Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Deep Virus...


  • This topic is locked This topic is locked
28 replies to this topic

#1 cgccook9

cgccook9

  • Members
  • 162 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Michigan
  • Local time:03:02 AM

Posted 18 November 2014 - 02:12 PM

I know that I have something pretty bad on my computer. Avast! can't detect it, and neither can Total Defense Suite, it just makes them freak out a lot whenever I turn on my computer or go on the internet. My computer is SO SLOW. Programs will stop responding and I can't even get them to close, let alone open up Task Manager. Call me crazy and paranoid, but I feel like it knows I'm trying to get rid of it because whenever I try to get on to Bleeping Computer, everything just freezes up and I need to restart my computer. So, I'm using a different computer to get everything I need and then transfer it over onto my computer using a flash drive.

So... please help...


Edited by Orange Blossom, 18 November 2014 - 02:19 PM.
Moved to AII from Windows 8. ~ OB


BC AdBot (Login to Remove)

 


#2 Chuckracer

Chuckracer

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Eaton, Ohio
  • Local time:02:02 AM

Posted 18 November 2014 - 02:37 PM

I know that I have something pretty bad on my computer. Avast! can't detect it, and neither can Total Defense Suite, it just makes them freak out a lot whenever I turn on my computer or go on the internet. My computer is SO SLOW. Programs will stop responding and I can't even get them to close, let alone open up Task Manager. Call me crazy and paranoid, but I feel like it knows I'm trying to get rid of it because whenever I try to get on to Bleeping Computer, everything just freezes up and I need to restart my computer. So, I'm using a different computer to get everything I need and then transfer it over onto my computer using a flash drive.

So... please help...

Antivirus wont catch everything, it never will. On Bleeping Computers in the download section. Download AdWcleaner and click scan. I got it ( very good ) Malwarebytes is good to, its in downloads section, I got it to. Thanks, Chuck



#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:02 AM

Posted 18 November 2014 - 02:48 PM

EDIT... I see chuck replied while I was typing

You can do what he mentions, if needed use Safe Mode in this reply...


Hello cgccook9

Can you boot to Safe Mode with Networking to run these??

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

Edited by boopme, 18 November 2014 - 02:50 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 cgccook9

cgccook9
  • Topic Starter

  • Members
  • 162 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Michigan
  • Local time:03:02 AM

Posted 18 November 2014 - 05:20 PM

Thanks boopme,

Here's the MiniToolBar scan:

MiniToolBox by Farbar Version: 21-07-2014
Ran by Caroline (administrator) on 18-11-2014 at 16:17:21
Running from "C:\Users\Caroline\Desktop\Anitvirus Stuff"
Microsoft Windows 8.1 (X64)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================




5.79.79.150 pagead2.googlesyndication.com


========================= IP Configuration: ================================

Intel® Wireless-N 7260 = Wi-Fi (Connected)
Realtek PCIe FE Family Controller = Ethernet (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : CarolineCook
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : hsd1.mi.comcast.net.

Wireless LAN adapter Local Area Connection* 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
Physical Address. . . . . . . . . : FC-F8-AE-C0-B2-8D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

Connection-specific DNS Suffix . : hsd1.mi.comcast.net.
Description . . . . . . . . . . . : Intel® Wireless-N 7260
Physical Address. . . . . . . . . : FC-F8-AE-C0-B2-8C
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::201c:1c0b:6940:839%4(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.108(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, November 18, 2014 4:14:38 PM
Lease Expires . . . . . . . . . . : Wednesday, November 19, 2014 4:14:42 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 83687598
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-99-C9-91-EC-F4-BB-87-3F-C9
DNS Servers . . . . . . . . . . . : 75.75.76.76
75.75.75.75
192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : EC-F4-BB-87-3F-C9
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Server: cdns02.comcast.net
Address: 75.75.76.76

Name: google.com
Addresses: 2607:f8b0:4001:c02::8a
173.194.121.41
173.194.121.32
173.194.121.34
173.194.121.35
173.194.121.46
173.194.121.39
173.194.121.33
173.194.121.38
173.194.121.37
173.194.121.40
173.194.121.36


Pinging google.com [74.125.69.102] with 32 bytes of data:
Request timed out.
Reply from 74.125.69.102: bytes=32 time=37ms TTL=45

Ping statistics for 74.125.69.102:
Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
Minimum = 37ms, Maximum = 37ms, Average = 37ms
Server: cdns02.comcast.net
Address: 75.75.76.76

Name: yahoo.com
Addresses: 98.138.253.109
206.190.36.45
98.139.183.24


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Request timed out.
Reply from 206.190.36.45: bytes=32 time=100ms TTL=50

Ping statistics for 206.190.36.45:
Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
Minimum = 100ms, Maximum = 100ms, Average = 100ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
5...fc f8 ae c0 b2 8d ......Microsoft Wi-Fi Direct Virtual Adapter
4...fc f8 ae c0 b2 8c ......Intel® Wireless-N 7260
3...ec f4 bb 87 3f c9 ......Realtek PCIe FE Family Controller
1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.108 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.108 281
192.168.1.108 255.255.255.255 On-link 192.168.1.108 281
192.168.1.255 255.255.255.255 On-link 192.168.1.108 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.108 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.108 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
4 281 fe80::/64 On-link
4 281 fe80::201c:1c0b:6940:839/128
On-link
1 306 ff00::/8 On-link
4 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [51200] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\VetRedir.dll [97800] (Computer Associates International, Inc.)
Catalog9 02 C:\Windows\system32\VetRedir.dll [97800] (Computer Associates International, Inc.)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\VetRedir.dll [97800] (Computer Associates International, Inc.)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [84480] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\VetRedir64.dll [105992] (Computer Associates International, Inc.)
x64-Catalog9 02 C:\Windows\System32\VetRedir64.dll [105992] (Computer Associates International, Inc.)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 14 C:\Windows\System32\VetRedir64.dll [105992] (Computer Associates International, Inc.)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/18/2014 04:10:55 PM) (Source: UmxAgent) (User: )
Description: Sync event client C:\Program Files\Total Defense\Internet Security Suite\ccEvtMgr.exe registration timeout

Error: (11/18/2014 04:10:55 PM) (Source: UmxAgent) (User: )
Description: Ask User application closed itself. Product: 1, Sess: 1

Error: (11/18/2014 04:10:55 PM) (Source: UmxAgent) (User: )
Description: Sync event client C:\Program Files\Total Defense\Internet Security Suite\ccEvtMgr.exe registration timeout

Error: (11/18/2014 04:10:55 PM) (Source: UmxAgent) (User: )
Description: Ask User application closed itself. Product: 1, Sess: 1

Error: (11/18/2014 03:59:01 PM) (Source: UmxAgent) (User: )
Description: Sync event client C:\Program Files\Total Defense\Internet Security Suite\ccEvtMgr.exe registration timeout

Error: (11/18/2014 03:45:01 PM) (Source: Microsoft-Windows-LocationProvider) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Error: (11/18/2014 03:40:12 PM) (Source: DellUpdate) (User: )
Description: Failed in handling the PowerEvent. The error that occurred was: System.NullReferenceException: Object reference not set to an instance of an object.
at DellUpdate.WindowsService.Controller.ResetWcfConnections()
at DellUpdate.WindowsService.UpdateService.OnPowerEvent(PowerBroadcastStatus powerStatus)
at System.ServiceProcess.ServiceBase.DeferredPowerEvent(Int32 eventType, IntPtr eventData).

Error: (11/18/2014 03:40:11 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4732609

Error: (11/18/2014 03:40:11 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4732609

Error: (11/18/2014 03:40:11 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (11/18/2014 04:17:25 PM) (Source: DCOM) (User: CAROLINECOOK)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (11/18/2014 04:16:54 PM) (Source: DCOM) (User: CAROLINECOOK)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/18/2014 04:16:54 PM) (Source: DCOM) (User: CAROLINECOOK)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/18/2014 04:16:54 PM) (Source: DCOM) (User: CAROLINECOOK)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/18/2014 04:16:54 PM) (Source: DCOM) (User: CAROLINECOOK)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/18/2014 04:16:53 PM) (Source: DCOM) (User: CAROLINECOOK)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/18/2014 04:16:53 PM) (Source: DCOM) (User: CAROLINECOOK)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/18/2014 04:16:53 PM) (Source: DCOM) (User: CAROLINECOOK)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/18/2014 04:16:53 PM) (Source: DCOM) (User: CAROLINECOOK)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (11/18/2014 04:16:53 PM) (Source: DCOM) (User: CAROLINECOOK)
Description: 1084WSearchUnavailable{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}


Microsoft Office Sessions:
=========================


=========================== Installed Programs ============================
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32239 - BitTorrent Inc.)
123D Design R1.5 (HKLM\...\123D Design) (Version: 1.5.23 - Autodesk, Inc.)
Adobe Illustrator CC 2014 18.0.0 (HKLM-x32\...\Adobe Illustrator CC 2014 18.0.0) (Version: - )
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\Adobe Photoshop CS6) (Version: 13.0.0.0 - © The Computer Guy Tony)
Age of Empires® III: Complete Collection (HKLM-x32\...\Steam App 105450) (Version: - Ensemble Studios)
Amazon 1Button App (HKLM-x32\...\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}) (Version: 1.0.0.4 - Amazon)
AMD Accelerated Video Transcoding (Version: 13.15.100.30819 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.0819.1344.22803 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{34397444-D51C-ADCC-799D-82361E573488}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Anti-Virus (Version: 3.2.0.142 - Total Defense, Inc.) Hidden
APH placeholder (Version: - ) Hidden
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
Batman: Arkham Asylum GOTY Edition (HKLM-x32\...\Steam App 35140) (Version: - Rocksteady Studios)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0819.1344.22803 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0819.1344.22803 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Profiles Mobile (x32 Version: 2013.0819.1344.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0819.1343.22803 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0819.1344.22803 - Advanced Micro Devices, Inc.) Hidden
Cry of Fear (HKLM-x32\...\Steam App 223710) (Version: - Team Psykskallar)
CyberLink LabelPrint 2.5 (x32 Version: 2.5.0.6603 - CyberLink Corp.) Hidden
CyberLink Media Suite 10 (x32 Version: 10.0.1.3214 - CyberLink Corp.) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.3123 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (x32 Version: 10.0.1.3126 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (x32 Version: 12.0.3205.55 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version: - FromSoftware)
DARK SOULS II (HKLM-x32\...\Steam App 236430) (Version: - FromSoftware, Inc)
deall4rueaall (HKLM-x32\...\{2FA77785-00C3-A920-6452-D4FE5C9C129F}) (Version: - deal4real)
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.6.2.0 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.6.2.0 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{D850CB7E-72BC-4510-BA4F-48932BFAB295}) (Version: 2.9.901.0 - Dell Products, LP)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 17.0.13.0 - Synaptics Incorporated)
Dell Update (HKLM-x32\...\{7E07B3E7-9A66-41F3-A91D-EC2CCE14E5B9}) (Version: 1.1.1072.0 - Dell Inc.)
DNAMigrator (x32 Version: 14.2.0.141 - Total Defense, Inc.) Hidden
Don't Starve (HKLM-x32\...\Steam App 219740) (Version: - Klei Entertainment)
Dropbox (HKCU\...\Dropbox) (Version: 2.10.52 - Dropbox, Inc.)
DSC/AA Factory Installer (Version: 3.4.6299.48 - PC-Doctor, Inc.) Hidden
Fallout: New Vegas (HKLM-x32\...\Steam App 22380) (Version: - Obsidian Entertainment)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
HIPS (Version: 13.2.0.140 - Total Defense, Inc.) Hidden
Injustice: Gods Among Us Ultimate Edition (HKLM-x32\...\Steam App 242700) (Version: - NetherRealm Studios)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel® PRO/Wireless Driver (Version: 16.06.2000.0671 - Intel Corporation) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3316 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology(patch version 3.0.1342.1) (HKLM\...\{302600C1-6BDF-4FD1-1309-148929CC1385}) (Version: 3.1.1309.0390 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel® Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel® PROSet/Wireless Software (HKLM-x32\...\{6882ac6d-e97d-4e25-b3ea-5f3f21055dfe}) (Version: 16.6.0 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (Version: 16.06.0000.0280 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
join.me (HKCU\...\JoinMe) (Version: 1.17.0.156 - LogMeIn, Inc.)
League of Legends (HKLM-x32\...\League of Legends 3.0.0) (Version: 3.0.0 - Riot Games)
League of Legends (x32 Version: 3.0.0 - Riot Games) Hidden
Lightspark 0.5.3-git (HKLM-x32\...\Lightspark) (Version: 0.5.3-git - Lightspark Team)
Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Meshmixer (HKLM\...\Meshmixer_x64) (Version: - )
Metro 2033 (HKLM-x32\...\Steam App 43110) (Version: - 4A Games)
Metro: Last Light (HKLM-x32\...\Steam App 43160) (Version: - 4A Games)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Access MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Mount & Blade: Warband (HKLM-x32\...\Steam App 48700) (Version: - TaleWorlds Entertainment)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4454.1510 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4454.1510 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4454.1510 - Microsoft Corporation) Hidden
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PocketCloud (HKLM-x32\...\{D9752C7D-A595-4687-A0D5-362E9C311C55}) (Version: 2.7.14 - Wyse Technology)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 10.15.021 - Dell Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.39054 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7023 - Realtek Semiconductor Corp.)
SafeConnect (HKLM-x32\...\SafeConnect) (Version: - )
saferrwweeb (HKLM-x32\...\{5F488658-35A7-2AB8-A756-560BA8F103C3}) (Version: - saferweb)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Super Meat Boy (HKLM-x32\...\Steam App 40800) (Version: - Team Meat)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Witcher: Enhanced Edition (HKLM-x32\...\Steam App 20900) (Version: - CD Projekt RED)
Total Defense Internet Security Suite (HKLM\...\eTrust Suite Personal) (Version: 9.0.0.141 - Total Defense, Inc.)
Total Defense Online Backup (HKLM-x32\...\{D7F96939-DBF2-40FC-9CB0-7DB1E3FAE7D6}) (Version: 4.7.1.380 - Total Defense Online Backup)
Total Defense Online Backup (HKLM-x32\...\{DEF7F6B6-3FC2-47FF-B807-0A13A34B1540}) (Version: 5.4.0.16 - Total Defense Online Backup)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (HKLM-x32\...\{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}) (Version: - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISE_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version: - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (HKLM-x32\...\{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{716B81B8-B13C-41DF-8EAC-7A2F656CAB63}) (Version: - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISE_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2899525) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{B6160A7F-1EDB-4ED7-96DD-CF6F83DB347A}) (Version: - Microsoft)
Update for Microsoft Office PowerPoint 2007 (KB2597972) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{7B9D2746-D03B-442B-A691-90B748E316B4}) (Version: - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISE_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version: - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM-x32\...\{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2E40DE55-B289-4C8B-8901-5D369B16814F}) (Version: - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISE_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version: - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISE_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version: - Microsoft)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.6b5 - Wacom Technology Corp.)
Warface (HKLM-x32\...\Steam App 291480) (Version: - Crytek GmbH)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
WinRAR 5.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WorldWideWebCoupon (HKLM-x32\...\{37476589-E48E-439E-A706-56189E2ED4C4}_is1) (Version: - WorldWideWebCoupon)
WowwCoUpon (HKLM-x32\...\{1B8A71D1-31D4-EE6A-C32F-836E0BFFA6D3}) (Version: - WOowuCoUpon)
Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version: - )

========================= Memory info: ===================================

Percentage of memory in use: 9%
Total physical RAM: 16264.96 MB
Available physical RAM: 14694.48 MB
Total Pagefile: 32648.96 MB
Available Pagefile: 31105.89 MB
Total Virtual: 4095.88 MB
Available Virtual: 3983.59 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:922.62 GB) (Free:646.15 GB) NTFS

========================= Users: ========================================

User accounts for \\CAROLINECOOK

Administrator Caroline Guest


**** End of log ****

Edited by cgccook9, 18 November 2014 - 05:30 PM.


#5 cgccook9

cgccook9
  • Topic Starter

  • Members
  • 162 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Michigan
  • Local time:03:02 AM

Posted 18 November 2014 - 05:22 PM

TDSSKiller



16:58:47.0158 0x083c TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
16:58:47.0158 0x083c UEFI system
16:58:50.0526 0x083c ============================================================
16:58:50.0526 0x083c Current date / time: 2014/11/18 16:58:50.0526
16:58:50.0526 0x083c SystemInfo:
16:58:50.0526 0x083c
16:58:50.0526 0x083c OS Version: 6.3.9600 ServicePack: 0.0
16:58:50.0526 0x083c Product type: Workstation
16:58:50.0526 0x083c ComputerName: CAROLINECOOK
16:58:50.0526 0x083c UserName: Caroline
16:58:50.0526 0x083c Windows directory: C:\Windows
16:58:50.0526 0x083c System windows directory: C:\Windows
16:58:50.0526 0x083c Running under WOW64
16:58:50.0526 0x083c Processor architecture: Intel x64
16:58:50.0526 0x083c Number of processors: 4
16:58:50.0526 0x083c Page size: 0x1000
16:58:50.0526 0x083c Boot type: Normal boot
16:58:50.0526 0x083c ============================================================
16:58:53.0904 0x083c KLMD registered as C:\Windows\system32\drivers\01987213.sys
16:58:55.0702 0x083c System UUID: {6C4EACAA-7992-DA2F-E594-475FF27DF187}
16:58:58.0546 0x083c Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:58:58.0546 0x083c ============================================================
16:58:58.0546 0x083c \Device\Harddisk0\DR0:
16:58:58.0546 0x083c GPT partitions:
16:58:58.0546 0x083c \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {63CCB546-4183-4237-AB60-0D1BACF8B7F4}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0xFA000
16:58:58.0546 0x083c \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {796BADD3-6BBF-4D9F-B631-466EB71A4965}, UniqueGUID: {6D43DDFB-5DED-49EE-8848-922EBBADB4BE}, Name: Basic data partition, StartLBA 0xFA800, BlocksNum 0x14000
16:58:58.0546 0x083c \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {9C89A457-0F6C-46BE-8176-67A1E7773C67}, Name: Microsoft reserved partition, StartLBA 0x10E800, BlocksNum 0x40000
16:58:58.0546 0x083c \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {C6604B3B-C8E4-4BD8-88B7-FD25F45D6371}, Name: Basic data partition, StartLBA 0x14E800, BlocksNum 0xF5000
16:58:58.0546 0x083c \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {062D6403-E297-47A5-BC5C-759DB1975DDD}, Name: Basic data partition, StartLBA 0x243800, BlocksNum 0x7353F800
16:58:58.0546 0x083c \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {7E2A5B1F-7163-4418-B6D8-13C9B02B34EE}, Name: Microsoft recovery partition, StartLBA 0x73783000, BlocksNum 0xF835B0
16:58:58.0546 0x083c MBR partitions:
16:58:58.0546 0x083c ============================================================
16:58:58.0593 0x083c C: <-> \Device\Harddisk0\DR0\Partition5
16:58:58.0593 0x083c ============================================================
16:58:58.0593 0x083c Initialize success
16:58:58.0593 0x083c ============================================================
16:59:04.0042 0x3028 ============================================================
16:59:04.0042 0x3028 Scan started
16:59:04.0042 0x3028 Mode: Manual;
16:59:04.0042 0x3028 ============================================================
16:59:04.0042 0x3028 KSN ping started
16:59:10.0122 0x3028 KSN ping finished: true
16:59:15.0579 0x3028 ================ Scan system memory ========================
16:59:15.0579 0x3028 System memory - ok
16:59:15.0579 0x3028 ================ Scan services =============================
16:59:15.0813 0x3028 [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\Windows\System32\drivers\1394ohci.sys
16:59:15.0875 0x3028 1394ohci - ok
16:59:16.0524 0x3028 [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\Windows\system32\drivers\3ware.sys
16:59:16.0571 0x3028 3ware - ok
16:59:16.0696 0x3028 [ 9539F7917B4B6D92C90F0FAA6B86C605, B4C284E8EECC2E7025053A3320EFDC9F47BCA9828853AD2A805DB826CA4AC27E ] ACPI C:\Windows\system32\drivers\ACPI.sys
16:59:16.0742 0x3028 ACPI - ok
16:59:16.0774 0x3028 [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\Windows\system32\Drivers\acpiex.sys
16:59:16.0774 0x3028 acpiex - ok
16:59:16.0805 0x3028 [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\Windows\System32\drivers\acpipagr.sys
16:59:16.0836 0x3028 acpipagr - ok
16:59:16.0836 0x3028 [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\Windows\System32\drivers\acpipmi.sys
16:59:16.0867 0x3028 AcpiPmi - ok
16:59:16.0883 0x3028 [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\Windows\System32\drivers\acpitime.sys
16:59:16.0899 0x3028 acpitime - ok
16:59:16.0961 0x3028 [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\Windows\system32\drivers\ADP80XX.SYS
16:59:17.0039 0x3028 ADP80XX - ok
16:59:17.0102 0x3028 [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:59:17.0133 0x3028 AeLookupSvc - ok
16:59:17.0258 0x3028 [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
16:59:17.0258 0x3028 AERTFilters - ok
16:59:17.0305 0x3028 [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD C:\Windows\system32\drivers\afd.sys
16:59:17.0336 0x3028 AFD - ok
16:59:17.0399 0x3028 [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\Windows\system32\drivers\agp440.sys
16:59:17.0430 0x3028 agp440 - ok
16:59:17.0461 0x3028 [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache C:\Windows\system32\DRIVERS\ahcache.sys
16:59:17.0477 0x3028 ahcache - ok
16:59:17.0508 0x3028 [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG C:\Windows\System32\alg.exe
16:59:17.0539 0x3028 ALG - ok
16:59:17.0586 0x3028 [ 497D44465C4FD98FD8F2C5C951595AC7, 7A2382C8C3C9D917961AD56880C47F2DD46B9A40FF30E5FA37EA9B245D7031BF ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:59:17.0617 0x3028 AMD External Events Utility - ok
16:59:17.0633 0x3028 [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\Windows\System32\drivers\amdk8.sys
16:59:17.0664 0x3028 AmdK8 - ok
16:59:18.0600 0x3028 [ 7045BFC51C38EBCD1FC91E7447552689, 70D0BB983CAD762F1CBEACAA0E22A2129C1A587BCFB8BAE97F2CB65E7426D964 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
16:59:19.0069 0x3028 amdkmdag - ok
16:59:19.0162 0x3028 [ 6A41403A294608E4B047BD2774EFF5D4, C82DA9F39F299AB8EC11CFF5B3CD4FEE628B98BAB1A88F3D6D099C22A52AA576 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
16:59:19.0225 0x3028 amdkmdap - ok
16:59:19.0272 0x3028 [ 8A375CB3B6D1A56A2AEEE72A5F1D0926, 03D6EA77B141675B719E66DA09D1DACC7137B19F9918C303DD6870B3F36ADEBB ] amdkmpfd C:\Windows\system32\drivers\amdkmpfd.sys
16:59:19.0272 0x3028 amdkmpfd - ok
16:59:19.0287 0x3028 [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\Windows\System32\drivers\amdppm.sys
16:59:19.0319 0x3028 AmdPPM - ok
16:59:19.0319 0x3028 [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:59:19.0350 0x3028 amdsata - ok
16:59:19.0350 0x3028 [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
16:59:19.0381 0x3028 amdsbs - ok
16:59:19.0381 0x3028 [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:59:19.0397 0x3028 amdxata - ok
16:59:19.0412 0x3028 [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID C:\Windows\system32\drivers\appid.sys
16:59:19.0428 0x3028 AppID - ok
16:59:19.0491 0x3028 [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:59:19.0522 0x3028 AppIDSvc - ok
16:59:19.0553 0x3028 [ 7667B9D81EA8FD6540E6CF72F92161A6, 98F3D0E376F715EBE083FE112CAA640BCE0F13DCE0F244D059D7FA019EA3D24C ] Appinfo C:\Windows\System32\appinfo.dll
16:59:19.0569 0x3028 Appinfo - ok
16:59:19.0694 0x3028 [ 650D03E40F93FAE323CB841F80368E5C, F67B97CFDCE2EE9294977725268EFDB0DD724BD16E7ED5BFCA45375AA8EBA5BB ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:59:19.0694 0x3028 Apple Mobile Device - ok
16:59:19.0756 0x3028 [ CB12C47647D8BDAFAA94C0856B14128B, 5590C98095357C92563EF94800107D3611AA6ECA1A70BE463C03B279E618A6C4 ] AppReadiness C:\Windows\system32\AppReadiness.dll
16:59:19.0819 0x3028 AppReadiness - ok
16:59:19.0971 0x3028 [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] AppXSvc C:\Windows\system32\appxdeploymentserver.dll
16:59:20.0018 0x3028 AppXSvc - ok
16:59:20.0034 0x3028 [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\Windows\system32\drivers\arcsas.sys
16:59:20.0049 0x3028 arcsas - ok
16:59:20.0096 0x3028 [ D95E64416A4A3ED6986E0F474DA934BD, DBB4A0DED0DABE1F8FF0DB8C0E9EC4EC906A85A45DC0AEC013A8744F9BF5D40E ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
16:59:20.0096 0x3028 aswHwid - ok
16:59:20.0112 0x3028 [ FF1E537A3632CBB9A0BF72B9FD0878D5, B26E6A1F6E6FA5280A12861EFAD44D8F49353F47B21843EBA73E149CF613DCBC ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
16:59:20.0112 0x3028 aswMonFlt - ok
16:59:20.0159 0x3028 [ A5757DE5F9C83AB40667A53D5126EA40, 58B72B1B126CF641188703CE82E26BEB0C41AD7587CFFCCCE9E3C64CC7AACC90 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
16:59:20.0159 0x3028 aswRdr - ok
16:59:20.0190 0x3028 [ 645D97385F3F284FB5604F9B970F4D24, 15A9D7F0F4C1062210E4E744A9069B8645177D19F35B8740D74022639DC05F2E ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
16:59:20.0190 0x3028 aswRvrt - ok
16:59:20.0237 0x3028 [ B8FDEDE963B82CFD23B3A53A3084666D, 3537E5B684FB6F0AA589A5FA7CD111E1744DF384AB1A266D4114100F104ED11B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
16:59:20.0299 0x3028 aswSnx - ok
16:59:20.0331 0x3028 [ 0DEDC041DF594AEC2C3BD00417CFAF60, 0D3A8924503986546EE256D185225C0B080FDB6B0C8B0BED7516B07A7334371B ] aswSP C:\Windows\system32\drivers\aswSP.sys
16:59:20.0456 0x3028 aswSP - ok
16:59:20.0471 0x3028 [ 48DED912CDE54FC0923B9858512366E1, 9B216B934408A7CB3CE2B41240B7EF01EAA3BC066211B784064FF8AC97A29B4E ] aswStm C:\Windows\system32\drivers\aswStm.sys
16:59:20.0471 0x3028 aswStm - ok
16:59:20.0487 0x3028 [ 471A311745848B80339436688A8286E6, E51C57236CEC19AC38E85D115DB97875517D837811188AD2E53FA49055B53890 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
16:59:20.0487 0x3028 aswVmm - ok
16:59:20.0534 0x3028 [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\Windows\system32\drivers\atapi.sys
16:59:20.0549 0x3028 atapi - ok
16:59:21.0081 0x3028 [ 2C7676F892E88FD190F08D98048C7C6C, 44C13C103F61DA4D1A3823D37344F8C9465A611A9560808CE928925FB69604F7 ] athr C:\Windows\system32\DRIVERS\athw8x.sys
16:59:21.0753 0x3028 athr - ok
16:59:21.0846 0x3028 [ 7F70B1044272982AAEA7C16E83424770, A7694D38DF5A0E1040688017DB811EF0788874FE505ADD572DE4D4647073DC12 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
16:59:21.0924 0x3028 AudioEndpointBuilder - ok
16:59:22.0018 0x3028 [ C0484CA5C7F87E38909746B63C7FC868, 65159639E2300AEA886184E9D47D449350DAF69A8AA2F9DBD6BD8A474BA73177 ] Audiosrv C:\Windows\System32\Audiosrv.dll
16:59:22.0159 0x3028 Audiosrv - ok
16:59:22.0221 0x3028 [ 73F5C13B431915BAE35254B4E95DFB71, 393A045859382C44133C004598B1512048046BCC129FED2247A77FDBFCDB6DFF ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
16:59:22.0253 0x3028 avast! Antivirus - ok
16:59:22.0299 0x3028 [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:59:22.0456 0x3028 AxInstSV - ok
16:59:22.0534 0x3028 [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
16:59:22.0659 0x3028 b06bdrv - ok
16:59:22.0721 0x3028 [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\Windows\System32\drivers\BasicDisplay.sys
16:59:22.0768 0x3028 BasicDisplay - ok
16:59:22.0799 0x3028 [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\Windows\System32\drivers\BasicRender.sys
16:59:22.0831 0x3028 BasicRender - ok
16:59:22.0846 0x3028 [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\Windows\System32\drivers\bcmfn2.sys
16:59:22.0893 0x3028 bcmfn2 - ok
16:59:22.0973 0x3028 [ E07C80468D0C599BFF01D9D4EC7AEDC3, F675F455924DEC3FF69AD816DFEB6E74C804AEC3D3BFF7515953DB9D79C9B2D0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:59:23.0160 0x3028 BDESVC - ok
16:59:23.0192 0x3028 [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\Windows\system32\drivers\Beep.sys
16:59:23.0239 0x3028 Beep - ok
16:59:23.0348 0x3028 [ 20FB137ADDE1255F15F265A7BD9579BE, 87B4D5C91EFEAD987AAC3491A4360F82824C46AFF958B6F4CAED7C12224EF159 ] BFE C:\Windows\System32\bfe.dll
16:59:23.0426 0x3028 BFE - ok
16:59:23.0520 0x3028 [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS C:\Windows\System32\qmgr.dll
16:59:23.0973 0x3028 BITS - ok
16:59:24.0176 0x3028 [ 4D87518BA68C308299441337C55F5427, AE46F847EE605213A3AE9BEFE5EB0B7B8D877340EA1A6CF9EF5683A02ECFE399 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
16:59:24.0223 0x3028 Bluetooth Device Monitor - ok
16:59:24.0317 0x3028 [ 19786E2114E2FCB4EAA30808E9D4FB9A, FCBD15EA7CB0B22DA9ABFACF95DE877042201C85EBC219F5204E12F76E8DBC09 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
16:59:24.0364 0x3028 Bluetooth OBEX Service - ok
16:59:24.0582 0x3028 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:59:24.0598 0x3028 Bonjour Service - ok
16:59:24.0645 0x3028 [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:59:24.0645 0x3028 bowser - ok
16:59:24.0739 0x3028 [ E325BCD68EC0CF2E2EDD0AB7CC17C698, 4DEDEF91F6BD1CC8DBE118AC28CA6BD874449A053B9CDE9FFEB1C7B98501D938 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
16:59:24.0770 0x3028 BrokerInfrastructure - ok
16:59:24.0848 0x3028 [ 041A999E4FF9A7CDBE67357751881FB8, 356C52637EA715D6FA2B65BD311C9BF1635A582023434902EC2DE4A2448961F8 ] Browser C:\Windows\System32\browser.dll
16:59:24.0895 0x3028 Browser - ok
16:59:24.0957 0x3028 [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\Windows\System32\drivers\BthAvrcpTg.sys
16:59:24.0972 0x3028 BthAvrcpTg - ok
16:59:25.0035 0x3028 [ 131F1C8573E7BFB41C54FBF5309CCD94, DAFE51E3BADBD82A33B580F212B2D6520A120877C23F6D675521FEA2F4BA5A1F ] BthEnum C:\Windows\System32\drivers\BthEnum.sys
16:59:25.0050 0x3028 BthEnum - ok
16:59:25.0082 0x3028 [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum C:\Windows\System32\drivers\bthhfenum.sys
16:59:25.0097 0x3028 BthHFEnum - ok
16:59:25.0113 0x3028 [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\Windows\System32\drivers\BthHFHid.sys
16:59:25.0129 0x3028 bthhfhid - ok
16:59:25.0254 0x3028 [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum C:\Windows\System32\drivers\BthLEEnum.sys
16:59:25.0300 0x3028 BthLEEnum - ok
16:59:25.0332 0x3028 [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM C:\Windows\System32\drivers\bthmodem.sys
16:59:25.0363 0x3028 BTHMODEM - ok
16:59:25.0394 0x3028 [ 25BB93167DEF270188072603F92A1EF5, CE4637CE4B63420E218F53CAF89A8C85D036B879B80456FEF3C7C395590E26BB ] BthPan C:\Windows\System32\drivers\bthpan.sys
16:59:25.0410 0x3028 BthPan - ok
16:59:25.0504 0x3028 [ 97B9076611291AE4C4C107BC915BD026, 0A77873AAF1ADB76CAB98A84D2242781E34E2699632E45EB92ED7DB20B2BE0C1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
16:59:25.0550 0x3028 BTHPORT - ok
16:59:25.0582 0x3028 [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv C:\Windows\system32\bthserv.dll
16:59:25.0613 0x3028 bthserv - ok
16:59:25.0675 0x3028 [ 23E75BED9076F856B36F5F934BBD5795, CCEB72B788522B7D52A6C07646005EBC68F9599D3714ECACF3A194CA47A1BE85 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
16:59:25.0691 0x3028 BTHUSB - ok
16:59:25.0832 0x3028 [ 4428C299BE7B9841ECFA82044B69FA6A, F8AB607D6CACBF2DDE3C392F9756B9F32CB99664A75F3140365CB916450660EC ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
16:59:25.0832 0x3028 btmaux - ok
16:59:25.0988 0x3028 [ 7B31A8A9DC95B3634D896FD0F2814F19, 8FD5FBC61968F4BB8C2BAD0D432D5B86DCFED38CCF6F559F9EFB71AADD25474F ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
16:59:26.0066 0x3028 btmhsf - ok
16:59:26.0129 0x3028 [ 2B87543DD8C66C4C717A6C9B48F99A6F, D9B42250614B2E19188537B274F4BCBE46A269E58E1F716CB69E38A37DA3B0CB ] CAAMSvc C:\Program Files\Total Defense\Internet Security Suite\Anti-Virus\caamsvc.exe
16:59:26.0144 0x3028 CAAMSvc - ok
16:59:26.0191 0x3028 [ FCD716DC0EFD348889330481A6498BFE, 75D5EDBC6EEFEA2BB6BEC7DFCD64D3AFACE22B38F7B82597A93F885F9395E59D ] CaCCProvSP C:\Program Files\Total Defense\Internet Security Suite\ccprovsp.exe
16:59:26.0207 0x3028 CaCCProvSP - ok
16:59:26.0254 0x3028 [ 0D7E6E7E0C8D5B88C2FA9FF4ADF1EA39, D07CAE199CFF699E9097F200DD2E56054101C5AAFB1B5CD932D50FA384EB8FEE ] CAISafe C:\Program Files\Total Defense\Internet Security Suite\Anti-Virus\isafe.exe
16:59:26.0269 0x3028 CAISafe - ok
16:59:26.0285 0x3028 [ CC0EC7606D3E5204FC25B3FB06B0F351, F91B446179F8457286DF745C010D7176E2FB552C22449246BEA5CD702D2637B9 ] ccSchedulerSVC C:\Program Files\Total Defense\Internet Security Suite\ccschedulersvc.exe
16:59:26.0285 0x3028 ccSchedulerSVC - ok
16:59:26.0316 0x3028 [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:59:26.0316 0x3028 cdfs - ok
16:59:26.0332 0x3028 [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\Windows\System32\drivers\cdrom.sys
16:59:26.0394 0x3028 cdrom - ok
16:59:26.0441 0x3028 [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc C:\Windows\System32\certprop.dll
16:59:26.0472 0x3028 CertPropSvc - ok
16:59:26.0488 0x3028 [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\Windows\System32\drivers\circlass.sys
16:59:26.0519 0x3028 circlass - ok
16:59:26.0566 0x3028 [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS C:\Windows\system32\drivers\CLFS.sys
16:59:26.0566 0x3028 CLFS - ok
16:59:26.0613 0x3028 [ 3E76A1547F2448BCEE3D2F4AE3931AB5, 31B41723FAA4210A86B1AE02D6C052BD8B738C4B89FB0177C1AE997D24BA5B8C ] CLVirtualDrive C:\Windows\system32\DRIVERS\CLVirtualDrive.sys
16:59:26.0629 0x3028 CLVirtualDrive - ok
16:59:26.0675 0x3028 [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\Windows\System32\drivers\CmBatt.sys
16:59:26.0707 0x3028 CmBatt - ok
16:59:26.0832 0x3028 [ 4E1207CE16E615B0B7A70DC889F4500E, 1778D5AC0AF5F5DD1551192F4CDBCCB9878995155CF337EBB03460A6FD5C6B78 ] CNG C:\Windows\system32\Drivers\cng.sys
16:59:26.0847 0x3028 CNG - ok
16:59:26.0863 0x3028 [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\Windows\System32\drivers\CompositeBus.sys
16:59:26.0894 0x3028 CompositeBus - ok
16:59:26.0894 0x3028 COMSysApp - ok
16:59:26.0925 0x3028 [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\Windows\system32\drivers\condrv.sys
16:59:26.0925 0x3028 condrv - ok
16:59:27.0181 0x3028 [ EB1D2733C0D5C10B6C0801A6EABFF288, 47C4F3A9DF57A165CDE750422BC52E3A81A6D3EE8F628908B5097F43CE83CF6C ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
16:59:27.0244 0x3028 cphs - ok
16:59:27.0260 0x3028 [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:59:27.0291 0x3028 CryptSvc - ok
16:59:27.0322 0x3028 [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam C:\Windows\system32\drivers\dam.sys
16:59:27.0322 0x3028 dam - ok
16:59:27.0400 0x3028 [ D06E443457FADC6B1AFAF3AA4B6936F6, 109B4D05E156604AFB3D63B380CC063B900AEB12F57A1D235B9F9399EE0909C7 ] dc3d C:\Windows\System32\drivers\dc3d.sys
16:59:27.0416 0x3028 dc3d - ok
16:59:27.0619 0x3028 [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:59:28.0119 0x3028 DcomLaunch - ok
16:59:28.0197 0x3028 [ D249C3A58A4FCF755EF4C94F7047E015, 68C044CE2DB93FB502F85F6E081EA164F6E6DCBA6B3EE2A5CBDA122065E522F8 ] defragsvc C:\Windows\System32\defragsvc.dll
16:59:28.0385 0x3028 defragsvc - ok
16:59:28.0494 0x3028 [ EA26A4A4EFF6F5677C8745D274E23913, 32B9CB58B34E23126E18CFB5AA75AEC2EF1D5A8A7ACBCBEF4B3ACCB20FD1B8C4 ] DellDigitalDelivery C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
16:59:28.0510 0x3028 DellDigitalDelivery - ok
16:59:28.0572 0x3028 [ DC253191A553DACA7684CFB5B03A4268, 2D651A059F1334671E875EB4FC642383DCC00710809255DA29F96C41EC2C8205 ] DellRbtn C:\Windows\System32\drivers\DellRbtn.sys
16:59:28.0619 0x3028 DellRbtn - ok
16:59:28.0713 0x3028 [ 0A43DC59C478DD957F8300385AAFC5A7, BF6F2DA071AC649F8D6DBFA5CA6C14151A324A29F70D202972163528B4E17843 ] DellUpdate C:\Program Files (x86)\Dell Update\DellUpService.exe
16:59:28.0728 0x3028 DellUpdate - ok
16:59:28.0807 0x3028 [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] DeviceAssociationService C:\Windows\system32\das.dll
16:59:29.0012 0x3028 DeviceAssociationService - ok
16:59:29.0137 0x3028 [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] DeviceInstall C:\Windows\system32\umpnpmgr.dll
16:59:29.0528 0x3028 DeviceInstall - ok
16:59:29.0590 0x3028 [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc C:\Windows\system32\Drivers\dfsc.sys
16:59:29.0637 0x3028 Dfsc - ok
16:59:29.0684 0x3028 [ 05DE04005CE0D84D0E6AD21CAEB369C6, E6704A2A685BCFD560796D7C328F8E53DF0793DBDA590598A492D9070D109298 ] Dhcp C:\Windows\system32\dhcpcore.dll
16:59:29.0809 0x3028 Dhcp - ok
16:59:29.0840 0x3028 [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk C:\Windows\system32\drivers\disk.sys
16:59:29.0856 0x3028 disk - ok
16:59:29.0872 0x3028 [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\Windows\System32\drivers\dmvsc.sys
16:59:29.0887 0x3028 dmvsc - ok
16:59:29.0934 0x3028 [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:59:30.0028 0x3028 Dnscache - ok
16:59:30.0106 0x3028 [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc C:\Windows\System32\dot3svc.dll
16:59:30.0231 0x3028 dot3svc - ok
16:59:30.0278 0x3028 [ 27069CFFF29B7F04F4B1BB10154BE52B, 6869626F9A1D3F64224883C5E661638CEE893A3E29651C7B9302A03E52180415 ] dot4 C:\Windows\system32\DRIVERS\Dot4.sys
16:59:30.0372 0x3028 dot4 - ok
16:59:30.0403 0x3028 [ 0BD906A79F9CE3013F7D9D0AC45F9F9D, 2F7D5082E7E226D5EBEA164A8ACEE0A447C96EB1829224A6EFA3E7B4EFEE1D14 ] Dot4Print C:\Windows\System32\drivers\Dot4Prt.sys
16:59:30.0465 0x3028 Dot4Print - ok
16:59:30.0497 0x3028 [ B7D595F2F464F7B628AD53F06547792C, F5D06A91EF54FBF56305FCC882B854350B266B2A005D80CC77AEBC2929440729 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
16:59:30.0543 0x3028 dot4usb - ok
16:59:30.0580 0x3028 [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS C:\Windows\system32\dps.dll
16:59:30.0658 0x3028 DPS - ok
16:59:30.0705 0x3028 [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:59:30.0721 0x3028 drmkaud - ok
16:59:30.0768 0x3028 [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc C:\Windows\System32\DeviceSetupManager.dll
16:59:30.0846 0x3028 DsmSvc - ok
16:59:30.0986 0x3028 [ 313DCE665B57000B18CB26C6B6A10DFE, 6C332D4AD13A316C192321AB7E7597E66AF8E1688101FFD851E06C52128DBA52 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:59:31.0096 0x3028 DXGKrnl - ok
16:59:31.0158 0x3028 [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost C:\Windows\System32\eapsvc.dll
16:59:31.0252 0x3028 Eaphost - ok
16:59:31.0627 0x3028 [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\Windows\system32\drivers\evbda.sys
16:59:31.0814 0x3028 ebdrv - ok
16:59:31.0861 0x3028 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS C:\Windows\System32\lsass.exe
16:59:31.0971 0x3028 EFS - ok
16:59:32.0002 0x3028 [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\Windows\system32\drivers\EhStorClass.sys
16:59:32.0018 0x3028 EhStorClass - ok
16:59:32.0033 0x3028 [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\Windows\system32\drivers\EhStorTcgDrv.sys
16:59:32.0065 0x3028 EhStorTcgDrv - ok
16:59:32.0065 0x3028 [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\Windows\System32\drivers\errdev.sys
16:59:32.0096 0x3028 ErrDev - ok
16:59:32.0205 0x3028 [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem C:\Windows\system32\es.dll
16:59:32.0299 0x3028 EventSystem - ok
16:59:32.0471 0x3028 [ 55588867D59BADA2F62E58618CE32B03, F7FAF420103272151194A475D6C8EF4449AFCED787AA3DF7C461370D828E522F ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
16:59:32.0502 0x3028 EvtEng - ok
16:59:32.0627 0x3028 [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\Windows\system32\drivers\exfat.sys
16:59:32.0658 0x3028 exfat - ok
16:59:32.0737 0x3028 [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:59:32.0752 0x3028 fastfat - ok
16:59:32.0815 0x3028 [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax C:\Windows\system32\fxssvc.exe
16:59:33.0049 0x3028 Fax - ok
16:59:33.0080 0x3028 [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\Windows\System32\drivers\fdc.sys
16:59:33.0127 0x3028 fdc - ok
16:59:33.0158 0x3028 [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost C:\Windows\system32\fdPHost.dll
16:59:33.0346 0x3028 fdPHost - ok
16:59:33.0377 0x3028 [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub C:\Windows\system32\fdrespub.dll
16:59:33.0565 0x3028 FDResPub - ok
16:59:33.0596 0x3028 [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc C:\Windows\system32\fhsvc.dll
16:59:33.0830 0x3028 fhsvc - ok
16:59:33.0877 0x3028 [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:59:33.0955 0x3028 FileInfo - ok
16:59:34.0048 0x3028 [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:59:34.0095 0x3028 Filetrace - ok
16:59:34.0142 0x3028 [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\Windows\System32\drivers\flpydisk.sys
16:59:34.0173 0x3028 flpydisk - ok
16:59:34.0251 0x3028 [ 6592D192E2823C043EDBC010E7774053, C025A0EC5517DC3BD5D6656DC0F0F19021FB3D2EE90EC6194E1BD74E638EBBDC ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:59:34.0298 0x3028 FltMgr - ok
16:59:34.0438 0x3028 [ 3FA6DC6B29717E32E211C1FD821F2C75, E467F3775427C93CC2B87327B0A45669631A5FC460C558F6796BA26002A8BBFC ] FontCache C:\Windows\system32\FntCache.dll
16:59:34.0704 0x3028 FontCache - ok
16:59:34.0845 0x3028 [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:59:34.0892 0x3028 FontCache3.0.0.0 - ok
16:59:34.0938 0x3028 [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:59:35.0001 0x3028 FsDepends - ok
16:59:35.0017 0x3028 [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:59:35.0032 0x3028 Fs_Rec - ok
16:59:35.0126 0x3028 [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:59:35.0188 0x3028 fvevol - ok
16:59:35.0220 0x3028 [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\Windows\System32\drivers\fxppm.sys
16:59:35.0376 0x3028 FxPPM - ok
16:59:35.0407 0x3028 [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
16:59:35.0470 0x3028 gagp30kx - ok
16:59:35.0532 0x3028 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:59:35.0610 0x3028 GEARAspiWDM - ok
16:59:35.0642 0x3028 [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\Windows\System32\drivers\vmgencounter.sys
16:59:35.0704 0x3028 gencounter - ok
16:59:35.0782 0x3028 [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\Windows\system32\Drivers\msgpioclx.sys
16:59:35.0845 0x3028 GPIOClx0101 - ok
16:59:36.0144 0x3028 [ 69DB09F0263C637DA8568D404842466A, D042194266978AAD31E04DAF7018CD50754077212DC74A4D8AFF6BFEE80CDD20 ] gpsvc C:\Windows\System32\gpsvc.dll
16:59:36.0426 0x3028 gpsvc - ok
16:59:36.0551 0x3028 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:59:36.0551 0x3028 gupdate - ok
16:59:36.0566 0x3028 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:59:36.0582 0x3028 gupdatem - ok
16:59:36.0769 0x3028 [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:59:36.0863 0x3028 HdAudAddService - ok
16:59:36.0941 0x3028 [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\Windows\System32\drivers\HDAudBus.sys
16:59:36.0957 0x3028 HDAudBus - ok
16:59:36.0973 0x3028 [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\Windows\System32\drivers\HidBatt.sys
16:59:37.0035 0x3028 HidBatt - ok
16:59:37.0066 0x3028 [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth C:\Windows\System32\drivers\hidbth.sys
16:59:37.0129 0x3028 HidBth - ok
16:59:37.0144 0x3028 [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\Windows\System32\drivers\hidi2c.sys
16:59:37.0191 0x3028 hidi2c - ok
16:59:37.0207 0x3028 [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\Windows\System32\drivers\hidir.sys
16:59:37.0269 0x3028 HidIr - ok
16:59:37.0301 0x3028 [ 949900BBF7015CCD877D20DB6C2628BE, 7D39DFF56FD17A3054324F2BC260F72DC8C3AD5063AA5056A2FCA52F3AAF880E ] hidkmdf C:\Windows\System32\drivers\hidkmdf.sys
16:59:37.0316 0x3028 hidkmdf - ok
16:59:37.0348 0x3028 [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv C:\Windows\system32\hidserv.dll
16:59:37.0566 0x3028 hidserv - ok
16:59:37.0613 0x3028 [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb C:\Windows\System32\drivers\hidusb.sys
16:59:37.0660 0x3028 HidUsb - ok
16:59:37.0707 0x3028 [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:59:38.0006 0x3028 hkmsvc - ok
16:59:38.0068 0x3028 [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:59:38.0349 0x3028 HomeGroupListener - ok
16:59:38.0412 0x3028 [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:59:38.0771 0x3028 HomeGroupProvider - ok
16:59:38.0802 0x3028 [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
16:59:38.0865 0x3028 HpSAMD - ok
16:59:39.0037 0x3028 [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:59:39.0146 0x3028 HTTP - ok
16:59:39.0193 0x3028 [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:59:39.0209 0x3028 hwpolicy - ok
16:59:39.0240 0x3028 [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\Windows\System32\drivers\hyperkbd.sys
16:59:39.0303 0x3028 hyperkbd - ok
16:59:39.0318 0x3028 [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\Windows\system32\DRIVERS\HyperVideo.sys
16:59:39.0381 0x3028 HyperVideo - ok
16:59:39.0428 0x3028 [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt C:\Windows\System32\drivers\i8042prt.sys
16:59:39.0490 0x3028 i8042prt - ok
16:59:39.0506 0x3028 [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
16:59:39.0553 0x3028 iaLPSSi_GPIO - ok
16:59:39.0584 0x3028 [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\Windows\System32\drivers\iaLPSSi_I2C.sys
16:59:39.0646 0x3028 iaLPSSi_I2C - ok
16:59:39.0709 0x3028 [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA C:\Windows\system32\drivers\iaStorA.sys
16:59:39.0740 0x3028 iaStorA - ok
16:59:39.0834 0x3028 [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\Windows\system32\drivers\iaStorAV.sys
16:59:39.0928 0x3028 iaStorAV - ok
16:59:40.0006 0x3028 [ 20E83F4632E15A5E9E716FF2E8AC7FAE, 7CA1A4924F432AD30ED7FA6247C6513DA173EE31132AE115E85C0ED7E5971029 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
16:59:40.0006 0x3028 IAStorDataMgrSvc - ok
16:59:40.0178 0x3028 [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:59:40.0240 0x3028 iaStorV - ok
16:59:40.0303 0x3028 [ 8B8674AEBAB18B2F422C5FDFA3A48E33, 7257B91408F431401FF50D70C5724D3B18AC226AE4B85ADDC04A5357FF67ACBF ] ibtusb C:\Windows\system32\DRIVERS\ibtusb.sys
16:59:40.0350 0x3028 ibtusb - ok
16:59:40.0365 0x3028 IEEtwCollectorService - ok
16:59:40.0818 0x3028 [ 7A5A61997B5404C8EDDFCC62378164DC, C2BCA8A2AA2DFCCF3489FC7F0F366ABBDC8606CFC6397CD7B17C8CD4A28DD17F ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
16:59:41.0225 0x3028 igfx - ok
16:59:41.0397 0x3028 [ DEA76F90F9777E3427D70E380222B23B, B917BA423896A12E45623E3D494CA03317A6FC612CA433C62C897524DC3E756B ] IKEEXT C:\Windows\System32\ikeext.dll
16:59:41.0584 0x3028 IKEEXT - ok
16:59:41.0631 0x3028 [ 4011430BC9DA46ADFAE9915EFEC312FB, 925DDDA187AE7C46C94FBBFA18FC602260957B6BA891D65DFC09385B6DDEAB58 ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
16:59:41.0662 0x3028 intaud_WaveExtensible - ok
16:59:42.0740 0x3028 [ 2BEE14AC102CF1259AC99ABF53291A8B, 45FAF81302E7A575D378A67F4EF75C89FDDE3B16AC3155BB2803A54D3A7B0DD3 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:59:43.0100 0x3028 IntcAzAudAddService - ok
16:59:43.0256 0x3028 [ D6A22510D795928E8840619900D672B4, 296F232B0A6D42840A745E4706D2815F6D2E4279DBD90112CBFBFF8833B724AF ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
16:59:43.0319 0x3028 IntcDAud - ok
16:59:43.0537 0x3028 [ DAE6C3099D291EED8922A65C29ABCF52, AD0A932345382824122F84AF97A8609BAE1B916A3B9FD608779A1411E37D3643 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
16:59:43.0584 0x3028 Intel® Capability Licensing Service Interface - ok
16:59:43.0662 0x3028 [ D45226E3E7A25F1E7CE8DF8FD0A2A098, 7BD74E9E3CB0A83D26BA3FD8177C6B9BA46A8695B6569CF7887FDC87947DA2D6 ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
16:59:43.0897 0x3028 Intel® Capability Licensing Service TCP IP Interface - ok
16:59:44.0007 0x3028 [ 6D754F5A8608B71DFAF187C1CDAB6BCA, 43C95FB18086BB5922DE37881B8296F5126B7F614EDBEF18A443C9B7DBB0E8D7 ] Intel® Wireless Bluetooth® 4.0 Radio Management C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
16:59:44.0022 0x3028 Intel® Wireless Bluetooth® 4.0 Radio Management - ok
16:59:44.0054 0x3028 [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\Windows\system32\drivers\intelide.sys
16:59:44.0100 0x3028 intelide - ok
16:59:44.0147 0x3028 [ 139CFCDCD36B1B1782FD8C0014AC9B0E, E0D7E0E9B46A8CECE138D689820023BFA650FB689E4FD62855BED37E04F2D9FF ] intelpep C:\Windows\system32\drivers\intelpep.sys
16:59:44.0163 0x3028 intelpep - ok
16:59:44.0179 0x3028 [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\Windows\System32\drivers\intelppm.sys
16:59:44.0210 0x3028 intelppm - ok
16:59:44.0225 0x3028 [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:59:44.0304 0x3028 IpFilterDriver - ok
16:59:44.0413 0x3028 [ ACFEE9487693C2BD573DFCA71D98E17C, A347FD476147CD3568EEE6993B46AFC05A66A4269094CA51572D0FD013FCB535 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:59:44.0694 0x3028 iphlpsvc - ok
16:59:44.0741 0x3028 [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV C:\Windows\System32\drivers\IPMIDrv.sys
16:59:44.0804 0x3028 IPMIDRV - ok
16:59:44.0850 0x3028 [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:59:44.0913 0x3028 IPNAT - ok
16:59:45.0007 0x3028 [ 7FAE5B6CDB18B0B2E81F32869F595022, D873A7EE94749E1700E8F6B8BB7B485AE1B0B83388D63BE06335720498D4794F ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:59:45.0054 0x3028 iPod Service - ok
16:59:45.0085 0x3028 [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:59:45.0147 0x3028 IRENUM - ok
16:59:45.0179 0x3028 [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\Windows\system32\drivers\isapnp.sys
16:59:45.0288 0x3028 isapnp - ok
16:59:45.0335 0x3028 [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt C:\Windows\System32\drivers\msiscsi.sys
16:59:45.0429 0x3028 iScsiPrt - ok
16:59:45.0475 0x3028 [ EE03564B7FAFE2E44EDA33D52E83B4A3, 53C917EEC92B813EB0C86B225E9887C9CDFDD7708AEA71BFAC0A3039E26D7BEB ] iwdbus C:\Windows\System32\drivers\iwdbus.sys
16:59:45.0554 0x3028 iwdbus - ok
16:59:45.0632 0x3028 [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
16:59:45.0647 0x3028 jhi_service - ok
16:59:45.0694 0x3028 [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass C:\Windows\System32\drivers\kbdclass.sys
16:59:45.0757 0x3028 kbdclass - ok
16:59:45.0772 0x3028 [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid C:\Windows\System32\drivers\kbdhid.sys
16:59:45.0835 0x3028 kbdhid - ok
16:59:45.0866 0x3028 [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\Windows\system32\DRIVERS\kdnic.sys
16:59:45.0929 0x3028 kdnic - ok
16:59:45.0944 0x3028 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso C:\Windows\system32\lsass.exe
16:59:46.0219 0x3028 KeyIso - ok
16:59:46.0266 0x3028 [ 77481D3753F6DCB0A499C3A01460DC00, 788853CFB752B8A93C13A9EDFDB6FCF4A62C67688B3DF3F9A28FFB835FD1F3BE ] KmxAgent C:\Windows\system32\DRIVERS\kmxagent.sys
16:59:46.0344 0x3028 KmxAgent - ok
16:59:46.0422 0x3028 [ C30A499E4A05FA7C1B2B1325953F12D4, B4425E9FDC13245525F6B321F45EDF8D9826D7378A76FCD524785EBA7799DDB7 ] KmxAMRT C:\Windows\system32\DRIVERS\KmxAMRT.sys
16:59:46.0469 0x3028 KmxAMRT - ok
16:59:46.0500 0x3028 [ 2896919A9E5A4DC267A2D916F75D2346, ACC25CE0719D23B9CB1C14343D62189593D3FF6B2232BA3D16D6C36C8B0F60B3 ] KmxCF C:\Windows\system32\DRIVERS\KmxCF.sys
16:59:46.0531 0x3028 KmxCF - ok
16:59:46.0594 0x3028 [ 2FA4CB9DCA3ED83583659670F3B40916, 5D1DD0986BC321C76E7E4AA5ED5A744F60EC96BBDAE90FF66553CA97A931FCF7 ] KmxCfg C:\Windows\system32\DRIVERS\kmxcfg.sys
16:59:46.0719 0x3028 KmxCfg - ok
16:59:46.0813 0x3028 [ EB0576050B2A618563CAA3ECBF19F2EF, 2E5B00CF81A304C4EE59E75F863B360E44ACE1406F88A34D17554ADA93AEC3FD ] KmxFile C:\Windows\system32\DRIVERS\KmxFile.sys
16:59:46.0891 0x3028 KmxFile - ok
16:59:46.0938 0x3028 [ 87DA5AFC8950EC34D0CDDF3438370727, 337836E1AF2430A0D75E23BFFDB93D6C71232A743082798EA341C80966A3AD64 ] KmxFilter C:\Windows\system32\DRIVERS\KmxFilter.sys
16:59:47.0016 0x3028 KmxFilter - ok
16:59:47.0078 0x3028 [ 15260D1B5BB6BA8E5079E758FCE88207, 3080FD5C205C0EAED3A8FE45E5EC61F0826378043702DC8FB18A8AB64309CC0A ] KmxFw C:\Windows\system32\DRIVERS\kmxfw.sys
16:59:47.0094 0x3028 KmxFw - ok
16:59:47.0125 0x3028 [ EEF33889A80990C70595457A5C97EE09, 12E1A70EA2394AB8567F293A3C1A83F3268A2737AF00D919C67563DE4A5005A6 ] KmxSbx C:\Windows\system32\DRIVERS\KmxSbx.sys
16:59:47.0156 0x3028 KmxSbx - ok
16:59:47.0203 0x3028 [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:59:47.0234 0x3028 KSecDD - ok
16:59:47.0313 0x3028 [ 6D2EE96150E35B9EA49F2B481DE0369A, AC5915219FD81D89E444F6E86D71F7C495108FC35E7BD683321FC7006161AFE1 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:59:47.0328 0x3028 KSecPkg - ok
16:59:47.0359 0x3028 [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:59:47.0406 0x3028 ksthunk - ok
16:59:47.0453 0x3028 [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm C:\Windows\system32\msdtckrm.dll
16:59:47.0734 0x3028 KtmRm - ok
16:59:47.0813 0x3028 [ 793EACA6BAE9F481C2059BCB3743EB4A, 2624905C6B6A1227BD1CAC7D4FE55A5F6543E1278DAB31EC553748472D180D1D ] LanmanServer C:\Windows\system32\srvsvc.dll
16:59:48.0063 0x3028 LanmanServer - ok
16:59:48.0157 0x3028 [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:59:48.0454 0x3028 LanmanWorkstation - ok
16:59:48.0516 0x3028 [ 626D19F1771E1AE72208AE9A8F3082F7, 78FDB64545ED2EAE9F51C08120E21D2C3285208F6846BD8BBA08CAA839E7A0C4 ] lfsvc C:\Windows\System32\GeofenceMonitorService.dll
16:59:48.0719 0x3028 lfsvc - ok
16:59:48.0751 0x3028 [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:59:48.0766 0x3028 lltdio - ok
16:59:48.0813 0x3028 [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:59:48.0985 0x3028 lltdsvc - ok
16:59:49.0016 0x3028 [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:59:49.0157 0x3028 lmhosts - ok
16:59:49.0282 0x3028 [ 8939CBB2526CB87C476DB9ABBF243AE0, 6D566EDD2DE07A7F7B27A41BBFD05360BF2FBDD5D265D8061E15785A3EBC0C4E ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:59:49.0298 0x3028 LMS - ok
16:59:49.0329 0x3028 [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
16:59:49.0360 0x3028 LSI_SAS - ok
16:59:49.0391 0x3028 [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
16:59:49.0423 0x3028 LSI_SAS2 - ok
16:59:49.0438 0x3028 [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\Windows\system32\drivers\lsi_sas3.sys
16:59:49.0469 0x3028 LSI_SAS3 - ok
16:59:49.0501 0x3028 [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\Windows\system32\drivers\lsi_sss.sys
16:59:49.0532 0x3028 LSI_SSS - ok
16:59:49.0579 0x3028 [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] LSM C:\Windows\System32\lsm.dll
16:59:49.0751 0x3028 LSM - ok
16:59:49.0782 0x3028 [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\Windows\system32\drivers\luafv.sys
16:59:49.0798 0x3028 luafv - ok
16:59:49.0844 0x3028 [ 5C3669B71657F22E67A1D4BD49D2CBE7, 7CAE59AA6CA9CBBD70BBD707A155FB169BF3F71096275BF7C0F415B6A092C671 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
16:59:49.0860 0x3028 MBAMProtector - ok
16:59:50.0064 0x3028 [ 6D8A2EE4244630B290A837E79C0F37A1, 6783BBC0BDC93E4D6D43531A1AD0DF5CD26C3BBFA6384927C5CF65AD97FB04AD ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
16:59:50.0204 0x3028 MBAMScheduler - ok
16:59:50.0376 0x3028 [ 09D4503CBB6ADB3A54E7C7A75090B728, 6139EA3338FD64205481EDEC813A44F8D395FDA7B67AA431DA61F3631C3EDAE6 ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
16:59:50.0439 0x3028 MBAMService - ok
16:59:50.0517 0x3028 [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
16:59:50.0548 0x3028 MBAMSwissArmy - ok
16:59:50.0564 0x3028 [ D1F2D4DF0A5D3B700794E26356A55B44, E8A06F85BAAC221026E3213947D59DF13DE8E17FBDD2BC68B6B921D74C632612 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
16:59:50.0595 0x3028 MBAMWebAccessControl - ok
16:59:50.0642 0x3028 [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\Windows\system32\drivers\megasas.sys
16:59:50.0689 0x3028 megasas - ok
16:59:50.0767 0x3028 [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\Windows\system32\drivers\megasr.sys
16:59:50.0876 0x3028 megasr - ok
16:59:50.0923 0x3028 [ EB1D78140D6634C32A46AB1006105EDC, 586F988A7272A7E3F6AA2CC9A001A08A3D178A011AE8C095BB7EAD9FFB45AAB1 ] MEIx64 C:\Windows\System32\drivers\TeeDriverx64.sys
16:59:51.0001 0x3028 MEIx64 - ok
16:59:51.0075 0x3028 [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
16:59:51.0193 0x3028 Microsoft Office Groove Audit Service - ok
16:59:51.0240 0x3028 [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS C:\Windows\system32\mmcss.dll
16:59:51.0521 0x3028 MMCSS - ok
16:59:51.0553 0x3028 [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\Windows\system32\drivers\modem.sys
16:59:51.0600 0x3028 Modem - ok
16:59:51.0631 0x3028 [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\Windows\System32\drivers\monitor.sys
16:59:51.0646 0x3028 monitor - ok
16:59:51.0678 0x3028 [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass C:\Windows\System32\drivers\mouclass.sys
16:59:51.0740 0x3028 mouclass - ok
16:59:51.0772 0x3028 [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid C:\Windows\System32\drivers\mouhid.sys
16:59:51.0787 0x3028 mouhid - ok
16:59:51.0803 0x3028 [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:59:51.0834 0x3028 mountmgr - ok
16:59:51.0865 0x3028 [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:59:51.0881 0x3028 mpsdrv - ok
16:59:51.0975 0x3028 [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:59:52.0303 0x3028 MpsSvc - ok
16:59:52.0350 0x3028 [ 1D55DADC22D21883A2F80297F5A5AE48, B79DF4AFC2A9CBC54E74233596544D6E41C8CAA0516BD57CA695D051EC780265 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:59:52.0428 0x3028 MRxDAV - ok
16:59:52.0553 0x3028 [ 7A1A3F213CDB3363D179D5014272025D, 6756F5B7D9FBF6839DB1FF4E94EA45B5499D7DF925E75581C96FBBA4BE131542 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:59:52.0631 0x3028 mrxsmb - ok
16:59:52.0740 0x3028 [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:59:52.0787 0x3028 mrxsmb10 - ok
16:59:52.0881 0x3028 [ C910E5D18958914A66F0E45689D0B40A, AD7C91DD8A60A511E580DD56BACC97F85075A539E7C5D95040A8F870A621DAF4 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:59:52.0912 0x3028 mrxsmb20 - ok
16:59:52.0959 0x3028 [ E0927EFA25D473367C3341B9F5969779, B77A162BD3334557623674373D8EC2BE7CC0B359DF06304E467ABFFEE0530271 ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys
16:59:53.0006 0x3028 MsBridge - ok
16:59:53.0084 0x3028 [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC C:\Windows\System32\msdtc.exe
16:59:53.0522 0x3028 MSDTC - ok
16:59:53.0569 0x3028 [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:59:53.0631 0x3028 Msfs - ok
16:59:53.0662 0x3028 [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys
16:59:53.0694 0x3028 msgpiowin32 - ok
16:59:53.0709 0x3028 [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:59:53.0787 0x3028 mshidkmdf - ok
16:59:53.0803 0x3028 [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys
16:59:53.0865 0x3028 mshidumdf - ok
16:59:53.0897 0x3028 [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
16:59:53.0928 0x3028 msisadrv - ok
16:59:54.0006 0x3028 [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:59:54.0288 0x3028 MSiSCSI - ok
16:59:54.0303 0x3028 msiserver - ok
16:59:54.0319 0x3028 [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:59:54.0381 0x3028 MSKSSRV - ok
16:59:54.0444 0x3028 [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp C:\Windows\system32\DRIVERS\mslldp.sys
16:59:54.0506 0x3028 MsLldp - ok
16:59:54.0553 0x3028 [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:59:54.0600 0x3028 MSPCLOCK - ok
16:59:54.0616 0x3028 [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:59:54.0678 0x3028 MSPQM - ok
16:59:54.0803 0x3028 [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:59:54.0850 0x3028 MsRPC - ok
16:59:54.0881 0x3028 [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\Windows\System32\drivers\mssmbios.sys
16:59:54.0913 0x3028 mssmbios - ok
16:59:54.0944 0x3028 [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:59:55.0022 0x3028 MSTEE - ok
16:59:55.0038 0x3028 [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\Windows\System32\drivers\MTConfig.sys
16:59:55.0116 0x3028 MTConfig - ok
16:59:55.0147 0x3028 [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup C:\Windows\system32\Drivers\mup.sys
16:59:55.0178 0x3028 Mup - ok
16:59:55.0209 0x3028 [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\Windows\system32\drivers\mvumis.sys
16:59:55.0288 0x3028 mvumis - ok
16:59:55.0350 0x3028 [ FCDCFEDAF3C1D61DE11FA0DE9453699C, 4E79F1040E62B0DEE00F3035DBFE5241A459FE4C1A46337FF13A25FF8C5A64A5 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
16:59:55.0506 0x3028 MyWiFiDHCPDNS - ok
16:59:55.0694 0x3028 [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent C:\Windows\system32\qagentRT.dll
16:59:56.0084 0x3028 napagent - ok
16:59:56.0178 0x3028 [ 26ACA481FAFEC59FE311D719E3027BBA, 16A24CCA95A38BDFE970580159F6ACAA13FF1B74CF2290B1B020D909F90D3347 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:59:56.0272 0x3028 NativeWifiP - ok
16:59:56.0319 0x3028 [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc C:\Windows\System32\ncasvc.dll
16:59:56.0803 0x3028 NcaSvc - ok
16:59:56.0866 0x3028 [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService C:\Windows\System32\ncbservice.dll
16:59:57.0208 0x3028 NcbService - ok
16:59:57.0240 0x3028 [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll
16:59:57.0505 0x3028 NcdAutoSetup - ok
16:59:57.0646 0x3028 [ E4B4BE2D7750849C07589DA0B0AABA01, BB5AA727BA018A94B5DE2C4E0B594DD2E7A2B3457885446EE568F3A1E18AB3B0 ] NDIS C:\Windows\system32\drivers\ndis.sys
16:59:57.0755 0x3028 NDIS - ok
16:59:57.0802 0x3028 [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:59:57.0865 0x3028 NdisCap - ok
16:59:57.0896 0x3028 [ B1AA3B19A2E596A59224F893E01A5A75, E08696CA5E087E51AC3E64D4FB8490EEADD612DDF30C9A94DD1BD1BA124B71B7 ] NdisImPlatform C:\Windows\system32\DRIVERS\NdisImPlatform.sys
16:59:57.0958 0x3028 NdisImPlatform - ok
16:59:57.0974 0x3028 [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:59:58.0021 0x3028 NdisTapi - ok
16:59:58.0052 0x3028 [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:59:58.0083 0x3028 Ndisuio - ok
16:59:58.0099 0x3028 [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\Windows\System32\drivers\NdisVirtualBus.sys
16:59:58.0146 0x3028 NdisVirtualBus - ok
16:59:58.0177 0x3028 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:59:58.0365 0x3028 NdisWan - ok
16:59:58.0412 0x3028 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy C:\Windows\system32\DRIVERS\ndiswan.sys
16:59:58.0443 0x3028 NdisWanLegacy - ok
16:59:58.0458 0x3028 [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:59:58.0490 0x3028 NDProxy - ok
16:59:58.0552 0x3028 [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu C:\Windows\system32\drivers\Ndu.sys
16:59:58.0568 0x3028 Ndu - ok
16:59:58.0646 0x3028 [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:59:58.0693 0x3028 NetBIOS - ok
16:59:58.0755 0x3028 [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:59:58.0849 0x3028 NetBT - ok
16:59:58.0896 0x3028 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon C:\Windows\system32\lsass.exe
16:59:59.0171 0x3028 Netlogon - ok
16:59:59.0343 0x3028 [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman C:\Windows\System32\netman.dll
16:59:59.0718 0x3028 Netman - ok
16:59:59.0812 0x3028 [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm C:\Windows\System32\netprofmsvc.dll
17:00:00.0171 0x3028 netprofm - ok
17:00:00.0359 0x3028 [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:00:00.0437 0x3028 NetTcpPortSharing - ok
17:00:00.0531 0x3028 [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc C:\Windows\system32\DRIVERS\netvsc63.sys
17:00:00.0578 0x3028 netvsc - ok
17:00:01.0524 0x3028 [ B6EDB4D2BA55CA06FF679FA4B885B1F4, 3A5E509B52216DEFBEDE2CA35C77A2AB8114E41D702765F6712DD8D24B394826 ] NETwNb64 C:\Windows\system32\DRIVERS\NETwbw02.sys
17:00:01.0883 0x3028 NETwNb64 - ok
17:00:02.0071 0x3028 [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc C:\Windows\System32\nlasvc.dll
17:00:02.0399 0x3028 NlaSvc - ok
17:00:02.0446 0x3028 [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:00:02.0524 0x3028 Npfs - ok
17:00:02.0587 0x3028 [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys
17:00:02.0649 0x3028 npsvctrig - ok
17:00:02.0712 0x3028 [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi C:\Windows\system32\nsisvc.dll
17:00:03.0055 0x3028 nsi - ok
17:00:03.0071 0x3028 [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:00:03.0149 0x3028 nsiproxy - ok
17:00:03.0774 0x3028 [ 038C77D577900EE39410662478BB0D50, A33AAFD5750245C17A47EC71F3C6EAD2E0925CAD34C65AB3E6CEE44756C668E6 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:00:03.0962 0x3028 Ntfs - ok
17:00:04.0055 0x3028 [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\Windows\system32\drivers\Null.sys
17:00:04.0109 0x3028 Null - ok
17:00:04.0203 0x3028 [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:00:04.0281 0x3028 nvraid - ok
17:00:04.0406 0x3028 [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:00:04.0609 0x3028 nvstor - ok
17:00:04.0703 0x3028 [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:00:04.0937 0x3028 nv_agp - ok
17:00:05.0015 0x3028 OATool - ok
17:00:05.0546 0x3028 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:00:06.0140 0x3028 odserv - ok
17:00:06.0921 0x3028 [ 9CF7E8EF673BB0B8BBF520AB1F0331E2, 63A98C22E08B83E83DA7CD56B67ED1C61516043B3FD9CC8232ABA9DC80EC733B ] OfficeSvc C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
17:00:07.0062 0x3028 OfficeSvc - ok
17:00:07.0175 0x3028 [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:00:07.0378 0x3028 ose - ok
17:00:07.0534 0x3028 [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
17:00:07.0863 0x3028 p2pimsvc - ok
17:00:08.0034 0x3028 [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc C:\Windows\system32\p2psvc.dll
17:00:08.0285 0x3028 p2psvc - ok
17:00:08.0347 0x3028 [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport C:\Windows\System32\drivers\parport.sys
17:00:08.0378 0x3028 Parport - ok
17:00:08.0441 0x3028 [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:00:08.0456 0x3028 partmgr - ok
17:00:08.0660 0x3028 [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc C:\Windows\System32\pcasvc.dll
17:00:09.0003 0x3028 PcaSvc - ok
17:00:09.0160 0x3028 [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\Windows\system32\drivers\pci.sys
17:00:09.0222 0x3028 pci - ok
17:00:09.0285 0x3028 [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\Windows\system32\drivers\pciide.sys
17:00:09.0347 0x3028 pciide - ok
17:00:09.0363 0x3028 [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
17:00:09.0456 0x3028 pcmcia - ok
17:00:09.0519 0x3028 [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\Windows\system32\drivers\pcw.sys
17:00:09.0550 0x3028 pcw - ok
17:00:09.0660 0x3028 [ B9D968D8E2B0F9C6301CEB39CFC9B9E4, 83F32831B0727F18B56DC3CAF37E45A3523D2BBCD54D1421F0DE5A0179D8A404 ] pdc C:\Windows\system32\drivers\pdc.sys
17:00:09.0691 0x3028 pdc - ok
17:00:09.0894 0x3028 [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:00:09.0972 0x3028 PEAUTH - ok
17:00:10.0238 0x3028 [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\Windows\SysWow64\perfhost.exe
17:00:10.0503 0x3028 PerfHost - ok
17:00:10.0708 0x3028 [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla C:\Windows\system32\pla.dll
17:00:11.0348 0x3028 pla - ok
17:00:11.0473 0x3028 [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:00:11.0813 0x3028 PlugPlay - ok
17:00:11.0876 0x3028 [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
17:00:12.0141 0x3028 PNRPAutoReg - ok
17:00:12.0188 0x3028 [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
17:00:12.0407 0x3028 PNRPsvc - ok
17:00:12.0579 0x3028 [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:00:12.0720 0x3028 PolicyAgent - ok
17:00:12.0798 0x3028 [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power C:\Windows\system32\umpo.dll
17:00:13.0016 0x3028 Power - ok
17:00:13.0345 0x3028 [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
17:00:13.0861 0x3028 PrintNotify - ok
17:00:13.0907 0x3028 [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\Windows\System32\drivers\processr.sys
17:00:13.0954 0x3028 Processor - ok
17:00:14.0032 0x3028 [ EF1F8B57323E5D3FC6A0A25F98F90DBC, F50E81151604DCD59BB647FD6767C1631AE48B5FCA6D3423C4E32535C94D6369 ] ProfSvc C:\Windows\system32\profsvc.dll
17:00:14.0251 0x3028 ProfSvc - ok
17:00:14.0283 0x3028 [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched C:\Windows\system32\DRIVERS\pacer.sys
17:00:14.0626 0x3028 Psched - ok
17:00:14.0689 0x3028 [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE C:\Windows\system32\qwave.dll
17:00:15.0033 0x3028 QWAVE - ok
17:00:15.0048 0x3028 [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:00:15.0095 0x3028 QWAVEdrv - ok
17:00:15.0111 0x3028 [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:00:15.0189 0x3028 RasAcd - ok
17:00:15.0267 0x3028 [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto C:\Windows\System32\rasauto.dll
17:00:15.0674 0x3028 RasAuto - ok
17:00:15.0892 0x3028 [ 5C7B86EE33505E36026AFAAB62DA6364, 903BB1A355AC746BF09C2A7C87B068168648DB79DEF39AB1DC710B6A7A5F6556 ] RasMan C:\Windows\System32\rasmans.dll
17:00:16.0346 0x3028 RasMan - ok
17:00:16.0393 0x3028 [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:00:16.0455 0x3028 RasPppoe - ok
17:00:16.0612 0x3028 [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:00:16.0705 0x3028 rdbss - ok
17:00:16.0831 0x3028 [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys
17:00:16.0893 0x3028 rdpbus - ok
17:00:16.0940 0x3028 [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
17:00:17.0002 0x3028 RDPDR - ok
17:00:17.0065 0x3028 [ 9F08A6608F98B5407E7DDBCF306573EF, 92812F97CFDB2EC128BC48143DE215B7D012B15D3FB4D2199222AD8C31DA5016 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:00:17.0127 0x3028 RdpVideoMiniport - ok
17:00:17.0221 0x3028 [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
17:00:17.0252 0x3028 rdyboost - ok
17:00:17.0393 0x3028 [ E515A287C8FAE901EB8FB42F168E14F2, 9AE8D608587713FD18BB728BADD402C86FFF06A67359B22ED9431705522BC310 ] ReFS C:\Windows\system32\drivers\ReFS.sys
17:00:17.0565 0x3028 ReFS - ok
17:00:17.0752 0x3028 [ 5B1F724CBCA8E08DC9D4C158C9BC1C1C, D5B170CF4B5420213130E151AFBBD9B84C5F7E710F5F67066E07095DEC1BD4B9 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
17:00:17.0768 0x3028 RegSrvc - ok
17:00:17.0831 0x3028 [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:00:18.0253 0x3028 RemoteAccess - ok
17:00:18.0395 0x3028 [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:00:18.0864 0x3028 RemoteRegistry - ok
17:00:18.0926 0x3028 [ 0527EF6E23B9FAB37DDCBC479C6CFA28, C004CE600074AC434F8B24A3383F8C0ACFA5476D9E3B1493B40911C78B028D64 ] RFCOMM C:\Windows\System32\drivers\rfcomm.sys
17:00:18.0989 0x3028 RFCOMM - ok
17:00:19.0161 0x3028 [ CBE300DA6064C31F2AC4ED8A0722BEF0, D98D41937E36390426F521713AF2BAA1E49E750BBEAC420D1BD770EB303F1E4F ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
17:00:19.0176 0x3028 RichVideo - ok
17:00:19.0301 0x3028 [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
17:00:19.0676 0x3028 RpcEptMapper - ok
17:00:19.0739 0x3028 [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator C:\Windows\system32\locator.exe
17:00:20.0036 0x3028 RpcLocator - ok
17:00:20.0176 0x3028 [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] RpcSs C:\Windows\system32\rpcss.dll
17:00:20.0536 0x3028 RpcSs - ok
17:00:20.0583 0x3028 [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:00:20.0614 0x3028 rspndr - ok
17:00:20.0770 0x3028 [ 99E927EA78E4B20F02B4B900F6FAB569, C4F6EC9B3BA4FA39926673F39BA3A183CDB7FFC04404F115779C7397C482A795 ] RSUSBVSTOR C:\Windows\System32\Drivers\RtsUVStor.sys
17:00:20.0833 0x3028 RSUSBVSTOR - ok
17:00:20.0958 0x3028 [ DDF3EFB4AD226C61D0ADA6E779E3D968, 5B14B35321F10D974B9F47D60C9DAA527A2C907029C242A6F4214E6012A046DA ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
17:00:20.0974 0x3028 RtkAudioService - ok
17:00:21.0161 0x3028 [ 948D5E71CF9DB59961353A355EA45139, A23D012B07A92CC217C67C904CDFBA2BCCDCC2BD49B24FB694BD230D000F2B7B ] RTL8168 C:\Windows\system32\DRIVERS\Rt630x64.sys
17:00:21.0270 0x3028 RTL8168 - ok
17:00:21.0317 0x3028 [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\Windows\System32\drivers\vms3cap.sys
17:00:21.0380 0x3028 s3cap - ok
17:00:21.0411 0x3028 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs C:\Windows\system32\lsass.exe
17:00:21.0645 0x3028 SamSs - ok
17:00:21.0692 0x3028 [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:00:21.0770 0x3028 sbp2port - ok
17:00:21.0833 0x3028 [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:00:22.0380 0x3028 SCardSvr - ok
17:00:22.0443 0x3028 [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum C:\Windows\System32\ScDeviceEnum.dll
17:00:22.0865 0x3028 ScDeviceEnum - ok
17:00:22.0896 0x3028 [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
17:00:22.0974 0x3028 scfilter - ok
17:00:23.0193 0x3028 [ D3AE5DB16EAF913860EC28654CE00E6B, AD76B6044F7247C6E86F6DCB7CFD6B25BCA2B9F09A97A419F043A999E66726A2 ] Schedule C:\Windows\system32\schedsvc.dll
17:00:23.0661 0x3028 Schedule - ok
17:00:23.0740 0x3028 [ D2E07BE7F46585319B764E459BD052A1, 0D5FF56037D94D7966233909C7F6DA37DE106E5BCD12A580CEE814AD4E3A9C10 ] SCManager C:\Program Files (x86)\SafeConnect\scManager.sys
17:00:23.0755 0x3028 SCManager - ok
17:00:23.0818 0x3028 [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc C:\Windows\System32\certprop.dll
17:00:23.0880 0x3028 SCPolicySvc - ok
17:00:23.0990 0x3028 [ 4E2F7F575B6DBE16852510B5C0DC1B5D, E90EBCEBE89ED711C9D1CD314E02A69260FCC7E9BBBCB69A7D4D85B96BB99B7D ] sdbus C:\Windows\System32\drivers\sdbus.sys
17:00:24.0099 0x3028 sdbus - ok
17:00:24.0130 0x3028 [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\Windows\System32\drivers\sdstor.sys
17:00:24.0224 0x3028 sdstor - ok
17:00:24.0271 0x3028 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:00:24.0302 0x3028 secdrv - ok
17:00:24.0349 0x3028 [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon C:\Windows\system32\seclogon.dll
17:00:24.0771 0x3028 seclogon - ok
17:00:24.0834 0x3028 [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS C:\Windows\System32\sens.dll
17:00:25.0271 0x3028 SENS - ok
17:00:25.0318 0x3028 [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc C:\Windows\system32\sensrsvc.dll
17:00:25.0552 0x3028 SensrSvc - ok
17:00:25.0584 0x3028 [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\Windows\system32\drivers\SerCx.sys
17:00:25.0631 0x3028 SerCx - ok
17:00:25.0724 0x3028 [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\Windows\system32\drivers\SerCx2.sys
17:00:25.0771 0x3028 SerCx2 - ok
17:00:25.0818 0x3028 [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum C:\Windows\System32\drivers\serenum.sys
17:00:25.0881 0x3028 Serenum - ok
17:00:25.0896 0x3028 [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial C:\Windows\System32\drivers\serial.sys
17:00:25.0974 0x3028 Serial - ok
17:00:25.0990 0x3028 [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse C:\Windows\System32\drivers\sermouse.sys
17:00:26.0084 0x3028 sermouse - ok
17:00:26.0177 0x3028 [ D5C3776CBD8BC307DCCA3FD4CE667A37, 98E4253B770C25914C91A6148E2EA15ED0EF37ADCB042A47252DBA135972BF74 ] SessionEnv C:\Windows\system32\sessenv.dll
17:00:26.0649 0x3028 SessionEnv - ok
17:00:26.0711 0x3028 [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys
17:00:26.0774 0x3028 sfloppy - ok
17:00:27.0493 0x3028 [ B2B36D1B62BA24ACA1C114B3936F308D, 251C87C6EFCA5D18EFB0008B827D22E32B45A1D5C2E125B381EF5444775B798E ] SftService C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
17:00:27.0649 0x3028 SftService - ok
17:00:27.0727 0x3028 [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:00:27.0993 0x3028 SharedAccess - ok
17:00:28.0274 0x3028 [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:00:28.0633 0x3028 ShellHWDetection - ok
17:00:28.0665 0x3028 [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
17:00:28.0852 0x3028 SiSRaid2 - ok
17:00:28.0899 0x3028 [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:00:29.0009 0x3028 SiSRaid4 - ok
17:00:29.0040 0x3028 [ AE4C16C40AE62CC9B57B6C2B8C115E68, C1C9EC75749F1309531BC6DF0A3ED36BF1646371289412999883099DB6472912 ] SmbDrv C:\Windows\System32\drivers\Smb_driver_AMDASF.sys
17:00:29.0134 0x3028 SmbDrv - ok
17:00:29.0165 0x3028 [ A4B4F8AAE42DA4279796D54E9619DAA1, FE2D333E073E6DE0EBFCD1AC1A86BDE86265B421C2ECAECABF1AFDBA453D401A ] SmbDrvI C:\Windows\System32\drivers\Smb_driver_Intel.sys
17:00:29.0259 0x3028 SmbDrvI - ok
17:00:29.0322 0x3028 [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost C:\Windows\System32\smphost.dll
17:00:29.0994 0x3028 smphost - ok
17:00:30.0040 0x3028 [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:00:30.0587 0x3028 SNMPTRAP - ok
17:00:30.0650 0x3028 [ 240C5C3793206725AA05665851E8C214, 96ADFB85EB1623EB00C251C1C6A1F441A1795F0EBFD10B17DD1CA58E3AE8A90D ] spaceport C:\Windows\system32\drivers\spaceport.sys
17:00:30.0712 0x3028 spaceport - ok
17:00:30.0759 0x3028 [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\Windows\system32\drivers\SpbCx.sys
17:00:30.0822 0x3028 SpbCx - ok
17:00:31.0087 0x3028 [ 42FEA9E0BA9761D9E65A4F167D91515B, 9A34CE83F3ACD50608671BDABE5E475F8E0C8335D3B8B7B3D7E84B2A319FA29F ] Spooler C:\Windows\System32\spoolsv.exe
17:00:31.0494 0x3028 Spooler - ok
17:00:32.0843 0x3028 [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc C:\Windows\system32\sppsvc.exe
17:00:33.0894 0x3028 sppsvc - ok
17:00:34.0066 0x3028 [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:00:34.0128 0x3028 srv - ok
17:00:34.0349 0x3028 [ 5BED3AB69797C8786EF70AEA8C33748B, 0474EE6C43D437CBA9848BCF25D1341B122D7E9F371A0FF3C62C83D14B2CB095 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:00:34.0412 0x3028 srv2 - ok
17:00:34.0474 0x3028 [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:00:34.0537 0x3028 srvnet - ok
17:00:34.0630 0x3028 [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:00:34.0865 0x3028 SSDPSRV - ok
17:00:34.0896 0x3028 [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:00:35.0115 0x3028 SstpSvc - ok
17:00:35.0271 0x3028 [ 189879824D01F9A0DD1D72259A120F50, D587688E9EF7C43319AB87EEA368C9310F3A8F4A8A6D8A6E427A54126C209DF0 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
17:00:35.0365 0x3028 Steam Client Service - ok
17:00:35.0427 0x3028 [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\Windows\system32\drivers\stexstor.sys
17:00:35.0474 0x3028 stexstor - ok
17:00:35.0834 0x3028 [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc C:\Windows\System32\wiaservc.dll
17:00:36.0490 0x3028 stisvc - ok
17:00:36.0552 0x3028 [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\Windows\system32\drivers\storahci.sys
17:00:36.0677 0x3028 storahci - ok
17:00:36.0740 0x3028 [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
17:00:36.0849 0x3028 storflt - ok
17:00:36.0880 0x3028 [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme C:\Windows\system32\drivers\stornvme.sys
17:00:37.0021 0x3028 stornvme - ok
17:00:37.0115 0x3028 [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc C:\Windows\system32\storsvc.dll
17:00:37.0662 0x3028 StorSvc - ok
17:00:37.0709 0x3028 [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\Windows\system32\drivers\storvsc.sys
17:00:37.0771 0x3028 storvsc - ok
17:00:37.0802 0x3028 [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc C:\Windows\system32\svsvc.dll
17:00:38.0224 0x3028 svsvc - ok
17:00:38.0287 0x3028 [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum C:\Windows\System32\drivers\swenum.sys
17:00:38.0334 0x3028 swenum - ok
17:00:38.0366 0x3028 SwitchBoard - ok
17:00:38.0522 0x3028 [ 850EBB87584484DC16F917E7B6F4A304, C253D1DFFCDFB018432063602FB01DBCBDDD6E03458E5C366AABD4670F114B0C ] swprv C:\Windows\System32\swprv.dll
17:00:38.0803 0x3028 swprv - ok
17:00:38.0913 0x3028 [ 90EA1D0A7BCB873EE5075ACCD9636D98, 1D80A8B582B3DC7F1C9AEED33EA3B33F5D7A6BD73D55619035455F5C14D14817 ] SynTP C:\Windows\System32\drivers\SynTP.sys
17:00:39.0788 0x3028 SynTP - ok
17:00:40.0178 0x3028 [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] SysMain C:\Windows\system32\sysmain.dll
17:00:40.0725 0x3028 SysMain - ok
17:00:40.0803 0x3028 [ FD4EA8E9232ADD51DC31C295DDEF2768, 3EA40D7376AB5AA5DA2BCF4745C79F7BF819363466967ECC3CD15ADECBFD7244 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
17:00:41.0381 0x3028 SystemEventsBroker - ok
17:00:41.0444 0x3028 [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\Windows\System32\TabSvc.dll
17:00:41.0913 0x3028 TabletInputService - ok
17:00:41.0975 0x3028 [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:00:42.0444 0x3028 TapiSrv - ok
17:00:43.0319 0x3028 [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:00:43.0710 0x3028 Tcpip - ok
17:00:44.0428 0x3028 [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
17:00:44.0835 0x3028 TCPIP6 - ok
17:00:44.0897 0x3028 [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:00:44.0944 0x3028 tcpipreg - ok
17:00:44.0991 0x3028 [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:00:45.0069 0x3028 tdx - ok
17:00:45.0085 0x3028 [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\Windows\System32\drivers\terminpt.sys
17:00:45.0163 0x3028 terminpt - ok
17:00:45.0350 0x3028 [ 3D748E5558FD9A9F03182CB2330698DC, 70B2069AB7912EB49AB3ABD18D4B42CB94AC99CA6DE3F63F4888B8EAAC78AAA2 ] TermService C:\Windows\System32\termsrv.dll
17:00:45.0696 0x3028 TermService - ok
17:00:45.0727 0x3028 [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes C:\Windows\system32\themeservice.dll
17:00:46.0008 0x3028 Themes - ok
17:00:46.0039 0x3028 [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER C:\Windows\system32\mmcss.dll
17:00:46.0211 0x3028 THREADORDER - ok
17:00:46.0274 0x3028 [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll
17:00:46.0571 0x3028 TimeBroker - ok
17:00:46.0602 0x3028 [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM C:\Windows\system32\drivers\tpm.sys
17:00:46.0711 0x3028 TPM - ok
17:00:46.0789 0x3028 [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks C:\Windows\System32\trkwks.dll
17:00:47.0055 0x3028 TrkWks - ok
17:00:47.0180 0x3028 [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:00:47.0180 0x3028 TrustedInstaller - ok
17:00:47.0211 0x3028 [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
17:00:47.0258 0x3028 TsUsbFlt - ok
17:00:47.0289 0x3028 [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys
17:00:47.0321 0x3028 TsUsbGD - ok
17:00:47.0383 0x3028 [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:00:47.0399 0x3028 tunnel - ok
17:00:47.0442 0x3028 [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:00:47.0473 0x3028 uagp35 - ok
17:00:47.0489 0x3028 [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\Windows\System32\drivers\uaspstor.sys
17:00:47.0520 0x3028 UASPStor - ok
17:00:47.0614 0x3028 [ B034A41891A36457B994307DFA772293, CA5E6500764A9777AE0E15B2AFB6F05982C90F01374E3F6DDC6DF3852282C66B ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys
17:00:47.0645 0x3028 UCX01000 - ok
17:00:47.0661 0x3028 [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:00:47.0723 0x3028 udfs - ok
17:00:47.0786 0x3028 [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\Windows\System32\drivers\UEFI.sys
17:00:47.0801 0x3028 UEFI - ok
17:00:47.0864 0x3028 [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:00:48.0004 0x3028 UI0Detect - ok
17:00:48.0036 0x3028 [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:00:48.0051 0x3028 uliagpkx - ok
17:00:48.0067 0x3028 [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\Windows\System32\drivers\umbus.sys
17:00:48.0098 0x3028 umbus - ok
17:00:48.0161 0x3028 [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\Windows\System32\drivers\umpass.sys
17:00:48.0192 0x3028 UmPass - ok
17:00:48.0317 0x3028 [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService C:\Windows\System32\umrdp.dll
17:00:48.0551 0x3028 UmRdpService - ok
17:00:48.0895 0x3028 [ AF950F62E5FC72FFDB7363F72600B21C, 25B1EDE885803D129BD26199299A6561E2F73C540BAB50F21AB0A24F3166AEE8 ] UmxEngine C:\Program Files\CA\SharedComponents\TMEngine\UmxEngine.exe
17:00:48.0911 0x3028 UmxEngine - ok
17:00:49.0098 0x3028 [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost C:\Windows\System32\upnphost.dll
17:00:49.0286 0x3028 upnphost - ok
17:00:49.0413 0x3028 [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64 C:\Windows\System32\Drivers\usbaapl64.sys
17:00:49.0441 0x3028 USBAAPL64 - ok
17:00:49.0566 0x3028 [ DF355EB0199198728027962DCFCDE5FB, 9E158BD07389B4CFF99674716647FA3AABEECBD1A98EDF20E544E099A99A8768 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:00:49.0597 0x3028 usbaudio - ok
17:00:49.0722 0x3028 [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\Windows\System32\drivers\usbccgp.sys
17:00:49.0738 0x3028 usbccgp - ok
17:00:49.0863 0x3028 [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir C:\Windows\System32\drivers\usbcir.sys
17:00:49.0894 0x3028 usbcir - ok
17:00:50.0004 0x3028 [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci C:\Windows\System32\drivers\usbehci.sys
17:00:50.0035 0x3028 usbehci - ok
17:00:50.0191 0x3028 [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub C:\Windows\System32\drivers\usbhub.sys
17:00:50.0238 0x3028 usbhub - ok
17:00:50.0394 0x3028 [ 65392F3F3F65E4C6CC82A0F4F8A0B051, C11B662A28D95820717DFFC6B76DBB755E4876009A2342E5E3992DE32D6BFF61 ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys
17:00:50.0427 0x3028 USBHUB3 - ok
17:00:50.0537 0x3028 [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci C:\Windows\System32\drivers\usbohci.sys
17:00:50.0568 0x3028 usbohci - ok
17:00:50.0615 0x3028 [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\Windows\System32\drivers\usbprint.sys
17:00:50.0646 0x3028 usbprint - ok
17:00:50.0802 0x3028 [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS
17:00:51.0334 0x3028 USBSTOR - ok
17:00:51.0435 0x3028 [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci C:\Windows\System32\drivers\usbuhci.sys
17:00:51.0480 0x3028 usbuhci - ok
17:00:51.0590 0x3028 [ 18F744E8CCEB2670040EBAF7AD77B8C6, C5E2DF4EA0D946B4DA67DE29FA9D0F079DED35EC59B98E532C4C2D5F8E86DA0A ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
17:00:51.0605 0x3028 usbvideo - ok
17:00:51.0715 0x3028 [ 48430B0313FC1CFE3D2400553F1A93CD, 92994DE6B131E904AFF2C9C4FBB4E6B0D58525A1539763327373DA18C9F08193 ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS
17:00:51.0887 0x3028 USBXHCI - ok
17:00:51.0902 0x3028 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc C:\Windows\system32\lsass.exe
17:00:52.0090 0x3028 VaultSvc - ok
17:00:52.0246 0x3028 [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
17:00:52.0277 0x3028 vdrvroot - ok
17:00:52.0536 0x3028 [ E3EF58D4123B5AA29C8E19825AF84A5E, FB1046722BC643E955DBC3B1459DBF2A6D575EBA2BCF7B20A0FA51E3993835E2 ] vds C:\Windows\System32\vds.exe
17:00:53.0360 0x3028 vds - ok
17:00:53.0454 0x3028 [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys
17:00:53.0532 0x3028 VerifierExt - ok
17:00:53.0642 0x3028 [ 52E483A3701A5A61A75A06993720347D, 689E812755E485DF6960D1E049740FBAFB812467D23B673DCAA40C03FEBB544F ] vhdmp C:\Windows\System32\drivers\vhdmp.sys
17:00:53.0798 0x3028 vhdmp - ok
17:00:53.0845 0x3028 [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\Windows\system32\drivers\viaide.sys
17:00:53.0954 0x3028 viaide - ok
17:00:53.0970 0x3028 [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus C:\Windows\system32\drivers\vmbus.sys
17:00:54.0064 0x3028 vmbus - ok
17:00:54.0079 0x3028 [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys
17:00:54.0157 0x3028 VMBusHID - ok
17:00:54.0314 0x3028 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\Windows\System32\ICSvc.dll
17:00:54.0510 0x3028 vmicguestinterface - ok
17:00:54.0869 0x3028 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat C:\Windows\System32\ICSvc.dll
17:00:55.0275 0x3028 vmicheartbeat - ok
17:00:55.0478 0x3028 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
17:00:55.0916 0x3028 vmickvpexchange - ok
17:00:56.0119 0x3028 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv C:\Windows\System32\ICSvc.dll
17:00:56.0541 0x3028 vmicrdv - ok
17:00:56.0588 0x3028 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown C:\Windows\System32\ICSvc.dll
17:00:56.0791 0x3028 vmicshutdown - ok
17:00:56.0838 0x3028 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync C:\Windows\System32\ICSvc.dll
17:00:57.0041 0x3028 vmictimesync - ok
17:00:57.0150 0x3028 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss C:\Windows\System32\ICSvc.dll
17:00:57.0322 0x3028 vmicvss - ok
17:00:57.0353 0x3028 [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:00:57.0385 0x3028 volmgr - ok
17:00:57.0463 0x3028 [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:00:57.0557 0x3028 volmgrx - ok
17:00:57.0635 0x3028 [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:00:57.0682 0x3028 volsnap - ok
17:00:57.0713 0x3028 [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci C:\Windows\System32\drivers\vpci.sys
17:00:57.0760 0x3028 vpci - ok
17:00:57.0807 0x3028 [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:00:57.0869 0x3028 vsmraid - ok
17:00:58.0072 0x3028 [ E369C59F2C0852DDD090C07E0DDE0051, 4FAC94458EAAEED4F84A86FBAB8FBB332D0AF85BD528E63C0C058A2DA8E3011D ] VSS C:\Windows\system32\vssvc.exe
17:00:58.0416 0x3028 VSS - ok
17:00:58.0447 0x3028 [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys
17:00:58.0597 0x3028 VSTXRAID - ok
17:00:58.0675 0x3028 [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
17:00:58.0737 0x3028 vwifibus - ok
17:00:58.0768 0x3028 [ 35BF5C5F5E3C9902C98978C7640574DA, C61E50B04000DCEC72365723F0C0725C2E005529DAF2777A59E624C14DA29E55 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
17:00:58.0815 0x3028 vwififlt - ok
17:00:58.0862 0x3028 [ 65ED7B9CFEA893DF7748D5FF692690DE, 73AB9D8BB928B3247BDFC7BB47AD7FCA763B375DC250C251DB4E0573531040E8 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
17:00:58.0878 0x3028 vwifimp - ok
17:00:58.0925 0x3028 [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time C:\Windows\system32\w32time.dll
17:00:59.0065 0x3028 W32Time - ok
17:00:59.0097 0x3028 [ 5E5704A38928D8452246867D94AEDC39, 7430301107C05785F197EDFF165CF0884C425F74609CB2EA23516B255D9F29FE ] WacHidRouter C:\Windows\System32\drivers\wachidrouter.sys
17:00:59.0112 0x3028 WacHidRouter - ok
17:00:59.0128 0x3028 [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\Windows\System32\drivers\wacompen.sys
17:00:59.0159 0x3028 WacomPen - ok
17:00:59.0190 0x3028 [ 056891AD9FB65EEE3A927C9FB5131FC7, 5CEC0E460A7A247672357E04E1B6B11A6F22FBB65DE533E0216CE3B2A33EF438 ] wacomrouterfilter C:\Windows\System32\drivers\wacomrouterfilter.sys
17:00:59.0190 0x3028 wacomrouterfilter - ok
17:00:59.0300 0x3028 [ 61692DB39AD3DF2F29392D68EAA7BB93, 854D4B9C7DD1676968598ED973500650ECEC02C420E44C0B3957C24F073AA5FB ] wbengine C:\Windows\system32\wbengine.exe
17:00:59.0491 0x3028 wbengine - ok
17:00:59.0600 0x3028 [ 3BC1D1D56637A32CD91C8AE08E2484AA, 9EE1BD3FB0D289E25F3DDD0D8F67DC1C701A6B1D5418FADF348D0E642B1DEBEB ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
17:00:59.0725 0x3028 WbioSrvc - ok
17:00:59.0819 0x3028 [ A07CFC4B593D15B6BF06813C3B5B33BF, B57BD918E2AFF9943B51A24B95E0C4D3482B4DF73C0E2421E8CC67C2BC7A4C70 ] Wcmsvc C:\Windows\System32\wcmsvc.dll
17:00:59.0944 0x3028 Wcmsvc - ok
17:01:00.0054 0x3028 [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:01:00.0569 0x3028 wcncsvc - ok
17:01:00.0616 0x3028 [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:01:01.0335 0x3028 WcsPlugInService - ok
17:01:01.0382 0x3028 [ F5D4FA3E1F4879C361FFF3855259D2C2, 48C60FE4AAB011E2250157506FF0624031BFA346F8F2F8C6DFDF6F3CAA4F3F42 ] WdBoot C:\Windows\system32\drivers\WdBoot.sys
17:01:01.0475 0x3028 WdBoot - ok
17:01:01.0600 0x3028 [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:01:01.0741 0x3028 Wdf01000 - ok
17:01:01.0819 0x3028 [ 019CC610AD95FF47EAD7C08B7A683B96, BB9D42F8ED90ECA2E7B8C906E06A1EA859FAD9BD1B3492BB1E28C0D00004812A ] WdFilter C:\Windows\system32\drivers\WdFilter.sys
17:01:01.0944 0x3028 WdFilter - ok
17:01:01.0991 0x3028 [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:01:02.0538 0x3028 WdiServiceHost - ok
17:01:02.0569 0x3028 [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:01:03.0272 0x3028 WdiSystemHost - ok
17:01:03.0335 0x3028 [ 6CC1BB8F6851A262E2E824F0E92D5EEF, 45A88A984179BBA38C1F4434C4D6C2823C1FE6AFBE8CB0F656DAE0092D1D5611 ] WdNisDrv C:\Windows\system32\Drivers\WdNisDrv.sys
17:01:03.0397 0x3028 WdNisDrv - ok
17:01:03.0413 0x3028 WdNisSvc - ok
17:01:03.0507 0x3028 [ 91B18D7A1702ED589E67C6C81052B955, 5D1DA8B86106A28E50BBCCB36527CC130D41201F5BE1D3DC5F1D6F7ECCF807BA ] WebClient C:\Windows\System32\webclnt.dll
17:01:03.0819 0x3028 WebClient - ok
17:01:03.0897 0x3028 [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc C:\Windows\system32\wecsvc.dll
17:01:04.0194 0x3028 Wecsvc - ok
17:01:04.0225 0x3028 [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC C:\Windows\system32\wephostsvc.dll
17:01:04.0491 0x3028 WEPHOSTSVC - ok
17:01:04.0572 0x3028 [ 959534ACF085C137D2D094384EF89C45, D029F440789FE170A1C46217C6DE6D78DC0188A5CF33FCCC17FA65D3BC80C2B7 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:01:04.0822 0x3028 wercplsupport - ok
17:01:04.0853 0x3028 [ 82BCCF5FBE47AC9E8CBA2020994DFB3F, EA96C6BD98A701B465D0780EC10BDA92E45FE636D60C1385813AA3B456D8B931 ] WerSvc C:\Windows\System32\WerSvc.dll
17:01:05.0072 0x3028 WerSvc - ok
17:01:05.0181 0x3028 [ BFBE1C5F57FE7A885673A1962D5532B7, F0BD05B257108699FE6AB32EF11F927C31932F27062A705B3FEFA4F5B4C0D8C3 ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys
17:01:05.0212 0x3028 WFPLWFS - ok
17:01:05.0244 0x3028 [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc C:\Windows\System32\wiarpc.dll
17:01:05.0869 0x3028 WiaRpc - ok
17:01:05.0916 0x3028 [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
17:01:06.0009 0x3028 WIMMount - ok
17:01:06.0009 0x3028 WinDefend - ok
17:01:06.0134 0x3028 [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
17:01:06.0747 0x3028 WinHttpAutoProxySvc - ok
17:01:06.0857 0x3028 [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:01:06.0919 0x3028 Winmgmt - ok
17:01:07.0247 0x3028 [ 9CE162EB9057CF079736F4DD00FC0D6C, 412C34557866D2A3B3CDAFA5A03B87C01AACF75E349802E511098B20137028D9 ] WinRM C:\Windows\system32\WsmSvc.dll
17:01:08.0138 0x3028 WinRM - ok
17:01:08.0831 0x3028 [ 54ABBD7039838AE69EBA80E530F38F4C, 20C0CE32EBFAF50D5926E6EC1FD4CE9DC09C2878D38C654EEF039A2543B0DEC6 ] WinSvchostManagerSrv C:\Windows\SysWOW64\cfgmig32.exe
17:01:08.0909 0x3028 WinSvchostManagerSrv - ok
17:01:08.0987 0x3028 [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
17:01:09.0097 0x3028 WinUsb - ok
17:01:09.0456 0x3028 [ 3F5EF31C6AA204B099EE76497DF80A26, CBE648A4E7E1D98A3D8C72582C1CB3C2FD2329EAA24EE4DCAD271AAA6F4D82CE ] WlanSvc C:\Windows\System32\wlansvc.dll
17:01:10.0253 0x3028 WlanSvc - ok
17:01:10.0617 0x3028 [ 5F56C0DE776C7AE43AF749845BFAA1EF, 837993C5853B7E682C7FB8401B7F5D951FFD15E5659EBB1B01DC3F5719ACEE19 ] wlidsvc C:\Windows\system32\wlidsvc.dll
17:01:11.0008 0x3028 wlidsvc - ok
17:01:11.0070 0x3028 [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys
17:01:11.0101 0x3028 WmiAcpi - ok
17:01:11.0179 0x3028 [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:01:11.0226 0x3028 wmiApSrv - ok
17:01:11.0258 0x3028 WMPNetworkSvc - ok
17:01:11.0320 0x3028 [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\Windows\system32\drivers\Wof.sys
17:01:11.0351 0x3028 Wof - ok
17:01:11.0805 0x3028 [ 61BF52E9FFAB27A0B6D621BE26088373, 81291D52C381360E69D51E7DEB05CFAC651A7E9EF781CA23062C0583D0C94708 ] workfolderssvc C:\Windows\system32\workfolderssvc.dll
17:01:12.0430 0x3028 workfolderssvc - ok
17:01:12.0492 0x3028 [ 182561A14F2E93E81E66FE3700D17A5A, FB9A06058A8BCCEDCDC5BF8899D9B2FBA5752C262C5FC6D2B8338884F3303D12 ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys
17:01:12.0570 0x3028 wpcfltr - ok
17:01:12.0617 0x3028 [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:01:13.0136 0x3028 WPCSvc - ok
17:01:13.0214 0x3028 [ 618A19EB31ECA7B7F2AA0207BAF598A5, CB18CF9B781EAB3D775F8201F294A7135E058D6C963D2CC759DCA14D95EED538 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:01:13.0777 0x3028 WPDBusEnum - ok
17:01:13.0839 0x3028 [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys
17:01:13.0902 0x3028 WpdUpFltr - ok
17:01:13.0933 0x3028 [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:01:14.0027 0x3028 ws2ifsl - ok
17:01:14.0136 0x3028 [ 9654DE19551093CD73874281E1573C94, 5E3513EC0CB180D90904BE8970AB64A4434279E8C467AE2CF693254E47B1D11E ] wscsvc C:\Windows\System32\wscsvc.dll
17:01:14.0714 0x3028 wscsvc - ok
17:01:14.0730 0x3028 WSearch - ok
17:01:15.0011 0x3028 [ 95B6670E6933E1DEE19686C55BE709A0, 4B9EB8F1712B7959A71F6DA445D29BD09B25EEFC6B30D736EFE30163D79B233E ] WSService C:\Windows\System32\WSService.dll
17:01:15.0589 0x3028 WSService - ok
17:01:15.0745 0x3028 [ A9A00EF2ABF60694A559A8DB4F4C4875, 787DEB7A96A2A4B255E4E2DAF04E4F52537CF9F70B40042FC6D5DE3AD0BA8CCD ] WTabletServicePro C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
17:01:15.0777 0x3028 WTabletServicePro - ok
17:01:16.0042 0x3028 [ DCD090318EC800CF6275C6835900B0C6, 9E72762EEE46CC0606B909850E6D22E9C8E5C88E82F7C974B2B7C1E5160BEBA7 ] wuauserv C:\Windows\system32\wuaueng.dll
17:01:16.0449 0x3028 wuauserv - ok
17:01:16.0527 0x3028 [ D537815E450A149752C15868392AD1F3, 8788CE493349299DB36E409C8CC3C6EA08301FA492C95D9D556E00BC13A05F13 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:01:16.0542 0x3028 WudfPf - ok
17:01:16.0605 0x3028 [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys
17:01:16.0667 0x3028 WUDFRd - ok
17:01:16.0683 0x3028 [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFSensorLP C:\Windows\System32\drivers\WUDFRd.sys
17:01:16.0730 0x3028 WUDFSensorLP - ok
17:01:16.0761 0x3028 [ 9CDC2059A23E3C9B57696178508777E7, B680A2E2EDA5C8C6A547E7D9B2F2F8E6407C3EA0A01B82A4B88D48A27913A597 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:01:17.0058 0x3028 wudfsvc - ok
17:01:17.0089 0x3028 [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys
17:01:17.0120 0x3028 WUDFWpdFs - ok
17:01:17.0183 0x3028 [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdMtp C:\Windows\system32\DRIVERS\WUDFRd.sys
17:01:17.0214 0x3028 WUDFWpdMtp - ok
17:01:17.0308 0x3028 [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc C:\Windows\System32\wwansvc.dll
17:01:17.0652 0x3028 WwanSvc - ok
17:01:17.0745 0x3028 [ 3B3DD0A864547FD2A45589F8D9B5997D, 1E116A3C5249FC2FEF60C9EBD60DD61BCA5684EA8E21E6B11431328F17547AF8 ] WysePocketCloud C:\Program Files (x86)\Wyse\PocketCloud\PocketCloudService.exe
17:01:17.0745 0x3028 WysePocketCloud - ok
17:01:17.0902 0x3028 [ A85058C7BD11372404E3C3AE63C78E71, 1E30C20187FF273638965119C6395EFD1ECED098CB6A0623C6AD2800458FF4CB ] WyseRemoteAccess C:\Program Files (x86)\Wyse\PocketCloud\WyseRemoteAccess.exe
17:01:18.0027 0x3028 WyseRemoteAccess - ok
17:01:18.0152 0x3028 [ DD0042F0C3B606A6A8B92D49AFB18AD6, 8D3BE4C93D02AF5F42EC46AF598D6DA40C61D467CB2FEE5E222F9C1E7A84B852 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
17:01:18.0199 0x3028 YahooAUService - ok
17:01:18.0714 0x3028 [ C4C5C3198C3261BEC89E6C3631047BAF, 78E5604B4B2A184B328C0669781DF11A35AFC04E7375CAB4DB9A48D74929137D ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
17:01:18.0964 0x3028 ZeroConfigService - ok
17:01:19.0027 0x3028 ================ Scan global ===============================
17:01:19.0074 0x3028 [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\Windows\system32\basesrv.dll
17:01:19.0214 0x3028 [ 00DD4D2ACC2E72155A8AAA82018BEC0D, 9D7CA68B4A81240477FCC85A3CC11EF986093F9D6228A6C5AC608EDAD664068C ] C:\Windows\system32\winsrv.dll
17:01:19.0730 0x3028 [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\Windows\system32\sxssrv.dll
17:01:20.0230 0x3028 [ 067CB90C277DB4A737D5DEABA3055972, C681BF013170F2D92A3FC4D783FC3F200CDC0C8173373B7ECC27FCF32A03CCBD ] C:\Windows\system32\services.exe
17:01:20.0621 0x3028 [ Global ] - ok
17:01:20.0621 0x3028 ================ Scan MBR ==================================
17:01:20.0652 0x3028 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
17:01:20.0683 0x3028 \Device\Harddisk0\DR0 - ok
17:01:20.0683 0x3028 ================ Scan VBR ==================================
17:01:20.0699 0x3028 [ 98952CAAF602C2BA0902E63387ECE558 ] \Device\Harddisk0\DR0\Partition1
17:01:20.0761 0x3028 \Device\Harddisk0\DR0\Partition1 - ok
17:01:20.0793 0x3028 [ 3947C75B37F62521D43F602AEE263786 ] \Device\Harddisk0\DR0\Partition2
17:01:20.0871 0x3028 \Device\Harddisk0\DR0\Partition2 - ok
17:01:20.0902 0x3028 [ 0D52EBCA2192D37E8762FC6A8E0C2F78 ] \Device\Harddisk0\DR0\Partition3
17:01:20.0902 0x3028 \Device\Harddisk0\DR0\Partition3 - ok
17:01:20.0918 0x3028 [ 3ABCC9A33F3511D4B668AF60AC0A7479 ] \Device\Harddisk0\DR0\Partition4
17:01:21.0011 0x3028 \Device\Harddisk0\DR0\Partition4 - ok
17:01:21.0043 0x3028 [ BD106B2BE079F122344C61A55EFAAEA8 ] \Device\Harddisk0\DR0\Partition5
17:01:21.0136 0x3028 \Device\Harddisk0\DR0\Partition5 - ok
17:01:21.0183 0x3028 [ E2AE0B16ED456DB635B48D587CACEBE6 ] \Device\Harddisk0\DR0\Partition6
17:01:21.0214 0x3028 \Device\Harddisk0\DR0\Partition6 - ok
17:01:21.0214 0x3028 ================ Scan generic autorun ======================
17:01:22.0137 0x3028 [ 5BAD798CBAB39F3A56A9CD495320F67E, 668FB3F30DD99CBF9EBDDF4C079636DFD2C7693B3506AC8A6DD1B3CA4B5BAF11 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
17:01:22.0638 0x3028 RTHDVCPL - ok
17:01:22.0950 0x3028 [ 59F8DA04498B80D58FD8638370C5C84F, 522F347F1F1B3991FDC60FF3CE8F8ABB2EDFE65C569D18EF5ACB690FD1BADC82 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
17:01:23.0029 0x3028 RtHDVBg - ok
17:01:23.0138 0x3028 [ 59F8DA04498B80D58FD8638370C5C84F, 522F347F1F1B3991FDC60FF3CE8F8ABB2EDFE65C569D18EF5ACB690FD1BADC82 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
17:01:23.0232 0x3028 RtHDVBg_PushButton - ok
17:01:23.0575 0x3028 [ F36CA74F2FC302EED565E79BA7958780, B5C2FD9CA3D79863CCF1A2F1FE696CFF0289A2564DF7F729F2C32F6A28FA836F ] C:\Windows\system32\igfxtray.exe
17:01:23.0794 0x3028 IgfxTray - ok
17:01:23.0841 0x3028 [ 0E129C925B4A7096E02B10C8DD94B8CF, AF8469F4360288805C46632447E63DFEE0EFE517896BDBA9E7385D7800B0E816 ] C:\Windows\system32\hkcmd.exe
17:01:24.0091 0x3028 HotKeysCmds - ok
17:01:24.0169 0x3028 [ 01AA1D9C5F45D9380D47715A4E485975, 32F1EA3EDB59CE062920D1B1BE1740311A61A5E8808FD86669B5FE0886F04867 ] C:\Windows\system32\igfxpers.exe
17:01:24.0372 0x3028 Persistence - ok
17:01:24.0939 0x3028 [ 9709A4AE6D5D6B047AC2ED0A0C129879, EFABC304C70A548A4B5217CCEC2ADE832EC433AED38E4B1EE5CC2D91F30DF764 ] c:\Program Files\Dell\QuickSet\QuickSet.exe
17:01:25.0283 0x3028 QuickSet - ok
17:01:25.0345 0x3028 [ 4A0477ADCD07EC9D21257A2E456B16C5, CEF9C81730C12283A7600C3D921D89A62B14D1C46544B493F3AF7520DD2D1F79 ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
17:01:25.0361 0x3028 IAStorIcon - ok
17:01:25.0376 0x3028 BTMTrayAgent - ok
17:01:25.0720 0x3028 [ 0525BA5334340C9702841EC843694C99, E3D5DF691DE4CA91269D75531DC8494569F06A89CB511E369A440582BDC59DDF ] C:\Program Files\Total Defense\Internet Security Suite\casc.exe
17:01:25.0908 0x3028 cctray - ok
17:01:25.0986 0x3028 [ 9C249002952F38AFC2DF2E9DCF93025B, 6D7C93890C67DAAE3ADC969FED6B4CAEF04FD06104FEFDA065D0BA0ADB440EFB ] C:\Program Files\Total Defense\Internet Security Suite\Anti-Phishing\caaphupd.exe
17:01:26.0001 0x3028 TotalDefenseOnRun - ok
17:01:26.0048 0x3028 AdobeAAMUpdater-1.0 - ok
17:01:26.0251 0x3028 [ 3F45A43BF4B0E06B42E474B9BDA63985, 0C3F80761C4149B1D417D2F6093639963A2537E020A7BA2F97B7148E3A9FAC64 ] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
17:01:26.0298 0x3028 StartCCC - ok
17:01:26.0361 0x3028 [ 147A3D9DE60A72CD45B89AF471998889, 2EC0D11E6E02A49D6803E34E57EE1926C78383F7E8F37589B7CEDFEAB214F4C2 ] C:\Program Files (x86)\Total Defense\Online Backup\sosuploadagent.exe
17:01:26.0376 0x3028 SOSUAUI - ok
17:01:26.0423 0x3028 [ 652897A77F50CE2FEC1643E1A2E40986, 1203FA6AEFD2B43329F41DFE29FF66BEEAB59330B9052369F5595B080F8F46E6 ] C:\Program Files (x86)\Total Defense\Online Backup\SMessaging.exe
17:01:26.0439 0x3028 SMessaging - ok
17:01:26.0439 0x3028 SwitchBoard - ok
17:01:26.0580 0x3028 [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
17:01:26.0598 0x3028 GrooveMonitor - ok
17:01:26.0723 0x3028 [ 308F2EE28005510DE616409148CF077B, A2126CB185B0053086BDD6F0A16A503F6CA629AC677E4B7AE6D43C770061D087 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
17:01:26.0738 0x3028 SunJavaUpdateSched - ok
17:01:27.0410 0x3028 [ 26B558B2D31C7425B455B00E562EAD93, B64D128A2F1FC42BA4376F8EB08D70F4B705745CB983D0631DB45851BF34BBDF ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
17:01:27.0676 0x3028 AvastUI.exe - ok
17:01:27.0754 0x3028 [ 0EF0822810009D58118CCDFD098FA9F4, 9FAA263057898BCDBCB0A064C463F48D149474AA339A3C4C47626CC118750D2D ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
17:01:27.0770 0x3028 iTunesHelper - ok
17:01:28.0113 0x3028 [ 544A9045E48A7A1F1F5DC6689AD6C8D0, EF42BC7D3F6B6FC3653F426A2276481E4C1B5AB43D9D54446565C190A969BC1C ] C:\Users\Caroline\AppData\Roaming\uTorrent\uTorrent.exe
17:01:28.0207 0x3028 uTorrent - ok
17:01:28.0348 0x3028 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Users\Caroline\AppData\Local\Google\Update\GoogleUpdate.exe
17:01:28.0363 0x3028 Google Update - ok
17:01:28.0738 0x3028 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.5.218.0 ), 0x60100 ( disabled : updated )
17:01:28.0754 0x3028 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2021.515 ), 0x40010 ( disabled : outofdate )
17:01:28.0754 0x3028 AV detected via SS2: Total Defense Anti-Virus, C:\Program Files\Total Defense\Internet Security Suite\casc.exe ( 9.0.0.141 ), 0x41000 ( enabled : updated )
17:01:28.0770 0x3028 FW detected via SS2: Total Defense Personal Firewall, C:\Program Files\Total Defense\Internet Security Suite\casc.exe ( 9.0.0.141 ), 0x40010 ( disabled )
17:01:28.0832 0x3028 Win FW state via NFP2: enabled
17:01:28.0832 0x3028 ============================================================
17:01:28.0832 0x3028 Scan finished
17:01:28.0832 0x3028 ============================================================
17:01:28.0863 0x31c4 Detected object count: 0
17:01:28.0863 0x31c4 Actual detected object count: 0

Edited by cgccook9, 18 November 2014 - 05:32 PM.


#6 cgccook9

cgccook9
  • Topic Starter

  • Members
  • 162 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Michigan
  • Local time:03:02 AM

Posted 18 November 2014 - 05:33 PM

ADWcleaner # AdwCleaner v4.101 - Report created 18/11/2014 at 16:27:21 # Updated 09/11/2014 by Xplode # Database : 2014-11-16.1 [Live] # Operating System : Windows 8.1 (64 bits) # Username : Caroline - CAROLINECOOK # Running from : C:\Users\Caroline\Desktop\Anitvirus Stuff\AdwCleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\ProgramData\WorldWideWebCoupon Folder Deleted : C:\ProgramData\WowwCoUpon Folder Deleted : C:\ProgramData\518aa651436b8097 Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightspark 0.5.3-git Folder Deleted : C:\Program Files (x86)\Lightspark 0.5.3-git Folder Deleted : C:\Program Files (x86)\YourFileDownloader Updater Folder Deleted : C:\Users\Caroline\AppData\Local\Temp\AirInstaller File Deleted : C:\END File Deleted : C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage File Deleted : C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage-journal ***** [ Scheduled Tasks ] ***** Task Deleted : YourFile DownloaderUpdate ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{26B19FA4-E8A1-4A1B-A163-1A1E46F830DD} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Deleted : HKCU\Software\YourFileDownloader Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F} Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} Key Deleted : HKLM\SOFTWARE\{5F189DF5-2D05-472B-9091-84D9848AE48B} Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C} Key Deleted : HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252} Key Deleted : HKLM\SOFTWARE\Lightspark Team Key Deleted : HKLM\SOFTWARE\YourFileDownloader Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1B8A71D1-31D4-EE6A-C32F-836E0BFFA6D3} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F488658-35A7-2AB8-A756-560BA8F103C3} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Lightspark Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}_is1 Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2FA77785-00C3-A920-6452-D4FE5C9C129F} Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SEARCH~1\SEARCH~1\bin\SPVC32~1.DLL Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094 ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17416 -\\ Google Chrome v35.0.1916.153 [C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms} [C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms} [C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3323128&octid=EB_ORIGINAL_CTID&ISID=MB79250F3-9EF3-4CDD-82A1-4A0C0988BEE9&SearchSource=58&CUI=&UM=6&UP=SPC27F7151-E19B-4CDC-B281-383DEE67CB99&q={searchTerms}&SSPV= [C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3323128&octid=EB_ORIGINAL_CTID&ISID=MB79250F3-9EF3-4CDD-82A1-4A0C0988BEE9&SearchSource=58&CUI=&UM=6&UP=SPC27F7151-E19B-4CDC-B281-383DEE67CB99&q={searchTerms}&SSPV= [C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : booedmolknjekdopkepjjeckmjkdpfgl [C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : flpcjncodpafbgdpnkljologafpionhb ************************* AdwCleaner[R0].txt - [5930 octets] - [18/11/2014 13:29:55] AdwCleaner[R1].txt - [6141 octets] - [18/11/2014 16:22:04] AdwCleaner[S0].txt - [5013 octets] - [18/11/2014 16:27:21] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5073 octets] ##########
JRT ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.3.9 (11.15.2014:2) OS: Windows 8.1 x64 Ran by Caroline on Tue 11/18/2014 at 16:22:56.81 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670} Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670} Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45011CF5-E4A9-4F13-9093-F30A784EB9B2} Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{45011CF5-E4A9-4F13-9093-F30A784EB9B2} Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670} Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670} Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45011CF5-E4A9-4F13-9093-F30A784EB9B2} Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{45011CF5-E4A9-4F13-9093-F30A784EB9B2} ~~~ Files ~~~ Folders Successfully deleted: [Folder] C:\ProgramData\deall4rueaall Successfully deleted: [Folder] C:\ProgramData\dowenloaditkeEp Successfully deleted: [Folder] C:\ProgramData\greaatsaavving Successfully deleted: [Folder] C:\ProgramData\saferrwweeb Successfully deleted: [Folder] "C:\ProgramData\pcdr" Successfully deleted: [Folder] "C:\Users\Caroline\AppData\Roaming\pcdr" Successfully deleted: [Folder] "C:\Users\Caroline\AppData\Roaming\search protection" Successfully deleted: [Folder] "C:\Users\Caroline\AppData\Roaming\yourfiledownloader" Successfully deleted: [Folder] "C:\Program Files (x86)\searchprotect" Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin" ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on Tue 11/18/2014 at 16:24:41.14 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#7 muzramp

muzramp

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:South Florida
  • Local time:02:02 AM

Posted 18 November 2014 - 06:05 PM

What is the computer doing when it boots up? Any sort of messages? When yo say avast is freaking out, what is it doing?



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:02 AM

Posted 18 November 2014 - 06:45 PM

Hello , I see a few issues.
Do these after ESET.
One you have 2 antivirus apps avast and total defense. You need to remove one thru the Control Panel and reboot.

Your hosts file looks hijacked. Lets restore it.
Go here..... http://support.microsoft.com/kb/972034#LetMeFixItMyselfAlways
 
Scroll to the Let me fix it myself section and follow those instructions.

How is it now?

Edited by boopme, 18 November 2014 - 07:55 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 cgccook9

cgccook9
  • Topic Starter

  • Members
  • 162 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Michigan
  • Local time:03:02 AM

Posted 18 November 2014 - 07:30 PM

muzramp: Total Defense is always popping up in the corner saying things like "Bonjour Service tried to connect to (some server)" (it's not always that, it's other ridiculous things that aren't malicious) and then it will say Allow or Ignore, and I always choose "Allow Always" but it pops up multiple times after that, or if I turn on my computer again. Whenever I go on the internet, Avast always pops up saying that it blocked a malicious website or something (it's usually Malware) but it always happens at random times and it's not even the website I'm on. They just started doing this within the past two weeks or so. boopme: Yuck, that doesn't sound good. What does a hijacked hosts file mean? Also, which antivirus do you think is better, I'm not sure which to delete. However, I did pay for the Total Defense... But whichever one you recommend I'll keep.

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:02 AM

Posted 18 November 2014 - 07:58 PM

Remove avast...Your host file looks to have a bad a dress in it (5.79.79.150 pagead2.googlesyndication.com)
That doesn't belong there.
Don't forget ESET/// It may need several hours.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 cgccook9

cgccook9
  • Topic Starter

  • Members
  • 162 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Michigan
  • Local time:03:02 AM

Posted 18 November 2014 - 08:06 PM

Ok, I just uninstalled Avast. ESET is on step 3 out of 4 at 16%.

#12 cgccook9

cgccook9
  • Topic Starter

  • Members
  • 162 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Michigan
  • Local time:03:02 AM

Posted 19 November 2014 - 01:18 AM

ESET just finished scanning (after 5 hours) and it found three infected items. I was so relieved it finished that I forgot I had to get the log myself. So I just quit the program expecting a log to pop up but it didn't. I started the scan again, hopefully it won't take as long.

#13 cgccook9

cgccook9
  • Topic Starter

  • Members
  • 162 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Michigan
  • Local time:03:02 AM

Posted 19 November 2014 - 09:31 AM

Ok finally finished. Here's the log. C:\Program Files (x86)\Dell Backup and Recovery\Components\DBRUpdate\hstart.exe a variant of Win32/HiddenStart.A potentially unsafe application deleted - quarantined C:\Users\Caroline\AppData\Local\Temp\air7C88.exe a variant of Win32/Adware.SpeedingUpMyPC.T.gen application cleaned by deleting - quarantined C:\Users\Caroline\AppData\Local\Temp\nsbC719.tmp\MiniStubUtils.dll Win32/Conduit.SearchProtect.N potentially unwanted application deleted - quarantined C:\Users\Caroline\AppData\Local\Temp\nsnF02D.tmp\StubUtils.dll a variant of Win32/Conduit.SearchProtect.N potentially unwanted application deleted - quarantined

#14 cgccook9

cgccook9
  • Topic Starter

  • Members
  • 162 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Michigan
  • Local time:03:02 AM

Posted 19 November 2014 - 10:08 AM

Well, I did what the webpage asked (for some reason, I couldn't see the actual article so I had to view it on another computer..) and I haven't really noticed much of a difference..? I still got one of those messages from Total Defense saying that "Internet Explorer wants to connect to 134.170.185.126 &amp;amp;amp; Port 443 over Protocol TCP." I did a quick scan on Total Defense and it found 73 threats. I feel like I haven't gotten anywhere...
Also on Total Defense, it says that my email protection is off, so when I click Fix Now, it says that it fixed it successfully but when I close the window, it's still telling me that my email is unprotected?! I'm gonna try restarting my computer, see if that helps.
Update: Restarting the computer did not help, same problems. I also noticed something interesting when I restarted my computer, I don't know why I never noticed it till now (I always just thought Total Defense was being wonky). When I start my computer, ever since all this began, I've been getting two notifications every time from Total saying that it detected a new network (which has been very annoying). It always popped up twice even after I approved it, but I never saw that one network was my own wifi, and the other was called "fe80::99b3:6a43:762:8d65" which is weird...
Another update (I'm an idiot). So I didn't realize I was supposed to save the host file as "host" with the quotation marks. So now it is actually saved as a file. It seems to be much better now according to task manager (before, CPU usage and Disc were operating around 100%. It's now around 1% :) I'm still having the weird Internet problems I had before (ie: gmail not responding on Internet Explorer, information not showing up on some websites etc)but it's much more responsive now. Is there anything else I can do to absolutely ensure that there is nothing left on my computer and to keep it from happening again?

Edited by cgccook9, 19 November 2014 - 11:37 AM.


#15 Chuckracer

Chuckracer

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Eaton, Ohio
  • Local time:02:02 AM

Posted 19 November 2014 - 03:55 PM

ADWcleaner # AdwCleaner v4.101 - Report created 18/11/2014 at 16:27:21 # Updated 09/11/2014 by Xplode # Database : 2014-11-16.1 [Live] # Operating System : Windows 8.1 (64 bits) # Username : Caroline - CAROLINECOOK # Running from : C:\Users\Caroline\Desktop\Anitvirus Stuff\AdwCleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\ProgramData\WorldWideWebCoupon Folder Deleted : C:\ProgramData\WowwCoUpon Folder Deleted : C:\ProgramData\518aa651436b8097 Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightspark 0.5.3-git Folder Deleted : C:\Program Files (x86)\Lightspark 0.5.3-git Folder Deleted : C:\Program Files (x86)\YourFileDownloader Updater Folder Deleted : C:\Users\Caroline\AppData\Local\Temp\AirInstaller File Deleted : C:\END File Deleted : C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage File Deleted : C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage-journal ***** [ Scheduled Tasks ] ***** Task Deleted : YourFile DownloaderUpdate ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKCU\Software\AppDataLow\{5F189DF5-2D05-472B-9091-84D9848AE48B} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{26B19FA4-E8A1-4A1B-A163-1A1E46F830DD} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88} Key Deleted : HKCU\Software\YourFileDownloader Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F} Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} Key Deleted : HKLM\SOFTWARE\{5F189DF5-2D05-472B-9091-84D9848AE48B} Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C} Key Deleted : HKLM\SOFTWARE\{77D46E27-0E41-4478-87A6-AABE6FBCF252} Key Deleted : HKLM\SOFTWARE\Lightspark Team Key Deleted : HKLM\SOFTWARE\YourFileDownloader Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1B8A71D1-31D4-EE6A-C32F-836E0BFFA6D3} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{5F488658-35A7-2AB8-A756-560BA8F103C3} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Lightspark Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{37476589-E48E-439E-A706-56189E2ED4C4}_is1 Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{2FA77785-00C3-A920-6452-D4FE5C9C129F} Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SEARCH~1\SEARCH~1\bin\SPVC32~1.DLL Data Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094 ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.17416 -\\ Google Chrome v35.0.1916.153 [C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms} [C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms} [C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3323128&octid=EB_ORIGINAL_CTID&ISID=MB79250F3-9EF3-4CDD-82A1-4A0C0988BEE9&SearchSource=58&CUI=&UM=6&UP=SPC27F7151-E19B-4CDC-B281-383DEE67CB99&q={searchTerms}&SSPV= [C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3323128&octid=EB_ORIGINAL_CTID&ISID=MB79250F3-9EF3-4CDD-82A1-4A0C0988BEE9&SearchSource=58&CUI=&UM=6&UP=SPC27F7151-E19B-4CDC-B281-383DEE67CB99&q={searchTerms}&SSPV= [C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : booedmolknjekdopkepjjeckmjkdpfgl [C:\Users\Caroline\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : flpcjncodpafbgdpnkljologafpionhb ************************* AdwCleaner[R0].txt - [5930 octets] - [18/11/2014 13:29:55] AdwCleaner[R1].txt - [6141 octets] - [18/11/2014 16:22:04] AdwCleaner[S0].txt - [5013 octets] - [18/11/2014 16:27:21] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5073 octets] ##########
JRT ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.3.9 (11.15.2014:2) OS: Windows 8.1 x64 Ran by Caroline on Tue 11/18/2014 at 16:22:56.81 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs ~~~ Registry Keys Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670} Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670} Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670} Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45011CF5-E4A9-4F13-9093-F30A784EB9B2} Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{45011CF5-E4A9-4F13-9093-F30A784EB9B2} Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670} Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670} Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{45011CF5-E4A9-4F13-9093-F30A784EB9B2} Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{45011CF5-E4A9-4F13-9093-F30A784EB9B2} ~~~ Files ~~~ Folders Successfully deleted: [Folder] C:\ProgramData\deall4rueaall Successfully deleted: [Folder] C:\ProgramData\dowenloaditkeEp Successfully deleted: [Folder] C:\ProgramData\greaatsaavving Successfully deleted: [Folder] C:\ProgramData\saferrwweeb Successfully deleted: [Folder] "C:\ProgramData\pcdr" Successfully deleted: [Folder] "C:\Users\Caroline\AppData\Roaming\pcdr" Successfully deleted: [Folder] "C:\Users\Caroline\AppData\Roaming\search protection" Successfully deleted: [Folder] "C:\Users\Caroline\AppData\Roaming\yourfiledownloader" Successfully deleted: [Folder] "C:\Program Files (x86)\searchprotect" Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin" ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on Tue 11/18/2014 at 16:24:41.14 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

I really don't care if one of my posts was removed. I just think its crazy for someone to be putting this long of a log, most people like me have no clue anyways. What are you doing writing a book? Chuck






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users