc0  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
23:54:47.0639 0x0dc0  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
23:54:47.0673 0x0dc0  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
23:54:47.0726 0x0dc0  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
23:54:47.0745 0x0dc0  [ Global ] - ok
23:54:47.0746 0x0dc0  ================ Scan MBR ==================================
23:54:47.0756 0x0dc0  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:54:48.0502 0x0dc0  \Device\Harddisk0\DR0 - ok
23:54:48.0503 0x0dc0  ================ Scan VBR ==================================
23:54:48.0507 0x0dc0  [ 036B0B73B571FE08FF99E8CE32FD43BF ] \Device\Harddisk0\DR0\Partition1
23:54:48.0509 0x0dc0  \Device\Harddisk0\DR0\Partition1 - ok
23:54:48.0525 0x0dc0  [ 98DA257C4C0C768F58802C1C75CC5785 ] \Device\Harddisk0\DR0\Partition2
23:54:48.0528 0x0dc0  \Device\Harddisk0\DR0\Partition2 - ok
23:54:48.0529 0x0dc0  Waiting for KSN requests completion. In queue: 65
23:54:49.0529 0x0dc0  Waiting for KSN requests completion. In queue: 65
23:54:50.0529 0x0dc0  Waiting for KSN requests completion. In queue: 65
23:54:51.0605 0x0dc0  AV detected via SS2: Bitdefender Antivirus, C:\Program Files\Bitdefender\Bitdefender\wscfix.exe ( 17.20.0.873 ), 0x41000 ( enabled : updated )
23:54:51.0607 0x0dc0  FW detected via SS2: Bitdefender Firewall, C:\Program Files\Bitdefender\Bitdefender\wscfix.exe ( 17.20.0.873 ), 0x41010 ( enabled )
23:54:54.0377 0x0dc0  ============================================================
23:54:54.0377 0x0dc0  Scan finished
23:54:54.0377 0x0dc0  ============================================================
23:54:54.0391 0x1594  Detected object count: 1
23:54:54.0391 0x1594  Actual detected object count: 1
23:56:59.0702 0x1594  VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - skipped by user
23:56:59.0702 0x1594  VAIO Entertainment TV Device Arbitration Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 
23:57:36.0212 0x10f4  Deinitialize success


#4 scorpion73

scorpion73
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:03:31 PM

Posted 07 April 2014 - 06:20 PM

AdwCleaner log:

 

# AdwCleaner v3.023 - Report created 08/04/2014 at 00:16:23
# Updated 01/04/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : sony - SONY-VAIO
# Running from : C:\Users\sony\Desktop\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Found C:\ProgramData\boost_interprocess
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.16521
 
 
-\\ Mozilla Firefox v
 
[ File : C:\Users\Iliana\AppData\Roaming\Mozilla\Firefox\Profiles\94okbnhh.default\prefs.js ]
 
 
[ File : C:\Users\Iliana\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\prefs.js ]
 
 
[ File : C:\Users\new\AppData\Roaming\Mozilla\Firefox\Profiles\jixcwwxa.default\prefs.js ]
 
 
[ File : C:\Users\ADMIN.sony-VAIO.000\AppData\Roaming\Mozilla\Firefox\Profiles\fhabgmc2.default\prefs.js ]
 
 
-\\ Google Chrome v33.0.1750.154
 
[ File : C:\Users\sony\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
[ File : C:\Users\Iliana\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
[ File : C:\Users\new\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
[ File : C:\Users\ADMIN.sony-VAIO.000\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [31872 octets] - [24/11/2013 19:11:29]
AdwCleaner[R10].txt - [2695 octets] - [04/04/2014 23:15:02]
AdwCleaner[R11].txt - [2814 octets] - [05/04/2014 20:10:39]
AdwCleaner[R12].txt - [2986 octets] - [06/04/2014 17:51:15]
AdwCleaner[R13].txt - [1616 octets] - [08/04/2014 00:16:23]
AdwCleaner[R1].txt - [1645 octets] - [26/11/2013 00:16:17]
AdwCleaner[R2].txt - [1691 octets] - [29/11/2013 23:27:37]
AdwCleaner[R3].txt - [1856 octets] - [07/12/2013 00:15:08]
AdwCleaner[R4].txt - [1177 octets] - [27/12/2013 17:04:20]
AdwCleaner[R5].txt - [2156 octets] - [27/12/2013 17:08:07]
AdwCleaner[R6].txt - [3217 octets] - [04/03/2014 13:38:15]
AdwCleaner[R7].txt - [2410 octets] - [13/03/2014 22:32:30]
AdwCleaner[R8].txt - [2612 octets] - [27/03/2014 22:02:49]
AdwCleaner[R9].txt - [2569 octets] - [02/04/2014 22:05:11]
AdwCleaner[S0].txt - [31599 octets] - [24/11/2013 19:15:43]
AdwCleaner[S10].txt - [2876 octets] - [05/04/2014 20:14:48]
AdwCleaner[S11].txt - [3052 octets] - [06/04/2014 17:54:57]
AdwCleaner[S1].txt - [1708 octets] - [26/11/2013 00:18:39]
AdwCleaner[S2].txt - [1756 octets] - [29/11/2013 23:29:41]
AdwCleaner[S3].txt - [1921 octets] - [07/12/2013 00:17:52]
AdwCleaner[S4].txt - [2187 octets] - [27/12/2013 17:12:07]
AdwCleaner[S5].txt - [3267 octets] - [04/03/2014 13:41:43]
AdwCleaner[S6].txt - [2443 octets] - [13/03/2014 22:34:06]
AdwCleaner[S7].txt - [2677 octets] - [27/03/2014 22:07:02]
AdwCleaner[S8].txt - [2630 octets] - [02/04/2014 22:09:19]
AdwCleaner[S9].txt - [1381 octets] - [04/04/2014 23:18:40]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R13].txt - [2940 octets] ##########


#5 scorpion73

scorpion73
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:03:31 PM

Posted 07 April 2014 - 06:24 PM

FSS Log:

 

Farbar Service Scanner Version: 25-02-2014
Ran by sony (administrator) on 08-04-2014 at 00:23:29
Running from "C:\Users\sony\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
 
Action Center Notification Icon =====> Unable to open HKLM\...\ShellServiceObjects\{F56F6FDD-AA9D-4618-A949-C1B91AF43B1A} key. The key does not exist.
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.
 
 
Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
 
 
Other Services:
==============
Checking Start type iphlpsvc: ATTENTION!=====> Unable to retrieve start type of iphlpsvc. The value does not exist.
Checking ImagePath of iphlpsvc: ATTENTION!=====> Unable to retrieve ImagePath of iphlpsvc. The value does not exist.
Checking ServiceDll of iphlpsvc: ATTENTION!=====> Unable to retrieve ServiceDll of iphlpsvc. The value does not exist.
Checking Start type of SharedAccess: ATTENTION!=====> Unable to retrieve start type of SharedAccess. The value does not exist.
Checking ImagePath of SharedAccess: ATTENTION!=====> Unable to retrieve ImagePath of SharedAccess. The value does not exist.
Checking ServiceDll of SharedAccess: ATTENTION!=====> Unable to retrieve ServiceDll of SharedAccess. The value does not exist.
Checking FirewallRules of SharedAccess: ATTENTION!=====> Unable to open "SharedAccess\Defaults\FirewallPolicy\FirewallRules" registry key. The key does not exist.
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
 
 
**** End of log ****


#6 scorpion73

scorpion73
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:03:31 PM

Posted 07 April 2014 - 06:30 PM

and last log from MiniToolBox:

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by sony (administrator) on 08-04-2014 at 00:28:46
Running from "C:\Users\sony\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
::1             localhost 
 
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
0.0.0.0 cdn.appround.biz
0.0.0.0 cdn.bigspeedpro.com
0.0.0.0 cdn.bispd.com
0.0.0.0 cdn.bisrv.com
0.0.0.0 cdn.cdndp.com
0.0.0.0 cdn.download.sweetpacks.com
0.0.0.0 cdn.dpdownload.com
0.0.0.0 cdn.visualbee.net
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Hardware not present)
Marvell Yukon 88E8059 PCI-E Gigabit Ethernet Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global defaultcurhoplimit=64 icmpredirects=enabled
set subinterface interface= subinterface=ethernet_9 mtu=1477
add address name="VirtualBox Host-Only Network" address=192.168.56.1 mask=255.255.255.0
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : sony-VAIO
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Wireless LAN adapter Wireless Network Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 7E-DD-08-D8-24-8A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Marvell Yukon 88E8059 PCI-E Gigabit Ethernet Controller
   Physical Address. . . . . . . . . : 54-42-49-59-93-93
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
   Physical Address. . . . . . . . . : 78-DD-08-D8-24-8A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::190d:adce:916f:9263%10(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.0.3(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 08 April 2014 00:01:02
   Lease Expires . . . . . . . . . . : 08 April 2014 01:01:06
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 184559198
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-22-A1-BF-54-42-49-59-93-93
   DNS Servers . . . . . . . . . . . : 194.168.4.100
                                       194.168.8.100
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.home:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 13:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  cache1.service.virginmedia.net
Address:  194.168.4.100
 
Name:    google.com
Addresses:  2a00:1450:4009:804::100e
 62.254.36.183
 62.254.36.152
 62.254.36.157
 62.254.36.187
 62.254.36.158
 62.254.36.173
 62.254.36.163
 62.254.36.167
 62.254.36.162
 62.254.36.153
 62.254.36.177
 62.254.36.182
 62.254.36.178
 62.254.36.168
 62.254.36.172
 62.254.36.148
 
 
Pinging google.com [62.254.36.152] with 32 bytes of data:
Reply from 62.254.36.152: bytes=32 time=15ms TTL=60
Reply from 62.254.36.152: bytes=32 time=15ms TTL=60
 
Ping statistics for 62.254.36.152:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 15ms, Maximum = 15ms, Average = 15ms
Server:  cache1.service.virginmedia.net
Address:  194.168.4.100
 
Name:    yahoo.com
Addresses:  98.138.253.109
 206.190.36.45
 98.139.183.24
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=185ms TTL=49
Reply from 206.190.36.45: bytes=32 time=187ms TTL=49
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 185ms, Maximum = 187ms, Average = 186ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=4ms TTL=64
Reply from 127.0.0.1: bytes=32 time=5ms TTL=64
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 4ms, Maximum = 5ms, Average = 4ms
===========================================================================
Interface List
 17...7e dd 08 d8 24 8a ......Microsoft Virtual WiFi Miniport Adapter
 11...54 42 49 59 93 93 ......Marvell Yukon 88E8059 PCI-E Gigabit Ethernet Controller
 10...78 dd 08 d8 24 8a ......Atheros AR9285 Wireless Network Adapter
  1...........................Software Loopback Interface 1
 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 19...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.3     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link       192.168.0.3    281
      192.168.0.3  255.255.255.255         On-link       192.168.0.3    281
    192.168.0.255  255.255.255.255         On-link       192.168.0.3    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.0.3    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.0.3    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 10    281 fe80::/64                On-link
 10    281 fe80::190d:adce:916f:9263/128
                                    On-link
  1    306 ff00::/8                 On-link
 10    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (04/08/2014 00:02:25 AM) (Source: VzCdbSvc) (User: )
Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019)
 
Error: (04/08/2014 00:02:25 AM) (Source: VzCdbSvc) (User: )
Description: Failed to load the plug-in module. (GUID = {48512A59-C8A5-4805-9048-23C9E4194BFA})(Error code = 0x80042000)
 
Error: (04/07/2014 10:40:16 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (04/07/2014 09:36:03 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (04/07/2014 09:10:42 PM) (Source: VzCdbSvc) (User: )
Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019)
 
Error: (04/07/2014 09:10:41 PM) (Source: VzCdbSvc) (User: )
Description: Failed to load the plug-in module. (GUID = {48512A59-C8A5-4805-9048-23C9E4194BFA})(Error code = 0x80042000)
 
Error: (04/07/2014 09:04:26 PM) (Source: VzCdbSvc) (User: )
Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019)
 
Error: (04/07/2014 09:04:25 PM) (Source: VzCdbSvc) (User: )
Description: Failed to load the plug-in module. (GUID = {48512A59-C8A5-4805-9048-23C9E4194BFA})(Error code = 0x80042000)
 
Error: (04/07/2014 08:58:01 PM) (Source: VzCdbSvc) (User: )
Description: Failed to load the plug-in module. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5})(Error code = 0x80042019)
 
Error: (04/07/2014 08:58:00 PM) (Source: VzCdbSvc) (User: )
Description: Failed to load the plug-in module. (GUID = {48512A59-C8A5-4805-9048-23C9E4194BFA})(Error code = 0x80042000)
 
 
System errors:
=============
Error: (04/08/2014 00:05:41 AM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070422
 
Error: (04/08/2014 00:03:50 AM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070422
 
Error: (04/08/2014 00:03:27 AM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070422
 
Error: (04/08/2014 00:02:35 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
bhnprr
raeehd
TfFsMon
TFSysMon
UimBus
Uim_IM
Uim_VIM
vqdtrh
 
Error: (04/08/2014 00:02:35 AM) (Source: DCOM) (User: )
Description: 1068SafeBox{F681ABD0-41DE-46C8-9ED3-D0F4EBA19111}
 
Error: (04/08/2014 00:02:16 AM) (Source: Service Control Manager) (User: )
Description: The VAIO Content Folder Watcher service depends on the Remote Desktop Services service which failed to start because of the following error: 
%%1058
 
Error: (04/08/2014 00:02:15 AM) (Source: Service Control Manager) (User: )
Description: The Hardlock service failed to start due to the following error: 
%%577
 
Error: (04/08/2014 00:00:21 AM) (Source: Service Control Manager) (User: )
Description: The Bitdefender Virus Shield service hung on starting.
 
Error: (04/07/2014 11:58:46 PM) (Source: Application Popup) (User: )
Description: \SystemRoot\SysWow64\Drivers\GEARAspiWDM.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
 
Error: (04/07/2014 11:19:45 PM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070422
 
 
Microsoft Office Sessions:
=========================
Error: (04/08/2014 00:02:25 AM) (Source: VzCdbSvc)(User: )
Description: {56F9312C-C989-4E04-8C23-299DEE3A36F5}0x80042019
 
Error: (04/08/2014 00:02:25 AM) (Source: VzCdbSvc)(User: )
Description: {48512A59-C8A5-4805-9048-23C9E4194BFA}0x80042000
 
Error: (04/07/2014 10:40:16 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\KAMEN\AntiVirus - Spyware & Malware Software\How to remove trojans, spyware, rogues and other malware\8). esetsmartinstaller_enu.exe
 
Error: (04/07/2014 09:36:03 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\KAMEN\AntiVirus - Spyware & Malware Software\ESET ONLINE SCANNER.exe
 
Error: (04/07/2014 09:10:42 PM) (Source: VzCdbSvc)(User: )
Description: {56F9312C-C989-4E04-8C23-299DEE3A36F5}0x80042019
 
Error: (04/07/2014 09:10:41 PM) (Source: VzCdbSvc)(User: )
Description: {48512A59-C8A5-4805-9048-23C9E4194BFA}0x80042000
 
Error: (04/07/2014 09:04:26 PM) (Source: VzCdbSvc)(User: )
Description: {56F9312C-C989-4E04-8C23-299DEE3A36F5}0x80042019
 
Error: (04/07/2014 09:04:25 PM) (Source: VzCdbSvc)(User: )
Description: {48512A59-C8A5-4805-9048-23C9E4194BFA}0x80042000
 
Error: (04/07/2014 08:58:01 PM) (Source: VzCdbSvc)(User: )
Description: {56F9312C-C989-4E04-8C23-299DEE3A36F5}0x80042019
 
Error: (04/07/2014 08:58:00 PM) (Source: VzCdbSvc)(User: )
Description: {48512A59-C8A5-4805-9048-23C9E4194BFA}0x80042000
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-04-08 00:02:15.343
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-08 00:02:15.143
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-07 21:10:13.567
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-07 21:10:13.333
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-07 21:03:56.020
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-07 21:03:55.770
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-07 20:57:34.664
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-07 20:57:34.399
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-07 20:27:48.184
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-07 20:27:47.935
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\hardlock.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
=========================== Installed Programs ============================
 
360Amigo System Speedup Free (Version: 1.2.1.8200)
7 Quick Fix version 2.0 (Version: 2.0)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Accounts (Version: 17.0.12.196)
Adobe Flash Player 12 ActiveX (Version: 12.0.0.77)
Adobe Flash Player 12 Plugin (Version: 12.0.0.77)
Adobe Reader XI (11.0.06) (Version: 11.0.06)
Adobe Shockwave Player 12.0 (Version: 12.0.5.146)
AEnglish Dictionary XP 1.72
Alps Pointing-device for VAIO
Angry Birds (Version: 2.0.2)
Angry Birds Seasons (Version: 2.1.0)
Angry Birds Space (Version: 1.0.0)
Apple Application Support (Version: 2.3)
Apple Software Update (Version: 2.1.3.127)
ArcSoft Magic-i Visual Effects 2 (Version: 2.0.1.85)
ArcSoft WebCam Companion 3 (Version: 3.0.21.278)
ATI Catalyst Install Manager (Version: 3.0.769.0)
BitComet 1.29 (Version: 1.29)
Bitdefender Total Security (Version: 17.27.0.1146)
Bullzip PDF Printer 9.10.0.1629 (Version: 9.10.0.1629)
Canon Easy-PhotoPrint EX
Canon Easy-WebPrint EX
Canon MP Navigator EX 3.0
Canon MP490 series MP Drivers
Canon My Printer
Canon Utilities Solution Menu
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2010.0920.2143.37117)
Catalyst Control Center Graphics Full Existing (Version: 2010.0920.2143.37117)
Catalyst Control Center Graphics Full New (Version: 2010.0920.2143.37117)
Catalyst Control Center Graphics Light (Version: 2010.0920.2143.37117)
Catalyst Control Center Graphics Previews Common (Version: 2010.0920.2143.37117)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0920.2143.37117)
Catalyst Control Center InstallProxy (Version: 2010.0113.2257.41150)
Catalyst Control Center InstallProxy (Version: 2010.0920.2143.37117)
Catalyst Control Center Localization All (Version: 2010.0920.2143.37117)
CCC Help Chinese Standard (Version: 2010.0920.2142.37117)
CCC Help Chinese Traditional (Version: 2010.0920.2142.37117)
CCC Help Czech (Version: 2010.0920.2142.37117)
CCC Help Danish (Version: 2010.0920.2142.37117)
CCC Help Dutch (Version: 2010.0920.2142.37117)
CCC Help English (Version: 2010.0920.2142.37117)
CCC Help Finnish (Version: 2010.0920.2142.37117)
CCC Help French (Version: 2010.0920.2142.37117)
CCC Help German (Version: 2010.0920.2142.37117)
CCC Help Greek (Version: 2010.0920.2142.37117)
CCC Help Hungarian (Version: 2010.0920.2142.37117)
CCC Help Italian (Version: 2010.0920.2142.37117)
CCC Help Japanese (Version: 2010.0920.2142.37117)
CCC Help Korean (Version: 2010.0920.2142.37117)
CCC Help Norwegian (Version: 2010.0920.2142.37117)
CCC Help Polish (Version: 2010.0920.2142.37117)
CCC Help Portuguese (Version: 2010.0920.2142.37117)
CCC Help Russian (Version: 2010.0920.2142.37117)
CCC Help Spanish (Version: 2010.0920.2142.37117)
CCC Help Swedish (Version: 2010.0920.2142.37117)
CCC Help Thai (Version: 2010.0920.2142.37117)
CCC Help Turkish (Version: 2010.0920.2142.37117)
ccc-core-static (Version: 2010.0920.2143.37117)
ccc-utility64 (Version: 2010.0920.2143.37117)
CCleaner (Version: 4.12)
Citrix Online Launcher (Version: 1.0.168)
Corel WinDVD (Version: 10.0.5.538)
D3DX10 (Version: 15.4.2368.0902)
Daum PotPlayer 1.5.45955 x64 Edition
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition
DivX Setup (Version: 2.5.0.15)
ESET Online Scanner v3
Evernote (Version: 3.5.0.545)
ffdshow v1.2.4422 [2012-04-09] (Version: 1.2.4422.0)
Foxit PDF Editor (Version: 2.2.1.1119)
Google Chrome (Version: 33.0.1750.154)
Google Earth (Version: 7.1.2.2041)
Google Update Helper (Version: 1.3.23.9)
GoToMeeting 6.0.0.1259 (Version: 6.0.0.1259)
Haali Media Splitter
HiJackThis (Version: 1.0.0)
HitmanPro 3.7 (Version: 3.7.9.216)
Inhatch web plugins (Version: 0.7.61)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.5.4.1001)
Intel® Turbo Boost Technology Driver (Version: 01.00.01.1002)
iTunes (Version: 7.3.0.54)
Java 7 Update 25 (64-bit) (Version: 7.0.250)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Java™ 6 Update 16 (64-bit) (Version: 6.0.160)
Java™ 7 (64-bit) (Version: 7.0.0)
Juniper Networks Cache Cleaner 6.5.0 (Version: 6.5.0.15991)
Juniper Networks Setup Client (Version: 2.1.4.7717)
Junk Mail filter update (Version: 15.4.3502.0922)
K-Lite Codec Pack 7.6.0 (Full) (Version: 7.6.0)
LastPass (uninstall only)
LightBox Free Image Editor
Macrium Reflect Free Edition (Version: 5.2)
Macrium Reflect Free Edition (Version: 5.2.6433)
Macromedia Dreamweaver MX 2004 (Version: 7.0)
Macromedia Extension Manager (Version: 1.5)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Access MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Access Setup Metadata MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft DCF MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Excel MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Groove MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft InfoPath MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Lync MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Office 32-bit Components 2013 (Version: 15.0.4569.1506)
Microsoft Office OSM MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Office OSM UX MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Office Professional Plus 2013 (Version: 15.0.4569.1506)
Microsoft Office Proofing (English) 2013 (Version: 15.0.4569.1506)
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4569.1506)
Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4569.1506)
Microsoft Office Shared 32-bit MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Office Shared MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Office Shared Setup Metadata MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft OneNote MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Outlook MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft PowerPoint MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Publisher MUI (English) 2013 (Version: 15.0.4569.1506)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server Compact 3.5 SP1 English (Version: 3.5.5692.0)
Microsoft SQL Server Compact 3.5 SP1 x64 English (Version: 3.5.5692.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Word MUI (English) 2013 (Version: 15.0.4569.1506)
Mobile Broadband HL Service (Version: 22.001.16.00.03)
MpcStar 5.3 (Version: 5.3)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyDriveConnect 3.3.0.1342 (Version: 3.3.0.1342)
Nitro Reader 3 (Version: 3.5.2.10)
Oracle VM VirtualBox 4.3.10 (Version: 4.3.10)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506)
PDFCreator (Version: 1.2.0)
PHOTOfunSTUDIO 5.0 (Version: 5.00.012)
Picasa 3 (Version: 3.9)
PMB (Version: 5.0.00.10260)
PMB VAIO Edition plug-in (Click to Disc) (Version: 3.0.01.11230)
PMB VAIO Edition plug-in (VAIO Movie Story) (Version: 2.0.01.12010)
PrimoPDF -- brought to you by Nitro PDF Software (Version: 5)
QuickTime (Version: 7.74.80.86)
Rapport (Version: 3.5.1108.52)
Realtek HDMI Audio Driver for ATI (Version: 6.0.1.5992)
Realtek High Definition Audio Driver (Version: 6.0.1.5992)
Revo Uninstaller 1.95 (Version: 1.95)
ROBLOX Player for sony
Roxio Central Audio (Version: 3.8.0)
Roxio Central Copy (Version: 3.8.0)
Roxio Central Core (Version: 3.8.0)
Roxio Central Data (Version: 3.8.0)
Roxio Central Tools (Version: 3.8.0)
Roxio Easy Media Creator 10 LJ (Version: 10.3)
Roxio Easy Media Creator Home (Version: 10.3.183)
SA Dictionary 2008 Beta 4 (Version: 6.6.12)
Sage 50 Accounts 2011 (Version: 17.0.12.196)
Sandboxie 4.08 (64-bit) (Version: 4.08)
SARDU 2.0.6.5 (Version: 2.0.6.5)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition
Setting Utility Series (Version: 5.1.0.11200)
Shared C Run-time for x64 (Version: 10.0.0)
Skype™ 6.14 (Version: 6.14.104)
SMS V4 (Version: 4.0)
Sony Home Network Library (Version: 2.0.1.10160)
SpeedFan (remove only)
SUPERAntiSpyware (Version: 5.6.1042)
swMSM (Version: 12.0.0.1)
Unchecky v0.2.10 (Version: 0.2.10)
Unity Web Player (Version: )
Update for Microsoft Lync 2013 (KB2817678) 64-Bit Edition
Update for Microsoft Lync 2013 (KB2863908) 64-Bit Edition
Update for Microsoft Outlook 2013 (KB2863911) 64-Bit Edition
VAIO - PMB VAIO Edition Guide (Version: 1.5.00.03020)
VAIO - PMB VAIO Edition plug-in (VAIO Image Optimizer) (Version: 1.4.00.12020)
VAIO Care (Version: 6.4.2.11150)
VAIO Content Metadata Intelligent Analyzing Manager (Version: 3.6.0.09250)
VAIO Content Metadata Intelligent Network Service Manager (Version: 3.6.0.09080)
VAIO Content Metadata Manager Settings (Version: 3.6.0.09240)
VAIO Content Metadata XML Interface Library (Version: 3.6.0.09080)
VAIO Content Monitoring Settings (Version: 2.4.1.09180)
VAIO Control Center (Version: 4.1.1.07160)
VAIO Data Restore Tool (Version: 1.2.0.09150)
VAIO DVD Menu Data (Version: 2.0.00.10130)
VAIO Entertainment Platform (Version: 3.6.0.09150)
VAIO Event Service (Version: 5.1.0.12010)
VAIO Gate (Version: 2.2.1.09131)
VAIO Gate Default (Version: 1.0.0.10290)
VAIO Hardware Diagnostics (Version: 3.9.1)
VAIO Marketing Tools
VAIO Media plus (Version: 2.0.1.10160)
VAIO Media plus Opening Movie (Version: 1.2.0.09100)
VAIO Movie Story Template Data (Version: 2.0.00.09240)
VAIO Original Function Settings (Version: 2.0.0.07010)
VAIO Personalization Manager (Version: 2.0.0.06220)
VAIO Power Management (Version: 5.0.0.11300)
VAIO Premium Partners (Version: 1.0)
VAIO Quick Web Access (Version: 1.3.1.7)
VAIO screensaver (Version: 1.0.0.0)
VAIO Smart Network (Version: 3.3.1.08110)
VAIO Transfer Support (Version: 1.1.2.06030)
VAIO Wallpaper Contents (Version: 2.0.0.06010)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
Veetle TV 0.9.18 (Version: 0.9.18)
VEMS Revision 03 (Version: 1.00.0000)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio C++ 10.0 Runtime (Version: 10.0.0)
VLC media player 2.0.2 (Version: 2.0.2)
VU5x86 (Version: 1.0.0)
WebDwarf V2 (Version: 2.92.08)
WebEx
WebM Media Foundation Components (Version: 1.0.1.0)
WhoCrashed 5.01
WIDCOMM Bluetooth Software (Version: 6.5.1.4100)
Windows 7 USB/DVD Download Tool (Version: 1.0.30)
Windows Driver Package - Broadcom Bluetooth  (09/09/2009 6.2.0.9405) (Version: 09/09/2009 6.2.0.9405)
Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800) (Version: 07/28/2009 6.2.0.9800)
Windows Installer Clean Up (Version: 3.00.00.0000)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR 5.01 (64-bit) (Version: 5.01.0)
WinZip (Version:  9.0  (6028))
Yahoo! BrowserPlus 2.9.8
ZoneAlarm Firewall (Version: 11.0.000.057)
ZoneAlarm Security (Version: 11.0.000.020)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 50%
Total physical RAM: 3950.1 MB
Available physical RAM: 1951.38 MB
Total Pagefile: 7898.38 MB
Available Pagefile: 5487.98 MB
Total Virtual: 4095.88 MB
Available Virtual: 3964.78 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:453.84 GB) (Free:237.03 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\SONY-VAIO
 
ADMIN                    Administrator            Guest                    
Iliana                   new                      sony                     
 
========================= Minidump Files ==================================
 
No minidump file found
 
========================= Restore Points ==================================
 
04-04-2014 20:10:39 VAIO Care Automatic Restore Point
04-04-2014 20:21:44 VAIO Care Automatic Restore Point
04-04-2014 21:01:40 Revo Uninstaller's restore point - Media Gallery
04-04-2014 21:03:50 Removed Media Gallery
04-04-2014 22:48:49 PROPLUS
05-04-2014 11:04:06 Windows Update
06-04-2014 07:33:47 Installed Oracle VM VirtualBox 4.3.10
07-04-2014 19:42:47 Windows Modules Installer
07-04-2014 20:33:05 Installed Java™ 7 (64-bit)
 
**** End of log ****


#7 scorpion73

scorpion73
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:03:31 PM

Posted 09 April 2014 - 03:27 PM

Hello

 

some updates.

laptop has not been used for the last two days since above logs were posted. Today on attempt to start the computer, it ended with 



#8 scorpion73

scorpion73
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:03:31 PM

Posted 09 April 2014 - 03:55 PM

it ended with Windows Boot Manager on black screen with the option to choose an operating system to start however the keyboard was inactive. after several attempts, succeeded to load the windows but when chrome browser was opened and started typing the web address, ( it could be a coincidence) the sound was muted/unmuted again and various symbols were typed in the browser. shortly after keyboard became inactive again. my better half told me now that this happened to her too few days ago but I didn't know it and didn't put it in my initial post. after restarting the computer, same thing happened, Windows Boot Manager, inactive keyboard, then computer started checkdisk and on completion, windows was loaded. when web page was opened and trying to type something, again various symbols were typed and/or web page was returned to home page.

 

any suggestions, please, will be much appreciated. thank you.



#9 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:02:31 PM

Posted 09 April 2014 - 06:44 PM

Hi

 

I'm planning to come back to you with the next steps in 24hours.


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#10 scorpion73

scorpion73
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:03:31 PM

Posted 10 April 2014 - 10:22 AM

Hi thank you.



#11 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:02:31 PM

Posted 10 April 2014 - 05:54 PM

Hi

Please do the following next:

:step1:

  • Launch Malwarebytes' Anti-Malware (MBAM)
  • Click on the tab update, then click Check for Updates
  • If an update is found, it will download and install the latest version.
  • Then on the Scanner tab select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the full contents of the log in your next reply.

 
Note: Be sure to restart the computer.
 
The log can also be found here:
C:\Users\<Username>\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt


:step2:

I'd like us to scan your machine with ESET Online Scanner:
 
Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.
 
Note: Vista / Windows 7 / Windows 8 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.
 

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png  
       icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • On ESET: Click the Back button, then the Finish button.

Note: Do not forget to re-enable your Anti-Virus application after running the above scan!


:step3:
Please go to logo.gif
Browse to the following file path in the "Suspicious files to scan" field on the top of the page:

C:\Windows\system32\drivers\hardlock.sys
 
Click on the Upload button
If a pop-up appears saying the file has been scanned already, please select the ReScan button.
Once the Scan is completed, click on the "Copy to Clipboard" button. This will copy the link of the report into the  
Clipboard.
 
Paste the contents of the Clipboard in your next reply.


:step4:

How is the computer running now?

 


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#12 scorpion73

scorpion73
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:03:31 PM

Posted 11 April 2014 - 05:12 PM

Hi

 

following the instructions, I did a scan with MBAM and here is the log:

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 11/04/2014
Scan Time: 07:49:02
Logfile: mbam.txt
Administrator: Yes

Version: 2.00.1.1004
Malware Database: v2014.04.11.05
Rootkit Database: v2014.03.27.01
License: Premium
Malware Protection: Disabled
Malicious Website Protection: Disabled
Chameleon: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: sony

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 401981
Time Elapsed: 39 min, 59 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

 

MBAM log doesn't show any malicious items but I did quarantine many PUP after the scan. Log is saved in MBAM but I cannot extract it, when doing so I get a clean log, saying no malicious items found.

and looking at the new version of MBAM, I cannot see an option to extract the quarantine file where all these PUPs are. If you can assist, it would be grateful.

now I continue with ESET scan, it will take some time until next post. 

 

Looking at the quarantine log in MBAM which I cannot extract, I am writing the files:

 

PUP.Optional.GetNow.A - type: Registry key - 1 key found only

PUP.Optional.Bandoo.A - type: Registry key - 1 key found only

PUP.Optional.PriceGong.A - type: Registry key - 1 key found only

PUP.Optional.Datamngr.A - type: Registry key - 1 key found only

PUP.Optional.MindSpark.A - type: file - rest of the files, more than 30

 

I will come back with ESET scan soon



#13 scorpion73

scorpion73
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:03:31 PM

Posted 12 April 2014 - 03:31 AM

ESET scan log:

 

C:\AdwCleaner\Quarantine\C\Program Files (x86)\Windows iLivid Toolbar\Datamngr\ToolBar\dtUser.exe.vir probably a variant of Win32/Toolbar.Visicom.C potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Windows iLivid Toolbar\Datamngr\ToolBar\searchquband.dll.vir a variant of Win32/Toolbar.Visicom.A potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Windows iLivid Toolbar\Datamngr\x64\IEBHO.dll.vir a variant of Win64/Toolbar.SearchSuite.A potentially unwanted application deleted - quarantined
C:\CCE_Quarantine\{1213F158-667C-4426-A127-4C5CA8BE05B7} a variant of Win32/Keygen.CW potentially unsafe application deleted - quarantined
C:\CCE_Quarantine\{263638B4-C7AD-462B-8584-CEA042660A04} a variant of Win32/Monitor.KidLogger.A potentially unsafe application deleted - quarantined
C:\CCE_Quarantine\{2D3DD056-4E58-400E-A4B8-9AA5EE98C7B2} a variant of Win32/Monitor.KidLogger.A potentially unsafe application deleted - quarantined
C:\CCE_Quarantine\{37E0D814-C995-4364-8DD6-7C49AF252D12} a variant of Win32/Monitor.KidLogger.A potentially unsafe application deleted - quarantined
C:\CCE_Quarantine\{6A229095-BAF6-4732-B1D4-14912DCB0A27} Win32/MyWaySpeed potentially unsafe application deleted - quarantined
C:\CCE_Quarantine\{8AAAF2AF-A24E-47F6-A99E-467531C86832} Win32/MyWaySpeed potentially unsafe application deleted - quarantined
C:\CCE_Quarantine\{A6052A79-909F-46C3-9680-9F1C2EB00943} a variant of Win32/Monitor.KidLogger.A potentially unsafe application deleted - quarantined
C:\CCE_Quarantine\{AB45F462-2215-4EAF-BA58-A9A0ACBC753E} a variant of Win32/Keygen.CW potentially unsafe application deleted - quarantined
C:\CCE_Quarantine\{B8E2615A-285F-4CBD-A28C-D14C53304F19} a variant of Win32/Keygen.CW potentially unsafe application deleted - quarantined
C:\Downloads\Anti-Virus and Cleaners\Cleaner\ccsetup319.exe Win32/Bundled.Toolbar.Google.E potentially unsafe application deleted - quarantined
C:\Earth Alerts\Softonic-English.exe a variant of Win32/Toolbar.Conduit.B potentially unwanted application deleted - quarantined
C:\KAMEN\AntiVirus - Spyware & Malware Software\MALWARE REMOVAL\SARDU_2.0.6.5.zip Win32/InstallMonetizer.AN potentially unwanted application deleted - quarantined
C:\KAMEN\AntiVirus - Spyware & Malware Software\MALWARE REMOVAL\Setup.exe Win32/InstallMonetizer.AN potentially unwanted application deleted - quarantined
C:\KAMEN\ANTIVIRUS PROGRAMS\AntiVirus - Spyware & Malware Software\zaSetupWeb_110_000_057-5140_01.exe Win32/Toolbar.Conduit potentially unwanted application deleted - quarantined
C:\KAMEN\ANTIVIRUS PROGRAMS\AntiVirus - Spyware & Malware Software\new\disk-defrag-setup.exe Win32/InstallMonetizer.AQ potentially unwanted application deleted - quarantined
C:\KAMEN\Copy of USB\Flash drive\Anti-Virus and Cleaners\Cleaner\ccsetup319.exe Win32/Bundled.Toolbar.Google.E potentially unsafe application deleted - quarantined
C:\KAMEN\Microsoft FIX IT\SevenQFInstall.exe Win32/DownWare.W potentially unwanted application deleted - quarantined
C:\mobile LG Iliana\fujitsu\MOITE ZA DISK\DOWNLOADS\BEA_Economic_Analysis_Glossary.exe a variant of Win32/Toolbar.Conduit.B potentially unwanted application deleted - quarantined
C:\Program Files (x86)\RadioPI_4e\bar\1.bin\4eimpipe.exe Win32/Toolbar.MyWebSearch.W potentially unwanted application deleted - quarantined
C:\Users\Iliana\AppData\LocalLow\Softonic-Eng7\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.5.3\bin\PriceGongIE.dll a variant of Win32/PriceGong.A potentially unwanted application deleted - quarantined
C:\Users\sony\Downloads\ccsetup410.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\sony\Downloads\ccsetup411pro.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
 

 

VirSCAN.org Scanned Report :
Scanned time   : 2014/04/12 08:50:41 (BST)
Scanner results: Scanners did not find malware!
File Name      : hardlock.sys
File Size      : 296448 byte
File Type      : PE32+ executable for MS Windows (native) Mono/.Net assembly
MD5            : 091582da724f54830012e3faaf2f1d1a
SHA1           : 6fea4f7294823219235ce2c5eff4bb3a15e9f078
Online report  : http://r.virscan.org/2560e2a8bc62876793e2ca025227aa2f

Scanner        Engine Ver      Sig Ver           Sig Date    Time   Scan result
a-squared      5.1.0.4         00050000000000    0005-00-00  0.32   -
AhnLab V3      2013.05.28.00   2013.05.28        2013-05-28  5.55   -
AntiVir        1.9.159.0       1.9.2.0           7.11.142.34 11.36  -
Antiy          2.0.18          2.0.18.           0002-18-00  0.21   -
Arcavir        2011            201404070015      2014-04-07  7.45   -
Authentium     5.3.14          5.3.14            0005-14-00  0.80   -
AVAST!         4.7.4           140408-2          2014-04-08  0.24   -
AVG            10.0.1405       2109/6813         2014-04-07  0.26   -
BitDefender    7.90123.118128787.54031           2014-04-09  8.17   -
ClamAV         0.97.8          18762             2014-04-09  0.55   -
Comodo         5.1             15023             2013-12-15  10.42  -
CP Secure      1.3.0.5         2013.10.19        2013-10-19  0.21   -
Dr.Web         5.0.2.3300      2014.04.11        2014-04-11  27.83  -
F-Prot         4.6.2.117       20140201          2014-02-01  0.92   -
F-Secure       7.02.73807      2014.04.08.04     2014-04-08  0.34   -
Fortinet       4.3.392         16.549            2014-04-10  0.17   -
GData          22.14422        20131216          2013-12-16  12.78  -
ViRobot        20140324        2014.03.24        2014-03-24  0.43   -
Ikarus         T3.1.32.10.0    ..1.32.10.0.      --1.32.10.0 3.61   -
JiangMin       16.0.100        2013.02.09        2013-02-09  38.78  -
Kaspersky      5.5.10          2013.07.09        2013-07-09  0.00   -
KingSoft       2009.2.5.15     2014.4.9.9        2014-04-09  1.05   -
McAfee         5400.1158       5805              2009-11-17  5.21   -
Microsoft      1.10100         2013.12.15        2013-12-15  9.62   -
NOD32          3.0.21          9357              2014-01-30  0.28   -
Norman         6.8.3           201305031020      2013-05-03  0.25   -
Panda          9.05.01         2013.01.22        2013-01-22  21.63  -
Trend Micro    9.500-1005      10.716.03         2014-04-09  0.31   -
Quick Heal     11.00           2014.01.03        2014-01-03  1.87   -
Rising         20.0            24.46.00.03       2013-01-21  0.34   -
Sophos         3.16.1          4.62              2014-04-09  3.15   -
Sunbelt        24328           24328             2013-12-13  0.95   -
Symantec       1.3.0.24        20130909.001      2013-09-09  0.60   -
nProtect       20131227.01     16183671          2013-12-27  2.52   -
The Hacker     6.8.0.5         v00379            2013-12-15  0.73   -
VBA32          3.12.26.0       20140408.0706     2014-04-08  3.06   -
VirusBuster    5.5.2.13        15.0.704.0/154044542014-02-11  11.33  -

 

PC is still the same, sound is muted or reduced randomly and keyboard becomes inactive or typing various symbols/letters uncontrolled.

what shall I do further?



#14 scorpion73

scorpion73
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:03:31 PM

Posted 12 April 2014 - 03:39 AM

by the way, to scan the hardlock.sys file, I copied it to desktop as the file doesn't show up when browsing it from virscan.org page, I scanned it with virustotal and jetti and result is same, clean file.



#15 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:02:31 PM

Posted 13 April 2014 - 09:19 AM

Hi

How is the computer running now? Do you still have the issue with the keyboard?

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users