Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Please can you help me fix my lads PC?


  • Please log in to reply
25 replies to this topic

#1 julesp

julesp

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:43 PM

Posted 06 May 2014 - 12:56 PM

Hi folks

 

My lad saved up and bought his own pc for his bedroom. First thing I did was buy a copy of Eset Nod 32 antivirus version 7 for him as I've been running that for a few years now with no issues on my pc.

 

He was downloading something the other night and clicked the 'yes' box on something without reading what it was by mistake.

It looks like he downloaded some sort of malware by mistake as ever since then his internet access is sporadic and slow.

He is linked to my router by ethernet cable and we have fiber optic broadband with an average speed of 38megs. No other computer or ipad connected has speed issues and he is connected to the router at 100mbs and his connection is good.

Sometimes images from the web appear corrupt too (such as your logo at the top of this page) - they appear to be broken up and pixelated.

 

We ran a scan through Eset and it picked up 22 threats which I cleaned but the problem still persists.

 

All other functions of the pc seem ok but Eset does also keep popping up with detected and blocked threats.

 

Thanks in advance for any help.

 

Julian

 



BC AdBot (Login to Remove)

 


m

#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:43 PM

Posted 06 May 2014 - 12:58 PM

Hi Julian, what browser does he use?

Run these next even the ESET....

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 julesp

julesp
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:43 PM

Posted 06 May 2014 - 01:02 PM

Hi Boopme

Thanks for your speedy reply.

He is using Google Chrome.

I downloaded the minitoolkit program but it does not seem to run under Windows 8 - shall I carry on with the other items?



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:43 PM

Posted 06 May 2014 - 01:30 PM

Ok, yes move down the list.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 julesp

julesp
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:43 PM

Posted 06 May 2014 - 04:08 PM

OK - managed to download minitoolkit on my pc and transfer via usb stick to my lads. Results posted below.

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by Thomas (administrator) on 06-05-2014 at 19:14:58
Running from "E:\"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Qualcomm Atheros AR8161 PCI-E Gigabit Ethernet Controller (NDIS 6.30) = Ethernet (Connected)
Qualcomm Atheros AR9485 802.11b/g/n WiFi Adapter = WiFi (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="ethernet_11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="wireless_7" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="wireless_6" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="ethernet_3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="WiFi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 14" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
add address name="ethernet_11" address=25.209.148.152 mask=255.0.0.0
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Thomaspc
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Wireless LAN adapter Local Area Connection* 14:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 16-DB-30-53-C6-70
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter WiFi:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Qualcomm Atheros AR9485 802.11b/g/n WiFi Adapter
   Physical Address. . . . . . . . . : A4-DB-30-53-C6-70
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Ethernet:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Qualcomm Atheros AR8161 PCI-E Gigabit Ethernet Controller (NDIS 6.30)
   Physical Address. . . . . . . . . : 78-E3-B5-C8-12-D1
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::e865:d6ea:d0c9:6952%3(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.131(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 06 May 2014 12:31:48
   Lease Expires . . . . . . . . . . : 07 May 2014 16:02:10
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 393798581
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-07-01-50-78-E3-B5-C8-12-D1
   DNS Servers . . . . . . . . . . . : 62.24.202.69
                                       78.151.236.4
                                       192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
Server:  in.ip06nec.opaltelecom.net
Address:  62.24.202.69
 
Name:    google.com
Addresses:  2a00:1450:4009:809::1007
 173.194.34.110
 173.194.34.98
 173.194.34.101
 173.194.34.104
 173.194.34.105
 173.194.34.99
 173.194.34.102
 173.194.34.97
 173.194.34.96
 173.194.34.100
 173.194.34.103
 
 
Pinging google.com [173.194.41.71] with 32 bytes of data:
Request timed out.
Reply from 173.194.41.71: bytes=32 time=13ms TTL=56
 
Ping statistics for 173.194.41.71:
    Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
    Minimum = 13ms, Maximum = 13ms, Average = 13ms
Server:  in.ip06nec.opaltelecom.net
Address:  62.24.202.69
 
Name:    yahoo.com
Addresses:  98.139.183.24
 98.138.253.109
 206.190.36.45
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Request timed out.
Reply from 98.138.253.109: bytes=32 time=150ms TTL=43
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
    Minimum = 150ms, Maximum = 150ms, Average = 150ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 18...16 db 30 53 c6 70 ......Microsoft Wi-Fi Direct Virtual Adapter
 17...a4 db 30 53 c6 70 ......Qualcomm Atheros AR9485 802.11b/g/n WiFi Adapter
  3...78 e3 b5 c8 12 d1 ......Qualcomm Atheros AR8161 PCI-E Gigabit Ethernet Controller (NDIS 6.30)
  1...........................Software Loopback Interface 1
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.131     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.131    276
    192.168.1.131  255.255.255.255         On-link     192.168.1.131    276
    192.168.1.255  255.255.255.255         On-link     192.168.1.131    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.131    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.131    276
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  3    276 fe80::/64                On-link
  3    276 fe80::e865:d6ea:d0c9:6952/128
                                    On-link
  1    306 ff00::/8                 On-link
  3    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
 If Metric Network Destination      Gateway
  0   9000 ::/0                     2620:9b::1900:1
  0 4294967295 2620:9b::/96             On-link
===========================================================================
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [84480] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (05/06/2014 06:39:53 PM) (Source: Application Hang) (User: )
Description: The program backgroundTaskHost.exe version 6.3.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 1a1c
 
Start Time: 01cf69511e702021
 
Termination Time: 4294967295
 
Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe
 
Report Id: 6b58cc09-d545-11e3-be9e-78e3b5c812d1
 
Faulting package full name: Facebook.Facebook_1.3.0.9_x64__8xx8rvfyw5nnt
 
Faulting package-relative application ID: App
 
Error: (05/06/2014 05:55:57 PM) (Source: Application Hang) (User: )
Description: The program backgroundTaskHost.exe version 6.3.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 1a10
 
Start Time: 01cf694b550e500d
 
Termination Time: 4294967295
 
Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe
 
Report Id: 488ec0c5-d53f-11e3-be9e-78e3b5c812d1
 
Faulting package full name: Facebook.Facebook_1.3.0.9_x64__8xx8rvfyw5nnt
 
Faulting package-relative application ID: App
 
Error: (05/06/2014 05:41:09 PM) (Source: Application Hang) (User: )
Description: The program backgroundTaskHost.exe version 6.3.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 1220
 
Start Time: 01cf69493c9c02a0
 
Termination Time: 4294967295
 
Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe
 
Report Id: 30265eb1-d53d-11e3-be9e-78e3b5c812d1
 
Faulting package full name: Facebook.Facebook_1.3.0.9_x64__8xx8rvfyw5nnt
 
Faulting package-relative application ID: App
 
Error: (05/06/2014 00:51:54 PM) (Source: Application Hang) (User: )
Description: The program backgroundTaskHost.exe version 6.3.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 788
 
Start Time: 01cf6920db06e70c
 
Termination Time: 4294967295
 
Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe
 
Report Id: ce8a6507-d514-11e3-be9e-78e3b5c812d1
 
Faulting package full name: Facebook.Facebook_1.3.0.9_x64__8xx8rvfyw5nnt
 
Faulting package-relative application ID: App
 
Error: (05/06/2014 00:32:27 PM) (Source: System Restore) (User: )
Description: An unspecified error occurred during System Restore: (Windows Update). Additional information: 0x80070571.
 
Error: (05/05/2014 09:22:12 PM) (Source: Application Hang) (User: )
Description: The program WinRAR.exe version 5.1.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: e50
 
Start Time: 01cf689f97d7c115
 
Termination Time: 6
 
Application Path: C:\Program Files\WinRAR\WinRAR.exe
 
Report Id: ed3cca4d-d492-11e3-be9d-78e3b5c812d1
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
Error: (05/05/2014 08:45:50 PM) (Source: Application Hang) (User: )
Description: The program backgroundTaskHost.exe version 6.3.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: c30
 
Start Time: 01cf6899877f4513
 
Termination Time: 4294967295
 
Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe
 
Report Id: d46f1d70-d48d-11e3-be9d-78e3b5c812d1
 
Faulting package full name: Facebook.Facebook_1.3.0.9_x64__8xx8rvfyw5nnt
 
Faulting package-relative application ID: App
 
Error: (05/05/2014 08:28:19 PM) (Source: Application Hang) (User: )
Description: The program backgroundTaskHost.exe version 6.3.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 17e8
 
Start Time: 01cf689772ef97d5
 
Termination Time: 4294967295
 
Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe
 
Report Id: 6675c870-d48b-11e3-be9d-78e3b5c812d1
 
Faulting package full name: Facebook.Facebook_1.3.0.9_x64__8xx8rvfyw5nnt
 
Faulting package-relative application ID: App
 
Error: (05/05/2014 05:28:18 PM) (Source: Application Hang) (User: )
Description: The program backgroundTaskHost.exe version 6.3.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 608
 
Start Time: 01cf687e4da054af
 
Termination Time: 4294967295
 
Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe
 
Report Id: 4124febc-d472-11e3-be9d-78e3b5c812d1
 
Faulting package full name: Facebook.Facebook_1.3.0.9_x64__8xx8rvfyw5nnt
 
Faulting package-relative application ID: App
 
Error: (05/05/2014 04:28:19 PM) (Source: Application Hang) (User: )
Description: The program backgroundTaskHost.exe version 6.3.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 8f8
 
Start Time: 01cf6875ebda53ec
 
Termination Time: 4294967295
 
Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe
 
Report Id: df5d502b-d469-11e3-be9d-78e3b5c812d1
 
Faulting package full name: Facebook.Facebook_1.3.0.9_x64__8xx8rvfyw5nnt
 
Faulting package-relative application ID: App
 
 
System errors:
=============
Error: (05/06/2014 06:20:50 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 10.
 
Error: (05/06/2014 04:24:52 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume Windows.
 
The exact nature of the corruption is unknown.  The file system structures need to be scanned online.
 
Error: (05/06/2014 04:24:52 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume Windows.
 
The exact nature of the corruption is unknown.  The file system structures need to be scanned online.
 
Error: (05/06/2014 04:24:52 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume Windows.
 
The exact nature of the corruption is unknown.  The file system structures need to be scanned online.
 
Error: (05/06/2014 04:24:52 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume Windows.
 
The exact nature of the corruption is unknown.  The file system structures need to be scanned online.
 
Error: (05/06/2014 04:24:52 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume Windows.
 
The exact nature of the corruption is unknown.  The file system structures need to be scanned online.
 
Error: (05/06/2014 04:24:52 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume Windows.
 
The exact nature of the corruption is unknown.  The file system structures need to be scanned online.
 
Error: (05/06/2014 04:24:52 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume Windows.
 
The exact nature of the corruption is unknown.  The file system structures need to be scanned online.
 
Error: (05/06/2014 04:24:52 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume Windows.
 
The exact nature of the corruption is unknown.  The file system structures need to be scanned online.
 
Error: (05/06/2014 04:24:52 PM) (Source: Ntfs) (User: NT AUTHORITY)
Description: A corruption was discovered in the file system structure on volume Windows.
 
The exact nature of the corruption is unknown.  The file system structures need to be scanned online.
 
 
Microsoft Office Sessions:
=========================
 
=========================== Installed Programs ============================
 
µTorrent (Version: 3.4.1.30888)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Adblock Plus for IE (32-bit and 64-bit) (Version: 1.1)
Adblock Plus for IE (Version: 1.1)
Adobe Flash Player 13 Plugin (Version: 13.0.0.206)
Adobe Photoshop CS6 (Version: 13.0)
Adobe Photoshop Lightroom 4.1 64-bit (Version: 4.1.2)
Alcor Micro USB Card Reader Driver  (Version: 20.22.2217.13862)
Alien Skin Exposure 3
AMD Catalyst Install Manager (Version: 8.0.911.0)
AMD VISION Engine Control Center (Version: 2013.0322.413.5642)
APB Reloaded
Apple Application Support (Version: 3.0.1)
Apple Mobile Device Support (Version: 7.1.1.3)
Apple Software Update (Version: 2.1.3.127)
Audacity 2.0.5 (Version: 2.0.5)
Authorizer 2.5.0.40960 (Version: 2.5.0.40960)
Authorizer Ignition Key Support (Version: 1.0.5.0)
Bandicam (Version: 1.9.3.492)
Bandisoft MPEG-1 Decoder
Battle.net
Battlefield 1942™ (Version: 1.6.20.0)
Battlefield 3™ (Version: 1.0.0.0)
Battlefield Play4Free
Battlelog Web Plugins (Version: 2.3.2)
Blacklight: Retribution
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2013.0322.413.5642)
Catalyst Control Center InstallProxy (Version: 2013.0322.413.5642)
Catalyst Control Center Localization All (Version: 2013.0322.413.5642)
CCC Help Chinese Standard (Version: 2013.0322.0412.5642)
CCC Help Chinese Traditional (Version: 2013.0322.0412.5642)
CCC Help Czech (Version: 2013.0322.0412.5642)
CCC Help Danish (Version: 2013.0322.0412.5642)
CCC Help Dutch (Version: 2013.0322.0412.5642)
CCC Help English (Version: 2013.0322.0412.5642)
CCC Help Finnish (Version: 2013.0322.0412.5642)
CCC Help French (Version: 2013.0322.0412.5642)
CCC Help German (Version: 2013.0322.0412.5642)
CCC Help Greek (Version: 2013.0322.0412.5642)
CCC Help Hungarian (Version: 2013.0322.0412.5642)
CCC Help Italian (Version: 2013.0322.0412.5642)
CCC Help Japanese (Version: 2013.0322.0412.5642)
CCC Help Korean (Version: 2013.0322.0412.5642)
CCC Help Norwegian (Version: 2013.0322.0412.5642)
CCC Help Polish (Version: 2013.0322.0412.5642)
CCC Help Portuguese (Version: 2013.0322.0412.5642)
CCC Help Russian (Version: 2013.0322.0412.5642)
CCC Help Spanish (Version: 2013.0322.0412.5642)
CCC Help Swedish (Version: 2013.0322.0412.5642)
CCC Help Thai (Version: 2013.0322.0412.5642)
CCC Help Turkish (Version: 2013.0322.0412.5642)
ccc-utility64 (Version: 2013.0322.413.5642)
CCleaner (Version: 4.10)
Cross Fire En
CyberLink LabelPrint (Version: 2.5.4.6522)
CyberLink Media Suite 10 (Version: 10.0.4.3003)
Cyberlink PhotoDirector (Version: 3.0.2.4016)
CyberLink Power2Go 8 (Version: 8.0.4.2921)
CyberLink PowerDirector 10 (Version: 10.0.4.3007)
CyberLink PowerDVD 12 (Version: 12.0.2.3324)
D3DX10 (Version: 15.4.2368.0902)
DayZ
Dfx for Adobe Photoshop
Dfx for Adobe Photoshop (Version: 2.0.2.1)
Dota 2
Dxtory version 2.0.122 (Version: 2.0.122)
ESET NOD32 Antivirus (Version: 7.0.302.26)
ESN Sonar (Version: 0.70.4)
FindRight (Version: 2014.02.19.174052)
Fraps (remove only)
Free YouTube Downloader 3.5.187
GameMaker: Studio
Garry's Mod
Google Chrome (Version: 34.0.1847.131)
Google Update Helper (Version: 1.3.24.7)
Grand Theft Auto IV (Version: 1.00.0000)
Grand Theft Auto: Episodes From Liberty City (Version: 1.1.0.0)
GRID 2 Demo
HandBrake 0.9.9.1 (Version: 0.9.9.1)
Hewlett-Packard ACLM.NET v1.2.2.3 (Version: 1.00.0000)
HP Connected Music (Meridian - installer) (Version: 1.0)
HP Connected Music (Meridian - player) (Version: 1.1 (build 106) hp)
HP Customer Experience Enhancements (Version: 6.0.1.8)
HP Postscript Converter (Version: 4.0.4100)
HP Quick Start (Version: 1.0.4660.30220)
HP Registration Service (Version: 1.2.6668.4491)
HP Support Assistant (Version: 7.4.45.4)
HP Support Information (Version: 12.00.0000)
HTC Driver Installer (Version: 4.10.0.001)
HTC Sync Manager (Version: 2.4.36.0)
IDT Audio (Version: 1.0.6482.0)
Iminent (Version: 6.46.1.0)
IPTInstaller (Version: 4.0.9)
iTunes (Version: 11.1.5.5)
Java 7 Update 55 (Version: 7.0.550)
Java Auto Updater (Version: 2.1.9.8)
Junk Mail filter update (Version: 16.4.3528.0331)
LAME v3.99.3 (for Windows)
Lightworks (Version: 11.5.1.0)
Line 6 Uninstaller (Version: )
LogMeIn (Version: 4.1.4132)
LogMeIn Hamachi (Version: 2.2.0.188)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office (Version: 15.0.4454.1510)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft OneDrive (Version: 17.0.4035.0328)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (Version: 11.0.51106.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
MotioninJoy Gamepad tool 0.7.1001 (Version: 0.7.1001)
Movie Maker (Version: 16.4.3528.0331)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MuseScore 1.3 (Version: 1.3.0)
MyPC Backup  (Version: )
Need for Speed™ Most Wanted (Version: 1.0.0.0)
Need For Speed™ World (Version: 1.0.0.1599)
No More Room in Hell
NVIDIA PhysX (Version: 9.10.0513)
Origin (Version: 9.0.13.2141)
PC Speed Up (Version: 3.2.15.0)
PDF Settings CS6 (Version: 11.0)
Photo Gallery (Version: 16.4.3528.0331)
PlanetSide 2 (Version: 1.0.3.183)
PunkBuster Services (Version: 0.991)
Qualcomm Atheros Driver Installation Program (Version: 10.0)
RaceRoom Racing Experience 
RaceRoom Racing Experience Launcher (Version: 1.0)
Realtek Card Reader (Version: 6.2.9200.30164)
Reason 7.0.0 (Version: 7.0.0)
Reason Essentials 2.0.0 (Version: 2.0.0)
Reason Essentials Ignition Key Support (Version: 1.0.5.0)
Recovery Manager (Version: 5.5.0.6208)
ReCycle Demo 2.2.4 (Version: 2.2.4)
ROBLOX Player for Thomas
RocketDock 1.3.5
Rockstar Games Social Club (Version: 1.00.0000)
RrFilter (Version: 1.0.0.0)
RrSavings (Version: 1.0.0.0)
rrsavings (Version: 2.0.1)
Safari (Version: 5.34.57.2)
Saints Row IV Inauguration Station
SanDiskSecureAccess_Manager.exe (Version: 1.1.19755)
Settings Manager (Version: 5.0.0.12386)
Silver Efex Pro 2 (Version: 2.0.0.0)
Skype™ 6.3 (Version: 6.3.105)
Stardock ObjectDock (Version: 2.10)
Steam
Team Fortress 2
Tom Clancy's Ghost Recon Phantoms - EU
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2878297) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
V-bates 2.0.0.434 (Version: 2.0.0.434)
Vegas Pro 12.0 (64-bit) (Version: 12.0.770)
Video Performer
VIS
War Thunder Launcher 1.0.1.322
Warface Launcher (Beta) (Version: 1.0.0)
Windows Live Communications Platform (Version: 16.4.3528.0331)
Windows Live Essentials (Version: 16.4.3528.0331)
Windows Live Installer (Version: 16.4.3528.0331)
Windows Live Mail (Version: 16.4.3528.0331)
Windows Live Messenger (Version: 16.4.3528.0331)
Windows Live MIME IFilter (Version: 16.4.3528.0331)
Windows Live Photo Common (Version: 16.4.3528.0331)
Windows Live PIMT Platform (Version: 16.4.3528.0331)
Windows Live SOXE (Version: 16.4.3528.0331)
Windows Live SOXE Definitions (Version: 16.4.3528.0331)
Windows Live UX Platform (Version: 16.4.3528.0331)
Windows Live UX Platform Language Pack (Version: 16.4.3528.0331)
Windows Live Writer (Version: 16.4.3528.0331)
Windows Live Writer Resources (Version: 16.4.3528.0331)
WinRAR 5.01 (64-bit) (Version: 5.01.0)
World of Tanks
 
========================= Memory info: ===================================
 
Percentage of memory in use: 35%
Total physical RAM: 5317.14 MB
Available physical RAM: 3440.98 MB
Total Pagefile: 6213.14 MB
Available Pagefile: 3650.61 MB
Total Virtual: 4095.88 MB
Available Virtual: 3977.66 MB
 
========================= Partitions: =====================================
 
1 Drive c: (Windows) (Fixed) (Total:912.97 GB) (Free:472.67 GB) NTFS
2 Drive d: (Recovery Image) (Fixed) (Total:16.72 GB) (Free:2.03 GB) NTFS
3 Drive e: (4 GIG) (Removable) (Total:3.73 GB) (Free:3.72 GB) FAT32
4 Drive f: (GTA IV Disc 1) (CDROM) (Total:7.03 GB) (Free:0 GB) UDF
 
========================= Users: ========================================
 
User accounts for \\THOMASPC
 
Administrator            Guest                    Thomas                   
 
 
**** End of log ****


#6 julesp

julesp
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:43 PM

Posted 06 May 2014 - 04:10 PM

Results from TDSSKiller

 

 

19:18:48.0707 0x1a9c  TDSS rootkit removing tool 3.0.0.34 Apr 29 2014 18:20:10
19:18:48.0707 0x1a9c  UEFI system
19:18:51.0646 0x1a9c  ============================================================
19:18:51.0646 0x1a9c  Current date / time: 2014/05/06 19:18:51.0646
19:18:51.0646 0x1a9c  SystemInfo:
19:18:51.0646 0x1a9c  
19:18:51.0646 0x1a9c  OS Version: 6.3.9600 ServicePack: 0.0
19:18:51.0646 0x1a9c  Product type: Workstation
19:18:51.0646 0x1a9c  ComputerName: THOMASPC
19:18:51.0646 0x1a9c  UserName: Thomas
19:18:51.0646 0x1a9c  Windows directory: C:\WINDOWS
19:18:51.0646 0x1a9c  System windows directory: C:\WINDOWS
19:18:51.0646 0x1a9c  Running under WOW64
19:18:51.0646 0x1a9c  Processor architecture: Intel x64
19:18:51.0646 0x1a9c  Number of processors: 4
19:18:51.0646 0x1a9c  Page size: 0x1000
19:18:51.0646 0x1a9c  Boot type: Normal boot
19:18:51.0646 0x1a9c  ============================================================
19:18:51.0905 0x1a9c  KLMD registered as C:\WINDOWS\system32\drivers\79232848.sys
19:18:52.0041 0x1a9c  System UUID: {7CDF5EA7-3226-2CEB-D777-6883233D4297}
19:18:52.0303 0x1a9c  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:18:52.0321 0x1a9c  Drive \Device\Harddisk1\DR1 - Size: 0xEF300000 (3.74 Gb), SectorSize: 0x200, Cylinders: 0x1E7, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:18:52.0323 0x1a9c  ============================================================
19:18:52.0323 0x1a9c  \Device\Harddisk0\DR0:
19:18:52.0323 0x1a9c  GPT partitions:
19:18:52.0323 0x1a9c  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {9A3E6E5C-43CB-4F96-B4E7-EBDC3257C0E2}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x1FF800
19:18:52.0323 0x1a9c  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {2068C011-E40C-49A8-BD56-9FE7D4F9F616}, Name: EFI system partition, StartLBA 0x200000, BlocksNum 0xB4000
19:18:52.0323 0x1a9c  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {07380266-9214-42F3-AD69-2540CDC6AC8E}, Name: Microsoft reserved partition, StartLBA 0x2B4000, BlocksNum 0x40000
19:18:52.0323 0x1a9c  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {77774F97-4BF1-4FC7-87B9-1BCCB76C1A42}, Name: Basic data partition, StartLBA 0x2F4000, BlocksNum 0x721F0000
19:18:52.0323 0x1a9c  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {CC6353FA-4E78-4656-825E-EE850F5175FC}, Name: , StartLBA 0x724E4000, BlocksNum 0xAF000
19:18:52.0323 0x1a9c  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {4382C0C1-50FA-48F0-B70C-436A179F2982}, Name: Basic data partition, StartLBA 0x72593000, BlocksNum 0x2171000
19:18:52.0323 0x1a9c  MBR partitions:
19:18:52.0323 0x1a9c  \Device\Harddisk1\DR1:
19:18:52.0324 0x1a9c  MBR partitions:
19:18:52.0324 0x1a9c  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x20, BlocksNum 0x7797E0
19:18:52.0324 0x1a9c  ============================================================
19:18:52.0341 0x1a9c  C: <-> \Device\Harddisk0\DR0\Partition4
19:18:52.0365 0x1a9c  D: <-> \Device\Harddisk0\DR0\Partition6
19:18:52.0365 0x1a9c  ============================================================
19:18:52.0365 0x1a9c  Initialize success
19:18:52.0365 0x1a9c  ============================================================
19:18:53.0453 0x0830  ============================================================
19:18:53.0453 0x0830  Scan started
19:18:53.0453 0x0830  Mode: Manual; 
19:18:53.0453 0x0830  ============================================================
19:18:53.0453 0x0830  KSN ping started
19:18:58.0786 0x0830  KSN ping finished: true
19:18:59.0188 0x0830  ================ Scan system memory ========================
19:18:59.0188 0x0830  System memory - ok
19:18:59.0189 0x0830  ================ Scan services =============================
19:18:59.0365 0x0830  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
19:18:59.0373 0x0830  1394ohci - ok
19:18:59.0400 0x0830  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
19:18:59.0402 0x0830  3ware - ok
19:18:59.0450 0x0830  [ 9539F7917B4B6D92C90F0FAA6B86C605, B4C284E8EECC2E7025053A3320EFDC9F47BCA9828853AD2A805DB826CA4AC27E ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
19:18:59.0459 0x0830  ACPI - ok
19:18:59.0472 0x0830  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
19:18:59.0474 0x0830  acpiex - ok
19:18:59.0483 0x0830  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
19:18:59.0484 0x0830  acpipagr - ok
19:18:59.0517 0x0830  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
19:18:59.0518 0x0830  AcpiPmi - ok
19:18:59.0526 0x0830  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
19:18:59.0527 0x0830  acpitime - ok
19:18:59.0603 0x0830  [ 7C7E868E1D8096ED08D80FF7712BB9D8, EB4438F3CC377728173E018A763F0D0A8D5BBA4A289F554036D06B24030D2D62 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:18:59.0612 0x0830  AdobeFlashPlayerUpdateSvc - ok
19:18:59.0645 0x0830  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
19:18:59.0657 0x0830  ADP80XX - ok
19:18:59.0691 0x0830  [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
19:18:59.0695 0x0830  AeLookupSvc - ok
19:18:59.0715 0x0830  [ 239268BAB58EAE9A3FF4E08334C00451, 13F927730DF9BAEDB3A7AB6F7238270A20E4CDEB3D5324A1C471DF2209F3D239 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
19:18:59.0724 0x0830  AFD - ok
19:18:59.0761 0x0830  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
19:18:59.0763 0x0830  agp440 - ok
19:18:59.0774 0x0830  [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
19:18:59.0775 0x0830  ahcache - ok
19:18:59.0812 0x0830  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\WINDOWS\System32\alg.exe
19:18:59.0814 0x0830  ALG - ok
19:18:59.0854 0x0830  [ FED8F396537A5E4FA58E6C8BA8070081, 0A14B143BB8C0AE0AA56A2197DFC5F7BDC43F0693F3A66E69C04043737AD11C1 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
19:18:59.0861 0x0830  AMD External Events Utility - ok
19:18:59.0893 0x0830  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
19:18:59.0896 0x0830  AmdK8 - ok
19:19:00.0225 0x0830  [ EB3F3FDC7D0EC927A4AB31F9F6235A7C, B10087C9C277065926884FA8D18A300C54B8FFDCE08A31EF4828AF2AC2685791 ] amdkmdag        C:\WINDOWS\system32\DRIVERS\atikmdag.sys
19:19:00.0408 0x0830  amdkmdag - ok
19:19:00.0463 0x0830  [ 160159231941801A458FEF8A73D494AC, E014C68232D5FA2216AD36B2BF0D3F51C821B8D0E7513F2F33DD2591F945E5C4 ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
19:19:00.0473 0x0830  amdkmdap - ok
19:19:00.0495 0x0830  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
19:19:00.0497 0x0830  AmdPPM - ok
19:19:00.0511 0x0830  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
19:19:00.0512 0x0830  amdsata - ok
19:19:00.0531 0x0830  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
19:19:00.0536 0x0830  amdsbs - ok
19:19:00.0549 0x0830  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
19:19:00.0550 0x0830  amdxata - ok
19:19:00.0592 0x0830  [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
19:19:00.0593 0x0830  AppHostSvc - ok
19:19:00.0613 0x0830  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\WINDOWS\system32\drivers\appid.sys
19:19:00.0615 0x0830  AppID - ok
19:19:00.0646 0x0830  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
19:19:00.0647 0x0830  AppIDSvc - ok
19:19:00.0679 0x0830  [ 8D6F535461F6CFF75A8ADDF83024C904, F2A97EC4A6284F28B685A3CE2D450F61E75EE8692D718A6AA352D5734BBBAD7B ] Appinfo         C:\WINDOWS\System32\appinfo.dll
19:19:00.0681 0x0830  Appinfo - ok
19:19:00.0738 0x0830  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:19:00.0740 0x0830  Apple Mobile Device - ok
19:19:00.0797 0x0830  [ CB12C47647D8BDAFAA94C0856B14128B, 5590C98095357C92563EF94800107D3611AA6ECA1A70BE463C03B279E618A6C4 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
19:19:00.0816 0x0830  AppReadiness - ok
19:19:00.0875 0x0830  [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
19:19:00.0896 0x0830  AppXSvc - ok
19:19:00.0920 0x0830  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
19:19:00.0922 0x0830  arcsas - ok
19:19:01.0060 0x0830  [ AA2E8C6B8D7EA7BAF04C988801927F48, 4B82043F1B9C67CDCDC71102F7AEE05EEA8F9775A5CB33AE80F4DCDB42521C40 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:19:01.0061 0x0830  aspnet_state - ok
19:19:01.0074 0x0830  [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:19:01.0075 0x0830  AsyncMac - ok
19:19:01.0090 0x0830  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
19:19:01.0092 0x0830  atapi - ok
19:19:01.0199 0x0830  [ E87D8E9A668E7EB76E4B0BD51DE2D7F7, 12F92F810E569EF632516DC30AEA8FDA9BE2FDED187BC8AF3BEE31CC5A3901E0 ] athr            C:\WINDOWS\system32\DRIVERS\athwbx.sys
19:19:01.0257 0x0830  athr - ok
19:19:01.0295 0x0830  [ F83D49F4B10E813A1F9AC8B92F16592D, E7B2F508D33861A9826F2C7B2087F14F6937C9B8F660D6363F737BAC60BD4578 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
19:19:01.0299 0x0830  AudioEndpointBuilder - ok
19:19:01.0329 0x0830  [ 9A71BD2E4B8EB550D0022AFDF8616014, 34D595684624114F23265CE8031ADC9E03AD374A5AFEEBB794AC57796A3CDA2F ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
19:19:01.0342 0x0830  Audiosrv - ok
19:19:01.0375 0x0830  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
19:19:01.0378 0x0830  AxInstSV - ok
19:19:01.0400 0x0830  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
19:19:01.0408 0x0830  b06bdrv - ok
19:19:01.0426 0x0830  BackupStack - ok
19:19:01.0434 0x0830  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
19:19:01.0436 0x0830  BasicDisplay - ok
19:19:01.0457 0x0830  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
19:19:01.0458 0x0830  BasicRender - ok
19:19:01.0473 0x0830  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
19:19:01.0474 0x0830  bcmfn2 - ok
19:19:01.0493 0x0830  [ 5BD3A2351BEFCAC8757626271F8EFA89, 6508673210129CF7EFCA93EC7874208FAD361E37814EB4FE9E0EC034E73D5F16 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
19:19:01.0499 0x0830  BDESVC - ok
19:19:01.0530 0x0830  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
19:19:01.0530 0x0830  Beep - ok
19:19:01.0556 0x0830  [ BBE15881FE11BE37112F8320C41DAFB9, 5CE92563628812FF6E00556D8E2DAD6ADCAAF0F4C3B90123F1D98ED6E3BB6DAD ] BFE             C:\WINDOWS\System32\bfe.dll
19:19:01.0569 0x0830  BFE - ok
19:19:01.0627 0x0830  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\WINDOWS\System32\qmgr.dll
19:19:01.0645 0x0830  BITS - ok
19:19:01.0699 0x0830  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:19:01.0716 0x0830  Bonjour Service - ok
19:19:01.0743 0x0830  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
19:19:01.0745 0x0830  bowser - ok
19:19:01.0779 0x0830  [ F2559A492AF8D653D1F47ADABA4C3E97, 77347915FB433023769699DFC9511F54E69C7FC7AB75F57FDC1A58E64A7126DE ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
19:19:01.0785 0x0830  BrokerInfrastructure - ok
19:19:01.0802 0x0830  [ D528D6A92D187777691993DD757AF19A, 2C79978310193431E5FC462368424A172858D5351C92D4815C2A7E35B5DDE50C ] Browser         C:\WINDOWS\System32\browser.dll
19:19:01.0805 0x0830  Browser - ok
19:19:01.0816 0x0830  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
19:19:01.0817 0x0830  BthAvrcpTg - ok
19:19:01.0830 0x0830  [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
19:19:01.0831 0x0830  BthHFEnum - ok
19:19:01.0840 0x0830  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
19:19:01.0841 0x0830  bthhfhid - ok
19:19:01.0858 0x0830  [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
19:19:01.0860 0x0830  BTHMODEM - ok
19:19:01.0875 0x0830  [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\WINDOWS\system32\bthserv.dll
19:19:01.0877 0x0830  bthserv - ok
19:19:01.0892 0x0830  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
19:19:01.0894 0x0830  cdfs - ok
19:19:01.0907 0x0830  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
19:19:01.0911 0x0830  cdrom - ok
19:19:01.0949 0x0830  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
19:19:01.0953 0x0830  CertPropSvc - ok
19:19:01.0972 0x0830  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
19:19:01.0974 0x0830  circlass - ok
19:19:02.0029 0x0830  [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
19:19:02.0043 0x0830  CLFS - ok
19:19:02.0066 0x0830  [ 3A0028F785F7DD320FD4756E27CAB343, AE41D73536432FC4C6C82AE21A9504FD41A1AF862AC12EB90D21129039395BFC ] CLVirtualDrive  C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
19:19:02.0068 0x0830  CLVirtualDrive - ok
19:19:02.0077 0x0830  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
19:19:02.0078 0x0830  CmBatt - ok
19:19:02.0102 0x0830  [ 4627C1FBF2802425A408A2D2AF28CF85, 8B91C1BE1104BE93C0D689A20315FD106D89A076267493319B104EE73A90CDCB ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
19:19:02.0112 0x0830  CNG - ok
19:19:02.0200 0x0830  [ 6FACA9C62024E14251C7ED33A8E8B660, F6E6810BBBF22600596D2F113009CF6246B0317159DA079DC491F51430F178E8 ] CodeMeter.exe   C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
19:19:02.0240 0x0830  CodeMeter.exe - ok
19:19:02.0277 0x0830  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
19:19:02.0279 0x0830  CompositeBus - ok
19:19:02.0283 0x0830  COMSysApp - ok
19:19:02.0297 0x0830  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
19:19:02.0298 0x0830  condrv - ok
19:19:02.0340 0x0830  [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
19:19:02.0346 0x0830  CryptSvc - ok
19:19:02.0402 0x0830  [ 84E216F219F06836F8772685345B8E23, AB1538B13416DC871B232E8C50D97025CEF94711C33AC5396EFCCB7C338BD7A2 ] CyberLink PowerDVD 12 Media Server Monitor Service c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
19:19:02.0405 0x0830  CyberLink PowerDVD 12 Media Server Monitor Service - ok
19:19:02.0420 0x0830  [ F03C2EEEDFB158BDF905CC9AE46CE758, AF6AADD87A6E437FEB116D7AE9539F5B3287955D04FA337A8E55190EFBEFD9C7 ] CyberLink PowerDVD 12 Media Server Service c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
19:19:02.0431 0x0830  CyberLink PowerDVD 12 Media Server Service - ok
19:19:02.0455 0x0830  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\WINDOWS\system32\drivers\dam.sys
19:19:02.0456 0x0830  dam - ok
19:19:02.0504 0x0830  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
19:19:02.0517 0x0830  DcomLaunch - ok
19:19:02.0555 0x0830  [ 78089FCDE082FD4FA471C30A7C2DC736, C4816D7125C39290C3B0B1F580CEE8BB7FFC004F727EA9E9767671D3EDB946AE ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
19:19:02.0562 0x0830  defragsvc - ok
19:19:02.0604 0x0830  [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] DeviceAssociationService C:\WINDOWS\system32\das.dll
19:19:02.0610 0x0830  DeviceAssociationService - ok
19:19:02.0650 0x0830  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
19:19:02.0654 0x0830  DeviceInstall - ok
19:19:02.0691 0x0830  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
19:19:02.0694 0x0830  Dfsc - ok
19:19:02.0758 0x0830  [ 8B107F55FD61654A6C9F1B819AEC5FC4, 773B1B9D3583F17B7C89BDE1EC4487ABB0AE039DF4583F8746460425443DA291 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
19:19:02.0764 0x0830  Dhcp - ok
19:19:02.0796 0x0830  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\WINDOWS\system32\drivers\disk.sys
19:19:02.0798 0x0830  disk - ok
19:19:02.0827 0x0830  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
19:19:02.0828 0x0830  dmvsc - ok
19:19:02.0850 0x0830  [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
19:19:02.0854 0x0830  Dnscache - ok
19:19:02.0870 0x0830  [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
19:19:02.0875 0x0830  dot3svc - ok
19:19:02.0907 0x0830  [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\WINDOWS\system32\dps.dll
19:19:02.0911 0x0830  DPS - ok
19:19:02.0938 0x0830  [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
19:19:02.0939 0x0830  drmkaud - ok
19:19:02.0974 0x0830  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
19:19:02.0978 0x0830  DsmSvc - ok
19:19:03.0060 0x0830  [ C7D252742946DD395670649742FBD73D, 333CC984CF318D36EA8C5867077A1732A214445EB6B7CF7AC2E8F1C8259CD9C7 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
19:19:03.0083 0x0830  DXGKrnl - ok
19:19:03.0118 0x0830  [ FE96AA1A36E76588C80DF1040286DDE1, 86EED8A0B59CD1930E6282997537ED94333FC7D45E3FE5A4D82057E1C8E5C2CD ] eamonm          C:\WINDOWS\system32\DRIVERS\eamonm.sys
19:19:03.0122 0x0830  eamonm - ok
19:19:03.0132 0x0830  [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
19:19:03.0135 0x0830  Eaphost - ok
19:19:03.0239 0x0830  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
19:19:03.0290 0x0830  ebdrv - ok
19:19:03.0303 0x0830  [ FD4BC52A6978A50A81B01E2C74D8737E, 5F12870CB83E7821F12A27E9BB30A80C58A7E81C36DA972194EBF333A5C90E62 ] edevmon         C:\WINDOWS\system32\DRIVERS\edevmon.sys
19:19:03.0307 0x0830  edevmon - ok
19:19:03.0330 0x0830  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\WINDOWS\System32\lsass.exe
19:19:03.0332 0x0830  EFS - ok
19:19:03.0361 0x0830  [ 807BA90D47F8885C09E1D6AFBB706E18, A803FE639C9C87733CA73D8F6C04A8CEB28DC45EEEA6CEC01ED3D4124C8E48EA ] ehdrv           C:\WINDOWS\system32\DRIVERS\ehdrv.sys
19:19:03.0364 0x0830  ehdrv - ok
19:19:03.0373 0x0830  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
19:19:03.0375 0x0830  EhStorClass - ok
19:19:03.0390 0x0830  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
19:19:03.0392 0x0830  EhStorTcgDrv - ok
19:19:03.0491 0x0830  [ 4CB575D97653FA91FFB02DA3105EB084, 59FB4D2485EEDBCC56D92C1F5DF3FEAE67D751F3AD7AEA7590F3C73107C829E8 ] ekrn            C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
19:19:03.0517 0x0830  ekrn - ok
19:19:03.0532 0x0830  [ FEE856E92AFCC61DA146F186E291FFD7, 37F703320EFBA75B9AEF1969CAFFBF32463E1D3B1C4BD05DC9E4C6CA60AA81AB ] epfwwfpr        C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys
19:19:03.0535 0x0830  epfwwfpr - ok
19:19:03.0547 0x0830  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
19:19:03.0548 0x0830  ErrDev - ok
19:19:03.0598 0x0830  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\WINDOWS\system32\es.dll
19:19:03.0606 0x0830  EventSystem - ok
19:19:03.0637 0x0830  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
19:19:03.0644 0x0830  exfat - ok
19:19:03.0686 0x0830  [ F3DA799D36CF182BDB0F813FCDB8388E, D1E8DBCEC04745B9E688246011B7F97FF6B01B9C5E73299B6CAC156763E5156F ] F06DEFF2-5B9C-490D-910F-35D3A9119622 C:\Program Files (x86)\Settings Manager\systemk\x64\systemkmgrc1.cfg
19:19:03.0688 0x0830  F06DEFF2-5B9C-490D-910F-35D3A9119622 - ok
19:19:03.0710 0x0830  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
19:19:03.0718 0x0830  fastfat - ok
19:19:03.0775 0x0830  [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\WINDOWS\system32\fxssvc.exe
19:19:03.0787 0x0830  Fax - ok
19:19:03.0807 0x0830  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
19:19:03.0808 0x0830  fdc - ok
19:19:03.0839 0x0830  [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
19:19:03.0840 0x0830  fdPHost - ok
19:19:03.0852 0x0830  [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
19:19:03.0854 0x0830  FDResPub - ok
19:19:03.0865 0x0830  [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
19:19:03.0868 0x0830  fhsvc - ok
19:19:03.0900 0x0830  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
19:19:03.0902 0x0830  FileInfo - ok
19:19:03.0915 0x0830  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
19:19:03.0916 0x0830  Filetrace - ok
19:19:03.0925 0x0830  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
19:19:03.0926 0x0830  flpydisk - ok
19:19:03.0964 0x0830  [ 46D1DF775FFF14585218BBE16E5B2C9A, F39EF615B18CEC7BA3F68C7639B636C06812AD9DBEDE90EB7B2C04C64396FC9E ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
19:19:03.0970 0x0830  FltMgr - ok
19:19:04.0018 0x0830  [ 183CA7699474FDE235853967D1DA4D9B, 8FBD5997F1E39AFFD8C4322520DF4D2227279B5149017D825C188D7411BA99AF ] FontCache       C:\WINDOWS\system32\FntCache.dll
19:19:04.0039 0x0830  FontCache - ok
19:19:04.0105 0x0830  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:19:04.0107 0x0830  FontCache3.0.0.0 - ok
19:19:04.0123 0x0830  [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
19:19:04.0126 0x0830  FsDepends - ok
19:19:04.0140 0x0830  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:19:04.0142 0x0830  Fs_Rec - ok
19:19:04.0197 0x0830  [ B2BD017231836DA9F63F41E3A075D73E, 31B1DD677FE8B4F90B8AB5A131DA0105439AC2D91BC0CEDC972D2D87E595A686 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
19:19:04.0210 0x0830  fvevol - ok
19:19:04.0224 0x0830  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
19:19:04.0225 0x0830  FxPPM - ok
19:19:04.0236 0x0830  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
19:19:04.0237 0x0830  gagp30kx - ok
19:19:04.0257 0x0830  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
19:19:04.0259 0x0830  GEARAspiWDM - ok
19:19:04.0290 0x0830  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
19:19:04.0291 0x0830  gencounter - ok
19:19:04.0303 0x0830  [ EF3AE7773394DF49CE74AF78A1C8D23D, CB12FF004C460A89F12AFF2467512B479A07CA10D4280CD4E624A5A9CDAB9C1B ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
19:19:04.0306 0x0830  GPIOClx0101 - ok
19:19:04.0387 0x0830  [ 58C11DCCC6241CC13861A559E31A69F0, 78B38BBC362C9209B06849CC79301EC595AFCE3E2BDE402A0B1F2725D3EDEFA3 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
19:19:04.0407 0x0830  gpsvc - ok
19:19:04.0454 0x0830  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:19:04.0459 0x0830  gupdate - ok
19:19:04.0468 0x0830  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:19:04.0473 0x0830  gupdatem - ok
19:19:04.0512 0x0830  [ 83BC656EE0821F9E5ED7AE1AE3DEDE0E, 788583DB61677856415588E3D1A2429C6C5DC360DC2CE6185DD73E774DF77C35 ] Hamachi         C:\WINDOWS\system32\DRIVERS\Hamdrv.sys
19:19:04.0513 0x0830  Hamachi - ok
19:19:04.0585 0x0830  [ C57174C191F04B07A9F24320C57888E1, 6FD5CBD10923E13F57D9CC8FD2DF2B009DC82431C3939E37223BEBBA2D1A70DA ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
19:19:04.0618 0x0830  Hamachi2Svc - ok
19:19:04.0638 0x0830  [ 03909BDBFF0DCACCABF2B2D4ADEE44DC, 42E631B23BB004F5C2128BAD334C21AB20FAD08AFED9E8191AE9373531BC73DD ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
19:19:04.0640 0x0830  HDAudBus - ok
19:19:04.0647 0x0830  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
19:19:04.0648 0x0830  HidBatt - ok
19:19:04.0690 0x0830  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
19:19:04.0694 0x0830  HidBth - ok
19:19:04.0706 0x0830  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
19:19:04.0708 0x0830  hidi2c - ok
19:19:04.0725 0x0830  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
19:19:04.0726 0x0830  HidIr - ok
19:19:04.0761 0x0830  [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\WINDOWS\system32\hidserv.dll
19:19:04.0763 0x0830  hidserv - ok
19:19:04.0792 0x0830  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
19:19:04.0793 0x0830  HidUsb - ok
19:19:04.0832 0x0830  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
19:19:04.0835 0x0830  hkmsvc - ok
19:19:04.0853 0x0830  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
19:19:04.0859 0x0830  HomeGroupListener - ok
19:19:04.0908 0x0830  [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
19:19:04.0924 0x0830  HomeGroupProvider - ok
19:19:04.0957 0x0830  [ 2A8B93A01621E100A578E83C768AFA2C, 6637D260AF180D1F200D219796FCE6D524FC6BF57C0CEEF9E1B3616E85865AD1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
19:19:04.0961 0x0830  HP Support Assistant Service - ok
19:19:05.0005 0x0830  [ D2946D9F020AE76E9CEF9B4A6DF838C0, C29CE594879385DA12B8EAA90B258905827B613839CCD820DE49215B68676995 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
19:19:05.0025 0x0830  hpqwmiex - ok
19:19:05.0043 0x0830  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
19:19:05.0045 0x0830  HpSAMD - ok
19:19:05.0066 0x0830  [ F47CEC45FB85791D4AB237563AD0FA8F, 1035066D48BD179855BCA7F62EFA1B951E6E839D2E29E15A31844E18A126DD41 ] HTCAND64        C:\WINDOWS\System32\Drivers\ANDROIDUSB.sys
19:19:05.0067 0x0830  HTCAND64 - ok
19:19:05.0126 0x0830  [ 5C8BC8A28798FD010E7ABC4E0D588CAA, 622CAFD3DCBB05E15539589FDD4002DA6F24790FC55BDF05AA3D043E8A34E53E ] HTCMonitorService C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
19:19:05.0129 0x0830  HTCMonitorService - ok
19:19:05.0143 0x0830  [ B8B1B284362E1D8135112573395D5DA5, 97BC6A7B2DCD7CC854B912A85BB2FCF199592E8E16A7C405EAF89B02D5DE4AEE ] htcnprot        C:\WINDOWS\system32\DRIVERS\htcnprot.sys
19:19:05.0145 0x0830  htcnprot - ok
19:19:05.0212 0x0830  [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
19:19:05.0234 0x0830  HTTP - ok
19:19:05.0249 0x0830  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
19:19:05.0250 0x0830  hwpolicy - ok
19:19:05.0262 0x0830  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
19:19:05.0263 0x0830  hyperkbd - ok
19:19:05.0276 0x0830  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
19:19:05.0277 0x0830  HyperVideo - ok
19:19:05.0294 0x0830  [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
19:19:05.0296 0x0830  i8042prt - ok
19:19:05.0307 0x0830  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
19:19:05.0307 0x0830  iaLPSSi_GPIO - ok
19:19:05.0325 0x0830  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
19:19:05.0327 0x0830  iaLPSSi_I2C - ok
19:19:05.0354 0x0830  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
19:19:05.0364 0x0830  iaStorAV - ok
19:19:05.0387 0x0830  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
19:19:05.0394 0x0830  iaStorV - ok
19:19:05.0398 0x0830  IEEtwCollectorService - ok
19:19:05.0447 0x0830  [ CFE7F0267B0C3077042FF291949B5546, 7B8C432632D0210119BFF57D4994F2B8F75307A9D6867353AF93BBA3F561595B ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
19:19:05.0464 0x0830  IKEEXT - ok
19:19:05.0481 0x0830  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
19:19:05.0482 0x0830  intelide - ok
19:19:05.0503 0x0830  [ 139CFCDCD36B1B1782FD8C0014AC9B0E, E0D7E0E9B46A8CECE138D689820023BFA650FB689E4FD62855BED37E04F2D9FF ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
19:19:05.0505 0x0830  intelpep - ok
19:19:05.0524 0x0830  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
19:19:05.0526 0x0830  intelppm - ok
19:19:05.0539 0x0830  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:19:05.0541 0x0830  IpFilterDriver - ok
19:19:05.0596 0x0830  [ DFC4050D58565ADBEE793A8D4AEBDAE6, 89B900408F030CD45753A11D6AE6CBAB87E8B0E3F8401402D2D8713C045BF488 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
19:19:05.0610 0x0830  iphlpsvc - ok
19:19:05.0646 0x0830  [ FD9C9E9E3F0ED51502C7E8C066BE26B9, 290E74380F1543DD22C9F3821513B3E2FB42E995724238D8779CBBCB4FC386C8 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
19:19:05.0649 0x0830  IPMIDRV - ok
19:19:05.0684 0x0830  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
19:19:05.0690 0x0830  IPNAT - ok
19:19:05.0742 0x0830  [ 842D1EDD0F2A6E0E6631BB96BAAA01DE, 9CDD0B99F2C5DAD573A9EA8D5AB2DBFD7A941454CBBA5BFE34E49F2D4EE96A90 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
19:19:05.0764 0x0830  iPod Service - ok
19:19:05.0787 0x0830  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
19:19:05.0788 0x0830  IRENUM - ok
19:19:05.0828 0x0830  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
19:19:05.0829 0x0830  isapnp - ok
19:19:05.0852 0x0830  [ 034D4BD9DC67C64F3A4C8A049B5173BF, C68AF5A5AD4092AA1C871BD38473AEF84EC3ECF4D06FBEB5F6C09972EF1B8A81 ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
19:19:05.0858 0x0830  iScsiPrt - ok
19:19:05.0871 0x0830  [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
19:19:05.0873 0x0830  kbdclass - ok
19:19:05.0882 0x0830  [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
19:19:05.0883 0x0830  kbdhid - ok
19:19:05.0896 0x0830  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
19:19:05.0896 0x0830  kdnic - ok
19:19:05.0903 0x0830  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\WINDOWS\system32\lsass.exe
19:19:05.0904 0x0830  KeyIso - ok
19:19:05.0916 0x0830  [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
19:19:05.0918 0x0830  KSecDD - ok
19:19:05.0958 0x0830  [ F88CC88F4A6D8476F1664E805CA18CC2, 2C61EE5EEA4FD45AA3FA927CC16E34EF90BD44324EAB14198AF65C3A27617991 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
19:19:05.0961 0x0830  KSecPkg - ok
19:19:05.0973 0x0830  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
19:19:05.0974 0x0830  ksthunk - ok
19:19:06.0011 0x0830  [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
19:19:06.0018 0x0830  KtmRm - ok
19:19:06.0054 0x0830  [ 50AECF8C21AB2A6428A6E1E10549D8E5, 6BC7C60CF5E8AFB9972619EE1C78357756E9C0A3EC783C3056CEB600DCBB1555 ] L1C             C:\WINDOWS\system32\DRIVERS\L1C63x64.sys
19:19:06.0056 0x0830  L1C - ok
19:19:06.0094 0x0830  [ 27B58E16CF895AC1F1A97C04814C2239, D4336155331DDBF91952CDC6C446C68FF524F979099BA8D9B3A578758F97B2BE ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
19:19:06.0107 0x0830  LanmanServer - ok
19:19:06.0131 0x0830  [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
19:19:06.0138 0x0830  LanmanWorkstation - ok
19:19:06.0182 0x0830  [ EE289BD147FDFF95EF1B9BD65D3B974A, EFD9D0F6C73E7D2D52DBE2E2A8D3009BFB6AB24776A100CA528A8365002C6105 ] lfsvc           C:\WINDOWS\System32\GeofenceMonitorService.dll
19:19:06.0199 0x0830  lfsvc - ok
19:19:06.0213 0x0830  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
19:19:06.0215 0x0830  lltdio - ok
19:19:06.0253 0x0830  [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
19:19:06.0260 0x0830  lltdsvc - ok
19:19:06.0292 0x0830  [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
19:19:06.0294 0x0830  lmhosts - ok
19:19:06.0318 0x0830  [ 03AA719BAAA79AC35B4E115C089FAA79, 3A2439CB08C4F6BB766EBD92F9275D26B4F25A6A5279073D678A0A8B4C67EFCE ] LMIGuardianSvc  C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
19:19:06.0325 0x0830  LMIGuardianSvc - ok
19:19:06.0360 0x0830  [ 0F28935ECF1FBDEC22BAF720A5A94564, A4E8E13FD7FE1882243AD7139D5E0925F09069616920382F952D79586A4936E7 ] LMIInfo         C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys
19:19:06.0361 0x0830  LMIInfo - ok
19:19:06.0399 0x0830  [ BCDA97FF7F36341E26F90813B5487CDB, DF765ACF366F2C306D4A4DE5B23D5986DEDF2A36CDC2469AEC00DA55DE9D7888 ] LMIMaint        C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
19:19:06.0407 0x0830  LMIMaint - ok
19:19:06.0431 0x0830  [ 413ECDCFAD9A82804D3674C8D7EEC24E, C8A65ED0B079D16D1A4449E840B4A9475388FBE61B5A84DFEFC35F4FB3B9A9B1 ] lmimirr         C:\WINDOWS\system32\DRIVERS\lmimirr.sys
19:19:06.0432 0x0830  lmimirr - ok
19:19:06.0436 0x0830  LMIRfsClientNP - ok
19:19:06.0445 0x0830  [ C57D3FAA50E6F395759FFB7C709BD944, 7B0B86F0E710934D57801E1F7BB048AD878F871147B2A16BBF81219A4022B499 ] LMIRfsDriver    C:\WINDOWS\system32\drivers\LMIRfsDriver.sys
19:19:06.0447 0x0830  LMIRfsDriver - ok
19:19:06.0465 0x0830  [ D3760BC17E1755091B7120CF32DBF56B, 2B31CA0CD838BEE0103054520E2FBEA2436A07D99E711B14543B85F3A511478F ] LogMeIn         C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
19:19:06.0471 0x0830  LogMeIn - ok
19:19:06.0486 0x0830  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
19:19:06.0488 0x0830  LSI_SAS - ok
19:19:06.0496 0x0830  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
19:19:06.0498 0x0830  LSI_SAS2 - ok
19:19:06.0503 0x0830  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\WINDOWS\system32\drivers\lsi_sas3.sys
19:19:06.0506 0x0830  LSI_SAS3 - ok
19:19:06.0526 0x0830  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
19:19:06.0528 0x0830  LSI_SSS - ok
19:19:06.0554 0x0830  [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] LSM             C:\WINDOWS\System32\lsm.dll
19:19:06.0565 0x0830  LSM - ok
19:19:06.0608 0x0830  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
19:19:06.0611 0x0830  luafv - ok
19:19:06.0625 0x0830  [ 0BB97D43299910CBFBA59C461B99B910, 27C22D9D9EE8A410D7396960DA93E9E260D4DCDD38DCE06E85E45C5E24C067DE ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
19:19:06.0626 0x0830  MBAMProtector - ok
19:19:06.0649 0x0830  [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:19:06.0655 0x0830  MBAMScheduler - ok
19:19:06.0674 0x0830  [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:19:06.0685 0x0830  MBAMService - ok
19:19:06.0704 0x0830  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
19:19:06.0705 0x0830  megasas - ok
19:19:06.0727 0x0830  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
19:19:06.0736 0x0830  megasr - ok
19:19:06.0800 0x0830  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
19:19:06.0803 0x0830  Microsoft Office Groove Audit Service - ok
19:19:06.0844 0x0830  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\WINDOWS\system32\mmcss.dll
19:19:06.0848 0x0830  MMCSS - ok
19:19:06.0872 0x0830  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
19:19:06.0875 0x0830  Modem - ok
19:19:06.0894 0x0830  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
19:19:06.0896 0x0830  monitor - ok
19:19:06.0926 0x0830  [ C030F9E822A057C1A7A9BB4EA3E8877E, 2CCEC87DEB972B6B0196A08D3781002929E9107137FE3A61F1626D3BEE26630A ] MotioninJoyXFilter C:\WINDOWS\System32\drivers\MijXfilt.sys
19:19:06.0929 0x0830  MotioninJoyXFilter - ok
19:19:06.0948 0x0830  [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
19:19:06.0950 0x0830  mouclass - ok
19:19:06.0959 0x0830  [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
19:19:06.0961 0x0830  mouhid - ok
19:19:06.0978 0x0830  [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
19:19:06.0981 0x0830  mountmgr - ok
19:19:06.0997 0x0830  [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
19:19:06.0999 0x0830  mpsdrv - ok
19:19:07.0029 0x0830  [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
19:19:07.0044 0x0830  MpsSvc - ok
19:19:07.0079 0x0830  [ 1D55DADC22D21883A2F80297F5A5AE48, B79DF4AFC2A9CBC54E74233596544D6E41C8CAA0516BD57CA695D051EC780265 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
19:19:07.0081 0x0830  MRxDAV - ok
19:19:07.0117 0x0830  [ C997E6A37BA8915224B3FB5024A34F69, 43E1B83072DF9E878151D276DDB6EB7B3801D72494C43E9B9ABECA4B2DCFD606 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:19:07.0123 0x0830  mrxsmb - ok
19:19:07.0165 0x0830  [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
19:19:07.0169 0x0830  mrxsmb10 - ok
19:19:07.0181 0x0830  [ AAF56E4E84D35411B4E446C445732DFE, 7AC41CAA0842AE4DA4EEF976202C58D7923DAA367F0D7E800D432323D5E7DE1A ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
19:19:07.0184 0x0830  mrxsmb20 - ok
19:19:07.0215 0x0830  [ 4E888019078AC363076A5433E89AA4F8, 3DEBDA290230B3E83F956C902C960E39463B7EFE86439199521356762769FD91 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
19:19:07.0217 0x0830  MsBridge - ok
19:19:07.0248 0x0830  [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
19:19:07.0252 0x0830  MSDTC - ok
19:19:07.0267 0x0830  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
19:19:07.0268 0x0830  Msfs - ok
19:19:07.0283 0x0830  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
19:19:07.0284 0x0830  msgpiowin32 - ok
19:19:07.0290 0x0830  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
19:19:07.0291 0x0830  mshidkmdf - ok
19:19:07.0300 0x0830  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
19:19:07.0300 0x0830  mshidumdf - ok
19:19:07.0330 0x0830  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
19:19:07.0330 0x0830  msisadrv - ok
19:19:07.0364 0x0830  [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
19:19:07.0367 0x0830  MSiSCSI - ok
19:19:07.0372 0x0830  msiserver - ok
19:19:07.0381 0x0830  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:19:07.0382 0x0830  MSKSSRV - ok
19:19:07.0391 0x0830  [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
19:19:07.0392 0x0830  MsLldp - ok
19:19:07.0400 0x0830  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:19:07.0400 0x0830  MSPCLOCK - ok
19:19:07.0407 0x0830  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
19:19:07.0408 0x0830  MSPQM - ok
19:19:07.0418 0x0830  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
19:19:07.0424 0x0830  MsRPC - ok
19:19:07.0452 0x0830  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
19:19:07.0453 0x0830  mssmbios - ok
19:19:07.0457 0x0830  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
19:19:07.0458 0x0830  MSTEE - ok
19:19:07.0468 0x0830  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
19:19:07.0469 0x0830  MTConfig - ok
19:19:07.0478 0x0830  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
19:19:07.0480 0x0830  Mup - ok
19:19:07.0490 0x0830  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
19:19:07.0492 0x0830  mvumis - ok
19:19:07.0532 0x0830  [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\WINDOWS\system32\qagentRT.dll
19:19:07.0539 0x0830  napagent - ok
19:19:07.0576 0x0830  [ 647C7652FA19F98CADF2BFDA2164BFEC, 711A4A06309393922A70D7FBE5684938CD634F5DED158D847BFADDD5ACF9E44C ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
19:19:07.0583 0x0830  NativeWifiP - ok
19:19:07.0634 0x0830  [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
19:19:07.0642 0x0830  NcaSvc - ok
19:19:07.0661 0x0830  [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
19:19:07.0665 0x0830  NcbService - ok
19:19:07.0672 0x0830  [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
19:19:07.0675 0x0830  NcdAutoSetup - ok
19:19:07.0733 0x0830  [ F21B77B4D74092A543807D3CEB711A88, 5C3C17A10E990070FAB317C0C5333DE768E408CAF43EC4FA9D18116C6EE3B3DC ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
19:19:07.0752 0x0830  NDIS - ok
19:19:07.0762 0x0830  [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
19:19:07.0763 0x0830  NdisCap - ok
19:19:07.0769 0x0830  [ 9F1DA20E943BE7AA4ED5F3E1EBA78B37, CCD99962917BBE256F64AE14CCC9FD12433C72B5DB98E0E57CA8F212A11B3C8F ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
19:19:07.0772 0x0830  NdisImPlatform - ok
19:19:07.0788 0x0830  [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:19:07.0788 0x0830  NdisTapi - ok
19:19:07.0803 0x0830  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:19:07.0805 0x0830  Ndisuio - ok
19:19:07.0812 0x0830  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
19:19:07.0813 0x0830  NdisVirtualBus - ok
19:19:07.0833 0x0830  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:19:07.0836 0x0830  NdisWan - ok
19:19:07.0843 0x0830  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:19:07.0846 0x0830  NdisWanLegacy - ok
19:19:07.0869 0x0830  [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
19:19:07.0870 0x0830  NDProxy - ok
19:19:07.0883 0x0830  [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
19:19:07.0885 0x0830  Ndu - ok
19:19:07.0893 0x0830  [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
19:19:07.0894 0x0830  NetBIOS - ok
19:19:07.0906 0x0830  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
19:19:07.0911 0x0830  NetBT - ok
19:19:07.0937 0x0830  [ 9E34BF0784E087F7366DBD2BDA01C8EB, 299B4D9DFFC409FDC8AB8678190164E286D16A93F8FEBCE1DA649D2F748A0D1D ] netfilter64     C:\WINDOWS\system32\drivers\netfilter64.sys
19:19:07.0939 0x0830  netfilter64 - ok
19:19:07.0952 0x0830  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\WINDOWS\system32\lsass.exe
19:19:07.0954 0x0830  Netlogon - ok
19:19:08.0001 0x0830  [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\WINDOWS\System32\netman.dll
19:19:08.0013 0x0830  Netman - ok
19:19:08.0048 0x0830  [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
19:19:08.0059 0x0830  netprofm - ok
19:19:08.0098 0x0830  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:19:08.0101 0x0830  NetTcpPortSharing - ok
19:19:08.0116 0x0830  [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc          C:\WINDOWS\system32\DRIVERS\netvsc63.sys
19:19:08.0120 0x0830  netvsc - ok
19:19:08.0149 0x0830  [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
19:19:08.0158 0x0830  NlaSvc - ok
19:19:08.0222 0x0830  [ B1EF4686961986DFFB7FE8F18E6FCB5B, 562F144DAA8C2D6E4D55C7ABEF1DB52FC67F1A09E03CD700E27DFC3A4920E271 ] nlsX86cc        C:\WINDOWS\SysWOW64\nlssrv32.exe
19:19:08.0227 0x0830  nlsX86cc - ok
19:19:08.0243 0x0830  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
19:19:08.0246 0x0830  Npfs - ok
19:19:08.0262 0x0830  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
19:19:08.0263 0x0830  npsvctrig - ok
19:19:08.0272 0x0830  [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\WINDOWS\system32\nsisvc.dll
19:19:08.0274 0x0830  nsi - ok
19:19:08.0284 0x0830  [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
19:19:08.0285 0x0830  nsiproxy - ok
19:19:08.0381 0x0830  [ 1C80517BE6836A812F6A9B99B8321351, 7DBED4633820E201C9C242D961EF6F25BA2B1D5593BA60F707CC71A4014C2D4B ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
19:19:08.0411 0x0830  Ntfs - ok
19:19:08.0428 0x0830  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\WINDOWS\system32\drivers\Null.sys
19:19:08.0429 0x0830  Null - ok
19:19:08.0444 0x0830  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
19:19:08.0447 0x0830  nvraid - ok
19:19:08.0453 0x0830  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
19:19:08.0456 0x0830  nvstor - ok
19:19:08.0496 0x0830  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
19:19:08.0498 0x0830  nv_agp - ok
19:19:08.0606 0x0830  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:19:08.0618 0x0830  odserv - ok
19:19:08.0637 0x0830  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:19:08.0639 0x0830  ose - ok
19:19:08.0670 0x0830  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
19:19:08.0680 0x0830  p2pimsvc - ok
19:19:08.0727 0x0830  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
19:19:08.0739 0x0830  p2psvc - ok
19:19:08.0752 0x0830  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
19:19:08.0754 0x0830  Parport - ok
19:19:08.0768 0x0830  [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
19:19:08.0770 0x0830  partmgr - ok
19:19:08.0795 0x0830  [ 446462BBA744DA60379574926FD51EAB, 4A79E8EF28670333F4733FA0016508DC88E9BDC566B455DA5EDEDC514612180A ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
19:19:08.0797 0x0830  PassThru Service - ok
19:19:08.0810 0x0830  [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
19:19:08.0819 0x0830  PcaSvc - ok
19:19:08.0853 0x0830  [ 275AFE3FA35E8D78BE97695DF49817C6, 447CEBB16285AE073B4251D2DA71399306EF2DCB7F56286ABE2F0BD6C83EB489 ] pci             C:\WINDOWS\system32\drivers\pci.sys
19:19:08.0857 0x0830  pci - ok
19:19:08.0872 0x0830  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
19:19:08.0872 0x0830  pciide - ok
19:19:08.0883 0x0830  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
19:19:08.0885 0x0830  pcmcia - ok
19:19:08.0901 0x0830  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
19:19:08.0902 0x0830  pcw - ok
19:19:08.0934 0x0830  [ B9D968D8E2B0F9C6301CEB39CFC9B9E4, 83F32831B0727F18B56DC3CAF37E45A3523D2BBCD54D1421F0DE5A0179D8A404 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
19:19:08.0936 0x0830  pdc - ok
19:19:08.0998 0x0830  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
19:19:09.0012 0x0830  PEAUTH - ok
19:19:09.0051 0x0830  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
19:19:09.0053 0x0830  PerfHost - ok
19:19:09.0133 0x0830  [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\WINDOWS\system32\pla.dll
19:19:09.0156 0x0830  pla - ok
19:19:09.0199 0x0830  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
19:19:09.0203 0x0830  PlugPlay - ok
19:19:09.0207 0x0830  PnkBstrA - ok
19:19:09.0220 0x0830  [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
19:19:09.0222 0x0830  PNRPAutoReg - ok
19:19:09.0232 0x0830  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
19:19:09.0239 0x0830  PNRPsvc - ok
19:19:09.0282 0x0830  [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
19:19:09.0289 0x0830  PolicyAgent - ok
19:19:09.0324 0x0830  [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\WINDOWS\system32\umpo.dll
19:19:09.0327 0x0830  Power - ok
19:19:09.0338 0x0830  [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:19:09.0340 0x0830  PptpMiniport - ok
19:19:09.0442 0x0830  [ B7DB57A000D46D4DE75BC0C563E58072, 8183EB09DC4D44DFF027CA0AAA8C09921A14F088C1BC427B6ACA42340AAF69E6 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
19:19:09.0485 0x0830  PrintNotify - ok
19:19:09.0496 0x0830  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
19:19:09.0498 0x0830  Processor - ok
19:19:09.0516 0x0830  [ B2A890D96C05E33FDD2BF3F3D4D0DF92, 3A29E17424429A5654D906E420D938148F09F57457356EFA72DA003B73F2D81E ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
19:19:09.0521 0x0830  ProfSvc - ok
19:19:09.0561 0x0830  [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
19:19:09.0564 0x0830  Psched - ok
19:19:09.0583 0x0830  [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\WINDOWS\system32\qwave.dll
19:19:09.0589 0x0830  QWAVE - ok
19:19:09.0604 0x0830  [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
19:19:09.0605 0x0830  QWAVEdrv - ok
19:19:09.0619 0x0830  [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:19:09.0620 0x0830  RasAcd - ok
19:19:09.0661 0x0830  [ 55FE43112F61836D0581D615C72AA113, 35665E09BD74BD078A0BC49BF98102B5F3679A3FA2AC25FB629D448652D9938F ] RasAgileVpn     C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
19:19:09.0663 0x0830  RasAgileVpn - ok
19:19:09.0700 0x0830  [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
19:19:09.0706 0x0830  RasAuto - ok
19:19:09.0724 0x0830  [ BBB6272B7F46C4640A8CDB8A70C3450F, 4266C3ABD0D1D0219F715EA0F155744F7C1E3A7B722BE863831B57AE785419A2 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:19:09.0727 0x0830  Rasl2tp - ok
19:19:09.0771 0x0830  [ 5C7B86EE33505E36026AFAAB62DA6364, 903BB1A355AC746BF09C2A7C87B068168648DB79DEF39AB1DC710B6A7A5F6556 ] RasMan          C:\WINDOWS\System32\rasmans.dll
19:19:09.0783 0x0830  RasMan - ok
19:19:09.0804 0x0830  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:19:09.0806 0x0830  RasPppoe - ok
19:19:09.0826 0x0830  [ 2B0F1677CDD08967005F34488559BC6F, FFF168EBD171C0B85A448AD1A04F66534E889AE1DC128F68EA3F35D5996C8D39 ] RasSstp         C:\WINDOWS\system32\DRIVERS\rassstp.sys
19:19:09.0829 0x0830  RasSstp - ok
19:19:09.0933 0x0830  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:19:09.0947 0x0830  rdbss - ok
19:19:09.0987 0x0830  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
19:19:09.0989 0x0830  rdpbus - ok
19:19:10.0009 0x0830  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
19:19:10.0016 0x0830  RDPDR - ok
19:19:10.0038 0x0830  [ 858776908AF838E3790F3261B799CDA6, 5BE4658540382D1B2F46E503CE175D74E3870FE492B8B8F37C3CFB34FF8E2DA8 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
19:19:10.0039 0x0830  RdpVideoMiniport - ok
19:19:10.0076 0x0830  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
19:19:10.0081 0x0830  rdyboost - ok
19:19:10.0148 0x0830  [ E515A287C8FAE901EB8FB42F168E14F2, 9AE8D608587713FD18BB728BADD402C86FFF06A67359B22ED9431705522BC310 ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
19:19:10.0162 0x0830  ReFS - ok
19:19:10.0208 0x0830  [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
19:19:10.0218 0x0830  RemoteAccess - ok
19:19:10.0238 0x0830  [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
19:19:10.0243 0x0830  RemoteRegistry - ok
19:19:10.0260 0x0830  [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
19:19:10.0264 0x0830  RpcEptMapper - ok
19:19:10.0298 0x0830  [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\WINDOWS\system32\locator.exe
19:19:10.0301 0x0830  RpcLocator - ok
19:19:10.0361 0x0830  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
19:19:10.0376 0x0830  RpcSs - ok
19:19:10.0452 0x0830  [ 5485823FFF38F38C5223ACFA65FBEF44, 3FFD543AD2E0D9BDF087C4B62D7ECE0F7DA7ACCA25647E84D45D1B373FA7935D ] RrFilterService64 c:\Program Files\RrFilter\RrFilterService64.exe
19:19:10.0459 0x0830  RrFilterService64 - ok
19:19:10.0480 0x0830  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
19:19:10.0482 0x0830  rspndr - ok
19:19:10.0502 0x0830  [ 9CF8593B62102545CB1652A1D8748FDD, 818639795720A7567CCE01EBC24A0119BFDCEA1B7A5ED4A11B5012D763C1B5CC ] RSUSBSTOR       C:\WINDOWS\System32\Drivers\RtsUStor.sys
19:19:10.0507 0x0830  RSUSBSTOR - ok
19:19:10.0518 0x0830  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
19:19:10.0519 0x0830  s3cap - ok
19:19:10.0552 0x0830  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\WINDOWS\system32\lsass.exe
19:19:10.0554 0x0830  SamSs - ok
19:19:10.0573 0x0830  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
19:19:10.0576 0x0830  sbp2port - ok
19:19:10.0606 0x0830  [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
19:19:10.0611 0x0830  SCardSvr - ok
19:19:10.0623 0x0830  [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
19:19:10.0628 0x0830  ScDeviceEnum - ok
19:19:10.0636 0x0830  [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
19:19:10.0638 0x0830  scfilter - ok
19:19:10.0681 0x0830  [ A95838FFFAEAA7500263D491575F7E0C, FEB79ECAE6D9AB0C29D9AFE12F60502A8357B3A382C0FACF4C6DA4852B6ECFA4 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
19:19:10.0701 0x0830  Schedule - ok
19:19:10.0739 0x0830  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
19:19:10.0742 0x0830  SCPolicySvc - ok
19:19:10.0782 0x0830  [ FDEC5799BA499D18AFA3A540538866E7, 551EE0945FE4EC213FFF623E524500B57531EFEA2D76FA7ED1D2D605E7E2168F ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
19:19:10.0786 0x0830  sdbus - ok
19:19:10.0817 0x0830  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
19:19:10.0819 0x0830  sdstor - ok
19:19:10.0829 0x0830  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
19:19:10.0830 0x0830  secdrv - ok
19:19:10.0844 0x0830  [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\WINDOWS\system32\seclogon.dll
19:19:10.0846 0x0830  seclogon - ok
19:19:10.0855 0x0830  [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\WINDOWS\System32\sens.dll
19:19:10.0858 0x0830  SENS - ok
19:19:10.0870 0x0830  [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
19:19:10.0875 0x0830  SensrSvc - ok
19:19:10.0913 0x0830  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
19:19:10.0915 0x0830  SerCx - ok
19:19:10.0949 0x0830  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
19:19:10.0951 0x0830  SerCx2 - ok
19:19:10.0973 0x0830  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
19:19:10.0974 0x0830  Serenum - ok
19:19:10.0986 0x0830  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
19:19:10.0988 0x0830  Serial - ok
19:19:11.0003 0x0830  [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
19:19:11.0004 0x0830  sermouse - ok
19:19:11.0052 0x0830  [ D5C3776CBD8BC307DCCA3FD4CE667A37, 98E4253B770C25914C91A6148E2EA15ED0EF37ADCB042A47252DBA135972BF74 ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
19:19:11.0058 0x0830  SessionEnv - ok
19:19:11.0071 0x0830  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
19:19:11.0072 0x0830  sfloppy - ok
19:19:11.0115 0x0830  [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
19:19:11.0122 0x0830  SharedAccess - ok
19:19:11.0146 0x0830  [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:19:11.0156 0x0830  ShellHWDetection - ok
19:19:11.0176 0x0830  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
19:19:11.0178 0x0830  SiSRaid2 - ok
19:19:11.0193 0x0830  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
19:19:11.0194 0x0830  SiSRaid4 - ok
19:19:11.0266 0x0830  [ 875B04A71869D34A415CC8B4D4673EC4, 8FDFD38B1A6302EC7FAFC23A22C332B1E7240231DBE3519AD6F51F6BD668B481 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
19:19:11.0272 0x0830  SkypeUpdate - ok
19:19:11.0305 0x0830  [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\WINDOWS\System32\smphost.dll
19:19:11.0307 0x0830  smphost - ok
19:19:11.0344 0x0830  [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
19:19:11.0348 0x0830  SNMPTRAP - ok
19:19:11.0400 0x0830  [ 87765EF43C33BE342F4ACB0E3FBF89A6, 3C1DDED7F96F796702F1BC73D5CEE5251DD16011AA349FE4EE1D9C002E0171C6 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
19:19:11.0409 0x0830  spaceport - ok
19:19:11.0414 0x0830  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
19:19:11.0416 0x0830  SpbCx - ok
19:19:11.0448 0x0830  [ FE0CB40F36D3FCDD3A1B312EF72C38D5, 42EA50869752164764DFE8CE7E1C247BE8342A0C15F39158DC808E8A692C460F ] Spooler         C:\WINDOWS\System32\spoolsv.exe
19:19:11.0461 0x0830  Spooler - ok
19:19:11.0613 0x0830  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
19:19:11.0707 0x0830  sppsvc - ok
19:19:11.0741 0x0830  [ 2B78788A1485F9B99A578A299DF42C02, A87183A9B13585C9E850437A45237105D39D7F3212ADB079D6AB430B67A59643 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
19:19:11.0748 0x0830  srv - ok
19:19:11.0770 0x0830  [ E62EAEF0BAC9DD61BF22D4A7F2F18571, 910D85FDDBAF0E003A0CA0C23D27615F1B7D6145FB9E3A1661E93498196B303A ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
19:19:11.0780 0x0830  srv2 - ok
19:19:11.0820 0x0830  [ 466BDC0006103F2547D308DD3CD64398, 334E0729B369C7F7CBB9878F423B53E05476D1288A8ECEB18240318ABF2370C1 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
19:19:11.0824 0x0830  srvnet - ok
19:19:11.0862 0x0830  [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
19:19:11.0867 0x0830  SSDPSRV - ok
19:19:11.0898 0x0830  [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
19:19:11.0902 0x0830  SstpSvc - ok
19:19:11.0940 0x0830  [ 1BCCBF911C437AF26A752128D47AF511, 94115AC2925601D24ECF2E86757893D5844B13EEFD8E1095610385EBAAA8672E ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
19:19:11.0945 0x0830  STacSV - ok
19:19:11.0999 0x0830  [ 706080AD43599D4AB04F1676A3A62CC1, BD9A645163501E2234CAB2B99DB297A634526786D2CDC55FE1C18F5019623E34 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
19:19:12.0011 0x0830  Steam Client Service - ok
19:19:12.0024 0x0830  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
19:19:12.0025 0x0830  stexstor - ok
19:19:12.0067 0x0830  [ 51D4D3CBC37DB243AE80378B8BA5ADA2, 24316F79BC2BF23E559AD197E2D935A98787C01ECD2AD85DE7711EB5D53E3FBB ] STHDA           C:\WINDOWS\system32\DRIVERS\stwrt64.sys
19:19:12.0076 0x0830  STHDA - ok
19:19:12.0113 0x0830  [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
19:19:12.0124 0x0830  stisvc - ok
19:19:12.0142 0x0830  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
19:19:12.0144 0x0830  storahci - ok
19:19:12.0155 0x0830  [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt         C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
19:19:12.0157 0x0830  storflt - ok
19:19:12.0168 0x0830  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
19:19:12.0170 0x0830  stornvme - ok
19:19:12.0178 0x0830  [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
19:19:12.0180 0x0830  StorSvc - ok
19:19:12.0193 0x0830  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
19:19:12.0194 0x0830  storvsc - ok
19:19:12.0204 0x0830  [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\WINDOWS\system32\svsvc.dll
19:19:12.0206 0x0830  svsvc - ok
19:19:12.0214 0x0830  [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
19:19:12.0214 0x0830  swenum - ok
19:19:12.0249 0x0830  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
19:19:12.0257 0x0830  SwitchBoard - ok
19:19:12.0329 0x0830  [ E3C92D60F6AD7763961D1E7628002844, A33EED7CB3EE0EF4890AAD095F989FCA7F44CA1055E03D3892AB543DEE74C9B6 ] swprv           C:\WINDOWS\System32\swprv.dll
19:19:12.0344 0x0830  swprv - ok
19:19:12.0383 0x0830  [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] SysMain         C:\WINDOWS\system32\sysmain.dll
19:19:12.0402 0x0830  SysMain - ok
19:19:12.0430 0x0830  [ D65B1C952AEB864C2BAC7A770B17ECCE, 3EFAAFFF73390D9CB660E0F42B305512396CF66ED06E4A20ED67E8722FB4355B ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
19:19:12.0436 0x0830  SystemEventsBroker - ok
19:19:12.0467 0x0830  SystemkService - ok
19:19:12.0506 0x0830  [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
19:19:12.0514 0x0830  TabletInputService - ok
19:19:12.0548 0x0830  [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
19:19:12.0562 0x0830  TapiSrv - ok
19:19:12.0679 0x0830  [ FEEFE783D87C9063CDAC6DBDCF95F533, EBD00EEE90AC657823A88190BBBED6DA47AF597510C201F3392F4325069D2669 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
19:19:12.0716 0x0830  Tcpip - ok
19:19:12.0785 0x0830  [ FEEFE783D87C9063CDAC6DBDCF95F533, EBD00EEE90AC657823A88190BBBED6DA47AF597510C201F3392F4325069D2669 ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:19:12.0823 0x0830  TCPIP6 - ok
19:19:12.0857 0x0830  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
19:19:12.0858 0x0830  tcpipreg - ok
19:19:12.0874 0x0830  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
19:19:12.0876 0x0830  tdx - ok
19:19:12.0909 0x0830  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
19:19:12.0910 0x0830  terminpt - ok
19:19:12.0943 0x0830  [ 2C77831737491F4D684D315B95C62883, 90A2574A281F19646CFCDA5FDF40063220058290D2D5523AD91B7E709EC36D3D ] TermService     C:\WINDOWS\System32\termsrv.dll
19:19:12.0960 0x0830  TermService - ok
19:19:12.0975 0x0830  [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\WINDOWS\system32\themeservice.dll
19:19:12.0977 0x0830  Themes - ok
19:19:13.0017 0x0830  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
19:19:13.0019 0x0830  THREADORDER - ok
19:19:13.0035 0x0830  [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
19:19:13.0041 0x0830  TimeBroker - ok
19:19:13.0052 0x0830  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
19:19:13.0055 0x0830  TPM - ok
19:19:13.0072 0x0830  [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
19:19:13.0075 0x0830  TrkWks - ok
19:19:13.0111 0x0830  [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
19:19:13.0112 0x0830  TrustedInstaller - ok
19:19:13.0129 0x0830  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
19:19:13.0130 0x0830  TsUsbFlt - ok
19:19:13.0141 0x0830  [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
19:19:13.0142 0x0830  TsUsbGD - ok
19:19:13.0155 0x0830  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
19:19:13.0158 0x0830  tunnel - ok
19:19:13.0170 0x0830  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
19:19:13.0172 0x0830  uagp35 - ok
19:19:13.0189 0x0830  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
19:19:13.0190 0x0830  UASPStor - ok
19:19:13.0203 0x0830  [ B034A41891A36457B994307DFA772293, CA5E6500764A9777AE0E15B2AFB6F05982C90F01374E3F6DDC6DF3852282C66B ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
19:19:13.0207 0x0830  UCX01000 - ok
19:19:13.0226 0x0830  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
19:19:13.0231 0x0830  udfs - ok
19:19:13.0244 0x0830  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
19:19:13.0245 0x0830  UEFI - ok
19:19:13.0280 0x0830  [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
19:19:13.0283 0x0830  UI0Detect - ok
19:19:13.0294 0x0830  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
19:19:13.0296 0x0830  uliagpkx - ok
19:19:13.0311 0x0830  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
19:19:13.0313 0x0830  umbus - ok
19:19:13.0320 0x0830  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
19:19:13.0321 0x0830  UmPass - ok
19:19:13.0340 0x0830  [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
19:19:13.0346 0x0830  UmRdpService - ok
19:19:13.0388 0x0830  [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost        C:\WINDOWS\System32\upnphost.dll
19:19:13.0396 0x0830  upnphost - ok
19:19:13.0431 0x0830  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\WINDOWS\System32\Drivers\usbaapl64.sys
19:19:13.0432 0x0830  USBAAPL64 - ok
19:19:13.0446 0x0830  [ 433ECDE01A52691FA7ACA51C10C09B70, B896296A3F8EF2AF3AC5F0091B9848156608586F1E10A95D70700BAB51E8062A ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
19:19:13.0449 0x0830  usbccgp - ok
19:19:13.0467 0x0830  [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
19:19:13.0469 0x0830  usbcir - ok
19:19:13.0475 0x0830  [ 5477D6E27C7D266EF8C152B9A25ADE5E, FEE81677D284A78A0C0FB60F887A952CFC759AE78B01206D73F59FE33612C519 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
19:19:13.0477 0x0830  usbehci - ok
19:19:13.0493 0x0830  [ 4875DC63E548812C75D4FDEF84970C89, 6A29306BAB6F95F0384E16533A9588A654A6E3CFC35D55A4CEB2B14EF34EEE19 ] usbfilter       C:\WINDOWS\System32\drivers\usbfilter.sys
19:19:13.0494 0x0830  usbfilter - ok
19:19:13.0512 0x0830  [ DF56C2C04EFA328D7A66B69007130266, 719316EB25A8C7B82C7941D1C5B964CC4EDA4A997732F481526DE7356F6FC0D8 ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
19:19:13.0518 0x0830  usbhub - ok
19:19:13.0542 0x0830  [ CFC52C49BEFE4D70D87FFA900EAB9777, 09A2F5D8AB07C3AE3F2B092F4DD7AE5838736CDC263016F188B442B32EC928F8 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
19:19:13.0549 0x0830  USBHUB3 - ok
19:19:13.0555 0x0830  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
19:19:13.0556 0x0830  usbohci - ok
19:19:13.0565 0x0830  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
19:19:13.0566 0x0830  usbprint - ok
19:19:13.0605 0x0830  [ EA23453240137F6773174E0D93F61A69, 579AD09FB428C2BB8B4055128620A7AADD1B606C1EA44B87A01D69A84232A5D9 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
19:19:13.0608 0x0830  USBSTOR - ok
19:19:13.0619 0x0830  [ BA4FA655E0FC577DB7436FC963932CE4, 3336FDECD4AEC6B316D4C0803E22A12719EBEDD1A9427C0DF5D3B263BE600EE6 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
19:19:13.0620 0x0830  usbuhci - ok
19:19:13.0672 0x0830  [ 48430B0313FC1CFE3D2400553F1A93CD, 92994DE6B131E904AFF2C9C4FBB4E6B0D58525A1539763327373DA18C9F08193 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
19:19:13.0684 0x0830  USBXHCI - ok
19:19:13.0693 0x0830  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
19:19:13.0695 0x0830  VaultSvc - ok
19:19:13.0703 0x0830  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
19:19:13.0705 0x0830  vdrvroot - ok
19:19:13.0759 0x0830  [ E3EF58D4123B5AA29C8E19825AF84A5E, FB1046722BC643E955DBC3B1459DBF2A6D575EBA2BCF7B20A0FA51E3993835E2 ] vds             C:\WINDOWS\System32\vds.exe
19:19:13.0780 0x0830  vds - ok
19:19:13.0800 0x0830  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
19:19:13.0804 0x0830  VerifierExt - ok
19:19:13.0865 0x0830  [ 52E483A3701A5A61A75A06993720347D, 689E812755E485DF6960D1E049740FBAFB812467D23B673DCAA40C03FEBB544F ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
19:19:13.0874 0x0830  vhdmp - ok
19:19:13.0887 0x0830  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
19:19:13.0888 0x0830  viaide - ok
19:19:13.0902 0x0830  [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
19:19:13.0904 0x0830  vmbus - ok
19:19:13.0913 0x0830  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
19:19:13.0914 0x0830  VMBusHID - ok
19:19:13.0960 0x0830  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
19:19:13.0968 0x0830  vmicguestinterface - ok
19:19:13.0985 0x0830  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
19:19:13.0993 0x0830  vmicheartbeat - ok
19:19:14.0006 0x0830  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
19:19:14.0014 0x0830  vmickvpexchange - ok
19:19:14.0027 0x0830  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
19:19:14.0035 0x0830  vmicrdv - ok
19:19:14.0048 0x0830  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
19:19:14.0056 0x0830  vmicshutdown - ok
19:19:14.0069 0x0830  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
19:19:14.0077 0x0830  vmictimesync - ok
19:19:14.0090 0x0830  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
19:19:14.0098 0x0830  vmicvss - ok
19:19:14.0105 0x0830  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
19:19:14.0107 0x0830  volmgr - ok
19:19:14.0117 0x0830  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
19:19:14.0123 0x0830  volmgrx - ok
19:19:14.0160 0x0830  [ 3595FBDF25F8BA6256072D103937D7D6, 547AA103804790E31F6E5658923627945948B48F36354EEA2FC0FE09098F9FD5 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
19:19:14.0165 0x0830  volsnap - ok
19:19:14.0184 0x0830  [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
19:19:14.0186 0x0830  vpci - ok
19:19:14.0199 0x0830  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
19:19:14.0202 0x0830  vsmraid - ok
19:19:14.0259 0x0830  [ 4957B27219515B93A508B91068B87BF5, 5B6B37A57FC8F4FC8B119C013338292550C63AB5295A596D382D8DCF26D751A2 ] VSS             C:\WINDOWS\system32\vssvc.exe
19:19:14.0284 0x0830  VSS - ok
19:19:14.0309 0x0830  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
19:19:14.0314 0x0830  VSTXRAID - ok
19:19:14.0326 0x0830  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
19:19:14.0327 0x0830  vwifibus - ok
19:19:14.0340 0x0830  [ 6B26AD573CCDD5209DF4397438B76354, 2C8AC314EC471F6D8B0B12D49D621360A10DCADA7C52E73596730C954FF89FCF ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
19:19:14.0341 0x0830  vwififlt - ok
19:19:14.0350 0x0830  [ 0B48E0DFB44EE475F4FD8A8EE599AF30, 28271D4CA0C642304CD8826A3D514F44E3391F9D6D07A1595BB30CE65E7E3494 ] vwifimp         C:\WINDOWS\system32\DRIVERS\vwifimp.sys
19:19:14.0352 0x0830  vwifimp - ok
19:19:14.0389 0x0830  [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time         C:\WINDOWS\system32\w32time.dll
19:19:14.0397 0x0830  W32Time - ok
19:19:14.0458 0x0830  [ 8E553C859C83784DEC08B10AFC3EAC92, 41D8DBA1500DBD3AC9783169ACF545805EF05069F12866238992A30794369254 ] w3logsvc        C:\WINDOWS\system32\inetsrv\w3logsvc.dll
19:19:14.0461 0x0830  w3logsvc - ok
19:19:14.0478 0x0830  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
19:19:14.0480 0x0830  WacomPen - ok
19:19:14.0501 0x0830  [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:19:14.0505 0x0830  Wanarp - ok
19:19:14.0512 0x0830  [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] Wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:19:14.0516 0x0830  Wanarpv6 - ok
19:19:14.0565 0x0830  [ 9BAE40BD31E3EE0B0C70BEF167E0A2BC, 2419AC815C95F2629E1832973501983D06F788728755605D42D6C8565C3CBBF1 ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
19:19:14.0575 0x0830  WAS - ok
19:19:14.0648 0x0830  [ 61692DB39AD3DF2F29392D68EAA7BB93, 854D4B9C7DD1676968598ED973500650ECEC02C420E44C0B3957C24F073AA5FB ] wbengine        C:\WINDOWS\system32\wbengine.exe
19:19:14.0672 0x0830  wbengine - ok
19:19:14.0723 0x0830  [ 3BC1D1D56637A32CD91C8AE08E2484AA, 9EE1BD3FB0D289E25F3DDD0D8F67DC1C701A6B1D5418FADF348D0E642B1DEBEB ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
19:19:14.0738 0x0830  WbioSrvc - ok
19:19:14.0781 0x0830  [ A07CFC4B593D15B6BF06813C3B5B33BF, B57BD918E2AFF9943B51A24B95E0C4D3482B4DF73C0E2421E8CC67C2BC7A4C70 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
19:19:14.0788 0x0830  Wcmsvc - ok
19:19:14.0815 0x0830  [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
19:19:14.0823 0x0830  wcncsvc - ok
19:19:14.0843 0x0830  [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
19:19:14.0845 0x0830  WcsPlugInService - ok
19:19:14.0859 0x0830  [ 241895E8A9C158DF86E12FDD21033A32, 46D4BF6319271AC33EC1C7283053B91D38A3D5443F3F749E640253FDC2819679 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
19:19:14.0861 0x0830  WdBoot - ok
19:19:14.0879 0x0830  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
19:19:14.0892 0x0830  Wdf01000 - ok
19:19:14.0908 0x0830  [ C52148456E0F6EAD9E903020A79207FC, 7DEB2D7D09FB005A79E88FA8766B7EBE0396F0CA084D72269156874C727FBFF4 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
19:19:14.0912 0x0830  WdFilter - ok
19:19:14.0928 0x0830  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
19:19:14.0931 0x0830  WdiServiceHost - ok
19:19:14.0935 0x0830  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
19:19:14.0938 0x0830  WdiSystemHost - ok
19:19:14.0967 0x0830  [ 57F22324FAAF92ADF957B281E88F1743, 46CFBA6529E28756D73A00A211C3D72E9854E035EE6F2520066E074697A9745E ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
19:19:14.0969 0x0830  WdNisDrv - ok
19:19:14.0999 0x0830  WdNisSvc - ok
19:19:15.0021 0x0830  [ 6588A957873326361AB1CAC4E76F8394, BE17880CEDCAE5ED3B983443E3777842646A3E48B661422A717656E11F6DBA94 ] WebClient       C:\WINDOWS\System32\webclnt.dll
19:19:15.0026 0x0830  WebClient - ok
19:19:15.0040 0x0830  [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
19:19:15.0045 0x0830  Wecsvc - ok
19:19:15.0054 0x0830  [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
19:19:15.0056 0x0830  WEPHOSTSVC - ok
19:19:15.0090 0x0830  [ 959534ACF085C137D2D094384EF89C45, D029F440789FE170A1C46217C6DE6D78DC0188A5CF33FCCC17FA65D3BC80C2B7 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
19:19:15.0093 0x0830  wercplsupport - ok
19:19:15.0106 0x0830  [ 82BCCF5FBE47AC9E8CBA2020994DFB3F, EA96C6BD98A701B465D0780EC10BDA92E45FE636D60C1385813AA3B456D8B931 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
19:19:15.0109 0x0830  WerSvc - ok
19:19:15.0147 0x0830  [ BFBE1C5F57FE7A885673A1962D5532B7, F0BD05B257108699FE6AB32EF11F927C31932F27062A705B3FEFA4F5B4C0D8C3 ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
19:19:15.0150 0x0830  WFPLWFS - ok
19:19:15.0174 0x0830  [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
19:19:15.0176 0x0830  WiaRpc - ok
19:19:15.0189 0x0830  [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
19:19:15.0191 0x0830  WIMMount - ok
19:19:15.0197 0x0830  WinDefend - ok
19:19:15.0238 0x0830  [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
19:19:15.0252 0x0830  WinHttpAutoProxySvc - ok
19:19:15.0298 0x0830  [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
19:19:15.0302 0x0830  Winmgmt - ok
19:19:15.0380 0x0830  [ C8D6344BDE2691A196E61C0D3372EAB7, FF8EB79D8A7E298343C22B83276FF68293D08A9DA438BB22600BEFC4CA93A91D ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
19:19:15.0422 0x0830  WinRM - ok
19:19:15.0457 0x0830  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUSB          C:\WINDOWS\System32\drivers\WinUSB.sys
19:19:15.0458 0x0830  WinUSB - ok
19:19:15.0539 0x0830  [ 5A917027826D759CC3238C7D3CEC3438, A8FFA28B6D8A314692AA08788FC9E2E0F03D8AD1FCD662826ABA71DB39C3605A ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
19:19:15.0566 0x0830  WlanSvc - ok
19:19:15.0630 0x0830  [ 5F56C0DE776C7AE43AF749845BFAA1EF, 837993C5853B7E682C7FB8401B7F5D951FFD15E5659EBB1B01DC3F5719ACEE19 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
19:19:15.0655 0x0830  wlidsvc - ok
19:19:15.0671 0x0830  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
19:19:15.0672 0x0830  WmiAcpi - ok
19:19:15.0709 0x0830  [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
19:19:15.0712 0x0830  wmiApSrv - ok
19:19:15.0724 0x0830  WMPNetworkSvc - ok
19:19:15.0760 0x0830  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
19:19:15.0763 0x0830  Wof - ok
19:19:15.0832 0x0830  [ 65C65F3BD784158C456E721DDC9F0EA2, CBD3ADFD960456BD4B9557BF691E12D31153499549F5D3D08258BD62013952ED ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
19:19:15.0858 0x0830  workfolderssvc - ok
19:19:15.0890 0x0830  [ C1F564F324685C088ECAB1933576CF91, 022F0EC160352AB73AF7DA557D1A5798964231B82C556F22F4163E8B3E4088B2 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
19:19:15.0891 0x0830  wpcfltr - ok
19:19:15.0920 0x0830  [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
19:19:15.0925 0x0830  WPCSvc - ok
19:19:15.0946 0x0830  [ D27491CFCE452C154CECFA155AD0EBC8, 1F3F74C253E3B07DE7EFE27C34DD9AF08617C7B03BB44C2902F69BA9DA3F21F2 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
19:19:15.0952 0x0830  WPDBusEnum - ok
19:19:15.0970 0x0830  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
19:19:15.0971 0x0830  WpdUpFltr - ok
19:19:15.0984 0x0830  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
19:19:15.0986 0x0830  ws2ifsl - ok
19:19:16.0025 0x0830  [ 515583507D3828E827FF6352C9ACCEFA, D0C42020FA787804DA26FE07D67C8880FE027A230BD9EB6A706862D89181F2BE ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
19:19:16.0029 0x0830  wscsvc - ok
19:19:16.0034 0x0830  [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice  C:\WINDOWS\System32\drivers\WSDPrint.sys
19:19:16.0036 0x0830  WSDPrintDevice - ok
19:19:16.0067 0x0830  [ D38297814FB6E33655342D869996E617, 3701892EEF87D1BF0E73322B90678802B6EA4AFA9CBF6111F39611C79DBA96C7 ] WSDScan         C:\WINDOWS\System32\drivers\WSDScan.sys
19:19:16.0068 0x0830  WSDScan - ok
19:19:16.0072 0x0830  WSearch - ok
19:19:16.0165 0x0830  [ 95B6670E6933E1DEE19686C55BE709A0, 4B9EB8F1712B7959A71F6DA445D29BD09B25EEFC6B30D736EFE30163D79B233E ] WSService       C:\WINDOWS\System32\WSService.dll
19:19:16.0216 0x0830  WSService - ok
19:19:16.0350 0x0830  [ 779FB2F26E4339A4DD3EEF57E4E593FA, 8B0369FDF52280EE9E03EE9FF9560FD7A404C14A95930C6AB5EC0FAAC3D57924 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
19:19:16.0403 0x0830  wuauserv - ok
19:19:16.0424 0x0830  [ 2FEAE33E9B2B56104596E1BA444405A9, 0A142F50E06F6224B9CB36B3CE62BE0B36DE8B8DB9F9E05D287DFB884CC7826E ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
19:19:16.0427 0x0830  WudfPf - ok
19:19:16.0446 0x0830  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
19:19:16.0450 0x0830  WUDFRd - ok
19:19:16.0457 0x0830  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFSensorLP    C:\WINDOWS\System32\drivers\WUDFRd.sys
19:19:16.0460 0x0830  WUDFSensorLP - ok
19:19:16.0482 0x0830  [ BB73CBC65AABC4EA0A5C6A1474A0A743, D644B3C6A7202CADDADB3B68FE1B2A7C76B023FE58F667EED4D538C1F4A65D64 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
19:19:16.0486 0x0830  wudfsvc - ok
19:19:16.0505 0x0830  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
19:19:16.0513 0x0830  WUDFWpdFs - ok
19:19:16.0526 0x0830  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
19:19:16.0534 0x0830  WUDFWpdMtp - ok
19:19:16.0564 0x0830  [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
19:19:16.0575 0x0830  WwanSvc - ok
19:19:16.0648 0x0830  X6va016 - ok
19:19:16.0652 0x0830  X6va017 - ok
19:19:16.0680 0x0830  [ 9176C0822FAA649E45121875BE32F5D2, B7A7A906A7BB0F760ED241F998C647D728C4DB5D8778AFE585DF38331165803F ] xusb21          C:\WINDOWS\System32\drivers\xusb21.sys
19:19:16.0682 0x0830  xusb21 - ok
19:19:16.0725 0x0830  yewimmxqbs64 - ok
19:19:16.0746 0x0830  ================ Scan global ===============================
19:19:16.0816 0x0830  [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\WINDOWS\system32\basesrv.dll
19:19:16.0833 0x0830  [ 00DD4D2ACC2E72155A8AAA82018BEC0D, 9D7CA68B4A81240477FCC85A3CC11EF986093F9D6228A6C5AC608EDAD664068C ] C:\WINDOWS\system32\winsrv.dll
19:19:16.0868 0x0830  [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\WINDOWS\system32\sxssrv.dll
19:19:16.0911 0x0830  [ B4B610BBCB002EC478C6FD80CF915697, CE22B87A7C7C0D325CE66FB97E7318B4A41EE0BD14D902A410126A1EBBEAA6FB ] C:\WINDOWS\system32\services.exe
19:19:16.0918 0x0830  [ Global ] - ok
19:19:16.0918 0x0830  ================ Scan MBR ==================================
19:19:16.0952 0x0830  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
19:19:16.0971 0x0830  \Device\Harddisk0\DR0 - ok
19:19:16.0976 0x0830  [ 23B571400A29918F5392F6E85EEB756E ] \Device\Harddisk1\DR1
19:19:16.0980 0x0830  \Device\Harddisk1\DR1 - ok
19:19:16.0980 0x0830  ================ Scan VBR ==================================
19:19:16.0982 0x0830  [ F985676893777932B37A17F10C83E227 ] \Device\Harddisk0\DR0\Partition1
19:19:17.0038 0x0830  \Device\Harddisk0\DR0\Partition1 - ok
19:19:17.0052 0x0830  [ A3807E1A27CBBA8F50E1137330C739EE ] \Device\Harddisk0\DR0\Partition2
19:19:17.0106 0x0830  \Device\Harddisk0\DR0\Partition2 - ok
19:19:17.0113 0x0830  [ 8832853088B3F990BEB8FBA269D54B32 ] \Device\Harddisk0\DR0\Partition3
19:19:17.0114 0x0830  \Device\Harddisk0\DR0\Partition3 - ok
19:19:17.0126 0x0830  [ 29ECC84DADD68192FF647FF905C1A448 ] \Device\Harddisk0\DR0\Partition4
19:19:17.0190 0x0830  \Device\Harddisk0\DR0\Partition4 - ok
19:19:17.0215 0x0830  [ A50A4601D2063AAF97327150726664D9 ] \Device\Harddisk0\DR0\Partition5
19:19:17.0225 0x0830  \Device\Harddisk0\DR0\Partition5 - ok
19:19:17.0236 0x0830  [ DABD4558BA3F4D8F8572AEAB624F3BF6 ] \Device\Harddisk0\DR0\Partition6
19:19:17.0247 0x0830  \Device\Harddisk0\DR0\Partition6 - ok
19:19:17.0252 0x0830  [ 1B6B9C1A3FBF873B39A5C7EA495D4B19 ] \Device\Harddisk1\DR1\Partition1
19:19:17.0254 0x0830  \Device\Harddisk1\DR1\Partition1 - ok
19:19:17.0255 0x0830  Waiting for KSN requests completion. In queue: 105
19:19:18.0256 0x0830  Waiting for KSN requests completion. In queue: 105
19:19:19.0257 0x0830  Waiting for KSN requests completion. In queue: 105
19:19:20.0278 0x0830  AV detected via SS2: ESET NOD32 Antivirus 7.0, C:\Program Files\ESET\ESET NOD32 Antivirus\ecmd.exe ( 7.0.302.0 ), 0x41000 ( enabled : updated )
19:19:20.0279 0x0830  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.4.304.0 ), 0x60100 ( disabled : updated )
19:19:20.0285 0x0830  Win FW state via NFP2: enabled
19:19:25.0657 0x0830  ============================================================
19:19:25.0657 0x0830  Scan finished
19:19:25.0657 0x0830  ============================================================
19:19:25.0671 0x1118  Detected object count: 0
19:19:25.0671 0x1118  Actual detected object count: 0


#7 julesp

julesp
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:43 PM

Posted 06 May 2014 - 04:11 PM

Results from ADWCleaner

 

 

# AdwCleaner v3.207 - Report created 06/05/2014 at 19:25:13
# Updated 05/05/2014 by Xplode
# Operating System : Windows 8.1  (64 bits)
# Username : Thomas - THOMASPC
# Running from : E:\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
[#] Service Deleted : BackupStack
[#] Service Deleted : F06DEFF2-5B9C-490D-910F-35D3A9119622
Service Deleted : RrFilterService64
[#] Service Deleted : SystemkService
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\Iminent
Folder Deleted : C:\ProgramData\systemk
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pc speed up
Folder Deleted : C:\Program Files (x86)\MyPC Backup
Folder Deleted : C:\Program Files (x86)\Settings Manager
Folder Deleted : C:\Program Files (x86)\Video Performer
Folder Deleted : C:\Program Files (x86)\Common Files\Umbrella
Folder Deleted : C:\WINDOWS\Installer\{813BA625-B0FA-48D8-9B75-59759C88C219}
Folder Deleted : C:\Program Files\002
Folder Deleted : C:\Program Files\RrFilter
Folder Deleted : C:\Program Files\RrSavings
Folder Deleted : C:\Users\Thomas\AppData\Local\genienext
Folder Deleted : C:\Users\Thomas\AppData\Local\Mobogenie
Folder Deleted : C:\Users\Thomas\AppData\Local\PackageAware
Folder Deleted : C:\Users\Thomas\AppData\Local\SearchProtect
Folder Deleted : C:\Users\Thomas\AppData\LocalLow\buenosearch LTD
Folder Deleted : C:\Users\Thomas\AppData\LocalLow\IminentToolbar
Folder Deleted : C:\Users\Thomas\AppData\LocalLow\Softonic
Folder Deleted : C:\Users\Thomas\AppData\Roaming\Iminent
Folder Deleted : C:\Users\Thomas\AppData\Roaming\PerformerSoft
Folder Deleted : C:\Users\Thomas\AppData\Roaming\Tencent
Folder Deleted : C:\Users\Thomas\AppData\Roaming\Windows Net Data
Folder Deleted : C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Folder Deleted : C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
Folder Deleted : C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Video Performer
Folder Deleted : C:\Users\Thomas\Documents\Mobogenie
File Deleted : C:\END
File Deleted : C:\WINDOWS\System32\roboot64.exe
File Deleted : C:\Users\Thomas\daemonprocess.txt
File Deleted : C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
File Deleted : C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
File Deleted : C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Value Deleted : [x64] HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Extension.DLL
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x64]
Value Deleted : HKLM\SYSTEM\ControlSet001\Control\Session Manager\AppCertDlls [x86]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{54739D49-AC03-4C57-9264-C5195596B3A1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99E71BF1-5F51-4AF9-830B-67015D59640D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422922298}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455925598}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466926698}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{5563BEFE-3B03-43B1-8041-64A9745DAA56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444924498}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{54739D49-AC03-4C57-9264-C5195596B3A1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{208D4124-3895-4974-B293-A159BD306078}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{21EAF666-26B3-4A3C-ABD0-CA2F5A326744}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{54739D49-AC03-4C57-9264-C5195596B3A1}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422922298}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455925598}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466926698}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{21EAF666-26B3-4A3C-ABD0-CA2F5A326744}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4D9101D6-5BA0-4048-BDDE-7E2DF54C8C47}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\Linkey
Key Deleted : HKCU\Software\performersoft llc
Key Deleted : HKCU\Software\RrSavings
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Speedchecker Limited
Key Deleted : HKCU\Software\SystemK
Key Deleted : HKCU\Software\AppDataLow\Software\Rr Savings
Key Deleted : HKCU\Software\AppDataLow\Software\RrSavings
Key Deleted : HKLM\Software\SearchProtect
Key Deleted : HKLM\Software\Speedchecker Limited
Key Deleted : HKLM\Software\SystemK
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3566FB70-E722-4182-8266-815EAE862998}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Settings Manager
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Video Performer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\VIS
Key Deleted : [x64] HKLM\SOFTWARE\Iminent
Key Deleted : [x64] HKLM\SOFTWARE\LevelQualityWatcher
Key Deleted : [x64] HKLM\SOFTWARE\Rr Savings
Key Deleted : [x64] HKLM\SOFTWARE\RrSavings
Key Deleted : [x64] HKLM\SOFTWARE\Speedchecker Limited
Key Deleted : [x64] HKLM\SOFTWARE\V-bates
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}_is1
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{813BA625-B0FA-48D8-9B75-59759C88C219}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RrSavings
Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\Linkey\IEEXTE~1\iedll64.dll
Key Deleted : HKLM\Software\Classes\Installer\Features\07BF6653227E2814286618E5EA689289
Key Deleted : HKLM\Software\Classes\Installer\Features\526AB318AF0B8D84B9579557C9882C91
Key Deleted : HKLM\Software\Classes\Installer\Products\07BF6653227E2814286618E5EA689289
Key Deleted : HKLM\Software\Classes\Installer\Products\526AB318AF0B8D84B9579557C9882C91
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bpsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsersafeguard.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dprotectsvc.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\jumpflip
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\protectedsearch.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchinstaller.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotection.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchprotector.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\searchsettings64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\snapdo.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst32.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\stinst64.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\umbrella.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\utiljumpflip.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\volaro
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\vonteera
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroids.exe
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\websteroidsservice.exe
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17037
 
 
-\\ Google Chrome v34.0.1847.131
 
[ File : C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Homepage] : hxxp://search.conduit.com/?gd=&ctid=CT3324790&octid=EB_ORIGINAL_CTID&ISID=M262D2A4B-C0EF-42DD-AB32-55E3C5E3C938&SearchSource=55&CUI=&UM=5&UP=SP50200576-345F-412B-B15E-7E14446AE2B3&SSPV=
Deleted [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
Deleted [Extension] : flpcjncodpafbgdpnkljologafpionhb
Deleted [Extension] : fmlgoencnlndpglbocajlimaikjohmab
 
*************************
 
AdwCleaner[R0].txt - [23219 octets] - [06/05/2014 19:22:46]
AdwCleaner[S0].txt - [22787 octets] - [06/05/2014 19:25:13]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [22848 octets] ##########


#8 julesp

julesp
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:43 PM

Posted 06 May 2014 - 04:15 PM

And results from ESET scan

 

 

C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE\AskToolbarInstaller-ORJ-V7C[1].7z a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application
C:\AdwCleaner\Quarantine\C\Users\Thomas\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\MUServer.apk.vir a variant of Android/Mobserv.A potentially unwanted application deleted - quarantined
C:\Users\Thomas\AppData\Local\Microsoft\Silverlight\OutOfBrowser\Speedchecker.PCSpeedUp\application.xap a variant of Win32/Speedchecker.A potentially unwanted application deleted - quarantined
C:\Users\Thomas\Downloads\Setup (1).exe a variant of Win32/AirAdInstaller.A potentially unwanted application deleted - quarantined
C:\Windows\Installer\MSIF626.tmp a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE\AskToolbarInstaller-ORJ-V7C[1].7z a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application deleted - quarantined
 
 
 
 
Also attached is a screen shot of the type of corrupt images I am getting
 
IMG_0771_zps3490e4d6.jpg


#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:43 PM

Posted 06 May 2014 - 06:42 PM

Ok,,, Good

Did you run Junkware Tool?

Maybe a video card error
I see file corruption we will address after these.


Update your Malware bytes to the newest version (2.0) run it and post that log.

Download RogueKiller from one of the following links and save it to your desktop:
  • Link 1
  • Link 2
    • Close all programs and disconnect any USB or external drives before running the tool.
    • Double-click RogueKiller.exe to run the tool (Vista or 7 users: Right-click and select Run As Administrator).
    • Once the Prescan has finished, click Scan.
    • Once the Status box shows "Scan Finished", click the Delete button.
    • Copy and paste the report that opens into your next reply.
      • The log can also be found on your desktop labeled (RKreport[X]_D_xxdatexx_xtimex)
      • The highest number of [X], is the most recent Delete

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 julesp

julesp
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:43 PM

Posted 07 May 2014 - 06:50 AM

Hi

Yes I did run Junkware removal but didnt post the log for some reason - its pasted below and I will now run RogueKiller and Malwarebytes as requested - thanks.

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8.1 x64
Ran by Thomas on 06/05/2014 at 19:30:30.12
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110411921198}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110411921198}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{26A5DBBF-09C4-4033-B5BD-D901315D78E9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{ADCB60BE-82F8-4FD5-A283-F3F597957E4A}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{26A5DBBF-09C4-4033-B5BD-D901315D78E9}
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\Program Files (x86)\free youtube downloader"
 
 
 
~~~ Chrome
 
Successfully deleted: [Folder] C:\Users\Thomas\appdata\local\Google\Chrome\User Data\Default\Extensions\knebimhcckndhiglamoabbnifdkijidd
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06/05/2014 at 19:34:57.12
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#11 julesp

julesp
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:43 PM

Posted 07 May 2014 - 07:12 AM

OK - have run Malwarebytes and Rogue Killer as requested and have enclosed the logs for each - thanks.

 

 

Malwarebytes log

 

 

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 07/05/2014
Scan Time: 13:01:38
Logfile: Malwarebytes log.txt
Administrator: Yes
 
Version: 2.00.1.1004
Malware Database: v2014.05.07.03
Rootkit Database: v2014.03.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Chameleon: Disabled
 
OS: Windows 8.1
CPU: x64
File System: NTFS
User: Thomas
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 271004
Time Elapsed: 9 min, 8 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Warn
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 5
PUP.Optional.Adpeak.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\yewimmxqbs64, , [ff9056f86c0fa690d6d97c46eb188a76], 
PUP.Optional.PlusHD.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\APPDATALOW\SOFTWARE\Plus-HD-7.4, , [286794badaa187afa400354d39c97c84], 
PUP.Optional.Iminent.A, HKU\S-1-5-21-2665651897-2638262858-974552003-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOWREGISTRY\Iminent, , [0986f45ad4a783b35ff60c6ef111ac54], 
PUP.Optional.CrossRider.M, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{11111111-1111-1111-1111-110411921198}, , [791658f65a213cfaa92da49b907401ff], 
PUP.Optional.CrossRider.M, HKLM\SOFTWARE\CLASSES\CLSID\{11111111-1111-1111-1111-110411921198}, , [791658f65a213cfaa92da49b907401ff], 
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 1
PUP.Optional.Conduit.A, C:\Users\Thomas\AppData\Local\Google\Chrome\User Data\Default\Preferences, Good: (), Bad: (   "homepage": "http://search.conduit.com/?gd=&ctid=CT3324790&octid=EB_ORIGINAL_CTID&ISID=M262D2A4B-C0EF-42DD-AB32-55E3C5E3C938&SearchSource=55&CUI=&UM=5&UP=SP50200576-345F-412B-B15E-7E14446AE2B3&SSPV=",), ,[7718fa54abd0fd392d3091d8b054cf31]
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
 
 
Rogue Killer log
 
 
RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
 
Operating System : Windows 8.1 (6.3.9200 ) 64 bits version
Started in : Normal mode
User : Thomas [Admin rights]
Mode : Remove -- Date : 05/07/2014 13:08:15
| ARK || FAK || MBR |
 
¤¤¤ Bad processes : 0 ¤¤¤
 
¤¤¤ Registry Entries : 2 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
 
¤¤¤ Scheduled tasks : 0 ¤¤¤
 
¤¤¤ Startup Entries : 0 ¤¤¤
 
¤¤¤ Web browsers : 0 ¤¤¤
 
¤¤¤ Browser Addons : 0 ¤¤¤
 
¤¤¤ Particular Files / Folders: ¤¤¤
 
¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤
 
¤¤¤ External Hives: ¤¤¤
 
¤¤¤ Infection :  ¤¤¤
 
¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
 
 
 
 
¤¤¤ MBR Check: ¤¤¤
 
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) WDC WD10EZEX-60ZF5A0 +++++
--- User ---
[MBR] a5779dc94ae2726f48be5155b2be4d2d
[BSP] 7b844cfbf371ac97a19558816cd1af7a : Empty MBR Code
Partition table:
0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1 | Size: 2097151 MB
User = LL1 ... OK!
User = LL2 ... OK!
 
Finished : << RKreport[0]_D_05072014_130815.txt >>
RKreport[0]_S_05072014_130801.txt
 


#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:43 PM

Posted 07 May 2014 - 10:01 AM

Looks good now,any issues on that end?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 julesp

julesp
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:43 PM

Posted 07 May 2014 - 10:38 AM

Things seem to be running a whole lot better this end thanks.

Youtube and other things no longer buffer every few seconds and web speed seems pretty good now.

We are still getting the corrupt images at the top of this page - strangly it only seems to appear on this web site at the moment and only on the logo.

What do you think about the file corruption you mentioned in post #9? Is there anything that can be done about that?

 

Have just done a speed test for the internet - results below - thats pretty good for this time of day around here:-)

3486456226.png



#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:43 PM

Posted 07 May 2014 - 12:10 PM

Ok, Now run this... Skip any malware steps

Download Windows Repair (All in One) from this site

Install the program then run it.

NOTE 1. In Windows Vista, 7 and 8 right click on the program, click "Run As Administrator".
NOTE 2. Disable your antivirus program before running Windows Repair.


Go to Step 3 and click on Check button next to 1. See If Check Disk Is Needed.
If the tool that the Check Disk is needed click on Do It button next to 2. Check Disk.
In that case make sure you restart computer.

p22004342.gif


Once the above is done go to Step 4 and allow it to run System File Check by clicking on Do It button:

p22004343.gif


Go to Step 5 and under "System Restore" click on Create button:

p22004346.gif


Go to Start Repairs tab and click Start button.

Leave all checkmarks as they're.
NOTE for Windows 8 users. Reset Registry Permissions is NOT checked by design.

Click on Start button.

p22004347.gif

Post Windows Repair log which is located in the following folder:
64-bit systems - C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs
32-bit systems - C:\Program Files\Tweaking.com\Windows Repair (All in One)\Logs
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 julesp

julesp
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:43 PM

Posted 07 May 2014 - 01:49 PM

OK - have now run that program as requested - log below

Thanks

 

 

 

System Variables
--------------------------------------------------------------------------------
OS: Windows 8.1
OS Architecture: 64-bit
OS Version: 6.3.9600
OS Service Pack: 
Computer Name: THOMASPC
Windows Drive: C:\
Windows Path: C:\Windows
Current Profile: C:\Users\Thomas
Current Profile SID: S-1-5-21-2665651897-2638262858-974552003-1001
Current Profile Classes: S-1-5-21-2665651897-2638262858-974552003-1001_Classes
Profiles Location: C:\Users
Profiles Location 2: C:\Windows\ServiceProfiles
Local Settings AppData: C:\Users\Thomas\AppData\Local
--------------------------------------------------------------------------------
 
System Information
--------------------------------------------------------------------------------
System Up Time: 0 Days 00:20:26
 
Process Count: 81
Commit Total: 1.83 GB
Commit Limit: 6.07 GB
Commit Peak: 1.93 GB
Handle Count: 29134
Kernel Total: 397.85 MB
Kernel Paged: 317.62 MB
Kernel Non Paged: 80.23 MB
System Cache: 3.53 GB
Thread Count: 1063
--------------------------------------------------------------------------------
 
Memory Before Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 5.19 GB
Memory Used: 1.63 GB(31.4728%)
Memory Avail.: 3.56 GB
--------------------------------------------------------------------------------
 
Cleaning Memory Before Starting Repairs...
 
Memory After Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 5.19 GB
Memory Used: 1.27 GB(24.3662%)
Memory Avail.: 3.93 GB
--------------------------------------------------------------------------------
 
Starting Repairs...
   Start (07/05/2014 18:50:28)
 
01 - Reset Registry Permissions 01/03
   HKEY_CURRENT_USER & Sub Keys
   Start (07/05/2014 18:50:31)
   Running Repair Under Current User Account
   Done (07/05/2014 18:50:46)
 
01 - Reset Registry Permissions 02/03
   HKEY_LOCAL_MACHINE & Sub Keys
   Start (07/05/2014 18:50:46)
   Running Repair Under System Account
   Done (07/05/2014 18:53:57)
 
01 - Reset Registry Permissions 03/03
   HKEY_CLASSES_ROOT & Sub Keys
   Start (07/05/2014 18:53:57)
   Running Repair Under System Account
   Done (07/05/2014 18:55:03)
 
03 - Reset Service Permissions
   Start (07/05/2014 18:55:03)
   Running Repair Under System Account
   Done (07/05/2014 18:55:11)
 
04 - Register System Files
   Start (07/05/2014 18:55:11)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 18:55:49)
 
05 - Repair WMI
   Start (07/05/2014 18:55:49)
 
   Starting Security Center So We Can Export The Security Info.
 
   Exporting Antivirus Info...
   ESET NOD32 Antivirus 7.0 Exported.
   Windows Defender Exported.
 
   Exporting AntiSpyware Info...
   Windows Defender Exported.
   ESET NOD32 Antivirus 7.0 Exported.
 
   Exporting 3rd Party Firewall Info...
   No Firewall Products Reported.
 
   Running Repair Under Current User Account
   Done (07/05/2014 19:02:27)
 
06 - Repair Windows Firewall
   Start (07/05/2014 19:02:27)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:03:19)
 
07 - Repair Internet Explorer
   Start (07/05/2014 19:03:19)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:04:05)
 
08 - Repair MDAC/MS Jet
   Start (07/05/2014 19:04:05)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:04:22)
 
09 - Repair Hosts File
   Start (07/05/2014 19:04:22)
   Running Repair Under System Account
   Done (07/05/2014 19:04:24)
 
10 - Remove Policies Set By Infections
   Start (07/05/2014 19:04:24)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:04:29)
 
11 - Repair Start Menu Icons Removed By Infections
   Start (07/05/2014 19:04:29)
   Running Repair Under System Account
   Done (07/05/2014 19:04:31)
 
12 - Repair Icons
   Start (07/05/2014 19:04:31)
   Running Repair Under Current User Account
   Done (07/05/2014 19:04:34)
 
13 - Repair Winsock & DNS Cache
   Start (07/05/2014 19:04:34)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:04:58)
 
15 - Repair Proxy Settings
   Start (07/05/2014 19:04:58)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:05:02)
 
17 - Repair Windows Updates
   Start (07/05/2014 19:05:02)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:06:33)
 
18 - Repair CD/DVD Missing/Not Working
   Start (07/05/2014 19:06:33)
   iTunes was found, adding UpperFilters for iTunes Reg Key
   UpperFilters added?: True
   Done (07/05/2014 19:06:34)
 
19 - Repair Volume Shadow Copy Service
   Start (07/05/2014 19:06:34)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:06:42)
 
21 - Repair MSI (Windows Installer)
   Start (07/05/2014 19:06:42)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:06:55)
 
23.01 - Repair bat Association
   Start (07/05/2014 19:06:55)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:07:00)
 
23.02 - Repair cmd Association
   Start (07/05/2014 19:07:00)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:07:05)
 
23.03 - Repair com Association
   Start (07/05/2014 19:07:05)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:07:09)
 
23.04 - Repair Directory Association
   Start (07/05/2014 19:07:09)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:07:14)
 
23.05 - Repair Drive Association
   Start (07/05/2014 19:07:14)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:07:19)
 
23.06 - Repair exe Association
   Start (07/05/2014 19:07:19)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:07:23)
 
23.07 - Repair Folder Association
   Start (07/05/2014 19:07:23)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:07:28)
 
23.08 - Repair inf Association
   Start (07/05/2014 19:07:28)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:07:33)
 
23.09 - Repair lnk (Shortcuts) Association
   Start (07/05/2014 19:07:33)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:07:37)
 
23.10 - Repair msc Association
   Start (07/05/2014 19:07:38)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:07:42)
 
23.11 - Repair reg Association
   Start (07/05/2014 19:07:42)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:07:47)
 
23.12 - Repair scr Association
   Start (07/05/2014 19:07:47)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:07:52)
 
24 - Repair Windows Safe Mode
   Start (07/05/2014 19:07:52)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:07:56)
 
25 - Repair Print Spooler
   Start (07/05/2014 19:07:56)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:08:15)
 
26 - Restore Important Windows Services
   Start (07/05/2014 19:08:15)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:08:28)
 
27 - Set Windows Services To Default Startup
   Start (07/05/2014 19:08:28)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:08:33)
 
28 - Repair Windows 8 App Store
   Start (07/05/2014 19:08:33)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (07/05/2014 19:09:09)
 
29 - Repair Windows 8 Component Store
   Start (07/05/2014 19:09:09)
   Running Repair Under Current User Account
   Done (07/05/2014 19:35:18)
 
30 - Restore Windows 8 COM+ Unmarshalers
   Start (07/05/2014 19:35:18)
   Running Repair Under System Account
Processing ACL of: <classes_root\Unmarshalers>
 
SetACL finished with error(s): 
SetACL error message: The call to SetNamedSecurityInfo () failed
Operating system error message: Access is denied.
 
   Done (07/05/2014 19:35:20)
 
Cleaning up empty logs...
 
All Selected Repairs Done.
   Done (07/05/2014 19:35:21)
   Total Repair Time: 00:44:55
 
 
...YOU MUST RESTART YOUR SYSTEM...
   Running Repair Under Current User Account





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users