Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Is it a virus and how to get rid of it please ?


  • Please log in to reply
14 replies to this topic

#1 domipj

domipj

  • Members
  • 137 posts
  • OFFLINE
  •  
  • Local time:05:53 PM

Posted 30 April 2014 - 02:17 AM

Hello every body,

 

I am new on this forum. So I m not shure it is the right place. I have one or more virus but I cannot take clean this situation. How can I receive your help please ?

 

Dominique



BC AdBot (Login to Remove)

 


m

#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:53 AM

Posted 01 May 2014 - 01:20 PM

Hello and welcome Dominique.

Can you please run these..


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 domipj

domipj
  • Topic Starter

  • Members
  • 137 posts
  • OFFLINE
  •  
  • Local time:05:53 PM

Posted 03 May 2014 - 06:22 AM

Thank you so much for your help. I run all the programs already but I don't know how I can post the result !

 

You should have receive them. Else shall I copy past ? in the reply ?

 

 

best regards

Dominique


Edited by domipj, 03 May 2014 - 06:32 AM.


#4 Queen-Evie

Queen-Evie

    Official Bleepin' G.R.I.T.S. (and proud of it)


  • Staff Emeritus
  • 16,485 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:My own little corner of the universe (somewhere in Alabama). It's OK, they know me here
  • Local time:05:53 AM

Posted 03 May 2014 - 09:30 AM

Please paste scan results in a new reply in this topic.



#5 domipj

domipj
  • Topic Starter

  • Members
  • 137 posts
  • OFFLINE
  •  
  • Local time:05:53 PM

Posted 03 May 2014 - 09:39 AM

# AdwCleaner v3.205 - Report created 02/05/2014 at 16:11:44
# Updated 28/04/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : VenusDominique - VENUS
# Running from : C:\Users\VenusDominique.Venus\Desktop\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\avg-secure-search-installer_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F189DF5-2D05-472B-9091-84D9848AE48B}{d458591c}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4A40A2A9-DD1C-11CE-B7A6-00AA006EC3D4}
Key Deleted : HKCU\Software\RegisteredApplicationsEx
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17041
 
 
-\\ Mozilla Firefox v28.0 (fr)
 
-\\ Google Chrome v34.0.1847.131
 
*************************
 
AdwCleaner[R10].txt - [1659 octets] - [17/03/2014 13:24:14]
AdwCleaner[R11].txt - [1073 octets] - [19/03/2014 11:08:44]
AdwCleaner[R12].txt - [1986 octets] - [17/04/2014 11:06:18]
AdwCleaner[R13].txt - [1828 octets] - [02/05/2014 09:33:01]
AdwCleaner[R9].txt - [837 octets] - [03/03/2014 20:11:12]
AdwCleaner[S10].txt - [1737 octets] - [17/03/2014 13:27:07]
AdwCleaner[S11].txt - [1138 octets] - [19/03/2014 11:32:27]
AdwCleaner[S12].txt - [2064 octets] - [17/04/2014 11:08:21]
AdwCleaner[S13].txt - [1583 octets] - [02/05/2014 16:11:44]
AdwCleaner[S8].txt - [2614 octets] - [18/02/2014 06:07:11]
AdwCleaner[S9].txt - [899 octets] - [03/03/2014 20:16:46]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S13].txt - [1763 octets] ##########
 


#6 domipj

domipj
  • Topic Starter

  • Members
  • 137 posts
  • OFFLINE
  •  
  • Local time:05:53 PM

Posted 03 May 2014 - 09:41 AM

ESETScan
 
C:\AdwCleaner\Quarantine\C\Program Files (x86)\FilesFrog Update Checker\update_checker.exe.vir Win32/Somoto.D potentially unwanted application
C:\ProgramData\Speed Streamer\SpeedStreamer_x64.dll a variant of Win64/SProtector.B potentially unwanted application
C:\Users\All Users\Speed Streamer\SpeedStreamer_x64.dll a variant of Win64/SProtector.B potentially unwanted application
C:\Users\VenusDominique.Venus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6VGPH258\FLV_Media_Player[1].exe a variant of Win32/FirseriaInstaller.G potentially unwanted application
C:\Users\VenusDominique.Venus\AppData\Local\Viber\Helper.dll a variant of Win32/Toolbar.SearchSuite.P potentially unwanted application
C:\Users\VenusDominique.Venus\Desktop\Adobe CS4 Activation Patch\Activation Blocker.cmd BAT/HostsChanger.A potentially unsafe application
C:\Users\VenusDominique.Venus\Desktop\Cle avril 2014\Admin\Adobe Dreamweaver CS4\Adobe CS4 Activation Patch\Activation Blocker.cmd BAT/HostsChanger.A potentially unsafe application
C:\Users\VenusDominique.Venus\Desktop\thu2014\2013\Thu.SATURNE\Application Data\0V1L2Z2Z1T1I1L1T\CCleaner Packages\uninstaller.exe Win32/InstallCore.AZ potentially unwanted application
C:\Users\VenusDominique.Venus\Downloads\ccsetup411pro (1).exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\VenusDominique.Venus\Downloads\ccsetup411pro.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\VenusDominique.Venus\Downloads\Installer.exe Win32/OutBrowse.M potentially unwanted application
C:\Users\VenusDominique.Venus\Downloads\m4a-to-mp3-converter-8.1.exe Win32/Somoto.E potentially unwanted application
D:\Programs\SoftonicDownloader78354.exe Win32/SoftonicDownloader.A potentially unwanted application
D:\Programs\Photos - video\Nero\Nero 8\Nero PhotoShow Express\nero_photoshow_express_5_setup.exe Win32/Toolbar.AskSBar potentially unwanted application
D:\Public document's\computer management\download\ImgBurn_2.5.7.0.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application
D:\Public document's\computer management\download\Integrated_BrotherSoft_TB.exe a variant of Win32/Toolbar.Conduit.B potentially unwanted application
D:\Public document's\Privé\Dominique\trojankiller-setup.exe a variant of Win32/1AntiVirus potentially unwanted application
D:\Public document's\Privé\Dominique\Downloads\Adobe Dreamweaver CS4\DREAMWEAVER SETUP.exe BAT/HostsChanger.A potentially unsafe application
D:\System Volume Information\_restore{54F5DB25-D219-4B0B-9F5F-C6B25ED064EE}\RP30\A0009723.exe Win32/Toolbar.AskSBar potentially unwanted application
D:\System Volume Information\_restore{54F5DB25-D219-4B0B-9F5F-C6B25ED064EE}\RP30\A0009867.exe probably a variant of Win32/1AntiVirus potentially unwanted application
D:\System Volume Information\_restore{54F5DB25-D219-4B0B-9F5F-C6B25ED064EE}\RP31\A0013564.exe Win32/SoftonicDownloader.A potentially unwanted application
J:\microprogram\Programmes\SoftonicDownloader78354.exe Win32/SoftonicDownloader.A potentially unwanted application
J:\microprogram\Programmes\Nero 8\Toolbar.exe Win32/Toolbar.AskSBar potentially unwanted application
J:\microprogram\Programmes\Nero 8\Nero PhotoShow Express\nero_photoshow_express_5_setup.exe Win32/Toolbar.AskSBar potentially unwanted application
X:\Users\All Users\Speed Streamer\SpeedStreamer_x64.dll a variant of Win64/SProtector.B potentially unwanted application
X:\Windows.old\Documents and Settings\VenusDominique.VENUS\Local Settings\Application Data\uTorrentBar\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.1.1\bin\PriceGongIE.dll a variant of Win32/PriceGong.A potentially unwanted application
Y:\Documents and Settings\VenusDominique.VENUS\My Documents\Downloads\FreeDVDVideoConverter.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application
Y:\Documents and Settings\VenusDominique.VENUS\My Documents\Downloads\Adobe Dreamweaver CS4\DREAMWEAVER SETUP.exe BAT/HostsChanger.A potentially unsafe application
Y:\Documents and Settings\VenusDominique.VENUS\VenusDominique\Local Settings\Application Data\uTorrentBar\plugins\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}\3.1.1\bin\PriceGongIE.dll a variant of Win32/PriceGong.A potentially unwanted application
Y:\Documents and Settings\VenusDominique.VENUS\VenusDominique\My Documents\Downloads\Adobe Dreamweaver CS4\DREAMWEAVER SETUP.exe BAT/HostsChanger.A potentially unsafe application
Y:\laptopt\manu\Documents and Settings\dominique\My Documents\Downloads\Integrated_BrotherSoft_TB.exe a variant of Win32/Toolbar.Conduit.B potentially unwanted application
Y:\Program Files\Common Files\DVDVideoSoft\AskTB\ApnIC.dll a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application
Y:\Program Files\Common Files\DVDVideoSoft\AskTB\ApnToolbarInstaller.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application
Y:\Program Files\Conduit\Community Alerts\Alert1.dll Win32/Toolbar.Conduit.Y potentially unwanted application
Y:\Program Files\ConduitEngine\ConduitEngine.dll a variant of Win32/Toolbar.Conduit.B potentially unwanted application
Y:\Program Files\Search_USA\tbSea1.dll a variant of Win32/Toolbar.Conduit.B potentially unwanted application
 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by VenusDominique (administrator) on 02-05-2014 at 09:20:42
Running from "C:\Users\VenusDominique.Venus\Desktop"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
TeamViewer VPN Adapter = Local Area Connection 2 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection" nexthop=192.168.1.1 publish=Yes
add address name="Local Area Connection" address=192.168.1.12 mask=255.255.255.0
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Venus
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Ethernet adapter Local Area Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : TeamViewer VPN Adapter
   Physical Address. . . . . . . . . : 00-FF-EE-92-C2-C4
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 00-27-0E-24-38-25
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::5d92:fce5:fdcb:9dce%10(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.12(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 234891022
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-A5-A1-25-00-27-0E-24-38-25
   DNS Servers . . . . . . . . . . . : 8.8.8.8
                                       8.8.4.4
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.{EE92C2C4-A96A-4AAB-82C7-A37310D735F2}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 9:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{D4228664-ED2C-4BA0-893D-02915763FECB}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  google-public-dns-a.google.com
Address:  8.8.8.8
 
Name:    google.com
Addresses:  2404:6800:4005:800::100e
 173.194.127.169
 173.194.127.162
 173.194.127.161
 173.194.127.166
 173.194.127.174
 173.194.127.160
 173.194.127.163
 173.194.127.165
 173.194.127.168
 173.194.127.164
 173.194.127.167
 
 
Pinging google.com [74.125.128.138] with 32 bytes of data:
Reply from 74.125.128.138: bytes=32 time=33ms TTL=51
Reply from 74.125.128.138: bytes=32 time=34ms TTL=51
 
Ping statistics for 74.125.128.138:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 33ms, Maximum = 34ms, Average = 33ms
Server:  google-public-dns-a.google.com
Address:  8.8.8.8
 
Name:    yahoo.com
Addresses:  98.139.183.24
 98.138.253.109
 206.190.36.45
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=288ms TTL=47
Reply from 98.138.253.109: bytes=32 time=292ms TTL=47
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 288ms, Maximum = 292ms, Average = 290ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 16...00 ff ee 92 c2 c4 ......TeamViewer VPN Adapter
 10...00 27 0e 24 38 25 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.12    276
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.12    276
     192.168.1.12  255.255.255.255         On-link      192.168.1.12    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.12    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.12    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.12    276
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0      192.168.1.1  Default 
===========================================================================
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 10    276 fe80::/64                On-link
 10    276 fe80::5d92:fce5:fdcb:9dce/128
                                    On-link
  1    306 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (05/02/2014 05:12:53 AM) (Source: PerfNet) (User: )
Description: 
 
Error: (05/01/2014 08:23:44 PM) (Source: Application Error) (User: )
Description: Faulting application name: tunnel.exe, version: 6.1.7601.17514, time stamp: 0x50063047
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521ea8e7
Exception code: 0xc0000005
Fault offset: 0x0002e41b
Faulting process id: 0x350
Faulting application start time: 0xtunnel.exe0
Faulting application path: tunnel.exe1
Faulting module path: tunnel.exe2
Report Id: tunnel.exe3
 
Error: (05/01/2014 01:45:11 AM) (Source: Microsoft-Windows-RestartManager) (User: Venus)
Description: Application or service 'Google Chrome' could not be shut down.
 
Error: (05/01/2014 01:06:47 AM) (Source: Application Error) (User: )
Description: Faulting application name: mbam.exe, version: 1.0.0.500, time stamp: 0x533d8de2
Faulting module name: mbamcore.dll, version: 0.6.7.0, time stamp: 0x5315ec55
Exception code: 0xc0000005
Fault offset: 0x00035153
Faulting process id: 0x904
Faulting application start time: 0xmbam.exe0
Faulting application path: mbam.exe1
Faulting module path: mbam.exe2
Report Id: mbam.exe3
 
Error: (04/30/2014 07:23:29 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.
 
Error: (04/30/2014 05:40:12 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 24
 
Error: (04/30/2014 05:40:12 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 23
 
Error: (04/30/2014 05:40:12 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 22
 
Error: (04/30/2014 05:40:12 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 21
 
Error: (04/30/2014 05:40:12 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 20
 
 
System errors:
=============
Error: (05/02/2014 05:13:03 AM) (Source: WMPNetworkSvc) (User: )
Description: Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.
 
Error: (05/02/2014 05:13:00 AM) (Source: Service Control Manager) (User: )
Description: The Windows Search service hung on starting.
 
Error: (05/02/2014 05:12:30 AM) (Source: Service Control Manager) (User: )
Description: The Internet Connection Sharing (ICS) service hung on starting.
 
Error: (05/02/2014 05:10:49 AM) (Source: Service Control Manager) (User: )
Description: The TeamViewer 9 service failed to start due to the following error: 
%%1053
 
Error: (05/02/2014 05:10:49 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the TeamViewer 9 service to connect.
 
Error: (05/02/2014 05:08:48 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 05:05:57 on ?02/?05/?2014 was unexpected.
 
Error: (05/01/2014 08:27:11 PM) (Source: WMPNetworkSvc) (User: )
Description: Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.
 
Error: (04/30/2014 08:01:39 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: 490@01010004
 
Error: (04/30/2014 08:01:39 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: 490@01010004
 
Error: (04/30/2014 08:01:39 AM) (Source: VDS Basic Provider) (User: )
Description: Unexpected failure. Error code: 490@01010004
 
 
Microsoft Office Sessions:
=========================
Error: (08/11/2013 00:00:46 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 59533 seconds with 120 seconds of active time.  This session ended with a crash.
 
Error: (08/10/2013 00:00:24 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 86349 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error: (08/09/2013 00:01:01 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 86406 seconds with 480 seconds of active time.  This session ended with a crash.
 
Error: (08/08/2013 00:00:45 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 86414 seconds with 1980 seconds of active time.  This session ended with a crash.
 
Error: (08/07/2013 00:00:08 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 142089 seconds with 2400 seconds of active time.  This session ended with a crash.
 
Error: (07/18/2013 08:19:48 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 15 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error: (07/10/2013 00:00:03 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 271269 seconds with 60 seconds of active time.  This session ended with a crash.
 
Error: (07/04/2013 00:00:34 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 105246 seconds with 180 seconds of active time.  This session ended with a crash.
 
Error: (07/01/2013 05:10:39 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 14 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error: (06/28/2013 01:15:33 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 0 seconds with 0 seconds of active time.  This session ended with a crash.
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-04-29 07:53:23.576
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume9\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-29 07:53:23.236
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume9\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-29 07:53:22.885
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume9\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-29 07:53:22.515
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume9\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-29 07:35:03.473
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume9\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-29 07:35:03.073
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume9\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-06 18:34:41.813
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-04-06 18:34:41.439
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-09-23 16:45:18.802
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-09-23 16:41:46.027
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume6\Program Files (x86)\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
3100_3200_3300_Help (Version: 82.0.242.000)
3100_3200_3300trb (Version: 82.0.242.000)
3300 (Version: 130.0.365.000)
64 Bit HP CIO Components Installer (Version: 7.2.8)
7000E809a (Version: 140.0.000.000)
7000E809a_eDocs (Version: 140.0.000.000)
7000E809a_Help (Version: 1.00.0000)
ACDSee Pro 2 (Version: 2.0.238)
Adobe Acrobat 9 Pro Extended - English, Français, Deutsch (Version: 9.0.0)
Adobe AIR (Version: 1.5.3.9120)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe CSI CS4 (Version: 1)
Adobe CSI CS4 x64 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Dreamweaver CS4 (Version: 10.0)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Flash Player 13 ActiveX (Version: 13.0.0.206)
Adobe Flash Player 13 Plugin (Version: 13.0.0.206)
Adobe Media Player (Version: 0.0.0)
Adobe Media Player (Version: 1.1)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe Photoshop CS5 (Version: 12.0)
Adobe Reader X (10.1.9) - Français (Version: 10.1.9)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe Type Support CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe XMP Panels CS4 (Version: 2.0)
aerosoft's - Aerosoft Airport Pack (Version: 1.00)
AIO_CDB_ProductContext (Version: 130.0.365.000)
AIO_CDB_Software (Version: 130.0.365.000)
AIO_Scan (Version: 130.0.421.000)
Air Playit 2.0.0
Apple Application Support (Version: 3.0.1)
Apple Mobile Device Support (Version: 7.1.1.3)
Apple Software Update (Version: 2.1.3.127)
Assistant Publication de sites Web Microsoft 1.53
BitComet 1.37 64-bit (Version: 1.37)
Bonjour (Version: 3.0.0.10)
BPDSoftware (Version: 140.0.000.000)
BPDSoftware_Ini (Version: 1.00.0000)
BufferChm (Version: 140.0.213.000)
Connect (Version: 1.0.0.1)
Copy (Version: 130.0.428.000)
D3DX10 (Version: 15.4.2368.0902)
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 140.0.213.000)
DocProc (Version: 13.0.0.0)
Documents To Go Desktop for iOS (Version: 4.0001.010)
Dropbox (Version: 2.4.11)
Emsisoft Anti-Malware (Version: 6.0)
eMule
Fax (Version: 130.0.418.000)
File Type Advisor 1.2
FileZilla Client 3.7.4.1 (Version: 3.7.4.1)
FileZilla Server (Version: beta 0.9.41)
Firebird SQL Server - MAGIX Edition (Version: 2.0.1.13)
Free M4a to MP3 Converter 8.1
Galerie de photos (Version: 16.4.3505.0912)
GeForce Experience NvStream Client Components (Version: 1.6.28)
GIMP 2.8.10 (Version: 2.8.10)
Google Chrome (Version: 65.205.49268)
Google Drive (Version: 1.14.6059.644)
Google Talk Plugin (Version: 5.3.1.18536)
Google Update Helper (Version: 1.3.23.9)
Google Earth (Version: 7.1.2.2041)
GPBaseService2 (Version: 140.0.212.000)
gSyncit (Version: 3.7.64)
HostsMan 4.3.98 (Version: 4.3.98.0)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Officejet 7000 E809a Series (Version: 14.0)
HP Photo Creations (Version: 1.0.0.9572)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B (Version: 13.0)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HPDiagnosticAlert (Version: 1.00.0000)
HPPhotoGadget (Version: 130.0.282.000)
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000)
HPPhotosmartEssential (Version: 2.04.0000)
HPProductAssistant (Version: 140.0.213.000)
HPSSupply (Version: 140.0.212.000)
iCloud (Version: 3.1.0.40)
ICQ 8.2 (build 6870) (Version: 8.2.6870.0)
iPhone Backup Extractor (Version: 4.7.0.0)
iTunes (Version: 11.1.5.5)
Java 7 Update 51 (Version: 7.0.510)
Java Auto Updater (Version: 2.1.9.8)
Java™ 6 Update 38 (Version: 6.0.380)
jetAudio Plus VX (Version: 7.0.0)
Junk Mail filter update (Version: 16.4.3505.0912)
KaraFun Player (Version: 1.20.86.771)
K-Lite Mega Codec Pack 9.2.0 (Version: 9.2.0)
KONICA MINOLTA magicolor 1600W
kuler (Version: 2.0)
Logitech Gaming Software 5.10 (Version: 5.10.127)
Ma-Config.com (64 bits) (Version: 7.1.3.1)
MAGIX Films sur CD & DVD 4.0 e-version (Version: 4.0.4.0)
MAGIX MP3 Maker 14 deluxe Trial 9.0.3.437 (US) (Version: 9.0.3.437)
MAGIX Screenshare 4.3.6.1987 (US) (Version: 4.3.6.1987)
MAGIX Video deLuxe 2006 e-version (Version: 5.0.5.1)
Malwarebytes Anti-Malware version 2.0.1.1004 (Version: 2.0.1.1004)
MarketResearch (Version: 140.0.214.000)
MFP and Storage Server (Version: 0.09.1006.0040)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Default Manager (Version: 2.1.55.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft SkyDrive (Version: 16.4.6013.0910)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server Native Client (Version: 9.00.1399.06)
Microsoft Visual Basic 6.0 Édition Entreprise (Français)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft XML Parser (Version: 8.0.7820.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
mIRC (Version: 7.32)
Movie Maker (Version: 16.4.3505.0912)
Mozilla Firefox 28.0 (x86 fr) (Version: 28.0)
Mozilla Maintenance Service (Version: 28.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
NaturoSoft
Navigraph nDAC 3 (Version: 3.0.7.1)
Network64 (Version: 140.0.215.000)
Network64 (Version: 140.0.221.000)
NVIDIA 3D Vision Controller Driver 335.21 (Version: 335.21)
NVIDIA 3D Vision Driver 335.23 (Version: 335.23)
NVIDIA Control Panel 335.23 (Version: 335.23)
NVIDIA GeForce Experience 1.8.2.1 (Version: 1.8.2.1)
NVIDIA Graphics Driver 335.23 (Version: 335.23)
NVIDIA HD Audio Driver 1.3.30.1 (Version: 1.3.30.1)
NVIDIA Install Application (Version: 2.1002.147.1067)
NVIDIA LED Visualizer 1.0 (Version: 1.0)
NVIDIA Network Service (Version: 1.0)
NVIDIA PhysX (Version: 9.13.1220)
NVIDIA PhysX System Software 9.13.1220 (Version: 9.13.1220)
NVIDIA ShadowPlay 11.10.13 (Version: 11.10.13)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.3523)
NVIDIA Update 11.10.13 (Version: 11.10.13)
NVIDIA Update Core (Version: 11.10.13)
NVIDIA Virtual Audio 1.2.20 (Version: 1.2.20)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
OmniPage Pro 12.0 (Version: 12.00.0004)
OpenOffice.org 3.1 (Version: 3.1.9420)
paint.net 4.0 Pre-Release (Version: 4.0.0)
PDF Settings CS5 (Version: 10.0)
Photo Gallery (Version: 16.4.3505.0912)
PhotoScape
Photoshop Camera Raw (Version: 5.0)
PMB (Version: 5.6.02.06270)
ProductContext (Version: 140.0.000.000)
Qpuncture
QuickTime 7 (Version: 7.75.80.95)
Realtek Ethernet Controller Driver (Version: 7.80.218.2014)
Rosetta Stone Version 3 (Version: 3.3.7.0)
Scan (Version: 13.0.0.0)
ScanSoft RealSpeak (Version: 12.00.0000)
SHIELD Streaming (Version: 1.7.321)
Shop for HP Supplies (Version: 14.0)
Skype Click to Call (Version: 7.1.15383.6004)
Skype Web Plugin (Version: 2.9.13008.18866)
Skype™ 6.14 (Version: 6.14.104)
SmartWebPrinting (Version: 140.0.213.000)
Soda PDF 3D Reader (Version: 5.0.15.8803)
SolutionCenter (Version: 140.0.214.000)
Speed Streamer
Status (Version: 140.0.256.000)
Suite Shared Configuration CS4 (Version: 1.0)
SUPER © v2013.build.57+Recorder (2013/07/13) version v2013.buil (Version: v2013.build.57+Recorder)
SUPERAntiSpyware (Version: 5.7.1018)
TeamViewer 9 (Version: 9.0.27614)
TeamViewer Manager 9
The Rosetta Stone
Toolbox (Version: 140.0.428.000)
TotalPDFConverterOCR
TrayApp (Version: 140.0.213.000)
Ubuntu (Version: 13.10-rev284)
UnloadSupport (Version: 11.0.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2878297) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Vegas Pro 11.0 (64-bit) (Version: 11.0.425)
Viber (Version: 3.0.0.134193)
VideoStream Server v1.0.3
VirtualDrive Pro (Version: 11.5)
VSO Downloader 3.1.1.1 (Version: 3.1.1.1)
VSO EVE Network Driver version 0.4 (Version: 0.4)
WebReg (Version: 140.0.213.017)
Windows Live (Version: 16.4.3505.0912)
Windows Live Communications Platform (Version: 16.4.3505.0912)
Windows Live Essentials (Version: 16.4.3505.0912)
Windows Live Family Safety (Version: 16.4.3505.0912)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (Version: 16.4.3505.0912)
Windows Live Mail (Version: 16.4.3505.0912)
Windows Live Messenger (Version: 16.4.3505.0912)
Windows Live MIME IFilter (Version: 16.4.3505.0912)
Windows Live Photo Common (Version: 16.4.3505.0912)
Windows Live PIMT Platform (Version: 16.4.3505.0912)
Windows Live SOXE (Version: 16.4.3505.0912)
Windows Live SOXE Definitions (Version: 16.4.3505.0912)
Windows Live UX Platform (Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (Version: 16.4.3505.0912)
Windows Live Writer (Version: 16.4.3505.0912)
Windows Live Writer Resources (Version: 16.4.3505.0912)
WinPcap 4.1.2 (Version: 4.1.0.2001)
WinRAR archiver
Wondershare Dr.Fone pour iOS(Build 3.5.0.25) (Version: 3.5.0.25)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 80%
Total physical RAM: 4091.61 MB
Available physical RAM: 797.05 MB
Total Pagefile: 8181.4 MB
Available Pagefile: 2243.98 MB
Total Virtual: 4095.88 MB
Available Virtual: 3969.33 MB
 
========================= Partitions: =====================================
 
1 Drive c: (Tera 2 (xplane)) (Fixed) (Total:492.06 GB) (Free:133.25 GB) NTFS
2 Drive d: (Tera1) (Fixed) (Total:439.45 GB) (Free:107.14 GB) NTFS
3 Drive e: (NIKON D70) (Removable) (Total:0.48 GB) (Free:0.46 GB) FAT
4 Drive h: (QPUNCTURE) (CDROM) (Total:0.64 GB) (Free:0 GB) CDFS
5 Drive j: (Full Data) (Fixed) (Total:488.28 GB) (Free:146.78 GB) NTFS
6 Drive n: (French 1 & 2) (CDROM) (Total:0.69 GB) (Free:0 GB) CDFS
7 Drive o: (PICTUREPACKAGE) (CDROM) (Total:0.42 GB) (Free:0 GB) CDFS
11 Drive x: (old niew XP) (Fixed) (Total:250.98 GB) (Free:1.44 GB) NTFS
12 Drive y: (old XP) (Fixed) (Total:637.57 GB) (Free:246.68 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\VENUS
 
Administrator            Guest                    Musicplay                
VenusBrigitte            VenusDominique           VenusThu                 
 
 
**** End of log ****

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Professional x64
Ran by VenusDominique on 02.05.2014 at 16:48:29.11
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ FireFox
 
Successfully deleted the following from C:\Users\VenusDominique.Venus\AppData\Roaming\mozilla\firefox\profiles\jksx81yt.default\prefs.js
 
user_pref("extensions.MmyXOcclJJ.scode", "(function(){try{var url=window.self.location.href;if(url.indexOf(\"acebook\")>-1||url.indexOf(\"txtlnkusaolp00000800\")>-1||url.index
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 02.05.2014 at 17:20:55.92
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#7 domipj

domipj
  • Topic Starter

  • Members
  • 137 posts
  • OFFLINE
  •  
  • Local time:05:53 PM

Posted 03 May 2014 - 09:42 AM

09:27:32.0593 0x0f84  TDSS rootkit removing tool 3.0.0.34 Apr 29 2014 18:20:10
09:27:38.0316 0x0f84  ============================================================
09:27:38.0316 0x0f84  Current date / time: 2014/05/02 09:27:38.0316
09:27:38.0316 0x0f84  SystemInfo:
09:27:38.0316 0x0f84  
09:27:38.0316 0x0f84  OS Version: 6.1.7601 ServicePack: 1.0
09:27:38.0316 0x0f84  Product type: Workstation
09:27:38.0317 0x0f84  ComputerName: VENUS
09:27:38.0317 0x0f84  UserName: VenusDominique
09:27:38.0317 0x0f84  Windows directory: C:\Windows
09:27:38.0317 0x0f84  System windows directory: C:\Windows
09:27:38.0317 0x0f84  Running under WOW64
09:27:38.0317 0x0f84  Processor architecture: Intel x64
09:27:38.0317 0x0f84  Number of processors: 2
09:27:38.0317 0x0f84  Page size: 0x1000
09:27:38.0317 0x0f84  Boot type: Normal boot
09:27:38.0317 0x0f84  ============================================================
09:27:46.0160 0x0f84  KLMD registered as C:\Windows\system32\drivers\85804505.sys
09:27:46.0277 0x0f84  System UUID: {2FD8EF14-62FF-C9B5-2FD4-9619907EA2AA}
09:27:49.0040 0x0f84  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:27:49.0501 0x0f84  Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:27:49.0576 0x0f84  Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:27:49.0645 0x0f84  Drive \Device\Harddisk3\DR3 - Size: 0x1E8BE000 (0.48 Gb), SectorSize: 0x200, Cylinders: 0x3E, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
09:27:49.0647 0x0f84  Drive \Device\Harddisk4\DR4 - Size: 0x0 (0.00 Gb), SectorSize: 0x200, Cylinders: 0x0, SectorsPerTrack: 0x0, TracksPerCylinder: 0x0, Type 'W'
09:27:49.0650 0x0f84  ============================================================
09:27:49.0650 0x0f84  \Device\Harddisk0\DR0:
09:27:49.0651 0x0f84  MBR partitions:
09:27:49.0651 0x0f84  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1F5F6F80
09:27:49.0651 0x0f84  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x24BE38E4, BlocksNum 0x4FB220DD
09:27:49.0684 0x0f84  \Device\Harddisk1\DR1:
09:27:49.0687 0x0f84  MBR partitions:
09:27:49.0687 0x0f84  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x249F0000
09:27:49.0687 0x0f84  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x249F0800, BlocksNum 0x3D090000
09:27:49.0751 0x0f84  \Device\Harddisk2\DR2:
09:27:49.0795 0x0f84  MBR partitions:
09:27:49.0795 0x0f84  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x36EE8318
09:27:49.0795 0x0f84  \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0x36EE8357, BlocksNum 0x3D81D66A
09:27:49.0795 0x0f84  \Device\Harddisk3\DR3:
09:27:49.0795 0x0f84  MBR partitions:
09:27:49.0795 0x0f84  \Device\Harddisk3\DR3\Partition1: MBR, Type 0x6, StartLBA 0x3F, BlocksNum 0xF45B1
09:27:49.0795 0x0f84  ============================================================
09:27:50.0168 0x0f84  C: <-> \Device\Harddisk2\DR2\Partition2
09:27:50.0204 0x0f84  J: <-> \Device\Harddisk1\DR1\Partition2
09:27:50.0486 0x0f84  X: <-> \Device\Harddisk0\DR0\Partition1
09:27:50.0734 0x0f84  D: <-> \Device\Harddisk2\DR2\Partition1
09:27:50.0956 0x0f84  Y: <-> \Device\Harddisk0\DR0\Partition2
09:27:50.0956 0x0f84  ============================================================
09:27:50.0958 0x0f84  Initialize success
09:27:50.0958 0x0f84  ============================================================
09:28:07.0734 0x0094  ============================================================
09:28:07.0734 0x0094  Scan started
09:28:07.0734 0x0094  Mode: Manual; 
09:28:07.0734 0x0094  ============================================================
09:28:07.0734 0x0094  KSN ping started
09:28:11.0677 0x0094  KSN ping finished: true
09:28:12.0919 0x0094  ================ Scan system memory ========================
09:28:12.0920 0x0094  System memory - ok
09:28:12.0920 0x0094  ================ Scan services =============================
09:28:13.0017 0x0094  [ 620C92D6EEFA9853A3EAD41B5EB9B5FD, 72DD7297179AC6629B816DD9656D5EC3F02BE677EA01A05A5EB808180F0D775F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
09:28:13.0022 0x0094  !SASCORE - ok
09:28:13.0289 0x0094  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
09:28:13.0296 0x0094  1394ohci - ok
09:28:13.0360 0x0094  [ C3C9F30E7EF43624B327D74A07F50E16, 6ADBDB0812B2AB94533FC1FC9C4AA9D1DB5C1A208436AB1A818BF184C900B74D ] a2acc           C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys
09:28:13.0364 0x0094  a2acc - ok
09:28:13.0541 0x0094  [ 133E9D8945F8ADAA60101902DB7467B3, 110941D28A68D59DBA18F4A6C4C4D44577C4F06202E2AC0E605BD7EBD3EA5446 ] a2AntiMalware   C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
09:28:13.0674 0x0094  a2AntiMalware - ok
09:28:13.0708 0x0094  [ D27A8B7BB0E15DFBFC6B4E774EE17AD9, CBAD45B3FFFD30C34AF918009F699B65F89043D0799FC25D2472381912F86F93 ] A2DDA           C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys
09:28:13.0711 0x0094  A2DDA - ok
09:28:13.0720 0x0094  [ 05936579605018BD2BC528FF2C1AD95F, 763C2E76F9078F6A74D5BCCB4DD8A10C82AEB9C9F5A45C3706A587FA2D03E7D3 ] a2injectiondriver C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys
09:28:13.0723 0x0094  a2injectiondriver - ok
09:28:13.0734 0x0094  [ 0932B29AA1B9372FFE6D3AF8BA2ABA3A, 78312D140FB0383E797F715C9CFE53F25A60CB02A4466F6488B14E5558E609EC ] a2util          C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys
09:28:13.0735 0x0094  a2util - ok
09:28:13.0768 0x0094  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
09:28:13.0778 0x0094  ACPI - ok
09:28:13.0797 0x0094  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
09:28:13.0799 0x0094  AcpiPmi - ok
09:28:13.0883 0x0094  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:28:13.0887 0x0094  AdobeARMservice - ok
09:28:13.0976 0x0094  [ 7C7E868E1D8096ED08D80FF7712BB9D8, EB4438F3CC377728173E018A763F0D0A8D5BBA4A289F554036D06B24030D2D62 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
09:28:13.0985 0x0094  AdobeFlashPlayerUpdateSvc - ok
09:28:14.0030 0x0094  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
09:28:14.0044 0x0094  adp94xx - ok
09:28:14.0068 0x0094  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
09:28:14.0078 0x0094  adpahci - ok
09:28:14.0100 0x0094  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
09:28:14.0107 0x0094  adpu320 - ok
09:28:14.0155 0x0094  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
09:28:14.0158 0x0094  AeLookupSvc - ok
09:28:14.0205 0x0094  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
09:28:14.0222 0x0094  AFD - ok
09:28:14.0256 0x0094  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
09:28:14.0259 0x0094  agp440 - ok
09:28:14.0278 0x0094  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
09:28:14.0282 0x0094  ALG - ok
09:28:14.0310 0x0094  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
09:28:14.0312 0x0094  aliide - ok
09:28:14.0322 0x0094  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
09:28:14.0324 0x0094  amdide - ok
09:28:14.0347 0x0094  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
09:28:14.0350 0x0094  AmdK8 - ok
09:28:14.0369 0x0094  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
09:28:14.0372 0x0094  AmdPPM - ok
09:28:14.0401 0x0094  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
09:28:14.0406 0x0094  amdsata - ok
09:28:14.0428 0x0094  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
09:28:14.0437 0x0094  amdsbs - ok
09:28:14.0458 0x0094  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
09:28:14.0460 0x0094  amdxata - ok
09:28:14.0523 0x0094  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
09:28:14.0540 0x0094  AppID - ok
09:28:14.0569 0x0094  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
09:28:14.0572 0x0094  AppIDSvc - ok
09:28:14.0597 0x0094  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
09:28:14.0600 0x0094  Appinfo - ok
09:28:14.0698 0x0094  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:28:14.0703 0x0094  Apple Mobile Device - ok
09:28:14.0747 0x0094  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
09:28:14.0755 0x0094  AppMgmt - ok
09:28:14.0776 0x0094  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
09:28:14.0779 0x0094  arc - ok
09:28:14.0799 0x0094  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
09:28:14.0804 0x0094  arcsas - ok
09:28:14.0925 0x0094  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
09:28:14.0941 0x0094  aspnet_state - ok
09:28:14.0970 0x0094  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
09:28:14.0972 0x0094  AsyncMac - ok
09:28:14.0989 0x0094  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
09:28:14.0991 0x0094  atapi - ok
09:28:15.0039 0x0094  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:28:15.0059 0x0094  AudioEndpointBuilder - ok
09:28:15.0086 0x0094  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
09:28:15.0102 0x0094  AudioSrv - ok
09:28:15.0150 0x0094  [ A1F53D2A00E64679A1D81B61D2333D06, 41D4F252693A2382A1C1FB85A49DF5AAB5B21620DC09A0E1A7F66A437E3A0B3B ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
09:28:15.0153 0x0094  avgtp - ok
09:28:15.0188 0x0094  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
09:28:15.0194 0x0094  AxInstSV - ok
09:28:15.0247 0x0094  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
09:28:15.0261 0x0094  b06bdrv - ok
09:28:15.0295 0x0094  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
09:28:15.0304 0x0094  b57nd60a - ok
09:28:15.0357 0x0094  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
09:28:15.0361 0x0094  BDESVC - ok
09:28:15.0378 0x0094  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
09:28:15.0379 0x0094  Beep - ok
09:28:15.0441 0x0094  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
09:28:15.0462 0x0094  BFE - ok
09:28:15.0510 0x0094  BITCOMET_HELPER_SERVICE - ok
09:28:15.0559 0x0094  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
09:28:15.0587 0x0094  BITS - ok
09:28:15.0616 0x0094  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
09:28:15.0620 0x0094  blbdrive - ok
09:28:15.0682 0x0094  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
09:28:15.0696 0x0094  Bonjour Service - ok
09:28:15.0734 0x0094  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
09:28:15.0740 0x0094  bowser - ok
09:28:15.0762 0x0094  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:28:15.0764 0x0094  BrFiltLo - ok
09:28:15.0785 0x0094  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:28:15.0787 0x0094  BrFiltUp - ok
09:28:15.0818 0x0094  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
09:28:15.0825 0x0094  BridgeMP - ok
09:28:15.0862 0x0094  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
09:28:15.0867 0x0094  Browser - ok
09:28:15.0923 0x0094  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
09:28:15.0932 0x0094  Brserid - ok
09:28:15.0949 0x0094  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
09:28:15.0952 0x0094  BrSerWdm - ok
09:28:15.0966 0x0094  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
09:28:15.0968 0x0094  BrUsbMdm - ok
09:28:15.0977 0x0094  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
09:28:15.0979 0x0094  BrUsbSer - ok
09:28:16.0001 0x0094  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
09:28:16.0004 0x0094  BTHMODEM - ok
09:28:16.0028 0x0094  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
09:28:16.0031 0x0094  bthserv - ok
09:28:16.0230 0x0094  [ BE531939BB6D153DB63DBBFBD398A713, CB63FD4051198A89EDB3CF45199F99F5816A672FA9374E166ED7A5D17ED47468 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
09:28:16.0283 0x0094  c2cautoupdatesvc - ok
09:28:16.0418 0x0094  [ 33E9F08F675EF94633C8EF8A7C4EADF3, E1556CF27F7FB3B03EE63F3464F5EE92E7B09E67C5D8AA4A9346FEEBD716A152 ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
09:28:16.0471 0x0094  c2cpnrsvc - ok
09:28:16.0512 0x0094  catchme - ok
09:28:16.0534 0x0094  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
09:28:16.0539 0x0094  cdfs - ok
09:28:16.0569 0x0094  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
09:28:16.0574 0x0094  cdrom - ok
09:28:16.0607 0x0094  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
09:28:16.0611 0x0094  CertPropSvc - ok
09:28:16.0625 0x0094  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
09:28:16.0627 0x0094  circlass - ok
09:28:16.0668 0x0094  [ B794DCF38C965FA2F93C45A7C3D582C5, 0E483EAF835B85AA4B6F449F9BB68AF0A3EE4192D29CD72F4B812F1E4D9E9A7C ] cleanhlp        C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys
09:28:16.0670 0x0094  cleanhlp - ok
09:28:16.0711 0x0094  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
09:28:16.0735 0x0094  CLFS - ok
09:28:16.0800 0x0094  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:28:16.0804 0x0094  clr_optimization_v2.0.50727_32 - ok
09:28:16.0842 0x0094  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:28:16.0858 0x0094  clr_optimization_v2.0.50727_64 - ok
09:28:16.0921 0x0094  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:28:16.0969 0x0094  clr_optimization_v4.0.30319_32 - ok
09:28:16.0995 0x0094  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:28:17.0033 0x0094  clr_optimization_v4.0.30319_64 - ok
09:28:17.0072 0x0094  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
09:28:17.0074 0x0094  CmBatt - ok
09:28:17.0100 0x0094  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
09:28:17.0102 0x0094  cmdide - ok
09:28:17.0143 0x0094  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
09:28:17.0164 0x0094  CNG - ok
09:28:17.0185 0x0094  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
09:28:17.0187 0x0094  Compbatt - ok
09:28:17.0216 0x0094  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
09:28:17.0219 0x0094  CompositeBus - ok
09:28:17.0230 0x0094  COMSysApp - ok
09:28:17.0240 0x0094  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
09:28:17.0242 0x0094  crcdisk - ok
09:28:17.0290 0x0094  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
09:28:17.0298 0x0094  CryptSvc - ok
09:28:17.0346 0x0094  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
09:28:17.0362 0x0094  CSC - ok
09:28:17.0417 0x0094  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
09:28:17.0437 0x0094  CscService - ok
09:28:17.0473 0x0094  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
09:28:17.0490 0x0094  DcomLaunch - ok
09:28:17.0540 0x0094  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
09:28:17.0550 0x0094  defragsvc - ok
09:28:17.0587 0x0094  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
09:28:17.0590 0x0094  DfsC - ok
09:28:17.0622 0x0094  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
09:28:17.0654 0x0094  Dhcp - ok
09:28:17.0689 0x0094  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
09:28:17.0692 0x0094  discache - ok
09:28:17.0722 0x0094  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
09:28:17.0725 0x0094  Disk - ok
09:28:17.0777 0x0094  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
09:28:17.0784 0x0094  Dnscache - ok
09:28:17.0823 0x0094  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
09:28:17.0832 0x0094  dot3svc - ok
09:28:17.0871 0x0094  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
09:28:17.0878 0x0094  DPS - ok
09:28:17.0925 0x0094  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
09:28:17.0927 0x0094  drmkaud - ok
09:28:18.0006 0x0094  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
09:28:18.0035 0x0094  DXGKrnl - ok
09:28:18.0083 0x0094  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
09:28:18.0088 0x0094  EapHost - ok
09:28:18.0225 0x0094  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
09:28:18.0359 0x0094  ebdrv - ok
09:28:18.0390 0x0094  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
09:28:18.0396 0x0094  EFS - ok
09:28:18.0461 0x0094  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
09:28:18.0482 0x0094  ehRecvr - ok
09:28:18.0513 0x0094  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
09:28:18.0551 0x0094  ehSched - ok
09:28:18.0596 0x0094  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
09:28:18.0612 0x0094  elxstor - ok
09:28:18.0636 0x0094  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
09:28:18.0637 0x0094  ErrDev - ok
09:28:18.0675 0x0094  [ 917DFF97525B7D70C46D4DEDA240089F, D8239EBB5D40AA6BA42BFA542A5001206610498886369D5B31ED7A9ACC17B6B4 ] EST_BusEnum     C:\Windows\system32\DRIVERS\GenBus.sys
09:28:18.0677 0x0094  EST_BusEnum - ok
09:28:18.0700 0x0094  [ B63CB796F3FC7DF6DB5C0DD7E4A6F16D, 1B4B9A1EB6FEB983D2E28B1DF60FC0F603BA2A81CC9F978DAEBD1F79C0A35B7D ] EST_Server      C:\Windows\system32\DRIVERS\GenHC.sys
09:28:18.0707 0x0094  EST_Server - ok
09:28:18.0739 0x0094  [ 5C3BF188F182C26974646A13B0CA4715, 5115BDA0CEEF830DDF14AC9B95E328218EFEA35AED337DD936A2D8F275ADBFAF ] Eve             C:\Windows\system32\DRIVERS\eve.sys
09:28:18.0742 0x0094  Eve - ok
09:28:18.0774 0x0094  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
09:28:18.0787 0x0094  EventSystem - ok
09:28:18.0822 0x0094  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
09:28:18.0831 0x0094  exfat - ok
09:28:18.0854 0x0094  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
09:28:18.0863 0x0094  fastfat - ok
09:28:18.0972 0x0094  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
09:28:18.0993 0x0094  Fax - ok
09:28:19.0034 0x0094  [ 4A30C5CD68D467A64BB2CB8CD8E919D2, 0B7E15D83EC6D8910D36B4BD6D2E1D79C39C608327421D0314103CAE23B1C62E ] fcdabus         C:\Windows\system32\DRIVERS\fcdabus.sys
09:28:19.0036 0x0094  fcdabus - ok
09:28:19.0058 0x0094  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
09:28:19.0060 0x0094  fdc - ok
09:28:19.0078 0x0094  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
09:28:19.0102 0x0094  fdPHost - ok
09:28:19.0128 0x0094  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
09:28:19.0130 0x0094  FDResPub - ok
09:28:19.0163 0x0094  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
09:28:19.0168 0x0094  FileInfo - ok
09:28:19.0190 0x0094  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
09:28:19.0198 0x0094  Filetrace - ok
09:28:19.0293 0x0094  [ 7E76EED28B8B8696B7F7ED5F757AA304, 4D42711B63F90FF9AF3D6C8E4EDB3FF08CAB6FE5131D9A43F4D10D1CA51F7378 ] FileZilla Server C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe
09:28:19.0312 0x0094  FileZilla Server - ok
09:28:19.0410 0x0094  [ 1F63900E2EB00101B9ACA2B7A870704E, 5AFE1FC852937FECE6B33147BD0110436FE97F33BFDA3F69B1F5EDAD6FFC09C6 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
09:28:19.0608 0x0094  FLEXnet Licensing Service - ok
09:28:19.0633 0x0094  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
09:28:19.0635 0x0094  flpydisk - ok
09:28:19.0709 0x0094  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
09:28:19.0753 0x0094  FltMgr - ok
09:28:19.0900 0x0094  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
09:28:19.0938 0x0094  FontCache - ok
09:28:20.0007 0x0094  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:28:20.0010 0x0094  FontCache3.0.0.0 - ok
09:28:20.0032 0x0094  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
09:28:20.0034 0x0094  FsDepends - ok
09:28:20.0068 0x0094  [ 7B64CBC4FDDAD2CB4F774E6B81052E98, 37E9838F27C6EDB5C59BC113073B9D5068BCD8DB3580A75DC3E8735A596D8C9F ] fsRamDsk        C:\Windows\system32\DRIVERS\fsRamDsk.sys
09:28:20.0071 0x0094  fsRamDsk - ok
09:28:20.0111 0x0094  [ B16B626996C74B564005BA855C5DEE90, B432C669EB610C262B18F3F8308EEE1B910DE7F7BC2A8EB5483419DC52A07AE1 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
09:28:20.0114 0x0094  fssfltr - ok
09:28:20.0210 0x0094  [ 812E1BA5C52A78F13EA6AA10DF708B1D, CF1C4D8E072CF0D66C977DFA4C852E5CE757843BEAF5D29454D26A9AC5766E61 ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
09:28:20.0258 0x0094  fsssvc - ok
09:28:20.0296 0x0094  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
09:28:20.0298 0x0094  Fs_Rec - ok
09:28:20.0331 0x0094  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
09:28:20.0338 0x0094  fvevol - ok
09:28:20.0367 0x0094  [ F3B2437FBC499F01A762D13800FD3222, CC2D635D4926BC6DF398FDD6B3C1BDC2097FF063F3070F34AAFDC8ED33B594DD ] FVXSCSI         C:\Windows\system32\DRIVERS\fvxscsi.sys
09:28:20.0370 0x0094  FVXSCSI - ok
09:28:20.0394 0x0094  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
09:28:20.0436 0x0094  gagp30kx - ok
09:28:20.0468 0x0094  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
09:28:20.0470 0x0094  GEARAspiWDM - ok
09:28:20.0522 0x0094  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
09:28:20.0549 0x0094  gpsvc - ok
09:28:20.0612 0x0094  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:28:20.0616 0x0094  gupdate - ok
09:28:20.0627 0x0094  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:28:20.0630 0x0094  gupdatem - ok
09:28:20.0644 0x0094  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
09:28:20.0646 0x0094  hcw85cir - ok
09:28:20.0687 0x0094  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:28:20.0697 0x0094  HdAudAddService - ok
09:28:20.0726 0x0094  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
09:28:20.0733 0x0094  HDAudBus - ok
09:28:20.0751 0x0094  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
09:28:20.0753 0x0094  HidBatt - ok
09:28:20.0778 0x0094  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
09:28:20.0782 0x0094  HidBth - ok
09:28:20.0818 0x0094  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
09:28:20.0821 0x0094  HidIr - ok
09:28:20.0850 0x0094  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
09:28:20.0853 0x0094  hidserv - ok
09:28:20.0897 0x0094  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
09:28:20.0899 0x0094  HidUsb - ok
09:28:20.0939 0x0094  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
09:28:20.0944 0x0094  hkmsvc - ok
09:28:20.0990 0x0094  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:28:20.0998 0x0094  HomeGroupListener - ok
09:28:21.0038 0x0094  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:28:21.0046 0x0094  HomeGroupProvider - ok
09:28:21.0139 0x0094  [ 97AAC45A375168C6A2297BEEB9692E31, 9C7285988D0C5DE8E3608F4E9F50A5C9398FFD0DA0F4C965C953859001FC76C8 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
09:28:21.0148 0x0094  hpqcxs08 - ok
09:28:21.0163 0x0094  [ 19A4FB67B1C97EA18EDFF44340973CD9, F1B6A7C1E450FF9A1D10F315F17D42DFE8390E88FF1AED4DE35237C4B81FC81D ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
09:28:21.0167 0x0094  hpqddsvc - ok
09:28:21.0194 0x0094  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
09:28:21.0198 0x0094  HpSAMD - ok
09:28:21.0294 0x0094  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
09:28:21.0317 0x0094  HTTP - ok
09:28:21.0356 0x0094  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
09:28:21.0358 0x0094  hwpolicy - ok
09:28:21.0389 0x0094  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
09:28:21.0393 0x0094  i8042prt - ok
09:28:21.0418 0x0094  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
09:28:21.0430 0x0094  iaStorV - ok
09:28:21.0484 0x0094  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:28:21.0512 0x0094  idsvc - ok
09:28:21.0551 0x0094  IEEtwCollectorService - ok
09:28:21.0578 0x0094  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
09:28:21.0580 0x0094  iirsp - ok
09:28:21.0645 0x0094  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
09:28:21.0682 0x0094  IKEEXT - ok
09:28:21.0705 0x0094  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
09:28:21.0707 0x0094  intelide - ok
09:28:21.0745 0x0094  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
09:28:21.0748 0x0094  intelppm - ok
09:28:21.0779 0x0094  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
09:28:21.0785 0x0094  IPBusEnum - ok
09:28:21.0816 0x0094  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:28:21.0820 0x0094  IpFilterDriver - ok
09:28:21.0864 0x0094  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
09:28:21.0896 0x0094  iphlpsvc - ok
09:28:21.0929 0x0094  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
09:28:21.0935 0x0094  IPMIDRV - ok
09:28:21.0956 0x0094  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
09:28:21.0960 0x0094  IPNAT - ok
09:28:22.0037 0x0094  [ 842D1EDD0F2A6E0E6631BB96BAAA01DE, 9CDD0B99F2C5DAD573A9EA8D5AB2DBFD7A941454CBBA5BFE34E49F2D4EE96A90 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
09:28:22.0057 0x0094  iPod Service - ok
09:28:22.0086 0x0094  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
09:28:22.0088 0x0094  IRENUM - ok
09:28:22.0105 0x0094  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
09:28:22.0107 0x0094  isapnp - ok
09:28:22.0141 0x0094  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
09:28:22.0149 0x0094  iScsiPrt - ok
09:28:22.0192 0x0094  [ BD5BF20EC242E003A2F570B8754A56D1, B4B3492222E98BF8E6EC453E727187FF4AA50A508D1E88A0CBBD5C46355AE492 ] ivusb           C:\Windows\system32\DRIVERS\ivusb.sys
09:28:22.0194 0x0094  ivusb - ok
09:28:22.0215 0x0094  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
09:28:22.0218 0x0094  kbdclass - ok
09:28:22.0257 0x0094  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
09:28:22.0259 0x0094  kbdhid - ok
09:28:22.0281 0x0094  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
09:28:22.0284 0x0094  KeyIso - ok
09:28:22.0320 0x0094  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
09:28:22.0326 0x0094  KSecDD - ok
09:28:22.0352 0x0094  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
09:28:22.0358 0x0094  KSecPkg - ok
09:28:22.0379 0x0094  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
09:28:22.0381 0x0094  ksthunk - ok
09:28:22.0417 0x0094  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
09:28:22.0432 0x0094  KtmRm - ok
09:28:22.0484 0x0094  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
09:28:22.0493 0x0094  LanmanServer - ok
09:28:22.0533 0x0094  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:28:22.0543 0x0094  LanmanWorkstation - ok
09:28:22.0598 0x0094  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
09:28:22.0602 0x0094  lltdio - ok
09:28:22.0642 0x0094  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
09:28:22.0652 0x0094  lltdsvc - ok
09:28:22.0669 0x0094  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
09:28:22.0672 0x0094  lmhosts - ok
09:28:22.0719 0x0094  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
09:28:22.0723 0x0094  LSI_FC - ok
09:28:22.0744 0x0094  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
09:28:22.0748 0x0094  LSI_SAS - ok
09:28:22.0771 0x0094  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:28:22.0774 0x0094  LSI_SAS2 - ok
09:28:22.0796 0x0094  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:28:22.0801 0x0094  LSI_SCSI - ok
09:28:22.0828 0x0094  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
09:28:22.0834 0x0094  luafv - ok
09:28:22.0897 0x0094  [ 6A7970E5DEE9DE6E8C4C08856B31C099, AB4AAEC9298D0AAB1B3E5EC02631ABF50124DF70C5678E15DD8545BABFDBC6E3 ] ma-config_amd64 C:\Program Files\ma-config.com\Drivers\ma-config_amd64.sys
09:28:22.0899 0x0094  ma-config_amd64 - ok
09:28:23.0078 0x0094  [ 4257432C3CA4C157CEF4048D80A76E4C, 94759467763A54C314FBD3E2DF5B137AD1DD5ABF57A42DF0DD0FEC464008814C ] MaConfigAgent   C:\Program Files\ma-config.com\MaConfigAgent.exe
09:28:23.0160 0x0094  MaConfigAgent - ok
09:28:23.0213 0x0094  [ FD5465B876D55534117963FAAA4B9DFC, 63A822A1EEEC42C30CCC9477431E310E3D360489A68BBCD805124681F21C0B6B ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
09:28:23.0215 0x0094  MBAMProtector - ok
09:28:23.0322 0x0094  [ 0E08BDD7326E657D59DB40BAD23D8169, 428C6CCCC0BB540DFD35847776140D60C186B9D2D14F0ACCD1A4D42A8877BD98 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
09:28:23.0379 0x0094  MBAMScheduler - ok
09:28:23.0442 0x0094  [ A8E7F3DB083EB0839DFC1C763CDD2594, BDF416E360A52130B23B029C89E6406A97FB0516C52C7E63B94CAECEEB431A2E ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
09:28:23.0468 0x0094  MBAMService - ok
09:28:23.0505 0x0094  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
09:28:23.0510 0x0094  Mcx2Svc - ok
09:28:23.0533 0x0094  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
09:28:23.0535 0x0094  megasas - ok
09:28:23.0569 0x0094  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
09:28:23.0580 0x0094  MegaSR - ok
09:28:23.0628 0x0094  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
09:28:23.0631 0x0094  Microsoft Office Groove Audit Service - ok
09:28:23.0666 0x0094  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
09:28:23.0670 0x0094  MMCSS - ok
09:28:23.0691 0x0094  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
09:28:23.0697 0x0094  Modem - ok
09:28:23.0782 0x0094  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
09:28:23.0784 0x0094  monitor - ok
09:28:23.0814 0x0094  [ 95314C3A08589471983C2C8173F23CDA, 05D30728D7204ABA2437259ECF929A94E6573F7621BAF35D76EBA26F5489A6CF ] MonitorFunction C:\Windows\system32\DRIVERS\TVMonitor.sys
09:28:23.0816 0x0094  MonitorFunction - ok
09:28:23.0837 0x0094  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
09:28:23.0841 0x0094  mouclass - ok
09:28:23.0865 0x0094  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
09:28:23.0867 0x0094  mouhid - ok
09:28:23.0906 0x0094  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
09:28:23.0910 0x0094  mountmgr - ok
09:28:23.0970 0x0094  [ AEE4E9CC59CDEB55B1ECB0E596E796BE, 674F6F38D86D238AFD6223E03A862F8B43DD8499FBC2D4B7A04E510EC5EACF3B ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
09:28:23.0975 0x0094  MozillaMaintenance - ok
09:28:23.0997 0x0094  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
09:28:24.0002 0x0094  mpio - ok
09:28:24.0044 0x0094  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
09:28:24.0050 0x0094  mpsdrv - ok
09:28:24.0113 0x0094  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
09:28:24.0142 0x0094  MpsSvc - ok
09:28:24.0177 0x0094  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
09:28:24.0185 0x0094  MRxDAV - ok
09:28:24.0214 0x0094  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
09:28:24.0219 0x0094  mrxsmb - ok
09:28:24.0253 0x0094  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:28:24.0262 0x0094  mrxsmb10 - ok
09:28:24.0295 0x0094  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:28:24.0299 0x0094  mrxsmb20 - ok
09:28:24.0327 0x0094  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
09:28:24.0329 0x0094  msahci - ok
09:28:24.0359 0x0094  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
09:28:24.0364 0x0094  msdsm - ok
09:28:24.0389 0x0094  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
09:28:24.0395 0x0094  MSDTC - ok
09:28:24.0438 0x0094  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
09:28:24.0440 0x0094  Msfs - ok
09:28:24.0456 0x0094  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
09:28:24.0458 0x0094  mshidkmdf - ok
09:28:24.0489 0x0094  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
09:28:24.0490 0x0094  msisadrv - ok
09:28:24.0527 0x0094  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
09:28:24.0533 0x0094  MSiSCSI - ok
09:28:24.0543 0x0094  msiserver - ok
09:28:24.0575 0x0094  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
09:28:24.0577 0x0094  MSKSSRV - ok
09:28:24.0596 0x0094  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
09:28:24.0597 0x0094  MSPCLOCK - ok
09:28:24.0620 0x0094  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
09:28:24.0622 0x0094  MSPQM - ok
09:28:24.0674 0x0094  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
09:28:24.0685 0x0094  MsRPC - ok
09:28:24.0723 0x0094  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
09:28:24.0745 0x0094  mssmbios - ok
09:28:24.0756 0x0094  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
09:28:24.0757 0x0094  MSTEE - ok
09:28:24.0784 0x0094  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
09:28:24.0787 0x0094  MTConfig - ok
09:28:24.0807 0x0094  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
09:28:24.0810 0x0094  Mup - ok
09:28:24.0862 0x0094  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
09:28:24.0878 0x0094  napagent - ok
09:28:24.0914 0x0094  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
09:28:24.0926 0x0094  NativeWifiP - ok
09:28:24.0989 0x0094  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
09:28:25.0017 0x0094  NDIS - ok
09:28:25.0104 0x0094  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
09:28:25.0109 0x0094  NdisCap - ok
09:28:25.0127 0x0094  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
09:28:25.0128 0x0094  NdisTapi - ok
09:28:25.0160 0x0094  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
09:28:25.0162 0x0094  Ndisuio - ok
09:28:25.0205 0x0094  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
09:28:25.0211 0x0094  NdisWan - ok
09:28:25.0255 0x0094  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
09:28:25.0258 0x0094  NDProxy - ok
09:28:25.0279 0x0094  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
09:28:25.0282 0x0094  NetBIOS - ok
09:28:25.0312 0x0094  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
09:28:25.0320 0x0094  NetBT - ok
09:28:25.0344 0x0094  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
09:28:25.0347 0x0094  Netlogon - ok
09:28:25.0406 0x0094  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
09:28:25.0419 0x0094  Netman - ok
09:28:25.0466 0x0094  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:28:25.0478 0x0094  NetMsmqActivator - ok
09:28:25.0491 0x0094  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:28:25.0495 0x0094  NetPipeActivator - ok
09:28:25.0528 0x0094  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
09:28:25.0544 0x0094  netprofm - ok
09:28:25.0559 0x0094  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:28:25.0563 0x0094  NetTcpActivator - ok
09:28:25.0610 0x0094  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:28:25.0617 0x0094  NetTcpPortSharing - ok
09:28:25.0643 0x0094  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
09:28:25.0645 0x0094  nfrd960 - ok
09:28:25.0681 0x0094  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
09:28:25.0693 0x0094  NlaSvc - ok
09:28:25.0742 0x0094  [ 351533ACC2A069B94E80BBFC177E8FDF, 54B2749E0496ECC94CE65657627762B485CBC825767BAEDDAD0D2598820FFB9E ] npf             C:\Windows\system32\drivers\npf.sys
09:28:25.0745 0x0094  npf - ok
09:28:25.0767 0x0094  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
09:28:25.0770 0x0094  Npfs - ok
09:28:25.0814 0x0094  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
09:28:25.0817 0x0094  nsi - ok
09:28:25.0857 0x0094  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
09:28:25.0859 0x0094  nsiproxy - ok
09:28:25.0949 0x0094  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
09:28:26.0001 0x0094  Ntfs - ok
09:28:26.0028 0x0094  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
09:28:26.0030 0x0094  Null - ok
09:28:26.0070 0x0094  [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
09:28:26.0077 0x0094  NVHDA - ok
09:28:26.0680 0x0094  [ 757ACE4D4C9FF0571F86AA5D586B45E8, E7F23CC1DE26E2DAA690B78B05FC001EE0051F0ED9B9BCE9E7FA4E9684D4F3D4 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
09:28:27.0366 0x0094  nvlddmkm - ok
09:28:27.0535 0x0094  [ D2FE0376285A783693469422678E878B, 9F0B1A6694CA7BDAAA3B26BE1D344A3FC7B98162518A259C273360EFF075CD75 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
09:28:27.0585 0x0094  NvNetworkService - ok
09:28:27.0635 0x0094  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
09:28:27.0642 0x0094  nvraid - ok
09:28:27.0659 0x0094  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
09:28:27.0665 0x0094  nvstor - ok
09:28:28.0693 0x0094  [ 4F0E2990DB12849D428DE7B0AC5D92B9, 77A058EFFE07E46F0DFF419DC1C204C245598E6A6F6EDFF545802D9C1573EAA0 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
09:28:29.0807 0x0094  NvStreamSvc - ok
09:28:30.0168 0x0094  [ 1C7CC708AC4A02A3BE8915539780534A, 0EBDE100880963BF1EC05002BA244CA7700693E958D1974CDD2AC3927D93224F ] nvsvc           C:\Windows\system32\nvvsvc.exe
09:28:30.0200 0x0094  nvsvc - ok
09:28:30.0289 0x0094  [ 939C0FAE9CC0CDD69E6508BDE4C11FE5, 1E82FF4A8797A0EC5DF0E54DE7F358542C73FFFBECADDF86ED66839182E3B55D ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
09:28:30.0292 0x0094  nvvad_WaveExtensible - ok
09:28:30.0327 0x0094  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
09:28:30.0331 0x0094  nv_agp - ok
09:28:30.0428 0x0094  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:28:30.0442 0x0094  odserv - ok
09:28:30.0500 0x0094  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
09:28:30.0504 0x0094  ohci1394 - ok
09:28:30.0609 0x0094  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:28:30.0614 0x0094  ose - ok
09:28:30.0710 0x0094  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
09:28:30.0722 0x0094  p2pimsvc - ok
09:28:30.0774 0x0094  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
09:28:30.0789 0x0094  p2psvc - ok
09:28:30.0858 0x0094  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
09:28:30.0863 0x0094  Parport - ok
09:28:30.0907 0x0094  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
09:28:30.0910 0x0094  partmgr - ok
09:28:30.0967 0x0094  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
09:28:30.0975 0x0094  PcaSvc - ok
09:28:31.0023 0x0094  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
09:28:31.0029 0x0094  pci - ok
09:28:31.0065 0x0094  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
09:28:31.0067 0x0094  pciide - ok
09:28:31.0099 0x0094  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
09:28:31.0107 0x0094  pcmcia - ok
09:28:31.0132 0x0094  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
09:28:31.0135 0x0094  pcw - ok
09:28:31.0172 0x0094  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
09:28:31.0196 0x0094  PEAUTH - ok
09:28:31.0329 0x0094  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
09:28:31.0372 0x0094  PeerDistSvc - ok
09:28:31.0474 0x0094  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
09:28:31.0477 0x0094  PerfHost - ok
09:28:31.0616 0x0094  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
09:28:31.0658 0x0094  pla - ok
09:28:31.0716 0x0094  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
09:28:31.0732 0x0094  PlugPlay - ok
09:28:31.0818 0x0094  [ E9605A180001A6B5551112D91DE92CA1, D888DAFC74A6E39A54A6B0330B243850BAF6FE1224294E5BEEA101C5FD6B4907 ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
09:28:31.0840 0x0094  PMBDeviceInfoProvider - ok
09:28:31.0862 0x0094  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
09:28:31.0865 0x0094  PNRPAutoReg - ok
09:28:31.0963 0x0094  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
09:28:31.0973 0x0094  PNRPsvc - ok
09:28:32.0014 0x0094  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
09:28:32.0030 0x0094  PolicyAgent - ok
09:28:32.0081 0x0094  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
09:28:32.0089 0x0094  Power - ok
09:28:32.0144 0x0094  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
09:28:32.0148 0x0094  PptpMiniport - ok
09:28:32.0171 0x0094  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
09:28:32.0174 0x0094  Processor - ok
09:28:32.0210 0x0094  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
09:28:32.0219 0x0094  ProfSvc - ok
09:28:32.0258 0x0094  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
09:28:32.0261 0x0094  ProtectedStorage - ok
09:28:32.0317 0x0094  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
09:28:32.0322 0x0094  Psched - ok
09:28:32.0405 0x0094  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
09:28:32.0451 0x0094  ql2300 - ok
09:28:32.0482 0x0094  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
09:28:32.0487 0x0094  ql40xx - ok
09:28:32.0528 0x0094  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
09:28:32.0539 0x0094  QWAVE - ok
09:28:32.0565 0x0094  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
09:28:32.0567 0x0094  QWAVEdrv - ok
09:28:32.0588 0x0094  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
09:28:32.0590 0x0094  RasAcd - ok
09:28:32.0654 0x0094  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
09:28:32.0657 0x0094  RasAgileVpn - ok
09:28:32.0687 0x0094  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
09:28:32.0693 0x0094  RasAuto - ok
09:28:32.0734 0x0094  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
09:28:32.0739 0x0094  Rasl2tp - ok
09:28:32.0793 0x0094  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
09:28:32.0806 0x0094  RasMan - ok
09:28:32.0839 0x0094  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
09:28:32.0844 0x0094  RasPppoe - ok
09:28:32.0871 0x0094  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
09:28:32.0875 0x0094  RasSstp - ok
09:28:32.0913 0x0094  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
09:28:32.0923 0x0094  rdbss - ok
09:28:33.0074 0x0094  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
09:28:33.0076 0x0094  rdpbus - ok
09:28:33.0109 0x0094  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
09:28:33.0110 0x0094  RDPCDD - ok
09:28:33.0163 0x0094  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
09:28:33.0169 0x0094  RDPDR - ok
09:28:33.0183 0x0094  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
09:28:33.0185 0x0094  RDPENCDD - ok
09:28:33.0217 0x0094  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
09:28:33.0218 0x0094  RDPREFMP - ok
09:28:33.0276 0x0094  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
09:28:33.0278 0x0094  RdpVideoMiniport - ok
09:28:33.0312 0x0094  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
09:28:33.0319 0x0094  RDPWD - ok
09:28:33.0369 0x0094  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
09:28:33.0376 0x0094  rdyboost - ok
09:28:33.0414 0x0094  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
09:28:33.0419 0x0094  RemoteAccess - ok
09:28:33.0460 0x0094  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
09:28:33.0561 0x0094  RemoteRegistry - ok
09:28:33.0589 0x0094  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
09:28:33.0593 0x0094  RpcEptMapper - ok
09:28:33.0624 0x0094  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
09:28:33.0626 0x0094  RpcLocator - ok
09:28:33.0677 0x0094  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\System32\rpcss.dll
09:28:33.0692 0x0094  RpcSs - ok
09:28:33.0728 0x0094  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
09:28:33.0731 0x0094  rspndr - ok
09:28:33.0803 0x0094  [ 46596144363B912105F70016F0E2F908, 199FF8BFA60D8E9662F3C785146FAED3231B514D260F795B2B9857DC1EEB2E4B ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
09:28:33.0830 0x0094  RTL8167 - ok
09:28:33.0860 0x0094  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
09:28:33.0862 0x0094  s3cap - ok
09:28:33.0882 0x0094  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
09:28:33.0884 0x0094  SamSs - ok
09:28:33.0943 0x0094  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
09:28:33.0945 0x0094  SASDIFSV - ok
09:28:34.0084 0x0094  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
09:28:34.0085 0x0094  SASKUTIL - ok
09:28:34.0108 0x0094  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
09:28:34.0113 0x0094  sbp2port - ok
09:28:34.0160 0x0094  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
09:28:34.0168 0x0094  SCardSvr - ok
09:28:34.0205 0x0094  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
09:28:34.0208 0x0094  scfilter - ok
09:28:34.0326 0x0094  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
09:28:34.0363 0x0094  Schedule - ok
09:28:34.0409 0x0094  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
09:28:34.0413 0x0094  SCPolicySvc - ok
09:28:34.0441 0x0094  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
09:28:34.0450 0x0094  SDRSVC - ok
09:28:34.0477 0x0094  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
09:28:34.0532 0x0094  secdrv - ok
09:28:34.0601 0x0094  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
09:28:34.0605 0x0094  seclogon - ok
09:28:34.0685 0x0094  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
09:28:34.0692 0x0094  SENS - ok
09:28:34.0717 0x0094  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
09:28:34.0720 0x0094  SensrSvc - ok
09:28:34.0741 0x0094  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
09:28:34.0743 0x0094  Serenum - ok
09:28:34.0780 0x0094  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
09:28:34.0784 0x0094  Serial - ok
09:28:34.0822 0x0094  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
09:28:34.0824 0x0094  sermouse - ok
09:28:34.0960 0x0094  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
09:28:34.0966 0x0094  SessionEnv - ok
09:28:34.0980 0x0094  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
09:28:34.0982 0x0094  sffdisk - ok
09:28:35.0004 0x0094  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
09:28:35.0008 0x0094  sffp_mmc - ok
09:28:35.0022 0x0094  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
09:28:35.0024 0x0094  sffp_sd - ok
09:28:35.0063 0x0094  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
09:28:35.0065 0x0094  sfloppy - ok
09:28:35.0114 0x0094  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
09:28:35.0130 0x0094  SharedAccess - ok
09:28:35.0178 0x0094  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:28:35.0191 0x0094  ShellHWDetection - ok
09:28:35.0230 0x0094  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:28:35.0233 0x0094  SiSRaid2 - ok
09:28:35.0265 0x0094  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
09:28:35.0268 0x0094  SiSRaid4 - ok
09:28:35.0352 0x0094  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
09:28:35.0358 0x0094  SkypeUpdate - ok
09:28:35.0388 0x0094  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
09:28:35.0392 0x0094  Smb - ok
09:28:35.0462 0x0094  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
09:28:35.0465 0x0094  SNMPTRAP - ok
09:28:35.0585 0x0094  [ 59982DBADF1451C370438C90FEA008CB, 564D5B4E9F6C6FD7EDEEA5F45F6986CAA1753E948DC3AFFE9AB237556FD0B1D6 ] Soda PDF 3D Reader Helper Service C:\Program Files (x86)\Soda PDF 3D Reader\HelperService.exe
09:28:35.0627 0x0094  Soda PDF 3D Reader Helper Service - ok
09:28:35.0685 0x0094  [ 5B675A95F12A13297D09412B52772B96, E977E8377E19EF770AE8DED7A4857141F5C7289BA8D6B0372F59330570E7454C ] Soda PDF 3D Reader Service C:\Program Files (x86)\Soda PDF 3D Reader\ConversionService.exe
09:28:35.0797 0x0094  Soda PDF 3D Reader Service - ok
09:28:35.0818 0x0094  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
09:28:35.0820 0x0094  spldr - ok
09:28:35.0868 0x0094  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
09:28:35.0886 0x0094  Spooler - ok
09:28:36.0038 0x0094  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
09:28:36.0154 0x0094  sppsvc - ok
09:28:36.0197 0x0094  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
09:28:36.0202 0x0094  sppuinotify - ok
09:28:36.0248 0x0094  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
09:28:36.0262 0x0094  srv - ok
09:28:36.0301 0x0094  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
09:28:36.0313 0x0094  srv2 - ok
09:28:36.0353 0x0094  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
09:28:36.0358 0x0094  srvnet - ok
09:28:36.0403 0x0094  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
09:28:36.0411 0x0094  SSDPSRV - ok
09:28:36.0453 0x0094  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
09:28:36.0459 0x0094  SstpSvc - ok
09:28:36.0576 0x0094  [ CDA9313E34887A111B8309B55BCDCD82, AC070AA093B7013E4D1B29F4FAF9B469C3C261E4D3D1512B4F77CC609CBD1484 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
09:28:36.0588 0x0094  Stereo Service - ok
09:28:36.0611 0x0094  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
09:28:36.0613 0x0094  stexstor - ok
09:28:36.0723 0x0094  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
09:28:36.0724 0x0094  StillCam - ok
09:28:36.0827 0x0094  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
09:28:36.0846 0x0094  stisvc - ok
09:28:36.0885 0x0094  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
09:28:36.0888 0x0094  storflt - ok
09:28:36.0929 0x0094  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
09:28:36.0932 0x0094  StorSvc - ok
09:28:36.0997 0x0094  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
09:28:37.0000 0x0094  storvsc - ok
09:28:37.0031 0x0094  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
09:28:37.0033 0x0094  swenum - ok
09:28:37.0111 0x0094  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
09:28:37.0129 0x0094  swprv - ok
09:28:37.0369 0x0094  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
09:28:37.0421 0x0094  SysMain - ok
09:28:37.0472 0x0094  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:28:37.0478 0x0094  TabletInputService - ok
09:28:37.0602 0x0094  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
09:28:37.0614 0x0094  TapiSrv - ok
09:28:37.0654 0x0094  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
09:28:37.0659 0x0094  TBS - ok
09:28:37.0762 0x0094  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
09:28:37.0819 0x0094  Tcpip - ok
09:28:37.0927 0x0094  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
09:28:37.0976 0x0094  TCPIP6 - ok
09:28:38.0154 0x0094  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
09:28:38.0156 0x0094  tcpipreg - ok
09:28:38.0207 0x0094  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
09:28:38.0209 0x0094  TDPIPE - ok
09:28:38.0248 0x0094  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
09:28:38.0251 0x0094  TDTCP - ok
09:28:38.0294 0x0094  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
09:28:38.0300 0x0094  tdx - ok
09:28:38.0587 0x0094  [ CC907C2FB839D3F92690A25FF8E463BE, 3CEE9BEA1ACB1086389AA4817D996431716EFEB4432EC4D59EEF1BA710C15B8C ] TeamViewer9     C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
09:28:38.0819 0x0094  TeamViewer9 - ok
09:28:38.0895 0x0094  [ F5520DBB47C60EE83024B38720ABDA24, B8E555D92440BF93E3B55A66E27CEF936477EF7528F870D3B78BD3B294A05CC0 ] teamviewervpn   C:\Windows\system32\DRIVERS\teamviewervpn.sys
09:28:38.0897 0x0094  teamviewervpn - ok
09:28:38.0929 0x0094  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
09:28:38.0960 0x0094  TermDD - ok
09:28:39.0026 0x0094  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
09:28:39.0049 0x0094  TermService - ok
09:28:39.0096 0x0094  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
09:28:39.0101 0x0094  Themes - ok
09:28:39.0166 0x0094  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
09:28:39.0169 0x0094  THREADORDER - ok
09:28:39.0214 0x0094  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
09:28:39.0220 0x0094  TrkWks - ok
09:28:39.0325 0x0094  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:28:39.0332 0x0094  TrustedInstaller - ok
09:28:39.0403 0x0094  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
09:28:39.0405 0x0094  tssecsrv - ok
09:28:39.0793 0x0094  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
09:28:39.0797 0x0094  TsUsbFlt - ok
09:28:39.0860 0x0094  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
09:28:39.0865 0x0094  tunnel - ok
09:28:39.0933 0x0094  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
09:28:39.0938 0x0094  uagp35 - ok
09:28:39.0988 0x0094  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
09:28:39.0998 0x0094  udfs - ok
09:28:40.0059 0x0094  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
09:28:40.0063 0x0094  UI0Detect - ok
09:28:40.0089 0x0094  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
09:28:40.0096 0x0094  uliagpkx - ok
09:28:40.0134 0x0094  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
09:28:40.0137 0x0094  umbus - ok
09:28:40.0175 0x0094  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
09:28:40.0177 0x0094  UmPass - ok
09:28:40.0220 0x0094  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
09:28:40.0238 0x0094  UmRdpService - ok
09:28:40.0296 0x0094  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
09:28:40.0310 0x0094  upnphost - ok
09:28:40.0342 0x0094  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
09:28:40.0345 0x0094  USBAAPL64 - ok
09:28:40.0393 0x0094  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
09:28:40.0397 0x0094  usbaudio - ok
09:28:40.0444 0x0094  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
09:28:40.0449 0x0094  usbccgp - ok
09:28:40.0970 0x0094  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
09:28:40.0974 0x0094  usbcir - ok
09:28:41.0013 0x0094  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
09:28:41.0015 0x0094  usbehci - ok
09:28:41.0097 0x0094  [ 68BAD03835873D4BBBDE95CBB135A395, 2A448397EE3BDC27B423ECA6F86F676065B2E4BE9CEA929FD90B2BD5B046EC52 ] UsbFltr         C:\Windows\system32\Drivers\UsbFltr.sys
09:28:41.0099 0x0094  UsbFltr - ok
09:28:41.0132 0x0094  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
09:28:41.0145 0x0094  usbhub - ok
09:28:41.0185 0x0094  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
09:28:41.0187 0x0094  usbohci - ok
09:28:41.0231 0x0094  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
09:28:41.0234 0x0094  usbprint - ok
09:28:41.0275 0x0094  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:28:41.0279 0x0094  USBSTOR - ok
09:28:41.0305 0x0094  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
09:28:41.0307 0x0094  usbuhci - ok
09:28:41.0331 0x0094  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
09:28:41.0335 0x0094  UxSms - ok
09:28:41.0358 0x0094  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
09:28:41.0361 0x0094  VaultSvc - ok
09:28:41.0384 0x0094  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
09:28:41.0387 0x0094  vdrvroot - ok
09:28:41.0431 0x0094  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
09:28:41.0452 0x0094  vds - ok
09:28:41.0483 0x0094  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
09:28:41.0486 0x0094  vga - ok
09:28:41.0509 0x0094  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
09:28:41.0511 0x0094  VgaSave - ok
09:28:41.0546 0x0094  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
09:28:41.0553 0x0094  vhdmp - ok
09:28:41.0576 0x0094  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
09:28:41.0578 0x0094  viaide - ok
09:28:41.0616 0x0094  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
09:28:41.0626 0x0094  vmbus - ok
09:28:41.0647 0x0094  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
09:28:41.0650 0x0094  VMBusHID - ok
09:28:41.0675 0x0094  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
09:28:41.0679 0x0094  volmgr - ok
09:28:41.0740 0x0094  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
09:28:41.0751 0x0094  volmgrx - ok
09:28:41.0785 0x0094  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
09:28:41.0797 0x0094  volsnap - ok
09:28:41.0835 0x0094  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
09:28:41.0841 0x0094  vsmraid - ok
09:28:41.0939 0x0094  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
09:28:41.0991 0x0094  VSS - ok
09:28:42.0028 0x0094  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
09:28:42.0030 0x0094  vwifibus - ok
09:28:42.0087 0x0094  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
09:28:42.0113 0x0094  W32Time - ok
09:28:42.0152 0x0094  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
09:28:42.0155 0x0094  WacomPen - ok
09:28:42.0195 0x0094  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
09:28:42.0199 0x0094  WANARP - ok
09:28:42.0217 0x0094  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
09:28:42.0220 0x0094  Wanarpv6 - ok
09:28:42.0323 0x0094  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
09:28:42.0365 0x0094  WatAdminSvc - ok
09:28:42.0480 0x0094  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
09:28:42.0528 0x0094  wbengine - ok
09:28:42.0589 0x0094  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
09:28:42.0598 0x0094  WbioSrvc - ok
09:28:42.0656 0x0094  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
09:28:42.0671 0x0094  wcncsvc - ok
09:28:42.0696 0x0094  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:28:42.0700 0x0094  WcsPlugInService - ok
09:28:42.0727 0x0094  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
09:28:42.0730 0x0094  Wd - ok
09:28:42.0785 0x0094  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
09:28:42.0820 0x0094  Wdf01000 - ok
09:28:42.0858 0x0094  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
09:28:42.0866 0x0094  WdiServiceHost - ok
09:28:42.0887 0x0094  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
09:28:42.0891 0x0094  WdiSystemHost - ok
09:28:42.0931 0x0094  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
09:28:42.0941 0x0094  WebClient - ok
09:28:42.0981 0x0094  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
09:28:42.0991 0x0094  Wecsvc - ok
09:28:43.0025 0x0094  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
09:28:43.0030 0x0094  wercplsupport - ok
09:28:43.0077 0x0094  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
09:28:43.0083 0x0094  WerSvc - ok
09:28:43.0119 0x0094  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
09:28:43.0122 0x0094  WfpLwf - ok
09:28:43.0146 0x0094  WimFltr - ok
09:28:43.0172 0x0094  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
09:28:43.0174 0x0094  WIMMount - ok
09:28:43.0239 0x0094  WinDefend - ok
09:28:43.0287 0x0094  WinHttpAutoProxySvc - ok
09:28:43.0423 0x0094  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
09:28:43.0436 0x0094  Winmgmt - ok
09:28:43.0570 0x0094  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
09:28:43.0667 0x0094  WinRM - ok
09:28:43.0748 0x0094  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
09:28:43.0751 0x0094  WinUsb - ok
09:28:43.0837 0x0094  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
09:28:43.0881 0x0094  Wlansvc - ok
09:28:44.0081 0x0094  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:28:44.0179 0x0094  wlidsvc - ok
09:28:44.0247 0x0094  [ 680A7846370000D20D7E74917D5B7936, 55B77B358039672845D361CA4205F3482D1F30A4654B610FD785A1337EFDC316 ] WmBEnum         C:\Windows\system32\drivers\WmBEnum.sys
09:28:44.0249 0x0094  WmBEnum - ok
09:28:44.0430 0x0094  [ 6F6F2B263002B243D3501C7E6C8FC11D, EBC1C9936D35D9FD68E1A17A399759ACFB8B8BF57C179F8926D60CD11CEB8106 ] WmFilter        C:\Windows\system32\drivers\WmFilter.sys
09:28:44.0454 0x0094  WmFilter - ok
09:28:44.0489 0x0094  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
09:28:44.0492 0x0094  WmiAcpi - ok
09:28:44.0550 0x0094  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
09:28:44.0557 0x0094  wmiApSrv - ok
09:28:44.0588 0x0094  WMPNetworkSvc - ok
09:28:44.0667 0x0094  [ 8488DD91A3EE54A8E29F02AD7BB8201E, D428ED991D9E4A8765C240B21884A262854278698D60862117AC5949713231F9 ] WmVirHid        C:\Windows\system32\drivers\WmVirHid.sys
09:28:44.0673 0x0094  WmVirHid - ok
09:28:44.0701 0x0094  [ 14802B3A30AA849C97CB968CCC813BF3, 330AD828ABD040ECDBF58F7162978CD61BFC093CAD404FD2BCAC74E3F2EC542A ] WmXlCore        C:\Windows\system32\drivers\WmXlCore.sys
09:28:44.0705 0x0094  WmXlCore - ok
09:28:44.0728 0x0094  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
09:28:44.0731 0x0094  WPCSvc - ok
09:28:44.0779 0x0094  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
09:28:44.0786 0x0094  WPDBusEnum - ok
09:28:44.0833 0x0094  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
09:28:44.0835 0x0094  ws2ifsl - ok
09:28:44.0864 0x0094  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
09:28:44.0870 0x0094  wscsvc - ok
09:28:44.0897 0x0094  WSearch - ok
09:28:45.0140 0x0094  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
09:28:45.0244 0x0094  wuauserv - ok
09:28:45.0315 0x0094  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
09:28:45.0321 0x0094  WudfPf - ok
09:28:45.0366 0x0094  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
09:28:45.0373 0x0094  WUDFRd - ok
09:28:45.0409 0x0094  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
09:28:45.0415 0x0094  wudfsvc - ok
09:28:45.0477 0x0094  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
09:28:45.0491 0x0094  WwanSvc - ok
09:28:45.0550 0x0094  xtu - ok
09:28:45.0589 0x0094  ================ Scan global ===============================
09:28:45.0647 0x0094  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
09:28:45.0673 0x0094  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
09:28:45.0692 0x0094  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
09:28:45.0730 0x0094  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
09:28:45.0768 0x0094  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
09:28:45.0780 0x0094  [ Global ] - ok
09:28:45.0783 0x0094  ================ Scan MBR ==================================
09:28:45.0805 0x0094  [ 8E734BD7AA1D4F7E9AF58DF495F6CF9E ] \Device\Harddisk0\DR0
09:28:45.0873 0x0094  \Device\Harddisk0\DR0 - ok
09:28:45.0880 0x0094  [ 8E734BD7AA1D4F7E9AF58DF495F6CF9E ] \Device\Harddisk1\DR1
09:28:46.0307 0x0094  \Device\Harddisk1\DR1 - ok
09:28:46.0342 0x0094  [ AF00FC1920E1CF861B39B90A4375EDF3 ] \Device\Harddisk2\DR2
09:28:46.0371 0x0094  \Device\Harddisk2\DR2 - ok
09:28:46.0418 0x0094  [ E5FA06ACA0D60BA9C870D0EF3D9898C9 ] \Device\Harddisk3\DR3
09:28:46.0424 0x0094  \Device\Harddisk3\DR3 - ok
09:28:46.0425 0x0094  ================ Scan VBR ==================================
09:28:46.0430 0x0094  [ A8150548425BD266E41E9641FF69C3EC ] \Device\Harddisk0\DR0\Partition1
09:28:46.0470 0x0094  \Device\Harddisk0\DR0\Partition1 - ok
09:28:46.0476 0x0094  [ F11CE6603DC2B49DCF85544873B8752A ] \Device\Harddisk0\DR0\Partition2
09:28:46.0519 0x0094  \Device\Harddisk0\DR0\Partition2 - ok
09:28:46.0524 0x0094  [ 5E974F4052A07CD3FB28EB1F17B7F365 ] \Device\Harddisk1\DR1\Partition1
09:28:46.0591 0x0094  \Device\Harddisk1\DR1\Partition1 - ok
09:28:46.0597 0x0094  [ 77A34B805ADAF9B04E8CE9324FD6550A ] \Device\Harddisk1\DR1\Partition2
09:28:46.0715 0x0094  \Device\Harddisk1\DR1\Partition2 - ok
09:28:46.0723 0x0094  [ 30C7155DC02D4E42C718A31E564DBE17 ] \Device\Harddisk2\DR2\Partition1
09:28:46.0761 0x0094  \Device\Harddisk2\DR2\Partition1 - ok
09:28:46.0766 0x0094  [ 30373A3782797A7D960359D88C9C7C40 ] \Device\Harddisk2\DR2\Partition2
09:28:46.0834 0x0094  \Device\Harddisk2\DR2\Partition2 - ok
09:28:46.0841 0x0094  [ CE6240956D9F01C8F2B7B0BBBB4B39D8 ] \Device\Harddisk3\DR3\Partition1
09:28:46.0842 0x0094  \Device\Harddisk3\DR3\Partition1 - ok
09:28:46.0846 0x0094  Waiting for KSN requests completion. In queue: 365
09:28:47.0846 0x0094  Waiting for KSN requests completion. In queue: 55
09:28:48.0847 0x0094  Waiting for KSN requests completion. In queue: 55
09:28:49.0847 0x0094  Waiting for KSN requests completion. In queue: 55
09:28:50.0940 0x0094  AV detected via SS2: Emsisoft Anti-Malware, C:\Program Files (x86)\Emsisoft Anti-Malware\a2start.exe ( 8.1.0.40 ), 0x41000 ( enabled : updated )
09:28:51.0052 0x0094  Win FW state via NFP2: enabled
09:28:54.0494 0x0094  ============================================================
09:28:54.0494 0x0094  Scan finished
09:28:54.0494 0x0094  ============================================================
09:28:54.0513 0x055c  Detected object count: 0
09:28:54.0513 0x055c  Actual detected object count: 0
09:31:31.0308 0x18bc  Deinitialize success


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:53 AM

Posted 03 May 2014 - 10:05 AM

Is it running better now?

Go here and Update to Adobe Reader XI
UNcheck
the box that installs
Optional offer:



Yes, install Google Chrome as my default browser and Google Toolbar for Internet Explorer.

Google Toolbar and Google Chrome

Learn more | Install Options
 
In Control Panel, Uninstall these

Java 7 Update 51 (Version: 7.0.510)

Java Auto Updater (Version: 2.1.9.8)


Java™ 6 Update 38 (Version: 6.0.380)


Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
How is it running now?

What is your antivirus?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 domipj

domipj
  • Topic Starter

  • Members
  • 137 posts
  • OFFLINE
  •  
  • Local time:05:53 PM

Posted 03 May 2014 - 08:58 PM

So, The machine is not better yet. In fact I did not delete the quarantaine at the end. I restarted ESET one more time  and it looks that the threat find are the same. My antivirus is Emisoft. In fact ESET was block completly at quit the end. I stopped it. On one second machine I run ESET as well  and now I cannot start the machine again.

 

:bubbles:



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:53 AM

Posted 05 May 2014 - 02:12 PM

Ok, so you now have a machine that will not boot? what is the Operating System?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 domipj

domipj
  • Topic Starter

  • Members
  • 137 posts
  • OFFLINE
  •  
  • Local time:05:53 PM

Posted 08 May 2014 - 05:57 AM

I apologize for the late reply!  :orange: I got emergency. Ok in fact I have four machine infected. I followed your procedure until ESET. But they all now extremely slow. I run the tweaking windows repair but no significant result. the machine that could not start is now ok (slow of course) ! for you to know :

 

Venus [windows 7 X64 ] looks on the way after 3 passage of ESET

 

URANUS [windows 7 X64 ] is clean but slow

 

Lune [laptop windows 7 X32] and one machine windows xp pro

 

 

If you have an idee to speed up my machines I would be very happy

 

best regards



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:53 AM

Posted 08 May 2014 - 03:56 PM

Try running StartUpLITE


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 domipj

domipj
  • Topic Starter

  • Members
  • 137 posts
  • OFFLINE
  •  
  • Local time:05:53 PM

Posted 09 May 2014 - 05:39 AM

ok, back I try one machine win 7 X64 looks now ok. the laptop xp looks ok too. but the first machine Venus (win 7 X64) still have one or two virus ESEET takes 24 hours to scan all the disks but the problem in this machine, I have 3 partition windows and the all react the same. I explain:

 

at start, when the machine arrive on the message "starting windows" the light of the screen reduce at the point we can quit not not see the message for 2-3 second. then the cursor arrive and quit vanish also. then come back after around 20 seconds. The the screen with the users arrive without jingle. After the password, the welcome message stay for around 1 minute. 

 

when I am in, regularly the icons of the desktop become white and then come back with the thumbnail again.

 

 

the laptop win 7 x32 has the cpu 100% quit all the time and it is not possible to use!

 

hope my explainations help.

 

thank you for your reply



#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:53 AM

Posted 09 May 2014 - 10:04 AM

I feel we need to get deeper look at these two. You need to make 2 new topics.. Mention in the topic that they are two diferent machines so no one thinks you posted twice.

Please follow this Preparation Guide, do steps 6,7 and 8 and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 domipj

domipj
  • Topic Starter

  • Members
  • 137 posts
  • OFFLINE
  •  
  • Local time:05:53 PM

Posted 10 May 2014 - 05:55 AM

Thank you I'll do it and reply you on Monday !

 

 

:-)






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users