Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows performence check


  • This topic is locked This topic is locked
20 replies to this topic

#1 iNezzy

iNezzy

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:10:56 PM

Posted 05 July 2014 - 08:17 AM

Hi all,

 

After noticing that my laptop was using all most all of its 4GB ram purely when idling, i decided to try and see what that problem was... 

 

Have done all the usual, MalwareBytes, ComboFix, CCleaner.

 

However i am still having the issue... nothing appears to be really using all my ram in the task manager, however when doing a windows performence issue troubleshooter, i noticed a programme runnign at startup and ive no idea what it is...

 

Simply listed as (default) when highlighting the file to see the location it says unknown.....

 

Any ideas what this is? How i can find out what it is? And should i stop it running?

 

Also, any other ideas on why my computer could be using all my RAM?

 

Thanks



BC AdBot (Login to Remove)

 


#2 wpgwpg

wpgwpg

  • Members
  • 1,149 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:US of A
  • Local time:06:56 PM

Posted 05 July 2014 - 08:52 AM

 Starting with Vista, Windows is designed to maximize performance by maximizing the use of RAM.  Since RAM operates in nanoseconds and your hard drive operates in milliseconds, that makes a whole lot of sense.  It means that RAM is close to a million times faster than your hard drive.  Bottom line: what you're seeing is normal, don't worry about it.


Everyone with a computer should back his system up to an external hard drive regularly.  :thumbsup:

#3 iNezzy

iNezzy
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:10:56 PM

Posted 05 July 2014 - 09:04 AM

 Starting with Vista, Windows is designed to maximize performance by maximizing the use of RAM.  Since RAM operates in nanoseconds and your hard drive operates in milliseconds, that makes a whole lot of sense.  It means that RAM is close to a million times faster than your hard drive.  Bottom line: what you're seeing is normal, don't worry about it.

 

What about this Default thing?

 

Also - it is having huge fps problems on games that actually require very little ram.... am i better off to add more ram to correct the problem? Or is there anything else i can do to help.



#4 hamluis

hamluis

    Moderator


  • Moderator
  • 55,406 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:05:56 PM

Posted 05 July 2014 - 10:23 AM

Please download MiniToolBox  , save it to your desktop and run it.
 
Checkmark the following checkboxes:
  List last 10 Event Viewer log
  List Installed Programs
  List Users, Partitions and Memory size.
 
Click Go and paste the content into your next post.
 
Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link of the snapshot in your next post.
 
Louis



#5 iNezzy

iNezzy
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:10:56 PM

Posted 05 July 2014 - 10:52 AM

MiniToolBox by Farbar  Version: 25-06-2014
 
Ran by Admin (administrator) on 05-07-2014 at 16:50:48
Running from "C:\Users\Admin\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (07/05/2014 04:06:54 PM) (Source: Application Hang) (User: )
Description: The program mirc.exe version 7.27.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 2648
 
Start Time: 01cf9862a4bea2ae
 
Termination Time: 2
 
Application Path: C:\Program Files (x86)\mIRC\mirc.exe
 
Report Id: fad79495-0455-11e4-b444-14feb5c0814f
 
Error: (07/05/2014 04:05:16 PM) (Source: Application Hang) (User: )
Description: The program mirc.exe version 7.27.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 2020
 
Start Time: 01cf985ee1d7e38c
 
Termination Time: 2
 
Application Path: C:\Program Files (x86)\mIRC\mirc.exe
 
Report Id: c17dcd4b-0455-11e4-b444-14feb5c0814f
 
Error: (07/05/2014 03:29:59 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Invalid Xml syntax.
 
Error: (07/05/2014 03:26:48 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/05/2014 03:26:17 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Invalid Xml syntax.
 
Error: (07/05/2014 03:23:11 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Invalid Xml syntax.
 
Error: (07/05/2014 01:47:53 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Invalid Xml syntax.
 
Error: (07/05/2014 00:12:05 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/05/2014 00:11:29 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Invalid Xml syntax.
 
Error: (07/04/2014 09:07:35 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3.
Invalid Xml syntax.
 
 
System errors:
=============
Error: (07/05/2014 03:27:39 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.
 
Error: (07/05/2014 03:27:20 PM) (Source: Service Control Manager) (User: )
Description: The Razer Game Scanner service failed to start due to the following error: 
%%1053
 
Error: (07/05/2014 03:27:20 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Razer Game Scanner service to connect.
 
Error: (07/05/2014 03:27:09 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.
 
Error: (07/05/2014 03:26:26 PM) (Source: Service Control Manager) (User: )
Description: The avast! HardwareID service failed to start due to the following error: 
%%2
 
Error: (07/05/2014 03:26:17 PM) (Source: Service Control Manager) (User: )
Description: The avast! Antivirus service failed to start due to the following error: 
%%14001
 
Error: (07/05/2014 01:46:15 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.
 
Error: (07/05/2014 00:11:40 PM) (Source: Service Control Manager) (User: )
Description: The avast! HardwareID service failed to start due to the following error: 
%%2
 
Error: (07/05/2014 00:11:29 PM) (Source: Service Control Manager) (User: )
Description: The avast! Antivirus service failed to start due to the following error: 
%%14001
 
Error: (07/05/2014 00:11:17 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 02:45:19 on ‎05/‎07/‎2014 was unexpected.
 
 
Microsoft Office Sessions:
=========================
Error: (07/05/2014 04:06:54 PM) (Source: Application Hang)(User: )
Description: mirc.exe7.27.0.0264801cf9862a4bea2ae2C:\Program Files (x86)\mIRC\mirc.exefad79495-0455-11e4-b444-14feb5c0814f
 
Error: (07/05/2014 04:05:16 PM) (Source: Application Hang)(User: )
Description: mirc.exe7.27.0.0202001cf985ee1d7e38c2C:\Program Files (x86)\mIRC\mirc.exec17dcd4b-0455-11e4-b444-14feb5c0814f
 
Error: (07/05/2014 03:29:59 PM) (Source: SideBySide)(User: )
Description: C:\Program Files\AVAST Software\Avast\aswRvrt.dllC:\Windows\WinSxS\manifests\x86_policy.11.0.avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_b2556b4035446b41.manifest0
 
Error: (07/05/2014 03:26:48 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/05/2014 03:26:17 PM) (Source: SideBySide)(User: )
Description: C:\Program Files\AVAST Software\Avast\AvastSvc.exeC:\Windows\WinSxS\manifests\x86_policy.11.0.avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_b2556b4035446b41.manifest0
 
Error: (07/05/2014 03:23:11 PM) (Source: SideBySide)(User: )
Description: C:\Program Files\AVAST Software\Avast\aswRvrt.dllC:\Windows\WinSxS\manifests\x86_policy.11.0.avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_b2556b4035446b41.manifest0
 
Error: (07/05/2014 01:47:53 PM) (Source: SideBySide)(User: )
Description: C:\Program Files\AVAST Software\Avast\aswRvrt.dllC:\Windows\WinSxS\manifests\x86_policy.11.0.avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_b2556b4035446b41.manifest0
 
Error: (07/05/2014 00:12:05 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (07/05/2014 00:11:29 PM) (Source: SideBySide)(User: )
Description: C:\Program Files\AVAST Software\Avast\AvastSvc.exeC:\Windows\WinSxS\manifests\x86_policy.11.0.avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_b2556b4035446b41.manifest0
 
Error: (07/04/2014 09:07:35 PM) (Source: SideBySide)(User: )
Description: C:\Program Files\AVAST Software\Avast\aswRvrt.dllC:\Windows\WinSxS\manifests\x86_policy.11.0.avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_b2556b4035446b41.manifest0
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-07-04 20:56:07.794
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-07-04 20:56:07.723
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
 
=========================== Installed Programs ============================
AccelerometerP11 (HKLM-x32\...\{87434D51-51DB-4109-B68F-A829ECDCF380}) (Version: 2.00.11.22 - STMicroelectronics)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.8.0.1430 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.8.0.1430 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader X MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated)
Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version:  - )
Age of Empires® III: Complete Collection (HKLM-x32\...\Steam App 105450) (Version:  - )
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Blio (HKLM-x32\...\{400182B4-CA55-46A9-9D88-F8413DCFB36D}) (Version: 2.3.7140 - K-NFB Reading Technology, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Call of Duty: Black Ops II - Multiplayer (HKLM-x32\...\Steam App 202990) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 3.23 - Piriform)
Command & Conquer The First Decade (HKLM-x32\...\{66D6F3BD-CA23-41A4-9FA3-96B26B32528C}) (Version: 1.00.0000 - Electronic Arts)
CyberGhost VPN (HKLM\...\CyberGhost VPN_is1) (Version:  - CyberGhost S.R.L.)
CyberLink PowerDVD 9.6 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.6.1.3522 - CyberLink Corp.)
CyberLink PowerDVD 9.6 (x32 Version: 9.6.1.3522 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version:  - FromSoftware)
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.60 - Dell Inc.)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.60 - Dell Inc.)
Dell DataSafe Online (HKLM-x32\...\{7EC66A95-AC2D-4127-940B-0445A526AB2F}) (Version: 2.1.19634 - Dell)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell MusicStage (HKLM-x32\...\{91AF2672-F5BC-42CF-8037-A9D2F92BBCC0}) (Version: 1.5.201.0 - Fingertapps)
Dell PhotoStage (HKLM-x32\...\{E4335E82-17B3-460F-9E70-39D9BC269DB3}) (Version: 1.5.0.65 - ArcSoft)
Dell Stage (HKLM-x32\...\{FC45E4D6-FEA5-4091-B172-4351D130C2E1}) (Version: 1.7.209.0 - Fingertapps)
Dell System Detect (HKCU\...\9204f5692a8faf3b) (Version: 5.7.0.6 - Dell)
Dell VideoStage  (HKLM-x32\...\InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.2.0.1712 - CyberLink Corp.)
Dell VideoStage  (x32 Version: 1.2.0.1712 - CyberLink Corp.) Hidden
Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 2.00.44 - Creative Technology Ltd)
DirectX 9 Runtime (x32 Version: 1.00.0000 - Sonic Solutions) Hidden
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve )
Dropbox (HKCU\...\Dropbox) (Version: 2.4.11 - Dropbox, Inc.)
EA SPORTS Game Face Browser Plugin 1.8.0.0 (HKCU\...\EA SPORTS Game Face Browser Plugin) (Version: 1.8.0.0 - Electronic Arts)
eBay (HKLM-x32\...\{A8B88634-7F90-402F-B66A-86429755F6A5}) (Version: 1.4.0 - eBay Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
HandBrake 0.9.8 (HKLM-x32\...\HandBrake) (Version: 0.9.8 - )
HAWKEN (HKLM-x32\...\Steam App 271290) (Version:  - Adhesive Games)
Horizon v2.7.2.2 (HKLM-x32\...\d4cfeebc-b821-40b7-9f81-d366b1466f03_is1) (Version: 2.7.2.2 - Daring Development Inc.)
iCloud (HKLM\...\{89BDAE1A-7B8E-4A0E-A169-02F7F366451D}) (Version: 2.1.0.39 - Apple Inc.)
Intel PROSet Wireless (Version:  - ) Hidden
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2321 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{290D4DB2-F1B4-4B8E-918D-D71EF29A001B}) (Version: 14.00.1000 - Intel Corporation)
Intel® Turbo Boost Technology Monitor 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K-Lite Mega Codec Pack 9.3.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.3.0 - )
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Livestreamer 1.7.3 (HKLM-x32\...\Livestreamer) (Version:  - )
LogMeIn (HKLM-x32\...\{BDC9C8E8-3B05-40DA-813D-FC8B200E7CFA}) (Version: 4.1.4306 - LogMeIn, Inc.)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
mIRC (HKLM-x32\...\mIRC) (Version: 7.27 - mIRC Co. Ltd.)
Mozilla Firefox 28.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 en-US)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
Nero 10 Movie ThemePack Basic (x32 Version: 10.6.10000.1.0 - Nero AG) Hidden
Nero Blu-ray Player (x32 Version: 12.0.20030 - Nero AG) Hidden
Nero Control Center 10 (x32 Version: 10.6.13000.0.11 - Nero AG) Hidden
Nero ControlCenter 10 Help (CHM) (x32 Version: 10.2.10800 - Nero AG) Hidden
Nero Core Components 10 (x32 Version: 2.0.19900.9.11 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11800.31.0 - Nero AG) Hidden
Neverwinter (HKLM-x32\...\Neverwinter) (Version:  - Cryptic Studios)
NVIDIA 3D Vision Driver 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 337.88 - NVIDIA Corporation)
NVIDIA Control Panel 337.88 (Version: 337.88 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.157.1165 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 14.6.22 (Version: 14.6.22 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 14.6.22 (Version: 14.6.22 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Update 14.6.22 (Version: 14.6.22 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 14.6.22 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
Omerta - City of Gangsters (HKLM-x32\...\Steam App 208520) (Version:  - Haemimont Games)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
paint.net 4.0 Pre-Release (HKLM\...\{3F5F509B-E226-417C-8CD1-CAAE756C328A}) (Version: 4.0.0 - dotPDN LLC)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5350) (Version:  - )
PhotoShowExpress (x32 Version: 2.0.063 - Sonic Solutions) Hidden
Plague Inc: Evolved (HKLM-x32\...\Steam App 246620) (Version:  - Ndemic Creations)
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
Portal 2 Publishing Tool (HKLM-x32\...\Steam App 644) (Version:  - )
Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.0.10 - Dell Inc.)
Razer Comms (HKLM-x32\...\Razer Comms) (Version: 1.9 - Razer Inc.)
Razer Core (HKLM-x32\...\Razer Core) (Version: 1.0.1.66 - Razer Inc)
Razer Synapse 2.0 (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.13 - Razer Inc.)
RBVirtualFolder64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6312 - Realtek Semiconductor Corp.)
Realtek USB Gigabit Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{D8102684-7BA1-4948-88B9-535F84E6E588}) (Version: 7.2.620.2013 - Realtek)
Reflector (HKLM\...\{77342B24-A2A9-4420-8C9C-C109EE201CBC}) (Version: 1.3.3.1 - Squirrels)
RollerCoaster Tycoon 3: Platinum! (HKLM-x32\...\Steam App 2700) (Version:  - Frontier)
Roxio Activation Module (x32 Version: 1.0 - Roxio) Hidden
Roxio BackOnTrack (x32 Version: 1.3.3 - Roxio) Hidden
Roxio Burn (x32 Version: 1.8 - Roxio) Hidden
Roxio Creator Starter (HKLM-x32\...\{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}) (Version: 12.1.77.0 - Roxio)
Roxio Creator Starter (x32 Version: 1.0.439 - Roxio) Hidden
Roxio Creator Starter (x32 Version: 5.0.0 - Roxio) Hidden
Roxio Express Labeler 3 (x32 Version: 3.2.2 - Roxio) Hidden
Roxio File Backup (Version: 1.3.2 - Roxio) Hidden
RuneScape Launcher 1.2.3 (HKLM-x32\...\{FAE99C85-0732-4C58-9C6B-10B5B12FA2E9}) (Version: 1.2.3 - Jagex Ltd)
Screen Recorder (HKLM-x32\...\Screen Recorder_is1) (Version: 1.6 - Rylstim)
SHIELD Streaming (Version: 2.1.214 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.2.15747.10003 - Microsoft Corporation)
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Sonic CinePlayer Decoder Pack (x32 Version: 4.3.0 - Sonic Solutions) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.24 - Piriform)
Spotify (HKCU\...\Spotify) (Version: 0.9.8.296.g91f68827 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Star Wars: Knights of the Old Republic II (HKLM-x32\...\Steam App 208580) (Version:  - LucasArts)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: 2.0.7.25293 - Blizzard Entertainment)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.1.15.0 - Synaptics Incorporated)
SyncUP (HKLM-x32\...\{D92C9CCE-E5F0-4125-977A-0590F3225B74}) (Version: 10.2.13500 - Nero AG)
SyncUP (x32 Version: 1.12.12400.17.102 - Nero AG) Hidden
System Requirements Lab CYRI (HKLM-x32\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{A407FC22-36BF-4C82-A516-59D94BC505A9}) (Version: 1.0.5.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.10 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Stanley Parable Demo (HKLM-x32\...\Steam App 247750) (Version:  - Galactic Cafe)
Tixati (HKLM-x32\...\tixati) (Version:  - )
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Vegas Pro 12.0 (64-bit) (HKLM\...\{87CEB7C0-1D35-11E2-8F19-F04DA23A5C58}) (Version: 12.0.394 - Sony)
VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN)
Warframe (HKLM-x32\...\{97FFE5B0-D264-45A7-A7E0-758C7B488F73}) (Version: 1.0.0 - Digital Extremes)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
XBC 5.1 (HKLM-x32\...\XBC 5.1) (Version: 5.0 - XBConnect)
XSplit (HKLM-x32\...\{DAA18A0D-A57C-4611-B135-46EA06990E7D}) (Version: 1.2.1303.0101 - SplitMediaLabs)
XviD Video Codec (remove only) (HKLM-x32\...\XviD Video Codec) (Version:  - )
Zinio Reader 4 (HKLM-x32\...\ZinioReader4) (Version: 4.2.4164 - Zinio LLC)
Zinio Reader 4 (x32 Version: 4.2.4164 - Zinio LLC) Hidden
 
========================= Memory info: ===================================
 
Percentage of memory in use: 70%
Total physical RAM: 4010.17 MB
Available physical RAM: 1203.03 MB
Total Pagefile: 8018.52 MB
Available Pagefile: 4131.08 MB
Total Virtual: 4095.88 MB
Available Virtual: 3973.16 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:446.13 GB) (Free:116.91 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\ADMIN-PC
 
Admin                    Administrator            Guest                    
LogMeInRemoteUser        Mcx1-ADMIN-PC            Test                     
 
 
**** End of log ****
 
 
 
 
Many thanks :)

Edited by hamluis, 05 July 2014 - 03:29 PM.
Removed unnecessary quotebox - Hamluis.


#6 hamluis

hamluis

    Moderator


  • Moderator
  • 55,406 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:05:56 PM

Posted 05 July 2014 - 03:34 PM

You may be infected, moving to Am I Infected.

 

Louis



#7 iNezzy

iNezzy
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:10:56 PM

Posted 05 July 2014 - 03:37 PM

Hmm - not really seeing any other adverse effects really, if i am infected, hope we can solve it. 

 

The (default) Unknown startup programme is causing me a little concern, windows seems unable to stop it from running at startup



#8 iNezzy

iNezzy
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:10:56 PM

Posted 05 July 2014 - 04:57 PM

Trying to figure out if this is a solvable issue without a fresh windows install, Or maybe i just need more RAM... which id rather not do as funds are tight and laptop ram isnt the cheapest.



#9 Wolverine 7

Wolverine 7

  • Members
  • 746 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bournemouth,UK
  • Local time:10:56 PM

Posted 05 July 2014 - 07:54 PM

You should wait  for the malware responce team to deal with the infection before you do anything else,once your machines clean you can repost any further issues.



#10 iNezzy

iNezzy
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:10:56 PM

Posted 07 July 2014 - 01:07 PM

Does anyone have an update on this? :S

 

(default) been s startup programme from a unknown file location is beginning to worry me...


Edited by iNezzy, 07 July 2014 - 01:09 PM.


#11 wpgwpg

wpgwpg

  • Members
  • 1,149 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:US of A
  • Local time:06:56 PM

Posted 07 July 2014 - 04:25 PM

 OK, let's try this.  Run MSCONFIG and click the Startup tab.  Note: Avoid the other tabs!  There you'll see a list of things being automatically started when you boot up.  You can uncheck everything there except your antivirus program.  Do you see anything that looks like that default thing?  


Everyone with a computer should back his system up to an external hard drive regularly.  :thumbsup:

#12 iNezzy

iNezzy
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:10:56 PM

Posted 07 July 2014 - 05:45 PM

 OK, let's try this.  Run MSCONFIG and click the Startup tab.  Note: Avoid the other tabs!  There you'll see a list of things being automatically started when you boot up.  You can uncheck everything there except your antivirus program.  Do you see anything that looks like that default thing?  

 

 

Yes i can see the same (default) in that menu.

 

It is listed as - startup item : (default) Manufacturer: Unknown... and there is nothing in the command column like there is for everything else.


Edited by iNezzy, 07 July 2014 - 05:47 PM.


#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:56 PM

Posted 10 July 2014 - 03:49 PM

Hello, thanks for posting in the 3 days waing. Lets look at these next.


Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 iNezzy

iNezzy
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:10:56 PM

Posted 10 July 2014 - 06:42 PM

As requested - the logs you wanted. Thanks for the help :)
 
 
 
22:26:00.0174 0xf6a0  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
22:26:02.0126 0xf6a0  ============================================================
22:26:02.0126 0xf6a0  Current date / time: 2014/07/10 22:26:02.0126
22:26:02.0126 0xf6a0  SystemInfo:
22:26:02.0126 0xf6a0  
22:26:02.0126 0xf6a0  OS Version: 6.1.7601 ServicePack: 1.0
22:26:02.0126 0xf6a0  Product type: Workstation
22:26:02.0127 0xf6a0  ComputerName: ADMIN-PC
22:26:02.0127 0xf6a0  UserName: Admin
22:26:02.0127 0xf6a0  Windows directory: C:\Windows
22:26:02.0127 0xf6a0  System windows directory: C:\Windows
22:26:02.0127 0xf6a0  Running under WOW64
22:26:02.0127 0xf6a0  Processor architecture: Intel x64
22:26:02.0127 0xf6a0  Number of processors: 8
22:26:02.0127 0xf6a0  Page size: 0x1000
22:26:02.0127 0xf6a0  Boot type: Normal boot
22:26:02.0127 0xf6a0  ============================================================
22:26:02.0686 0xf6a0  KLMD registered as C:\Windows\system32\drivers\18100109.sys
22:26:02.0991 0xf6a0  System UUID: {C9AA81B7-EE5E-F5D9-5ADD-D39C4574CDEB}
22:26:03.0362 0xf6a0  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:26:03.0374 0xf6a0  ============================================================
22:26:03.0374 0xf6a0  \Device\Harddisk0\DR0:
22:26:03.0374 0xf6a0  MBR partitions:
22:26:03.0374 0xf6a0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x34000, BlocksNum 0x2710000
22:26:03.0375 0xf6a0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2744000, BlocksNum 0x37C41830
22:26:03.0375 0xf6a0  ============================================================
22:26:03.0391 0xf6a0  C: <-> \Device\Harddisk0\DR0\Partition2
22:26:03.0391 0xf6a0  ============================================================
22:26:03.0391 0xf6a0  Initialize success
22:26:03.0391 0xf6a0  ============================================================
22:26:07.0340 0x37a8  ============================================================
22:26:07.0340 0x37a8  Scan started
22:26:07.0340 0x37a8  Mode: Manual; 
22:26:07.0340 0x37a8  ============================================================
22:26:07.0340 0x37a8  KSN ping started
22:26:10.0042 0x37a8  KSN ping finished: true
22:26:12.0044 0x37a8  ================ Scan system memory ========================
22:26:12.0044 0x37a8  System memory - ok
22:26:12.0045 0x37a8  ================ Scan services =============================
22:26:12.0224 0x37a8  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
22:26:12.0231 0x37a8  1394ohci - ok
22:26:12.0278 0x37a8  [ E0065CBF1A25C015C218457D2CD522B9, 610E90D70FAF624664C5111030C85CF27703DED031CB7293334EB4D67D0274C9 ] Acceler         C:\Windows\system32\DRIVERS\Accelern.sys
22:26:12.0279 0x37a8  Acceler - ok
22:26:12.0311 0x37a8  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
22:26:12.0320 0x37a8  ACPI - ok
22:26:12.0333 0x37a8  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
22:26:12.0334 0x37a8  AcpiPmi - ok
22:26:12.0362 0x37a8  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
22:26:12.0372 0x37a8  adp94xx - ok
22:26:12.0416 0x37a8  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
22:26:12.0424 0x37a8  adpahci - ok
22:26:12.0444 0x37a8  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
22:26:12.0448 0x37a8  adpu320 - ok
22:26:12.0471 0x37a8  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:26:12.0473 0x37a8  AeLookupSvc - ok
22:26:12.0529 0x37a8  [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
22:26:12.0531 0x37a8  AERTFilters - ok
22:26:12.0608 0x37a8  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
22:26:12.0620 0x37a8  AFD - ok
22:26:12.0652 0x37a8  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
22:26:12.0653 0x37a8  agp440 - ok
22:26:12.0673 0x37a8  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
22:26:12.0675 0x37a8  ALG - ok
22:26:12.0717 0x37a8  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:26:12.0718 0x37a8  aliide - ok
22:26:12.0812 0x37a8  ALSysIO - ok
22:26:12.0854 0x37a8  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
22:26:12.0855 0x37a8  amdide - ok
22:26:12.0879 0x37a8  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
22:26:12.0880 0x37a8  AmdK8 - ok
22:26:12.0891 0x37a8  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
22:26:12.0892 0x37a8  AmdPPM - ok
22:26:12.0941 0x37a8  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:26:12.0944 0x37a8  amdsata - ok
22:26:12.0964 0x37a8  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
22:26:12.0968 0x37a8  amdsbs - ok
22:26:12.0977 0x37a8  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:26:12.0978 0x37a8  amdxata - ok
22:26:13.0001 0x37a8  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
22:26:13.0002 0x37a8  AppID - ok
22:26:13.0026 0x37a8  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:26:13.0027 0x37a8  AppIDSvc - ok
22:26:13.0079 0x37a8  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
22:26:13.0081 0x37a8  Appinfo - ok
22:26:13.0196 0x37a8  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:26:13.0198 0x37a8  Apple Mobile Device - ok
22:26:13.0234 0x37a8  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
22:26:13.0237 0x37a8  arc - ok
22:26:13.0250 0x37a8  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
22:26:13.0253 0x37a8  arcsas - ok
22:26:13.0375 0x37a8  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:26:13.0377 0x37a8  aspnet_state - ok
22:26:13.0406 0x37a8  aswHwid - ok
22:26:13.0431 0x37a8  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:26:13.0432 0x37a8  AsyncMac - ok
22:26:13.0465 0x37a8  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
22:26:13.0466 0x37a8  atapi - ok
22:26:13.0513 0x37a8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:26:13.0528 0x37a8  AudioEndpointBuilder - ok
22:26:13.0560 0x37a8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:26:13.0575 0x37a8  AudioSrv - ok
22:26:13.0612 0x37a8  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:26:13.0615 0x37a8  AxInstSV - ok
22:26:13.0653 0x37a8  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
22:26:13.0663 0x37a8  b06bdrv - ok
22:26:13.0696 0x37a8  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:26:13.0702 0x37a8  b57nd60a - ok
22:26:13.0724 0x37a8  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:26:13.0727 0x37a8  BDESVC - ok
22:26:13.0738 0x37a8  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:26:13.0738 0x37a8  Beep - ok
22:26:13.0783 0x37a8  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
22:26:13.0798 0x37a8  BFE - ok
22:26:13.0848 0x37a8  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
22:26:13.0867 0x37a8  BITS - ok
22:26:13.0896 0x37a8  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
22:26:13.0897 0x37a8  blbdrive - ok
22:26:13.0973 0x37a8  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:26:13.0983 0x37a8  Bonjour Service - ok
22:26:14.0016 0x37a8  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:26:14.0018 0x37a8  bowser - ok
22:26:14.0031 0x37a8  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
22:26:14.0032 0x37a8  BrFiltLo - ok
22:26:14.0047 0x37a8  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
22:26:14.0048 0x37a8  BrFiltUp - ok
22:26:14.0083 0x37a8  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
22:26:14.0085 0x37a8  BridgeMP - ok
22:26:14.0129 0x37a8  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
22:26:14.0132 0x37a8  Browser - ok
22:26:14.0155 0x37a8  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:26:14.0161 0x37a8  Brserid - ok
22:26:14.0176 0x37a8  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:26:14.0177 0x37a8  BrSerWdm - ok
22:26:14.0193 0x37a8  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:26:14.0194 0x37a8  BrUsbMdm - ok
22:26:14.0205 0x37a8  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:26:14.0205 0x37a8  BrUsbSer - ok
22:26:14.0216 0x37a8  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
22:26:14.0218 0x37a8  BTHMODEM - ok
22:26:14.0251 0x37a8  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
22:26:14.0253 0x37a8  bthserv - ok
22:26:14.0392 0x37a8  [ 72551A9AE5F68905DFC3CBA0D5242566, 15C273519C3AD1B2AF68F669125AFE607A86A60D680E299631D5E893C3CAA7E7 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
22:26:14.0421 0x37a8  c2cautoupdatesvc - ok
22:26:14.0505 0x37a8  [ 6B669A00A431FF6CDCE67458933F5F0F, 81419EB18BB4EB96E48C99A1D45B0267E779E135427B3AEC872A1A5DD810B23F ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
22:26:14.0543 0x37a8  c2cpnrsvc - ok
22:26:14.0559 0x37a8  catchme - ok
22:26:14.0586 0x37a8  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:26:14.0588 0x37a8  cdfs - ok
22:26:14.0622 0x37a8  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:26:14.0626 0x37a8  cdrom - ok
22:26:14.0644 0x37a8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
22:26:14.0646 0x37a8  CertPropSvc - ok
22:26:14.0834 0x37a8  [ 213B6EC3DE19E35373A1906397588429, C72B74D4840946DC6952B9F6C4A568DA702DD2D6E211AA5BB7F82EF481F449C6 ] CGVPNCliSrvc    C:\Program Files\CyberGhost VPN\CGVPNCliService.exe
22:26:14.0886 0x37a8  CGVPNCliSrvc - ok
22:26:14.0925 0x37a8  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
22:26:14.0926 0x37a8  circlass - ok
22:26:14.0951 0x37a8  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
22:26:14.0959 0x37a8  CLFS - ok
22:26:15.0009 0x37a8  [ 730BF325E4CC1E3935B81943AC6DA216, FF6D7C087976D6B431F8799AEF6DFA12F31F6B38D5D70F9A8F03AB01CC58BD58 ] CLKMSVC10_9EC60124 c:\Program Files (x86)\Cyberlink\PowerDVD9\NavFilter\kmsvc.exe
22:26:15.0015 0x37a8  CLKMSVC10_9EC60124 - ok
22:26:15.0071 0x37a8  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:26:15.0073 0x37a8  clr_optimization_v2.0.50727_32 - ok
22:26:15.0113 0x37a8  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:26:15.0115 0x37a8  clr_optimization_v2.0.50727_64 - ok
22:26:15.0217 0x37a8  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:26:15.0221 0x37a8  clr_optimization_v4.0.30319_32 - ok
22:26:15.0258 0x37a8  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:26:15.0261 0x37a8  clr_optimization_v4.0.30319_64 - ok
22:26:15.0280 0x37a8  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
22:26:15.0280 0x37a8  CmBatt - ok
22:26:15.0318 0x37a8  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:26:15.0319 0x37a8  cmdide - ok
22:26:15.0375 0x37a8  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
22:26:15.0385 0x37a8  CNG - ok
22:26:15.0406 0x37a8  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
22:26:15.0408 0x37a8  Compbatt - ok
22:26:15.0432 0x37a8  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
22:26:15.0434 0x37a8  CompositeBus - ok
22:26:15.0444 0x37a8  COMSysApp - ok
22:26:15.0469 0x37a8  cpuz136 - ok
22:26:15.0482 0x37a8  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
22:26:15.0483 0x37a8  crcdisk - ok
22:26:15.0530 0x37a8  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:26:15.0535 0x37a8  CryptSvc - ok
22:26:15.0622 0x37a8  [ BC3D4F90978CD7C8EABD1BAF3BF7873A, 5978139650FC51BE0CAB12061702C7BC7BEDF6E7C3A047FF0A6328AA674E4226 ] CtClsFlt        C:\Windows\system32\DRIVERS\CtClsFlt.sys
22:26:15.0627 0x37a8  CtClsFlt - ok
22:26:15.0749 0x37a8  [ FD557A50A65E44041CD2FCEF4BEB04DB, 746D5958F7198895D35A23566D3736D993D57726BF59D91421D8091C48926A26 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
22:26:15.0769 0x37a8  cvhsvc - ok
22:26:15.0815 0x37a8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:26:15.0828 0x37a8  DcomLaunch - ok
22:26:15.0864 0x37a8  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
22:26:15.0871 0x37a8  defragsvc - ok
22:26:15.0895 0x37a8  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:26:15.0897 0x37a8  DfsC - ok
22:26:15.0940 0x37a8  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:26:15.0948 0x37a8  Dhcp - ok
22:26:15.0964 0x37a8  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
22:26:15.0966 0x37a8  discache - ok
22:26:15.0993 0x37a8  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
22:26:15.0995 0x37a8  Disk - ok
22:26:16.0027 0x37a8  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:26:16.0031 0x37a8  Dnscache - ok
22:26:16.0046 0x37a8  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:26:16.0052 0x37a8  dot3svc - ok
22:26:16.0072 0x37a8  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
22:26:16.0076 0x37a8  DPS - ok
22:26:16.0130 0x37a8  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:26:16.0131 0x37a8  drmkaud - ok
22:26:16.0205 0x37a8  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:26:16.0226 0x37a8  DXGKrnl - ok
22:26:16.0255 0x37a8  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
22:26:16.0258 0x37a8  EapHost - ok
22:26:16.0382 0x37a8  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
22:26:16.0452 0x37a8  ebdrv - ok
22:26:16.0516 0x37a8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
22:26:16.0518 0x37a8  EFS - ok
22:26:16.0628 0x37a8  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:26:16.0642 0x37a8  ehRecvr - ok
22:26:16.0676 0x37a8  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
22:26:16.0679 0x37a8  ehSched - ok
22:26:16.0717 0x37a8  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
22:26:16.0728 0x37a8  elxstor - ok
22:26:16.0762 0x37a8  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:26:16.0763 0x37a8  ErrDev - ok
22:26:16.0810 0x37a8  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
22:26:16.0820 0x37a8  EventSystem - ok
22:26:16.0928 0x37a8  [ 8B6C9924B0D333DBF76086B8258A0891, 61A629A0BF00040F8E2B0588657FFA8C78C137B1B0F6CB92CFCC9B9E29630E0C ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
22:26:16.0961 0x37a8  EvtEng - ok
22:26:17.0005 0x37a8  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
22:26:17.0010 0x37a8  exfat - ok
22:26:17.0029 0x37a8  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:26:17.0034 0x37a8  fastfat - ok
22:26:17.0062 0x37a8  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
22:26:17.0078 0x37a8  Fax - ok
22:26:17.0130 0x37a8  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
22:26:17.0131 0x37a8  fdc - ok
22:26:17.0155 0x37a8  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
22:26:17.0156 0x37a8  fdPHost - ok
22:26:17.0169 0x37a8  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:26:17.0171 0x37a8  FDResPub - ok
22:26:17.0182 0x37a8  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:26:17.0184 0x37a8  FileInfo - ok
22:26:17.0196 0x37a8  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:26:17.0197 0x37a8  Filetrace - ok
22:26:17.0213 0x37a8  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
22:26:17.0214 0x37a8  flpydisk - ok
22:26:17.0236 0x37a8  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:26:17.0242 0x37a8  FltMgr - ok
22:26:17.0319 0x37a8  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
22:26:17.0344 0x37a8  FontCache - ok
22:26:17.0395 0x37a8  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:26:17.0396 0x37a8  FontCache3.0.0.0 - ok
22:26:17.0408 0x37a8  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:26:17.0410 0x37a8  FsDepends - ok
22:26:17.0434 0x37a8  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:26:17.0435 0x37a8  Fs_Rec - ok
22:26:17.0484 0x37a8  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:26:17.0489 0x37a8  fvevol - ok
22:26:17.0511 0x37a8  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
22:26:17.0513 0x37a8  gagp30kx - ok
22:26:17.0552 0x37a8  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:26:17.0553 0x37a8  GEARAspiWDM - ok
22:26:17.0595 0x37a8  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
22:26:17.0612 0x37a8  gpsvc - ok
22:26:17.0670 0x37a8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:26:17.0673 0x37a8  gupdate - ok
22:26:17.0680 0x37a8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:26:17.0684 0x37a8  gupdatem - ok
22:26:17.0694 0x37a8  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:26:17.0696 0x37a8  hcw85cir - ok
22:26:17.0736 0x37a8  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:26:17.0743 0x37a8  HdAudAddService - ok
22:26:17.0783 0x37a8  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
22:26:17.0786 0x37a8  HDAudBus - ok
22:26:17.0798 0x37a8  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
22:26:17.0799 0x37a8  HidBatt - ok
22:26:17.0818 0x37a8  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
22:26:17.0821 0x37a8  HidBth - ok
22:26:17.0837 0x37a8  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
22:26:17.0838 0x37a8  HidIr - ok
22:26:17.0852 0x37a8  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
22:26:17.0854 0x37a8  hidserv - ok
22:26:17.0911 0x37a8  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:26:17.0912 0x37a8  HidUsb - ok
22:26:17.0944 0x37a8  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:26:17.0947 0x37a8  hkmsvc - ok
22:26:17.0975 0x37a8  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:26:17.0983 0x37a8  HomeGroupListener - ok
22:26:18.0005 0x37a8  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:26:18.0011 0x37a8  HomeGroupProvider - ok
22:26:18.0030 0x37a8  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
22:26:18.0032 0x37a8  HpSAMD - ok
22:26:18.0077 0x37a8  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:26:18.0093 0x37a8  HTTP - ok
22:26:18.0124 0x37a8  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:26:18.0125 0x37a8  hwpolicy - ok
22:26:18.0155 0x37a8  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
22:26:18.0158 0x37a8  i8042prt - ok
22:26:18.0200 0x37a8  [ D469B77687E12FE43E344806740B624D, DFDD486FD040813BF4E5DDB504CF9E0BFBF6D4E540DDDA4829F9B675ACF63E89 ] iaStor          C:\Windows\system32\drivers\iaStor.sys
22:26:18.0210 0x37a8  iaStor - ok
22:26:18.0254 0x37a8  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:26:18.0264 0x37a8  iaStorV - ok
22:26:18.0329 0x37a8  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:26:18.0347 0x37a8  idsvc - ok
22:26:18.0386 0x37a8  IEEtwCollectorService - ok
22:26:18.0805 0x37a8  [ 66DC0CE2D1867B8178EAA0E11930DBD7, 8870CBBEDD81E0886E9021FB43A3B26486C2E8CD05A805028A136950B3FA809A ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
22:26:19.0090 0x37a8  igfx - ok
22:26:19.0131 0x37a8  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
22:26:19.0133 0x37a8  iirsp - ok
22:26:19.0207 0x37a8  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
22:26:19.0226 0x37a8  IKEEXT - ok
22:26:19.0263 0x37a8  [ DD587A55390ED2295BCE6D36AD567DA9, AEB7DCB8EF89BEE8D9649A05FC482B1E4E3F44243D57A2577C862EB69166C48E ] Impcd           C:\Windows\system32\drivers\Impcd.sys
22:26:19.0267 0x37a8  Impcd - ok
22:26:19.0384 0x37a8  [ 8FED6428FDE53D7F4C105095F22524BE, 58DE45CB61643B25ABA73BD77553021FDD9AA904749582B10CDC662534CD77E7 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:26:19.0442 0x37a8  IntcAzAudAddService - ok
22:26:19.0476 0x37a8  [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
22:26:19.0483 0x37a8  IntcDAud - ok
22:26:19.0524 0x37a8  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
22:26:19.0525 0x37a8  intelide - ok
22:26:19.0537 0x37a8  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
22:26:19.0539 0x37a8  intelppm - ok
22:26:19.0579 0x37a8  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:26:19.0582 0x37a8  IPBusEnum - ok
22:26:19.0598 0x37a8  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:26:19.0600 0x37a8  IpFilterDriver - ok
22:26:19.0647 0x37a8  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:26:19.0660 0x37a8  iphlpsvc - ok
22:26:19.0673 0x37a8  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
22:26:19.0675 0x37a8  IPMIDRV - ok
22:26:19.0681 0x37a8  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:26:19.0684 0x37a8  IPNAT - ok
22:26:19.0761 0x37a8  [ 842D1EDD0F2A6E0E6631BB96BAAA01DE, 9CDD0B99F2C5DAD573A9EA8D5AB2DBFD7A941454CBBA5BFE34E49F2D4EE96A90 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
22:26:19.0774 0x37a8  iPod Service - ok
22:26:19.0825 0x37a8  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:26:19.0826 0x37a8  IRENUM - ok
22:26:19.0830 0x37a8  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:26:19.0831 0x37a8  isapnp - ok
22:26:19.0881 0x37a8  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
22:26:19.0887 0x37a8  iScsiPrt - ok
22:26:19.0932 0x37a8  [ 43F319DE026E04B9CF9219A14BF24FE8, 7DBB28CBDE53126AA28FF89535D92130294536F5348E0EC853892A507AEE2A13 ] JMCR            C:\Windows\system32\DRIVERS\jmcr.sys
22:26:19.0936 0x37a8  JMCR - ok
22:26:19.0950 0x37a8  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:26:19.0951 0x37a8  kbdclass - ok
22:26:19.0975 0x37a8  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
22:26:19.0976 0x37a8  kbdhid - ok
22:26:19.0989 0x37a8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
22:26:19.0991 0x37a8  KeyIso - ok
22:26:20.0049 0x37a8  [ 07071C1E3CD8F0F9114AAC8B072CA1E5, F72E49D9A77BBE28B135D5DDBD9037083D90400A6D61DA45B5D53C4ACFFAF932 ] KMWDFILTER      C:\Windows\system32\DRIVERS\KMWDFILTER.sys
22:26:20.0050 0x37a8  KMWDFILTER - ok
22:26:20.0106 0x37a8  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:26:20.0109 0x37a8  KSecDD - ok
22:26:20.0150 0x37a8  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:26:20.0154 0x37a8  KSecPkg - ok
22:26:20.0169 0x37a8  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:26:20.0170 0x37a8  ksthunk - ok
22:26:20.0209 0x37a8  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:26:20.0222 0x37a8  KtmRm - ok
22:26:20.0293 0x37a8  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
22:26:20.0302 0x37a8  LanmanServer - ok
22:26:20.0320 0x37a8  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:26:20.0324 0x37a8  LanmanWorkstation - ok
22:26:20.0348 0x37a8  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:26:20.0350 0x37a8  lltdio - ok
22:26:20.0384 0x37a8  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:26:20.0391 0x37a8  lltdsvc - ok
22:26:20.0407 0x37a8  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:26:20.0408 0x37a8  lmhosts - ok
22:26:20.0541 0x37a8  [ E7B1D52CD77BF1C4608991F70C872F9F, 36D64AF4E5B06C45E56C131ACA64F2409F1C7D99516D2319919827E25A406FCC ] LMIGuardianSvc  C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
22:26:20.0550 0x37a8  LMIGuardianSvc - ok
22:26:20.0586 0x37a8  [ 0F28935ECF1FBDEC22BAF720A5A94564, A4E8E13FD7FE1882243AD7139D5E0925F09069616920382F952D79586A4936E7 ] LMIInfo         C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys
22:26:20.0587 0x37a8  LMIInfo - ok
22:26:20.0608 0x37a8  [ 1A7F86CB54E5FC6668366A497D6227F3, 96E1C95BDCE1E7498C6CDFCB8F6F0FD7326BD14219AF29BB4EB9C2CECB90A110 ] LMIMaint        C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
22:26:20.0613 0x37a8  LMIMaint - ok
22:26:20.0671 0x37a8  [ 413ECDCFAD9A82804D3674C8D7EEC24E, C8A65ED0B079D16D1A4449E840B4A9475388FBE61B5A84DFEFC35F4FB3B9A9B1 ] lmimirr         C:\Windows\system32\DRIVERS\lmimirr.sys
22:26:20.0672 0x37a8  lmimirr - ok
22:26:20.0689 0x37a8  LMIRfsClientNP - ok
22:26:20.0709 0x37a8  [ C57D3FAA50E6F395759FFB7C709BD944, 7B0B86F0E710934D57801E1F7BB048AD878F871147B2A16BBF81219A4022B499 ] LMIRfsDriver    C:\Windows\system32\drivers\LMIRfsDriver.sys
22:26:20.0711 0x37a8  LMIRfsDriver - ok
22:26:20.0772 0x37a8  [ 7F32D4C47A50E7223491E8FB9359907D, 6D3F59A8D006BED3234697933D09C8EE8F7A9F4A4196CFA878F8E8A929B24CE5 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:26:20.0782 0x37a8  LMS - ok
22:26:20.0809 0x37a8  [ D3760BC17E1755091B7120CF32DBF56B, 2B31CA0CD838BEE0103054520E2FBEA2436A07D99E711B14543B85F3A511478F ] LogMeIn         C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
22:26:20.0820 0x37a8  LogMeIn - ok
22:26:20.0847 0x37a8  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
22:26:20.0850 0x37a8  LSI_FC - ok
22:26:20.0870 0x37a8  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
22:26:20.0872 0x37a8  LSI_SAS - ok
22:26:20.0879 0x37a8  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
22:26:20.0881 0x37a8  LSI_SAS2 - ok
22:26:20.0888 0x37a8  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
22:26:20.0890 0x37a8  LSI_SCSI - ok
22:26:20.0929 0x37a8  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
22:26:20.0932 0x37a8  luafv - ok
22:26:20.0982 0x37a8  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:26:20.0985 0x37a8  Mcx2Svc - ok
22:26:20.0989 0x37a8  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
22:26:20.0990 0x37a8  megasas - ok
22:26:21.0002 0x37a8  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
22:26:21.0009 0x37a8  MegaSR - ok
22:26:21.0050 0x37a8  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
22:26:21.0051 0x37a8  MEIx64 - ok
22:26:21.0078 0x37a8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
22:26:21.0080 0x37a8  MMCSS - ok
22:26:21.0085 0x37a8  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
22:26:21.0087 0x37a8  Modem - ok
22:26:21.0101 0x37a8  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:26:21.0102 0x37a8  monitor - ok
22:26:21.0111 0x37a8  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:26:21.0112 0x37a8  mouclass - ok
22:26:21.0140 0x37a8  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:26:21.0141 0x37a8  mouhid - ok
22:26:21.0158 0x37a8  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:26:21.0161 0x37a8  mountmgr - ok
22:26:21.0221 0x37a8  [ AEE4E9CC59CDEB55B1ECB0E596E796BE, 674F6F38D86D238AFD6223E03A862F8B43DD8499FBC2D4B7A04E510EC5EACF3B ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:26:21.0223 0x37a8  MozillaMaintenance - ok
22:26:21.0258 0x37a8  [ 9EB89625A82AC961F25E7C865947BF9A, 91DB9530CDE883DC60BE621AC4210ACD069631D9466E37411D9D6AEE587098D9 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
22:26:21.0265 0x37a8  MpFilter - ok
22:26:21.0284 0x37a8  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:26:21.0291 0x37a8  mpio - ok
22:26:21.0350 0x37a8  MpKslce2348fb - ok
22:26:21.0380 0x37a8  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:26:21.0383 0x37a8  mpsdrv - ok
22:26:21.0429 0x37a8  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:26:21.0451 0x37a8  MpsSvc - ok
22:26:21.0514 0x37a8  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:26:21.0518 0x37a8  MRxDAV - ok
22:26:21.0564 0x37a8  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:26:21.0569 0x37a8  mrxsmb - ok
22:26:21.0622 0x37a8  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:26:21.0629 0x37a8  mrxsmb10 - ok
22:26:21.0648 0x37a8  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:26:21.0652 0x37a8  mrxsmb20 - ok
22:26:21.0690 0x37a8  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:26:21.0691 0x37a8  msahci - ok
22:26:21.0717 0x37a8  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:26:21.0720 0x37a8  msdsm - ok
22:26:21.0734 0x37a8  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
22:26:21.0738 0x37a8  MSDTC - ok
22:26:21.0756 0x37a8  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:26:21.0757 0x37a8  Msfs - ok
22:26:21.0781 0x37a8  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:26:21.0782 0x37a8  mshidkmdf - ok
22:26:21.0795 0x37a8  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:26:21.0796 0x37a8  msisadrv - ok
22:26:21.0821 0x37a8  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:26:21.0825 0x37a8  MSiSCSI - ok
22:26:21.0829 0x37a8  msiserver - ok
22:26:21.0863 0x37a8  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:26:21.0863 0x37a8  MSKSSRV - ok
22:26:21.0899 0x37a8  [ 89F2AEDC2788696702141AB82C3E7866, E166CBD8D3C708737C37172221945D8E56C25C2CC750889C3CE14AA2DE750F33 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
22:26:21.0900 0x37a8  MsMpSvc - ok
22:26:21.0922 0x37a8  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:26:21.0923 0x37a8  MSPCLOCK - ok
22:26:21.0935 0x37a8  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:26:21.0936 0x37a8  MSPQM - ok
22:26:21.0959 0x37a8  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:26:21.0968 0x37a8  MsRPC - ok
22:26:21.0985 0x37a8  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
22:26:21.0986 0x37a8  mssmbios - ok
22:26:21.0989 0x37a8  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:26:21.0990 0x37a8  MSTEE - ok
22:26:22.0003 0x37a8  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
22:26:22.0004 0x37a8  MTConfig - ok
22:26:22.0017 0x37a8  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
22:26:22.0019 0x37a8  Mup - ok
22:26:22.0062 0x37a8  [ 6ED8935257672F4CD04A88A0F3DE093D, 0417FD87546B105510BB29539AE29EB1DFE522416FC64E2A2ACB2DF24EAC7B1E ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
22:26:22.0071 0x37a8  MyWiFiDHCPDNS - ok
22:26:22.0109 0x37a8  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
22:26:22.0126 0x37a8  napagent - ok
22:26:22.0162 0x37a8  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:26:22.0171 0x37a8  NativeWifiP - ok
22:26:22.0269 0x37a8  [ E0E4A1F81A7D69C595A8A9DDAD084C19, 8F55F3637AE8BFFB0ACE37AFC5122026525137E0B2923899B779C1BD08DF0E22 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
22:26:22.0290 0x37a8  NAUpdate - ok
22:26:22.0373 0x37a8  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:26:22.0399 0x37a8  NDIS - ok
22:26:22.0421 0x37a8  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:26:22.0423 0x37a8  NdisCap - ok
22:26:22.0450 0x37a8  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:26:22.0451 0x37a8  NdisTapi - ok
22:26:22.0462 0x37a8  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:26:22.0463 0x37a8  Ndisuio - ok
22:26:22.0477 0x37a8  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:26:22.0481 0x37a8  NdisWan - ok
22:26:22.0495 0x37a8  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:26:22.0497 0x37a8  NDProxy - ok
22:26:22.0556 0x37a8  [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
22:26:22.0557 0x37a8  Netaapl - ok
22:26:22.0623 0x37a8  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:26:22.0624 0x37a8  NetBIOS - ok
22:26:22.0642 0x37a8  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:26:22.0648 0x37a8  NetBT - ok
22:26:22.0655 0x37a8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
22:26:22.0657 0x37a8  Netlogon - ok
22:26:22.0690 0x37a8  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
22:26:22.0699 0x37a8  Netman - ok
22:26:22.0787 0x37a8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:26:22.0792 0x37a8  NetMsmqActivator - ok
22:26:22.0810 0x37a8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:26:22.0815 0x37a8  NetPipeActivator - ok
22:26:22.0851 0x37a8  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
22:26:22.0866 0x37a8  netprofm - ok
22:26:22.0903 0x37a8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:26:22.0907 0x37a8  NetTcpActivator - ok
22:26:22.0925 0x37a8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:26:22.0929 0x37a8  NetTcpPortSharing - ok
22:26:23.0242 0x37a8  [ 5D262402B0634C998F8CBCEAD7DD8676, 535C869C4522B012A7FB600382D46D6E5F242C18F28590FD26A918648B19EDFD ] NETwNs64        C:\Windows\system32\DRIVERS\NETwNs64.sys
22:26:23.0456 0x37a8  NETwNs64 - ok
22:26:23.0518 0x37a8  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
22:26:23.0520 0x37a8  nfrd960 - ok
22:26:23.0548 0x37a8  [ C3E0696C3B42F694C5822776AA6FFFDF, 80C3DEC2C48500F96C9E677450EFC1ADA9FE9FBB70F4CC2D7D9244B1A515418B ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
22:26:23.0552 0x37a8  NisDrv - ok
22:26:23.0585 0x37a8  [ DCEE3592299B2229A0DB98CB415059A2, 709AAA095DF44DDCB6159CE1635AB05EC666D845445790E569F56B297DC64AC3 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
22:26:23.0594 0x37a8  NisSrv - ok
22:26:23.0650 0x37a8  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:26:23.0659 0x37a8  NlaSvc - ok
22:26:23.0821 0x37a8  [ B9B72FAAAA41D59B73B88FE3DD737ED1, 050E741FB5313523340B19C9C168611222C4AE9A6084FE3E2F908A49EA909A29 ] NOBU            C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
22:26:23.0900 0x37a8  NOBU - ok
22:26:23.0958 0x37a8  [ 351533ACC2A069B94E80BBFC177E8FDF, 54B2749E0496ECC94CE65657627762B485CBC825767BAEDDAD0D2598820FFB9E ] NPF             C:\Windows\system32\drivers\npf.sys
22:26:23.0959 0x37a8  NPF - ok
22:26:23.0978 0x37a8  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:26:23.0979 0x37a8  Npfs - ok
22:26:23.0995 0x37a8  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
22:26:23.0998 0x37a8  nsi - ok
22:26:24.0017 0x37a8  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:26:24.0018 0x37a8  nsiproxy - ok
22:26:24.0134 0x37a8  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:26:24.0170 0x37a8  Ntfs - ok
22:26:24.0179 0x37a8  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
22:26:24.0179 0x37a8  Null - ok
22:26:24.0216 0x37a8  [ 0EBC9D13CD96C15B1B18D8678A609E4B, B10896DE16B0C102DFB3E73A6C11A1982C5B428015DAE1F8776BCEF94A0F75C6 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
22:26:24.0219 0x37a8  nusb3hub - ok
22:26:24.0237 0x37a8  [ 7BDEC000D56D485021D9C1E63C2F81CA, 7F1303FD0371AF8715BFC38433B730C797170AEF10C7DB845B7B547DA8DBB5D5 ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
22:26:24.0241 0x37a8  nusb3xhc - ok
22:26:24.0294 0x37a8  [ B4F53BCA4C688FF47F04FA90098F896E, 6051CFC0CFE659A2C4CFC1029F19CF1B1B98A1A5E59C2B3A10D7B3407A7FA5C0 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
22:26:24.0300 0x37a8  NVHDA - ok
22:26:24.0386 0x37a8  [ C6FEAFA6F683C64509788BE4DFF61FEE, 50AADE4530EF1DE274260EF90CE198850C01B82AAD6E82971A1A4CED54FF4CFB ] nvkflt          C:\Windows\system32\DRIVERS\nvkflt.sys
22:26:24.0394 0x37a8  nvkflt - ok
22:26:24.0813 0x37a8  [ 0AC797F70F2F3E5B69A34FF2F63496F3, 80A811F8234BA00779BA76AAF41E830FB6CED03667E6E8F430C14DEBF2E45DD9 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:26:25.0087 0x37a8  nvlddmkm - ok
22:26:25.0249 0x37a8  [ 048C6FACA905A7DF0A86D3CC31D7E6AE, 7222B301DBBDFF15B038E13FEA076759D8AC392F5145ECD60A640BDA6CFABE8C ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
22:26:25.0284 0x37a8  NvNetworkService - ok
22:26:25.0312 0x37a8  [ C045199456CE8B823AD85CB9507DEA3C, 9C070B7463AB22D1AFC116E89C690FD552ED68D138F9DD3BA9FAD9BB652DC940 ] nvpciflt        C:\Windows\system32\DRIVERS\nvpciflt.sys
22:26:25.0314 0x37a8  nvpciflt - ok
22:26:25.0335 0x37a8  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:26:25.0338 0x37a8  nvraid - ok
22:26:25.0380 0x37a8  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:26:25.0384 0x37a8  nvstor - ok
22:26:25.0508 0x37a8  [ 3ABCD8F8853FEB12B961E9A48FC12133, 58255D53E810EE0D89FA2F1DC9D6208BF44F3C0FDE74A9264FB740024F1EDD44 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
22:26:25.0509 0x37a8  NvStreamKms - ok
22:26:25.0543 0x37a8  NvStreamSvc - ok
22:26:25.0573 0x37a8  [ 92D06926C5DA2A2E62E8FB5104F44D92, 7F8146D15AC64F07A4603FF30580E32848113453DA845CAFAE3D16A05E8CA81E ] NvStUSB         C:\Windows\system32\drivers\nvstusb.sys
22:26:25.0576 0x37a8  NvStUSB - ok
22:26:25.0634 0x37a8  [ C135A25E8CF21EB631AB041ABB1F73EA, D0A3DC0411E888D0934B7579EEB980FA7824E3F22F70819A33411D8B8BC9EE42 ] NVSvc           C:\Windows\system32\nvvsvc.exe
22:26:25.0655 0x37a8  NVSvc - ok
22:26:25.0724 0x37a8  [ 75034A4D7C02327D150B617571D4196A, 8E7DAFEC4307E883D52BD0B5F0732E26E019C953770B52ACBBAD3074A66393CB ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
22:26:25.0726 0x37a8  nvvad_WaveExtensible - ok
22:26:25.0749 0x37a8  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:26:25.0752 0x37a8  nv_agp - ok
22:26:25.0771 0x37a8  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:26:25.0773 0x37a8  ohci1394 - ok
22:26:25.0817 0x37a8  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:26:25.0821 0x37a8  ose - ok
22:26:26.0009 0x37a8  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:26:26.0124 0x37a8  osppsvc - ok
22:26:26.0157 0x37a8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:26:26.0167 0x37a8  p2pimsvc - ok
22:26:26.0197 0x37a8  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
22:26:26.0209 0x37a8  p2psvc - ok
22:26:26.0218 0x37a8  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
22:26:26.0220 0x37a8  Parport - ok
22:26:26.0254 0x37a8  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:26:26.0256 0x37a8  partmgr - ok
22:26:26.0273 0x37a8  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:26:26.0278 0x37a8  PcaSvc - ok
22:26:26.0296 0x37a8  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
22:26:26.0300 0x37a8  pci - ok
22:26:26.0346 0x37a8  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
22:26:26.0347 0x37a8  pciide - ok
22:26:26.0366 0x37a8  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
22:26:26.0373 0x37a8  pcmcia - ok
22:26:26.0388 0x37a8  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:26:26.0390 0x37a8  pcw - ok
22:26:26.0422 0x37a8  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:26:26.0439 0x37a8  PEAUTH - ok
22:26:26.0501 0x37a8  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:26:26.0502 0x37a8  PerfHost - ok
22:26:26.0563 0x37a8  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
22:26:26.0594 0x37a8  pla - ok
22:26:26.0657 0x37a8  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:26:26.0667 0x37a8  PlugPlay - ok
22:26:26.0682 0x37a8  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:26:26.0684 0x37a8  PNRPAutoReg - ok
22:26:26.0702 0x37a8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:26:26.0710 0x37a8  PNRPsvc - ok
22:26:26.0749 0x37a8  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:26:26.0761 0x37a8  PolicyAgent - ok
22:26:26.0790 0x37a8  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
22:26:26.0796 0x37a8  Power - ok
22:26:26.0827 0x37a8  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:26:26.0830 0x37a8  PptpMiniport - ok
22:26:26.0845 0x37a8  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
22:26:26.0846 0x37a8  Processor - ok
22:26:26.0895 0x37a8  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
22:26:26.0901 0x37a8  ProfSvc - ok
22:26:26.0912 0x37a8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:26:26.0913 0x37a8  ProtectedStorage - ok
22:26:26.0938 0x37a8  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:26:26.0941 0x37a8  Psched - ok
22:26:26.0972 0x37a8  [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
22:26:26.0974 0x37a8  PxHlpa64 - ok
22:26:27.0006 0x37a8  [ 0928BD20273625622722FE1DE5BBDE57, 5313C222F8810D3A62CCE64482B5E50E58BBE2A2C298A23C84A454C34324AC52 ] qicflt          C:\Windows\system32\DRIVERS\qicflt.sys
22:26:27.0007 0x37a8  qicflt - ok
22:26:27.0068 0x37a8  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
22:26:27.0101 0x37a8  ql2300 - ok
22:26:27.0109 0x37a8  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
22:26:27.0112 0x37a8  ql40xx - ok
22:26:27.0148 0x37a8  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
22:26:27.0154 0x37a8  QWAVE - ok
22:26:27.0163 0x37a8  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:26:27.0164 0x37a8  QWAVEdrv - ok
22:26:27.0175 0x37a8  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:26:27.0176 0x37a8  RasAcd - ok
22:26:27.0202 0x37a8  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:26:27.0203 0x37a8  RasAgileVpn - ok
22:26:27.0220 0x37a8  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
22:26:27.0223 0x37a8  RasAuto - ok
22:26:27.0240 0x37a8  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:26:27.0243 0x37a8  Rasl2tp - ok
22:26:27.0261 0x37a8  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
22:26:27.0270 0x37a8  RasMan - ok
22:26:27.0284 0x37a8  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:26:27.0286 0x37a8  RasPppoe - ok
22:26:27.0301 0x37a8  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:26:27.0303 0x37a8  RasSstp - ok
22:26:27.0394 0x37a8  [ E721E193EC89D571286E21CAD2078EB9, E087100405F723D695AF9CBBA086AF81359EAC3EA02C7E0C978FD26514F04BC9 ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
22:26:27.0402 0x37a8  Razer Game Scanner Service - ok
22:26:27.0423 0x37a8  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:26:27.0429 0x37a8  rdbss - ok
22:26:27.0442 0x37a8  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
22:26:27.0443 0x37a8  rdpbus - ok
22:26:27.0454 0x37a8  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:26:27.0455 0x37a8  RDPCDD - ok
22:26:27.0479 0x37a8  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:26:27.0480 0x37a8  RDPENCDD - ok
22:26:27.0484 0x37a8  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:26:27.0485 0x37a8  RDPREFMP - ok
22:26:27.0530 0x37a8  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:26:27.0534 0x37a8  RDPWD - ok
22:26:27.0562 0x37a8  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:26:27.0567 0x37a8  rdyboost - ok
22:26:27.0645 0x37a8  [ 189C5A8D2098E0AA14FD157A954B34FC, 2549746D1C6F7FDCB632BE0E7386FA0CDDBA0EA0EC9DD88A8348A03B2C3722E0 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
22:26:27.0663 0x37a8  RegSrvc - ok
22:26:27.0694 0x37a8  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:26:27.0697 0x37a8  RemoteAccess - ok
22:26:27.0728 0x37a8  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:26:27.0733 0x37a8  RemoteRegistry - ok
22:26:27.0823 0x37a8  [ 3C957189B31C34D3AD21967B12B6AED7, 878FE6EA03F60592D6D557B905A5119E2CC836C2A6A86ED2867C3C9B0F0FDBA2 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
22:26:27.0847 0x37a8  RoxMediaDB12OEM - ok
22:26:27.0877 0x37a8  [ 2B73088CC2CA757A172B425C9398E5BC, 3D296B4D6F66F7729CC48FE54456E6E6D8207DBA7E31D66653566C128E53163B ] RoxWatch12      C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
22:26:27.0882 0x37a8  RoxWatch12 - ok
22:26:27.0967 0x37a8  [ B60F58F175DE20A6739194E85B035178, 6E66D6041AF0B69896E4556F9FF3A3AA70CF4B09FFBE68E14E60313C5E3FFDDB ] rpcapd          C:\Program Files (x86)\WinPcap\rpcapd.exe
22:26:27.0970 0x37a8  rpcapd - ok
22:26:27.0990 0x37a8  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:26:27.0993 0x37a8  RpcEptMapper - ok
22:26:28.0012 0x37a8  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
22:26:28.0014 0x37a8  RpcLocator - ok
22:26:28.0042 0x37a8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
22:26:28.0055 0x37a8  RpcSs - ok
22:26:28.0081 0x37a8  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:26:28.0083 0x37a8  rspndr - ok
22:26:28.0166 0x37a8  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
22:26:28.0178 0x37a8  RTL8167 - ok
22:26:28.0250 0x37a8  [ 30916D83EB23CC66C6C670C3A7F67F20, 1FBCC5E2910D1E61474C0043C0F8DBC9A982983164A03A2DA842459AA9DE4394 ] RTLU3E8023-W7-64 C:\Windows\system32\DRIVERS\rtu30x64w7.sys
22:26:28.0252 0x37a8  RTLU3E8023-W7-64 - ok
22:26:28.0330 0x37a8  [ 652F9068C05A7FB83291DF616CDC8A8B, 13136DE67C31C5781B9E484C1AF806F43AF8EA0843D5A4018CBE7191ADD31A54 ] RzDxgk          C:\Windows\system32\drivers\RzDxgk.sys
22:26:28.0333 0x37a8  RzDxgk - ok
22:26:28.0412 0x37a8  [ B6105E2B2F81D8CBA5A5E005F97EA4F5, CDFDEEEB1C351DF0C55B4FFE318B93939DC57AC9919B64B2FC67F6D39CF4A77F ] rzendpt         C:\Windows\system32\DRIVERS\rzendpt.sys
22:26:28.0414 0x37a8  rzendpt - ok
22:26:28.0439 0x37a8  [ 2CEDF1DC70CEFB415354180A507104CE, AD5B2792B05337F809C375A534F421B3D4B9955B19281FBC635A6CAC9DD05ED4 ] RzFilter        C:\Windows\system32\drivers\RzFilter.sys
22:26:28.0441 0x37a8  RzFilter - ok
22:26:28.0452 0x37a8  [ 63D0BF0DE18FEAF0A524B710A7D87732, AFC24C8BE78FD9290571782EF30C6FF7E48FDACDD58E1FB5E16928A3835DA4D6 ] rzmpos          C:\Windows\system32\DRIVERS\rzmpos.sys
22:26:28.0453 0x37a8  rzmpos - ok
22:26:28.0601 0x37a8  [ 8F8C6EDB43BA9E60917ED76EA2E02CDE, AED12241690DFE6FAFF54D85FFD0926B84135BBEE1F9C9ED9850E11F4D5330EE ] RzOvlMon        C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe
22:26:28.0603 0x37a8  RzOvlMon - ok
22:26:28.0636 0x37a8  [ F17F84511E7DFDEEAB646F0699A006D7, 5237937841FBD1F99A5D6161DEBA26182DDAF617CA98946EE7DB0AB67FC149EA ] rzpmgrk         C:\Windows\system32\drivers\rzpmgrk.sys
22:26:28.0637 0x37a8  rzpmgrk - ok
22:26:28.0687 0x37a8  [ 78091471949AD265547B33E7A24C3981, 15B3845B38779FD09AFAADE5145FA6FCA774D2A35EB405B18E09B5D6775EB39B ] rzpnk           C:\Windows\system32\drivers\rzpnk.sys
22:26:28.0690 0x37a8  rzpnk - ok
22:26:28.0768 0x37a8  [ D30A8C2D23A7AB6664028A9C72E1809E, 1F2486F02A332CA68BA82B69B0188861EA0BA470D0A8CA1C0A4A771D84BC3613 ] rzudd           C:\Windows\system32\DRIVERS\rzudd.sys
22:26:28.0773 0x37a8  rzudd - ok
22:26:28.0785 0x37a8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
22:26:28.0786 0x37a8  SamSs - ok
22:26:28.0816 0x37a8  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:26:28.0818 0x37a8  sbp2port - ok
22:26:28.0856 0x37a8  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:26:28.0862 0x37a8  SCardSvr - ok
22:26:28.0872 0x37a8  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:26:28.0873 0x37a8  scfilter - ok
22:26:28.0924 0x37a8  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
22:26:28.0950 0x37a8  Schedule - ok
22:26:28.0975 0x37a8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:26:28.0977 0x37a8  SCPolicySvc - ok
22:26:29.0004 0x37a8  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
22:26:29.0006 0x37a8  sdbus - ok
22:26:29.0028 0x37a8  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:26:29.0034 0x37a8  SDRSVC - ok
22:26:29.0057 0x37a8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:26:29.0058 0x37a8  secdrv - ok
22:26:29.0074 0x37a8  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
22:26:29.0076 0x37a8  seclogon - ok
22:26:29.0091 0x37a8  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
22:26:29.0094 0x37a8  SENS - ok
22:26:29.0111 0x37a8  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:26:29.0113 0x37a8  SensrSvc - ok
22:26:29.0141 0x37a8  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
22:26:29.0142 0x37a8  Serenum - ok
22:26:29.0148 0x37a8  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
22:26:29.0150 0x37a8  Serial - ok
22:26:29.0165 0x37a8  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
22:26:29.0166 0x37a8  sermouse - ok
22:26:29.0186 0x37a8  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
22:26:29.0190 0x37a8  SessionEnv - ok
22:26:29.0201 0x37a8  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
22:26:29.0202 0x37a8  sffdisk - ok
22:26:29.0210 0x37a8  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:26:29.0211 0x37a8  sffp_mmc - ok
22:26:29.0219 0x37a8  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
22:26:29.0219 0x37a8  sffp_sd - ok
22:26:29.0236 0x37a8  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
22:26:29.0237 0x37a8  sfloppy - ok
22:26:29.0291 0x37a8  [ 2046AA7491DE7EFA4D70E615D9BC9D09, A8763D059AD68D5842C407FA9644E0B129BEF0F63CD87E62B80B05441EDC3489 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
22:26:29.0307 0x37a8  Sftfs - ok
22:26:29.0409 0x37a8  [ 77C5A741A7452812F278EF2C18478862, 0B763679EB7EFB8ED9DCE7B429706E939BB65BA6BCF1BAE0E0426D4E87074B8C ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
22:26:29.0420 0x37a8  sftlist - ok
22:26:29.0481 0x37a8  [ 0E0446BC4D51BE4263ACB7E33491191C, 2AD039FB440560658C4E06F67CC192EF71577EF3FF789A43C08430CE5EAE5A70 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
22:26:29.0487 0x37a8  Sftplay - ok
22:26:29.0501 0x37a8  [ C5FB982CD266E604ED3142102C26D62C, A6BC0D72E98F924274ECAD49C85F0775D1CD45B97CD43F53DF3992B560835FC5 ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
22:26:29.0502 0x37a8  Sftredir - ok
22:26:29.0599 0x37a8  [ 74EC60E20516AAA573BE74F31175270F, 35A68231368DEE46FEF2A4E30BFAAC38F093FC5A362A7491ED38BDE11F0FC356 ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
22:26:29.0635 0x37a8  SftService - ok
22:26:29.0652 0x37a8  [ 2575511AF67AA1FA068CCC4918E2C2A3, 3152FF5AC2CF6FE966DA59B1B33E22F9BD9B6BB4310441870528364BA9501A4D ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
22:26:29.0653 0x37a8  Sftvol - ok
22:26:29.0696 0x37a8  [ 39B1D0A636A400304565D4521FAD6D77, 1F01DB35B5A477AA7A77585C9304E6B5F3E67807531305BCA93A7F494CED8F59 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
22:26:29.0701 0x37a8  sftvsa - ok
22:26:29.0738 0x37a8  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:26:29.0747 0x37a8  SharedAccess - ok
22:26:29.0782 0x37a8  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:26:29.0791 0x37a8  ShellHWDetection - ok
22:26:29.0814 0x37a8  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
22:26:29.0815 0x37a8  SiSRaid2 - ok
22:26:29.0831 0x37a8  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
22:26:29.0833 0x37a8  SiSRaid4 - ok
22:26:29.0931 0x37a8  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:26:29.0935 0x37a8  SkypeUpdate - ok
22:26:29.0952 0x37a8  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:26:29.0954 0x37a8  Smb - ok
22:26:29.0971 0x37a8  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:26:29.0973 0x37a8  SNMPTRAP - ok
22:26:30.0068 0x37a8  [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan        C:\Windows\syswow64\speedfan.sys
22:26:30.0070 0x37a8  speedfan - ok
22:26:30.0082 0x37a8  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:26:30.0082 0x37a8  spldr - ok
22:26:30.0142 0x37a8  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
22:26:30.0157 0x37a8  Spooler - ok
22:26:30.0294 0x37a8  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
22:26:30.0381 0x37a8  sppsvc - ok
22:26:30.0409 0x37a8  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:26:30.0412 0x37a8  sppuinotify - ok
22:26:30.0460 0x37a8  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:26:30.0470 0x37a8  srv - ok
22:26:30.0495 0x37a8  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:26:30.0504 0x37a8  srv2 - ok
22:26:30.0519 0x37a8  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:26:30.0524 0x37a8  srvnet - ok
22:26:30.0538 0x37a8  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:26:30.0544 0x37a8  SSDPSRV - ok
22:26:30.0556 0x37a8  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:26:30.0559 0x37a8  SstpSvc - ok
22:26:30.0599 0x37a8  [ 92E7F6666633D2DD91D527503DAA7BE0, E97C7FFCAF2C7A83B270B6C797A91C2731FEA26874FE1E59B4CB55D5D98744BB ] stdcfltn        C:\Windows\system32\DRIVERS\stdcfltn.sys
22:26:30.0600 0x37a8  stdcfltn - ok
22:26:30.0706 0x37a8  [ 54BF0E8619D58271851670649764AA92, A5BFBEE4CF37C43755B7727616FD2E2FEEF8F2DF59D80A5C2B15745B0B92A652 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
22:26:30.0717 0x37a8  Steam Client Service - ok
22:26:30.0845 0x37a8  [ 718D79F2E7EC3AFFD3661DA81F93BBEA, BA2A4E58E5EE06392EE6F4C2E738DC807EC5A8B9F6DD4B7935FE27CBC648E390 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
22:26:30.0854 0x37a8  Stereo Service - ok
22:26:30.0885 0x37a8  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
22:26:30.0886 0x37a8  stexstor - ok
22:26:30.0921 0x37a8  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
22:26:30.0934 0x37a8  stisvc - ok
22:26:30.0989 0x37a8  [ 7731F46EC0D687A931CBA063E8F90EF0, 5CF996A209756B901316C4406C7D3E52ECC9C15A1BDB0D4D9C77846AB29FD040 ] stllssvr        C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
22:26:30.0991 0x37a8  stllssvr - ok
22:26:31.0007 0x37a8  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
22:26:31.0007 0x37a8  swenum - ok
22:26:31.0040 0x37a8  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
22:26:31.0053 0x37a8  swprv - ok
22:26:31.0131 0x37a8  [ 5E3B232A614339399ACC71FA3AAAAA6B, CBB6253A1D7B3091ABF0BB03B9CC9F36C812E8C082380AA44A4D1851D2610C75 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
22:26:31.0161 0x37a8  SynTP - ok
22:26:31.0225 0x37a8  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
22:26:31.0265 0x37a8  SysMain - ok
22:26:31.0279 0x37a8  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:26:31.0282 0x37a8  TabletInputService - ok
22:26:31.0304 0x37a8  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:26:31.0313 0x37a8  TapiSrv - ok
22:26:31.0321 0x37a8  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
22:26:31.0324 0x37a8  TBS - ok
22:26:31.0433 0x37a8  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:26:31.0473 0x37a8  Tcpip - ok
22:26:31.0548 0x37a8  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:26:31.0589 0x37a8  TCPIP6 - ok
22:26:31.0633 0x37a8  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:26:31.0635 0x37a8  tcpipreg - ok
22:26:31.0649 0x37a8  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:26:31.0650 0x37a8  TDPIPE - ok
22:26:31.0686 0x37a8  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:26:31.0687 0x37a8  TDTCP - ok
22:26:31.0701 0x37a8  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:26:31.0704 0x37a8  tdx - ok
22:26:31.0714 0x37a8  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
22:26:31.0716 0x37a8  TermDD - ok
22:26:31.0744 0x37a8  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
22:26:31.0760 0x37a8  TermService - ok
22:26:31.0774 0x37a8  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
22:26:31.0777 0x37a8  Themes - ok
22:26:31.0812 0x37a8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
22:26:31.0814 0x37a8  THREADORDER - ok
22:26:31.0825 0x37a8  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
22:26:31.0829 0x37a8  TrkWks - ok
22:26:31.0865 0x37a8  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:26:31.0870 0x37a8  TrustedInstaller - ok
22:26:31.0922 0x37a8  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:26:31.0923 0x37a8  tssecsrv - ok
22:26:31.0945 0x37a8  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
22:26:31.0947 0x37a8  TsUsbFlt - ok
22:26:31.0951 0x37a8  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
22:26:31.0952 0x37a8  TsUsbGD - ok
22:26:31.0982 0x37a8  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:26:31.0986 0x37a8  tunnel - ok
22:26:32.0036 0x37a8  [ FD24F98D2898BE093FE926604BE7DB99, F9851C57A2ED838AC76BB19FE2F62BB81C57DBBE2A2555F738B5D6725D39AD61 ] TurboB          C:\Windows\system32\DRIVERS\TurboB.sys
22:26:32.0037 0x37a8  TurboB - ok
22:26:32.0087 0x37a8  [ 600B406A04D90F577FEA8A88D7379F08, 77CC8E8AFB6F571A42D916C0B2FEFFD3A7A32A455C78228B407C6C9B6DED8CAD ] TurboBoost      C:\Program Files\Intel\TurboBoost\TurboBoost.exe
22:26:32.0091 0x37a8  TurboBoost - ok
22:26:32.0097 0x37a8  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
22:26:32.0099 0x37a8  uagp35 - ok
22:26:32.0125 0x37a8  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:26:32.0133 0x37a8  udfs - ok
22:26:32.0162 0x37a8  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:26:32.0165 0x37a8  UI0Detect - ok
22:26:32.0181 0x37a8  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:26:32.0182 0x37a8  uliagpkx - ok
22:26:32.0197 0x37a8  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:26:32.0199 0x37a8  umbus - ok
22:26:32.0215 0x37a8  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
22:26:32.0216 0x37a8  UmPass - ok
22:26:32.0333 0x37a8  [ 2C16648A12999AE69A9EBF41974B0BA2, 06008F61B6EC36CD34CB8C4BA983371DB7A9F4BEE15E5329F5E90FEEE300D258 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
22:26:32.0389 0x37a8  UNS - ok
22:26:32.0411 0x37a8  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
22:26:32.0420 0x37a8  upnphost - ok
22:26:32.0454 0x37a8  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
22:26:32.0455 0x37a8  USBAAPL64 - ok
22:26:32.0492 0x37a8  [ 91D3C92A44FC682DD791147604E79152, AA0B6799BF9C26C2C1793C91295288A4989AA43EC5E070B650DA7F0A142817CE ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:26:32.0495 0x37a8  usbccgp - ok
22:26:32.0541 0x37a8  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:26:32.0543 0x37a8  usbcir - ok
22:26:32.0582 0x37a8  [ F7FFDF2A1D19A76A87759126B244C816, C91F09D77E22D976952A46F7B93F611B719EDAF694D538242FA8FAF1BA9BB2F0 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
22:26:32.0584 0x37a8  usbehci - ok
22:26:32.0614 0x37a8  [ 245FE7FC634D6A993E682E0A9EBA4ABB, F7A536D215EE3A63358EC8B5946D7BB3B56357BF91347B07013E00DAC98775B6 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:26:32.0623 0x37a8  usbhub - ok
22:26:32.0658 0x37a8  [ C1A8966E0D09BFB501045105B30D86F2, 5BB95FBA441B898E258A3BFE174FC1042A04C19E25C59DE1FD90594290B11DA9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:26:32.0659 0x37a8  usbohci - ok
22:26:32.0690 0x37a8  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
22:26:32.0691 0x37a8  usbprint - ok
22:26:32.0733 0x37a8  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:26:32.0735 0x37a8  USBSTOR - ok
22:26:32.0776 0x37a8  [ 2E682DCE4319A90E02A327F8A427544A, 3528C5A4669BAD53041085C3E72C64388D308E42AD9D1FAC85B6F2FFD81610FB ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
22:26:32.0777 0x37a8  usbuhci - ok
22:26:32.0809 0x37a8  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
22:26:32.0813 0x37a8  usbvideo - ok
22:26:32.0838 0x37a8  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
22:26:32.0842 0x37a8  UxSms - ok
22:26:32.0852 0x37a8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
22:26:32.0854 0x37a8  VaultSvc - ok
22:26:32.0868 0x37a8  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
22:26:32.0870 0x37a8  vdrvroot - ok
22:26:32.0896 0x37a8  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
22:26:32.0909 0x37a8  vds - ok
22:26:32.0914 0x37a8  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:26:32.0915 0x37a8  vga - ok
22:26:32.0919 0x37a8  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:26:32.0920 0x37a8  VgaSave - ok
22:26:32.0943 0x37a8  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
22:26:32.0948 0x37a8  vhdmp - ok
22:26:32.0998 0x37a8  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:26:32.0999 0x37a8  viaide - ok
22:26:33.0020 0x37a8  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:26:33.0022 0x37a8  volmgr - ok
22:26:33.0058 0x37a8  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:26:33.0066 0x37a8  volmgrx - ok
22:26:33.0090 0x37a8  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:26:33.0096 0x37a8  volsnap - ok
22:26:33.0130 0x37a8  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
22:26:33.0134 0x37a8  vsmraid - ok
22:26:33.0199 0x37a8  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
22:26:33.0234 0x37a8  VSS - ok
22:26:33.0252 0x37a8  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
22:26:33.0253 0x37a8  vwifibus - ok
22:26:33.0276 0x37a8  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
22:26:33.0278 0x37a8  vwififlt - ok
22:26:33.0283 0x37a8  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
22:26:33.0284 0x37a8  vwifimp - ok
22:26:33.0303 0x37a8  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
22:26:33.0313 0x37a8  W32Time - ok
22:26:33.0319 0x37a8  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
22:26:33.0320 0x37a8  WacomPen - ok
22:26:33.0348 0x37a8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:26:33.0350 0x37a8  WANARP - ok
22:26:33.0381 0x37a8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:26:33.0384 0x37a8  Wanarpv6 - ok
22:26:33.0466 0x37a8  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
22:26:33.0493 0x37a8  WatAdminSvc - ok
22:26:33.0559 0x37a8  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
22:26:33.0592 0x37a8  wbengine - ok
22:26:33.0614 0x37a8  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:26:33.0623 0x37a8  WbioSrvc - ok
22:26:33.0645 0x37a8  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:26:33.0656 0x37a8  wcncsvc - ok
22:26:33.0669 0x37a8  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:26:33.0672 0x37a8  WcsPlugInService - ok
22:26:33.0693 0x37a8  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
22:26:33.0694 0x37a8  Wd - ok
22:26:33.0775 0x37a8  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:26:33.0792 0x37a8  Wdf01000 - ok
22:26:33.0820 0x37a8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:26:33.0823 0x37a8  WdiServiceHost - ok
22:26:33.0829 0x37a8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:26:33.0833 0x37a8  WdiSystemHost - ok
22:26:33.0890 0x37a8  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
22:26:33.0897 0x37a8  WebClient - ok
22:26:33.0919 0x37a8  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:26:33.0926 0x37a8  Wecsvc - ok
22:26:33.0937 0x37a8  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:26:33.0941 0x37a8  wercplsupport - ok
22:26:33.0970 0x37a8  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:26:33.0973 0x37a8  WerSvc - ok
22:26:34.0008 0x37a8  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:26:34.0008 0x37a8  WfpLwf - ok
22:26:34.0048 0x37a8  [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
22:26:34.0052 0x37a8  WimFltr - ok
22:26:34.0071 0x37a8  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:26:34.0072 0x37a8  WIMMount - ok
22:26:34.0094 0x37a8  WinDefend - ok
22:26:34.0109 0x37a8  WinHttpAutoProxySvc - ok
22:26:34.0171 0x37a8  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:26:34.0177 0x37a8  Winmgmt - ok
22:26:34.0259 0x37a8  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
22:26:34.0303 0x37a8  WinRM - ok
22:26:34.0349 0x37a8  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:26:34.0351 0x37a8  WinUsb - ok
22:26:34.0398 0x37a8  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:26:34.0418 0x37a8  Wlansvc - ok
22:26:34.0482 0x37a8  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:26:34.0484 0x37a8  wlcrasvc - ok
22:26:34.0615 0x37a8  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:26:34.0665 0x37a8  wlidsvc - ok
22:26:34.0698 0x37a8  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
22:26:34.0699 0x37a8  WmiAcpi - ok
22:26:34.0727 0x37a8  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:26:34.0732 0x37a8  wmiApSrv - ok
22:26:34.0775 0x37a8  WMPNetworkSvc - ok
22:26:34.0786 0x37a8  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:26:34.0789 0x37a8  WPCSvc - ok
22:26:34.0799 0x37a8  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:26:34.0803 0x37a8  WPDBusEnum - ok
22:26:34.0807 0x37a8  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:26:34.0808 0x37a8  ws2ifsl - ok
22:26:34.0820 0x37a8  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
22:26:34.0824 0x37a8  wscsvc - ok
22:26:34.0827 0x37a8  WSearch - ok
22:26:34.0944 0x37a8  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:26:34.0998 0x37a8  wuauserv - ok
22:26:35.0039 0x37a8  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:26:35.0041 0x37a8  WudfPf - ok
22:26:35.0062 0x37a8  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:26:35.0067 0x37a8  WUDFRd - ok
22:26:35.0080 0x37a8  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:26:35.0084 0x37a8  wudfsvc - ok
22:26:35.0165 0x37a8  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:26:35.0172 0x37a8  WwanSvc - ok
22:26:35.0245 0x37a8  [ 4A5CE13408945E525503B5F73D29B9C5, D58BB31AF17752508EA67931BF170CE46877DC204FC5DA7EED5A078AEB0CA0FD ] xnacc           C:\Windows\system32\DRIVERS\xnacc.sys
22:26:35.0260 0x37a8  xnacc - ok
22:26:35.0313 0x37a8  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
22:26:35.0315 0x37a8  xusb21 - ok
22:26:35.0339 0x37a8  ================ Scan global ===============================
22:26:35.0356 0x37a8  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
22:26:35.0407 0x37a8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
22:26:35.0432 0x37a8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
22:26:35.0460 0x37a8  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
22:26:35.0491 0x37a8  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
22:26:35.0499 0x37a8  [ Global ] - ok
22:26:35.0500 0x37a8  ================ Scan MBR ==================================
22:26:35.0515 0x37a8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:26:35.0868 0x37a8  \Device\Harddisk0\DR0 - ok
22:26:35.0868 0x37a8  ================ Scan VBR ==================================
22:26:35.0871 0x37a8  [ 0586E973F55FEECDF4DA895ED2565EDD ] \Device\Harddisk0\DR0\Partition1
22:26:35.0873 0x37a8  \Device\Harddisk0\DR0\Partition1 - ok
22:26:35.0892 0x37a8  [ E22353DAF34E30AB3C68F4D2C476717A ] \Device\Harddisk0\DR0\Partition2
22:26:35.0895 0x37a8  \Device\Harddisk0\DR0\Partition2 - ok
22:26:35.0895 0x37a8  ================ Scan generic autorun ======================
22:26:35.0895 0x37a8  SynTPEnh - ok
22:26:35.0915 0x37a8  [ 20B5EEF844FB894FA3D973E338A98F57, 19BDB0FBF6B1EFB67C9231370EBEEF910C2E5B91ED36335ED3BA34090C3996D9 ] C:\Windows\system32\igfxtray.exe
22:26:35.0919 0x37a8  IgfxTray - ok
22:26:35.0942 0x37a8  [ C616B47A01FF1D81F1486809BBB32DA1, 57B7D94A5D9B325F6C297A0F3A01B16C4E3810C3CCDA59A2DEBF929EDE12547D ] C:\Windows\system32\hkcmd.exe
22:26:35.0951 0x37a8  HotKeysCmds - ok
22:26:35.0973 0x37a8  [ FCFF1C3E72A0263E29FCD4C39FC19D54, 8696EB991EC718FC6DE44AD2D8D4F0BAF4D73DFC44F8FE170B2B173766E8A8C2 ] C:\Windows\system32\igfxpers.exe
22:26:35.0983 0x37a8  Persistence - ok
22:26:36.0035 0x37a8  [ AF993F50B17C0AFB26235EFCF06DAD06, B6C097CD91CE932ABB4F1D05831114686AD2E4B8C290BCD242DCB24019E30A78 ] C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
22:26:36.0050 0x37a8  FreeFallProtection - ok
22:26:36.0135 0x37a8  [ 23E6E5C5061A44C32E9922B4AF22D895, B166E2DB3E9C2B8234CEE3B001D63BFFC4F41635455016DD54CD0F03B08410A0 ] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
22:26:36.0176 0x37a8  IntelWireless - ok
22:26:36.0180 0x37a8  IntelTBRunOnce - ok
22:26:36.0275 0x37a8  [ 812DD9FBA5EF2136AEF738CAA499D47C, 239BF6A71916512FD3979DB334491C4FF399F5E95BE02F25A1DF81C171D17C42 ] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
22:26:36.0320 0x37a8  DellStage - ok
22:26:36.0564 0x37a8  [ 29A1AA60BEB49F0D270817F138618647, 0581DEB23E721938F96D8DD3BCAF2E83E0B35E7A36821CE9C216CFF1B578A849 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
22:26:36.0702 0x37a8  RTHDVCPL - ok
22:26:36.0794 0x37a8  [ 495B01F44E917CCDF79005CC0EC56F5A, F9FE6E5EC0C40B8877F846568BA4DC23EEBCC0CCA1F43364C65079F7B77F19F9 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
22:26:36.0841 0x37a8  RtHDVBg - ok
22:26:36.0867 0x37a8  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
22:26:36.0869 0x37a8  ShadowPlay - ok
22:26:36.0975 0x37a8  [ 436A83E5555A8449B9BFBE1AAB314654, DE956310B2EF80B43399E63E309E659018879942EBBA5063B9A366C2314E8158 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
22:26:37.0024 0x37a8  NvBackend - ok
22:26:37.0098 0x37a8  [ 569AC1376B12D4083FC66CC7A304F234, DD209F09573F10A77D710E30EF3D0461D2E8F4E5F18106B18EFB587C88393460 ] c:\Program Files\Microsoft Security Client\msseces.exe
22:26:37.0125 0x37a8  MSC - ok
22:26:37.0208 0x37a8  [ E97140424C378ACBD47DF493A6AB7235, 00F26F670AD6B03C465C4FC834DC993B551B8A8E73B603FE7B9CFFA893094A3D ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
22:26:37.0209 0x37a8  Adobe Reader Speed Launcher - ok
22:26:37.0261 0x37a8  Skype - ok
22:26:37.0403 0x37a8  [ F17C9D9A94B5A0CB31EF8E61150D9E36, FA80EDD1B1C44E323D600F96F8893D6139373C57464905551D2900AE7FC39732 ] C:\Users\Admin\AppData\Local\Apps\2.0\YGNMZTD5.0JM\WDNV3PH9.GJV\dell..tion_0f612f649c4a10af_0005.0007_59de4fd2458fcaec\DellSystemDetect.exe
22:26:37.0411 0x37a8  DellSystemDetect - ok
22:26:37.0689 0x37a8  [ 343E19B2F141B65FA1723385C664F861, E437EAC26B8EA138C361D11F926274084D289260A0A5B6C7C9D9F3B2BD4D2C64 ] C:\Users\Admin\AppData\Roaming\Spotify\Spotify.exe
22:26:37.0817 0x37a8  Spotify - ok
22:26:37.0938 0x37a8  [ F6041A72058ADD22166C31B5FD5E919C, 3B10A1273C7E687B1C2D5895B576D4786E4D051E06D001F7B7B969401C58FD2D ] C:\Users\Admin\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
22:26:37.0962 0x37a8  Spotify Web Helper - ok
22:26:38.0117 0x37a8  [ C0B3668DBC1B93243648C0067AEA2675, 0F5315E3B87B7FD00313D085FFC16CA81AB0078604C1E20E4EF5909C1C5D55D9 ] C:\Program Files (x86)\Steam\steam.exe
22:26:38.0155 0x37a8  Steam - ok
22:26:38.0157 0x37a8  Yontoo Desktop - ok
22:26:38.0221 0x37a8  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:26:38.0245 0x37a8  Sidebar - ok
22:26:38.0273 0x37a8  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:26:38.0276 0x37a8  mctadmin - ok
22:26:38.0277 0x37a8  Waiting for KSN requests completion. In queue: 92
22:26:39.0278 0x37a8  Waiting for KSN requests completion. In queue: 92
22:26:40.0278 0x37a8  Waiting for KSN requests completion. In queue: 92
22:26:41.0292 0x37a8  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.5.216.0 ), 0x60000 ( disabled : updated )
22:26:41.0296 0x37a8  Win FW state via NFP2: enabled
22:26:43.0930 0x37a8  ============================================================
22:26:43.0930 0x37a8  Scan finished
22:26:43.0930 0x37a8  ============================================================
22:26:43.0942 0xf650  Detected object count: 0
22:26:43.0942 0xf650  Actual detected object count: 0
 
 
 
# AdwCleaner v3.214 - Report created 05/07/2014 at 19:34:04
# Updated 29/06/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Admin - ADMIN-PC
# Running from : C:\Users\Admin\Downloads\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfgmipjabpfjdgflgbjjpgekdejokfci
File Deleted : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\2crek71y.default\user.js
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKCU\Software\Google\Chrome\Extensions\cfgmipjabpfjdgflgbjjpgekdejokfci
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\cfgmipjabpfjdgflgbjjpgekdejokfci
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YontooDesktop_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\YontooDesktop_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{065C1A21-97F8-45FB-A9F0-861B60FACEC8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3204358F-5904-46A6-841F-D6B5BE3EF4E3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3AE67737-0E3E-44AA-AA5E-46A68BF017FF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3EE5B726-044A-48D2-AA7B-049BD9A0F62A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{60FBBE03-57FF-49D8-B38E-053D3F489825}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6A5182F1-C0B8-42B8-96CC-7F329CD46913}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6C153418-8E4D-4FAF-AF27-5201E38463A7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A26A2F05-AC4D-4A1E-9531-9125F7309B78}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC5D6240-7DF0-435D-9B9B-F8586A99DE86}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F343045E-E20A-46E1-82D8-9962C43EFC9E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FBB360DC-CB6C-4D6A-808A-2C773151BFFF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FFD7DDAC-EC28-42A5-8D39-917B9078604B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\Software\PIP
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17126
 
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default]
 
-\\ Mozilla Firefox v28.0 (en-US)
 
[ File : C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\2crek71y.default\prefs.js ]
 
 
-\\ Google Chrome v35.0.1916.153
 
[ File : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Search Provider] : hxxp://feed.snap.do/?publisher=TightropeYB&dpid=TightropeYB&co=GB&userid=43393e00-10f5-4fa1-9d8b-b76999c6c2af&searchtype=ds&q={searchTerms}&installDate=23/03/2013
Deleted [Search Provider] : hxxp://uk.ask.com/web?q={searchTerms}
Deleted [Extension] : cfgmipjabpfjdgflgbjjpgekdejokfci
 
*************************
 
AdwCleaner[R0].txt - [4811 octets] - [05/07/2014 18:35:27]
AdwCleaner[S0].txt - [4575 octets] - [05/07/2014 19:34:04]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4635 octets] ##########
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Admin on 10/07/2014 at 22:17:28.84
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\dropdowndeals_132013-0568_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\dropdowndeals_132013-0568_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\dropdowndeals_132013-0568_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\dropdowndeals_132013-0568_RASMANCS
 
 
 
~~~ Files
 
Successfully deleted: [File] C:\Windows\syswow64\sho2119.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho293E.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho420E.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho5377.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho5602.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho6360.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho6D77.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho77B1.tmp
Successfully deleted: [File] C:\Windows\syswow64\sho8DD4.tmp
Successfully deleted: [File] C:\Windows\syswow64\shoA9A.tmp
Successfully deleted: [File] C:\Windows\syswow64\shoF40A.tmp
Successfully deleted: [File] C:\Windows\syswow64\shoF4EE.tmp
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{055EE430-A7E6-4D1F-9CFE-FC957E6AF729}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{05728356-C7BF-48DC-9767-F69222468C03}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{0E36BC8C-4BC1-42F9-8433-54CC7A74FF84}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{0E43079D-61F6-4555-9F20-C8AEC6491830}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{1541AEA6-A6CE-4F10-A3FE-6EBAAC56C177}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{198DC055-EFC5-462E-AF7B-0C5F4B4C2D8B}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{1B1706E5-3900-4190-8D1D-31C2295471A8}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{1FA5BCD9-1A99-4340-9297-D340C40FBBD5}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{221A8285-B8A4-43EE-8F44-F32E9F01D437}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{23CEA270-0C7E-4B52-8E64-4B585B429CEB}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{26034139-DED9-4D85-9271-5947BECD2D25}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{26BE52E1-C14B-4279-86BF-1A7316CF615F}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{2AAEE9F8-275E-4FB6-B4EA-31F5EC0BCC30}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{2C16DA5B-E90B-44E7-A9F8-4D5766A0F34C}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{2C1D7D25-693E-4DDE-9044-D0A1D015AB69}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{2D93E3C4-1555-4FFA-830A-C4F6C466CBFB}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{2E01BB85-0E13-44B0-AAB4-A75F1BFDC69B}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{2F41F6EA-2240-4541-94BE-0DA6DC77543A}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{30207627-2640-427D-9F60-1BAD4B418E8D}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{312CAEFE-0E96-414F-84DB-A8F044C38E16}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{33441B6C-AB11-4A9E-B8D0-946246098E99}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{42708805-0109-4FC2-A08F-B557DCEA97F6}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{4383C54E-8131-4FEE-9299-9AB3F234A40E}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{43D14657-A656-46C0-AA0B-6070724A2332}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{44CAA1FE-F010-4AD8-BC8E-8F42E02E5A56}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{46898E60-503E-4237-8C9A-FCE43F5B4D6C}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{4820325E-53A4-4CBB-8E06-CBEEC6C78A3E}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{48600475-BC69-473A-A151-55F0FF584E6A}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{4978FF5C-8928-45C1-8809-CDE26F8F17AE}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{4B24A96C-AD78-4800-9458-961B12C35ABE}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{501A77D2-015E-4B45-81BF-B8438ABC9FDB}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{52FFB55F-AE33-4360-A289-1E4393817E40}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{550992D2-B34D-4D8C-A137-196879F0282F}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{5523C8ED-D081-4917-B9FA-61C756A249F0}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{5D6A4EEA-070E-4DC7-B5A3-FDFB1E2B40C0}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{65DB92CA-42D0-417D-9FA1-1090882AA500}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{6DC36909-BC15-4B4A-8BF9-CB3F8E09DF31}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{6E737352-5223-4FD9-93D9-4062BA565A7E}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{6FD401A4-FD67-41B2-AB55-671264DC3895}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{79198C25-A49D-490D-AD80-432B0F73DB1C}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{7951A4BB-FBE8-4A22-9401-D6030F1108AF}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{7B931375-F230-4ABD-B537-8A779245B256}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{7BC00881-9D9C-4C33-9057-65A2FC9ED6EF}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{7BDDE826-3C84-4B51-8A54-BA8008FD971F}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{7CCC394E-A3C4-4065-9B07-62A1B24888F6}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{81167679-FE56-4F25-97B0-9B86DACC210A}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{8219BE88-5D0F-41ED-B64A-4B47199B25FD}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{828DC30F-4E7D-4FB0-A3E6-7471A4C4F7A8}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{83A2253B-527B-48E9-BB77-51DBB76933F2}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{859A7B21-418C-43EC-B1AA-49FE3A7935B8}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{86AF063A-673A-4D47-A24C-E3F94EA98427}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{87852436-9E56-4E35-9BE7-483F9CFC5CAF}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{88516FD5-3F21-4560-97E7-6121EAB1A50C}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{8A259D75-E62C-4C85-AE4E-40184BF91E2F}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{8AFF483F-915F-4FB2-A0D6-16ED8712CD19}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{8C3432CA-E78B-49F6-8237-89AEFEF92CCE}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{8CFF34E7-FB08-426E-9B89-1264DC161A82}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{8FEE0240-6E42-4BA3-929A-B5F7CE092C0F}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{92F67BFA-AFBB-4DF9-9605-C6F844DF97F5}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{930B4977-23F9-4B59-8E16-01B817AC9155}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{93570954-98DE-4E42-AED3-751DBAC39ACB}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{93DEFF43-2311-4617-8EEE-DDB812B7E4A9}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{949D439B-F704-4338-8D9F-64B1BA113F8B}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{95055553-8820-4F8C-BE16-DA8ED8D4E91F}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{97F385BC-23E6-4185-A62A-752652A50C40}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{988FEC3B-9643-4134-998A-02D3F7E36FD4}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{9B74A1BE-FB91-41E4-AB7B-8A03B6DFE8BE}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{9E7325D0-218B-499A-A773-C7F11A90CD07}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{9EBBC529-B03F-4117-BDAA-D04F65375208}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{9FD1CCE5-449C-4560-B382-3C3489EEC0B5}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{A2F7C883-2CFE-4974-A84F-5DE3678703DE}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{AAA945C8-1A71-47A8-A8F2-303E2EC94BD7}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{AEBC90B5-E68C-4CE3-AC8F-01F829D667D2}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{B05C547A-4D2A-4C4B-B705-FB798B468111}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{B3BAB781-CF92-4264-AC75-60BB8621D091}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{B4E81A9D-5E50-4071-8EF8-8F529731047C}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{BB288414-A433-40D4-A4F7-74F4B06F04A0}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{BB39E943-2342-4012-9DF0-84012C047FDA}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{BD01826F-A2BC-4E6D-B779-7C40A9849A32}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{BD2E00B0-2DC4-421A-BEEE-3CD357098FCC}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{C60E715B-89FC-44FB-B003-7BBB698EF278}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{C93FE367-E42C-4CC0-A9CD-37F6F27EF354}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{CF33301C-7187-4735-BA8B-4F5190F64DEA}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{CF94556B-7E86-4113-8137-A4C71DFFFB1F}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{D3C13071-973C-4C8C-A1E3-21BDE973AB29}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{D4085116-31CC-4F80-B738-E09CC0F862BD}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{D53C922F-36CE-4EEC-AF9D-C4D057592DB9}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{D98180A4-7677-4EE3-A181-7B193E036F5F}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{DDEA44C3-2F3C-4995-8248-BF9A8BA3A86B}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{EDB11186-753D-411C-AF17-AFA3442E436C}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{EE89D096-0398-402B-8457-7CE2B9083F7B}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{EFB95911-43DF-4853-B21A-77A0A6E93C59}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{F4F802CD-4CD0-4558-A7F4-17DF50075172}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{F71FE950-1DBA-47A9-8656-44C93863C62F}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{F7B94FD2-BC44-4E31-B8CB-821874876807}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{F7FE55C3-1BF9-4A7B-A418-3829B3B30737}
Successfully deleted: [Empty Folder] C:\Users\Admin\appdata\local\{FBD1BD07-ED61-4799-882D-F4CB2CEC499C}
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 10/07/2014 at 22:25:32.25
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
ESETScan
==============================
 
C:\Users\All Users\Spybot - Search & Destroy\Recovery\WebCakeBHO4.zip Win32/Bagle.gen.zip worm
C:\AdwCleaner\Quarantine\C\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll.vir a variant of Win32/Adware.Yontoo.B application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfgmipjabpfjdgflgbjjpgekdejokfci\10.31.4.510_0\APISupport\APISupport.dll.vir a variant of Win32/Conduit.SearchProtect.P potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfgmipjabpfjdgflgbjjpgekdejokfci\10.31.4.510_0\nativeMessaging\TBMessagingHost.exe.vir a variant of Win32/Toolbar.Conduit.AH potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfgmipjabpfjdgflgbjjpgekdejokfci\10.31.4.510_0\plugins\ChromeApiPlugin.dll.vir a variant of Win32/Conduit.SearchProtect.N potentially unwanted application deleted - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A potentially unsafe application deleted - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A potentially unsafe application deleted - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WebCakeBHO4.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\Users\Admin\Desktop\spsetup124.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Admin\Downloads\ca_setup.exe a variant of Win32/CainAbel potentially unsafe application deleted - quarantined
C:\Users\Admin\Downloads\cbsidlm-cbsi188-Revo_Uninstaller-SEO-10687648.exe a variant of Win32/CNETInstaller.B potentially unwanted application deleted - quarantined
C:\Users\Admin\Downloads\cbsidlm-tr1_7-KLite_Mega_Codec_Pack-10794603.exe Win32/DownloadAdmin.D potentially unwanted application deleted - quarantined
C:\Users\Admin\Downloads\ccsetup323.exe Win32/Bundled.Toolbar.Google.E potentially unsafe application deleted - quarantined
 
 

Edited by iNezzy, 10 July 2014 - 06:43 PM.


#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:56 PM

Posted 11 July 2014 - 08:19 PM

Good clean, how is it now?
TrojanDownloader:Win32/Bagle.gen!A is the generic detection for trojans that download worms from the Win32/Bagle family. They are usually distributed as attachments of spammed e-mail messages. They may also change certain system settings.


Please do these..

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
.
Please download Rkill by Grinler and save it to your desktop.
  • Link 1
  • Link 2
    • Double-click on the Rkill desktop icon to run the tool.
    • If using Vista, right-click on it and Run As Administrator.
    • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
    • If not, delete the file, then download and use the one provided in Link 2.
    • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
    • If the tool does not run from any of the links provided, please let me know.
  • Do not reboot the computer, you will need to run the application again.
.

Download 51a46ae42d560-malwarebytes_anti_malware.MalwareBytes Anti-Malware to your desktop.
  • Double-click mbam-setup-2.0.exe to start the installation of Malwarebytes Anti-Malware.
  • Follow the instructions on your screen to complete the installation. You can find the complete installation procedure here.
  • Click Scan at the top of the screen and hit Detection and Protection.
  • Choose Custom Scan and click Scan Now.
  • Check the box next to Scan for rootkits.
  • MalwareBytes Anti-Malware will now check for the latest updates. Click Update Now if new updates are available.
  • Your computer is now being scanned, please do not use your computer during the scan.
    • If no threats were found, click View detailed log.
      • Click Export and save the log as a .txt file on your Desktop or another location.
    • If the scan detected any threats, click Apply Actions.
      • To complete any actions taken you will be prompted to restart your computer...click on Yes.
      • After reboot, start Malwarebytes Anti-Malware again and click the History Tab at the top and select Application Logs.
      • Check the box next to Scan Log. Choose the most current scan and click View.
      • Click Export and save the log as a .txt file on your Desktop or another location.
  • Providing the MalwareBytes' Anti-Malware log file
    • Attach the log file you just saved to your next reply for further review.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users