Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Obsolete software key-Trolltech Keeps Coming Back


  • This topic is locked This topic is locked
14 replies to this topic

#1 mred27

mred27

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 28 May 2014 - 08:50 PM

Hello,

Pardon if this is not really a bug but the following obsolete software key keeps popping up for deletion in CCleaner. I delete it but after reboot, it comes back when I run CCleaner. I posted in the CCleaner forum but no replies yet. I have even manually deleted this registry key but still the same result. Is this anything malicious or to be concerned about?  After googling. it appears it is a defunct patform of some kind. Thx.

Obsolete software key    Trolltech    HKCU\Software\Trolltech
 



BC AdBot (Login to Remove)

 


m

#2 yettibe

yettibe

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:40 AM

Posted 28 May 2014 - 09:21 PM

this is a sophisticated malware. sadly it is not so popular yet, so there is no public cleaner available. (as far as I know)

actually I just created a new thread about that persistent malware:

http://www.bleepingcomputer.com/forums/t/535871/i-am-fighting-with-a-sophisticated-malware-for-weeks-help/



#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,195 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:40 AM

Posted 28 May 2014 - 09:35 PM

Hello, I believe we can get it off with these...


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 mred27

mred27
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 29 May 2014 - 03:57 AM

Thanks...here is the Mini-Toobox result...will run the others later.

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by MY (administrator) on 29-05-2014 at 04:55:02
Running from "C:\Users\MY\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Local Area Connection (Connected)
Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Media disconnected)
The following helper DLL cannot be loaded: IPMONTR.DLL.
The following helper DLL cannot be loaded: IPPROMON.DLL.
The following helper DLL cannot be loaded: DGNET.DLL.
The following helper DLL cannot be loaded: IPV6MON.DLL.


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : MY-VAIO
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : hsd1.fl.comcast.net
   System Quarantine State . . . . . : Not Restricted


Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : hsd1.fl.comcast.net
   Description . . . . . . . . . . . : Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
   Physical Address. . . . . . . . . : 78-84-3C-A2-E6-D5
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::344a:dd20:762e:55a3%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 10.0.0.4(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, May 27, 2014 9:52:18 PM
   Lease Expires . . . . . . . . . . : Tuesday, June 03, 2014 9:52:18 PM
   Default Gateway . . . . . . . . . : 10.0.0.1
   DHCP Server . . . . . . . . . . . : 10.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 343442492
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-37-0B-C0-CC-AF-78-CE-25-14
   DNS Servers . . . . . . . . . . . : 75.75.75.75
                                       75.75.76.76
   NetBIOS over Tcpip. . . . . . . . : Enabled

Wireless LAN adapter Wireless Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
   Physical Address. . . . . . . . . : CC-AF-78-CE-25-14
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.hsd1.fl.comcast.net:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : hsd1.fl.comcast.net
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:8d9:618:f5ff:fffb(Preferred)
   Link-local IPv6 Address . . . . . : fe80::8d9:618:f5ff:fffb%13(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  cdns01.comcast.net
Address:  75.75.75.75

Name:    google.com
Addresses:  2607:f8b0:4008:800::1001
      173.194.37.103
      173.194.37.97
      173.194.37.100
      173.194.37.99
      173.194.37.102
      173.194.37.98
      173.194.37.104
      173.194.37.105
      173.194.37.101
      173.194.37.96
      173.194.37.110


Pinging google.com [74.125.229.206] with 32 bytes of data:
Reply from 74.125.229.206: bytes=32 time=20ms TTL=54
Reply from 74.125.229.206: bytes=32 time=23ms TTL=54

Ping statistics for 74.125.229.206:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 20ms, Maximum = 23ms, Average = 21ms
Server:  cdns01.comcast.net
Address:  75.75.75.75

Name:    yahoo.com
Addresses:  206.190.36.45
      98.138.253.109
      98.139.183.24


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=69ms TTL=46
Reply from 98.138.253.109: bytes=32 time=72ms TTL=46

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 69ms, Maximum = 72ms, Average = 70ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 12...78 84 3c a2 e6 d5 ......Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
 11...cc af 78 ce 25 14 ......Atheros AR9285 Wireless Network Adapter
  1...........................Software Loopback Interface 1
 14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         10.0.0.1         10.0.0.4     10
         10.0.0.0    255.255.255.0         On-link          10.0.0.4    266
         10.0.0.4  255.255.255.255         On-link          10.0.0.4    266
       10.0.0.255  255.255.255.255         On-link          10.0.0.4    266
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link          10.0.0.4    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link          10.0.0.4    266
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 13     58 2001::/32                On-link
 13    306 2001:0:9d38:6ab8:8d9:618:f5ff:fffb/128
                                    On-link
 12    266 fe80::/64                On-link
 13    306 fe80::/64                On-link
 13    306 fe80::8d9:618:f5ff:fffb/128
                                    On-link
 12    266 fe80::344a:dd20:762e:55a3/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
 12    266 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/29/2014 04:51:42 AM) (Source: Application Error) (User: )
Description: Faulting application name: SearchIndexer.exe, version: 7.0.7601.17610, time stamp: 0x4dc0d019
Faulting module name: msvcrt.dll, version: 7.0.7601.17744, time stamp: 0x4eeb033f
Exception code: 0xc0000005
Fault offset: 0x00000000000011fd
Faulting process id: 0x136c
Faulting application start time: 0xSearchIndexer.exe0
Faulting application path: SearchIndexer.exe1
Faulting module path: SearchIndexer.exe2
Report Id: SearchIndexer.exe3

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.


Details:
    The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.

Context: Windows Application


Details:
    The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
    The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
    Element not found.  (HRESULT : 0x80070490) (0x80070490)

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.

Context: Windows Application, SystemIndex Catalog


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot load the property store information.

Context: Windows Application, SystemIndex Catalog


Details:
    The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service) (User: )
Description: The search service has detected corrupted data files in the index {id=4700}. The service will attempt to automatically correct this problem by rebuilding the index.


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot open the Jet property store.


Details:
    0x%08x (0xc0041800 - The content index database is corrupt.  (HRESULT : 0xc0041800))


System errors:
=============
Error: (05/29/2014 04:51:44 AM) (Source: Service Control Manager) (User: )
Description: Windows Search4

Error: (05/28/2014 11:58:24 PM) (Source: DCOM) (User: MY-VAIO)
Description: application-specificLocalActivation{0C0A3666-30C9-11D0-8F20-00805F2CD064}{9209B1A6-964A-11D0-9372-00A0C9034910}MY-VAIOMYS-1-5-21-679210397-2375353738-1777670786-1005LocalHost (Using LRPC)

Error: (05/28/2014 04:18:10 PM) (Source: Service Control Manager) (User: )
Description: HP Network Devices Support%%126

Error: (05/28/2014 04:17:39 PM) (Source: Service Control Manager) (User: )
Description: HP Network Devices Support%%126

Error: (05/28/2014 03:13:00 PM) (Source: Service Control Manager) (User: )
Description: Windows Search3

Error: (05/28/2014 03:13:00 PM) (Source: Service Control Manager) (User: )
Description: Windows Search%%-1073473536

Error: (05/28/2014 03:12:29 PM) (Source: Service Control Manager) (User: )
Description: Windows Search2300001Restart the service

Error: (05/28/2014 00:12:34 AM) (Source: DCOM) (User: )
Description: {19E41664-8329-4346-BFC6-7E9C9AEBC69E}

Error: (05/28/2014 00:12:30 AM) (Source: DCOM) (User: MY-VAIO)
Description: application-specificLocalActivation{0C0A3666-30C9-11D0-8F20-00805F2CD064}{9209B1A6-964A-11D0-9372-00A0C9034910}MY-VAIOMYS-1-5-21-679210397-2375353738-1777670786-1005LocalHost (Using LRPC)

Error: (05/27/2014 09:54:58 PM) (Source: Service Control Manager) (User: )
Description: HP Network Devices Support%%126


Microsoft Office Sessions:
=========================
Error: (05/29/2014 04:51:42 AM) (Source: Application Error)(User: )
Description: SearchIndexer.exe7.0.7601.176104dc0d019msvcrt.dll7.0.7601.177444eeb033fc000000500000000000011fd136c01cf7aa9c38e9eb4C:\Windows\system32\SearchIndexer.exeC:\Windows\system32\msvcrt.dll745d20d4-e70e-11e3-af22-78843ca2e6d5

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service)(User: )
Description:
Details:
    The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application


Details:
    The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
    The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
    Element not found.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog


Details:
    The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service)(User: )
Description:
Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service)(User: )
Description:
Details:
    The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
4700

Error: (05/28/2014 03:13:00 PM) (Source: Windows Search Service)(User: )
Description:
Details:
    0x%08x (0xc0041800 - The content index database is corrupt.  (HRESULT : 0xc0041800))


CodeIntegrity Errors:
===================================
  Date: 2014-02-25 15:26:05.598
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-02-25 15:26:05.536
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-21 10:47:50.530
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-21 10:47:50.483
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-21 10:47:50.436
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-21 10:47:50.390
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-21 07:28:01.904
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-21 07:28:01.873
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-21 07:28:01.826
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-21 07:28:01.763
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

1400 (Version: 130.0.365.000)
1400_Help (Version: 82.0.242.000)
1400Trb (Version: 82.0.242.000)
64 Bit HP CIO Components Installer (Version: 7.2.8)
7-Data Android Recovery version 1.1 (Version: 1.1)
7-Zip 9.22beta
Adobe AIR (Version: 4.0.0.1390)
Adobe Flash Player 13 ActiveX (Version: 13.0.0.214)
Adobe Flash Player 13 Plugin (Version: 13.0.0.214)
Adobe Reader XI (11.0.07) (Version: 11.0.07)
Adobe Shockwave Player 12.1 (Version: 12.1.0.150)
AIO_CDB_ProductContext (Version: 130.0.365.000)
AIO_CDB_Software (Version: 130.0.365.000)
AIO_Scan (Version: 130.0.421.000)
Android Data Recovery  (Version: )
AOMEI Partition Assistant Pro Edition 5.5
Application Manager for VAIO
Atheros WiFi Driver Installation (Version: 3.0)
Audio Record Wizard (Version: 6.92)
avast! Free Antivirus (Version: 9.0.2018)
Batch Picture Protector 4.1 (Version: 4.1)
Batch Picture Resizer 5.2 (Version: 5.2)
Batchmarker version 2.01 (Version: 2.01)
Belarc Advisor 8.4 (Version: 8.4.0.0)
Boilsoft Screen Recorder 1.05
Boilsoft Video Splitter 6.34
Brother MFL-Pro Suite DCP-7065DN (Version: 1.1.3.0)
BufferChm (Version: 130.0.331.000)
Bulk Rename Utility 2.7.1.2
Camtasia Studio 8 (Version: 8.2.1.1423)
CCleaner (Version: 4.14)
CollageIt 1.9.3 (Version: 1.9.3)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conexant HD Audio (Version: 8.54.0.53)
Copy (Version: 130.0.428.000)
DataNumen CAB Repair v2.0
DataNumen PSD Repair v2.0
DataNumen TAR Repair v2.0
Defraggler (Version: 2.18)
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.465.000)
Digital Advertising Alliance Protect My Choices (Beta) (Version: 1.4.0.0)
DriveImage XML (Private Edition) (Version: 2.50.000)
eReg (Version: 1.20.138.34)
ERUNT 1.1j
f.lux
Fax (Version: 130.0.418.000)
FileSeek 3.1.4 (Version: 3.1.4.0)
FileZilla Client 3.7.4.1 (Version: 3.7.4.1)
Folder Scout 1.3.2
Fotosizer 2.05 (Version: 2.05.0.536)
Glary Utilities PRO 5.0 (Version: 5.0.0.1)
Google Chrome (Version: 35.0.1916.114)
Google Update Helper (Version: 1.3.24.7)
GPBaseService2 (Version: 130.0.371.000)
Hard Disk Sentinel
HD Video Converter Factory Pro
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B (Version: 13.0)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 4.000.011.006)
HPPhotoGadget (Version: 130.0.282.000)
HPProductAssistant (Version: 130.0.371.000)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 9.17.10.3347)
Intel® Rapid Storage Technology (Version: 10.1.0.1008)
IrfanView (remove only) (Version: 4.37)
i-Studio 6 (Version: 6.0.11.900)
Java 7 Update 55 (Version: 7.0.550)
Java Auto Updater (Version: 2.1.9.8)
Jihosoft Video Converter version 2.3 (Version: 2.3)
Kingsoft Office 2013 (9.1.0.4560) (Version: 9.1.0.4560)
Logitech SetPoint 6.61 (Version: 6.61.15)
Logitech Unifying Software 2.10 (Version: 2.10.37)
Macro Recorder 5.6.5 (Version: 5.6.5)
Magic Photo Enhancer version 1.4 (Version: 1.4)
Malwarebytes Anti-Malware version 2.0.1.1004 (Version: 2.0.1.1004)
Media Gallery (Version: 2.0.0.11150)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Office XP Professional with FrontPage (Version: 10.0.6626.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
MiniTool Partition Wizard Home Edition 8.1.1
Mozilla Firefox 29.0.1 (x86 en-US) (Version: 29.0.1)
Mozilla Maintenance Service (Version: 27.0.1)
MPC-HC 1.7.0 (Version: 1.7.0.7858)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
MyLanViewer version 4.17.4 (Version: 4.17.4)
NeatMP3 Pro version 1.2.0 (Version: 1.2.0)
Network64 (Version: 130.0.572.000)
Nuance PaperPort 12 (Version: 12.1.0006)
Nuance PDF Viewer Plus (Version: 5.30.3290)
Oasis2Service (Version: 1.0.4)
PaperPort Image Printer 64-bit (Version: 14.00.0000)
PCmover (Version: 8.00.633.0)
Picture Doctor 2.0 (Version: 2.0)
PL-2303 USB-to-Serial (Version: 1.9.0)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PMB (Version: 5.5.02.12220)
PMB VAIO Edition Plug-in (Version: 1.5.00.02250)
PMB VAIO Edition Plug-in (Version: 1.5.01.04010)
Quick Notes Plus 5.0
Quick Search 1.1.0.189 (Version: 1.1.0.189)
Quicken 2012 (Version: 21.1.7.18)
Realtek PCIE Card Reader (Version: 6.1.7601.92)
Remote Keyboard (Version: 1.1.1.07060)
Remote Play with PlayStation 3 (Version: 1.1.0.15070)
Remove Logo Now! 1.5 (Version: 1.5)
RoboForm 7-9-6-7 (All Users) (Version: 7-9-6-7)
Scan (Version: 13.0.0.0)
Scansoft PDF Professional
Screencast-O-Matic
Sketch Drawer 1.3 (Version: 1.3)
SlimPublisher (Version: 4.0)
Smart Diary Suite 4.8.0.0 (Version: 4.8.0.0)
SoftOrbits Photo Retoucher 1.4 (Version: 1.4)
SoftSkin Photo Makeup 1.2 (Version: 1.2)
SolutionCenter (Version: 130.0.373.000)
Sony Corporation (Version: 1.0.0)
Speccy (Version: 1.25)
SpeedFan (remove only)
SSLx64 (Version: 1.0.0)
SSLx86 (Version: 1.0.0)
Status (Version: 130.0.469.000)
SuperEasy Live Defrag v.1.0.5 (Version: 1.0.5)
swMSM (Version: 12.0.0.1)
System Requirements Lab for Intel (Version: 4.5.15.0)
Toolbox (Version: 130.0.648.000)
TrayApp (Version: 130.0.422.000)
UltraSearch V1.8.1 (64 bit) (Version: 1.8.1)
UnloadSupport (Version: 11.0.0)
Unlocker 1.9.2 (Version: 1.9.2)
uRex DVD Ripper Platinum
uRex Watermark Platinum
VAIO - Media Gallery - VAIO Personalization Manager Update (Version: 4.2.5.07160)
VAIO - Media Gallery (Version: 2.0.2.12040)
VAIO - PMB VAIO Edition Guide (Version: 1.5.00.02250)
VAIO - PMB VAIO Edition Plug-in (Version: 1.5.01.04060)
VAIO - Remote Keyboard (Version: 1.1.0.07060)
VAIO - Remote Play with PlayStation®3 (Version: 1.1.0.15070)
VAIO Care (Version: 8.4.0.14281)
VAIO Care Recovery (Version: 1.1.1.13230)
VAIO Control Center (Version: 4.5.0.03040)
VAIO Data Restore Tool (Version: 1.6.0.13140)
VAIO Easy Connect (Version: 1.1.2.01120)
VAIO Event Service (Version: 5.5.0.03040)
VAIO Gate (Version: 2.4.2.02200)
VAIO Gate Default (Version: 2.4.0.03240)
VAIO Hardware Diagnostics (Version: 4.2.0.14280)
VAIO Health Report (Version: 1.0)
VAIO Improvement (Version: 1.0.0.14150)
VAIO Manual (Version: 2.0.0.02250)
VAIO Quick Web Access (Version: 1.4.5.5)
VAIO Sample Contents (Version: 1.4.0.09010)
VAIO Satisfaction Survey. (Version: 3.0)
VAIO Smart Network (Version: 3.5.0.02280)
VAIO Transfer Support (Version: 1.4.0.14230)
VAIO Update (Version: 7.0.0.14270)
VBA (2627.01) (Version: 6.03.00.9402)
VCCx86 (Version: 1.0.0)
VESx64 (Version: 1.0.0)
VESx86 (Version: 1.0.0)
VGClientX64 (Version: 1.0.0)
VGClientX86 (Version: 1.0.0)
Video Watermark Maker 1.1 (Version: 1.1)
VIx64 (Version: 1.0.0)
VIx86 (Version: 1.0.0)
Vole Media CHM (Version: 3.12.40308)
Vole Windows Expedition (Version: 3.10.31218)
Vole Word Reviewer (Version: 3.10.31218)
VSNx64 (Version: 1.0.0)
VU5x64 (Version: 1.1.0)
VU5x86 (Version: 1.1.0)
VWSTx86 (Version: 1.0.0)
Watermark Software
WebReg (Version: 130.0.132.017)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
WinX HD Video Converter Deluxe 5.0.4
WinX Mobile Video Converter 4.0.0
Yankee Clipper III
Zortam Mp3 Media Studio 17.15

========================= Memory info: ===================================

Percentage of memory in use: 36%
Total physical RAM: 8139.86 MB
Available physical RAM: 5207.14 MB
Total Pagefile: 16277.9 MB
Available Pagefile: 12999.61 MB
Total Virtual: 4095.88 MB
Available Virtual: 3967.04 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:246.81 GB) (Free:80.07 GB) NTFS
3 Drive e: (New Volume) (Fixed) (Total:208.49 GB) (Free:93.23 GB) NTFS

========================= Users: ========================================

User accounts for \\MY-VAIO

Administrator            Guest                    Justin                   
MY                       


**** End of log ****
 



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,195 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:40 AM

Posted 29 May 2014 - 09:56 AM

You need to rese the Winsock

Please Download this file, Click Me
Right-click on winsockfix.bat and click on Run as Administrator.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 mred27

mred27
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 29 May 2014 - 05:38 PM

Ran that winsock bat file and when I rebooted, my screen was this putrid green and barely legible. Tried a system restore which was only partially successful but my screen did come back to normal. Here are those other results except the ESET which I will run later. Thx.

 

TDDS Killer-Nothing found

11:40:26.0025 0x1648  TDSS rootkit removing tool 3.0.0.35 May 23 2014 07:32:03
11:40:33.0467 0x1648  ============================================================
11:40:33.0467 0x1648  Current date / time: 2014/05/29 11:40:33.0467
11:40:33.0467 0x1648  SystemInfo:
11:40:33.0467 0x1648  
11:40:33.0467 0x1648  OS Version: 6.1.7601 ServicePack: 1.0
11:40:33.0467 0x1648  Product type: Workstation
11:40:33.0467 0x1648  ComputerName: MY-VAIO
11:40:33.0467 0x1648  UserName: MY
11:40:33.0467 0x1648  Windows directory: C:\Windows
11:40:33.0467 0x1648  System windows directory: C:\Windows
11:40:33.0467 0x1648  Running under WOW64
11:40:33.0467 0x1648  Processor architecture: Intel x64
11:40:33.0467 0x1648  Number of processors: 4
11:40:33.0467 0x1648  Page size: 0x1000
11:40:33.0467 0x1648  Boot type: Normal boot
11:40:33.0467 0x1648  ============================================================
11:40:36.0056 0x1648  KLMD registered as C:\Windows\system32\drivers\83744459.sys
11:40:36.0415 0x1648  System UUID: {389B4A70-B1E6-839E-10A4-87DE8F0EDF0A}
11:40:37.0523 0x1648  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:40:37.0554 0x1648  ============================================================
11:40:37.0554 0x1648  \Device\Harddisk0\DR0:
11:40:37.0554 0x1648  MBR partitions:
11:40:37.0554 0x1648  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14B5800, BlocksNum 0x31800
11:40:37.0554 0x1648  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x14E7800, BlocksNum 0x1EDA0800
11:40:37.0585 0x1648  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x20288800, BlocksNum 0x1A0FD000
11:40:37.0585 0x1648  ============================================================
11:40:37.0632 0x1648  C: <-> \Device\Harddisk0\DR0\Partition2
11:40:37.0679 0x1648  E: <-> \Device\Harddisk0\DR0\Partition3
11:40:37.0679 0x1648  ============================================================
11:40:37.0679 0x1648  Initialize success
11:40:37.0679 0x1648  ============================================================
11:40:53.0544 0x07e8  ============================================================
11:40:53.0544 0x07e8  Scan started
11:40:53.0544 0x07e8  Mode: Manual;
11:40:53.0544 0x07e8  ============================================================
11:40:53.0544 0x07e8  KSN ping started
11:40:56.0071 0x07e8  KSN ping finished: true
11:40:56.0679 0x07e8  ================ Scan system memory ========================
11:40:56.0679 0x07e8  System memory - ok
11:40:56.0679 0x07e8  ================ Scan services =============================
11:40:57.0272 0x07e8  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
11:40:57.0272 0x07e8  1394ohci - ok
11:40:59.0519 0x07e8  [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
11:40:59.0534 0x07e8  ACDaemon - ok
11:40:59.0581 0x07e8  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
11:40:59.0597 0x07e8  ACPI - ok
11:40:59.0612 0x07e8  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
11:40:59.0612 0x07e8  AcpiPmi - ok
11:40:59.0675 0x07e8  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:40:59.0675 0x07e8  AdobeARMservice - ok
11:40:59.0784 0x07e8  [ 09E7C37DF4A911C8A9AA8BF88ACD10AA, E881E0BBDCED58F28E0BA8DC27372EDFFFF2C57EE31CD13A032FDC9F7C831B5A ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:40:59.0799 0x07e8  AdobeFlashPlayerUpdateSvc - ok
11:40:59.0815 0x07e8  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
11:40:59.0831 0x07e8  adp94xx - ok
11:40:59.0893 0x07e8  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
11:40:59.0924 0x07e8  adpahci - ok
11:40:59.0971 0x07e8  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
11:40:59.0971 0x07e8  adpu320 - ok
11:41:00.0049 0x07e8  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
11:41:00.0049 0x07e8  AeLookupSvc - ok
11:41:00.0111 0x07e8  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
11:41:00.0127 0x07e8  AFD - ok
11:41:00.0143 0x07e8  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
11:41:00.0143 0x07e8  agp440 - ok
11:41:00.0174 0x07e8  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
11:41:00.0174 0x07e8  ALG - ok
11:41:00.0189 0x07e8  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
11:41:00.0189 0x07e8  aliide - ok
11:41:00.0221 0x07e8  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
11:41:00.0221 0x07e8  amdide - ok
11:41:00.0252 0x07e8  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
11:41:00.0267 0x07e8  AmdK8 - ok
11:41:00.0267 0x07e8  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
11:41:00.0267 0x07e8  AmdPPM - ok
11:41:00.0330 0x07e8  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
11:41:00.0345 0x07e8  amdsata - ok
11:41:00.0392 0x07e8  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
11:41:00.0392 0x07e8  amdsbs - ok
11:41:00.0423 0x07e8  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
11:41:00.0423 0x07e8  amdxata - ok
11:41:00.0501 0x07e8  [ 091F08BCEE2AEDDC89070370552DFD34, 8E3E057D1D5270E91CBB647251F3B28DA9D819F6040A8439C085CC546283339A ] ampa            C:\Windows\system32\ampa.sys
11:41:00.0501 0x07e8  ampa - ok
11:41:00.0533 0x07e8  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
11:41:00.0548 0x07e8  AppID - ok
11:41:00.0579 0x07e8  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
11:41:00.0579 0x07e8  AppIDSvc - ok
11:41:00.0595 0x07e8  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
11:41:00.0611 0x07e8  Appinfo - ok
11:41:00.0657 0x07e8  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
11:41:00.0673 0x07e8  arc - ok
11:41:00.0689 0x07e8  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
11:41:00.0689 0x07e8  arcsas - ok
11:41:00.0720 0x07e8  [ C130BC4A51B1382B2BE8E44579EC4C0A, CC1FD33ED7CAD87A504D8678F8482CAECACD18C727BB97FFB86F39255563EEF2 ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
11:41:00.0720 0x07e8  ArcSoftKsUFilter - ok
11:41:00.0923 0x07e8  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:41:00.0969 0x07e8  aspnet_state - ok
11:41:01.0079 0x07e8  [ 340B0467E98A8C92697D73034DB4BCB7, 342572B566747A05DA5391CFC027A6703AECCE29C3D288428884D8641A35D0F5 ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
11:41:01.0079 0x07e8  aswHwid - ok
11:41:01.0110 0x07e8  [ ED5B09937D559FFA53FC988D20031E98, EC9E50C9BC2184AE93944EA3115A25BADF5FFB91D11776498EBC9A0D60029A84 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
11:41:01.0110 0x07e8  aswMonFlt - ok
11:41:01.0125 0x07e8  [ 33C77DCB0AEC76E26BD6352A1A5281BB, CEA7BB3407C1F900DE5CB09F42AF7734811F86B7DE0085FADC7AAE8178D59665 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
11:41:01.0125 0x07e8  aswRdr - ok
11:41:01.0141 0x07e8  [ BF5B9E9E97CED45208E498D9FA73688F, BCB2CC516EAD040573D80599C2306ECB26FCCB16A97B940327CD3A3CE9077877 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
11:41:01.0157 0x07e8  aswRvrt - ok
11:41:01.0203 0x07e8  [ F88CE00A7736C349ED1414D7ECDC9BED, 8C0783CE32968874065C2F46088B34F9C872F26C98AB8E8BA895D84CCB25E534 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
11:41:01.0235 0x07e8  aswSnx - ok
11:41:01.0297 0x07e8  [ 3AE912B08E2A1ABB2B63F3C56BED95C2, BE99BA3A74427444FEE5D47D70BDBA631DBBF50D80B0483C0675F87119926765 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
11:41:01.0297 0x07e8  aswSP - ok
11:41:01.0313 0x07e8  [ A7115ED31675BB823CFA9FE571C25676, DEEBB3920934DCDDD488DCFCB1E6F4C7EFDD3C79F31E41D59E292C3CF9400E95 ] aswStm          C:\Windows\system32\drivers\aswStm.sys
11:41:01.0328 0x07e8  aswStm - ok
11:41:01.0359 0x07e8  [ 47CBD3F64E412FFAFD93404580A3C7B9, F9B02E232416BAFC21BCBCDC0A3D9E5E855BFAF11F29ED2C4C469692E6688278 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
11:41:01.0359 0x07e8  aswVmm - ok
11:41:01.0391 0x07e8  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
11:41:01.0391 0x07e8  AsyncMac - ok
11:41:01.0422 0x07e8  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
11:41:01.0422 0x07e8  atapi - ok
11:41:01.0547 0x07e8  [ A5E770426D18F8EF332A593F3289DA91, 87AC97758618765814B630CB1A189CD690DC6B0EAAE93D80EDE7771FB362C9AF ] athr            C:\Windows\system32\DRIVERS\athrx.sys
11:41:01.0625 0x07e8  athr - ok
11:41:01.0687 0x07e8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:41:01.0718 0x07e8  AudioEndpointBuilder - ok
11:41:01.0749 0x07e8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
11:41:01.0765 0x07e8  AudioSrv - ok
11:41:01.0843 0x07e8  [ BEA8D0FA8805CC2E6BB49728166699C7, 9A574A1E79DC2D472877443A92ACDA57A1206A2DAB3AF9110C844944EDC9D797 ] avast! Antivirus C:\Program Files (x86)\Avast Free 2014 Reinstall 2-22-14\AvastSvc.exe
11:41:01.0843 0x07e8  avast! Antivirus - ok
11:41:01.0874 0x07e8  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
11:41:01.0874 0x07e8  AxInstSV - ok
11:41:01.0905 0x07e8  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
11:41:01.0921 0x07e8  b06bdrv - ok
11:41:01.0937 0x07e8  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
11:41:01.0952 0x07e8  b57nd60a - ok
11:41:01.0983 0x07e8  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
11:41:01.0983 0x07e8  BDESVC - ok
11:41:02.0015 0x07e8  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
11:41:02.0015 0x07e8  Beep - ok
11:41:02.0046 0x07e8  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
11:41:02.0077 0x07e8  BFE - ok
11:41:02.0139 0x07e8  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
11:41:02.0171 0x07e8  BITS - ok
11:41:02.0186 0x07e8  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
11:41:02.0186 0x07e8  blbdrive - ok
11:41:02.0233 0x07e8  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:41:02.0233 0x07e8  bowser - ok
11:41:02.0249 0x07e8  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
11:41:02.0249 0x07e8  BrFiltLo - ok
11:41:02.0264 0x07e8  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
11:41:02.0264 0x07e8  BrFiltUp - ok
11:41:02.0280 0x07e8  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
11:41:02.0295 0x07e8  BridgeMP - ok
11:41:02.0327 0x07e8  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
11:41:02.0342 0x07e8  Browser - ok
11:41:02.0358 0x07e8  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
11:41:02.0373 0x07e8  Brserid - ok
11:41:02.0405 0x07e8  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
11:41:02.0405 0x07e8  BrSerWdm - ok
11:41:02.0420 0x07e8  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
11:41:02.0420 0x07e8  BrUsbMdm - ok
11:41:02.0436 0x07e8  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
11:41:02.0451 0x07e8  BrUsbSer - ok
11:41:02.0498 0x07e8  [ DB109DA005B6FE2A350C5DD7CA768DFD, 241A0BFAEFB1B165C00EE75E8CA382B5935F5DF447DAD5AE9022B2B78317668E ] BrYNSvc         C:\Program Files (x86)\Browny02\BrYNSvc.exe
11:41:02.0514 0x07e8  BrYNSvc - ok
11:41:02.0529 0x07e8  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
11:41:02.0545 0x07e8  BTHMODEM - ok
11:41:02.0561 0x07e8  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
11:41:02.0561 0x07e8  bthserv - ok
11:41:02.0592 0x07e8  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:41:02.0607 0x07e8  cdfs - ok
11:41:02.0685 0x07e8  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
11:41:02.0701 0x07e8  cdrom - ok
11:41:02.0748 0x07e8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
11:41:02.0748 0x07e8  CertPropSvc - ok
11:41:02.0779 0x07e8  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
11:41:02.0779 0x07e8  circlass - ok
11:41:02.0810 0x07e8  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
11:41:02.0810 0x07e8  CLFS - ok
11:41:02.0888 0x07e8  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:41:02.0904 0x07e8  clr_optimization_v2.0.50727_32 - ok
11:41:02.0982 0x07e8  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:41:02.0997 0x07e8  clr_optimization_v2.0.50727_64 - ok
11:41:03.0122 0x07e8  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:41:03.0185 0x07e8  clr_optimization_v4.0.30319_32 - ok
11:41:03.0216 0x07e8  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:41:03.0231 0x07e8  clr_optimization_v4.0.30319_64 - ok
11:41:03.0263 0x07e8  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
11:41:03.0263 0x07e8  CmBatt - ok
11:41:03.0294 0x07e8  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
11:41:03.0309 0x07e8  cmdide - ok
11:41:03.0356 0x07e8  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
11:41:03.0372 0x07e8  CNG - ok
11:41:03.0481 0x07e8  [ 1F394DF3714ED4280047810790E6DF69, 92AD804E0F0559BF76EA8DAE038B4CDE4EBB4C4BD7A53913B714BF936B03B85E ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
11:41:03.0528 0x07e8  CnxtHdAudService - ok
11:41:03.0559 0x07e8  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
11:41:03.0559 0x07e8  Compbatt - ok
11:41:03.0575 0x07e8  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
11:41:03.0575 0x07e8  CompositeBus - ok
11:41:03.0575 0x07e8  COMSysApp - ok
11:41:03.0653 0x07e8  [ 08F934092E0429BADF88E9F91DB0F61E, 6E9091C006FFFF261DC61C8E9A45219E47C351296E5355FC4B7242F30E1DDFE3 ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
11:41:03.0668 0x07e8  cphs - ok
11:41:03.0715 0x07e8  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
11:41:03.0715 0x07e8  crcdisk - ok
11:41:03.0762 0x07e8  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:41:03.0762 0x07e8  CryptSvc - ok
11:41:03.0809 0x07e8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:41:03.0824 0x07e8  DcomLaunch - ok
11:41:03.0871 0x07e8  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
11:41:03.0887 0x07e8  defragsvc - ok
11:41:03.0902 0x07e8  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
11:41:03.0902 0x07e8  DfsC - ok
11:41:03.0949 0x07e8  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
11:41:03.0965 0x07e8  Dhcp - ok
11:41:03.0996 0x07e8  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
11:41:03.0996 0x07e8  discache - ok
11:41:04.0011 0x07e8  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
11:41:04.0027 0x07e8  Disk - ok
11:41:04.0043 0x07e8  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:41:04.0058 0x07e8  Dnscache - ok
11:41:04.0089 0x07e8  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
11:41:04.0105 0x07e8  dot3svc - ok
11:41:04.0136 0x07e8  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
11:41:04.0136 0x07e8  Dot4 - ok
11:41:04.0152 0x07e8  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
11:41:04.0183 0x07e8  Dot4Print - ok
11:41:04.0214 0x07e8  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
11:41:04.0214 0x07e8  dot4usb - ok
11:41:04.0245 0x07e8  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
11:41:04.0261 0x07e8  DPS - ok
11:41:04.0292 0x07e8  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
11:41:04.0292 0x07e8  drmkaud - ok
11:41:04.0355 0x07e8  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
11:41:04.0370 0x07e8  DXGKrnl - ok
11:41:04.0417 0x07e8  [ 50AD8FC1DC800FF36087994C8F7FDFF2, E3DA8DCE76599E0E1F0D80AA1483D6BECFE0F7242147D986A6AF3A4362FC2C80 ] e1yexpress      C:\Windows\system32\DRIVERS\e1y60x64.sys
11:41:04.0417 0x07e8  e1yexpress - ok
11:41:04.0448 0x07e8  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
11:41:04.0448 0x07e8  EapHost - ok
11:41:04.0620 0x07e8  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
11:41:04.0776 0x07e8  ebdrv - ok
11:41:04.0807 0x07e8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
11:41:04.0823 0x07e8  EFS - ok
11:41:04.0947 0x07e8  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
11:41:04.0963 0x07e8  ehRecvr - ok
11:41:04.0994 0x07e8  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
11:41:05.0025 0x07e8  ehSched - ok
11:41:05.0072 0x07e8  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
11:41:05.0103 0x07e8  elxstor - ok
11:41:05.0119 0x07e8  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
11:41:05.0135 0x07e8  ErrDev - ok
11:41:05.0181 0x07e8  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
11:41:05.0197 0x07e8  EventSystem - ok
11:41:05.0228 0x07e8  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
11:41:05.0244 0x07e8  exfat - ok
11:41:05.0291 0x07e8  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
11:41:05.0291 0x07e8  fastfat - ok
11:41:05.0353 0x07e8  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
11:41:05.0384 0x07e8  Fax - ok
11:41:05.0384 0x07e8  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
11:41:05.0400 0x07e8  fdc - ok
11:41:05.0415 0x07e8  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
11:41:05.0415 0x07e8  fdPHost - ok
11:41:05.0415 0x07e8  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
11:41:05.0431 0x07e8  FDResPub - ok
11:41:05.0447 0x07e8  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:41:05.0447 0x07e8  FileInfo - ok
11:41:05.0462 0x07e8  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
11:41:05.0478 0x07e8  Filetrace - ok
11:41:05.0493 0x07e8  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
11:41:05.0493 0x07e8  flpydisk - ok
11:41:05.0525 0x07e8  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:41:05.0540 0x07e8  FltMgr - ok
11:41:05.0603 0x07e8  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
11:41:05.0649 0x07e8  FontCache - ok
11:41:05.0712 0x07e8  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:41:05.0712 0x07e8  FontCache3.0.0.0 - ok
11:41:05.0727 0x07e8  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
11:41:05.0727 0x07e8  FsDepends - ok
11:41:05.0743 0x07e8  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:41:05.0743 0x07e8  Fs_Rec - ok
11:41:05.0774 0x07e8  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
11:41:05.0774 0x07e8  fvevol - ok
11:41:05.0805 0x07e8  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
11:41:05.0805 0x07e8  gagp30kx - ok
11:41:05.0852 0x07e8  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
11:41:05.0883 0x07e8  gpsvc - ok
11:41:05.0915 0x07e8  [ 04697FD2E72486667CDE08696EE7586D, 79F438BC3BC7CA7C9307C82A6C6B34792849C14DF57057007613F6A7FD199AB8 ] GUBootStartup   C:\Windows\system32\drivers\GUBootStartup.sys
11:41:05.0915 0x07e8  GUBootStartup - ok
11:41:05.0993 0x07e8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:41:05.0993 0x07e8  gupdate - ok
11:41:06.0039 0x07e8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:41:06.0039 0x07e8  gupdatem - ok
11:41:06.0055 0x07e8  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
11:41:06.0055 0x07e8  hcw85cir - ok
11:41:06.0086 0x07e8  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:41:06.0102 0x07e8  HdAudAddService - ok
11:41:06.0117 0x07e8  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
11:41:06.0133 0x07e8  HDAudBus - ok
11:41:06.0149 0x07e8  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
11:41:06.0149 0x07e8  HidBatt - ok
11:41:06.0180 0x07e8  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
11:41:06.0195 0x07e8  HidBth - ok
11:41:06.0211 0x07e8  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
11:41:06.0211 0x07e8  HidIr - ok
11:41:06.0242 0x07e8  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
11:41:06.0242 0x07e8  hidserv - ok
11:41:06.0258 0x07e8  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
11:41:06.0273 0x07e8  HidUsb - ok
11:41:06.0289 0x07e8  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
11:41:06.0305 0x07e8  hkmsvc - ok
11:41:06.0336 0x07e8  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:41:06.0351 0x07e8  HomeGroupListener - ok
11:41:06.0398 0x07e8  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:41:06.0414 0x07e8  HomeGroupProvider - ok
11:41:06.0523 0x07e8  [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] hpqcxs08        C:\Program Files (x86)\HP PSC 1401 3-2-14\Digital Imaging\bin\hpqcxs08.dll
11:41:06.0523 0x07e8  hpqcxs08 - ok
11:41:06.0539 0x07e8  [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] hpqddsvc        C:\Program Files (x86)\HP PSC 1401 3-2-14\Digital Imaging\bin\hpqddsvc.dll
11:41:06.0554 0x07e8  hpqddsvc - ok
11:41:06.0570 0x07e8  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
11:41:06.0585 0x07e8  HpSAMD - ok
11:41:06.0663 0x07e8  HPSLPSVC - ok
11:41:06.0695 0x07e8  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:41:06.0726 0x07e8  HTTP - ok
11:41:06.0741 0x07e8  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
11:41:06.0741 0x07e8  hwpolicy - ok
11:41:06.0773 0x07e8  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
11:41:06.0773 0x07e8  i8042prt - ok
11:41:06.0819 0x07e8  [ D7921D5A870B11CC1ADAB198A519D50A, 5DF99EB5D5504E9D9EB21658E8B4A58DEE2AD143A1875DB7F9B7BF4877FCB57F ] iaStor          C:\Windows\system32\drivers\iaStor.sys
11:41:06.0819 0x07e8  iaStor - ok
11:41:06.0897 0x07e8  [ 8FFF9083252C16FE3960173722605E9E, 6546FDA34B9AF94C5E86E5269BBC2F02F1E78D6D4BE5B5EC01F4B284CC934994 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
11:41:06.0897 0x07e8  IAStorDataMgrSvc - ok
11:41:06.0960 0x07e8  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
11:41:06.0975 0x07e8  iaStorV - ok
11:41:07.0147 0x07e8  [ 3CC7B3BB1A9EA201A040883EDFAA67A0, F543A779BA8CBFD5E0B939844B9CB47A2C05A400C693635F520438C18FFDFAF1 ] IconMan_R       C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
11:41:07.0209 0x07e8  IconMan_R - ok
11:41:07.0303 0x07e8  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:41:07.0365 0x07e8  idsvc - ok
11:41:07.0381 0x07e8  IEEtwCollectorService - ok
11:41:07.0615 0x07e8  [ 8C44E6B688790E2AD3846C97661C54F1, CB487D167EDA3C1E30BD5FB8F98C15EB9E75A6FB793009C2F1BBCAAB4285F772 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
11:41:07.0818 0x07e8  igfx - ok
11:41:07.0849 0x07e8  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
11:41:07.0849 0x07e8  iirsp - ok
11:41:07.0911 0x07e8  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
11:41:07.0943 0x07e8  IKEEXT - ok
11:41:07.0989 0x07e8  [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
11:41:07.0989 0x07e8  IntcDAud - ok
11:41:08.0021 0x07e8  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
11:41:08.0021 0x07e8  intelide - ok
11:41:08.0052 0x07e8  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
11:41:08.0052 0x07e8  intelppm - ok
11:41:08.0099 0x07e8  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
11:41:08.0099 0x07e8  IPBusEnum - ok
11:41:08.0114 0x07e8  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:41:08.0177 0x07e8  IpFilterDriver - ok
11:41:08.0239 0x07e8  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:41:08.0255 0x07e8  iphlpsvc - ok
11:41:08.0286 0x07e8  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
11:41:08.0286 0x07e8  IPMIDRV - ok
11:41:08.0317 0x07e8  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
11:41:08.0317 0x07e8  IPNAT - ok
11:41:08.0364 0x07e8  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:41:08.0364 0x07e8  IRENUM - ok
11:41:08.0411 0x07e8  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
11:41:08.0411 0x07e8  isapnp - ok
11:41:08.0504 0x07e8  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
11:41:08.0520 0x07e8  iScsiPrt - ok
11:41:08.0535 0x07e8  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
11:41:08.0551 0x07e8  kbdclass - ok
11:41:08.0598 0x07e8  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
11:41:08.0598 0x07e8  kbdhid - ok
11:41:08.0629 0x07e8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
11:41:08.0629 0x07e8  KeyIso - ok
11:41:08.0660 0x07e8  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:41:08.0660 0x07e8  KSecDD - ok
11:41:08.0676 0x07e8  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
11:41:08.0691 0x07e8  KSecPkg - ok
11:41:08.0707 0x07e8  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
11:41:08.0707 0x07e8  ksthunk - ok
11:41:08.0738 0x07e8  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
11:41:08.0754 0x07e8  KtmRm - ok
11:41:08.0816 0x07e8  [ 95CA93FC12BE372BB952669F37FFF9C5, 5B4EE910E676ABD0E12B6AD72DBB564DBEB05D63C43AFFC24CE155D0DF8A3820 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
11:41:08.0832 0x07e8  L1C - ok
11:41:08.0863 0x07e8  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
11:41:08.0863 0x07e8  LanmanServer - ok
11:41:08.0894 0x07e8  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:41:08.0910 0x07e8  LanmanWorkstation - ok
11:41:08.0988 0x07e8  [ D186AAAE72691136BDE00BBB41F48D12, C64885A726C0642C92BC4993667696DFEC8D284C20872D58E49786EE280A01ED ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
11:41:09.0003 0x07e8  LBTServ - ok
11:41:09.0035 0x07e8  [ 015BABFCD2E911C505204257DAB5ADC5, 94239919E967ABA12394D445E2D126447B5B7FB042DB95B1CCB280AF02D93833 ] LEqdUsb         C:\Windows\system32\DRIVERS\LEqdUsb.Sys
11:41:09.0035 0x07e8  LEqdUsb - ok
11:41:09.0066 0x07e8  [ 20A23B8863AAA8A23EEB9E2919F529FD, 5DD7C780346DA6A36AB55B38109167B3BE138713C5A7C913BFED2B61F34E8BA1 ] LHidEqd         C:\Windows\system32\DRIVERS\LHidEqd.Sys
11:41:09.0066 0x07e8  LHidEqd - ok
11:41:09.0097 0x07e8  [ 77D5786C6A7765503884E38706C9FD5E, 827DC2069AA0997DB87E118AAAA53575D97A89147C1451464986F8D68A329D41 ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
11:41:09.0097 0x07e8  LHidFilt - ok
11:41:09.0128 0x07e8  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
11:41:09.0128 0x07e8  lltdio - ok
11:41:09.0159 0x07e8  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
11:41:09.0175 0x07e8  lltdsvc - ok
11:41:09.0206 0x07e8  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
11:41:09.0206 0x07e8  lmhosts - ok
11:41:09.0237 0x07e8  [ F84023FB2E3DEA06103501974A2EDB44, 38144EB7DE7F0B33F9C3E637715834CD0860CCE11915C77065000949767D98DF ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
11:41:09.0237 0x07e8  LMouFilt - ok
11:41:09.0300 0x07e8  [ 2ED1786B7542CDA261029F6B526EDF44, C6131B65B045EF5B4F62CF6CF089DF0921BA6A8EFC83BCBA45D5DDE78E9D78E2 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
11:41:09.0300 0x07e8  LMS - ok
11:41:09.0347 0x07e8  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
11:41:09.0347 0x07e8  LSI_FC - ok
11:41:09.0378 0x07e8  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
11:41:09.0378 0x07e8  LSI_SAS - ok
11:41:09.0393 0x07e8  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
11:41:09.0393 0x07e8  LSI_SAS2 - ok
11:41:09.0425 0x07e8  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
11:41:09.0425 0x07e8  LSI_SCSI - ok
11:41:09.0440 0x07e8  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
11:41:09.0456 0x07e8  luafv - ok
11:41:09.0503 0x07e8  [ 4A1356200B82B852E137B687F03E8054, 54BAA2726BD19B61F694D316C1F0127ABFF66D06913668A2FAF044F09ADC4287 ] mbamchameleon   C:\Windows\system32\drivers\mbamchameleon.sys
11:41:09.0503 0x07e8  mbamchameleon - ok
11:41:09.0550 0x07e8  [ FD5465B876D55534117963FAAA4B9DFC, 63A822A1EEEC42C30CCC9477431E310E3D360489A68BBCD805124681F21C0B6B ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
11:41:09.0550 0x07e8  MBAMProtector - ok
11:41:09.0706 0x07e8  [ 0E08BDD7326E657D59DB40BAD23D8169, 428C6CCCC0BB540DFD35847776140D60C186B9D2D14F0ACCD1A4D42A8877BD98 ] MBAMScheduler   C:\Program Files (x86)\MalwareBytes Pro Reinstalll 2-22-14\Malwarebytes Anti-Malware\mbamscheduler.exe
11:41:09.0737 0x07e8  MBAMScheduler - ok
11:41:09.0799 0x07e8  [ A8E7F3DB083EB0839DFC1C763CDD2594, BDF416E360A52130B23B029C89E6406A97FB0516C52C7E63B94CAECEEB431A2E ] MBAMService     C:\Program Files (x86)\MalwareBytes Pro Reinstalll 2-22-14\Malwarebytes Anti-Malware\mbamservice.exe
11:41:09.0830 0x07e8  MBAMService - ok
11:41:09.0877 0x07e8  [ 6140163BFE9D8F2DFDBA088ED5521C13, B7B501F0D1527A15B1610D133E97AB431574502F0553734009627488D0007595 ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
11:41:09.0877 0x07e8  MBAMSwissArmy - ok
11:41:09.0924 0x07e8  [ C49915271600CFC2305FAA4271D0002F, 8412989C50579C79F27E4F9B178B2FF944C8F221AD70D213279D888F5449F868 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
11:41:09.0924 0x07e8  MBAMWebAccessControl - ok
11:41:09.0955 0x07e8  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
11:41:09.0971 0x07e8  Mcx2Svc - ok
11:41:10.0002 0x07e8  [ CF17A39BA7D1D1E386FD0C1303642B91, 8C7F6530F30C56241D54FC0799347E586332C1299DE1222AC9C08AD523E9CD96 ] MDA_NTDRV       C:\Windows\system32\MDA_NTDRV.sys
11:41:10.0018 0x07e8  MDA_NTDRV - ok
11:41:10.0096 0x07e8  [ 11F714F85530A2BD134074DC30E99FCA, BDB5FD3B2DF4ADD19B31965B3E789768B59E872B3EA85912B1FFB32B2AF9D5D8 ] MDM             C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
11:41:10.0111 0x07e8  MDM - ok
11:41:10.0127 0x07e8  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
11:41:10.0142 0x07e8  megasas - ok
11:41:10.0174 0x07e8  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
11:41:10.0174 0x07e8  MegaSR - ok
11:41:10.0236 0x07e8  [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
11:41:10.0236 0x07e8  MEIx64 - ok
11:41:10.0252 0x07e8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
11:41:10.0252 0x07e8  MMCSS - ok
11:41:10.0283 0x07e8  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
11:41:10.0283 0x07e8  Modem - ok
11:41:10.0314 0x07e8  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
11:41:10.0314 0x07e8  monitor - ok
11:41:10.0345 0x07e8  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
11:41:10.0345 0x07e8  mouclass - ok
11:41:10.0376 0x07e8  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
11:41:10.0376 0x07e8  mouhid - ok
11:41:10.0408 0x07e8  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
11:41:10.0408 0x07e8  mountmgr - ok
11:41:10.0470 0x07e8  [ 338037EFA0E8E8699B2667D57B751574, 59E0D39806D0C4EB57913AA013242837FD39AD378726AEE42D250CBA87C1C3BF ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:41:10.0470 0x07e8  MozillaMaintenance - ok
11:41:10.0517 0x07e8  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
11:41:10.0532 0x07e8  mpio - ok
11:41:10.0610 0x07e8  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:41:10.0626 0x07e8  mpsdrv - ok
11:41:10.0720 0x07e8  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:41:10.0751 0x07e8  MpsSvc - ok
11:41:10.0798 0x07e8  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:41:10.0813 0x07e8  MRxDAV - ok
11:41:10.0844 0x07e8  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:41:10.0860 0x07e8  mrxsmb - ok
11:41:10.0907 0x07e8  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:41:10.0922 0x07e8  mrxsmb10 - ok
11:41:10.0954 0x07e8  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:41:10.0954 0x07e8  mrxsmb20 - ok
11:41:10.0969 0x07e8  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
11:41:10.0969 0x07e8  msahci - ok
11:41:11.0000 0x07e8  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
11:41:11.0016 0x07e8  msdsm - ok
11:41:11.0063 0x07e8  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
11:41:11.0063 0x07e8  MSDTC - ok
11:41:11.0110 0x07e8  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:41:11.0110 0x07e8  Msfs - ok
11:41:11.0125 0x07e8  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
11:41:11.0125 0x07e8  mshidkmdf - ok
11:41:11.0141 0x07e8  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
11:41:11.0141 0x07e8  msisadrv - ok
11:41:11.0188 0x07e8  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
11:41:11.0188 0x07e8  MSiSCSI - ok
11:41:11.0203 0x07e8  msiserver - ok
11:41:11.0234 0x07e8  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
11:41:11.0234 0x07e8  MSKSSRV - ok
11:41:11.0250 0x07e8  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
11:41:11.0250 0x07e8  MSPCLOCK - ok
11:41:11.0250 0x07e8  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
11:41:11.0250 0x07e8  MSPQM - ok
11:41:11.0281 0x07e8  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
11:41:11.0297 0x07e8  MsRPC - ok
11:41:11.0328 0x07e8  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
11:41:11.0328 0x07e8  mssmbios - ok
11:41:11.0359 0x07e8  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
11:41:11.0359 0x07e8  MSTEE - ok
11:41:11.0375 0x07e8  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
11:41:11.0375 0x07e8  MTConfig - ok
11:41:11.0390 0x07e8  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
11:41:11.0390 0x07e8  Mup - ok
11:41:11.0437 0x07e8  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
11:41:11.0453 0x07e8  napagent - ok
11:41:11.0484 0x07e8  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
11:41:11.0515 0x07e8  NativeWifiP - ok
11:41:11.0578 0x07e8  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:41:11.0593 0x07e8  NDIS - ok
11:41:11.0640 0x07e8  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
11:41:11.0640 0x07e8  NdisCap - ok
11:41:11.0671 0x07e8  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:41:11.0671 0x07e8  NdisTapi - ok
11:41:11.0718 0x07e8  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
11:41:11.0734 0x07e8  Ndisuio - ok
11:41:11.0780 0x07e8  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
11:41:11.0780 0x07e8  NdisWan - ok
11:41:11.0812 0x07e8  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
11:41:11.0827 0x07e8  NDProxy - ok
11:41:11.0858 0x07e8  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
11:41:11.0874 0x07e8  Net Driver HPZ12 - ok
11:41:11.0874 0x07e8  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
11:41:11.0874 0x07e8  NetBIOS - ok
11:41:11.0905 0x07e8  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
11:41:11.0921 0x07e8  NetBT - ok
11:41:11.0936 0x07e8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
11:41:11.0936 0x07e8  Netlogon - ok
11:41:11.0983 0x07e8  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
11:41:11.0999 0x07e8  Netman - ok
11:41:12.0061 0x07e8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:41:12.0077 0x07e8  NetMsmqActivator - ok
11:41:12.0077 0x07e8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:41:12.0077 0x07e8  NetPipeActivator - ok
11:41:12.0124 0x07e8  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
11:41:12.0139 0x07e8  netprofm - ok
11:41:12.0170 0x07e8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:41:12.0170 0x07e8  NetTcpActivator - ok
11:41:12.0170 0x07e8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:41:12.0186 0x07e8  NetTcpPortSharing - ok
11:41:12.0202 0x07e8  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
11:41:12.0217 0x07e8  nfrd960 - ok
11:41:12.0233 0x07e8  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:41:12.0248 0x07e8  NlaSvc - ok
11:41:12.0264 0x07e8  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:41:12.0264 0x07e8  Npfs - ok
11:41:12.0295 0x07e8  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
11:41:12.0295 0x07e8  nsi - ok
11:41:12.0326 0x07e8  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:41:12.0326 0x07e8  nsiproxy - ok
11:41:12.0404 0x07e8  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
11:41:12.0467 0x07e8  Ntfs - ok
11:41:12.0498 0x07e8  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
11:41:12.0498 0x07e8  Null - ok
11:41:12.0966 0x07e8  [ DD81FBC57AB9134CDDC5CE90880BFD80, 16DF4D9645238D1014FA9189FF171DCF7B7C7573F759B5AC73025518139D86B1 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:41:13.0387 0x07e8  nvlddmkm - ok
11:41:13.0434 0x07e8  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:41:13.0434 0x07e8  nvraid - ok
11:41:13.0465 0x07e8  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:41:13.0465 0x07e8  nvstor - ok
11:41:13.0481 0x07e8  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
11:41:13.0496 0x07e8  nv_agp - ok
11:41:13.0543 0x07e8  [ 5B4E5D841B029EDF5FFB71E50C2D2C02, 8D90CAB2CB29F5FCA50A1404B517903AE25317E3ABD2F7DEFF5D8C6DBE9D77E9 ] Oasis2Service   C:\Program Files (x86)\DDNi\Oasis2Service\Oasis2Service.exe
11:41:13.0543 0x07e8  Oasis2Service - ok
11:41:13.0559 0x07e8  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
11:41:13.0559 0x07e8  ohci1394 - ok
11:41:13.0606 0x07e8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
11:41:13.0621 0x07e8  p2pimsvc - ok
11:41:13.0652 0x07e8  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
11:41:13.0668 0x07e8  p2psvc - ok
11:41:13.0699 0x07e8  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
11:41:13.0715 0x07e8  Parport - ok
11:41:13.0746 0x07e8  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
11:41:13.0746 0x07e8  partmgr - ok
11:41:13.0793 0x07e8  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:41:13.0808 0x07e8  PcaSvc - ok
11:41:13.0855 0x07e8  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
11:41:13.0855 0x07e8  pci - ok
11:41:13.0886 0x07e8  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
11:41:13.0902 0x07e8  pciide - ok
11:41:13.0949 0x07e8  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
11:41:13.0964 0x07e8  pcmcia - ok
11:41:13.0980 0x07e8  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
11:41:13.0980 0x07e8  pcw - ok
11:41:14.0042 0x07e8  [ 7CADB4ABAE72390951886CF259791F5F, 9A0F4113F4E09911A44843F31E8C7047EEA39611AB490A4CF16FAE9D95310076 ] PDFProFiltSrvPP C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
11:41:14.0042 0x07e8  PDFProFiltSrvPP - ok
11:41:14.0105 0x07e8  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:41:14.0120 0x07e8  PEAUTH - ok
11:41:14.0183 0x07e8  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
11:41:14.0198 0x07e8  PerfHost - ok
11:41:14.0276 0x07e8  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
11:41:14.0323 0x07e8  pla - ok
11:41:14.0386 0x07e8  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:41:14.0401 0x07e8  PlugPlay - ok
11:41:14.0479 0x07e8  [ 63694C307273062A2167AE4CE80730EF, 788E762D02A8BE9802143361A5768364A994B20E769A9733FA5827F526432893 ] PMBDeviceInfoProvider c:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
11:41:14.0510 0x07e8  PMBDeviceInfoProvider - ok
11:41:14.0542 0x07e8  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
11:41:14.0542 0x07e8  Pml Driver HPZ12 - ok
11:41:14.0573 0x07e8  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
11:41:14.0573 0x07e8  PNRPAutoReg - ok
11:41:14.0604 0x07e8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
11:41:14.0620 0x07e8  PNRPsvc - ok
11:41:14.0666 0x07e8  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
11:41:14.0682 0x07e8  PolicyAgent - ok
11:41:14.0729 0x07e8  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
11:41:14.0729 0x07e8  Power - ok
11:41:14.0776 0x07e8  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
11:41:14.0776 0x07e8  PptpMiniport - ok
11:41:14.0807 0x07e8  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
11:41:14.0807 0x07e8  Processor - ok
11:41:14.0807 0x07e8  ProcObsrv - ok
11:41:14.0838 0x07e8  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
11:41:14.0854 0x07e8  ProfSvc - ok
11:41:14.0869 0x07e8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:41:14.0869 0x07e8  ProtectedStorage - ok
11:41:14.0900 0x07e8  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
11:41:14.0900 0x07e8  Psched - ok
11:41:14.0963 0x07e8  [ A283E768FA12EF33087F07B01F82D6DD, 1D4D787047200FC7BCBFC03A496CAFDA8E49075D2FBF2FF7FEAB90A4FDEA8F89 ] PSEXESVC        C:\Windows\PSEXESVC.EXE
11:41:14.0978 0x07e8  PSEXESVC - ok
11:41:14.0994 0x07e8  [ D619356B955EEFA642F5FF72755E8B3C, 1FD54978A77ACD6FBF1236E177ED074894743A9141E4169FE9AFE28680FC93C5 ] pwdspio         C:\Windows\system32\pwdspio.sys
11:41:14.0994 0x07e8  pwdspio - ok
11:41:15.0072 0x07e8  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
11:41:15.0119 0x07e8  ql2300 - ok
11:41:15.0166 0x07e8  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
11:41:15.0166 0x07e8  ql40xx - ok
11:41:15.0197 0x07e8  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
11:41:15.0212 0x07e8  QWAVE - ok
11:41:15.0228 0x07e8  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:41:15.0228 0x07e8  QWAVEdrv - ok
11:41:15.0259 0x07e8  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:41:15.0259 0x07e8  RasAcd - ok
11:41:15.0275 0x07e8  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
11:41:15.0290 0x07e8  RasAgileVpn - ok
11:41:15.0322 0x07e8  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
11:41:15.0322 0x07e8  RasAuto - ok
11:41:15.0353 0x07e8  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
11:41:15.0353 0x07e8  Rasl2tp - ok
11:41:15.0400 0x07e8  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
11:41:15.0415 0x07e8  RasMan - ok
11:41:15.0431 0x07e8  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:41:15.0431 0x07e8  RasPppoe - ok
11:41:15.0462 0x07e8  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
11:41:15.0462 0x07e8  RasSstp - ok
11:41:15.0509 0x07e8  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
11:41:15.0524 0x07e8  rdbss - ok
11:41:15.0540 0x07e8  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
11:41:15.0540 0x07e8  rdpbus - ok
11:41:15.0571 0x07e8  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
11:41:15.0571 0x07e8  RDPCDD - ok
11:41:15.0602 0x07e8  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
11:41:15.0602 0x07e8  RDPENCDD - ok
11:41:15.0618 0x07e8  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
11:41:15.0618 0x07e8  RDPREFMP - ok
11:41:15.0665 0x07e8  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:41:15.0665 0x07e8  RdpVideoMiniport - ok
11:41:15.0712 0x07e8  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
11:41:15.0712 0x07e8  RDPWD - ok
11:41:15.0743 0x07e8  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
11:41:15.0743 0x07e8  rdyboost - ok
11:41:15.0774 0x07e8  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:41:15.0774 0x07e8  RemoteAccess - ok
11:41:15.0805 0x07e8  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:41:15.0821 0x07e8  RemoteRegistry - ok
11:41:15.0868 0x07e8  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
11:41:15.0868 0x07e8  RpcEptMapper - ok
11:41:15.0899 0x07e8  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
11:41:15.0899 0x07e8  RpcLocator - ok
11:41:15.0946 0x07e8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\System32\rpcss.dll
11:41:15.0961 0x07e8  RpcSs - ok
11:41:16.0008 0x07e8  [ EBBFA2B4E317AF86E93FEC4C04D7A9B3, 29480CCA0ACAB2D53D664042A0D7713247EDEBBBD4734783348669EFDE579CA9 ] RSPCIESTOR      C:\Windows\system32\DRIVERS\RtsPStor.sys
11:41:16.0024 0x07e8  RSPCIESTOR - ok
11:41:16.0055 0x07e8  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
11:41:16.0055 0x07e8  rspndr - ok
11:41:16.0086 0x07e8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
11:41:16.0086 0x07e8  SamSs - ok
11:41:16.0102 0x07e8  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
11:41:16.0117 0x07e8  sbp2port - ok
11:41:16.0148 0x07e8  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:41:16.0164 0x07e8  SCardSvr - ok
11:41:16.0180 0x07e8  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
11:41:16.0180 0x07e8  scfilter - ok
11:41:16.0242 0x07e8  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
11:41:16.0273 0x07e8  Schedule - ok
11:41:16.0304 0x07e8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
11:41:16.0304 0x07e8  SCPolicySvc - ok
11:41:16.0336 0x07e8  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
11:41:16.0351 0x07e8  sdbus - ok
11:41:16.0382 0x07e8  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:41:16.0382 0x07e8  SDRSVC - ok
11:41:16.0398 0x07e8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
11:41:16.0398 0x07e8  secdrv - ok
11:41:16.0414 0x07e8  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
11:41:16.0414 0x07e8  seclogon - ok
11:41:16.0460 0x07e8  [ 1ED7A8574A28357097A5CB4063C96B00, 4E248CA66B7DE930AEC501A85F507AB813FC3CEBCBA347DFF3B05CE6CB8E496B ] semav6thermal64ro C:\Windows\system32\drivers\semav6thermal64ro.sys
11:41:16.0460 0x07e8  semav6thermal64ro - ok
11:41:16.0492 0x07e8  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
11:41:16.0492 0x07e8  SENS - ok
11:41:16.0507 0x07e8  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
11:41:16.0523 0x07e8  SensrSvc - ok
11:41:16.0554 0x07e8  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
11:41:16.0554 0x07e8  Serenum - ok
11:41:16.0570 0x07e8  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
11:41:16.0570 0x07e8  Serial - ok
11:41:16.0585 0x07e8  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
11:41:16.0601 0x07e8  sermouse - ok
11:41:16.0632 0x07e8  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
11:41:16.0648 0x07e8  SessionEnv - ok
11:41:16.0679 0x07e8  [ 286D3889E6AB5589646FF8A63CB928AE, 98D9D34521328F4F0B0B7C2CAB97BA0EC998B9F3F996B5ED08E17292F1CD9452 ] SFEP            C:\Windows\system32\DRIVERS\SFEP.sys
11:41:16.0679 0x07e8  SFEP - ok
11:41:16.0694 0x07e8  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
11:41:16.0694 0x07e8  sffdisk - ok
11:41:16.0726 0x07e8  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
11:41:16.0726 0x07e8  sffp_mmc - ok
11:41:16.0804 0x07e8  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
11:41:16.0819 0x07e8  sffp_sd - ok
11:41:16.0850 0x07e8  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
11:41:16.0850 0x07e8  sfloppy - ok
11:41:16.0928 0x07e8  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:41:16.0928 0x07e8  SharedAccess - ok
11:41:17.0006 0x07e8  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:41:17.0038 0x07e8  ShellHWDetection - ok
11:41:17.0069 0x07e8  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
11:41:17.0069 0x07e8  SiSRaid2 - ok
11:41:17.0100 0x07e8  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
11:41:17.0100 0x07e8  SiSRaid4 - ok
11:41:17.0116 0x07e8  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
11:41:17.0131 0x07e8  Smb - ok
11:41:17.0147 0x07e8  [ 5476D773EE180AEB9CADA786EA131777, BEBC1788A63FFC54047BE6633F8C3AF10F5E26C1F5B8255DAD88CEF81544B07C ] SmbDrvI         C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
11:41:17.0147 0x07e8  SmbDrvI - ok
11:41:17.0194 0x07e8  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:41:17.0194 0x07e8  SNMPTRAP - ok
11:41:17.0256 0x07e8  [ 4AEA7A1C3CA06D95D6966C34D13C0D8B, 94C90DCBD9CCFE465746F554808A4752FB1E452790477D118ED76D7F35CE3576 ] SOHCImp         C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
11:41:17.0272 0x07e8  SOHCImp - ok
11:41:17.0287 0x07e8  [ 16FD95781117E13107D477AE36219E6F, CD201C01C1FA6BB1B67411C45AA155B112584C9E4A1D68EE091B6723644D37D2 ] SOHDs           C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
11:41:17.0287 0x07e8  SOHDs - ok
11:41:17.0303 0x07e8  [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan        C:\Windows\syswow64\speedfan.sys
11:41:17.0318 0x07e8  speedfan - ok
11:41:17.0396 0x07e8  [ C03E480E63A80D73FABE28D24D3B6B47, F8C68DC63A5492587F9343158348ADD99A99AF34DC7ED29E5562EE90C0AB8F25 ] SpfService      C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
11:41:17.0396 0x07e8  SpfService - ok
11:41:17.0428 0x07e8  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
11:41:17.0428 0x07e8  spldr - ok
11:41:17.0474 0x07e8  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
11:41:17.0490 0x07e8  Spooler - ok
11:41:17.0646 0x07e8  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
11:41:17.0786 0x07e8  sppsvc - ok
11:41:17.0818 0x07e8  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
11:41:17.0818 0x07e8  sppuinotify - ok
11:41:17.0880 0x07e8  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
11:41:17.0896 0x07e8  srv - ok
11:41:17.0942 0x07e8  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:41:17.0958 0x07e8  srv2 - ok
11:41:17.0989 0x07e8  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:41:18.0020 0x07e8  srvnet - ok
11:41:18.0067 0x07e8  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
11:41:18.0083 0x07e8  SSDPSRV - ok
11:41:18.0098 0x07e8  [ 0211AB46B73A2623B86C1CFCB30579AB, 7CC9BA2DF7B9EA6BB17EE342898EDD7F54703B93B6DED6A819E83A7EE9F938B4 ] SSPORT          C:\Windows\system32\Drivers\SSPORT.sys
11:41:18.0098 0x07e8  SSPORT - ok
11:41:18.0161 0x07e8  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
11:41:18.0161 0x07e8  SstpSvc - ok
11:41:18.0192 0x07e8  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
11:41:18.0192 0x07e8  stexstor - ok
11:41:18.0239 0x07e8  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
11:41:18.0270 0x07e8  stisvc - ok
11:41:18.0379 0x07e8  [ C17525A3B5AE4E3D8E105EB0947D0DCD, E66F911FA5E452479348F3F7D6594FA76A6ABF268A25042D6BB17287B0D6CFD5 ] SuperEasy Software Defrag Service C:\Program Files (x86)\Easy Defrag Bits Du Jour 2-28-14\Live Defrag\supereasydefragservice.exe
11:41:18.0410 0x07e8  SuperEasy Software Defrag Service - ok
11:41:18.0457 0x07e8  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
11:41:18.0457 0x07e8  swenum - ok
11:41:18.0504 0x07e8  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
11:41:18.0520 0x07e8  swprv - ok
11:41:18.0598 0x07e8  [ C43E3CA9C672B2EC30B66CCE0B89BD36, 3EF3244504389F4434109DF2C0AB4FC499008205DA1E0435AB2751DCB609C89F ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
11:41:18.0644 0x07e8  SynTP - ok
11:41:18.0738 0x07e8  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
11:41:18.0785 0x07e8  SysMain - ok
11:41:18.0816 0x07e8  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:41:18.0816 0x07e8  TabletInputService - ok
11:41:18.0847 0x07e8  [ 95206567C7CA71A3D485146824224C40, 2687BB34D271E2B8D9D64B5961A0D3B053192CBFCF7BDEE048B3E50C1C38A81F ] taphss6         C:\Windows\system32\DRIVERS\taphss6.sys
11:41:18.0847 0x07e8  taphss6 - ok
11:41:18.0878 0x07e8  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
11:41:18.0910 0x07e8  TapiSrv - ok
11:41:18.0941 0x07e8  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
11:41:18.0941 0x07e8  TBS - ok
11:41:19.0066 0x07e8  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
11:41:19.0222 0x07e8  Tcpip - ok
11:41:19.0284 0x07e8  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
11:41:19.0346 0x07e8  TCPIP6 - ok
11:41:19.0393 0x07e8  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:41:19.0393 0x07e8  tcpipreg - ok
11:41:19.0424 0x07e8  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
11:41:19.0424 0x07e8  TDPIPE - ok
11:41:19.0456 0x07e8  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
11:41:19.0456 0x07e8  TDTCP - ok
11:41:19.0502 0x07e8  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
11:41:19.0502 0x07e8  tdx - ok
11:41:19.0518 0x07e8  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
11:41:19.0518 0x07e8  TermDD - ok
11:41:19.0565 0x07e8  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
11:41:19.0596 0x07e8  TermService - ok
11:41:19.0612 0x07e8  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
11:41:19.0627 0x07e8  Themes - ok
11:41:19.0643 0x07e8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
11:41:19.0643 0x07e8  THREADORDER - ok
11:41:19.0674 0x07e8  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
11:41:19.0690 0x07e8  TrkWks - ok
11:41:19.0736 0x07e8  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:41:19.0752 0x07e8  TrustedInstaller - ok
11:41:19.0783 0x07e8  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
11:41:19.0799 0x07e8  tssecsrv - ok
11:41:19.0814 0x07e8  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
11:41:19.0830 0x07e8  TsUsbFlt - ok
11:41:19.0846 0x07e8  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
11:41:19.0861 0x07e8  TsUsbGD - ok
11:41:19.0892 0x07e8  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
11:41:19.0892 0x07e8  tunnel - ok
11:41:19.0924 0x07e8  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
11:41:19.0924 0x07e8  uagp35 - ok
11:41:19.0986 0x07e8  [ 1FE69F3C1CA1CF4B7EC7E2E9090FFFDC, 30BD61BA46955BD6A48EC78538FAAB46026DD048347F8280352335EB0ECE16AD ] uCamMonitor     C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
11:41:19.0986 0x07e8  uCamMonitor - ok
11:41:20.0048 0x07e8  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:41:20.0064 0x07e8  udfs - ok
11:41:20.0111 0x07e8  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
11:41:20.0111 0x07e8  UI0Detect - ok
11:41:20.0126 0x07e8  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
11:41:20.0142 0x07e8  uliagpkx - ok
11:41:20.0173 0x07e8  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
11:41:20.0173 0x07e8  umbus - ok
11:41:20.0204 0x07e8  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
11:41:20.0204 0x07e8  UmPass - ok
11:41:20.0376 0x07e8  [ 7E5E1603D0FF2D240AE70295C5C3FEFC, 1E5F8E415ACE3C6DFBE636473DBE051329174F2A085516B6FC1515A54014D02B ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
11:41:20.0454 0x07e8  UNS - ok
11:41:20.0516 0x07e8  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
11:41:20.0532 0x07e8  upnphost - ok
11:41:20.0548 0x07e8  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
11:41:20.0563 0x07e8  usbaudio - ok
11:41:20.0579 0x07e8  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
11:41:20.0594 0x07e8  usbccgp - ok
11:41:20.0641 0x07e8  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
11:41:20.0641 0x07e8  usbcir - ok
11:41:20.0688 0x07e8  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
11:41:20.0688 0x07e8  usbehci - ok
11:41:20.0735 0x07e8  [ 68BAD03835873D4BBBDE95CBB135A395, 2A448397EE3BDC27B423ECA6F86F676065B2E4BE9CEA929FD90B2BD5B046EC52 ] UsbFltr         C:\Windows\system32\Drivers\UsbFltr.sys
11:41:20.0735 0x07e8  UsbFltr - ok
11:41:20.0766 0x07e8  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
11:41:20.0782 0x07e8  usbhub - ok
11:41:20.0813 0x07e8  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
11:41:20.0813 0x07e8  usbohci - ok
11:41:20.0844 0x07e8  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
11:41:20.0844 0x07e8  usbprint - ok
11:41:20.0875 0x07e8  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
11:41:20.0875 0x07e8  usbscan - ok
11:41:20.0922 0x07e8  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:41:20.0922 0x07e8  USBSTOR - ok
11:41:20.0953 0x07e8  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
11:41:20.0953 0x07e8  usbuhci - ok
11:41:20.0984 0x07e8  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
11:41:20.0984 0x07e8  usbvideo - ok
11:41:21.0094 0x07e8  [ 34349E7B488FA61B639117F6BF1EBF99, A7A7E60511F7D6370473D41867F5323695308CC27D3EEB0286687D3A9E0084E9 ] USER_ESRV_SVC   C:\Program Files\Sony\VAIO Care\esrv\esrv_svc.exe
11:41:21.0109 0x07e8  USER_ESRV_SVC - ok
11:41:21.0140 0x07e8  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
11:41:21.0156 0x07e8  UxSms - ok
11:41:21.0218 0x07e8  [ DCB1F83AD167D16D263CE57C94E9EEDF, 2389268A1F83F0D354111553FB5F48E77A8FE4C0A1C22376A313A961252ED259 ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
11:41:21.0218 0x07e8  VAIO Event Service - ok
11:41:21.0250 0x07e8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
11:41:21.0250 0x07e8  VaultSvc - ok
11:41:21.0359 0x07e8  [ 24F7E301DEFD05F3E36A8B76F498C282, 98804097D2D8DEA5276EE57024B29A4510BA53A1709F567034B1788548067DA3 ] VCFw            C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
11:41:21.0390 0x07e8  VCFw - ok
11:41:21.0468 0x07e8  [ F9D722A62C881B59439F9FC27BC7E285, 8FEF21D847B936E40E88A5F1BAC649C5D19800F5ECCD13D04942EA1ED3062E57 ] VcmIAlzMgr      C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
11:41:21.0468 0x07e8  VcmIAlzMgr - ok
11:41:21.0515 0x07e8  [ C350D9B371D28C551BC661F3BAF1A109, A92054686F0839828AA178722285AF029A41A27CBAF13002132024BEA7F8E1DE ] VcmINSMgr       C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
11:41:21.0530 0x07e8  VcmINSMgr - ok
11:41:21.0577 0x07e8  [ 9BC1F203C5604C24F345BCFCD6956BAE, 44D277B041FD6902AE61CCA0C96E5555EAC35E356EC91E22485781D66C68009D ] VcmXmlIfHelper  C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
11:41:21.0577 0x07e8  VcmXmlIfHelper - ok
11:41:21.0608 0x07e8  [ 7CBA5728C50FCDFBB87FF9C2DCE881B0, CE12024F548B9380F90C559CB3448FD0CD4393061E9B0EDDAE8F13FBB100762D ] VCService       C:\Program Files\Sony\VAIO Care\VCService.exe
11:41:21.0608 0x07e8  VCService - ok
11:41:21.0640 0x07e8  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
11:41:21.0640 0x07e8  vdrvroot - ok
11:41:21.0686 0x07e8  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
11:41:21.0702 0x07e8  vds - ok
11:41:21.0733 0x07e8  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
11:41:21.0733 0x07e8  vga - ok
11:41:21.0749 0x07e8  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
11:41:21.0749 0x07e8  VgaSave - ok
11:41:21.0780 0x07e8  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
11:41:21.0796 0x07e8  vhdmp - ok
11:41:21.0827 0x07e8  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
11:41:21.0827 0x07e8  viaide - ok
11:41:21.0858 0x07e8  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
11:41:21.0874 0x07e8  volmgr - ok
11:41:21.0905 0x07e8  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
11:41:21.0905 0x07e8  volmgrx - ok
11:41:21.0952 0x07e8  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
11:41:21.0952 0x07e8  volsnap - ok
11:41:21.0983 0x07e8  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
11:41:21.0998 0x07e8  vsmraid - ok
11:41:22.0061 0x07e8  [ 0ED394BFBA3EB4740F063E0BA5EC7104, F8555E976DC72423D760322107A4470A7938CEAC8BE81E4B83EFCD2FA4A21816 ] VSNService      C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
11:41:22.0092 0x07e8  VSNService - ok
11:41:22.0186 0x07e8  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
11:41:22.0264 0x07e8  VSS - ok
11:41:22.0404 0x07e8  [ C460F38BCA36929693892DEC77857114, 230362A5B8F7BCA5484C62D219E3EF3CF2C0732669BBBA48DE8DB3282C4F87C9 ] VUAgent         C:\Program Files\Sony\VAIO Update\vuagent.exe
11:41:22.0451 0x07e8  VUAgent - ok
11:41:22.0466 0x07e8  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
11:41:22.0466 0x07e8  vwifibus - ok
11:41:22.0498 0x07e8  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
11:41:22.0498 0x07e8  vwififlt - ok
11:41:22.0544 0x07e8  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
11:41:22.0560 0x07e8  W32Time - ok
11:41:22.0591 0x07e8  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
11:41:22.0591 0x07e8  WacomPen - ok
11:41:22.0607 0x07e8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
11:41:22.0622 0x07e8  WANARP - ok
11:41:22.0622 0x07e8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:41:22.0638 0x07e8  Wanarpv6 - ok
11:41:22.0716 0x07e8  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
11:41:22.0763 0x07e8  WatAdminSvc - ok
11:41:22.0856 0x07e8  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
11:41:22.0903 0x07e8  wbengine - ok
11:41:22.0950 0x07e8  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
11:41:22.0950 0x07e8  WbioSrvc - ok
11:41:22.0997 0x07e8  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
11:41:23.0012 0x07e8  wcncsvc - ok
11:41:23.0028 0x07e8  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:41:23.0044 0x07e8  WcsPlugInService - ok
11:41:23.0059 0x07e8  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
11:41:23.0059 0x07e8  Wd - ok
11:41:23.0106 0x07e8  [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
11:41:23.0122 0x07e8  WDC_SAM - ok
11:41:23.0184 0x07e8  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:41:23.0215 0x07e8  Wdf01000 - ok
11:41:23.0231 0x07e8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:41:23.0246 0x07e8  WdiServiceHost - ok
11:41:23.0246 0x07e8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
11:41:23.0262 0x07e8  WdiSystemHost - ok
11:41:23.0340 0x07e8  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
11:41:23.0356 0x07e8  WebClient - ok
11:41:23.0434 0x07e8  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:41:23.0449 0x07e8  Wecsvc - ok
11:41:23.0480 0x07e8  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
11:41:23.0480 0x07e8  wercplsupport - ok
11:41:23.0496 0x07e8  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
11:41:23.0512 0x07e8  WerSvc - ok
11:41:23.0543 0x07e8  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
11:41:23.0543 0x07e8  WfpLwf - ok
11:41:23.0574 0x07e8  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
11:41:23.0574 0x07e8  WIMMount - ok
11:41:23.0605 0x07e8  WinDefend - ok
11:41:23.0621 0x07e8  WinHttpAutoProxySvc - ok
11:41:23.0683 0x07e8  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
11:41:23.0683 0x07e8  Winmgmt - ok
11:41:23.0777 0x07e8  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
11:41:23.0839 0x07e8  WinRM - ok
11:41:23.0902 0x07e8  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] winusb          C:\Windows\system32\DRIVERS\WinUSB.SYS
11:41:23.0902 0x07e8  winusb - ok
11:41:23.0980 0x07e8  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
11:41:24.0011 0x07e8  Wlansvc - ok
11:41:24.0042 0x07e8  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
11:41:24.0042 0x07e8  WmiAcpi - ok
11:41:24.0089 0x07e8  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:41:24.0089 0x07e8  wmiApSrv - ok
11:41:24.0120 0x07e8  WMPNetworkSvc - ok
11:41:24.0136 0x07e8  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
11:41:24.0151 0x07e8  WPCSvc - ok
11:41:24.0182 0x07e8  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:41:24.0182 0x07e8  WPDBusEnum - ok
11:41:24.0214 0x07e8  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
11:41:24.0214 0x07e8  ws2ifsl - ok
11:41:24.0260 0x07e8  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
11:41:24.0260 0x07e8  wscsvc - ok
11:41:24.0276 0x07e8  WSearch - ok
11:41:24.0432 0x07e8  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
11:41:24.0494 0x07e8  wuauserv - ok
11:41:24.0557 0x07e8  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:41:24.0557 0x07e8  WudfPf - ok
11:41:24.0588 0x07e8  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:41:24.0604 0x07e8  WUDFRd - ok
11:41:24.0619 0x07e8  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
11:41:24.0635 0x07e8  wudfsvc - ok
11:41:24.0666 0x07e8  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
11:41:24.0682 0x07e8  WwanSvc - ok
11:41:24.0713 0x07e8  ================ Scan global ===============================
11:41:24.0744 0x07e8  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
11:41:24.0775 0x07e8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
11:41:24.0806 0x07e8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
11:41:24.0838 0x07e8  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
11:41:24.0869 0x07e8  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
11:41:24.0869 0x07e8  [ Global ] - ok
11:41:24.0869 0x07e8  ================ Scan MBR ==================================
11:41:24.0884 0x07e8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:41:25.0196 0x07e8  \Device\Harddisk0\DR0 - ok
11:41:25.0196 0x07e8  ================ Scan VBR ==================================
11:41:25.0196 0x07e8  [ 95E0973CEC15EC2C9747B4D99C78E9F2 ] \Device\Harddisk0\DR0\Partition1
11:41:25.0212 0x07e8  \Device\Harddisk0\DR0\Partition1 - ok
11:41:25.0228 0x07e8  [ BF6C7C2FB9A393E8ECD5F520479869A5 ] \Device\Harddisk0\DR0\Partition2
11:41:25.0228 0x07e8  \Device\Harddisk0\DR0\Partition2 - ok
11:41:25.0259 0x07e8  [ B1D58EEE531D3A9B6930EBF90375A820 ] \Device\Harddisk0\DR0\Partition3
11:41:25.0290 0x07e8  \Device\Harddisk0\DR0\Partition3 - ok
11:41:25.0290 0x07e8  Waiting for KSN requests completion. In queue: 118
11:41:26.0304 0x07e8  Waiting for KSN requests completion. In queue: 118
11:41:27.0318 0x07e8  Waiting for KSN requests completion. In queue: 118
11:41:28.0410 0x07e8  AV detected via SS2: avast! Antivirus, C:\Program Files (x86)\Avast Free 2014 Reinstall 2-22-14\VisthAux.exe ( 9.0.2016.330 ), 0x41000 ( enabled : updated )
11:41:28.0410 0x07e8  FW detected via SS2: avast! Antivirus, C:\Program Files (x86)\Avast Free 2014 Reinstall 2-22-14\VisthAux.exe ( 9.0.2016.330 ), 0x40010 ( disabled )
11:41:28.0410 0x07e8  Win FW state via NFP2: enabled
11:41:30.0984 0x07e8  ============================================================
11:41:30.0984 0x07e8  Scan finished
11:41:30.0984 0x07e8  ============================================================
11:41:30.0984 0x06b0  Detected object count: 0
11:41:30.0984 0x06b0  Actual detected object count: 0
 

AdwCleaner-

AdwCleaner[S0].txt

# AdwCleaner v3.211 - Report created 29/05/2014 at 11:48:43
# Updated 26/05/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : MY - MY-VAIO
# Running from : C:\Users\MY\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\AppDataLow\Software
Key Deleted : HKLM\Software\Software

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17041


-\\ Mozilla Firefox v29.0.1 (en-US)

[ File : C:\Users\MY\AppData\Roaming\Mozilla\Firefox\Profiles\i18ib50v.default-1395996555282\prefs.js ]


-\\ Google Chrome v35.0.1916.114

[ File : C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

[ File : C:\Users\MY\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1220 octets] - [29/05/2014 11:45:24]
AdwCleaner[S0].txt - [1149 octets] - [29/05/2014 11:48:43]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1209 octets] ##########

 

--------------------------------------------

 

AdwCleaner[R0].txt

# AdwCleaner v3.211 - Report created 29/05/2014 at 11:45:24
# Updated 26/05/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : MY - MY-VAIO
# Running from : C:\Users\MY\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\Software
Key Found : HKLM\Software\Software

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17041


-\\ Mozilla Firefox v29.0.1 (en-US)

[ File : C:\Users\MY\AppData\Roaming\Mozilla\Firefox\Profiles\i18ib50v.default-1395996555282\prefs.js ]


-\\ Google Chrome v35.0.1916.114

[ File : C:\Users\Justin\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
Found [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

[ File : C:\Users\MY\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1080 octets] - [29/05/2014 11:45:24]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [1140 octets] ##########
 

----------------------------------------------------------------------

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by MY on Thu 05/29/2014 at 11:57:13.93
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 05/29/2014 at 12:08:23.83
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#7 mred27

mred27
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 30 May 2014 - 06:05 PM

Here is the ESET Scan. Lots of false positives including CCleaner and other Piriform software 'cause of bundling the google toolbar which I didn't think I installed. Let me know as the folks over at the Ccleaner forum don't think this trolltech is malware.

 

ESET Results

C:\$RECYCLE.BIN\S-1-5-21-679210397-2375353738-1777670786-1005\$RWPXKME\SpyBHORemover\Setup_SpyBHORemover.exe    a variant of Win32/SecurityXploded.A potentially unsafe application    deleted - quarantined
C:\Program Files (x86)\CCleaner\ccsetup406.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Program Files (x86)\CCleaner\ccsetup407.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Program Files (x86)\CCleaner\ccsetup408.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Program Files (x86)\Defraggler\dfsetup215.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Program Files (x86)\Defraggler\dfsetup216.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Program Files (x86)\Merge PDF 4-12-14\cbsidlm-cbsi188-TR_MergePDFs-SEO-76054637.exe    a variant of Win32/CNETInstaller.B potentially unwanted application    deleted - quarantined
C:\Program Files (x86)\Speccy\spsetup123.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Users\MY\Documents\BHO Spy Remover\Setup_SpyBHORemover.exe    a variant of Win32/SecurityXploded.A potentially unsafe application    deleted - quarantined
C:\Users\MY\Documents\BHO Spy Remover\Portable Version\SpyBHORemover.exe    a variant of Win32/SecurityXploded.A potentially unsafe application    deleted - quarantined
C:\Users\MY\Documents\Firefox\Firefox Downloads 4-29-13\KR-LiteAndPro.zip    PHP/Obfuscated.B potentially unwanted application    deleted - quarantined
C:\Users\MY\Documents\Samsung Printer 2165W 11-22-12\reset firmware downloads 8-3-13\Samsung-chip-ML-2165W_V3.00.01.06-reset.rar    a variant of Win32/OpenInstall potentially unwanted application    deleted - quarantined
C:\Users\MY\Documents\Samsung Printer 2165W 11-22-12\reset firmware downloads 8-3-13\SamsungUniversalPrinterDriver203090041.rar    a variant of Win32/OpenInstall potentially unwanted application    deleted - quarantined
C:\Users\MY\Downloads\CCleaner_v4.12.4657.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Users\MY\Downloads\ccsetup413.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Users\MY\Downloads\ccsetup414.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Users\MY\Downloads\dfsetup218.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Users\MY\Downloads\spsetup125.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    deleted - quarantined
C:\Windows\Installer\6caa47.msi    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    deleted - quarantined
E:\Best Of Cracks-Programs 10-13-13\Best of Freebies-Best Blackhat Forum 10-13-13\Tube Raider\TubeRaider1.8.zip    a variant of Win32/Packed.Themida.AAL trojan    deleted - quarantined
E:\Best Of Cracks-Programs 10-13-13\Best of Freebies-Best Blackhat Forum 10-13-13\Tube Raider\TubeRaider1.8\SlideshowVideoMaker.exe    a variant of Win32/Packed.Themida.AAL trojan    cleaned by deleting - quarantined
E:\Best Of Cracks-Programs 10-13-13\Best of Freebies-Best Blackhat Forum 10-13-13\Tube Raider 4-15-13\TubeRaider1.8.zip    a variant of Win32/Packed.Themida.AAL trojan    deleted - quarantined
E:\Best Of Cracks-Programs 10-13-13\Best of Freebies-Best Blackhat Forum 10-13-13\Tube Raider 4-15-13\TubeRaider1.8\SlideshowVideoMaker.exe    a variant of Win32/Packed.Themida.AAL trojan    cleaned by deleting - quarantined
E:\Best Of Cracks-Programs 10-13-13\Best of Freebies-Best Blackhat Forum 10-13-13\WebHarvy 9-14-13\WebHarvy.exe    a variant of Win32/Packed.Themida.AAG trojan    cleaned by deleting - quarantined
E:\Best Of Cracks-Programs 10-13-13\Best of Freebies-Best Blackhat Forum 10-13-13\WebHarvy 9-14-13\WebHarvy.rar    a variant of Win32/Packed.Themida.AAG trojan    deleted - quarantined
E:\Best Of Cracks-Programs 10-13-13\Ebay Download 1000 Websites 11-7-13\1000 Websites.7z    PHP/Obfuscated.F potentially unwanted application    deleted - quarantined
E:\Best Of Cracks-Programs 10-13-13\Ebay Download 1000 Websites 11-7-13\1000 Websites\Turnkey_Package_Part_6.zip    PHP/Obfuscated.F potentially unwanted application    deleted - quarantined
E:\Best Of Cracks-Programs 10-13-13\Ebay Download 1000 Websites 11-7-13\Turnkey_Package_Part_6\Turnkey_Package_Part_6\Turnkey_part6\E-Gold_Money_Games.zip    PHP/Obfuscated.F potentially unwanted application    deleted - quarantined
E:\Best Of Cracks-Programs 10-13-13\Ebooks 10-7-13\Amazon Niche Finder- 4-14-13\Amazon Niche Finder-1.1c.rar    a variant of Win32/Packed.Themida.AAG trojan    deleted - quarantined
 



#8 mred27

mred27
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 30 May 2014 - 06:07 PM

this is a sophisticated malware. sadly it is not so popular yet, so there is no public cleaner available. (as far as I know)

actually I just created a new thread about that persistent malware:

http://www.bleepingcomputer.com/forums/t/535871/i-am-fighting-with-a-sophisticated-malware-for-weeks-help/

Hey yettibe,

 

Do you still think this is malware? I posted trolltech first at the CCleaner forum and many are saying it isn't. Check it out.

http://forum.piriform.com/index.php?showtopic=41115



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,195 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:40 AM

Posted 30 May 2014 - 08:01 PM

Trolltech is not necessarily a malware. But it's file may have been infected. You were infected and probably from cracked software.
Every file there found by ESET is infected and should be removed. The cracks are free so they can give you infections like Themida .[

This is a backdoor trojan that attempts to propagate by exploiting local network shares. It will also attempt to join a predefined IRC server and channel in order to participate in DDoS attacks.

A Backdoor allows hackers to remotely control your computer, steal critical system information and download and execute files.

I would counsel you to disconnect this PC from the Internet immediately. If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Though the trojan has been identified and can be killed, because of it's backdoor functionality, your PC is very likely compromised and there is no way to be sure your computer can ever again be trusted. Many experts in the security community believe that once infected with this type of trojan, the best course of action would be a reformat and reinstall of the OS. Please read these for more information:

How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
When Should I Format, How Should I Reinstall

We can still clean this machine but I can't guarantee that it will be 100% secure afterwards. Let me know what you decide to do.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 mred27

mred27
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 30 May 2014 - 08:33 PM

Trolltech is not necessarily a malware. But it's file may have been infected. You were infected and probably from cracked software.
Every file there found by ESET is infected and should be removed. The cracks are free so they can give you infections like Themida .[

This is a backdoor trojan that attempts to propagate by exploiting local network shares. It will also attempt to join a predefined IRC server and channel in order to participate in DDoS attacks.

A Backdoor allows hackers to remotely control your computer, steal critical system information and download and execute files.

I would counsel you to disconnect this PC from the Internet immediately. If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Though the trojan has been identified and can be killed, because of it's backdoor functionality, your PC is very likely compromised and there is no way to be sure your computer can ever again be trusted. Many experts in the security community believe that once infected with this type of trojan, the best course of action would be a reformat and reinstall of the OS. Please read these for more information:

How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
When Should I Format, How Should I Reinstall

We can still clean this machine but I can't guarantee that it will be 100% secure afterwards. Let me know what you decide to do.

Thanks, Let's clean it please. Was a hand me down laptop from my son. Can I safely remove all my pics and docs them reformat or can the trojan stay with a reformat and reinstall? Thx.



#11 yettibe

yettibe

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:40 AM

Posted 31 May 2014 - 06:46 AM

boopme, you are right.

but..

unfortunately, as I said, it is a very sophisticated malware which alters BIOS by adding some fake drivers. Reformatting won't help. It will simply resurrect.



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,195 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:40 AM

Posted 31 May 2014 - 10:42 AM

Then our solution is to get a deeper look and find it and get it out.

Please follow this Preparation Guide, do steps 6,7 and 8 and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 mred27

mred27
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 31 May 2014 - 03:50 PM

Then our solution is to get a deeper look and find it and get it out.

Please follow this Preparation Guide, do steps 6,7 and 8 and post in a new topic.
Let me know if all went well.

Okay, Thanks. Will start the prep. I just ran a full scan with Avast free version and Malware Bytes Pro and nothing found. Many of those cracks were in the Avast quarantine folder so I deleted them.



#14 mred27

mred27
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 31 May 2014 - 06:40 PM

Started the New Topic thread here. Thx.

 

http://www.bleepingcomputer.com/forums/t/536192/possible-trolltechtrojan-trend-micro-clean-boot-unexplained-pop-up/



#15 Animal

Animal

    Bleepin' Animinion


  • Site Admin
  • 34,286 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Where You Least Expect Me To Be
  • Local time:09:40 PM

Posted 31 May 2014 - 07:13 PM

Hello,

Now that you have posted a log at the above link, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a MRT Team member, nor should you ask for help elsewhere. Doing so can result in system changes which may not show in the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the MRT Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the MRT Team members are EXTREMELY busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the MRT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRT Team member is already assisting you and not open the thread to respond.

Please be patient. It may take several days to get a response but your log will be reviewed and answered as soon as possible. I advise checking your topic once a day for responses as the e-mail notification system is unreliable.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic. Good luck with your log.

The Internet is so big, so powerful and pointless that for some people it is a complete substitute for life.
Andrew Brown (1938-1994)


A learning experience is one of those things that say, "You know that thing you just did? Don't do that." Douglas Adams (1952-2001)


"Imagination is more important than knowledge. Knowledge is limited. Imagination circles the world." Albert Einstein (1879-1955)


Follow BleepingComputer on: Facebook | Twitter | Google+




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users