Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 7 Home Premium clean up


  • Please log in to reply
23 replies to this topic

#1 chris.gatti

chris.gatti

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Jackson, TN
  • Local time:03:11 AM

Posted 18 August 2014 - 08:35 PM

During a recent virus scan and PC clean I discovered errors on windows that appear to date back to Sept. 2012 and also I run Avast AntiVirus free edition and it shows everything is OK with it but windows shows that Avast is not turned on. When I called Avast support they said that my computer needs a thorough cleaning. Can you help me with this and get my laptop running like new again?



BC AdBot (Login to Remove)

 


#2 JohnC_21

JohnC_21

  • Members
  • 23,248 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:11 AM

Posted 18 August 2014 - 08:48 PM

Do not use Avast support if they require you to pay for a cleaning. Uninstall Avast. Use the avast uninstaller in safe mode to remove any remnents of the software. Reboot and install Avast again.



#3 hamluis

hamluis

    Moderator


  • Moderator
  • 55,554 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:03:11 AM

Posted 19 August 2014 - 07:08 AM

Just what did the Avast personnel mean by "cleaning"?

 

Malware?  System maintenance?

 

Louis



#4 chris.gatti

chris.gatti
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Jackson, TN
  • Local time:03:11 AM

Posted 19 August 2014 - 08:15 AM

Luis,

 

I think he meant adware, spyware, corrupted files, etc. but I am not completely sure. He did pull the "Reliability Monitor" that showed a lot of "errors". He also pulled the "System Information" "Windows Error Reporting" which showed errrors that go as far back as Sept. 2012. Should I do what JohnC_21 said with Avast?


Edited by chris.gatti, 19 August 2014 - 08:17 AM.


#5 JohnC_21

JohnC_21

  • Members
  • 23,248 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:11 AM

Posted 19 August 2014 - 08:25 AM

I have been at the avast forums for a long time and the paid support of avast is through a third party. They usually want you to buy a support package for a very large amount of money. There have been a lot of nightmare stories on the forum. I would suggest you do the uninstall, then use the removal tool in safe mode. Reinstall avast.

 

That would be the best way to go. If you still have a problem, there are a lot of good people over at the Avast Forums who can give you some suggestions.

 

Here is an example of a problem a person had with Grimefighter and the third party support.


Edited by JohnC_21, 19 August 2014 - 08:31 AM.


#6 chris.gatti

chris.gatti
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Jackson, TN
  • Local time:03:11 AM

Posted 19 August 2014 - 08:48 AM

Thank you I did what you, JohnC_21 suggested but I still feel I need help cleaning up problems and errors on my computer. It is after all over 2 years old.



#7 JohnC_21

JohnC_21

  • Members
  • 23,248 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:11 AM

Posted 19 August 2014 - 08:52 AM

Does avast now show as being on? One thing the support people do is look at the event log and tell you they see a lot of errors. When you did a PC clean, what program did you use? Is the computer running okay? You can do a second scan with Malwarebytes to see if there are any things still that need to be removed.



#8 chris.gatti

chris.gatti
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Jackson, TN
  • Local time:03:11 AM

Posted 19 August 2014 - 07:52 PM

1)Yes Avast shows it is on

2) Avast Virus Scan; Malwarebytes scan; and CCleaner

3) It is not slow but it is not fast either



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,058 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:11 AM

Posted 19 August 2014 - 08:00 PM

I moved this to Am I infected to run some scans,,,


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 chris.gatti

chris.gatti
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Jackson, TN
  • Local time:03:11 AM

Posted 20 August 2014 - 08:00 AM

Thank you, boopme, will do. It may take me a few days though because of work. Do you need me to attach the results from any or all of them?



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,058 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:11 AM

Posted 20 August 2014 - 10:30 AM

No problem , take your time.. If I lose you ..send me a PM message.

 

EDIT .. Copy/Paste the results of all.


Edited by boopme, 20 August 2014 - 11:53 AM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 chris.gatti

chris.gatti
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Jackson, TN
  • Local time:03:11 AM

Posted 20 August 2014 - 05:32 PM

Here are the MiniToolBox results. Couldn't figure out how to attach so I will copy and paste.:

 

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by ICU Automotive (administrator) on 20-08-2014 at 17:25:40
Running from "C:\Users\ICU Automotive\Desktop\System Tools"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled mldversion=version2


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : ICU
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Broadcast
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : gateway.pace.com

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : gateway.pace.com
   Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
   Physical Address. . . . . . . . . : 1C-65-9D-D3-20-39
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::9cae:f61d:f605:d2b%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.64(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, August 19, 2014 9:01:23 PM
   Lease Expires . . . . . . . . . . : Thursday, August 21, 2014 2:00:20 PM
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 320628125
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-A4-1B-5A-1C-75-08-52-E4-9B
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 1C-75-08-52-E4-9B
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {0449B5CB-E53C-4B9B-A157-349765DACEC3}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.gateway.pace.com:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{FF17146E-295B-4B26-A9DF-FE7E22946081}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {4D342161-9A52-4D51-9D3F-9CC00BBD8E1D}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : gateway.pace.com
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #7
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 16:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:c45:293d:3f57:febf(Preferred)
   Link-local IPv6 Address . . . . . : fe80::c45:293d:3f57:febf%29(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  homeportal
Address:  192.168.1.254

Name:    google.com
Addresses:  2607:f8b0:4002:c07::71
      74.125.137.138
      74.125.137.139
      74.125.137.102
      74.125.137.101
      74.125.137.100
      74.125.137.113


Pinging google.com [64.233.185.113] with 32 bytes of data:
Reply from 64.233.185.113: bytes=32 time=29ms TTL=41
Reply from 64.233.185.113: bytes=32 time=28ms TTL=41

Ping statistics for 64.233.185.113:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 28ms, Maximum = 29ms, Average = 28ms
Server:  homeportal
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  98.138.253.109
      98.139.183.24
      206.190.36.45


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=61ms TTL=46
Reply from 98.138.253.109: bytes=32 time=62ms TTL=46

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 61ms, Maximum = 62ms, Average = 61ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 12...1c 65 9d d3 20 39 ......Atheros AR9285 Wireless Network Adapter
 10...1c 75 08 52 e4 9b ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 25...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
 28...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 30...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #7
 29...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.64     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.64    281
     192.168.1.64  255.255.255.255         On-link      192.168.1.64    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.64    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.64    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.64    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 29     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 29     58 2001::/32                On-link
 29    306 2001:0:9d38:6ab8:c45:293d:3f57:febf/128
                                    On-link
 12    281 fe80::/64                On-link
 29    306 fe80::/64                On-link
 29    306 fe80::c45:293d:3f57:febf/128
                                    On-link
 12    281 fe80::9cae:f61d:f605:d2b/128
                                    On-link
  1    306 ff00::/8                 On-link
 29    306 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 09 C:\windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 09 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/19/2014 09:04:30 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (08/19/2014 09:04:30 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (08/19/2014 07:41:16 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (08/19/2014 07:41:16 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (08/19/2014 08:33:03 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Users\ICUAUT~1\AppData\Local\Temp\_av_iup.tm~a02652\New\instup.exe /edition:1 /prod:ais /sfx /sfxstorage:C:\Users\ICUAUT~1\AppData\Local\Temp\_av_iup.tm~a02652 ""; Description = avast! antivirus system restore point; Error = 0x8007043c).

Error: (08/19/2014 08:28:00 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Program Files\AVAST Software\Avast\Setup\Instup.exe Files\AVAST Software\Avast\Setup\Instup.exe" /control_panel /instop:uninstall; Description = avast! antivirus system restore point; Error = 0x8007043c).

Error: (08/18/2014 09:26:04 PM) (Source: Application Error) (User: )
Description: Faulting application name: plugin-container.exe, version: 31.0.0.5310, time stamp: 0x53c75e91
Faulting module name: mozalloc.dll, version: 31.0.0.5310, time stamp: 0x53c72e91
Exception code: 0x80000003
Fault offset: 0x0000141b
Faulting process id: 0x1b34
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3

Error: (08/17/2014 08:55:52 PM) (Source: .NET Runtime Optimization Service) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to execute command from the offline queue: uninstall "System.Runtime.Serialization.Formatters.Soap, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil".  The error returned was Error: The specified assembly is not installed.
.

Error: (08/17/2014 08:55:51 PM) (Source: .NET Runtime Optimization Service) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to execute command from the offline queue: uninstall "dfsvc, Version=2.0.0.0, Culture=Neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=msil" /NoDependencies .  The error returned was Error: The specified assembly is not installed.
.

Error: (08/16/2014 09:19:39 AM) (Source: Application Virtualization Client) (User: )
Description: {hap=13:app=Microsoft Word Starter 2010 9014006604090000:tid=20E4:usr=ICU Automotive}
The client could not launch Q:\140066.enu\Office14\WINWORDC.EXE (rc 0B004B04-00000419, last error 2).


System errors:
=============
Error: (08/20/2014 08:15:03 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because of an IO failure on volume C:.

Error: (08/19/2014 07:37:54 PM) (Source: DCOM) (User: )
Description: {73E709EA-5D93-4B2E-BBB0-99B7938DA9E4}

Error: (08/19/2014 08:45:03 AM) (Source: Service Control Manager) (User: )
Description: The ReadyComm.DirectRouter service failed to start due to the following error:
%%2

Error: (08/19/2014 08:38:22 AM) (Source: Service Control Manager) (User: )
Description: The Garmin Core Update Service service failed to start due to the following error:
%%2

Error: (08/19/2014 08:38:22 AM) (Source: Service Control Manager) (User: )
Description: The Cobian Backup 11 Volume Shadow Copy Requester service failed to start due to the following error:
%%1053

Error: (08/19/2014 08:38:22 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Cobian Backup 11 Volume Shadow Copy Requester service to connect.

Error: (08/19/2014 08:35:50 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/19/2014 08:35:50 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/19/2014 08:35:50 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/19/2014 08:35:50 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2013-07-23 18:46:04.992
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-07-23 18:46:04.914
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
3D Ultra Pinball Thrillride
4500_G510nz_Help (Version: 000.0.439.000)
4500G510nz (Version: 000.0.439.000)
4500G510nz_Software_Min (Version: 000.0.423.000)
64 Bit HP CIO Components Installer (Version: 7.2.8)
Acrobat.com (Version: 1.1.377)
AddsUp
Adobe AIR (Version: 4.0.0.1390)
Adobe Flash Player 14 ActiveX (Version: 14.0.0.145)
Adobe Flash Player 14 Plugin (Version: 14.0.0.145)
Adobe Reader XI (11.0.08) (Version: 11.0.08)
Amazing Heists: Dillinger (Version: 1.0.0.8)
Animoids (Version: 2.2.0.10)
ANT Drivers Installer x64 (Version: 2.3.4)
Aquascapes
Around the World in 80 Days:  Extended Edition (remove only)
Audacity 2.0.5 (Version: 2.0.5)
Auslogics Disk Defrag (Version: version 3.1)
Auslogics Disk Defrag ScreenSaver (Version: version 1.1)
Auslogics Duplicate File Finder (Version: version 2.0)
avast! Free Antivirus (Version: 9.0.2021)
BatteryBar (remove only)
BeachBlox (remove only)
Bejeweled 3 (remove only)
Bejeweled Blitz
Bible360 [en-us]
Big Fish Games: Game Manager (Version: 3.0.1.60)
Bing Rewards Client Installer (Version: 16.0.345.0)
Brother HL-3040CN (Version: 1.00)
Brother Product Research and Support Program (Version: 2.0.0.0000)
BufferChm (Version: 140.0.212.000)
C310 (Version: 140.0.304.000)
C6300 (Version: 130.0.365.000)
CCleaner (Version: 4.16)
Chicken Invaders 2 (remove only)
Chicken Invaders 4: Easter Edition (remove only)
Chicken Invaders v1.30
Cobian Backup 11 Gravity
COLLAPSE! (remove only)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conexant HD Audio (Version: 4.111.0.62)
Coupon Printer for Windows (Version: 5.0.0.0)
Cruise Clues: Caribbean Adventure (Version: 1.0.0.0)
CutePDF Writer 2.8
CyberLink YouCam (Version: 3.0.2626)
D3DX10 (Version: 15.4.2368.0902)
Dashlane (Version: 3.0.3.68246)
Deskcalc Pro
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
D-Fend Reloaded 1.2.1 (deinstall) (Version: 1.3.5)
DocMgr (Version: 130.0.000.000)
DocProc (Version: 13.0.0.0)
Dropbox (Version: 2.10.27)
Elementary and Middle School - Multiplication (Version: 7.0.0)
Elevated Installer (Version: 3.0.9.0)
Energy Management (Version: 5.4.1.9)
eReg (Version: 1.20.138.34)
ESET Online Scanner v3
e-Sword (Version: 10.03.0000)
e-Sword Macros for Word 2010 (Version: 10.00.0000)
Evernote v. 5.0.3 (Version: 5.0.3.1614)
Family Feud™ Hollywood Ed.
Fax (Version: 130.0.418.000)
GameXN GO
Garmin Communicator Plugin (Version: 4.0.1)
Garmin Communicator Plugin x64 (Version: 4.0.1)
Garmin Express (Version: 3.0.9.0)
Garmin Express Tray (Version: 3.0.9.0)
Garmin POI Loader (Version: 2.7.2)
Garmin USB Drivers (Version: 2.3.1.0)
Glo [en-us]
Golden Trails 2: The Lost Legacy (remove only)
Golden Trails: The New Western Rush (remove only)
Google Chrome (Version: 36.0.1985.143)
Google Earth (Version: 7.1.2.2041)
Google Talk (remove only)
Google Update Helper (Version: 1.3.24.15)
Google+ Auto Backup (Version: 1.0.21.81)
Google+ Auto Backup (Version: 1.0.26.151)
GPBaseService2 (Version: 140.0.211.000)
GridRepublic (Version: 6.8.44)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
Hidden Mysteries: The Forbidden City (remove only)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Document Manager 2.0 (Version: 2.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Officejet 4500 G510n-z (Version: 13.0)
HP Officejet 6500 E710n-z Basic Device Software (Version: 22.50.231.0)
HP Officejet 6500 E710n-z Help (Version: 140.0.2.2)
HP Photo Creations (Version: 1.0.0.2024)
HP Photosmart C6300 All-In-One Driver Software 13.0 Rel. 4 (Version: 13.0)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Photosmart Prem C310 All-In-One Driver Software 14.0 Rel. 7 (Version: 14.0)
HP Product Detection (Version: 11.14.0001)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.005.002.002)
HPAppStudio (Version: 140.0.95.000)
HPDiagnosticAlert (Version: 1.00.0000)
HPPhotoGadget (Version: 140.0.524.000)
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000)
HPPhotosmartEssential (Version: 2.04.0000)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
HTC BMP USB Driver (Version: 1.0.5375)
HTC Driver Installer (Version: 3.0.0.021)
In Search of the Lost Temple (Version: 1.0.0.1)
Indeo® software
Insider Tales: The Stolen Venus 2 (remove only)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2104)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.6.0.1014)
iWin Games (Version: 2.92)
Java 7 Update 17 (64-bit) (Version: 7.0.170)
Java 7 Update 55 (Version: 7.0.550)
Java Auto Updater (Version: 2.1.9.8)
Junk Mail filter update (Version: 15.4.3502.0922)
Kellie Stanford: Turn of Fate (remove only)
Kidzui
King James Pure Bible Search 2.0 (Version: 2.0)
K-Lite Codec Pack 7.0.0 (Standard) (Version: 7.0.0)
LAME v3.99.3 (for Windows)
Lenovo DirectShare (Version: 1.0.1.38)
Lenovo EasyCamera (Version: 1.10.0415.1)
Lenovo Games Console (Version: 0.38.389.2)
Lenovo OneKey Recovery (Version: 7.0.1230)
Lenovo ReadyComm 5 (Version: 5.1.1.20)
Lenovo ReadyComm 5.0 Service (Version: 5.0.0.1)
Lenovo Smile Dock (Version: 2.0.201.1)
Lenovo_Wireless_Driver (Version: 1.02.01)
Logitech SetPoint 6.32 (Version: 6.32.20)
Logitech Unifying Software 2.00 (Version: 2.00.43)
magicJack (Version: 3.1.6970.4873)
Malwarebytes Anti-Malware version 2.0.2.1012 (Version: 2.0.2.1012)
MarketResearch (Version: 140.0.212.000)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.30514.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works 6-9 Converter (Version: 14.0.6120.5002)
MobileInvoice QB Edition for the Pocket PC
MobileInvoice Special Edition for QuickBooks® Users (Version: 5.4.2)
Mozilla Firefox 31.0 (x86 en-US) (Version: 31.0)
Mozilla Maintenance Service (Version: 22.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Musicnotes Software Suite 1.7.0 (Version: 1.7.0)
Mystery Case Files &reg;: Dire Grove ™
Mystery P.I. The Curious Case of Counterfeit Cove (remove only)
Nat Geo Adventure: Lost City of Z (remove only)
Network64 (Version: 140.0.215.000)
Network64 (Version: 140.0.221.000)
Oasis2Service 1.0 (Version: 1.0.0)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
Onekey Theater (Version: 2.0.1.8)
ooVoo (Version: 2.2.4.25)
Open Freely (Version: 1.0)
Pengu Wars (remove only)
Photobie -- photo editing software from Photobie Design
Picasa 3 (Version: 3.9)
PopCap Browser Plugin
Power2Go (Version: 5.6.0.4809d4)
Project64 1.6 (Version: 1.6)
PS_AIO_04_C6300_Software_Min (Version: 130.0.365.000)
PS_AIO_07_C310_SW_Min (Version: 140.0.304.000)
QuickBooks (Version: 21.0.4009.904)
QuickBooks Pro 2011 (Version: 21.0.4009.904)
QuickTransfer (Version: 140.0.98.000)
Rapport (Version: 3.5.1201.78)
Rapport (Version: 3.5.1307.109)
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.18.322.2010)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30116)
Recuva (Version: 1.43)
Relic Hunt (remove only)
Scan (Version: 140.0.80.000)
Season Match 3: Curse of the Witch Crow (remove only)
Shop for HP Supplies (Version: 14.0)
SKIP-BO Castaway Caper™
Skitch (Version: 2.3.1.163)
Skype Click to Call (Version: 5.9.9216)
Skype™ 6.16 (Version: 6.16.105)
Slingo Supreme 2 (Version: 1.0.0.97)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 140.0.214.000)
Speccy (Version: 1.22)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
Sprill & Ritchies Adventures In Time (remove only)
Status (Version: 140.0.256.000)
Street Invoice (Version: 1.9.1.1043)
Strike Solitaire
SUPERAntiSpyware (Version: 5.6.1020)
Synaptics Pointing Device Driver (Version: 15.0.15.0)
The Dragon Dance (remove only)
The Revenge (remove only)
The Treasures of Mystery Island: The Ghost Ship (remove only)
Time Riddles:  The Mansion (remove only)
Toolbox (Version: 140.0.428.000)
TrayApp (Version: 140.0.212.000)
Trusteer Endpoint Protection (Version: 3.5.1307.109)
Tweaking.com - Windows Repair (All in One) (Version: 1.9.15)
Type1515 TWAIN Driver Ver.3
UltraBall
Unity Web Player (Version: )
UnloadSupport (Version: 11.0.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2883097) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Vacation Quest: Australia (remove only)
VeriFace (Version: 3.6.1.0226)
VolusionLiveChat (Version: 1.0.2)
WeatherBug® (Version: 10.0.5.29)
WebReg (Version: 140.0.212.017)
WinDFT (Version: 1.0.0)
Windows Driver Package - Broadcom Corporation (bcbtums) Bluetooth  (02/06/2012 6.5.1.2310) (Version: 02/06/2012 6.5.1.2310)
Windows Driver Package - Broadcom Corporation Bluetooth  (02/06/2012 6.5.1.2310) (Version: 02/06/2012 6.5.1.2310)
Windows Driver Package - Broadcom Corporation Bluetooth  (02/07/2012 6.5.1.2312) (Version: 02/07/2012 6.5.1.2312)
Windows Driver Package - Broadcom HIDClass  (09/11/2009 6.3.0.1500) (Version: 09/11/2009 6.3.0.1500)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (Version: 04/11/2012 1.2.40.201)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (Version: 04/19/2012 2.3.1.0)
Windows Driver Package - Lenovo (ACPIVPC) System  (10/19/2009 5.4.0.1) (Version: 10/19/2009 5.4.0.1)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (Version: 02/06/2007 3.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Mobile Device Center (Version: 6.1.6965.0)
WinUtilities Free Edition 11.16 (Version: 11.16)
Zip Motion Block Video codec (Remove Only)

========================= Memory info: ===================================

Percentage of memory in use: 67%
Total physical RAM: 3894.85 MB
Available physical RAM: 1271.26 MB
Total Pagefile: 7787.88 MB
Available Pagefile: 3129.61 MB
Total Virtual: 4095.88 MB
Available Virtual: 3982.78 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:254.14 GB) (Free:149.92 GB) NTFS
2 Drive d: (LENOVO) (Fixed) (Total:29 GB) (Free:27.8 GB) NTFS

========================= Users: ========================================

User accounts for \\ICU

Administrator            boinc_master             boinc_project            
Guest                    ICU Automotive           


**** End of log ****
 



#13 chris.gatti

chris.gatti
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Jackson, TN
  • Local time:03:11 AM

Posted 20 August 2014 - 05:42 PM

TDS SKiller report:

 

 

17:35:26.0347 0x19c4  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
17:35:37.0538 0x19c4  ============================================================
17:35:37.0538 0x19c4  Current date / time: 2014/08/20 17:35:37.0538
17:35:37.0538 0x19c4  SystemInfo:
17:35:37.0538 0x19c4  
17:35:37.0538 0x19c4  OS Version: 6.1.7601 ServicePack: 1.0
17:35:37.0538 0x19c4  Product type: Workstation
17:35:37.0538 0x19c4  ComputerName: ICU
17:35:37.0539 0x19c4  UserName: ICU Automotive
17:35:37.0539 0x19c4  Windows directory: C:\windows
17:35:37.0539 0x19c4  System windows directory: C:\windows
17:35:37.0539 0x19c4  Running under WOW64
17:35:37.0539 0x19c4  Processor architecture: Intel x64
17:35:37.0539 0x19c4  Number of processors: 4
17:35:37.0539 0x19c4  Page size: 0x1000
17:35:37.0539 0x19c4  Boot type: Normal boot
17:35:37.0540 0x19c4  ============================================================
17:35:39.0667 0x19c4  KLMD registered as C:\windows\system32\drivers\60825390.sys
17:35:40.0786 0x19c4  System UUID: {05059FFB-4FD8-27FA-529E-2AD3E375D9F3}
17:35:42.0719 0x19c4  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:35:42.0729 0x19c4  ============================================================
17:35:42.0729 0x19c4  \Device\Harddisk0\DR0:
17:35:42.0729 0x19c4  MBR partitions:
17:35:42.0729 0x19c4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
17:35:42.0729 0x19c4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x1FC49800
17:35:42.0755 0x19c4  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1FCAE800, BlocksNum 0x39FD800
17:35:42.0755 0x19c4  ============================================================
17:35:42.0802 0x19c4  C: <-> \Device\Harddisk0\DR0\Partition2
17:35:42.0851 0x19c4  D: <-> \Device\Harddisk0\DR0\Partition3
17:35:42.0851 0x19c4  ============================================================
17:35:42.0852 0x19c4  Initialize success
17:35:42.0852 0x19c4  ============================================================
17:36:26.0853 0x08c4  ============================================================
17:36:26.0854 0x08c4  Scan started
17:36:26.0854 0x08c4  Mode: Manual;
17:36:26.0854 0x08c4  ============================================================
17:36:26.0854 0x08c4  KSN ping started
17:36:30.0037 0x08c4  KSN ping finished: true
17:36:32.0121 0x08c4  ================ Scan system memory ========================
17:36:32.0121 0x08c4  System memory - ok
17:36:32.0122 0x08c4  ================ Scan services =============================
17:36:32.0243 0x08c4  [ ABDCD326E1DD1C62509ED94C278A7453, 51E2722C7D2588BE1C29A1680C988B9BE45433E147CCE285C3A918216418E44B ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
17:36:32.0250 0x08c4  !SASCORE - ok
17:36:32.0456 0x08c4  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
17:36:32.0480 0x08c4  1394ohci - ok
17:36:32.0553 0x08c4  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\windows\system32\drivers\ACPI.sys
17:36:32.0575 0x08c4  ACPI - ok
17:36:32.0597 0x08c4  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
17:36:32.0600 0x08c4  AcpiPmi - ok
17:36:32.0662 0x08c4  [ DC201246A14CB3B274DF59FAF539AB07, D4DAED256E9EDD5ADD7384E9FD9F8DC2B1029543BC894367B582BA7119FABD94 ] ACPIVPC         C:\windows\system32\DRIVERS\AcpiVpc.sys
17:36:32.0666 0x08c4  ACPIVPC - ok
17:36:32.0788 0x08c4  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:36:32.0794 0x08c4  AdobeARMservice - ok
17:36:32.0918 0x08c4  [ A6B6AB9502B63F43A9A56AE6AFB22078, DD1F0BA3D8F3333F52A71EAE3719A001F6EF844D647FFABF0E4C56C6C764ACA7 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:36:32.0934 0x08c4  AdobeFlashPlayerUpdateSvc - ok
17:36:32.0997 0x08c4  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\windows\system32\DRIVERS\adp94xx.sys
17:36:33.0026 0x08c4  adp94xx - ok
17:36:33.0072 0x08c4  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\windows\system32\DRIVERS\adpahci.sys
17:36:33.0093 0x08c4  adpahci - ok
17:36:33.0148 0x08c4  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\windows\system32\DRIVERS\adpu320.sys
17:36:33.0165 0x08c4  adpu320 - ok
17:36:33.0217 0x08c4  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
17:36:33.0225 0x08c4  AeLookupSvc - ok
17:36:33.0338 0x08c4  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\windows\system32\drivers\afd.sys
17:36:33.0388 0x08c4  AFD - ok
17:36:33.0415 0x08c4  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\windows\system32\drivers\agp440.sys
17:36:33.0423 0x08c4  agp440 - ok
17:36:33.0466 0x08c4  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\windows\System32\alg.exe
17:36:33.0475 0x08c4  ALG - ok
17:36:33.0509 0x08c4  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\windows\system32\drivers\aliide.sys
17:36:33.0513 0x08c4  aliide - ok
17:36:33.0531 0x08c4  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\windows\system32\drivers\amdide.sys
17:36:33.0536 0x08c4  amdide - ok
17:36:33.0570 0x08c4  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\windows\system32\DRIVERS\amdk8.sys
17:36:33.0578 0x08c4  AmdK8 - ok
17:36:33.0607 0x08c4  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\windows\system32\DRIVERS\amdppm.sys
17:36:33.0615 0x08c4  AmdPPM - ok
17:36:33.0654 0x08c4  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\windows\system32\drivers\amdsata.sys
17:36:33.0674 0x08c4  amdsata - ok
17:36:33.0709 0x08c4  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\windows\system32\DRIVERS\amdsbs.sys
17:36:33.0727 0x08c4  amdsbs - ok
17:36:33.0753 0x08c4  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\windows\system32\drivers\amdxata.sys
17:36:33.0757 0x08c4  amdxata - ok
17:36:33.0800 0x08c4  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\windows\system32\drivers\appid.sys
17:36:33.0807 0x08c4  AppID - ok
17:36:33.0852 0x08c4  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\windows\System32\appidsvc.dll
17:36:33.0857 0x08c4  AppIDSvc - ok
17:36:33.0902 0x08c4  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\windows\System32\appinfo.dll
17:36:33.0907 0x08c4  Appinfo - ok
17:36:33.0969 0x08c4  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\windows\system32\DRIVERS\arc.sys
17:36:33.0975 0x08c4  arc - ok
17:36:33.0989 0x08c4  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\windows\system32\DRIVERS\arcsas.sys
17:36:33.0996 0x08c4  arcsas - ok
17:36:34.0110 0x08c4  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:36:34.0133 0x08c4  aspnet_state - ok
17:36:34.0181 0x08c4  [ D95E64416A4A3ED6986E0F474DA934BD, DBB4A0DED0DABE1F8FF0DB8C0E9EC4EC906A85A45DC0AEC013A8744F9BF5D40E ] aswHwid         C:\windows\system32\drivers\aswHwid.sys
17:36:34.0185 0x08c4  aswHwid - ok
17:36:34.0238 0x08c4  [ FF1E537A3632CBB9A0BF72B9FD0878D5, B26E6A1F6E6FA5280A12861EFAD44D8F49353F47B21843EBA73E149CF613DCBC ] aswMonFlt       C:\windows\system32\drivers\aswMonFlt.sys
17:36:34.0245 0x08c4  aswMonFlt - ok
17:36:34.0286 0x08c4  [ A5757DE5F9C83AB40667A53D5126EA40, 58B72B1B126CF641188703CE82E26BEB0C41AD7587CFFCCCE9E3C64CC7AACC90 ] aswRdr          C:\windows\system32\drivers\aswRdr2.sys
17:36:34.0295 0x08c4  aswRdr - ok
17:36:34.0332 0x08c4  [ 645D97385F3F284FB5604F9B970F4D24, 15A9D7F0F4C1062210E4E744A9069B8645177D19F35B8740D74022639DC05F2E ] aswRvrt         C:\windows\system32\drivers\aswRvrt.sys
17:36:34.0337 0x08c4  aswRvrt - ok
17:36:34.0441 0x08c4  [ B8FDEDE963B82CFD23B3A53A3084666D, 3537E5B684FB6F0AA589A5FA7CD111E1744DF384AB1A266D4114100F104ED11B ] aswSnx          C:\windows\system32\drivers\aswSnx.sys
17:36:34.0583 0x08c4  aswSnx - ok
17:36:34.0707 0x08c4  [ 0DEDC041DF594AEC2C3BD00417CFAF60, 0D3A8924503986546EE256D185225C0B080FDB6B0C8B0BED7516B07A7334371B ] aswSP           C:\windows\system32\drivers\aswSP.sys
17:36:34.0735 0x08c4  aswSP - ok
17:36:34.0808 0x08c4  [ 48DED912CDE54FC0923B9858512366E1, 9B216B934408A7CB3CE2B41240B7EF01EAA3BC066211B784064FF8AC97A29B4E ] aswStm          C:\windows\system32\drivers\aswStm.sys
17:36:34.0815 0x08c4  aswStm - ok
17:36:34.0887 0x08c4  [ 471A311745848B80339436688A8286E6, E51C57236CEC19AC38E85D115DB97875517D837811188AD2E53FA49055B53890 ] aswVmm          C:\windows\system32\drivers\aswVmm.sys
17:36:34.0905 0x08c4  aswVmm - ok
17:36:34.0985 0x08c4  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
17:36:34.0989 0x08c4  AsyncMac - ok
17:36:35.0029 0x08c4  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\windows\system32\drivers\atapi.sys
17:36:35.0034 0x08c4  atapi - ok
17:36:35.0199 0x08c4  [ D6CAD7E5B05055BB8226BDCB1644DA27, 053DBE95BE044C2674825561619A188660865AFCC4FD3C1D1E4F08972F5CC8DF ] athr            C:\windows\system32\DRIVERS\athrx.sys
17:36:35.0303 0x08c4  athr - ok
17:36:35.0412 0x08c4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
17:36:35.0455 0x08c4  AudioEndpointBuilder - ok
17:36:35.0500 0x08c4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\windows\System32\Audiosrv.dll
17:36:35.0536 0x08c4  AudioSrv - ok
17:36:35.0625 0x08c4  [ 73F5C13B431915BAE35254B4E95DFB71, 393A045859382C44133C004598B1512048046BCC129FED2247A77FDBFCDB6DFF ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:36:35.0630 0x08c4  avast! Antivirus - ok
17:36:35.0681 0x08c4  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\windows\System32\AxInstSV.dll
17:36:35.0691 0x08c4  AxInstSV - ok
17:36:35.0763 0x08c4  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\windows\system32\DRIVERS\bxvbda.sys
17:36:35.0794 0x08c4  b06bdrv - ok
17:36:35.0828 0x08c4  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
17:36:35.0846 0x08c4  b57nd60a - ok
17:36:35.0901 0x08c4  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\windows\System32\bdesvc.dll
17:36:35.0910 0x08c4  BDESVC - ok
17:36:35.0935 0x08c4  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\windows\system32\drivers\Beep.sys
17:36:35.0937 0x08c4  Beep - ok
17:36:36.0032 0x08c4  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\windows\System32\bfe.dll
17:36:36.0067 0x08c4  BFE - ok
17:36:36.0165 0x08c4  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\windows\System32\qmgr.dll
17:36:36.0258 0x08c4  BITS - ok
17:36:36.0279 0x08c4  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
17:36:36.0283 0x08c4  blbdrive - ok
17:36:36.0332 0x08c4  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
17:36:36.0339 0x08c4  bowser - ok
17:36:36.0376 0x08c4  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\windows\system32\DRIVERS\BrFiltLo.sys
17:36:36.0379 0x08c4  BrFiltLo - ok
17:36:36.0399 0x08c4  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\windows\system32\DRIVERS\BrFiltUp.sys
17:36:36.0402 0x08c4  BrFiltUp - ok
17:36:36.0466 0x08c4  [ 34F786535F9245E4028C57B28248C9D8, 95CB2B765BF4388A9204A8A974DCFF431CBC26E7274937386720514FF23871CB ] Bridge0         C:\windows\system32\drivers\WDBridge.sys
17:36:36.0480 0x08c4  Bridge0 - ok
17:36:36.0532 0x08c4  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\windows\system32\DRIVERS\bridge.sys
17:36:36.0539 0x08c4  BridgeMP - ok
17:36:36.0592 0x08c4  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\windows\System32\browser.dll
17:36:36.0602 0x08c4  Browser - ok
17:36:36.0637 0x08c4  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\windows\System32\Drivers\Brserid.sys
17:36:36.0654 0x08c4  Brserid - ok
17:36:36.0700 0x08c4  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
17:36:36.0705 0x08c4  BrSerWdm - ok
17:36:36.0725 0x08c4  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
17:36:36.0728 0x08c4  BrUsbMdm - ok
17:36:36.0741 0x08c4  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
17:36:36.0744 0x08c4  BrUsbSer - ok
17:36:36.0777 0x08c4  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\windows\system32\drivers\BthEnum.sys
17:36:36.0781 0x08c4  BthEnum - ok
17:36:36.0801 0x08c4  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\windows\system32\DRIVERS\bthmodem.sys
17:36:36.0807 0x08c4  BTHMODEM - ok
17:36:36.0833 0x08c4  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\windows\system32\DRIVERS\bthpan.sys
17:36:36.0840 0x08c4  BthPan - ok
17:36:36.0914 0x08c4  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\windows\System32\Drivers\BTHport.sys
17:36:36.0936 0x08c4  BTHPORT - ok
17:36:36.0962 0x08c4  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\windows\system32\bthserv.dll
17:36:36.0969 0x08c4  bthserv - ok
17:36:37.0021 0x08c4  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\windows\System32\Drivers\BTHUSB.sys
17:36:37.0028 0x08c4  BTHUSB - ok
17:36:37.0079 0x08c4  [ 2641A3FE3D7B0646308F33B67F3B5300, 8D2E37F6524D10197D36AAE41F59028B3DF0692A113EA342BB1AC36DEA13D8F6 ] btusbflt        C:\windows\system32\drivers\btusbflt.sys
17:36:37.0084 0x08c4  btusbflt - ok
17:36:37.0107 0x08c4  catchme - ok
17:36:37.0169 0x08c4  [ 58BF7714A312698108A96D0DE2BB6825, 87E0EC24520C9C421AF6A680FEF42E18911AABA373A9F927C5CE77AD50F8196F ] cbVSCService11  C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe
17:36:37.0174 0x08c4  cbVSCService11 - ok
17:36:37.0203 0x08c4  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
17:36:37.0209 0x08c4  cdfs - ok
17:36:37.0262 0x08c4  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
17:36:37.0269 0x08c4  cdrom - ok
17:36:37.0312 0x08c4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\windows\System32\certprop.dll
17:36:37.0316 0x08c4  CertPropSvc - ok
17:36:37.0377 0x08c4  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\windows\system32\DRIVERS\circlass.sys
17:36:37.0381 0x08c4  circlass - ok
17:36:37.0448 0x08c4  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\windows\system32\CLFS.sys
17:36:37.0463 0x08c4  CLFS - ok
17:36:37.0534 0x08c4  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:36:37.0540 0x08c4  clr_optimization_v2.0.50727_32 - ok
17:36:37.0617 0x08c4  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:36:37.0624 0x08c4  clr_optimization_v2.0.50727_64 - ok
17:36:37.0730 0x08c4  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:36:37.0737 0x08c4  clr_optimization_v4.0.30319_32 - ok
17:36:37.0754 0x08c4  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:36:37.0760 0x08c4  clr_optimization_v4.0.30319_64 - ok
17:36:37.0791 0x08c4  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
17:36:37.0794 0x08c4  CmBatt - ok
17:36:37.0827 0x08c4  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\windows\system32\drivers\cmdide.sys
17:36:37.0829 0x08c4  cmdide - ok
17:36:37.0914 0x08c4  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\windows\system32\Drivers\cng.sys
17:36:37.0938 0x08c4  CNG - ok
17:36:38.0014 0x08c4  [ 7247A4D0875F5F28919E0787E11B7B57, 9F79077619E626A8DAE74D9EF819BF1D061455CBCAD23C491EC595A2F6C21DED ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys
17:36:38.0053 0x08c4  CnxtHdAudService - ok
17:36:38.0086 0x08c4  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\windows\system32\DRIVERS\compbatt.sys
17:36:38.0089 0x08c4  Compbatt - ok
17:36:38.0119 0x08c4  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\windows\system32\drivers\CompositeBus.sys
17:36:38.0123 0x08c4  CompositeBus - ok
17:36:38.0130 0x08c4  COMSysApp - ok
17:36:38.0149 0x08c4  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\windows\system32\DRIVERS\crcdisk.sys
17:36:38.0153 0x08c4  crcdisk - ok
17:36:38.0211 0x08c4  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\windows\system32\cryptsvc.dll
17:36:38.0222 0x08c4  CryptSvc - ok
17:36:38.0330 0x08c4  [ FD557A50A65E44041CD2FCEF4BEB04DB, 746D5958F7198895D35A23566D3736D993D57726BF59D91421D8091C48926A26 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
17:36:38.0368 0x08c4  cvhsvc - ok
17:36:38.0439 0x08c4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\windows\system32\rpcss.dll
17:36:38.0469 0x08c4  DcomLaunch - ok
17:36:38.0515 0x08c4  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\windows\System32\defragsvc.dll
17:36:38.0531 0x08c4  defragsvc - ok
17:36:38.0586 0x08c4  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\windows\system32\Drivers\dfsc.sys
17:36:38.0593 0x08c4  DfsC - ok
17:36:38.0628 0x08c4  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\windows\system32\dhcpcore.dll
17:36:38.0646 0x08c4  Dhcp - ok
17:36:38.0668 0x08c4  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\windows\system32\drivers\discache.sys
17:36:38.0672 0x08c4  discache - ok
17:36:38.0689 0x08c4  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\windows\system32\DRIVERS\disk.sys
17:36:38.0695 0x08c4  Disk - ok
17:36:38.0730 0x08c4  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\windows\System32\dnsrslvr.dll
17:36:38.0742 0x08c4  Dnscache - ok
17:36:38.0798 0x08c4  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\windows\System32\dot3svc.dll
17:36:38.0813 0x08c4  dot3svc - ok
17:36:38.0848 0x08c4  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\windows\system32\DRIVERS\Dot4.sys
17:36:38.0856 0x08c4  Dot4 - ok
17:36:38.0899 0x08c4  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\windows\system32\drivers\Dot4Prt.sys
17:36:38.0901 0x08c4  Dot4Print - ok
17:36:38.0924 0x08c4  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\windows\system32\DRIVERS\dot4usb.sys
17:36:38.0928 0x08c4  dot4usb - ok
17:36:38.0984 0x08c4  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\windows\system32\dps.dll
17:36:38.0990 0x08c4  DPS - ok
17:36:39.0032 0x08c4  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
17:36:39.0034 0x08c4  drmkaud - ok
17:36:39.0134 0x08c4  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
17:36:39.0165 0x08c4  DXGKrnl - ok
17:36:39.0207 0x08c4  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\windows\System32\eapsvc.dll
17:36:39.0211 0x08c4  EapHost - ok
17:36:39.0400 0x08c4  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\windows\system32\DRIVERS\evbda.sys
17:36:39.0625 0x08c4  ebdrv - ok
17:36:39.0681 0x08c4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\windows\System32\lsass.exe
17:36:39.0688 0x08c4  EFS - ok
17:36:39.0795 0x08c4  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
17:36:39.0837 0x08c4  ehRecvr - ok
17:36:39.0875 0x08c4  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\windows\ehome\ehsched.exe
17:36:39.0885 0x08c4  ehSched - ok
17:36:39.0965 0x08c4  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\windows\system32\DRIVERS\elxstor.sys
17:36:39.0994 0x08c4  elxstor - ok
17:36:40.0029 0x08c4  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\windows\system32\drivers\errdev.sys
17:36:40.0031 0x08c4  ErrDev - ok
17:36:40.0101 0x08c4  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\windows\system32\es.dll
17:36:40.0127 0x08c4  EventSystem - ok
17:36:40.0185 0x08c4  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\windows\system32\drivers\exfat.sys
17:36:40.0205 0x08c4  exfat - ok
17:36:40.0265 0x08c4  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\windows\system32\drivers\fastfat.sys
17:36:40.0283 0x08c4  fastfat - ok
17:36:40.0393 0x08c4  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\windows\system32\fxssvc.exe
17:36:40.0449 0x08c4  Fax - ok
17:36:40.0521 0x08c4  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\windows\system32\DRIVERS\fdc.sys
17:36:40.0535 0x08c4  fdc - ok
17:36:40.0558 0x08c4  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\windows\system32\fdPHost.dll
17:36:40.0563 0x08c4  fdPHost - ok
17:36:40.0584 0x08c4  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\windows\system32\fdrespub.dll
17:36:40.0591 0x08c4  FDResPub - ok
17:36:40.0646 0x08c4  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
17:36:40.0653 0x08c4  FileInfo - ok
17:36:40.0674 0x08c4  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
17:36:40.0679 0x08c4  Filetrace - ok
17:36:40.0722 0x08c4  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\windows\system32\DRIVERS\flpydisk.sys
17:36:40.0726 0x08c4  flpydisk - ok
17:36:40.0787 0x08c4  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
17:36:40.0810 0x08c4  FltMgr - ok
17:36:40.0950 0x08c4  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\windows\system32\FntCache.dll
17:36:41.0042 0x08c4  FontCache - ok
17:36:41.0101 0x08c4  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:36:41.0121 0x08c4  FontCache3.0.0.0 - ok
17:36:41.0162 0x08c4  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
17:36:41.0177 0x08c4  FsDepends - ok
17:36:41.0235 0x08c4  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
17:36:41.0240 0x08c4  Fs_Rec - ok
17:36:41.0294 0x08c4  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
17:36:41.0312 0x08c4  fvevol - ok
17:36:41.0331 0x08c4  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\windows\system32\DRIVERS\gagp30kx.sys
17:36:41.0338 0x08c4  gagp30kx - ok
17:36:41.0386 0x08c4  Garmin Core Update Service - ok
17:36:41.0510 0x08c4  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\windows\System32\gpsvc.dll
17:36:41.0562 0x08c4  gpsvc - ok
17:36:41.0670 0x08c4  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:36:41.0680 0x08c4  gupdate - ok
17:36:41.0695 0x08c4  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:36:41.0704 0x08c4  gupdatem - ok
17:36:41.0753 0x08c4  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:36:41.0763 0x08c4  gusvc - ok
17:36:41.0802 0x08c4  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
17:36:41.0807 0x08c4  hcw85cir - ok
17:36:41.0860 0x08c4  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
17:36:41.0884 0x08c4  HdAudAddService - ok
17:36:41.0908 0x08c4  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\windows\system32\drivers\HDAudBus.sys
17:36:41.0918 0x08c4  HDAudBus - ok
17:36:41.0947 0x08c4  [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64         C:\windows\system32\DRIVERS\HECIx64.sys
17:36:41.0955 0x08c4  HECIx64 - ok
17:36:41.0977 0x08c4  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\windows\system32\DRIVERS\HidBatt.sys
17:36:41.0981 0x08c4  HidBatt - ok
17:36:42.0002 0x08c4  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\windows\system32\DRIVERS\hidbth.sys
17:36:42.0011 0x08c4  HidBth - ok
17:36:42.0044 0x08c4  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\windows\system32\DRIVERS\hidir.sys
17:36:42.0048 0x08c4  HidIr - ok
17:36:42.0071 0x08c4  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\windows\System32\hidserv.dll
17:36:42.0077 0x08c4  hidserv - ok
17:36:42.0119 0x08c4  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
17:36:42.0123 0x08c4  HidUsb - ok
17:36:42.0167 0x08c4  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\windows\system32\kmsvc.dll
17:36:42.0174 0x08c4  hkmsvc - ok
17:36:42.0230 0x08c4  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll
17:36:42.0243 0x08c4  HomeGroupListener - ok
17:36:42.0290 0x08c4  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll
17:36:42.0302 0x08c4  HomeGroupProvider - ok
17:36:42.0423 0x08c4  [ 5DA42D24712E00728CEA2342A65009B2, 73EC5250DCFD556525B24B3CA66C64AC7747E77652A2AD6119936A59A9E8562A ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
17:36:42.0435 0x08c4  hpqcxs08 - ok
17:36:42.0466 0x08c4  [ D86A39BF100069444D026D22D9A6E555, 7B24D48D5BA67704C88697FADB64364E0E64D26259408E3C219820C5404C5EEC ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
17:36:42.0474 0x08c4  hpqddsvc - ok
17:36:42.0504 0x08c4  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
17:36:42.0510 0x08c4  HpSAMD - ok
17:36:42.0623 0x08c4  [ F37882F128EFACEFE353E0BAE2766909, 2F9D21613500F092DFC0DB879180B549EE615D9B07408A5CC1A7F84663B2F47A ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
17:36:42.0690 0x08c4  HPSLPSVC - ok
17:36:42.0790 0x08c4  [ F47CEC45FB85791D4AB237563AD0FA8F, 1035066D48BD179855BCA7F62EFA1B951E6E839D2E29E15A31844E18A126DD41 ] HTCAND64        C:\windows\system32\Drivers\ANDROIDUSB.sys
17:36:42.0794 0x08c4  HTCAND64 - ok
17:36:42.0849 0x08c4  [ B8B1B284362E1D8135112573395D5DA5, 97BC6A7B2DCD7CC854B912A85BB2FCF199592E8E16A7C405EAF89B02D5DE4AEE ] htcnprot        C:\windows\system32\DRIVERS\htcnprot.sys
17:36:42.0854 0x08c4  htcnprot - ok
17:36:42.0943 0x08c4  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\windows\system32\drivers\HTTP.sys
17:36:43.0002 0x08c4  HTTP - ok
17:36:43.0091 0x08c4  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
17:36:43.0095 0x08c4  hwpolicy - ok
17:36:43.0140 0x08c4  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\windows\system32\drivers\i8042prt.sys
17:36:43.0150 0x08c4  i8042prt - ok
17:36:43.0235 0x08c4  [ ABBF174CB394F5C437410A788B7E404A, 95554F675329E7062F0936E4E902FEFF2456CAD95D6C9B60DCC213EF6E4C62D8 ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
17:36:43.0275 0x08c4  iaStor - ok
17:36:43.0350 0x08c4  [ 31A0E93CDF29007D6C6FFFB632F375ED, CA464928E9868B9A09C324DBBC8DA41A01C5C486B43578FC695250D523DE555B ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
17:36:43.0354 0x08c4  IAStorDataMgrSvc - ok
17:36:43.0426 0x08c4  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
17:36:43.0462 0x08c4  iaStorV - ok
17:36:43.0590 0x08c4  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:36:43.0663 0x08c4  idsvc - ok
17:36:43.0706 0x08c4  IEEtwCollectorService - ok
17:36:44.0330 0x08c4  [ 09CE164AFA8483E41808784D7FCA154E, 43557E44C8339469BD34B54D2080AF041356F0201A7ECA3A6EEEA9C9C7D78F87 ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
17:36:45.0169 0x08c4  igfx - ok
17:36:45.0303 0x08c4  [ D951D20153E51928F9DB2227D6FF5C7A, 8D49F3D85452C65D5188C9516E89631E718A07E34176CF6FA0B1E02D8C18ABDB ] IGRS            C:\Program Files (x86)\Lenovo\ReadyComm\common\IGRS.exe
17:36:45.0309 0x08c4  IGRS - ok
17:36:45.0349 0x08c4  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\windows\system32\DRIVERS\iirsp.sys
17:36:45.0355 0x08c4  iirsp - ok
17:36:45.0461 0x08c4  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\windows\System32\ikeext.dll
17:36:45.0556 0x08c4  IKEEXT - ok
17:36:45.0605 0x08c4  [ DD587A55390ED2295BCE6D36AD567DA9, AEB7DCB8EF89BEE8D9649A05FC482B1E4E3F44243D57A2577C862EB69166C48E ] Impcd           C:\windows\system32\DRIVERS\Impcd.sys
17:36:45.0621 0x08c4  Impcd - ok
17:36:45.0700 0x08c4  [ 58CF58DEE26C909BD6F977B61D246295, 0CE27B81C091961A22B75478449D654F9C1A68E43DF80C699DB8DD3D1B288461 ] IntcDAud        C:\windows\system32\DRIVERS\IntcDAud.sys
17:36:45.0722 0x08c4  IntcDAud - ok
17:36:45.0754 0x08c4  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\windows\system32\drivers\intelide.sys
17:36:45.0758 0x08c4  intelide - ok
17:36:45.0797 0x08c4  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
17:36:45.0804 0x08c4  intelppm - ok
17:36:45.0832 0x08c4  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\windows\system32\ipbusenum.dll
17:36:45.0845 0x08c4  IPBusEnum - ok
17:36:45.0898 0x08c4  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
17:36:45.0906 0x08c4  IpFilterDriver - ok
17:36:46.0004 0x08c4  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
17:36:46.0059 0x08c4  iphlpsvc - ok
17:36:46.0119 0x08c4  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
17:36:46.0127 0x08c4  IPMIDRV - ok
17:36:46.0180 0x08c4  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\windows\system32\drivers\ipnat.sys
17:36:46.0191 0x08c4  IPNAT - ok
17:36:46.0214 0x08c4  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\windows\system32\drivers\irenum.sys
17:36:46.0217 0x08c4  IRENUM - ok
17:36:46.0252 0x08c4  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\windows\system32\drivers\isapnp.sys
17:36:46.0256 0x08c4  isapnp - ok
17:36:46.0358 0x08c4  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
17:36:46.0386 0x08c4  iScsiPrt - ok
17:36:46.0471 0x08c4  [ 41F25FC9FACEA5EDAA2D73736360AFCA, E6606554CB89C025CD476E7BA497715EF235795CF934ECD4EC3B6330BBD34E31 ] iWinTrusted     C:\Program Files (x86)\iWin Games\iWinTrusted.exe
17:36:46.0484 0x08c4  iWinTrusted - ok
17:36:46.0539 0x08c4  [ 7DBAFE10C1B777305C80BEA42FBDA710, 768638FAD1FF94F2C15E2F1558F9A03730195B041CCBBC82241EC1F92CD7D46F ] k57nd60a        C:\windows\system32\DRIVERS\k57nd60a.sys
17:36:46.0557 0x08c4  k57nd60a - ok
17:36:46.0590 0x08c4  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\windows\system32\drivers\kbdclass.sys
17:36:46.0595 0x08c4  kbdclass - ok
17:36:46.0620 0x08c4  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\windows\system32\drivers\kbdhid.sys
17:36:46.0624 0x08c4  kbdhid - ok
17:36:46.0660 0x08c4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\windows\system32\lsass.exe
17:36:46.0668 0x08c4  KeyIso - ok
17:36:46.0713 0x08c4  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
17:36:46.0722 0x08c4  KSecDD - ok
17:36:46.0752 0x08c4  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
17:36:46.0764 0x08c4  KSecPkg - ok
17:36:46.0795 0x08c4  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
17:36:46.0800 0x08c4  ksthunk - ok
17:36:46.0856 0x08c4  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\windows\system32\msdtckrm.dll
17:36:46.0884 0x08c4  KtmRm - ok
17:36:46.0964 0x08c4  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\windows\System32\srvsvc.dll
17:36:46.0984 0x08c4  LanmanServer - ok
17:36:47.0034 0x08c4  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
17:36:47.0048 0x08c4  LanmanWorkstation - ok
17:36:47.0319 0x08c4  [ 7772DFAB22611050B79504E671B06E6E, 331FE235EDBCF48EE96A5A9D5D0560457CD85FA3FD7BEACD3700055F815D9F13 ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
17:36:47.0338 0x08c4  LBTServ - ok
17:36:47.0487 0x08c4  [ 7FCB3EC66361F157BCD5B5C33CE2AC16, F4A96124AE0B4BEB1B7A8F7865B9FE474DD87B9C409681A2DDFAA3AADE562B13 ] Lenovo ReadyComm AppSvc C:\Program Files\Lenovo\ReadyComm\AppSvc.exe
17:36:47.0522 0x08c4  Lenovo ReadyComm AppSvc - ok
17:36:47.0647 0x08c4  [ 5287074E79E4BA82510886F684DC5F72, 76C884617FBDEBEE61B33997CA93C2A2B9B902692B84E2D897E56C54833CFD1E ] Lenovo ReadyComm ConnSvc C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe
17:36:47.0683 0x08c4  Lenovo ReadyComm ConnSvc - ok
17:36:47.0724 0x08c4  [ ED7EC050CD6C20E1A93A4DAFB7EFD14D, 9B3B9FA23788680D13E3DC2EEA2F127591A368578AEAB70F03AC379BA7379184 ] LEqdUsb         C:\windows\system32\DRIVERS\LEqdUsb.Sys
17:36:47.0731 0x08c4  LEqdUsb - ok
17:36:47.0790 0x08c4  [ BE166935083F9C38EDFDC21B9A7A679B, 89C64DBE58E1B974208AAAA5CC757C599B1439C205C3C48BF16BA054A06DBC94 ] LHDmgr          C:\windows\system32\DRIVERS\LhdX64.sys
17:36:47.0795 0x08c4  LHDmgr - ok
17:36:47.0840 0x08c4  [ 3267BC698E29474A8381E68904EB0390, A653ED6364D4B7E02FB7087D364E33D029B15A92E0FAAB176877DE5F93B36B65 ] LHidEqd         C:\windows\system32\DRIVERS\LHidEqd.Sys
17:36:47.0846 0x08c4  LHidEqd - ok
17:36:47.0879 0x08c4  [ 241F2648ADF090E2A10095BD6D6F5DCB, D31F50F7A70A62E3CA45071F75C56FFA21464BFAF4CA4A3AD2482D7477D78D4E ] LHidFilt        C:\windows\system32\DRIVERS\LHidFilt.Sys
17:36:47.0886 0x08c4  LHidFilt - ok
17:36:47.0923 0x08c4  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
17:36:47.0929 0x08c4  lltdio - ok
17:36:47.0989 0x08c4  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\windows\System32\lltdsvc.dll
17:36:48.0011 0x08c4  lltdsvc - ok
17:36:48.0036 0x08c4  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\windows\System32\lmhsvc.dll
17:36:48.0051 0x08c4  lmhosts - ok
17:36:48.0100 0x08c4  [ 342ED5A4B3326014438F36D22D803737, 45488402BD919D84729A19E618B3595D615EB1F73FB9BC77675A21E7DB80AB6C ] LMouFilt        C:\windows\system32\DRIVERS\LMouFilt.Sys
17:36:48.0111 0x08c4  LMouFilt - ok
17:36:48.0229 0x08c4  [ 1E2F802846EB944E0333EFEE7C9532A8, 86EB59BF238E3DB8AF9E379B0BAE5AEC734C15598E665062B2E19C0A58BEF783 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
17:36:48.0254 0x08c4  LMS - ok
17:36:48.0308 0x08c4  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\windows\system32\DRIVERS\lsi_fc.sys
17:36:48.0321 0x08c4  LSI_FC - ok
17:36:48.0348 0x08c4  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\windows\system32\DRIVERS\lsi_sas.sys
17:36:48.0359 0x08c4  LSI_SAS - ok
17:36:48.0397 0x08c4  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\windows\system32\DRIVERS\lsi_sas2.sys
17:36:48.0405 0x08c4  LSI_SAS2 - ok
17:36:48.0429 0x08c4  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\windows\system32\DRIVERS\lsi_scsi.sys
17:36:48.0442 0x08c4  LSI_SCSI - ok
17:36:48.0495 0x08c4  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\windows\system32\drivers\luafv.sys
17:36:48.0507 0x08c4  luafv - ok
17:36:48.0577 0x08c4  [ F92B0E478C0FAA6D6661E6E977247E60, 8B26B57C2C60C98CD6273ACA126B2CD0356ADB13A59FEC12882357A6B973123C ] MBAMProtector   C:\windows\system32\drivers\mbam.sys
17:36:48.0582 0x08c4  MBAMProtector - ok
17:36:48.0832 0x08c4  [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
17:36:48.0978 0x08c4  MBAMScheduler - ok
17:36:49.0136 0x08c4  [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
17:36:49.0199 0x08c4  MBAMService - ok
17:36:49.0252 0x08c4  [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] MBAMSwissArmy   C:\windows\system32\drivers\MBAMSwissArmy.sys
17:36:49.0259 0x08c4  MBAMSwissArmy - ok
17:36:49.0303 0x08c4  [ 15E8ABC06843672955CE26A009533BAD, E7221B7DE9DB45447C68E79C6BFD064713C5974F7E79925BD7DEEF71F73F3E83 ] MBAMWebAccessControl C:\windows\system32\drivers\mwac.sys
17:36:49.0310 0x08c4  MBAMWebAccessControl - ok
17:36:49.0359 0x08c4  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
17:36:49.0368 0x08c4  Mcx2Svc - ok
17:36:49.0389 0x08c4  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\windows\system32\DRIVERS\megasas.sys
17:36:49.0393 0x08c4  megasas - ok
17:36:49.0438 0x08c4  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\windows\system32\DRIVERS\MegaSR.sys
17:36:49.0460 0x08c4  MegaSR - ok
17:36:49.0574 0x08c4  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
17:36:49.0588 0x08c4  Microsoft Office Groove Audit Service - ok
17:36:49.0625 0x08c4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\windows\system32\mmcss.dll
17:36:49.0636 0x08c4  MMCSS - ok
17:36:49.0660 0x08c4  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\windows\system32\drivers\modem.sys
17:36:49.0665 0x08c4  Modem - ok
17:36:49.0718 0x08c4  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\windows\system32\DRIVERS\monitor.sys
17:36:49.0722 0x08c4  monitor - ok
17:36:49.0761 0x08c4  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\windows\system32\drivers\mouclass.sys
17:36:49.0767 0x08c4  mouclass - ok
17:36:49.0803 0x08c4  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
17:36:49.0807 0x08c4  mouhid - ok
17:36:49.0856 0x08c4  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
17:36:49.0864 0x08c4  mountmgr - ok
17:36:49.0932 0x08c4  [ 528A5C2570F468155A1B3CF0A2FF5EBD, 473EEE97A4690A919DE05C525F0858DA9A5BD30072383D81F096F82DDFC93BAB ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:36:49.0942 0x08c4  MozillaMaintenance - ok
17:36:49.0987 0x08c4  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\windows\system32\drivers\mpio.sys
17:36:50.0001 0x08c4  mpio - ok
17:36:50.0054 0x08c4  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
17:36:50.0062 0x08c4  mpsdrv - ok
17:36:50.0181 0x08c4  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\windows\system32\mpssvc.dll
17:36:50.0233 0x08c4  MpsSvc - ok
17:36:50.0287 0x08c4  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
17:36:50.0298 0x08c4  MRxDAV - ok
17:36:50.0350 0x08c4  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
17:36:50.0363 0x08c4  mrxsmb - ok
17:36:50.0415 0x08c4  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
17:36:50.0435 0x08c4  mrxsmb10 - ok
17:36:50.0477 0x08c4  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
17:36:50.0488 0x08c4  mrxsmb20 - ok
17:36:50.0518 0x08c4  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\windows\system32\drivers\msahci.sys
17:36:50.0522 0x08c4  msahci - ok
17:36:50.0562 0x08c4  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\windows\system32\drivers\msdsm.sys
17:36:50.0583 0x08c4  msdsm - ok
17:36:50.0633 0x08c4  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\windows\System32\msdtc.exe
17:36:50.0649 0x08c4  MSDTC - ok
17:36:50.0709 0x08c4  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\windows\system32\drivers\Msfs.sys
17:36:50.0714 0x08c4  Msfs - ok
17:36:50.0727 0x08c4  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
17:36:50.0730 0x08c4  mshidkmdf - ok
17:36:50.0760 0x08c4  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
17:36:50.0763 0x08c4  msisadrv - ok
17:36:50.0798 0x08c4  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
17:36:50.0812 0x08c4  MSiSCSI - ok
17:36:50.0819 0x08c4  msiserver - ok
17:36:50.0841 0x08c4  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
17:36:50.0844 0x08c4  MSKSSRV - ok
17:36:50.0865 0x08c4  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
17:36:50.0868 0x08c4  MSPCLOCK - ok
17:36:50.0876 0x08c4  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
17:36:50.0879 0x08c4  MSPQM - ok
17:36:50.0947 0x08c4  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
17:36:50.0971 0x08c4  MsRPC - ok
17:36:51.0052 0x08c4  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\windows\system32\drivers\mssmbios.sys
17:36:51.0057 0x08c4  mssmbios - ok
17:36:51.0112 0x08c4  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
17:36:51.0115 0x08c4  MSTEE - ok
17:36:51.0133 0x08c4  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\windows\system32\DRIVERS\MTConfig.sys
17:36:51.0136 0x08c4  MTConfig - ok
17:36:51.0162 0x08c4  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\windows\system32\Drivers\mup.sys
17:36:51.0168 0x08c4  Mup - ok
17:36:51.0243 0x08c4  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\windows\system32\qagentRT.dll
17:36:51.0274 0x08c4  napagent - ok
17:36:51.0327 0x08c4  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
17:36:51.0345 0x08c4  NativeWifiP - ok
17:36:51.0455 0x08c4  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\windows\system32\drivers\ndis.sys
17:36:51.0504 0x08c4  NDIS - ok
17:36:51.0523 0x08c4  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
17:36:51.0527 0x08c4  NdisCap - ok
17:36:51.0570 0x08c4  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
17:36:51.0573 0x08c4  NdisTapi - ok
17:36:51.0639 0x08c4  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
17:36:51.0643 0x08c4  Ndisuio - ok
17:36:51.0673 0x08c4  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
17:36:51.0684 0x08c4  NdisWan - ok
17:36:51.0735 0x08c4  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
17:36:51.0740 0x08c4  NDProxy - ok
17:36:51.0791 0x08c4  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
17:36:51.0799 0x08c4  Net Driver HPZ12 - ok
17:36:51.0844 0x08c4  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
17:36:51.0849 0x08c4  NetBIOS - ok
17:36:51.0924 0x08c4  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
17:36:51.0939 0x08c4  NetBT - ok
17:36:51.0959 0x08c4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\windows\system32\lsass.exe
17:36:51.0965 0x08c4  Netlogon - ok
17:36:52.0021 0x08c4  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\windows\System32\netman.dll
17:36:52.0045 0x08c4  Netman - ok
17:36:52.0118 0x08c4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:36:52.0126 0x08c4  NetMsmqActivator - ok
17:36:52.0151 0x08c4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:36:52.0157 0x08c4  NetPipeActivator - ok
17:36:52.0199 0x08c4  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\windows\System32\netprofm.dll
17:36:52.0220 0x08c4  netprofm - ok
17:36:52.0232 0x08c4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:36:52.0241 0x08c4  NetTcpActivator - ok
17:36:52.0251 0x08c4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:36:52.0258 0x08c4  NetTcpPortSharing - ok
17:36:52.0817 0x08c4  [ 64428DFDAF6E88366CB51F45A79C5F69, 31187D38C1AB52120A3CB7AC3CE47ED9682AC37B0F06B9A9610C0065DD4E7B13 ] netw5v64        C:\windows\system32\DRIVERS\netw5v64.sys
17:36:53.0365 0x08c4  netw5v64 - ok
17:36:53.0415 0x08c4  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\windows\system32\DRIVERS\nfrd960.sys
17:36:53.0422 0x08c4  nfrd960 - ok
17:36:53.0469 0x08c4  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\windows\System32\nlasvc.dll
17:36:53.0498 0x08c4  NlaSvc - ok
17:36:53.0526 0x08c4  [ FBCA3FD51604147770EB4FB53D6144A8, F542A902721AD25D85B6E4CBCD034710D15D2B7508AEE501DF69E76A6234DE15 ] NMgamingmsFltr  C:\windows\system32\drivers\NMgamingms.sys
17:36:53.0530 0x08c4  NMgamingmsFltr - ok
17:36:53.0550 0x08c4  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\windows\system32\drivers\Npfs.sys
17:36:53.0557 0x08c4  Npfs - ok
17:36:53.0587 0x08c4  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\windows\system32\nsisvc.dll
17:36:53.0597 0x08c4  nsi - ok
17:36:53.0631 0x08c4  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
17:36:53.0636 0x08c4  nsiproxy - ok
17:36:53.0813 0x08c4  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
17:36:53.0940 0x08c4  Ntfs - ok
17:36:53.0980 0x08c4  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\windows\system32\drivers\Null.sys
17:36:53.0983 0x08c4  Null - ok
17:36:54.0025 0x08c4  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\windows\system32\drivers\nvraid.sys
17:36:54.0035 0x08c4  nvraid - ok
17:36:54.0066 0x08c4  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\windows\system32\drivers\nvstor.sys
17:36:54.0079 0x08c4  nvstor - ok
17:36:54.0168 0x08c4  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
17:36:54.0179 0x08c4  nv_agp - ok
17:36:54.0244 0x08c4  [ F5A3015DAFC7AE80FC43F36558A19BA5, 2A8BFBE290DDBE379B1C9271C5B6112CAF41BE083D796ADB41F7BDA59921A54B ] Oasis2Service   C:\Program Files (x86)\DDNi\Oasis2Service 1.0\Oasis2Service.exe
17:36:54.0248 0x08c4  Oasis2Service - ok
17:36:54.0345 0x08c4  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:36:54.0370 0x08c4  odserv - ok
17:36:54.0402 0x08c4  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
17:36:54.0408 0x08c4  ohci1394 - ok
17:36:54.0462 0x08c4  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:36:54.0471 0x08c4  ose - ok
17:36:54.0831 0x08c4  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:36:55.0246 0x08c4  osppsvc - ok
17:36:55.0309 0x08c4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
17:36:55.0338 0x08c4  p2pimsvc - ok
17:36:55.0379 0x08c4  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\windows\system32\p2psvc.dll
17:36:55.0415 0x08c4  p2psvc - ok
17:36:55.0448 0x08c4  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\windows\system32\DRIVERS\parport.sys
17:36:55.0457 0x08c4  Parport - ok
17:36:55.0507 0x08c4  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\windows\system32\drivers\partmgr.sys
17:36:55.0515 0x08c4  partmgr - ok
17:36:55.0599 0x08c4  [ AFADA8B97BE3C9398DC6C770409C3544, 670451D08AD1534D424D7D6B9BD7D2C71F526313FE2DD34B1F277D7CD403F39B ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
17:36:55.0606 0x08c4  PassThru Service - ok
17:36:55.0641 0x08c4  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\windows\System32\pcasvc.dll
17:36:55.0659 0x08c4  PcaSvc - ok
17:36:55.0711 0x08c4  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\windows\system32\drivers\pci.sys
17:36:55.0725 0x08c4  pci - ok
17:36:55.0757 0x08c4  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\windows\system32\drivers\pciide.sys
17:36:55.0761 0x08c4  pciide - ok
17:36:55.0805 0x08c4  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\windows\system32\DRIVERS\pcmcia.sys
17:36:55.0822 0x08c4  pcmcia - ok
17:36:55.0849 0x08c4  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\windows\system32\drivers\pcw.sys
17:36:55.0855 0x08c4  pcw - ok
17:36:55.0914 0x08c4  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\windows\system32\drivers\peauth.sys
17:36:55.0957 0x08c4  PEAUTH - ok
17:36:56.0023 0x08c4  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\windows\SysWow64\perfhost.exe
17:36:56.0030 0x08c4  PerfHost - ok
17:36:56.0230 0x08c4  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\windows\system32\pla.dll
17:36:56.0336 0x08c4  pla - ok
17:36:56.0393 0x08c4  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
17:36:56.0425 0x08c4  PlugPlay - ok
17:36:56.0456 0x08c4  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
17:36:56.0466 0x08c4  Pml Driver HPZ12 - ok
17:36:56.0487 0x08c4  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
17:36:56.0496 0x08c4  PNRPAutoReg - ok
17:36:56.0528 0x08c4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
17:36:56.0554 0x08c4  PNRPsvc - ok
17:36:56.0629 0x08c4  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
17:36:56.0662 0x08c4  PolicyAgent - ok
17:36:56.0710 0x08c4  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\windows\system32\umpo.dll
17:36:56.0725 0x08c4  Power - ok
17:36:56.0781 0x08c4  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
17:36:56.0789 0x08c4  PptpMiniport - ok
17:36:56.0825 0x08c4  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\windows\system32\DRIVERS\processr.sys
17:36:56.0830 0x08c4  Processor - ok
17:36:56.0887 0x08c4  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\windows\system32\profsvc.dll
17:36:56.0904 0x08c4  ProfSvc - ok
17:36:56.0927 0x08c4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\windows\system32\lsass.exe
17:36:56.0933 0x08c4  ProtectedStorage - ok
17:36:56.0984 0x08c4  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\windows\system32\DRIVERS\pacer.sys
17:36:56.0993 0x08c4  Psched - ok
17:36:57.0013 0x08c4  PS_MDP - ok
17:36:57.0093 0x08c4  [ 91195091F449699B176FE1305DAD40DA, DD82A1214E5FC69F5711CA942CEBAB083EC188832B448AC2A8D104C7512406A9 ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
17:36:57.0097 0x08c4  QBCFMonitorService - ok
17:36:57.0146 0x08c4  [ 6BEE1814470DC12FA20C53DFC3C97EBB, 91E8C22E54A090966E9B96395392B2C03A32DB1AF8DB2289E2EA9460F0A76C0F ] QBFCService     C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
17:36:57.0150 0x08c4  QBFCService - ok
17:36:57.0267 0x08c4  [ D4FF4102640685C69BDC63F1674CE724, F5B57E584761148A59FC53B94A291804C1049A5818246415C61BDD29890A3586 ] QBVSS           C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
17:36:57.0315 0x08c4  QBVSS - ok
17:36:57.0411 0x08c4  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\windows\system32\DRIVERS\ql2300.sys
17:36:57.0467 0x08c4  ql2300 - ok
17:36:57.0489 0x08c4  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\windows\system32\DRIVERS\ql40xx.sys
17:36:57.0496 0x08c4  ql40xx - ok
17:36:57.0542 0x08c4  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\windows\system32\qwave.dll
17:36:57.0565 0x08c4  QWAVE - ok
17:36:57.0578 0x08c4  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
17:36:57.0587 0x08c4  QWAVEdrv - ok
17:36:57.0665 0x08c4  [ A55E7D0D873B2C97585B3B5926AC6ADE, 3BE3895DA7F0888E85B1941525878BA0846A8F215AD39ED8138BB39615468E32 ] RapiMgr         C:\windows\WindowsMobile\rapimgr.dll
17:36:57.0680 0x08c4  RapiMgr - ok
17:36:57.0881 0x08c4  [ 19705A841D47621BD7EE2DDC89D5894A, DCB242C07BEFE84368D98D5F8FA7F10A60BA2752B79CFA3C8FA23715D99B2206 ] RapportCerberus_69875 C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_69875.sys
17:36:57.0921 0x08c4  RapportCerberus_69875 - ok
17:36:58.0037 0x08c4  [ 68443E1EB69AAED997D1CFC1FCFAA4DE, 7684B40DDB565BB1E82F72CC75B8E0AA6634089FB4D609EE3D7DFAFF312225BD ] RapportEI64     C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys
17:36:58.0056 0x08c4  RapportEI64 - ok
17:36:58.0118 0x08c4  [ 4901DDAC6F2061C18FBC31AA9792ED18, 1A65A8C2CF085B542292F5D19DE53B02ED51D0900BBFE12C97113D7F356C0B48 ] RapportKE64     C:\windows\system32\Drivers\RapportKE64.sys
17:36:58.0150 0x08c4  RapportKE64 - ok
17:36:58.0469 0x08c4  [ 7B80AB7816A75535900B95D1FEABB3C2, 5A0108B3CFD7237AE68EB0499D8BEA83F46F7BBC02005BDC5E076A513A581F1B ] RapportMgmtService C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
17:36:58.0698 0x08c4  RapportMgmtService - ok
17:36:58.0836 0x08c4  [ 9E561A03C08DD7B40600BC4AD6640C1C, C18A5D6E5675D51934E25281ACFD43A48B2D379E29C744788A21E4C2B95C536C ] RapportPG64     C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys
17:36:58.0870 0x08c4  RapportPG64 - ok
17:36:58.0896 0x08c4  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
17:36:58.0900 0x08c4  RasAcd - ok
17:36:58.0928 0x08c4  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
17:36:58.0935 0x08c4  RasAgileVpn - ok
17:36:58.0983 0x08c4  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\windows\System32\rasauto.dll
17:36:58.0998 0x08c4  RasAuto - ok
17:36:59.0076 0x08c4  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
17:36:59.0089 0x08c4  Rasl2tp - ok
17:36:59.0125 0x08c4  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\windows\System32\rasmans.dll
17:36:59.0147 0x08c4  RasMan - ok
17:36:59.0171 0x08c4  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
17:36:59.0177 0x08c4  RasPppoe - ok
17:36:59.0220 0x08c4  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
17:36:59.0226 0x08c4  RasSstp - ok
17:36:59.0258 0x08c4  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
17:36:59.0282 0x08c4  rdbss - ok
17:36:59.0309 0x08c4  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\windows\system32\DRIVERS\rdpbus.sys
17:36:59.0313 0x08c4  rdpbus - ok
17:36:59.0340 0x08c4  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
17:36:59.0343 0x08c4  RDPCDD - ok
17:36:59.0355 0x08c4  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
17:36:59.0358 0x08c4  RDPENCDD - ok
17:36:59.0371 0x08c4  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
17:36:59.0375 0x08c4  RDPREFMP - ok
17:36:59.0468 0x08c4  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
17:36:59.0472 0x08c4  RdpVideoMiniport - ok
17:36:59.0511 0x08c4  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
17:36:59.0523 0x08c4  RDPWD - ok
17:36:59.0547 0x08c4  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
17:36:59.0560 0x08c4  rdyboost - ok
17:36:59.0567 0x08c4  ReadyComm.DirectRouter - ok
17:36:59.0615 0x08c4  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\windows\System32\mprdim.dll
17:36:59.0624 0x08c4  RemoteAccess - ok
17:36:59.0655 0x08c4  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\windows\system32\regsvc.dll
17:36:59.0669 0x08c4  RemoteRegistry - ok
17:36:59.0708 0x08c4  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\windows\system32\DRIVERS\rfcomm.sys
17:36:59.0719 0x08c4  RFCOMM - ok
17:36:59.0757 0x08c4  RimUsb - ok
17:36:59.0791 0x08c4  [ C903D49655B4AAE46673F0AAA6BE0F58, 0F861775323CC1792A4A4B43D6375532D982FBC9FCC03184B55101A2A579A832 ] RimVSerPort     C:\windows\system32\DRIVERS\RimSerial_AMD64.sys
17:36:59.0800 0x08c4  RimVSerPort - ok
17:36:59.0815 0x08c4  [ 388D3DD1A6457280F3BADBA9F3ACD6B1, 5C534EA15195B1301C917904627AF09FE2ABA3FEE1641B5C87E8F3191BC49058 ] ROOTMODEM       C:\windows\system32\Drivers\RootMdm.sys
17:36:59.0819 0x08c4  ROOTMODEM - ok
17:36:59.0848 0x08c4  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
17:36:59.0860 0x08c4  RpcEptMapper - ok
17:36:59.0891 0x08c4  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\windows\system32\locator.exe
17:36:59.0897 0x08c4  RpcLocator - ok
17:36:59.0980 0x08c4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\windows\system32\rpcss.dll
17:37:00.0013 0x08c4  RpcSs - ok
17:37:00.0050 0x08c4  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
17:37:00.0057 0x08c4  rspndr - ok
17:37:00.0115 0x08c4  [ 5AAB4808E8CCAE8C2ECDA5B791260616, EFA49ADD657D209AFE73CE0E9184E319D5F7A8A0C6B60BEFA0AAB172B2D397BA ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys
17:37:00.0137 0x08c4  RSUSBSTOR - ok
17:37:00.0275 0x08c4  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167         C:\windows\system32\DRIVERS\Rt64win7.sys
17:37:00.0330 0x08c4  RTL8167 - ok
17:37:00.0350 0x08c4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\windows\system32\lsass.exe
17:37:00.0359 0x08c4  SamSs - ok
17:37:00.0408 0x08c4  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
17:37:00.0412 0x08c4  SASDIFSV - ok
17:37:00.0435 0x08c4  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
17:37:00.0439 0x08c4  SASKUTIL - ok
17:37:00.0488 0x08c4  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
17:37:00.0499 0x08c4  sbp2port - ok
17:37:00.0591 0x08c4  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\windows\System32\SCardSvr.dll
17:37:00.0615 0x08c4  SCardSvr - ok
17:37:00.0665 0x08c4  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
17:37:00.0671 0x08c4  scfilter - ok
17:37:00.0818 0x08c4  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\windows\system32\schedsvc.dll
17:37:00.0920 0x08c4  Schedule - ok
17:37:00.0972 0x08c4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\windows\System32\certprop.dll
17:37:00.0982 0x08c4  SCPolicySvc - ok
17:37:01.0035 0x08c4  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\windows\System32\SDRSVC.dll
17:37:01.0065 0x08c4  SDRSVC - ok
17:37:01.0106 0x08c4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\windows\system32\drivers\secdrv.sys
17:37:01.0111 0x08c4  secdrv - ok
17:37:01.0135 0x08c4  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\windows\system32\seclogon.dll
17:37:01.0146 0x08c4  seclogon - ok
17:37:01.0186 0x08c4  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\windows\system32\sens.dll
17:37:01.0198 0x08c4  SENS - ok
17:37:01.0215 0x08c4  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\windows\system32\sensrsvc.dll
17:37:01.0226 0x08c4  SensrSvc - ok
17:37:01.0260 0x08c4  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\windows\system32\DRIVERS\serenum.sys
17:37:01.0264 0x08c4  Serenum - ok
17:37:01.0304 0x08c4  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\windows\system32\DRIVERS\serial.sys
17:37:01.0313 0x08c4  Serial - ok
17:37:01.0345 0x08c4  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\windows\system32\DRIVERS\sermouse.sys
17:37:01.0351 0x08c4  sermouse - ok
17:37:01.0414 0x08c4  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\windows\system32\sessenv.dll
17:37:01.0432 0x08c4  SessionEnv - ok
17:37:01.0462 0x08c4  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
17:37:01.0466 0x08c4  sffdisk - ok
17:37:01.0483 0x08c4  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
17:37:01.0487 0x08c4  sffp_mmc - ok
17:37:01.0503 0x08c4  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
17:37:01.0508 0x08c4  sffp_sd - ok
17:37:01.0531 0x08c4  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\windows\system32\DRIVERS\sfloppy.sys
17:37:01.0536 0x08c4  sfloppy - ok
17:37:01.0643 0x08c4  [ 2046AA7491DE7EFA4D70E615D9BC9D09, A8763D059AD68D5842C407FA9644E0B129BEF0F63CD87E62B80B05441EDC3489 ] Sftfs           C:\windows\system32\DRIVERS\Sftfslh.sys
17:37:01.0698 0x08c4  Sftfs - ok
17:37:01.0803 0x08c4  [ 77C5A741A7452812F278EF2C18478862, 0B763679EB7EFB8ED9DCE7B429706E939BB65BA6BCF1BAE0E0426D4E87074B8C ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
17:37:01.0841 0x08c4  sftlist - ok
17:37:01.0871 0x08c4  [ 0E0446BC4D51BE4263ACB7E33491191C, 2AD039FB440560658C4E06F67CC192EF71577EF3FF789A43C08430CE5EAE5A70 ] Sftplay         C:\windows\system32\DRIVERS\Sftplaylh.sys
17:37:01.0891 0x08c4  Sftplay - ok
17:37:01.0930 0x08c4  [ C5FB982CD266E604ED3142102C26D62C, A6BC0D72E98F924274ECAD49C85F0775D1CD45B97CD43F53DF3992B560835FC5 ] Sftredir        C:\windows\system32\DRIVERS\Sftredirlh.sys
17:37:01.0935 0x08c4  Sftredir - ok
17:37:01.0974 0x08c4  [ 2575511AF67AA1FA068CCC4918E2C2A3, 3152FF5AC2CF6FE966DA59B1B33E22F9BD9B6BB4310441870528364BA9501A4D ] Sftvol          C:\windows\system32\DRIVERS\Sftvollh.sys
17:37:01.0977 0x08c4  Sftvol - ok
17:37:02.0020 0x08c4  [ 39B1D0A636A400304565D4521FAD6D77, 1F01DB35B5A477AA7A77585C9304E6B5F3E67807531305BCA93A7F494CED8F59 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
17:37:02.0030 0x08c4  sftvsa - ok
17:37:02.0099 0x08c4  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\windows\System32\ipnathlp.dll
17:37:02.0119 0x08c4  SharedAccess - ok
17:37:02.0193 0x08c4  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll
17:37:02.0218 0x08c4  ShellHWDetection - ok
17:37:02.0248 0x08c4  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\windows\system32\DRIVERS\SiSRaid2.sys
17:37:02.0252 0x08c4  SiSRaid2 - ok
17:37:02.0270 0x08c4  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\windows\system32\DRIVERS\sisraid4.sys
17:37:02.0278 0x08c4  SiSRaid4 - ok
17:37:02.0303 0x08c4  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\windows\system32\DRIVERS\smb.sys
17:37:02.0309 0x08c4  Smb - ok
17:37:02.0351 0x08c4  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\windows\System32\snmptrap.exe
17:37:02.0357 0x08c4  SNMPTRAP - ok
17:37:02.0376 0x08c4  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\windows\system32\drivers\spldr.sys
17:37:02.0382 0x08c4  spldr - ok
17:37:02.0470 0x08c4  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\windows\System32\spoolsv.exe
17:37:02.0501 0x08c4  Spooler - ok
17:37:02.0716 0x08c4  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\windows\system32\sppsvc.exe
17:37:02.0961 0x08c4  sppsvc - ok
17:37:03.0020 0x08c4  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\windows\system32\sppuinotify.dll
17:37:03.0032 0x08c4  sppuinotify - ok
17:37:03.0126 0x08c4  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\windows\system32\DRIVERS\srv.sys
17:37:03.0173 0x08c4  srv - ok
17:37:03.0254 0x08c4  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
17:37:03.0309 0x08c4  srv2 - ok
17:37:03.0340 0x08c4  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
17:37:03.0356 0x08c4  srvnet - ok
17:37:03.0410 0x08c4  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
17:37:03.0437 0x08c4  SSDPSRV - ok
17:37:03.0461 0x08c4  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\windows\system32\sstpsvc.dll
17:37:03.0478 0x08c4  SstpSvc - ok
17:37:03.0515 0x08c4  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\windows\system32\DRIVERS\stexstor.sys
17:37:03.0520 0x08c4  stexstor - ok
17:37:03.0595 0x08c4  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\windows\system32\drivers\serscan.sys
17:37:03.0599 0x08c4  StillCam - ok
17:37:03.0692 0x08c4  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\windows\System32\wiaservc.dll
17:37:03.0750 0x08c4  stisvc - ok
17:37:03.0786 0x08c4  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\windows\system32\drivers\swenum.sys
17:37:03.0791 0x08c4  swenum - ok
17:37:03.0873 0x08c4  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\windows\System32\swprv.dll
17:37:03.0938 0x08c4  swprv - ok
17:37:03.0992 0x08c4  [ 5C9BB68B1F4BBCB85B4F6E675FC523A0, 6C9D952669B42199D7087189E5DB91CDD42D1015BAD206EB880B04D780086FDD ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
17:37:04.0019 0x08c4  SynTP - ok
17:37:04.0189 0x08c4  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\windows\system32\sysmain.dll
17:37:04.0316 0x08c4  SysMain - ok
17:37:04.0390 0x08c4  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll
17:37:04.0413 0x08c4  TabletInputService - ok
17:37:04.0446 0x08c4  [ F33FDC72298DF4BF9813A55D21F4EB31, 34AADF5115CA1B275FEF4238B420FE424F0E1D0FFD1606B24A0D594D7305CF1F ] taphss          C:\windows\system32\DRIVERS\taphss.sys
17:37:04.0452 0x08c4  taphss - ok
17:37:04.0517 0x08c4  [ FA08663E58C3B856CD9A83F3279337FE, D7479595189AF6869C8791003001C90E23C0BD457CB453C2EE2E8ADFA87FDB2F ] taphss6         C:\windows\system32\DRIVERS\taphss6.sys
17:37:04.0523 0x08c4  taphss6 - ok
17:37:04.0587 0x08c4  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\windows\System32\tapisrv.dll
17:37:04.0616 0x08c4  TapiSrv - ok
17:37:04.0646 0x08c4  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\windows\System32\tbssvc.dll
17:37:04.0661 0x08c4  TBS - ok
17:37:04.0828 0x08c4  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\windows\system32\drivers\tcpip.sys
17:37:04.0973 0x08c4  Tcpip - ok
17:37:05.0118 0x08c4  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
17:37:05.0234 0x08c4  TCPIP6 - ok
17:37:05.0328 0x08c4  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
17:37:05.0333 0x08c4  tcpipreg - ok
17:37:05.0373 0x08c4  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
17:37:05.0377 0x08c4  TDPIPE - ok
17:37:05.0408 0x08c4  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
17:37:05.0412 0x08c4  TDTCP - ok
17:37:05.0464 0x08c4  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
17:37:05.0474 0x08c4  tdx - ok
17:37:05.0525 0x08c4  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\windows\system32\drivers\termdd.sys
17:37:05.0534 0x08c4  TermDD - ok
17:37:05.0680 0x08c4  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\windows\System32\termsrv.dll
17:37:05.0760 0x08c4  TermService - ok
17:37:05.0816 0x08c4  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\windows\system32\themeservice.dll
17:37:05.0833 0x08c4  Themes - ok
17:37:05.0870 0x08c4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\windows\system32\mmcss.dll
17:37:05.0879 0x08c4  THREADORDER - ok
17:37:05.0906 0x08c4  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\windows\System32\trkwks.dll
17:37:05.0924 0x08c4  TrkWks - ok
17:37:06.0084 0x08c4  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
17:37:06.0120 0x08c4  TrustedInstaller - ok
17:37:06.0175 0x08c4  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
17:37:06.0196 0x08c4  tssecsrv - ok
17:37:06.0264 0x08c4  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
17:37:06.0269 0x08c4  TsUsbFlt - ok
17:37:06.0344 0x08c4  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
17:37:06.0365 0x08c4  tunnel - ok
17:37:06.0395 0x08c4  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\windows\system32\DRIVERS\uagp35.sys
17:37:06.0401 0x08c4  uagp35 - ok
17:37:06.0448 0x08c4  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
17:37:06.0468 0x08c4  udfs - ok
17:37:06.0511 0x08c4  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\windows\system32\UI0Detect.exe
17:37:06.0521 0x08c4  UI0Detect - ok
17:37:06.0553 0x08c4  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
17:37:06.0562 0x08c4  uliagpkx - ok
17:37:06.0609 0x08c4  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\windows\system32\drivers\umbus.sys
17:37:06.0619 0x08c4  umbus - ok
17:37:06.0653 0x08c4  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\windows\system32\DRIVERS\umpass.sys
17:37:06.0655 0x08c4  UmPass - ok
17:37:07.0034 0x08c4  [ AF905F4966CFC8B973623AB150CD4B2B, E1BF0481A584C10AE4A927A01A1E6B76036C18FAF7AB38D9B78641F5808D9888 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
17:37:07.0179 0x08c4  UNS - ok
17:37:07.0236 0x08c4  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\windows\System32\upnphost.dll
17:37:07.0263 0x08c4  upnphost - ok
17:37:07.0319 0x08c4  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\windows\system32\drivers\usbaudio.sys
17:37:07.0326 0x08c4  usbaudio - ok
17:37:07.0397 0x08c4  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
17:37:07.0405 0x08c4  usbccgp - ok
17:37:07.0437 0x08c4  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\windows\system32\drivers\usbcir.sys
17:37:07.0446 0x08c4  usbcir - ok
17:37:07.0499 0x08c4  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\windows\system32\drivers\usbehci.sys
17:37:07.0516 0x08c4  usbehci - ok
17:37:07.0582 0x08c4  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
17:37:07.0605 0x08c4  usbhub - ok
17:37:07.0661 0x08c4  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\windows\system32\drivers\usbohci.sys
17:37:07.0674 0x08c4  usbohci - ok
17:37:07.0696 0x08c4  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\windows\system32\DRIVERS\usbprint.sys
17:37:07.0701 0x08c4  usbprint - ok
17:37:07.0741 0x08c4  [ AAA2513C8AED8B54B189FD0C6B1634C0, 02FEE0B756AA559C29477A19861AC16D5A3152DC3C897C7D466423438B6A5E42 ] usbscan         C:\windows\system32\DRIVERS\usbscan.sys
17:37:07.0746 0x08c4  usbscan - ok
17:37:07.0803 0x08c4  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
17:37:07.0811 0x08c4  USBSTOR - ok
17:37:07.0861 0x08c4  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
17:37:07.0879 0x08c4  usbuhci - ok
17:37:07.0939 0x08c4  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys
17:37:07.0964 0x08c4  usbvideo - ok
17:37:08.0000 0x08c4  [ 7B28E2FBE75115660FAB31079C0A9F29, 81BB5A3E64B652A672A0782A88ABF6DDD729D38712D0706CE0FB9DE6D1EE1515 ] usb_rndisx      C:\windows\system32\drivers\usb8023x.sys
17:37:08.0007 0x08c4  usb_rndisx - ok
17:37:08.0051 0x08c4  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\windows\System32\uxsms.dll
17:37:08.0065 0x08c4  UxSms - ok
17:37:08.0108 0x08c4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\windows\system32\lsass.exe
17:37:08.0118 0x08c4  VaultSvc - ok
17:37:08.0168 0x08c4  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
17:37:08.0188 0x08c4  vdrvroot - ok
17:37:08.0372 0x08c4  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\windows\System32\vds.exe
17:37:08.0427 0x08c4  vds - ok
17:37:08.0457 0x08c4  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
17:37:08.0463 0x08c4  vga - ok
17:37:08.0484 0x08c4  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\windows\System32\drivers\vga.sys
17:37:08.0490 0x08c4  VgaSave - ok
17:37:08.0544 0x08c4  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
17:37:08.0563 0x08c4  vhdmp - ok
17:37:08.0600 0x08c4  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\windows\system32\drivers\viaide.sys
17:37:08.0604 0x08c4  viaide - ok
17:37:08.0654 0x08c4  [ 4D7427E0212D98CACB81C919E777B909, A9271639C37E371CD006790677D4E8082EB582D0CABB2078C9001FDCDE14DE47 ] vm331avs        C:\windows\system32\Drivers\vm331avs.sys
17:37:08.0672 0x08c4  vm331avs - ok
17:37:08.0709 0x08c4  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\windows\system32\drivers\volmgr.sys
17:37:08.0718 0x08c4  volmgr - ok
17:37:08.0790 0x08c4  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
17:37:08.0819 0x08c4  volmgrx - ok
17:37:08.0871 0x08c4  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\windows\system32\drivers\volsnap.sys
17:37:08.0896 0x08c4  volsnap - ok
17:37:08.0938 0x08c4  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\windows\system32\DRIVERS\vsmraid.sys
17:37:08.0949 0x08c4  vsmraid - ok
17:37:09.0079 0x08c4  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\windows\system32\vssvc.exe
17:37:09.0169 0x08c4  VSS - ok
17:37:09.0191 0x08c4  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
17:37:09.0195 0x08c4  vwifibus - ok
17:37:09.0242 0x08c4  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
17:37:09.0249 0x08c4  vwififlt - ok
17:37:09.0317 0x08c4  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\windows\system32\w32time.dll
17:37:09.0342 0x08c4  W32Time - ok
17:37:09.0371 0x08c4  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\windows\system32\DRIVERS\wacompen.sys
17:37:09.0375 0x08c4  WacomPen - ok
17:37:09.0423 0x08c4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
17:37:09.0430 0x08c4  WANARP - ok
17:37:09.0439 0x08c4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
17:37:09.0445 0x08c4  Wanarpv6 - ok
17:37:09.0549 0x08c4  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
17:37:09.0624 0x08c4  WatAdminSvc - ok
17:37:09.0788 0x08c4  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\windows\system32\wbengine.exe
17:37:09.0885 0x08c4  wbengine - ok
17:37:09.0940 0x08c4  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
17:37:09.0970 0x08c4  WbioSrvc - ok
17:37:10.0089 0x08c4  [ 8BDA6DB43AA54E8BB5E0794541DDC209, 8753C507BE77B019A3403AF5252434A01DB9F9332E58AC3783ABCE3D21AD9DD4 ] WcesComm        C:\windows\WindowsMobile\wcescomm.dll
17:37:10.0127 0x08c4  WcesComm - ok
17:37:10.0217 0x08c4  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\windows\System32\wcncsvc.dll
17:37:10.0259 0x08c4  wcncsvc - ok
17:37:10.0291 0x08c4  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
17:37:10.0305 0x08c4  WcsPlugInService - ok
17:37:10.0338 0x08c4  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\windows\system32\DRIVERS\wd.sys
17:37:10.0343 0x08c4  Wd - ok
17:37:10.0454 0x08c4  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
17:37:10.0523 0x08c4  Wdf01000 - ok
17:37:10.0554 0x08c4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\windows\system32\wdi.dll
17:37:10.0572 0x08c4  WdiServiceHost - ok
17:37:10.0590 0x08c4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\windows\system32\wdi.dll
17:37:10.0612 0x08c4  WdiSystemHost - ok
17:37:10.0652 0x08c4  [ 2A444ACF7DD446505BCC801F8F6AE5FD, A257CBA8D1B96D4E8C2085DB5D28C5D4FFA64767ABA5FE764F1AA2697D0E994B ] wdmirror        C:\windows\system32\DRIVERS\WDMirror.sys
17:37:10.0657 0x08c4  wdmirror - ok
17:37:10.0729 0x08c4  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\windows\System32\webclnt.dll
17:37:10.0760 0x08c4  WebClient - ok
17:37:10.0813 0x08c4  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\windows\system32\wecsvc.dll
17:37:10.0842 0x08c4  Wecsvc - ok
17:37:10.0866 0x08c4  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\windows\System32\wercplsupport.dll
17:37:10.0883 0x08c4  wercplsupport - ok
17:37:10.0906 0x08c4  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\windows\System32\WerSvc.dll
17:37:10.0922 0x08c4  WerSvc - ok
17:37:10.0983 0x08c4  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
17:37:10.0988 0x08c4  WfpLwf - ok
17:37:11.0073 0x08c4  [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr         C:\windows\system32\DRIVERS\wimfltr.sys
17:37:11.0088 0x08c4  WimFltr - ok
17:37:11.0121 0x08c4  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\windows\system32\drivers\wimmount.sys
17:37:11.0127 0x08c4  WIMMount - ok
17:37:11.0157 0x08c4  WinDefend - ok
17:37:11.0198 0x08c4  WinHttpAutoProxySvc - ok
17:37:11.0277 0x08c4  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
17:37:11.0300 0x08c4  Winmgmt - ok
17:37:11.0495 0x08c4  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\windows\system32\WsmSvc.dll
17:37:11.0639 0x08c4  WinRM - ok
17:37:11.0682 0x08c4  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
17:37:11.0688 0x08c4  WinUsb - ok
17:37:11.0784 0x08c4  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\windows\System32\wlansvc.dll
17:37:11.0847 0x08c4  Wlansvc - ok
17:37:11.0883 0x08c4  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
17:37:11.0889 0x08c4  wlcrasvc - ok
17:37:12.0071 0x08c4  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:37:12.0179 0x08c4  wlidsvc - ok
17:37:12.0202 0x08c4  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\windows\system32\drivers\wmiacpi.sys
17:37:12.0205 0x08c4  WmiAcpi - ok
17:37:12.0253 0x08c4  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
17:37:12.0263 0x08c4  wmiApSrv - ok
17:37:12.0289 0x08c4  WMPNetworkSvc - ok
17:37:12.0316 0x08c4  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\windows\System32\wpcsvc.dll
17:37:12.0323 0x08c4  WPCSvc - ok
17:37:12.0392 0x08c4  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
17:37:12.0408 0x08c4  WPDBusEnum - ok
17:37:12.0438 0x08c4  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
17:37:12.0442 0x08c4  ws2ifsl - ok
17:37:12.0469 0x08c4  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\windows\system32\wscsvc.dll
17:37:12.0478 0x08c4  wscsvc - ok
17:37:12.0502 0x08c4  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\windows\system32\DRIVERS\WSDPrint.sys
17:37:12.0506 0x08c4  WSDPrintDevice - ok
17:37:12.0513 0x08c4  WSearch - ok
17:37:12.0557 0x08c4  [ 83575C43B2BFE9AB0661A7F957E843C0, 6FCE62721902A4F35F1A4CED8AF60A0346CFAB657ED92DE4CEFF19BDB830D32D ] wsvd            C:\windows\system32\DRIVERS\wsvd.sys
17:37:12.0564 0x08c4  wsvd - ok
17:37:12.0716 0x08c4  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\windows\system32\wuaueng.dll
17:37:12.0862 0x08c4  wuauserv - ok
17:37:12.0978 0x08c4  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
17:37:12.0986 0x08c4  WudfPf - ok
17:37:13.0018 0x08c4  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
17:37:13.0032 0x08c4  WUDFRd - ok
17:37:13.0059 0x08c4  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
17:37:13.0073 0x08c4  wudfsvc - ok
17:37:13.0156 0x08c4  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\windows\System32\wwansvc.dll
17:37:13.0189 0x08c4  WwanSvc - ok
17:37:13.0233 0x08c4  ================ Scan global ===============================
17:37:13.0304 0x08c4  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll
17:37:13.0370 0x08c4  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
17:37:13.0428 0x08c4  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
17:37:13.0480 0x08c4  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll
17:37:13.0546 0x08c4  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe
17:37:13.0582 0x08c4  [ Global ] - ok
17:37:13.0583 0x08c4  ================ Scan MBR ==================================
17:37:13.0601 0x08c4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:37:13.0809 0x08c4  \Device\Harddisk0\DR0 - ok
17:37:13.0810 0x08c4  ================ Scan VBR ==================================
17:37:13.0816 0x08c4  [ 7EEE73A1EC1096DFC98FF80199565AFA ] \Device\Harddisk0\DR0\Partition1
17:37:13.0819 0x08c4  \Device\Harddisk0\DR0\Partition1 - ok
17:37:13.0827 0x08c4  [ EEC3C5B21B72C3FA046ED6DCE26EA6A0 ] \Device\Harddisk0\DR0\Partition2
17:37:13.0831 0x08c4  \Device\Harddisk0\DR0\Partition2 - ok
17:37:13.0861 0x08c4  [ 76190CF2EC2646D90A40758C2BC128B0 ] \Device\Harddisk0\DR0\Partition3
17:37:13.0864 0x08c4  \Device\Harddisk0\DR0\Partition3 - ok
17:37:13.0866 0x08c4  ================ Scan generic autorun ======================
17:37:13.0914 0x08c4  [ 3EE28B12692B0385CFADB7C98B57CF7A, 5CAC8A0B0820211338225D6F6D60C48BE753165640E24B915854727560E037EC ] C:\windows\system32\igfxtray.exe
17:37:13.0932 0x08c4  IgfxTray - ok
17:37:13.0983 0x08c4  [ 19653004DF2CE89875BACD7C669F265A, 61A5086197F807CD46A195E77B2BDB9AE795678A6FA4AEDA72F78BB95E9D39A0 ] C:\windows\system32\hkcmd.exe
17:37:14.0011 0x08c4  HotKeysCmds - ok
17:37:14.0045 0x08c4  [ 0A592172FC4ECAE06A518E74B58FC63D, 9F79A6D4011431EC988F9A65FD30A9B752ADC5A64EFD8A8E5799541E9C81ECCB ] C:\windows\system32\igfxpers.exe
17:37:14.0080 0x08c4  Persistence - ok
17:37:14.0158 0x08c4  [ 24066DF5E85F6AF4A2013E70BF73423C, 9B4EFBF3FF194244F0D5C9128CF99EC7BCB1D62BE0975DA0F52816FF00EB0DB9 ] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe
17:37:14.0183 0x08c4  cAudioFilterAgent - ok
17:37:14.0185 0x08c4  SynTPEnh - ok
17:37:14.0298 0x08c4  [ 01D8330E630471EDF5703B5F4D7445DB, F28C339A6600229B8E71A0C70D9B39EF44676C0B2AA41A7AA8CDE2FFE5E84693 ] C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe
17:37:14.0345 0x08c4  OnekeyStudio - ok
17:37:14.0617 0x08c4  [ C083F40450A977D92A9587BA08B8C486, 5C468A859C87E01A1697C5BD2AB3FB94B4D949FD8C79D1B3A4A406C0D1FAAF8D ] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
17:37:14.0910 0x08c4  EnergyUtility - ok
17:37:15.0442 0x08c4  [ 39F56BD3EBC3EC88D0319CCC63B6D452, 22A16E92CF34851A75E96343450D5FA2DDFD9128DF7B30CB4917361B1FD98682 ] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
17:37:15.0931 0x08c4  Energy Management - ok
17:37:16.0028 0x08c4  [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\windows\WindowsMobile\wmdc.exe
17:37:16.0069 0x08c4  Windows Mobile Device Center - ok
17:37:16.0233 0x08c4  [ DF72D700CC33611206675B8A2FD4D4F9, AB3AF6FD92140A1432FEAFFF2015CFAD5E9362F0018EA1D859A2DA349E95847D ] C:\Program Files\Logitech\SetPointP\SetPoint.exe
17:37:16.0339 0x08c4  EvtMgr6 - ok
17:37:16.0392 0x08c4  [ 25107F58D1B8F60D67D1EE95798C0DE8, C3B5205E8818576EBF33E3B9FD8664A498714B823D9128FC1CA0A64F81499263 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
17:37:16.0409 0x08c4  IAStorIcon - ok
17:37:16.0473 0x08c4  [ 4E2C658B409984B1018524BBF6A04052, E27B0895F63FB5BA2C7A17AFBAF314EC7E280711B7C2A614797AAEAEBE7B8050 ] C:\Program Files (x86)\USB Camera\VM331_STI.EXE
17:37:16.0504 0x08c4  331BigDog - ok
17:37:16.0744 0x08c4  [ EE4339BB9F7B4CFB234CD1C847EC4E32, C982483A3253923DB4FC4B7B25AA9A52681B3249E53E4A93F13C4AA8DA43CA3F ] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
17:37:16.0942 0x08c4  VeriFaceManager - ok
17:37:17.0016 0x08c4  [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files (x86)\Lenovo\YouCam\MUITransfer\MUIStartMenu.exe
17:37:17.0025 0x08c4  UCam_Menu - ok
17:37:17.0059 0x08c4  [ 441AEAA45A35495644CC6530AC5BD725, 6E971A7D58A5FDDE3673CDD0A866B1C12B396633B3AA98D1278D487210D06245 ] C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
17:37:17.0066 0x08c4  YouCam Mirror Tray icon - ok
17:37:17.0111 0x08c4  [ 9ACFD9D5E12D849B28C78FED6D620EB3, 203D1EECFB44BA7D3936AAA2280B1D88207BA7655AB735C17BF9F3AAF3D8A803 ] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe
17:37:17.0120 0x08c4  UpdateP2GShortCut - ok
17:37:17.0296 0x08c4  [ 2FCA1E8A973E696DE994B17772A266CB, D51CE10387627E920D7D2DF2CA174293F93F4DD64FF226F9C25456517393A02E ] C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe
17:37:17.0409 0x08c4  Intuit SyncManager - ok
17:37:17.0504 0x08c4  [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
17:37:17.0507 0x08c4  GrooveMonitor - ok
17:37:17.0704 0x08c4  [ 3573A4FD6682D3DB7FAA089159AFFD1C, 7D22473C9DBAAA3E6BBF7B1EE0B5FFCB47408A1CF60A15DFF39B9C59C8EC6FB5 ] C:\Program Files (x86)\Brownie\BrstsW64.exe
17:37:17.0855 0x08c4  BrStsWnd - ok
17:37:18.0180 0x08c4  [ 354177E5BCF4C77535F908C631601B67, 6F966D5405262C4E600A204D386B5D813856FDB1B926244AF5E42B2E22F09FD9 ] C:\Program Files (x86)\Progress Thru Processors\gridrepublic.exe
17:37:18.0516 0x08c4  boincmgr - ok
17:37:18.0570 0x08c4  [ 6EB9381C1E14E09AA63CD805EB190D8A, BABAE191DEF7D9F38B6C4630F20797AA2DA762192B2FEBA99D59647ECC004101 ] C:\Program Files (x86)\Progress Thru Processors\boinctray.exe
17:37:18.0574 0x08c4  boinctray - ok
17:37:18.0692 0x08c4  [ 72860972F8196EBB3C896F53D2B95470, 95C046A66DD0089377867F073CADCE585B7C69CA23E724DCAD9D896BF01E023D ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
17:37:18.0702 0x08c4  hpqSRMon - ok
17:37:18.0811 0x08c4  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
17:37:18.0857 0x08c4  Adobe ARM - ok
17:37:18.0918 0x08c4  [ 5B6E8E09BE6401A7E022F52FDFCB2FF8, 471C556CF9405BBB380A8CEFE945C126B954B7C94F79CC72441B51F80141FC5E ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
17:37:18.0931 0x08c4  SunJavaUpdateSched - ok
17:37:19.0153 0x08c4  [ 26B558B2D31C7425B455B00E562EAD93, B64D128A2F1FC42BA4376F8EB08D70F4B705745CB983D0631DB45851BF34BBDF ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
17:37:19.0431 0x08c4  AvastUI.exe - ok
17:37:19.0484 0x08c4  [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
17:37:19.0491 0x08c4  HP Software Update - ok
17:37:19.0854 0x08c4  [ BCD9CBF0621F9A6767276A2E0BF1DD15, C0748AEE57A79D1AD8A4307D3ECB03A517464D047CD5CC64BAD299E0BFAEFB60 ] C:\Users\ICU Automotive\AppData\Roaming\Google\Google Talk\googletalk.exe
17:37:20.0099 0x08c4  googletalk - ok
17:37:20.0252 0x08c4  [ 20B5D1F38413708FF2084A7CFDF0A54C, B2C375E15901F2883F2AD1628D2CD48E39CB2863EB9E05AEB2D9BE1DD377E726 ] C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe
17:37:20.0263 0x08c4  GarminExpressTrayApp - ok
17:37:20.0347 0x08c4  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Users\ICU Automotive\AppData\Local\Google\Update\GoogleUpdate.exe
17:37:20.0359 0x08c4  Google Update - ok
17:37:21.0200 0x08c4  [ 6CC1583E7D527804DF98B602C2A6D944, 816238FAAEA672FAB3FE805D02BAAE33216B99F8125C63495C7157F012B10B02 ] c:\program files (x86)\deskcalc pro\deskcalc.exe
17:37:21.0979 0x08c4  DeskCalc - ok
17:37:22.0059 0x08c4  [ A9B2F73DE87DA55A2992FB4268111AED, D31161DF585A21AF6B7E5790740EDB97C61FA7651E6C8AC93BD6EFB585757AB2 ] C:\Program Files\Earth Networks\WeatherBug\WeatherBug.exe
17:37:22.0066 0x08c4  WeatherBug - ok
17:37:22.0118 0x08c4  [ EB00A4E988042F2CB4855ED1ABB5B5BA, 2865C4D027DE4D835273798B0897F929B118DDE20D94C4B433BD1370BEA140D8 ] C:\Program Files\BatteryBar\ShowBatteryBar.exe
17:37:22.0124 0x08c4  ShowBatteryBar - ok
17:37:22.0468 0x08c4  [ D947DA26AAF4509A4132BE1E17CE7ED7, 7D65737EF80217651C7A4E55F50A2436684624FB7155E91EC0BB94841C37A8C0 ] C:\Program Files (x86)\Evernote\Skitch\Skitch.exe
17:37:22.0810 0x08c4  Skitch - ok
17:37:22.0927 0x08c4  [ 323074FD3CC1BA1214A52B7FBFA2F9D7, 27C198BB9CD855DE8E838BE1D8E5DEC38C00AD770BED629EE328B588AE478767 ] C:\Users\ICU Automotive\AppData\Roaming\mjusbsp\cdloader2.exe
17:37:22.0933 0x08c4  cdloader - ok
17:37:23.0586 0x08c4  [ F2E5126DF9CBBEEFFA91279D62430652, 1E65AAE2BBE9F01063A5BF26A6172AEBD0C6695A6DCA9C894FDC2BD7706768B4 ] C:\Program Files\CCleaner\CCleaner64.exe
17:37:24.0157 0x08c4  CCleaner Monitoring - ok
17:37:24.0330 0x08c4  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:37:24.0406 0x08c4  Sidebar - ok
17:37:24.0449 0x08c4  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:37:24.0460 0x08c4  mctadmin - ok
17:37:24.0466 0x08c4  Waiting for KSN requests completion. In queue: 147
17:37:25.0466 0x08c4  Waiting for KSN requests completion. In queue: 147
17:37:26.0466 0x08c4  Waiting for KSN requests completion. In queue: 147
17:37:27.0466 0x08c4  Waiting for KSN requests completion. In queue: 147
17:37:28.0466 0x08c4  Waiting for KSN requests completion. In queue: 147
17:37:29.0642 0x08c4  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2021.515 ), 0x41000 ( enabled : updated )
17:37:29.0730 0x08c4  Win FW state via NFP2: enabled
17:37:33.0788 0x08c4  ============================================================
17:37:33.0788 0x08c4  Scan finished
17:37:33.0788 0x08c4  ============================================================
17:37:33.0806 0x193c  Detected object count: 0
17:37:33.0807 0x193c  Actual detected object count: 0
17:40:10.0724 0x1d3c  Deinitialize success
 



#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,058 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:11 AM

Posted 20 August 2014 - 09:14 PM

Somewhere along the way uninstall these thru Control Panel and reboot after.
Java 7 Update 17 (64-bit) (Version: 7.0.170)
Java 7 Update 55 (Version: 7.0.550)

Also Update SUPERAntiSpyware
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 chris.gatti

chris.gatti
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Jackson, TN
  • Local time:03:11 AM

Posted 20 August 2014 - 09:47 PM

# AdwCleaner v3.308 - Report created 20/08/2014 at 18:17:18
# Updated 20/08/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : ICU Automotive - ICU
# Running from : C:\Users\ICU Automotive\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\ProgramData\Alawar Stargaze
Folder Deleted : C:\Program Files (x86)\MyPC Backup
Folder Deleted : C:\Users\ICU Automotive\AppData\Local\genienext
[x] Not Deleted : C:\Users\ICU Automotive\AppData\Local\iWin
Folder Deleted : C:\Users\ICU Automotive\AppData\Local\Mobogenie
Folder Deleted : C:\Users\ICU Automotive\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Folder Deleted : C:\Users\ICU Automotive\Documents\Mobogenie
[x] Not Deleted : C:\Users\Public\Documents\iWin
File Deleted : C:\Users\ICU Automotive\daemonprocess.txt

***** [ Scheduled Tasks ] *****

Task Deleted : LaunchApp

***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [{442718d9-475e-452a-b3e1-fb1ee16b8e9f}]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askchecker_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askchecker_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\blekkoTb_1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\blekkoTb_1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{42D79B50-CC4A-4A8E-860F-BE674AF053A2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9522B3FB-7A2B-4646-8AF6-36E7F593073C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A85A5E6A-DE2C-4F4E-99DC-F469DF5A0EEC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E69D4A59-73DE-4E38-9FB3-740EC4D9060D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42D79B50-CC4A-4A8E-860F-BE674AF053A2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{42D79B50-CC4A-4A8E-860F-BE674AF053A2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{42D79B50-CC4A-4A8E-860F-BE674AF053A2}
Key Deleted : HKCU\Software\anchorfree
Key Deleted : HKLM\SOFTWARE\Trymedia Systems
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Coupon Printer for Windows5.0.0.0
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239


-\\ Mozilla Firefox v31.0 (x86 en-US)

[ File : C:\Users\ICU Automotive\AppData\Roaming\Mozilla\Firefox\Profiles\40kp3g3y.default-1396962108843\prefs.js ]


-\\ Google Chrome v36.0.1985.143

[ File : C:\Users\ICU Automotive\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://blekko.com/?source=c3348dd4&tbp=rbox&toolbarid=blekkotb&u=20120411DC884A79A79D14A3FD26E031&q={searchTerms}
Deleted [Search Provider] : hxxps://search.blekko.com/ws/?source=12fe24cf&tbp=rbox&toolbarid=searchcom_004&u=20120411352948A5AD1421ED2DD684C6&q={searchTerms}
Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

*************************

AdwCleaner[R0].txt - [4157 octets] - [20/08/2014 17:44:19]
AdwCleaner[S0].txt - [4112 octets] - [20/08/2014 18:17:18]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4172 octets] ##########
 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users