Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

svchost.exe high cpu and ram performance


  • This topic is locked This topic is locked
14 replies to this topic

#1 paulos123

paulos123

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:02:20 PM

Posted 03 October 2014 - 04:58 PM

the service of windows 8 svchost.exe is using from time to time a lot of cpu and ram resources and im suspecting a virus.

i ll be waiting for your advice and help

thanks.....



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,430 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:20 PM

Posted 03 October 2014 - 09:55 PM

Lets run these next and see what we get.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:02:20 PM

Posted 04 October 2014 - 06:47 AM

MiniToolBox by Farbar  Version: 21-07-2014
Ran by loumos (administrator) on 04-10-2014 at 14:47:15
Running from "C:\Users\loumos\Desktop"
Microsoft Windows 8.1 Pro  (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
 
127.0.0.1 apowersoft.com
127.0.0.1 support.apowersoft.com
127.0.0.1 www.apowersoft.com
127.0.0.1 apowersoft.com
 
========================= IP Configuration: ================================
 
Qualcomm Atheros AR5B91 Wireless Network Adapter = Wi-Fi (Connected)
Marvell Yukon 88E8071 PCI-E Gigabit Ethernet Controller = Ethernet (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Mobile broadband" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Mobile broadband 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : pavlos
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : chello.pl
 
Wireless LAN adapter Wi-Fi:
 
   Connection-specific DNS Suffix  . : chello.pl
   Description . . . . . . . . . . . : Qualcomm Atheros AR5B91 Wireless Network Adapter
   Physical Address. . . . . . . . . : 00-24-2B-01-BA-B7
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::d09:61cf:9e2:e060%3(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.101(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, October 4, 2014 12:00:22 AM
   Lease Expires . . . . . . . . . . : Sunday, October 5, 2014 2:23:44 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 50340907
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1B-6C-70-5F-00-1D-72-EB-C1-BE
   DNS Servers . . . . . . . . . . . : 62.179.1.61
                                       62.179.1.63
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Ethernet:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Marvell Yukon 88E8071 PCI-E Gigabit Ethernet Controller
   Physical Address. . . . . . . . . : 00-1D-72-EB-C1-BE
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Local Area Connection* 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 12-24-2B-01-BA-B7
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:383d:e47:a6ba:18d4(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::383d:e47:a6ba:18d4%15(Preferred) 
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 620756992
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1B-6C-70-5F-00-1D-72-EB-C1-BE
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter isatap.chello.pl:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : chello.pl
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  pl-war-dns02.chello.pl
Address:  62.179.1.61
 
Name:    google.com
Addresses:  2a00:1450:400d:806::1006
 46.28.247.123
 46.28.247.98
 46.28.247.113
 46.28.247.89
 46.28.247.84
 46.28.247.118
 46.28.247.88
 46.28.247.114
 46.28.247.109
 46.28.247.119
 46.28.247.104
 46.28.247.108
 46.28.247.103
 46.28.247.94
 46.28.247.93
 46.28.247.99
 
 
Pinging google.com [46.28.247.123] with 32 bytes of data:
Reply from 46.28.247.123: bytes=32 time=23ms TTL=57
Reply from 46.28.247.123: bytes=32 time=16ms TTL=57
 
Ping statistics for 46.28.247.123:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 16ms, Maximum = 23ms, Average = 19ms
Server:  pl-war-dns02.chello.pl
Address:  62.179.1.61
 
Name:    yahoo.com
Addresses:  206.190.36.45
 98.139.183.24
 98.138.253.109
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=186ms TTL=49
Reply from 206.190.36.45: bytes=32 time=187ms TTL=49
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 186ms, Maximum = 187ms, Average = 186ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  3...00 24 2b 01 ba b7 ......Qualcomm Atheros AR5B91 Wireless Network Adapter
  4...00 1d 72 eb c1 be ......Marvell Yukon 88E8071 PCI-E Gigabit Ethernet Controller
  5...12 24 2b 01 ba b7 ......Microsoft Wi-Fi Direct Virtual Adapter
  1...........................Software Loopback Interface 1
 15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.101     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.101    281
    192.168.1.101  255.255.255.255         On-link     192.168.1.101    281
    192.168.1.255  255.255.255.255         On-link     192.168.1.101    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.101    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.101    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 15    306 ::/0                     On-link
  1    306 ::1/128                  On-link
 15    306 2001::/32                On-link
 15    306 2001:0:9d38:6abd:383d:e47:a6ba:18d4/128
                                    On-link
  3    281 fe80::/64                On-link
 15    306 fe80::/64                On-link
  3    281 fe80::d09:61cf:9e2:e060/128
                                    On-link
 15    306 fe80::383d:e47:a6ba:18d4/128
                                    On-link
  1    306 ff00::/8                 On-link
  3    281 ff00::/8                 On-link
 15    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\system32\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [21504] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 39 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 40 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 41 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 42 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 43 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 44 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 45 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 46 C:\Windows\system32\mswsock.dll [270848] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (10/04/2014 02:45:20 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
 
Error: (10/04/2014 02:24:50 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (10/04/2014 02:24:47 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=2
 
Error: (10/04/2014 00:00:32 AM) (Source: Software Protection Platform Service) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (10/04/2014 00:00:23 AM) (Source: Software Protection Platform Service) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (10/04/2014 00:00:20 AM) (Source: RasClient) (User: )
Description: CoId={4886689F-68B8-42A5-856F-415F22B56FA8}: The user pavlos\loumos dialed a connection named  which has failed. The error code returned on failure is 0.
 
Error: (10/04/2014 00:00:08 AM) (Source: RasClient) (User: )
Description: CoId={E41241F3-BEF8-4199-A5D7-6262899E7946}: The user pavlos\loumos dialed a connection named  which has failed. The error code returned on failure is 0.
 
Error: (10/03/2014 11:57:54 PM) (Source: Windows Search Service) (User: )
Description: Windows Search Service failed to process the list of included and excluded locations with the error <30, 0x80040d07, "iehistory://{S-1-5-21-708041573-1778936953-1497560607-1001}/">.
 
Error: (10/03/2014 09:52:16 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (10/03/2014 09:52:04 PM) (Source: Software Protection Platform Service) (User: )
Description: License Activation (slui.exe) failed with the following error code:
hr=0xC004F074
Command-line arguments:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
 
 
System errors:
=============
Error: (10/04/2014 02:35:19 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Listener service terminated with the following service-specific error: 
%%2147944153
 
Error: (10/04/2014 02:34:20 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d0a: microsoft.windowscommunicationsapps.
 
Error: (10/04/2014 02:34:14 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d0a: Microsoft.BingHealthAndFitness.
 
Error: (10/04/2014 02:34:14 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d0a: Microsoft.BingFoodAndDrink.
 
Error: (10/04/2014 02:34:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d0a: Microsoft.Office.OneNote.
 
Error: (10/04/2014 02:34:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d0a: Microsoft.BingFinance.
 
Error: (10/04/2014 02:34:11 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d0a: Microsoft.BingNews.
 
Error: (10/04/2014 02:34:07 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d0a: Microsoft.BingWeather.
 
Error: (10/04/2014 02:34:07 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d0a: Microsoft.BingMaps.
 
Error: (10/04/2014 02:34:04 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80073d0a: Microsoft.ZuneMusic.
 
 
Microsoft Office Sessions:
=========================
Error: (10/04/2014 02:45:20 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
 
Error: (10/04/2014 02:24:50 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (10/04/2014 02:24:47 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=2
 
Error: (10/04/2014 00:00:32 AM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (10/04/2014 00:00:23 AM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (10/04/2014 00:00:20 AM) (Source: RasClient)(User: )
Description: {4886689F-68B8-42A5-856F-415F22B56FA8}pavlos\loumos0
 
Error: (10/04/2014 00:00:08 AM) (Source: RasClient)(User: )
Description: {E41241F3-BEF8-4199-A5D7-6262899E7946}pavlos\loumos0
 
Error: (10/03/2014 11:57:54 PM) (Source: Windows Search Service)(User: )
Description: 300x80040d07iehistory://{S-1-5-21-708041573-1778936953-1497560607-1001}/
 
Error: (10/03/2014 09:52:16 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
 
Error: (10/03/2014 09:52:04 PM) (Source: Software Protection Platform Service)(User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-09-29 03:36:40.307
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard32.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-09-29 03:27:09.442
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard32.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-09-28 20:45:57.457
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard32.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-09-28 16:55:59.159
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard32.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-09-28 16:42:47.596
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard32.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-09-28 16:21:10.916
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard32.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-09-28 16:19:03.245
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard32.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2014-09-28 15:36:57.866
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard32.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-09-28 03:41:37.045
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard32.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-09-28 01:13:53.792
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\guard32.dll because the set of per-page image hashes could not be found on the system.
 
 
 
=========================== Installed Programs ============================
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.33497 - BitTorrent Inc.)
3G Wi-Fi router (HKLM\...\3G Wi-Fi router) (Version: 1.09.00.209 - Huawei Technologies Co.,Ltd)
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.179 - Adobe Systems Incorporated)
avast! Internet Security (HKLM\...\Avast) (Version: 9.0.2021 - AVAST Software)
BS.Player PRO (HKLM\...\BSPlayerp) (Version: 2.63.1071 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 3.03 - Piriform)
Chessmaster Grandmaster Edition (HKLM\...\InstallShield_{27614800-84A9-484E-9CCB-43ED2F1205F5}) (Version: 1.00.0000 - Ubisoft)
Chessmaster Grandmaster Edition (Version: 1.00.0000 - Ubisoft) Hidden
CPUID HWMonitor 1.25 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
Deep Fritz 14 (HKLM\...\{9083E9A4-B76A-4577-9F4D-7B1B62C8CA2D}) (Version: 14.0.0.0 - ChessBase)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{650DE870-ECA3-4E63-8D77-778512BE5D4C}) (Version:  - Microsoft)
Defraggler (HKLM\...\Defraggler) (Version: 2.02 - Piriform)
DFX (HKLM\...\DFX) (Version: 11.200.0.0 - Power Technology)
DFX for Winamp (HKLM\...\DFX for Winamp) (Version: 9.301.0.0 - Power Technology)
Dropbox (HKCU\...\Dropbox) (Version: 2.10.27 - Dropbox, Inc.)
EaseUS Partition Master 10.0 Trial Edition (HKLM\...\EaseUS Partition Master Trial Edition_is1) (Version:  - EaseUS)
EVEREST Ultimate Edition v5.30 (HKLM\...\EVEREST Ultimate Edition_is1) (Version: 5.30 - Lavalys, Inc.)
FLV to AVI MPEG WMV 3GP MP4 iPod Converter (HKLM\...\FLV to AVI MPEG WMV 3GP MP4 iPod Converter) (Version:  - )
Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 6.2.2.802 - Foxit Corporation)
Free YouTube Download version 3.2.44.908 (HKLM\...\Free YouTube Download_is1) (Version: 3.2.44.908 - DVDVideoSoft Ltd.)
Google Chrome (HKLM\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
Hard Disk Sentinel PRO (HKLM\...\Hard Disk Sentinel_is1) (Version:  - HDS)
herdProtect Anti-Malware Scanner (HKLM\...\herdProtectScan) (Version: 1.0 - Reason Company Software Inc.)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.3.193 - SurfRight B.V.)
iColorFolder (HKLM\...\iColorFolder) (Version:  - )
Internet Download Manager (HKLM\...\Internet Download Manager) (Version:  - Tonec Inc.)
Internet Manager (HKLM\...\Internet Manager) (Version: 22.001.18.11.49 - Huawei Technologies Co.,Ltd)
iolo Memory Mechanic (HKLM\...\iolo Memory Mechanic_is1) (Version: 1.0 - iolo technologies, LLC)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft Office Access MUI (Greek) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Greek) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Greek) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Greek) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Greek) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Greek) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Greek) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Greek) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Greek) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Greek) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Greek) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Greek) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Report Viewer Redistributable 2005 (HKLM\...\Microsoft Report Viewer Redistributable 2005) (Version:  - Microsoft Corporation)
Microsoft Report Viewer Redistributable 2005 (Version: 8.0.56405 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 31.0 (x86 el) (HKLM\...\Mozilla Firefox 31.0 (x86 el)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla)
Nero 7 Ultra Edition (HKLM\...\{98EFD8F0-08DE-48DB-B922-A2EBAB711032}) (Version: 7.03.1151 - Nero AG)
neroxml (Version: 1.0.0 - Nero AG) Hidden
NetWorx 5.3.2 (HKLM\...\NetWorx_is1) (Version:  - Softperfect Research)
PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
PLAY ONLINE (HKLM\...\PLAY ONLINE) (Version: 11.002.03.11.264 - Huawei Technologies Co.,Ltd)
PLAY Web partner (HKLM\...\PLAY Web partner) (Version: 1.08.00.264 - Huawei Technologies Co.,Ltd)
PowerISO (HKLM\...\PowerISO) (Version: 4.7 - PowerISO Computing, Inc.)
Rainmeter (HKLM\...\Rainmeter) (Version: 3.1 r2290 - )
RegClean Pro (HKLM\...\RegClean Pro_is1) (Version: 6.21 - Systweak Inc)
Revo Uninstaller Pro 3.0.7 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.7 - VS Revo Group, Ltd.)
Sandboxie 4.12 (32-bit) (HKLM\...\Sandboxie) (Version: 4.12 - Sandboxie Holdings, LLC)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (Version:  - Microsoft) Hidden
SiSoftware Sandra Business 2013.SP3 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 19.40.2013.5 - SiSoftware)
Skype™ 6.20 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.)
Switch Sound File Converter (HKLM\...\Switch) (Version:  - NCH Software)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2889836) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{9179FC17-97A8-4D98-9E09-05720AF5D44E}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUS_{EAD7BEF9-B28C-425F-B2C5-538CB27EF013}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{089DBFD7-8211-43B2-AAAE-5BDD8C23E3A8}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-001A-0408-0000-0000000FF1CE}_Office14.PROPLUS_{2496FDF9-16F8-423F-BA5D-945B23408443}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM\...\{90140000-0018-0408-0000-0000000FF1CE}_Office14.PROPLUS_{331ED1C9-FE4A-4A59-804A-EC0726FC62EA}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version:  - Microsoft)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Winamp (HKLM\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
WinPatrol (HKLM\...\{007811BF-E310-4285-BFC6-55DB29B3EDDE}) (Version: 24.0.2012 - BillP Studios)
WinPatrol (HKLM\...\{4BB7A109-FDB5-45E3-9DB9-ECB2EA7B80EE}) (Version: 28.8.2013.0 - BillP Studios)
WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Your Uninstaller! 2010 (HKLM\...\YU2010_is1) (Version: 7.3.2010.33 - URSoft, Inc.)
YTD Video Downloader 4.7.3 (HKLM\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 4.7.3 - GreenTree Applications SRL)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 38%
Total physical RAM: 3000.86 MB
Available physical RAM: 1854.3 MB
Total Pagefile: 7500.86 MB
Available Pagefile: 6112.33 MB
Total Virtual: 2047.88 MB
Available Virtual: 1946.04 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:232.88 GB) (Free:54.63 GB) NTFS
2 Drive d: () (Fixed) (Total:232.78 GB) (Free:206.56 GB) NTFS
6 Drive j: (INTENSO) (Fixed) (Total:933.03 GB) (Free:142.04 GB) NTFS
7 Drive k: (INTENSO BACKUP) (Fixed) (Total:929.98 GB) (Free:92.95 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\PAVLOS
 
Administrator            Guest                    loumos                   
 
 
**** End of log ****


#4 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:02:20 PM

Posted 04 October 2014 - 06:50 AM

14:48:24.0056 0x0ba4  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
14:48:28.0096 0x0ba4  ============================================================
14:48:28.0096 0x0ba4  Current date / time: 2014/10/04 14:48:28.0096
14:48:28.0096 0x0ba4  SystemInfo:
14:48:28.0097 0x0ba4  
14:48:28.0097 0x0ba4  OS Version: 6.3.9600 ServicePack: 0.0
14:48:28.0097 0x0ba4  Product type: Workstation
14:48:28.0097 0x0ba4  ComputerName: PAVLOS
14:48:28.0097 0x0ba4  UserName: loumos
14:48:28.0097 0x0ba4  Windows directory: C:\Windows
14:48:28.0097 0x0ba4  System windows directory: C:\Windows
14:48:28.0097 0x0ba4  Processor architecture: Intel x86
14:48:28.0097 0x0ba4  Number of processors: 2
14:48:28.0097 0x0ba4  Page size: 0x1000
14:48:28.0097 0x0ba4  Boot type: Normal boot
14:48:28.0097 0x0ba4  ============================================================
14:48:28.0508 0x0ba4  KLMD registered as C:\Windows\system32\drivers\16757878.sys
14:48:29.0324 0x0ba4  System UUID: {518A53F6-E94C-5407-17FA-31E509FEFD2D}
14:48:30.0259 0x0ba4  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:48:30.0277 0x0ba4  Drive \Device\Harddisk2\DR3 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:48:36.0490 0x0ba4  ============================================================
14:48:36.0490 0x0ba4  \Device\Harddisk0\DR0:
14:48:36.0490 0x0ba4  MBR partitions:
14:48:36.0490 0x0ba4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
14:48:36.0490 0x0ba4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D190800
14:48:36.0490 0x0ba4  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1D1C3000, BlocksNum 0x1D1C2800
14:48:36.0490 0x0ba4  \Device\Harddisk2\DR3:
14:48:36.0498 0x0ba4  MBR partitions:
14:48:36.0498 0x0ba4  \Device\Harddisk2\DR3\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74A104C1
14:48:36.0498 0x0ba4  \Device\Harddisk2\DR3\Partition2: MBR, Type 0x7, StartLBA 0x74A11000, BlocksNum 0x743F6800
14:48:36.0498 0x0ba4  ============================================================
14:48:36.0546 0x0ba4  C: <-> \Device\Harddisk0\DR0\Partition3
14:48:36.0592 0x0ba4  D: <-> \Device\Harddisk0\DR0\Partition2
14:48:36.0623 0x0ba4  J: <-> \Device\Harddisk2\DR3\Partition1
14:48:36.0646 0x0ba4  K: <-> \Device\Harddisk2\DR3\Partition2
14:48:36.0646 0x0ba4  ============================================================
14:48:36.0646 0x0ba4  Initialize success
14:48:36.0646 0x0ba4  ============================================================
14:48:51.0532 0x0be8  ============================================================
14:48:51.0532 0x0be8  Scan started
14:48:51.0532 0x0be8  Mode: Manual; 
14:48:51.0532 0x0be8  ============================================================
14:48:51.0532 0x0be8  KSN ping started
14:48:53.0990 0x0be8  KSN ping finished: true
14:48:56.0150 0x0be8  ================ Scan system memory ========================
14:48:56.0150 0x0be8  System memory - ok
14:48:56.0151 0x0be8  ================ Scan services =============================
14:48:56.0316 0x0be8  [ F7B9F821CF1C31B266F60A5733F8119A, F6CD1745CCE5F3023AA71BEBDD90ABF53AAB7BAC30FE6D28EB0CE73A46346875 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
14:48:56.0324 0x0be8  1394ohci - ok
14:48:56.0358 0x0be8  [ 57F7923ACC5009218F6591B3C0F62E07, 2C55C3C05063A87AA3B8B4E229F473104DE3643B1905214F75643332F60AD77F ] 3ware           C:\Windows\system32\drivers\3ware.sys
14:48:56.0362 0x0be8  3ware - ok
14:48:56.0398 0x0be8  [ 97E855ABBF94A5B979BB3070833AE71C, 1BE118C8E9DE6C37D4B64980824B01552B18F468E710C5313CBBBAC4458F3CED ] ACPI            C:\Windows\system32\drivers\ACPI.sys
14:48:56.0415 0x0be8  ACPI - ok
14:48:56.0439 0x0be8  [ DCA3C5F55150B3AEB8B75A5E8D1156DC, 5BECBA14872511E9195B66F5BA290C80978C0DFFB08FABB8C5502D6F4B2927B9 ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
14:48:56.0442 0x0be8  acpiex - ok
14:48:56.0451 0x0be8  [ EE103776F838AE570EDBB2C1FB1356AF, 893FE536EEC3E9FBF08FBF3491DD96939DD92879E321A24E1AB4C6F7C5C84961 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
14:48:56.0455 0x0be8  acpipagr - ok
14:48:56.0464 0x0be8  [ AC1BAD06E47D090C553FDEEAD1A7C463, FF4A46E0811B6857DDF1C8FB35E1D99CF2C13D7139FEC574B797F09CA0DC95CA ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
14:48:56.0467 0x0be8  AcpiPmi - ok
14:48:56.0477 0x0be8  [ 519FA16CFE54F107861501D852322AEF, AC81AEAABF7C97F90769A8EE789449DB413815C2634999AE0C5825BF40656505 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
14:48:56.0480 0x0be8  acpitime - ok
14:48:56.0544 0x0be8  [ F4BF3ADDDDC1AD372604F13C2B0C1F65, FA37ED5014336A72F778C485226B61BEFECEB861AB754862738795C167F0BAB7 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:48:56.0552 0x0be8  AdobeFlashPlayerUpdateSvc - ok
14:48:56.0607 0x0be8  [ D614199DF507F1047D2C9ADB89BDD49E, F858794161F40660CDFEDA895A3B924364F74F8D6165947A7605A3C695D9EE7D ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
14:48:56.0629 0x0be8  ADP80XX - ok
14:48:56.0719 0x0be8  [ 38ED16BD714BD8AB7A1D78568E2C5B22, D03E82A895DC9F47488D4DDF4C47D241364F2FAFCA9C76576C934403BEFC046B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
14:48:56.0725 0x0be8  AeLookupSvc - ok
14:48:56.0804 0x0be8  [ D75FB05E8DBF21FA0EF313C7503243F1, A9D9B5A6B26D114319B16605D47BDD27D4B13B72D2661DDDCD711AC48D46DB4E ] AFD             C:\Windows\system32\drivers\afd.sys
14:48:56.0818 0x0be8  AFD - ok
14:48:56.0892 0x0be8  [ 7E10E3BB9B258AD8A9300F91214D67B9, CE5FAD7BF78234B64EAADF64DB23F3C342AADB9C5E3B0168E57863F494F30318 ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
14:48:56.0919 0x0be8  AgereSoftModem - ok
14:48:56.0951 0x0be8  [ 7A706DCF874214097A30694D3B686866, C565B0A0F59A79259D0D3958FF3FAAE252FCC2BF3964C426B37F8C3830A0C216 ] agp440          C:\Windows\system32\drivers\agp440.sys
14:48:56.0955 0x0be8  agp440 - ok
14:48:56.0979 0x0be8  [ 25815816E0032A26D2FE5FDA7F9A2BB7, F10F59CE1EB099BA7D6923BA7C8712E1D2E03C31A194F47A6B4CC824B479104B ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
14:48:56.0982 0x0be8  ahcache - ok
14:48:57.0013 0x0be8  [ F0393267267B7E0EFD1E987781783B9F, 90BC0B0FA5DE930650104C9D3ED76A90EDB99DCAD097FAF964B1705BD2BE6825 ] ALG             C:\Windows\System32\alg.exe
14:48:57.0016 0x0be8  ALG - ok
14:48:57.0038 0x0be8  [ E7E154969EEDB8E8FC2C80DF690A175A, 3015D83058BF9B018473823B596F4F9F1A348E3ED2724C51CB9776E76082C479 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
14:48:57.0048 0x0be8  amdagp - ok
14:48:57.0064 0x0be8  [ D9707ECC59834964EBA0D9D6C87305F6, EEC61004B16B4E1582D55D00C7A6DF497E72EC2B81A301B383584F5D6DFADCF0 ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
14:48:57.0068 0x0be8  AmdK8 - ok
14:48:57.0085 0x0be8  [ 7E4E0841365A02F77BD8497CCE347179, 915506A214730851CD789A4E0D1AC6501706D56929CD8AFB30BF77E4618AE574 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
14:48:57.0092 0x0be8  AmdPPM - ok
14:48:57.0133 0x0be8  [ 5558A0EB3082EAC88C0578ABCE0C707D, 46DDFFE4E3DC5E98B06CA6DCF508C8B7BBCD1C9BED8DFA74B48AA08498E76EF2 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
14:48:57.0138 0x0be8  amdsata - ok
14:48:57.0174 0x0be8  [ FB1A73A850C812F63BA9D174AB97BFB6, D15ECB48ECC459E564386101178E4E698B84B7763ABBC022F6D617CC5623F755 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
14:48:57.0181 0x0be8  amdsbs - ok
14:48:57.0209 0x0be8  [ 43352B9C7917984404F893AD10468F63, 26270C5FBECF1D2E91ABB589196F3B57C46D5C941594D12EEA1A6BAD60B2E28A ] amdxata         C:\Windows\system32\drivers\amdxata.sys
14:48:57.0211 0x0be8  amdxata - ok
14:48:57.0262 0x0be8  [ 548CCBD8B48FDF7E2435AD6017920A7F, E79257CA143AF8E08CFF85E68C5D9C010150788DBC0924D5B25C1562A11EEE6C ] Apowersoft_AudioDevice C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys
14:48:57.0264 0x0be8  Apowersoft_AudioDevice - ok
14:48:57.0279 0x0be8  [ 744F52D39EE8B38B85A047B6AFFE8696, 67594BD57863C48559B690D0C6FB2376B9ACBF7645232EE259464D54B786C5A8 ] AppID           C:\Windows\system32\drivers\appid.sys
14:48:57.0284 0x0be8  AppID - ok
14:48:57.0327 0x0be8  [ 74A94E7CE70DAABD1929F605392F3632, 4434B89229E220B35E071E63A478C67F9607AF5F17A4C2C0FEB8DA5E8E77C11E ] AppIDSvc        C:\Windows\System32\appidsvc.dll
14:48:57.0331 0x0be8  AppIDSvc - ok
14:48:57.0361 0x0be8  [ 63F348EC88ACA15279C68A034040AF73, 8DB4AEB894AF959E73E4392C24F9F5B0CCF82FC08FD854D424F1C2A44B2E5023 ] Appinfo         C:\Windows\System32\appinfo.dll
14:48:57.0366 0x0be8  Appinfo - ok
14:48:57.0407 0x0be8  [ D45B9E7A13866AEEF0AAD9E60A24C604, 87911A658343575579F63A50CF93A8A69EEB64AC9E1EF692787CB1509E89CAF4 ] AppMgmt         C:\Windows\System32\appmgmts.dll
14:48:57.0414 0x0be8  AppMgmt - ok
14:48:57.0453 0x0be8  [ 0016BF6CCFCBEE39188861476B700D8B, 8E90B8BA4C94E7CF4E970C2ACE34FD510E2A1643AC041F4C51D8CF1EE1A0DA4E ] AppReadiness    C:\Windows\system32\AppReadiness.dll
14:48:57.0466 0x0be8  AppReadiness - ok
14:48:57.0564 0x0be8  [ D07789299DA4D79B123336534E960F62, E98CD0B2B80A71D8B7BCD152196B4D8B2B56EE39C798C35CB33C6D82C5C314A5 ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
14:48:57.0600 0x0be8  AppXSvc - ok
14:48:57.0630 0x0be8  [ 0554DE27A3B4527C000073CEA0E84D1B, 526AA2C3B88AB21331C6DAA40F0443AE3437D673DECC330E7433F9FDC7ADDB54 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
14:48:57.0634 0x0be8  arcsas - ok
14:48:57.0673 0x0be8  [ 3BFBB5DAE801CB893B8B46345FED6437, 2C2B71C1294585265D4871E74F17541500CA20DE34AC516F2A906DD81964C833 ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
14:48:57.0675 0x0be8  aswHwid - ok
14:48:57.0718 0x0be8  [ 4E39E113E8F5FEE3C49160A0D657A4D5, AAB66B7C0EC63FD457F579ABDC21ED96F5E11C546AA7067AF2BA79BADCDE00B2 ] aswKbd          C:\Windows\system32\drivers\aswKbd.sys
14:48:57.0721 0x0be8  aswKbd - ok
14:48:57.0740 0x0be8  [ C3014C735F450FE822C97FFBB0627113, 1CCFE845AED1757B8C1F52D310933076FF1EC197D82E499DB4592B09D66137B0 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
14:48:57.0743 0x0be8  aswMonFlt - ok
14:48:57.0798 0x0be8  [ EAA4A59CFA4AB73843B13E86B50F573D, 9A1EE560AA6F77BC3D9F36158C5C30505EC29400C55F75B660CF97E743D7D030 ] aswNdisFlt      C:\Windows\system32\DRIVERS\aswNdisFlt.sys
14:48:57.0805 0x0be8  aswNdisFlt - ok
14:48:57.0863 0x0be8  [ A4614218584E41C31C7D1CBFF0432ED5, C9632FDB13FB0DD73A5FA5E2DFA5EFF97A9CD719DC0D28097B765077AD0FB3E7 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
14:48:57.0893 0x0be8  aswRdr - ok
14:48:57.0919 0x0be8  [ B7750AF7EDFD95674EB7CA92BCDD3358, A097577004F3CF71E2F9465F02B073D39926D7DEE2E2A9516D888158A5CB19E9 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
14:48:57.0922 0x0be8  aswRvrt - ok
14:48:57.0974 0x0be8  [ 51FDE588D860857A97E4C4B560E40C9B, 8A3AC3E55249DAE6CCD95593989F8B100D5C4712A16681A36E5D0F2F08BD57AA ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
14:48:57.0999 0x0be8  aswSnx - ok
14:48:58.0041 0x0be8  [ 1AEB8CDB797666AF709A291B47AE81E0, 12AC4DBC6338BA5E5C04B449FF8362E7EC8EBFCA675C4F21BE847DFDCAE8F7C9 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
14:48:58.0053 0x0be8  aswSP - ok
14:48:58.0074 0x0be8  [ 83378AE48209388D0F9BD16A44D19EEC, 0BEBD1E425077D81B5439E90B2C518EA8B94F590B551F52289842012BA3BAB2C ] aswStm          C:\Windows\system32\drivers\aswStm.sys
14:48:58.0078 0x0be8  aswStm - ok
14:48:58.0106 0x0be8  [ 90BEE0170D70D6744CEF2355EEAF8086, 8F9FF53F529B854934020E2F8163605DC794FF48464D3D4439BAAF70ECE8E963 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
14:48:58.0112 0x0be8  aswVmm - ok
14:48:58.0133 0x0be8  [ 437EAC134721F0BA2D856FA3B2622F7B, 0B07CEB94C9F5FA86996A031E054AD3C7177C6185D946398A9FF9E57CF10D0AE ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
14:48:58.0135 0x0be8  AsyncMac - ok
14:48:58.0147 0x0be8  [ 72FCAE2CE6DFEAB2AB072435017F3417, 1081DAD1DEC8956D7A0D2CE9AF5DCDC56620436B161A7D749EDE769AAE73F2D6 ] atapi           C:\Windows\system32\drivers\atapi.sys
14:48:58.0150 0x0be8  atapi - ok
14:48:58.0671 0x0be8  [ D49C81814DBA6E1E01031A4FFC7637AF, 5F511BEE6888F8C661AA706C2638363841675EEF6240C85F5CAFAEC8D39249DB ] athr            C:\Windows\system32\DRIVERS\athwn.sys
14:48:58.0744 0x0be8  athr - ok
14:48:58.0808 0x0be8  [ D6BB129AB4F45174432D88C0B768E3A6, 32659D2DB33879B4368700C22B57208BFE3D5D257C15D632C169C19AD78BDD3F ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
14:48:58.0815 0x0be8  AudioEndpointBuilder - ok
14:48:58.0855 0x0be8  [ F5DB09E62DD1F1864C8DCF596645B540, 3B200F7835A1D468353D19821199F24ABB38C35716D652736382BF7775E3D807 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
14:48:58.0874 0x0be8  Audiosrv - ok
14:48:59.0057 0x0be8  [ 73F5C13B431915BAE35254B4E95DFB71, 393A045859382C44133C004598B1512048046BCC129FED2247A77FDBFCDB6DFF ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
14:48:59.0059 0x0be8  avast! Antivirus - ok
14:48:59.0099 0x0be8  [ D386D51B1839E208EF7CCFBFA964638E, 56BF72AE80DFBB5A99A060591A9250BA0D4B9FDF1BEF23C87B61169D2D0EF111 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
14:48:59.0103 0x0be8  avast! Firewall - ok
14:48:59.0143 0x0be8  [ E8EB0D954F852612B5558A2FA48141EF, 9EAFADF021D18BF7EBB9A0F3D7896EE4C4D144FE471447BECE1555FB3FF4148E ] AxInstSV        C:\Windows\System32\AxInstSV.dll
14:48:59.0148 0x0be8  AxInstSV - ok
14:48:59.0181 0x0be8  [ 235EAE5E6E5F3F0DD49DA9204F86976E, 6F29B9E36C54717E94DBF346FEF5145A2CAEBA4C1BB336E4023C5A7FE09B5290 ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
14:48:59.0184 0x0be8  BasicDisplay - ok
14:48:59.0202 0x0be8  [ 363392A3AF1630C9D3A7B9A31267B5B3, C1F084BFCC05EE56585860DF4729198C72475AC75A2A38FD4D1551D8CA3A9EA3 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
14:48:59.0205 0x0be8  BasicRender - ok
14:48:59.0227 0x0be8  [ 596DB7E4D0DB6AC32DF142C861001979, D7E2C2334F286778A485391C0E0BA19DE2A7D2C3B94A74563C57D55EB0A8E858 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
14:48:59.0229 0x0be8  bcmfn2 - ok
14:48:59.0259 0x0be8  [ BB66D3F11B9D1A71C14AA9175BA308E1, C110DA0892A6C4507D22537CD83DC8D923935624507F8C04B89D41367DD61ADC ] BDESVC          C:\Windows\System32\bdesvc.dll
14:48:59.0270 0x0be8  BDESVC - ok
14:48:59.0295 0x0be8  [ 38058AF65F15D0E9E1A5A9B8E75B0757, C7855B39DEAF8AE6E87FBF44FADD3344D69AC71AAC8737EA6FF21435685189F7 ] Beep            C:\Windows\system32\Drivers\beep.sys
14:48:59.0297 0x0be8  Beep - ok
14:48:59.0371 0x0be8  [ B865A96B787A813F5D66665B2B62AB11, 667D7916EC00D5F57B3F527C68AEB0AED147D5D62B25DCA2ACD78B509C36EAA6 ] BFE             C:\Windows\System32\bfe.dll
14:48:59.0387 0x0be8  BFE - ok
14:48:59.0705 0x0be8  [ CF61A9210872D1C98FA82593A5A3EFA1, E4732961BB3D9220E692646D1B16984B375D8BD65B1881B25F9BD35FB1B0AFD2 ] BITS            C:\Windows\System32\qmgr.dll
14:48:59.0731 0x0be8  BITS - ok
14:48:59.0761 0x0be8  [ BC1FC15A5B1FAE717CE441537590FDD3, B16A29C37AAFD8BB63E96211A7B01A206E3370904F942DE0D85AAFE8EF49A8E9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
14:48:59.0765 0x0be8  bowser - ok
14:48:59.0787 0x0be8  [ EE34AA2092B0FE415064B726EEB7EC24, C404E2A3BC02C33B8AC9329985D2C1029C3A7CCB651240A790A11544E2B397BC ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
14:48:59.0796 0x0be8  BrokerInfrastructure - ok
14:48:59.0838 0x0be8  [ 2EADB0E147F439FDEF21E3153D0EB3FF, 905048A3C3B44EB9983040046A1AC358D167308D00AF707CDAA9755AAFCABD2A ] Browser         C:\Windows\System32\browser.dll
14:48:59.0845 0x0be8  Browser - ok
14:48:59.0875 0x0be8  [ 48590B2DBCE55AC0DF0F7A3F23204CBF, CA57095FD6979A937FC26E9E4D804C8FA7248B36D84159D746F9FC8BADF08365 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
14:48:59.0878 0x0be8  BthAvrcpTg - ok
14:48:59.0888 0x0be8  [ 84CF99F7190D54D4C72E0F5D008BF88C, 585A87EC0A57057727D58A8D9B9ACDE90861AFB4BF4FBEF07C451A7EDF5DB96F ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
14:48:59.0892 0x0be8  BthHFEnum - ok
14:48:59.0904 0x0be8  [ 1C0791BC4DC2AE0B41F8E84CD3154929, FEA1FF46493C6638E08FC2FBBFB66B9922680BB649B99695ADACF05713962A78 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
14:48:59.0907 0x0be8  bthhfhid - ok
14:48:59.0919 0x0be8  [ 46F0B06DE544DF0E270BCB345E1768AC, C6D6CF456C8A6C973EEF1C127477E2D1CC2669C22CB675831FC385CAB0AA88F4 ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
14:48:59.0923 0x0be8  BTHMODEM - ok
14:48:59.0965 0x0be8  [ D0AD9879CC58ABB122EC0BF0F7B3925C, 09B3ECE40AA008B4E11955CE15453AC9F9262895E0568CEE2A169A0FE9526080 ] bthserv         C:\Windows\system32\bthserv.dll
14:48:59.0969 0x0be8  bthserv - ok
14:48:59.0993 0x0be8  [ CE232BB0965C0C0B786C3F976CCBFB7D, B3EF33018585A1B0B560E774C6127354E45805F01779C5931C345853F9EFD48C ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
14:48:59.0997 0x0be8  cdfs - ok
14:49:00.0028 0x0be8  [ E2FC132D48EA4E8B04432C33EFB77801, 732BCDFA8975FB54DD0EAF0D208CBD361CA2E9C68B82212481C843E2ED1C5237 ] cdrom           C:\Windows\System32\drivers\cdrom.sys
14:49:00.0033 0x0be8  cdrom - ok
14:49:00.0056 0x0be8  [ 8EA77992FACEB94182B9610FA4A06A68, 18AC5B03A3B7FA783596B8BD63DC01F9C36520AEA5264AFD99CD9207F538C931 ] CertPropSvc     C:\Windows\System32\certprop.dll
14:49:00.0063 0x0be8  CertPropSvc - ok
14:49:00.0073 0x0be8  [ 98294CE233DE8687CEEC29BD632107D0, 91DCAD303EB49A0321E3991A7B77E77672A87B32B55656A6D9471F10F1C2EE27 ] circlass        C:\Windows\System32\drivers\circlass.sys
14:49:00.0079 0x0be8  circlass - ok
14:49:00.0086 0x0be8  cleanhlp - ok
14:49:00.0142 0x0be8  [ 7559018F0024F00AC00198F18C6A0426, 29280C458A1C0F43D410E8582811D61A2ED5D7D8104FA5B17BB15E02DB080964 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
14:49:00.0151 0x0be8  CLFS - ok
14:49:00.0180 0x0be8  [ 6D46D1CCDA47E9B76F2D7FF4417D31AD, 8AA40C74C284EBF78FB60D64614BC87BD8C1592AD0EFB03D0DEE7F0265050019 ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
14:49:00.0183 0x0be8  CmBatt - ok
14:49:00.0247 0x0be8  [ 7E7A3756C7F8490D7A507A2F488293BC, 6E359677D81AA5ED6CE93A98DB4E250E70E7DF7581FCBB7C7E1025D58DF9E359 ] CNG             C:\Windows\system32\Drivers\cng.sys
14:49:00.0261 0x0be8  CNG - ok
14:49:00.0302 0x0be8  [ EC086CEEC479CEDAD294D64D819CAABE, 07202C26C0691CE1C83112439FFDD9F4151B3FB16AE63A3B8F35D235C59D005B ] cnghwassist     C:\Windows\system32\DRIVERS\cnghwassist.sys
14:49:00.0305 0x0be8  cnghwassist - ok
14:49:00.0326 0x0be8  [ F89853991E6A03526E17E4AE5239FD98, E10FBF25FCFA42D7D495B013B327E090517797E654FFAEA0A4D4F212A6A5D5CC ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
14:49:00.0329 0x0be8  CompositeBus - ok
14:49:00.0336 0x0be8  COMSysApp - ok
14:49:00.0354 0x0be8  [ C8A7949EBAC42923D59B2C2630D2AD84, F5828C42AC40B873A09879F80B8C5F51ED36F9633A11A2A34846BBB890A416B9 ] condrv          C:\Windows\system32\drivers\condrv.sys
14:49:00.0356 0x0be8  condrv - ok
14:49:00.0403 0x0be8  [ 1D0EF66A01276C2562A84E4C23C19F61, 791DC91B3348A24728165DC8E571FB02D068AF3E80D77DC32194DE083087BB48 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
14:49:00.0408 0x0be8  CryptSvc - ok
14:49:00.0444 0x0be8  [ 0B74231D179C53D34158554C65821D3B, 38157084D67FA80AAE526E5ABF1241FA3FA83185068B39C31670F12DD7E4B247 ] CSC             C:\Windows\system32\drivers\csc.sys
14:49:00.0456 0x0be8  CSC - ok
14:49:00.0500 0x0be8  [ 4192B0B338B00B6E36A942287D68CF1E, 7075263FCE163F0AC2D2F6EA4C3F12D324CDC835EC9C677BEB72A4208916E45B ] CscService      C:\Windows\System32\cscsvc.dll
14:49:00.0519 0x0be8  CscService - ok
14:49:00.0539 0x0be8  [ 2ECC9D6E0104409B441EA7095233F323, 82F9340A98DEF7CA4DDDBF27EAF23C9E829F87863C11E81445A776B366A00CA8 ] dam             C:\Windows\system32\drivers\dam.sys
14:49:00.0543 0x0be8  dam - ok
14:49:00.0628 0x0be8  [ 05C0337538BEECC04FC695808EFF201C, DC32234686D38A7DD35DFE6AC9CB55F0DDAD8B463EE6B20857CC45884F00C093 ] DcomLaunch      C:\Windows\system32\rpcss.dll
14:49:00.0650 0x0be8  DcomLaunch - ok
14:49:00.0703 0x0be8  [ 0557BE4F764B2AA6041C26711D595126, 8256FC71122226D98D50E3581917267BEAF1A7A7AEC5C7339D2531D3A0EB0556 ] defragsvc       C:\Windows\System32\defragsvc.dll
14:49:00.0715 0x0be8  defragsvc - ok
14:49:00.0751 0x0be8  [ CB7581E95D45B89503D6290277B3AEBA, E6645951628600EA62CE52CBF1CC2BFA46AFD429072B8CAB52530D93306CFCC0 ] DeviceAssociationService C:\Windows\system32\das.dll
14:49:00.0762 0x0be8  DeviceAssociationService - ok
14:49:00.0809 0x0be8  [ 7F4B79568DD6BEC3ECC80C2AE93DC749, E21DFE1B4D3B2BF3B4C65AB5D2A875453EED66AD9958CB3FD4840EA057756474 ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
14:49:00.0819 0x0be8  DeviceInstall - ok
14:49:00.0866 0x0be8  [ 55758EBBC45E1628161121D7CFEAD4A1, 566B90D1600B5B0F71B85B7B5F775D3E77C3B8C73CE13A848784A9EC74478C80 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
14:49:00.0871 0x0be8  Dfsc - ok
14:49:00.0922 0x0be8  [ 30384865C9AF82DB291E5C4F468E1AC6, 5B4BFB8006888E72CE340CAF9DF23D29B8226780E1533DAA72F4A6BC1AA93AEB ] DFX11_1         C:\Windows\system32\drivers\dfx11_1.sys
14:49:00.0924 0x0be8  DFX11_1 - ok
14:49:00.0967 0x0be8  [ E28501E3A241DDC5DC65382E55661B1D, 3D7C1D55BF377C38A02CBF46C8B3E5D87B71936E0C14CF57FF626C473E313F32 ] Dhcp            C:\Windows\system32\dhcpcore.dll
14:49:00.0980 0x0be8  Dhcp - ok
14:49:01.0014 0x0be8  [ 832BDA661E26792B5512FC641A177F26, 10D4E4D2AE0974A48D6B5E8A294B4B53250B0BC6CA00EBBFE1F6119DD67509F8 ] disk            C:\Windows\system32\drivers\disk.sys
14:49:01.0114 0x0be8  disk - ok
14:49:01.0161 0x0be8  [ 0357F5F7C542249D8EAA4E6FCC69EE91, E23B6657E1126603D195145BED77AA239625057A28378AF535E5A3A7A4D1F36D ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
14:49:01.0163 0x0be8  dmvsc - ok
14:49:01.0234 0x0be8  [ A47341D3C4D2FB3984BDCAF00AE4A6C7, E612CE37EF1C1F1090A95452349BA47CA9580A3928C7B3E1C5784117018F3E76 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
14:49:01.0242 0x0be8  Dnscache - ok
14:49:01.0284 0x0be8  [ EB46660185B04E24A66344699B5A3866, ADBF72CE72982D4C4F7D7DAC4DF0511FED3D7C936B9A1152E91C83ED6ADBEC51 ] dot3svc         C:\Windows\System32\dot3svc.dll
14:49:01.0294 0x0be8  dot3svc - ok
14:49:01.0324 0x0be8  [ F57ECB784590B2C7A974EE22EA16BE5F, 5A252316036C9A0DAAF27008D2C139A225E21736464E32C85709C39FC63DC2B1 ] DPS             C:\Windows\system32\dps.dll
14:49:01.0330 0x0be8  DPS - ok
14:49:01.0359 0x0be8  [ 115B0BCB58F274B46A9C6A5615C4B925, 2F66228A3BC128FDA2356CE5BE7386E91AB9CA155F4E4B45B8BC7D4D02361589 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
14:49:01.0361 0x0be8  drmkaud - ok
14:49:01.0384 0x0be8  [ 57B0E7924571AFC1F4617749D17C7BFF, 7A1E4E7B5AC1849D020B2DA67B07CAC86CD5D378727AC340376558FDCE1A1C7F ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
14:49:01.0392 0x0be8  DsmSvc - ok
14:49:01.0485 0x0be8  [ 27FA5460CE08F69FE536399214E0ABBB, 4B68384F6405D16776BA828BF06E59B671A7D5C007CF834179C421D08552662A ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
14:49:01.0521 0x0be8  DXGKrnl - ok
14:49:01.0543 0x0be8  [ 1FC75AE8E08FFC6FBCDB2329370A233B, 75D5318E35813A6B6A9A17734877E6FB7CE31B415E91914C92D86E3DA0A4FFB5 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
14:49:01.0548 0x0be8  E1G60 - ok
14:49:01.0583 0x0be8  [ BC17CF644AD174F7558D1DCB7D1D488E, 66DC5F0E4619F95674E553A09DA5558F1545B98F042D3D0298288D071F998B00 ] EapHost         C:\Windows\System32\eapsvc.dll
14:49:01.0589 0x0be8  EapHost - ok
14:49:01.0623 0x0be8  [ F33BFCBBBAACE7208DB433B6CCA98930, 46E994BE4A2EA4D324C8B78CF9276F4805EA47046CBC7AD37401AA77E13C75FB ] EFS             C:\Windows\System32\lsass.exe
14:49:01.0628 0x0be8  EFS - ok
14:49:01.0649 0x0be8  [ AECFDE05D120822452BA8F606841B3FE, DC89D894C9C25E164DD409C31937D6E85824F504D3F834BE8B9DAC61819BC844 ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
14:49:01.0653 0x0be8  EhStorClass - ok
14:49:01.0677 0x0be8  [ BFDF5BA2B770B358CA607109240A739D, 20007ED67456BF90F080B4FC4BBA699CB0F2F10216B63350C0B6F9F4D7C5D1CB ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
14:49:01.0683 0x0be8  EhStorTcgDrv - ok
14:49:01.0716 0x0be8  [ 093CEE3B45F0954DCE6CB891F6A920F7, 8C614CF476F871274AA06153224E8F7354BF5E23E6853358591BF35A381FB75B ] epmntdrv        C:\Windows\system32\epmntdrv.sys
14:49:01.0720 0x0be8  epmntdrv - ok
14:49:01.0729 0x0be8  [ 6E7FD164E20C50F5A2D49AD0218FF4AE, 0625C6875E703AC0059B5DE55AE6BF725D337C168C499F79D2E772EBAC107EA6 ] ErrDev          C:\Windows\System32\drivers\errdev.sys
14:49:01.0732 0x0be8  ErrDev - ok
14:49:01.0748 0x0be8  [ F1DE3EEF501DDA7DDF99F2EDF0C5540E, 8D604553A3F5DB03BFFD50473ECB6F05EBCFCC6B5E1F149322830DBD6C806866 ] EuGdiDrv        C:\Windows\system32\EuGdiDrv.sys
14:49:01.0752 0x0be8  EuGdiDrv - ok
14:49:01.0827 0x0be8  [ BC4E13AFEE0B35D87CE8F49EF5DF5634, EA6E7C135EE660070AD823F3D2BB940124FF7EDA599DAF7B7B86CCC58DC0BE5A ] EventSystem     C:\Windows\system32\es.dll
14:49:01.0840 0x0be8  EventSystem - ok
14:49:01.0903 0x0be8  [ 57C171EA22F0A7F068FCB0CAEDD1E8E7, 9AAF39AA22372FB8582C1422581C08E61444BF843E1CE2E199EB00FBEA6F9C06 ] ew_hwusbdev     C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
14:49:01.0907 0x0be8  ew_hwusbdev - ok
14:49:01.0929 0x0be8  [ 61A973F60E94A551BA7B15F3460444FB, FC2FB69978D99D75673AFE9F08176F3139DCBAEDE4D339BD09DA29CD3EC01005 ] ew_usbenumfilter C:\Windows\System32\drivers\ew_usbenumfilter.sys
14:49:01.0931 0x0be8  ew_usbenumfilter - ok
14:49:01.0963 0x0be8  [ 630E4FAFAE692F2D2D3835A4F37A583C, 282C2051F4BDA060958529E4A1F799DB91CA0855B804FF2F6E19EFF913533FE1 ] exfat           C:\Windows\system32\drivers\exfat.sys
14:49:01.0969 0x0be8  exfat - ok
14:49:01.0996 0x0be8  [ 2B731E0CF73B392B1923078F464D96DB, 741AE561704A0EF464EB6184C3353188AD6150A5B10130DF0E96D31CE821AD0C ] fastfat         C:\Windows\system32\drivers\fastfat.sys
14:49:02.0003 0x0be8  fastfat - ok
14:49:02.0012 0x0be8  [ F2D60D87B15FF8ABBDA27371EBBEFE0B, EC2B48A3E259449E7C388C31BEF8ECF8B3CA9CB851CBE90E97673CE093CB4863 ] fdc             C:\Windows\System32\drivers\fdc.sys
14:49:02.0015 0x0be8  fdc - ok
14:49:02.0051 0x0be8  [ D6AEDD0E959AC11665BEABA0EC470A2B, 731295F996D1AD143FF788E3041B0D8E21C5F6C3ACDAE6662A1598E86545C84B ] fdPHost         C:\Windows\system32\fdPHost.dll
14:49:02.0056 0x0be8  fdPHost - ok
14:49:02.0073 0x0be8  [ A04078C96EDF2D475B76B23D35967344, BB37D73D2899EF60080B5CBCA6FFB14E82933C717F9316025757EB17A0A64E00 ] FDResPub        C:\Windows\system32\fdrespub.dll
14:49:02.0078 0x0be8  FDResPub - ok
14:49:02.0119 0x0be8  [ 472A9FFB696FD557828DEBD606FBD819, 5F8C8C5E5DF762A5E9CD4D82933F5BD881C6768194125A53FFBF81F8E8E5AC29 ] fhsvc           C:\Windows\system32\fhsvc.dll
14:49:02.0127 0x0be8  fhsvc - ok
14:49:02.0147 0x0be8  [ 878BE2CD1B68000D4BEEE293267B19CB, 136480B18E145E681C756792B57163349D49521A6DDEA78745E896F1EAB24B17 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
14:49:02.0150 0x0be8  FileInfo - ok
14:49:02.0173 0x0be8  [ 5C427FD4AFAEAC08882A70EDA5013AF8, 74FDB9218D18154D6C541A835A54F17A88C6BE4EFA0A0C94BD642A752A500B0A ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
14:49:02.0176 0x0be8  Filetrace - ok
14:49:02.0185 0x0be8  [ BB2091E613F6F06F24FF9507E0FAA20B, EFACAE4F4E586120C30C48EA503EC679E37D3BDE9052FE7392D6C81E8AE5010C ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
14:49:02.0187 0x0be8  flpydisk - ok
14:49:02.0248 0x0be8  [ 0E647295EA5573F06DDD42F0FDFF254A, 5051F269A431ED83B8DB70E4945C1CDC4D74481AFA71E30D389B47E1093D306F ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
14:49:02.0258 0x0be8  FltMgr - ok
14:49:02.0328 0x0be8  [ ED4BA3B6CD98646F392858C8110307FF, 853BD974F62DD580AB7172F99B81EBA4BFFC39C294F927DABF4BF4118F3736EB ] FontCache       C:\Windows\system32\FntCache.dll
14:49:02.0359 0x0be8  FontCache - ok
14:49:02.0509 0x0be8  [ 7B47332931E0B083D09F1E7FBDD3F147, D7812D0109291BCB5268913498E66F817009E8262050F546AD16B5FAC47F8CCA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:49:02.0513 0x0be8  FontCache3.0.0.0 - ok
14:49:02.0540 0x0be8  [ 73F944AA04157781172CAD535AB6E172, 6C2FB6C0D4A10924A845A1CF18A98206EEAAB8243A0B36AEEC78B047BFFCDDAF ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
14:49:02.0543 0x0be8  FsDepends - ok
14:49:02.0588 0x0be8  [ 6496F5E84CBC8C6D697939D6518D9B7A, 1E518FC7B478356E997E86FDD06A01A6833407C25F67A85CC91A49EC6F2EAEB1 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
14:49:02.0591 0x0be8  Fs_Rec - ok
14:49:02.0637 0x0be8  [ A58318CA9F98AAB207D4C84868490D1D, E57DEF96B69A7ED25EC37DE41BF5F1F3A57A5B2729BC615E9785F0EDF5E75346 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
14:49:02.0853 0x0be8  fvevol - ok
14:49:02.0899 0x0be8  [ B3CDDF19F6201210B8785FFD642A1632, 35A664BD1C51F9F448CADA2B82276F378BA65188D175C00515EBBD06E91641AC ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
14:49:02.0902 0x0be8  FxPPM - ok
14:49:02.0923 0x0be8  [ 2DC88A077B783AFD416CDEE7BDE63868, C016325071D88371753C4049749C26C8D58FE8D787533B3289DB1D523E6F076B ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
14:49:02.0927 0x0be8  gagp30kx - ok
14:49:02.0968 0x0be8  [ 2156802A56276A97FB6892412A0B899D, F97F253D7EE992A427D2A4F12601893FCEA93975547A7CE5D8C2DF25ABD23A97 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
14:49:02.0971 0x0be8  gencounter - ok
14:49:02.0990 0x0be8  [ 73EFE8A2747BB87F66B5646AA2262AE4, 368AAFA38F214D474206B914A4258B3679CB0B1C9080D32DFB3BF890BD5611A8 ] GPIO            C:\Windows\System32\drivers\iaiogpio.sys
14:49:02.0993 0x0be8  GPIO - ok
14:49:03.0044 0x0be8  [ FB1DB2A2663D59FEB04F4311861C7022, B9571C1B80ED150DC41E200ED20B8C289E2011548A12ECF4DB55234075B60E02 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
14:49:03.0050 0x0be8  GPIOClx0101 - ok
14:49:03.0141 0x0be8  [ 5BC3330FF8373962CE005942DDC2AEC5, 22977DD6D32AAB84562CFE4DCADDFFCB2CDF86E3EF667DE9F8960E554C599154 ] gpsvc           C:\Windows\System32\gpsvc.dll
14:49:03.0175 0x0be8  gpsvc - ok
14:49:03.0246 0x0be8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
14:49:03.0250 0x0be8  gupdate - ok
14:49:03.0258 0x0be8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
14:49:03.0262 0x0be8  gupdatem - ok
14:49:03.0296 0x0be8  [ 449688B15D29787C8A440D6ECA9925B5, 7E1C88106F3F39394843B8B2B5921A8F5B215AC1538F46F151B9F4FAAC7AE1DE ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:49:03.0306 0x0be8  HdAudAddService - ok
14:49:03.0353 0x0be8  [ 7E0EDA9EE53E344D1604EB2A7E8DED47, 9335E54D0D464216AE2C15118B0C2E1D671AD9FD09ED3166B6961280EDF8C8F2 ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
14:49:03.0371 0x0be8  HDAudBus - ok
14:49:03.0405 0x0be8  [ 5C5BF3E47BB6B07FAD8EA4565159659E, E8C52CC743408093B118D3E1E8C0E7E1E7EED7234422341C8B666C03A9FA0CC4 ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
14:49:03.0408 0x0be8  HidBatt - ok
14:49:03.0422 0x0be8  [ 4A59C5DAF29CC28DA966C57DB863655E, 6A164BEB000AF2A8FBCBF8A15C8BF9D999CDCF90EAFDD748D4F7FAA27E67CD12 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
14:49:03.0426 0x0be8  HidBth - ok
14:49:03.0435 0x0be8  [ 4AC33C5E591F9845E34DA8681E558A58, 4FC04C7EF2736D63CF77756566C5710764671EC54085FC035B4752377CABDDE7 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
14:49:03.0439 0x0be8  hidi2c - ok
14:49:03.0448 0x0be8  [ 2E6CA4DE2AEDF7ABDFEA906F11EDC8B1, 69FD8513F4E0C1E8C78D01D007D90DC33D3C4DEAED05FEECD634A15334202D62 ] HidIr           C:\Windows\System32\drivers\hidir.sys
14:49:03.0451 0x0be8  HidIr - ok
14:49:03.0488 0x0be8  [ 06692FEB8EBC5AD53AC6C610BC72F1C6, 4C2754E0F3FBCF147D7D7F9D1F433C85B6AB59922F9DA754B31CB57A90CDC175 ] hidserv         C:\Windows\system32\hidserv.dll
14:49:03.0492 0x0be8  hidserv - ok
14:49:03.0544 0x0be8  [ 71E4AD300E86C0754D6070FB92475CF7, 110AF2389CFC8AB481B6A8706F436BB600D10063669C2A6ABB5A63FB9E3A3495 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
14:49:03.0547 0x0be8  HidUsb - ok
14:49:03.0599 0x0be8  [ 622B08BD041DE4B0B8F34D4F0F5A018C, 4EA4DB15CE5DD44FF30B5AE0D7EBEDAF3DDE8761D7633FED52CE7D022E0980E6 ] hkmsvc          C:\Windows\system32\kmsvc.dll
14:49:03.0606 0x0be8  hkmsvc - ok
14:49:03.0634 0x0be8  [ D331E843F66501F57978F85FE695CEEE, CB2B23E3191DDE105A47D7C7361880DE968D79D55A16B371DA16456F047B7FE2 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:49:03.0643 0x0be8  HomeGroupListener - ok
14:49:03.0686 0x0be8  [ 4FC945E08AF63491AFCC902C99046735, 3F62C132B8C8A35C09D1ED7C602658EC901ED6284550B0A8E9E6FE0AACB7A511 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:49:03.0700 0x0be8  HomeGroupProvider - ok
14:49:03.0732 0x0be8  [ BA073FD7F6C94FF18F97DF8F0297ED62, 132611011C0AEB1E529453A4FA983587D7F1CE286C04AC0B952F4D964B72BEC1 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
14:49:03.0736 0x0be8  HpSAMD - ok
14:49:03.0805 0x0be8  [ 4196BBF0725EF4E4F220D5E1539EF553, EE78E340C8DE4256567A5D0589CE5B3C182EE80A7D6F663CB971651391BA3F92 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
14:49:03.0824 0x0be8  HTTP - ok
14:49:03.0868 0x0be8  [ 8A670E1FC2B308C6023E009728CE1B16, DCE9A99F2B9B2A54B75A3C09CBD0D04141D53F82157493E8E3B9F7E63E0C8122 ] huawei_cdcacm   C:\Windows\system32\DRIVERS\ew_jucdcacm.sys
14:49:03.0872 0x0be8  huawei_cdcacm - ok
14:49:03.0894 0x0be8  [ 54407CB2EFDA98053DEC65FC5760105F, D907CA6949C545BFC30C0710B0A829A5C64B87C544191727371D7D0AEA8EC1E8 ] huawei_cdcecm   C:\Windows\system32\DRIVERS\ew_jucdcecm.sys
14:49:03.0897 0x0be8  huawei_cdcecm - ok
14:49:03.0923 0x0be8  [ 4F3C8140A1725FBAAA786A351AF13437, 98E03B18CD1D01E5FF12C54B80655CFAE98E19A84F862DF14D6E6A130469FF77 ] huawei_enumerator C:\Windows\System32\drivers\ew_jubusenum.sys
14:49:03.0927 0x0be8  huawei_enumerator - ok
14:49:03.0961 0x0be8  [ E43FBF827B32F11BF4E33FE67C52FE0C, 7FF0D9CFF65F97D29B72DCA2C92E58833A23234096BB78E24CE9BC041D322817 ] huawei_ext_ctrl C:\Windows\System32\drivers\ew_juextctrl.sys
14:49:03.0964 0x0be8  huawei_ext_ctrl - ok
14:49:04.0005 0x0be8  [ B05D90B342C706DF9154DE365D765717, CCF52EA51EAAE11820962EC4350164ABBFF6BE7B0438FD93283BBC56A62797CA ] huawei_wwanecm  C:\Windows\system32\DRIVERS\ew_juwwanecm.sys
14:49:04.0017 0x0be8  huawei_wwanecm - ok
14:49:04.0053 0x0be8  [ 8ABB5F714050209E5C7537DE18F7FB7B, 8AAA8F5BDF167F62958F98E0750940AFFD9D01D1879BF8E17DE034E2991FDA8C ] hwdatacard      C:\Windows\system32\DRIVERS\ewusbmdm.sys
14:49:04.0060 0x0be8  hwdatacard - ok
14:49:04.0142 0x0be8  [ 5EF3427AE503B5C03A48F7C9FF458B69, C75D6E860AA9A1EA0351388B137FE39CE47E96471841BDCA96FF63C87CE99132 ] HWDeviceService.exe C:\ProgramData\DatacardService\HWDeviceService.exe
14:49:04.0151 0x0be8  HWDeviceService.exe - ok
14:49:04.0171 0x0be8  [ FAEB94F3ACCDFDA16E5FA585369FDEC4, 12A41592EEC9CEB5C8C10AAF2C09E7262E2AC28B615D181F9BCCA0DEC12648F3 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
14:49:04.0173 0x0be8  hwpolicy - ok
14:49:04.0206 0x0be8  [ 2DDC60AD29D845A745C9ECAAE35FC477, 1A4670D10744B36FFCDC5068C824315200F9D9BD24E5F2A111B2019C13CD59BE ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
14:49:04.0208 0x0be8  hyperkbd - ok
14:49:04.0217 0x0be8  [ D360FFBA289307976BE1BBE7BE792F58, 6A787C493D226D6AB5A933B3EAF9D6EE4B18BDB2D07D1CAE59CE1EFA729B1B2D ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
14:49:04.0220 0x0be8  HyperVideo - ok
14:49:04.0243 0x0be8  [ 5043E69532392A43549E5D41E22638AA, DC5186117FC60036A70CD6065810F090BD3EFFA24B59C760ECB6B7FB9C43F174 ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
14:49:04.0247 0x0be8  i8042prt - ok
14:49:04.0291 0x0be8  [ 646D3B416BC970C3CD2F53844FD156A5, 045CBA642382B33DB1E222302B14DD46838895A73CE50426FD180B4CA918253A ] iaioi2c         C:\Windows\System32\drivers\iaioi2c.sys
14:49:04.0295 0x0be8  iaioi2c - ok
14:49:04.0337 0x0be8  [ 387637FC01BA30E95A2330DA3FFD0919, 836A100F766044B431D2263A57CB3BB3B43AA0C3E58220F31A2EF89E1BB8CB55 ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
14:49:04.0351 0x0be8  iaStorAV - ok
14:49:04.0390 0x0be8  [ D2E7F3611BB8F1C2661B8F7858D33A35, EFA7B2E8433AB6DE739EB12792154B64DF29B61C8BB2F467C95C393A40D84E1A ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
14:49:04.0399 0x0be8  iaStorV - ok
14:49:04.0452 0x0be8  [ 075C68F408D8D810E85122E334E6DBBB, B351BFAB1EEE7CA9813419D69544E0A04EC375D94246832355ACE8314C2F6465 ] IDMWFP          C:\Windows\system32\DRIVERS\idmwfp.sys
14:49:04.0457 0x0be8  IDMWFP - ok
14:49:04.0466 0x0be8  IEEtwCollectorService - ok
14:49:04.0859 0x0be8  [ D771E3D5E0ECE091FF9244BDF1303D6F, 4404A7857AD53234EEB19E7B3516226ADF342BF722C8D81B232D2C909F85DAC5 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
14:49:05.0090 0x0be8  igfx - ok
14:49:05.0176 0x0be8  [ 36A36F1059D559F9D64660F6845FDD63, 529FD025F28F2C56041FDD77A5DEC6382B1F798B0EE92C46A7AB14CE04C51428 ] IKEEXT          C:\Windows\System32\ikeext.dll
14:49:05.0201 0x0be8  IKEEXT - ok
14:49:05.0226 0x0be8  [ B0F92A795C7E48E2C5F908265C655458, 6F6606C3F36FD3E603CF9FCFDD1213A108E4B1CF9936E4FE851E6FD5FEA5FEEC ] intelide        C:\Windows\system32\drivers\intelide.sys
14:49:05.0228 0x0be8  intelide - ok
14:49:05.0249 0x0be8  [ 1B96BF4186366306D917FBD187218F29, 8B1E85412D52B0EE7593D7BA08153DABF0852448A4E8DC01F2B24EE3289912AA ] intelpep        C:\Windows\system32\drivers\intelpep.sys
14:49:05.0253 0x0be8  intelpep - ok
14:49:05.0293 0x0be8  [ 6DD61D8AFB56C9F853210C49FD4D8C16, DFE299AB383A81BDE531B93645F59076BC2D7E37038DA20649CA08230C043C55 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
14:49:05.0297 0x0be8  intelppm - ok
14:49:05.0378 0x0be8  [ 837B6D439C16DB39C30FB8EEBC806A57, 0F3C059965263738AB63FD1CD864FA4D272576FF7A0E58C40F287C2058E3D6B4 ] Internet Manager. RunOuc C:\Program Files\T-Mobile\InternetManager_H\UpdateDog\ouc.exe
14:49:05.0385 0x0be8  Internet Manager. RunOuc - ok
14:49:05.0422 0x0be8  [ 23B5C10891B64FB4261F9FCADF24FE28, DCE73864B0BE98DE96C0EC6C88BA62E1BC2878837D6442BCC2220A956E350D0E ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:49:05.0425 0x0be8  IpFilterDriver - ok
14:49:05.0490 0x0be8  [ 13391892FADE9B389CAA3381551FA2F7, 83F114D8344F71433F04B1524000AC1189D8B3A18751225A38361DFFDE273CCF ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
14:49:05.0516 0x0be8  iphlpsvc - ok
14:49:05.0563 0x0be8  [ 3DC0D272D298B3AC09794E89FFB78BCD, 3D1096655EDCD4B428EF291EF26B9F2F382DA5D812374AC5423EAEFA6984D801 ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
14:49:05.0567 0x0be8  IPMIDRV - ok
14:49:05.0577 0x0be8  [ FA6C94C754A566EA8A61D658932F32DE, AEA11A21F850228B23714CBF981C0D038FF5CC22566594E6995BA0994343A256 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
14:49:05.0583 0x0be8  IPNAT - ok
14:49:05.0609 0x0be8  [ ADF675CF9EB57229E9D13BC2F5D4719D, 1CAE1C71951795D1E650C81D5271EF9DF3482E531AAF0E6E08BE9789DE8C1E5B ] IRENUM          C:\Windows\system32\drivers\irenum.sys
14:49:05.0611 0x0be8  IRENUM - ok
14:49:05.0630 0x0be8  [ 2A0D17D431F13E87ADCB28DEEC84F252, 87C82734B58896BB71EE0707B70C4618D0E4895BE1409E9B55668F11E1715F30 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
14:49:05.0633 0x0be8  isapnp - ok
14:49:05.0658 0x0be8  [ 74F452379260EA77CC59905AEDBD5AE7, BCD59690F69FCADC95C7499960F723D584E6E701CB722BA53BE738402BB080E9 ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
14:49:05.0667 0x0be8  iScsiPrt - ok
14:49:05.0692 0x0be8  [ 4504C8B75A6B2E5BE800DE03B26891D3, 4DC5DA3A2CBBB43B0E9CACE094D7EADE458347D134012F9693CAC2014EFE4145 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
14:49:05.0695 0x0be8  kbdclass - ok
14:49:05.0704 0x0be8  [ 8BAF1904393EACA7178A5EF962256D3F, 7CC026151E96D239C68758A016C206278ED262594C87EB7BFCD73A73631DBBC8 ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
14:49:05.0708 0x0be8  kbdhid - ok
14:49:05.0716 0x0be8  [ 3FF50BD6E481C6690A16D0542A2D818F, C7A87459C770380DFC5CF275382B8AC9F81C65A58131A4FDB7D2C251481BA963 ] kbldfltr        C:\Windows\system32\drivers\kbldfltr.sys
14:49:05.0719 0x0be8  kbldfltr - ok
14:49:05.0741 0x0be8  [ 7F896C99637CB0E48262F307FC0F3557, 51B1A2038443F581EAE8057FF487398CBAA4753E7AA854B191E47502F9D7D69B ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
14:49:05.0743 0x0be8  kdnic - ok
14:49:05.0760 0x0be8  [ F33BFCBBBAACE7208DB433B6CCA98930, 46E994BE4A2EA4D324C8B78CF9276F4805EA47046CBC7AD37401AA77E13C75FB ] KeyIso          C:\Windows\system32\lsass.exe
14:49:05.0766 0x0be8  KeyIso - ok
14:49:05.0792 0x0be8  [ 21719E6D6B4EDEB062F0A9D8F7720FEF, 6BEF2890270D4127EAEA6C627B663495A7576A781EDB4E4623E9C68D2DE3EE22 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
14:49:05.0796 0x0be8  KSecDD - ok
14:49:05.0818 0x0be8  [ 09C2C25E6199901B93716FE4A82E682C, DC242E688EC66F9667320A1FA6CD73CF6FFE635E3459E1C851DAE1B2D8B07E9A ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
14:49:05.0824 0x0be8  KSecPkg - ok
14:49:05.0874 0x0be8  [ EC89E8C1334D257C27197A52099FA960, 5243DD460A78CBCCF6296C13944ADC0F7FA7BD152BCE9633EB8CA911B055C3F0 ] KtmRm           C:\Windows\system32\msdtckrm.dll
14:49:05.0887 0x0be8  KtmRm - ok
14:49:05.0922 0x0be8  [ 154876704DC6FB548E441403CFC0FC31, 7F30BB9C4A40759F6CF7905BF84073D3147A97C457862614E3B7396761A39EC2 ] LanmanServer    C:\Windows\system32\srvsvc.dll
14:49:05.0935 0x0be8  LanmanServer - ok
14:49:05.0976 0x0be8  [ B230EE02279BBD757637B3CAE1CF660B, D74B85548818E0C9DAE10076AB00198AAD3838BB3A8C0212762716E5EBC3A3C8 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:49:06.0006 0x0be8  LanmanWorkstation - ok
14:49:06.0051 0x0be8  [ A54EB398BC2D792A0C603A97F7975FD8, 5216624129595ADBA24AA07F68350045D4D59B5F8A6FE5FD78FA3BD72646B83B ] lfsvc           C:\Windows\System32\GeofenceMonitorService.dll
14:49:06.0067 0x0be8  lfsvc - ok
14:49:06.0096 0x0be8  [ 369ED2626209D245BA1CEBB626F9A376, C28A0B4998DF1027AB3C234742AD51E140889CC065CF2F073665297B61A31F6F ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
14:49:06.0099 0x0be8  lltdio - ok
14:49:06.0158 0x0be8  [ E7857CCA67A54E265533EF68C7B90A0C, 3CC312DAFD7C539467D5833002D448D62C8B3A2F2894523CBA18C49D2129F609 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
14:49:06.0202 0x0be8  lltdsvc - ok
14:49:06.0231 0x0be8  [ A44270027BA1C8983CCC414183AD5726, 26F0881DF03F7C521A7CA9FE91432B40313B1ED5A9F2779F4CAA3CF6625219B7 ] lmhosts         C:\Windows\System32\lmhsvc.dll
14:49:06.0290 0x0be8  lmhosts - ok
14:49:06.0328 0x0be8  [ 876BA8550E9F1F4EF8A7D056E66678F6, 55937F75D1332923FD348B9931BC28E379DEBC13841E0EE4D1330D3D4E7707DF ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
14:49:06.0332 0x0be8  LSI_SAS - ok
14:49:06.0350 0x0be8  [ 6FB4E344E66F7243D23F0F52A9610790, 7AAEE5EB222539AD767B0B01FD1F821EE35263699BC4D123E95906C4AE62D3F6 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
14:49:06.0353 0x0be8  LSI_SAS2 - ok
14:49:06.0364 0x0be8  [ 2E61D97CA19BBECCCF7CDE9C0C7392B5, 237A5739DE9A643CBEE7432522E43DAAB289EAA322FB2E67A66E24D2A0E859E1 ] LSI_SAS3        C:\Windows\system32\drivers\lsi_sas3.sys
14:49:06.0367 0x0be8  LSI_SAS3 - ok
14:49:06.0381 0x0be8  [ 3986C8FAA6E397725024E7189BAC69CE, FD934C8D5E51153D9E69764B628E1A983D96CF223115B4E549FA67BA819A27E8 ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
14:49:06.0384 0x0be8  LSI_SSS - ok
14:49:06.0419 0x0be8  [ 1D5999E703FAA551DFF0E4E7F6AA2150, D73332190244FE2943CE93C298EDBB09290AFDD1B12F286F94E4B67323F1A1F9 ] LSM             C:\Windows\System32\lsm.dll
14:49:06.0439 0x0be8  LSM - ok
14:49:06.0460 0x0be8  [ A1E31C77F407F629F430A070B8747A44, 80E50D95CBDB85DBA2462BF133140AFEAB2D047F70168E87CE95E8D90A83C99E ] luafv           C:\Windows\system32\drivers\luafv.sys
14:49:06.0465 0x0be8  luafv - ok
14:49:06.0497 0x0be8  [ 8683C1B450F4B3872839308D836E0F92, C6CEEEA780D2191AEAC2537FD96324FF5501D92CE46313FB95ABB51765D919ED ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
14:49:06.0499 0x0be8  MBAMProtector - ok
14:49:06.0681 0x0be8  [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler   C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
14:49:06.0728 0x0be8  MBAMScheduler - ok
14:49:06.0800 0x0be8  [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService     C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
14:49:06.0822 0x0be8  MBAMService - ok
14:49:06.0861 0x0be8  [ 12E71DA845D76665B56753AD149E32B3, 0E403710CCBACD5AB85FD4C32AAB6CB2C27BC1F043E8008EE49EE96ECA944146 ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
14:49:06.0866 0x0be8  MBAMSwissArmy - ok
14:49:06.0885 0x0be8  [ A77C7E0C8C879AF2DDBEBCF8332207DF, EB5C9AE382898CACAE36FE46101A232B95A72A66289FF8A204C0124936558F44 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
14:49:06.0888 0x0be8  MBAMWebAccessControl - ok
14:49:06.0914 0x0be8  [ EE038F0B57FD34B872AE2ADD7679C1E2, FC6C352A4EFE659961513B131B68871AFFAD8174672C3D5BF955D83BA1F9CEA0 ] megasas         C:\Windows\system32\drivers\megasas.sys
14:49:06.0917 0x0be8  megasas - ok
14:49:06.0951 0x0be8  [ 2E3BE5DA8078B170DA14CE3181C5D3AC, F4E8251C554A47682F00FCE7A0F3B0D0FD0F3D74970BA501F63860A7C824407E ] megasr          C:\Windows\system32\drivers\megasr.sys
14:49:06.0964 0x0be8  megasr - ok
14:49:07.0015 0x0be8  Microsoft SharePoint Workspace Audit Service - ok
14:49:07.0046 0x0be8  [ 01946468EA6196F9C54A245354C1240A, 96BE9EF1D791417BFBD9AC9F24D38F128DEE409C95F25138B8CDAE3F86E17D4A ] MMCSS           C:\Windows\system32\mmcss.dll
14:49:07.0053 0x0be8  MMCSS - ok
14:49:07.0069 0x0be8  [ FFE175CCDA4BC0278E88149F183B6C5E, B84F9E1E20B0C0BF64BC8DABC238776A307286ECC5AEFEDD74F6C187F5FD0671 ] Modem           C:\Windows\system32\drivers\modem.sys
14:49:07.0071 0x0be8  Modem - ok
14:49:07.0091 0x0be8  [ 523C526BBB796FC2087C0C8AC2B669BD, 79FAC4B32BD35E140B7FAFC5A58FA039B1FB16EF68A4DCEB25B2B153B1B0FE0D ] monitor         C:\Windows\System32\drivers\monitor.sys
14:49:07.0094 0x0be8  monitor - ok
14:49:07.0116 0x0be8  [ 1B621475FA22B947B60EE004A8EE11F5, EC4BBD6C586686BD3E05F861FF7D9E82E7C787DDBC9BC3CDEEE613BFCAFC34D3 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
14:49:07.0119 0x0be8  mouclass - ok
14:49:07.0141 0x0be8  [ 64DAA33D69C4442AD4CC52D478895355, 686CD366539D41331ACC41A66B165EF7B659CD8FC0048596E6F38D1FBF3120C8 ] mouhid          C:\Windows\System32\drivers\mouhid.sys
14:49:07.0143 0x0be8  mouhid - ok
14:49:07.0157 0x0be8  [ 8CF63AB55709A9E415190219C226A855, E061AE50F74F46D9D58E406254515B104B32D7B7DE64C1045E9901942A953FCF ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
14:49:07.0160 0x0be8  mountmgr - ok
14:49:07.0201 0x0be8  [ 4E9D8041D352A33332FD6F59A3A78B03, D4E6229B07EF9866993EEE4F6223DC7F1FF1108273FE14A3DC74E65C181DE56A ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
14:49:07.0205 0x0be8  MozillaMaintenance - ok
14:49:07.0217 0x0be8  [ 4B300E2D06B03410064CF443E1CE6B25, 9B75E288392DBB24C84C573823AB0C94F2CFA6AA8AF3F6D8E3ED93DA57F5ABB8 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
14:49:07.0220 0x0be8  mpsdrv - ok
14:49:07.0336 0x0be8  [ C67F755D89AE52C7F2249ACE98416265, EA115A4165E3657452CDF69E0C5704BB685A8E0FD451F37EA1FC3D5A8BCE5A9E ] MpsSvc          C:\Windows\system32\mpssvc.dll
14:49:07.0360 0x0be8  MpsSvc - ok
14:49:07.0414 0x0be8  [ 53E370C8ED69C68DFD26BAE4588095F3, C72A759D0C31CF2E6C153D8D008DE03575C5D6A74067C381E580B09850890EBB ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
14:49:07.0419 0x0be8  MRxDAV - ok
14:49:07.0483 0x0be8  [ E11D4B798CF0FF9F739CD9BDC552FF08, 0612806A35E5C054622DA20F5BEB2D4555B889391BDCF66A94D5A7B6C6ADFC3D ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
14:49:07.0492 0x0be8  mrxsmb - ok
14:49:07.0519 0x0be8  [ F37F40422662235AB5768C303E829602, B1350AE9827FCF48FDC7BCA83CE5A7E1C54550449F6F56AC39E1E1ECB9EA56DD ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:49:07.0526 0x0be8  mrxsmb10 - ok
14:49:07.0577 0x0be8  [ F35CF1EC831812B3C6B05587734DE8A3, 323B387E9A80CB36B14E390526560538847A8445657A88564E56014DADB0887A ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:49:07.0583 0x0be8  mrxsmb20 - ok
14:49:07.0608 0x0be8  [ 1188DC48CB36F31A3624BB9504F77AEE, CE01C4C1DF0F49E89D1C648C7B6D1116833DE31740F5D8BE088B3EA3EA163DC2 ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
14:49:07.0612 0x0be8  MsBridge - ok
14:49:07.0649 0x0be8  [ 18919845004A5A05D69CF5EAE19D0E68, 809FC3AF3CCA004712CE3B841E08BD0D47E2A1C0B938AD68337B642D5D43B0C3 ] MSDTC           C:\Windows\System32\msdtc.exe
14:49:07.0658 0x0be8  MSDTC - ok
14:49:07.0690 0x0be8  [ D99C98D630C34A448A93DE552DC7DD68, B3A216B119737476182B3CD080B3466506D673ED2889C9F8C36F0E92A4657029 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
14:49:07.0692 0x0be8  Msfs - ok
14:49:07.0715 0x0be8  [ 22FFBD5F9BCE2E970C617B95103079DC, BD431517B572EC80127881124C697434B31F016BF897382F6D2C5D0FF904C1C6 ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
14:49:07.0718 0x0be8  msgpiowin32 - ok
14:49:07.0738 0x0be8  [ 30DA16E72C4CB4D5F06D35D0DFA16E2C, F8C4073C3AA001FD22087BEBD0CEBDFA8F0BD1965B8F3346BBAEC0E3208F927B ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
14:49:07.0740 0x0be8  mshidkmdf - ok
14:49:07.0749 0x0be8  [ 26B1961255650B59107FC4990B2CEF34, 273E5E0DD5708BE9E188934CF1A19E63946179280F9AC149376053AD863A8239 ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
14:49:07.0751 0x0be8  mshidumdf - ok
14:49:07.0792 0x0be8  [ BF7ABD4461576528028FB86633A7EA24, 3AF39AEA9FEAAE7D79A3691714AD700288411DC594F38A07756F149D6D7463BE ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
14:49:07.0794 0x0be8  msisadrv - ok
14:49:07.0844 0x0be8  [ A876A975BAF66A8D209240F43AC07A07, 11B26C8004B8F191F9AF7A25C90500DAE344392561DDA9C5516FC0EAB6DDEE26 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
14:49:07.0853 0x0be8  MSiSCSI - ok
14:49:07.0862 0x0be8  msiserver - ok
14:49:07.0904 0x0be8  [ 02238D563EDB7DFE17BF8AE12D9F3D30, 77BB0671B7B9150E15F7744B8F3D83375948694C1612198CB24D93842FE1A32B ] MsKeyboardFilter C:\Windows\System32\KeyboardFilterSvc.dll
14:49:07.0921 0x0be8  MsKeyboardFilter - ok
14:49:07.0939 0x0be8  [ 0B2A5AB2591D7F6E8E64A0516325F2AD, 083775925CA8B4677029B5FDF4F60F08E325CF05486FAE63D311B40C7EF3786F ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
14:49:07.0941 0x0be8  MSKSSRV - ok
14:49:07.0971 0x0be8  [ 2B1E1DA9C5FA25DB8DAC2F34BCF10196, AE346D5711E4EA9C6365D55411E907683147064B34192B88EEAA9E871DECE2B0 ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
14:49:07.0974 0x0be8  MsLldp - ok
14:49:07.0994 0x0be8  [ 86729EC40EB28DBBAB6A672B138B4DC5, 13F097572A8BE21EC9FA44C950F143BF0AFEEF09131DCD115B951AB5EF13BA13 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
14:49:07.0996 0x0be8  MSPCLOCK - ok
14:49:08.0024 0x0be8  [ 4E5FB5BD76165A81EE181A82EB665C8A, 16C50027D92F059C07CCB28FDE339C3E35DE9BF1752B0F16577845C38B77B776 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
14:49:08.0026 0x0be8  MSPQM - ok
14:49:08.0061 0x0be8  [ C90BB8C3DC3F50FBA1A668B844C84315, 4ABA28B0047B2038E881583DB0F1A6A78FAB8ACF3759ECCB7A835D7F8944CC83 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
14:49:08.0070 0x0be8  MsRPC - ok
14:49:08.0116 0x0be8  [ CF61A813430B7F12452BCED287135676, D5400E8C47D6441830EA48E153BDB2CC70672176B69E90D89EC3DD6D17BCFAFA ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
14:49:08.0119 0x0be8  mssmbios - ok
14:49:08.0138 0x0be8  [ C323F63D61AD8CEC79B3CF4B8463B208, FE1E91267B1050EDF05E89B33AFBEE2F6A5912251024A2130D756DE53C93BD81 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
14:49:08.0140 0x0be8  MSTEE - ok
14:49:08.0150 0x0be8  [ 06442D8CA4425EFF66F47D8F82493450, 82D3698938B2CA169C0564F90941423FC4F87261CCD1A214517DA95605671A32 ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
14:49:08.0153 0x0be8  MTConfig - ok
14:49:08.0179 0x0be8  [ 6CD6189DFA649EEBFCBE81CB30030355, 7F50DD0ACDFC2AFFF1FA8BA5065B7B232C491D7AE7E67AE833BB02105AB7AF77 ] Mup             C:\Windows\system32\Drivers\mup.sys
14:49:08.0184 0x0be8  Mup - ok
14:49:08.0211 0x0be8  [ 8122A46E9A5EBD2E001FF5FB34A12A47, 8CC747B11E77AB0F15A7F08D48160FB66AD26C81021D25A10335ECE967A847F4 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
14:49:08.0214 0x0be8  mvumis - ok
14:49:08.0267 0x0be8  [ E5B61DB218E01A850C7A92616E97F5EB, 26EA66D8EB058EB9CE8D2913D5A1397D26653E26AB0261119B802D8DFC11AE87 ] napagent        C:\Windows\system32\qagentRT.dll
14:49:08.0280 0x0be8  napagent - ok
14:49:08.0316 0x0be8  [ 11CC93A3FBCD7339EE316B3E7A870D77, E946781352C3F56BD9B086B11A439139554253060CAAF0E40488E149394F95F4 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
14:49:08.0328 0x0be8  NativeWifiP - ok
14:49:08.0489 0x0be8  [ 3BAE2BFCB6D69E19C8373F635DD544DC, A32DB5282ED5AFC1650883B1870E46FDC029EF9225075E6916D2E371F18D8B9E ] NBService       C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
14:49:08.0511 0x0be8  NBService - ok
14:49:08.0556 0x0be8  [ 54C905054922B43A91521D075E34024B, 4B2DF68DF11B26D2A224930CE2B8FAF40B19D960BCFDF5D523B52A82125B487A ] NcaSvc          C:\Windows\System32\ncasvc.dll
14:49:08.0566 0x0be8  NcaSvc - ok
14:49:08.0600 0x0be8  [ F81A77CF6B0C9513AC20A24DD2997E26, 756818D6DEB6B7D036C2BF6B442EC8C435F9FB3E384E109FCCD9740F7651B3AB ] NcbService      C:\Windows\System32\ncbservice.dll
14:49:08.0608 0x0be8  NcbService - ok
14:49:08.0635 0x0be8  [ 10A61CCF540D1E2260D3AE76377810F5, DFF0F1EAF03518220500C70BCC52286CA599EA2E00D3AB97D88D9BF15F1E26AD ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
14:49:08.0642 0x0be8  NcdAutoSetup - ok
14:49:08.0736 0x0be8  [ F0FB15EEEA93526ACE6D7CF042FC3144, 6BED6893097A1D85D3FFF7F08EFBA45077F34C6CAE2ABAF9EBCAB2C9F96E75CA ] NDIS            C:\Windows\system32\drivers\ndis.sys
14:49:08.0761 0x0be8  NDIS - ok
14:49:08.0799 0x0be8  [ 9FA562E35A0263FBD01D44559224D46B, 9C8CBDDFA09EA86B025BD7F04F63C5517296FF7EDAC9E87C096766054C448F1E ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
14:49:08.0801 0x0be8  NdisCap - ok
14:49:08.0866 0x0be8  [ 873FCE0E787BC74059941D597BE630E0, CDAA103A896219C75B502A67A25F2ABBB0BF5DF18D11CBF686A387D16EFBBB99 ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
14:49:08.0871 0x0be8  NdisImPlatform - ok
14:49:08.0908 0x0be8  [ BD856EB36898EFA1B11346996ECA764C, 52CF7CC4DEB3CC0F3B09E8A4D83E20538765C44DD04FE0746BD17B09C67AC78C ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
14:49:08.0911 0x0be8  NdisTapi - ok
14:49:08.0934 0x0be8  [ 1D34650E97E74DF51BD86E0A102DB241, B4B6A2C073348C3829E5CD0565A0B44CA6A0AD05E3744767FA8D89134ED8002E ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
14:49:08.0937 0x0be8  Ndisuio - ok
14:49:08.0959 0x0be8  [ 53D21FFC20728406A20BCCF145DC2AD4, 116B06A3827C6EB584C8DC13FE2554EFC1CE5A96BA298C4C7766B700E56C282F ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
14:49:08.0961 0x0be8  NdisVirtualBus - ok
14:49:09.0005 0x0be8  [ 11312D35028616E585DCF02AFAFA56DC, E7B0503FAA2B93F6751FD792D2F424B40E2F9A20D9E827253563B916A1CFAC06 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
14:49:09.0015 0x0be8  NdisWan - ok
14:49:09.0023 0x0be8  [ 11312D35028616E585DCF02AFAFA56DC, E7B0503FAA2B93F6751FD792D2F424B40E2F9A20D9E827253563B916A1CFAC06 ] NdisWanLegacy   C:\Windows\system32\DRIVERS\ndiswan.sys
14:49:09.0029 0x0be8  NdisWanLegacy - ok
14:49:09.0061 0x0be8  [ 9F76B41778F62A7E582ADA902E8D149E, 140A62ACA0B198A23A4236AE28CD4E32D5378F4D21CBE55FD05684EEE91C1B4E ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
14:49:09.0064 0x0be8  NDProxy - ok
14:49:09.0123 0x0be8  [ C6003C8BB723B4D7FCDFB4C419D676A1, 9D2639A104D962C899CC9EBB40BF8AA6FB9E440AD5DB6861C9723BDB4B9361FE ] Ndu             C:\Windows\system32\drivers\Ndu.sys
14:49:09.0127 0x0be8  Ndu - ok
14:49:09.0140 0x0be8  [ F0F2377D72E48EBCA9B9BE5F3DE3F355, 89C05AB573C0F97FD3F0C43024212A0A55BFA3698598DABFD33FC481D5D58E3C ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
14:49:09.0143 0x0be8  NetBIOS - ok
14:49:09.0175 0x0be8  [ BC242922B0D08F61CF7C87FD08FAFA8B, D9E96D9C01FD9FFF80C60E76950B31E5D010EDE1A6CF0E4B5A85BD5E7A5DB715 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
14:49:09.0182 0x0be8  NetBT - ok
14:49:09.0233 0x0be8  [ F33BFCBBBAACE7208DB433B6CCA98930, 46E994BE4A2EA4D324C8B78CF9276F4805EA47046CBC7AD37401AA77E13C75FB ] Netlogon        C:\Windows\system32\lsass.exe
14:49:09.0238 0x0be8  Netlogon - ok
14:49:09.0286 0x0be8  [ B587D8BBD8FB55FEA7C6CCE86D98DDA7, AC0EFCECF14B680A260D32BA13AA29E94663171E6EE2B9E1F3BD6BFD7997FE3D ] Netman          C:\Windows\System32\netman.dll
14:49:09.0296 0x0be8  Netman - ok
14:49:09.0341 0x0be8  [ 9C005769C00F380DBEB33C0164BBB7F8, C67498DBB6EB1B71CCA11E29D5CFDE77748201A3B3AB68770E43B82F221FCEC6 ] netprofm        C:\Windows\System32\netprofmsvc.dll
14:49:09.0357 0x0be8  netprofm - ok
14:49:09.0423 0x0be8  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:49:09.0428 0x0be8  NetTcpPortSharing - ok
14:49:09.0450 0x0be8  [ 6A90783186DA0F93D21C805F6FAFD9CE, EABCD828F1BB745E80AA6B8FDCD32BD644F63FDD724809D8B94CBB90EE16F48E ] netvsc          C:\Windows\system32\DRIVERS\netvsc63.sys
14:49:09.0453 0x0be8  netvsc - ok
14:49:09.0499 0x0be8  [ 8266EAB33CDDCFC4606B08AF2B5F4293, 433E4FE35EB787C5E6D9B24E4B52FC1BA54F18B1652BA79509FDBDFEF483D26B ] networx         C:\Windows\system32\drivers\networx.sys
14:49:09.0502 0x0be8  networx - ok
14:49:09.0540 0x0be8  [ 6DF13740F8E98AD840B13D056CA86511, 08C2491C82E1733C4317E565298BD8C19508F415A9B544044D57CC1C3E596590 ] NlaSvc          C:\Windows\System32\nlasvc.dll
14:49:09.0553 0x0be8  NlaSvc - ok
14:49:09.0683 0x0be8  [ 193FA51DDDD0BFFDED1C340F0434999A, C05CA0A8568E9CBDA15633ED420C29F52082114B2B9F24EB61369E42C480C080 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
14:49:09.0691 0x0be8  NMIndexingService - ok
14:49:09.0703 0x0be8  [ 6CB2336E1C247A8164ADFF8A0D2FBCA4, 2EEE5E0754E01615D56EA9FC3A76195B3A9B7E32536F67C9394B452FC64697CD ] Npfs            C:\Windows\system32\drivers\Npfs.sys
14:49:09.0706 0x0be8  Npfs - ok
14:49:09.0722 0x0be8  [ 1B134DECC25E59D0C8AD95B64D475297, 7656D18FF1BBC83900109039F78DBC156A8E651638DBE3C6A6189408A0DF4511 ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
14:49:09.0725 0x0be8  npsvctrig - ok
14:49:09.0742 0x0be8  [ 4763A0EC9B205B32E1194024E50F0C32, 10DCC2099B971661045F9D9224316E7D72D96E0DB642DC65FA8FA546CEE98FC8 ] nsi             C:\Windows\system32\nsisvc.dll
14:49:09.0748 0x0be8  nsi - ok
14:49:09.0774 0x0be8  [ 3D383D0C64FFC3D3DDE2ED4EF828CFAB, 3F24F3E1874C5B1A1426C85D531580A30073CFCFA180DAFAD655BC6BC58428A5 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
14:49:09.0776 0x0be8  nsiproxy - ok
14:49:09.0885 0x0be8  [ CE53EAE5F11E8546058AF20C39E5F259, 61BA526CF8E0C998384BD3A69C62E7D85838D26344B59D06BE6A0AFDB7532801 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
14:49:09.0929 0x0be8  Ntfs - ok
14:49:09.0957 0x0be8  [ C68CBBB69A8C611EFA668FA36DE542D9, 2026BA1505619F62DBD06B293DD061A53B824FFD962D18B89297353F48D88017 ] Null            C:\Windows\system32\drivers\Null.sys
14:49:09.0959 0x0be8  Null - ok
14:49:09.0983 0x0be8  [ CE9BC6B9B2D5A9782B20B8EF1D48FC6E, D91145F57A4E2A6F03523C215B211BB5B431D29D3B8E0D15685967A01EC33D95 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
14:49:09.0988 0x0be8  nvraid - ok
14:49:10.0013 0x0be8  [ 8BC42FC48C9DB301025D7A5C6B20ECD9, 97A79CB628F1F806E7874CEAA3B9232DC56C2171AD1A50C07FE8246E3799C013 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
14:49:10.0019 0x0be8  nvstor - ok
14:49:10.0045 0x0be8  [ 5FC39F8B065128F2A59F92EE9AE3F286, 0BDA69197BAD4151DF895E3869E310D1E1C513332C0BADDF99D4C40E02232F46 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
14:49:10.0050 0x0be8  nv_agp - ok
14:49:10.0094 0x0be8  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:49:10.0118 0x0be8  ose - ok
14:49:10.0416 0x0be8  [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:49:10.0536 0x0be8  osppsvc - ok
14:49:10.0597 0x0be8  [ 51B0BA395EE58B2088F03162B3D3208C, 1F6676D168D18727061B756C333C2BA0F0489F5CCA3942984885E70FEE209599 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
14:49:10.0610 0x0be8  p2pimsvc - ok
14:49:10.0643 0x0be8  [ 2F3FD70DBD4CA80C20E0354E1B71FCF2, 66B31A2FC594C9B61806A550E5D28AD9EEAE220D6FBB684A64AAEF9468BBE403 ] p2psvc          C:\Windows\system32\p2psvc.dll
14:49:10.0658 0x0be8  p2psvc - ok
14:49:10.0702 0x0be8  [ 4F30970F15ADCC382544B31D5D7E368E, F8A66D12796887A60015466A6EC1932EE9F63C5C7F83E1F0E65D338D23F89602 ] Parport         C:\Windows\System32\drivers\parport.sys
14:49:10.0706 0x0be8  Parport - ok
14:49:10.0722 0x0be8  [ C503DA12698E7F775F8252F7A6FEA47F, F85664D23549B6485A6CDEFDC9362A13A688EBB8998F7A1A4AEE6E95C0EB3229 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
14:49:10.0726 0x0be8  partmgr - ok
14:49:10.0743 0x0be8  [ 60450D9CA16603770DFCA15E68D8EAD3, 37DAC10DC550D0A1A2F44A95E9C4E0EDE69E29F6162C4C17BD356E6FAF10D9F6 ] Parvdm          C:\Windows\System32\drivers\parvdm.sys
14:49:10.0746 0x0be8  Parvdm - ok
14:49:10.0784 0x0be8  [ 81F10577DBE53F1F6990280D1926DAC9, 9FC674CADAC6DCD40F8AD9891199B8ADF7873667377BA12F67EB9EF2156A5561 ] PcaSvc          C:\Windows\System32\pcasvc.dll
14:49:10.0799 0x0be8  PcaSvc - ok
14:49:10.0848 0x0be8  [ 0A2BBE5E87374A32E4B1A5EEE582AE6C, 8A2689E73ECAE8A135207EF0EA305A7996D45D4D0DBE8A13D5F6405B0440675E ] pci             C:\Windows\system32\drivers\pci.sys
14:49:10.0856 0x0be8  pci - ok
14:49:10.0869 0x0be8  [ 05C7426981598F0E45824BC912D5177B, 46559C2A0EF523E89AAAB0670700263A2D5580D8A35BBA5404BB4E2BFBA29B4F ] pciide          C:\Windows\system32\drivers\pciide.sys
14:49:10.0872 0x0be8  pciide - ok
14:49:10.0892 0x0be8  [ F404AA7E499C83117C7442C2C2801C03, 4E30D0B41550FECECD7957822398E0E1897B5DB12A6799B7E1119CC7626E6959 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
14:49:10.0897 0x0be8  pcmcia - ok
14:49:10.0921 0x0be8  [ E0F759702BBA5095CB0AE570333B194B, BC8882F24038A83487C88569EFDD1407A55FA45778E4AF630167F4B2EB927DB5 ] pcw             C:\Windows\system32\drivers\pcw.sys
14:49:10.0925 0x0be8  pcw - ok
14:49:10.0947 0x0be8  [ ACDB8C7FDD48AA326B6D1D681275237F, FD1116B0AB07D4959FD241432BABC2DE068EA061F46D1646AB50DEC0677C0126 ] pdc             C:\Windows\system32\drivers\pdc.sys
14:49:10.0952 0x0be8  pdc - ok
14:49:11.0042 0x0be8  [ 1A9DFE5854BD66E28178431E9C96E77D, 8731CAB4C426FC641864A868AADC33EAED00E08A2E2F9B9F31484EE3852C1D6D ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
14:49:11.0060 0x0be8  PEAUTH - ok
14:49:11.0168 0x0be8  [ DCB79C8D79D46BF6E9B46ED7CE388D93, 52BFECDA9CB1043FB3E7E6565E3B675340D7B4F70EE2F40593947334C74581FC ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
14:49:11.0220 0x0be8  PeerDistSvc - ok
14:49:11.0327 0x0be8  [ 685A51594574DA70A4305C7ADE6F9649, FA3C9F383DC4A89473F7EA09C3FE71C13739291883D1EF5C9746808F903503FE ] pla             C:\Windows\system32\pla.dll
14:49:11.0372 0x0be8  pla - ok
14:49:11.0429 0x0be8  [ 875E4E0661F3A5994DF9E5E3A0A4F96B, 7198C02935B3714C455EE94305D2A21D900D72AC67049C11A1E842572AD6C5E1 ] PLFlash DeviceIoControl Service C:\Windows\system32\IoctlSvc.exe
14:49:11.0435 0x0be8  PLFlash DeviceIoControl Service - ok
14:49:11.0470 0x0be8  [ 7F4B79568DD6BEC3ECC80C2AE93DC749, E21DFE1B4D3B2BF3B4C65AB5D2A875453EED66AD9958CB3FD4840EA057756474 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
14:49:11.0478 0x0be8  PlugPlay - ok
14:49:11.0501 0x0be8  [ 7A232CD15E6DF06044C8782FC6532B58, C46D1C5ACE232592380E87E0D5D5735082A4E977AD92A06EF927BA553713D3C0 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
14:49:11.0507 0x0be8  PNRPAutoReg - ok
14:49:11.0539 0x0be8  [ 51B0BA395EE58B2088F03162B3D3208C, 1F6676D168D18727061B756C333C2BA0F0489F5CCA3942984885E70FEE209599 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
14:49:11.0551 0x0be8  PNRPsvc - ok
14:49:11.0600 0x0be8  [ CABCC1083EC2BD8503385080F02C1901, 6A602FD80D10EC1E68ECA1194B1A46E0CC073ACBFA8CF8C0D4BD6D539930A702 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
14:49:11.0612 0x0be8  PolicyAgent - ok
14:49:11.0652 0x0be8  [ A35DF6D1C00783CEFA0ADC975B09BE7E, 1C137583E2669081FDA43186DFB7896BCAB3AC92B7185EE717FD5FBE28173671 ] Power           C:\Windows\system32\umpo.dll
14:49:11.0659 0x0be8  Power - ok
14:49:11.0690 0x0be8  [ AB94C4DC37785915FF3F18DB9C55638F, CFA13FB68F803EB4315DE334D3664E613163AC1827B361C201D98F497B0C6922 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
14:49:11.0694 0x0be8  PptpMiniport - ok
14:49:11.0879 0x0be8  [ 801FDB9F5F565B56C917CFEF555F2B91, 24559B1D976460D88AD727CEEBA38A8F5EB037BE0479051F76CA31A92470DA80 ] PrintNotify     C:\Windows\system32\spool\drivers\W32X86\3\PrintConfig.dll
14:49:11.0942 0x0be8  PrintNotify - ok
14:49:11.0968 0x0be8  [ 0BE3706EE01AA76D1583E82AE2E680D6, 05B86010B88BA13ADE4A9A3ECDEC376D833C7FB6BAC61ACD9E3B406CF007E46E ] Processor       C:\Windows\System32\drivers\processr.sys
14:49:11.0972 0x0be8  Processor - ok
14:49:12.0028 0x0be8  [ 77DA1E59A8970D2B63A662983B5FE257, C3531B79ED57EC7CB428DFCB62C053E7B993BD8E46E805D2CB4C2CE7A67CB0A4 ] ProfSvc         C:\Windows\system32\profsvc.dll
14:49:12.0039 0x0be8  ProfSvc - ok
14:49:12.0063 0x0be8  [ 9F6173E6F8E4034C008FCE29BFD4FBB2, E91251433567035F0EDA5971A8D154E9FC911222365C3BAD16DC10A5CDC38860 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
14:49:12.0067 0x0be8  Psched - ok
14:49:12.0115 0x0be8  [ BC63CB1761AEC25186C4E707C4A23ED4, D12F55F1445AF325A247B02B016A4F321CDDB8616D9A5432479085F3B10FE365 ] QWAVE           C:\Windows\system32\qwave.dll
14:49:12.0128 0x0be8  QWAVE - ok
14:49:12.0150 0x0be8  [ C619F26983C63B2BB1F6FDD6B52490E0, D35D7AF400133D6E6CE75C963285E13DABCD1F7EE46E96629EED9466DC999048 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
14:49:12.0153 0x0be8  QWAVEdrv - ok
14:49:12.0177 0x0be8  [ 91D50E991F182B40E10E06A9D21D8779, 00F584B07BD3366D4DB6AD80A9AE6BC61572B163C74888A399DF85940D2F9A50 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
14:49:12.0179 0x0be8  RasAcd - ok
14:49:12.0216 0x0be8  [ BD066C3A7DDDA2BB7F06384DB05A3AE8, AB104A2094F166916E848AF6805C8D2F797126208B9C60F00158031E8B735ACF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
14:49:12.0220 0x0be8  RasAgileVpn - ok
14:49:12.0246 0x0be8  [ 13867EC172CDA1E4278EF98F3822B5E1, BD5BF2E622F1B075758D29EEBFA779807244545E3BEFFD7A4E4AD36FD9DF4EE9 ] RasAuto         C:\Windows\System32\rasauto.dll
14:49:12.0257 0x0be8  RasAuto - ok
14:49:12.0278 0x0be8  [ C51AB62AB41A2E8560D12472B204CC00, 7304FCB45E0EB374A3D8DBF05D4AA4A83E1E4B1C1735D68A42C72694D2425C78 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
14:49:12.0283 0x0be8  Rasl2tp - ok
14:49:12.0323 0x0be8  [ 80812558CF8E87F248B9BA0C4825945B, 4DA89447C31A5EC8B5C21941D47EECB767673201859B72B33E3145E6D3B6DA26 ] RasMan          C:\Windows\System32\rasmans.dll
14:49:12.0341 0x0be8  RasMan - ok
14:49:12.0372 0x0be8  [ 1B6351227867FBD8917769479F7D84A3, E38EF2291CE47956DC1A3F0C7D98E5FF97CA1EB515267A451ED99AA22370DC8E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
14:49:12.0375 0x0be8  RasPppoe - ok
14:49:12.0393 0x0be8  [ 8381166CCC89EB6875DEFDA4A3B8CE37, BA59E2A18B568B8310396636372F42E38C0514FDE963DB674B019917A4F02794 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
14:49:12.0397 0x0be8  RasSstp - ok
14:49:12.0444 0x0be8  [ 8810FA3D36B8922B7BD1935378CD1667, 483DBA29212149D14E6EF873CF71B32A89C36E018E6F424C67699735B233858A ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
14:49:12.0454 0x0be8  rdbss - ok
14:49:12.0484 0x0be8  [ 4E3C895DB9831A925CAFAF9F04FE89CC, 9F518A1A046082FFDC6E171385B36EEBBE8A7C6D0234660D00A69CB327B2D869 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
14:49:12.0486 0x0be8  rdpbus - ok
14:49:12.0512 0x0be8  [ 67E91843B0344411820A012063E876B2, BFD92EEB961BDE9AE4324F8FDB01597B5D334FAAD6990324E2839687DC3A4E0E ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
14:49:12.0518 0x0be8  RDPDR - ok
14:49:12.0550 0x0be8  [ EA6B3264660145F588643C5B65C7C9EB, AE9B9A8D92F9CC3CCD53AA2A46521E6FF8DCF28EBD22073A4C9F427E3EF4D5B7 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
14:49:12.0553 0x0be8  RdpVideoMiniport - ok
14:49:12.0599 0x0be8  [ ED5DA057B5C00042CDF0E705C59B3CB1, 195F37E7C6D748C4190C3E55594B4E48BD87F0BE6C3F4D0F2E316F6C7696027F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
14:49:12.0606 0x0be8  rdyboost - ok
14:49:12.0661 0x0be8  [ FE591904131230C3FB98E9F97AAABE4A, C7C108E384F2F27A9AA58DDC0CCDC63D32629E11AEC7E2FC2F1A3F609BC94390 ] RemoteAccess    C:\Windows\System32\mprdim.dll
14:49:12.0672 0x0be8  RemoteAccess - ok
14:49:12.0702 0x0be8  [ 148CA6950C5F9385B67F18C0584376B3, 1EC021529C15420E5E1646520FC78119236FD01FA1065FBA16672D07D53BD7CB ] RemoteRegistry  C:\Windows\system32\regsvc.dll
14:49:12.0710 0x0be8  RemoteRegistry - ok
14:49:12.0753 0x0be8  [ B9BB8E2093C1615AD6EA55AD96214354, 57A2EEA52E2A670B712C4446F1A6379D1B79454A09A7B79455CA08894FD4B21F ] Revoflt         C:\Windows\system32\DRIVERS\revoflt.sys
14:49:12.0755 0x0be8  Revoflt - ok
14:49:12.0784 0x0be8  [ 67138062CED5A0E30DC42EBC087EA76C, F43FBCA3475A63145DB487C8852CB0AB7C5EB844303C7565E5F4FE238AC5E2DC ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
14:49:12.0792 0x0be8  RpcEptMapper - ok
14:49:12.0833 0x0be8  [ 56C6CFC3375CAA49E0DAE65472FD028F, CE19E793E7ACDBCC5C8486361E14BFC86458BCC55C8E56BE31CDA442BB76FEBE ] RpcLocator      C:\Windows\system32\locator.exe
14:49:12.0837 0x0be8  RpcLocator - ok
14:49:12.0886 0x0be8  [ 05C0337538BEECC04FC695808EFF201C, DC32234686D38A7DD35DFE6AC9CB55F0DDAD8B463EE6B20857CC45884F00C093 ] RpcSs           C:\Windows\system32\rpcss.dll
14:49:12.0905 0x0be8  RpcSs - ok
14:49:13.0028 0x0be8  [ A7B0D780D365635525B8A2B10CE493C4, D27F12DAB4B6BD7BE2E72650ED5BD48790E706B290A838882C6A34123B67D70E ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
14:49:13.0033 0x0be8  rspndr - ok
14:49:13.0075 0x0be8  [ 14FC57F255EB705ECA023FB85D70BF7B, C05CEF9583C5EC04E291F65293E843FAEFE8BA1FC6B4EC0C26789ACB39BBD5C6 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
14:49:13.0092 0x0be8  s3cap - ok
14:49:13.0127 0x0be8  [ F33BFCBBBAACE7208DB433B6CCA98930, 46E994BE4A2EA4D324C8B78CF9276F4805EA47046CBC7AD37401AA77E13C75FB ] SamSs           C:\Windows\system32\lsass.exe
14:49:13.0132 0x0be8  SamSs - ok
14:49:13.0223 0x0be8  [ 230FD3749904CA045EA5EC0AA14006E9, D7C79238F862B471740AFF4CC3982658D1339795E9EC884A8921EFE2E547D7C3 ] SANDRA          C:\Program Files\SiSoftware\SiSoftware Sandra Business 2013.SP3\WNt500x86\Sandra.sys
14:49:13.0226 0x0be8  SANDRA - ok
14:49:13.0235 0x0be8  [ B00311766F85D9E988C8630158D0904B, 11CEE5E578A144C1D702FE26D14643528EF2CFA8AC28FCEE889C4FB1A596CD77 ] SandraAgentSrv  C:\Program Files\SiSoftware\SiSoftware Sandra Business 2013.SP3\RpcAgentSrv.exe
14:49:13.0239 0x0be8  SandraAgentSrv - ok
14:49:13.0305 0x0be8  [ F2BF19FE48D9B8ADF8F5A0A6F17FD6BA, 4215E6D93946E5E038118DA7A80C93A567DD907F2CB04C6D37AC2175A185B527 ] SbieDrv         C:\Program Files\Sandboxie\SbieDrv.sys
14:49:13.0310 0x0be8  SbieDrv - ok
14:49:13.0346 0x0be8  [ 72A63DB72D3DE34B880CE90464069E7E, 321FCAA7AD1BC0D805828C08AEA3CA1A81ACE20BE88FAF115D3DE8B009C5221B ] SbieSvc         C:\Program Files\Sandboxie\SbieSvc.exe
14:49:13.0352 0x0be8  SbieSvc - ok
14:49:13.0387 0x0be8  [ 98A297A744DDF9B2E14B05E511439ABC, E1399BC222E02F5EBCB00F6A6C4FD52BFAD10F70F42063C7C8BAB55ED33D1F3A ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
14:49:13.0391 0x0be8  sbp2port - ok
14:49:13.0477 0x0be8  [ 54F017E5C8B7B5DDEA1878F4A0CF3B9C, 91B676F4371BE1FECE630BA97C341D2B15F56939E806F26842A9997A38B700C9 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
14:49:13.0490 0x0be8  SCardSvr - ok
14:49:13.0541 0x0be8  [ 20B2751CD4C8F3FD989739CA661B9F30, 7D2449FB3657DD219D7A401AB8BC0B3AF0FBB6BD784C1AC723825CB1B688BEC5 ] SCDEmu          C:\Windows\system32\drivers\SCDEmu.sys
14:49:13.0545 0x0be8  SCDEmu - ok
14:49:13.0575 0x0be8  [ BC673C31F2665788938F85073BEBEDEA, 90F96D1FFA9D269CA198DD79576C468204D263257F68FF0FB4DB2541AE4EA234 ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
14:49:13.0585 0x0be8  ScDeviceEnum - ok
14:49:13.0611 0x0be8  [ 631F9D546CD6D206F2D1273EFDA8B048, 2C7BBF8EA6D45D0B5456102E83B54BD126D443D7BEB8BAC8F4E4FFA5D9DCF1B0 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
14:49:13.0613 0x0be8  scfilter - ok
14:49:13.0692 0x0be8  [ AECDD11299C9814382A259E18385C927, CEDAACBECC452A135D78D715DE6F50B8A5E9C7996FE0588432498AE27DA975AB ] Schedule        C:\Windows\system32\schedsvc.dll
14:49:13.0722 0x0be8  Schedule - ok
14:49:13.0769 0x0be8  [ 8EA77992FACEB94182B9610FA4A06A68, 18AC5B03A3B7FA783596B8BD63DC01F9C36520AEA5264AFD99CD9207F538C931 ] SCPolicySvc     C:\Windows\System32\certprop.dll
14:49:13.0774 0x0be8  SCPolicySvc - ok
14:49:13.0791 0x0be8  [ 83811B6DFB3154338DB07C1452F13C36, C5EA94BA28F3E10DA987B70A2BBFB5BE7708500CADC399C9CC8A4B51A125B102 ] sdbus           C:\Windows\System32\drivers\sdbus.sys
14:49:13.0799 0x0be8  sdbus - ok
14:49:13.0842 0x0be8  [ 6A90C0C56CABEAA19779434BA6A9875B, 42EA31F112D555F47D02D85922DE4C8415882FC2FB6CFF408D3DD390E6A1EB08 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
14:49:13.0846 0x0be8  sdstor - ok
14:49:13.0865 0x0be8  [ A8CC993CED4DF9710ADAABC9DA66B660, 76D64D0D762DCF05AE494749514D91D3F0FF4EC2D0A1FFEA8A5F8708832DF17C ] secdrv          C:\Windows\system32\drivers\secdrv.sys
14:49:13.0868 0x0be8  secdrv - ok
14:49:13.0895 0x0be8  [ 8B3C0BDAF6CAE7DC52B38054BC2D3ADD, 15EE0827485E30442A920BAC20DFED50B2659BC14B6A56EFD6317072764DB0E1 ] seclogon        C:\Windows\system32\seclogon.dll
14:49:13.0902 0x0be8  seclogon - ok
14:49:13.0929 0x0be8  [ 68E8C6017442C4D2FB20032239878B4C, 24568AEF503DB6D214767E13A4C106818556E97A55932CCBF0DB332553544F0B ] SENS            C:\Windows\System32\sens.dll
14:49:13.0936 0x0be8  SENS - ok
14:49:13.0965 0x0be8  [ F9A0314ED1FB0318C417299841D8A235, 2E4B129101DF70B07F310CE18B482622BC0100523AA0E6AF0974AE12927AFFA5 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
14:49:13.0976 0x0be8  SensrSvc - ok
14:49:13.0999 0x0be8  [ B9B7306D989D3B205EE9637ABB937978, 1CDEDB934381C64052AD2BF71F092D2A2CCFEC99CA1907F0B96897D0BCC12F9A ] SerCx           C:\Windows\system32\drivers\SerCx.sys
14:49:14.0003 0x0be8  SerCx - ok
14:49:14.0022 0x0be8  [ 617029159ED22EF9CB3F83FE5AF968CB, 4D89F71CCBF521EA9C83EE1ADF74AC4BFB9CB03ACAE5A4812771B0E0661097B7 ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
14:49:14.0027 0x0be8  SerCx2 - ok
14:49:14.0056 0x0be8  [ DE87128CFA9AED45BC26B7422B06CE06, B6C7AB6BE6260047176FEB14838B859A3601326F2FD34E3594A7F1901DFD7E56 ] Serenum         C:\Windows\System32\drivers\serenum.sys
14:49:14.0058 0x0be8  Serenum - ok
14:49:14.0072 0x0be8  [ 8C86C60A471B4E6DF644B07FD30957C4, CC15109CE20ACEB0A5E10A96051CAAEE796F1DB640C6622B81D6CB76B8C9959D ] Serial          C:\Windows\System32\drivers\serial.sys
14:49:14.0077 0x0be8  Serial - ok
14:49:14.0097 0x0be8  [ 83F70AC05D00530EFAE71C913AEB5F3B, BA50F3F120D5514FE17E2FFF4BDEA07CA7B46EE8EA8AB0BC890B862AA0626B84 ] sermouse        C:\Windows\System32\drivers\sermouse.sys
14:49:14.0099 0x0be8  sermouse - ok
14:49:14.0171 0x0be8  [ ADC071E4F65BAC3AEF4807B23438472A, D45DEAE2AA7CD1D2627C80252D0024CDD932E760FD6346C74EA60CFE0538FC24 ] SessionEnv      C:\Windows\system32\sessenv.dll
14:49:14.0206 0x0be8  SessionEnv - ok
14:49:14.0218 0x0be8  [ 4FC275DBBE9F48EB07418E066843058D, AF550B24A7B4EE55259D45DDECFDAB61AE0D2E4E1874E6693A62EC66AEE6096E ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
14:49:14.0221 0x0be8  sfloppy - ok
14:49:14.0303 0x0be8  [ F17175CD44231011EC33F3F62F8A9314, EE172A54BA33340D8C0B6C8C08D67C44016F9734FD851AB7DBFB7AAB93EC8E36 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
14:49:14.0317 0x0be8  SharedAccess - ok
14:49:14.0386 0x0be8  [ EBE31F23BF3EF06EE08CE4AC4F26DC80, 64C58B6AA318C4DF2EF8E2E8EB0D13B518775AE89C5F3BC60003C1510A5A70FE ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:49:14.0410 0x0be8  ShellHWDetection - ok
14:49:14.0425 0x0be8  [ 0EFBAF5C195B78D7897701EA3084AFA8, 82E539F7697AA9A57B74EFFDA1D9D9865890EAB9EBAEE3843D3DC9C7AD2621FC ] sisagp          C:\Windows\system32\drivers\sisagp.sys
14:49:14.0428 0x0be8  sisagp - ok
14:49:14.0442 0x0be8  [ 447DAF85E9F4D53710636468AD9911EA, B1A3840E2A671FEE9D0F17BFFEBEE1EED04EB736A6150389A09E5B6156DF99E3 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
14:49:14.0445 0x0be8  SiSRaid2 - ok
14:49:14.0457 0x0be8  [ 5C08041AA0DB4FE983D496D820AFACB7, 2E513D9B6FA0B27D9A2A4CD1C57AD98C1A8C50D4DAD75AC384793F3A697E671F ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
14:49:14.0460 0x0be8  SiSRaid4 - ok
14:49:14.0514 0x0be8  [ 050A4112B00BCA2E13314CDE48C1DEEE, 86C679CD494DEEB984372BF954EFBB8982AC7995FBF89FCF83BC228991D1B825 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
14:49:14.0523 0x0be8  SkypeUpdate - ok
14:49:14.0557 0x0be8  [ 980D0CBAE757EEB1C9B21DEB4FA3B5F8, 5357033FAA1624549E84F6B5AB40345CD2C82353173F0FCE317EEEF0F59663F2 ] smphost         C:\Windows\System32\smphost.dll
14:49:14.0563 0x0be8  smphost - ok
14:49:14.0610 0x0be8  [ 4A0B28346252F1165FD6FB38B2177F18, A9D754F11DBED4DB886CAB6DEDBD4B3FB01FF5F0FA2DE226A6D8F970D9C15A3E ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
14:49:14.0617 0x0be8  SNMPTRAP - ok
14:49:14.0675 0x0be8  [ 0B0AD9D5EBBFFF19A5D977FBAB8A8105, 0C2B694F1640108300D4C48AD21B8679BA928168C0B804E9525FA4C20B884853 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
14:49:14.0687 0x0be8  spaceport - ok
14:49:14.0730 0x0be8  [ E0A6F5DA31A1B0F3C8D8A4802F97667D, 65770A9C2442522BD122AA2036E1EDAFBCDA2D7F9661412D90DCA01A5D676D01 ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
14:49:14.0733 0x0be8  SpbCx - ok
14:49:14.0780 0x0be8  [ 48CE81B99142FD69313CA919E4006D02, 76DA41EF24F2FBA392C7168991A1E2C409B1F33B3AF22D42D539CF466E6341EF ] Spooler         C:\Windows\System32\spoolsv.exe
14:49:14.0799 0x0be8  Spooler - ok
14:49:15.0094 0x0be8  [ B269FCFAE6A576139BBDA4E805AAEDC4, 1CD8EC94B35EBDA7161FBB6C73EECE5330F458E59B17C7D1FCD52D353ACCC8F9 ] sppsvc          C:\Windows\system32\sppsvc.exe
14:49:15.0237 0x0be8  sppsvc - ok
14:49:15.0290 0x0be8  [ 0564453D240C8D305491629301CFACBB, AE6A22310AE7C6B6C8857E5957A21015DA191C4777BD55C2A73A457FE7F1A769 ] srv             C:\Windows\system32\DRIVERS\srv.sys
14:49:15.0300 0x0be8  srv - ok
14:49:15.0332 0x0be8  [ D5C2AE72DA22BDE19B9433F9BDCDCD18, D979F711C73FAE2CCCD2E3C09515DA5BE247D1EFEB75762A818BAD24C3F01044 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
14:49:15.0348 0x0be8  srv2 - ok
14:49:15.0375 0x0be8  [ 63E914F0E4B81AD6A86940BA4447E15E, CA9082DE763AC129691D0928532D0FBC64B25C831F2326F7F2923D90337C6DF3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
14:49:15.0382 0x0be8  srvnet - ok
14:49:15.0434 0x0be8  [ 6CBF9EBA48E820CC19742919B2FAF67B, 87658A7D24BAFA653373C0599AC3756F1D44B77F2189B2CCA813ED4A06A9D564 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
14:49:15.0446 0x0be8  SSDPSRV - ok
14:49:15.0498 0x0be8  [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv          C:\Windows\system32\DRIVERS\ssmdrv.sys
14:49:15.0500 0x0be8  ssmdrv - ok
14:49:15.0523 0x0be8  [ 60F21B841226BF06EA420A5322A4279E, FDC563B5AFCCFB1DDC5FB39187BCAACB2B91528426E8A198A527379CC3EB5C89 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
14:49:15.0533 0x0be8  SstpSvc - ok
14:49:15.0574 0x0be8  [ B4489EA5810BF73778CD8BDC305109CE, E42EC87D2B8622AA25E9DAA64F98EA4129FC231BEDAD5D2ECF6DD7F19C710E07 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
14:49:15.0577 0x0be8  stexstor - ok
14:49:15.0725 0x0be8  [ AE30DD60D851221BC26A4D6848AD78CC, 593CD0E77942472112E359A2FB156E5CD04E5003DB67B0B989DDF0C7A00089E1 ] StiSvc          C:\Windows\System32\wiaservc.dll
14:49:15.0745 0x0be8  StiSvc - ok
14:49:15.0767 0x0be8  [ BA47EC0DC91660274059C437DC53D82B, 49BC1483F92457F5EDA40B598CCC64F0379C49EEA1E21CA1E182F670AA6959ED ] storahci        C:\Windows\system32\drivers\storahci.sys
14:49:15.0770 0x0be8  storahci - ok
14:49:15.0796 0x0be8  [ FA5A48CAB745A7A8CB83ECFE26BD2A11, DBF39A5D4663DE7F8809B2E21EDD5DE4EC291F023CFFBBDEC33AD569245F8B52 ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys
14:49:15.0800 0x0be8  storflt - ok
14:49:15.0828 0x0be8  [ 54614BE0F68CD3E9C6DEB8E8FBD12397, 2C3CDAF70BF5165965B03A83B7161862A4D5590EEFF34B4A71281DC8DA7EA2CD ] stornvme        C:\Windows\system32\drivers\stornvme.sys
14:49:15.0832 0x0be8  stornvme - ok
14:49:15.0938 0x0be8  [ 01DC138AF03B0DF86044D29BA6FA20C8, 608A1220154256AA5C1FDA43B32F852E1C277D445C1CA24E72CCE946C0A60291 ] StorSvc         C:\Windows\system32\storsvc.dll
14:49:15.0949 0x0be8  StorSvc - ok
14:49:16.0114 0x0be8  [ 19AC4D3BB088AA4561036B220FEB99DE, ECD0071B7229BEB1CEC80A1F302A9864E35958AB7EF659780695E80A14B9E647 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
14:49:16.0117 0x0be8  storvsc - ok
14:49:16.0139 0x0be8  [ 77BBD7D3F9229A4FA1F4B61D12A06762, 2500C903E1EC45D31F54CE4B4ED4F2052C55396AC4DA29D2DDBBCC347FF9F535 ] svsvc           C:\Windows\system32\svsvc.dll
14:49:16.0146 0x0be8  svsvc - ok
14:49:16.0168 0x0be8  [ BDD8121BEB8227A65D83C87FD4BE5AFE, 3B2C207180349752E39128316EEFA95B080333FC057E48A0F260D3224ED67B48 ] swenum          C:\Windows\System32\drivers\swenum.sys
14:49:16.0170 0x0be8  swenum - ok
14:49:16.0199 0x0be8  [ 756E1472CB3BE829A8555869469074DE, 75379CB7D996DD0F5293A3AD7FBE7AEB3C51B75C046CE971E751019444212C70 ] swprv           C:\Windows\System32\swprv.dll
14:49:16.0214 0x0be8  swprv - ok
14:49:16.0286 0x0be8  [ A08AEDA37F3BC5A7E72C2D7732C26FC0, B9521CC77BB8001142C64A7D1B8480F52A4ADC0AE0A94D04578EDAE67F2BEF65 ] SysMain         C:\Windows\system32\sysmain.dll
14:49:16.0316 0x0be8  SysMain - ok
14:49:16.0345 0x0be8  [ F4273A2ED357007B2A98F90946174762, EBEBA946A538CCEBAAAB49F8E80169459C6B214EFFDD31CBEEE88199D2A5C51A ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
14:49:16.0357 0x0be8  SystemEventsBroker - ok
14:49:16.0395 0x0be8  [ 89BAFF8F0D332009A95EA5F217C57DE1, 6BB67736A8F15A218924060FC927EBDB524305550EAAFA5EFD228228353CE1F3 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:49:16.0405 0x0be8  TabletInputService - ok
14:49:16.0450 0x0be8  [ 4FCDFA214133956B0DA8358D366F536B, E243B05AA9C0D2FB7FBD6774ADE2251C9A9ED6B3460956321E4388E2C0FDAE4E ] TapiSrv         C:\Windows\System32\tapisrv.dll
14:49:16.0465 0x0be8  TapiSrv - ok
14:49:16.0585 0x0be8  [ FE8239E9DDEACF71DE6DE4B4AFD46F99, 24DCE0F774B149F8212BEA978DA5CA88DB302C64C20192A56151A482B292B76D ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
14:49:16.0639 0x0be8  Tcpip - ok
14:49:16.0705 0x0be8  [ FE8239E9DDEACF71DE6DE4B4AFD46F99, 24DCE0F774B149F8212BEA978DA5CA88DB302C64C20192A56151A482B292B76D ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
14:49:16.0747 0x0be8  TCPIP6 - ok
14:49:16.0812 0x0be8  [ 31D0E1BF76AA85F5A72F4FD488C3B508, AADDDAB1B41356EDDE6BE7091BAC24345C4D0BEC4DABD2B4F50D753320A6E1AE ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
14:49:16.0815 0x0be8  tcpipreg - ok
14:49:16.0854 0x0be8  [ DB0C184142CF9FA1746F598A16EE92B2, 27341EDDB764FE978AB0B4E6E89A9BA41E064578CCEA5AC56AA83CD99828DB93 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
14:49:16.0858 0x0be8  tdx - ok
14:49:16.0885 0x0be8  [ 87F4612CBEF6CD97043911BA43ABB53B, FFC4B03D5450782EAFA4E91B1F4F64B37E5ECEA3762A15768D068D80FB5F5941 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
14:49:16.0888 0x0be8  terminpt - ok
14:49:16.0981 0x0be8  [ 434B8A6C6FA9C38C3DC49EDDA3BF3EC8, 0BFFBFE98308D7A8B055B2269138E5FFF8CC1BDC7965017672EC78EE0F9C4C96 ] TermService     C:\Windows\System32\termsrv.dll
14:49:17.0010 0x0be8  TermService - ok
14:49:17.0038 0x0be8  [ 97DDFC419054D0B0D6C5AE698F840307, 5131563E607BA121BA491434CB02E82B63AD8DFCFF30C899C971507445053D43 ] Themes          C:\Windows\system32\themeservice.dll
14:49:17.0046 0x0be8  Themes - ok
14:49:17.0064 0x0be8  [ 01946468EA6196F9C54A245354C1240A, 96BE9EF1D791417BFBD9AC9F24D38F128DEE409C95F25138B8CDAE3F86E17D4A ] THREADORDER     C:\Windows\system32\mmcss.dll
14:49:17.0070 0x0be8  THREADORDER - ok
14:49:17.0097 0x0be8  [ 63B6FF7650AD844484624541772CCEBA, ADE044BDB9FE02EBEF17F3F0542B2FBBDBFFD0570A0FF53CB754BA8FC248E4AF ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
14:49:17.0108 0x0be8  TimeBroker - ok
14:49:17.0124 0x0be8  [ 7441A1E10500AC6229DDCE369A953929, E0C5863A7B89F86A09DBCC602907A3EF3D4511B593A9878FEF559737075FA280 ] TPM             C:\Windows\system32\drivers\tpm.sys
14:49:17.0130 0x0be8  TPM - ok
14:49:17.0165 0x0be8  [ AEB123A17BE77809C23DA9422505A356, F80D8A3BEB72C719DBE216061B45E00AA97D36175F4A84082A5AF12BDB5D31E0 ] TrkWks          C:\Windows\System32\trkwks.dll
14:49:17.0174 0x0be8  TrkWks - ok
14:49:17.0238 0x0be8  [ 37EA57301CE18BEAB54417989450D9E1, 0DAD10998F66149189E79343D880330C33856464582FC81C4F4810F4BF3C7625 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:49:17.0241 0x0be8  TrustedInstaller - ok
14:49:17.0273 0x0be8  [ 3E87B8167BA1CA5274DFACC4856B3FD9, ED06CD0BC2E525BC7F4467EECEF361CE4DBC456156AD1D4440FDA144B8310983 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
14:49:17.0276 0x0be8  TsUsbFlt - ok
14:49:17.0288 0x0be8  [ 3F6FA4385342780468C0FEE5D09BB431, DB820F8A0B8443871F0EF1817D9516FDA8A3A6C71112951B52641C318176FCD5 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
14:49:17.0291 0x0be8  TsUsbGD - ok
14:49:17.0314 0x0be8  [ C9AF1C4C24DA2FF092B1A4548EEC5ACB, CD638FECB87AA8A6861CE248EBBD18AB42F2A71FB06446E28A7E9496968100DE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
14:49:17.0319 0x0be8  tunnel - ok
14:49:17.0342 0x0be8  [ 61FC1405334298EFE7D49970C5346551, 5068C5D1A8F08140A5FC2FA1122D86E146C7F10AEAF41C314EB85383E5C72560 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
14:49:17.0345 0x0be8  uagp35 - ok
14:49:17.0370 0x0be8  [ 0E919230A74FA541CC5C2D3F917340B7, 0C960B511C1AB67C8556604EAAE994B9366F5ED90B0C4C6C44D6F88E244C4C79 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
14:49:17.0374 0x0be8  UASPStor - ok
14:49:17.0391 0x0be8  [ BC87FFF7ACB60F25CEE11C03856D2BFD, 440854D481E170A1D0D9DB915823E87C35A2D0D2B274CA4ED56AE08646E34D31 ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
14:49:17.0397 0x0be8  UCX01000 - ok
14:49:17.0425 0x0be8  [ 070CDA00BE4D9E4E92F5471B8D24CBD8, B8407DCBF5E878FA440EA229E2FED457C27BD53CA47EC5326F7A8917CD6AC529 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
14:49:17.0434 0x0be8  udfs - ok
14:49:17.0446 0x0be8  [ 31C53FFBFD9977D3F2061627A69274D2, 6B95519B26C0B588E2D8973B838E03DF658C95BBF2D5940116E4256462518E63 ] UEFI            C:\Windows\System32\drivers\UEFI.sys
14:49:17.0450 0x0be8  UEFI - ok
14:49:17.0484 0x0be8  [ 0424574BB406E7B793D122D0F1A198CE, 7A3084E6EE1F4FFDD7B61F4D4E1AFC9B7439BC6C3C9F358C9CFD1C1232A8E302 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
14:49:17.0491 0x0be8  UI0Detect - ok
14:49:17.0503 0x0be8  [ 202F1C6EBA7D84F59C03E708F45A28C3, 009D0E5D342929B0489D10AA4CBE704D11C1E81CB8FE8E55B50DCF5D246A469B ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
14:49:17.0507 0x0be8  uliagpkx - ok
14:49:17.0527 0x0be8  [ 8CB5D86BDB3890CFC4D94593935C2F4B, A1C26146D1FA78E66C878287D27BAC1E474EB7A3BC82A5FF2EF19223AAF5498A ] umbus           C:\Windows\System32\drivers\umbus.sys
14:49:17.0530 0x0be8  umbus - ok
14:49:17.0552 0x0be8  [ C4115675F53E9E853294C15131D5EBBC, 1E9EFBAAFDDA6BCCABAD2CA0F0D48019AFA7299A5E4D5E56ED5364F7398DFC26 ] UmPass          C:\Windows\System32\drivers\umpass.sys
14:49:17.0554 0x0be8  UmPass - ok
14:49:17.0597 0x0be8  [ 6843992F07DE867B29277B422F08A72B, 60588DFFDE7A20D0685BFF5FB0E94D8729CDCBC878968181BE4467EECF7FF576 ] UmRdpService    C:\Windows\System32\umrdp.dll
14:49:17.0612 0x0be8  UmRdpService - ok
14:49:17.0670 0x0be8  [ B9DDAEA3770B3752B6AA7191B5AA16AA, 27D8ED0F417E57E242E6758639A2FFC7E5CF43B6AB8D4A9074273CF046355FC6 ] upnphost        C:\Windows\System32\upnphost.dll
14:49:17.0685 0x0be8  upnphost - ok
14:49:17.0710 0x0be8  [ 8A93F68EBAFE14D62895A09568BED30A, 677DFD70E1E7C99DA8700846F549951D98488EBD3E87D0927AE6B3AB0FB16A97 ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
14:49:17.0715 0x0be8  usbccgp - ok
14:49:17.0733 0x0be8  [ 9D941A00FD49FBC8670EFE0B48F41994, 947643E72D70E62C42DB39762D0668FF2151ED9B12CFB5B7B62203E8C2E48332 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
14:49:17.0738 0x0be8  usbcir - ok
14:49:17.0797 0x0be8  [ 5DB5AACE25B1E08E958AE2C001182B0F, 68A686085C2BFDDDFC3C5E1A3815D74E92E2AA0096B57F1DBBD7877B2B3930F1 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
14:49:17.0801 0x0be8  usbehci - ok
14:49:17.0836 0x0be8  [ 58EA28A06D4ACEE0B1BEA23EEAE85470, 7EB333737BE96EA54F46007FF94B5EBFC547133847A257C2C8C7EE8381ECDCCC ] usbhub          C:\Windows\System32\drivers\usbhub.sys
14:49:17.0849 0x0be8  usbhub - ok
14:49:17.0951 0x0be8  [ A0A51CFBE5BDBB62662BD4979A324166, 364DF27453CF47683B86526BC5B844D70C6F590BEC833D8DB6082C9D501C5DDE ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
14:49:17.0963 0x0be8  USBHUB3 - ok
14:49:17.0995 0x0be8  [ B1E835C5F75F98B0439ED0A56B85C3E8, 427313F3847C056DBCF6CF58EE7CC5BF1F22CA73C711D1A63537F3B18FB04FBA ] usbohci         C:\Windows\System32\drivers\usbohci.sys
14:49:17.0998 0x0be8  usbohci - ok
14:49:18.0018 0x0be8  [ F4FA8FC5577F5F603FD79663BD8F3005, 3D91D7312EFEEFA002C805F9A679EE50A3D8C7BF45C06A514BE5177582B156C0 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
14:49:18.0035 0x0be8  usbprint - ok
14:49:18.0069 0x0be8  [ C76EEA7AE00350204BAA04CB2F3A9C52, 66EBBBC5E9BE5A9F934E537B0D4CDB55E9DC142F05263AAED6974AE44AE77AA6 ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
14:49:18.0075 0x0be8  USBSTOR - ok
14:49:18.0125 0x0be8  [ 4173F451FD9B78164F60D74265B16C77, B72E0962040510A7A1242C7175EC1CCCE6DCB7718A9CBF6010E6F5EFEC21B951 ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
14:49:18.0128 0x0be8  usbuhci - ok
14:49:18.0169 0x0be8  [ DCEF75D41DD4FE665FA2F41F901E67AF, C946CFA766081BE2645DAA07557001EA2593686CD1E94998CA47312ABB840DB3 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
14:49:18.0176 0x0be8  usbvideo - ok
14:49:18.0216 0x0be8  [ 0CEA7C4EC8BAB5DEFC8F7198BEE03850, AB5933A4C89CF2C2975A24119DC30A122C17572D74565DE0F5C895CF29EEED06 ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
14:49:18.0224 0x0be8  USBXHCI - ok
14:49:18.0252 0x0be8  [ F33BFCBBBAACE7208DB433B6CCA98930, 46E994BE4A2EA4D324C8B78CF9276F4805EA47046CBC7AD37401AA77E13C75FB ] VaultSvc        C:\Windows\system32\lsass.exe
14:49:18.0257 0x0be8  VaultSvc - ok
14:49:18.0310 0x0be8  [ 3D06B8D4A1ED1B91C8566DF7AC510AF2, 1639DA43B066D5D615133178AAB3251EF1F80B2330994C02B11122D8F1EC5C64 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
14:49:18.0313 0x0be8  vdrvroot - ok
14:49:18.0346 0x0be8  [ 22DF64B9DA3F480FB78C886B329A1048, 0E2708A91818313501472BAF829703EE9EB6AA019C725DA36E0A13ED432063FF ] vds             C:\Windows\System32\vds.exe
14:49:18.0368 0x0be8  vds - ok
14:49:18.0398 0x0be8  [ E0915FFD3BDFB98B723C46FEB8070B8A, 7D9B52E4D35E92823E3D8DE24DF8A405E23B34C84BF0E42DD04001C49C1F0EC0 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
14:49:18.0404 0x0be8  VerifierExt - ok
14:49:18.0460 0x0be8  [ 3AF00F5A0742B10CB10F54A4D6E17D8B, B6CABE42363AC8F797594879117EF1B352BAC5612F46F0930F966F4D6A2D5222 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
14:49:18.0474 0x0be8  vhdmp - ok
14:49:18.0505 0x0be8  [ 33CA244E0808BBD784EA6938605FED28, 381F320300D558261C79ED62EEB187D31E3606222B9B7B24EBDD00E782F03F87 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
14:49:18.0509 0x0be8  viaagp - ok
14:49:18.0523 0x0be8  [ EBBBCBC27D7F391188CDF4196ED80D63, 2493F56BE61DFA54138C2FFAEEB13ED40E168E345CE4B381EF7F34DEBC6152EC ] ViaC7           C:\Windows\System32\drivers\viac7.sys
14:49:18.0528 0x0be8  ViaC7 - ok
14:49:18.0546 0x0be8  [ 75B08537DCF231A7B536ACE2ED8E8A35, 520D87B7AE1E351AF4C1798528D371188102F6552F2C576C40D6A2AB55B8A718 ] viaide          C:\Windows\system32\drivers\viaide.sys
14:49:18.0549 0x0be8  viaide - ok
14:49:18.0574 0x0be8  [ 744DBD744910FAB62EACD05F25471D61, 99ED66D0E47976F1AA8C999032E0CF1649B91ED47AFCD4AEE880F4D926CD4D80 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
14:49:18.0579 0x0be8  vmbus - ok
14:49:18.0591 0x0be8  [ 1F02B273254268F975612210D8CB6859, BB5EAC399CD3D7ACC5A20DB0EA4BD6DBF5D2D475A4A206E3CD1F31FBAE3C88D2 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
14:49:18.0594 0x0be8  VMBusHID - ok
14:49:18.0645 0x0be8  [ 0CA4644517EEC9BA9414A1B518DFED8F, CEF218418F65513DDC91215D82ECAE6624A259013F4C84EA0229465266EB07AF ] vmicguestinterface C:\Windows\System32\ICSvc.dll
14:49:18.0661 0x0be8  vmicguestinterface - ok
14:49:18.0688 0x0be8  [ 0CA4644517EEC9BA9414A1B518DFED8F, CEF218418F65513DDC91215D82ECAE6624A259013F4C84EA0229465266EB07AF ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
14:49:18.0701 0x0be8  vmicheartbeat - ok
14:49:18.0724 0x0be8  [ 0CA4644517EEC9BA9414A1B518DFED8F, CEF218418F65513DDC91215D82ECAE6624A259013F4C84EA0229465266EB07AF ] vmickvpexchange C:\Windows\System32\ICSvc.dll
14:49:18.0737 0x0be8  vmickvpexchange - ok
14:49:18.0760 0x0be8  [ 0CA4644517EEC9BA9414A1B518DFED8F, CEF218418F65513DDC91215D82ECAE6624A259013F4C84EA0229465266EB07AF ] vmicrdv         C:\Windows\System32\ICSvc.dll
14:49:18.0773 0x0be8  vmicrdv - ok
14:49:18.0794 0x0be8  [ 0CA4644517EEC9BA9414A1B518DFED8F, CEF218418F65513DDC91215D82ECAE6624A259013F4C84EA0229465266EB07AF ] vmicshutdown    C:\Windows\System32\ICSvc.dll
14:49:18.0807 0x0be8  vmicshutdown - ok
14:49:18.0829 0x0be8  [ 0CA4644517EEC9BA9414A1B518DFED8F, CEF218418F65513DDC91215D82ECAE6624A259013F4C84EA0229465266EB07AF ] vmictimesync    C:\Windows\System32\ICSvc.dll
14:49:18.0847 0x0be8  vmictimesync - ok
14:49:18.0868 0x0be8  [ 0CA4644517EEC9BA9414A1B518DFED8F, CEF218418F65513DDC91215D82ECAE6624A259013F4C84EA0229465266EB07AF ] vmicvss         C:\Windows\System32\ICSvc.dll
14:49:18.0882 0x0be8  vmicvss - ok
14:49:18.0918 0x0be8  [ D78640FCD9043EEFE3DDE69855A72567, 0668F913E5F3D21BC921E5344AE9D354CCAC0FB1962A74D4BE95822F7F4BC228 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
14:49:18.0922 0x0be8  volmgr - ok
14:49:18.0950 0x0be8  [ 57566A1F8D39071BB56AA0B083A75544, 3B63E53B05A5417084A1BC4ECB118FAC3DE4C5FA1EE30834564F670CCD79352E ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
14:49:18.0963 0x0be8  volmgrx - ok
14:49:19.0039 0x0be8  [ 31A2AA48C1ECD390E2707E5C21B75DCE, F3E6C1B386A24085A044C3816756DECF5F53DB5A9B0BD9EA76D97499E597AEC0 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
14:49:19.0049 0x0be8  volsnap - ok
14:49:19.0081 0x0be8  [ 10B78A2D45B1330C162FDE8FEE78F315, F3D790D2352422F335432BA50198C192F397BAAC713BAB99B577ED7C33C0348B ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
14:49:19.0087 0x0be8  vsmraid - ok
14:49:19.0177 0x0be8  [ 044B27361CEE42AD0662B04D57CDB716, 7B267D0EF4991C3E4D8FEE10455AFF12037B2C72F42FA6E57343643D29CD95A0 ] VSS             C:\Windows\system32\vssvc.exe
14:49:19.0211 0x0be8  VSS - ok
14:49:19.0264 0x0be8  [ 761B3F51660CD3D9F815E5C916235D0B, 64DA061674047ECC3D0A034CFCB3D926712C14599807E06194688ED7E9F8ADCA ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
14:49:19.0273 0x0be8  VSTXRAID - ok
14:49:19.0321 0x0be8  [ 47BF83648E9FBD88A8CDB7C2A169D100, C00971C6DC1EA10FBB8D3291BF196DE45C66E234D143D08F3B9A97DDE08547FF ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
14:49:19.0323 0x0be8  vwifibus - ok
14:49:19.0361 0x0be8  [ 937FC132094684F8F41DA89CECC1D427, B0048733D1B02F5DE2F28B4C35F6E4EB0D4B2E651ED7258929596A81C1DED807 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
14:49:19.0364 0x0be8  vwififlt - ok
14:49:19.0407 0x0be8  [ 438082724F84703C00DA503131A89055, C81FCFC7A04E7F656F0DCA3D1E0BFC3D9AAC25FA35C9DF98A33FEAE86FE2B303 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
14:49:19.0410 0x0be8  vwifimp - ok
14:49:19.0421 0x0be8  vxoqkw - ok
14:49:19.0457 0x0be8  [ 6300EDA4700C9BEEA42867D4F0A1F9E5, 8258ECE4E8B2A989F392B2E69AFE54BB3F444753ACE7E7990307EBCA143B6868 ] W32Time         C:\Windows\system32\w32time.dll
14:49:19.0473 0x0be8  W32Time - ok
14:49:19.0498 0x0be8  [ 67B211F7AB2D49C6403E7FD970421806, B81E270723397450A9689F7EE9D014F2623FC90A5051D671484F141DC116D5CF ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
14:49:19.0501 0x0be8  WacomPen - ok
14:49:19.0521 0x0be8  [ 4686214315127725738113C0B1779E0A, 9DE6CBC9762BFC3EE879686A93FE25C95904EFAAAF5E90D265D57EAEC98DCA79 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
14:49:19.0524 0x0be8  Wanarp - ok
14:49:19.0535 0x0be8  [ 4686214315127725738113C0B1779E0A, 9DE6CBC9762BFC3EE879686A93FE25C95904EFAAAF5E90D265D57EAEC98DCA79 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
14:49:19.0538 0x0be8  Wanarpv6 - ok
14:49:19.0610 0x0be8  [ A3A21FF9BE9C183F1AF9B538B9D37DD1, F959E22580425BF9C0FE9C72776EFF1934575021DFDBD1834E6BB881D3BA4A97 ] wbengine        C:\Windows\system32\wbengine.exe
14:49:19.0649 0x0be8  wbengine - ok
14:49:19.0685 0x0be8  [ CE81100317C426F778651FD1D5C16492, 91CE2B6C43632D48859B9961F6CAF3F519D06C3A13FF23E906E1ED93DEB896B2 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
14:49:19.0700 0x0be8  WbioSrvc - ok
14:49:19.0736 0x0be8  [ 30DBF746D895BC3A6EC4CF55B81A8A81, 3CED8ED3D260A2F95B956CE0B962C5F6D90BADAB489C8B9724016E4DBEBF7662 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
14:49:19.0752 0x0be8  Wcmsvc - ok
14:49:19.0808 0x0be8  [ 531A627D02CAEC304B30A1EBDE99DADE, 410B2FEB23333861E61107C64F628FAA0A3FC8C62C17D4F5854EC891D8D83516 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
14:49:19.0824 0x0be8  wcncsvc - ok
14:49:19.0844 0x0be8  [ 69059CD0ABD70C3884117652E3B70431, 8568210E62C827C43377C09F40974628FF25CFD35A45EA4D4E3FDD5884F91617 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:49:19.0853 0x0be8  WcsPlugInService - ok
14:49:19.0878 0x0be8  [ 5B9AEA959D59C5F2DAEC2E6FD6DDFB0F, 3B7C857DC272860FDCD3216C524BBFA65B26F1AEB37B562EBB7F9068891DCB01 ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
14:49:19.0880 0x0be8  WdBoot - ok
14:49:19.0922 0x0be8  [ C49F1B047C2080FC5AA662A769887631, 55BC1C77250B0B2AF2B81120DDBE41C25B875FCD72040A529D1BA88D5BFD5E7F ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
14:49:19.0939 0x0be8  Wdf01000 - ok
14:49:19.0968 0x0be8  [ BBD6DF3FC00CACBFA92A4C98CE5C0CCD, CB62FB1E28D6F00546C339C6D3A24B430315E78575FCDEB520D9F0963ADC74D1 ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
14:49:19.0975 0x0be8  WdFilter - ok
14:49:20.0003 0x0be8  [ DACD90541CBF7DE095801B05ABB4F355, 2CB55E01DE3603DFA91CB151C7EE4E978EB3DD0F818BDC8277D3C9407751F7B5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
14:49:20.0012 0x0be8  WdiServiceHost - ok
14:49:20.0024 0x0be8  [ DACD90541CBF7DE095801B05ABB4F355, 2CB55E01DE3603DFA91CB151C7EE4E978EB3DD0F818BDC8277D3C9407751F7B5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
14:49:20.0033 0x0be8  WdiSystemHost - ok
14:49:20.0059 0x0be8  [ D7B8475F59FD0C9C395151E5BB5DCC2E, E49E161606B86819759213DC37D4D43C157A65EBED77686783F0FA85AB7C614B ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
14:49:20.0064 0x0be8  WdNisDrv - ok
14:49:20.0136 0x0be8  [ 2DFB6808124ED1DADE451D845AC61559, 432DCE00F281FC9C97EFC314266591DE0854B9623B95C3EE2FC463389D187CE7 ] WdNisSvc        C:\Program Files\Windows Defender\NisSrv.exe
14:49:20.0145 0x0be8  WdNisSvc - ok
14:49:20.0190 0x0be8  [ 42A350B81E0E9A427D7366E1E8BFBADC, BECAB13CED1A75429E9C0129B56150671A93BA2FD4C5684F33CEC6B6F25CB5DC ] WebClient       C:\Windows\System32\webclnt.dll
14:49:20.0202 0x0be8  WebClient - ok
14:49:20.0226 0x0be8  [ 03EA9E300DCDF78E8A92625F0BA1CCB2, B8C73C05D2955400800B5D36DC20E8973F75411E32CCD8B2CFA03B6283A50A44 ] Wecsvc          C:\Windows\system32\wecsvc.dll
14:49:20.0237 0x0be8  Wecsvc - ok
14:49:20.0269 0x0be8  [ E4016FA4757738263BD714190FB26BA6, C5B121ED9EFFC5C040CF5F658AF9CC63A6FFEDC4C62F7D28D6B474632DC0178B ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
14:49:20.0276 0x0be8  WEPHOSTSVC - ok
14:49:20.0306 0x0be8  [ B83AC02F1FF0137AB3CB2B5B1AC801DA, 6F871E9A8EAA979D3624FDD3088DD37C3411BFBB43A8FFF75B39DF07B1A95D05 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
14:49:20.0314 0x0be8  wercplsupport - ok
14:49:20.0333 0x0be8  [ 7EC47083E7470A4BC538FA1EBE60BF58, 4AF817DAB7192182D0A782EA058E3916D22A44C6AB9F89371E1327E8D27C379A ] WerSvc          C:\Windows\System32\WerSvc.dll
14:49:20.0342 0x0be8  WerSvc - ok
14:49:20.0391 0x0be8  [ CBF73734B883C712BC07796708FCB0CD, 8DA54162866A71E7CEE188A49400964100E58D194B21F86821B01407C4334CA6 ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
14:49:20.0395 0x0be8  WFPLWFS - ok
14:49:20.0425 0x0be8  [ 5876A572A52FA14CEE2F11D7A71ABA2D, 159883D0F10FE6FA05DAB56B598C12000BC25B977329E81BD67DE329B80F79B4 ] WiaRpc          C:\Windows\System32\wiarpc.dll
14:49:20.0434 0x0be8  WiaRpc - ok
14:49:20.0464 0x0be8  [ A4A63DD4E1B72B8C8189AD3F09914AF0, 9B9773C8FB84A224FA6A48D93D46ACE2761E3AC123544C86B50D3895C8A39B41 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
14:49:20.0467 0x0be8  WIMMount - ok
14:49:20.0489 0x0be8  [ 8CC83221870DD07144E63DF594C391D9, 33BC14D231A4AFAA18F06513766D5F69D8B88F1E697CD127D24FB4B72AD44C7A ] WinDefend       C:\Program Files\Windows Defender\MsMpEng.exe
14:49:20.0491 0x0be8  WinDefend - ok
14:49:20.0559 0x0be8  [ 984B3226C7A4CFC9FE91D7BACA133D8D, B8058FC049217DE89F13730425207C19B1967194F3BE3C8CAE2F8AA3BD932721 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
14:49:20.0580 0x0be8  WinHttpAutoProxySvc - ok
14:49:20.0655 0x0be8  [ D08485FAEA1C3505A22FB5C1EBEBC062, 7377B0FE90C60A67789A12FEBBA7FD38C2580BB09F406CED3DD2E1F5EEF123CC ] winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
14:49:20.0662 0x0be8  winmgmt - ok
14:49:20.0760 0x0be8  [ 5B8D7F29CA815E6DB156DF9853F0472D, 8E343EC8241C146F7ECB85361BF1AD78C718552B42115A6EE1577B7959901F3D ] WinRM           C:\Windows\system32\WsmSvc.dll
14:49:20.0830 0x0be8  WinRM - ok
14:49:20.0910 0x0be8  [ 7683DEBE4329EF289BC2B1FC709ED629, F4353FF4E52457058FAE64B9EBAE59563D1E60E8D4CC2C1EF04CC4C3E9C03C78 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
14:49:20.0914 0x0be8  WinUsb - ok
14:49:21.0075 0x0be8  [ 14534ECC5B54AC6762A659C27D949E90, BD39AEAB73ACD539395B4FEF508EC79F799D8EA2942E43394B3DDDAD534CDD5C ] WlanSvc         C:\Windows\System32\wlansvc.dll
14:49:21.0116 0x0be8  WlanSvc - ok
14:49:21.0198 0x0be8  [ 8885B2E1A62EC9C6BA7C6CDEEBF0C6E4, AF543870A8DAEA095E8543B32E5628C4F0F47034EF8764F85D0FCF29ABE33782 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
14:49:21.0235 0x0be8  wlidsvc - ok
14:49:21.0272 0x0be8  [ AF01C55490366930DFAF1D3655C763BD, 59081AC6B83E0A4A376A62417458C520ABA7DB4FB1AEEEC4C45FC8C0AF61FC20 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
14:49:21.0274 0x0be8  WmiAcpi - ok
14:49:21.0334 0x0be8  [ 57D8CE143395C99E185EA7D753F5C04F, 5778CD5B6EF11071C728416192353C3143C7E875AA8555E1F2CDB26F5B0FA08A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
14:49:21.0340 0x0be8  wmiApSrv - ok
14:49:21.0444 0x0be8  [ A511D963C744DD2C86FFF20ADEEE49F9, D3DB5ADF7C32706FC386C608E73F93D03DA4CFDB0B5F80B1C35B30348B76CC31 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
14:49:21.0474 0x0be8  WMPNetworkSvc - ok
14:49:21.0536 0x0be8  [ DB3F0877E5C225693A131AE82C262957, BEE887EC134F7A27120915F709670FBDC9223E70EA928A0FDC4284FBDFD65ADB ] Wof             C:\Windows\system32\drivers\Wof.sys
14:49:21.0542 0x0be8  Wof - ok
14:49:21.0634 0x0be8  [ 1F49D5EB713119CDC0249287A4223B67, 17F01469B4A506818F820BBAAAB825459703F09F92DB7FD8238ED53D992D6207 ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
14:49:21.0673 0x0be8  workfolderssvc - ok
14:49:21.0722 0x0be8  [ 7E7207FF951BDAA10781D758628EC1B9, AD6E7D95AD188A9104AEC52DBA8562F0F194BBC45201B5774B9727CF7B01F52E ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
14:49:21.0725 0x0be8  wpcfltr - ok
14:49:21.0764 0x0be8  [ D7C14B416FC4F76A596A01A76FC5F873, 15D6D10186173F6CEFED503AC061F74F85A0C92B8C0D44684FF57B878AB96D5B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
14:49:21.0772 0x0be8  WPCSvc - ok
14:49:21.0824 0x0be8  [ 3E00A0FC658E640F86FB93AB34D5F611, D56770FC10291AC7E0041FFCE94DC014F24718F9A5FD9F2D4374BE43D7040A66 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
14:49:21.0833 0x0be8  WPDBusEnum - ok
14:49:21.0854 0x0be8  [ 6D8FA63A8C9765A853264D3977EECC19, F8172DA54DC417E9DA812469A3CD677932F82CCA676DB09187E5A201660D1E83 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
14:49:21.0856 0x0be8  WpdUpFltr - ok
14:49:21.0882 0x0be8  [ 12BCBE7CA69586AF483C86255739793F, 25714CD7ED802C70AD3580E2C26150392EA452BA355EB3426170B94ABEDDC172 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
14:49:21.0887 0x0be8  ws2ifsl - ok
14:49:21.0920 0x0be8  [ 7A0CFACFDF18C5A44D05F91656AB2C70, C15AC8200647B86199F0A547046059D9864EAA87711CD8F3034A8D3ECEDB4370 ] wscsvc          C:\Windows\System32\wscsvc.dll
14:49:21.0932 0x0be8  wscsvc - ok
14:49:21.0945 0x0be8  WSearch - ok
14:49:22.0092 0x0be8  [ 2535EE24CC1BB639A7639B4CA5BDE7C5, B855B693D413144CA26286CE49825F608870AE23DEAC641DAFD693F5F70D9ECB ] WSService       C:\Windows\System32\WSService.dll
14:49:22.0172 0x0be8  WSService - ok
14:49:22.0339 0x0be8  [ 0A2CC3FD2F5537A72DC8241464E38597, 906822FBA303460C165F3EE3B9955AB6E7A3859B16095F626E7913B3298B1417 ] wuauserv        C:\Windows\system32\wuaueng.dll
14:49:22.0423 0x0be8  wuauserv - ok
14:49:22.0477 0x0be8  [ C0D25C818F1B4F559442E3BC92B18F8D, 88A9B01CDEBD90072B31905BBF02FA02DBD9B923B8B8B96F261A53A8527FEDC6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
14:49:22.0482 0x0be8  WudfPf - ok
14:49:22.0519 0x0be8  [ 39C5340AE404C9B566D406B8DF5CE758, AFF23CCAD6A8263578783E2221CA8CEF525C92D8AA56BF8F020D9FD5F24EFBF1 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
14:49:22.0525 0x0be8  WUDFRd - ok
14:49:22.0549 0x0be8  [ FB61AE2377DBF6855018204EBDF288FC, E818104AB882BE926FE75A27BFC9D987CE3730E96296A2D3FE8ED0698EB9E474 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
14:49:22.0559 0x0be8  wudfsvc - ok
14:49:22.0577 0x0be8  [ 39C5340AE404C9B566D406B8DF5CE758, AFF23CCAD6A8263578783E2221CA8CEF525C92D8AA56BF8F020D9FD5F24EFBF1 ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
14:49:22.0583 0x0be8  WUDFWpdFs - ok
14:49:22.0599 0x0be8  [ 39C5340AE404C9B566D406B8DF5CE758, AFF23CCAD6A8263578783E2221CA8CEF525C92D8AA56BF8F020D9FD5F24EFBF1 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
14:49:22.0605 0x0be8  WUDFWpdMtp - ok
14:49:22.0650 0x0be8  [ 0D3C738EC8FF12C8B69925229949ED05, 5E7A28F35D83B29925CAA663E12DF970961C10AD5887997E543D1C0ADA11345B ] WwanSvc         C:\Windows\System32\wwansvc.dll
14:49:22.0671 0x0be8  WwanSvc - ok
14:49:22.0726 0x0be8  [ 2F245DADA71E53CB23722039C985AABE, A7D965AB450FB9065D076AA5E1596FA2161EA63F2E84F5D10C3C8F3A133DFC8D ] yukonw8         C:\Windows\system32\DRIVERS\yk63x86.sys
14:49:22.0734 0x0be8  yukonw8 - ok
14:49:22.0794 0x0be8  ================ Scan global ===============================
14:49:22.0873 0x0be8  [ BEC87D938F9B07206DC39535D99F6771, F29468A3BE54CDA8EE7DBEFCC5CB2322D81C1E2B41D37EF91196CBA6DE442C2A ] C:\Windows\system32\basesrv.dll
14:49:22.0909 0x0be8  [ DBD08C890F4148C2C26D2247FA36E947, 505182658C0E6DC39197BFB8D25885274B3948E548E3618796FF3AF64E626326 ] C:\Windows\system32\winsrv.dll
14:49:22.0950 0x0be8  [ 9C56B7F2F68F73F735E367BBCF39D15B, D7370BE7D57A5A7EB1719241365946C35E321EF28EC640648103AA13FAA89CEA ] C:\Windows\system32\sxssrv.dll
14:49:23.0006 0x0be8  [ BE8FB66895B5475B09F5907D875CD47D, B9B13330F7BA49271AF4DC7FE917E5366A1052A644D0F5D2C506D282F2865F95 ] C:\Windows\system32\services.exe
14:49:23.0021 0x0be8  [ Global ] - ok
14:49:23.0022 0x0be8  ================ Scan MBR ==================================
14:49:23.0044 0x0be8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
14:49:23.0648 0x0be8  \Device\Harddisk0\DR0 - ok
14:49:23.0653 0x0be8  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR3
14:49:23.0725 0x0be8  \Device\Harddisk2\DR3 - ok
14:49:23.0725 0x0be8  ================ Scan VBR ==================================
14:49:23.0729 0x0be8  [ 3527AA5FB1F2D5FD52CC7F0BEC80785B ] \Device\Harddisk0\DR0\Partition1
14:49:23.0732 0x0be8  \Device\Harddisk0\DR0\Partition1 - ok
14:49:23.0737 0x0be8  [ 11AC71EB92C20FEC23739B02CEBD9D77 ] \Device\Harddisk0\DR0\Partition2
14:49:23.0739 0x0be8  \Device\Harddisk0\DR0\Partition2 - ok
14:49:23.0745 0x0be8  [ D00F5BE52B090665C4F755D1278DDDFF ] \Device\Harddisk0\DR0\Partition3
14:49:23.0777 0x0be8  \Device\Harddisk0\DR0\Partition3 - ok
14:49:23.0783 0x0be8  [ 545DE258A368DB7776E9C2372665D106 ] \Device\Harddisk2\DR3\Partition1
14:49:23.0826 0x0be8  \Device\Harddisk2\DR3\Partition1 - ok
14:49:23.0831 0x0be8  [ 2DBA7552C49CA2201E49389F7A0F8B2F ] \Device\Harddisk2\DR3\Partition2
14:49:23.0871 0x0be8  \Device\Harddisk2\DR3\Partition2 - ok
14:49:23.0872 0x0be8  ================ Scan generic autorun ======================
14:49:23.0956 0x0be8  [ 187F4C75A89E3F412322C94526320074, D78FA7EF93C8C7B4326A5B6DB04A92ADD091DF00658FA8731D07C5D3BE29ED04 ] C:\Program Files\Microsoft Office\Office14\BCSSync.exe
14:49:23.0959 0x0be8  BCSSync - ok
14:49:24.0105 0x0be8  [ AABDE5E8BE4D303047836C6A3198837B, A63BAE6431283CEC88DD4279D727702D734ADD1023EC3DFE40FD5B28CC6057A1 ] C:\Program Files\DFX\DFX.exe
14:49:24.0136 0x0be8  DFX - ok
14:49:24.0241 0x0be8  [ D59D472AD56B4B3C084E4F8C2C23B0C5, 3DAD68559D30FAA9DEE27A5AA2F1D7F4D3A2E84F53C88AF78B88677BBD7AE41C ] C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
14:49:24.0250 0x0be8  WinPatrol - ok
14:49:24.0489 0x0be8  [ 97C244EE6446BE561D178ABB72EF70EE, C824D72876647B760AF201FE81C1A8DADE7E59883D49B40742F17ACFA6940FD4 ] C:\ProgramData\cis5AE6.exe
14:49:24.0586 0x0be8  CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82} - ok
14:49:24.0804 0x0be8  [ 26B558B2D31C7425B455B00E562EAD93, B64D128A2F1FC42BA4376F8EB08D70F4B705745CB983D0631DB45851BF34BBDF ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
14:49:24.0903 0x0be8  AvastUI.exe - ok
14:49:24.0957 0x0be8  Mobile Partner - ok
14:49:25.0011 0x0be8  [ 60ED8752955A24B6BE2CFDF0063C275A, 3055D606930EA828BDB9FE4D326B4E860CCDC08B5148930F206692E78978E8A8 ] C:\Program Files\T-Mobile\InternetManager_H\Internet Manager.exe
14:49:25.0014 0x0be8  Internet Manager - ok
14:49:25.0106 0x0be8  [ 9BA7143CA1769BFE8A5FC03F523F2EE5, 2323CBBF3FB32E946D274E9B1532253BFB0918D3B816A8193C603A0F8315B67A ] C:\Program Files\Sandboxie\SbieCtrl.exe
14:49:25.0123 0x0be8  SandboxieControl - ok
14:49:25.0125 0x0be8  Waiting for KSN requests completion. In queue: 124
14:49:26.0126 0x0be8  Waiting for KSN requests completion. In queue: 124
14:49:27.0126 0x0be8  Waiting for KSN requests completion. In queue: 124
14:49:28.0392 0x0be8  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.5.218.0 ), 0x60100 ( disabled : updated )
14:49:28.0422 0x0be8  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2021.515 ), 0x41000 ( enabled : updated )
14:49:28.0425 0x0be8  FW detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2021.515 ), 0x41010 ( enabled )
14:49:30.0873 0x0be8  ============================================================
14:49:30.0873 0x0be8  Scan finished
14:49:30.0873 0x0be8  ============================================================
14:49:30.0890 0x1270  Detected object count: 0
14:49:30.0890 0x1270  Actual detected object count: 0


#5 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:02:20 PM

Posted 04 October 2014 - 07:02 AM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.2.8 (10.04.2014:1)
OS: Windows 8.1 Pro x86
Ran by loumos on Sat 10/04/2014 at 14:57:06.31
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-708041573-1778936953-1497560607-1001\Software\Microsoft\Internet Explorer\Main\\Start Page
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] "hkey_current_user\software\apn pip"
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{2877A654-1C9F-4cb5-8438-16022B2FDD9C}
 
 
 
~~~ Files
 
Successfully deleted: [File] C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-708041573-1778936953-1497560607-1001
Successfully deleted: [File] C:\Windows\System32\Tasks\RegClean Pro_DEFAULT
Successfully deleted: [File] C:\Windows\System32\Tasks\RegClean Pro_UPDATES
Successfully deleted: [File] "C:\Users\loumos\appdata\local\google\chrome\user data\default\local storage\http_www.azlyrics.com_0.localstorage"
Successfully deleted: [File] "C:\Windows\system32\roboot.exe"
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\ProgramData\drivergenius"
Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader"
Successfully deleted: [Folder] "C:\Users\loumos\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Program Files\regclean pro"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\regclean pro"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader"
 
 
 
~~~ FireFox
 
Successfully deleted: [File] C:\Users\loumos\AppData\Roaming\mozilla\firefox\profiles\u30ehydw.default\searchplugins\googlefeed.xml
Successfully deleted the following from C:\Users\loumos\AppData\Roaming\mozilla\firefox\profiles\u30ehydw.default\prefs.js
 
user_pref("browser.search.selectedEngine", "Yahoo!");user_pref("browser.startup.homepage", "hxxp://www.starwebsearch.com/index.php?from=3");
user_pref("keyword.URL", "hxxp://www.starwebsearch.com/results.php?q=");
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 10/04/2014 at 15:01:17.68
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#6 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:02:20 PM

Posted 04 October 2014 - 07:15 AM

# AdwCleaner v3.311 - Report created 04/10/2014 at 15:07:37
# Updated 30/09/2014 by Xplode
# Operating System : Windows 8.1 Pro  (32 bits)
# Username : loumos - PAVLOS
# Running from : C:\Users\loumos\Desktop\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\NCH Software
Folder Deleted : C:\Program Files\GreenTree Applications
Folder Deleted : C:\Program Files\NCH Software
Folder Deleted : C:\Users\loumos\AppData\Roaming\NCH Software
 
***** [ Scheduled Tasks ] *****
 
Task Deleted : RegClean Pro_DEFAULT
Task Deleted : RegClean Pro_UPDATES
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{059EACC2-1ABE-49E8-928D-DC8BD355B7A9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3B3F3AAD-FB97-49FF-BFEE-D22869AC4326}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\systweak
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Driver-Soft
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4BB7A109-FDB5-45E3-9DB9-ECB2EA7B80EE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v0.0.0.0
 
 
-\\ Mozilla Firefox v31.0 (x86 el)
 
[ File : C:\Users\loumos\AppData\Roaming\Mozilla\Firefox\Profiles\u30ehydw.default\prefs.js ]
 
 
-\\ Google Chrome v37.0.2062.124
 
[ File : C:\Users\loumos\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
 
*************************
 
AdwCleaner[R0].txt - [1763 octets] - [04/10/2014 15:04:26]
AdwCleaner[S0].txt - [1930 octets] - [04/10/2014 15:07:37]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1990 octets] ##########


#7 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:02:20 PM

Posted 04 October 2014 - 10:29 AM

i ve done everything till now just the eset scan is taking some time........



#8 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:02:20 PM

Posted 04 October 2014 - 01:09 PM

C:\Users\loumos\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\00\00000000 Win32/AdWare.1ClickDownload.AT application cleaned by deleting - quarantined
C:\Users\loumos\Desktop\???? ???????\FreeYouTubeDownload.exe a variant of Win32/OpenCandy.A potentially unsafe application deleted - quarantined
C:\Users\loumos\Desktop\???? ???????\YTDSetup.exe a variant of Win32/Toolbar.Widgi.G potentially unwanted application deleted - quarantined
C:\Users\loumos\Downloads\antivirus\eset 7\ESET SMART SECURITY 7 x32x64 [HYPERDRIVE25]\ESET PureFix v2.03 Activator\ESET PureFix v2.03 (Crack)\ESET PureFix v2.03 (Crack)\ESET PureFix v2.03 (Crack).exe MSIL/RiskWare.HackAV.A application cleaned by deleting - quarantined
C:\Users\loumos\Downloads\antivirus\eset 7\~ESET Smart Security V 7.0 Final (x64) Incl [MiNODlogin-Mara FIX] {Aryan_l33t}\Medicine\Medicine.rar multiple threats deleted - quarantined
C:\Users\loumos\Downloads\antivirus\eset 7\~ESET Smart Security V 7.0 Final (x64) Incl [MiNODlogin-Mara FIX] {Aryan_l33t}\Medicine\Minodlogin\minodlogin.exe Win32/RiskWare.HackAV.MI application cleaned by deleting - quarantined
C:\Users\loumos\Downloads\antivirus\eset 7\~ESET Smart Security V 7.0 Final (x64) Incl [MiNODlogin-Mara FIX] {Aryan_l33t}\Medicine\Minodlogin Portable\tbl 4.0.2.66.exe Win32/RiskWare.HackAV.MI application cleaned by deleting - quarantined
C:\Users\loumos\Downloads\antivirus\Eset 7.0.302.0 full package\02_Tools\ESET Fix\Eset fix.exe Win32/RiskWare.HackAV.MQ application cleaned by deleting - quarantined
C:\Users\loumos\Downloads\antivirus\Eset 7.0.302.0 full package\02_Tools\ESET Fix\ESET Fix.zip Win32/RiskWare.HackAV.MQ application deleted - quarantined
C:\Users\loumos\Downloads\antivirus\Eset 7.0.302.0 full package\02_Tools\ESET Key finders\MiNodLogin 4.0.2.66\MiNodLogin4.0.2.66.rar Win32/RiskWare.HackAV.MI application deleted - quarantined
C:\Users\loumos\Downloads\antivirus\Eset 7.0.302.0 full package\02_Tools\ESET Key finders\TNod 1.4.2.3\TNod_v1.4.2.3_package.rar a variant of Win32/RiskWare.HackAV.II application deleted - quarantined
C:\Users\loumos\Downloads\antivirus\ESET Smart Security V 7.0 Final (x32) Incl Crack\Medicine\Medicine.rar multiple threats deleted - quarantined
C:\Users\loumos\Downloads\programs\RegClean Pro 6.21.65.1986 With Crack [DownSoftsFree]{h33t}.rar a variant of Win32/Systweak potentially unwanted application deleted - quarantined
C:\Users\loumos\Downloads\programs\NCH Prism Video File Converter Plus v1.92 with Key [TorDigger]\prismpsetup.exe a variant of Win32/Toolbar.Conduit.H potentially unwanted application deleted - quarantined
C:\Users\loumos\Downloads\programs\NCH Switch Sound File Converter Plus v4.35 LAXiTY\switchsetup_engl.exe a variant of Win32/Toolbar.Conduit.H potentially unwanted application deleted - quarantined
C:\Users\loumos\Downloads\programs\RegClean Pro 6.21.65.1986 With Crack By DSF\sysrc_trial.exe a variant of Win32/Systweak potentially unwanted application deleted - quarantined
C:\Users\loumos\Downloads\programs\YouTube Downloader Pro 4.7.3 (YTD) Incl Crack [KaranPC]\YTDSetup.exe a variant of Win32/Toolbar.Widgi.B potentially unwanted application deleted - quarantined
C:\Users\loumos\Downloads\programs\YouTube Downloader Pro YTD 4.8.3 Final Incl Crack - SceneDL\YouTube Downloader Pro YTD 4.8.3 Final Incl Crack - SceneDL.rar a variant of Win32/Toolbar.Widgi.G potentially unwanted application deleted - quarantined
C:\Users\loumos\Videos\bleeping comp(copy)\???? ???????\AVGSecureSearchInstaller.exe a variant of Win32/OpenInstall potentially unwanted application deleted - quarantined
C:\Windows\KMSEmulator.exe Win32/HackKMS.A potentially unsafe application deleted - quarantined
D:\Program Files\NCH Swift Sound\Switch\switch.exe a variant of Win32/Toolbar.Conduit.J potentially unwanted application deleted - quarantined
D:\Program Files\NCH Swift Sound\Switch\switchsetup_v4.04.exe a variant of Win32/Toolbar.Conduit.J potentially unwanted application deleted - quarantined
D:\Program Files\NCH Swift Sound\Switch\uninst.exe a variant of Win32/Toolbar.Conduit.J potentially unwanted application deleted - quarantined
D:\Users\pavlos\Downloads\Windows 7 Loader + Activator v2.0.6 Reloaded - DAZ [Team Rjaa].rar Win32/HackTool.WinActivator.I potentially unsafe application deleted - quarantined
D:\Users\pavlos\Downloads\Kaspersky.Internet.Security.2015.Including.trail reset(resuable trail)\KRT_3.0.0.34\KRT_3.0.0.34.exe a variant of Win32/RiskWare.HackAV.OM application cleaned by deleting - quarantined
D:\Users\pavlos\Downloads\Windows 7 Loader + Activator v2.0.6 Reloaded - DAZ [Team Rjaa]\Windows 7 Activator Reloaded [Team Rjaa].zip Win32/HackTool.WinActivator.I potentially unsafe application deleted - quarantined
D:\Users\pavlos\Downloads\Windows 7 Loader + Activator v2.0.6 Reloaded - DAZ [Team Rjaa]\Windows.7.Loader.v2.0.6 Reloaded -DAZ [Team Rjaa].rar Win32/HackTool.WinActivator.I potentially unsafe application deleted - quarantined
D:\Users\pavlos\Downloads\Windows 7 Loader + Activator v2.0.6 Reloaded - DAZ [Team Rjaa]\Windows 7 Activator\Windows Loader.exe Win32/HackTool.WinActivator.I potentially unsafe application deleted - quarantined
D:\Windows\KMSEmulator.exe Win32/HackKMS.A potentially unsafe application deleted - quarantined

thats all im done.......



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,430 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:20 PM

Posted 04 October 2014 - 03:45 PM

Looks like you are downloading pirated software.. Maybe even the Operating system.. These allow malware to install..
Also run MBAM and see how it is after.

Download 51a46ae42d560-malwarebytes_anti_malware.MalwareBytes Anti-Malware to your desktop.
  • Double-click mbam-setup-2.0.exe to start the installation of Malwarebytes Anti-Malware.
  • Follow the instructions on your screen to complete the installation. You can find the complete installation procedure here.
  • Click the Scan Now button, a threat scan will start automatically.
  • MalwareBytes Anti-Malware will now check for the latest updates. Click Update Now if new updates are available.
  • Your computer is now being scanned, please do not use your computer during the scan.
  • If no threats were found, click View detailed log.
    • Click Export and save the log as a .txt file on your Desktop or another location.
  • If the scan detected any threats, click Apply Actions.
    • To complete any actions taken you will be prompted to restart your computer...click on Yes.
    • After reboot, start Malwarebytes Anti-Malware again and click the History Tab at the top and select Application Logs.
    • Check the box next to Scan Log. Choose the most current scan and click View.
    • Click Export and save the log as a .txt file on your Desktop or another location.
Providing the MalwareBytes' Anti-Malware log file
  • Copy/Paste the log file you just saved to your next reply for further review.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:02:20 PM

Posted 04 October 2014 - 04:28 PM

yes man im downloading pirated but these files that your programs found as viruses are false positives cause i checked all antivirus opinions on virustotal.com

but you can never be sure......

i think right now that svchost is taking twice less ram and cpu than before.



#11 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,604 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:20 PM

Posted 04 October 2014 - 05:44 PM

The practice of using keygens, hacking toolscracking tools, warez, torrents or any pirated software is not only considered illegal activity but it is a serious security risk which can turn a computer into a malware honeypot or zombie.When you use these kind of programs, be forewarned that some of the most aggressive types of malware infections can be contracted and spread by visiting crack, keygen, warez and other pirated software sites. In many cases, those sites are infested with a smörgåsbord of malware and an increasing source of system infection. Those who attempt to get software for free can end up with a computer system so badly damaged that recovery is not possible and it cannot be repaired. When that happens there is nothing you can do besides reformatting and reinstalling the OS.

Using these types of programs or the websites visited to get them is very likely how your computer got infected!!

Please remove all cracks, keygens and pirated software in order to reduce the risk of reinfection before we can proceed any further. If not, then we are just wasting time cleaning your system.
 

As far as site policy goes, BleepingComputer does permit the cleaning of infected machines running cracked software. However, there are two caveats to this that you should be aware of:

  • While we permit the cleaning of an infected machine, the presence of cracked software precludes you from receiving any other help at this forum until the software is removed.
  • While site policy permits the machine to be cleaned, we do not force our volunteers to pick up any given topic. It will be up to the individual helper whether or not they wish to assist you. So, you may or may not receive a reply.
Blade, Forum Administrator, Post #2
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#12 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:02:20 PM

Posted 05 October 2014 - 08:09 AM

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 5/10/2014
Scan Time: 3:50:20 μμ
Logfile: w4t.txt
Administrator: Yes
 
Version: 2.00.2.1012
Malware Database: v2014.10.05.03
Rootkit Database: v2014.09.19.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 8.1
CPU: x86
File System: NTFS
User: loumos
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 322078
Time Elapsed: 15 min, 57 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 1
PUP.Optional.Multiplug, HKLM\SOFTWARE\CLASSES\TYPELIB\{157B1AA6-3E5C-404A-9118-C1D91F537040}, Quarantined, [ec2be928e6961b1b8c6a553e30d2fd03], 
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)


#13 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,604 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:20 PM

Posted 05 October 2014 - 08:25 AM

Please download CKScanner by askey127 and save it to your Desktop. <-Important!!!
  • Double-click on CKScanner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click Search For Files.
  • After a very short time, when the cursor hourglass disappears, click Save List To File.
  • A message box will verify the file saved. Please run the program once only.
  • Click OK at the file saved message box.
  • A text file will be created on your desktop named CKFiles.txt.
  • Double-click the CKFiles.txt icon on your desktop to open the log and copy/paste the contents in your next reply.

.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#14 paulos123

paulos123
  • Topic Starter

  • Members
  • 313 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:greece
  • Local time:02:20 PM

Posted 05 October 2014 - 01:01 PM

CKScanner 2.4 - Additional Security Risks - These are not necessarily bad
c:\users\loumos\desktop\x\webroot secureanywhere complete 2013 + crack (download torrent) - tpb.pdf
c:\users\loumos\downloads\antivirus\eset 7\eset smart security 7 x32x64 [hyperdrive25]\eset purefix v2.03 activator\eset purefix v2.03 (crack)\eset purefix v2.03 (crack)\eset purefix v2.03 (crack).exe
c:\users\loumos\downloads\antivirus\eset 7\eset smart security 7 x32x64 [hyperdrive25]\eset purefix v2.03 activator\eset purefix v2.03 (crack)\eset purefix v2.03 (crack)\instructions.txt
c:\users\loumos\downloads\antivirus\eset 7.0.302.0 full package\02_tools\winrar 4.20\winrar 4.20_x86\crack\rarreg.key
c:\users\loumos\downloads\antivirus\eset 7.0.302.0 full package\02_tools\winrar 4.20\winrar 4.20_x86\crack\rarreg.zip
c:\users\loumos\downloads\antivirus\eset 7.0.302.0 full package\02_tools\winrar 4.20\winrar 4.20_x86\crack\read me.txt
c:\users\loumos\downloads\antivirus\eset smart security v 7.0 final (x32) incl crack\full guide how to install.txt
c:\users\loumos\downloads\antivirus\eset smart security v 7.0 final (x32) incl crack\medicine\full guide how to install.txt
c:\users\loumos\downloads\antivirus\eset smart security v 7.0 final (x32) incl crack\medicine\medicine.rar
c:\users\loumos\downloads\programs\easeus partition master v10.0 full technician edition+crack - cyclonoid.rar
c:\users\loumos\downloads\programs\regclean pro 6.21.65.1986 with crack [downsoftsfree]{h33t}.rar
c:\users\loumos\downloads\programs\regclean pro 6.21.65.1986 with crack by dsf\sysrc_trial.exe
c:\users\loumos\downloads\programs\regclean pro 6.21.65.1986 with crack by dsf\crack\regcleanpro.dll
c:\users\loumos\downloads\programs\winrar 5.1 32 and 64 bit with crack  2014 registred for life time ~madiha~\about.txt
c:\users\loumos\downloads\programs\winrar 5.1 32 and 64 bit with crack  2014 registred for life time ~madiha~\wrar-x86-501.exe
c:\users\loumos\downloads\programs\winrar 5.1 32 and 64 bit with crack  2014 registred for life time ~madiha~\crack\rarreg.key
c:\users\loumos\downloads\programs\winrar 5.1 32 and 64 bit with crack  2014 registred for life time ~madiha~\crack\read me.txt
c:\users\loumos\downloads\programs\youtube downloader pro 4.7.3 (ytd) incl crack [karanpc]\instructions.txt
c:\users\loumos\downloads\programs\youtube downloader pro 4.7.3 (ytd) incl crack [karanpc]\ytdsetup.exe
c:\users\loumos\downloads\programs\youtube downloader pro 4.7.3 (ytd) incl crack [karanpc]\crack\ytd.exe
c:\users\loumos\downloads\programs\youtube downloader pro ytd 4.8.3 final incl crack - scenedl\youtube downloader pro ytd 4.8.3 final incl crack - scenedl.rar
c:\users\loumos\videos\bleeping comp(copy)\Νέος φάκελος\bitdefender crack.pdf
c:\windows\kmsemulator.exe
c:\windows\system32\config\systemprofile\appdata\local\microsoft\clr_v2.0_32\usagelogs\autokms.exe.log
scanner sequence 3.ZZ.11.CUAPTZ
 ----- EOF ----- 


#15 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,604 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:20 PM

Posted 05 October 2014 - 07:27 PM

Your log indicates you did not follow my instructions to remove all cracks, keygens and pirated software before we could proceed any further. Restating what I previously posted...the presence of cracked software precludes you from receiving any other help at this forum until the software is removed.

Unfortunately it appears we are at that point now and there is nothing more we can do.

This topic is closed. If you have any questions, please PM me or another Moderator.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users