Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Coworkers PC...that just became my boss...


  • Please log in to reply
5 replies to this topic

#1 MCorlione

MCorlione

  • Members
  • 68 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:09:23 PM

Posted 10 September 2014 - 07:53 PM

He stated getting internet pages to load were starting to take forever....I stopped trying to open I.E. at 4 minutes.  Got it to open in Chrome although not the speediest.  I can only assume this has quite a few viruses...I saw some games and gambling etc.  Can you please point me in the direction of first steps.

Thanks!



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:23 PM

Posted 10 September 2014 - 09:11 PM

Hello, not really clear what you are saying, but let's scan it and see how it is.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 MCorlione

MCorlione
  • Topic Starter

  • Members
  • 68 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:09:23 PM

Posted 12 September 2014 - 06:45 PM

MiniToolBox by Farbar  Version: 21-07-2014
Ran by Nick (administrator) on 11-09-2014 at 17:54:10
Running from "C:\Users\Nick\Downloads"
Microsoft Windows 7 Starter  Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Toshiba_NB205
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : Home
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : Home
   Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
   Physical Address. . . . . . . . . : 00-26-B6-09-62-E1
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::dc43:5b6c:cbac:2900%11(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.0.15(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Wednesday, September 10, 2014 7:31:08 PM
   Lease Expires . . . . . . . . . . : Friday, September 12, 2014 5:44:56 PM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 301999798
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-84-B3-54-00-26-22-34-B1-44
   DNS Servers . . . . . . . . . . . : fe80::4ea:8b12:fade:b19b%11
                                       192.168.0.1
                                       205.171.2.25
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : home.network
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 00-26-22-34-B1-44
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.Home:
 
   Connection-specific DNS Suffix  . : Home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::5efe:192.168.0.15%14(Preferred) 
   Default Gateway . . . . . . . . . : 
   DNS Servers . . . . . . . . . . . : fe80::4ea:8b12:fade:b19b%11
                                       192.168.0.1
                                       205.171.2.25
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter isatap.home.network:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:18b0:3b9:3f57:fff0(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::18b0:3b9:3f57:fff0%12(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  fe80::4ea:8b12:fade:b19b
 
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
 
Pinging google.com [173.194.46.73] with 32 bytes of data:
Reply from 173.194.46.73: bytes=32 time=50ms TTL=57
Reply from 173.194.46.73: bytes=32 time=37ms TTL=57
 
Ping statistics for 173.194.46.73:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 37ms, Maximum = 50ms, Average = 43ms
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  fe80::4ea:8b12:fade:b19b
 
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=114ms TTL=52
Reply from 98.138.253.109: bytes=32 time=100ms TTL=52
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 100ms, Maximum = 114ms, Average = 107ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...00 26 b6 09 62 e1 ......Atheros AR9285 Wireless Network Adapter
 10...00 26 22 34 b1 44 ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
 14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 24...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.15     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link      192.168.0.15    281
     192.168.0.15  255.255.255.255         On-link      192.168.0.15    281
    192.168.0.255  255.255.255.255         On-link      192.168.0.15    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.0.15    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.0.15    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 12     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 12     58 2001::/32                On-link
 12    306 2001:0:9d38:6ab8:18b0:3b9:3f57:fff0/128
                                    On-link
 11    281 fe80::/64                On-link
 12    306 fe80::/64                On-link
 14    286 fe80::5efe:192.168.0.15/128
                                    On-link
 12    306 fe80::18b0:3b9:3f57:fff0/128
                                    On-link
 11    281 fe80::dc43:5b6c:cbac:2900/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 12 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 13 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 14 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 15 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 16 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 17 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 18 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 19 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 20 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 21 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 22 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 23 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 24 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (09/11/2014 05:55:19 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/09/11 17:55:19.286]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:54:10 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/09/11 17:54:10.278]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:53:01 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/09/11 17:53:01.269]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:51:52 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/09/11 17:51:52.252]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:50:43 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/09/11 17:50:43.217]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:49:34 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/09/11 17:49:34.208]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:48:25 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/09/11 17:48:25.143]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:47:16 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/09/11 17:47:16.109]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:46:05 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/09/11 17:46:05.413]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:45:36 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/09/11 17:45:36.347]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
 
System errors:
=============
Error: (09/10/2014 07:31:12 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
 
Error: (09/10/2014 07:28:13 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
 
New Signature Version: 
 
Previous Signature Version: 1.183.1275.0
 
Update Source: %NT AUTHORITY59
 
Update Stage: 4.5.0216.00
 
Source Path: 4.5.0216.01
 
Signature Type: %NT AUTHORITY602
 
Update Type: %NT AUTHORITY604
 
User: NT AUTHORITY\SYSTEM
 
Current Engine Version: %NT AUTHORITY605
 
Previous Engine Version: %NT AUTHORITY606
 
Error code: %NT AUTHORITY607
 
Error description: %NT AUTHORITY608
 
Error: (09/10/2014 07:13:30 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
 
New Signature Version: 
 
Previous Signature Version: 112.5.0.0
 
Update Source: %NT AUTHORITY51
 
Update Stage: 4.5.0216.00
 
Source Path: 4.5.0216.01
 
Signature Type: %NT AUTHORITY602
 
Update Type: %NT AUTHORITY604
 
User: NT AUTHORITY\NETWORK SERVICE
 
Current Engine Version: %NT AUTHORITY605
 
Previous Engine Version: %NT AUTHORITY606
 
Error code: %NT AUTHORITY607
 
Error description: %NT AUTHORITY608
 
Error: (09/10/2014 07:13:29 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
 
New Signature Version: 
 
Previous Signature Version: 1.183.1275.0
 
Update Source: %NT AUTHORITY51
 
Update Stage: 4.5.0216.00
 
Source Path: 4.5.0216.01
 
Signature Type: %NT AUTHORITY602
 
Update Type: %NT AUTHORITY604
 
User: NT AUTHORITY\NETWORK SERVICE
 
Current Engine Version: %NT AUTHORITY605
 
Previous Engine Version: %NT AUTHORITY606
 
Error code: %NT AUTHORITY607
 
Error description: %NT AUTHORITY608
 
Error: (09/10/2014 07:13:29 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
 
New Signature Version: 
 
Previous Signature Version: 1.183.1275.0
 
Update Source: %NT AUTHORITY51
 
Update Stage: 4.5.0216.00
 
Source Path: 4.5.0216.01
 
Signature Type: %NT AUTHORITY602
 
Update Type: %NT AUTHORITY604
 
User: NT AUTHORITY\NETWORK SERVICE
 
Current Engine Version: %NT AUTHORITY605
 
Previous Engine Version: %NT AUTHORITY606
 
Error code: %NT AUTHORITY607
 
Error description: %NT AUTHORITY608
 
Error: (09/10/2014 07:13:28 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
 
New Signature Version: 
 
Previous Signature Version: 1.183.1275.0
 
Update Source: %NT AUTHORITY59
 
Update Stage: 4.5.0216.00
 
Source Path: 4.5.0216.01
 
Signature Type: %NT AUTHORITY602
 
Update Type: %NT AUTHORITY604
 
User: NT AUTHORITY\SYSTEM
 
Current Engine Version: %NT AUTHORITY605
 
Previous Engine Version: %NT AUTHORITY606
 
Error code: %NT AUTHORITY607
 
Error description: %NT AUTHORITY608
 
Error: (09/10/2014 07:13:09 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
 
Error: (09/01/2014 08:46:15 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
 
Error: (09/01/2014 05:35:45 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
 
Error: (08/30/2014 04:54:55 AM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
 
New Signature Version: 
 
Previous Signature Version: 112.1.0.0
 
Update Source: %NT AUTHORITY51
 
Update Stage: 4.5.0216.00
 
Source Path: 4.5.0216.01
 
Signature Type: %NT AUTHORITY602
 
Update Type: %NT AUTHORITY604
 
User: NT AUTHORITY\NETWORK SERVICE
 
Current Engine Version: %NT AUTHORITY605
 
Previous Engine Version: %NT AUTHORITY606
 
Error code: %NT AUTHORITY607
 
Error description: %NT AUTHORITY608
 
 
Microsoft Office Sessions:
=========================
Error: (09/11/2014 05:55:19 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/09/11 17:55:19.286]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:54:10 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/09/11 17:54:10.278]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:53:01 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/09/11 17:53:01.269]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:51:52 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/09/11 17:51:52.252]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:50:43 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/09/11 17:50:43.217]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:49:34 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/09/11 17:49:34.208]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:48:25 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/09/11 17:48:25.143]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:47:16 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/09/11 17:47:16.109]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:46:05 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/09/11 17:46:05.413]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
Error: (09/11/2014 05:45:36 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/09/11 17:45:36.347]: [00001596]: SendSKeySettingToDevice:: Snmp Load Error[-1] To[198.105.244.23]
 
 
 
=========================== Installed Programs ============================
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader 9.1 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.202.302.109 - ALPS ELECTRIC CO., LTD.)
Atheros Driver Installation Program (HKLM\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 5.2 - Atheros)
Brother MFL-Pro Suite MFC-J410W (HKLM\...\{31FD9031-FA28-4F73-9FD1-D7E9997C41CE}) (Version: 0.0.1.0 - Brother Industries, Ltd.)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 35.0.1916.114 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1867 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - Intel Corporation)
IRIS (HKCU\...\IRIS) (Version:  - MnDOT)
Java™ 6 Update 14 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216014FF}) (Version: 6.0.140 - Sun Microsystems, Inc.)
Junk Mail filter update (Version: 14.0.8089.726 - Microsoft Corporation) Hidden
MapsGalaxy Internet Explorer Toolbar (HKLM\...\MapsGalaxy_39bar Uninstall Internet Explorer) (Version:  - Mindspark Interactive Network)
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Security Client (Version: 4.6.0305.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Works (HKLM\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyToshiba (HKLM\...\{01250B8F-D947-4F8A-9408-FE8E3EE2EC92}) (Version: 2.2.0.3 - Toshiba)
PaperPort Image Printer (HKLM\...\{2BC2781A-F7F6-452E-95EB-018A522F1B2C}) (Version: 1.00.0000 - Nuance Communications, Inc.)
Quickbooks Financial Center (HKLM\...\{3B843B38-04B1-4CE6-8888-586273E0F289}) (Version: 2.02 - TOSHIBA Corporation)
Realtek 8136 8168 8169 Ethernet Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0005 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5904 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30101 - Realtek Semiconductor Corp.)
ScanSoft PaperPort 11 (HKLM\...\{02570AE0-BEE0-4A6C-BE3F-D806E9F2EA17}) (Version: 11.2.0000 - Nuance Communications, Inc.)
Skype Launcher (HKLM\...\{DA84ECBF-4B79-47F2-B34C-95C38484C058}) (Version: 2.01 - TOSHIBA Corporation)
Toshiba Application and Driver Installer (HKLM\...\{970472D0-F5F9-4158-A6E3-1AE49EFEF2D3}) (Version: 9.0.0.9 - Toshiba)
TOSHIBA Assist (HKLM\...\{12B3A009-A080-4619-9A2A-C6DB151D8D67}) (Version: 2.01.11 - TOSHIBA)
TOSHIBA ConfigFree (HKLM\...\{F3529665-D75E-4D6D-98F0-745C78C68E9B}) (Version: 8.0.21 - TOSHIBA Corporation)
TOSHIBA eco Utility (HKLM\...\InstallShield_{53536479-DFB0-47ED-9D10-43F3708C222D}) (Version: 1.1.9.0 - TOSHIBA Corporation)
TOSHIBA eco Utility (Version: 1.1.9.0 - TOSHIBA Corporation) Hidden
TOSHIBA Extended Tiles for Windows Mobility Center (HKLM\...\InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}) (Version: 1.01.00 - TOSHIBA Corporation)
TOSHIBA Extended Tiles for Windows Mobility Center (Version: 1.01.00 - TOSHIBA Corporation) Hidden
TOSHIBA Flash Cards Support Utility (HKLM\...\InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E}) (Version: 1.63.0.4C - TOSHIBA CORPORATION)
TOSHIBA Flash Cards Support Utility (Version: 1.63.0.4C - TOSHIBA CORPORATION) Hidden
TOSHIBA Hardware Setup (HKLM\...\InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3}) (Version: 1.63.0.12C - TOSHIBA CORPORATION)
TOSHIBA Hardware Setup (Version: 1.63.0.12C - TOSHIBA CORPORATION) Hidden
TOSHIBA HDD Protection (HKLM\...\{94A90C69-71C1-470A-88F5-AA47ECC96B40}) (Version: 2.2.0.0 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (HKLM\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.0.0 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (Version: 3.1.0.0 - TOSHIBA Corporation) Hidden
Toshiba Online Backup (HKLM\...\{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}) (Version: 1.2.0.35 - Toshiba)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.4.1.0 - TOSHIBA Corporation)
Toshiba Quality Application (HKLM\...\{E69992ED-A7F6-406C-9280-1C156417BC49}) (Version: 1.001.0000 - Toshiba)
TOSHIBA Recovery Media Creator (HKLM\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.1.0.2 - TOSHIBA Corporation)
TOSHIBA Service Station (HKLM\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 2.2.9 - TOSHIBA)
TOSHIBA Supervisor Password (HKLM\...\InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}) (Version: 1.63.0.6C - TOSHIBA CORPORATION)
TOSHIBA Supervisor Password (Version: 1.63.0.6C - TOSHIBA CORPORATION) Hidden
TOSHIBA USB Sleep and Charge Utility (HKLM\...\{E487EE7D-EAAA-4E2A-9116-E3B477D8A74F}) (Version: 1.2.3.0 - TOSHIBA Corporation)
TOSHIBA Value Added Package (HKLM\...\InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8}) (Version: 1.2.26 - TOSHIBA Corporation)
TOSHIBA Value Added Package (Version: 1.2.26 - TOSHIBA Corporation) Hidden
TOSHIBA Web Camera Application (HKLM\...\{5E6F6CF3-BACC-4144-868C-E14622C658F3}) (Version: 1.1.1.5 - TOSHIBA Corporation)
ToshibaRegistration (HKLM\...\{5AF550B4-BB67-4E7E-82F1-2C4300279050}) (Version: 1.0.3 - Toshiba)
Utility Common Driver (Version: 1.0.50.27C - TOSHIBA) Hidden
WildTangent Games (HKLM\...\WildTangent toshiba Master Uninstall) (Version: 1.0.0.71 - WildTangent)
Windows Live Call (Version: 14.0.8064.0206 - Microsoft Corporation) Hidden
Windows Live Communications Platform (Version: 14.0.8064.206 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live Essentials (Version: 14.0.8089.726 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 14.0.8089.0726 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 14.0.8089.0726 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 14.0.8081.709 - Microsoft Corporation) Hidden
Windows Live Sign-in Assistant (HKLM\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Live Writer (Version: 14.0.8089.0726 - Microsoft Corporation) Hidden
 
========================= Memory info: ===================================
 
Percentage of memory in use: 95%
Total physical RAM: 1014.43 MB
Available physical RAM: 48.11 MB
Total Pagefile: 2228.43 MB
Available Pagefile: 669.86 MB
Total Virtual: 2047.88 MB
Available Virtual: 1959.77 MB
 
========================= Partitions: =====================================
 
1 Drive c: (TI103127W0E) (Fixed) (Total:140.15 GB) (Free:116.57 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\TOSHIBA_NB205
 
Administrator            Guest                    Nick                     
 
 
**** End of log ****
 
 
18:18:20.0438 0x1480  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
18:18:28.0222 0x1480  ============================================================
18:18:28.0222 0x1480  Current date / time: 2014/09/11 18:18:28.0222
18:18:28.0222 0x1480  SystemInfo:
18:18:28.0222 0x1480  
18:18:28.0222 0x1480  OS Version: 6.1.7601 ServicePack: 1.0
18:18:28.0222 0x1480  Product type: Workstation
18:18:28.0222 0x1480  ComputerName: TOSHIBA_NB205
18:18:28.0222 0x1480  UserName: Nick
18:18:28.0222 0x1480  Windows directory: C:\windows
18:18:28.0222 0x1480  System windows directory: C:\windows
18:18:28.0222 0x1480  Processor architecture: Intel x86
18:18:28.0222 0x1480  Number of processors: 2
18:18:28.0222 0x1480  Page size: 0x1000
18:18:28.0222 0x1480  Boot type: Normal boot
18:18:28.0222 0x1480  ============================================================
18:18:30.0616 0x1480  KLMD registered as C:\windows\system32\drivers\83664350.sys
18:18:34.0499 0x1480  System UUID: {27E4AFC6-3028-F99D-E8B9-0425775B1ACE}
18:18:37.0711 0x1480  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
18:18:37.0816 0x1480  ============================================================
18:18:37.0817 0x1480  \Device\Harddisk0\DR0:
18:18:37.0833 0x1480  MBR partitions:
18:18:37.0833 0x1480  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x1184F000
18:18:37.0833 0x1480  ============================================================
18:18:37.0869 0x1480  C: <-> \Device\Harddisk0\DR0\Partition1
18:18:37.0894 0x1480  ============================================================
18:18:37.0894 0x1480  Initialize success
18:18:37.0894 0x1480  ============================================================
18:19:32.0943 0x08f8  ============================================================
18:19:32.0943 0x08f8  Scan started
18:19:32.0943 0x08f8  Mode: Manual; 
18:19:32.0943 0x08f8  ============================================================
18:19:32.0943 0x08f8  KSN ping started
18:19:35.0461 0x08f8  KSN ping finished: true
18:19:35.0876 0x08f8  ================ Scan system memory ========================
18:19:35.0876 0x08f8  System memory - ok
18:19:35.0878 0x08f8  ================ Scan services =============================
18:19:36.0090 0x08f8  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
18:19:36.0105 0x08f8  1394ohci - ok
18:19:36.0204 0x08f8  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\windows\system32\drivers\ACPI.sys
18:19:36.0237 0x08f8  ACPI - ok
18:19:36.0272 0x08f8  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
18:19:36.0275 0x08f8  AcpiPmi - ok
18:19:36.0363 0x08f8  [ FBB312C9DA3863673EC18F4AE4101778, 4E9AAE7C700E485C17FDFCC9100A79784673B006D00D4D4CE8F1DB617D25C864 ] AdobeFlashPlayerUpdateSvc C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:19:36.0384 0x08f8  AdobeFlashPlayerUpdateSvc - ok
18:19:36.0461 0x08f8  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\windows\system32\DRIVERS\adp94xx.sys
18:19:36.0493 0x08f8  adp94xx - ok
18:19:36.0528 0x08f8  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\windows\system32\DRIVERS\adpahci.sys
18:19:36.0547 0x08f8  adpahci - ok
18:19:36.0579 0x08f8  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\windows\system32\DRIVERS\adpu320.sys
18:19:36.0602 0x08f8  adpu320 - ok
18:19:36.0652 0x08f8  [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
18:19:36.0657 0x08f8  AeLookupSvc - ok
18:19:36.0730 0x08f8  [ D0B388DA1D111A34366E04EB4A5DD156, 60D226F027F4025CC032CAFF73A80FAFB5FA75445654FDCF80CA8C0419C6E938 ] AFD             C:\windows\system32\drivers\afd.sys
18:19:36.0768 0x08f8  AFD - ok
18:19:36.0814 0x08f8  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\windows\system32\drivers\agp440.sys
18:19:36.0819 0x08f8  agp440 - ok
18:19:36.0878 0x08f8  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\windows\system32\DRIVERS\djsvs.sys
18:19:36.0885 0x08f8  aic78xx - ok
18:19:36.0931 0x08f8  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\windows\System32\alg.exe
18:19:36.0937 0x08f8  ALG - ok
18:19:36.0978 0x08f8  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\windows\system32\drivers\aliide.sys
18:19:36.0981 0x08f8  aliide - ok
18:19:37.0009 0x08f8  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\windows\system32\drivers\amdagp.sys
18:19:37.0014 0x08f8  amdagp - ok
18:19:37.0035 0x08f8  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\windows\system32\drivers\amdide.sys
18:19:37.0039 0x08f8  amdide - ok
18:19:37.0090 0x08f8  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\windows\system32\DRIVERS\amdk8.sys
18:19:37.0096 0x08f8  AmdK8 - ok
18:19:37.0113 0x08f8  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\windows\system32\DRIVERS\amdppm.sys
18:19:37.0120 0x08f8  AmdPPM - ok
18:19:37.0162 0x08f8  [ E7F4D42D8076EC60E21715CD11743A0D, 91AC020A70964F8783C999BDE8AB8391A3FA3AFC1CD4BC52A43625A2010A53E7 ] amdsata         C:\windows\system32\drivers\amdsata.sys
18:19:37.0169 0x08f8  amdsata - ok
18:19:37.0196 0x08f8  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\windows\system32\DRIVERS\amdsbs.sys
18:19:37.0210 0x08f8  amdsbs - ok
18:19:37.0238 0x08f8  [ 146459D2B08BFDCBFA856D9947043C81, AC7F2069717601F949B0968EA651899D497170A93B84281B66D3CE5C382DDECB ] amdxata         C:\windows\system32\drivers\amdxata.sys
18:19:37.0242 0x08f8  amdxata - ok
18:19:37.0304 0x08f8  [ 95116E2BCFAF5A36AF0369050E92B9A5, 34F7D6B2F37379698DAA80FEB98F0EA092968AEE7021E5917019E782CD260FFC ] ApfiltrService  C:\windows\system32\DRIVERS\Apfiltr.sys
18:19:37.0320 0x08f8  ApfiltrService - ok
18:19:37.0390 0x08f8  [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID           C:\windows\system32\drivers\appid.sys
18:19:37.0395 0x08f8  AppID - ok
18:19:37.0432 0x08f8  [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc        C:\windows\System32\appidsvc.dll
18:19:37.0436 0x08f8  AppIDSvc - ok
18:19:37.0472 0x08f8  [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo         C:\windows\System32\appinfo.dll
18:19:37.0477 0x08f8  Appinfo - ok
18:19:37.0514 0x08f8  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\windows\system32\DRIVERS\arc.sys
18:19:37.0521 0x08f8  arc - ok
18:19:37.0540 0x08f8  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\windows\system32\DRIVERS\arcsas.sys
18:19:37.0550 0x08f8  arcsas - ok
18:19:37.0585 0x08f8  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
18:19:37.0589 0x08f8  AsyncMac - ok
18:19:37.0631 0x08f8  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\windows\system32\drivers\atapi.sys
18:19:37.0634 0x08f8  atapi - ok
18:19:37.0753 0x08f8  [ AC4ADAC154563AB41CC79B0257BC685A, 31F8801FB934465990EF92C124EBEB3A356C74D4D73AE2C42B68174325E06AC7 ] athr            C:\windows\system32\DRIVERS\athr.sys
18:19:37.0837 0x08f8  athr - ok
18:19:37.0911 0x08f8  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
18:19:37.0945 0x08f8  AudioEndpointBuilder - ok
18:19:38.0000 0x08f8  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv        C:\windows\System32\Audiosrv.dll
18:19:38.0026 0x08f8  Audiosrv - ok
18:19:38.0073 0x08f8  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\windows\System32\AxInstSV.dll
18:19:38.0094 0x08f8  AxInstSV - ok
18:19:38.0178 0x08f8  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\windows\system32\DRIVERS\bxvbdx.sys
18:19:38.0213 0x08f8  b06bdrv - ok
18:19:38.0263 0x08f8  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\windows\system32\DRIVERS\b57nd60x.sys
18:19:38.0286 0x08f8  b57nd60x - ok
18:19:38.0352 0x08f8  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\windows\System32\bdesvc.dll
18:19:38.0360 0x08f8  BDESVC - ok
18:19:38.0398 0x08f8  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\windows\system32\drivers\Beep.sys
18:19:38.0400 0x08f8  Beep - ok
18:19:38.0483 0x08f8  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\windows\System32\bfe.dll
18:19:38.0527 0x08f8  BFE - ok
18:19:38.0598 0x08f8  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\windows\System32\qmgr.dll
18:19:38.0655 0x08f8  BITS - ok
18:19:38.0687 0x08f8  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
18:19:38.0691 0x08f8  blbdrive - ok
18:19:38.0735 0x08f8  [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
18:19:38.0754 0x08f8  bowser - ok
18:19:38.0790 0x08f8  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\windows\system32\DRIVERS\BrFiltLo.sys
18:19:38.0795 0x08f8  BrFiltLo - ok
18:19:38.0810 0x08f8  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\windows\system32\DRIVERS\BrFiltUp.sys
18:19:38.0814 0x08f8  BrFiltUp - ok
18:19:38.0859 0x08f8  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser         C:\windows\System32\browser.dll
18:19:38.0871 0x08f8  Browser - ok
18:19:38.0912 0x08f8  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\windows\System32\Drivers\Brserid.sys
18:19:38.0934 0x08f8  Brserid - ok
18:19:38.0964 0x08f8  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
18:19:38.0971 0x08f8  BrSerWdm - ok
18:19:38.0984 0x08f8  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
18:19:38.0989 0x08f8  BrUsbMdm - ok
18:19:39.0010 0x08f8  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
18:19:39.0017 0x08f8  BrUsbSer - ok
18:19:39.0112 0x08f8  [ EA7E57F87D6FEE5FD6C5F813C04E8CD2, 1EB84F4DEE3034FAFBEA2A3F84EECE036E803872DA94D54E958E9F2F09519E88 ] BrYNSvc         C:\Program Files\Browny02\BrYNSvc.exe
18:19:39.0139 0x08f8  BrYNSvc - ok
18:19:39.0172 0x08f8  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\windows\system32\DRIVERS\bthmodem.sys
18:19:39.0177 0x08f8  BTHMODEM - ok
18:19:39.0243 0x08f8  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\windows\system32\bthserv.dll
18:19:39.0251 0x08f8  bthserv - ok
18:19:39.0296 0x08f8  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
18:19:39.0302 0x08f8  cdfs - ok
18:19:39.0356 0x08f8  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\windows\system32\drivers\cdrom.sys
18:19:39.0365 0x08f8  cdrom - ok
18:19:39.0399 0x08f8  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\windows\System32\certprop.dll
18:19:39.0406 0x08f8  CertPropSvc - ok
18:19:39.0506 0x08f8  [ 1F8A319D29394F9CE1B7AE020DF2EBBF, 624D2A19751D50566C4D3292CA627ADE78C2BE5807B37A0C370EF7FE4FE62048 ] cfWiMAXService  C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe
18:19:39.0530 0x08f8  cfWiMAXService - ok
18:19:39.0567 0x08f8  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\windows\system32\DRIVERS\circlass.sys
18:19:39.0572 0x08f8  circlass - ok
18:19:39.0632 0x08f8  [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS            C:\windows\system32\CLFS.sys
18:19:39.0654 0x08f8  CLFS - ok
18:19:39.0733 0x08f8  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:19:39.0746 0x08f8  clr_optimization_v2.0.50727_32 - ok
18:19:39.0778 0x08f8  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
18:19:39.0781 0x08f8  CmBatt - ok
18:19:39.0818 0x08f8  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\windows\system32\drivers\cmdide.sys
18:19:39.0821 0x08f8  cmdide - ok
18:19:39.0886 0x08f8  [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG             C:\windows\system32\Drivers\cng.sys
18:19:39.0920 0x08f8  CNG - ok
18:19:39.0957 0x08f8  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\windows\system32\DRIVERS\compbatt.sys
18:19:39.0962 0x08f8  Compbatt - ok
18:19:40.0015 0x08f8  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\windows\system32\drivers\CompositeBus.sys
18:19:40.0019 0x08f8  CompositeBus - ok
18:19:40.0039 0x08f8  COMSysApp - ok
18:19:40.0070 0x08f8  [ CAB0EEAF5295FC96DDD3E19DCE27E131, 87BCAC18D920153322D325AA5B93BB0B447577D67261FDCC01C5B60643CEA792 ] ConfigFree Service C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
18:19:40.0075 0x08f8  ConfigFree Service - ok
18:19:40.0103 0x08f8  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\windows\system32\DRIVERS\crcdisk.sys
18:19:40.0107 0x08f8  crcdisk - ok
18:19:40.0164 0x08f8  [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc        C:\windows\system32\cryptsvc.dll
18:19:40.0187 0x08f8  CryptSvc - ok
18:19:40.0252 0x08f8  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch      C:\windows\system32\rpcss.dll
18:19:40.0295 0x08f8  DcomLaunch - ok
18:19:40.0347 0x08f8  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\windows\System32\defragsvc.dll
18:19:40.0373 0x08f8  defragsvc - ok
18:19:40.0420 0x08f8  [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC            C:\windows\system32\Drivers\dfsc.sys
18:19:40.0427 0x08f8  DfsC - ok
18:19:40.0488 0x08f8  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\windows\system32\dhcpcore.dll
18:19:40.0514 0x08f8  Dhcp - ok
18:19:40.0547 0x08f8  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\windows\system32\drivers\discache.sys
18:19:40.0552 0x08f8  discache - ok
18:19:40.0587 0x08f8  [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk            C:\windows\system32\DRIVERS\disk.sys
18:19:40.0593 0x08f8  Disk - ok
18:19:40.0644 0x08f8  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache        C:\windows\System32\dnsrslvr.dll
18:19:40.0667 0x08f8  Dnscache - ok
18:19:40.0714 0x08f8  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\windows\System32\dot3svc.dll
18:19:40.0737 0x08f8  dot3svc - ok
18:19:40.0791 0x08f8  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\windows\system32\dps.dll
18:19:40.0813 0x08f8  DPS - ok
18:19:40.0860 0x08f8  [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
18:19:40.0863 0x08f8  drmkaud - ok
18:19:40.0946 0x08f8  [ 3583A5A8CC2E682BFFBD4630D0FEC08B, FD0F184B358FCECAA763444B414074BEF4E871EB7527D88385519FC158435C72 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
18:19:41.0007 0x08f8  DXGKrnl - ok
18:19:41.0094 0x08f8  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\windows\System32\eapsvc.dll
18:19:41.0117 0x08f8  EapHost - ok
18:19:41.0457 0x08f8  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\windows\system32\DRIVERS\evbdx.sys
18:19:41.0682 0x08f8  ebdrv - ok
18:19:41.0738 0x08f8  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] EFS             C:\windows\System32\lsass.exe
18:19:41.0744 0x08f8  EFS - ok
18:19:41.0807 0x08f8  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\windows\system32\DRIVERS\elxstor.sys
18:19:41.0864 0x08f8  elxstor - ok
18:19:41.0905 0x08f8  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\windows\system32\drivers\errdev.sys
18:19:41.0908 0x08f8  ErrDev - ok
18:19:42.0019 0x08f8  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\windows\system32\es.dll
18:19:42.0051 0x08f8  EventSystem - ok
18:19:42.0088 0x08f8  [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat           C:\windows\system32\drivers\exfat.sys
18:19:42.0110 0x08f8  exfat - ok
18:19:42.0150 0x08f8  [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat         C:\windows\system32\drivers\fastfat.sys
18:19:42.0173 0x08f8  fastfat - ok
18:19:42.0243 0x08f8  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\windows\system32\fxssvc.exe
18:19:42.0292 0x08f8  Fax - ok
18:19:42.0319 0x08f8  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\windows\system32\DRIVERS\fdc.sys
18:19:42.0323 0x08f8  fdc - ok
18:19:42.0363 0x08f8  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\windows\system32\fdPHost.dll
18:19:42.0367 0x08f8  fdPHost - ok
18:19:42.0385 0x08f8  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\windows\system32\fdrespub.dll
18:19:42.0396 0x08f8  FDResPub - ok
18:19:42.0434 0x08f8  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
18:19:42.0440 0x08f8  FileInfo - ok
18:19:42.0455 0x08f8  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
18:19:42.0461 0x08f8  Filetrace - ok
18:19:42.0476 0x08f8  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\windows\system32\DRIVERS\flpydisk.sys
18:19:42.0481 0x08f8  flpydisk - ok
18:19:42.0514 0x08f8  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
18:19:42.0529 0x08f8  FltMgr - ok
18:19:42.0629 0x08f8  [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache       C:\windows\system32\FntCache.dll
18:19:42.0696 0x08f8  FontCache - ok
18:19:42.0749 0x08f8  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:19:42.0755 0x08f8  FontCache3.0.0.0 - ok
18:19:42.0786 0x08f8  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
18:19:42.0792 0x08f8  FsDepends - ok
18:19:42.0834 0x08f8  [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
18:19:42.0837 0x08f8  Fs_Rec - ok
18:19:42.0899 0x08f8  [ 8A73E79089B282100B9393B644CB853B, 844DC5AADFABBD050B967904B796BA06BFD64C9112616EA26229D084F8B3AD41 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
18:19:42.0921 0x08f8  fvevol - ok
18:19:42.0962 0x08f8  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\windows\system32\DRIVERS\gagp30kx.sys
18:19:42.0967 0x08f8  gagp30kx - ok
18:19:43.0055 0x08f8  [ C44D560E441F091EA3B72F778EC60DE2, 1F90BA0E98C436B98BF6B0BC93146B52C081DF374424E2DCA270316D508A59B2 ] GameConsoleService C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
18:19:43.0085 0x08f8  GameConsoleService - ok
18:19:43.0155 0x08f8  [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc           C:\windows\System32\gpsvc.dll
18:19:43.0203 0x08f8  gpsvc - ok
18:19:43.0270 0x08f8  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
18:19:43.0292 0x08f8  gupdate - ok
18:19:43.0318 0x08f8  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
18:19:43.0326 0x08f8  gupdatem - ok
18:19:43.0379 0x08f8  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
18:19:43.0392 0x08f8  gusvc - ok
18:19:43.0440 0x08f8  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
18:19:43.0458 0x08f8  hcw85cir - ok
18:19:43.0550 0x08f8  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
18:19:43.0585 0x08f8  HdAudAddService - ok
18:19:43.0636 0x08f8  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\windows\system32\drivers\HDAudBus.sys
18:19:43.0648 0x08f8  HDAudBus - ok
18:19:43.0674 0x08f8  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\windows\system32\DRIVERS\HidBatt.sys
18:19:43.0678 0x08f8  HidBatt - ok
18:19:43.0698 0x08f8  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\windows\system32\DRIVERS\hidbth.sys
18:19:43.0706 0x08f8  HidBth - ok
18:19:43.0723 0x08f8  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\windows\system32\DRIVERS\hidir.sys
18:19:43.0750 0x08f8  HidIr - ok
18:19:43.0782 0x08f8  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\windows\system32\hidserv.dll
18:19:43.0788 0x08f8  hidserv - ok
18:19:43.0821 0x08f8  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
18:19:43.0833 0x08f8  HidUsb - ok
18:19:43.0875 0x08f8  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\windows\system32\kmsvc.dll
18:19:43.0886 0x08f8  hkmsvc - ok
18:19:43.0922 0x08f8  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\windows\system32\ListSvc.dll
18:19:43.0940 0x08f8  HomeGroupListener - ok
18:19:43.0975 0x08f8  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\windows\system32\provsvc.dll
18:19:43.0992 0x08f8  HomeGroupProvider - ok
18:19:44.0042 0x08f8  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
18:19:44.0050 0x08f8  HpSAMD - ok
18:19:44.0124 0x08f8  [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP            C:\windows\system32\drivers\HTTP.sys
18:19:44.0169 0x08f8  HTTP - ok
18:19:44.0200 0x08f8  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
18:19:44.0203 0x08f8  hwpolicy - ok
18:19:44.0249 0x08f8  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\windows\system32\drivers\i8042prt.sys
18:19:44.0257 0x08f8  i8042prt - ok
18:19:44.0341 0x08f8  [ D483687EACE0C065EE772481A96E05F5, A22200E90C78DFE73FE0FBEED5331AB43CD7133651FD125595C4DB604AD71B29 ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
18:19:44.0366 0x08f8  iaStor - ok
18:19:44.0431 0x08f8  [ A3CAE5D281DB4CFF7CFF8233507EE5AD, 2666107220B9F301193F2CF85A3D6B09E6E42CC150152D10A8886E47A3FD9B0D ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
18:19:44.0485 0x08f8  iaStorV - ok
18:19:44.0605 0x08f8  [ 3E9213A2A050BF429E91898C90F8B4E3, D80ABE5691087661B19F01927B631CB8C5291120B814B6F863F046E0D643E9E4 ] idsvc           C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:19:44.0671 0x08f8  idsvc - ok
18:19:44.0706 0x08f8  IEEtwCollectorService - ok
18:19:45.0076 0x08f8  [ 1F50623259DF354776DF04C56504A2D7, AC9D7A588638C00091C2CB7A257182DB72AF9C924BDEA20BAF10CC556896BA75 ] igfx            C:\windows\system32\DRIVERS\igdkmd32.sys
18:19:45.0440 0x08f8  igfx - ok
18:19:45.0539 0x08f8  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\windows\system32\DRIVERS\iirsp.sys
18:19:45.0544 0x08f8  iirsp - ok
18:19:45.0635 0x08f8  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT          C:\windows\System32\ikeext.dll
18:19:45.0692 0x08f8  IKEEXT - ok
18:19:45.0944 0x08f8  [ E4A2E810CB2607C9C159C0DFB0BD4C88, 9F84636D1096BD5EFEDC295D289241CCF3BE77C643C83F3C0F105791042D6A08 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHDA.sys
18:19:46.0142 0x08f8  IntcAzAudAddService - ok
18:19:46.0223 0x08f8  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\windows\system32\drivers\intelide.sys
18:19:46.0233 0x08f8  intelide - ok
18:19:46.0291 0x08f8  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
18:19:46.0296 0x08f8  intelppm - ok
18:19:46.0350 0x08f8  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\windows\system32\ipbusenum.dll
18:19:46.0373 0x08f8  IPBusEnum - ok
18:19:46.0398 0x08f8  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
18:19:46.0404 0x08f8  IpFilterDriver - ok
18:19:46.0476 0x08f8  [ 4D65A07B795D6674312F879D09AA7663, 8D72FE0B51A6FF71F85D2602DB3AE91C8749F70869B6789552F047BA81411EDA ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
18:19:46.0522 0x08f8  iphlpsvc - ok
18:19:46.0563 0x08f8  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
18:19:46.0569 0x08f8  IPMIDRV - ok
18:19:46.0605 0x08f8  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
18:19:46.0616 0x08f8  IPNAT - ok
18:19:46.0645 0x08f8  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\windows\system32\drivers\irenum.sys
18:19:46.0649 0x08f8  IRENUM - ok
18:19:46.0685 0x08f8  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\windows\system32\drivers\isapnp.sys
18:19:46.0690 0x08f8  isapnp - ok
18:19:46.0725 0x08f8  [ CB7A9ABB12B8415BCE5D74994C7BA3AE, 464BFF3F5EEE985BE075E23E1813F5CB82A9A0771A92C6D889B13B867BCDF647 ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
18:19:46.0748 0x08f8  iScsiPrt - ok
18:19:46.0782 0x08f8  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
18:19:46.0787 0x08f8  kbdclass - ok
18:19:46.0818 0x08f8  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\windows\system32\DRIVERS\kbdhid.sys
18:19:46.0822 0x08f8  kbdhid - ok
18:19:46.0852 0x08f8  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] KeyIso          C:\windows\system32\lsass.exe
18:19:46.0861 0x08f8  KeyIso - ok
18:19:46.0898 0x08f8  [ 4120DA10AA42A9996F4575DB9E3E6E6E, 1C6E790772EA327ACB885D731A030408160534997DD56FEE4D6CEE6929873BB8 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
18:19:46.0904 0x08f8  KSecDD - ok
18:19:46.0939 0x08f8  [ D3964885F0A11ACF51DA3AAA776973B2, 417ED5A3201FC50FBC0D646F8F2114A1E8A91E7919A62508DCBC156C0BFB2FBA ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
18:19:46.0962 0x08f8  KSecPkg - ok
18:19:47.0028 0x08f8  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\windows\system32\msdtckrm.dll
18:19:47.0061 0x08f8  KtmRm - ok
18:19:47.0121 0x08f8  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\windows\system32\srvsvc.dll
18:19:47.0143 0x08f8  LanmanServer - ok
18:19:47.0176 0x08f8  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
18:19:47.0198 0x08f8  LanmanWorkstation - ok
18:19:47.0261 0x08f8  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
18:19:47.0266 0x08f8  lltdio - ok
18:19:47.0309 0x08f8  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\windows\System32\lltdsvc.dll
18:19:47.0332 0x08f8  lltdsvc - ok
18:19:47.0361 0x08f8  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\windows\System32\lmhsvc.dll
18:19:47.0373 0x08f8  lmhosts - ok
18:19:47.0411 0x08f8  [ 6ADAB14D7AD12B35BDC665B35278099B, 37E55AA5374504A2C20551F404B3653B068A4D7FEC6B614DAA37B4D32A7C25FF ] LPCFilter       C:\windows\system32\DRIVERS\LPCFilter.sys
18:19:47.0416 0x08f8  LPCFilter - ok
18:19:47.0456 0x08f8  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\windows\system32\DRIVERS\lsi_fc.sys
18:19:47.0464 0x08f8  LSI_FC - ok
18:19:47.0493 0x08f8  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\windows\system32\DRIVERS\lsi_sas.sys
18:19:47.0505 0x08f8  LSI_SAS - ok
18:19:47.0524 0x08f8  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\windows\system32\DRIVERS\lsi_sas2.sys
18:19:47.0531 0x08f8  LSI_SAS2 - ok
18:19:47.0556 0x08f8  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\windows\system32\DRIVERS\lsi_scsi.sys
18:19:47.0564 0x08f8  LSI_SCSI - ok
18:19:47.0611 0x08f8  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv           C:\windows\system32\drivers\luafv.sys
18:19:47.0621 0x08f8  luafv - ok
18:19:47.0678 0x08f8  [ 42B9D6E7B18F7AD09CF47323E592D421, 94ED6430067AB2DCE286DD7673AB0EEF5C547B5113ACEC9E162970592AE8A935 ] MapsGalaxy_39Service C:\PROGRA~1\MAPSGA~2\bar\1.bin\39barsvc.exe
18:19:47.0690 0x08f8  MapsGalaxy_39Service - ok
18:19:47.0730 0x08f8  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\windows\system32\DRIVERS\megasas.sys
18:19:47.0737 0x08f8  megasas - ok
18:19:47.0778 0x08f8  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\windows\system32\DRIVERS\MegaSR.sys
18:19:47.0801 0x08f8  MegaSR - ok
18:19:47.0852 0x08f8  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\windows\system32\mmcss.dll
18:19:47.0875 0x08f8  MMCSS - ok
18:19:47.0893 0x08f8  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\windows\system32\drivers\modem.sys
18:19:47.0901 0x08f8  Modem - ok
18:19:47.0940 0x08f8  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\windows\system32\DRIVERS\monitor.sys
18:19:47.0944 0x08f8  monitor - ok
18:19:48.0005 0x08f8  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
18:19:48.0009 0x08f8  mouclass - ok
18:19:48.0051 0x08f8  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
18:19:48.0056 0x08f8  mouhid - ok
18:19:48.0098 0x08f8  [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
18:19:48.0104 0x08f8  mountmgr - ok
18:19:48.0183 0x08f8  [ 6460D4A5C981567E74A7AC1349DE10F5, 9C16035B9A9BE3D7077851621E9BDED223B4C6A156562076957B49B9FCAB3A05 ] MpFilter        C:\windows\system32\DRIVERS\MpFilter.sys
18:19:48.0199 0x08f8  MpFilter - ok
18:19:48.0236 0x08f8  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\windows\system32\drivers\mpio.sys
18:19:48.0259 0x08f8  mpio - ok
18:19:48.0376 0x08f8  [ 65C34426C83EFA32D48380A97717997B, CD7EB6BFBB0BE382BA21055460D9A72323F09AF3194A22D8EDB28D5DB3BAE8E7 ] MpKsl077c1862   c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{163CDE07-C2B1-49F3-AF3A-FBE88CE6CE19}\MpKsl077c1862.sys
18:19:48.0384 0x08f8  MpKsl077c1862 - ok
18:19:48.0444 0x08f8  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
18:19:48.0456 0x08f8  mpsdrv - ok
18:19:48.0535 0x08f8  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\windows\system32\mpssvc.dll
18:19:48.0604 0x08f8  MpsSvc - ok
18:19:48.0647 0x08f8  [ CEB46AB7C01C9F825F8CC6BABC18166A, AA98898204FC58878502C170FE6ED8BA681396DDD8BF3689D0C3642DEA87BEF8 ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
18:19:48.0659 0x08f8  MRxDAV - ok
18:19:48.0713 0x08f8  [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
18:19:48.0725 0x08f8  mrxsmb - ok
18:19:48.0756 0x08f8  [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
18:19:48.0772 0x08f8  mrxsmb10 - ok
18:19:48.0795 0x08f8  [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
18:19:48.0804 0x08f8  mrxsmb20 - ok
18:19:48.0832 0x08f8  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\windows\system32\drivers\msahci.sys
18:19:48.0836 0x08f8  msahci - ok
18:19:48.0884 0x08f8  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm           C:\windows\system32\drivers\msdsm.sys
18:19:48.0898 0x08f8  msdsm - ok
18:19:48.0960 0x08f8  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\windows\System32\msdtc.exe
18:19:48.0977 0x08f8  MSDTC - ok
18:19:49.0019 0x08f8  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\windows\system32\drivers\Msfs.sys
18:19:49.0023 0x08f8  Msfs - ok
18:19:49.0049 0x08f8  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
18:19:49.0052 0x08f8  mshidkmdf - ok
18:19:49.0079 0x08f8  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
18:19:49.0082 0x08f8  msisadrv - ok
18:19:49.0144 0x08f8  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\windows\system32\iscsiexe.dll
18:19:49.0159 0x08f8  MSiSCSI - ok
18:19:49.0173 0x08f8  msiserver - ok
18:19:49.0210 0x08f8  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
18:19:49.0214 0x08f8  MSKSSRV - ok
18:19:49.0290 0x08f8  [ A4B109D057E15A438CE74E5B71187417, C91568C1AE2863218988D4D7A2B64041AB2C1EE2E9DF3720407FCE513ADA056F ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:19:49.0293 0x08f8  MsMpSvc - ok
18:19:49.0333 0x08f8  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
18:19:49.0336 0x08f8  MSPCLOCK - ok
18:19:49.0362 0x08f8  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
18:19:49.0366 0x08f8  MSPQM - ok
18:19:49.0395 0x08f8  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
18:19:49.0418 0x08f8  MsRPC - ok
18:19:49.0460 0x08f8  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\windows\system32\drivers\mssmbios.sys
18:19:49.0464 0x08f8  mssmbios - ok
18:19:49.0504 0x08f8  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
18:19:49.0507 0x08f8  MSTEE - ok
18:19:49.0522 0x08f8  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\windows\system32\DRIVERS\MTConfig.sys
18:19:49.0529 0x08f8  MTConfig - ok
18:19:49.0558 0x08f8  [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup             C:\windows\system32\Drivers\mup.sys
18:19:49.0563 0x08f8  Mup - ok
18:19:49.0613 0x08f8  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\windows\system32\qagentRT.dll
18:19:49.0649 0x08f8  napagent - ok
18:19:49.0717 0x08f8  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
18:19:49.0740 0x08f8  NativeWifiP - ok
18:19:49.0828 0x08f8  [ E7C54812A2AAF43316EB6930C1FFA108, C8A6FC1957FA29A3B372132FEA9145538BC767044A11D77316D3D1A3EAA60630 ] NDIS            C:\windows\system32\drivers\ndis.sys
18:19:49.0886 0x08f8  NDIS - ok
18:19:49.0938 0x08f8  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
18:19:49.0942 0x08f8  NdisCap - ok
18:19:49.0975 0x08f8  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
18:19:49.0979 0x08f8  NdisTapi - ok
18:19:50.0016 0x08f8  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
18:19:50.0021 0x08f8  Ndisuio - ok
18:19:50.0062 0x08f8  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
18:19:50.0073 0x08f8  NdisWan - ok
18:19:50.0094 0x08f8  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
18:19:50.0100 0x08f8  NDProxy - ok
18:19:50.0141 0x08f8  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
18:19:50.0146 0x08f8  NetBIOS - ok
18:19:50.0184 0x08f8  [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
18:19:50.0207 0x08f8  NetBT - ok
18:19:50.0230 0x08f8  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] Netlogon        C:\windows\system32\lsass.exe
18:19:50.0236 0x08f8  Netlogon - ok
18:19:50.0298 0x08f8  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\windows\System32\netman.dll
18:19:50.0332 0x08f8  Netman - ok
18:19:50.0377 0x08f8  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\windows\System32\netprofm.dll
18:19:50.0416 0x08f8  netprofm - ok
18:19:50.0447 0x08f8  [ 773ABFD3C53BF3F4B64429CD3A126824, 0319D8632E4EB1309C7C228468AEC302091C9CB0C585DF8D47F25305B0936AA1 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:19:50.0470 0x08f8  NetTcpPortSharing - ok
18:19:50.0514 0x08f8  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\windows\system32\DRIVERS\nfrd960.sys
18:19:50.0519 0x08f8  nfrd960 - ok
18:19:50.0619 0x08f8  [ 6A83B8AF342E61DEE353BAA81F67B7DA, F883A69DC57A203CEF4A264ADA3669EFA11149FE479A32FF38A37C86D24D7DE7 ] NisDrv          C:\windows\system32\DRIVERS\NisDrvWFP.sys
18:19:50.0631 0x08f8  NisDrv - ok
18:19:50.0678 0x08f8  [ 877C975D6FED8B12C445312D1286771E, 2FD5F2FE0414D00B8E4EF389E1AD11356C14F700A906770B0AB88B464D963948 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
18:19:50.0699 0x08f8  NisSrv - ok
18:19:50.0753 0x08f8  [ 912084381D30D8B89EC4E293053F4710, 99B8CD043DF531D4B9725ED167F63CED220608B2FED3EE8250C217D15762DFD7 ] NlaSvc          C:\windows\System32\nlasvc.dll
18:19:50.0776 0x08f8  NlaSvc - ok
18:19:50.0799 0x08f8  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\windows\system32\drivers\Npfs.sys
18:19:50.0803 0x08f8  Npfs - ok
18:19:50.0842 0x08f8  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi             C:\windows\system32\nsisvc.dll
18:19:50.0854 0x08f8  nsi - ok
18:19:50.0880 0x08f8  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
18:19:50.0884 0x08f8  nsiproxy - ok
18:19:51.0015 0x08f8  [ 5E43D2B0EE64123D4880DFA6626DEFDE, 164413A22DE58B19EA2B4120034B46D6BE1F424B80C3421E10BE5C81153D049F ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
18:19:51.0128 0x08f8  Ntfs - ok
18:19:51.0180 0x08f8  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\windows\system32\drivers\Null.sys
18:19:51.0183 0x08f8  Null - ok
18:19:51.0248 0x08f8  [ AF2EEC9580C1D32FB7EAF105D9784061, 6DAAE3BCA048ACD7FFD26A65C793C461933179070F03855FE3DC3C01F968163A ] nvraid          C:\windows\system32\drivers\nvraid.sys
18:19:51.0269 0x08f8  nvraid - ok
18:19:51.0305 0x08f8  [ 9283C58EBAA2618F93482EB5DABCEC82, 0BC119D4EAFDEA879E4C1CFBA5402499DBD1970EDF963C6D2034D4867C34D15E ] nvstor          C:\windows\system32\drivers\nvstor.sys
18:19:51.0327 0x08f8  nvstor - ok
18:19:51.0363 0x08f8  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
18:19:51.0375 0x08f8  nv_agp - ok
18:19:51.0407 0x08f8  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
18:19:51.0414 0x08f8  ohci1394 - ok
18:19:51.0458 0x08f8  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
18:19:51.0491 0x08f8  p2pimsvc - ok
18:19:51.0555 0x08f8  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\windows\system32\p2psvc.dll
18:19:51.0589 0x08f8  p2psvc - ok
18:19:51.0623 0x08f8  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\windows\system32\DRIVERS\parport.sys
18:19:51.0630 0x08f8  Parport - ok
18:19:51.0664 0x08f8  [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr         C:\windows\system32\drivers\partmgr.sys
18:19:51.0669 0x08f8  partmgr - ok
18:19:51.0743 0x08f8  [ 9665402B7FA59302D520AD845DDFC026, 7FFE81F5402005FBD947A7440C12A206C58F3FDAE33F3E96987C334057CDB79E ] Partner Service C:\ProgramData\Partner\Partner.exe
18:19:51.0778 0x08f8  Partner Service - ok
18:19:51.0812 0x08f8  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\windows\system32\DRIVERS\parvdm.sys
18:19:51.0816 0x08f8  Parvdm - ok
18:19:51.0862 0x08f8  [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc          C:\windows\System32\pcasvc.dll
18:19:51.0885 0x08f8  PcaSvc - ok
18:19:51.0924 0x08f8  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\windows\system32\drivers\pci.sys
18:19:51.0946 0x08f8  pci - ok
18:19:51.0981 0x08f8  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\windows\system32\drivers\pciide.sys
18:19:51.0985 0x08f8  pciide - ok
18:19:52.0031 0x08f8  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\windows\system32\DRIVERS\pcmcia.sys
18:19:52.0054 0x08f8  pcmcia - ok
18:19:52.0080 0x08f8  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\windows\system32\drivers\pcw.sys
18:19:52.0085 0x08f8  pcw - ok
18:19:52.0162 0x08f8  [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH          C:\windows\system32\drivers\peauth.sys
18:19:52.0212 0x08f8  PEAUTH - ok
18:19:52.0288 0x08f8  [ 1B5011DD8D57F53AED31FF0F7D635802, FA4D0DD592DAA27A3F7D4881B8675E3B40E2479B2D2912F2BF132E7FC13FF80A ] PGEffect        C:\windows\system32\DRIVERS\pgeffect.sys
18:19:52.0292 0x08f8  PGEffect - ok
18:19:52.0423 0x08f8  [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla             C:\windows\system32\pla.dll
18:19:52.0548 0x08f8  pla - ok
18:19:52.0622 0x08f8  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay        C:\windows\system32\umpnpmgr.dll
18:19:52.0659 0x08f8  PlugPlay - ok
18:19:52.0697 0x08f8  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
18:19:52.0720 0x08f8  PNRPAutoReg - ok
18:19:52.0763 0x08f8  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
18:19:52.0789 0x08f8  PNRPsvc - ok
18:19:52.0856 0x08f8  [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
18:19:52.0891 0x08f8  PolicyAgent - ok
18:19:52.0940 0x08f8  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\windows\system32\umpo.dll
18:19:52.0974 0x08f8  Power - ok
18:19:53.0030 0x08f8  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
18:19:53.0037 0x08f8  PptpMiniport - ok
18:19:53.0063 0x08f8  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\windows\system32\DRIVERS\processr.sys
18:19:53.0069 0x08f8  Processor - ok
18:19:53.0116 0x08f8  [ 43CA4CCC22D52FB58E8988F0198851D0, DF67BD70D9D82677AE61244B4E54677A5008A7F5EB531DF2A7E7D33F1658EA78 ] ProfSvc         C:\windows\system32\profsvc.dll
18:19:53.0138 0x08f8  ProfSvc - ok
18:19:53.0165 0x08f8  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] ProtectedStorage C:\windows\system32\lsass.exe
18:19:53.0171 0x08f8  ProtectedStorage - ok
18:19:53.0216 0x08f8  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\windows\system32\DRIVERS\pacer.sys
18:19:53.0239 0x08f8  Psched - ok
18:19:53.0364 0x08f8  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\windows\system32\DRIVERS\ql2300.sys
18:19:53.0482 0x08f8  ql2300 - ok
18:19:53.0517 0x08f8  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\windows\system32\DRIVERS\ql40xx.sys
18:19:53.0526 0x08f8  ql40xx - ok
18:19:53.0572 0x08f8  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\windows\system32\qwave.dll
18:19:53.0595 0x08f8  QWAVE - ok
18:19:53.0614 0x08f8  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
18:19:53.0620 0x08f8  QWAVEdrv - ok
18:19:53.0645 0x08f8  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
18:19:53.0648 0x08f8  RasAcd - ok
18:19:53.0682 0x08f8  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
18:19:53.0687 0x08f8  RasAgileVpn - ok
18:19:53.0721 0x08f8  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\windows\System32\rasauto.dll
18:19:53.0742 0x08f8  RasAuto - ok
18:19:53.0790 0x08f8  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
18:19:53.0797 0x08f8  Rasl2tp - ok
18:19:53.0851 0x08f8  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\windows\System32\rasmans.dll
18:19:53.0885 0x08f8  RasMan - ok
18:19:53.0919 0x08f8  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
18:19:53.0930 0x08f8  RasPppoe - ok
18:19:53.0951 0x08f8  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
18:19:53.0960 0x08f8  RasSstp - ok
18:19:54.0008 0x08f8  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
18:19:54.0031 0x08f8  rdbss - ok
18:19:54.0071 0x08f8  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\windows\system32\DRIVERS\rdpbus.sys
18:19:54.0075 0x08f8  rdpbus - ok
18:19:54.0117 0x08f8  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
18:19:54.0120 0x08f8  RDPCDD - ok
18:19:54.0163 0x08f8  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
18:19:54.0166 0x08f8  RDPENCDD - ok
18:19:54.0196 0x08f8  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
18:19:54.0199 0x08f8  RDPREFMP - ok
18:19:54.0255 0x08f8  [ F031683E6D1FEA157ABB2FF260B51E61, 83B552819A5964152882C527E1421DBCEAACC74DEB897E3C4B53F52F1467FED3 ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
18:19:54.0278 0x08f8  RDPWD - ok
18:19:54.0329 0x08f8  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
18:19:54.0351 0x08f8  rdyboost - ok
18:19:54.0397 0x08f8  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\windows\System32\mprdim.dll
18:19:54.0410 0x08f8  RemoteAccess - ok
18:19:54.0458 0x08f8  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\windows\system32\regsvc.dll
18:19:54.0481 0x08f8  RemoteRegistry - ok
18:19:54.0524 0x08f8  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
18:19:54.0536 0x08f8  RpcEptMapper - ok
18:19:54.0571 0x08f8  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\windows\system32\locator.exe
18:19:54.0578 0x08f8  RpcLocator - ok
18:19:54.0633 0x08f8  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs           C:\windows\system32\rpcss.dll
18:19:54.0659 0x08f8  RpcSs - ok
18:19:54.0710 0x08f8  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
18:19:54.0716 0x08f8  rspndr - ok
18:19:54.0780 0x08f8  [ EF8B2AFC3C0751C5E5A59983C8893260, F612ACAD35F6ECC6596003D052B240B7688016FD5D82978727DD408DF36104F3 ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys
18:19:54.0803 0x08f8  RSUSBSTOR - ok
18:19:54.0859 0x08f8  [ 26A9D6227D12B9D9DA5A81BB9B55D810, 65AB233248B09619BE47A44008544FDFAA6C60C671F8659DB85B97693677B3F9 ] RTL8167         C:\windows\system32\DRIVERS\Rt86win7.sys
18:19:54.0882 0x08f8  RTL8167 - ok
18:19:54.0903 0x08f8  RtsUIR - ok
18:19:54.0932 0x08f8  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] SamSs           C:\windows\system32\lsass.exe
18:19:54.0938 0x08f8  SamSs - ok
18:19:54.0977 0x08f8  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
18:19:54.0990 0x08f8  sbp2port - ok
18:19:55.0033 0x08f8  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\windows\System32\SCardSvr.dll
18:19:55.0056 0x08f8  SCardSvr - ok
18:19:55.0092 0x08f8  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
18:19:55.0096 0x08f8  scfilter - ok
18:19:55.0181 0x08f8  [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule        C:\windows\system32\schedsvc.dll
18:19:55.0240 0x08f8  Schedule - ok
18:19:55.0273 0x08f8  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\windows\System32\certprop.dll
18:19:55.0278 0x08f8  SCPolicySvc - ok
18:19:55.0317 0x08f8  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\windows\System32\SDRSVC.dll
18:19:55.0340 0x08f8  SDRSVC - ok
18:19:55.0378 0x08f8  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\windows\system32\drivers\secdrv.sys
18:19:55.0381 0x08f8  secdrv - ok
18:19:55.0420 0x08f8  [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon        C:\windows\system32\seclogon.dll
18:19:55.0431 0x08f8  seclogon - ok
18:19:55.0459 0x08f8  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\windows\System32\sens.dll
18:19:55.0481 0x08f8  SENS - ok
18:19:55.0515 0x08f8  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\windows\system32\DRIVERS\serenum.sys
18:19:55.0519 0x08f8  Serenum - ok
18:19:55.0551 0x08f8  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\windows\system32\DRIVERS\serial.sys
18:19:55.0558 0x08f8  Serial - ok
18:19:55.0593 0x08f8  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\windows\system32\DRIVERS\sermouse.sys
18:19:55.0597 0x08f8  sermouse - ok
18:19:55.0665 0x08f8  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\windows\system32\sessenv.dll
18:19:55.0688 0x08f8  SessionEnv - ok
18:19:55.0728 0x08f8  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
18:19:55.0732 0x08f8  sffdisk - ok
18:19:55.0752 0x08f8  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
18:19:55.0756 0x08f8  sffp_mmc - ok
18:19:55.0782 0x08f8  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
18:19:55.0786 0x08f8  sffp_sd - ok
18:19:55.0819 0x08f8  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\windows\system32\DRIVERS\sfloppy.sys
18:19:55.0823 0x08f8  sfloppy - ok
18:19:55.0889 0x08f8  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\windows\System32\ipnathlp.dll
18:19:55.0924 0x08f8  SharedAccess - ok
18:19:55.0980 0x08f8  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\windows\System32\shsvcs.dll
18:19:56.0018 0x08f8  ShellHWDetection - ok
18:19:56.0052 0x08f8  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\windows\system32\drivers\sisagp.sys
18:19:56.0058 0x08f8  sisagp - ok
18:19:56.0102 0x08f8  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\windows\system32\DRIVERS\SiSRaid2.sys
18:19:56.0108 0x08f8  SiSRaid2 - ok
18:19:56.0128 0x08f8  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\windows\system32\DRIVERS\sisraid4.sys
18:19:56.0139 0x08f8  SiSRaid4 - ok
18:19:56.0174 0x08f8  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\windows\system32\DRIVERS\smb.sys
18:19:56.0182 0x08f8  Smb - ok
18:19:56.0229 0x08f8  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\windows\System32\snmptrap.exe
18:19:56.0240 0x08f8  SNMPTRAP - ok
18:19:56.0266 0x08f8  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\windows\system32\drivers\spldr.sys
18:19:56.0270 0x08f8  spldr - ok
18:19:56.0335 0x08f8  [ 866A43013535DC8587C258E43579C764, B2BE846B5167A2ECD1E30C69A81385FCC6EAE6033394D08458A5583D311C4D82 ] Spooler         C:\windows\System32\spoolsv.exe
18:19:56.0370 0x08f8  Spooler - ok
18:19:56.0654 0x08f8  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\windows\system32\sppsvc.exe
18:19:56.0888 0x08f8  sppsvc - ok
18:19:56.0973 0x08f8  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\windows\system32\sppuinotify.dll
18:19:57.0006 0x08f8  sppuinotify - ok
18:19:57.0067 0x08f8  [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv             C:\windows\system32\DRIVERS\srv.sys
18:19:57.0100 0x08f8  srv - ok
18:19:57.0138 0x08f8  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
18:19:57.0161 0x08f8  srv2 - ok
18:19:57.0186 0x08f8  [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
18:19:57.0195 0x08f8  srvnet - ok
18:19:57.0241 0x08f8  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
18:19:57.0264 0x08f8  SSDPSRV - ok
18:19:57.0291 0x08f8  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\windows\system32\sstpsvc.dll
18:19:57.0312 0x08f8  SstpSvc - ok
18:19:57.0349 0x08f8  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\windows\system32\DRIVERS\stexstor.sys
18:19:57.0354 0x08f8  stexstor - ok
18:19:57.0400 0x08f8  [ EDB05BD63148796F23EA78506404A538, 8EBF623D3DEB6CCAC75AAFCF8B23271029A28BE29D459088E40FBF109E80AA17 ] StillCam        C:\windows\system32\DRIVERS\serscan.sys
18:19:57.0403 0x08f8  StillCam - ok
18:19:57.0481 0x08f8  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\windows\System32\wiaservc.dll
18:19:57.0525 0x08f8  StiSvc - ok
18:19:57.0557 0x08f8  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\windows\system32\drivers\swenum.sys
18:19:57.0561 0x08f8  swenum - ok
18:19:57.0612 0x08f8  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\windows\System32\swprv.dll
18:19:57.0646 0x08f8  swprv - ok
18:19:57.0761 0x08f8  [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain         C:\windows\system32\sysmain.dll
18:19:57.0858 0x08f8  SysMain - ok
18:19:57.0901 0x08f8  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\windows\System32\TabSvc.dll
18:19:57.0923 0x08f8  TabletInputService - ok
18:19:57.0969 0x08f8  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\windows\System32\tapisrv.dll
18:19:58.0004 0x08f8  TapiSrv - ok
18:19:58.0046 0x08f8  [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS             C:\windows\System32\tbssvc.dll
18:19:58.0070 0x08f8  TBS - ok
18:19:58.0195 0x08f8  [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] Tcpip           C:\windows\system32\drivers\tcpip.sys
18:19:58.0285 0x08f8  Tcpip - ok
18:19:58.0406 0x08f8  [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
18:19:58.0494 0x08f8  TCPIP6 - ok
18:19:58.0542 0x08f8  [ CCA24162E055C3714CE5A88B100C64ED, 9B7712E793B9478BA7A1EF71EA9CC03CCB9C4004C54EAA911F158958519EDCD9 ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
18:19:58.0547 0x08f8  tcpipreg - ok
18:19:58.0585 0x08f8  [ 4084EA00D50C858D6F9038F86AE2E2D0, FD7C34311B7F700C7C93B9A8A59D507C53ADF874651C6979979EDF5E21C32FD5 ] tdcmdpst        C:\windows\system32\DRIVERS\tdcmdpst.sys
18:19:58.0590 0x08f8  tdcmdpst - ok
18:19:58.0635 0x08f8  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
18:19:58.0639 0x08f8  TDPIPE - ok
18:19:58.0662 0x08f8  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
18:19:58.0666 0x08f8  TDTCP - ok
18:19:58.0703 0x08f8  [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
18:19:58.0710 0x08f8  tdx - ok
18:19:58.0744 0x08f8  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\windows\system32\drivers\termdd.sys
18:19:58.0749 0x08f8  TermDD - ok
18:19:58.0820 0x08f8  [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService     C:\windows\System32\termsrv.dll
18:19:58.0890 0x08f8  TermService - ok
18:19:58.0937 0x08f8  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\windows\system32\themeservice.dll
18:19:58.0949 0x08f8  Themes - ok
18:19:58.0991 0x08f8  [ 9528F2A39CB660A49F0592D57127F370, DB8C667E11520C59932E4ECDD444945455AE1A9257F35202EAD8A03C75800B21 ] Thpdrv          C:\windows\system32\DRIVERS\thpdrv.sys
18:19:58.0995 0x08f8  Thpdrv - ok
18:19:59.0022 0x08f8  [ E17DCDE74FF00CA802643B4A9A4A4A5C, 9692751155D822187F6A3D0AD666001E7A2A454661AE745748CD6DE59DBC38D0 ] Thpevm          C:\windows\system32\DRIVERS\Thpevm.SYS
18:19:59.0027 0x08f8  Thpevm - ok
18:19:59.0099 0x08f8  [ B8A7C3F812791A73147B6CC2380432EC, C3213D6E3ABE30C4AB004FCEB2842A27C75266CE6239AD6824ECAAE30612F9BD ] Thpsrv          C:\windows\system32\ThpSrv.exe
18:19:59.0141 0x08f8  Thpsrv - ok
18:19:59.0167 0x08f8  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\windows\system32\mmcss.dll
18:19:59.0179 0x08f8  THREADORDER - ok
18:19:59.0234 0x08f8  [ F120967184A27E927052E8DDBB727851, B54A1D2B4D52C0DF19AC81617A26CA164C5779C568DB86A6FD97D0A14D5FEEB4 ] TMachInfo       C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
18:19:59.0258 0x08f8  TMachInfo - ok
18:19:59.0305 0x08f8  [ FE65D33B7D4FF07DD1D29526A48DF810, E595370FD907734BC24263661C58F9AF7BDAEAE3BABED65A6C0EF837E17A7F68 ] TODDSrv         C:\Windows\system32\TODDSrv.exe
18:19:59.0322 0x08f8  TODDSrv - ok
18:19:59.0430 0x08f8  [ 66C35016E01746715F8F606A9F081BF9, 0F4BC9FE011ABEE6BC0A4DBCE61F0F3ECC82C76A4FB3977FB1B67E6D06BFAF73 ] TosCoSrv        C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
18:19:59.0464 0x08f8  TosCoSrv - ok
18:19:59.0522 0x08f8  [ 0DA25676A231B8396E356C6CE2745CD1, 36363609BE17FB24495801A75C3841B379A0989535A5D1A1659825A2C7B89732 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
18:19:59.0553 0x08f8  TOSHIBA eco Utility Service - ok
18:19:59.0603 0x08f8  [ 94ECABE1BA3559214FE6C3CE6C9677EB, A192E7059297FA18E0FF5B3249D5C367365998ABCFFFEF84B7FE6EDF28AC6103 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
18:19:59.0614 0x08f8  TOSHIBA HDD SSD Alert Service - ok
18:19:59.0692 0x08f8  [ 31D2881B0647F2B09B118B9B50C02888, 7F174ADE54E5866DDCFE4C896D047EE3D4AE140A33A0184F3F57E44172F2EC87 ] TPCHSrv         C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
18:19:59.0749 0x08f8  TPCHSrv - ok
18:19:59.0808 0x08f8  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\windows\System32\trkwks.dll
18:19:59.0831 0x08f8  TrkWks - ok
18:19:59.0888 0x08f8  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
18:19:59.0911 0x08f8  TrustedInstaller - ok
18:19:59.0954 0x08f8  [ B37B08F2E5EEB1A37E448E09BACE1101, 32CC9E06B88BAB6FAB4696B744548DFCE9199A7FD2BA8B019F269CA75895852C ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
18:19:59.0959 0x08f8  tssecsrv - ok
18:20:00.0023 0x08f8  [ FD1D6C73E6333BE727CBCC6054247654, 6F7B9AE1A5986204DB3348D13B303F30FC17624939DA74D6BD114FAEED0FB30E ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
18:20:00.0030 0x08f8  TsUsbFlt - ok
18:20:00.0085 0x08f8  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
18:20:00.0100 0x08f8  tunnel - ok
18:20:00.0137 0x08f8  [ FC24015B4052600C324C43E3A79C0664, 908DFC8490079FB3178DEF9D3A712F22E4E39D65092401D1003925FCF65EE4DB ] TVALZ           C:\windows\system32\DRIVERS\TVALZ_O.SYS
18:20:00.0141 0x08f8  TVALZ - ok
18:20:00.0169 0x08f8  [ 866462F5AE3F375EF83EF9DCE436031C, 5433B3F3FC66C0E17ADBD98F97FD6189927B81C462859C67A22CE16E66DEB6D8 ] TVALZFL         C:\windows\system32\DRIVERS\TVALZFL.sys
18:20:00.0173 0x08f8  TVALZFL - ok
18:20:00.0211 0x08f8  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\windows\system32\DRIVERS\uagp35.sys
18:20:00.0218 0x08f8  uagp35 - ok
18:20:00.0272 0x08f8  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
18:20:00.0295 0x08f8  udfs - ok
18:20:00.0361 0x08f8  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\windows\system32\UI0Detect.exe
18:20:00.0383 0x08f8  UI0Detect - ok
18:20:00.0443 0x08f8  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
18:20:00.0449 0x08f8  uliagpkx - ok
18:20:00.0484 0x08f8  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\windows\system32\drivers\umbus.sys
18:20:00.0488 0x08f8  umbus - ok
18:20:00.0519 0x08f8  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\windows\system32\DRIVERS\umpass.sys
18:20:00.0523 0x08f8  UmPass - ok
18:20:00.0569 0x08f8  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\windows\System32\upnphost.dll
18:20:00.0605 0x08f8  upnphost - ok
18:20:00.0655 0x08f8  [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
18:20:00.0665 0x08f8  usbccgp - ok
18:20:00.0695 0x08f8  USBCCID - ok
18:20:00.0734 0x08f8  [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir          C:\windows\system32\drivers\usbcir.sys
18:20:00.0746 0x08f8  usbcir - ok
18:20:00.0770 0x08f8  [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci         C:\windows\system32\DRIVERS\usbehci.sys
18:20:00.0775 0x08f8  usbehci - ok
18:20:00.0810 0x08f8  [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
18:20:00.0837 0x08f8  usbhub - ok
18:20:00.0865 0x08f8  [ 9828C8D14CC2676421778F0DE638CF97, 479A28211FFB85190A01FAB0283B927588805D2C0CDB03F85F8F814B88E4F453 ] usbohci         C:\windows\system32\drivers\usbohci.sys
18:20:00.0894 0x08f8  usbohci - ok
18:20:00.0936 0x08f8  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\windows\system32\DRIVERS\usbprint.sys
18:20:00.0941 0x08f8  usbprint - ok
18:20:00.0980 0x08f8  [ BF63EBFC6979FEFB2BC03DF7989A0C1A, AFEF764A3E5D52CDBB5074F0E87F2B5EBCDF8D9B6E8F88EE235602B80145BE31 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
18:20:00.0988 0x08f8  USBSTOR - ok
18:20:01.0025 0x08f8  [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci         C:\windows\system32\DRIVERS\usbuhci.sys
18:20:01.0030 0x08f8  usbuhci - ok
18:20:01.0070 0x08f8  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys
18:20:01.0085 0x08f8  usbvideo - ok
18:20:01.0127 0x08f8  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\windows\System32\uxsms.dll
18:20:01.0139 0x08f8  UxSms - ok
18:20:01.0169 0x08f8  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] VaultSvc        C:\windows\system32\lsass.exe
18:20:01.0175 0x08f8  VaultSvc - ok
18:20:01.0207 0x08f8  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
18:20:01.0212 0x08f8  vdrvroot - ok
18:20:01.0274 0x08f8  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\windows\System32\vds.exe
18:20:01.0320 0x08f8  vds - ok
18:20:01.0364 0x08f8  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
18:20:01.0370 0x08f8  vga - ok
18:20:01.0401 0x08f8  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\windows\System32\drivers\vga.sys
18:20:01.0405 0x08f8  VgaSave - ok
18:20:01.0441 0x08f8  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
18:20:01.0464 0x08f8  vhdmp - ok
18:20:01.0508 0x08f8  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\windows\system32\drivers\viaagp.sys
18:20:01.0514 0x08f8  viaagp - ok
18:20:01.0545 0x08f8  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\windows\system32\DRIVERS\viac7.sys
18:20:01.0551 0x08f8  ViaC7 - ok
18:20:01.0580 0x08f8  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\windows\system32\drivers\viaide.sys
18:20:01.0584 0x08f8  viaide - ok
18:20:01.0611 0x08f8  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\windows\system32\drivers\volmgr.sys
18:20:01.0619 0x08f8  volmgr - ok
18:20:01.0668 0x08f8  [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
18:20:01.0702 0x08f8  volmgrx - ok
18:20:01.0750 0x08f8  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\windows\system32\drivers\volsnap.sys
18:20:01.0773 0x08f8  volsnap - ok
18:20:01.0832 0x08f8  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\windows\system32\DRIVERS\vsmraid.sys
18:20:01.0855 0x08f8  vsmraid - ok
18:20:01.0962 0x08f8  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\windows\system32\vssvc.exe
18:20:02.0042 0x08f8  VSS - ok
18:20:02.0092 0x08f8  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
18:20:02.0096 0x08f8  vwifibus - ok
18:20:02.0126 0x08f8  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
18:20:02.0134 0x08f8  vwififlt - ok
18:20:02.0183 0x08f8  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\windows\system32\w32time.dll
18:20:02.0217 0x08f8  W32Time - ok
18:20:02.0261 0x08f8  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\windows\system32\DRIVERS\wacompen.sys
18:20:02.0265 0x08f8  WacomPen - ok
18:20:02.0301 0x08f8  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
18:20:02.0307 0x08f8  WANARP - ok
18:20:02.0324 0x08f8  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
18:20:02.0330 0x08f8  Wanarpv6 - ok
18:20:02.0445 0x08f8  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\windows\system32\wbengine.exe
18:20:02.0532 0x08f8  wbengine - ok
18:20:02.0597 0x08f8  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
18:20:02.0618 0x08f8  WbioSrvc - ok
18:20:02.0678 0x08f8  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\windows\System32\wcncsvc.dll
18:20:02.0712 0x08f8  wcncsvc - ok
18:20:02.0733 0x08f8  [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
18:20:02.0746 0x08f8  WcsPlugInService - ok
18:20:02.0788 0x08f8  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\windows\system32\DRIVERS\wd.sys
18:20:02.0792 0x08f8  Wd - ok
18:20:02.0863 0x08f8  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
18:20:02.0913 0x08f8  Wdf01000 - ok
18:20:02.0952 0x08f8  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost  C:\windows\system32\wdi.dll
18:20:02.0975 0x08f8  WdiServiceHost - ok
18:20:02.0995 0x08f8  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost   C:\windows\system32\wdi.dll
18:20:03.0008 0x08f8  WdiSystemHost - ok
18:20:03.0061 0x08f8  [ A9D880F97530D5B8FEE278923349929D, 6A293E2DB9B7C434EA8B4CD4861E11905D46BD60E014AE27B74DC8C4B2DDF834 ] WebClient       C:\windows\System32\webclnt.dll
18:20:03.0092 0x08f8  WebClient - ok
18:20:03.0127 0x08f8  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\windows\system32\wecsvc.dll
18:20:03.0161 0x08f8  Wecsvc - ok
18:20:03.0193 0x08f8  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\windows\System32\wercplsupport.dll
18:20:03.0216 0x08f8  wercplsupport - ok
18:20:03.0253 0x08f8  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\windows\System32\WerSvc.dll
18:20:03.0276 0x08f8  WerSvc - ok
18:20:03.0318 0x08f8  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
18:20:03.0321 0x08f8  WfpLwf - ok
18:20:03.0350 0x08f8  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\windows\system32\drivers\wimmount.sys
18:20:03.0354 0x08f8  WIMMount - ok
18:20:03.0451 0x08f8  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
18:20:03.0507 0x08f8  WinDefend - ok
18:20:03.0536 0x08f8  WinHttpAutoProxySvc - ok
18:20:03.0630 0x08f8  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
18:20:03.0659 0x08f8  Winmgmt - ok
18:20:03.0787 0x08f8  [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM           C:\windows\system32\WsmSvc.dll
18:20:03.0888 0x08f8  WinRM - ok
18:20:03.0953 0x08f8  [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
18:20:03.0958 0x08f8  WinUsb - ok
18:20:04.0047 0x08f8  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc         C:\windows\System32\wlansvc.dll
18:20:04.0117 0x08f8  Wlansvc - ok
18:20:04.0159 0x08f8  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\windows\system32\drivers\wmiacpi.sys
18:20:04.0162 0x08f8  WmiAcpi - ok
18:20:04.0224 0x08f8  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
18:20:04.0247 0x08f8  wmiApSrv - ok
18:20:04.0364 0x08f8  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
18:20:04.0462 0x08f8  WMPNetworkSvc - ok
18:20:04.0511 0x08f8  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\windows\System32\wpcsvc.dll
18:20:04.0522 0x08f8  WPCSvc - ok
18:20:04.0561 0x08f8  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
18:20:04.0575 0x08f8  WPDBusEnum - ok
18:20:04.0615 0x08f8  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
18:20:04.0620 0x08f8  ws2ifsl - ok
18:20:04.0650 0x08f8  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\windows\System32\wscsvc.dll
18:20:04.0663 0x08f8  wscsvc - ok
18:20:04.0686 0x08f8  WSearch - ok
18:20:04.0902 0x08f8  [ D9B0134913E5EF007AF82A418C503322, 7418DD28C8E968674382F8352AAFFC4DE77887E2B71B8844D615F19432B4C55A ] wuauserv        C:\windows\system32\wuaueng.dll
18:20:05.0040 0x08f8  wuauserv - ok
18:20:05.0080 0x08f8  [ E714A1C0354636837E20CCBF00888EE7, 0E31F0DB0AA318E3B0DACD26C0D3B11519B42F2A996AE580BE67FA8B3C42C436 ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
18:20:05.0092 0x08f8  WudfPf - ok
18:20:05.0145 0x08f8  [ 1023EE888C9B47178C5293ED5336AB69, 62221C80C3F719A585266247482A64F7CB2F5EF69AFA8FA07D563CA2B0A37561 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
18:20:05.0168 0x08f8  WUDFRd - ok
18:20:05.0212 0x08f8  [ 8D1E1E529A2C9E9B6A85B55A345F7629, 64B637CFE2AF58A4F7CE6D8C3D603F8EFD527500F7137E0A37840313C712CA93 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
18:20:05.0235 0x08f8  wudfsvc - ok
18:20:05.0287 0x08f8  [ FF2D745B560F7C71B31F30F4D49F73D2, B2FBF7E5F58E34AC64FE6CF65800F1F07939279203BDE89375FAC92B884A4F37 ] WwanSvc         C:\windows\System32\wwansvc.dll
18:20:05.0310 0x08f8  WwanSvc - ok
18:20:05.0344 0x08f8  ================ Scan global ===============================
18:20:05.0391 0x08f8  [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\windows\system32\basesrv.dll
18:20:05.0432 0x08f8  [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\windows\system32\winsrv.dll
18:20:05.0482 0x08f8  [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:\windows\system32\winsrv.dll
18:20:05.0522 0x08f8  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\windows\system32\sxssrv.dll
18:20:05.0557 0x08f8  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\windows\system32\services.exe
18:20:05.0577 0x08f8  [ Global ] - ok
18:20:05.0579 0x08f8  ================ Scan MBR ==================================
18:20:05.0594 0x08f8  [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
18:20:05.0973 0x08f8  \Device\Harddisk0\DR0 - ok
18:20:05.0974 0x08f8  ================ Scan VBR ==================================
18:20:05.0982 0x08f8  [ 24E5A1A07D6D7DE08D8021A55553D657 ] \Device\Harddisk0\DR0\Partition1
18:20:05.0989 0x08f8  \Device\Harddisk0\DR0\Partition1 - ok
18:20:05.0991 0x08f8  ================ Scan generic autorun ======================
18:20:06.0109 0x08f8  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:20:06.0185 0x08f8  Sidebar - ok
18:20:06.0227 0x08f8  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:20:06.0250 0x08f8  mctadmin - ok
18:20:06.0345 0x08f8  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:20:06.0403 0x08f8  Sidebar - ok
18:20:06.0426 0x08f8  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:20:06.0436 0x08f8  mctadmin - ok
18:20:06.0490 0x08f8  [ 815CBBBAC9F4D44081955ABBC9544930, 1A3EDC87B61C98BBDDB12F20EFAB6DFFE9E0CE33AD119BF4423200B1145B67F3 ] C:\Program Files\TOSHIBA\My Toshiba\MyToshiba.exe
18:20:06.0534 0x08f8  MyTOSHIBA - ok
18:20:06.0588 0x08f8  [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
18:20:06.0601 0x08f8  swg - ok
18:20:06.0603 0x08f8  Waiting for KSN requests completion. In queue: 43
18:20:07.0603 0x08f8  Waiting for KSN requests completion. In queue: 43
18:20:08.0603 0x08f8  Waiting for KSN requests completion. In queue: 43
18:20:09.0847 0x08f8  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.6.305.0 ), 0x61000 ( enabled : updated )
18:20:09.0984 0x08f8  Win FW state via NFP2: enabled
18:20:12.0543 0x08f8  ============================================================
18:20:12.0544 0x08f8  Scan finished
18:20:12.0544 0x08f8  ============================================================
18:20:12.0576 0x1734  Detected object count: 0
18:20:12.0576 0x1734  Actual detected object count: 0
 
# AdwCleaner v3.309 - Report created 11/09/2014 at 18:28:44
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Starter Service Pack 1 (32 bits)
# Username : Nick - TOSHIBA_NB205
# Running from : C:\Users\Nick\Downloads\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
Service Deleted : MapsGalaxy_39Service
[#] Service Deleted : Partner Service
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\Program Files\mapsgalaxy_39
Folder Deleted : C:\Users\Nick\AppData\Local\mapsgalaxy_39
Folder Deleted : C:\Users\Nick\AppData\LocalLow\iac
Folder Deleted : C:\Users\Nick\AppData\LocalLow\mapsgalaxy_39
 
***** [ Scheduled Tasks ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\AppID\kt_bho_dll.dll
Key Deleted : HKLM\SOFTWARE\Classes\kt_bho.KettleBho
Key Deleted : HKLM\SOFTWARE\Classes\kt_bho.KettleBho.1
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@MapsGalaxy_39.com/Plugin
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [MapsGalaxy_39 Browser Plugin Loader]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{28A88B70-D874-4F73-BBBA-9B2B222FB7D6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{364EA597-E728-4CE4-BB4A-ED846EF47970}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{86676E13-D6D8-4652-9FCF-F2047F1FB000}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{364EA597-E728-4CE4-BB4A-ED846EF47970}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8F0B76E1-4E46-427B-B55B-B90593468AC6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{364EA597-E728-4CE4-BB4A-ED846EF47970}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F0B76E1-4E46-427B-B55B-B90593468AC6}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{364EA597-E728-4CE4-BB4A-ED846EF47970}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{364EA597-E728-4CE4-BB4A-ED846EF47970}]
Key Deleted : HKCU\Software\AppDataLow\Software\MapsGalaxy_39
Key Deleted : HKLM\SOFTWARE\MapsGalaxy_39
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17239
 
 
-\\ Google Chrome v35.0.1916.114
 
[ File : C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
 
*************************
 
AdwCleaner[R0].txt - [3162 octets] - [11/09/2014 18:24:45]
AdwCleaner[S0].txt - [3297 octets] - [11/09/2014 18:28:44]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3357 octets] ##########
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Starter x86
Ran by Nick on Thu 09/11/2014 at 18:49:29.02
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\mapsgalaxy search scope monitor
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.feedmanager
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.feedmanager.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.htmlmenu
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.htmlmenu.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.htmlpanel
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.htmlpanel.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.multiplebutton
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.multiplebutton.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.pseudotransparentplugin
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.pseudotransparentplugin.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.radio
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.radio.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.radiosettings
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.radiosettings.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.scriptbutton
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.scriptbutton.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.settingsplugin
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.settingsplugin.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.thirdpartyinstaller
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\mapsgalaxy_39.thirdpartyinstaller.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1241CEBD-9777-4BC6-AAE5-2A77E25DB246}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{173A5778-34BF-48A2-8A5E-6963CE922FED}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1E91A655-BB4B-4693-A05E-2EDEBC4C9D89}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{26842A09-FFA8-4E2C-AE12-0C80F01C3295}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{37ED966D-4D0E-4D66-9633-BEA542C92860}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{3ED5E5EC-0965-4DD3-B7D8-DBC48A1172B9}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4B7D0B0C-CFF3-49C5-9BC3-FFABC031C822}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4F28FA5F-7D15-4753-B4FC-D548A0F02BFB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{5E1BDCF6-DD5F-4DD3-8783-B1454AEF1830}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{71C1D63A-C944-428A-A5BD-BA513190E5D2}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{7D4DFAF7-F2CE-4C91-91A4-514C9612914D}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{9B58A6CE-B337-43D5-9C2F-8C6D92FBA094}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A35FF019-6DBE-4044-B080-6F3FA78A947F}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{C4A25B73-8EF5-4282-9D21-C8920DD577A1}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{CAE88E60-CEA5-4FCB-B611-54EA6305D8AB}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{DB1384D8-1BDA-4C8D-A743-E9CA671FEB00}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{E045DF14-BF1D-405C-A37B-A75C1551AD17}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{F3477E9D-D2F6-49F0-9B23-854D7958D07E}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{b0441a0e-a49a-4e16-afc1-74ecced1921f}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{b0441a0e-a49a-4e16-afc1-74ecced1921f}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1E91A655-BB4B-4693-A05E-2EDEBC4C9D89}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{71C1D63A-C944-428A-A5BD-BA513190E5D2}
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 09/11/2014 at 18:56:16.42
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39auxstb.dll.vir a variant of Win32/Toolbar.MyWebSearch.AE potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39auxstb64.dll.vir a variant of Win64/Toolbar.MyWebSearch.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39bar.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39barsvc.exe.vir Win32/Toolbar.MyWebSearch.AE potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39bprtct.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39brmon.exe.vir Win32/Toolbar.MyWebSearch.AE potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39brmon64.exe.vir a variant of Win64/Toolbar.MyWebSearch.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39brstub.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39brstub64.dll.vir a variant of Win64/Toolbar.MyWebSearch.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39datact.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39dlghk.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39dlghk64.dll.vir a variant of Win64/Toolbar.MyWebSearch.B potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39feedmg.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39hkstub.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39htmlmu.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39httpct.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39idle.dll.vir a variant of Win32/Toolbar.MyWebSearch.AE potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39ieovr.dll.vir a variant of Win32/Toolbar.MyWebSearch.AG potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39mlbtn.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39Plugin.dll.vir Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39radio.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39regfft.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39reghk.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39regiet.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39script.dll.vir a variant of Win32/Toolbar.MyWebSearch.AE potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39skin.dll.vir probably a variant of Win32/Toolbar.MyWebSearch.P potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39SrcAs.dll.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39srchmr.dll.vir a variant of Win32/Toolbar.MyWebSearch.AE potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\39tpinst.dll.vir a variant of Win32/Toolbar.MyWebSearch.AA potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\AppIntegrator64.exe.vir a variant of Win64/Toolbar.MyWebSearch.A potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\AppIntegratorStub64.dll.vir a variant of Win64/Toolbar.MyWebSearch.A potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\CREXT.DLL.vir Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\CrExtP39.exe.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\DPNMNGR.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AI potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\EXEMANAGER.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AI potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\FF-NativeMessagingDispatcher.dll.vir a variant of Win32/Toolbar.MyWebSearch.AI potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\Hpg64.dll.vir a variant of Win64/Toolbar.MyWebSearch.A potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\NP39Stub.dll.vir a variant of Win32/Toolbar.MyWebSearch.AI potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\T8EPMSUP.DLL.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\T8EXTEX.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AC potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\T8EXTPEX.DLL.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\T8HTML.DLL.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\T8TICKER.DLL.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\mapsgalaxy_39\bar\1.bin\VERIFY.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AC potentially unwanted application deleted - quarantined
C:\Users\Nick\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\973MVDQE\MapsGalaxy.exe a variant of Win32/AdInstaller potentially unwanted application deleted - quarantined
 
 
Thanks for the response, it took a while to run everything, but didn't really see anything until maybe the EST scan.  Let me know what you think.  Thanks again!


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:23 PM

Posted 15 September 2014 - 01:31 PM

Nothing too bad... ad and spyware...

Uninstall in Control Panel
Adobe Reader 9.1 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
Java™ 6 Update 14 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216014FF}) (Version: 6.0.140 - Sun Microsystems, Inc.)

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.

Edited by boopme, 15 September 2014 - 01:32 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 MCorlione

MCorlione
  • Topic Starter

  • Members
  • 68 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:09:23 PM

Posted 17 September 2014 - 05:30 PM

Done and done.  I noticed the program mapsgalaxy in the control panel when I uninstalled the other programs.  IST scan had it as a virus/adware and removed many pieces.  Is this something that I should be concerned with?  Thanks!



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:23 PM

Posted 18 September 2014 - 01:07 PM

Looks like a driving ,mapping App.
https://chrome.google.com/webstore/detail/mapsgalaxy/pcpehlgijbdajfafffojllcaecaecngb?hl=en-US
Probably installs a toolbar that spies so it gets flagged.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users