Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with boo/cidox.b


  • Please log in to reply
11 replies to this topic

#1 priscilla18

priscilla18

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:05:42 PM

Posted 01 August 2014 - 04:30 PM

Hello, my name is Priscilla and today I found out that my laptop is infected with the boo/cidox.b virus. 

I have no idea how to remove this. Is there anyone who can help me?

I have a windows 7 laptop. 

 

thanks in advance


Edited by priscilla18, 01 August 2014 - 04:38 PM.


BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,735 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:42 AM

Posted 01 August 2014 - 08:01 PM

Welcome aboard p22002758.gif

 

Download TDSSKiller and save it to your desktop.

  • Doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 priscilla18

priscilla18
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:05:42 PM

Posted 02 August 2014 - 03:19 AM

Hello, thank you for your response.

 

I already scanned my computer last night with this TDSSkiller program, and they found that boo cidox on my computer so I clicked on cure and then 

reboot. I scanned it again and they said no threats were found.

 

But I follow your steps and I tried it again and no objects were found so i clicked on report

 

10:13:18.0669 0x17e8  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
10:13:25.0792 0x17e8  ============================================================
10:13:25.0792 0x17e8  Current date / time: 2014/08/02 10:13:25.0792
10:13:25.0792 0x17e8  SystemInfo:
10:13:25.0792 0x17e8  
10:13:25.0792 0x17e8  OS Version: 6.1.7601 ServicePack: 1.0
10:13:25.0792 0x17e8  Product type: Workstation
10:13:25.0793 0x17e8  ComputerName: PRISCILLA-PC
10:13:25.0793 0x17e8  UserName: priscilla
10:13:25.0793 0x17e8  Windows directory: C:\Windows
10:13:25.0793 0x17e8  System windows directory: C:\Windows
10:13:25.0793 0x17e8  Running under WOW64
10:13:25.0793 0x17e8  Processor architecture: Intel x64
10:13:25.0793 0x17e8  Number of processors: 2
10:13:25.0793 0x17e8  Page size: 0x1000
10:13:25.0793 0x17e8  Boot type: Normal boot
10:13:25.0793 0x17e8  ============================================================
10:13:33.0161 0x17e8  KLMD registered as C:\Windows\system32\drivers\65521549.sys
10:13:33.0824 0x17e8  System UUID: {88508A26-E36C-2AB4-E203-15757993971C}
10:13:34.0866 0x17e8  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:13:34.0870 0x17e8  ============================================================
10:13:34.0870 0x17e8  \Device\Harddisk0\DR0:
10:13:34.0871 0x17e8  MBR partitions:
10:13:34.0871 0x17e8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1426000, BlocksNum 0x32000
10:13:34.0871 0x17e8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1458000, BlocksNum 0x23FD62B0
10:13:34.0871 0x17e8  ============================================================
10:13:34.0967 0x17e8  C: <-> \Device\Harddisk0\DR0\Partition2
10:13:34.0967 0x17e8  ============================================================
10:13:34.0967 0x17e8  Initialize success
10:13:34.0967 0x17e8  ============================================================
10:13:43.0848 0x1490  ============================================================
10:13:43.0848 0x1490  Scan started
10:13:43.0848 0x1490  Mode: Manual; SigCheck; TDLFS; 
10:13:43.0848 0x1490  ============================================================
10:13:43.0848 0x1490  KSN ping started
10:13:46.0595 0x1490  KSN ping finished: true
10:13:55.0531 0x1490  ================ Scan system memory ========================
10:13:55.0531 0x1490  System memory - ok
10:13:55.0532 0x1490  ================ Scan services =============================
10:13:58.0322 0x1490  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
10:13:58.0838 0x1490  1394ohci - ok
10:13:59.0718 0x1490  [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
10:14:00.0261 0x1490  ACDaemon - ok
10:14:00.0644 0x1490  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
10:14:00.0783 0x1490  ACPI - ok
10:14:00.0911 0x1490  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
10:14:02.0272 0x1490  AcpiPmi - ok
10:14:03.0520 0x1490  [ A6B6AB9502B63F43A9A56AE6AFB22078, DD1F0BA3D8F3333F52A71EAE3719A001F6EF844D647FFABF0E4C56C6C764ACA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:14:03.0549 0x1490  AdobeFlashPlayerUpdateSvc - ok
10:14:03.0738 0x1490  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
10:14:03.0784 0x1490  adp94xx - ok
10:14:03.0913 0x1490  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
10:14:03.0990 0x1490  adpahci - ok
10:14:04.0129 0x1490  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
10:14:04.0158 0x1490  adpu320 - ok
10:14:04.0234 0x1490  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
10:14:05.0479 0x1490  AeLookupSvc - ok
10:14:05.0684 0x1490  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
10:14:05.0843 0x1490  AFD - ok
10:14:05.0886 0x1490  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
10:14:05.0909 0x1490  agp440 - ok
10:14:05.0978 0x1490  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
10:14:06.0080 0x1490  ALG - ok
10:14:06.0135 0x1490  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
10:14:06.0156 0x1490  aliide - ok
10:14:06.0207 0x1490  [ B4143CB1DD16AE73C6177C72F33450A6, D675AEF56FF030314AB3B4F13A81D72272E67AE10E415058928182A3B8370FE1 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
10:14:06.0424 0x1490  AMD External Events Utility - ok
10:14:06.0506 0x1490  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
10:14:06.0675 0x1490  amdide - ok
10:14:06.0863 0x1490  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
10:14:07.0053 0x1490  AmdK8 - ok
10:14:08.0100 0x1490  [ D1D06810BF7E21F5763EB06CB7E7262B, 77DEEA2C76D1C3E65E3D4F1FB2C671195019E9B78336EA4E040565DB88228611 ] amdkmdag        C:\Windows\system32\DRIVERS\atipmdag.sys
10:14:08.0909 0x1490  amdkmdag - ok
10:14:08.0982 0x1490  [ 6BA71D6616B56816E57394D77DD1BB6F, 5250378D4CA31578D8E92DD4402E2AA34C2299EA2D9471AC5A9A7CEA46A54CB3 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
10:14:09.0188 0x1490  amdkmdap - ok
10:14:09.0270 0x1490  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
10:14:09.0337 0x1490  AmdPPM - ok
10:14:09.0394 0x1490  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
10:14:09.0422 0x1490  amdsata - ok
10:14:09.0551 0x1490  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
10:14:09.0584 0x1490  amdsbs - ok
10:14:09.0622 0x1490  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
10:14:09.0654 0x1490  amdxata - ok
10:14:09.0901 0x1490  [ 08E8A4172C57ABD7693A6915CF1E7A99, C33C480A3D72D9432F40CB1B3D58DC9769F527BF616AA1A081BEB932AC6F0DBE ] amd_sata        C:\Windows\system32\drivers\amd_sata.sys
10:14:09.0914 0x1490  amd_sata - ok
10:14:10.0070 0x1490  [ 9866AF4E4AD7F16E810B6C0B8473F9CD, 2EC0253B286B213D44C2A042CE0EE3F10FFFBE22E3CD5F0D8D7EEB41D238FC1C ] amd_xata        C:\Windows\system32\drivers\amd_xata.sys
10:14:10.0201 0x1490  amd_xata - ok
10:14:10.0544 0x1490  [ B59B5CA733760BEB3C69E6DA30BA61B4, 0A0E211BF10FAD46DF1EE60EE9C19BAB1CC52D476836871576686508125D7382 ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
10:14:10.0630 0x1490  AntiVirMailService - ok
10:14:10.0842 0x1490  [ 4C14746BCBF9985BDBF1CD1BEED96DF8, 8EF50FBD98C9AFD85F5D08692E7AEC21812B70074AA0DC6DCDFDBC2FFE34A75D ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
10:14:10.0867 0x1490  AntiVirSchedulerService - ok
10:14:10.0999 0x1490  [ 4C14746BCBF9985BDBF1CD1BEED96DF8, 8EF50FBD98C9AFD85F5D08692E7AEC21812B70074AA0DC6DCDFDBC2FFE34A75D ] AntiVirService  C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
10:14:11.0024 0x1490  AntiVirService - ok
10:14:11.0202 0x1490  [ 1BF085C13A8F62E056E6201AFCF5E675, 8768E18A536ACCF3A0F0E31F9B5FF30054ACCF1CC0E77AC7A386EDBDFC663C63 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
10:14:11.0245 0x1490  AntiVirWebService - ok
10:14:11.0482 0x1490  [ 2672A9DBAA6A8DEEA7EC8C7892E32A03, CE395864300D24B132FD6ECFD4B73D937D0D47201B2C630088F69B476901682C ] ApfiltrService  C:\Windows\system32\drivers\Apfiltr.sys
10:14:11.0929 0x1490  ApfiltrService - ok
10:14:11.0977 0x1490  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
10:14:12.0687 0x1490  AppID - ok
10:14:12.0785 0x1490  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
10:14:13.0050 0x1490  AppIDSvc - ok
10:14:13.0259 0x1490  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
10:14:13.0582 0x1490  Appinfo - ok
10:14:13.0961 0x1490  [ F401929EE0CC92BFE7F15161CA535383, 61E1C0630B8BBC65C51121D5DC7F095C59B475F39BB7B0DC68133EF7D9D0A29D ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:14:13.0996 0x1490  Apple Mobile Device - ok
10:14:14.0082 0x1490  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
10:14:14.0109 0x1490  arc - ok
10:14:14.0241 0x1490  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
10:14:14.0266 0x1490  arcsas - ok
10:14:14.0336 0x1490  [ C130BC4A51B1382B2BE8E44579EC4C0A, CC1FD33ED7CAD87A504D8678F8482CAECACD18C727BB97FFB86F39255563EEF2 ] ArcSoftKsUFilter C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys
10:14:14.0355 0x1490  ArcSoftKsUFilter - ok
10:14:16.0972 0x1490  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:14:18.0536 0x1490  aspnet_state - ok
10:14:18.0660 0x1490  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
10:14:18.0847 0x1490  AsyncMac - ok
10:14:18.0971 0x1490  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
10:14:19.0003 0x1490  atapi - ok
10:14:19.0760 0x1490  [ D6CAD7E5B05055BB8226BDCB1644DA27, 053DBE95BE044C2674825561619A188660865AFCC4FD3C1D1E4F08972F5CC8DF ] athr            C:\Windows\system32\DRIVERS\athrx.sys
10:14:19.0907 0x1490  athr - ok
10:14:20.0001 0x1490  [ 7C5D273E29DCC5505469B299C6F29163, 206CAB85CE12A3953F0861C811575DC7FD000147436219EEE334584A33370B3A ] AtiPcie         C:\Windows\system32\drivers\AtiPcie.sys
10:14:20.0025 0x1490  AtiPcie - ok
10:14:20.0207 0x1490  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:14:20.0428 0x1490  AudioEndpointBuilder - ok
10:14:20.0532 0x1490  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
10:14:20.0637 0x1490  AudioSrv - ok
10:14:20.0699 0x1490  [ 4663C5AD76FE8E19592DE808156FA07D, 605827B4A9D6930BC752D124BF75D55D4927B0ABEF881CDE66F3C5CC1DB215FE ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
10:14:20.0778 0x1490  avgntflt - ok
10:14:20.0826 0x1490  [ 8902AEC2382A37E9E99A4E0D52DBD42B, 138F2D7E7430132B2C527D413BC845CC467F084F39C232EC3A17DD2A74EE401E ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
10:14:20.0878 0x1490  avipbb - ok
10:14:20.0941 0x1490  [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
10:14:20.0994 0x1490  avkmgr - ok
10:14:21.0094 0x1490  [ 09036D9F85BE6B659D375D2F0BAD0AD2, CCF4D28F60CF8E2B0F781D41F9E9FA84739AC6F948C09203D2498D64222CF990 ] avnetflt        C:\Windows\system32\DRIVERS\avnetflt.sys
10:14:21.0126 0x1490  avnetflt - ok
10:14:21.0303 0x1490  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
10:14:21.0431 0x1490  AxInstSV - ok
10:14:21.0621 0x1490  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
10:14:21.0697 0x1490  b06bdrv - ok
10:14:21.0821 0x1490  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
10:14:22.0363 0x1490  b57nd60a - ok
10:14:22.0683 0x1490  [ 849EA7A204F9F77E7B2ADB8699F7BFC8, EB0334336B16F60BD8552718213159B81251AB6A535AA1DE317FF3CADCEE5057 ] bbcap           C:\Windows\system32\DRIVERS\bbcap.sys
10:14:22.0830 0x1490  bbcap - ok
10:14:22.0898 0x1490  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
10:14:22.0977 0x1490  BDESVC - ok
10:14:23.0044 0x1490  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
10:14:23.0146 0x1490  Beep - ok
10:14:23.0406 0x1490  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
10:14:23.0493 0x1490  BFE - ok
10:14:23.0602 0x1490  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
10:14:23.0737 0x1490  BITS - ok
10:14:24.0159 0x1490  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
10:14:24.0300 0x1490  blbdrive - ok
10:14:24.0726 0x1490  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:14:24.0825 0x1490  Bonjour Service - ok
10:14:24.0935 0x1490  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
10:14:25.0021 0x1490  bowser - ok
10:14:25.0210 0x1490  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
10:14:25.0250 0x1490  BrFiltLo - ok
10:14:25.0307 0x1490  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
10:14:25.0346 0x1490  BrFiltUp - ok
10:14:25.0401 0x1490  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
10:14:25.0534 0x1490  Browser - ok
10:14:25.0644 0x1490  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
10:14:25.0767 0x1490  Brserid - ok
10:14:25.0856 0x1490  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
10:14:25.0907 0x1490  BrSerWdm - ok
10:14:25.0956 0x1490  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
10:14:25.0992 0x1490  BrUsbMdm - ok
10:14:26.0057 0x1490  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
10:14:26.0093 0x1490  BrUsbSer - ok
10:14:26.0265 0x1490  [ 9A873075063B4B9E77E75835158AB60F, DD7A73E0A8117FE9A93F81A32B2FA5D52E0D7D467946D45B188E2DDB1B0E4725 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
10:14:26.0334 0x1490  BstHdAndroidSvc - ok
10:14:26.0444 0x1490  [ D867CC47E487C119F35CF0573B384EBF, 25939FAA0187DA3A0CCB30DE52E91E89C38102B2EDA78826FF0F3395AF0435A5 ] BstHdDrv        C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
10:14:26.0529 0x1490  BstHdDrv - ok
10:14:26.0578 0x1490  [ 120A276B3A78BEDEB39E1925405A201D, 7D054B2AB000791D3B9DEB153EE5456FB781CD0FD211973EEED0879749C070FA ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
10:14:26.0644 0x1490  BstHdLogRotatorSvc - ok
10:14:26.0733 0x1490  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
10:14:26.0789 0x1490  BTHMODEM - ok
10:14:26.0897 0x1490  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
10:14:27.0042 0x1490  bthserv - ok
10:14:27.0179 0x1490  [ 5C849BD7C78791C5CEE9F4651D7FE38D, BC93A1B911FB4A44EC4DB64AF9AFC6F2013CD76BFB6FA9E4834CFDAAAF4BCD9F ] btwavdt         C:\Windows\system32\drivers\btwavdt.sys
10:14:27.0207 0x1490  btwavdt - ok
10:14:27.0755 0x1490  [ 31DA517946FFE416442E864592548F8A, 6883DEDE32328E82442C309C2E9EE443BEABB7321524D626A9207B58286DE72F ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
10:14:27.0801 0x1490  btwdins - ok
10:14:27.0903 0x1490  [ 3E1991AFA851A36DC978B0A1B0535C8B, F55F7FDDD2A71532F163E4F14B26A09DCDB7C970E806D803418D4CE0DFF09FB6 ] btwrchid        C:\Windows\system32\drivers\btwrchid.sys
10:14:27.0950 0x1490  btwrchid - ok
10:14:28.0046 0x1490  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
10:14:28.0235 0x1490  cdfs - ok
10:14:28.0402 0x1490  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
10:14:28.0474 0x1490  cdrom - ok
10:14:28.0600 0x1490  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
10:14:28.0701 0x1490  CertPropSvc - ok
10:14:28.0834 0x1490  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
10:14:28.0860 0x1490  circlass - ok
10:14:29.0375 0x1490  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
10:14:29.0486 0x1490  CLFS - ok
10:14:30.0242 0x1490  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:14:30.0538 0x1490  clr_optimization_v2.0.50727_32 - ok
10:14:30.0941 0x1490  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:14:30.0967 0x1490  clr_optimization_v2.0.50727_64 - ok
10:14:32.0886 0x1490  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:14:35.0052 0x1490  clr_optimization_v4.0.30319_32 - ok
10:14:35.0106 0x1490  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:14:35.0314 0x1490  clr_optimization_v4.0.30319_64 - ok
10:14:35.0395 0x1490  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
10:14:35.0475 0x1490  CmBatt - ok
10:14:35.0516 0x1490  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
10:14:35.0533 0x1490  cmdide - ok
10:14:35.0817 0x1490  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
10:14:35.0903 0x1490  CNG - ok
10:14:35.0999 0x1490  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
10:14:36.0040 0x1490  Compbatt - ok
10:14:36.0079 0x1490  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
10:14:36.0134 0x1490  CompositeBus - ok
10:14:36.0164 0x1490  COMSysApp - ok
10:14:36.0224 0x1490  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
10:14:36.0252 0x1490  crcdisk - ok
10:14:36.0415 0x1490  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
10:14:36.0529 0x1490  CryptSvc - ok
10:14:36.0660 0x1490  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
10:14:36.0778 0x1490  DcomLaunch - ok
10:14:36.0989 0x1490  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
10:14:37.0168 0x1490  defragsvc - ok
10:14:37.0274 0x1490  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
10:14:37.0364 0x1490  DfsC - ok
10:14:37.0434 0x1490  [ 1E0F456A03E204F92D24437CD907A512, 8BB28AF33BDEFFECC4EC5C6BFBFBDA525A32FA6A26382353E01FF94BAD2A200C ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
10:14:37.0455 0x1490  dg_ssudbus - ok
10:14:37.0594 0x1490  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
10:14:37.0678 0x1490  Dhcp - ok
10:14:37.0710 0x1490  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
10:14:37.0795 0x1490  discache - ok
10:14:37.0883 0x1490  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
10:14:37.0933 0x1490  Disk - ok
10:14:37.0996 0x1490  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
10:14:38.0091 0x1490  Dnscache - ok
10:14:38.0268 0x1490  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
10:14:38.0400 0x1490  dot3svc - ok
10:14:38.0661 0x1490  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
10:14:38.0861 0x1490  DPS - ok
10:14:38.0970 0x1490  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
10:14:39.0108 0x1490  drmkaud - ok
10:14:39.0319 0x1490  [ 33F90B202E9DD9B7D489EB59310FDC34, 6ECF6669433E090E9CF6B1875AF18D2C06F8CDB3901D58BF89C3E2202574ABBD ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
10:14:39.0363 0x1490  dtsoftbus01 - ok
10:14:39.0467 0x1490  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
10:14:39.0639 0x1490  DXGKrnl - ok
10:14:39.0728 0x1490  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
10:14:39.0875 0x1490  EapHost - ok
10:14:40.0713 0x1490  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
10:14:40.0968 0x1490  ebdrv - ok
10:14:41.0053 0x1490  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
10:14:41.0182 0x1490  EFS - ok
10:14:41.0412 0x1490  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
10:14:41.0687 0x1490  ehRecvr - ok
10:14:41.0753 0x1490  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
10:14:41.0827 0x1490  ehSched - ok
10:14:41.0898 0x1490  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
10:14:41.0951 0x1490  elxstor - ok
10:14:41.0991 0x1490  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
10:14:42.0023 0x1490  ErrDev - ok
10:14:42.0122 0x1490  [ EECCA21D35EF3D0C5DB21EE68A74DF9A, 4EDA8FD39C0514579BB87A7D8389AE01077F11F3DA7A02193546A55087013B5C ] esgiguard       C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys
10:14:42.0160 0x1490  esgiguard - ok
10:14:42.0243 0x1490  [ 3B32CAA07D672F8A2E0DF5CB3A873F45, 09687E30FA5779C3593769D66CAEBED95C932746EDD6E83DABE3DCFD126AB5EC ] EsgScanner      C:\Windows\system32\DRIVERS\EsgScanner.sys
10:14:42.0270 0x1490  EsgScanner - ok
10:14:42.0323 0x1490  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
10:14:42.0390 0x1490  EventSystem - ok
10:14:42.0494 0x1490  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
10:14:42.0574 0x1490  exfat - ok
10:14:42.0599 0x1490  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
10:14:42.0718 0x1490  fastfat - ok
10:14:42.0853 0x1490  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
10:14:43.0025 0x1490  Fax - ok
10:14:43.0093 0x1490  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
10:14:43.0140 0x1490  fdc - ok
10:14:43.0293 0x1490  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
10:14:43.0396 0x1490  fdPHost - ok
10:14:43.0585 0x1490  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
10:14:43.0838 0x1490  FDResPub - ok
10:14:43.0895 0x1490  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
10:14:43.0932 0x1490  FileInfo - ok
10:14:44.0068 0x1490  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
10:14:44.0236 0x1490  Filetrace - ok
10:14:44.0266 0x1490  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
10:14:44.0313 0x1490  flpydisk - ok
10:14:44.0363 0x1490  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
10:14:44.0399 0x1490  FltMgr - ok
10:14:44.0553 0x1490  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
10:14:44.0684 0x1490  FontCache - ok
10:14:44.0802 0x1490  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:14:44.0830 0x1490  FontCache3.0.0.0 - ok
10:14:44.0872 0x1490  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
10:14:44.0899 0x1490  FsDepends - ok
10:14:44.0987 0x1490  [ B3EB502D2C3F47C47415F85387DFAEF1, 5240D4281BB9FBFBFEB98522D12F0C006BE063C084C2E6E23DACB6606CDC25AE ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
10:14:45.0019 0x1490  fssfltr - ok
10:14:45.0548 0x1490  [ B6AB40819ECEC4BA07266EC0EBBC85A7, 71D385043720B622305FD64BD1187C6FFD7191C30794F95629CF6BFDC0A25BA2 ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
10:14:45.0799 0x1490  fsssvc - ok
10:14:45.0938 0x1490  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
10:14:45.0978 0x1490  Fs_Rec - ok
10:14:46.0203 0x1490  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
10:14:46.0239 0x1490  fvevol - ok
10:14:46.0372 0x1490  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
10:14:46.0405 0x1490  gagp30kx - ok
10:14:46.0490 0x1490  [ E403AACF8C7BB11375122D2464560311, 0427B8FFD999D256EA1A5135F218692959A7577CB32354D3087CF0FB4F0577DF ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:14:46.0508 0x1490  GEARAspiWDM - ok
10:14:46.0743 0x1490  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
10:14:46.0915 0x1490  gpsvc - ok
10:14:47.0101 0x1490  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:14:47.0136 0x1490  gupdate - ok
10:14:47.0284 0x1490  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:14:47.0305 0x1490  gupdatem - ok
10:14:47.0432 0x1490  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
10:14:47.0513 0x1490  hcw85cir - ok
10:14:47.0631 0x1490  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:14:47.0735 0x1490  HdAudAddService - ok
10:14:47.0801 0x1490  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
10:14:47.0874 0x1490  HDAudBus - ok
10:14:47.0933 0x1490  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
10:14:48.0007 0x1490  HidBatt - ok
10:14:48.0066 0x1490  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
10:14:48.0195 0x1490  HidBth - ok
10:14:48.0225 0x1490  HideMyIpSRV - ok
10:14:48.0254 0x1490  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
10:14:48.0283 0x1490  HidIr - ok
10:14:48.0348 0x1490  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
10:14:48.0430 0x1490  hidserv - ok
10:14:48.0482 0x1490  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
10:14:48.0508 0x1490  HidUsb - ok
10:14:48.0582 0x1490  [ FCE2251FE4464DCAA2F4684F19A8EE9B, 8062CD636DEFA8E160427BC2C61BC5C0DAA5396E16ABE9353B27C217FDE70B04 ] hitmanpro37     C:\Windows\system32\drivers\hitmanpro37.sys
10:14:48.0614 0x1490  hitmanpro37 - ok
10:14:48.0691 0x1490  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
10:14:48.0815 0x1490  hkmsvc - ok
10:14:48.0874 0x1490  [ D32A664F2F0F396511D0403142C4C80B, 5BCA347EE20A2B53A3AA2CE3948DE2CE2A6EF2534047D7976DD0CDAE113F16CF ] hmip            C:\Windows\system32\Drivers\hmip64.sys
10:14:48.0896 0x1490  hmip - ok
10:14:48.0989 0x1490  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:14:49.0080 0x1490  HomeGroupListener - ok
10:14:49.0164 0x1490  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:14:49.0234 0x1490  HomeGroupProvider - ok
10:14:49.0343 0x1490  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
10:14:49.0359 0x1490  HpSAMD - ok
10:14:49.0784 0x1490  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
10:14:50.0052 0x1490  HTTP - ok
10:14:50.0148 0x1490  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
10:14:50.0161 0x1490  hwpolicy - ok
10:14:50.0294 0x1490  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
10:14:50.0319 0x1490  i8042prt - ok
10:14:50.0389 0x1490  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
10:14:50.0424 0x1490  iaStorV - ok
10:14:50.0543 0x1490  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:14:50.0625 0x1490  idsvc - ok
10:14:50.0677 0x1490  IEEtwCollectorService - ok
10:14:50.0726 0x1490  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
10:14:50.0745 0x1490  iirsp - ok
10:14:50.0955 0x1490  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
10:14:51.0035 0x1490  IKEEXT - ok
10:14:51.0297 0x1490  [ 490947A9AFF7CA31EF2E08F5776105EB, C817D60DBA6B276AD4EF2E0FDF5547F152294AFEF6264C28B8F4DC20B3A85515 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:14:51.0855 0x1490  IntcAzAudAddService - ok
10:14:51.0943 0x1490  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
10:14:51.0977 0x1490  intelide - ok
10:14:52.0083 0x1490  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
10:14:52.0127 0x1490  intelppm - ok
10:14:52.0231 0x1490  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
10:14:52.0326 0x1490  IPBusEnum - ok
10:14:52.0399 0x1490  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:14:52.0502 0x1490  IpFilterDriver - ok
10:14:52.0627 0x1490  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
10:14:52.0690 0x1490  iphlpsvc - ok
10:14:52.0775 0x1490  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
10:14:52.0841 0x1490  IPMIDRV - ok
10:14:52.0926 0x1490  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
10:14:53.0014 0x1490  IPNAT - ok
10:14:53.0256 0x1490  [ A9AB99EE7D39725EAFEC82732D2B3271, 962F231608C36BA0B2EAE5981BB9BAC85B6CAA3A5F656D786B97D9B421A831A6 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
10:14:53.0456 0x1490  iPod Service - ok
10:14:53.0636 0x1490  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
10:14:53.0801 0x1490  IRENUM - ok
10:14:54.0067 0x1490  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
10:14:54.0111 0x1490  isapnp - ok
10:14:54.0432 0x1490  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
10:14:54.0487 0x1490  iScsiPrt - ok
10:14:54.0625 0x1490  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
10:14:54.0672 0x1490  kbdclass - ok
10:14:54.0952 0x1490  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
10:14:55.0031 0x1490  kbdhid - ok
10:14:55.0109 0x1490  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
10:14:55.0136 0x1490  KeyIso - ok
10:14:55.0270 0x1490  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
10:14:55.0315 0x1490  KSecDD - ok
10:14:55.0430 0x1490  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
10:14:55.0478 0x1490  KSecPkg - ok
10:14:55.0755 0x1490  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
10:14:56.0014 0x1490  ksthunk - ok
10:14:56.0378 0x1490  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
10:14:56.0702 0x1490  KtmRm - ok
10:14:56.0983 0x1490  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
10:14:57.0314 0x1490  LanmanServer - ok
10:14:57.0623 0x1490  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:14:57.0757 0x1490  LanmanWorkstation - ok
10:14:57.0959 0x1490  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
10:14:58.0132 0x1490  lltdio - ok
10:14:58.0264 0x1490  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
10:14:58.0387 0x1490  lltdsvc - ok
10:14:58.0439 0x1490  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
10:14:58.0521 0x1490  lmhosts - ok
10:14:58.0693 0x1490  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
10:14:58.0767 0x1490  LSI_FC - ok
10:14:58.0905 0x1490  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
10:14:58.0958 0x1490  LSI_SAS - ok
10:14:59.0126 0x1490  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
10:14:59.0151 0x1490  LSI_SAS2 - ok
10:14:59.0215 0x1490  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
10:14:59.0248 0x1490  LSI_SCSI - ok
10:14:59.0373 0x1490  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
10:14:59.0464 0x1490  luafv - ok
10:15:00.0252 0x1490  [ 922CBAC7B992B9614CAB7122F4BF9406, CD6FFA2DE518DFD92604F1C6E3D274566410BEE02B6F3D575F2218EA4E165321 ] ManyCam         C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
10:15:00.0404 0x1490  ManyCam - ok
10:15:00.0910 0x1490  [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
10:15:00.0976 0x1490  MBAMSwissArmy - ok
10:15:01.0094 0x1490  [ 34A42DD7CF525D0D2C5232916496E4B8, FC703E247FB5D88470F57BCC10890F830BDE782BF7D24B12B2EAAB2C5EC23223 ] mcaudrv_simple  C:\Windows\system32\drivers\mcaudrv_x64.sys
10:15:01.0171 0x1490  mcaudrv_simple - ok
10:15:01.0221 0x1490  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
10:15:01.0307 0x1490  Mcx2Svc - ok
10:15:01.0366 0x1490  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
10:15:01.0399 0x1490  megasas - ok
10:15:01.0478 0x1490  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
10:15:01.0525 0x1490  MegaSR - ok
10:15:01.0584 0x1490  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
10:15:01.0677 0x1490  MMCSS - ok
10:15:01.0855 0x1490  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
10:15:01.0969 0x1490  Modem - ok
10:15:02.0104 0x1490  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
10:15:02.0317 0x1490  monitor - ok
10:15:02.0470 0x1490  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
10:15:02.0491 0x1490  mouclass - ok
10:15:02.0656 0x1490  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
10:15:02.0760 0x1490  mouhid - ok
10:15:02.0841 0x1490  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
10:15:02.0880 0x1490  mountmgr - ok
10:15:03.0214 0x1490  [ 96AA8BA23142CC8E2B30F3CAE0C80254, C65380761373DAD16425211FBA0B4E15F260F79A1FF328B1314076D732EE6F0E ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:15:03.0263 0x1490  MozillaMaintenance - ok
10:15:03.0328 0x1490  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
10:15:03.0370 0x1490  mpio - ok
10:15:03.0441 0x1490  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
10:15:03.0545 0x1490  mpsdrv - ok
10:15:03.0880 0x1490  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
10:15:04.0012 0x1490  MpsSvc - ok
10:15:04.0082 0x1490  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
10:15:04.0111 0x1490  MRxDAV - ok
10:15:04.0213 0x1490  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
10:15:04.0266 0x1490  mrxsmb - ok
10:15:04.0381 0x1490  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:15:04.0433 0x1490  mrxsmb10 - ok
10:15:04.0475 0x1490  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:15:04.0523 0x1490  mrxsmb20 - ok
10:15:04.0595 0x1490  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
10:15:04.0637 0x1490  msahci - ok
10:15:04.0682 0x1490  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
10:15:04.0706 0x1490  msdsm - ok
10:15:04.0784 0x1490  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
10:15:04.0845 0x1490  MSDTC - ok
10:15:04.0936 0x1490  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
10:15:04.0980 0x1490  Msfs - ok
10:15:05.0015 0x1490  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
10:15:05.0057 0x1490  mshidkmdf - ok
10:15:05.0154 0x1490  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
10:15:05.0192 0x1490  msisadrv - ok
10:15:05.0215 0x1490  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
10:15:05.0286 0x1490  MSiSCSI - ok
10:15:05.0291 0x1490  msiserver - ok
10:15:05.0323 0x1490  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
10:15:05.0394 0x1490  MSKSSRV - ok
10:15:05.0419 0x1490  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
10:15:05.0481 0x1490  MSPCLOCK - ok
10:15:05.0540 0x1490  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
10:15:05.0649 0x1490  MSPQM - ok
10:15:05.0786 0x1490  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
10:15:05.0828 0x1490  MsRPC - ok
10:15:05.0902 0x1490  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
10:15:05.0921 0x1490  mssmbios - ok
10:15:06.0001 0x1490  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
10:15:06.0073 0x1490  MSTEE - ok
10:15:06.0182 0x1490  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
10:15:06.0275 0x1490  MTConfig - ok
10:15:06.0330 0x1490  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
10:15:06.0352 0x1490  Mup - ok
10:15:06.0565 0x1490  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
10:15:06.0659 0x1490  napagent - ok
10:15:06.0759 0x1490  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
10:15:06.0849 0x1490  NativeWifiP - ok
10:15:07.0093 0x1490  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
10:15:07.0132 0x1490  NDIS - ok
10:15:07.0176 0x1490  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
10:15:07.0252 0x1490  NdisCap - ok
10:15:07.0290 0x1490  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
10:15:07.0380 0x1490  NdisTapi - ok
10:15:07.0483 0x1490  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
10:15:07.0565 0x1490  Ndisuio - ok
10:15:07.0667 0x1490  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
10:15:07.0758 0x1490  NdisWan - ok
10:15:07.0814 0x1490  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
10:15:07.0920 0x1490  NDProxy - ok
10:15:07.0962 0x1490  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
10:15:08.0026 0x1490  NetBIOS - ok
10:15:08.0157 0x1490  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
10:15:08.0220 0x1490  NetBT - ok
10:15:08.0252 0x1490  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
10:15:08.0266 0x1490  Netlogon - ok
10:15:08.0469 0x1490  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
10:15:08.0546 0x1490  Netman - ok
10:15:08.0626 0x1490  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:15:08.0700 0x1490  NetMsmqActivator - ok
10:15:08.0712 0x1490  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:15:08.0736 0x1490  NetPipeActivator - ok
10:15:08.0829 0x1490  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
10:15:08.0932 0x1490  netprofm - ok
10:15:09.0012 0x1490  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:15:09.0061 0x1490  NetTcpActivator - ok
10:15:09.0128 0x1490  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:15:09.0167 0x1490  NetTcpPortSharing - ok
10:15:09.0235 0x1490  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
10:15:09.0266 0x1490  nfrd960 - ok
10:15:09.0329 0x1490  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
10:15:09.0430 0x1490  NlaSvc - ok
10:15:09.0511 0x1490  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
10:15:09.0577 0x1490  Npfs - ok
10:15:09.0625 0x1490  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
10:15:09.0673 0x1490  nsi - ok
10:15:09.0736 0x1490  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
10:15:09.0829 0x1490  nsiproxy - ok
10:15:10.0238 0x1490  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
10:15:10.0660 0x1490  Ntfs - ok
10:15:10.0717 0x1490  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
10:15:10.0826 0x1490  Null - ok
10:15:10.0912 0x1490  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
10:15:10.0941 0x1490  nvraid - ok
10:15:10.0961 0x1490  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
10:15:10.0986 0x1490  nvstor - ok
10:15:11.0024 0x1490  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
10:15:11.0060 0x1490  nv_agp - ok
10:15:11.0086 0x1490  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
10:15:11.0109 0x1490  ohci1394 - ok
10:15:11.0270 0x1490  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:15:11.0307 0x1490  ose - ok
10:15:11.0806 0x1490  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:15:12.0098 0x1490  osppsvc - ok
10:15:12.0210 0x1490  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
10:15:12.0285 0x1490  p2pimsvc - ok
10:15:12.0462 0x1490  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
10:15:12.0516 0x1490  p2psvc - ok
10:15:12.0563 0x1490  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
10:15:12.0623 0x1490  Parport - ok
10:15:12.0674 0x1490  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
10:15:12.0714 0x1490  partmgr - ok
10:15:12.0751 0x1490  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
10:15:12.0805 0x1490  PcaSvc - ok
10:15:12.0899 0x1490  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
10:15:12.0933 0x1490  pci - ok
10:15:13.0017 0x1490  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
10:15:13.0052 0x1490  pciide - ok
10:15:13.0192 0x1490  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
10:15:13.0244 0x1490  pcmcia - ok
10:15:13.0274 0x1490  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
10:15:13.0294 0x1490  pcw - ok
10:15:13.0408 0x1490  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
10:15:13.0518 0x1490  PEAUTH - ok
10:15:14.0789 0x1490  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
10:15:14.0833 0x1490  PerfHost - ok
10:15:15.0108 0x1490  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
10:15:15.0209 0x1490  pla - ok
10:15:15.0296 0x1490  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
10:15:15.0356 0x1490  PlugPlay - ok
10:15:15.0650 0x1490  [ 627FA58ADC043704F9D14CA44340956F, 92306D5EE64812775E2A2E65F6666A5805CC4DD8BEB3E2FC64CCA087EF471D1F ] PMBDeviceInfoProvider C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
10:15:15.0693 0x1490  PMBDeviceInfoProvider - ok
10:15:15.0793 0x1490  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
10:15:15.0878 0x1490  PNRPAutoReg - ok
10:15:15.0988 0x1490  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
10:15:16.0025 0x1490  PNRPsvc - ok
10:15:16.0103 0x1490  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
10:15:16.0189 0x1490  PolicyAgent - ok
10:15:16.0292 0x1490  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
10:15:16.0403 0x1490  Power - ok
10:15:16.0455 0x1490  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
10:15:16.0500 0x1490  PptpMiniport - ok
10:15:16.0600 0x1490  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
10:15:16.0663 0x1490  Processor - ok
10:15:16.0703 0x1490  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
10:15:16.0760 0x1490  ProfSvc - ok
10:15:16.0831 0x1490  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:15:16.0868 0x1490  ProtectedStorage - ok
10:15:16.0991 0x1490  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
10:15:17.0067 0x1490  Psched - ok
10:15:17.0115 0x1490  [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
10:15:17.0146 0x1490  PxHlpa64 - ok
10:15:17.0479 0x1490  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
10:15:17.0663 0x1490  ql2300 - ok
10:15:17.0740 0x1490  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
10:15:17.0800 0x1490  ql40xx - ok
10:15:18.0068 0x1490  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
10:15:18.0379 0x1490  QWAVE - ok
10:15:18.0426 0x1490  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
10:15:18.0501 0x1490  QWAVEdrv - ok
10:15:18.0520 0x1490  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
10:15:18.0587 0x1490  RasAcd - ok
10:15:18.0630 0x1490  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
10:15:18.0759 0x1490  RasAgileVpn - ok
10:15:18.0861 0x1490  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
10:15:18.0955 0x1490  RasAuto - ok
10:15:19.0013 0x1490  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
10:15:19.0108 0x1490  Rasl2tp - ok
10:15:19.0261 0x1490  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
10:15:19.0333 0x1490  RasMan - ok
10:15:19.0404 0x1490  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
10:15:19.0467 0x1490  RasPppoe - ok
10:15:19.0480 0x1490  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
10:15:19.0548 0x1490  RasSstp - ok
10:15:19.0731 0x1490  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
10:15:19.0809 0x1490  rdbss - ok
10:15:19.0919 0x1490  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
10:15:20.0028 0x1490  rdpbus - ok
10:15:20.0115 0x1490  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
10:15:20.0170 0x1490  RDPCDD - ok
10:15:20.0202 0x1490  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
10:15:20.0311 0x1490  RDPENCDD - ok
10:15:20.0342 0x1490  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
10:15:20.0380 0x1490  RDPREFMP - ok
10:15:20.0432 0x1490  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
10:15:20.0477 0x1490  RDPWD - ok
10:15:20.0586 0x1490  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
10:15:20.0632 0x1490  rdyboost - ok
10:15:20.0772 0x1490  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
10:15:20.0862 0x1490  RemoteAccess - ok
10:15:20.0936 0x1490  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
10:15:21.0063 0x1490  RemoteRegistry - ok
10:15:21.0345 0x1490  [ BA6CE930E1453677F7565AE45181AD76, 92DEB7BF8E9ED32B7E0FE20A05F8C0ECDE7B0EC6F25ABDAA58D27460C96003AD ] Roxio UPnP Renderer 10 C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe
10:15:21.0389 0x1490  Roxio UPnP Renderer 10 - ok
10:15:21.0449 0x1490  [ 3A3D707A35EA30A6CF88B9E555E3D815, 4763394E67F179D7048A460CB9B91E74F33D84C8DBDD4E28401ED473C7347410 ] Roxio Upnp Server 10 C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe
10:15:21.0480 0x1490  Roxio Upnp Server 10 - ok
10:15:21.0543 0x1490  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
10:15:21.0683 0x1490  RpcEptMapper - ok
10:15:21.0761 0x1490  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
10:15:21.0792 0x1490  RpcLocator - ok
10:15:21.0948 0x1490  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
10:15:21.0995 0x1490  RpcSs - ok
10:15:22.0058 0x1490  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
10:15:22.0182 0x1490  rspndr - ok
10:15:22.0276 0x1490  [ 5AAB4808E8CCAE8C2ECDA5B791260616, EFA49ADD657D209AFE73CE0E9184E319D5F7A8A0C6B60BEFA0AAB172B2D397BA ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
10:15:22.0370 0x1490  RSUSBSTOR - ok
10:15:22.0475 0x1490  [ D6D381B76056C668679723938F06F16C, A26C35EB588BF32F5CD22554BE5A05380D50FF1B7D399687EE50DC24C32DA341 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
10:15:22.0567 0x1490  RTHDMIAzAudService - ok
10:15:22.0632 0x1490  [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A, 9F6CFBE7E64A63E0AFEF546C4B8D889657B2055CE80279EA1B63EB5650E730F8 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
10:15:22.0697 0x1490  RTL8167 - ok
10:15:22.0976 0x1490  [ 5AE755A8B7673B8536F88245247C5308, 7D7B11B342B7B9BDEB5DA5FECC46C6834E3824E22E88AECD47DBF2683D48FEFB ] SampleCollector C:\Program Files\Sony\VAIO Care\collsvc.exe
10:15:23.0005 0x1490  SampleCollector - detected UnsignedFile.Multi.Generic ( 1 )
10:15:26.0262 0x1490  Detect skipped due to KSN trusted
10:15:26.0262 0x1490  SampleCollector - ok
10:15:26.0340 0x1490  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
10:15:26.0371 0x1490  SamSs - ok
10:15:26.0449 0x1490  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
10:15:26.0512 0x1490  sbp2port - ok
10:15:26.0668 0x1490  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
10:15:26.0730 0x1490  SCardSvr - ok
10:15:26.0824 0x1490  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
10:15:26.0917 0x1490  scfilter - ok
10:15:27.0121 0x1490  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
10:15:27.0277 0x1490  Schedule - ok
10:15:27.0324 0x1490  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
10:15:27.0355 0x1490  SCPolicySvc - ok
10:15:27.0464 0x1490  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
10:15:27.0551 0x1490  SDRSVC - ok
10:15:27.0592 0x1490  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
10:15:27.0654 0x1490  secdrv - ok
10:15:27.0739 0x1490  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
10:15:27.0805 0x1490  seclogon - ok
10:15:27.0904 0x1490  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
10:15:27.0973 0x1490  SENS - ok
10:15:28.0046 0x1490  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
10:15:28.0091 0x1490  SensrSvc - ok
10:15:28.0132 0x1490  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
10:15:28.0150 0x1490  Serenum - ok
10:15:28.0189 0x1490  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
10:15:28.0236 0x1490  Serial - ok
10:15:28.0254 0x1490  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
10:15:28.0303 0x1490  sermouse - ok
10:15:28.0349 0x1490  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
10:15:28.0418 0x1490  SessionEnv - ok
10:15:28.0462 0x1490  [ 286D3889E6AB5589646FF8A63CB928AE, 98D9D34521328F4F0B0B7C2CAB97BA0EC998B9F3F996B5ED08E17292F1CD9452 ] SFEP            C:\Windows\system32\drivers\SFEP.sys
10:15:28.0498 0x1490  SFEP - ok
10:15:28.0534 0x1490  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
10:15:28.0575 0x1490  sffdisk - ok
10:15:28.0600 0x1490  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
10:15:28.0648 0x1490  sffp_mmc - ok
10:15:28.0659 0x1490  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
10:15:28.0720 0x1490  sffp_sd - ok
10:15:28.0836 0x1490  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
10:15:28.0925 0x1490  sfloppy - ok
10:15:29.0195 0x1490  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
10:15:29.0304 0x1490  SharedAccess - ok
10:15:29.0393 0x1490  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:15:29.0475 0x1490  ShellHWDetection - ok
10:15:29.0530 0x1490  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
10:15:29.0550 0x1490  SiSRaid2 - ok
10:15:29.0618 0x1490  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
10:15:29.0638 0x1490  SiSRaid4 - ok
10:15:29.0711 0x1490  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
10:15:29.0764 0x1490  Smb - ok
10:15:29.0830 0x1490  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
10:15:29.0867 0x1490  SNMPTRAP - ok
10:15:30.0004 0x1490  [ C3E69DB0A4E59564230E053232F39AC7, D7E4AC42C0731F69869E96F3AE9021ABD968E17C92283A54F265E73E6BD60ED5 ] SOHCImp         C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
10:15:30.0025 0x1490  SOHCImp - ok
10:15:30.0105 0x1490  [ C1CD71C672EA281A424FBCF24AC99553, 3C25D36EA36C5ACF7AD4BE47935DD055DCA010ACE4B1A7089493E5F282CDFA7B ] SOHDms          C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
10:15:30.0155 0x1490  SOHDms - ok
10:15:30.0181 0x1490  [ F47D75CEE1844EEF4A9EA6EE768828FB, 242550EB5879476DD2CFC0E38FAF3C6D0263FEA7504BD73ED3B004E274D7CDF6 ] SOHDs           C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
10:15:30.0199 0x1490  SOHDs - ok
10:15:30.0372 0x1490  [ E2E40C0D24456B6EB440BE01AF829829, 862A15D877DA95F341F77428D88DDEA7EC272C75546466DABDF59370ADD1A689 ] SpfService      C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService.exe
10:15:30.0419 0x1490  SpfService - ok
10:15:30.0466 0x1490  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
10:15:30.0497 0x1490  spldr - ok
10:15:30.0559 0x1490  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
10:15:30.0622 0x1490  Spooler - ok
10:15:31.0032 0x1490  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
10:15:31.0260 0x1490  sppsvc - ok
10:15:31.0304 0x1490  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
10:15:31.0388 0x1490  sppuinotify - ok
10:15:31.0934 0x1490  [ 5F242E1A03ACA19044BC55F9C0DA747B, D913BA9C63AFD9AD482681A25FF5E2BC629CDF2CE193EE4B1517CEA2934BAB3B ] SpyHunter 4 Service C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
10:15:32.0001 0x1490  SpyHunter 4 Service - ok
10:15:32.0119 0x1490  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
10:15:32.0250 0x1490  srv - ok
10:15:32.0331 0x1490  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
10:15:32.0454 0x1490  srv2 - ok
10:15:32.0640 0x1490  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
10:15:32.0914 0x1490  srvnet - ok
10:15:33.0013 0x1490  [ 52D6F40B50ECFC051979FEC68E74F0F8, 9C8C65AC69BA5C9885CF2A4BD72B869754948377AA3FED2680E7BF8C5639F2A2 ] ssadbus         C:\Windows\system32\DRIVERS\ssadbus.sys
10:15:33.0047 0x1490  ssadbus - ok
10:15:33.0194 0x1490  [ D6CFD3B2EABCF9327DE39C62BABFA1E3, C748AF55B07FCB9C5A3E3E0CB783CE6387A2C5D646BCA6B5F5FFF37ACCE82AD3 ] ssadmdfl        C:\Windows\system32\DRIVERS\ssadmdfl.sys
10:15:33.0209 0x1490  ssadmdfl - ok
10:15:33.0355 0x1490  [ 5EB01E6148742C3EC2185AC92F6D16FD, 5BD22C745D9BD47C60929F9C556E4B262F9415866EFE9F9263EAD916D74ECAE0 ] ssadmdm         C:\Windows\system32\DRIVERS\ssadmdm.sys
10:15:33.0390 0x1490  ssadmdm - ok
10:15:33.0440 0x1490  [ FF20F67DD5644BD1D2E7FCD95AF7F03B, 23615E776D6A8C406C7DDF0E694ED3B5A2D30913AFD3C0F86A788C5004299845 ] ssadserd        C:\Windows\system32\DRIVERS\ssadserd.sys
10:15:33.0491 0x1490  ssadserd - ok
10:15:33.0603 0x1490  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
10:15:33.0829 0x1490  SSDPSRV - ok
10:15:33.0918 0x1490  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
10:15:34.0069 0x1490  SstpSvc - ok
10:15:34.0339 0x1490  [ F38232291F05CE25BA1C47FB51EB64CB, 7F72E87D02F3072E0D61D528BEBB8F4BFB6AD67FC94A93745493C9A0907FF435 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
10:15:34.0441 0x1490  ssudmdm - ok
10:15:34.0488 0x1490  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
10:15:34.0512 0x1490  stexstor - ok
10:15:34.0741 0x1490  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
10:15:34.0888 0x1490  stisvc - ok
10:15:35.0025 0x1490  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
10:15:35.0038 0x1490  swenum - ok
10:15:35.0227 0x1490  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
10:15:35.0414 0x1490  swprv - ok
10:15:36.0004 0x1490  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
10:15:36.0168 0x1490  SysMain - ok
10:15:36.0234 0x1490  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:15:36.0279 0x1490  TabletInputService - ok
10:15:36.0370 0x1490  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
10:15:36.0474 0x1490  TapiSrv - ok
10:15:36.0516 0x1490  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
10:15:36.0583 0x1490  TBS - ok
10:15:36.0884 0x1490  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
10:15:37.0017 0x1490  Tcpip - ok
10:15:37.0223 0x1490  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
10:15:37.0301 0x1490  TCPIP6 - ok
10:15:37.0426 0x1490  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
10:15:37.0560 0x1490  tcpipreg - ok
10:15:37.0886 0x1490  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
10:15:37.0948 0x1490  TDPIPE - ok
10:15:38.0074 0x1490  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
10:15:38.0239 0x1490  TDTCP - ok
10:15:38.0432 0x1490  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
10:15:38.0499 0x1490  tdx - ok
10:15:38.0546 0x1490  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
10:15:38.0561 0x1490  TermDD - ok
10:15:38.0682 0x1490  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
10:15:38.0789 0x1490  TermService - ok
10:15:38.0850 0x1490  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
10:15:38.0900 0x1490  Themes - ok
10:15:38.0992 0x1490  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
10:15:39.0035 0x1490  THREADORDER - ok
10:15:39.0065 0x1490  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
10:15:39.0126 0x1490  TrkWks - ok
10:15:39.0263 0x1490  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:15:39.0361 0x1490  TrustedInstaller - ok
10:15:39.0477 0x1490  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
10:15:39.0536 0x1490  tssecsrv - ok
10:15:39.0630 0x1490  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
10:15:39.0669 0x1490  TsUsbFlt - ok
10:15:39.0752 0x1490  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
10:15:39.0849 0x1490  tunnel - ok
10:15:39.0925 0x1490  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
10:15:39.0952 0x1490  uagp35 - ok
10:15:40.0050 0x1490  [ 63F6D08C54D5B3C1B12A6172032055C7, 87D872731D2C85E1A0ED3128CB7AB91AF00D830B0E4307054ABFD1D3900C990D ] uCamMonitor     C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
10:15:40.0068 0x1490  uCamMonitor - ok
10:15:40.0109 0x1490  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
10:15:40.0181 0x1490  udfs - ok
10:15:40.0271 0x1490  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
10:15:40.0306 0x1490  UI0Detect - ok
10:15:40.0331 0x1490  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
10:15:40.0349 0x1490  uliagpkx - ok
10:15:40.0433 0x1490  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
10:15:40.0459 0x1490  umbus - ok
10:15:40.0533 0x1490  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
10:15:40.0645 0x1490  UmPass - ok
10:15:40.0859 0x1490  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
10:15:40.0934 0x1490  upnphost - ok
10:15:40.0994 0x1490  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
10:15:41.0031 0x1490  usbaudio - ok
10:15:41.0074 0x1490  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
10:15:41.0108 0x1490  usbccgp - ok
10:15:41.0154 0x1490  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
10:15:41.0174 0x1490  usbcir - ok
10:15:41.0204 0x1490  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
10:15:41.0237 0x1490  usbehci - ok
10:15:41.0275 0x1490  [ 2C780746DC44A28FE67004DC58173F05, 9E0596CE35C7430A31A7E77B4D12A1F521B9ED8EB0614E6FB38403AC614C3EE3 ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
10:15:41.0287 0x1490  usbfilter - ok
10:15:41.0413 0x1490  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
10:15:41.0479 0x1490  usbhub - ok
10:15:41.0509 0x1490  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
10:15:41.0554 0x1490  usbohci - ok
10:15:41.0607 0x1490  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
10:15:41.0665 0x1490  usbprint - ok
10:15:41.0740 0x1490  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
10:15:41.0772 0x1490  usbscan - ok
10:15:41.0842 0x1490  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:15:41.0900 0x1490  USBSTOR - ok
10:15:41.0954 0x1490  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
10:15:41.0984 0x1490  usbuhci - ok
10:15:42.0037 0x1490  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
10:15:42.0083 0x1490  usbvideo - ok
10:15:42.0127 0x1490  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
10:15:42.0236 0x1490  UxSms - ok
10:15:42.0431 0x1490  [ 4E7135D6D0127067E4CFEE12259F895D, 2542257E3912591AC4902FF08E43C46CC91BA97D67EED9375CC5DB5DEE71797F ] VAIO Entertainment TV Device Arbitration Service C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
10:15:42.0548 0x1490  VAIO Entertainment TV Device Arbitration Service - detected UnsignedFile.Multi.Generic ( 1 )
10:15:45.0362 0x1490  Detect skipped due to KSN trusted
10:15:45.0362 0x1490  VAIO Entertainment TV Device Arbitration Service - ok
10:15:45.0472 0x1490  [ CB5B94EE1775FA4CD6B133F1745003C6, 6D2707BA3CC4AEC606FEB9B9FCC3054B786412A416F0AD34F1C6D9ECAB3F2A8F ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
10:15:45.0510 0x1490  VAIO Event Service - ok
10:15:45.0706 0x1490  [ 1CF1A4DD7A58C966C9014B83C7229CF3, 950799BF8DA7B6125FB6D373F1EB64C9E0E2B80C7C849F1776C4B4B9820988C0 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
10:15:45.0797 0x1490  VAIO Power Management - ok
10:15:45.0853 0x1490  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
10:15:45.0881 0x1490  VaultSvc - ok
10:15:46.0188 0x1490  [ 917FB366B6CF2834CDBF9256D18A8FF0, 87CAF895B73FE2E3A7CCA0302DAC5056233228079A7A8EE20CFE246BBB14B89D ] VCFw            C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
10:15:46.0243 0x1490  VCFw - ok
10:15:46.0452 0x1490  [ 10E212BFB7EAB152A64C1AAEC2F7F4E0, 2ECAF721B94C2C89FF32547547368DDC747D2F3CE335F0DC95B4E296F263BD82 ] VcmIAlzMgr      C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
10:15:46.0490 0x1490  VcmIAlzMgr - ok
10:15:46.0530 0x1490  [ 7A88CFD3FE99F2C9B95A6E2A08B96E14, E9CDC538293603A2AE206867E939BEEE6DD8ED5687B83BA7173D25D2A0192B74 ] VcmINSMgr       C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe
10:15:46.0553 0x1490  VcmINSMgr - ok
10:15:46.0592 0x1490  [ 8EFAACCC7BFA1E9031EFDFB01A1B0D69, 43415C27E10F39A4AA32102EE700D08EC0700AD854FBF31FDF8B93F4C3CE1D72 ] VcmXmlIfHelper  C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe
10:15:46.0608 0x1490  VcmXmlIfHelper - ok
10:15:46.0645 0x1490  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
10:15:46.0661 0x1490  vdrvroot - ok
10:15:46.0845 0x1490  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
10:15:46.0919 0x1490  vds - ok
10:15:46.0977 0x1490  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
10:15:47.0016 0x1490  vga - ok
10:15:47.0048 0x1490  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
10:15:47.0112 0x1490  VgaSave - ok
10:15:47.0201 0x1490  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
10:15:47.0240 0x1490  vhdmp - ok
10:15:47.0295 0x1490  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
10:15:47.0310 0x1490  viaide - ok
10:15:47.0343 0x1490  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
10:15:47.0361 0x1490  volmgr - ok
10:15:47.0499 0x1490  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
10:15:47.0532 0x1490  volmgrx - ok
10:15:47.0577 0x1490  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
10:15:47.0606 0x1490  volsnap - ok
10:15:47.0669 0x1490  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
10:15:47.0690 0x1490  vsmraid - ok
10:15:47.0922 0x1490  [ A546FAD8675170D35F97069EE758B054, 42CBBEE6B32455BD6A109E57E714465DA96C9482A90ABC2975CDC165E317B303 ] VSNService      C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
10:15:47.0962 0x1490  VSNService - detected UnsignedFile.Multi.Generic ( 1 )
10:15:50.0722 0x1490  Detect skipped due to KSN trusted
10:15:50.0723 0x1490  VSNService - ok
10:15:50.0930 0x1490  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
10:15:51.0067 0x1490  VSS - ok
10:15:51.0464 0x1490  [ 8AB3DA5EA4F94EE38680B3ACED11D57D, 533996555EEDAD2FF4DCCCDDFCB8770A99EA760725CC5204EB8A10236FB8EF59 ] VUAgent         C:\Program Files\Sony\VAIO Update 5\VUAgent.exe
10:15:51.0540 0x1490  VUAgent - ok
10:15:51.0592 0x1490  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
10:15:51.0645 0x1490  vwifibus - ok
10:15:51.0676 0x1490  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
10:15:51.0726 0x1490  vwififlt - ok
10:15:51.0791 0x1490  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
10:15:51.0851 0x1490  vwifimp - ok
10:15:51.0961 0x1490  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
10:15:52.0047 0x1490  W32Time - ok
10:15:52.0116 0x1490  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
10:15:52.0174 0x1490  WacomPen - ok
10:15:52.0241 0x1490  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
10:15:52.0314 0x1490  WANARP - ok
10:15:52.0345 0x1490  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
10:15:52.0390 0x1490  Wanarpv6 - ok
10:15:52.0822 0x1490  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
10:15:52.0877 0x1490  WatAdminSvc - ok
10:15:53.0205 0x1490  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
10:15:53.0299 0x1490  wbengine - ok
10:15:53.0376 0x1490  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
10:15:53.0417 0x1490  WbioSrvc - ok
10:15:53.0459 0x1490  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
10:15:53.0533 0x1490  wcncsvc - ok
10:15:53.0542 0x1490  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:15:53.0576 0x1490  WcsPlugInService - ok
10:15:53.0604 0x1490  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
10:15:53.0617 0x1490  Wd - ok
10:15:53.0899 0x1490  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
10:15:53.0942 0x1490  Wdf01000 - ok
10:15:53.0972 0x1490  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
10:15:54.0041 0x1490  WdiServiceHost - ok
10:15:54.0064 0x1490  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
10:15:54.0102 0x1490  WdiSystemHost - ok
10:15:54.0193 0x1490  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
10:15:54.0232 0x1490  WebClient - ok
10:15:54.0268 0x1490  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
10:15:54.0337 0x1490  Wecsvc - ok
10:15:54.0370 0x1490  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
10:15:54.0448 0x1490  wercplsupport - ok
10:15:54.0494 0x1490  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
10:15:54.0564 0x1490  WerSvc - ok
10:15:54.0616 0x1490  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
10:15:54.0692 0x1490  WfpLwf - ok
10:15:54.0728 0x1490  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
10:15:54.0760 0x1490  WIMMount - ok
10:15:54.0807 0x1490  WinDefend - ok
10:15:54.0819 0x1490  WinHttpAutoProxySvc - ok
10:15:54.0925 0x1490  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
10:15:55.0008 0x1490  Winmgmt - ok
10:15:55.0174 0x1490  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
10:15:55.0370 0x1490  WinRM - ok
10:15:55.0438 0x1490  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
10:15:55.0478 0x1490  WinUsb - ok
10:15:55.0598 0x1490  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
10:15:55.0690 0x1490  Wlansvc - ok
10:15:55.0951 0x1490  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:15:56.0036 0x1490  wlidsvc - ok
10:15:56.0073 0x1490  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
10:15:56.0104 0x1490  WmiAcpi - ok
10:15:56.0170 0x1490  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
10:15:56.0213 0x1490  wmiApSrv - ok
10:15:56.0244 0x1490  WMPNetworkSvc - ok
10:15:56.0336 0x1490  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
10:15:56.0373 0x1490  WPCSvc - ok
10:15:56.0468 0x1490  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
10:15:56.0507 0x1490  WPDBusEnum - ok
10:15:56.0549 0x1490  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
10:15:56.0612 0x1490  ws2ifsl - ok
10:15:56.0656 0x1490  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
10:15:56.0721 0x1490  wscsvc - ok
10:15:56.0730 0x1490  WSearch - ok
10:15:57.0131 0x1490  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
10:15:57.0274 0x1490  wuauserv - ok
10:15:57.0318 0x1490  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
10:15:57.0356 0x1490  WudfPf - ok
10:15:57.0408 0x1490  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
10:15:57.0456 0x1490  WUDFRd - ok
10:15:57.0496 0x1490  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
10:15:57.0569 0x1490  wudfsvc - ok
10:15:57.0627 0x1490  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
10:15:57.0730 0x1490  WwanSvc - ok
10:15:57.0873 0x1490  ================ Scan global ===============================
10:15:57.0900 0x1490  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
10:15:58.0004 0x1490  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
10:15:58.0034 0x1490  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
10:15:58.0093 0x1490  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
10:15:58.0227 0x1490  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
10:15:58.0253 0x1490  [ Global ] - ok
10:15:58.0254 0x1490  ================ Scan MBR ==================================
10:15:58.0275 0x1490  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:15:58.0998 0x1490  \Device\Harddisk0\DR0 - ok
10:15:58.0999 0x1490  ================ Scan VBR ==================================
10:15:59.0016 0x1490  [ 82CB7049C37AA6A2FDFFE8A62A965528 ] \Device\Harddisk0\DR0\Partition1
10:15:59.0019 0x1490  \Device\Harddisk0\DR0\Partition1 - ok
10:15:59.0032 0x1490  [ D49ECBC3CC4E57671EDAB9F4AC88CA69 ] \Device\Harddisk0\DR0\Partition2
10:15:59.0034 0x1490  \Device\Harddisk0\DR0\Partition2 - ok
10:15:59.0035 0x1490  ================ Scan generic autorun ======================
10:15:59.0655 0x1490  [ 12A5B2D07E28D9BF17CFE60255AE7448, 15CEBC602FC6241C23162DF9ECC847B056A997CBB5DE2C95A3E448288C60DA48 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
10:16:00.0300 0x1490  RtHDVCpl - ok
10:16:00.0323 0x1490  Apoint - ok
10:16:00.0608 0x1490  [ 4EC4260D778FB923BA1AB697AFF6C0E3, 72372369153F675C26F938C5106BFD8704FC518348BC95961214B76DECB68689 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
10:16:00.0690 0x1490  StartCCC - detected UnsignedFile.Multi.Generic ( 1 )
10:16:03.0529 0x1490  Detect skipped due to KSN trusted
10:16:03.0529 0x1490  StartCCC - ok
10:16:03.0658 0x1490  [ 466CE40EAA865752F4930A472563E4E1, 0236EC4FBEECDB8367CCCDD40E700F2E3044AD68EA82EFD6E76A82757F468670 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
10:16:03.0669 0x1490  Adobe Reader Speed Launcher - ok
10:16:03.0761 0x1490  [ 48BE298F7FD1BEF4D8FBACB04D8D95C4, D375B3F6E850E4B0EC81BAA0E554C356BE2248AA77C6C56F5267CA05460FE4EB ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
10:16:03.0844 0x1490  Adobe ARM - ok
10:16:03.0931 0x1490  [ 323402CA932682F8E698BE9695BCAE15, 567FA8CB2536322B4A1A36AA4017860650EFBA583340C2AB20EED436583F8754 ] C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe
10:16:04.0003 0x1490  NortonOnlineBackupReminder - ok
10:16:04.0460 0x1490  [ 88C7319B0D171537A59520FE4DD8C357, EDE64778648E8DA5AA59B69F28C24F2B529D41859C38EE2FB6F5C4C857894E89 ] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
10:16:04.0660 0x1490  PMBVolumeWatcher - ok
10:16:04.0956 0x1490  [ A05602FCF939A0A051D0CDF8C5CEDA98, A7FD36FAC8366D5B71854934E0B0CC2752C9C2B7173B31C6BDE4010864065189 ] C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
10:16:04.0994 0x1490  TkBellExe - ok
10:16:05.0106 0x1490  [ 12916E0642E92561C98B18A2A2D01B14, 4C28478CFE25E1F29AEF8BA6F2FAF3E6C2B34BF18CA77052813903E10ADDCCD5 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
10:16:05.0127 0x1490  SunJavaUpdateSched - ok
10:16:05.0215 0x1490  [ B45F2C4076ACFD9714037B7C69D90167, 560172AAB25C9FABB06C08D7364F1A7EDE398AE24A7528C7EE7099503361C907 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
10:16:05.0240 0x1490  APSDaemon - ok
10:16:05.0392 0x1490  [ 916A2C4EB028604783FD5EA169236C1D, C97DAA1BE5C912DDCEDBA7619631BB98F4A9B32B1E40C5374A64E25305E0A1C4 ] C:\Program Files (x86)\QuickTime\QTTask.exe
10:16:05.0472 0x1490  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
10:16:08.0371 0x1490  Detect skipped due to KSN trusted
10:16:08.0371 0x1490  QuickTime Task - ok
10:16:08.0696 0x1490  [ 34086F1DBB4065047EA3671CB70505CC, 2C82287A8FD75724CEB95689C7CEF2C5D3EE263E9966E8982EF2F1A97BDCB946 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
10:16:08.0725 0x1490  iTunesHelper - ok
10:16:09.0016 0x1490  [ F62AAF12E9CEF17D654FFE6CA3CA6E76, 0209E1943CBD869D56CB23C2E70C39C4438E6CDC64046AFEEBCF0087E54FDBDF ] C:\Program Files (x86)\Aimersoft\Video Converter Ultimate\BrowserPlugInHelper.exe
10:16:09.0225 0x1490  BrowserPlugInHelper - detected UnsignedFile.Multi.Generic ( 1 )
10:16:11.0974 0x1490  Detect skipped due to KSN trusted
10:16:11.0974 0x1490  BrowserPlugInHelper - ok
10:16:12.0161 0x1490  [ 367309746E04D480AD0DCF1FFD197E8D, 8F5BEB6BD105390A73CC499686314998C467624CB5FA9FD8EE62B632004B1EC4 ] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
10:16:12.0188 0x1490  BlueStacks Agent - ok
10:16:12.0266 0x1490  [ D658AB1B55127D18DCFBCAC8CAAEA522, 9FB818F3899542CB7F1B979644423A66842D98D1762B1C38AE04AEE23320DA8E ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
10:16:12.0278 0x1490  HP Software Update - ok
10:16:12.0486 0x1490  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
10:16:12.0629 0x1490  Sidebar - ok
10:16:12.0685 0x1490  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
10:16:12.0728 0x1490  mctadmin - ok
10:16:12.0767 0x1490  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
10:16:12.0817 0x1490  Sidebar - ok
10:16:12.0848 0x1490  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
10:16:12.0870 0x1490  mctadmin - ok
10:16:13.0001 0x1490  [ B455B50779CFC054FC3C607706CAFF04, 558D807BC27B382F2919E502A8E8865B1F41A205C1FB9AB1B8CF477BC918C30E ] C:\PROGRA~2\Raptr\raptrstub.exe
10:16:13.0038 0x1490  Raptr - ok
10:16:13.0886 0x1490  Google Update - ok
10:16:13.0984 0x1490  [ E9F85ACF13A47C62443ECE9E8556D2E2, D21EEE2101090093280B9DFE0BFCF852235E78DBF0B36114C12BECB84242BD9D ] C:\Program Files (x86)\AWS\WeatherBug Alert\WeatherBugAlert.exe
10:16:14.0039 0x1490  WeatherBugAlert - detected UnsignedFile.Multi.Generic ( 1 )
10:16:16.0865 0x1490  Detect skipped due to KSN trusted
10:16:16.0865 0x1490  WeatherBugAlert - ok
10:16:17.0005 0x1490  [ B43E68B8A022FB00FF54360D408E871B, 414F8F45729CAEC81A09A72A473EB12DC2ED861C39DFD343ECE79652F65DCEA8 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
10:16:17.0050 0x1490  GoogleChromeAutoLaunch_86F3357DC7FC4D8C4337D470715F2E08 - ok
10:16:17.0227 0x1490  [ 27DECE3A80717098AB1F1436F3DC4C87, 757763408CEC3EAA73F6056E5868FB5CD56C69570BA5FFEF2E67EF947DA469C9 ] C:\Program Files (x86)\Samsung\Kies\Kies.exe
10:16:17.0307 0x1490  KiesPreload - ok
10:16:17.0311 0x1490  Waiting for KSN requests completion. In queue: 9
10:16:18.0311 0x1490  Waiting for KSN requests completion. In queue: 9
10:16:19.0311 0x1490  Waiting for KSN requests completion. In queue: 9
10:16:20.0520 0x1490  AV detected via SS2: Avira Desktop, C:\Program Files (x86)\Avira\AntiVir Desktop\wsctool.exe ( 14.0.5.376 ), 0x41000 ( enabled : updated )
10:16:20.0562 0x1490  Win FW state via NFP2: enabled
10:16:23.0307 0x1490  ============================================================
10:16:23.0307 0x1490  Scan finished
10:16:23.0307 0x1490  ============================================================
10:16:23.0331 0x163c  Detected object count: 0
10:16:23.0331 0x163c  Actual detected object count: 0


#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,735 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:42 AM

Posted 02 August 2014 - 12:49 PM

That looks clean.

 

p22002970.gif Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me.

p22002970.gif Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


p22002970.gif Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (do NOT change any settings here)
  • List Users, Partitions and Memory size
  • List Restore Points

Click Go and post the result.

p22002970.gif Please download Malwarebytes Anti-Malware to your desktop.
NOTE. If you already have MBAM 2.0 installed scroll down.

  • Double-click mb3-setup-1878.1878-3.5.1.2522.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:

    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.

  • Click Finish.
  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.



If you already have MBAM 2.0 installed:

  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.


How to get logs:
(Export log to save as txt)


  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the Scan Log which shows the Date and time of the scan just performed.
  • Click 'Export'.
  • Click 'Text file (*.txt)'
  • In the Save File dialog box which appears, click on Desktop.
  • In the File name: box type a name for your scan log.
  • A message box named 'File Saved' should appear stating "Your file has been successfully exported".
  • Click Ok
  • Attach that saved log to your next reply.



(Copy to clipboard for pasting into forum replies or tickets)

  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.


p22002970.gifDownload Malwarebytes Anti-Rootkit from HERE to your Desktop.
  • Unzip downloaded file.
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • DO NOT click on the Cleanup button. Simply exit the program.
  • When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt


p22002970.gif Please download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista or Windows 7 right-click on it and choose Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • Do not reboot until instructed.
  • If the tool does not run from any of the links provided, please let me know.


If normal mode still doesn't work, run the tool from safe mode.

When the scan is done Notepad will open with rKill log.
Post it in your next reply.

NOTE. rKill.txt log will also be present on your desktop.

NOTE Do NOT wrap your logs in "quote" or "code" brackets.
Do NOT use spoilers.
Do NOT edit your reply to post additional logs. Create new reply. I'll not get any email notifications about edits so I won't know you posted something new.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#5 priscilla18

priscilla18
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:05:42 PM

Posted 02 August 2014 - 02:01 PM

Hello, thank you for your reaction.

I did everything that you said. Some part are in dutch, if you want me to translate it, i'll do that.

 

 

Security check:

Results of screen317's Security Check version 0.99.86 

 Windows 7 Service Pack 1 x64 (UAC is disabled!) 

 Internet Explorer 11 

``````````````Antivirus/Firewall Check:``````````````

Avira Desktop  

 Antivirus up to date!  

`````````Anti-malware/Other Utilities Check:`````````

 JavaFX 2.1.1   

 Java™ 6 Update 30 

 Java 7 Update 9 

 Java version out of Date!

 Adobe Flash Player 14.0.0.145 

 Adobe Reader 9 Adobe Reader out of Date!

 Mozilla Firefox 12.0 Firefox out of Date! 

 Google Chrome 35.0.1916.153 

 Google Chrome 36.0.1985.125 

````````Process Check: objlist.exe by Laurent```````` 

 Avira Antivir avgnt.exe

 Avira Antivir avguard.exe

`````````````````System Health check`````````````````

 Total Fragmentation on Drive C: 1%

````````````````````End of Log``````````````````````

 

 

Farbar service scanner

 

Farbar Service Scanner Version: 21-07-2014

Ran by priscilla (administrator) on 02-08-2014 at 20:06:19

Running from "C:\Users\priscilla\Downloads"

Microsoft Windows 7 Home Premium  Service Pack 1 (X64)

Boot Mode: Normal

****************************************************************

 

Internet Services:

============

 

Connection Status:

==============

Localhost is accessible.

LAN connected.

Google IP is accessible.

Google.com is accessible.

Yahoo.com is accessible.

 

 

Windows Firewall:

=============

 

Firewall Disabled Policy:

==================

 

 

System Restore:

============

 

System Restore Disabled Policy:

========================

 

 

Action Center:

============

 

 

Windows Update:

============

 

Windows Autoupdate Disabled Policy:

============================

 

 

Windows Defender:

==============

WinDefend Service is not running. Checking service configuration:

The start type of WinDefend service is set to Demand. The default start type is Auto.

The ImagePath of WinDefend service is OK.

The ServiceDll of WinDefend service is OK.

 

 

Windows Defender Disabled Policy:

==========================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]

"DisableAntiSpyware"=DWORD:1

 

 

Other Services:

==============

 

 

File Check:

========

C:\Windows\System32\nsisvc.dll => File is digitally signed

C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed

C:\Windows\System32\dhcpcore.dll => File is digitally signed

C:\Windows\System32\drivers\afd.sys => File is digitally signed

C:\Windows\System32\drivers\tdx.sys => File is digitally signed

C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed

C:\Windows\System32\dnsrslvr.dll => File is digitally signed

C:\Windows\System32\mpssvc.dll => File is digitally signed

C:\Windows\System32\bfe.dll => File is digitally signed

C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed

C:\Windows\System32\SDRSVC.dll => File is digitally signed

C:\Windows\System32\vssvc.exe => File is digitally signed

C:\Windows\System32\wscsvc.dll => File is digitally signed

C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed

C:\Windows\System32\wuaueng.dll => File is digitally signed

C:\Windows\System32\qmgr.dll => File is digitally signed

C:\Windows\System32\es.dll => File is digitally signed

C:\Windows\System32\cryptsvc.dll => File is digitally signed

C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed

C:\Windows\System32\ipnathlp.dll => File is digitally signed

C:\Windows\System32\iphlpsvc.dll => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

 

 

**** End of log ****

 

Minitoolbox

MiniToolBox by Farbar  Version: 21-07-2014

Ran by priscilla (administrator) on 02-08-2014 at 20:08:02

Running from "C:\Users\priscilla\Downloads"

Microsoft Windows 7 Home Premium  Service Pack 1 (X64)

Boot Mode: Normal

***************************************************************************

 

========================= IE Proxy Settings: ==============================

 

Proxy is not enabled.

No Proxy Server is set.

 

========================= FF Proxy Settings: ==============================

 

"network.proxy.http", "68.180.195.138"

"network.proxy.http_port", 80

"network.proxy.ssl_port", 8080

"network.proxy.type", 1

========================= Hosts content: =================================

 

 

 

========================= IP Configuration: ================================

 

Atheros AR9285 Wireless Network Adapter = Draadloze netwerkverbinding (Connected)

Realtek PCIe GBE Family Controller = LAN-verbinding (Media disconnected)

Microsoft Virtual WiFi Miniport Adapter = Draadloze netwerkverbinding 2 (Media disconnected)

 

 

# ----------------------------------

# IPv4-configuratie

# ----------------------------------

pushd interface ipv4

 

reset

set global icmpredirects=enabled

 

 

popd

# Einde van IPv4-configuratie

 

 

 

Windows IP-configuratie

 

   Hostnaam  . . . . . . . . . . . . : priscilla-pc

   Primair DNS-achtervoegsel . . . . :

   Knooppunttype . . . . . . . . . . : hybride

   IP-routering ingeschakeld . . . . : nee

   WINS-proxy ingeschakeld . . . . . : nee

 

Draadloos LAN-adapter voor Draadloze netwerkverbinding 2:

 

   Mediumstatus. . . . . . . . . . . : medium ontkoppeld

   Verbindingsspec. DNS-achtervoegsel:

   Beschrijving. . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter

   Fysiek adres. . . . . . . . . . . : 96-00-4E-B1-B1-FF

   DHCP ingeschakeld . . . . . . . . : ja

   Autom. configuratie ingeschakeld  : ja

 

Ethernet-adapter voor LAN-verbinding:

 

   Mediumstatus. . . . . . . . . . . : medium ontkoppeld

   Verbindingsspec. DNS-achtervoegsel:

   Beschrijving. . . . . . . . . . . : Realtek PCIe GBE Family Controller

   Fysiek adres. . . . . . . . . . . : 78-84-3C-33-89-DD

   DHCP ingeschakeld . . . . . . . . : ja

   Autom. configuratie ingeschakeld  : ja

 

Draadloos LAN-adapter voor Draadloze netwerkverbinding:

 

   Verbindingsspec. DNS-achtervoegsel:

   Beschrijving. . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter

   Fysiek adres. . . . . . . . . . . : 90-00-4E-B1-B1-FF

   DHCP ingeschakeld . . . . . . . . : ja

   Autom. configuratie ingeschakeld  : ja

   Link-local IPv6-adres . . . . . . : fe80::f131:9e42:d7a0:afcb%10(voorkeur)

   IPv4-adres. . . . . . . . . . . . : 192.168.1.6(voorkeur)

   Subnetmasker. . . . . . . . . . . : 255.255.255.0

   Lease verkregen . . . . . . . . . : zaterdag 2 augustus 2014 10:04:35

   Lease verlopen. . . . . . . . . . : zondag 3 augustus 2014 19:06:49

   Standaardgateway. . . . . . . . . : 192.168.1.1

   DHCP-server . . . . . . . . . . . : 192.168.1.1

   DHCPv6 IAID . . . . . . . . . . . : 189534062

   DHCPv6-client DUID. . . . . . . . : 00-01-00-01-15-9D-26-0E-78-84-3C-33-89-DD

   DNS-servers . . . . . . . . . . . : 8.8.8.8

   NetBIOS via TCPIP . . . . . . . . : ingeschakeld

 

Tunnel-adapter voor isatap.{A35F455B-5668-4676-9BE3-74A32BB9A2C8}:

 

   Mediumstatus. . . . . . . . . . . : medium ontkoppeld

   Verbindingsspec. DNS-achtervoegsel:

   Beschrijving. . . . . . . . . . . : Microsoft ISATAP Adapter

   Fysiek adres. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP ingeschakeld . . . . . . . . : nee

   Autom. configuratie ingeschakeld  : ja

 

Tunnel-adapter voor LAN-verbinding* 19:

 

   Mediumstatus. . . . . . . . . . . : medium ontkoppeld

   Verbindingsspec. DNS-achtervoegsel:

   Beschrijving. . . . . . . . . . . : Microsoft ISATAP Adapter #2

   Fysiek adres. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP ingeschakeld . . . . . . . . : nee

   Autom. configuratie ingeschakeld  : ja

 

Tunnel-adapter voor LAN-verbinding* 20:

 

   Mediumstatus. . . . . . . . . . . : medium ontkoppeld

   Verbindingsspec. DNS-achtervoegsel:

   Beschrijving. . . . . . . . . . . : Microsoft ISATAP Adapter #3

   Fysiek adres. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP ingeschakeld . . . . . . . . : nee

   Autom. configuratie ingeschakeld  : ja

 

Tunnel-adapter voor Reusable ISATAP Interface {84C1E871-D86F-4163-8F01-CC6BF5093552}:

 

   Mediumstatus. . . . . . . . . . . : medium ontkoppeld

   Verbindingsspec. DNS-achtervoegsel:

   Beschrijving. . . . . . . . . . . : Microsoft ISATAP Adapter #4

   Fysiek adres. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP ingeschakeld . . . . . . . . : nee

   Autom. configuratie ingeschakeld  : ja

 

Tunnel-adapter voor LAN-verbinding* 24:

 

   Mediumstatus. . . . . . . . . . . : medium ontkoppeld

   Verbindingsspec. DNS-achtervoegsel:

   Beschrijving. . . . . . . . . . . : Microsoft ISATAP Adapter #5

   Fysiek adres. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP ingeschakeld . . . . . . . . : nee

   Autom. configuratie ingeschakeld  : ja

 

Tunnel-adapter voor LAN-verbinding* 30:

 

   Mediumstatus. . . . . . . . . . . : medium ontkoppeld

   Verbindingsspec. DNS-achtervoegsel:

   Beschrijving. . . . . . . . . . . : Microsoft ISATAP Adapter #6

   Fysiek adres. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP ingeschakeld . . . . . . . . : nee

   Autom. configuratie ingeschakeld  : ja

 

Tunnel-adapter voor LAN-verbinding* 31:

 

   Mediumstatus. . . . . . . . . . . : medium ontkoppeld

   Verbindingsspec. DNS-achtervoegsel:

   Beschrijving. . . . . . . . . . . : Microsoft ISATAP Adapter #9

   Fysiek adres. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP ingeschakeld . . . . . . . . : nee

   Autom. configuratie ingeschakeld  : ja

 

Tunnel-adapter voor LAN-verbinding* 34:

 

   Mediumstatus. . . . . . . . . . . : medium ontkoppeld

   Verbindingsspec. DNS-achtervoegsel:

   Beschrijving. . . . . . . . . . . : Microsoft ISATAP Adapter #8

   Fysiek adres. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP ingeschakeld . . . . . . . . : nee

   Autom. configuratie ingeschakeld  : ja

 

Tunnel-adapter voor LAN-verbinding* 51:

 

   Mediumstatus. . . . . . . . . . . : medium ontkoppeld

   Verbindingsspec. DNS-achtervoegsel:

   Beschrijving. . . . . . . . . . . : Microsoft ISATAP Adapter #11

   Fysiek adres. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP ingeschakeld . . . . . . . . : nee

   Autom. configuratie ingeschakeld  : ja

 

Tunnel-adapter voor LAN-verbinding* 52:

 

   Verbindingsspec. DNS-achtervoegsel:

   Beschrijving. . . . . . . . . . . : Teredo Tunneling Pseudo-Interface

   Fysiek adres. . . . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP ingeschakeld . . . . . . . . : nee

   Autom. configuratie ingeschakeld  : ja

   IPv6-adres. . . . . . . . . . . . : 2001:0:5ef5:79fd:d3:5ae:3f57:fef9(voorkeur)

   Link-local IPv6-adres . . . . . . : fe80::d3:5ae:3f57:fef9%62(voorkeur)

   Standaardgateway. . . . . . . . . : ::

   NetBIOS via TCPIP . . . . . . . . : uitgeschakeld

Server:  google-public-dns-a.google.com

Address:  8.8.8.8

 

Naam:    google.com

Addresses:  2a00:1450:4013:c00::8b

                  173.194.65.139

                  173.194.65.100

                  173.194.65.101

                  173.194.65.138

                  173.194.65.102

                  173.194.65.113

 

 

Pingen naar google.com [173.194.65.139] met 32 bytes aan gegevens:

Antwoord van 173.194.65.139: bytes=32 tijd=28 ms TTL=49

Antwoord van 173.194.65.139: bytes=32 tijd=27 ms TTL=49

 

Ping-statistieken voor 173.194.65.139:

    Pakketten: verzonden = 2, ontvangen = 2, verloren = 0

    (0% verlies).

 

De gemiddelde tijd voor het uitvoeren van ��n bewerking in milliseconden:

    Minimum = 27ms, Maximum = 28ms, Gemiddelde = 27ms

Server:  google-public-dns-a.google.com

Address:  8.8.8.8

 

Naam:    yahoo.com

Addresses:  98.139.183.24

                  206.190.36.45

                  98.138.253.109

 

 

Pingen naar yahoo.com [206.190.36.45] met 32 bytes aan gegevens:

Antwoord van 206.190.36.45: bytes=32 tijd=185 ms TTL=49

Antwoord van 206.190.36.45: bytes=32 tijd=186 ms TTL=49

 

Ping-statistieken voor 206.190.36.45:

    Pakketten: verzonden = 2, ontvangen = 2, verloren = 0

    (0% verlies).

 

De gemiddelde tijd voor het uitvoeren van ��n bewerking in milliseconden:

    Minimum = 185ms, Maximum = 186ms, Gemiddelde = 185ms

 

Pingen naar 127.0.0.1 met 32 bytes aan gegevens:

Antwoord van 127.0.0.1: bytes=32 tijd<1 ms TTL=128

Antwoord van 127.0.0.1: bytes=32 tijd<1 ms TTL=128

 

Ping-statistieken voor 127.0.0.1:

    Pakketten: verzonden = 2, ontvangen = 2, verloren = 0

    (0% verlies).

 

De gemiddelde tijd voor het uitvoeren van ��n bewerking in milliseconden:

    Minimum = 0ms, Maximum = 0ms, Gemiddelde = 0ms

===========================================================================

Interfacelijst

 42...96 00 4e b1 b1 ff ......Microsoft Virtual WiFi Miniport Adapter

 11...78 84 3c 33 89 dd ......Realtek PCIe GBE Family Controller

 10...90 00 4e b1 b1 ff ......Atheros AR9285 Wireless Network Adapter

  1...........................Software Loopback Interface 1

 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter

 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2

 24...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3

 26...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4

 31...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5

 36...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6

 38...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #9

 43...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #8

 60...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #11

 62...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface

===========================================================================

 

IPv4 routetabel

===========================================================================

Actieve routes:

Netwerkadres             Netmasker          Gateway        Interface Metric

          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.6     25

        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306

        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306

  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306

      192.168.1.0    255.255.255.0         On-link       192.168.1.6    281

      192.168.1.6  255.255.255.255         On-link       192.168.1.6    281

    192.168.1.255  255.255.255.255         On-link       192.168.1.6    281

        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306

        224.0.0.0        240.0.0.0         On-link       192.168.1.6    281

  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306

  255.255.255.255  255.255.255.255         On-link       192.168.1.6    281

===========================================================================

Permanente routes:

  Geen

 

IPv6 routetabel

===========================================================================

Actieve routes:

 Indien metrische netwerkbestemming      Gateway

 62     58 ::/0                     On-link

  1    306 ::1/128                  On-link

 62     58 2001::/32                On-link

 62    306 2001:0:5ef5:79fd:d3:5ae:3f57:fef9/128

                                    On-link

 10    281 fe80::/64                On-link

 62    306 fe80::/64                On-link

 62    306 fe80::d3:5ae:3f57:fef9/128

                                    On-link

 10    281 fe80::f131:9e42:d7a0:afcb/128

                                    On-link

  1    306 ff00::/8                 On-link

 62    306 ff00::/8                 On-link

 10    281 ff00::/8                 On-link

===========================================================================

Permanente routes:

  Geen

========================= Winsock entries =====================================

 

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)

Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)

Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)

Catalog5 05 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)

Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)

Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)

Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)

Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)

x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)

x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)

x64-Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)

x64-Catalog5 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)

x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)

x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)

x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

 

========================= Event log errors: ===============================

 

Application errors:

==================

Error: (08/02/2014 10:32:07 AM) (Source: Application Hang) (User: )

Description: Het programma VAIO Gate.exe, versie 2.0.0.14050 reageert niet meer op Windows en is afgesloten. Als u wilt zien of er meer informatie over het probleem beschikbaar is, raadpleegt u de probleemgeschiedenis in het onderdeel Onderhoudscentrum in het Configuratiescherm.

 

Proces-id: 718

 

Starttijd: 01cfae286ab375fb

 

Eindtijd: 3825

 

Toepassingspad: C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe

 

Rapport-id: 72b0f5e9-1a1f-11e4-8aba-78843c3389dd

 

Error: (08/02/2014 10:05:04 AM) (Source: BstHdAndroidSvc) (User: )

Description: Service kan niet worden gestart. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.

   bij BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)

   bij System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

 

Error: (08/02/2014 00:46:45 AM) (Source: BstHdAndroidSvc) (User: )

Description: Service kan niet worden gestart. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.

   bij BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)

   bij System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

 

Error: (08/02/2014 00:14:44 AM) (Source: BstHdAndroidSvc) (User: )

Description: Service kan niet worden gestart. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.

   bij BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)

   bij System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

 

Error: (08/01/2014 11:10:54 PM) (Source: BstHdAndroidSvc) (User: )

Description: Service kan niet worden gestart. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.

   bij BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)

   bij System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

 

Error: (08/01/2014 09:15:43 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 2347393

 

Error: (08/01/2014 09:15:43 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 2347393

 

Error: (08/01/2014 09:15:43 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (08/01/2014 09:15:42 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 1606

 

Error: (08/01/2014 09:15:42 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 1606

 

 

System errors:

=============

Error: (08/02/2014 10:55:39 AM) (Source: Application Popup) (User: )

Description: \??\C:\Windows\SysWow64\drivers\it0qa89y.sys kan niet worden geladen vanwege incompatibiliteit met dit systeem. Vraag de leverancier van de software om een compatibele versie van het stuurprogramma.

 

Error: (08/02/2014 10:49:05 AM) (Source: Application Popup) (User: )

Description: \??\C:\Windows\SysWow64\drivers\r5dck0fc.sys kan niet worden geladen vanwege incompatibiliteit met dit systeem. Vraag de leverancier van de software om een compatibele versie van het stuurprogramma.

 

Error: (08/02/2014 10:45:58 AM) (Source: Application Popup) (User: )

Description: \??\C:\Windows\SysWow64\drivers\tpk96qzd.sys kan niet worden geladen vanwege incompatibiliteit met dit systeem. Vraag de leverancier van de software om een compatibele versie van het stuurprogramma.

 

Error: (08/02/2014 10:11:29 AM) (Source: Service Control Manager) (User: )

Description: De Windows Update-service is bij het starten vastgelopen.

 

Error: (08/02/2014 10:08:05 AM) (Source: Service Control Manager) (User: )

Description: Time-out (30000 seconden) tijdens het wachten op het verbinden van deze service: Roxio Upnp Server 10.

 

Error: (08/02/2014 10:05:04 AM) (Source: Service Control Manager) (User: )

Description: De BlueStacks Android Service-service is gestopt met de volgende foutcode:

%%1064.

 

Error: (08/02/2014 00:51:51 AM) (Source: Service Control Manager) (User: )

Description: Time-out (30000 seconden) tijdens het wachten op het verbinden van deze service: Roxio Upnp Server 10.

 

Error: (08/02/2014 00:46:45 AM) (Source: Service Control Manager) (User: )

Description: De BlueStacks Android Service-service is gestopt met de volgende foutcode:

%%1064.

 

Error: (08/02/2014 00:31:23 AM) (Source: Application Popup) (User: )

Description: \??\C:\Windows\SysWow64\drivers\rcu3nika.sys kan niet worden geladen vanwege incompatibiliteit met dit systeem. Vraag de leverancier van de software om een compatibele versie van het stuurprogramma.

 

Error: (08/02/2014 00:27:03 AM) (Source: Application Popup) (User: )

Description: \??\C:\Windows\SysWow64\drivers\5udxpo3e.sys kan niet worden geladen vanwege incompatibiliteit met dit systeem. Vraag de leverancier van de software om een compatibele versie van het stuurprogramma.

 

 

Microsoft Office Sessions:

=========================

Error: (08/02/2014 10:32:07 AM) (Source: Application Hang)(User: )

Description: VAIO Gate.exe2.0.0.1405071801cfae286ab375fb3825C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe72b0f5e9-1a1f-11e4-8aba-78843c3389dd

 

Error: (08/02/2014 10:05:04 AM) (Source: BstHdAndroidSvc)(User: )

Description: Service kan niet worden gestart. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.

   bij BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)

   bij System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

 

Error: (08/02/2014 00:46:45 AM) (Source: BstHdAndroidSvc)(User: )

Description: Service kan niet worden gestart. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.

   bij BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)

   bij System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

 

Error: (08/02/2014 00:14:44 AM) (Source: BstHdAndroidSvc)(User: )

Description: Service kan niet worden gestart. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.

   bij BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)

   bij System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

 

Error: (08/01/2014 11:10:54 PM) (Source: BstHdAndroidSvc)(User: )

Description: Service kan niet worden gestart. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.

   bij BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)

   bij System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

 

Error: (08/01/2014 09:15:43 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 2347393

 

Error: (08/01/2014 09:15:43 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledEvent 2347393

 

Error: (08/01/2014 09:15:43 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (08/01/2014 09:15:42 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 1606

 

Error: (08/01/2014 09:15:42 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledEvent 1606

 

 

CodeIntegrity Errors:

===================================

  Date: 2014-04-15 14:21:20.813

  Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume3\Windows\System32\kernel32.dll kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

 

  Date: 2014-04-15 14:04:58.062

  Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume3\Windows\System32\kernel32.dll kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

 

  Date: 2014-04-15 13:49:54.073

  Description: De integriteit van de kopie voor het bestand \Device\HarddiskVolume3\Windows\System32\kernel32.dll kan niet worden geverifieerd omdat de reeks kopie-hashes per pagina niet is gevonden op het systeem.

 

 

 

=========================== Installed Programs ============================

µTorrent (HKCU\...\uTorrent) (Version: 3.4.1.30768 - BitTorrent Inc.)

Aangifte inkomstenbelasting 2010 (HKLM-x32\...\Aangifte inkomstenbelasting 2010) (Version:  - Belastingdienst)

Aangifte inkomstenbelasting 2011 (HKLM-x32\...\Aangifte inkomstenbelasting 2011) (Version:  - Belastingdienst)

Aangifte inkomstenbelasting 2012 (HKLM-x32\...\Aangifte inkomstenbelasting 2012) (Version:  - Belastingdienst)

Aangifte inkomstenbelasting 2013 (HKLM-x32\...\Aangifte inkomstenbelasting 2013) (Version:  - Belastingdienst)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)

Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden

Adobe Digital Editions 3.0 (HKLM-x32\...\Adobe Digital Editions 3.0) (Version: 3.0.1 - Adobe Systems Incorporated)

Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)

Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)

Adobe Reader 9.3 - Nederlands (HKLM-x32\...\{AC76BA86-7AD7-1043-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)

Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.7.148 - Adobe Systems, Inc.)

Aimersoft Video Converter Ultimate(Build 5.5.0.3) (HKLM-x32\...\Aimersoft Video Converter Ultimate_is1) (Version: 5.5.0.3 - Aimersoft Software)

Alps Pointing-device for VAIO (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version:  - ALPS ELECTRIC CO., LTD.)

AMD USB Filter Driver (HKLM-x32\...\{987B04C4-B5AC-4AD6-A7E9-8D681085B850}) (Version: 1.0.15.94 - Advanced Micro Devices, Inc.)

Antivirus Pro (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.5.464 - Avira)

Apple Application Support (HKLM-x32\...\{122ADF8C-DDA1-480C-9936-C88F2825B265}) (Version: 2.1.9 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{6A76BEAF-6D1F-4273-A79B-DA8410A2E56B}) (Version: 5.2.0.6 - Apple Inc.)

Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{7BB90344-0647-468E-925A-7F69F7983421}) (Version: 2.0.1.85 - ArcSoft)

ArcSoft WebCam Companion 3 (HKLM-x32\...\{DE8AAC73-6D8D-483E-96EA-CAEDDADB9079}) (Version: 3.0.21.278 - ArcSoft)

ATI Catalyst Install Manager (HKLM\...\{FED99701-A3A5-CE6B-4D04-DECF94784B89}) (Version: 3.0.765.0 - ATI Technologies, Inc.)

Avira SearchFree Toolbar (HKLM-x32\...\{41564952-412D-5637-4300-A758B70C0F01}) (Version: 12.15.1.462 - APN, LLC)

Bandicam (HKLM-x32\...\Bandicam) (Version: 1.8.4.283 - Bandisoft.com)

Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - )

Basissoftware voor HP Deskjet 1000 J110 series (HKLM\...\{7DA151B6-5B74-4377-B74C-57BBD7789C7A}) (Version: 22.50.231.0 - Hewlett-Packard Co.)

BB FlashBack Express (HKLM-x32\...\BB FlashBack Express) (Version: 3.2.4.2216 - Blueberry)

BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.7.14.901 - BlueStack Systems, Inc.)

BlueStacks Notification Center (HKLM-x32\...\{9D84E30F-6757-4A56-BCB5-51ADE3AE8631}) (Version: 0.7.14.901 - BlueStack Systems, Inc.)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

Canon iP2700 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP2700_series) (Version:  - )

Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden

Catalyst Control Center Core Implementation (x32 Version: 2010.0302.2233.40412 - ATI) Hidden

Catalyst Control Center Graphics Full Existing (x32 Version: 2010.0302.2233.40412 - ATI) Hidden

Catalyst Control Center Graphics Full New (x32 Version: 2010.0302.2233.40412 - ATI) Hidden

Catalyst Control Center Graphics Light (x32 Version: 2010.0302.2233.40412 - ATI) Hidden

Catalyst Control Center Graphics Previews Common (x32 Version: 2010.0302.2233.40412 - ATI) Hidden

Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0302.2233.40412 - ATI) Hidden

Catalyst Control Center InstallProxy (x32 Version: 2010.0302.2233.40412 - ATI Technologies, Inc.) Hidden

Catalyst Control Center Localization All (x32 Version: 2010.0302.2233.40412 - ATI) Hidden

CCC Help Chinese Standard (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Chinese Traditional (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Czech (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Danish (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Dutch (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help English (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Finnish (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help French (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help German (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Greek (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Hungarian (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Italian (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Japanese (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Korean (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Norwegian (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Polish (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Portuguese (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Russian (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Spanish (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Swedish (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Thai (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

CCC Help Turkish (x32 Version: 2010.0302.2232.40412 - ATI) Hidden

ccc-core-static (x32 Version: 2010.0302.2233.40412 - Uw bedrijfsnaam) Hidden

ccc-utility64 (Version: 2010.0302.2233.40412 - ATI) Hidden

CCleaner (HKLM\...\CCleaner) (Version: 3.23 - Piriform)

Click to Disc MergeModules x64 (Version: 1.0.14230 - Sony Corporation) Hidden

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)

De Complete Sims 1 Collectie (HKLM-x32\...\{F2527115-B8BF-4FDB-B5DA-5AADFB7C13E1}) (Version:  - )

Debut Video Capture Software (HKLM-x32\...\Debut) (Version: 1.88 - NCH Software)

Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5C78021E-3C8E-4EDF-97EA-E9B8D808FD6D}) (Version:  - Microsoft)

DivX Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.100 - DivX, LLC)

Evernote v. 4.1 (HKLM-x32\...\{F761359C-9CED-45AE-9A51-9D6605CD55C4}) (Version: 4.1.0.3431 - Evernote Corp.)

Fraps (HKLM-x32\...\Fraps) (Version:  - )

Free YouTube to MP3 Converter version 3.11.32.918 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.11.32.918 - DVDVideoSoft Ltd.)

Freemake Video Converter versie 4.1.3 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.3 - Ellora Assets Corporation)

GemistDownloader (HKLM-x32\...\GemistDownloader) (Version: 2.8.1.7 - Wietze Beukema (HelpdeskWeb.nl))

GIMP 2.8.2 (HKLM\...\GIMP-2_is1) (Version: 2.8.2 - The GIMP Team)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)

Google Drive (HKLM-x32\...\{75939021-3B68-419D-8DC1-E9823BFF9658}) (Version: 1.16.7009.9618 - Google, Inc.)

Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)

Google Talk Plugin (HKLM-x32\...\{E121A4FE-009B-385B-BB0D-B934E2A88288}) (Version: 5.2.4.18058 - Google)

Hide My IP 5.4 (HKLM-x32\...\HMIP50_is1) (Version:  - )

HP Deskjet 1000 J110 series Haelp (HKLM-x32\...\{DDDFCC77-7F9C-45E9-B38E-721BA599BA0C}) (Version: 140.0.65.65 - Hewlett Packard)

HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.3781 - HP Photo Creations Powered by RocketLife)

HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard)

HyperCam 2 (HKLM-x32\...\HyperCam 2) (Version:  - )

Instellingen voor het controleren van inhoud VAIO (HKLM-x32\...\{23825B69-36DF-4DAD-9CFD-118D11D80F16}) (Version: 2.5.0.13220 - Sony Corporation)

iTunes (HKLM\...\{840A3BAA-4C68-4581-9C7A-6F8D6CF531B9}) (Version: 10.6.3.25 - Apple Inc.)

Java 7 Update 9 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217009FF}) (Version: 7.0.90 - Oracle)

Java Auto Updater (x32 Version: 2.1.9.0 - Sun Microsystems, Inc.) Hidden

Java™ 6 Update 18 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416018FF}) (Version: 6.0.180 - Sun Microsystems, Inc.)

Java™ 6 Update 30 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216018FF}) (Version: 6.0.300 - Sun Microsystems, Inc.)

JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)

Junk Mail filter update (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Linkury Smartbar Engine (HKCU\...\{aa29fd75-13bc-4c2c-aa7b-a67f18610c5c}) (Version: 1.6.1.835 - Linkury Inc.)

Magic ISO Maker v5.5 (build 0281) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0281)) (Version:  - )

Malwarebytes Anti-Malware versie 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)

McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.130.10 - McAfee, Inc.)

Media Gallery (HKLM-x32\...\{DD88F979-FA58-41AC-980C-A6E1A82B61D9}) (Version: 1.2.0.15040 - Sony Corporation)

Media Gallery (x32 Version: 1.2.0.15040 - Sony Corporation) Hidden

Media Gallery MergeModules x64 (Version: 1.0.14250 - Sony Corporation) Hidden

MediaDrug (HKLM-x32\...\4C6927B3-61F1-4EBF-A5C7-68B60E4F40B0) (Version: 1.2 - MediaDrug)

MediaInfo 0.7.68 (HKLM\...\MediaInfo) (Version: 0.7.68 - MediaArea.net)

Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 (NLD) (Version: 4.5.50938 - Microsoft Corporation) Hidden

Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden

Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden

Microsoft Office Access MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Excel MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)

Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office OneNote MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0413-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)

Microsoft Office Outlook MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office PowerPoint MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proofing (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Publisher MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared 64-bit MUI (Dutch) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Word MUI (Dutch) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (HKLM-x32\...\{95140000-007D-0409-0000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)

Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft SQL Server Compact 3.5 SP1 English (HKLM-x32\...\{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}) (Version: 3.5.5692.0 - Microsoft Corporation)

Microsoft SQL Server Compact 3.5 SP1 x64 English (HKLM\...\{F83779DF-E1F5-43A2-A7BE-732F856FADB7}) (Version: 3.5.5692.0 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)

Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden

Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden

Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Mozilla Firefox 12.0 (x86 nl) (HKLM-x32\...\Mozilla Firefox 12.0 (x86 nl)) (Version: 12.0 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 12.0 - Mozilla)

MSI_SPF_x64 (Version: 1.0.0 - Sony Corporation) Hidden

MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

MSVCRT Redists (Version: 1.0 - Sony Creative Software Inc.) Hidden

MSVCRT Redists (x32 Version: 1.0 - Sony Creative Software Inc.) Hidden

MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden

MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden

MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden

MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)

MusicStation (HKLM-x32\...\{AB259D46-F851-41B0-9AFA-AED8998AD68A}) (Version: 2.0.4.1199 - Omnifone)

Norton Online Backup (HKLM-x32\...\{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}) (Version: 1.2.20.0 - Symantec)

Ondersteuning voor VAIO Transfer (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.1.1.13070 - Sony Corporation)

Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Photo Mishmash (HKLM-x32\...\Photo Mishmash Screensaver Trial Version_is1) (Version:  - )

PMB (HKLM-x32\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.1.02.03310 - Sony Corporation)

PMB VAIO Edition Guide (HKLM-x32\...\InstallShield_{88C252C8-A7EE-4B60-BF74-8E5919A8048F}) (Version: 1.1.00.14080 - Sony Corporation)

PMB VAIO Edition Guide (x32 Version: 1.1.00.14080 - Sony Corporation) Hidden

PMB VAIO Edition plug-in (Click to Disc) (HKLM-x32\...\InstallShield_{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}) (Version: 3.1.00.15080 - Sony Corporation)

PMB VAIO Edition plug-in (Click to Disc) (x32 Version: 3.1.00.15080 - Sony Corporation) Hidden

PMB VAIO Edition plug-in (VAIO Image Optimizer) (HKLM-x32\...\InstallShield_{1873FFC1-FDCB-47E1-B7C7-F418211E3530}) (Version: 1.1.00.15040 - Sony Corporation)

PMB VAIO Edition plug-in (VAIO Image Optimizer) (x32 Version: 1.1.00.15040 - Sony Corporation) Hidden

PMB VAIO Edition plug-in (VAIO Movie Story) (HKLM-x32\...\InstallShield_{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}) (Version: 2.1.00.15080 - Sony Corporation)

PMB VAIO Edition plug-in (VAIO Movie Story) (x32 Version: 2.1.00.15080 - Sony Corporation) Hidden

Productverbeteringonderzoek HP Deskjet 1000 J110 series (HKLM\...\{2D46A08C-08C9-45DC-B517-6B8DA8A42B4C}) (Version: 22.50.231.0 - Hewlett-Packard Co.)

QueekyPaint Desktop (HKLM-x32\...\QueekyPaint-Air) (Version: 2.11.4 - Philipp Hennermann)

QueekyPaint Desktop (x32 Version: 2.11.4 - Philipp Hennermann) Hidden

QuickTime (HKLM-x32\...\{0E64B098-8018-4256-BA23-C316A43AD9B0}) (Version: 7.72.80.56 - Apple Inc.)

Raptr (HKLM-x32\...\Raptr) (Version:  - )

RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden

Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6034 - Realtek Semiconductor Corp.)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6069 - Realtek Semiconductor Corp.)

Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30116 - Realtek Semiconductor Corp.)

RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden

Remote Play with PlayStation 3 (x32 Version: 1.0.0.15090 - Sony Corporation) Hidden

Remote-play bij PlayStation®3 (HKLM-x32\...\{07441A52-E208-478A-92B7-5C337CA8C131}) (Version: 1.0.0.15090 - Sony Corporation)

RollerCoaster Tycoon 2 (HKLM-x32\...\{72DF62BD-FF36-424E-AA5F-D89BAFF2C249}) (Version:  - )

Rollercoaster Tycoon 2 UCES (HKLM-x32\...\{D4B8AFAB-FB39-11D7-9D43-000A735D259C}) (Version:  - The UCES Team)

Roxio Central Audio (x32 Version: 3.8.0 - Roxio) Hidden

Roxio Central Copy (x32 Version: 3.8.0 - Roxio) Hidden

Roxio Central Core (x32 Version: 3.8.0 - Roxio) Hidden

Roxio Central Data (x32 Version: 3.8.0 - Roxio) Hidden

Roxio Central Tools (x32 Version: 3.8.0 - Roxio) Hidden

Roxio Easy Media Creator 10 LJ (HKLM-x32\...\{537BF16E-7412-448C-95D8-846E85A1D817}) (Version: 10.3 - Roxio)

Roxio Easy Media Creator Home (x32 Version: 10.3.263 - Roxio) Hidden

Safari (HKLM-x32\...\{735619D4-B42A-437A-958C-199BFCAEDB38}) (Version: 5.34.50.0 - Apple Inc.)

Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.1.13105_7 - Samsung Electronics Co., Ltd.)

Samsung Kies (x32 Version: 2.6.1.13105_7 - Samsung Electronics Co., Ltd.) Hidden

Samsung Mobile phone USB driver Drive Software (HKLM\...\Samsung Mobile phone USB driver Drive) (Version:  - )

Samsung PC Studio 3 USB Driver Installer (HKLM-x32\...\{EBA29752-DDD2-4B62-B2E3-9841F92A3E3A}) (Version: 3.2.0.70701 - Samsung Electronics Co., Ltd.)

Samsung Story Album Viewer (HKLM-x32\...\InstallShield_{698BBAD8-B116-495D-B879-0F07A533E57F}) (Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.)

Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.) Hidden

SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.43.0 - SAMSUNG Electronics Co., Ltd.)

Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)

Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden

Setting Utility Series (HKLM-x32\...\{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}) (Version: 5.2.0.15250 - Sony Corporation)

Sony Home Network Library (HKLM-x32\...\{D03D02D8-AB64-4785-A48E-5AA8B0FB8C14}) (Version: 2.1.0.14240 - Sony Corporation)

Sony Home Network Library (x32 Version: 2.1.0.14240 - Sony Corporation) Hidden

SplitCam (HKLM-x32\...\SplitCam) (Version: 5.4.6.0 - SplitCam Co)

SpyHunter (HKLM\...\{ACF5FE1B-3772-4068-8B87-2D2A6EFD0A05}) (Version: 4.17.6.4336 - Enigma Software Group USA, LLC)

swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

Three Ships Browser Plugin (HKLM-x32\...\{D4A2957D-5113-4722-A0A3-E7D0BF85D5D4}) (Version: 1.0.5.5 - Threeships)

TweetDeck (HKLM-x32\...\TweetDeckFast.FFF259DC0CE2657847BBB4AFF0E62062EFC56543.1) (Version: 0.38.1 - TweetDeck Inc)

TweetDeck (x32 Version: 0.38.1 - TweetDeck Inc) Hidden

Uninstall 1.0.0.1 (HKLM-x32\...\Uninstall_is1) (Version:  - )

Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)

Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)

Update for Microsoft Excel 2010 (KB2837600) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4ACD847E-547D-493F-9A86-F73EAE1B5174}) (Version:  - Microsoft)

Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)

Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)

Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{EAD7BEF9-B28C-425F-B2C5-538CB27EF013}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{C0BDC1DE-C35E-422B-8CBD-C1D555468720}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{089DBFD7-8211-43B2-AAAE-5BDD8C23E3A8}) (Version:  - Microsoft)

Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)

Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)

Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0413-0000-0000000FF1CE}_Office14.SingleImage_{2CDD05C4-26E6-4125-8499-EB6D800614EE}) (Version:  - Microsoft)

Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)

Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0413-0000-0000000FF1CE}_Office14.SingleImage_{F071F40F-CBA0-452D-A1CB-3F327CC8DF66}) (Version:  - Microsoft)

Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)

Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)

Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)

Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)

Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version:  - Microsoft)

VAIO Care (HKLM-x32\...\{36C5BBF0-E5BF-4DE1-B684-7E90B0C93FB5}) (Version: 6.0.0.15080 - Sony Corporation)

VAIO Care (x32 Version: 6.0.0.15080 - Sony Corporation) Hidden

VAIO Content Monitoring Settings (x32 Version: 2.5.0.13220 - Sony Corporation) Hidden

VAIO Control Center (HKLM-x32\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 4.2.0.15020 - Sony Corporation)

VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.3.0.13150 - Sony Corporation)

VAIO Data Restore Tool (x32 Version: 1.3.0.13150 - Sony Corporation) Hidden

VAIO DVD Menu Data (HKLM-x32\...\{596BED91-A1D8-4DF1-8CD1-1C777F7588AC}) (Version: 2.1.00.13210 - Sony Corporation)

VAIO Energiebeheer  (HKLM-x32\...\{803E4FA5-A940-4420-B89D-A8BC2E160247}) (Version: 5.1.0.15250 - Sony Corporation)

VAIO Entertainment Platform (HKLM-x32\...\{6B1F20F2-6321-4669-A58C-33DF8E7517FF}) (Version: 3.7.0.16080 - Sony Corporation)

VAIO Entertainment Platform (x32 Version: 3.7.0.16080 - Sony Corporation) Hidden

VAIO Event Service (HKLM-x32\...\{C7477742-DDB4-43E5-AC8D-0259E1E661B1}) (Version: 5.2.0.15020 - Sony Corporation)

VAIO Gate (HKLM-x32\...\{A7C30414-2382-4086-B0D6-01A88ABA21C3}) (Version: 2.0.0.14050 - Sony Corporation)

VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 2.0.0.04160 - Sony Corporation)

VAIO Hardware Diagnostics (x32 Version: 3.9.1 - Sony Corporation) Hidden

VAIO Manual (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 1.0.0.03290 - Sony Corporation)

VAIO Media plus (HKLM-x32\...\{8DE50158-80AA-4FF2-9E9F-0A7C46F71FCD}) (Version: 2.1.0.15040 - Sony Corporation)

VAIO Media plus (x32 Version: 2.1.0.15040 - Sony Corporation) Hidden

VAIO Media plus Opening Movie (HKLM-x32\...\{9238E8A4-BEBA-43A3-B926-769BDBF194C5}) (Version: 2.1.0.13220 - Sony Corporation)

VAIO Movie Story MergeModules x64 (Version: 1.0.14240 - Sony Corporation) Hidden

VAIO Movie Story Template Data (HKLM-x32\...\InstallShield_{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}) (Version: 2.1.00.14040 - Sony Corporation)

VAIO Movie Story Template Data (x32 Version: 2.1.00.14040 - Sony Corporation) Hidden

VAIO Oorspronkelijke functie-instellingen (HKLM-x32\...\{A63E7492-A0BC-4BB9-89A7-352965222380}) (Version: 2.1.0.13120 - Sony Corporation)

VAIO Original Function Settings (x32 Version: 2.1.0.13120 - Sony Corporation) Hidden

VAIO Premium Partners (HKLM-x32\...\VAIO Premium Partners) (Version: 1.0 - Sony Europe)

VAIO screensaver (HKLM-x32\...\VAIO screensaver) (Version: 1.0.0.0 - Sony Europe)

VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.2.0.15080 - Sony Corporation)

VAIO Update 5 (HKLM-x32\...\{5BEE8F1F-BD32-4553-8107-500439E43BD7}) (Version: 5.1.0.13220 - Sony Corporation)

VAIO Wallpaper Contents (HKLM-x32\...\{D60F97EC-EF06-4E1E-B0D1-C2CBABA62FA3}) (Version: 2.1.0.14090 - Sony Corporation)

VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden

Verzoek of wijziging voorlopige aanslag 2012 (HKLM-x32\...\Verzoek of wijziging voorlopige aanslag 2012) (Version:  - Belastingdienst)

Verzoek of wijziging voorlopige aanslag 2013 (HKLM-x32\...\Verzoek of wijziging voorlopige aanslag 2013) (Version:  - Belastingdienst)

Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)

Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)

Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)

Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)

VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)

VMp MergeModule x64 (Version: 1.0.0 - Default Company Name) Hidden

Vuze (HKLM-x32\...\8461-7759-5462-8226) (Version: 4.7 - Vuze Inc.)

WeatherBug Alert (HKLM-x32\...\{7426428E-71D4-452C-BA13-B14E5EB52859}) (Version: 1.3.0.1 - AWS Convergence Technologies)

WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.1.500 - Broadcom Corporation)

Windows Driver Package - Broadcom Bluetooth  (09/09/2009 6.2.0.9405) (HKLM\...\930E4792BDAEAFB62A9514EE7578775658A5D07C) (Version: 09/09/2009 6.2.0.9405 - Broadcom)

Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)

Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)

Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Family Safety (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Family Safety (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden

Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Mail (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Messenger (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live MIME IFilter (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Sync (HKLM-x32\...\{CD19EDD9-1632-4002-9212-7478E4BA0423}) (Version: 14.0.8089.726 - Microsoft Corporation)

Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Writer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Live Writer Resources (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)

WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

Youtube Downloader HD v. 2.9.4 (HKLM-x32\...\Youtube Downloader HD_is1) (Version:  - YoutubeDownloaderHD.com)

ZD Soft Screen Recorder (HKLM-x32\...\{99C1BBB1-E4F2-43F6-A587-07BAF1F303FB}) (Version: 5.1.0 - ZD Soft)

 

========================= Memory info: ===================================

 

Percentage of memory in use: 55%

Total physical RAM: 3834.9 MB

Available physical RAM: 1708.28 MB

Total Pagefile: 7667.98 MB

Available Pagefile: 4974 MB

Total Virtual: 4095.88 MB

Available Virtual: 3985.04 MB

 

========================= Partitions: =====================================

 

1 Drive c: () (Fixed) (Total:287.92 GB) (Free:135.53 GB) NTFS

3 Drive e: (ANWB CD 2011) (CDROM) (Total:0.53 GB) (Free:0 GB) CDFS

 

========================= Users: ========================================

 

Gebruikersaccounts voor \\PRISCILLA-PC

 

Administrator            Gast                     priscilla               

De opdracht is voltooid.

 

========================= Restore Points ==================================

 

24-07-2014 19:23:01 Windows Update

01-08-2014 07:37:22 Windows Update

01-08-2014 15:22:04 Controlepunt van HitmanPro

01-08-2014 15:23:00 Controlepunt van HitmanPro

01-08-2014 17:18:58 Controlepunt van HitmanPro

01-08-2014 21:47:10 Installed SpyHunter

 

**** End of log ****

 

 

 

Malware bytes:

Malwarebytes Anti-Malware

www.malwarebytes.org

 

Scandatum: 2-8-2014

Scantijd: 10:27:22

Logbestand: ggff.txt

Beheerder: Ja

 

Versie: 2.00.2.1012

Malwaredatabase: v2014.08.02.02

Rootkitdatabase: v2014.08.01.01

Licentie: Gratis

Malwarebescherming: Uitgeschakeld

Kwaadaardige Website Bescherming: Uitgeschakeld

Self-protection: Uitgeschakeld

 

Besturingssysteem: Windows 7 Service Pack 1

Processor: x64

Bestandssysteem: NTFS

Gebruiker: priscilla

 

Scantype: Bedreigingsscan

Resultaat: Voltooid

Objecten Gescand: 303798

Verstreken Tijd: 42 m, 32 s

 

Geheugen: Ingeschakeld

Opstarten: Ingeschakeld

Bestandssysteem: Ingeschakeld

Archieven: Ingeschakeld

Rootkits: Uitgeschakeld

Heuristics: Ingeschakeld

POP: Waarschuwen

POA: Ingeschakeld

 

Processen: 0

(No malicious items detected)

Modules: 0

(No malicious items detected)

Registersleutels: 0

(No malicious items detected)

Registerwaardes: 0

(No malicious items detected)

Registerdata: 0

(No malicious items detected)

Mappen: 0

(No malicious items detected)

Bestanden: 0

(No malicious items detected)

Fysieke Sectoren: 0

(No malicious items detected

(end)

 

Malwarebytes anti rootkit

---------------------------------------

Malwarebytes Anti-Rootkit BETA 1.07.0.1012

 

© Malwarebytes Corporation 2011-2012

 

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

 

Account is Administrative

 

Internet Explorer version: 11.0.9600.17207

 

Java version: 1.6.0_30

 

File system is: NTFS

Disk drives: C:\ DRIVE_FIXED

CPU speed: 2.294000 GHz

Memory total: 4021182464, free: 1686953984

 

=======================================

Initializing...

Could not initialize database

=======================================

Initializing...

Could not initialize database

=======================================

Initializing...

Could not initialize database

=======================================

Initializing...

Could not initialize database

Initializing...

=======================================

Downloaded database version: v2014.08.02.04

Canceled update

------------ Kernel report ------------

     08/02/2014 20:21:16

------------ Loaded modules -----------

\SystemRoot\system32\ntoskrnl.exe

\SystemRoot\system32\hal.dll

\SystemRoot\system32\kdcom.dll

\SystemRoot\system32\mcupdate_AuthenticAMD.dll

\SystemRoot\system32\PSHED.dll

\SystemRoot\system32\CLFS.SYS

\SystemRoot\system32\CI.dll

\SystemRoot\system32\drivers\Wdf01000.sys

\SystemRoot\system32\drivers\WDFLDR.SYS

\SystemRoot\system32\drivers\ACPI.sys

\SystemRoot\system32\drivers\WMILIB.SYS

\SystemRoot\system32\drivers\msisadrv.sys

\SystemRoot\system32\drivers\pci.sys

\SystemRoot\system32\drivers\vdrvroot.sys

\SystemRoot\System32\drivers\partmgr.sys

\SystemRoot\system32\drivers\compbatt.sys

\SystemRoot\system32\drivers\BATTC.SYS

\SystemRoot\system32\drivers\volmgr.sys

\SystemRoot\System32\drivers\volmgrx.sys

\SystemRoot\system32\drivers\pciide.sys

\SystemRoot\system32\drivers\PCIIDEX.SYS

\SystemRoot\System32\drivers\mountmgr.sys

\SystemRoot\system32\drivers\atapi.sys

\SystemRoot\system32\drivers\ataport.SYS

\SystemRoot\system32\drivers\amd_sata.sys

\SystemRoot\system32\drivers\storport.sys

\SystemRoot\system32\drivers\amd_xata.sys

\SystemRoot\system32\drivers\amdsata.sys

\SystemRoot\system32\drivers\amdxata.sys

\SystemRoot\system32\drivers\fltmgr.sys

\SystemRoot\system32\drivers\fileinfo.sys

\SystemRoot\System32\Drivers\PxHlpa64.sys

\SystemRoot\System32\Drivers\Ntfs.sys

\SystemRoot\System32\Drivers\msrpc.sys

\SystemRoot\System32\Drivers\ksecdd.sys

\SystemRoot\System32\Drivers\cng.sys

\SystemRoot\System32\drivers\pcw.sys

\SystemRoot\System32\Drivers\Fs_Rec.sys

\SystemRoot\system32\drivers\ndis.sys

\SystemRoot\system32\drivers\NETIO.SYS

\SystemRoot\System32\Drivers\ksecpkg.sys

\SystemRoot\System32\drivers\tcpip.sys

\SystemRoot\System32\drivers\fwpkclnt.sys

\SystemRoot\system32\drivers\volsnap.sys

\SystemRoot\System32\Drivers\spldr.sys

\SystemRoot\System32\drivers\rdyboost.sys

\SystemRoot\System32\Drivers\mup.sys

\SystemRoot\System32\drivers\hwpolicy.sys

\SystemRoot\System32\DRIVERS\fvevol.sys

\SystemRoot\system32\drivers\disk.sys

\SystemRoot\system32\drivers\CLASSPNP.SYS

\SystemRoot\system32\drivers\AtiPcie.sys

\SystemRoot\system32\DRIVERS\dtsoftbus01.sys

\SystemRoot\system32\DRIVERS\cdrom.sys

\SystemRoot\System32\Drivers\Null.SYS

\SystemRoot\System32\Drivers\Beep.SYS

\SystemRoot\System32\drivers\vga.sys

\SystemRoot\System32\drivers\VIDEOPRT.SYS

\SystemRoot\System32\drivers\watchdog.sys

\SystemRoot\System32\DRIVERS\RDPCDD.sys

\SystemRoot\system32\drivers\rdpencdd.sys

\SystemRoot\system32\drivers\rdprefmp.sys

\SystemRoot\System32\Drivers\Msfs.SYS

\SystemRoot\System32\Drivers\Npfs.SYS

\SystemRoot\system32\DRIVERS\tdx.sys

\SystemRoot\system32\DRIVERS\TDI.SYS

\SystemRoot\System32\DRIVERS\netbt.sys

\SystemRoot\system32\drivers\afd.sys

\SystemRoot\system32\DRIVERS\wfplwf.sys

\SystemRoot\system32\DRIVERS\pacer.sys

\SystemRoot\system32\DRIVERS\vwififlt.sys

\SystemRoot\system32\DRIVERS\netbios.sys

\SystemRoot\system32\DRIVERS\wanarp.sys

\SystemRoot\system32\drivers\termdd.sys

\SystemRoot\system32\DRIVERS\rdbss.sys

\SystemRoot\system32\drivers\nsiproxy.sys

\SystemRoot\system32\drivers\mssmbios.sys

\SystemRoot\System32\drivers\discache.sys

\SystemRoot\System32\Drivers\dfsc.sys

\SystemRoot\system32\drivers\blbdrive.sys

\SystemRoot\system32\DRIVERS\avkmgr.sys

\SystemRoot\system32\DRIVERS\avipbb.sys

\SystemRoot\system32\DRIVERS\tunnel.sys

\SystemRoot\system32\drivers\amdppm.sys

\SystemRoot\system32\DRIVERS\atikmpag.sys

\SystemRoot\system32\DRIVERS\atipmdag.sys

\SystemRoot\System32\drivers\dxgkrnl.sys

\SystemRoot\System32\drivers\dxgmms1.sys

\SystemRoot\system32\drivers\HDAudBus.sys

\SystemRoot\system32\DRIVERS\Rt64win7.sys

\SystemRoot\system32\DRIVERS\athrx.sys

\SystemRoot\system32\DRIVERS\vwifibus.sys

\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys

\SystemRoot\system32\DRIVERS\usbohci.sys

\SystemRoot\system32\DRIVERS\USBPORT.SYS

\SystemRoot\system32\DRIVERS\usbfilter.sys

\SystemRoot\system32\DRIVERS\usbehci.sys

\SystemRoot\system32\drivers\i8042prt.sys

\SystemRoot\system32\drivers\kbdclass.sys

\SystemRoot\system32\drivers\Apfiltr.sys

\SystemRoot\system32\drivers\mouclass.sys

\SystemRoot\system32\drivers\SFEP.sys

\SystemRoot\system32\drivers\CmBatt.sys

\SystemRoot\system32\drivers\CompositeBus.sys

\SystemRoot\system32\DRIVERS\bbcap.sys

\SystemRoot\system32\DRIVERS\AgileVpn.sys

\SystemRoot\system32\DRIVERS\rasl2tp.sys

\SystemRoot\system32\DRIVERS\ndistapi.sys

\SystemRoot\system32\DRIVERS\ndiswan.sys

\SystemRoot\system32\DRIVERS\raspppoe.sys

\SystemRoot\system32\DRIVERS\raspptp.sys

\SystemRoot\system32\DRIVERS\rassstp.sys

\SystemRoot\system32\drivers\swenum.sys

\SystemRoot\system32\drivers\ks.sys

\SystemRoot\system32\drivers\umbus.sys

\SystemRoot\system32\DRIVERS\usbhub.sys

\SystemRoot\System32\Drivers\NDProxy.SYS

\SystemRoot\system32\drivers\RtHDMIVX.sys

\SystemRoot\system32\drivers\portcls.sys

\SystemRoot\system32\drivers\drmk.sys

\SystemRoot\system32\drivers\ksthunk.sys

\SystemRoot\system32\drivers\RTKVHD64.sys

\SystemRoot\system32\drivers\hidusb.sys

\SystemRoot\system32\drivers\HIDCLASS.SYS

\SystemRoot\system32\drivers\HIDPARSE.SYS

\SystemRoot\system32\drivers\USBD.SYS

\SystemRoot\system32\DRIVERS\usbccgp.sys

\SystemRoot\system32\DRIVERS\mouhid.sys

\SystemRoot\System32\Drivers\usbvideo.sys

\SystemRoot\system32\DRIVERS\ArcSoftKsUFilter.sys

\SystemRoot\System32\Drivers\RtsUStor.sys

\SystemRoot\System32\Drivers\crashdmp.sys

\SystemRoot\System32\Drivers\dump_diskdump.sys

\SystemRoot\System32\Drivers\dump_amd_sata.sys

\SystemRoot\System32\Drivers\dump_dumpfve.sys

\SystemRoot\System32\win32k.sys

\SystemRoot\System32\drivers\Dxapi.sys

\SystemRoot\system32\DRIVERS\monitor.sys

\SystemRoot\System32\TSDDD.dll

\SystemRoot\System32\cdd.dll

\SystemRoot\System32\ATMFD.DLL

\SystemRoot\system32\drivers\luafv.sys

\SystemRoot\system32\DRIVERS\avgntflt.sys

\SystemRoot\system32\DRIVERS\lltdio.sys

\SystemRoot\system32\DRIVERS\nwifi.sys

\SystemRoot\system32\DRIVERS\ndisuio.sys

\SystemRoot\system32\DRIVERS\rspndr.sys

\SystemRoot\system32\drivers\HTTP.sys

\SystemRoot\system32\DRIVERS\vwifimp.sys

\SystemRoot\system32\DRIVERS\bowser.sys

\??\C:\Windows\system32\Drivers\hmip64.sys

\SystemRoot\System32\drivers\mpsdrv.sys

\SystemRoot\system32\DRIVERS\mrxsmb.sys

\SystemRoot\system32\DRIVERS\mrxsmb10.sys

\SystemRoot\system32\DRIVERS\mrxsmb20.sys

\SystemRoot\system32\DRIVERS\avnetflt.sys

\??\C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys

\SystemRoot\system32\drivers\peauth.sys

\SystemRoot\System32\Drivers\secdrv.SYS

\SystemRoot\System32\DRIVERS\srvnet.sys

\SystemRoot\System32\drivers\tcpipreg.sys

\SystemRoot\System32\DRIVERS\srv2.sys

\SystemRoot\System32\DRIVERS\srv.sys

\SystemRoot\system32\DRIVERS\cdfs.sys

\SystemRoot\system32\DRIVERS\asyncmac.sys

\??\C:\Windows\system32\drivers\mbamchameleon.sys

\??\C:\Windows\system32\drivers\MBAMSwissArmy.sys

\Windows\System32\ntdll.dll

\Windows\System32\smss.exe

\Windows\System32\apisetschema.dll

\Windows\System32\autochk.exe

\Windows\System32\rpcrt4.dll

\Windows\System32\difxapi.dll

\Windows\System32\msctf.dll

\Windows\System32\psapi.dll

\Windows\System32\imagehlp.dll

\Windows\System32\ole32.dll

\Windows\System32\sechost.dll

\Windows\System32\setupapi.dll

\Windows\System32\kernel32.dll

\Windows\System32\Wldap32.dll

\Windows\System32\oleaut32.dll

\Windows\System32\lpk.dll

\Windows\System32\iertutil.dll

\Windows\System32\normaliz.dll

\Windows\System32\shell32.dll

\Windows\System32\imm32.dll

\Windows\System32\clbcatq.dll

\Windows\System32\gdi32.dll

\Windows\System32\shlwapi.dll

\Windows\System32\comdlg32.dll

\Windows\System32\user32.dll

\Windows\System32\urlmon.dll

\Windows\System32\advapi32.dll

\Windows\System32\ws2_32.dll

\Windows\System32\nsi.dll

\Windows\System32\wininet.dll

\Windows\System32\msvcrt.dll

\Windows\System32\usp10.dll

\Windows\System32\crypt32.dll

\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll

\Windows\System32\cfgmgr32.dll

\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll

\Windows\System32\userenv.dll

\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll

\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll

\Windows\System32\comctl32.dll

\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll

\Windows\System32\wintrust.dll

\Windows\System32\devobj.dll

\Windows\System32\KernelBase.dll

\Windows\System32\msasn1.dll

\Windows\System32\profapi.dll

----------- End -----------

Done!

<<<1>>>

Upper Device Name: \Device\Harddisk0\DR0

Upper Device Object: 0xfffffa8004326060

Upper Device Driver Name: \Driver\Disk\

Lower Device Name: \Device\00000064\

Lower Device Object: 0xfffffa800429e9c0

Lower Device Driver Name: \Driver\amd_sata\

<<<2>>>

Physical Sector Size: 512

Drive: 0, DevicePointer: 0xfffffa8004326060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\

--------- Disk Stack ------

DevicePointer: 0xfffffa80043254c0, DeviceName: Unknown, DriverName: \Driver\partmgr\

DevicePointer: 0xfffffa8004326060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\

DevicePointer: 0xfffffa80042a2b80, DeviceName: Unknown, DriverName: \Driver\amd_xata\

DevicePointer: 0xfffffa800429f570, DeviceName: Unknown, DriverName: \Driver\ACPI\

DevicePointer: 0xfffffa800429e9c0, DeviceName: \Device\00000064\, DriverName: \Driver\amd_sata\

------------ End ----------

Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\

Upper DeviceData: 0x0, 0x0, 0x0

Lower DeviceData: 0x0, 0x0, 0x0

<<<3>>>

Volume: C:

File system type: NTFS

SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes

<<<2>>>

<<<3>>>

Volume: C:

File system type: NTFS

SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes

Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...

Done!

Drive 0

This is a System drive

Scanning MBR on drive 0...

Inspecting partition table:

MBR Signature: 55AA

Disk Signature: B8C43431

 

Partition information:

 

    Partition 0 type is Other (0x27)

    Partition is NOT ACTIVE.

    Partition starts at LBA: 2048  Numsec = 21123072

 

    Partition 1 type is Primary (0x7)

    Partition is ACTIVE.

    Partition starts at LBA: 21127168  Numsec = 204800

    Partition file system is NTFS

    Partition is bootable

 

    Partition 2 type is Primary (0x7)

    Partition is NOT ACTIVE.

    Partition starts at LBA: 21331968  Numsec = 603808432

 

    Partition 3 type is Empty (0x0)

    Partition is NOT ACTIVE.

    Partition starts at LBA: 0  Numsec = 0

 

Disk Size: 320072933376 bytes

Sector size: 512 bytes

 

Scanning physical sectors of unpartitioned space on drive 0 (1-2047-625122448-625142448)...

Done!

Scan finished

 

 

Rkill


Rkill 2.6.7 by Lawrence Abrams (Grinler)

http://www.bleepingcomputer.com/

Copyright 2008-2014 BleepingComputer.com

More Information about Rkill can be found at this link:

 http://www.bleepingcomputer.com/forums/topic308364.html

 

Program started at: 08/02/2014 08:53:17 PM in x64 mode.

Windows Version: Windows 7 Home Premium Service Pack 1

 

Checking for Windows services to stop:

 

 * No malware services found to stop.

 

Checking for processes to terminate:

 

 * No malware processes found to kill.

 

Checking Registry for malware related settings:

 

 * No issues found in the Registry.

 

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

 

Performing miscellaneous checks:

 

 * Windows Defender Disabled

 

   [HKLM\SOFTWARE\Microsoft\Windows Defender]

   "DisableAntiSpyware" = dword:00000001

 

Checking Windows Service Integrity:

 

 * Windows Defender (WinDefend) is not Running.

   Startup Type set to: Manual

 

Searching for Missing Digital Signatures:

 

 * No issues found.

 

Checking HOSTS File:

 

 * Cannot edit the HOSTS file.

 * Permissions could not be fixed. Use Hosts-perm.bat to fix permissions: http://www.bleepingcomputer.com/download/hosts-permbat/

 

Program finished at: 08/02/2014 08:57:06 PM

Execution time: 0 hours(s), 3 minute(s), and 49 seconds(s)

 

 

 

That's it



#6 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,735 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:42 AM

Posted 02 August 2014 - 02:08 PM

I don't see much there.

Where is the info about boo/cidox.b virus from?


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#7 priscilla18

priscilla18
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:05:42 PM

Posted 02 August 2014 - 02:13 PM

I got it from Avira. When I did a kaspersky  tdskiller scan, they found the Boo/cidox virus too and they said that it was removed after the scan.

 

So my computer is safe now?


Edited by priscilla18, 02 August 2014 - 02:14 PM.


#8 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,735 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:42 AM

Posted 02 August 2014 - 02:47 PM

Couple more scans...

 

p22002970.gif Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
Double click on TFC.exe to run the program.
Click on Start button to begin cleaning process.
TFC will close all running programs, and it may ask you to restart computer.

p22002970.gif Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.


p22002970.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.


p22002970.gif Please run a free online scan with the ESET Online Scanner

  • Disable your antivirus program
  • Click on "Run ESET Online Scanner" button.
  • Tick the box next to YES, I accept the Terms of Use
  • Click Start
  • Accept any security warnings from your browser.
  • Check Scan archives
  • Click Start
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click on List of found threats
  • Click on Export to text file , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
    NOTE. If Eset doesn't find any threats it'll NOT produce any log.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#9 priscilla18

priscilla18
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:05:42 PM

Posted 03 August 2014 - 03:37 AM

hey thanks for responding:

Adwcleaner log 

# AdwCleaner v3.302 - Rapport aangemaakt 02/08/2014 op 22:12:11

# Laatste Update 30/07/2014 door Xplode
# Besturingssysteem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Gebruikersnaam : priscilla - PRISCILLA-PC
# Gestart vanuit : C:\Users\priscilla\Downloads\adwcleaner_3.302.exe
# Optie : Verwijderen
 
***** [ Services ] *****
 
 
***** [ Bestanden / Mappen ] *****
 
Map Verwijderd : C:\ProgramData\Aimersoft Video Converter Ultimate
Bestand Verwijderd : C:\Users\priscilla\AppData\Roaming\Mozilla\Firefox\Profiles\fto4ixzj.default\searchplugins\search.xml
 
***** [ Taken ] *****
 
Taak Verwijderd : EPUpdater
Taak Verwijderd : Express FilesUpdate
 
***** [ Snelkoppelingen ] *****
 
 
***** [ Register ] *****
 
Sleutel Verwijderd : HKCU\Software\GlobalUpdate
Sleutel Verwijderd : HKLM\Software\GlobalUpdate
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17207
 
 
-\\ Mozilla Firefox v12.0 (nl)
 
[ Bestand : C:\Users\priscilla\AppData\Roaming\Mozilla\Firefox\Profiles\fto4ixzj.default\prefs.js ]
 
 
-\\ Google Chrome v36.0.1985.125
 
[ Bestand : C:\Users\priscilla\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [18407 octets] - [01/01/2014 15:32:26]
AdwCleaner[R1].txt - [8526 octets] - [23/03/2014 10:45:02]
AdwCleaner[R2].txt - [6716 octets] - [15/07/2014 15:59:11]
AdwCleaner[R3].txt - [1750 octets] - [02/08/2014 22:10:59]
AdwCleaner[S0].txt - [16269 octets] - [01/01/2014 15:34:39]
AdwCleaner[S1].txt - [8238 octets] - [23/03/2014 10:48:38]
AdwCleaner[S2].txt - [7041 octets] - [15/07/2014 16:00:24]
AdwCleaner[S3].txt - [1633 octets] - [02/08/2014 22:12:11]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1693 octets] ##########
 
JunkwareJRT  log  
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by priscilla on za 02-08-2014 at 22:19:02,05
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\browserpluginhelper
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\lyrics_fan
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-557605016-416588512-4147715890-1001\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-557605016-416588512-4147715890-1001\Software\wajam
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\Users\priscilla\AppData\Roaming\getrighttogo"
Successfully deleted: [Folder] "C:\Users\priscilla\appdata\locallow\boost_interprocess"
Successfully deleted: [Folder] "C:\Program Files (x86)\myfree codec"
 
 
 
~~~ FireFox
 
Successfully deleted the following from C:\Users\priscilla\AppData\Roaming\mozilla\firefox\profiles\fto4ixzj.default\prefs.js
 
user_pref("extensions.AVIRA-V7C.domain", "\"avira.search.ask.com\"");
Emptied folder: C:\Users\priscilla\AppData\Roaming\mozilla\firefox\profiles\fto4ixzj.default\minidumps [6 files]
 
 
 
~~~ Chrome
 
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on za 02-08-2014 at 22:33:02,81
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
eset log

ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=1eb4933302fd8b46b5281990b80108f4
# engine=19473
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-08-02 10:35:05
# local_time=2014-08-03 12:35:05 (+0100, West-Europa (zomertijd))
# country="Netherlands"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 5153506 158648755 0 0
# scanned=225188
# found=61
# cleaned=60
# scan_time=7077
sh=7C9E6334CA2C8919DC343FDFB6EFD110482CB64B ft=1 fh=c71c00110f54a538 vn="a variant of Win64/Sathurbot.A trojan" ac=I fn="C:\Users\All Users\Microsoft\Crypto\RSA64\rsa64.dll"
sh=988DF8933F46321452DAA5A6116E8A88697B1A49 ft=1 fh=3a4a6d97559a1254 vn="Win32/Toolbar.SearchSuite.H potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\BrowserConnection.dll.vir"
sh=94D2DAD13CD80981C7DDB4B8E364E6761FE5B990 ft=1 fh=d2d14b7fed7eb938 vn="a variant of Win32/Toolbar.SearchSuite.C potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\datamngr.dll.vir"
sh=3C2BF8032BBD84713F02954ED77340C43ECFF3F9 ft=1 fh=5351b53080ad9229 vn="a variant of Win32/Toolbar.SearchSuite.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\datamngrUI.exe.vir"
sh=BE3D0F502DAF643B87F3B4EF420E2AB6A70C4925 ft=1 fh=f406fdad6ac8db21 vn="a variant of Win32/Toolbar.SearchSuite.R potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\DnsBHO.dll.vir"
sh=F0C4CADBB4DDCF2E798FCE89A41902A9D2DD67AA ft=1 fh=c71c0011875976b0 vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF10.dll.vir"
sh=ADFED3FFC43756E4D03DAFE0064537257D7B1521 ft=1 fh=c71c001128cff8f2 vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF11.dll.vir"
sh=E9B5C31E60E22789BECDA95C45BD41664B9810E8 ft=1 fh=c71c0011082d2ae5 vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF12.dll.vir"
sh=3086301BA8A3FF9DD4C49C15101854F49735101C ft=1 fh=c71c0011ac3badc5 vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF13.dll.vir"
sh=A77E7651DF1451D4CA8FBC48FA3BE1B5D07905D9 ft=1 fh=c71c0011beb543a3 vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF14.dll.vir"
sh=C7D8E35DC78790A7317B87C4C2158AF0A24FFED8 ft=1 fh=c71c00111afff67f vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF15.dll.vir"
sh=7CD3B70F1B994531ECDC1A66D75045C14FE68B39 ft=1 fh=c71c00110649a8aa vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF16.dll.vir"
sh=E3240D99278AE7081EA850476DD89A01BE643643 ft=1 fh=c71c0011313f433d vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF17.dll.vir"
sh=39A10ADD868C417B2E5CDDD42B9CE298BF41D452 ft=1 fh=c71c001153065318 vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF3.dll.vir"
sh=6538A88980A2661EDEF35A3740FC288448F43718 ft=1 fh=c71c0011127c97f2 vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF4.dll.vir"
sh=921949D4C65CB7D3946D2E409CABB738C5EB15AF ft=1 fh=c71c00110a86d696 vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF5.dll.vir"
sh=FBC3B439359E358CA76DBE256552D1DB4F373C95 ft=1 fh=c71c0011ad4f2d84 vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF6.dll.vir"
sh=D911B2B382A4A3CC0B862A09EA1F8F191AAD1349 ft=1 fh=c71c00115a32ac1e vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF7.dll.vir"
sh=6BF49AD052B4C32D98DDB9A2327D105C391E8119 ft=1 fh=c71c00114c584084 vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF8.dll.vir"
sh=0975716E34EBD31D35679F973B622C867C5B9E8B ft=1 fh=c71c0011b64c64ba vn="probably a variant of Win32/Toolbar.SearchSuite.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\FirefoxExtension\components\DataMngrHlpFF9.dll.vir"
sh=B4BD2025C25ECC24D1FA1500FC3E22C99A6392F6 ft=1 fh=d82ffdc015647087 vn="a variant of Win64/Toolbar.SearchSuite.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\x64\datamngr.dll.vir"
sh=27B652B1FD187147CC43CEDFFFCEEB9F53CBEE38 ft=1 fh=07bbcaef374ccf51 vn="a variant of Win64/Toolbar.SearchSuite.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\BearShare Applications\Mediabar\Datamngr\x64\IEBHO.dll.vir"
sh=C871F2F22BE62631F3C01F91378419D32AFFA8E8 ft=1 fh=1495b2591e0e47a0 vn="Win32/SpeedingUpMyPC.O application (cleaned by deleting - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\optimizer pro\OptimizerPro.exe.vir"
sh=B57FC16A207A23BE246DBB958EFF8CA80D9ABA20 ft=1 fh=f31e5e7835b4a83f vn="a variant of Win32/Conduit.SearchProtect.H potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\Main\bin\CltMngSvc.exe.vir"
sh=561869CA7ECC6868794A4AB724104E49718B1B04 ft=1 fh=645f3e001791a87c vn="probably a variant of Win32/Conduit.SearchProtect.H potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\Main\bin\SPTool.dll.vir"
sh=E26341069187332C55F4E5DC3DEB99EB4DFFA8A9 ft=1 fh=48600f80b4b84481 vn="a variant of Win32/ClientConnect.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\Main\bin\uninstall.exe.vir"
sh=9D9DB32AA1744DB97BE1104CEC030F015A130DBE ft=1 fh=581d11a19d960bba vn="a variant of Win32/Conduit.SearchProtect.I potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\cltmng.exe.vir"
sh=262F212F142C9A7678C154F7B492D40CB02639EC ft=1 fh=fa270f540b0226ab vn="a variant of Win32/ClientConnect.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\SPTool64.exe.vir"
sh=409D38DC8467CBE7BD8FB4DFB8EE90B14073E695 ft=1 fh=d8fbd6495c15a06a vn="a variant of Win32/Conduit.SearchProtect.H potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\SPVC32.dll.vir"
sh=900417D2E0F2C639C8E212A3F80FC512AE683FF6 ft=1 fh=216173f9cb07dd20 vn="a variant of Win32/ClientConnect.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\SearchProtect\bin\SPVC64.dll.vir"
sh=94ADB3426066440ADBD84F33DCDA8D8DFE63EB81 ft=1 fh=3600bd83a4e13a40 vn="a variant of Win32/ClientConnect.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Searchprotect\UI\bin\cltmngui.exe.vir"
sh=D2BC806A05A53DE0B69451EE2457CBAAB005F812 ft=1 fh=c71c0011240d44a4 vn="a variant of Win32/Thinknice.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\SupTab\DpInterface32.dll.vir"
sh=E0B37C57E99FE566CE70DE1FE6B0A8E222BC133A ft=1 fh=040dd3f1fe168480 vn="Win32/Somoto.F potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Vuze\.install4j\trzC44.tmp"
sh=5B0CCA662149240D1FD4354BEAC1338E97E334EA ft=1 fh=45b9659c78b9b894 vn="Win32/Adware.MultiPlug.A application (cleaned by deleting - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\ProgramData\Bcool\uninstall.exe.vir"
sh=B2555C0BADDF0837A51D44D34CB8D78B2B22B91D ft=1 fh=8aacdf23ffe8d7a9 vn="Win32/Toolbar.SearchSuite.M potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\ProgramData\wincert\win32prop.dll.vir"
sh=22A3F74C8FA3BAF363B26F1CED92FA6E048F4A9E ft=1 fh=210043307b82281e vn="a variant of Win64/Toolbar.SearchSuite.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\ProgramData\wincert\win64cert.dll.vir"
sh=5918876B66D0E8BD574EA9B07E3E774B4D3D919F ft=1 fh=1bef8d0f35b0bd2e vn="Win64/Toolbar.SearchSuite.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\ProgramData\wincert\win64prop.dll.vir"
sh=E0814D0F17EE1122F6D3507DC676030F8E1CC133 ft=1 fh=0e0f46db8e6ee8c4 vn="Win32/Toolbar.Babylon.I potentially unwanted application (deleted - quarantined)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\priscilla\AppData\Roaming\BabSolution\Shared\BabMaint.exe.vir"
sh=7C9E6334CA2C8919DC343FDFB6EFD110482CB64B ft=1 fh=c71c00110f54a538 vn="a variant of Win64/Sathurbot.A trojan (cleaned by deleting (after the next restart) - quarantined)" ac=C fn="C:\ProgramData\Microsoft\Crypto\RSA64\rsa64.dll"
sh=B84676762980EFB66FD0D0E4D4ADFC7CAF7D2B44 ft=1 fh=09067fec91dc7a87 vn="a variant of Win32/Toolbar.Babylon.C potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\Babylon9_setup.exe"
sh=19876B0C21073CE7AC4725124851FC36B7EA7301 ft=1 fh=31b372839de59c7b vn="a variant of Win32/CNETInstaller.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\cbsidlm-cbsi188-FormatFactory-BP-10968547.exe"
sh=054E252981747FA55B82617F8382F2DD1A7DB5EE ft=1 fh=af583aeab501b21d vn="a variant of Win32/OpenInstall potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\citycardriving.exe"
sh=FA6DCCA42CA1BFBAAA0AAE1F6DB68FB63DBA3EBA ft=1 fh=bb1f3b8f1525e0a4 vn="a variant of Win32/InstallCore.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\cnet2_bbfbex3_exe.exe"
sh=522451FE34E8F1FC2C411850CAFAE1B0C5973E00 ft=1 fh=bb1f3b8f4910761c vn="a variant of Win32/InstallCore.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\cnet2_wvcsetup_exe.exe"
sh=1D32A1743DBAA373F9813A7A8D676135D7956C0F ft=1 fh=8b0bf2dab34550c2 vn="a variant of Win32/InstallCore.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\cnet_MCSetup_exe.exe"
sh=8528C91EC8B693CAED1889F07CB7B6DFC7C136D1 ft=1 fh=8b0bf2dafe12d63a vn="a variant of Win32/InstallCore.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\cnet_RollerCoasterTycoon-dm_exe.exe"
sh=846D95D63EDE9508EFC7CEEE1D145D7CE62988C3 ft=1 fh=ec23a4ae3310ce50 vn="Win32/Toolbar.Conduit potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\FreeYouTubeToMP3Converter.exe"
sh=FC406C94973C957022806737C47EB90816D4D2BD ft=1 fh=a5a38caac341768e vn="Win32/Toggle.H potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\splitcam.exe"
sh=4DC376B884B0430170A4F8AB73584B67222EA210 ft=1 fh=c71c0011b227245e vn="a variant of Win32/Toolbar.Escort.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\backups\backup-20130414-123125-723.dll"
sh=E02E52D8D6D4809A43A0747AD2D43EA571EFAF81 ft=1 fh=28dc55d634c41655 vn="a variant of Win32/Toolbar.Visicom.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\backups\backup-20130414-123125-762.dll"
sh=988DF8933F46321452DAA5A6116E8A88697B1A49 ft=1 fh=3a4a6d97559a1254 vn="Win32/Toolbar.SearchSuite.H potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\backups\backup-20130414-123126-329.dll"
sh=09C3E46D943747C9294D5B138E87057CE9E7FF4C ft=1 fh=294ff44ba8b49549 vn="a variant of Win32/Toolbar.Babylon.P potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\backups\backup-20130414-123126-796.dll"
sh=E02E52D8D6D4809A43A0747AD2D43EA571EFAF81 ft=1 fh=28dc55d634c41655 vn="a variant of Win32/Toolbar.Visicom.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\backups\backup-20130414-123137-331.dll"
sh=09C3E46D943747C9294D5B138E87057CE9E7FF4C ft=1 fh=294ff44ba8b49549 vn="a variant of Win32/Toolbar.Babylon.P potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\backups\backup-20130414-123137-740.dll"
sh=988DF8933F46321452DAA5A6116E8A88697B1A49 ft=1 fh=3a4a6d97559a1254 vn="Win32/Toolbar.SearchSuite.H potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\backups\backup-20130414-123138-829.dll"
sh=4DC376B884B0430170A4F8AB73584B67222EA210 ft=1 fh=c71c0011b227245e vn="a variant of Win32/Toolbar.Escort.A potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\backups\backup-20130414-123141-504.dll"
sh=E02E52D8D6D4809A43A0747AD2D43EA571EFAF81 ft=1 fh=28dc55d634c41655 vn="a variant of Win32/Toolbar.Visicom.B potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\backups\backup-20130414-123143-231.dll"
sh=09C3E46D943747C9294D5B138E87057CE9E7FF4C ft=1 fh=294ff44ba8b49549 vn="a variant of Win32/Toolbar.Babylon.P potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\backups\backup-20130414-123146-116.dll"
sh=988DF8933F46321452DAA5A6116E8A88697B1A49 ft=1 fh=3a4a6d97559a1254 vn="Win32/Toolbar.SearchSuite.H potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\priscilla\Downloads\backups\backup-20130414-123146-867.dll"
sh=FF273D0017363755214FA5CD888C2C2D54721700 ft=1 fh=0089eae0191970f8 vn="a variant of Win32/Toolbar.Linkury.G potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Windows\assembly\GAC\Microsoft.VisualStudio.OLE.Interop\7.1.40304.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.OLE.Interop.dll"
sh=A70EFAB5F2D2D83AD2B7E0304169C73F6D0EC700 ft=1 fh=011924ad9c4ebdbf vn="a variant of Win32/Toolbar.Linkury.G potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Windows\assembly\GAC_MSIL\Interop.SHDocVw\1.1.0.0__84542ff99aed6a4d\Interop.SHDocVw.dll"
ESETSmartInstaller@High as downloader log:
all ok
 

 



#10 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,735 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:42 AM

Posted 03 August 2014 - 01:10 PM

p22002970.gif Update Firefox to the current 31.0 version.

 

p22002970.gif Update Adobe Reader

You can download it from http://www.adobe.com/products/acrobat/readstep2.html
After installing the latest Adobe Reader, uninstall all previous versions (if present).
Note. If you already have Adobe Photoshop® Album Starter Edition installed or do not wish to have it installed UNcheck the box which says Also Download Adobe Photoshop® Album Starter Edition.

 

p22002970.gif Update your Java version here: http://www.java.com/en/download/manual.jsp
Alternate download: http://www.filehippo.com/search?q=java

Note 1: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.

Note 2: If you're running 64-bit system make sure you install BOTH, 32-bit and 64-bit Java.

Note 3: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. If you don't want to run another extra service, go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter. Click OK and restart your computer.

 

======================================

 

Your computer is clean p3879546.jpg

1. This step will remove all cleaning tools we used, it'll reset restore points (so you won't get reinfected by accidentally using some older restore point) and it'll make some other minor adjustments...
This is a very crucial step so make sure you don't skip it.
Download 51a5ce45263de-delfix.pngDelFix by Xplode to your desktop. Delfix will delete all the used tools and logfiles.

Double-click Delfix.exe to start the tool.
Make sure the following items are checked:

  • Activate UAC (optional; some users prefer to keep it off)
  • Remove disinfection tools
  • Create registry backup
  • Purge System Restore
  • Reset system settings

Now click "Run" and wait patiently.
Once finished a logfile will be created. You don't have to attach it to your next reply.

2. Make sure Windows Updates are current.

3. If any Trojan was listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!

4. Check if your browser plugins are up to date.
Firefox - https://www.mozilla.org/en-US/plugincheck/
other browsers: https://browsercheck.qualys.com/ (click on "Launch a quick scan now" link)

5. Download, and install WOT (Web OF Trust): http://www.mywot.com/. It'll warn you (in most cases) about dangerous web sites.

6. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.

7. Run Temporary File Cleaner (TFC), AdwCleaner and Junkware Removal Tool (JRT) weekly ((you need to redownload these tools since they were removed by DelFix))

8. Download and install Secunia Personal Software Inspector (PSI): http://secunia.com/vulnerability_scanning/personal/. The Secunia PSI is a FREE security tool designed to detect vulnerable and out-dated programs and plug-ins which expose your PC to attacks. Run it weekly.

9. (optional) If you want to keep all your programs up to date, download and install FileHippo Update Checker.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.

10. When installing\updating ANY program, make sure you always select "Custom " installation, so you can UN-check any possible "drive-by-install" (foistware), like toolbars etc., which may try to install along with the legitimate program. Do NOT click "Next" button without looking at any given page.

11. Read:
How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html
Simple and easy ways to keep your computer safe and secure on the Internet: http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
About those Toolbars and Add-ons - Potentially Unwanted Programs (PUPs) which change your browser settings: http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/#entry3187642


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#11 priscilla18

priscilla18
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:05:42 PM

Posted 04 August 2014 - 01:50 AM

I've done all that. Thank you very much, your help is much appreciated.



#12 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,735 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:08:42 AM

Posted 04 August 2014 - 06:33 PM

You're very welcome p22002759.gif


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users