Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malware


  • This topic is locked This topic is locked
10 replies to this topic

#1 Erin277

Erin277

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 AM

Posted 05 November 2014 - 08:56 PM

HELP! I am sure all your virus forums start out this way. I think I infected our computer. Or my child did. A few days ago I attempted to download "OpenOffice" and then I found out it wasn't compatible with my computer, but I have had issues since I tried. My daughter also downloads games. My issues have now started and they are when I am in IE I get pop-ups even though our pop-up blocker is on. I also am redirected when I search to search.findwide.com which is not my default. Also, I keep getting proxy server errors, but we don't have a proxy server. When I investigate I see that we have a proxy server now and I delete it or turn it off, however, it turns back on. Please help me. When I ran Windows Virus scanner it didn't find anything. However, McAfee GetSusp found these two files: C:\Program Files (x86)\Common Files\Diagnostics\node\service.exe ... is Suspicious !!! C:\Program Files (x86)\Common Files\Diagnostics\node\sys.node ... is Suspicious !!!

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,329 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:50 PM

Posted 05 November 2014 - 09:09 PM

Hello Erin and welcome!!

Lt's run these look at the logs and see how it is after.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Erin277

Erin277
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 AM

Posted 06 November 2014 - 06:01 PM

Here are the results. The ESET is still running. It's been running for 12 hours and so far the screen says there are 18 infected files. I will post the final results later today when it has finished running. Also, no matter what I closed down in the background, my computer would not let me run JunkRemovalTool. Mini Toolbox MiniToolBox by Farbar Version: 21-07-2014 Ran by Vande_000 (administrator) on 05-11-2014 at 18:36:13 Running from "C:\Users\Vande_000.HP-LAPTOP\Desktop" Microsoft Windows 8.1 (X64) Boot Mode: Normal *************************************************************************** ========================= Flush DNS: =================================== Windows IP Configuration Successfully flushed the DNS Resolver Cache. ========================= IE Proxy Settings: ============================== Proxy is enabled. ProxyServer: 127.0.0.1:5050 "Reset IE Proxy Settings": IE Proxy Settings were reset. ========================= FF Proxy Settings: ============================== "Reset FF Proxy Settings": Firefox Proxy settings were reset. ========================= Hosts content: ================================= ========================= IP Configuration: ================================ Intel® Centrino® Wireless-N 2230 = Wi-Fi (Connected) Realtek PCIe GBE Family Controller = Ethernet (Media disconnected) # ---------------------------------- # IPv4 Configuration # ---------------------------------- pushd interface ipv4 reset set global icmpredirects=enabled set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="wireless_11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="ethernet_3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled set interface interface="Local Area Connection* 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled popd # End of IPv4 configuration Windows IP Configuration Host Name . . . . . . . . . . . . : HP-Laptop Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : home Wireless LAN adapter Local Area Connection* 12: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter Physical Address. . . . . . . . . : 84-A6-C8-9D-59-37 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Wireless LAN adapter Wi-Fi: Connection-specific DNS Suffix . : home Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 2230 Physical Address. . . . . . . . . : 84-A6-C8-9D-59-36 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Link-local IPv6 Address . . . . . : fe80::798c:7eeb:d5d9:5e12%4(Preferred) IPv4 Address. . . . . . . . . . . : 192.168.1.12(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.255.0 Lease Obtained. . . . . . . . . . : Tuesday, November 4, 2014 6:27:56 PM Lease Expires . . . . . . . . . . : Thursday, November 6, 2014 9:28:00 AM Default Gateway . . . . . . . . . : 192.168.1.1 DHCP Server . . . . . . . . . . . : 192.168.1.1 DHCPv6 IAID . . . . . . . . . . . : 327460552 DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-22-AB-A5-A0-B3-CC-49-30-C8 DNS Servers . . . . . . . . . . . : 192.168.1.1 NetBIOS over Tcpip. . . . . . . . : Enabled Ethernet adapter Ethernet: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : home Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller Physical Address. . . . . . . . . : A0-B3-CC-49-30-C8 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Tunnel adapter isatap.home: Media State . . . . . . . . . . . : Media disconnected Connection-specific DNS Suffix . : home Description . . . . . . . . . . . : Microsoft ISATAP Adapter Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes Tunnel adapter Teredo Tunneling Pseudo-Interface: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0 DHCP Enabled. . . . . . . . . . . : No Autoconfiguration Enabled . . . . : Yes IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:3d:ea9:cdca:f119(Preferred) Link-local IPv6 Address . . . . . : fe80::3d:ea9:cdca:f119%16(Preferred) Default Gateway . . . . . . . . . : :: DHCPv6 IAID . . . . . . . . . . . : 150994944 DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-22-AB-A5-A0-B3-CC-49-30-C8 NetBIOS over Tcpip. . . . . . . . : Disabled Server: Wireless_Broadband_Router.home Address: 192.168.1.1 Name: google.com Addresses: 2607:f8b0:400a:802::1008 173.194.33.70 173.194.33.68 173.194.33.65 173.194.33.71 173.194.33.73 173.194.33.67 173.194.33.66 173.194.33.64 173.194.33.69 173.194.33.78 173.194.33.72 Pinging google.com [173.194.33.68] with 32 bytes of data: Reply from 173.194.33.68: bytes=32 time=600ms TTL=54 Reply from 173.194.33.68: bytes=32 time=18ms TTL=54 Ping statistics for 173.194.33.68: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 18ms, Maximum = 600ms, Average = 309ms Server: Wireless_Broadband_Router.home Address: 192.168.1.1 Name: yahoo.com Addresses: 98.139.183.24 206.190.36.45 98.138.253.109 Pinging yahoo.com [206.190.36.45] with 32 bytes of data: Reply from 206.190.36.45: bytes=32 time=11ms TTL=51 Reply from 206.190.36.45: bytes=32 time=14ms TTL=51 Ping statistics for 206.190.36.45: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 11ms, Maximum = 14ms, Average = 12ms Pinging 127.0.0.1 with 32 bytes of data: Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Reply from 127.0.0.1: bytes=32 time<1ms TTL=128 Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms =========================================================================== Interface List 6...84 a6 c8 9d 59 37 ......Microsoft Wi-Fi Direct Virtual Adapter 4...84 a6 c8 9d 59 36 ......Intel® Centrino® Wireless-N 2230 3...a0 b3 cc 49 30 c8 ......Realtek PCIe GBE Family Controller 1...........................Software Loopback Interface 1 5...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter 16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface =========================================================================== IPv4 Route Table =========================================================================== Active Routes: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.12 25 127.0.0.0 255.0.0.0 On-link 127.0.0.1 306 127.0.0.1 255.255.255.255 On-link 127.0.0.1 306 127.255.255.255 255.255.255.255 On-link 127.0.0.1 306 192.168.1.0 255.255.255.0 On-link 192.168.1.12 281 192.168.1.12 255.255.255.255 On-link 192.168.1.12 281 192.168.1.255 255.255.255.255 On-link 192.168.1.12 281 224.0.0.0 240.0.0.0 On-link 127.0.0.1 306 224.0.0.0 240.0.0.0 On-link 192.168.1.12 281 255.255.255.255 255.255.255.255 On-link 127.0.0.1 306 255.255.255.255 255.255.255.255 On-link 192.168.1.12 281 =========================================================================== Persistent Routes: None IPv6 Route Table =========================================================================== Active Routes: If Metric Network Destination Gateway 16 306 ::/0 On-link 1 306 ::1/128 On-link 16 306 2001::/32 On-link 16 306 2001:0:5ef5:79fb:3d:ea9:cdca:f119/128 On-link 4 281 fe80::/64 On-link 16 306 fe80::/64 On-link 16 306 fe80::3d:ea9:cdca:f119/128 On-link 4 281 fe80::798c:7eeb:d5d9:5e12/128 On-link 1 306 ff00::/8 On-link 4 281 ff00::/8 On-link 16 306 ff00::/8 On-link =========================================================================== Persistent Routes: None ========================= Winsock entries ===================================== Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [53760] (Microsoft Corporation) Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation) Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation) Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation) Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [21504] (Microsoft Corporation) Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Catalog5 08 C:\WINDOWS\SysWOW64\wshbth.dll [51200] (Microsoft Corporation) Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation) x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation) x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation) x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation) x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [84480] (Microsoft Corporation) x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation) x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.) x64-Catalog5 08 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation) x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) x64-Catalog9 11 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation) ========================= Event log errors: =============================== Application errors: ================== Error: (11/05/2014 06:35:30 PM) (Source: Application Hang) (User: ) Description: The program notepad.exe version 6.3.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 1af8 Start Time: 01cff969afb36901 Termination Time: 0 Application Path: C:\WINDOWS\SysWOW64\notepad.exe Report Id: 86e972a8-655d-11e4-bfa4-a0b3cc4930c8 Faulting package full name: Faulting package-relative application ID: Error: (11/05/2014 04:32:29 PM) (Source: Application Error) (User: ) Description: Faulting application name: backgroundTaskHost.exe, version: 6.3.9600.16384, time stamp: 0x5215e1f6 Faulting module name: twinapi.appcore.dll, version: 6.3.9600.17195, time stamp: 0x53894a69 Exception code: 0xc000027b Fault offset: 0x00000000000547ac Faulting process id: 0x28a4 Faulting application start time: 0xbackgroundTaskHost.exe0 Faulting application path: backgroundTaskHost.exe1 Faulting module path: backgroundTaskHost.exe2 Report Id: backgroundTaskHost.exe3 Faulting package full name: backgroundTaskHost.exe4 Faulting package-relative application ID: backgroundTaskHost.exe5 Error: (11/05/2014 11:51:25 AM) (Source: Application Hang) (User: ) Description: The program wwahost.exe version 6.3.9600.17031 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 2290 Start Time: 01cff93124fef240 Termination Time: 4294967295 Application Path: C:\WINDOWS\syswow64\wwahost.exe Report Id: 1cf57db3-6525-11e4-bfa4-a0b3cc4930c8 Faulting package full name: Microsoft.SkypeApp_3.1.0.1005_x86__kzf8qxf38zg5c Faulting package-relative application ID: App Error: (11/05/2014 11:36:24 AM) (Source: Application Hang) (User: ) Description: The program wwahost.exe version 6.3.9600.17031 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: e14 Start Time: 01cff92f0c91a211 Termination Time: 4294967295 Application Path: C:\WINDOWS\syswow64\wwahost.exe Report Id: 02e81c73-6523-11e4-bfa4-a0b3cc4930c8 Faulting package full name: Microsoft.SkypeApp_3.1.0.1005_x86__kzf8qxf38zg5c Faulting package-relative application ID: App Error: (11/05/2014 10:38:45 AM) (Source: Application Hang) (User: ) Description: The program backgroundTaskHost.exe version 6.3.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 25b4 Start Time: 01cff926aacc90de Termination Time: 4294967295 Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe Report Id: f831e8db-651a-11e4-bfa4-a0b3cc4930c8 Faulting package full name: MarthaStewartLivingOmnime.EverydayFood_1.1.1.3_neutral__p79skxyasf6gr Faulting package-relative application ID: App Error: (11/05/2014 09:40:35 AM) (Source: Application Error) (User: ) Description: Windows cannot access the file for one of the following reasons: there is a problem with the network connection, the disk that the file is stored on, or the storage drivers installed on this computer; or the disk is missing. Windows closed the program Bing Client Runtime because of this error. Program: Bing Client Runtime File: The error value is listed in the Additional Data section. User Action 1. Open the file again. This situation might be a temporary problem that corrects itself when the program runs again. 2. If the file still cannot be accessed and - It is on the network, your network administrator should verify that there is not a problem with the network and that the server can be contacted. - It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer. 3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER. 4. If the problem persists, restore the file from a backup copy. 5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for further assistance. Additional Data Error value: 0565C910 Disk type: 0 Error: (11/05/2014 09:40:35 AM) (Source: Application Error) (User: ) Description: Faulting application name: BingBar.exe, version: 7.3.132.0, time stamp: 0x531ffb10 Faulting module name: KERNELBASE.dll, version: 6.3.9600.17278, time stamp: 0x53eeb460 Exception code: 0xc000001d Fault offset: 0x00012f71 Faulting process id: 0x1d8c Faulting application start time: 0xBingBar.exe0 Faulting application path: BingBar.exe1 Faulting module path: BingBar.exe2 Report Id: BingBar.exe3 Faulting package full name: BingBar.exe4 Faulting package-relative application ID: BingBar.exe5 Error: (11/05/2014 09:30:39 AM) (Source: Application Hang) (User: ) Description: The program backgroundTaskHost.exe version 6.3.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 2a90 Start Time: 01cff91d7d135db2 Termination Time: 4294967295 Application Path: C:\WINDOWS\system32\backgroundTaskHost.exe Report Id: 70dc696c-6511-11e4-bfa4-a0b3cc4930c8 Faulting package full name: Facebook.Facebook_1.4.0.9_x64__8xx8rvfyw5nnt Faulting package-relative application ID: App Error: (11/05/2014 08:21:57 AM) (Source: Application Hang) (User: ) Description: The program wwahost.exe version 6.3.9600.17031 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel. Process ID: 25cc Start Time: 01cff913cec08ab4 Termination Time: 4294967295 Application Path: C:\WINDOWS\syswow64\wwahost.exe Report Id: c85f53f5-6507-11e4-bfa4-a0b3cc4930c8 Faulting package full name: Microsoft.SkypeApp_3.1.0.1005_x86__kzf8qxf38zg5c Faulting package-relative application ID: App Error: (11/05/2014 05:26:56 AM) (Source: Application Error) (User: ) Description: Faulting application name: backgroundTaskHost.exe, version: 6.3.9600.16384, time stamp: 0x5215e1f6 Faulting module name: twinapi.appcore.dll, version: 6.3.9600.17195, time stamp: 0x53894a69 Exception code: 0xc000027b Fault offset: 0x00000000000547ac Faulting process id: 0x1738 Faulting application start time: 0xbackgroundTaskHost.exe0 Faulting application path: backgroundTaskHost.exe1 Faulting module path: backgroundTaskHost.exe2 Report Id: backgroundTaskHost.exe3 Faulting package full name: backgroundTaskHost.exe4 Faulting package-relative application ID: backgroundTaskHost.exe5 System errors: ============= Error: (11/05/2014 05:08:29 PM) (Source: DCOM) (User: HP-LAPTOP) Description: c:\PROGRA~1\mcafee\msc\mcmscsub.dll -Embedding193{9B3BEB4E-1C5E-4A5F-BB36-2F6587DD34E2} Error: (11/05/2014 02:08:29 PM) (Source: DCOM) (User: HP-LAPTOP) Description: c:\PROGRA~1\mcafee\msc\mcmscsub.dll -Embedding193{9B3BEB4E-1C5E-4A5F-BB36-2F6587DD34E2} Error: (11/05/2014 11:13:19 AM) (Source: DCOM) (User: NT AUTHORITY) Description: 1053VSSUnavailable{E579AB5F-1CC4-44B4-BED9-DE0991FF0623} Error: (11/05/2014 11:13:19 AM) (Source: Service Control Manager) (User: ) Description: The Volume Shadow Copy service failed to start due to the following error: %%1053 Error: (11/05/2014 11:13:19 AM) (Source: Service Control Manager) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the Volume Shadow Copy service to connect. Error: (11/05/2014 11:12:48 AM) (Source: DCOM) (User: NT AUTHORITY) Description: 1053VSSUnavailable{E579AB5F-1CC4-44B4-BED9-DE0991FF0623} Error: (11/05/2014 11:12:48 AM) (Source: Service Control Manager) (User: ) Description: The Volume Shadow Copy service failed to start due to the following error: %%1053 Error: (11/05/2014 11:12:48 AM) (Source: Service Control Manager) (User: ) Description: A timeout was reached (30000 milliseconds) while waiting for the Volume Shadow Copy service to connect. Error: (11/05/2014 11:08:32 AM) (Source: DCOM) (User: HP-LAPTOP) Description: c:\PROGRA~1\mcafee\msc\mcmscsub.dll -Embedding193{9B3BEB4E-1C5E-4A5F-BB36-2F6587DD34E2} Error: (11/05/2014 08:08:30 AM) (Source: DCOM) (User: HP-LAPTOP) Description: c:\PROGRA~1\mcafee\msc\mcmscsub.dll -Embedding193{9B3BEB4E-1C5E-4A5F-BB36-2F6587DD34E2} Microsoft Office Sessions: ========================= Error: (11/05/2014 06:35:30 PM) (Source: Application Hang)(User: ) Description: notepad.exe6.3.9600.163841af801cff969afb369010C:\WINDOWS\SysWOW64\notepad.exe86e972a8-655d-11e4-bfa4-a0b3cc4930c8 Error: (11/05/2014 04:32:29 PM) (Source: Application Error)(User: ) Description: backgroundTaskHost.exe6.3.9600.163845215e1f6twinapi.appcore.dll6.3.9600.1719553894a69c000027b00000000000547ac28a401cff958f5901bb8C:\WINDOWS\system32\backgroundTaskHost.exeC:\Windows\System32\twinapi.appcore.dll62f8d1dc-654c-11e4-bfa4-a0b3cc4930c8MarthaStewartLivingOmnime.EverydayFood_1.1.1.3_neutral__p79skxyasf6grApp Error: (11/05/2014 11:51:25 AM) (Source: Application Hang)(User: ) Description: wwahost.exe6.3.9600.17031229001cff93124fef2404294967295C:\WINDOWS\syswow64\wwahost.exe1cf57db3-6525-11e4-bfa4-a0b3cc4930c8Microsoft.SkypeApp_3.1.0.1005_x86__kzf8qxf38zg5cApp Error: (11/05/2014 11:36:24 AM) (Source: Application Hang)(User: ) Description: wwahost.exe6.3.9600.17031e1401cff92f0c91a2114294967295C:\WINDOWS\syswow64\wwahost.exe02e81c73-6523-11e4-bfa4-a0b3cc4930c8Microsoft.SkypeApp_3.1.0.1005_x86__kzf8qxf38zg5cApp Error: (11/05/2014 10:38:45 AM) (Source: Application Hang)(User: ) Description: backgroundTaskHost.exe6.3.9600.1638425b401cff926aacc90de4294967295C:\WINDOWS\system32\backgroundTaskHost.exef831e8db-651a-11e4-bfa4-a0b3cc4930c8MarthaStewartLivingOmnime.EverydayFood_1.1.1.3_neutral__p79skxyasf6grApp Error: (11/05/2014 09:40:35 AM) (Source: Application Error)(User: ) Description: Bing Client Runtime0565C9100 Error: (11/05/2014 09:40:35 AM) (Source: Application Error)(User: ) Description: BingBar.exe7.3.132.0531ffb10KERNELBASE.dll6.3.9600.1727853eeb460c000001d00012f711d8c01cff91ecef67e81C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingBar.exeC:\WINDOWS\SYSTEM32\KERNELBASE.dlld85bc4ce-6512-11e4-bfa4-a0b3cc4930c8 Error: (11/05/2014 09:30:39 AM) (Source: Application Hang)(User: ) Description: backgroundTaskHost.exe6.3.9600.163842a9001cff91d7d135db24294967295C:\WINDOWS\system32\backgroundTaskHost.exe70dc696c-6511-11e4-bfa4-a0b3cc4930c8Facebook.Facebook_1.4.0.9_x64__8xx8rvfyw5nntApp Error: (11/05/2014 08:21:57 AM) (Source: Application Hang)(User: ) Description: wwahost.exe6.3.9600.1703125cc01cff913cec08ab44294967295C:\WINDOWS\syswow64\wwahost.exec85f53f5-6507-11e4-bfa4-a0b3cc4930c8Microsoft.SkypeApp_3.1.0.1005_x86__kzf8qxf38zg5cApp Error: (11/05/2014 05:26:56 AM) (Source: Application Error)(User: ) Description: backgroundTaskHost.exe6.3.9600.163845215e1f6twinapi.appcore.dll6.3.9600.1719553894a69c000027b00000000000547ac173801cff8fc051da2a2C:\WINDOWS\system32\backgroundTaskHost.exeC:\Windows\System32\twinapi.appcore.dll69877cd6-64ef-11e4-bfa4-a0b3cc4930c8MarthaStewartLivingOmnime.EverydayFood_1.1.1.3_neutral__p79skxyasf6grApp =========================== Installed Programs ============================ 4 Elements II (x32 Version: 2.2.0.98 - WildTangent) Hidden 64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated) Adobe AIR (x32 Version: 14.0.0.110 - Adobe Systems Incorporated) Hidden Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.189 - Adobe Systems Incorporated) Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.) Amazon Cloud Player (HKCU\...\Amazon Amazon Cloud Player) (Version: 2.1.0.381 - Amazon Services LLC) Amazon MP3 Downloader 1.0.17 (HKLM-x32\...\Amazon MP3 Downloader) (Version: 1.0.17 - Amazon Services LLC) Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) AuthenTec TrueAPI 64-bit (Version: 1.6.0.87 - AuthenTec, Inc.) Hidden Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation) Bing Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.470.0 - Microsoft Corporation) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden Build-a-lot 4 - Power Source (x32 Version: 2.2.0.98 - WildTangent) Hidden C310 (x32 Version: 140.0.353.000 - Hewlett-Packard) Hidden Carbonite (HKLM-x32\...\Carbonite Backup) (Version: 5.5.5 build 4151 (Jun-27-2014) - Carbonite) Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Cradle Of Egypt Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden Cradle of Rome 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3.6326 - CyberLink Corp.) CyberLink LabelPrint (x32 Version: 2.5.3.6326 - CyberLink Corp.) Hidden CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.4.2928 - CyberLink Corp.) CyberLink Media Suite 10 (x32 Version: 10.0.4.2928 - CyberLink Corp.) Hidden CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.1.3119 - CyberLink Corp.) CyberLink PhotoDirector (x32 Version: 2.0.1.3119 - CyberLink Corp.) Hidden CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.2527 - CyberLink Corp.) CyberLink Power2Go 8 (x32 Version: 8.0.3.2527 - CyberLink Corp.) Hidden CyberLink PowerDirector 10 (HKLM-x32\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.2.2222 - CyberLink Corp.) CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.2.2222 - CyberLink Corp.) CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.6.4319 - CyberLink Corp.) CyberLink PowerDVD (x32 Version: 10.0.6.4319 - CyberLink Corp.) Hidden CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.6.6119 - CyberLink Corp.) CyberLink YouCam (x32 Version: 3.5.6.6119 - CyberLink Corp.) Hidden D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{131CD369-AA3B-424F-A83C-54DF3534B95C}) (Version: - Microsoft) Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden DiskAid 6.4.9.0 (HKLM\...\DiskAid_is1) (Version: 6.4.9.0 - DigiDNA) Dropbox (HKCU\...\Dropbox) (Version: 2.10.30 - Dropbox, Inc.) Ecxtra (HKLM-x32\...\{F72A7910-4A9A-4788-A8F5-19BAF033748D}) (Version: 1.1.10 - Toro) Elevated Installer (x32 Version: 2.1.13 - Garmin Ltd or its subsidiaries) Hidden Energy Star (HKLM\...\{0FA995CC-C849-4755-B14B-5404CC75DC24}) (Version: 1.0.8 - Hewlett-Packard) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Farm Frenzy (x32 Version: 2.2.0.98 - WildTangent) Hidden FATE: The Cursed King (x32 Version: 2.2.0.97 - WildTangent) Hidden Final Drive Fury (x32 Version: 2.2.0.95 - WildTangent) Hidden Fitbit Connect (HKLM-x32\...\Fitbit Connect) (Version: 1.0.0.2578 - Fitbit Inc.) FlatOut 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden Flixster (HKCU\...\57554551bac4f5b1) (Version: 2.1.0.282 - Flixster) Garmin Express (HKLM-x32\...\{e47a5c85-88a2-47d2-b380-fc2e763c2e6d}) (Version: 2.1.13 - Garmin Ltd or its subsidiaries) Garmin Express (x32 Version: 2.1.13 - Garmin Ltd or its subsidiaries) Hidden Garmin Express Tray (x32 Version: 2.1.13 - Garmin Ltd or its subsidiaries) Hidden Garmin Update Service (x32 Version: 2.1.13 - Garmin Ltd or its subsidiaries) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.) Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google) Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.95 - WildTangent) Hidden GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden Hoyle Card Games (x32 Version: 2.2.0.95 - WildTangent) Hidden HP 3D DriveGuard (HKLM\...\{54CE68A8-4F2D-4328-B1F7-D6C720405F7F}) (Version: 4.2.9.1 - Hewlett-Packard Company) HP Connected Backup (HKLM-x32\...\{6BA5F6E7-6CC1-4117-816D-A549A06CE44E}) (Version: 8.7.0.0 - Autonomy) HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd) HP CoolSense (HKLM-x32\...\{59F8C5AA-91BD-423D-BF05-09A80F39898F}) (Version: 2.10.62 - Hewlett-Packard Company) HP Customer Experience Enhancements (x32 Version: 6.0.1.8 - Hewlett-Packard) Hidden HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Documentation (HKLM-x32\...\{7DE5085A-3665-40BC-9595-A1A209699137}) (Version: 1.1.0.0 - Hewlett-Packard) HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.3.0 - WildTangent) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP MyRoom (HKLM-x32\...\{60FEB659-0749-4709-A484-6846CF60E27B}) (Version: 9.4.0148 - Hewlett-Packard) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.2024 - HP Photo Creations Powered by RocketLife) HP Photosmart Premium C310 All-in-One Driver Software 14.0 Rel. 7 (HKLM\...\{131D8ED6-4864-4554-9BAB-09B47C232522}) (Version: 14.0 - HP) HP Postscript Converter (Version: 3.1.3554 - Hewlett-Packard) Hidden HP Quick Launch (HKLM-x32\...\{E5823036-6F09-4D0A-B05C-E2BAA129288A}) (Version: 3.0.6 - Hewlett-Packard Company) HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard) HP Recovery Manager (x32 Version: 7.00 - Hewlett-Packard) Hidden HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard) HP SimplePass (HKLM-x32\...\{4BACA3B8-F63A-44ED-9A8D-48B4D02AD268}) (Version: 6.0.100.276 - Hewlett-Packard) HP Software Framework (HKLM-x32\...\{835B275B-F29B-464B-BD4B-097FD55FAB0A}) (Version: 4.6.8.1 - Hewlett-Packard Company) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company) HP Support Solutions Framework (HKLM-x32\...\{81E14A67-42ED-4DD0-AE08-366FE3D3102E}) (Version: 11.50.0012 - Hewlett-Packard Company) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HP Utility Center (HKLM-x32\...\{0C57987A-A03A-4B95-A309-D23F78F406CA}) (Version: 1.0.7 - Hewlett-Packard) HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company) HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden HPDetect (HKLM-x32\...\{CCCDD476-98F9-4B06-91DB-23F27CEC3BE1}) (Version: 1.0.0.0 - HP) HPDiagnosticAlert (x32 Version: 1.00.0000 - Microsoft) Hidden HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.) IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6425.0 - IDT) Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation) Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation) Intel® PRO/Wireless Driver (Version: 16.11.0000.1482 - Intel Corporation) Hidden Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3621 - Intel Corporation) Intel® PROSet/Wireless Software for Bluetooth® Technology (HKLM\...\{302600C1-6BDF-4FD1-1303-148929CC1385}) (Version: 3.0.1303.0326 - Intel Corporation) Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) Intel® WiDi (HKLM\...\{EDBA2433-0910-4C72-8C5B-8FEDAE3EF18E}) (Version: 3.5.34.0 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{8e41467d-297e-496d-8b0f-e771b6c87c06}) (Version: 16.11.0 - Intel Corporation) Intel® PROSet/Wireless WiFi Software (Version: 16.10.0.0307 - Intel Corporation) Hidden Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.) Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden LeapFrog Connect (HKLM-x32\...\UPCShell) (Version: 4.2.9.15649 - LeapFrog) LeapFrog Connect (x32 Version: 4.2.9.15649 - LeapFrog) Hidden LeapFrog My Pals Plugin (x32 Version: 4.2.9.15649 - LeapFrog) Hidden Luxor Evolved (x32 Version: 2.2.0.98 - WildTangent) Hidden Mahjongg Dimensions Deluxe: Tiles in Time (x32 Version: 2.2.0.98 - WildTangent) Hidden MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden McAfee AntiVirus Plus (HKLM-x32\...\MSC) (Version: 12.8.856 - McAfee, Inc.) McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.) McAfee SiteAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.7.143 - McAfee, Inc.) Memory Manager 4.0 (HKLM-x32\...\{C3E83D6F-E8C3-407D-8366-EF00153B6E81}) (Version: 4.1.4780 - Creative Memories) Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden Microsoft Digital Image Library 9 - Blocker (x32 Version: 9.00.0000 - Microsoft Corporation) Hidden Microsoft Digital Image Suite 2006 (HKLM-x32\...\PictureItSuite_v11) (Version: 11.0.0422 - Microsoft Corporation) Microsoft Digital Image Suite 2006 Editor (x32 Version: 11.0.0422 - Microsoft Corporation) Hidden Microsoft Digital Image Suite 2006 Library (x32 Version: 11.0.0422 - Microsoft Corporation) Hidden Microsoft Money 2005 (HKLM-x32\...\Money2005b) (Version: 14 - Microsoft) Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation) Microsoft Mouse and Keyboard Center (Version: 2.3.188.0 - Microsoft Corporation) Hidden Microsoft Office 2010 Service Pack 1 (SP1) (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version: - Microsoft) Microsoft Office 2010 Service Pack 1 (SP1) (x32 Version: - Microsoft) Hidden Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0409-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation) Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.6029.1000 - Microsoft Corporation) Microsoft Office Proof (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden Microsoft Office Single Image 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.6029.1000 - Microsoft Corporation) Hidden Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.3.1229.0918 - Microsoft Corporation) Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (HKLM-x32\...\{95140000-007D-0409-0000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Mortimer Beckett and the Crimson Thief Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 32.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 en-US)) (Version: 32.0.3 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla) MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden Mystery P.I. - Curious Case of Counterfeit Cove (x32 Version: 2.2.0.98 - WildTangent) Hidden Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden NVIDIA Control Panel 331.65 (Version: 331.65 - NVIDIA Corporation) Hidden NVIDIA Graphics Driver 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation) NVIDIA Install Application (Version: 2.1002.133.889 - NVIDIA Corporation) Hidden NVIDIA Optimus 1.15.2 (Version: 1.15.2 - NVIDIA Corporation) Hidden NVIDIA PhysX (x32 Version: 9.12.1031 - NVIDIA Corporation) Hidden NVIDIA PhysX System Software 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation) NVIDIA Update 1.15.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.15.2 - NVIDIA Corporation) NVIDIA Update Components (Version: 1.15.2 - NVIDIA Corporation) Hidden Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden Photo Gallery (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.) PocketMoney Desktop 2.0.13 (HKLM-x32\...\{06BA352C-7F07-4B49-9094-051B2D6B2ABC}_is1) (Version: - Catamount Software) Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden Polar Golfer (x32 Version: 2.2.0.98 - WildTangent) Hidden PS_AIO_07_C310_SW_Min (x32 Version: 140.0.365.000 - Hewlett-Packard) Hidden QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.) QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek) Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.29034 - Realtek Semiconductor Corp.) Roads of Rome 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden ROBLOX Player for Vande_000 (HKCU\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation) ROBLOX Studio 2013 for Vande_000 (HKCU\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - ROBLOX Corporation) Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden Seagate Dashboard (HKLM-x32\...\{C3A11907-930D-41AC-A135-CC3B12F92011}) (Version: 1.1.0.1421 - Memeo Inc.) Seagate Dashboard 2.0 (HKLM-x32\...\{43C423D9-E6D6-4607-ADC9-EBB54F690C57}) (Version: 2.2.29.0 - Seagate) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP) ShopAtHome.com Helper (HKLM-x32\...\ShopAtHome.com Helper) (Version: 7.0.3.15 - ShopAtHome.com) Shutterfly Express Uploader (HKLM-x32\...\com.Shutterfly.ExpressUploader) (Version: 1.2.0.0 - Shutterfly, Inc.) Shutterfly Express Uploader (x32 Version: 1.2.0 - Shutterfly, Inc.) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation) Skype 6.21 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.) SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden StoryBook Creator 4.0 (HKLM\...\{EC445D66-B081-474E-948C-52E1EC48A414}) (Version: 4.0.5045 - Panstoria, Inc.) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.5.3.3 - Synaptics Incorporated) Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden TurboTax 2012 (HKLM-x32\...\TurboTax 2012) (Version: 2012.0 - Intuit, Inc) TurboTax 2012 WinPerFedFormset (x32 Version: 012.000.2309 - Intuit Inc.) Hidden TurboTax 2012 WinPerReleaseEngine (x32 Version: 012.000.0474 - Intuit Inc.) Hidden TurboTax 2012 WinPerTaxSupport (x32 Version: 012.000.0186 - Intuit Inc.) Hidden TurboTax 2012 woriper (x32 Version: 012.000.1483 - Intuit Inc.) Hidden TurboTax 2012 wrapper (x32 Version: 012.000.0127 - Intuit Inc.) Hidden TurboTax 2013 (HKLM-x32\...\TurboTax 2013) (Version: 2013.0 - Intuit, Inc) TurboTax 2013 WinPerFedFormset (x32 Version: 013.000.2118 - Intuit Inc.) Hidden TurboTax 2013 WinPerReleaseEngine (x32 Version: 013.000.0492 - Intuit Inc.) Hidden TurboTax 2013 WinPerTaxSupport (x32 Version: 013.000.0169 - Intuit Inc.) Hidden TurboTax 2013 woriper (x32 Version: 013.000.1362 - Intuit Inc.) Hidden TurboTax 2013 wrapper (x32 Version: 013.000.0135 - Intuit Inc.) Hidden Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS) Update for Microsoft Office 2010 (KB2553065) (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{A8686D24-1E89-43A1-973E-05A258D2B3F8}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{48E1B6C2-7299-4F3F-AA63-42F0ACE55AA4}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{18B3CF2A-73F7-4716-B1AE-86D68726D408}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{14B7142F-D7E2-4FB0-9E3B-7CAA8D7FFC56}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2566458) (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{EFB525A0-E1C0-4E32-9968-FE401BC87363}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ED31DE9A-3E13-4E2C-9106-E0D8AFFB9FA6}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B1FA5E8C-2342-45AF-8A62-5E860042F8DF}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{1CBEDB37-C438-473F-8BA0-2535B0D237E2}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{1CBEDB37-C438-473F-8BA0-2535B0D237E2}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9CFD026D-EB1C-48C2-9DD2-8E8875F251B2}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{089DBFD7-8211-43B2-AAAE-5BDD8C23E3A8}) (Version: - Microsoft) Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.SingleImage_{794A0574-4E2F-4D58-B2A0-D7460ACDC85C}) (Version: - Microsoft) Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition (HKLM-x32\...\{90140000-00A1-0409-0000-0000000FF1CE}_Office14.SingleImage_{9865DC3A-2898-48D9-B96A-46397571C934}) (Version: - Microsoft) Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1CBE095-403D-466D-BB13-B185A5F33231}) (Version: - Microsoft) Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.SingleImage_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version: - Microsoft) Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.SingleImage_{1EEFF749-6F29-4F0B-AB08-4C6EA52AA110}) (Version: - Microsoft) Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{BC6DFBFD-16DD-47E1-A7EF-2C062930FA4F}) (Version: - Microsoft) Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{6B6DDDCE-B456-4FE1-9A07-DBC1708E4158}) (Version: - Microsoft) Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.SingleImage_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version: - Microsoft) Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft) Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden Use the entry named LeapFrog Connect to uninstall (LeapFrog My Pals Plugin) (HKLM-x32\...\MyPalsPlugin) (Version: - LeapFrog) Vacation Quest - Australia (x32 Version: 2.2.0.98 - WildTangent) Hidden Validity WBF DDK (HKLM\...\{1F91C200-8F0F-4009-A75E-DB6CE151BD4E}) (Version: 4.4.234.0 - Validity Sensors, Inc.) WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden Where in the World is Carmen Sandiego (HKLM-x32\...\{8476400B-3017-4EF7-8C06-2BCF7BD482B8}) (Version: 1.00.0000 - Encore) WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent) WildTangent Games App (HP Games) (x32 Version: 4.0.10.16 - WildTangent) Hidden Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03.05.012) (HKLM\...\8F14F2ECEDE68D26EA515B48DC25B39103C4FE8D) (Version: 09/10/2009 02.03.05.012 - Leapfrog) Windows Live Communications Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Windows Live Essentials (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Installer (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Mail (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Messenger (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live MIME IFilter (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Photo Common (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live PIMT Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live SOXE (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live SOXE Definitions (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live UX Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live UX Platform Language Pack (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Writer (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Writer Resources (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Wizard101 (HKLM-x32\...\{A9E27FF5-6294-46A8-B8FD-77B1DECA3021}) (Version: 1.0.0 - KingsIsle Entertainment, Inc.) XTRA SMART Scheduling Advisor (HKCU\...\d024c7202e9a5727) (Version: 2.0.27.1 - The Toro Company) YNAB 4 version 4.3.450 (HKLM-x32\...\com.ynab.YNAB4.LiveCaptive_is1) (Version: 4.3.450 - YouNeedABudget.com) Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden ========================= Memory info: =================================== Percentage of memory in use: 50% Total physical RAM: 8081.27 MB Available physical RAM: 3970.52 MB Total Pagefile: 11115.13 MB Available Pagefile: 4091.21 MB Total Virtual: 4095.88 MB Available Virtual: 3976.87 MB ========================= Partitions: ===================================== 1 Drive c: () (Fixed) (Total:669.87 GB) (Free:35.78 GB) NTFS 2 Drive d: (RECOVERY) (Fixed) (Total:27.65 GB) (Free:0.25 GB) NTFS 3 Drive e: (L3M0NNW1) (CDROM) (Total:5.93 GB) (Free:0 GB) UDF ========================= Users: ======================================== User accounts for \\HP-LAPTOP Administrator Guest UpdatusUser Vande_000 **** End of log **** TDSKiller 18:40:36.0420 0x2864 TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34 18:40:36.0420 0x2864 UEFI system 18:40:43.0266 0x2864 ============================================================ 18:40:43.0266 0x2864 Current date / time: 2014/11/05 18:40:43.0266 18:40:43.0266 0x2864 SystemInfo: 18:40:43.0266 0x2864 18:40:43.0266 0x2864 OS Version: 6.3.9600 ServicePack: 0.0 18:40:43.0266 0x2864 Product type: Workstation 18:40:43.0266 0x2864 ComputerName: HP-LAPTOP 18:40:43.0266 0x2864 UserName: Vande_000 18:40:43.0266 0x2864 Windows directory: C:\WINDOWS 18:40:43.0266 0x2864 System windows directory: C:\WINDOWS 18:40:43.0266 0x2864 Running under WOW64 18:40:43.0266 0x2864 Processor architecture: Intel x64 18:40:43.0266 0x2864 Number of processors: 8 18:40:43.0266 0x2864 Page size: 0x1000 18:40:43.0266 0x2864 Boot type: Normal boot 18:40:43.0266 0x2864 ============================================================ 18:40:44.0001 0x2864 KLMD registered as C:\WINDOWS\system32\drivers\07205776.sys 18:40:44.0265 0x2864 System UUID: {63499400-B194-07FB-6FA3-6140D583E9BF} 18:40:44.0657 0x2864 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 ( 698.64 Gb ), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 18:40:44.0657 0x2864 ============================================================ 18:40:44.0657 0x2864 \Device\Harddisk0\DR0: 18:40:44.0657 0x2864 GPT partitions: 18:40:44.0657 0x2864 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {1F9DE574-078F-4D76-8243-F576B96CA9AD}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000 18:40:44.0657 0x2864 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {B6AEF729-CEEF-4025-9985-70CDB61BAA07}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x82000 18:40:44.0657 0x2864 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {237AA481-3792-481B-BDB3-CB293984A621}, Name: Microsoft reserved partition, StartLBA 0x14A800, BlocksNum 0x40000 18:40:44.0657 0x2864 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {19FCFE16-90C1-48C5-B551-46A53D281187}, Name: Basic data partition, StartLBA 0x18A800, BlocksNum 0x53BBF000 18:40:44.0657 0x2864 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {CBE190F5-7B8A-47F0-AC61-81232A680D1A}, Name: , StartLBA 0x53D49800, BlocksNum 0xAF000 18:40:44.0657 0x2864 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {C7BF27FC-171D-4C43-A0B6-2C9AC3BF7588}, Name: Basic data partition, StartLBA 0x53DF8800, BlocksNum 0x374A800 18:40:44.0657 0x2864 MBR partitions: 18:40:44.0657 0x2864 ============================================================ 18:40:44.0657 0x2864 C: <-> \Device\Harddisk0\DR0\Partition4 18:40:44.0657 0x2864 D: <-> \Device\Harddisk0\DR0\Partition6 18:40:44.0657 0x2864 ============================================================ 18:40:44.0657 0x2864 Initialize success 18:40:44.0657 0x2864 ============================================================ 18:40:52.0104 0x2420 ============================================================ 18:40:52.0104 0x2420 Scan started 18:40:52.0104 0x2420 Mode: Manual; 18:40:52.0104 0x2420 ============================================================ 18:40:52.0104 0x2420 KSN ping started 18:40:54.0489 0x2420 KSN ping finished: true 18:40:57.0004 0x2420 ================ Scan system memory ======================== 18:40:57.0004 0x2420 System memory - ok 18:40:57.0004 0x2420 ================ Scan services ============================= 18:40:57.0176 0x2420 0281641415154510mcinstcleanup - ok 18:40:57.0285 0x2420 [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys 18:40:57.0347 0x2420 1394ohci - ok 18:40:57.0394 0x2420 [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys 18:40:57.0441 0x2420 3ware - ok 18:40:57.0457 0x2420 [ 899B7E724BF19F17978B6A37B864A277, F7D166DC5F7642D4B834B1E0D956929BA94F3E4D402989FC1A681A08FA1F86B6 ] Accelerometer C:\WINDOWS\system32\DRIVERS\Accelerometer.sys 18:40:57.0488 0x2420 Accelerometer - ok 18:40:57.0519 0x2420 [ 9539F7917B4B6D92C90F0FAA6B86C605, B4C284E8EECC2E7025053A3320EFDC9F47BCA9828853AD2A805DB826CA4AC27E ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys 18:40:57.0551 0x2420 ACPI - ok 18:40:57.0566 0x2420 [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys 18:40:57.0582 0x2420 acpiex - ok 18:40:57.0613 0x2420 [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys 18:40:57.0629 0x2420 acpipagr - ok 18:40:57.0660 0x2420 [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys 18:40:57.0723 0x2420 AcpiPmi - ok 18:40:57.0785 0x2420 [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys 18:40:57.0848 0x2420 acpitime - ok 18:40:57.0894 0x2420 [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 18:40:57.0894 0x2420 AdobeARMservice - ok 18:40:58.0035 0x2420 [ 2637233632CCD1837A1A57A43CAF00A4, 848026C6C9B38FD9F70BC7B2306BF4F5DD395726D4FDD6A18B29354921191DC5 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 18:40:58.0035 0x2420 AdobeFlashPlayerUpdateSvc - ok 18:40:58.0101 0x2420 [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS 18:40:58.0151 0x2420 ADP80XX - ok 18:40:58.0213 0x2420 [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll 18:40:58.0229 0x2420 AeLookupSvc - ok 18:40:58.0292 0x2420 [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD C:\WINDOWS\system32\drivers\afd.sys 18:40:58.0385 0x2420 AFD - ok 18:40:58.0417 0x2420 [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys 18:40:58.0432 0x2420 agp440 - ok 18:40:58.0463 0x2420 [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys 18:40:58.0510 0x2420 ahcache - ok 18:40:58.0557 0x2420 [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG C:\WINDOWS\System32\alg.exe 18:40:58.0588 0x2420 ALG - ok 18:40:58.0620 0x2420 [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys 18:40:58.0682 0x2420 AmdK8 - ok 18:40:58.0713 0x2420 [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys 18:40:58.0729 0x2420 AmdPPM - ok 18:40:58.0776 0x2420 [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys 18:40:58.0792 0x2420 amdsata - ok 18:40:58.0823 0x2420 [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys 18:40:58.0870 0x2420 amdsbs - ok 18:40:58.0901 0x2420 [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys 18:40:58.0917 0x2420 amdxata - ok 18:40:58.0948 0x2420 [ 0C3D62CB6B8F2B3CC42369BAC0F58AD5, F0121EACB6060DF1F6C5F79C15D5B483F301EF85B3C79F67806520BE9CEE398E ] AMPPAL C:\WINDOWS\System32\drivers\AMPPAL.sys 18:40:58.0979 0x2420 AMPPAL - ok 18:40:59.0026 0x2420 [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc C:\WINDOWS\system32\inetsrv\apphostsvc.dll 18:40:59.0073 0x2420 AppHostSvc - ok 18:40:59.0104 0x2420 [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID C:\WINDOWS\system32\drivers\appid.sys 18:40:59.0167 0x2420 AppID - ok 18:40:59.0245 0x2420 [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll 18:40:59.0276 0x2420 AppIDSvc - ok 18:40:59.0307 0x2420 [ 7667B9D81EA8FD6540E6CF72F92161A6, 98F3D0E376F715EBE083FE112CAA640BCE0F13DCE0F244D059D7FA019EA3D24C ] Appinfo C:\WINDOWS\System32\appinfo.dll 18:40:59.0432 0x2420 Appinfo - ok 18:40:59.0479 0x2420 [ 650D03E40F93FAE323CB841F80368E5C, F67B97CFDCE2EE9294977725268EFDB0DD724BD16E7ED5BFCA45375AA8EBA5BB ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 18:40:59.0495 0x2420 Apple Mobile Device - ok 18:40:59.0589 0x2420 [ CB12C47647D8BDAFAA94C0856B14128B, 5590C98095357C92563EF94800107D3611AA6ECA1A70BE463C03B279E618A6C4 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll 18:40:59.0620 0x2420 AppReadiness - ok 18:40:59.0729 0x2420 [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll 18:40:59.0776 0x2420 AppXSvc - ok 18:40:59.0839 0x2420 [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys 18:40:59.0870 0x2420 arcsas - ok 18:40:59.0979 0x2420 [ AA2E8C6B8D7EA7BAF04C988801927F48, 4B82043F1B9C67CDCDC71102F7AEE05EEA8F9775A5CB33AE80F4DCDB42521C40 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 18:40:59.0979 0x2420 aspnet_state - ok 18:40:59.0995 0x2420 [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys 18:41:00.0026 0x2420 AsyncMac - ok 18:41:00.0057 0x2420 [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys 18:41:00.0089 0x2420 atapi - ok 18:41:00.0193 0x2420 [ 886767FD022213F7885416134E9082E5, E248D82210FBEBF62C23EBEC74A976B2D1A4E62D3B7638D95B2574B77BA05DD0 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll 18:41:00.0255 0x2420 AudioEndpointBuilder - ok 18:41:00.0286 0x2420 [ 79B134ECE836B406B212E28C24011538, 1B875DD23CCAD8A2759DCDBCDCF3DE14231B9DB5EEC8E84FE081E41A52A047A1 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll 18:41:00.0364 0x2420 Audiosrv - ok 18:41:00.0411 0x2420 [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll 18:41:00.0521 0x2420 AxInstSV - ok 18:41:00.0568 0x2420 [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys 18:41:00.0599 0x2420 b06bdrv - ok 18:41:00.0614 0x2420 [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys 18:41:00.0708 0x2420 BasicDisplay - ok 18:41:00.0755 0x2420 [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys 18:41:00.0755 0x2420 BasicRender - ok 18:41:00.0786 0x2420 [ 5F685973740F289BE3C809952DB8408B, 4C0A0C06BB2B6B1879A860B0D68289A55F80CF74947FCCE7815F1D8121232F62 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe 18:41:00.0786 0x2420 BBSvc - ok 18:41:00.0802 0x2420 [ 76F78018F45E7F92164CEA5020176933, 76E1CA6E198417F3749864721C43913189A7EA07B5ED320DE543B2037CEA3D65 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe 18:41:00.0802 0x2420 BBUpdate - ok 18:41:00.0833 0x2420 [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys 18:41:00.0833 0x2420 bcmfn2 - ok 18:41:00.0849 0x2420 [ E07C80468D0C599BFF01D9D4EC7AEDC3, F675F455924DEC3FF69AD816DFEB6E74C804AEC3D3BFF7515953DB9D79C9B2D0 ] BDESVC C:\WINDOWS\System32\bdesvc.dll 18:41:00.0880 0x2420 BDESVC - ok 18:41:00.0880 0x2420 [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\WINDOWS\system32\drivers\Beep.sys 18:41:00.0896 0x2420 Beep - ok 18:41:00.0927 0x2420 [ 20FB137ADDE1255F15F265A7BD9579BE, 87B4D5C91EFEAD987AAC3491A4360F82824C46AFF958B6F4CAED7C12224EF159 ] BFE C:\WINDOWS\System32\bfe.dll 18:41:00.0958 0x2420 BFE - ok 18:41:00.0990 0x2420 [ 9BF7ED72685E81BF8763B1585D40C57F, 69C463A4284A4AC8968F3D1690E4F1560486AB7D17A704F705D6A8896915A3B4 ] BingDesktopUpdate C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe 18:41:00.0990 0x2420 BingDesktopUpdate - ok 18:41:01.0021 0x2420 [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS C:\WINDOWS\System32\qmgr.dll 18:41:01.0068 0x2420 BITS - ok 18:41:01.0115 0x2420 [ A7AC8620334CF1E5CAA28E1A17F4B06F, D2ACC95E170D3452A8943DE8EB96BA75B5C0BC047FD61CD12D4180234A8EB6D4 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe 18:41:01.0177 0x2420 Bluetooth Device Monitor - ok 18:41:01.0224 0x2420 [ C7EBBF3A5F43FEE7D41C178019683570, A121063AF2D783102EEC38451A17A5066779D09786A380F2AC19C1EB76B41F6C ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe 18:41:01.0302 0x2420 Bluetooth OBEX Service - ok 18:41:01.0380 0x2420 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 18:41:01.0396 0x2420 Bonjour Service - ok 18:41:01.0443 0x2420 [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys 18:41:01.0583 0x2420 bowser - ok 18:41:01.0724 0x2420 [ E325BCD68EC0CF2E2EDD0AB7CC17C698, 4DEDEF91F6BD1CC8DBE118AC28CA6BD874449A053B9CDE9FFEB1C7B98501D938 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll 18:41:01.0833 0x2420 BrokerInfrastructure - ok 18:41:01.0911 0x2420 [ 041A999E4FF9A7CDBE67357751881FB8, 356C52637EA715D6FA2B65BD311C9BF1635A582023434902EC2DE4A2448961F8 ] Browser C:\WINDOWS\System32\browser.dll 18:41:02.0099 0x2420 Browser - ok 18:41:02.0158 0x2420 [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys 18:41:02.0220 0x2420 BthAvrcpTg - ok 18:41:02.0283 0x2420 [ 131F1C8573E7BFB41C54FBF5309CCD94, DAFE51E3BADBD82A33B580F212B2D6520A120877C23F6D675521FEA2F4BA5A1F ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys 18:41:02.0470 0x2420 BthEnum - ok 18:41:02.0517 0x2420 [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys 18:41:02.0564 0x2420 BthHFEnum - ok 18:41:02.0626 0x2420 [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys 18:41:02.0705 0x2420 bthhfhid - ok 18:41:02.0751 0x2420 [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum C:\WINDOWS\System32\drivers\BthLEEnum.sys 18:41:02.0767 0x2420 BthLEEnum - ok 18:41:02.0798 0x2420 [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys 18:41:02.0845 0x2420 BTHMODEM - ok 18:41:02.0861 0x2420 [ 25BB93167DEF270188072603F92A1EF5, CE4637CE4B63420E218F53CAF89A8C85D036B879B80456FEF3C7C395590E26BB ] BthPan C:\WINDOWS\System32\drivers\bthpan.sys 18:41:03.0001 0x2420 BthPan - ok 18:41:03.0064 0x2420 [ 97B9076611291AE4C4C107BC915BD026, 0A77873AAF1ADB76CAB98A84D2242781E34E2699632E45EB92ED7DB20B2BE0C1 ] BTHPORT C:\WINDOWS\System32\Drivers\BTHport.sys 18:41:03.0267 0x2420 BTHPORT - ok 18:41:03.0314 0x2420 [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv C:\WINDOWS\system32\bthserv.dll 18:41:03.0364 0x2420 bthserv - ok 18:41:03.0410 0x2420 [ 23E75BED9076F856B36F5F934BBD5795, CCEB72B788522B7D52A6C07646005EBC68F9599D3714ECACF3A194CA47A1BE85 ] BTHUSB C:\WINDOWS\System32\Drivers\BTHUSB.sys 18:41:03.0567 0x2420 BTHUSB - ok 18:41:03.0629 0x2420 [ 7E65D1FB41C98C99E17FC2C8E1483D1C, 3738AAD8A2D7F9EF1B7F51D9F1D1B57F66C57D06F184A2765AFD0660303C218B ] btmaux C:\WINDOWS\system32\DRIVERS\btmaux.sys 18:41:03.0660 0x2420 btmaux - ok 18:41:03.0723 0x2420 [ 6B6ED5D18816D9582C5CF1298D5E2E5D, A7E24054979ABEC59E02CB956344B0D6A6BFD8668936073128571ECFB37419EB ] btmhsf C:\WINDOWS\system32\DRIVERS\btmhsf.sys 18:41:03.0926 0x2420 btmhsf - ok 18:41:04.0036 0x2420 [ 1F79342D9EB530A48742F651E570983A, 99E0B613C23FA8591E248DFA6FF2D3EE19E262BE6E070A0E43E256B69687017F ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe 18:41:04.0082 0x2420 c2cautoupdatesvc - ok 18:41:04.0203 0x2420 [ E4938E0A376CF0B9D989EE5C0A146891, 9DF6AB5781CD60862D9664CA9A8AF0696A1FB6D09D804CD8DE9630F40DE59E90 ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe 18:41:04.0297 0x2420 c2cpnrsvc - ok 18:41:04.0859 0x2420 [ 517C6E87783377105111CCE1EECF59B6, 7A92959F4B946A4D5942D48969E54BE09319FF1143B5716699A9E4FBC3CB76A7 ] CarboniteService C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe 18:41:05.0109 0x2420 CarboniteService - ok 18:41:05.0187 0x2420 [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys 18:41:05.0203 0x2420 cdfs - ok 18:41:05.0328 0x2420 [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys 18:41:05.0344 0x2420 cdrom - ok 18:41:05.0453 0x2420 [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc C:\WINDOWS\System32\certprop.dll 18:41:05.0672 0x2420 CertPropSvc - ok 18:41:05.0719 0x2420 [ 4211C57BA2D3B714212E7AC63D6A3F1D, 0EB8996F4C9A70624DB7BA35F3426E47E5ED5F5E1A2933E6ED735BEFDB6B6156 ] cfwids C:\WINDOWS\system32\drivers\cfwids.sys 18:41:05.0734 0x2420 cfwids - ok 18:41:05.0812 0x2420 [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\WINDOWS\System32\drivers\circlass.sys 18:41:05.0844 0x2420 circlass - ok 18:41:06.0047 0x2420 [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys 18:41:06.0123 0x2420 CLFS - ok 18:41:06.0274 0x2420 [ F09FF44BFCF12DCE0BDDB03976FE9D29, 0437420AABA03C9AC9A5C18FFBFF26D77CFA4A75E78AFE54F08BC42F169ABC41 ] CLKMSVC10_38F51D56 C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe 18:41:06.0493 0x2420 CLKMSVC10_38F51D56 - ok 18:41:06.0571 0x2420 [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys 18:41:06.0571 0x2420 CLVirtualDrive - ok 18:41:06.0587 0x2420 [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys 18:41:06.0728 0x2420 CmBatt - ok 18:41:06.0978 0x2420 [ 1CD3A907D64D08F49208DA00B69BF35E, ABBD70FFCA0DE2274D855AFC08BF7BC0AA6D44EFC9FDBF7DF44B73CD5C210E28 ] CNG C:\WINDOWS\system32\Drivers\cng.sys 18:41:07.0134 0x2420 CNG - ok 18:41:07.0196 0x2420 [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys 18:41:07.0259 0x2420 CompositeBus - ok 18:41:07.0259 0x2420 COMSysApp - ok 18:41:07.0306 0x2420 [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\WINDOWS\system32\drivers\condrv.sys 18:41:07.0321 0x2420 condrv - ok 18:41:09.0177 0x2420 [ 15FBADDC84ED202E59A4F1B201CC692C, A50092155B18DAD51049A72503002F08C1BB2DFDA239C4D3555360C163F2F782 ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe 18:41:09.0192 0x2420 cphs - ok 18:41:09.0255 0x2420 [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll 18:41:09.0270 0x2420 CryptSvc - ok 18:41:09.0270 0x2420 [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam C:\WINDOWS\system32\drivers\dam.sys 18:41:09.0286 0x2420 dam - ok 18:41:09.0302 0x2420 [ D06E443457FADC6B1AFAF3AA4B6936F6, 109B4D05E156604AFB3D63B380CC063B900AEB12F57A1D235B9F9399EE0909C7 ] dc3d C:\WINDOWS\System32\drivers\dc3d.sys 18:41:09.0317 0x2420 dc3d - ok 18:41:09.0348 0x2420 [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll 18:41:09.0364 0x2420 DcomLaunch - ok 18:41:09.0380 0x2420 [ D249C3A58A4FCF755EF4C94F7047E015, 68C044CE2DB93FB502F85F6E081EA164F6E6DCBA6B3EE2A5CBDA122065E522F8 ] defragsvc C:\WINDOWS\System32\defragsvc.dll 18:41:09.0458 0x2420 defragsvc - ok 18:41:09.0536 0x2420 [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] DeviceAssociationService C:\WINDOWS\system32\das.dll 18:41:09.0552 0x2420 DeviceAssociationService - ok 18:41:09.0567 0x2420 [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll 18:41:09.0645 0x2420 DeviceInstall - ok 18:41:09.0661 0x2420 [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys 18:41:09.0755 0x2420 Dfsc - ok 18:41:09.0770 0x2420 [ 05DE04005CE0D84D0E6AD21CAEB369C6, E6704A2A685BCFD560796D7C328F8E53DF0793DBDA590598A492D9070D109298 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll 18:41:09.0786 0x2420 Dhcp - ok 18:41:09.0864 0x2420 [ 2EF590B1064A1720CEADBB69F6AE4B46, 049F07E8506349F6C10330CC1BAB998EFA243A4656738EAA2CFF6930EABCA72C ] Diagnostics C:\Program Files (x86)\Common Files\Diagnostics\node\service.exe 18:41:09.0864 0x2420 Diagnostics - ok 18:41:09.0927 0x2420 [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk C:\WINDOWS\system32\drivers\disk.sys 18:41:09.0942 0x2420 disk - ok 18:41:10.0005 0x2420 [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys 18:41:10.0144 0x2420 dmvsc - ok 18:41:10.0176 0x2420 [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll 18:41:10.0176 0x2420 Dnscache - ok 18:41:10.0426 0x2420 [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc C:\WINDOWS\System32\dot3svc.dll 18:41:10.0488 0x2420 dot3svc - ok 18:41:10.0582 0x2420 [ 27069CFFF29B7F04F4B1BB10154BE52B, 6869626F9A1D3F64224883C5E661638CEE893A3E29651C7B9302A03E52180415 ] dot4 C:\WINDOWS\system32\DRIVERS\Dot4.sys 18:41:10.0613 0x2420 dot4 - ok 18:41:10.0644 0x2420 [ 0BD906A79F9CE3013F7D9D0AC45F9F9D, 2F7D5082E7E226D5EBEA164A8ACEE0A447C96EB1829224A6EFA3E7B4EFEE1D14 ] Dot4Print C:\WINDOWS\System32\drivers\Dot4Prt.sys 18:41:10.0660 0x2420 Dot4Print - ok 18:41:10.0691 0x2420 [ B7D595F2F464F7B628AD53F06547792C, F5D06A91EF54FBF56305FCC882B854350B266B2A005D80CC77AEBC2929440729 ] dot4usb C:\WINDOWS\system32\DRIVERS\dot4usb.sys 18:41:10.0722 0x2420 dot4usb - ok 18:41:10.0847 0x2420 [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS C:\WINDOWS\system32\dps.dll 18:41:10.0847 0x2420 DPS - ok 18:41:10.0894 0x2420 [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys 18:41:10.0926 0x2420 drmkaud - ok 18:41:11.0051 0x2420 [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll 18:41:11.0066 0x2420 DsmSvc - ok 18:41:11.0223 0x2420 [ 313DCE665B57000B18CB26C6B6A10DFE, 6C332D4AD13A316C192321AB7E7597E66AF8E1688101FFD851E06C52128DBA52 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys 18:41:11.0394 0x2420 DXGKrnl - ok 18:41:11.0520 0x2420 [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost C:\WINDOWS\System32\eapsvc.dll 18:41:11.0613 0x2420 Eaphost - ok 18:41:12.0221 0x2420 [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys 18:41:12.0940 0x2420 ebdrv - ok 18:41:13.0018 0x2420 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS C:\WINDOWS\System32\lsass.exe 18:41:13.0018 0x2420 EFS - ok 18:41:13.0049 0x2420 [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys 18:41:13.0065 0x2420 EhStorClass - ok 18:41:13.0096 0x2420 [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys 18:41:13.0127 0x2420 EhStorTcgDrv - ok 18:41:13.0190 0x2420 [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys 18:41:13.0252 0x2420 ErrDev - ok 18:41:13.0346 0x2420 [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem C:\WINDOWS\system32\es.dll 18:41:13.0362 0x2420 EventSystem - ok 18:41:13.0471 0x2420 [ C8559336BB21FF701CBEF14527D7660F, AE8CD6514C0B121B260D9101D76E6225599B832504EB5719FD110E348C9E6682 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe 18:41:13.0502 0x2420 EvtEng - ok 18:41:13.0518 0x2420 [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys 18:41:13.0549 0x2420 exfat - ok 18:41:13.0565 0x2420 [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys 18:41:13.0596 0x2420 fastfat - ok 18:41:13.0909 0x2420 [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax C:\WINDOWS\system32\fxssvc.exe 18:41:14.0081 0x2420 Fax - ok 18:41:14.0139 0x2420 [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\WINDOWS\System32\drivers\fdc.sys 18:41:14.0170 0x2420 fdc - ok 18:41:14.0170 0x2420 [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost C:\WINDOWS\system32\fdPHost.dll 18:41:14.0170 0x2420 fdPHost - ok 18:41:14.0233 0x2420 [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub C:\WINDOWS\system32\fdrespub.dll 18:41:14.0280 0x2420 FDResPub - ok 18:41:14.0342 0x2420 [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc C:\WINDOWS\system32\fhsvc.dll 18:41:14.0342 0x2420 fhsvc - ok 18:41:14.0389 0x2420 [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys 18:41:14.0405 0x2420 FileInfo - ok 18:41:14.0420 0x2420 [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys 18:41:14.0436 0x2420 Filetrace - ok 18:41:14.0499 0x2420 [ 74CA3E6AD08389B78939EA0F1A2A0789, A5B22664A1E3374968999AD8750EC70E027AF69A1C72F4428F76506559311384 ] Fitbit Connect C:\Program Files (x86)\Fitbit Connect\FitbitConnectService.exe 18:41:14.0514 0x2420 Fitbit Connect - ok 18:41:14.0577 0x2420 [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys 18:41:15.0014 0x2420 flpydisk - ok 18:41:15.0045 0x2420 [ 6592D192E2823C043EDBC010E7774053, C025A0EC5517DC3BD5D6656DC0F0F19021FB3D2EE90EC6194E1BD74E638EBBDC ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys 18:41:15.0077 0x2420 FltMgr - ok 18:41:15.0124 0x2420 [ 3FA6DC6B29717E32E211C1FD821F2C75, E467F3775427C93CC2B87327B0A45669631A5FC460C558F6796BA26002A8BBFC ] FontCache C:\WINDOWS\system32\FntCache.dll 18:41:15.0139 0x2420 FontCache - ok 18:41:15.0264 0x2420 [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 18:41:15.0264 0x2420 FontCache3.0.0.0 - ok 18:41:15.0327 0x2420 [ 60BCE8BBD1C515007BB335ACEFBFC246, 263E55B718C34A308AE318A09A1A8F09D7AEC680D82B03AE1D258FC1707625FB ] FPLService C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe 18:41:15.0376 0x2420 FPLService - ok 18:41:15.0438 0x2420 [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys 18:41:15.0454 0x2420 FsDepends - ok 18:41:15.0485 0x2420 [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys 18:41:15.0501 0x2420 Fs_Rec - ok 18:41:15.0563 0x2420 [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys 18:41:15.0594 0x2420 fvevol - ok 18:41:15.0626 0x2420 [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys 18:41:15.0641 0x2420 FxPPM - ok 18:41:15.0688 0x2420 [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys 18:41:15.0719 0x2420 gagp30kx - ok 18:41:15.0782 0x2420 [ 6E2314E31A66EBEDAD6A78EF43B2BB18, 015CDDD39196B9513F664134578B2E4EAF4DBEB1A3866C62B5654F6C9D8F694D ] GamesAppIntegrationService C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe 18:41:15.0798 0x2420 GamesAppIntegrationService - ok 18:41:15.0813 0x2420 [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe 18:41:15.0829 0x2420 GamesAppService - ok 18:41:15.0860 0x2420 [ 2973B4EB7BE10A0D491B2037DCAAE88F, 17219885FF89EFD3538C7D780179060E3255B1E0D7BA5DF01AEA737123C07B59 ] Garmin Core Update Service C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe 18:41:15.0860 0x2420 Garmin Core Update Service - ok 18:41:15.0876 0x2420 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys 18:41:15.0938 0x2420 GEARAspiWDM - ok 18:41:16.0001 0x2420 [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys 18:41:16.0016 0x2420 gencounter - ok 18:41:16.0063 0x2420 [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys 18:41:16.0126 0x2420 GPIOClx0101 - ok 18:41:16.0715 0x2420 [ 69DB09F0263C637DA8568D404842466A, D042194266978AAD31E04DAF7018CD50754077212DC74A4D8AFF6BFEE80CDD20 ] gpsvc C:\WINDOWS\System32\gpsvc.dll 18:41:16.0903 0x2420 gpsvc - ok 18:41:17.0106 0x2420 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 18:41:17.0122 0x2420 gupdate - ok 18:41:17.0168 0x2420 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 18:41:17.0168 0x2420 gupdatem - ok 18:41:17.0231 0x2420 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 18:41:17.0231 0x2420 gusvc - ok 18:41:17.0262 0x2420 [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys 18:41:17.0340 0x2420 HDAudBus - ok 18:41:17.0403 0x2420 [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys 18:41:17.0434 0x2420 HidBatt - ok 18:41:17.0512 0x2420 [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys 18:41:17.0575 0x2420 HidBth - ok 18:41:17.0653 0x2420 [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys 18:41:17.0715 0x2420 hidi2c - ok 18:41:17.0778 0x2420 [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys 18:41:17.0856 0x2420 HidIr - ok 18:41:17.0872 0x2420 [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv C:\WINDOWS\system32\hidserv.dll 18:41:17.0887 0x2420 hidserv - ok 18:41:17.0950 0x2420 [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys 18:41:18.0059 0x2420 HidUsb - ok 18:41:18.0075 0x2420 [ 29F981739E50305128022CBE10B3659C, 25060937145B0DCA8CD088E78993BFEF1430CDDFF433E606AFC93993CBBF4B3E ] HipShieldK C:\WINDOWS\system32\drivers\HipShieldK.sys 18:41:18.0090 0x2420 HipShieldK - ok 18:41:18.0122 0x2420 [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc C:\WINDOWS\system32\kmsvc.dll 18:41:18.0144 0x2420 hkmsvc - ok 18:41:18.0149 0x2420 [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll 18:41:18.0274 0x2420 HomeGroupListener - ok 18:41:18.0446 0x2420 [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll 18:41:18.0758 0x2420 HomeGroupProvider - ok 18:41:18.0883 0x2420 [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] HomeNetSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe 18:41:18.0899 0x2420 HomeNetSvc - ok 18:41:18.0930 0x2420 [ 2A8B93A01621E100A578E83C768AFA2C, 6637D260AF180D1F200D219796FCE6D524FC6BF57C0CEEF9E1B3616E85865AD1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe 18:41:18.0930 0x2420 HP Support Assistant Service - ok 18:41:18.0946 0x2420 [ D104FF402FC3DDB686E6DEF00334DB26, 6CCE56587C02ECE474C6BF959C4A6F752A1FF0B718FBE8EE4FD9755313A207C1 ] hpdskflt C:\WINDOWS\system32\DRIVERS\hpdskflt.sys 18:41:18.0961 0x2420 hpdskflt - ok 18:41:18.0993 0x2420 [ 930370725FA0FE272346583A7A7D6BDB, 98195638D548A6E5E574E062FDCF4E5833DDE834399787EC51C340699B6E5E64 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll 18:41:19.0008 0x2420 hpqcxs08 - ok 18:41:19.0024 0x2420 [ EE281DD6843F3F697C1AD7933EEB1E9B, 1ECE31C2150B92DDC1DCBBCECFE3E979F2C60B3F106280E3167BEC0269BF7A41 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll 18:41:19.0024 0x2420 hpqddsvc - ok 18:41:19.0071 0x2420 [ D2946D9F020AE76E9CEF9B4A6DF838C0, C29CE594879385DA12B8EAA90B258905827B613839CCD820DE49215B68676995 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe 18:41:19.0118 0x2420 hpqwmiex - ok 18:41:19.0180 0x2420 [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys 18:41:19.0196 0x2420 HpSAMD - ok 18:41:19.0868 0x2420 [ F37882F128EFACEFE353E0BAE2766909, 2F9D21613500F092DFC0DB879180B549EE615D9B07408A5CC1A7F84663B2F47A ] HPSLPSVC C:\Users\VANDE_~1.HP-\AppData\Local\Temp\7zS276F\hpslpsvc64.dll 18:41:19.0946 0x2420 HPSLPSVC - ok 18:41:20.0645 0x2420 [ 55FFCBB036D7BE4BCA6FA1421203A27F, 5BB865FC631390F59AF5F2452D4D2DA47E34A49E194C8010E942F5A2013F3895 ] hpsrv C:\WINDOWS\system32\Hpservice.exe 18:41:20.0738 0x2420 hpsrv - ok 18:41:21.0082 0x2420 [ F46DEEEF47977B6C1783A1F09C0697A8, F11134B1E4EA5F5BB7A78658D0CF7881232AA791933EA1D4DC2960DBE2CA270C ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe 18:41:21.0113 0x2420 HPSupportSolutionsFrameworkService - ok 18:41:21.0285 0x2420 [ 3C5B2067338E4EFDADE94E4A72728F23, 72E21FA1E660F9405A5E39B0F89AB21C60F20BAC13247567EF7139AC130F1897 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe 18:41:21.0301 0x2420 HPWMISVC - ok 18:41:21.0988 0x2420 [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys 18:41:22.0284 0x2420 HTTP - ok 18:41:22.0362 0x2420 [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys 18:41:22.0393 0x2420 hwpolicy - ok 18:41:22.0440 0x2420 [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys 18:41:22.0518 0x2420 hyperkbd - ok 18:41:22.0581 0x2420 [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys 18:41:22.0628 0x2420 HyperVideo - ok 18:41:22.0643 0x2420 [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys 18:41:22.0675 0x2420 i8042prt - ok 18:41:22.0675 0x2420 [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys 18:41:22.0690 0x2420 iaLPSSi_GPIO - ok 18:41:22.0706 0x2420 [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys 18:41:22.0706 0x2420 iaLPSSi_I2C - ok 18:41:22.0753 0x2420 [ 050F2539E14F9D5E90A4B61738EC29BD, 0E65468B9F452FA7DB6DF2C1B2B2E9439C79031E27054FBDBDFE28A9F98721D7 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys 18:41:22.0800 0x2420 iaStorA - ok 18:41:22.0831 0x2420 [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys 18:41:22.0831 0x2420 iaStorAV - ok 18:41:22.0956 0x2420 [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys 18:41:23.0003 0x2420 iaStorV - ok 18:41:23.0065 0x2420 [ 7274E304EACD1FE0A4F5047CE6B4DC61, 2FD0FBE52359080DCA9D7F94177680A304B0C5E0B701AD3F9E6F09E8E5D5D7D7 ] iBtFltCoex C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys 18:41:23.0097 0x2420 iBtFltCoex - ok 18:41:23.0784 0x2420 [ 5AD5A7781BE907D6E2D75CA1DADAA97B, 355234ED6E49A1080CFFC9C18D185DA653A00C6B79B204368A971EACE5A416A9 ] IconMan_R C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe 18:41:23.0925 0x2420 IconMan_R - ok 18:41:23.0925 0x2420 IEEtwCollectorService - ok 18:41:24.0846 0x2420 [ C38AFE18A40ADF005647090DD3AC24F3, 302810C31B005DD4C9143233AB5B4F332C62AD866A7C7AB0E8F8F81AE1766B11 ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys 18:41:25.0127 0x2420 igfx - ok 18:41:25.0315 0x2420 [ 7A510A9AFC7955DEE63F8DC243E31292, 13906F6212F4C116BE224F2A8AFFF089ACFED8F543E26FC6208FF38463366173 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe 18:41:25.0444 0x2420 igfxCUIService1.0.0.0 - ok 18:41:25.0850 0x2420 [ DEA76F90F9777E3427D70E380222B23B, B917BA423896A12E45623E3D494CA03317A6FC612CA433C62C897524DC3E756B ] IKEEXT C:\WINDOWS\System32\ikeext.dll 18:41:25.0990 0x2420 IKEEXT - ok 18:41:26.0053 0x2420 [ FC7C456AF9B9811499EDBD10616832EE, CA2D8B0E672D3AE449C2FF0B9E142D74E8C72FD877D11162A9F7CC51AF58220F ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys 18:41:26.0084 0x2420 intaud_WaveExtensible - ok 18:41:26.0270 0x2420 [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys 18:41:26.0348 0x2420 IntcDAud - ok 18:41:26.0442 0x2420 [ 211E26AB3437B92916DF9263933C0D64, 050885C7B33BDD6D4C8D11CB5608E8E4349CCC21E642D7E2C5748268FBFAF68B ] Intel® Bluetooth Radio Management C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe 18:41:26.0442 0x2420 Intel® Bluetooth Radio Management - ok 18:41:26.0520 0x2420 [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe 18:41:26.0520 0x2420 Intel® Capability Licensing Service Interface - ok 18:41:26.0661 0x2420 [ 30E9FAC23E2537D82F2836CB81AEE186, 03E5072D43ECED70EF004D2E6E654B4CCCE059825CC3C641C0534E4C0BC0C7E8 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe 18:41:26.0661 0x2420 Intel® ME Service - ok 18:41:26.0708 0x2420 [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\WINDOWS\system32\drivers\intelide.sys 18:41:26.0739 0x2420 intelide - ok 18:41:26.0802 0x2420 [ 139CFCDCD36B1B1782FD8C0014AC9B0E, E0D7E0E9B46A8CECE138D689820023BFA650FB689E4FD62855BED37E04F2D9FF ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys 18:41:26.0833 0x2420 intelpep - ok 18:41:26.0895 0x2420 [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys 18:41:26.0927 0x2420 intelppm - ok 18:41:27.0098 0x2420 [ 0895CDD7F1542FFCC5BBB560EC78BC16, 383D9FFE7FB313EA201DE877F3D48B5116FFA261EDEF5D0D0FE79F14E9682D25 ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe 18:41:27.0098 0x2420 IntuitUpdateServiceV4 - ok 18:41:27.0161 0x2420 [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 18:41:27.0239 0x2420 IpFilterDriver - ok 18:41:27.0333 0x2420 [ ACFEE9487693C2BD573DFCA71D98E17C, A347FD476147CD3568EEE6993B46AFC05A66A4269094CA51572D0FD013FCB535 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll 18:41:27.0442 0x2420 iphlpsvc - ok 18:41:27.0505 0x2420 [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys 18:41:27.0583 0x2420 IPMIDRV - ok 18:41:27.0661 0x2420 [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys 18:41:27.0802 0x2420 IPNAT - ok 18:41:28.0396 0x2420 [ 7FAE5B6CDB18B0B2E81F32869F595022, D873A7EE94749E1700E8F6B8BB7B485AE1B0B83388D63BE06335720498D4794F ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 18:41:28.0474 0x2420 iPod Service - ok 18:41:28.0521 0x2420 [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys 18:41:28.0568 0x2420 IRENUM - ok 18:41:28.0614 0x2420 [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys 18:41:28.0646 0x2420 isapnp - ok 18:41:28.0739 0x2420 [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys 18:41:28.0771 0x2420 iScsiPrt - ok 18:41:28.0833 0x2420 [ A90C843F4FDD7A07129BA73C6BE13976, A76DEA9F09E3B2F18D3B646A0DD39E2773EC62E2F3C55421BA61C12190D78C1C ] iwdbus C:\WINDOWS\System32\drivers\iwdbus.sys 18:41:28.0864 0x2420 iwdbus - ok 18:41:28.0880 0x2420 [ 3C4002D339491AF73D663FFC7F6E5ECB, 0B53047989BDB781572253BC3AA757912FE54366870C1955E687972CE210C285 ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe 18:41:28.0880 0x2420 jhi_service - ok 18:41:28.0896 0x2420 [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys 18:41:28.0927 0x2420 kbdclass - ok 18:41:28.0943 0x2420 [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys 18:41:28.0958 0x2420 kbdhid - ok 18:41:28.0974 0x2420 [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys 18:41:29.0036 0x2420 kdnic - ok 18:41:29.0083 0x2420 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso C:\WINDOWS\system32\lsass.exe 18:41:29.0083 0x2420 KeyIso - ok 18:41:29.0161 0x2420 [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys 18:41:29.0177 0x2420 KSecDD - ok 18:41:29.0271 0x2420 [ F88CC88F4A6D8476F1664E805CA18CC2, 2C61EE5EEA4FD45AA3FA927CC16E34EF90BD44324EAB14198AF65C3A27617991 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys 18:41:29.0302 0x2420 KSecPkg - ok 18:41:29.0364 0x2420 [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys 18:41:29.0364 0x2420 ksthunk - ok 18:41:29.0458 0x2420 [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll 18:41:29.0489 0x2420 KtmRm - ok 18:41:29.0505 0x2420 [ 793EACA6BAE9F481C2059BCB3743EB4A, 2624905C6B6A1227BD1CAC7D4FE55A5F6543E1278DAB31EC553748472D180D1D ] LanmanServer C:\WINDOWS\system32\srvsvc.dll 18:41:29.0646 0x2420 LanmanServer - ok 18:41:29.0786 0x2420 [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll 18:41:29.0802 0x2420 LanmanWorkstation - ok 18:41:30.0708 0x2420 [ 32F1B95C60042F3D95FC8AB43559B3B1, 52652B1CE93C6B9DC12E56B5D4C44F45042901D89D21974BFE1D7116BFADEE74 ] LeapFrog Connect Device Service C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe 18:41:30.0958 0x2420 LeapFrog Connect Device Service - ok 18:41:31.0302 0x2420 [ 626D19F1771E1AE72208AE9A8F3082F7, 78FDB64545ED2EAE9F51C08120E21D2C3285208F6846BD8BBA08CAA839E7A0C4 ] lfsvc C:\WINDOWS\System32\GeofenceMonitorService.dll 18:41:31.0334 0x2420 lfsvc - ok 18:41:31.0396 0x2420 [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys 18:41:31.0412 0x2420 lltdio - ok 18:41:31.0427 0x2420 [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll 18:41:31.0443 0x2420 lltdsvc - ok 18:41:31.0459 0x2420 [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll 18:41:31.0459 0x2420 lmhosts - ok 18:41:31.0490 0x2420 [ 4269D44BB47A6DA5D80B11F4C8536458, 7A8FFC8F851DD9E5C43986BE0888831CB71D188138DF3CF7F787DADDA70915B0 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe 18:41:31.0505 0x2420 LMS - ok 18:41:31.0537 0x2420 [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys 18:41:31.0552 0x2420 LSI_SAS - ok 18:41:31.0568 0x2420 [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys 18:41:31.0584 0x2420 LSI_SAS2 - ok 18:41:31.0599 0x2420 [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\WINDOWS\system32\drivers\lsi_sas3.sys 18:41:31.0615 0x2420 LSI_SAS3 - ok 18:41:31.0615 0x2420 [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys 18:41:31.0630 0x2420 LSI_SSS - ok 18:41:31.0787 0x2420 [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] LSM C:\WINDOWS\System32\lsm.dll 18:41:31.0802 0x2420 LSM - ok 18:41:31.0865 0x2420 [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\WINDOWS\system32\drivers\luafv.sys 18:41:31.0896 0x2420 luafv - ok 18:41:31.0974 0x2420 [ F928E5E72BBA15DD0CE9A26E0413D236, D63EFA1408084F524464729C2F3BE16550E07ACE2BF8A00699A8438079AD381B ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe 18:41:31.0974 0x2420 McAfee SiteAdvisor Service - ok 18:41:32.0270 0x2420 [ 34FCA19FE407A7B9996DB5B4CCEC5C8C, B43AE1B6F9821BCC2CE0DD1D12F3716941487791237C7129CA9C961CBBFC1EEB ] McAPExe C:\Program Files\McAfee\MSC\McAPExe.exe 18:41:32.0286 0x2420 McAPExe - ok 18:41:32.0443 0x2420 [ 1704A8189EE5580AB147CFD25C5C8770, DFA076FD36B5CC844D4BE3B865E9A1F809E14CCB1D78D82A2D8D8EE38210E6EB ] McComponentHostService C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe 18:41:32.0553 0x2420 McComponentHostService - ok 18:41:32.0599 0x2420 [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McMPFSvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe 18:41:32.0615 0x2420 McMPFSvc - ok 18:41:32.0803 0x2420 [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McNaiAnn C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe 18:41:32.0818 0x2420 McNaiAnn - ok 18:41:32.0959 0x2420 [ 63D93A440E7AC015D85B9A3DA0C1BBAF, 849A13E91B041DEC2A47F5BE65ADBA6CAC8AF01675D0D8E13730724B54B4DD15 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe 18:41:32.0974 0x2420 McODS - ok 18:41:33.0021 0x2420 [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] mcpltsvc C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe 18:41:33.0037 0x2420 mcpltsvc - ok 18:41:33.0037 0x2420 [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McProxy C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe 18:41:33.0053 0x2420 McProxy - ok 18:41:33.0115 0x2420 [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\WINDOWS\system32\drivers\megasas.sys 18:41:33.0131 0x2420 megasas - ok 18:41:33.0193 0x2420 [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\WINDOWS\system32\drivers\megasr.sys 18:41:33.0209 0x2420 megasr - ok 18:41:33.0240 0x2420 [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys 18:41:33.0256 0x2420 MEIx64 - ok 18:41:33.0318 0x2420 [ 1A0C96A38A888838DF9523C973E3FE87, 9C41EDBFA21DF2684EED81AD56FC440AED002FB5C760DECFF1A454835273637B ] mfeapfk C:\WINDOWS\system32\drivers\mfeapfk.sys 18:41:33.0365 0x2420 mfeapfk - ok 18:41:33.0396 0x2420 [ 7490FCC76EA46340F2CA851288A924B8, F9E0D883AE7A3D202A1F1B79999C691CA57C405E4647300CF93EF55360E152A5 ] MfeASKM C:\Program Files\McAfee\AppStats\MfeASKM.sys 18:41:33.0412 0x2420 MfeASKM - ok 18:41:33.0474 0x2420 [ 916AA2512ED6A9A811D8F1DDDBD844FD, C55ED6F85B6201A514801AF800F90236366638A1913508CD73C4C4380641C515 ] MfeASUM C:\Program Files\McAfee\AppStats\MfeASUM.exe 18:41:33.0553 0x2420 MfeASUM - ok 18:41:33.0568 0x2420 [ 486D22007426F10779C6351D305E9E43, 4796A017092DBDBCC8E282B36F89219944321B5279C88E369C0CFFF8CDC97742 ] mfeavfk C:\WINDOWS\system32\drivers\mfeavfk.sys 18:41:33.0599 0x2420 mfeavfk - ok 18:41:33.0990 0x2420 [ 8036004F016125C907FC9351141F95AA, 10DE20FCB2D33E25E443C10EED4551CBAE9C16CD6D08B69BF91868A2F27DAF53 ] mfecore C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe 18:41:34.0099 0x2420 mfecore - ok 18:41:34.0158 0x2420 [ C502C5CDF1BC2477E842F2100F6642AB, C817EC97A8C2A673990C95F186563EDE1148ECA3124436EB8142E4792462E78D ] mfeelamk C:\WINDOWS\system32\drivers\mfeelamk.sys 18:41:34.0189 0x2420 mfeelamk - ok 18:41:34.0205 0x2420 [ B4B4FAB730F3392E2F7FF0F7BD59CFF9, 99237F6ACA1968154CF2621FC8364A28351F045690939216BAA6C4CDB3889B9A ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe 18:41:34.0220 0x2420 mfefire - ok 18:41:34.0408 0x2420 [ DFDDC10E9666DBFDB8F2E827B7C2DCE4, 7CCE610BAE3C8BBA59A90B840782C0F9DFDC82AFABA9E9AB5F78C02F7CADB8FA ] mfefirek C:\WINDOWS\system32\drivers\mfefirek.sys 18:41:34.0517 0x2420 mfefirek - ok 18:41:34.0892 0x2420 [ 29D0483A9EBB01DB2036A52E3BF23D6B, D4D6FDE489E937634BEA2C2F5DF65C560E5160AD9EA85088A59AE88FD9C06B2E ] mfehidk C:\WINDOWS\system32\drivers\mfehidk.sys 18:41:35.0158 0x2420 mfehidk - ok 18:41:35.0361 0x2420 [ 73A92690FF5CFFE5A741912311AA1A6C, 52B6DACF023A704785D2F346F61D5896DF1E06C1ED37540741227333C4BE921A ] mfencbdc C:\WINDOWS\system32\DRIVERS\mfencbdc.sys 18:41:35.0564 0x2420 mfencbdc - ok 18:41:35.0626 0x2420 [ CB987596EE0964958AFA677360B6174B, 2852B8DC0F160ED6B2EE310FEC1BB19B93D619688C25C6296F7214959996FA6B ] mfencrk C:\WINDOWS\system32\DRIVERS\mfencrk.sys 18:41:35.0658 0x2420 mfencrk - ok 18:41:35.0673 0x2420 [ 9A642F163F1FB12DE395A6010A9AD687, A86E092417C0C40E6FB9F6206D82391CEE4495FFA6F8A442BE50D349ACBA44B9 ] mfevtp C:\Windows\system32\mfevtps.exe 18:41:35.0673 0x2420 mfevtp - ok 18:41:35.0861 0x2420 [ 4DC3D77F2BBC1EFFB08E8D25D7E6B4D6, 7F3A81FD0A45B67EC330EB1C611F0B36196A51E9209D02016CFE82BD267DA14A ] mfewfpk C:\WINDOWS\system32\drivers\mfewfpk.sys 18:41:35.0908 0x2420 mfewfpk - ok 18:41:35.0923 0x2420 [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS C:\WINDOWS\system32\mmcss.dll 18:41:35.0923 0x2420 MMCSS - ok 18:41:36.0127 0x2420 [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\WINDOWS\system32\drivers\modem.sys 18:41:36.0189 0x2420 Modem - ok 18:41:36.0220 0x2420 [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\WINDOWS\System32\drivers\monitor.sys 18:41:36.0271 0x2420 monitor - ok 18:41:36.0302 0x2420 [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys 18:41:36.0333 0x2420 mouclass - ok 18:41:36.0333 0x2420 [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys 18:41:36.0349 0x2420 mouhid - ok 18:41:36.0412 0x2420 [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys 18:41:36.0427 0x2420 mountmgr - ok 18:41:36.0490 0x2420 [ 707E98CC15C2224C078C9E71FF1889BC, 958416FE081436FDBF7F2BEBBB2795C54CC4F3F349D6DF463296A7BBA3404F13 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 18:41:36.0490 0x2420 MozillaMaintenance - ok 18:41:36.0505 0x2420 [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys 18:41:36.0521 0x2420 mpsdrv - ok 18:41:36.0615 0x2420 [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll 18:41:36.0724 0x2420 MpsSvc - ok 18:41:36.0849 0x2420 [ 1D55DADC22D21883A2F80297F5A5AE48, B79DF4AFC2A9CBC54E74233596544D6E41C8CAA0516BD57CA695D051EC780265 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys 18:41:37.0255 0x2420 MRxDAV - ok 18:41:37.0334 0x2420 [ 7A1A3F213CDB3363D179D5014272025D, 6756F5B7D9FBF6839DB1FF4E94EA45B5499D7DF925E75581C96FBBA4BE131542 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 18:41:37.0427 0x2420 mrxsmb - ok 18:41:37.0505 0x2420 [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys 18:41:37.0599 0x2420 mrxsmb10 - ok 18:41:37.0615 0x2420 [ C910E5D18958914A66F0E45689D0B40A, AD7C91DD8A60A511E580DD56BACC97F85075A539E7C5D95040A8F870A621DAF4 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys 18:41:37.0709 0x2420 mrxsmb20 - ok 18:41:37.0834 0x2420 [ E0927EFA25D473367C3341B9F5969779, B77A162BD3334557623674373D8EC2BE7CC0B359DF06304E467ABFFEE0530271 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys 18:41:38.0021 0x2420 MsBridge - ok 18:41:38.0084 0x2420 [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC C:\WINDOWS\System32\msdtc.exe 18:41:38.0133 0x2420 MSDTC - ok 18:41:38.0158 0x2420 [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys 18:41:38.0174 0x2420 Msfs - ok 18:41:38.0236 0x2420 [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys 18:41:38.0268 0x2420 msgpiowin32 - ok 18:41:38.0283 0x2420 [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys 18:41:38.0283 0x2420 mshidkmdf - ok 18:41:38.0330 0x2420 [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys 18:41:38.0408 0x2420 mshidumdf - ok 18:41:38.0455 0x2420 [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys 18:41:38.0471 0x2420 msisadrv - ok 18:41:38.0549 0x2420 [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll 18:41:38.0580 0x2420 MSiSCSI - ok 18:41:38.0580 0x2420 msiserver - ok 18:41:38.0627 0x2420 [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys 18:41:38.0674 0x2420 MSKSSRV - ok 18:41:38.0736 0x2420 [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys 18:41:38.0768 0x2420 MsLldp - ok 18:41:38.0830 0x2420 [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys 18:41:38.0908 0x2420 MSPCLOCK - ok 18:41:38.0955 0x2420 [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys 18:41:39.0002 0x2420 MSPQM - ok 18:41:39.0018 0x2420 [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys 18:41:39.0033 0x2420 MsRPC - ok 18:41:39.0049 0x2420 [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys 18:41:39.0049 0x2420 mssmbios - ok 18:41:39.0065 0x2420 [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys 18:41:39.0096 0x2420 MSTEE - ok 18:41:39.0111 0x2420 [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys 18:41:39.0127 0x2420 MTConfig - ok 18:41:39.0143 0x2420 [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup C:\WINDOWS\system32\Drivers\mup.sys 18:41:39.0158 0x2420 Mup - ok 18:41:39.0174 0x2420 [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys 18:41:39.0174 0x2420 mvumis - ok 18:41:39.0221 0x2420 [ 50E1967C1C2A2BBF4E361DE1A6DD9A5E, 914650EE73313FF15F778F9002D8A1F43D9850D3D1086282B408CD71AC3874D0 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe 18:41:39.0221 0x2420 MyWiFiDHCPDNS - ok 18:41:39.0315 0x2420 [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent C:\WINDOWS\system32\qagentRT.dll 18:41:39.0346 0x2420 napagent - ok 18:41:39.0518 0x2420 [ 26ACA481FAFEC59FE311D719E3027BBA, 16A24CCA95A38BDFE970580159F6ACAA13FF1B74CF2290B1B020D909F90D3347 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys 18:41:39.0674 0x2420 NativeWifiP - ok 18:41:39.0862 0x2420 [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll 18:41:39.0893 0x2420 NcaSvc - ok 18:41:39.0971 0x2420 [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService C:\WINDOWS\System32\ncbservice.dll 18:41:40.0002 0x2420 NcbService - ok 18:41:40.0080 0x2420 [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll 18:41:40.0112 0x2420 NcdAutoSetup - ok 18:41:40.0513 0x2420 [ E4B4BE2D7750849C07589DA0B0AABA01, BB5AA727BA018A94B5DE2C4E0B594DD2E7A2B3457885446EE568F3A1E18AB3B0 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys 18:41:40.0748 0x2420 NDIS - ok 18:41:40.0842 0x2420 [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys 18:41:40.0873 0x2420 NdisCap - ok 18:41:40.0904 0x2420 [ B1AA3B19A2E596A59224F893E01A5A75, E08696CA5E087E51AC3E64D4FB8490EEADD612DDF30C9A94DD1BD1BA124B71B7 ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys 18:41:41.0014 0x2420 NdisImPlatform - ok 18:41:41.0076 0x2420 [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys 18:41:41.0107 0x2420 NdisTapi - ok 18:41:41.0170 0x2420 [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys 18:41:41.0217 0x2420 Ndisuio - ok 18:41:41.0217 0x2420 [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys 18:41:41.0232 0x2420 NdisVirtualBus - ok 18:41:41.0373 0x2420 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys 18:41:41.0404 0x2420 NdisWan - ok 18:41:41.0420 0x2420 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys 18:41:41.0420 0x2420 NdisWanLegacy - ok 18:41:41.0482 0x2420 [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys 18:41:41.0514 0x2420 NDProxy - ok 18:41:41.0592 0x2420 [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys 18:41:41.0639 0x2420 Ndu - ok 18:41:41.0717 0x2420 [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\System32\HPZinw12.dll 18:41:41.0779 0x2420 Net Driver HPZ12 - ok 18:41:41.0842 0x2420 [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys 18:41:41.0904 0x2420 NetBIOS - ok 18:41:42.0076 0x2420 [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys 18:41:42.0153 0x2420 NetBT - ok 18:41:42.0200 0x2420 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon C:\WINDOWS\system32\lsass.exe 18:41:42.0200 0x2420 Netlogon - ok 18:41:42.0216 0x2420 [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman C:\WINDOWS\System32\netman.dll 18:41:42.0575 0x2420 Netman - ok 18:41:42.0653 0x2420 [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm C:\WINDOWS\System32\netprofmsvc.dll 18:41:42.0669 0x2420 netprofm - ok 18:41:42.0825 0x2420 [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 18:41:42.0903 0x2420 NetTcpPortSharing - ok 18:41:42.0919 0x2420 [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc C:\WINDOWS\system32\DRIVERS\netvsc63.sys 18:41:42.0934 0x2420 netvsc - ok 18:41:43.0466 0x2420 [ 4E28478C4CE7A0258BAE7127F8CE1AD6, 985C566978478F6A8DF79F58892119E75E60A0C0BFBA6E15707FE58D136E9EFC ] NETwNe64 C:\WINDOWS\system32\DRIVERS\NETwew00.sys 18:41:43.0513 0x2420 NETwNe64 - ok 18:41:43.0591 0x2420 [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc C:\WINDOWS\System32\nlasvc.dll 18:41:43.0606 0x2420 NlaSvc - ok 18:41:43.0685 0x2420 [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys 18:41:43.0700 0x2420 Npfs - ok 18:41:43.0778 0x2420 [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys 18:41:43.0856 0x2420 npsvctrig - ok 18:41:43.0856 0x2420 [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi C:\WINDOWS\system32\nsisvc.dll 18:41:43.0856 0x2420 nsi - ok 18:41:43.0872 0x2420 [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys 18:41:43.0888 0x2420 nsiproxy - ok 18:41:43.0950 0x2420 [ 038C77D577900EE39410662478BB0D50, A33AAFD5750245C17A47EC71F3C6EAD2E0925CAD34C65AB3E6CEE44756C668E6 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys 18:41:43.0981 0x2420 Ntfs - ok 18:41:44.0044 0x2420 [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\WINDOWS\system32\drivers\Null.sys 18:41:44.0075 0x2420 Null - ok 18:41:45.0102 0x2420 [ E71E299FF15390E585BACF2C18F55078, 7A51D989DA55349B1761839DEAFD593B6E6F88C433B132E7B027467E050FBA67 ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys 18:41:45.0587 0x2420 nvlddmkm - ok 18:41:45.0665 0x2420 [ FCC3A3F875C8CF258F71BE2F2CAA2355, BD174C47329F0A15D821E51997E4CDAA68FB9BFD72A89A2F2A85A8603625EB18 ] nvpciflt C:\WINDOWS\system32\DRIVERS\nvpciflt.sys 18:41:45.0696 0x2420 nvpciflt - ok 18:41:45.0821 0x2420 [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys 18:41:45.0915 0x2420 nvraid - ok 18:41:46.0040 0x2420 [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys 18:41:46.0179 0x2420 nvstor - ok 18:41:46.0663 0x2420 [ 415695F5A54E91E869EEBFEA261361A6, 1829C15E07D902686171C8A66EB03040A037CAC1E00E24BF598030D9DA795CEC ] nvsvc C:\WINDOWS\system32\nvvsvc.exe 18:41:46.0835 0x2420 nvsvc - ok 18:41:46.0960 0x2420 [ AA130938A27BB80A8B6438EF83232275, 7C5A4863CD22413723C9F7658855E34088A2F89DF740531ED7986F67A30935E0 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 18:41:47.0194 0x2420 nvUpdatusService - ok 18:41:47.0273 0x2420 [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys 18:41:47.0288 0x2420 nv_agp - ok 18:41:47.0398 0x2420 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 18:41:47.0413 0x2420 ose - ok 18:41:48.0177 0x2420 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 18:41:48.0239 0x2420 osppsvc - ok 18:41:48.0286 0x2420 [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll 18:41:48.0395 0x2420 p2pimsvc - ok 18:41:48.0474 0x2420 [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc C:\WINDOWS\system32\p2psvc.dll 18:41:48.0583 0x2420 p2psvc - ok 18:41:48.0708 0x2420 [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport C:\WINDOWS\System32\drivers\parport.sys 18:41:48.0802 0x2420 Parport - ok 18:41:48.0880 0x2420 [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys 18:41:48.0911 0x2420 partmgr - ok 18:41:49.0161 0x2420 [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll 18:41:49.0317 0x2420 PcaSvc - ok 18:41:49.0380 0x2420 [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\WINDOWS\system32\drivers\pci.sys 18:41:49.0395 0x2420 pci - ok 18:41:49.0442 0x2420 [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\WINDOWS\system32\drivers\pciide.sys 18:41:49.0520 0x2420 pciide - ok 18:41:49.0583 0x2420 [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys 18:41:49.0614 0x2420 pcmcia - ok 18:41:49.0645 0x2420 [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\WINDOWS\system32\drivers\pcw.sys 18:41:49.0661 0x2420 pcw - ok 18:41:49.0724 0x2420 [ B9D968D8E2B0F9C6301CEB39CFC9B9E4, 83F32831B0727F18B56DC3CAF37E45A3523D2BBCD54D1421F0DE5A0179D8A404 ] pdc C:\WINDOWS\system32\drivers\pdc.sys 18:41:49.0833 0x2420 pdc - ok 18:41:49.0942 0x2420 [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys 18:41:50.0176 0x2420 PEAUTH - ok 18:41:52.0098 0x2420 [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe 18:41:52.0098 0x2420 PerfHost - ok 18:41:52.0770 0x2420 [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla C:\WINDOWS\system32\pla.dll 18:41:52.0989 0x2420 pla - ok 18:41:53.0067 0x2420 [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll 18:41:53.0067 0x2420 PlugPlay - ok 18:41:53.0145 0x2420 [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\System32\HPZipm12.dll 18:41:53.0535 0x2420 Pml Driver HPZ12 - ok 18:41:53.0551 0x2420 [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll 18:41:53.0567 0x2420 PNRPAutoReg - ok 18:41:53.0598 0x2420 [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll 18:41:53.0598 0x2420 PNRPsvc - ok 18:41:53.0614 0x2420 [ E4799B87675C59AA1F620DE5C6F113BB, 094EE16D4CEC68DB316002994482344A6BFCFDE399131F7FA11BB46C2DCBF218 ] Point64 C:\WINDOWS\System32\drivers\point64.sys 18:41:53.0614 0x2420 Point64 - ok 18:41:53.0645 0x2420 [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll 18:41:53.0676 0x2420 PolicyAgent - ok 18:41:53.0676 0x2420 [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power C:\WINDOWS\system32\umpo.dll 18:41:53.0676 0x2420 Power - ok 18:41:53.0692 0x2420 [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys 18:41:53.0707 0x2420 PptpMiniport - ok 18:41:53.0910 0x2420 [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll 18:41:54.0082 0x2420 PrintNotify - ok 18:41:54.0138 0x2420 [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\WINDOWS\System32\drivers\processr.sys 18:41:54.0174 0x2420 Processor - ok 18:41:54.0237 0x2420 [ EF1F8B57323E5D3FC6A0A25F98F90DBC, F50E81151604DCD59BB647FD6767C1631AE48B5FCA6D3423C4E32535C94D6369 ] ProfSvc C:\WINDOWS\system32\profsvc.dll 18:41:54.0393 0x2420 ProfSvc - ok 18:41:54.0534 0x2420 [ 2EF590B1064A1720CEADBB69F6AE4B46, 049F07E8506349F6C10330CC1BAB998EFA243A4656738EAA2CFF6930EABCA72C ] Proxy C:\Program Files (x86)\Common Files\Diagnostics\node\service.exe 18:41:54.0549 0x2420 Proxy - ok 18:41:54.0690 0x2420 [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys 18:41:54.0721 0x2420 Psched - ok 18:41:54.0752 0x2420 [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE C:\WINDOWS\system32\qwave.dll 18:41:54.0768 0x2420 QWAVE - ok 18:41:54.0846 0x2420 [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys 18:41:54.0940 0x2420 QWAVEdrv - ok 18:41:54.0987 0x2420 [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys 18:41:55.0018 0x2420 RasAcd - ok 18:41:55.0081 0x2420 [ 674A4702E4E144E8710ED1A2EC6DD049, 613A921101A6815C9185D5EF3E251A592604E56FADE945BB7E256885CAD473BC ] RasAgileVpn C:\WINDOWS\system32\DRIVERS\AgileVpn.sys 18:41:55.0112 0x2420 RasAgileVpn - ok 18:41:55.0190 0x2420 [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto C:\WINDOWS\System32\rasauto.dll 18:41:55.0221 0x2420 RasAuto - ok 18:41:55.0284 0x2420 [ BBB6272B7F46C4640A8CDB8A70C3450F, 4266C3ABD0D1D0219F715EA0F155744F7C1E3A7B722BE863831B57AE785419A2 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 18:41:55.0300 0x2420 Rasl2tp - ok 18:41:55.0331 0x2420 [ 5C7B86EE33505E36026AFAAB62DA6364, 903BB1A355AC746BF09C2A7C87B068168648DB79DEF39AB1DC710B6A7A5F6556 ] RasMan C:\WINDOWS\System32\rasmans.dll 18:41:55.0362 0x2420 RasMan - ok 18:41:55.0378 0x2420 [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys 18:41:55.0393 0x2420 RasPppoe - ok 18:41:55.0409 0x2420 [ 2B0F1677CDD08967005F34488559BC6F, FFF168EBD171C0B85A448AD1A04F66534E889AE1DC128F68EA3F35D5996C8D39 ] RasSstp C:\WINDOWS\system32\DRIVERS\rassstp.sys 18:41:55.0425 0x2420 RasSstp - ok 18:41:55.0456 0x2420 [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys 18:41:55.0550 0x2420 rdbss - ok 18:41:55.0565 0x2420 [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys 18:41:55.0706 0x2420 rdpbus - ok 18:41:55.0753 0x2420 [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys 18:41:55.0815 0x2420 RDPDR - ok 18:41:55.0846 0x2420 [ 858776908AF838E3790F3261B799CDA6, 5BE4658540382D1B2F46E503CE175D74E3870FE492B8B8F37C3CFB34FF8E2DA8 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys 18:41:55.0862 0x2420 RdpVideoMiniport - ok 18:41:55.0987 0x2420 [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys 18:41:56.0018 0x2420 rdyboost - ok 18:41:56.0205 0x2420 [ E515A287C8FAE901EB8FB42F168E14F2, 9AE8D608587713FD18BB728BADD402C86FFF06A67359B22ED9431705522BC310 ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys 18:41:56.0236 0x2420 ReFS - ok 18:41:56.0378 0x2420 [ 7256A19A9397E71FADC46E23E11B1609, AF403728F751C3ECFBA68D05C1E9672CB7B52CB078DE85CB16EAEC5230BBD5BC ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe 18:41:56.0393 0x2420 RegSrvc - ok 18:41:56.0409 0x2420 [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll 18:41:56.0440 0x2420 RemoteAccess - ok 18:41:56.0612 0x2420 [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll 18:41:56.0628 0x2420 RemoteRegistry - ok 18:41:56.0706 0x2420 [ 0527EF6E23B9FAB37DDCBC479C6CFA28, C004CE600074AC434F8B24A3383F8C0ACFA5476D9E3B1493B40911C78B028D64 ] RFCOMM C:\WINDOWS\System32\drivers\rfcomm.sys 18:41:56.0784 0x2420 RFCOMM - ok 18:41:56.0847 0x2420 [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll 18:41:56.0878 0x2420 RpcEptMapper - ok 18:41:56.0940 0x2420 [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator C:\WINDOWS\system32\locator.exe 18:41:56.0972 0x2420 RpcLocator - ok 18:41:57.0300 0x2420 [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] RpcSs C:\WINDOWS\system32\rpcss.dll 18:41:57.0315 0x2420 RpcSs - ok 18:41:57.0487 0x2420 [ 8EAAC43684B9DE3F1532767EEB3DCA97, 70B0383649D489875BB6C2723557A598311995A02F87270740A353705B335ACD ] RSP2STOR C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys 18:41:57.0518 0x2420 RSP2STOR - ok 18:41:57.0597 0x2420 [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys 18:41:57.0643 0x2420 rspndr - ok 18:41:57.0956 0x2420 [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168 C:\WINDOWS\system32\DRIVERS\Rt630x64.sys 18:41:58.0097 0x2420 RTL8168 - ok 18:41:58.0170 0x2420 [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys 18:41:58.0201 0x2420 s3cap - ok 18:41:58.0264 0x2420 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs C:\WINDOWS\system32\lsass.exe 18:41:58.0279 0x2420 SamSs - ok 18:41:58.0326 0x2420 [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys 18:41:58.0358 0x2420 sbp2port - ok 18:41:58.0530 0x2420 [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll 18:41:59.0014 0x2420 SCardSvr - ok 18:41:59.0030 0x2420 [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll 18:41:59.0045 0x2420 ScDeviceEnum - ok 18:41:59.0092 0x2420 [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys 18:41:59.0123 0x2420 scfilter - ok 18:41:59.0217 0x2420 [ D3AE5DB16EAF913860EC28654CE00E6B, AD76B6044F7247C6E86F6DCB7CFD6B25BCA2B9F09A97A419F043A999E66726A2 ] Schedule C:\WINDOWS\system32\schedsvc.dll 18:41:59.0248 0x2420 Schedule - ok 18:41:59.0436 0x2420 [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll 18:41:59.0452 0x2420 SCPolicySvc - ok 18:41:59.0530 0x2420 [ FDEC5799BA499D18AFA3A540538866E7, 551EE0945FE4EC213FFF623E524500B57531EFEA2D76FA7ED1D2D605E7E2168F ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys 18:41:59.0561 0x2420 sdbus - ok 18:41:59.0639 0x2420 [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys 18:41:59.0670 0x2420 sdstor - ok 18:42:00.0045 0x2420 [ 8582611E53929C9B18F6488A772A3EEF, 6EFF7E40C6AB277B2D926B2235E2D1C2D155D2A22C48477F8B45BCB9BBB49E0B ] Seagate Dashboard Services C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.DASWindowsService.exe 18:42:00.0061 0x2420 Seagate Dashboard Services - ok 18:42:00.0137 0x2420 [ 16B44D246835EAC156F8DAF0AA4F530C, F882BE1B27C0500AEE34BB9D9B69EBD258A19418475DB5552345DC844CDA1ECB ] SeagateDashboardService C:\Program Files (x86)\Seagate\Seagate Dashboard\SeagateDashboardService.exe 18:42:00.0231 0x2420 SeagateDashboardService - ok 18:42:00.0294 0x2420 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys 18:42:00.0294 0x2420 secdrv - ok 18:42:00.0341 0x2420 [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon C:\WINDOWS\system32\seclogon.dll 18:42:00.0387 0x2420 seclogon - ok 18:42:00.0450 0x2420 [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS C:\WINDOWS\System32\sens.dll 18:42:00.0528 0x2420 SENS - ok 18:42:00.0653 0x2420 [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll 18:42:01.0028 0x2420 SensrSvc - ok 18:42:01.0044 0x2420 [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys 18:42:01.0075 0x2420 SerCx - ok 18:42:01.0169 0x2420 [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys 18:42:01.0200 0x2420 SerCx2 - ok 18:42:01.0231 0x2420 [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys 18:42:01.0247 0x2420 Serenum - ok 18:42:01.0278 0x2420 [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial C:\WINDOWS\System32\drivers\serial.sys 18:42:01.0278 0x2420 Serial - ok 18:42:01.0310 0x2420 [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys 18:42:01.0310 0x2420 sermouse - ok 18:42:01.0356 0x2420 [ D5C3776CBD8BC307DCCA3FD4CE667A37, 98E4253B770C25914C91A6148E2EA15ED0EF37ADCB042A47252DBA135972BF74 ] SessionEnv C:\WINDOWS\system32\sessenv.dll 18:42:01.0372 0x2420 SessionEnv - ok 18:42:01.0388 0x2420 [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys 18:42:01.0403 0x2420 sfloppy - ok 18:42:01.0435 0x2420 [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll 18:42:01.0466 0x2420 SharedAccess - ok 18:42:01.0513 0x2420 [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll 18:42:01.0544 0x2420 ShellHWDetection - ok 18:42:01.0606 0x2420 [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys 18:42:01.0638 0x2420 SiSRaid2 - ok 18:42:01.0685 0x2420 [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys 18:42:01.0731 0x2420 SiSRaid4 - ok 18:42:01.0841 0x2420 [ 050A4112B00BCA2E13314CDE48C1DEEE, 86C679CD494DEEB984372BF954EFBB8982AC7995FBF89FCF83BC228991D1B825 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 18:42:01.0872 0x2420 SkypeUpdate - ok 18:42:01.0935 0x2420 [ AF5CC3F9B88F140D78FC967ABF0F4EC7, 7CE3AB7B0A36635CF00E35E84C14B8661FAF794ABCFA61AE45A0E5E8EA996A3B ] SmbDrv C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys 18:42:01.0966 0x2420 SmbDrv - ok 18:42:02.0028 0x2420 [ 410F4660C8472873818A288EBBE1FC8A, C72F6B9E334F87CFC3C27443CC01D8251EC8878099AF57B9B4A06A855392D342 ] SmbDrvI C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys 18:42:02.0060 0x2420 SmbDrvI - ok 18:42:02.0129 0x2420 [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost C:\WINDOWS\System32\smphost.dll 18:42:02.0165 0x2420 smphost - ok 18:42:02.0196 0x2420 [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe 18:42:02.0196 0x2420 SNMPTRAP - ok 18:42:02.0227 0x2420 [ 240C5C3793206725AA05665851E8C214, 96ADFB85EB1623EB00C251C1C6A1F441A1795F0EBFD10B17DD1CA58E3AE8A90D ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys 18:42:02.0258 0x2420 spaceport - ok 18:42:02.0274 0x2420 [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys 18:42:02.0290 0x2420 SpbCx - ok 18:42:02.0305 0x2420 [ 42FEA9E0BA9761D9E65A4F167D91515B, 9A34CE83F3ACD50608671BDABE5E475F8E0C8335D3B8B7B3D7E84B2A319FA29F ] Spooler C:\WINDOWS\System32\spoolsv.exe 18:42:02.0415 0x2420 Spooler - ok 18:42:02.0633 0x2420 [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc C:\WINDOWS\system32\sppsvc.exe 18:42:02.0727 0x2420 sppsvc - ok 18:42:02.0930 0x2420 [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv C:\WINDOWS\system32\DRIVERS\srv.sys 18:42:03.0227 0x2420 srv - ok 18:42:03.0602 0x2420 [ 5BED3AB69797C8786EF70AEA8C33748B, 0474EE6C43D437CBA9848BCF25D1341B122D7E9F371A0FF3C62C83D14B2CB095 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys 18:42:03.0821 0x2420 srv2 - ok 18:42:03.0962 0x2420 [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys 18:42:04.0040 0x2420 srvnet - ok 18:42:04.0128 0x2420 [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll 18:42:04.0148 0x2420 SSDPSRV - ok 18:42:04.0273 0x2420 [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll 18:42:04.0288 0x2420 SstpSvc - ok 18:42:04.0867 0x2420 [ 098185E9B7C417CF7480BB9F839DB652, 5573CB98057DC2F01E8958780165A32AFD08E4C768F5625250628CB8A4C509D3 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe 18:42:04.0929 0x2420 STacSV - ok 18:42:04.0945 0x2420 [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys 18:42:04.0960 0x2420 stexstor - ok 18:42:05.0070 0x2420 [ 32BE0B7CCA47A5BE30E7E43DC54B54F3, D4667E88E14393311F93D787C902B993B9451A94D332A65B0E22A8C40C3DFF44 ] STHDA C:\WINDOWS\system32\DRIVERS\stwrt64.sys 18:42:05.0085 0x2420 STHDA - ok 18:42:05.0132 0x2420 [ 2A997C64F9B2584D81FA6749FE36A887, D26F5BC591ED46B96B2ACFDF555C2BF42F4915A22B12E4139ACEF7DE7AC303A7 ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys 18:42:05.0163 0x2420 StillCam - ok 18:42:05.0539 0x2420 [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc C:\WINDOWS\System32\wiaservc.dll 18:42:05.0554 0x2420 stisvc - ok 18:42:05.0617 0x2420 [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\WINDOWS\system32\drivers\storahci.sys 18:42:05.0648 0x2420 storahci - ok 18:42:05.0710 0x2420 [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt C:\WINDOWS\system32\DRIVERS\vmstorfl.sys 18:42:05.0742 0x2420 storflt - ok 18:42:05.0789 0x2420 [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys 18:42:05.0820 0x2420 stornvme - ok 18:42:05.0836 0x2420 [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc C:\WINDOWS\system32\storsvc.dll 18:42:05.0882 0x2420 StorSvc - ok 18:42:05.0898 0x2420 [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys 18:42:05.0898 0x2420 storvsc - ok 18:42:05.0929 0x2420 [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc C:\WINDOWS\system32\svsvc.dll 18:42:05.0945 0x2420 svsvc - ok 18:42:05.0945 0x2420 [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum C:\WINDOWS\System32\drivers\swenum.sys 18:42:05.0960 0x2420 swenum - ok 18:42:05.0992 0x2420 [ 850EBB87584484DC16F917E7B6F4A304, C253D1DFFCDFB018432063602FB01DBCBDDD6E03458E5C366AABD4670F114B0C ] swprv C:\WINDOWS\System32\swprv.dll 18:42:06.0039 0x2420 swprv - ok 18:42:06.0054 0x2420 [ 0F34FE968C91D02CE30D76C257F2BDA0, 4BD7BD9B94C14D14214910EF83D5F7B62081D02F9EE80E2FC6103D385482A605 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys 18:42:06.0085 0x2420 SynTP - ok 18:42:06.0301 0x2420 [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] SysMain C:\WINDOWS\system32\sysmain.dll 18:42:06.0410 0x2420 SysMain - ok 18:42:06.0488 0x2420 [ FD4EA8E9232ADD51DC31C295DDEF2768, 3EA40D7376AB5AA5DA2BCF4745C79F7BF819363466967ECC3CD15ADECBFD7244 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll 18:42:06.0566 0x2420 SystemEventsBroker - ok 18:42:06.0613 0x2420 [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll 18:42:06.0629 0x2420 TabletInputService - ok 18:42:06.0785 0x2420 [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll 18:42:06.0848 0x2420 TapiSrv - ok 18:42:06.0973 0x2420 [ 87F3713E620F62D243A82B3CB66CBDDE, 5C14F43BC5114DB664490DEE5024555149766C2F2430A910AA9DA2210D968063 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys 18:42:07.0207 0x2420 Tcpip - ok 18:42:07.0817 0x2420 [ 87F3713E620F62D243A82B3CB66CBDDE, 5C14F43BC5114DB664490DEE5024555149766C2F2430A910AA9DA2210D968063 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys 18:42:07.0848 0x2420 TCPIP6 - ok 18:42:07.0910 0x2420 [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys 18:42:07.0957 0x2420 tcpipreg - ok 18:42:07.0973 0x2420 [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys 18:42:07.0988 0x2420 tdx - ok 18:42:08.0004 0x2420 [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys 18:42:08.0020 0x2420 terminpt - ok 18:42:08.0067 0x2420 [ 3D748E5558FD9A9F03182CB2330698DC, 70B2069AB7912EB49AB3ABD18D4B42CB94AC99CA6DE3F63F4888B8EAAC78AAA2 ] TermService C:\WINDOWS\System32\termsrv.dll 18:42:08.0221 0x2420 TermService - ok 18:42:08.0300 0x2420 [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes C:\WINDOWS\system32\themeservice.dll 18:42:08.0346 0x2420 Themes - ok 18:42:08.0346 0x2420 [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER C:\WINDOWS\system32\mmcss.dll 18:42:08.0346 0x2420 THREADORDER - ok 18:42:08.0471 0x2420 [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll 18:42:08.0550 0x2420 TimeBroker - ok 18:42:08.0612 0x2420 [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM C:\WINDOWS\system32\drivers\tpm.sys 18:42:08.0643 0x2420 TPM - ok 18:42:08.0721 0x2420 [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks C:\WINDOWS\System32\trkwks.dll 18:42:08.0800 0x2420 TrkWks - ok 18:42:08.0893 0x2420 [ 6BFB75B76411CC57A72FCC1D0201E166, 8F3A97E7651501F58018EB6081178B2A05ADFBF48C6126E0176FE231A261893E ] TrueService C:\Program Files\Common Files\AuthenTec\TrueService.exe 18:42:08.0987 0x2420 TrueService - ok 18:42:09.0034 0x2420 [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe 18:42:09.0034 0x2420 TrustedInstaller - ok 18:42:09.0112 0x2420 [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys 18:42:09.0190 0x2420 TsUsbFlt - ok 18:42:09.0253 0x2420 [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys 18:42:09.0315 0x2420 TsUsbGD - ok 18:42:09.0425 0x2420 [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys 18:42:09.0440 0x2420 tunnel - ok 18:42:09.0472 0x2420 [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys 18:42:09.0503 0x2420 uagp35 - ok 18:42:09.0628 0x2420 [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys 18:42:09.0628 0x2420 UASPStor - ok 18:42:09.0815 0x2420 [ B034A41891A36457B994307DFA772293, CA5E6500764A9777AE0E15B2AFB6F05982C90F01374E3F6DDC6DF3852282C66B ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys 18:42:09.0909 0x2420 UCX01000 - ok 18:42:10.0097 0x2420 [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys 18:42:10.0330 0x2420 udfs - ok 18:42:10.0392 0x2420 [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys 18:42:10.0424 0x2420 UEFI - ok 18:42:10.0486 0x2420 [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe 18:42:10.0517 0x2420 UI0Detect - ok 18:42:10.0580 0x2420 [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys 18:42:10.0596 0x2420 uliagpkx - ok 18:42:10.0611 0x2420 [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\WINDOWS\System32\drivers\umbus.sys 18:42:10.0627 0x2420 umbus - ok 18:42:10.0642 0x2420 [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\WINDOWS\System32\drivers\umpass.sys 18:42:10.0658 0x2420 UmPass - ok 18:42:10.0846 0x2420 [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService C:\WINDOWS\System32\umrdp.dll 18:42:10.0908 0x2420 UmRdpService - ok 18:42:11.0064 0x2420 [ DBE2E6388379D5CC78099650541E9566, 1914BC929F109A49FB18ED31F239A9813A010B0A3914BC8CD0D6A94A67A072D7 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe 18:42:11.0080 0x2420 UNS - ok 18:42:11.0142 0x2420 [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost C:\WINDOWS\System32\upnphost.dll 18:42:11.0158 0x2420 upnphost - ok 18:42:11.0158 0x2420 [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys 18:42:11.0205 0x2420 USBAAPL64 - ok 18:42:11.0221 0x2420 [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys 18:42:11.0236 0x2420 usbccgp - ok 18:42:11.0299 0x2420 [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys 18:42:11.0330 0x2420 usbcir - ok 18:42:11.0440 0x2420 [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys 18:42:11.0471 0x2420 usbehci - ok 18:42:11.0674 0x2420 [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys 18:42:11.0924 0x2420 usbhub - ok 18:42:12.0080 0x2420 [ 65392F3F3F65E4C6CC82A0F4F8A0B051, C11B662A28D95820717DFFC6B76DBB755E4876009A2342E5E3992DE32D6BFF61 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys 18:42:12.0313 0x2420 USBHUB3 - ok 18:42:12.0376 0x2420 [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys 18:42:12.0501 0x2420 usbohci - ok 18:42:12.0579 0x2420 [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys 18:42:12.0610 0x2420 usbprint - ok 18:42:12.0673 0x2420 [ F04D164C4168701A4E7835607722E5F1, 6F743CF2CF73945B4A4B1C4402744BC2FE1624F1346C194493AD2F7110F9EB35 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys 18:42:12.0688 0x2420 usbscan - ok 18:42:12.0798 0x2420 [ EA23453240137F6773174E0D93F61A69, 579AD09FB428C2BB8B4055128620A7AADD1B606C1EA44B87A01D69A84232A5D9 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS 18:42:12.0813 0x2420 USBSTOR - ok 18:42:12.0892 0x2420 [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys 18:42:12.0954 0x2420 usbuhci - ok 18:42:13.0079 0x2420 [ 18F744E8CCEB2670040EBAF7AD77B8C6, C5E2DF4EA0D946B4DA67DE29FA9D0F079DED35EC59B98E532C4C2D5F8E86DA0A ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys 18:42:13.0110 0x2420 usbvideo - ok 18:42:13.0142 0x2420 [ 48430B0313FC1CFE3D2400553F1A93CD, 92994DE6B131E904AFF2C9C4FBB4E6B0D58525A1539763327373DA18C9F08193 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS 18:42:13.0157 0x2420 USBXHCI - ok 18:42:13.0220 0x2420 [ 49F2693BC3D821FA13AD6E7D5C5FEAFF, E0E109CAB6B19C77A870C5A0D8A99769F5B99C19C2E35A0615D91F87B25229A3 ] valWBFPolicyService C:\WINDOWS\system32\valWBFPolicyService.exe 18:42:13.0282 0x2420 valWBFPolicyService - ok 18:42:13.0360 0x2420 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc C:\WINDOWS\system32\lsass.exe 18:42:13.0360 0x2420 VaultSvc - ok 18:42:13.0407 0x2420 [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys 18:42:13.0439 0x2420 vdrvroot - ok 18:42:13.0595 0x2420 [ E3EF58D4123B5AA29C8E19825AF84A5E, FB1046722BC643E955DBC3B1459DBF2A6D575EBA2BCF7B20A0FA51E3993835E2 ] vds C:\WINDOWS\System32\vds.exe 18:42:13.0782 0x2420 vds - ok 18:42:13.0860 0x2420 [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys 18:42:13.0892 0x2420 VerifierExt - ok 18:42:14.0110 0x2420 [ 52E483A3701A5A61A75A06993720347D, 689E812755E485DF6960D1E049740FBAFB812467D23B673DCAA40C03FEBB544F ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys 18:42:14.0138 0x2420 vhdmp - ok 18:42:14.0200 0x2420 [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\WINDOWS\system32\drivers\viaide.sys 18:42:14.0232 0x2420 viaide - ok 18:42:14.0232 0x2420 [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys 18:42:14.0247 0x2420 vmbus - ok 18:42:14.0263 0x2420 [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys 18:42:14.0278 0x2420 VMBusHID - ok 18:42:14.0325 0x2420 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll 18:42:14.0341 0x2420 vmicguestinterface - ok 18:42:14.0435 0x2420 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll 18:42:14.0450 0x2420 vmicheartbeat - ok 18:42:14.0466 0x2420 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll 18:42:14.0482 0x2420 vmickvpexchange - ok 18:42:14.0497 0x2420 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll 18:42:14.0497 0x2420 vmicrdv - ok 18:42:14.0513 0x2420 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll 18:42:14.0513 0x2420 vmicshutdown - ok 18:42:14.0528 0x2420 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll 18:42:14.0544 0x2420 vmictimesync - ok 18:42:14.0560 0x2420 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss C:\WINDOWS\System32\ICSvc.dll 18:42:14.0560 0x2420 vmicvss - ok 18:42:14.0575 0x2420 [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys 18:42:14.0591 0x2420 volmgr - ok 18:42:14.0607 0x2420 [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys 18:42:14.0622 0x2420 volmgrx - ok 18:42:14.0638 0x2420 [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys 18:42:14.0669 0x2420 volsnap - ok 18:42:14.0685 0x2420 [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci C:\WINDOWS\System32\drivers\vpci.sys 18:42:14.0685 0x2420 vpci - ok 18:42:14.0700 0x2420 [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys 18:42:14.0732 0x2420 vsmraid - ok 18:42:14.0778 0x2420 [ E369C59F2C0852DDD090C07E0DDE0051, 4FAC94458EAAEED4F84A86FBAB8FBB332D0AF85BD528E63C0C058A2DA8E3011D ] VSS C:\WINDOWS\system32\vssvc.exe 18:42:14.0825 0x2420 VSS - ok 18:42:14.0888 0x2420 [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys 18:42:14.0903 0x2420 VSTXRAID - ok 18:42:14.0950 0x2420 [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys 18:42:14.0997 0x2420 vwifibus - ok 18:42:15.0044 0x2420 [ 35BF5C5F5E3C9902C98978C7640574DA, C61E50B04000DCEC72365723F0C0725C2E005529DAF2777A59E624C14DA29E55 ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys 18:42:15.0107 0x2420 vwififlt - ok 18:42:15.0153 0x2420 [ 65ED7B9CFEA893DF7748D5FF692690DE, 73AB9D8BB928B3247BDFC7BB47AD7FCA763B375DC250C251DB4E0573531040E8 ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys 18:42:15.0169 0x2420 vwifimp - ok 18:42:15.0232 0x2420 [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time C:\WINDOWS\system32\w32time.dll 18:42:15.0310 0x2420 W32Time - ok 18:42:15.0341 0x2420 [ 8E553C859C83784DEC08B10AFC3EAC92, 41D8DBA1500DBD3AC9783169ACF545805EF05069F12866238992A30794369254 ] w3logsvc C:\WINDOWS\system32\inetsrv\w3logsvc.dll 18:42:15.0357 0x2420 w3logsvc - ok 18:42:15.0404 0x2420 [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys 18:42:15.0404 0x2420 WacomPen - ok 18:42:15.0450 0x2420 [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys 18:42:15.0513 0x2420 Wanarp - ok 18:42:15.0513 0x2420 [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] Wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys 18:42:15.0513 0x2420 Wanarpv6 - ok 18:42:15.0575 0x2420 [ 9BAE40BD31E3EE0B0C70BEF167E0A2BC, 2419AC815C95F2629E1832973501983D06F788728755605D42D6C8565C3CBBF1 ] WAS C:\WINDOWS\system32\inetsrv\iisw3adm.dll 18:42:15.0607 0x2420 WAS - ok 18:42:15.0685 0x2420 [ 61692DB39AD3DF2F29392D68EAA7BB93, 854D4B9C7DD1676968598ED973500650ECEC02C420E44C0B3957C24F073AA5FB ] wbengine C:\WINDOWS\system32\wbengine.exe 18:42:15.0825 0x2420 wbengine - ok 18:42:15.0888 0x2420 [ 3BC1D1D56637A32CD91C8AE08E2484AA, 9EE1BD3FB0D289E25F3DDD0D8F67DC1C701A6B1D5418FADF348D0E642B1DEBEB ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll 18:42:15.0888 0x2420 WbioSrvc - ok 18:42:15.0950 0x2420 [ A07CFC4B593D15B6BF06813C3B5B33BF, B57BD918E2AFF9943B51A24B95E0C4D3482B4DF73C0E2421E8CC67C2BC7A4C70 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll 18:42:16.0075 0x2420 Wcmsvc - ok 18:42:16.0107 0x2420 [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll 18:42:16.0165 0x2420 wcncsvc - ok 18:42:16.0212 0x2420 [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll 18:42:16.0227 0x2420 WcsPlugInService - ok 18:42:16.0258 0x2420 [ F5D4FA3E1F4879C361FFF3855259D2C2, 48C60FE4AAB011E2250157506FF0624031BFA346F8F2F8C6DFDF6F3CAA4F3F42 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys 18:42:16.0321 0x2420 WdBoot - ok 18:42:16.0352 0x2420 [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM C:\WINDOWS\System32\drivers\wdcsam64.sys 18:42:16.0383 0x2420 WDC_SAM - ok 18:42:16.0446 0x2420 [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys 18:42:16.0477 0x2420 Wdf01000 - ok 18:42:16.0493 0x2420 [ 019CC610AD95FF47EAD7C08B7A683B96, BB9D42F8ED90ECA2E7B8C906E06A1EA859FAD9BD1B3492BB1E28C0D00004812A ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys 18:42:16.0508 0x2420 WdFilter - ok 18:42:16.0524 0x2420 [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll 18:42:16.0524 0x2420 WdiServiceHost - ok 18:42:16.0524 0x2420 [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll 18:42:16.0540 0x2420 WdiSystemHost - ok 18:42:16.0555 0x2420 [ 6CC1BB8F6851A262E2E824F0E92D5EEF, 45A88A984179BBA38C1F4434C4D6C2823C1FE6AFBE8CB0F656DAE0092D1D5611 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys 18:42:16.0571 0x2420 WdNisDrv - ok 18:42:16.0587 0x2420 WdNisSvc - ok 18:42:16.0618 0x2420 [ 91B18D7A1702ED589E67C6C81052B955, 5D1DA8B86106A28E50BBCCB36527CC130D41201F5BE1D3DC5F1D6F7ECCF807BA ] WebClient C:\WINDOWS\System32\webclnt.dll 18:42:16.0727 0x2420 WebClient - ok 18:42:16.0774 0x2420 [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc C:\WINDOWS\system32\wecsvc.dll 18:42:16.0852 0x2420 Wecsvc - ok 18:42:16.0899 0x2420 [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll 18:42:16.0930 0x2420 WEPHOSTSVC - ok 18:42:16.0946 0x2420 [ 959534ACF085C137D2D094384EF89C45, D029F440789FE170A1C46217C6DE6D78DC0188A5CF33FCCC17FA65D3BC80C2B7 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll 18:42:17.0009 0x2420 wercplsupport - ok 18:42:17.0071 0x2420 [ 82BCCF5FBE47AC9E8CBA2020994DFB3F, EA96C6BD98A701B465D0780EC10BDA92E45FE636D60C1385813AA3B456D8B931 ] WerSvc C:\WINDOWS\System32\WerSvc.dll 18:42:17.0087 0x2420 WerSvc - ok 18:42:17.0134 0x2420 [ BFBE1C5F57FE7A885673A1962D5532B7, F0BD05B257108699FE6AB32EF11F927C31932F27062A705B3FEFA4F5B4C0D8C3 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys 18:42:17.0149 0x2420 WFPLWFS - ok 18:42:17.0165 0x2420 [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll 18:42:17.0243 0x2420 WiaRpc - ok 18:42:17.0290 0x2420 [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys 18:42:17.0321 0x2420 WIMMount - ok 18:42:17.0337 0x2420 WinDefend - ok 18:42:17.0571 0x2420 [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll 18:42:17.0587 0x2420 WinHttpAutoProxySvc - ok 18:42:17.0696 0x2420 [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll 18:42:17.0774 0x2420 Winmgmt - ok 18:42:17.0868 0x2420 [ C8D6344BDE2691A196E61C0D3372EAB7, FF8EB79D8A7E298343C22B83276FF68293D08A9DA438BB22600BEFC4CA93A91D ] WinRM C:\WINDOWS\system32\WsmSvc.dll 18:42:18.0040 0x2420 WinRM - ok 18:42:18.0102 0x2420 [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb C:\WINDOWS\System32\drivers\WinUSB.sys 18:42:18.0121 0x2420 WinUsb - ok 18:42:18.0145 0x2420 [ 4F2A80D65AE6F845776E2F06AE6782ED, 2455537C048115435D9EDE4B18F9F54C43912076AEF36BDEFEC35AF2140B8B2E ] WirelessButtonDriver C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys 18:42:18.0161 0x2420 WirelessButtonDriver - ok 18:42:18.0239 0x2420 [ 3F5EF31C6AA204B099EE76497DF80A26, CBE648A4E7E1D98A3D8C72582C1CB3C2FD2329EAA24EE4DCAD271AAA6F4D82CE ] WlanSvc C:\WINDOWS\System32\wlansvc.dll 18:42:18.0302 0x2420 WlanSvc - ok 18:42:18.0395 0x2420 [ 5F56C0DE776C7AE43AF749845BFAA1EF, 837993C5853B7E682C7FB8401B7F5D951FFD15E5659EBB1B01DC3F5719ACEE19 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll 18:42:18.0458 0x2420 wlidsvc - ok 18:42:18.0473 0x2420 [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys 18:42:18.0536 0x2420 WmiAcpi - ok 18:42:18.0552 0x2420 [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe 18:42:18.0598 0x2420 wmiApSrv - ok 18:42:18.0630 0x2420 WMPNetworkSvc - ok 18:42:18.0677 0x2420 [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\WINDOWS\system32\drivers\Wof.sys 18:42:18.0708 0x2420 Wof - ok 18:42:18.0817 0x2420 [ 61BF52E9FFAB27A0B6D621BE26088373, 81291D52C381360E69D51E7DEB05CFAC651A7E9EF781CA23062C0583D0C94708 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll 18:42:18.0958 0x2420 workfolderssvc - ok 18:42:18.0974 0x2420 [ 182561A14F2E93E81E66FE3700D17A5A, FB9A06058A8BCCEDCDC5BF8899D9B2FBA5752C262C5FC6D2B8338884F3303D12 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys 18:42:18.0989 0x2420 wpcfltr - ok 18:42:19.0036 0x2420 [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll 18:42:19.0083 0x2420 WPCSvc - ok 18:42:19.0130 0x2420 [ 618A19EB31ECA7B7F2AA0207BAF598A5, CB18CF9B781EAB3D775F8201F294A7135E058D6C963D2CC759DCA14D95EED538 ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll 18:42:19.0145 0x2420 WPDBusEnum - ok 18:42:19.0161 0x2420 [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys 18:42:19.0161 0x2420 WpdUpFltr - ok 18:42:19.0161 0x2420 [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys 18:42:19.0192 0x2420 ws2ifsl - ok 18:42:19.0192 0x2420 [ 9654DE19551093CD73874281E1573C94, 5E3513EC0CB180D90904BE8970AB64A4434279E8C467AE2CF693254E47B1D11E ] wscsvc C:\WINDOWS\System32\wscsvc.dll 18:42:19.0192 0x2420 wscsvc - ok 18:42:19.0208 0x2420 [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice C:\WINDOWS\System32\drivers\WSDPrint.sys 18:42:19.0239 0x2420 WSDPrintDevice - ok 18:42:19.0302 0x2420 WSearch - ok 18:42:19.0427 0x2420 [ 95B6670E6933E1DEE19686C55BE709A0, 4B9EB8F1712B7959A71F6DA445D29BD09B25EEFC6B30D736EFE30163D79B233E ] WSService C:\WINDOWS\System32\WSService.dll 18:42:19.0599 0x2420 WSService - ok 18:42:19.0708 0x2420 [ 9FDD8CD31F3FBA88F050318F32D640E2, BBCAFDA420E11D43BAD5D87D47607F4ADF0D817C1BF86D6389582B56EDD7C246 ] wuauserv C:\WINDOWS\system32\wuaueng.dll 18:42:19.0770 0x2420 wuauserv - ok 18:42:19.0817 0x2420 [ D537815E450A149752C15868392AD1F3, 8788CE493349299DB36E409C8CC3C6EA08301FA492C95D9D556E00BC13A05F13 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys 18:42:19.0833 0x2420 WudfPf - ok 18:42:19.0942 0x2420 [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys 18:42:19.0958 0x2420 WUDFRd - ok 18:42:19.0958 0x2420 [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFSensorLP C:\WINDOWS\System32\drivers\WUDFRd.sys 18:42:19.0958 0x2420 WUDFSensorLP - ok 18:42:19.0974 0x2420 [ 9CDC2059A23E3C9B57696178508777E7, B680A2E2EDA5C8C6A547E7D9B2F2F8E6407C3EA0A01B82A4B88D48A27913A597 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll 18:42:19.0974 0x2420 wudfsvc - ok 18:42:19.0989 0x2420 [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys 18:42:19.0989 0x2420 WUDFWpdFs - ok 18:42:19.0989 0x2420 [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys 18:42:20.0005 0x2420 WUDFWpdMtp - ok 18:42:20.0020 0x2420 [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc C:\WINDOWS\System32\wwansvc.dll 18:42:20.0052 0x2420 WwanSvc - ok 18:42:20.0067 0x2420 [ 6FDEE5E0741A3FFA5E5772C6C94E3F64, 859EBC7F8FF3CE9F3301B5BF93CF0C84C2A4271F205B67D9B8DC463DC67DE661 ] XHCIPort C:\WINDOWS\System32\drivers\XHCIPort.sys 18:42:20.0083 0x2420 XHCIPort - ok 18:42:20.0204 0x2420 [ 19137CA32DA7AA6F4936514721AA53BA, E9E5E6F05A1D529D19339F0C71AA5F9D412F6D3AE4BF84CF340C8569BA367D51 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe 18:42:20.0345 0x2420 ZeroConfigService - ok 18:42:20.0360 0x2420 ================ Scan global =============================== 18:42:20.0454 0x2420 [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\WINDOWS\system32\basesrv.dll 18:42:20.0579 0x2420 [ 00DD4D2ACC2E72155A8AAA82018BEC0D, 9D7CA68B4A81240477FCC85A3CC11EF986093F9D6228A6C5AC608EDAD664068C ] C:\WINDOWS\system32\winsrv.dll 18:42:20.0641 0x2420 [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\WINDOWS\system32\sxssrv.dll 18:42:20.0751 0x2420 [ 067CB90C277DB4A737D5DEABA3055972, C681BF013170F2D92A3FC4D783FC3F200CDC0C8173373B7ECC27FCF32A03CCBD ] C:\WINDOWS\system32\services.exe 18:42:20.0782 0x2420 [ Global ] - ok 18:42:20.0782 0x2420 ================ Scan MBR ================================== 18:42:20.0813 0x2420 [ A78C646DB8D284B9C54ED366B2CA860E ] \Device\Harddisk0\DR0 18:42:20.0876 0x2420 \Device\Harddisk0\DR0 - ok 18:42:20.0876 0x2420 ================ Scan VBR ================================== 18:42:20.0907 0x2420 [ 5100BDD59346B59B56BFF3BAD5245DE4 ] \Device\Harddisk0\DR0\Partition1 18:42:20.0907 0x2420 \Device\Harddisk0\DR0\Partition1 - ok 18:42:20.0923 0x2420 [ F3FEDBF3F85336243E2811ABACA45922 ] \Device\Harddisk0\DR0\Partition2 18:42:20.0938 0x2420 \Device\Harddisk0\DR0\Partition2 - ok 18:42:20.0938 0x2420 [ 131DC1E5AF18F03F55A4A6E2D92FF589 ] \Device\Harddisk0\DR0\Partition3 18:42:20.0938 0x2420 \Device\Harddisk0\DR0\Partition3 - ok 18:42:20.0954 0x2420 [ EEE5A25668CB7D4446B6B6939611AA9C ] \Device\Harddisk0\DR0\Partition4 18:42:20.0954 0x2420 \Device\Harddisk0\DR0\Partition4 - ok 18:42:20.0970 0x2420 [ EC697BE44B1F878E13A6C9C2ECB5087C ] \Device\Harddisk0\DR0\Partition5 18:42:20.0985 0x2420 \Device\Harddisk0\DR0\Partition5 - ok 18:42:21.0001 0x2420 [ 87CCF68CBB18CC2781CA7C57DE54AF21 ] \Device\Harddisk0\DR0\Partition6 18:42:21.0016 0x2420 \Device\Harddisk0\DR0\Partition6 - ok 18:42:21.0016 0x2420 ================ Scan generic autorun ====================== 18:42:21.0095 0x2420 [ 210875E72C45D712120904128F357233, 4998BF27D28D4DDE79F9B06E0562E28A9D433DBFC0D3D4144A7A97EBF5110091 ] C:\Program Files\IDT\WDM\sttray64.exe 18:42:21.0173 0x2420 SysTrayApp - ok 18:42:21.0204 0x2420 [ 6E0BDFBEEED65B017F2E4C2C910B0520, 54D798C2E2804DCDB84E9650EA4A032C669B10C586B396D5505F16235D83882C ] C:\Windows\system32\rundll32.exe 18:42:21.0204 0x2420 Logitech Download Assistant - ok 18:42:21.0204 0x2420 BTMTrayAgent - ok 18:42:21.0235 0x2420 [ DD79A6B15C2F28DE98DF4852AAF6B13B, 0F7E9023E0BA4B40E2DE9A9FA34E85FEAF72B93049AAB3E1D73AD046BB113E05 ] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe 18:42:21.0251 0x2420 NCPluginUpdater - ok 18:42:21.0282 0x2420 [ B7995C675014EEBE77A0BEB7AFCCFC08, 41D186C63273301CF0A1C1EE7B6EB0BB75A251DD441532C5CEB7A4095FB103CD ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe 18:42:21.0282 0x2420 RemoteControl10 - ok 18:42:21.0329 0x2420 [ F0EFE6B69853652A220A5A2D1DD97F62, E16B6313EF7EFF6C76E882E7628348474909499B36A2701CE4F9E05EFFAD620C ] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe 18:42:21.0345 0x2420 BDRegion - ok 18:42:21.0376 0x2420 [ 09E60B4FE341A94A300830C008907099, 5F07868953FAA8FFA9E6477F6BAC52DEEDF3EA4A3F8AF5B4E15878D8240223AB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe 18:42:21.0391 0x2420 APSDaemon - ok 18:42:21.0454 0x2420 [ EFA334917657A01479ED0CF1920FCE9C, 34166E7EEF202D2DF3EFC528ACFBC43798AEE8B0A0D73A01A42C5BB88B4798F0 ] C:\Program Files\McAfee.com\Agent\mcagent.exe 18:42:21.0470 0x2420 mcui_exe - ok 18:42:21.0485 0x2420 [ 38FBB26EC0E2136046E8C355400704A8, E7AC58972F8CE4CC84C5B5B4F84BA5DA1AB160E908AF2BC3BC0FCEA29CF9FF97 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe 18:42:21.0501 0x2420 Monitor - ok 18:42:21.0517 0x2420 [ 6198A9BC15ED77F318D5DDD1918CF1D1, 6C7E619BB053F09021F5867E3A70A3A2890E2318CF1A5CE294A5F894CB3A4890 ] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe 18:42:21.0532 0x2420 HP Quick Launch - ok 18:42:21.0595 0x2420 [ E99B232B45626F85D36EDF1370F2522A, 354754A508619D4443DADF0397140B3F87060431586187C43512F862914A0C0A ] C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\DBAgent.exe 18:42:21.0626 0x2420 DBAgent - ok 18:42:21.0657 0x2420 [ A853FB4774AAA16D7D57E26F46196ABF, 71791A0EB922CD554E58120F5E884B1E08EEDEA4B1BFFA19C8975CFEE38297FD ] C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoLauncher.exe 18:42:21.0720 0x2420 Seagate Dashboard - ok 18:42:21.0798 0x2420 ShopAtHomeWatcher - ok 18:42:21.0798 0x2420 ShopAtHomeUpdater - ok 18:42:21.0813 0x2420 [ EFA334917657A01479ED0CF1920FCE9C, 34166E7EEF202D2DF3EFC528ACFBC43798AEE8B0A0D73A01A42C5BB88B4798F0 ] C:\Program Files\McAfee.com\Agent\mcagent.exe 18:42:21.0845 0x2420 mcpltui_exe - ok 18:42:21.0954 0x2420 [ A668E79F7438B556B8097891FECD978F, C3840C60DE14507EC299354DD6A2E762B1CDCD310C423AD2C38C7EFAB6096E90 ] C:\Program Files (x86)\Fitbit Connect\Fitbit Connect.exe 18:42:22.0079 0x2420 Fitbit Connect - ok 18:42:22.0139 0x2420 [ 47EA5F76FAB723C61AB4A0D79BAD512C, A7A38EB0A7068B160E6949945EF639F999A06AE35746F6E79C7350745798E5C9 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe 18:42:22.0280 0x2420 Adobe ARM - ok 18:42:22.0405 0x2420 [ 30EE672AD2C53BFB7DD4BE6993B07C71, 5FB6B5B71AFF14E22460C4C6CA75830736222B74D200E413E05F0CACDE2C44CF ] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe 18:42:22.0499 0x2420 BingDesktop - ok 18:42:22.0530 0x2420 [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe 18:42:22.0530 0x2420 HP Software Update - ok 18:42:22.0577 0x2420 [ 2A65AE735E0C439762072787AD61FA07, 19E4A96924BBD51F45DD5D34D18B16D614779F508B3DF5895DF2218043BEF0E0 ] C:\Program Files (x86)\Windows Mail\wab.exe 18:42:22.0608 0x2420 WAB Migrate - ok 18:42:22.0640 0x2420 [ F6B3D572E06E880375F4AE782DE97D90, 2BE682E83E9AA17DE84E642D5DEED4F254E524E6AFCA8887705B3D3F68C5AED5 ] C:\WINDOWS\system32\StikyNot.exe 18:42:22.0671 0x2420 RESTART_STICKY_NOTES - ok 18:42:22.0733 0x2420 [ 2A3FB4C98F139038E23330D2439DB8A4, DE9253AD362B03FA5D3D4912662398E5C4AC76F7274B83E51C251A6921A5B838 ] C:\Users\Vande_000.HP-LAPTOP\AppData\Local\Facebook\Update\FacebookUpdate.exe 18:42:22.0749 0x2420 Facebook Update - ok 18:42:22.0749 0x2420 Power2GoExpress8 - ok 18:42:22.0843 0x2420 [ 254E0CCB24D8E48479A8A387C77CA356, 1E9BAA4AFAC50123F57ABC32C382502BDB2EF25EE30B582C1D3B2CB07178A51F ] C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe 18:42:22.0874 0x2420 GarminExpressTrayApp - ok 18:42:22.0874 0x2420 [ 06B52F31FA17AB35223D9F0A9B9851A2, AF8F958AA1DA332131A371AA39A2426324ACA58042CF719342E67F18065EB19C ] C:\Program Files (x86)\Seagate\Seagate Dashboard 2.0\Seagate.Dashboard.Uploader.exe 18:42:22.0890 0x2420 Uploader - ok 18:42:22.0921 0x2420 [ 0EC83E2DA29365048CBEB9A9A963BDFA, 49A41056403042B21AF3C1936489942B703BE609CB7DFC3303C417A5702501B9 ] C:\Users\Vande_000.HP-LAPTOP\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe 18:42:22.0921 0x2420 SkyDrive - ok 18:42:22.0936 0x2420 [ 799BCC829F48F19C5689478179060435, 495C6E363982F7BE1785A46C12ED4AC99E0AF98F340F1CE3C55D39EBE6FE33AA ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe 18:42:22.0952 0x2420 ApplePhotoStreams - ok 18:42:23.0015 0x2420 [ A668E79F7438B556B8097891FECD978F, C3840C60DE14507EC299354DD6A2E762B1CDCD310C423AD2C38C7EFAB6096E90 ] C:\Program Files (x86)\Fitbit Connect\Fitbit Connect.exe 18:42:23.0061 0x2420 Fitbit Connect - ok 18:42:23.0186 0x2420 [ A7A954D9A141260771349A41526543B0, 262E2F2A2C0F5D5255AE9181A1BEBAA210D7BEDBFBAF6AFCC6B824695ADF9D60 ] C:\Users\Vande_000.HP-LAPTOP\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe 18:42:23.0515 0x2420 Amazon Cloud Player - ok 18:42:23.0546 0x2420 ISUSPM - ok 18:42:23.0640 0x2420 [ E5EA9032823E11543475D46775258CDA, 6056BE7D6FEB8D433E61829255D60B09961F6217D9DE7C600A421D57D853CE93 ] C:\Users\Vande_000.HP-LAPTOP\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe 18:42:23.0827 0x2420 Google+ Auto Backup - ok 18:42:23.0827 0x2420 iLivid - ok 18:42:23.0858 0x2420 Skype - ok 18:42:23.0905 0x2420 [ 66A4A7C7802E0968E07647999FFC87E2, 9724C8CB80AF63A4CA14BB3521695942AE33B6C18F42266C407301610C4C7BFE ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe 18:42:23.0921 0x2420 GoogleChromeAutoLaunch_0F1F3312CA2B71565D62FF880BA352A4 - ok 18:42:23.0921 0x2420 Waiting for KSN requests completion. In queue: 232 18:42:24.0933 0x2420 AV detected via SS2: McAfee Anti-Virus and Anti-Spyware, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 12.8.0.0 ), 0x51010 ( enabled : outofdate ) 18:42:24.0965 0x2420 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.5.218.0 ), 0x60100 ( disabled : updated ) 18:42:24.0965 0x2420 FW detected via SS2: McAfee Firewall, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 12.8.0.0 ), 0x51010 ( enabled ) 18:42:27.0523 0x2420 ============================================================ 18:42:27.0523 0x2420 Scan finished 18:42:27.0523 0x2420 ============================================================ 18:42:27.0523 0x28f8 Detected object count: 0 18:42:27.0523 0x28f8 Actual detected object count: 0 AdWCleaner [R0] # AdwCleaner v3.311 - Report created 05/11/2014 at 18:44:55 # Updated 30/09/2014 by Xplode # Operating System : Windows 8.1 (64 bits) # Username : Vande_000 - HP-LAPTOP # Running from : C:\Users\Vande_000.HP-LAPTOP\Desktop\MalWare\AdwCleaner.exe # Option : Scan ***** [ Services ] ***** Service Found : valWBFPolicyService ***** [ Files / Folders ] ***** File Found : C:\END File Found : C:\WINDOWS\System32\valWBFPolicyService.exe Folder Found : C:\ProgramData\374311380 ***** [ Scheduled Tasks ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Found : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} Key Found : HKCU\Software\AppDataLow\Software\DynConIE Key Found : HKCU\Software\AppDataLow\Software\TelevisionFanatic Key Found : HKCU\Software\ilivid Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827} Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A5B9C0F5-5616-47CD-A95F-E43B488FACCF} Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{04D2B915-19FF-41E9-994D-95DC898BEA43} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DEDAF650-12B8-48F5-A843-BBA100716106} Key Found : HKCU\Software\Optimizer Pro Key Found : HKCU\Software\pc optimizer pro Key Found : [x64] HKCU\Software\ilivid Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827} Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A5B9C0F5-5616-47CD-A95F-E43B488FACCF} Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671} Key Found : [x64] HKCU\Software\Optimizer Pro Key Found : [x64] HKCU\Software\pc optimizer pro Key Found : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F} Key Found : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} Key Found : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C} Key Found : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E} Key Found : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Key Found : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL Key Found : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE Key Found : HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C} Key Found : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8} Key Found : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F} Key Found : HKLM\SOFTWARE\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052} Key Found : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5} Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5} Key Found : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70} Key Found : HKLM\SOFTWARE\Classes\CLSID\{D433A9D0-8267-40CB-8AD5-24F22FA5373F} Key Found : HKLM\SOFTWARE\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0} Key Found : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B} Key Found : HKLM\SOFTWARE\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6} Key Found : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler Key Found : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1 Key Found : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921} Key Found : HKLM\SOFTWARE\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003} Key Found : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F} Key Found : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979} Key Found : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE} Key Found : HKLM\SOFTWARE\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328} Key Found : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29} Key Found : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC} Key Found : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659} Key Found : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47} Key Found : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C} Key Found : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6} Key Found : HKLM\SOFTWARE\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403} Key Found : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils Key Found : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1 Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1 Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1 Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbRequest Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1 Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbTask Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1 Key Found : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper Key Found : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1 Key Found : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier Key Found : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1 Key Found : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl Key Found : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1 Key Found : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager Key Found : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager.1 Key Found : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148} Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C} Key Found : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook Key Found : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1 Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh Key Found : HKLM\SOFTWARE\InstallIQ Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A5B9C0F5-5616-47CD-A95F-E43B488FACCF} Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671} Key Found : HKLM\SOFTWARE\TelevisionFanatic Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C} Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6} Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403} Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827} Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671} Value Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [iLivid] ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17344 -\\ Mozilla Firefox v32.0.3 (x86 en-US) -\\ Google Chrome v38.0.2125.111 ************************* AdwCleaner[R0].txt - [8527 octets] - [05/11/2014 18:44:55] ########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [8587 octets] ########## AdwCleaner[S0].txt # AdwCleaner v3.311 - Report created 05/11/2014 at 18:49:22 # Updated 30/09/2014 by Xplode # Operating System : Windows 8.1 (64 bits) # Username : Vande_000 - HP-LAPTOP # Running from : C:\Users\Vande_000.HP-LAPTOP\Desktop\MalWare\AdwCleaner.exe # Option : Clean ***** [ Services ] ***** Service Deleted : valWBFPolicyService ***** [ Files / Folders ] ***** Folder Deleted : C:\ProgramData\374311380 File Deleted : C:\END File Deleted : C:\WINDOWS\System32\valWBFPolicyService.exe ***** [ Scheduled Tasks ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bopakagnckmlgajfccecajhnimjiiedh Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [iLivid] Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1 Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1 Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1 Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1 Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1 Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1 Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1 Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1 Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1 Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager.1 Key Deleted : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook Key Deleted : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1 Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D433A9D0-8267-40CB-8AD5-24F22FA5373F} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{04D2B915-19FF-41E9-994D-95DC898BEA43} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DEDAF650-12B8-48F5-A843-BBA100716106} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A5B9C0F5-5616-47CD-A95F-E43B488FACCF} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A5B9C0F5-5616-47CD-A95F-E43B488FACCF} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671} Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C} Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6} Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403} Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827} Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671} Key Deleted : HKCU\Software\ilivid Key Deleted : HKCU\Software\Optimizer Pro Key Deleted : HKCU\Software\pc optimizer pro Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} Key Deleted : HKCU\Software\AppDataLow\Software\DynConIE Key Deleted : HKCU\Software\AppDataLow\Software\TelevisionFanatic Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F} Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C} Key Deleted : HKLM\SOFTWARE\InstallIQ Key Deleted : HKLM\SOFTWARE\TelevisionFanatic ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17344 -\\ Mozilla Firefox v32.0.3 (x86 en-US) -\\ Google Chrome v38.0.2125.111 ************************* AdwCleaner[R0].txt - [8763 octets] - [05/11/2014 18:44:55] AdwCleaner[S0].txt - [8140 octets] - [05/11/2014 18:49:22] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [8200 octets] ##########

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,329 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:50 PM

Posted 06 November 2014 - 08:10 PM

OK, Erin let ESET finish. I can tel by the logs there is still something in there.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Erin277

Erin277
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 AM

Posted 07 November 2014 - 12:47 AM

ESET Results: C:\Users\All Users\CBPUHraZ\dat\pcEHbwO.dll a variant of MSIL/Adware.PullUpdate.C application C:\Program Files (x86)\Common Files\Cache utility\node\conf.js Win32/UnlimitedDownloads.D potentially unwanted application deleted - quarantined C:\Program Files (x86)\Common Files\Cache utility\node\service.exe a variant of Win32/UnlimitedDownloads.F potentially unwanted application deleted - quarantined C:\Program Files (x86)\Common Files\Common dictionary\node\conf.js Win32/UnlimitedDownloads.D potentially unwanted application deleted - quarantined C:\Program Files (x86)\Common Files\Common dictionary\node\service.exe a variant of Win32/UnlimitedDownloads.F potentially unwanted application deleted - quarantined C:\Program Files (x86)\Common Files\DealAlly\node\conf.js Win32/UnlimitedDownloads.D potentially unwanted application deleted - quarantined C:\Program Files (x86)\Common Files\DealAlly\node\service.exe a variant of Win32/UnlimitedDownloads.F potentially unwanted application deleted - quarantined C:\Program Files (x86)\Common Files\Diagnostics\node\9jxvbj1s4oj.exe Win32/UnlimitedDownloads.A potentially unwanted application deleted - quarantined C:\Program Files (x86)\Common Files\Diagnostics\node\9jxvc45ifsj.exe Win32/UnlimitedDownloads.A potentially unwanted application deleted - quarantined C:\Program Files (x86)\Common Files\Diagnostics\node\9jxvceqtagj.exe Win32/UnlimitedDownloads.A potentially unwanted application deleted - quarantined C:\Program Files (x86)\Common Files\Diagnostics\node\9jxvcu24igj.exe Win32/UnlimitedDownloads.A potentially unwanted application deleted - quarantined C:\Program Files (x86)\Common Files\Diagnostics\node\service.exe a variant of Win32/UnlimitedDownloads.F potentially unwanted application deleted (after the next restart) - quarantined C:\Program Files (x86)\Common Files\Display settings\node\conf.js Win32/UnlimitedDownloads.D potentially unwanted application deleted - quarantined C:\Program Files (x86)\Common Files\Display settings\node\service.exe a variant of Win32/UnlimitedDownloads.F potentially unwanted application deleted - quarantined C:\Program Files (x86)\Common Files\Hoist Search\node\conf.js Win32/UnlimitedDownloads.D potentially unwanted application deleted - quarantined C:\Program Files (x86)\Common Files\Hoist Search\node\service.exe a variant of Win32/UnlimitedDownloads.F potentially unwanted application deleted - quarantined C:\ProgramData\CBPUHraZ\dat\pcEHbwO.dll a variant of MSIL/Adware.PullUpdate.C application cleaned by deleting - quarantined C:\Users\Vande_000.HP-LAPTOP\AppData\Local\Microsoft\Windows\INetCache\IE\CDDJWMOU\mediaplayer_setup.exe a variant of Win32/InstallIQ.A potentially unwanted application deleted - quarantined

#6 Erin277

Erin277
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 AM

Posted 07 November 2014 - 08:37 PM

Any ideas @boopme?



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,329 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:50 PM

Posted 07 November 2014 - 10:50 PM

Hello erin, appears we will need some stronger tools we do not use here in the AII forum.
Need to start a new topic... As you have Win 8.1 replace the DDS log in the Guide with the RSIT log below.

Please follow this Preparation Guide, do steps 6,7 and 8 and post in a new topic.
Let me know if all went well.
 
You have the 64 bit version
 
Please download RSIT by random/random from the link provided for your operating system and save it to your desktop.This tool needs to run while the computer is connected to the Internet. If you get a warning from your firewall or other security programs regarding RSIT attempting to contact the Internet, please allow the connection.
  • Close all applications and windows so that you have nothing open and are at your Desktop.
  • Double-click on RSIT.exe to start the program.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • Read the disclaimer and click Continue.
  • When the scan is complete, a text file named log.txt will automatically open in Notepad.
  • Another text file named info.txt will open minimized.
  • Save the log files to your desktop and copy/paste the contents of log.txt by highlighting everything and pressing Ctrl+C.
  • After highlighting, right-click, choose Copy and then paste the contents into a new topic in the Virus, Trojan, Spyware, and Malware Removal Logs forum, NOT here.
  • Copies of both log files are automatically saved in the C:\RSIT folder which the tool creates during the scan.
Important: Be sure to mention that you tried to follow the Prep Guide but were unable to get DDS to run.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Erin277

Erin277
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 AM

Posted 09 November 2014 - 01:44 AM

I'm getting an error after downloading DDS. It's saying it has to be run in compatibility mode. How do I do that?
Thanks!

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,329 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:50 PM

Posted 09 November 2014 - 04:59 PM

Probably , you have WIN 8.1. Use RSIT.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 Erin277

Erin277
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:09:50 AM

Posted 09 November 2014 - 06:36 PM

Alright, I have posted there called as Proxy Server Hijacker. 

 

Thanks again @boopme



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,329 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:50 PM

Posted 09 November 2014 - 10:56 PM

You're welcome!

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.
From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.
Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.
The current wait time is 1 - 5 days and ALL logs are answered.
If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.
To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users