Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

proxy 127.0.0.1 problem - new to the forum


  • This topic is locked This topic is locked
18 replies to this topic

#1 pkshome

pkshome

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 02 January 2015 - 07:18 PM

Mod Edit: Moved to proper forum ~~ boopme

I am new to the forum but have used some of your recommendations in the past and now I am over my head.  I my proxy server has been corrupted and the normal programs will not clean it up.  Below is my FRST Scans.
 
Thank you for any help you can provide.
 
 
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-01-2015
Ran by Wendy (administrator) on MIKEANDWENDY-PC on 02-01-2015 17:59:11
Running from C:\Users\Wendy\Downloads
Loaded Profiles: UpdatusUser & Wendy & Administrator (Available profiles: UpdatusUser & Wendy & Administrator)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\Common\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Seagate) C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(PIXELA CORPORATION) C:\Program Files (x86)\PIXELA\ImageMixer 3 SE Ver.6\Transfer Utility\CameraMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\SBAudigy\Volume Panel\VolPanlu.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
() C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvta.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Acronis) C:\Program Files (x86)\Common Files\Seagate\CDP\afcdpsrv.exe
(Seagate) C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe
(Wacom Technology, Corp.) C:\Windows\System32\Wacom_Tablet.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Wacom Technology, Corp.) C:\Windows\System32\WTablet\Wacom_TabletUser.exe
(Wacom Technology, Corp.) C:\Windows\System32\Wacom_Tablet.exe
() C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvtaHelper.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Seagate) C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(PIXELA CORPORATION) C:\Program Files (x86)\PIXELA\ImageMixer 3 SE Ver.6\Transfer Utility\CameraMonitor.exe
(Sentrilock, LLC) C:\Program Files (x86)\SentriCardUtility\CardUtility.exe
(Wacom Technology, Corp.) C:\Windows\System32\WTablet\Wacom_TabletUser.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\SBAudigy\Volume Panel\VolPanlu.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Seagate) C:\Program Files (x86)\Seagate\BlackArmorBackup\BlackArmorBackupMonitor.exe
(Wacom Technology, Corp.) C:\Windows\System32\Wacom_Tablet.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil64_16_0_0_235_ActiveX.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.EXE
(Microsoft) C:\Program Files (x86)\Microsoft MapPoint 2011\StreetsOlkShim.exe
(Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [136472 2009-06-10] (Acronis)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1331288 2014-08-22] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [6931488 2008-11-11] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2008-11-11] (Realtek Semiconductor Corp.)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2114376 2009-07-06] (CANON INC.)
HKLM\...\Run: [CanonSolutionMenu] => C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [722256 2008-12-11] (CANON INC.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1796056 2014-08-19] (NVIDIA Corporation)
HKLM\...\Run: [Seagate Scheduler2 Service] => C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe [395320 2012-10-31] (Seagate)
HKLM-x32\...\Run: [P17RunE] => RunDll32 P17RunE.dll,RunDLLEntry
HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [118624 2009-07-24] (Microsoft Corporation)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [1326080 2009-06-10] (Acronis)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [VolPanel] => C:\Program Files (x86)\Creative\SBAudigy\Volume Panel\VolPanlu.exe [180224 2007-02-28] (Creative Technology Ltd)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [BlackArmorBackupMonitor.exe] => C:\Program Files (x86)\Seagate\BlackArmorBackup\BlackArmorBackupMonitor.exe [5547704 2012-10-31] (Seagate)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKLM\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-449528145-1685180860-1442867481-1012\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-09-03] (Google Inc.)
HKU\S-1-5-21-449528145-1685180860-1442867481-1012\...\Run: [HP Officejet Pro 8600 (NET)] => C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-449528145-1685180860-1442867481-1012\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-449528145-1685180860-1442867481-1012\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-449528145-1685180860-1442867481-1012\...\Policies\Explorer: [RestrictRun] 0
HKU\S-1-5-21-449528145-1685180860-1442867481-500\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKU\S-1-5-21-449528145-1685180860-1442867481-500\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [30877280 2014-12-11] (Skype Technologies S.A.)
HKU\S-1-5-21-449528145-1685180860-1442867481-500\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-09-03] (Google Inc.)
HKU\S-1-5-21-449528145-1685180860-1442867481-500\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-449528145-1685180860-1442867481-500\...\MountPoints2: {a25e859f-8919-11de-b696-806e6f6e6963} - D:\Setup.exe
Lsa: [Authentication Packages] msv1_0 relog_ap
Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ColorVisionStartup.lnk
ShortcutTarget: ColorVisionStartup.lnk -> C:\Program Files (x86)\ColorVision\Utility\ColorVisionStartup.exe (ColorVision Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ImageMixer 3 SE Camera Monitor Ver.6.lnk
ShortcutTarget: ImageMixer 3 SE Camera Monitor Ver.6.lnk -> C:\Program Files (x86)\PIXELA\ImageMixer 3 SE Ver.6\Transfer Utility\CameraMonitor.exe (PIXELA CORPORATION)
Startup: C:\Users\Wendy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SentriCard Utility.lnk
ShortcutTarget: SentriCard Utility.lnk -> C:\Program Files (x86)\SentriCardUtility\CardUtility.exe (Sentrilock, LLC)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-449528145-1685180860-1442867481-1012\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyEnable: [HKLM] => ProxyEnable is set.
ProxyEnable: [HKLM-x32] => ProxyEnable is set.
ProxyServer: [HKLM] => http=127.0.0.1:9880
ProxyServer: [HKLM-x32] => http=127.0.0.1:9880
ProxyEnable: [S-1-5-21-449528145-1685180860-1442867481-500] => Internet Explorer proxy is enabled.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-449528145-1685180860-1442867481-1012\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-449528145-1685180860-1442867481-1012\Software\Microsoft\Internet Explorer\Main,Start Page = http://xfinity.comcast.net/
HKU\S-1-5-21-449528145-1685180860-1442867481-500\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/
HKU\S-1-5-21-449528145-1685180860-1442867481-500\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-449528145-1685180860-1442867481-1009 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-449528145-1685180860-1442867481-1012 -> {63140ECF-C629-BE59-8F0E-90B4FF340C03} URL = http://www.bing.com/search?q={searchTerms}&pc=Z128&form=ZGAIDF&install_date=20111212&iesrc={referrer:source}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKU\S-1-5-21-449528145-1685180860-1442867481-1012 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKU\S-1-5-21-449528145-1685180860-1442867481-500 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKU\S-1-5-21-449528145-1685180860-1442867481-500 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/C/0/C/C0CBBA88-A6F2-48D9-9B0E-1719D1177202/LegitCheckControl.cab
DPF: HKLM-x32 {3BFFE033-BF43-11D5-A271-00A024A51325} https://mygmgw.gm.com/http://usabhemama41.mail.gm.com/iNotes6W.cab
DPF: HKLM-x32 {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} http://www.mpix.com/customer/uploading/activex/ImageUploader5.cab
DPF: HKLM-x32 {983A9C21-8207-4B58-BBB8-0EBC3D7C5505} https://mygmgw.gm.com/http://usabhemama41.mail.gm.com/dwa8W.cab
DPF: HKLM-x32 {BEA7310D-06C4-4339-A784-DC3804819809} http://samsclubus.pnimedia.com/upload/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab
DPF: HKLM-x32 {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} http://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-29-0.cab
DPF: HKLM-x32 {C7DEDA04-2FFF-4B81-AE66-0A0E0EF4AD2F} http://jeweloscophoto.lifepics.com/net/Uploader/LPUploader57.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} https://akamaicdn.webex.com/client/WBXclient-T27L10NSP25-10481/webex/ieatgpc1.cab
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: HKLM-x32 {EDFCB7CB-942C-4822-AF14-F0B687409848} http://submit.shutterstock.com/ImageUploader4.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/15109/CTPID.cab
DPF: HKLM-x32 {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logmein.com//activex/ractrl.cab?lmi=1074
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
FireFox:
========
FF ProfilePath: C:\Users\Wendy\AppData\Roaming\Mozilla\Firefox\Profiles\nf1mwsqk.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.31211.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @canon.com/MycameraPlugin -> C:\Program Files (x86)\Canon\ZoomBrowser EX\Program\NPCIG.dll (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.31211.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin-x32: @nbc.com/DirectPlayer -> C:\Program Files (x86)\NBC Direct\npDirectPlayerMozilla.dll No File
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-11-10]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-21]
FF HKLM-x32\...\Firefox\Extensions: [quickprint@hp.com] - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension
FF Extension: HP Smart Print - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension [2012-08-26]
FF HKU\S-1-5-21-449528145-1685180860-1442867481-1012\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKU\S-1-5-21-449528145-1685180860-1442867481-500\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-02]
CHR Extension: (Google Docs) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-02]
CHR Extension: (Google Drive) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-01-02]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-23]
CHR Extension: (YouTube) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-01-02]
CHR Extension: (Google Search) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-01-02]
CHR Extension: (Google Sheets) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-02]
CHR Extension: (Google Wallet) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-27]
CHR Extension: (Gmail) - C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-01-02]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2009-08-23] (Adobe Systems) [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2009-11-05] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2009-09-30] (Creative Labs) [File not signed]
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [307200 2008-11-18] (Creative Technology Ltd) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864 2014-12-11] (Hewlett-Packard Company)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [107912 2008-10-09] ()
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2014-08-22] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [368624 2014-08-22] (Microsoft Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 ReyhoogIvta; C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvta.exe [3938816 2014-12-23] () [File not signed]
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [241734 2008-06-29] () [File not signed]
R2 sfcdpsrv; C:\Program Files (x86)\Common Files\Seagate\CDP\afcdpsrv.exe [3246040 2014-11-25] (Acronis)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 TabletServiceWacom; C:\Windows\system32\Wacom_Tablet.exe [3647272 2009-03-26] (Wacom Technology, Corp.)
S3 WiselinkPro; C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe [3007488 2010-02-17] () [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
S3 E100B; C:\Windows\System32\DRIVERS\efe5b32e.sys [192256 2009-06-10] (Intel Corporation)
S4 LMIRfsClientNP; No ImagePath
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [269008 2014-07-17] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-05-14] ()
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [125584 2014-07-17] (Microsoft Corporation)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [31744 2009-01-09] (Research in Motion Ltd)
R3 S3XXx64; C:\Windows\System32\DRIVERS\S3XXx64.sys [73984 2014-06-16] (Identive)
R1 SbFw; C:\Windows\System32\drivers\SbFw.sys [253528 2011-04-05] (Sunbelt Software, Inc.)
S3 SBFWIMCL; C:\Windows\System32\DRIVERS\sbfwim.sys [84568 2011-02-08] (Sunbelt Software, Inc.)
R3 SBFWIMCLMP; C:\Windows\System32\DRIVERS\SBFWIM.sys [84568 2011-02-08] (Sunbelt Software, Inc.)
S3 sbhips; C:\Windows\System32\drivers\sbhips.sys [60504 2011-04-05] (Sunbelt Software, Inc.)
R1 SbTis; C:\Windows\System32\drivers\sbtis.sys [94296 2011-04-05] (Sunbelt Software, Inc.)
S3 SCR3xx USB Smart Card Reader64; C:\Windows\System32\DRIVERS\S3XXx64.sys [73984 2014-06-16] (Identive)
S3 Spyder2; C:\Windows\System32\DRIVERS\Spyder2.sys [15360 2007-01-17] ()
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S1 cherimoya; system32\drivers\cherimoya.sys [X]
S0 Lbd; system32\DRIVERS\Lbd.sys [X]
S2 LMIInfo; \??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [X]
S3 motandroidusb; System32\Drivers\motoandroid.sys [X]
S3 RimUsb; System32\Drivers\RimUsb_AMD64.sys [X]
S1 rwcbufkd; \??\C:\Windows\system32\drivers\rwcbufkd.sys [X]
S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-02 17:59 - 2015-01-02 17:59 - 00030241 _____ () C:\Users\Wendy\Downloads\FRST.txt
2015-01-02 17:58 - 2015-01-02 17:59 - 02123264 _____ (Farbar) C:\Users\Wendy\Downloads\FRST64.exe
2015-01-02 17:43 - 2015-01-02 17:43 - 00066528 _____ () C:\Users\Wendy\Downloads\FLVPlayer-Chrome.exe
2015-01-02 17:37 - 2015-01-02 17:38 - 00000000 ___DC () C:\32788R22FWJFW
2015-01-02 17:33 - 2015-01-02 17:33 - 00058910 _____ () C:\Windows\setupact.log
2015-01-02 17:33 - 2015-01-02 17:33 - 00000310 _____ () C:\Windows\PFRO.log
2015-01-02 17:33 - 2015-01-02 17:33 - 00000000 _____ () C:\Windows\setuperr.log
2015-01-02 17:30 - 2015-01-02 17:30 - 02173952 _____ () C:\Users\Administrator\Downloads\AdwCleaner.exe
2015-01-02 17:20 - 2015-01-02 17:20 - 00038396 _____ () C:\Users\Administrator\Documents\cc_20150102_172041.reg
2015-01-02 17:09 - 2015-01-02 17:09 - 02173952 _____ () C:\Users\Wendy\Downloads\AdwCleaner.exe
2015-01-02 14:21 - 2015-01-02 17:59 - 00000000 ___DC () C:\FRST
2015-01-02 13:38 - 2015-01-02 13:38 - 00041309 ____C () C:\ComboFix.txt
2015-01-02 10:51 - 2015-01-02 17:38 - 00090552 _____ () C:\Windows\WindowsUpdate.log
2015-01-02 10:43 - 2015-01-02 10:43 - 00469642 _____ () C:\Users\Administrator\Documents\cc_20150102_104305.reg
2015-01-02 09:55 - 2015-01-02 09:55 - 00001144 _____ () C:\Users\Wendy\Desktop\Continue Adobe Flash Player Installation.lnk
2015-01-01 14:39 - 2015-01-01 14:39 - 00003886 _____ () C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2014-12-31 16:24 - 2014-12-31 16:24 - 00000000 ____D () C:\Users\Wendy\Downloads\new-year-card
2014-12-31 16:18 - 2014-12-31 16:18 - 14920834 _____ () C:\Users\Wendy\Downloads\new-year-card.zip
2014-12-31 16:18 - 2014-12-31 16:18 - 00960354 _____ () C:\Users\Wendy\Downloads\wallpaper-3.zip
2014-12-31 16:08 - 2014-12-31 16:08 - 00027377 _____ () C:\Users\Wendy\Documents\New Year.zip
2014-12-31 15:12 - 2014-12-31 15:12 - 00018672 _____ () C:\Users\Wendy\Documents\NY.zip
2014-12-31 14:56 - 2014-12-31 15:46 - 00000000 ____D () C:\Users\Wendy\AppData\Roaming\dslrBooth
2014-12-31 14:56 - 2014-12-31 14:56 - 00001092 _____ () C:\Users\Wendy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\dslrBooth.lnk
2014-12-31 14:56 - 2014-12-31 14:56 - 00001074 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\dslrBooth.lnk
2014-12-31 14:56 - 2014-12-31 14:56 - 00001062 _____ () C:\Users\Wendy\Desktop\dslrBooth.lnk
2014-12-31 14:56 - 2014-12-31 14:56 - 00000089 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2014-12-31 14:55 - 2014-12-31 14:56 - 00000000 ___DC () C:\Program Files (x86)\dslrBooth
2014-12-31 14:55 - 2014-12-31 14:55 - 00000000 ____D () C:\ProgramData\InstallMate
2014-12-31 14:47 - 2014-12-31 14:47 - 00000236 _____ () C:\Users\Wendy\Documents\sparkbooth-uploads.txt
2014-12-31 14:43 - 2014-12-31 14:46 - 00000000 ____D () C:\Users\Wendy\Documents\sparkbooth
2014-12-31 14:42 - 2014-12-31 14:42 - 00000000 ____D () C:\Users\Wendy\AppData\Roaming\com.johnwupresents.sparkbooth4
2014-12-31 14:28 - 2014-12-31 14:28 - 00110682 _____ () C:\Windows\SysWOW64\errordetails.xml
2014-12-31 14:22 - 2014-12-31 14:22 - 00003126 _____ () C:\Windows\System32\Tasks\RPC
2014-12-31 14:21 - 2014-12-31 14:33 - 00000000 ___DC () C:\Program Files (x86)\GU Player
2014-12-31 14:21 - 2014-12-31 14:22 - 00000000 _SHDC () C:\Program Files (x86)\ReyhoogIvta
2014-12-31 14:21 - 2014-12-31 14:21 - 00000258 __RSH () C:\ProgramData\ntuser.pol
2014-12-31 14:21 - 2014-12-31 14:21 - 00000000 ____D () C:\Users\Wendy\AppData\Local\Comodo
2014-12-31 14:21 - 2014-12-31 14:21 - 00000000 ____D () C:\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Google
2014-12-31 14:21 - 2014-12-31 14:21 - 00000000 ____D () C:\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Comodo
2014-12-31 14:21 - 2014-12-31 14:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-12-31 14:21 - 2014-12-31 14:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-12-31 14:21 - 2014-12-31 14:21 - 00000000 ____D () C:\Users\Guest
2014-12-31 14:21 - 2014-12-31 14:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo
2014-12-31 14:14 - 2014-12-31 14:14 - 00000000 ____D () C:\Users\Wendy\Desktop\photobooth_for_windows_7_by_vhanla
2014-12-17 21:55 - 2014-12-12 23:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-17 21:55 - 2014-12-12 21:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-12-17 11:25 - 2014-12-17 11:25 - 00000000 ____D () C:\Users\Wendy\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2014-12-17 10:19 - 2014-12-17 10:19 - 00002047 _____ () C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk
2014-12-17 10:18 - 2014-12-17 10:18 - 00000000 ____D () C:\Users\Wendy\AppData\Local\Hewlett-Packard
2014-12-15 18:10 - 2014-12-15 18:10 - 05656594 _____ (Snap-on Business Solutions ) C:\Users\Wendy\Downloads\imgrdwnld.exe
2014-12-10 03:27 - 2014-12-10 03:27 - 00000000 ____D () C:\Windows\system32\appraiser
2014-12-10 03:03 - 2014-10-17 20:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-12-10 03:03 - 2014-10-17 19:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-12-09 16:54 - 2014-12-03 20:50 - 00830976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2014-12-09 16:54 - 2014-12-03 20:50 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2014-12-09 16:54 - 2014-12-03 20:50 - 00413184 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-12-09 16:54 - 2014-12-03 20:50 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-12-09 16:54 - 2014-12-03 20:50 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-12-09 16:54 - 2014-12-03 20:50 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-12-09 16:54 - 2014-12-03 20:44 - 01083392 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-12-09 16:54 - 2014-12-01 17:28 - 01232040 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2014-12-09 16:54 - 2014-11-26 19:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-09 16:54 - 2014-11-26 19:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-09 16:54 - 2014-11-21 21:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-09 16:54 - 2014-11-21 21:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-09 16:54 - 2014-11-21 21:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-09 16:54 - 2014-11-21 20:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-09 16:54 - 2014-11-21 20:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-09 16:54 - 2014-11-21 20:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-09 16:54 - 2014-11-21 20:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-09 16:54 - 2014-11-21 20:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-09 16:54 - 2014-11-21 20:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-09 16:54 - 2014-11-21 20:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-09 16:54 - 2014-11-21 20:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-09 16:54 - 2014-11-21 20:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-09 16:54 - 2014-11-21 20:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-09 16:54 - 2014-11-21 20:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-09 16:54 - 2014-11-21 20:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-09 16:54 - 2014-11-21 20:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-09 16:54 - 2014-11-21 20:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-09 16:54 - 2014-11-21 20:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-09 16:54 - 2014-11-21 20:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-09 16:54 - 2014-11-21 20:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-09 16:54 - 2014-11-21 20:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-09 16:54 - 2014-11-21 20:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-09 16:54 - 2014-11-21 20:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-09 16:54 - 2014-11-21 20:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-09 16:54 - 2014-11-21 20:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-09 16:54 - 2014-11-21 20:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-09 16:54 - 2014-11-21 20:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-09 16:54 - 2014-11-21 19:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-09 16:54 - 2014-11-21 19:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-09 16:54 - 2014-11-21 19:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-12-09 16:54 - 2014-11-21 19:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-12-09 16:54 - 2014-11-21 19:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-09 16:54 - 2014-11-21 19:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-09 16:54 - 2014-11-21 19:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-09 16:54 - 2014-11-21 19:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-09 16:54 - 2014-11-21 19:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-09 16:54 - 2014-11-21 19:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-09 16:54 - 2014-11-21 19:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-09 16:54 - 2014-11-21 19:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-09 16:54 - 2014-11-21 19:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-09 16:54 - 2014-11-21 19:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-09 16:54 - 2014-11-21 19:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-09 16:54 - 2014-11-21 19:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-09 16:54 - 2014-11-21 19:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-09 16:54 - 2014-11-21 19:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-09 16:54 - 2014-11-21 19:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-09 16:54 - 2014-11-21 19:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-09 16:54 - 2014-11-21 19:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-09 16:54 - 2014-11-21 19:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-09 16:54 - 2014-11-21 19:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-09 16:54 - 2014-11-21 18:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-09 16:54 - 2014-11-21 18:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-09 16:54 - 2014-11-10 21:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-09 16:54 - 2014-11-10 20:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-09 16:54 - 2014-11-10 19:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-09 16:53 - 2014-11-07 21:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-12-09 16:53 - 2014-11-07 20:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-12-09 16:53 - 2014-10-29 20:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2014-12-09 16:53 - 2014-10-29 19:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2014-12-09 16:53 - 2014-10-02 20:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-12-09 16:53 - 2014-10-02 20:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-09 16:53 - 2014-10-02 20:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-12-09 16:53 - 2014-10-02 20:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-12-09 16:53 - 2014-10-02 20:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-12-09 16:53 - 2014-10-02 19:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-12-09 16:53 - 2014-10-02 19:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-12-09 16:53 - 2014-10-02 19:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-12-09 16:53 - 2014-10-02 19:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2014-12-09 16:53 - 2014-10-02 19:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-02 17:56 - 2013-01-16 19:11 - 00000000 ____D () C:\Users\Wendy\AppData\Roaming\Skype
2015-01-02 17:41 - 2009-11-05 18:20 - 00019344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-02 17:41 - 2009-11-05 18:20 - 00019344 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-02 17:38 - 2009-07-13 23:13 - 00786578 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-02 17:33 - 2009-08-14 16:00 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-02 17:33 - 2009-07-13 23:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-02 17:32 - 2014-05-01 05:40 - 00000000 ___DC () C:\AdwCleaner
2015-01-02 17:21 - 2014-04-30 13:25 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-02 17:13 - 2012-04-12 14:44 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-02 16:20 - 2009-11-06 05:15 - 00003986 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{6AA88F12-CB33-44EB-8303-C9147E878926}
2015-01-02 13:44 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-01-02 13:38 - 2014-05-01 06:02 - 00000000 ___DC () C:\Qoobox
2015-01-02 13:35 - 2009-07-13 20:34 - 00000215 ____C () C:\Windows\system.ini
2015-01-02 13:06 - 2013-06-26 08:39 - 00000000 ____D () C:\Users\Wendy\Documents\Mike
2015-01-02 13:03 - 2014-05-01 06:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-01-02 13:02 - 2014-05-01 06:14 - 00000865 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-01-02 13:02 - 2014-05-01 06:14 - 00000000 ___DC () C:\Program Files\CCleaner
2015-01-02 11:22 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\Globalization
2015-01-02 10:41 - 2012-11-22 14:19 - 00000000 ___DC () C:\Users\Administrator\AppData\Local\MigWiz
2015-01-02 09:58 - 2014-03-26 17:33 - 00000000 ____D () C:\ProgramData\LogMeIn
2015-01-02 09:43 - 2009-07-13 21:20 - 00000000 __RSD () C:\Windows\Media
2015-01-02 09:42 - 2012-10-07 18:43 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2015-01-01 14:39 - 2009-08-23 06:23 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Skype
2014-12-31 16:29 - 2014-05-07 07:11 - 00000000 ____D () C:\Users\Wendy\Downloads\DAD
2014-12-31 14:44 - 2011-08-10 18:34 - 00000349 _____ () C:\Users\Public\Documents\PCLECHAL.INI
2014-12-31 14:43 - 2012-12-22 12:54 - 00000000 ____D () C:\Users\Wendy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 14
2014-12-31 14:38 - 2014-04-30 13:24 - 00001145 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-12-31 14:38 - 2014-04-30 13:24 - 00000000 ___DC () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-31 14:38 - 2014-04-30 13:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-12-31 14:27 - 2009-08-23 06:22 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-12-31 14:27 - 2009-08-23 06:22 - 00000000 ____D () C:\ProgramData\Skype
2014-12-31 14:21 - 2012-11-28 18:47 - 00000000 ____D () C:\Users\Wendy\AppData\Local\Google
2014-12-31 14:21 - 2009-09-07 06:41 - 00000000 ___HD () C:\Users\Administrator\AppData\Local\Google
2014-12-31 14:21 - 2009-09-03 17:39 - 00000000 ___DC () C:\Program Files (x86)\Google
2014-12-31 14:21 - 2009-07-13 21:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-12-31 14:21 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-12-18 10:56 - 2011-04-10 10:25 - 00524408 _____ () C:\Windows\system32\GDIPFONTCACHEV1.DAT
2014-12-17 11:25 - 2014-08-28 14:54 - 00000000 ____D () C:\Users\Wendy\AppData\Local\Adobe
2014-12-17 11:25 - 2012-11-28 08:04 - 00000000 ____D () C:\Users\Wendy\AppData\Roaming\Adobe
2014-12-17 10:28 - 2012-04-12 14:44 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-17 10:28 - 2012-04-12 14:44 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-12-17 10:28 - 2011-05-21 07:13 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-17 10:25 - 2012-05-18 20:48 - 00000000 ___DC () C:\Program Files\Microsoft Silverlight
2014-12-17 10:25 - 2012-05-18 20:48 - 00000000 ___DC () C:\Program Files (x86)\Microsoft Silverlight
2014-12-17 10:25 - 2009-07-13 22:45 - 05798256 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-12-17 10:19 - 2009-11-05 18:29 - 00000000 ____D () C:\ProgramData\HP
2014-12-17 10:19 - 2009-08-24 16:04 - 00000000 ___DC () C:\Program Files (x86)\HP
2014-12-17 10:15 - 2012-11-28 18:45 - 00524408 _____ () C:\Users\Wendy\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-17 10:13 - 2012-08-26 09:02 - 00000000 ___DC () C:\Program Files (x86)\Hewlett-Packard
2014-12-13 03:01 - 2012-05-18 20:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-12-12 08:02 - 2012-04-12 16:27 - 00002226 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-12-11 16:14 - 2009-11-17 21:18 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\HpUpdate
2014-12-11 13:10 - 2013-11-27 20:42 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-10 04:08 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\rescache
2014-12-10 03:27 - 2014-05-06 02:00 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-12-10 03:27 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-10 03:27 - 2009-07-13 21:20 - 00000000 ____D () C:\Windows\AppCompat
2014-12-10 03:12 - 2009-08-14 15:54 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-12-10 03:11 - 2013-11-27 18:20 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-10 03:05 - 2009-11-20 12:52 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
Files to move or delete:
====================
C:\Users\Mike and Wendy\NPSI2KVW.dll
C:\Users\Wendy\NPSI2KVW.dll
Some content of TEMP:
====================
C:\Users\Administrator\AppData\Local\Temp\Quarantine.exe
C:\Users\Administrator\AppData\Local\Temp\sqlite3.dll
C:\Users\Wendy\AppData\Local\Temp\Quarantine.exe
C:\Users\Wendy\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-12-25 00:26
==================== End Of Log ============================
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-01-2015
Ran by Wendy at 2015-01-02 18:00:22
Running from C:\Users\Wendy\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
2007 Microsoft Office system (HKLM-x32\...\PROHYBRIDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.7.186 - Adobe Systems Incorporated)
Acrobat.com (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Acronis True Image WD Edition (HKLM-x32\...\{C43E4B9C-14C8-4EB0-998B-85211B6EDD61}) (Version: 11.0.8311 - Acronis)
Activation Assistant for the 2007 Microsoft Office suites (HKLM-x32\...\Activation Assistant for the 2007 Microsoft Office suites) (Version:  - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (x32 Version: 1.0 - Microsoft Corporation) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.7.1.19610 - Adobe Systems Incorporated)
Adobe Bridge 1.0 (HKLM-x32\...\{B74D4E10-6884-0000-0000-000000000103}) (Version: 001.000.004 - Adobe Systems)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Creative Suite 4 Master Collection (HKLM-x32\...\Adobe_b2d6abde968e6f277ddbfd501383e02) (Version: 4.0 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1 - Adobe Systems Incorporated)
Adobe Photoshop CS5 (HKLM-x32\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 8.0 (HKLM-x32\...\Adobe Photoshop Elements 8.0) (Version: 8.0 - Adobe Systems Incorporated)
Adobe Photoshop.com Inspiration Browser (HKLM-x32\...\PhotoshopdotcomInspirationBrowser.4C35C4D325D350FE0114230CBADCA2DDD0AC8D25.1) (Version: 3.04 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Alien Skin Eye Candy 4000 (HKLM-x32\...\Eye Candy 4000) (Version:  - )
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{C6579A65-9CAE-4B31-8B6B-3306E0630A66}) (Version: 2.1.3.127 - Apple Inc.)
ASUSUpdate (HKLM-x32\...\{587178E7-B1DF-494E-9838-FA4DD36E873C}) (Version:  - )
Avery Wizard 4.0 (HKLM-x32\...\{F97272B4-82C4-46B2-BCF1-C4D6E8CAB3E6}) (Version: 4.0.4 - Avery)
Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation)
Bing Rewards Client Installer (x32 Version: 16.0.345.0 - Microsoft Corporation) Hidden
BlackArmor Discovery (HKLM-x32\...\InstallShield_{B52480BF-CCED-4DD4-8DC2-28BB750D703E}) (Version: 1.10.0921.009 - Seagate)
BlackArmor Discovery (x32 Version: 1.10.0921.009 - Seagate) Hidden
BlackBerry Device Software v4.5.0 for the BlackBerry 8330 smartphone (HKLM-x32\...\{03F78428-4DF6-4426-AACD-53FC353D94E0}) (Version: 4.5.0.138 (Platform 3.4.0.30) - Research In Motion Ltd.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
bpd_scan (x32 Version: 3.00.0000 - Hewlett-Packard) Hidden
calibre (HKLM-x32\...\{D0940326-79BF-4D05-98CA-ED208661D34B}) (Version: 1.19.0 - Kovid Goyal)
CAM UnZip 4.42 (HKLM-x32\...\CUZ4_is1) (Version:  - CAM Development)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version:  - )
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM-x32\...\CANON iMAGE GATEWAY Task) (Version: 1.7.2.11 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version:  - )
Canon Internet Library for ZoomBrowser EX (HKLM-x32\...\Canon Internet Library for ZoomBrowser EX) (Version: 1.6.3.9 - Canon Inc.)
Canon Pro9000 II series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_Pro9000_II_series) (Version:  - )
Canon Pro9000 Mark II series User Registration (HKLM-x32\...\Canon Pro9000 Mark II series User Registration) (Version:  - )
Canon SELPHY CP510 (HKLM\...\Canon SELPHY CP510) (Version:  - )
Canon Utilities CameraWindow (HKLM-x32\...\CameraWindowLauncher) (Version: 7.4.0.7 - Canon Inc.)
Canon Utilities CameraWindow DC 8 (HKLM-x32\...\CameraWindowDC8) (Version: 8.1.0.11 - Canon Inc.)
Canon Utilities My Printer (HKLM-x32\...\CanonMyPrinter) (Version:  - )
Canon Utilities MyCamera (HKLM-x32\...\MyCamera) (Version: 7.3.0.5 - Canon Inc.)
Canon Utilities Solution Menu (HKLM-x32\...\CanonSolutionMenu) (Version:  - )
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.5.1.15 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.3.0.4 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
CloneDVDmobile (HKLM-x32\...\CloneDVDmobile) (Version: 1.9.0.1 - SlySoft)
Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.25 - Creative Technology Limited)
Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 2.56 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.40 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version:  - )
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 7.0.1829 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Data Lifeguard Diagnostic for Windows (HKLM-x32\...\{E40CE517-0D42-4198-96B4-C8232B257EB5}) (Version: 1.13 - Western Digital Corporation)
DR Systems Web Ambassador (HKLM-x32\...\{98BCB68E-274F-11D4-B2FA-00105AA9021A}) (Version:  - )
dslrBooth 3.12.29.1 (HKLM\...\{19FB8BF8-8E63-4542-8C79-D2B76CEDAB3F}) (Version: 3.12.29.1 - Hope Pictures LLC)
Garmin USB Drivers (HKLM-x32\...\{510D2239-6C2E-457B-9590-485EC552D94D}) (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries)
Garmin WebUpdater (HKLM-x32\...\{CCB71FF8-DE82-469C-8641-44378F4443EB}) (Version: 2.5.4 - Garmin Ltd or its subsidiaries)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
H&R Block Deluxe + Efile + State 2009 (HKLM-x32\...\{53A19323-917A-4822-B27E-A57D1EF6E9FC}) (Version: 09.04.6901 - HRB Technology, LLC.)
H&R Block Illinois 2009 (HKLM-x32\...\{CBEDB9A0-4C5E-4F10-B64E-5EAD94FFCD40}) (Version: 1.09.2701 - HRB Technology, LLC.)
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Officejet Pro 8600 Basic Device Software (HKLM\...\{791A06E2-340F-43B0-8FAB-62D151339362}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet Pro 8600 Help (HKLM-x32\...\{46235FF7-2CBE-4A84-BEDA-87348D1F7850}) (Version: 28.0.0 - Hewlett Packard)
HP Officejet Pro 8600 Product Improvement Study (HKLM\...\{2BF5E9CC-C55D-4B0F-ACAF-FFE77F333CD8}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Support Solutions Framework (HKLM-x32\...\{E35601C0-BA8E-4F32-919A-C7EF4CA81F67}) (Version: 11.51.0048 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HP USB Disk Storage Format Tool (HKLM-x32\...\{0E0DF90C-D0BA-4C89-9262-AD78D1A3DE51}) (Version:  - )
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Image Plugin (HKLM-x32\...\{54746B77-3873-4D13-9803-AE370FE987AA}) (Version: 3.07.0000 - Snap-on Business Solutions)
ImageMixer 3 SE Ver.6 Transfer Utility (HKLM-x32\...\{3A2AD071-AABD-4712-A43E-11D06BAA661D}) (Version: 6.00.018 - PIXELA)
ImageMixer 3 SE Ver.6 Video Tools (HKLM-x32\...\{62CA119E-C5A7-42FC-85E8-4B55AA9E4072}) (Version: 6.00.019 - PIXELA)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
inSSIDer 3 (HKLM-x32\...\{A80CEA4E-74C1-4F9F-806B-E1D9AFC01768}) (Version: 3.0.7.48 - MetaGeek, LLC)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Living Cookbook 2008 (HKLM-x32\...\Living Cookbook 2008) (Version:  - Radium Technologies, Inc.)
Living Cookbook 2008 (x32 Version: 2.0.72 - Radium Technologies) Hidden
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
MediaMonkey 3.2 (HKLM-x32\...\MediaMonkey_is1) (Version: 3.2 - Ventis Media Inc.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Digital Image Starter Edition 2006 (HKLM-x32\...\PictureItSuiteTrial_v12) (Version: 11.0.2018 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{3E061CBA-1DBB-45DD-8873-D100072ADCAD}) (Version: 3.0.215.0 - Microsoft Corporation)
Microsoft MapPoint North America 2011 (HKLM-x32\...\{C82185E8-C27B-4EF4-2011-1111BC2C2B6D}) (Version: 18.0.1 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.31211.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Mozilla Firefox 33.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 33.1 (x86 en-US)) (Version: 33.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
nik Color Efex Pro 2.0 IE (HKLM-x32\...\nik Color Efex Pro 2.0 IE) (Version:  - )
nLite 1.4.9.1 (HKLM-x32\...\nLite_is1) (Version: 1.4.9.1 - Dino Nuhagic (nuhi))
NVIDIA 3D Vision Controller Driver 310.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 310.70 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.11.9745 - NVIDIA Corporation)
NVIDIA Graphics Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Pinnacle Studio 14 (HKLM-x32\...\{AADD1C8F-D59F-4D55-A726-768C71A205A8}) (Version: 14.0.0.7255 - Pinnacle Systems)
Pinnacle Video Driver (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
Primatte (HKLM\...\Primatte PS) (Version: 3.0 - Digital Anarchy, Inc.)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek 8169 8168 8101E 8102E Ethernet Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5735 - Realtek Semiconductor Corp.)
RescuePRO 3.2 (HKLM-x32\...\RescuePRO-3.0) (Version:  - )
Revo Uninstaller Pro 3.1.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.1 - VS Revo Group, Ltd.)
SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version:  - )
Samsung Mobile phone USB driver Drive Software (HKLM\...\Samsung Mobile phone USB driver Drive) (Version:  - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version:  - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version:  - )
SAMSUNG PC Share Manager (HKLM-x32\...\InstallShield_{2A2E822B-3B0E-46C1-9E3B-ACD7D1E95139}) (Version: 2.3.0 - SAMSUNG)
SAMSUNG PC Share Manager (x32 Version: 2.3.0 - SAMSUNG) Hidden
SCR3xxx Smart Card Reader (HKLM-x32\...\{17B0906A-26ED-45D0-B51B-83EF1AADCCFE}) (Version: 8.51 - Identive)
SCR3xxx Smart Card Reader (HKLM-x32\...\{720B7960-0C6F-497B-BDF0-32326F95C31D}) (Version: 8.56 - Identive)
Seagate BlackArmor Backup 2011 (HKLM-x32\...\{5607090E-B8B1-4E1E-ADA2-426522CED33C}) (Version: 14.0.4076 - Seagate)
Seagate NAS Discovery (HKLM-x32\...\{58053C71-35D9-4F16-9E5A-50C97504B2D0}) (Version: 1.00.0020 - Seagate)
SentriCard Utility (HKLM-x32\...\{14B8F58C-4BD8-4122-9FE6-827527626392}_is1) (Version: 4.0.0 - SentriLock, LLC)
SIplugin (HKLM-x32\...\InstallShield_{D9D59C79-B080-4C94-B72A-1EB432ED192E}) (Version: 1.00.0000 - GM Service and Parts Operation)
SIplugin (x32 Version: 1.00.0000 - GM Service and Parts Operation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SmartSound Quicktracks Plugin (HKLM-x32\...\InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}) (Version: 3.0.3.0 - SmartSound Software Inc)
SmartSound Quicktracks Plugin (x32 Version: 3.0.3.0 - SmartSound Software Inc) Hidden
Sound Blaster Audigy (HKLM-x32\...\{C5828861-B97B-4037-995C-C65E9CC13A3B}) (Version: 1.0 - )
Spelling Dictionaries Support For Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
Spyder2 (HKLM-x32\...\Spyder2) (Version:  - )
Suite Shared Configuration CS4 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
SureThing Express Labeler (HKLM-x32\...\stax-Pinnacle_is1) (Version:  - MicroVision Development, Inc.)
Syncios version 2.0.2 (HKLM-x32\...\{068A5D84-8419-4BDE-9689-FE65F412EFBB}_is1) (Version: 2.0.2 - Anvsoft, Inc.)
TurboTax 2010 (HKLM-x32\...\TurboTax 2010) (Version:  - Intuit, Inc)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
VD64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM-x32\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
Wacom Tablet (HKLM-x32\...\Wacom Tablet Driver) (Version:  - Wacom Technology Corp.)
WebEx (HKLM-x32\...\ActiveTouchMeetingClient) (Version:  - Cisco WebEx LLC)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (06/03/2009 2.3.0.0) (HKLM\...\49CF605F02C7954F4E139D18828DE298CD59217C) (Version: 06/03/2009 2.3.0.0 - Garmin)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}) (Version: 14.0.8089.726 - Microsoft Corporation)
WinRAR archiver (HKLM\...\WinRAR archiver) (Version:  - )
Xvid 1.2.2 final uninstall (HKLM-x32\...\Xvid_is1) (Version: 1.2 - Xvid team (Koepi))
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points  =========================
17-12-2014 10:13:45 Installed HP Support Solutions Framework
18-12-2014 03:00:13 Windows Update
21-12-2014 10:44:04 Windows Update
25-12-2014 10:44:01 Windows Update
29-12-2014 10:44:01 Windows Update
01-01-2015 14:45:02 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2006-11-02 06:34 - 2015-01-02 13:35 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {00CD9C94-FE74-4B24-8C0D-EEAE7954BCA5} - System32\Tasks\{2B1B88BB-8DFE-4FA2-8482-AEC74D612928} => pcalua.exe -a C:\Users\Wendy\Downloads\661VBR1001B.exe -d C:\Users\Wendy\Downloads
Task: {0EAEA7FC-19B7-4878-9C79-542176DB65D6} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {13A03AEE-A404-4ED5-8E4B-E90846AB79ED} - System32\Tasks\ASUS\ASUS RegRun Loader => C:\Program Files (x86)\ASUS\AASP\1.00.95\AsLoader.exe [2008-07-02] ()
Task: {32542DB2-E89C-48A5-9594-360E8CDB6321} - System32\Tasks\{9244C0CC-79BE-44E9-A828-D2DDFE08F862} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Adobe\Installers\b2d6abde968e6f277ddbfd501383e02\Setup.exe" -c --uninstall=1
Task: {38E7CA2A-414A-4AE9-AF0D-226FAB56112B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {48699285-972F-4C79-9556-6CE99E6BA7E9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-17] (Adobe Systems Incorporated)
Task: {4949C4FB-8FAD-4862-97F7-A359E6928646} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {529BD03E-880C-43FF-9EB8-E583C8C421A6} - System32\Tasks\{7C8B4837-F8AA-4547-A531-DB0FBB92EE2A} => pcalua.exe -a C:\1212\v1.20(0931.004)\Setup.exe -d C:\1212\v1.20(0931.004)
Task: {52F9F3F3-94D5-4B30-9946-AB00E2E1AF4E} - System32\Tasks\{78984982-784B-4EA8-A11C-978BD5D1FFDF} => pcalua.exe -a C:\Windows\SysWOW64\WacomTablet.cpl
Task: {5C98A9F4-77DE-4D23-8D4F-17AE31DCC8D8} - System32\Tasks\Microsoft_Hardware_Launch_devicecenter_exe => C:\Program Files\Microsoft Device Center\devicecenter.exe
Task: {5ECE97F2-BFA0-4DA4-9774-6188BEAB86EE} - System32\Tasks\{0E5B29EB-11A4-4312-9A07-CF53108500FF} => pcalua.exe -a C:\Download\v1.20(0931.004)\Setup.exe -d C:\Download\v1.20(0931.004)
Task: {6316F87A-BDF0-4186-A052-C512A4A96735} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {712C6861-2B14-4E72-92BA-22B6921FE2B7} - System32\Tasks\Microsoft\Windows\Wired\GatherWiredInfo => C:\Windows\system32\gatherWiredInfo.vbs
Task: {7F158DFE-15E8-4C54-86C1-EF2807391E1B} - System32\Tasks\{C6AD7969-4DBD-46A8-BE01-F907D1E1FFE4} => pcalua.exe -a E:\Setup.exe -d E:\
Task: {8B94B353-28E6-4DDC-A358-AA3AFFFDFED4} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2009-07-13] (Microsoft Corporation)
Task: {8CE1C2C2-C89E-4609-A3A2-FD383E0A23F4} - System32\Tasks\{F534854A-6703-4C96-BDB1-F816B444194D} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{B52480BF-CCED-4DD4-8DC2-28BB750D703E}\setup.exe" -c -runfromtemp -l0x0409 -removeonly
Task: {913A850A-CCFF-4C7B-A16E-5FD41AFBA34B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {9BBE0E14-C021-439B-9B04-D257D3DC380A} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {A4711950-E8D6-466F-B877-7ACE5B0D5F1C} - System32\Tasks\RPC => C:\Program Files (x86)\Bull Softwares\Reg Pro Cleaner\RegProCleaner.exe
Task: {AB0D883A-EF3E-45D7-80E0-2EDDC1AB14E3} - System32\Tasks\{0375D100-8A2A-4161-9F6B-20C21D57B8AF} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2014-12-11] (Skype Technologies S.A.)
Task: {BEEEEACA-204B-46D4-BF2A-BB4588990830} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {C1B3DD18-B9EA-4652-B6FB-B81CCE36AA86} - System32\Tasks\{C655BBE8-1C7F-491C-945D-B0613FC50C1F} => pcalua.exe -a "C:\Users\Mike and Wendy\AppData\Local\{2853BFD5-3865-45EB-A4E3-967D4A9B969A}\NBCDirectInstaller.exe" -c REMOVE=TRUE MODIFY=FALSE
Task: {C426CEDE-5863-476E-B92E-B44AB64A5A87} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {CD90E808-626E-4FCA-AEA8-EA54D5697408} - System32\Tasks\{E9120919-BB53-4764-924E-A2AC31EA4FB0} => pcalua.exe -a C:\v1.20(0931.004)\Setup.exe -d C:\v1.20(0931.004)
Task: {CE4CF6C3-2FB9-41FC-979E-27A80794761A} - \PastaQuotes No Task File <==== ATTENTION
Task: {D57B9A49-05D4-449A-9FB7-487CEF270D26} - System32\Tasks\{78E3DA30-620E-4A06-B8E3-CA9907D105B6} => pcalua.exe -a "C:\Users\Administrator\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZWEBJ3CH\Office2003SP2-KB887616-FullFile-ENU[1].exe" -d C:\Users\Administrator\Desktop
Task: {E91D6474-70CC-42BE-80FF-8BED8AF557ED} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs
Task: {EA183B1F-AE25-4032-9244-41D573207851} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {F6467AA1-F451-469D-8973-E4B06E386EC6} - System32\Tasks\HPCustParticipation HP Officejet Pro 8600 => C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2012-11-17 18:06 - 2014-07-02 12:55 - 00116568 ____C () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-10-07 18:43 - 2008-10-09 08:07 - 00107912 ____C () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2009-07-24 18:28 - 2009-07-24 18:28 - 00778608 _____ () C:\Windows\system32\LcProxy.ax
2014-12-31 14:21 - 2014-12-23 11:49 - 03938816 __SHC () C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvta.exe
2009-08-27 15:51 - 2008-06-29 22:10 - 00241734 _____ () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2014-12-31 14:22 - 2014-12-31 14:22 - 00049664 ___RC () C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvtaHelper.exe
2010-12-01 18:34 - 2010-03-15 11:28 - 00166400 ____C () C:\Program Files\WinRAR\rarext.dll
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 ____C () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 12:05 - 2014-10-11 12:05 - 01044776 ____C () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2009-07-24 18:28 - 2009-07-24 18:28 - 00524128 _____ () C:\Windows\SysWOW64\LcProxy.ax
2010-12-05 17:31 - 2009-07-21 14:42 - 00364544 ____C () C:\Program Files (x86)\PIXELA\ImageMixer 3 SE Ver.6\Transfer Utility\pxl_m17n_tool.dll
2009-11-05 18:26 - 2009-02-06 18:52 - 00073728 _____ () C:\Windows\SysWOW64\CmdRtr.DLL
2009-11-05 18:26 - 2009-07-10 09:07 - 00166912 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2011-02-14 18:54 - 2011-02-14 18:54 - 00854016 _____ () C:\Windows\assembly\GAC_32\System.Data.SQLite\1.0.61.0__db937bc2d44ff139\System.Data.SQLite.dll
2011-02-14 18:54 - 2011-02-14 18:54 - 00476520 _____ () C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Map.Reporter\5.0.136.0__7ce6deabcb36a8ea\Intuit.Spc.Map.Reporter.dll
2014-12-12 08:02 - 2014-12-05 19:50 - 01077064 ____C () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libglesv2.dll
2014-12-12 08:02 - 2014-12-05 19:50 - 00211272 ____C () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libegl.dll
2014-12-12 08:02 - 2014-12-05 19:50 - 09009480 ____C () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
2014-12-12 08:02 - 2014-12-05 19:50 - 01677128 ____C () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll
2014-12-12 08:02 - 2014-12-05 19:50 - 14913352 ____C () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\PepperFlash\pepflashplayer.dll
2009-02-26 13:46 - 2009-02-26 13:46 - 00064344 _____ () C:\Program Files (x86)\Microsoft Office\Office12\ADDINS\ColleagueImport.dll
2011-06-22 11:46 - 2011-06-22 11:46 - 00434016 _____ () C:\Program Files (x86)\Microsoft Office\Office12\ADDINS\UmOutlookAddin.dll
2013-07-10 18:07 - 2013-07-10 18:07 - 00756888 ____C () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\plsapp => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
========================= Accounts: ==========================
Administrator (S-1-5-21-449528145-1685180860-1442867481-500 - Administrator - Enabled) => C:\Users\Administrator
Guest (S-1-5-21-449528145-1685180860-1442867481-501 - Limited - Enabled)
UpdatusUser (S-1-5-21-449528145-1685180860-1442867481-1009 - Limited - Enabled) => C:\Users\UpdatusUser.MikeandWendy-PC
Wendy (S-1-5-21-449528145-1685180860-1442867481-1012 - Administrator - Enabled) => C:\Users\Wendy
==================== Faulty Device Manager Devices =============
Name: SBRE
Description: SBRE
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: SBRE
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: cherimoya
Description: cherimoya
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: cherimoya
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: LogMeIn Kernel Information Provider
Description: LogMeIn Kernel Information Provider
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: LMIInfo
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: BlackArmor NAS 4D
Description: BlackArmor NAS 4D
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/02/2015 05:35:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/02/2015 05:33:44 PM) (Source: ESENT) (EventID: 455) (User: )
Description: taskhost (2804) WebCacheLocal: Error -1811 occurred while opening logfile C:\Users\Administrator\AppData\Local\Microsoft\Windows\WebCache\V0100019.log.
Error: (01/02/2015 05:16:41 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/02/2015 05:08:51 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program IEXPLORE.EXE version 11.0.9600.17496 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1e30
Start Time: 01d026e0f45277a7
Termination Time: 0
Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Report Id:
Error: (01/02/2015 05:07:58 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program IEXPLORE.EXE version 11.0.9600.17496 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: a5c
Start Time: 01d026de934e73dc
Termination Time: 5
Application Path: C:\Program Files\Internet Explorer\IEXPLORE.EXE
Report Id: 2e41b2b1-92d4-11e4-9acf-00261844bdef
Error: (01/02/2015 05:06:15 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program IEXPLORE.EXE version 11.0.9600.17496 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 23e0
Start Time: 01d026e09f5082c6
Termination Time: 72
Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Report Id:
Error: (01/02/2015 05:05:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program IEXPLORE.EXE version 11.0.9600.17496 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 1e20
Start Time: 01d026de93579b9d
Termination Time: 75
Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
Report Id:
Error: (01/02/2015 03:37:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/02/2015 03:27:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/02/2015 02:40:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (01/02/2015 05:34:16 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cherimoya
Lbd
SBRE
Error: (01/02/2015 05:34:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The LogMeIn Kernel Information Provider service failed to start due to the following error:
%%3
Error: (01/02/2015 05:32:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The BBUpdate service terminated unexpectedly.  It has done this 1 time(s).
Error: (01/02/2015 05:32:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The NVIDIA Update Service Daemon service terminated unexpectedly.  It has done this 1 time(s).
Error: (01/02/2015 05:32:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intuit Update Service service terminated unexpectedly.  It has done this 1 time(s).
Error: (01/02/2015 05:32:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
Error: (01/02/2015 05:32:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The iPod Service service terminated unexpectedly.  It has done this 1 time(s).
Error: (01/02/2015 05:32:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Media Player Network Sharing Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
Error: (01/02/2015 05:32:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Live ID Sign-in Assistant service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
Error: (01/02/2015 05:32:12 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The TabletServiceWacom service terminated unexpectedly.  It has done this 1 time(s).
Microsoft Office Sessions:
=========================
Error: (06/19/2011 08:23:46 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 151929 seconds with 0 seconds of active time.  This session ended with a crash.
Error: (03/22/2011 06:53:59 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1 seconds with 0 seconds of active time.  This session ended with a crash.
CodeIntegrity Errors:
===================================
  Date: 2015-01-02 13:34:34.935
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  Date: 2015-01-02 13:34:34.845
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  Date: 2015-01-02 13:34:34.765
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  Date: 2015-01-02 13:34:34.685
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  Date: 2014-05-01 07:39:26.674
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  Date: 2014-05-01 07:39:26.518
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
  Date: 2009-11-05 17:11:18.426
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll because the set of per-page image hashes could not be found on the system.
  Date: 2009-11-05 17:11:18.406
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll because the set of per-page image hashes could not be found on the system.
  Date: 2009-11-05 17:10:28.179
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll because the set of per-page image hashes could not be found on the system.
  Date: 2009-11-05 17:10:28.146
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel® Core™ i7 CPU 920 @ 2.67GHz
Percentage of memory in use: 76%
Total physical RAM: 6135.08 MB
Available physical RAM: 1463.19 MB
Total Pagefile: 12268.34 MB
Available Pagefile: 6627.06 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:931.52 GB) (Free:395.37 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Mike Extra) (Fixed) (Total:931.51 GB) (Free:635.27 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 03563FD7)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 931.5 GB) (Disk ID: 8EB8162E)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== End Of Log ============================

Edited by boopme, 02 January 2015 - 07:24 PM.


BC AdBot (Login to Remove)

 


m

#2 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:12 PM

Posted 05 January 2015 - 10:50 AM

Hi there,
my name is Marius and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

  • Important: To help me reviewing your logs, please post them in code boxes. You can create them by clicking on the <>-symbol on top of the reply window.

 

 

 

Scan with Gmer rootkit scanner

Please download Gmer from here by clicking on the "Download EXE" Button.

  • Double click on the randomly named GMER.exe. If asked to allow gmer.sys driver to load, please consent.
  • If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO.
  • In the right panel, you will see several boxes that have been checked. Uncheck the following ...
    • Sections
    • IAT/EAT
    • Show All ( should be unchecked by default )
  • Leave everything else as it is.
  • Close all other running programs as well as your Browser.
  • Click the Scan button & wait for it to finish.
  • Once done click on the Save.. button, and in the File name area, type in "ark.txt" or it will save as a .log file which cannot be uploaded to your post.
  • Save it where you can easily find it, such as your desktop.
  • Please post the content of the ark.txt here.

**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries

Scan with TDSS-Killer

Please read and follow these instructions carefully. We do not want it to fix anything yet (if found), we need to see a report first.

Download TDSSKiller.zip and extract to your desktop
  • Execute TDSSKiller.exe by doubleclicking on it.
  • Press Start Scan
  • If Malicious objects are found, do NOT select Copy to quarantine. Change the action to Skip, and save the log.
  • Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt


Please attach this file to your next reply.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#3 pkshome

pkshome
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 05 January 2015 - 06:55 PM

Thank you for the help

 

<GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2015-01-05 17:33:06
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-2 Intel___ rev.1.0. 931.52GB
Running: 69178jgl.exe; Driver: C:\Users\Wendy\AppData\Local\Temp\axxoipoc.sys

---- Threads - GMER 2.1 ----

Thread   C:\Windows\system32\svchost.exe [1812:5372]                                                                                                                                                                                                                             000007fef7ca5170
Thread   C:\Windows\Explorer.EXE [2924:3180]                                                                                                                                                                                                                                     000007fefb6c6204
Thread   C:\Windows\Explorer.EXE [2924:3524]                                                                                                                                                                                                                                     000007fef28f2118
Thread   C:\Windows\Explorer.EXE [2924:5140]                                                                                                                                                                                                                                     000007fef00f2154
Thread   C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [3000:4356]                                                                                                                                                                                             000007fef73a3e0c
Thread   C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [3000:4360]                                                                                                                                                                                             000007fef5b2f5f8
Thread   C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [3000:4384]                                                                                                                                                                                             000007fef73a3e0c
Thread   C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [3000:4428]                                                                                                                                                                                             000007fef517bc60
Thread   C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [3000:3136]                                                                                                                                                                                             000007fef73a3e0c
Thread   C:\Windows\system32\svchost.exe [3600:3676]                                                                                                                                                                                                                             000007fef8305fd0
Thread   C:\Windows\system32\svchost.exe [3600:3696]                                                                                                                                                                                                                             000007fef5c13438
Thread   C:\Windows\system32\svchost.exe [3600:3700]                                                                                                                                                                                                                             000007fef83063ec
Thread   C:\Windows\Explorer.EXE [5656:7216]                                                                                                                                                                                                                                     000007fef28f2118
Thread   C:\Windows\Explorer.EXE [5656:12528]                                                                                                                                                                                                                                    000007fefa341010
Thread   C:\Windows\Explorer.EXE [5656:6240]                                                                                                                                                                                                                                     000007fef2e2a3f8
Thread   C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2004:2104]                                                                                                                                                                                              000007fef517bc60
---- Processes - GMER 2.1 ----

Process  C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvta.exe (*** suspicious ***) @ C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvta.exe [4036](2014-12-31 20:21:53)                                                                                                                0000000001140000
Library  C:\Program Files (x86)\ReyhoogIvta\Qt5Network.dll (*** suspicious ***) @ C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvta.exe [4036] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-12-31 20:21:53)                                  00000000738b0000
Library  C:\Program Files (x86)\ReyhoogIvta\Qt5Core.dll (*** suspicious ***) @ C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvta.exe [4036] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-12-31 20:21:53)                                     0000000073410000
Library  C:\Program Files (x86)\ReyhoogIvta\ssleay32.dll (*** suspicious ***) @ C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvta.exe [4036] (OpenSSL Shared Library/The OpenSSL Project, http://www.openssl.org/)(2014-12-31 20:21:53)                                             0000000066260000
Library  C:\Program Files (x86)\ReyhoogIvta\LIBEAY32.dll (*** suspicious ***) @ C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvta.exe [4036] (OpenSSL Shared Library/The OpenSSL Project, http://www.openssl.org/)(2014-12-31 20:21:52)                                             0000000066140000
Process  C:\Users\Wendy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q5ESD8TS\69178jgl.exe (*** suspicious ***) @ C:\Users\Wendy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Q5ESD8TS\69178jgl.exe [9812](2015-01-05 23:21:15)  0000000000400000

---- EOF - GMER 2.1 ---->

 

 



#4 pkshome

pkshome
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 05 January 2015 - 06:57 PM

<17:37:44.0001 0x3a24  TDSS rootkit removing tool 3.0.0.42 Dec 12 2014 00:35:20
17:37:49.0037 0x3a24  ============================================================
17:37:49.0037 0x3a24  Current date / time: 2015/01/05 17:37:49.0037
17:37:49.0037 0x3a24  SystemInfo:
17:37:49.0037 0x3a24 
17:37:49.0037 0x3a24  OS Version: 6.1.7601 ServicePack: 1.0
17:37:49.0037 0x3a24  Product type: Workstation
17:37:49.0037 0x3a24  ComputerName: MIKEANDWENDY-PC
17:37:49.0037 0x3a24  UserName: Wendy
17:37:49.0037 0x3a24  Windows directory: C:\Windows
17:37:49.0037 0x3a24  System windows directory: C:\Windows
17:37:49.0037 0x3a24  Running under WOW64
17:37:49.0037 0x3a24  Processor architecture: Intel x64
17:37:49.0037 0x3a24  Number of processors: 8
17:37:49.0037 0x3a24  Page size: 0x1000
17:37:49.0037 0x3a24  Boot type: Normal boot
17:37:49.0037 0x3a24  ============================================================
17:37:49.0287 0x3a24  KLMD registered as C:\Windows\system32\drivers\91890238.sys
17:37:50.0027 0x3a24  System UUID: {9D6F28B4-3630-D20E-D76D-2631C5237C58}
17:37:51.0287 0x3a24  Drive \Device\Harddisk0\DR0 - Size: 0xE8E1300000 ( 931.52 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:37:51.0307 0x3a24  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:37:51.0347 0x3a24  ============================================================
17:37:51.0347 0x3a24  \Device\Harddisk0\DR0:
17:37:51.0367 0x3a24  MBR partitions:
17:37:51.0367 0x3a24  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74708800
17:37:51.0367 0x3a24  \Device\Harddisk1\DR1:
17:37:51.0367 0x3a24  MBR partitions:
17:37:51.0367 0x3a24  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
17:37:51.0367 0x3a24  ============================================================
17:37:51.0497 0x3a24  C: <-> \Device\Harddisk0\DR0\Partition1
17:37:51.0517 0x3a24  D: <-> \Device\Harddisk1\DR1\Partition1
17:37:51.0517 0x3a24  ============================================================
17:37:51.0517 0x3a24  Initialize success
17:37:51.0517 0x3a24  ============================================================
17:37:55.0542 0x272c  ============================================================
17:37:55.0542 0x272c  Scan started
17:37:55.0542 0x272c  Mode: Manual;
17:37:55.0542 0x272c  ============================================================
17:37:55.0542 0x272c  KSN ping started
17:38:09.0297 0x272c  KSN ping finished: true
17:38:10.0327 0x272c  ================ Scan system memory ========================
17:38:10.0327 0x272c  System memory - ok
17:38:10.0327 0x272c  ================ Scan services =============================
17:38:10.0567 0x272c  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
17:38:10.0577 0x272c  1394ohci - ok
17:38:10.0647 0x272c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
17:38:10.0657 0x272c  ACPI - ok
17:38:10.0677 0x272c  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
17:38:10.0677 0x272c  AcpiPmi - ok
17:38:10.0797 0x272c  [ E034BEAB701D4FB6ABDDB0F514E590F4, 9DBA0FA63CA13E7E1669F2BAEDFA4A0418C773AF23ED8D73D924F522029FEEA0 ] AcrSch2Svc      C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
17:38:10.0817 0x272c  AcrSch2Svc - ok
17:38:10.0867 0x272c  [ 2F0683FD2DF1D92E891CACA14B45A8C1, B4A8D6A183FA0B7D642FAD6B51C19FEC998481E1C49480D2B391E5D8B55F5BBD ] adfs            C:\Windows\system32\drivers\adfs.sys
17:38:10.0867 0x272c  adfs - ok
17:38:10.0897 0x272c  [ 8B46D5A1D3EF08232C04D0EAFB871FB2, 5306F8452EF675851CB0015F9E5C5EB750137D6D65C9CB7E47F8EF5B10A44D10 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
17:38:10.0897 0x272c  Adobe LM Service - ok
17:38:10.0987 0x272c  [ 34400005DE52842C4D6D4EE978B4D7CE, E7C3121812284B9FE6A12910C67C98354BAF5DB74865A5B4E0C2E64852BDB50A ] AdobeActiveFileMonitor8.0 C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
17:38:10.0997 0x272c  AdobeActiveFileMonitor8.0 - ok
17:38:11.0127 0x272c  [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:38:11.0127 0x272c  AdobeARMservice - ok
17:38:11.0307 0x272c  [ 4E48A7DF7ECACB38C686B2BEBAA687A3, D4DEE6BD464855B24A6D40BC6A9279B2041099615C6A319D869DA113AD896EA3 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:38:11.0317 0x272c  AdobeFlashPlayerUpdateSvc - ok
17:38:11.0397 0x272c  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
17:38:11.0417 0x272c  adp94xx - ok
17:38:11.0447 0x272c  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
17:38:11.0457 0x272c  adpahci - ok
17:38:11.0477 0x272c  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
17:38:11.0487 0x272c  adpu320 - ok
17:38:11.0527 0x272c  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
17:38:11.0527 0x272c  AeLookupSvc - ok
17:38:11.0607 0x272c  [ AE1FCE2CD1E99BEA89183BA8CD320872, 96F14BCA0C2479F39A5027A71922907D0F35CAD8E9A5037674DF7995BBDB2B51 ] afcdp           C:\Windows\system32\DRIVERS\afcdp.sys
17:38:11.0617 0x272c  afcdp - ok
17:38:11.0667 0x272c  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
17:38:11.0687 0x272c  AFD - ok
17:38:11.0737 0x272c  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
17:38:11.0737 0x272c  agp440 - ok
17:38:11.0757 0x272c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
17:38:11.0757 0x272c  ALG - ok
17:38:11.0807 0x272c  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:38:11.0807 0x272c  aliide - ok
17:38:11.0847 0x272c  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
17:38:11.0857 0x272c  amdide - ok
17:38:11.0917 0x272c  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
17:38:11.0917 0x272c  AmdK8 - ok
17:38:11.0937 0x272c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
17:38:11.0937 0x272c  AmdPPM - ok
17:38:11.0977 0x272c  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
17:38:11.0987 0x272c  amdsata - ok
17:38:12.0007 0x272c  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
17:38:12.0017 0x272c  amdsbs - ok
17:38:12.0027 0x272c  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
17:38:12.0037 0x272c  amdxata - ok
17:38:12.0087 0x272c  [ 80B9412C4DE09147581FC935FB4C97AB, 0C9661F7B5EF7F9D61981790B7AB64E3375BD117962166619D0CC546A2D014D3 ] AppID           C:\Windows\system32\drivers\appid.sys
17:38:12.0087 0x272c  AppID - ok
17:38:12.0107 0x272c  [ F71CA01C24FC3798A717B5A6F682F9AD, 8CF1C209E7BBBAD02D6D087293C0B681CDA3170AF119CA2916C2708D8801E749 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
17:38:12.0117 0x272c  AppIDSvc - ok
17:38:12.0157 0x272c  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
17:38:12.0157 0x272c  Appinfo - ok
17:38:12.0227 0x272c  [ 650D03E40F93FAE323CB841F80368E5C, F67B97CFDCE2EE9294977725268EFDB0DD724BD16E7ED5BFCA45375AA8EBA5BB ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:38:12.0227 0x272c  Apple Mobile Device - ok
17:38:12.0267 0x272c  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
17:38:12.0277 0x272c  arc - ok
17:38:12.0287 0x272c  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
17:38:12.0297 0x272c  arcsas - ok
17:38:12.0467 0x272c  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:38:12.0467 0x272c  aspnet_state - ok
17:38:12.0537 0x272c  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:38:12.0537 0x272c  AsyncMac - ok
17:38:12.0567 0x272c  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
17:38:12.0567 0x272c  atapi - ok
17:38:12.0647 0x272c  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:38:12.0657 0x272c  AudioEndpointBuilder - ok
17:38:12.0677 0x272c  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv        C:\Windows\System32\Audiosrv.dll
17:38:12.0687 0x272c  AudioSrv - ok
17:38:12.0737 0x272c  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
17:38:12.0737 0x272c  AxInstSV - ok
17:38:12.0787 0x272c  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
17:38:12.0807 0x272c  b06bdrv - ok
17:38:12.0827 0x272c  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
17:38:12.0837 0x272c  b57nd60a - ok
17:38:12.0997 0x272c  [ 5F685973740F289BE3C809952DB8408B, 4C0A0C06BB2B6B1879A860B0D68289A55F80CF74947FCCE7815F1D8121232F62 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe
17:38:12.0997 0x272c  BBSvc - ok
17:38:13.0067 0x272c  [ 76F78018F45E7F92164CEA5020176933, 76E1CA6E198417F3749864721C43913189A7EA07B5ED320DE543B2037CEA3D65 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe
17:38:13.0077 0x272c  BBUpdate - ok
17:38:13.0127 0x272c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
17:38:13.0127 0x272c  BDESVC - ok
17:38:13.0157 0x272c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:38:13.0157 0x272c  Beep - ok
17:38:13.0237 0x272c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
17:38:13.0257 0x272c  BFE - ok
17:38:13.0327 0x272c  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
17:38:13.0357 0x272c  BITS - ok
17:38:13.0398 0x272c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
17:38:13.0398 0x272c  blbdrive - ok
17:38:13.0518 0x272c  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:38:13.0538 0x272c  Bonjour Service - ok
17:38:13.0598 0x272c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:38:13.0598 0x272c  bowser - ok
17:38:13.0618 0x272c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:38:13.0618 0x272c  BrFiltLo - ok
17:38:13.0618 0x272c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:38:13.0628 0x272c  BrFiltUp - ok
17:38:13.0648 0x272c  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
17:38:13.0658 0x272c  BridgeMP - ok
17:38:13.0698 0x272c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
17:38:13.0708 0x272c  Browser - ok
17:38:13.0738 0x272c  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
17:38:13.0748 0x272c  Brserid - ok
17:38:13.0758 0x272c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
17:38:13.0758 0x272c  BrSerWdm - ok
17:38:13.0768 0x272c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
17:38:13.0778 0x272c  BrUsbMdm - ok
17:38:13.0788 0x272c  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
17:38:13.0788 0x272c  BrUsbSer - ok
17:38:13.0808 0x272c  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
17:38:13.0818 0x272c  BTHMODEM - ok
17:38:13.0858 0x272c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
17:38:13.0868 0x272c  bthserv - ok
17:38:14.0038 0x272c  [ 1F79342D9EB530A48742F651E570983A, 99E0B613C23FA8591E248DFA6FF2D3EE19E262BE6E070A0E43E256B69687017F ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
17:38:14.0078 0x272c  c2cautoupdatesvc - ok
17:38:14.0178 0x272c  [ E4938E0A376CF0B9D989EE5C0A146891, 9DF6AB5781CD60862D9664CA9A8AF0696A1FB6D09D804CD8DE9630F40DE59E90 ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
17:38:14.0208 0x272c  c2cpnrsvc - ok
17:38:14.0228 0x272c  catchme - ok
17:38:14.0248 0x272c  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:38:14.0248 0x272c  cdfs - ok
17:38:14.0298 0x272c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
17:38:14.0308 0x272c  cdrom - ok
17:38:14.0368 0x272c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
17:38:14.0368 0x272c  CertPropSvc - ok
17:38:14.0378 0x272c  cherimoya - ok
17:38:14.0418 0x272c  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
17:38:14.0428 0x272c  circlass - ok
17:38:14.0468 0x272c  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
17:38:14.0478 0x272c  CLFS - ok
17:38:14.0568 0x272c  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:38:14.0578 0x272c  clr_optimization_v2.0.50727_32 - ok
17:38:14.0628 0x272c  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:38:14.0628 0x272c  clr_optimization_v2.0.50727_64 - ok
17:38:14.0758 0x272c  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:38:14.0758 0x272c  clr_optimization_v4.0.30319_32 - ok
17:38:14.0778 0x272c  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:38:14.0778 0x272c  clr_optimization_v4.0.30319_64 - ok
17:38:14.0798 0x272c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
17:38:14.0798 0x272c  CmBatt - ok
17:38:14.0828 0x272c  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:38:14.0828 0x272c  cmdide - ok
17:38:14.0898 0x272c  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
17:38:14.0918 0x272c  CNG - ok
17:38:14.0958 0x272c  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
17:38:14.0958 0x272c  Compbatt - ok
17:38:15.0008 0x272c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
17:38:15.0008 0x272c  CompositeBus - ok
17:38:15.0018 0x272c  COMSysApp - ok
17:38:15.0038 0x272c  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
17:38:15.0038 0x272c  crcdisk - ok
17:38:15.0118 0x272c  [ C8BD651E13895B93ED9EC5B4F1DF42BC, D86D6BF0BA3C09B49B3A52C86A7F3B3856A27F79EDD86A8FFA469D9A5F196E8D ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
17:38:15.0128 0x272c  Creative ALchemy AL6 Licensing Service - ok
17:38:15.0178 0x272c  [ C0EAD9F8AB83D41FF07303C75589C2B8, C89CAC39BCD2FA2DCC56D7EE84FF66127BCECCAE400E119FE41BF4C4D769504B ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
17:38:15.0188 0x272c  Creative Audio Engine Licensing Service - ok
17:38:15.0238 0x272c  [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:38:15.0238 0x272c  CryptSvc - ok
17:38:15.0318 0x272c  [ 69CDBA2B9C397E349A04FA70DD9170A2, 7879E58CB221063EF17A8A7677E81B47BFD600C3FC3353378690E4A2131327ED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
17:38:15.0328 0x272c  CTAudSvcService - ok
17:38:15.0408 0x272c  [ D06E443457FADC6B1AFAF3AA4B6936F6, 109B4D05E156604AFB3D63B380CC063B900AEB12F57A1D235B9F9399EE0909C7 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
17:38:15.0418 0x272c  dc3d - ok
17:38:15.0518 0x272c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:38:15.0538 0x272c  DcomLaunch - ok
17:38:15.0598 0x272c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
17:38:15.0608 0x272c  defragsvc - ok
17:38:15.0648 0x272c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:38:15.0658 0x272c  DfsC - ok
17:38:15.0708 0x272c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
17:38:15.0718 0x272c  Dhcp - ok
17:38:15.0758 0x272c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
17:38:15.0768 0x272c  discache - ok
17:38:15.0788 0x272c  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
17:38:15.0788 0x272c  Disk - ok
17:38:15.0848 0x272c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:38:15.0848 0x272c  Dnscache - ok
17:38:15.0908 0x272c  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
17:38:15.0908 0x272c  dot3svc - ok
17:38:15.0968 0x272c  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
17:38:15.0978 0x272c  Dot4 - ok
17:38:16.0028 0x272c  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\Windows\system32\drivers\Dot4Prt.sys
17:38:16.0028 0x272c  Dot4Print - ok
17:38:16.0048 0x272c  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
17:38:16.0048 0x272c  dot4usb - ok
17:38:16.0108 0x272c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
17:38:16.0108 0x272c  DPS - ok
17:38:16.0158 0x272c  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
17:38:16.0158 0x272c  drmkaud - ok
17:38:16.0208 0x272c  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
17:38:16.0228 0x272c  DXGKrnl - ok
17:38:16.0278 0x272c  [ A6DB3A7828B456A574243066E2E77D8C, 852F14E5FD77A47BF901E0A27F6D21BD9236275135C33ABB30589D0346341179 ] E100B           C:\Windows\system32\DRIVERS\efe5b32e.sys
17:38:16.0288 0x272c  E100B - ok
17:38:16.0328 0x272c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
17:38:16.0338 0x272c  EapHost - ok
17:38:16.0468 0x272c  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
17:38:16.0528 0x272c  ebdrv - ok
17:38:16.0578 0x272c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
17:38:16.0578 0x272c  EFS - ok
17:38:16.0668 0x272c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
17:38:16.0688 0x272c  ehRecvr - ok
17:38:16.0728 0x272c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
17:38:16.0738 0x272c  ehSched - ok
17:38:16.0778 0x272c  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
17:38:16.0798 0x272c  elxstor - ok
17:38:16.0838 0x272c  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
17:38:16.0838 0x272c  ErrDev - ok
17:38:16.0878 0x272c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
17:38:16.0898 0x272c  EventSystem - ok
17:38:16.0908 0x272c  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
17:38:16.0908 0x272c  exfat - ok
17:38:16.0958 0x272c  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
17:38:16.0958 0x272c  fastfat - ok
17:38:17.0038 0x272c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
17:38:17.0058 0x272c  Fax - ok
17:38:17.0068 0x272c  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
17:38:17.0068 0x272c  fdc - ok
17:38:17.0128 0x272c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
17:38:17.0128 0x272c  fdPHost - ok
17:38:17.0148 0x272c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:38:17.0148 0x272c  FDResPub - ok
17:38:17.0168 0x272c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:38:17.0178 0x272c  FileInfo - ok
17:38:17.0178 0x272c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
17:38:17.0188 0x272c  Filetrace - ok
17:38:17.0288 0x272c  [ ABEDFD48AC042C6AAAD32452E77217A1, BC45A1C36BDBC20EF4E7D3CFB5368912382D964CB34D050ED255F56307F4C910 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:38:17.0308 0x272c  FLEXnet Licensing Service - ok
17:38:17.0358 0x272c  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
17:38:17.0358 0x272c  flpydisk - ok
17:38:17.0408 0x272c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:38:17.0418 0x272c  FltMgr - ok
17:38:17.0508 0x272c  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
17:38:17.0528 0x272c  FontCache - ok
17:38:17.0578 0x272c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:38:17.0578 0x272c  FontCache3.0.0.0 - ok
17:38:17.0608 0x272c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
17:38:17.0608 0x272c  FsDepends - ok
17:38:17.0658 0x272c  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:38:17.0658 0x272c  Fs_Rec - ok
17:38:17.0718 0x272c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
17:38:17.0718 0x272c  fvevol - ok
17:38:17.0738 0x272c  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
17:38:17.0738 0x272c  gagp30kx - ok
17:38:17.0778 0x272c  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:38:17.0778 0x272c  GEARAspiWDM - ok
17:38:17.0848 0x272c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
17:38:17.0858 0x272c  gpsvc - ok
17:38:17.0898 0x272c  [ 2ED7FF3E1ADA4092632393781518B3A7, FDB82CF74BE31806A6BFFC9724E54A74F822DFB4E137EEA38209418BDBCDAAB6 ] grmnusb         C:\Windows\system32\drivers\grmnusb.sys
17:38:17.0898 0x272c  grmnusb - ok
17:38:17.0958 0x272c  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:38:17.0968 0x272c  gusvc - ok
17:38:18.0018 0x272c  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
17:38:18.0018 0x272c  hcw85cir - ok
17:38:18.0058 0x272c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
17:38:18.0068 0x272c  HDAudBus - ok
17:38:18.0078 0x272c  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
17:38:18.0078 0x272c  HidBatt - ok
17:38:18.0088 0x272c  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
17:38:18.0098 0x272c  HidBth - ok
17:38:18.0108 0x272c  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
17:38:18.0118 0x272c  HidIr - ok
17:38:18.0158 0x272c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
17:38:18.0158 0x272c  hidserv - ok
17:38:18.0209 0x272c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
17:38:18.0209 0x272c  HidUsb - ok
17:38:18.0249 0x272c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:38:18.0259 0x272c  hkmsvc - ok
17:38:18.0309 0x272c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:38:18.0319 0x272c  HomeGroupListener - ok
17:38:18.0359 0x272c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:38:18.0369 0x272c  HomeGroupProvider - ok
17:38:18.0424 0x272c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
17:38:18.0424 0x272c  HpSAMD - ok
17:38:18.0524 0x272c  [ 4DB356DF142BAD89A5F9E798B2A01E01, F6D43410524ACB391FAA37D7B913775CA33E08F7B75C4621607BB62B812D99C5 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
17:38:18.0524 0x272c  HPSupportSolutionsFrameworkService - ok
17:38:18.0604 0x272c  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:38:18.0624 0x272c  HTTP - ok
17:38:18.0674 0x272c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
17:38:18.0674 0x272c  hwpolicy - ok
17:38:18.0714 0x272c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
17:38:18.0724 0x272c  i8042prt - ok
17:38:18.0764 0x272c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
17:38:18.0774 0x272c  iaStorV - ok
17:38:18.0844 0x272c  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
17:38:18.0844 0x272c  IDriverT - ok
17:38:18.0924 0x272c  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:38:18.0944 0x272c  idsvc - ok
17:38:18.0974 0x272c  IEEtwCollectorService - ok
17:38:19.0024 0x272c  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
17:38:19.0024 0x272c  iirsp - ok
17:38:19.0124 0x272c  [ E5E6A7D13BBC0F80B866D021F306BF6C, 74D7E138607E19F231DBFF9FBB74176F3D7ADA5AD84D5F43BA0E7B4E72C93BE1 ] IJPLMSVC        C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
17:38:19.0124 0x272c  IJPLMSVC - ok
17:38:19.0194 0x272c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
17:38:19.0214 0x272c  IKEEXT - ok
17:38:19.0314 0x272c  [ 56C5A3AFAC93CD364DEC7FBCA616E1C2, B46BBCF799CE09BC3CB2B145AB5F06F05D49753716B00CC709C798BFE1A25F81 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:38:19.0344 0x272c  IntcAzAudAddService - ok
17:38:19.0394 0x272c  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
17:38:19.0394 0x272c  intelide - ok
17:38:19.0424 0x272c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:38:19.0424 0x272c  intelppm - ok
17:38:19.0494 0x272c  [ 3DC635B66DD7412E1C9C3A77B8D78F25, D3894065DA2D08744863ECC5EE9027A0E39711A6A56AAB599F1CAF4BB996F42A ] IntuitUpdateService C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
17:38:19.0494 0x272c  IntuitUpdateService - ok
17:38:19.0544 0x272c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
17:38:19.0544 0x272c  IPBusEnum - ok
17:38:19.0584 0x272c  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:38:19.0584 0x272c  IpFilterDriver - ok
17:38:19.0654 0x272c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
17:38:19.0674 0x272c  iphlpsvc - ok
17:38:19.0714 0x272c  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
17:38:19.0724 0x272c  IPMIDRV - ok
17:38:19.0764 0x272c  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
17:38:19.0764 0x272c  IPNAT - ok
17:38:19.0884 0x272c  [ 7FAE5B6CDB18B0B2E81F32869F595022, D873A7EE94749E1700E8F6B8BB7B485AE1B0B83388D63BE06335720498D4794F ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
17:38:19.0904 0x272c  iPod Service - ok
17:38:19.0934 0x272c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:38:19.0934 0x272c  IRENUM - ok
17:38:19.0974 0x272c  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:38:19.0974 0x272c  isapnp - ok
17:38:20.0024 0x272c  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
17:38:20.0034 0x272c  iScsiPrt - ok
17:38:20.0094 0x272c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
17:38:20.0094 0x272c  kbdclass - ok
17:38:20.0104 0x272c  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
17:38:20.0104 0x272c  kbdhid - ok
17:38:20.0124 0x272c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
17:38:20.0124 0x272c  KeyIso - ok
17:38:20.0164 0x272c  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:38:20.0164 0x272c  KSecDD - ok
17:38:20.0214 0x272c  [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
17:38:20.0214 0x272c  KSecPkg - ok
17:38:20.0264 0x272c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
17:38:20.0264 0x272c  ksthunk - ok
17:38:20.0314 0x272c  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
17:38:20.0334 0x272c  KtmRm - ok
17:38:20.0384 0x272c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
17:38:20.0394 0x272c  LanmanServer - ok
17:38:20.0454 0x272c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:38:20.0454 0x272c  LanmanWorkstation - ok
17:38:20.0454 0x272c  Lbd - ok
17:38:20.0474 0x272c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:38:20.0474 0x272c  lltdio - ok
17:38:20.0524 0x272c  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
17:38:20.0534 0x272c  lltdsvc - ok
17:38:20.0564 0x272c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
17:38:20.0564 0x272c  lmhosts - ok
17:38:20.0634 0x272c  LMIInfo - ok
17:38:20.0714 0x272c  [ 413ECDCFAD9A82804D3674C8D7EEC24E, C8A65ED0B079D16D1A4449E840B4A9475388FBE61B5A84DFEFC35F4FB3B9A9B1 ] lmimirr         C:\Windows\system32\DRIVERS\lmimirr.sys
17:38:20.0714 0x272c  lmimirr - ok
17:38:20.0734 0x272c  LMIRfsClientNP - ok
17:38:20.0784 0x272c  [ C57D3FAA50E6F395759FFB7C709BD944, 7B0B86F0E710934D57801E1F7BB048AD878F871147B2A16BBF81219A4022B499 ] LMIRfsDriver    C:\Windows\system32\drivers\LMIRfsDriver.sys
17:38:20.0784 0x272c  LMIRfsDriver - ok
17:38:20.0854 0x272c  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
17:38:20.0864 0x272c  LSI_FC - ok
17:38:20.0874 0x272c  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
17:38:20.0884 0x272c  LSI_SAS - ok
17:38:20.0894 0x272c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:38:20.0894 0x272c  LSI_SAS2 - ok
17:38:20.0924 0x272c  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:38:20.0934 0x272c  LSI_SCSI - ok
17:38:20.0984 0x272c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
17:38:20.0984 0x272c  luafv - ok
17:38:21.0034 0x272c  [ 024DA28053D57E9E32BEE52600576BBB, 8EC636DAB90A835DEBA2EC6176F4547EEF557415FF77C6378EF423569702731E ] MarvinBus       C:\Windows\system32\DRIVERS\MarvinBus64.sys
17:38:21.0044 0x272c  MarvinBus - ok
17:38:21.0074 0x272c  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
17:38:21.0084 0x272c  Mcx2Svc - ok
17:38:21.0094 0x272c  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
17:38:21.0094 0x272c  megasas - ok
17:38:21.0124 0x272c  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
17:38:21.0134 0x272c  MegaSR - ok
17:38:21.0264 0x272c  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
17:38:21.0264 0x272c  Microsoft Office Groove Audit Service - ok
17:38:21.0304 0x272c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
17:38:21.0304 0x272c  MMCSS - ok
17:38:21.0324 0x272c  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
17:38:21.0324 0x272c  Modem - ok
17:38:21.0344 0x272c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
17:38:21.0344 0x272c  monitor - ok
17:38:21.0344 0x272c  motandroidusb - ok
17:38:21.0374 0x272c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
17:38:21.0384 0x272c  mouclass - ok
17:38:21.0404 0x272c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
17:38:21.0404 0x272c  mouhid - ok
17:38:21.0444 0x272c  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
17:38:21.0454 0x272c  mountmgr - ok
17:38:21.0514 0x272c  [ DEA022193DF8C88F6E2B3E33D148A5DB, 97DFC47DB83E04A975A1969AA120385463FCAF4E1A9984FD3220442D7026B45A ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:38:21.0524 0x272c  MozillaMaintenance - ok
17:38:21.0594 0x272c  [ 6439D1E559D08BD8A1465A8943357053, 0E300508C22D12FBA3BE566B722F574CBE1B4A1A305356B92B8EA8B86267071B ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
17:38:21.0604 0x272c  MpFilter - ok
17:38:21.0644 0x272c  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:38:21.0654 0x272c  mpio - ok
17:38:21.0684 0x272c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:38:21.0694 0x272c  mpsdrv - ok
17:38:21.0744 0x272c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
17:38:21.0764 0x272c  MpsSvc - ok
17:38:21.0804 0x272c  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:38:21.0814 0x272c  MRxDAV - ok
17:38:21.0864 0x272c  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:38:21.0864 0x272c  mrxsmb - ok
17:38:21.0914 0x272c  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:38:21.0924 0x272c  mrxsmb10 - ok
17:38:21.0974 0x272c  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:38:21.0974 0x272c  mrxsmb20 - ok
17:38:22.0024 0x272c  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
17:38:22.0024 0x272c  msahci - ok
17:38:22.0084 0x272c  [ 023E10227D83B47D3B72C9FFCD323704, 462533E8E9235D59C4B4D07AB9E955C211A9A147639FB79919C0C804253D57F2 ] MSCamSvc        C:\Program Files\Microsoft LifeCam\MSCamS64.exe
17:38:22.0084 0x272c  MSCamSvc - ok
17:38:22.0134 0x272c  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
17:38:22.0144 0x272c  msdsm - ok
17:38:22.0194 0x272c  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
17:38:22.0194 0x272c  MSDTC - ok
17:38:22.0244 0x272c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
17:38:22.0244 0x272c  Msfs - ok
17:38:22.0254 0x272c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
17:38:22.0254 0x272c  mshidkmdf - ok
17:38:22.0294 0x272c  [ 0BBE794E0C54621CFA8ED9B5850BAAAE, D4AB6223377AB2F57EEDAA5A71EF689266241FC339EE4FCE05F2EA914E1F5FEA ] MSHUSBVideo     C:\Windows\system32\Drivers\nx6000.sys
17:38:22.0304 0x272c  MSHUSBVideo - ok
17:38:22.0324 0x272c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
17:38:22.0324 0x272c  msisadrv - ok
17:38:22.0374 0x272c  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
17:38:22.0384 0x272c  MSiSCSI - ok
17:38:22.0384 0x272c  msiserver - ok
17:38:22.0414 0x272c  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
17:38:22.0414 0x272c  MSKSSRV - ok
17:38:22.0524 0x272c  [ F0D5494D8B177C37E16966262F5D0F68, DD63427DFFD9DD2BEC8336F6AD1BEFE347012331631DC5FEC65E83B1EACDBC67 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:38:22.0534 0x272c  MsMpSvc - ok
17:38:22.0544 0x272c  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
17:38:22.0544 0x272c  MSPCLOCK - ok
17:38:22.0554 0x272c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
17:38:22.0554 0x272c  MSPQM - ok
17:38:22.0604 0x272c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
17:38:22.0614 0x272c  MsRPC - ok
17:38:22.0654 0x272c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
17:38:22.0654 0x272c  mssmbios - ok
17:38:22.0694 0x272c  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
17:38:22.0694 0x272c  MSTEE - ok
17:38:22.0714 0x272c  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
17:38:22.0724 0x272c  MTConfig - ok
17:38:22.0754 0x272c  [ 2219A3D695405E7BA2186BA6B9EDE14A, 8B99BD22DACB56FF544ED922962FE4EC1172BF90987A46E3A5F62A3B4E720B0C ] MTsensor        C:\Windows\system32\DRIVERS\ASACPI.sys
17:38:22.0754 0x272c  MTsensor - ok
17:38:22.0764 0x272c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
17:38:22.0774 0x272c  Mup - ok
17:38:22.0834 0x272c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
17:38:22.0844 0x272c  napagent - ok
17:38:22.0864 0x272c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
17:38:22.0874 0x272c  NativeWifiP - ok
17:38:22.0944 0x272c  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
17:38:22.0964 0x272c  NDIS - ok
17:38:22.0974 0x272c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
17:38:22.0974 0x272c  NdisCap - ok
17:38:22.0994 0x272c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
17:38:22.0994 0x272c  NdisTapi - ok
17:38:23.0044 0x272c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
17:38:23.0054 0x272c  Ndisuio - ok
17:38:23.0104 0x272c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
17:38:23.0104 0x272c  NdisWan - ok
17:38:23.0154 0x272c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
17:38:23.0154 0x272c  NDProxy - ok
17:38:23.0225 0x272c  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
17:38:23.0235 0x272c  Net Driver HPZ12 - ok
17:38:23.0285 0x272c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
17:38:23.0285 0x272c  NetBIOS - ok
17:38:23.0335 0x272c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
17:38:23.0345 0x272c  NetBT - ok
17:38:23.0365 0x272c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
17:38:23.0365 0x272c  Netlogon - ok
17:38:23.0425 0x272c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
17:38:23.0435 0x272c  Netman - ok
17:38:23.0493 0x272c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:38:23.0493 0x272c  NetMsmqActivator - ok
17:38:23.0503 0x272c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:38:23.0503 0x272c  NetPipeActivator - ok
17:38:23.0553 0x272c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
17:38:23.0563 0x272c  netprofm - ok
17:38:23.0573 0x272c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:38:23.0573 0x272c  NetTcpActivator - ok
17:38:23.0583 0x272c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:38:23.0583 0x272c  NetTcpPortSharing - ok
17:38:23.0613 0x272c  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
17:38:23.0613 0x272c  nfrd960 - ok
17:38:23.0663 0x272c  [ F9EEFFC65C68A45001D1349E652B8B6F, E5F223129416083A12A85D48C65B2C8D1BF1124110399938E144308C89F9241D ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:38:23.0663 0x272c  NisDrv - ok
17:38:23.0713 0x272c  [ 9690F420A99364C1E5C439914B0DE25C, 6C6E0B27C4255001FE5F1EAD911DE1A8BF922C405B0C8031A6BD253CEB1D02A6 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
17:38:23.0723 0x272c  NisSrv - ok
17:38:23.0773 0x272c  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
17:38:23.0783 0x272c  NlaSvc - ok
17:38:23.0793 0x272c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
17:38:23.0793 0x272c  Npfs - ok
17:38:23.0843 0x272c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
17:38:23.0843 0x272c  nsi - ok
17:38:23.0853 0x272c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
17:38:23.0853 0x272c  nsiproxy - ok
17:38:23.0953 0x272c  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
17:38:23.0983 0x272c  Ntfs - ok
17:38:24.0013 0x272c  [ 96ACBF3DDC38A52FEE115F577F36568F, DB8CB01971208C8D7A306A5FEDA39A3802195123E6B801DFB905B0E1934D3C96 ] NuidFltr        C:\Windows\system32\DRIVERS\NuidFltr.sys
17:38:24.0013 0x272c  NuidFltr - ok
17:38:24.0053 0x272c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
17:38:24.0053 0x272c  Null - ok
17:38:24.0394 0x272c  [ 2232AE1BB51A96A7381A2CA17DF12E24, 4813E27BC14EB3CBD55AF89B098EA5C8DA4C7FF0B6CCB7AACFC43BC0E578C988 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:38:24.0634 0x272c  nvlddmkm - ok
17:38:24.0684 0x272c  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
17:38:24.0684 0x272c  nvraid - ok
17:38:24.0704 0x272c  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
17:38:24.0714 0x272c  nvstor - ok
17:38:24.0784 0x272c  [ 2C8DD5A34A81715865D66D7AF39362A6, 62F9D873127921EE2EAA80B73E8994C4BF6DA7EEDACAEA030B8D58E086FD3850 ] nvsvc           C:\Windows\system32\nvvsvc.exe
17:38:24.0804 0x272c  nvsvc - ok
17:38:24.0954 0x272c  [ AA130938A27BB80A8B6438EF83232275, 7C5A4863CD22413723C9F7658855E34088A2F89DF740531ED7986F67A30935E0 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
17:38:24.0994 0x272c  nvUpdatusService - ok
17:38:25.0044 0x272c  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
17:38:25.0044 0x272c  nv_agp - ok
17:38:25.0154 0x272c  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:38:25.0174 0x272c  odserv - ok
17:38:25.0214 0x272c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
17:38:25.0224 0x272c  ohci1394 - ok
17:38:25.0264 0x272c  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:38:25.0264 0x272c  ose - ok
17:38:25.0324 0x272c  [ EDD1DCD36F6115ACC6935C3F88FF54D7, 43A84A7459D926B635F23EE09FC7C67C2B03725A3EEA9D38A18FDB9CD7C7F785 ] P17             C:\Windows\system32\drivers\P17.sys
17:38:25.0354 0x272c  P17 - ok
17:38:25.0404 0x272c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
17:38:25.0414 0x272c  p2pimsvc - ok
17:38:25.0474 0x272c  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
17:38:25.0484 0x272c  p2psvc - ok
17:38:25.0534 0x272c  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
17:38:25.0534 0x272c  Parport - ok
17:38:25.0574 0x272c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
17:38:25.0584 0x272c  partmgr - ok
17:38:25.0634 0x272c  [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] PcaSvc          C:\Windows\System32\pcasvc.dll
17:38:25.0634 0x272c  PcaSvc - ok
17:38:25.0684 0x272c  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
17:38:25.0694 0x272c  pci - ok
17:38:25.0734 0x272c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
17:38:25.0734 0x272c  pciide - ok
17:38:25.0754 0x272c  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
17:38:25.0764 0x272c  pcmcia - ok
17:38:25.0774 0x272c  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
17:38:25.0784 0x272c  pcw - ok
17:38:25.0844 0x272c  [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
17:38:25.0864 0x272c  PEAUTH - ok
17:38:25.0964 0x272c  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
17:38:25.0964 0x272c  PerfHost - ok
17:38:26.0064 0x272c  [ 0050E6BEC926C98AC6C16714FF1AD450, F3EF20879EE6550E4C4BC632D604AED3E829AD54E75BF5401E4E10061311CFAD ] PinnacleMarvinAVS C:\Windows\system32\DRIVERS\MarvinAVS64.sys
17:38:26.0074 0x272c  PinnacleMarvinAVS - ok
17:38:26.0164 0x272c  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
17:38:26.0184 0x272c  pla - ok
17:38:26.0254 0x272c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
17:38:26.0274 0x272c  PlugPlay - ok
17:38:26.0304 0x272c  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
17:38:26.0314 0x272c  Pml Driver HPZ12 - ok
17:38:26.0354 0x272c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
17:38:26.0354 0x272c  PNRPAutoReg - ok
17:38:26.0404 0x272c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
17:38:26.0414 0x272c  PNRPsvc - ok
17:38:26.0454 0x272c  [ E4799B87675C59AA1F620DE5C6F113BB, 094EE16D4CEC68DB316002994482344A6BFCFDE399131F7FA11BB46C2DCBF218 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
17:38:26.0464 0x272c  Point64 - ok
17:38:26.0524 0x272c  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
17:38:26.0534 0x272c  PolicyAgent - ok
17:38:26.0584 0x272c  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
17:38:26.0594 0x272c  Power - ok
17:38:26.0614 0x272c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
17:38:26.0624 0x272c  PptpMiniport - ok
17:38:26.0634 0x272c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
17:38:26.0634 0x272c  Processor - ok
17:38:26.0684 0x272c  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
17:38:26.0694 0x272c  ProfSvc - ok
17:38:26.0704 0x272c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:38:26.0704 0x272c  ProtectedStorage - ok
17:38:26.0754 0x272c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
17:38:26.0764 0x272c  Psched - ok
17:38:26.0774 0x272c  [ FBF4DB6D53585437E41A113300002A2B, A0145CE87A95DA3775B28A00E741660C26ADE34BBCC7FC502ED809931482C8F2 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
17:38:26.0784 0x272c  PxHlpa64 - ok
17:38:26.0864 0x272c  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
17:38:26.0904 0x272c  ql2300 - ok
17:38:26.0914 0x272c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
17:38:26.0924 0x272c  ql40xx - ok
17:38:26.0974 0x272c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
17:38:26.0984 0x272c  QWAVE - ok
17:38:26.0994 0x272c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
17:38:26.0994 0x272c  QWAVEdrv - ok
17:38:27.0004 0x272c  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
17:38:27.0004 0x272c  RasAcd - ok
17:38:27.0064 0x272c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
17:38:27.0064 0x272c  RasAgileVpn - ok
17:38:27.0074 0x272c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
17:38:27.0084 0x272c  RasAuto - ok
17:38:27.0134 0x272c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
17:38:27.0134 0x272c  Rasl2tp - ok
17:38:27.0184 0x272c  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
17:38:27.0194 0x272c  RasMan - ok
17:38:27.0234 0x272c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
17:38:27.0244 0x272c  RasPppoe - ok
17:38:27.0244 0x272c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
17:38:27.0254 0x272c  RasSstp - ok
17:38:27.0314 0x272c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
17:38:27.0324 0x272c  rdbss - ok
17:38:27.0334 0x272c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
17:38:27.0334 0x272c  rdpbus - ok
17:38:27.0384 0x272c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
17:38:27.0384 0x272c  RDPCDD - ok
17:38:27.0384 0x272c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
17:38:27.0394 0x272c  RDPENCDD - ok
17:38:27.0404 0x272c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
17:38:27.0404 0x272c  RDPREFMP - ok
17:38:27.0494 0x272c  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:38:27.0494 0x272c  RdpVideoMiniport - ok
17:38:27.0544 0x272c  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
17:38:27.0544 0x272c  RDPWD - ok
17:38:27.0594 0x272c  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
17:38:27.0604 0x272c  rdyboost - ok
17:38:27.0644 0x272c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
17:38:27.0644 0x272c  RemoteAccess - ok
17:38:27.0674 0x272c  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
17:38:27.0674 0x272c  RemoteRegistry - ok
17:38:27.0734 0x272c  [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt         C:\Windows\system32\DRIVERS\revoflt.sys
17:38:27.0744 0x272c  Revoflt - ok
17:38:27.0914 0x272c  [ A682147FEED222560875931AE8A2C73F, B07D459FD5B76FAC18B87A3DD7DA058813E68186CDDA1284A972921892C82EC4 ] ReyhoogIvta     C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvta.exe
17:38:27.0984 0x272c  ReyhoogIvta - ok
17:38:28.0084 0x272c  [ 805AE1F90C64758D19AAA001CF8CBA12, 28E389FD9D8106D922AAD0FF93107C4C2900565480ACD9E909D8C134E39E39A1 ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
17:38:28.0084 0x272c  RichVideo - ok
17:38:28.0094 0x272c  RimUsb - ok
17:38:28.0114 0x272c  [ C903D49655B4AAE46673F0AAA6BE0F58, 0F861775323CC1792A4A4B43D6375532D982FBC9FCC03184B55101A2A579A832 ] RimVSerPort     C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
17:38:28.0124 0x272c  RimVSerPort - ok
17:38:28.0174 0x272c  [ 388D3DD1A6457280F3BADBA9F3ACD6B1, 5C534EA15195B1301C917904627AF09FE2ABA3FEE1641B5C87E8F3191BC49058 ] ROOTMODEM       C:\Windows\system32\Drivers\RootMdm.sys
17:38:28.0174 0x272c  ROOTMODEM - ok
17:38:28.0214 0x272c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
17:38:28.0224 0x272c  RpcEptMapper - ok
17:38:28.0274 0x272c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
17:38:28.0274 0x272c  RpcLocator - ok
17:38:28.0334 0x272c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
17:38:28.0354 0x272c  RpcSs - ok
17:38:28.0374 0x272c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
17:38:28.0374 0x272c  rspndr - ok
17:38:28.0434 0x272c  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
17:38:28.0454 0x272c  RTL8167 - ok
17:38:28.0501 0x272c  [ DFADCAE64AEBE2C67DA9CD2AE74CCDE5, 62DA8B88DA415DE610EA976B5BCEDEC3756BFE5D879241E1CCC30644E755695C ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh64.sys
17:38:28.0511 0x272c  RTL8169 - ok
17:38:28.0541 0x272c  rwcbufkd - ok
17:38:28.0591 0x272c  [ A49CDA75F8E41F769D19E2669BD62B37, 768A7CAD039C0285191E9D20E36ED8B9A2009499D75888AD88418385B0B9E1AB ] S3XXx64         C:\Windows\system32\DRIVERS\S3XXx64.sys
17:38:28.0591 0x272c  S3XXx64 - ok
17:38:28.0601 0x272c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
17:38:28.0601 0x272c  SamSs - ok
17:38:28.0631 0x272c  [ CDB954C736D51DC5FA712C039AF4F683, A72D701B475255622FF46CB75F2D32DE25319E98963D2F46A8A58CAFEA6F3C86 ] SbFw            C:\Windows\system32\drivers\SbFw.sys
17:38:28.0641 0x272c  SbFw - ok
17:38:28.0671 0x272c  [ 5DE22E3CB6140213DA2E0599B08D525C, E36AACBDC42C719E6DA0CD94501D18372065546E4AD8CE3AE84AE1092235BA1D ] SBFWIMCL        C:\Windows\system32\DRIVERS\sbfwim.sys
17:38:28.0681 0x272c  SBFWIMCL - ok
17:38:28.0681 0x272c  [ 5DE22E3CB6140213DA2E0599B08D525C, E36AACBDC42C719E6DA0CD94501D18372065546E4AD8CE3AE84AE1092235BA1D ] SBFWIMCLMP      C:\Windows\system32\DRIVERS\SBFWIM.sys
17:38:28.0681 0x272c  SBFWIMCLMP - ok
17:38:28.0701 0x272c  [ A5BC45F8C2F30350E7566799C86B2F5D, 2E7F0DDDB098F5A74AB4E24721FF04CB7AC1B384CF6E80CCD577AE945D1DA647 ] sbhips          C:\Windows\system32\drivers\sbhips.sys
17:38:28.0711 0x272c  sbhips - ok
17:38:28.0751 0x272c  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
17:38:28.0751 0x272c  sbp2port - ok
17:38:28.0761 0x272c  SBRE - ok
17:38:28.0781 0x272c  [ F9955774A6BF0A5CA696F591C7B80A79, 6BE41DF831CBDDF36A2AF33E8D9D8ACAB72DF554651AD7C7E1237713B0778C45 ] SbTis           C:\Windows\system32\drivers\sbtis.sys
17:38:28.0781 0x272c  SbTis - ok
17:38:28.0831 0x272c  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
17:38:28.0841 0x272c  SCardSvr - ok
17:38:28.0871 0x272c  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
17:38:28.0871 0x272c  scfilter - ok
17:38:28.0941 0x272c  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
17:38:28.0971 0x272c  Schedule - ok
17:38:29.0021 0x272c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
17:38:29.0031 0x272c  SCPolicySvc - ok
17:38:29.0041 0x272c  [ A49CDA75F8E41F769D19E2669BD62B37, 768A7CAD039C0285191E9D20E36ED8B9A2009499D75888AD88418385B0B9E1AB ] SCR3xx USB Smart Card Reader64 C:\Windows\system32\DRIVERS\S3XXx64.sys
17:38:29.0041 0x272c  SCR3xx USB Smart Card Reader64 - ok
17:38:29.0091 0x272c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
17:38:29.0101 0x272c  SDRSVC - ok
17:38:29.0131 0x272c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
17:38:29.0131 0x272c  secdrv - ok
17:38:29.0151 0x272c  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
17:38:29.0161 0x272c  seclogon - ok
17:38:29.0211 0x272c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
17:38:29.0211 0x272c  SENS - ok
17:38:29.0221 0x272c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
17:38:29.0231 0x272c  SensrSvc - ok
17:38:29.0251 0x272c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
17:38:29.0251 0x272c  Serenum - ok
17:38:29.0271 0x272c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
17:38:29.0271 0x272c  Serial - ok
17:38:29.0311 0x272c  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
17:38:29.0311 0x272c  sermouse - ok
17:38:29.0361 0x272c  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
17:38:29.0371 0x272c  SessionEnv - ok
17:38:29.0571 0x272c  [ 86A4C2600B5E78448E1512FBB908B515, 834F63F55F2F9311BC7FA9BDE514DBFF9F7028F2ABF04CAB7172409B273B8371 ] sfcdpsrv        C:\Program Files (x86)\Common Files\Seagate\CDP\afcdpsrv.exe
17:38:29.0651 0x272c  sfcdpsrv - ok
17:38:29.0681 0x272c  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
17:38:29.0691 0x272c  sffdisk - ok
17:38:29.0691 0x272c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
17:38:29.0691 0x272c  sffp_mmc - ok
17:38:29.0711 0x272c  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
17:38:29.0711 0x272c  sffp_sd - ok
17:38:29.0751 0x272c  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
17:38:29.0751 0x272c  sfloppy - ok
17:38:29.0861 0x272c  [ 6E41C4E3179BBD1E24B382440E996C48, 8700D22BC789398D855B2F481F2BA426DF09AC1153344A9DF7485D43A8ED77C0 ] SgtSch2Svc      C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe
17:38:29.0891 0x272c  SgtSch2Svc - ok
17:38:29.0941 0x272c  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
17:38:29.0951 0x272c  SharedAccess - ok
17:38:30.0001 0x272c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:38:30.0021 0x272c  ShellHWDetection - ok
17:38:30.0041 0x272c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:38:30.0041 0x272c  SiSRaid2 - ok
17:38:30.0061 0x272c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
17:38:30.0061 0x272c  SiSRaid4 - ok
17:38:30.0191 0x272c  [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
17:38:30.0201 0x272c  SkypeUpdate - ok
17:38:30.0211 0x272c  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
17:38:30.0221 0x272c  Smb - ok
17:38:30.0281 0x272c  [ 10450F432811D7FDA60A97FCC674D7B2, FD6245B06DD81C6E287DA47173D622357D86D84E3A5444CD34645973FE2E8BF5 ] snapman         C:\Windows\system32\DRIVERS\snapman.sys
17:38:30.0291 0x272c  snapman - ok
17:38:30.0331 0x272c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
17:38:30.0331 0x272c  SNMPTRAP - ok
17:38:30.0361 0x272c  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
17:38:30.0361 0x272c  spldr - ok
17:38:30.0411 0x272c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
17:38:30.0421 0x272c  Spooler - ok
17:38:30.0551 0x272c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
17:38:30.0621 0x272c  sppsvc - ok
17:38:30.0631 0x272c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
17:38:30.0641 0x272c  sppuinotify - ok
17:38:30.0651 0x272c  [ B9413B99DBB704E0F5824775A1118CC7, 75AAA548705764ECFB7A0C96E691AF80DBB824DC2BA8D356D8D157E6768F14C9 ] Spyder2         C:\Windows\system32\DRIVERS\Spyder2.sys
17:38:30.0661 0x272c  Spyder2 - ok
17:38:30.0711 0x272c  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
17:38:30.0721 0x272c  srv - ok
17:38:30.0781 0x272c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
17:38:30.0791 0x272c  srv2 - ok
17:38:30.0811 0x272c  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
17:38:30.0811 0x272c  srvnet - ok
17:38:30.0861 0x272c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
17:38:30.0871 0x272c  SSDPSRV - ok
17:38:30.0881 0x272c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
17:38:30.0881 0x272c  SstpSvc - ok
17:38:30.0961 0x272c  [ D2230317777033CD0456990BFC4994E5, 0F2F559593EAD7AB4596E67E9AE56E5ABF5C945201366CFC972357C22A4F776A ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
17:38:30.0971 0x272c  Stereo Service - ok
17:38:31.0011 0x272c  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
17:38:31.0011 0x272c  stexstor - ok
17:38:31.0051 0x272c  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
17:38:31.0051 0x272c  StillCam - ok
17:38:31.0141 0x272c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
17:38:31.0151 0x272c  stisvc - ok
17:38:31.0191 0x272c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
17:38:31.0191 0x272c  swenum - ok
17:38:31.0371 0x272c  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
17:38:31.0391 0x272c  SwitchBoard - ok
17:38:31.0441 0x272c  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
17:38:31.0461 0x272c  swprv - ok
17:38:31.0551 0x272c  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
17:38:31.0591 0x272c  SysMain - ok
17:38:31.0641 0x272c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:38:31.0641 0x272c  TabletInputService - ok
17:38:31.0761 0x272c  [ FFDF8B9B796E5243214233A8DB622E3D, 307DAAA783E1409153A0FEBF619B27109E6D1271072198F54877278F8298757F ] TabletServiceWacom C:\Windows\system32\Wacom_Tablet.exe
17:38:31.0831 0x272c  TabletServiceWacom - ok
17:38:31.0841 0x272c  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
17:38:31.0851 0x272c  TapiSrv - ok
17:38:31.0901 0x272c  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
17:38:31.0901 0x272c  TBS - ok
17:38:32.0021 0x272c  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
17:38:32.0061 0x272c  Tcpip - ok
17:38:32.0111 0x272c  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
17:38:32.0141 0x272c  TCPIP6 - ok
17:38:32.0171 0x272c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
17:38:32.0171 0x272c  tcpipreg - ok
17:38:32.0241 0x272c  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
17:38:32.0241 0x272c  TDPIPE - ok
17:38:32.0351 0x272c  [ 99527D49EE0A96FC25537C61B270A372, 519E23F86EC86349F92C4A88DBD19C097AEE0A6E152776B32B45D293ED14946B ] tdrpman273      C:\Windows\system32\DRIVERS\tdrpm273.sys
17:38:32.0371 0x272c  tdrpman273 - ok
17:38:32.0421 0x272c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
17:38:32.0421 0x272c  TDTCP - ok
17:38:32.0471 0x272c  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
17:38:32.0471 0x272c  tdx - ok
17:38:32.0501 0x272c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
17:38:32.0501 0x272c  TermDD - ok
17:38:32.0561 0x272c  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
17:38:32.0581 0x272c  TermService - ok
17:38:32.0621 0x272c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
17:38:32.0621 0x272c  Themes - ok
17:38:32.0661 0x272c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
17:38:32.0661 0x272c  THREADORDER - ok
17:38:32.0761 0x272c  [ EBBAEA02F0095A798000C7E06B16D41B, CBEAC6CBF0F8D5B72ACCBADA6BD1DF1EB31F84B0D973DA955337991D4DBBDF7E ] timounter       C:\Windows\system32\DRIVERS\timntr.sys
17:38:32.0781 0x272c  timounter - ok
17:38:32.0791 0x272c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
17:38:32.0801 0x272c  TrkWks - ok
17:38:32.0881 0x272c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:38:32.0891 0x272c  TrustedInstaller - ok
17:38:32.0941 0x272c  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
17:38:32.0941 0x272c  tssecsrv - ok
17:38:32.0991 0x272c  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
17:38:33.0001 0x272c  TsUsbFlt - ok
17:38:33.0071 0x272c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
17:38:33.0071 0x272c  tunnel - ok
17:38:33.0121 0x272c  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
17:38:33.0131 0x272c  uagp35 - ok
17:38:33.0181 0x272c  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
17:38:33.0191 0x272c  udfs - ok
17:38:33.0231 0x272c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
17:38:33.0241 0x272c  UI0Detect - ok
17:38:33.0271 0x272c  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
17:38:33.0271 0x272c  uliagpkx - ok
17:38:33.0311 0x272c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
17:38:33.0311 0x272c  umbus - ok
17:38:33.0351 0x272c  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
17:38:33.0351 0x272c  UmPass - ok
17:38:33.0411 0x272c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
17:38:33.0421 0x272c  upnphost - ok
17:38:33.0451 0x272c  [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
17:38:33.0451 0x272c  USBAAPL64 - ok
17:38:33.0515 0x272c  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
17:38:33.0518 0x272c  usbaudio - ok
17:38:33.0552 0x272c  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
17:38:33.0562 0x272c  usbccgp - ok
17:38:33.0602 0x272c  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
17:38:33.0612 0x272c  usbcir - ok
17:38:33.0652 0x272c  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
17:38:33.0652 0x272c  usbehci - ok
17:38:33.0682 0x272c  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
17:38:33.0692 0x272c  usbhub - ok
17:38:33.0722 0x272c  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
17:38:33.0722 0x272c  usbohci - ok
17:38:33.0752 0x272c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
17:38:33.0752 0x272c  usbprint - ok
17:38:33.0802 0x272c  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
17:38:33.0802 0x272c  usbscan - ok
17:38:33.0852 0x272c  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:38:33.0852 0x272c  USBSTOR - ok
17:38:33.0872 0x272c  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
17:38:33.0872 0x272c  usbuhci - ok
17:38:33.0922 0x272c  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
17:38:33.0932 0x272c  usbvideo - ok
17:38:33.0962 0x272c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
17:38:33.0962 0x272c  UxSms - ok
17:38:33.0972 0x272c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
17:38:33.0982 0x272c  VaultSvc - ok
17:38:34.0022 0x272c  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
17:38:34.0022 0x272c  vdrvroot - ok
17:38:34.0082 0x272c  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
17:38:34.0092 0x272c  vds - ok
17:38:34.0142 0x272c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
17:38:34.0152 0x272c  vga - ok
17:38:34.0162 0x272c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
17:38:34.0162 0x272c  VgaSave - ok
17:38:34.0212 0x272c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
17:38:34.0222 0x272c  vhdmp - ok
17:38:34.0262 0x272c  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
17:38:34.0262 0x272c  viaide - ok
17:38:34.0282 0x272c  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:38:34.0282 0x272c  volmgr - ok
17:38:34.0342 0x272c  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
17:38:34.0352 0x272c  volmgrx - ok
17:38:34.0372 0x272c  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
17:38:34.0382 0x272c  volsnap - ok
17:38:34.0402 0x272c  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
17:38:34.0402 0x272c  vsmraid - ok
17:38:34.0482 0x272c  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
17:38:34.0512 0x272c  VSS - ok
17:38:34.0522 0x272c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
17:38:34.0522 0x272c  vwifibus - ok
17:38:34.0582 0x272c  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
17:38:34.0602 0x272c  W32Time - ok
17:38:34.0642 0x272c  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
17:38:34.0652 0x272c  WacomPen - ok
17:38:34.0672 0x272c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
17:38:34.0672 0x272c  WANARP - ok
17:38:34.0682 0x272c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:38:34.0682 0x272c  Wanarpv6 - ok
17:38:34.0812 0x272c  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
17:38:34.0832 0x272c  WatAdminSvc - ok
17:38:34.0922 0x272c  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
17:38:34.0952 0x272c  wbengine - ok
17:38:35.0002 0x272c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
17:38:35.0012 0x272c  WbioSrvc - ok
17:38:35.0072 0x272c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
17:38:35.0082 0x272c  wcncsvc - ok
17:38:35.0112 0x272c  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:38:35.0122 0x272c  WcsPlugInService - ok
17:38:35.0192 0x272c  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
17:38:35.0192 0x272c  Wd - ok
17:38:35.0282 0x272c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
17:38:35.0302 0x272c  Wdf01000 - ok
17:38:35.0332 0x272c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
17:38:35.0342 0x272c  WdiServiceHost - ok
17:38:35.0342 0x272c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
17:38:35.0342 0x272c  WdiSystemHost - ok
17:38:35.0392 0x272c  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
17:38:35.0402 0x272c  WebClient - ok
17:38:35.0422 0x272c  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
17:38:35.0432 0x272c  Wecsvc - ok
17:38:35.0482 0x272c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
17:38:35.0492 0x272c  wercplsupport - ok
17:38:35.0502 0x272c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
17:38:35.0512 0x272c  WerSvc - ok
17:38:35.0522 0x272c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
17:38:35.0522 0x272c  WfpLwf - ok
17:38:35.0532 0x272c  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
17:38:35.0532 0x272c  WIMMount - ok
17:38:35.0562 0x272c  WinDefend - ok
17:38:35.0572 0x272c  WinHttpAutoProxySvc - ok
17:38:35.0652 0x272c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
17:38:35.0662 0x272c  Winmgmt - ok
17:38:35.0752 0x272c  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
17:38:35.0792 0x272c  WinRM - ok
17:38:35.0872 0x272c  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
17:38:35.0872 0x272c  WinUsb - ok
17:38:36.0092 0x272c  [ C5A88770B321C956109AA08EE0440B2A, 5D8C771955BBBB9006CDC6A797BF2CEECB8F2B43D4575BE0DDFAFC5113DC7A5C ] WiselinkPro     C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe
17:38:36.0162 0x272c  WiselinkPro - ok
17:38:36.0232 0x272c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
17:38:36.0252 0x272c  Wlansvc - ok
17:38:36.0422 0x272c  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:38:36.0472 0x272c  wlidsvc - ok
17:38:36.0502 0x272c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
17:38:36.0512 0x272c  WmiAcpi - ok
17:38:36.0552 0x272c  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
17:38:36.0552 0x272c  wmiApSrv - ok
17:38:36.0582 0x272c  WMPNetworkSvc - ok
17:38:36.0612 0x272c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
17:38:36.0612 0x272c  WPCSvc - ok
17:38:36.0662 0x272c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
17:38:36.0672 0x272c  WPDBusEnum - ok
17:38:36.0712 0x272c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
17:38:36.0712 0x272c  ws2ifsl - ok
17:38:36.0782 0x272c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
17:38:36.0782 0x272c  wscsvc - ok
17:38:36.0792 0x272c  WSearch - ok
17:38:36.0902 0x272c  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
17:38:36.0942 0x272c  wuauserv - ok
17:38:37.0002 0x272c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
17:38:37.0002 0x272c  WudfPf - ok
17:38:37.0062 0x272c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
17:38:37.0072 0x272c  WUDFRd - ok
17:38:37.0122 0x272c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
17:38:37.0132 0x272c  wudfsvc - ok
17:38:37.0182 0x272c  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
17:38:37.0192 0x272c  WwanSvc - ok
17:38:37.0202 0x272c  ================ Scan global ===============================
17:38:37.0232 0x272c  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
17:38:37.0262 0x272c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
17:38:37.0272 0x272c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
17:38:37.0312 0x272c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
17:38:37.0362 0x272c  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
17:38:37.0372 0x272c  [ Global ] - ok
17:38:37.0372 0x272c  ================ Scan MBR ==================================
17:38:37.0382 0x272c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:38:37.0602 0x272c  \Device\Harddisk0\DR0 - ok
17:38:37.0602 0x272c  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR1
17:38:37.0602 0x272c  \Device\Harddisk1\DR1 - ok
17:38:37.0602 0x272c  ================ Scan VBR ==================================
17:38:37.0612 0x272c  [ 6ED101E54223C580F4FD11665AE700E6 ] \Device\Harddisk0\DR0\Partition1
17:38:37.0652 0x272c  \Device\Harddisk0\DR0\Partition1 - ok
17:38:37.0662 0x272c  [ 5B9F07F88CE92BF707D5A3E13DCBBA7F ] \Device\Harddisk1\DR1\Partition1
17:38:37.0702 0x272c  \Device\Harddisk1\DR1\Partition1 - ok
17:38:37.0702 0x272c  ================ Scan generic autorun ======================
17:38:37.0772 0x272c  [ 243D6EAF8DD03F64D399AEC3749ABB8F, 9E1CCF18ED88E734B38A167945E887ACB04DC61C5F2B1084209FFF0DBA359772 ] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
17:38:37.0782 0x272c  Acronis Scheduler2 Service - ok
17:38:37.0852 0x272c  [ 5447AF432CDA61159ADDE218C468FFD9, 63BD74521F679F195C24C1818267ECCBD8A7F5C2B4CEF3E60EC46B5AE0AC72A8 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
17:38:37.0872 0x272c  AdobeAAMUpdater-1.0 - ok
17:38:38.0002 0x272c  [ A6AAD37CDCAE75CB62D039E3A4D8F5E3, 4FF763B0D129175BA1B1E794BA313E6C63F7A89D377C786BF5E730AF2A1D95D1 ] C:\Program Files\Microsoft Security Client\msseces.exe
17:38:38.0032 0x272c  MSC - ok
17:38:38.0302 0x272c  [ F55D01FCB10811E1AB77E3C7AB60859B, F9E7F1124AD02801D3DF9D0FBADC3E3EC3D271E16F568E0A233C89545AD1C9AE ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
17:38:38.0462 0x272c  RtHDVCpl - ok
17:38:38.0522 0x272c  [ F3E78CF2B444FD00B71FF1CCD53B43D3, C2AA541D50A8C1CCF734774EADE9AE3903FFD0FF36AF2F68A81C7275FB46D77D ] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
17:38:38.0558 0x272c  Skytel - ok
17:38:38.0718 0x272c  [ AC9F294EF500C115709D389779635605, 86EC00A29BC05895CA37350134C83A274D0A862A5487C0B76D7C49CFB435C66F ] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
17:38:38.0758 0x272c  CanonMyPrinter - ok
17:38:38.0918 0x272c  [ BF3DE35824837DF4D39E462874850BBE, 0708BC8F806144804F05B632E968823ECB371F71328E08F2639537B4C316F3F1 ] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe
17:38:38.0948 0x272c  CanonSolutionMenu - ok
17:38:39.0048 0x272c  [ 66B1C09A03323BC0142B62769ACB195E, 54B59524DE975DF649AD0C781772753135F6F73BA1A5E2458658665565BAADEC ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
17:38:39.0088 0x272c  NvBackend - ok
17:38:39.0148 0x272c  [ F4BA3F5E9CABB08A02F8CD0C7131BEDD, 4AF414F3B8D4D0DC2DDA908DA4947EBA00444267B1964031C0D4BD67E6BD8209 ] C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe
17:38:39.0158 0x272c  Seagate Scheduler2 Service - ok
17:38:39.0158 0x272c  P17RunE - ok
17:38:39.0218 0x272c  [ 8B617F2935E7F0B8A15F64D308DBF7C1, BD47BCCC913D1200971048126672C0464404D2F51723CB2EDEC7AAD980715CAE ] C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
17:38:39.0228 0x272c  LifeCam - ok
17:38:39.0328 0x272c  [ 0260BBC74AF28E6D30CF5DFECED9ACC1, 296D552CF469BEB79127EE53D82448AA8DCEA15F536F9AF92B3B72B4BB4B1C4C ] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
17:38:39.0348 0x272c  TrueImageMonitor.exe - ok
17:38:39.0368 0x272c  [ C419DF63E0121D72411285780C2FC6CC, F47F854D327C589D174D3BB5B55D5C05F5ACA73DF52A6BEF47596B9010190291 ] C:\Windows\UpdReg.EXE
17:38:39.0368 0x272c  UpdReg - ok
17:38:39.0438 0x272c  [ ED191C327A6695B35F614BD420E9EB5D, 7F4CC0EFA3F624C966E8AD78C1AC049C2CAB99D6C667D15F89A54AFC8CF0D4AA ] C:\Program Files (x86)\Creative\SBAudigy\Volume Panel\VolPanlu.exe
17:38:39.0438 0x272c  VolPanel - ok
17:38:39.0508 0x272c  [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
17:38:39.0508 0x272c  GrooveMonitor - ok
17:38:39.0548 0x272c  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
17:38:39.0558 0x272c  SwitchBoard - ok
17:38:39.0678 0x272c  [ D5B783DACE1BBDD382A63C894BAB8E1E, 20BA7479B3BE8AC7771AA91DB9C4F3B46DADDFF9C48627A5C7C460546DD20AF3 ] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
17:38:39.0688 0x272c  AdobeCS5ServiceManager - ok
17:38:39.0748 0x272c  [ 09E60B4FE341A94A300830C008907099, 5F07868953FAA8FFA9E6477F6BAC52DEEDF3EA4A3F8AF5B4E15878D8240223AB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
17:38:39.0748 0x272c  APSDaemon - ok
17:38:39.0808 0x272c  [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
17:38:39.0808 0x272c  HP Software Update - ok
17:38:39.0868 0x272c  [ 10035E4C014522FE740172FF0B4FF43E, B09DCF7E147990C723EF044FB064D8793D18131519D292D88B71920C127AEF86 ] C:\Windows\ehome\ehTray.exe
17:38:39.0878 0x272c  ehTray.exe - ok
17:38:39.0888 0x272c  ISUSPM - ok
17:38:39.0948 0x272c  [ 271B0D188430670509CB9943D5229205, 74CB5A9D8B5988AE08C0F65C601FC54F8745BAB6825B6FEEFBA8F068D656D8D7 ] C:\Program Files (x86)\QuickTime\QTTask.exe
17:38:39.0968 0x272c  QuickTime Task - ok
17:38:40.0018 0x272c  [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
17:38:40.0018 0x272c  swg - ok
17:38:40.0048 0x272c  Skype - ok
17:38:40.0048 0x272c  TomTomHOME.exe - ok
17:38:40.0058 0x272c  necad - ok
17:38:40.0088 0x272c  yfpwvwtb - ok
17:38:40.0088 0x272c  MotoCast - ok
17:38:40.0198 0x272c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:38:40.0218 0x272c  Sidebar - ok
17:38:40.0258 0x272c  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:38:40.0268 0x272c  mctadmin - ok
17:38:40.0268 0x272c  [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
17:38:40.0268 0x272c  swg - ok
17:38:40.0438 0x272c  [ 22F7B9670AD770C7ED7F4738204C8E5C, 7B793AC094CB1B073419B5DAE09DFBB8EBED03D29301F490AA76EA0667613438 ] C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
17:38:40.0498 0x272c  HP Officejet Pro 8600 (NET) - ok
17:38:40.0498 0x272c  Skype - ok
17:38:40.0808 0x272c  [ B2BAE2D76FBE9FDC3F6E0D1F886DF367, 964EBF736891BE252C68FCE1F9EAD5E60E6E0C2119D21C6DF49FBD30FBB678EF ] C:\Program Files\CCleaner\CCleaner64.exe
17:38:40.0978 0x272c  CCleaner Monitoring - ok
17:38:40.0998 0x272c  [ 271B0D188430670509CB9943D5229205, 74CB5A9D8B5988AE08C0F65C601FC54F8745BAB6825B6FEEFBA8F068D656D8D7 ] C:\Program Files (x86)\QuickTime\QTTask.exe
17:38:41.0008 0x272c  QuickTime Task - ok
17:38:41.0008 0x272c  Skype - ok
17:38:41.0028 0x272c  [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe>

 



#5 pkshome

pkshome
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 05 January 2015 - 07:00 PM

<17:38:40.0268 0x272c  swg - ok
17:38:40.0438 0x272c  [ 22F7B9670AD770C7ED7F4738204C8E5C, 7B793AC094CB1B073419B5DAE09DFBB8EBED03D29301F490AA76EA0667613438 ] C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
17:38:40.0498 0x272c  HP Officejet Pro 8600 (NET) - ok
17:38:40.0498 0x272c  Skype - ok
17:38:40.0808 0x272c  [ B2BAE2D76FBE9FDC3F6E0D1F886DF367, 964EBF736891BE252C68FCE1F9EAD5E60E6E0C2119D21C6DF49FBD30FBB678EF ] C:\Program Files\CCleaner\CCleaner64.exe
17:38:40.0978 0x272c  CCleaner Monitoring - ok
17:38:40.0998 0x272c  [ 271B0D188430670509CB9943D5229205, 74CB5A9D8B5988AE08C0F65C601FC54F8745BAB6825B6FEEFBA8F068D656D8D7 ] C:\Program Files (x86)\QuickTime\QTTask.exe
17:38:41.0008 0x272c  QuickTime Task - ok
17:38:41.0008 0x272c  Skype - ok
17:38:41.0028 0x272c  [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
17:38:41.0028 0x272c  swg - ok
17:38:41.0218 0x272c  [ B2BAE2D76FBE9FDC3F6E0D1F886DF367, 964EBF736891BE252C68FCE1F9EAD5E60E6E0C2119D21C6DF49FBD30FBB678EF ] C:\Program Files\CCleaner\CCleaner64.exe
17:38:41.0338 0x272c  CCleaner Monitoring - ok
17:38:41.0338 0x272c  Waiting for KSN requests completion. In queue: 144
17:38:42.0378 0x272c  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.6.305.0 ), 0x61000 ( enabled : updated )
17:38:42.0388 0x272c  Win FW state via NFP2: enabled
17:38:45.0143 0x272c  ============================================================
17:38:45.0143 0x272c  Scan finished
17:38:45.0143 0x272c  ============================================================
17:38:45.0143 0x37ac  Detected object count: 0
17:38:45.0143 0x37ac  Actual detected object count: 0
17:41:01.0340 0x1978  ============================================================
17:41:01.0340 0x1978  Scan started
17:41:01.0340 0x1978  Mode: Manual;
17:41:01.0340 0x1978  ============================================================
17:41:01.0340 0x1978  KSN ping started
17:41:01.0460 0x1978  KSN ping finished: true
17:41:01.0910 0x1978  ================ Scan system memory ========================
17:41:01.0910 0x1978  System memory - ok
17:41:01.0910 0x1978  ================ Scan services =============================
17:41:02.0110 0x1978  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
17:41:02.0110 0x1978  1394ohci - ok
17:41:02.0170 0x1978  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
17:41:02.0180 0x1978  ACPI - ok
17:41:02.0190 0x1978  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
17:41:02.0190 0x1978  AcpiPmi - ok
17:41:02.0320 0x1978  [ E034BEAB701D4FB6ABDDB0F514E590F4, 9DBA0FA63CA13E7E1669F2BAEDFA4A0418C773AF23ED8D73D924F522029FEEA0 ] AcrSch2Svc      C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
17:41:02.0330 0x1978  AcrSch2Svc - ok
17:41:02.0380 0x1978  [ 2F0683FD2DF1D92E891CACA14B45A8C1, B4A8D6A183FA0B7D642FAD6B51C19FEC998481E1C49480D2B391E5D8B55F5BBD ] adfs            C:\Windows\system32\drivers\adfs.sys
17:41:02.0380 0x1978  adfs - ok
17:41:02.0400 0x1978  [ 8B46D5A1D3EF08232C04D0EAFB871FB2, 5306F8452EF675851CB0015F9E5C5EB750137D6D65C9CB7E47F8EF5B10A44D10 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
17:41:02.0400 0x1978  Adobe LM Service - ok
17:41:02.0490 0x1978  [ 34400005DE52842C4D6D4EE978B4D7CE, E7C3121812284B9FE6A12910C67C98354BAF5DB74865A5B4E0C2E64852BDB50A ] AdobeActiveFileMonitor8.0 C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
17:41:02.0500 0x1978  AdobeActiveFileMonitor8.0 - ok
17:41:02.0570 0x1978  [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:41:02.0580 0x1978  AdobeARMservice - ok
17:41:02.0730 0x1978  [ 4E48A7DF7ECACB38C686B2BEBAA687A3, D4DEE6BD464855B24A6D40BC6A9279B2041099615C6A319D869DA113AD896EA3 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:41:02.0740 0x1978  AdobeFlashPlayerUpdateSvc - ok
17:41:02.0810 0x1978  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
17:41:02.0820 0x1978  adp94xx - ok
17:41:02.0850 0x1978  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
17:41:02.0850 0x1978  adpahci - ok
17:41:02.0870 0x1978  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
17:41:02.0870 0x1978  adpu320 - ok
17:41:02.0920 0x1978  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
17:41:02.0920 0x1978  AeLookupSvc - ok
17:41:02.0970 0x1978  [ AE1FCE2CD1E99BEA89183BA8CD320872, 96F14BCA0C2479F39A5027A71922907D0F35CAD8E9A5037674DF7995BBDB2B51 ] afcdp           C:\Windows\system32\DRIVERS\afcdp.sys
17:41:02.0980 0x1978  afcdp - ok
17:41:03.0030 0x1978  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
17:41:03.0040 0x1978  AFD - ok
17:41:03.0090 0x1978  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
17:41:03.0090 0x1978  agp440 - ok
17:41:03.0110 0x1978  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
17:41:03.0120 0x1978  ALG - ok
17:41:03.0150 0x1978  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:41:03.0150 0x1978  aliide - ok
17:41:03.0200 0x1978  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
17:41:03.0200 0x1978  amdide - ok
17:41:03.0230 0x1978  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
17:41:03.0230 0x1978  AmdK8 - ok
17:41:03.0240 0x1978  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
17:41:03.0240 0x1978  AmdPPM - ok
17:41:03.0290 0x1978  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
17:41:03.0290 0x1978  amdsata - ok
17:41:03.0350 0x1978  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
17:41:03.0360 0x1978  amdsbs - ok
17:41:03.0370 0x1978  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
17:41:03.0370 0x1978  amdxata - ok
17:41:03.0400 0x1978  [ 80B9412C4DE09147581FC935FB4C97AB, 0C9661F7B5EF7F9D61981790B7AB64E3375BD117962166619D0CC546A2D014D3 ] AppID           C:\Windows\system32\drivers\appid.sys
17:41:03.0410 0x1978  AppID - ok
17:41:03.0430 0x1978  [ F71CA01C24FC3798A717B5A6F682F9AD, 8CF1C209E7BBBAD02D6D087293C0B681CDA3170AF119CA2916C2708D8801E749 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
17:41:03.0430 0x1978  AppIDSvc - ok
17:41:03.0480 0x1978  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
17:41:03.0480 0x1978  Appinfo - ok
17:41:03.0541 0x1978  [ 650D03E40F93FAE323CB841F80368E5C, F67B97CFDCE2EE9294977725268EFDB0DD724BD16E7ED5BFCA45375AA8EBA5BB ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:41:03.0541 0x1978  Apple Mobile Device - ok
17:41:03.0571 0x1978  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
17:41:03.0571 0x1978  arc - ok
17:41:03.0591 0x1978  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
17:41:03.0591 0x1978  arcsas - ok
17:41:03.0761 0x1978  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:41:03.0761 0x1978  aspnet_state - ok
17:41:03.0811 0x1978  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:41:03.0811 0x1978  AsyncMac - ok
17:41:03.0831 0x1978  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
17:41:03.0831 0x1978  atapi - ok
17:41:03.0881 0x1978  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:41:03.0901 0x1978  AudioEndpointBuilder - ok
17:41:03.0921 0x1978  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv        C:\Windows\System32\Audiosrv.dll
17:41:03.0931 0x1978  AudioSrv - ok
17:41:03.0961 0x1978  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
17:41:03.0961 0x1978  AxInstSV - ok
17:41:04.0001 0x1978  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
17:41:04.0011 0x1978  b06bdrv - ok
17:41:04.0041 0x1978  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
17:41:04.0041 0x1978  b57nd60a - ok
17:41:04.0191 0x1978  [ 5F685973740F289BE3C809952DB8408B, 4C0A0C06BB2B6B1879A860B0D68289A55F80CF74947FCCE7815F1D8121232F62 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe
17:41:04.0191 0x1978  BBSvc - ok
17:41:04.0251 0x1978  [ 76F78018F45E7F92164CEA5020176933, 76E1CA6E198417F3749864721C43913189A7EA07B5ED320DE543B2037CEA3D65 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe
17:41:04.0251 0x1978  BBUpdate - ok
17:41:04.0281 0x1978  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
17:41:04.0291 0x1978  BDESVC - ok
17:41:04.0311 0x1978  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:41:04.0311 0x1978  Beep - ok
17:41:04.0391 0x1978  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
17:41:04.0401 0x1978  BFE - ok
17:41:04.0471 0x1978  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
17:41:04.0491 0x1978  BITS - ok
17:41:04.0531 0x1978  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
17:41:04.0531 0x1978  blbdrive - ok
17:41:04.0623 0x1978  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:41:04.0633 0x1978  Bonjour Service - ok
17:41:04.0683 0x1978  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:41:04.0683 0x1978  bowser - ok
17:41:04.0693 0x1978  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:41:04.0703 0x1978  BrFiltLo - ok
17:41:04.0703 0x1978  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:41:04.0703 0x1978  BrFiltUp - ok
17:41:04.0723 0x1978  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
17:41:04.0733 0x1978  BridgeMP - ok
17:41:04.0773 0x1978  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
17:41:04.0773 0x1978  Browser - ok
17:41:04.0803 0x1978  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
17:41:04.0813 0x1978  Brserid - ok
17:41:04.0823 0x1978  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
17:41:04.0833 0x1978  BrSerWdm - ok
17:41:04.0843 0x1978  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
17:41:04.0843 0x1978  BrUsbMdm - ok
17:41:04.0853 0x1978  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
17:41:04.0853 0x1978  BrUsbSer - ok
17:41:04.0873 0x1978  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
17:41:04.0873 0x1978  BTHMODEM - ok
17:41:04.0903 0x1978  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
17:41:04.0913 0x1978  bthserv - ok
17:41:05.0063 0x1978  [ 1F79342D9EB530A48742F651E570983A, 99E0B613C23FA8591E248DFA6FF2D3EE19E262BE6E070A0E43E256B69687017F ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
17:41:05.0083 0x1978  c2cautoupdatesvc - ok
17:41:05.0173 0x1978  [ E4938E0A376CF0B9D989EE5C0A146891, 9DF6AB5781CD60862D9664CA9A8AF0696A1FB6D09D804CD8DE9630F40DE59E90 ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
17:41:05.0203 0x1978  c2cpnrsvc - ok
17:41:05.0203 0x1978  catchme - ok
17:41:05.0223 0x1978  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:41:05.0223 0x1978  cdfs - ok
17:41:05.0273 0x1978  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
17:41:05.0283 0x1978  cdrom - ok
17:41:05.0323 0x1978  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
17:41:05.0333 0x1978  CertPropSvc - ok
17:41:05.0333 0x1978  cherimoya - ok
17:41:05.0373 0x1978  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
17:41:05.0373 0x1978  circlass - ok
17:41:05.0413 0x1978  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
17:41:05.0423 0x1978  CLFS - ok
17:41:05.0513 0x1978  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:41:05.0513 0x1978  clr_optimization_v2.0.50727_32 - ok
17:41:05.0573 0x1978  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:41:05.0573 0x1978  clr_optimization_v2.0.50727_64 - ok
17:41:05.0673 0x1978  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:41:05.0673 0x1978  clr_optimization_v4.0.30319_32 - ok
17:41:05.0693 0x1978  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:41:05.0693 0x1978  clr_optimization_v4.0.30319_64 - ok
17:41:05.0703 0x1978  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
17:41:05.0703 0x1978  CmBatt - ok
17:41:05.0733 0x1978  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:41:05.0733 0x1978  cmdide - ok
17:41:05.0803 0x1978  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
17:41:05.0813 0x1978  CNG - ok
17:41:05.0833 0x1978  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
17:41:05.0833 0x1978  Compbatt - ok
17:41:05.0873 0x1978  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
17:41:05.0873 0x1978  CompositeBus - ok
17:41:05.0873 0x1978  COMSysApp - ok
17:41:05.0923 0x1978  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
17:41:05.0923 0x1978  crcdisk - ok
17:41:05.0983 0x1978  [ C8BD651E13895B93ED9EC5B4F1DF42BC, D86D6BF0BA3C09B49B3A52C86A7F3B3856A27F79EDD86A8FFA469D9A5F196E8D ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
17:41:05.0983 0x1978  Creative ALchemy AL6 Licensing Service - ok
17:41:06.0033 0x1978  [ C0EAD9F8AB83D41FF07303C75589C2B8, C89CAC39BCD2FA2DCC56D7EE84FF66127BCECCAE400E119FE41BF4C4D769504B ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
17:41:06.0033 0x1978  Creative Audio Engine Licensing Service - ok
17:41:06.0083 0x1978  [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:41:06.0093 0x1978  CryptSvc - ok
17:41:06.0153 0x1978  [ 69CDBA2B9C397E349A04FA70DD9170A2, 7879E58CB221063EF17A8A7677E81B47BFD600C3FC3353378690E4A2131327ED ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
17:41:06.0163 0x1978  CTAudSvcService - ok
17:41:06.0213 0x1978  [ D06E443457FADC6B1AFAF3AA4B6936F6, 109B4D05E156604AFB3D63B380CC063B900AEB12F57A1D235B9F9399EE0909C7 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
17:41:06.0213 0x1978  dc3d - ok
17:41:06.0283 0x1978  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:41:06.0293 0x1978  DcomLaunch - ok
17:41:06.0353 0x1978  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
17:41:06.0353 0x1978  defragsvc - ok
17:41:06.0413 0x1978  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:41:06.0413 0x1978  DfsC - ok
17:41:06.0473 0x1978  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
17:41:06.0483 0x1978  Dhcp - ok
17:41:06.0533 0x1978  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
17:41:06.0533 0x1978  discache - ok
17:41:06.0543 0x1978  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
17:41:06.0543 0x1978  Disk - ok
17:41:06.0593 0x1978  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:41:06.0603 0x1978  Dnscache - ok
17:41:06.0653 0x1978  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
17:41:06.0663 0x1978  dot3svc - ok
17:41:06.0713 0x1978  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
17:41:06.0713 0x1978  Dot4 - ok
17:41:06.0763 0x1978  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\Windows\system32\drivers\Dot4Prt.sys
17:41:06.0763 0x1978  Dot4Print - ok
17:41:06.0773 0x1978  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
17:41:06.0783 0x1978  dot4usb - ok
17:41:06.0833 0x1978  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
17:41:06.0833 0x1978  DPS - ok
17:41:06.0883 0x1978  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
17:41:06.0883 0x1978  drmkaud - ok
17:41:06.0933 0x1978  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
17:41:06.0943 0x1978  DXGKrnl - ok
17:41:06.0993 0x1978  [ A6DB3A7828B456A574243066E2E77D8C, 852F14E5FD77A47BF901E0A27F6D21BD9236275135C33ABB30589D0346341179 ] E100B           C:\Windows\system32\DRIVERS\efe5b32e.sys
17:41:07.0003 0x1978  E100B - ok
17:41:07.0053 0x1978  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
17:41:07.0053 0x1978  EapHost - ok
17:41:07.0193 0x1978  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
17:41:07.0243 0x1978  ebdrv - ok
17:41:07.0283 0x1978  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
17:41:07.0293 0x1978  EFS - ok
17:41:07.0373 0x1978  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
17:41:07.0393 0x1978  ehRecvr - ok
17:41:07.0443 0x1978  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
17:41:07.0443 0x1978  ehSched - ok
17:41:07.0483 0x1978  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
17:41:07.0493 0x1978  elxstor - ok
17:41:07.0543 0x1978  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
17:41:07.0543 0x1978  ErrDev - ok
17:41:07.0573 0x1978  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
17:41:07.0583 0x1978  EventSystem - ok
17:41:07.0603 0x1978  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
17:41:07.0603 0x1978  exfat - ok
17:41:07.0643 0x1978  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
17:41:07.0653 0x1978  fastfat - ok
17:41:07.0713 0x1978  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
17:41:07.0733 0x1978  Fax - ok
17:41:07.0753 0x1978  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
17:41:07.0753 0x1978  fdc - ok
17:41:07.0793 0x1978  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
17:41:07.0793 0x1978  fdPHost - ok
17:41:07.0813 0x1978  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:41:07.0813 0x1978  FDResPub - ok
17:41:07.0823 0x1978  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:41:07.0823 0x1978  FileInfo - ok
17:41:07.0843 0x1978  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
17:41:07.0843 0x1978  Filetrace - ok
17:41:07.0943 0x1978  [ ABEDFD48AC042C6AAAD32452E77217A1, BC45A1C36BDBC20EF4E7D3CFB5368912382D964CB34D050ED255F56307F4C910 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:41:07.0973 0x1978  FLEXnet Licensing Service - ok
17:41:07.0983 0x1978  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
17:41:07.0983 0x1978  flpydisk - ok
17:41:08.0033 0x1978  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:41:08.0043 0x1978  FltMgr - ok
17:41:08.0123 0x1978  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
17:41:08.0143 0x1978  FontCache - ok
17:41:08.0183 0x1978  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:41:08.0183 0x1978  FontCache3.0.0.0 - ok
17:41:08.0223 0x1978  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
17:41:08.0223 0x1978  FsDepends - ok
17:41:08.0273 0x1978  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:41:08.0273 0x1978  Fs_Rec - ok
17:41:08.0323 0x1978  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
17:41:08.0333 0x1978  fvevol - ok
17:41:08.0343 0x1978  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
17:41:08.0343 0x1978  gagp30kx - ok
17:41:08.0383 0x1978  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:41:08.0383 0x1978  GEARAspiWDM - ok
17:41:08.0453 0x1978  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
17:41:08.0473 0x1978  gpsvc - ok
17:41:08.0513 0x1978  [ 2ED7FF3E1ADA4092632393781518B3A7, FDB82CF74BE31806A6BFFC9724E54A74F822DFB4E137EEA38209418BDBCDAAB6 ] grmnusb         C:\Windows\system32\drivers\grmnusb.sys
17:41:08.0513 0x1978  grmnusb - ok
17:41:08.0563 0x1978  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
17:41:08.0573 0x1978  gusvc - ok
17:41:08.0613 0x1978  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
17:41:08.0613 0x1978  hcw85cir - ok
17:41:08.0663 0x1978  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
17:41:08.0663 0x1978  HDAudBus - ok
17:41:08.0673 0x1978  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
17:41:08.0673 0x1978  HidBatt - ok
17:41:08.0693 0x1978  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
17:41:08.0693 0x1978  HidBth - ok
17:41:08.0713 0x1978  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
17:41:08.0713 0x1978  HidIr - ok
17:41:08.0763 0x1978  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
17:41:08.0763 0x1978  hidserv - ok
17:41:08.0793 0x1978  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
17:41:08.0793 0x1978  HidUsb - ok
17:41:08.0833 0x1978  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:41:08.0843 0x1978  hkmsvc - ok
17:41:08.0893 0x1978  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:41:08.0903 0x1978  HomeGroupListener - ok
17:41:08.0943 0x1978  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:41:08.0953 0x1978  HomeGroupProvider - ok
17:41:09.0003 0x1978  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
17:41:09.0003 0x1978  HpSAMD - ok
17:41:09.0083 0x1978  [ 4DB356DF142BAD89A5F9E798B2A01E01, F6D43410524ACB391FAA37D7B913775CA33E08F7B75C4621607BB62B812D99C5 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
17:41:09.0083 0x1978  HPSupportSolutionsFrameworkService - ok
17:41:09.0153 0x1978  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:41:09.0173 0x1978  HTTP - ok
17:41:09.0223 0x1978  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
17:41:09.0223 0x1978  hwpolicy - ok
17:41:09.0253 0x1978  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
17:41:09.0263 0x1978  i8042prt - ok
17:41:09.0303 0x1978  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
17:41:09.0313 0x1978  iaStorV - ok
17:41:09.0383 0x1978  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
17:41:09.0393 0x1978  IDriverT - ok
17:41:09.0463 0x1978  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:41:09.0483 0x1978  idsvc - ok
17:41:09.0493 0x1978  IEEtwCollectorService - ok
17:41:09.0523 0x1978  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
17:41:09.0523 0x1978  iirsp - ok
17:41:09.0608 0x1978  [ E5E6A7D13BBC0F80B866D021F306BF6C, 74D7E138607E19F231DBFF9FBB74176F3D7ADA5AD84D5F43BA0E7B4E72C93BE1 ] IJPLMSVC        C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
17:41:09.0608 0x1978  IJPLMSVC - ok
17:41:09.0678 0x1978  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
17:41:09.0698 0x1978  IKEEXT - ok
17:41:09.0798 0x1978  [ 56C5A3AFAC93CD364DEC7FBCA616E1C2, B46BBCF799CE09BC3CB2B145AB5F06F05D49753716B00CC709C798BFE1A25F81 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:41:09.0828 0x1978  IntcAzAudAddService - ok
17:41:09.0878 0x1978  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
17:41:09.0878 0x1978  intelide - ok
17:41:09.0898 0x1978  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:41:09.0898 0x1978  intelppm - ok
17:41:09.0938 0x1978  [ 3DC635B66DD7412E1C9C3A77B8D78F25, D3894065DA2D08744863ECC5EE9027A0E39711A6A56AAB599F1CAF4BB996F42A ] IntuitUpdateService C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
17:41:09.0938 0x1978  IntuitUpdateService - ok
17:41:09.0978 0x1978  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
17:41:09.0988 0x1978  IPBusEnum - ok
17:41:10.0028 0x1978  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:41:10.0028 0x1978  IpFilterDriver - ok
17:41:10.0098 0x1978  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
17:41:10.0108 0x1978  iphlpsvc - ok
17:41:10.0158 0x1978  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
17:41:10.0158 0x1978  IPMIDRV - ok
17:41:10.0208 0x1978  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
17:41:10.0208 0x1978  IPNAT - ok
17:41:10.0338 0x1978  [ 7FAE5B6CDB18B0B2E81F32869F595022, D873A7EE94749E1700E8F6B8BB7B485AE1B0B83388D63BE06335720498D4794F ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
17:41:10.0348 0x1978  iPod Service - ok
17:41:10.0358 0x1978  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:41:10.0358 0x1978  IRENUM - ok
17:41:10.0398 0x1978  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:41:10.0398 0x1978  isapnp - ok
17:41:10.0448 0x1978  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
17:41:10.0458 0x1978  iScsiPrt - ok
17:41:10.0508 0x1978  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
17:41:10.0508 0x1978  kbdclass - ok
17:41:10.0508 0x1978  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
17:41:10.0508 0x1978  kbdhid - ok
17:41:10.0518 0x1978  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
17:41:10.0528 0x1978  KeyIso - ok
17:41:10.0568 0x1978  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:41:10.0568 0x1978  KSecDD - ok
17:41:10.0618 0x1978  [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
17:41:10.0618 0x1978  KSecPkg - ok
17:41:10.0628 0x1978  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
17:41:10.0628 0x1978  ksthunk - ok
17:41:10.0688 0x1978  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
17:41:10.0698 0x1978  KtmRm - ok
17:41:10.0748 0x1978  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
17:41:10.0758 0x1978  LanmanServer - ok
17:41:10.0808 0x1978  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:41:10.0818 0x1978  LanmanWorkstation - ok
17:41:10.0818 0x1978  Lbd - ok
17:41:10.0828 0x1978  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:41:10.0828 0x1978  lltdio - ok
17:41:10.0878 0x1978  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
17:41:10.0888 0x1978  lltdsvc - ok
17:41:10.0908 0x1978  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
17:41:10.0908 0x1978  lmhosts - ok
17:41:10.0918 0x1978  LMIInfo - ok
17:41:10.0958 0x1978  [ 413ECDCFAD9A82804D3674C8D7EEC24E, C8A65ED0B079D16D1A4449E840B4A9475388FBE61B5A84DFEFC35F4FB3B9A9B1 ] lmimirr         C:\Windows\system32\DRIVERS\lmimirr.sys
17:41:10.0958 0x1978  lmimirr - ok
17:41:10.0968 0x1978  LMIRfsClientNP - ok
17:41:11.0008 0x1978  [ C57D3FAA50E6F395759FFB7C709BD944, 7B0B86F0E710934D57801E1F7BB048AD878F871147B2A16BBF81219A4022B499 ] LMIRfsDriver    C:\Windows\system32\drivers\LMIRfsDriver.sys
17:41:11.0008 0x1978  LMIRfsDriver - ok
17:41:11.0058 0x1978  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
17:41:11.0058 0x1978  LSI_FC - ok
17:41:11.0078 0x1978  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
17:41:11.0078 0x1978  LSI_SAS - ok
17:41:11.0098 0x1978  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:41:11.0098 0x1978  LSI_SAS2 - ok
17:41:11.0108 0x1978  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:41:11.0108 0x1978  LSI_SCSI - ok
17:41:11.0158 0x1978  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
17:41:11.0158 0x1978  luafv - ok
17:41:11.0208 0x1978  [ 024DA28053D57E9E32BEE52600576BBB, 8EC636DAB90A835DEBA2EC6176F4547EEF557415FF77C6378EF423569702731E ] MarvinBus       C:\Windows\system32\DRIVERS\MarvinBus64.sys
17:41:11.0218 0x1978  MarvinBus - ok
17:41:11.0258 0x1978  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
17:41:11.0258 0x1978  Mcx2Svc - ok
17:41:11.0278 0x1978  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
17:41:11.0278 0x1978  megasas - ok
17:41:11.0308 0x1978  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
17:41:11.0318 0x1978  MegaSR - ok
17:41:11.0428 0x1978  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
17:41:11.0428 0x1978  Microsoft Office Groove Audit Service - ok
17:41:11.0458 0x1978  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
17:41:11.0468 0x1978  MMCSS - ok
17:41:11.0488 0x1978  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
17:41:11.0488 0x1978  Modem - ok
17:41:11.0508 0x1978  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
17:41:11.0508 0x1978  monitor - ok
17:41:11.0518 0x1978  motandroidusb - ok
17:41:11.0548 0x1978  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
17:41:11.0548 0x1978  mouclass - ok
17:41:11.0558 0x1978  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
17:41:11.0558 0x1978  mouhid - ok
17:41:11.0608 0x1978  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
17:41:11.0618 0x1978  mountmgr - ok
17:41:11.0668 0x1978  [ DEA022193DF8C88F6E2B3E33D148A5DB, 97DFC47DB83E04A975A1969AA120385463FCAF4E1A9984FD3220442D7026B45A ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:41:11.0668 0x1978  MozillaMaintenance - ok
17:41:11.0718 0x1978  [ 6439D1E559D08BD8A1465A8943357053, 0E300508C22D12FBA3BE566B722F574CBE1B4A1A305356B92B8EA8B86267071B ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
17:41:11.0728 0x1978  MpFilter - ok
17:41:11.0778 0x1978  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:41:11.0778 0x1978  mpio - ok
17:41:11.0808 0x1978  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:41:11.0808 0x1978  mpsdrv - ok
17:41:11.0858 0x1978  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
17:41:11.0888 0x1978  MpsSvc - ok
17:41:11.0928 0x1978  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:41:11.0928 0x1978  MRxDAV - ok
17:41:11.0978 0x1978  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:41:11.0978 0x1978  mrxsmb - ok
17:41:12.0038 0x1978  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:41:12.0038 0x1978  mrxsmb10 - ok
17:41:12.0088 0x1978  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:41:12.0088 0x1978  mrxsmb20 - ok
17:41:12.0138 0x1978  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
17:41:12.0148 0x1978  msahci - ok
17:41:12.0198 0x1978  [ 023E10227D83B47D3B72C9FFCD323704, 462533E8E9235D59C4B4D07AB9E955C211A9A147639FB79919C0C804253D57F2 ] MSCamSvc        C:\Program Files\Microsoft LifeCam\MSCamS64.exe
17:41:12.0208 0x1978  MSCamSvc - ok
17:41:12.0258 0x1978  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
17:41:12.0258 0x1978  msdsm - ok
17:41:12.0308 0x1978  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
17:41:12.0318 0x1978  MSDTC - ok
17:41:12.0368 0x1978  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
17:41:12.0368 0x1978  Msfs - ok
17:41:12.0378 0x1978  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
17:41:12.0378 0x1978  mshidkmdf - ok
17:41:12.0408 0x1978  [ 0BBE794E0C54621CFA8ED9B5850BAAAE, D4AB6223377AB2F57EEDAA5A71EF689266241FC339EE4FCE05F2EA914E1F5FEA ] MSHUSBVideo     C:\Windows\system32\Drivers\nx6000.sys
17:41:12.0408 0x1978  MSHUSBVideo - ok
17:41:12.0438 0x1978  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
17:41:12.0438 0x1978  msisadrv - ok
17:41:12.0488 0x1978  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
17:41:12.0488 0x1978  MSiSCSI - ok
17:41:12.0488 0x1978  msiserver - ok
17:41:12.0498 0x1978  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
17:41:12.0498 0x1978  MSKSSRV - ok
17:41:12.0588 0x1978  [ F0D5494D8B177C37E16966262F5D0F68, DD63427DFFD9DD2BEC8336F6AD1BEFE347012331631DC5FEC65E83B1EACDBC67 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:41:12.0588 0x1978  MsMpSvc - ok
17:41:12.0598 0x1978  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
17:41:12.0598 0x1978  MSPCLOCK - ok
17:41:12.0608 0x1978  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
17:41:12.0608 0x1978  MSPQM - ok
17:41:12.0658 0x1978  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
17:41:12.0668 0x1978  MsRPC - ok
17:41:12.0708 0x1978  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
17:41:12.0708 0x1978  mssmbios - ok
17:41:12.0728 0x1978  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
17:41:12.0728 0x1978  MSTEE - ok
17:41:12.0738 0x1978  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
17:41:12.0748 0x1978  MTConfig - ok
17:41:12.0758 0x1978  [ 2219A3D695405E7BA2186BA6B9EDE14A, 8B99BD22DACB56FF544ED922962FE4EC1172BF90987A46E3A5F62A3B4E720B0C ] MTsensor        C:\Windows\system32\DRIVERS\ASACPI.sys
17:41:12.0758 0x1978  MTsensor - ok
17:41:12.0768 0x1978  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
17:41:12.0768 0x1978  Mup - ok
17:41:12.0828 0x1978  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
17:41:12.0848 0x1978  napagent - ok
17:41:12.0898 0x1978  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
17:41:12.0908 0x1978  NativeWifiP - ok
17:41:12.0978 0x1978  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
17:41:12.0998 0x1978  NDIS - ok
17:41:13.0018 0x1978  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
17:41:13.0018 0x1978  NdisCap - ok
17:41:13.0028 0x1978  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
17:41:13.0028 0x1978  NdisTapi - ok
17:41:13.0078 0x1978  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
17:41:13.0078 0x1978  Ndisuio - ok
17:41:13.0128 0x1978  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
17:41:13.0128 0x1978  NdisWan - ok
17:41:13.0178 0x1978  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
17:41:13.0178 0x1978  NDProxy - ok
17:41:13.0218 0x1978  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
17:41:13.0228 0x1978  Net Driver HPZ12 - ok
17:41:13.0238 0x1978  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
17:41:13.0238 0x1978  NetBIOS - ok
17:41:13.0288 0x1978  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
17:41:13.0298 0x1978  NetBT - ok
17:41:13.0308 0x1978  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
17:41:13.0318 0x1978  Netlogon - ok
17:41:13.0368 0x1978  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
17:41:13.0388 0x1978  Netman - ok
17:41:13.0438 0x1978  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:41:13.0438 0x1978  NetMsmqActivator - ok
17:41:13.0448 0x1978  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:41:13.0448 0x1978  NetPipeActivator - ok
17:41:13.0478 0x1978  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
17:41:13.0498 0x1978  netprofm - ok
17:41:13.0508 0x1978  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:41:13.0508 0x1978  NetTcpActivator - ok
17:41:13.0508 0x1978  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:41:13.0508 0x1978  NetTcpPortSharing - ok
17:41:13.0558 0x1978  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
17:41:13.0558 0x1978  nfrd960 - ok
17:41:13.0598 0x1978  [ F9EEFFC65C68A45001D1349E652B8B6F, E5F223129416083A12A85D48C65B2C8D1BF1124110399938E144308C89F9241D ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:41:13.0608 0x1978  NisDrv - ok
17:41:13.0638 0x1978  [ 9690F420A99364C1E5C439914B0DE25C, 6C6E0B27C4255001FE5F1EAD911DE1A8BF922C405B0C8031A6BD253CEB1D02A6 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
17:41:13.0648 0x1978  NisSrv - ok
17:41:13.0688 0x1978  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
17:41:13.0698 0x1978  NlaSvc - ok
17:41:13.0708 0x1978  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
17:41:13.0708 0x1978  Npfs - ok
17:41:13.0718 0x1978  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
17:41:13.0718 0x1978  nsi - ok
17:41:13.0728 0x1978  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
17:41:13.0728 0x1978  nsiproxy - ok
17:41:13.0828 0x1978  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
17:41:13.0858 0x1978  Ntfs - ok
17:41:13.0878 0x1978  [ 96ACBF3DDC38A52FEE115F577F36568F, DB8CB01971208C8D7A306A5FEDA39A3802195123E6B801DFB905B0E1934D3C96 ] NuidFltr        C:\Windows\system32\DRIVERS\NuidFltr.sys
17:41:13.0878 0x1978  NuidFltr - ok
17:41:13.0888 0x1978  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
17:41:13.0888 0x1978  Null - ok
17:41:14.0218 0x1978  [ 2232AE1BB51A96A7381A2CA17DF12E24, 4813E27BC14EB3CBD55AF89B098EA5C8DA4C7FF0B6CCB7AACFC43BC0E578C988 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:41:14.0428 0x1978  nvlddmkm - ok
17:41:14.0478 0x1978  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
17:41:14.0478 0x1978  nvraid - ok
17:41:14.0538 0x1978  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
17:41:14.0539 0x1978  nvstor - ok
17:41:14.0620 0x1978  [ 2C8DD5A34A81715865D66D7AF39362A6, 62F9D873127921EE2EAA80B73E8994C4BF6DA7EEDACAEA030B8D58E086FD3850 ] nvsvc           C:\Windows\system32\nvvsvc.exe
17:41:14.0650 0x1978  nvsvc - ok
17:41:14.0770 0x1978  [ AA130938A27BB80A8B6438EF83232275, 7C5A4863CD22413723C9F7658855E34088A2F89DF740531ED7986F67A30935E0 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
17:41:14.0790 0x1978  nvUpdatusService - ok
17:41:14.0840 0x1978  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
17:41:14.0850 0x1978  nv_agp - ok
17:41:14.0960 0x1978  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:41:14.0970 0x1978  odserv - ok
17:41:15.0020 0x1978  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
17:41:15.0020 0x1978  ohci1394 - ok
17:41:15.0060 0x1978  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:41:15.0060 0x1978  ose - ok
17:41:15.0140 0x1978  [ EDD1DCD36F6115ACC6935C3F88FF54D7, 43A84A7459D926B635F23EE09FC7C67C2B03725A3EEA9D38A18FDB9CD7C7F785 ] P17             C:\Windows\system32\drivers\P17.sys
17:41:15.0170 0x1978  P17 - ok
17:41:15.0230 0x1978  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
17:41:15.0240 0x1978  p2pimsvc - ok
17:41:15.0300 0x1978  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
17:41:15.0310 0x1978  p2psvc - ok
17:41:15.0350 0x1978  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
17:41:15.0360 0x1978  Parport - ok
17:41:15.0400 0x1978  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
17:41:15.0410 0x1978  partmgr - ok
17:41:15.0460 0x1978  [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] PcaSvc          C:\Windows\System32\pcasvc.dll
17:41:15.0460 0x1978  PcaSvc - ok
17:41:15.0510 0x1978  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
17:41:15.0520 0x1978  pci - ok
17:41:15.0560 0x1978  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
17:41:15.0560 0x1978  pciide - ok
17:41:15.0580 0x1978  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
17:41:15.0580 0x1978  pcmcia - ok
17:41:15.0600 0x1978  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
17:41:15.0600 0x1978  pcw - ok
17:41:15.0670 0x1978  [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
17:41:15.0690 0x1978  PEAUTH - ok
17:41:15.0790 0x1978  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
17:41:15.0800 0x1978  PerfHost - ok
17:41:15.0850 0x1978  [ 0050E6BEC926C98AC6C16714FF1AD450, F3EF20879EE6550E4C4BC632D604AED3E829AD54E75BF5401E4E10061311CFAD ] PinnacleMarvinAVS C:\Windows\system32\DRIVERS\MarvinAVS64.sys
17:41:15.0870 0x1978  PinnacleMarvinAVS - ok
17:41:15.0960 0x1978  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
17:41:15.0980 0x1978  pla - ok
17:41:16.0040 0x1978  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
17:41:16.0050 0x1978  PlugPlay - ok
17:41:16.0080 0x1978  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
17:41:16.0090 0x1978  Pml Driver HPZ12 - ok
17:41:16.0130 0x1978  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
17:41:16.0130 0x1978  PNRPAutoReg - ok
17:41:16.0170 0x1978  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
17:41:16.0180 0x1978  PNRPsvc - ok
17:41:16.0220 0x1978  [ E4799B87675C59AA1F620DE5C6F113BB, 094EE16D4CEC68DB316002994482344A6BFCFDE399131F7FA11BB46C2DCBF218 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
17:41:16.0230 0x1978  Point64 - ok
17:41:16.0290 0x1978  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
17:41:16.0300 0x1978  PolicyAgent - ok
17:41:16.0350 0x1978  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
17:41:16.0350 0x1978  Power - ok
17:41:16.0360 0x1978  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
17:41:16.0360 0x1978  PptpMiniport - ok
17:41:16.0370 0x1978  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
17:41:16.0380 0x1978  Processor - ok
17:41:16.0430 0x1978  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
17:41:16.0430 0x1978  ProfSvc - ok
17:41:16.0450 0x1978  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:41:16.0450 0x1978  ProtectedStorage - ok
17:41:16.0500 0x1978  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
17:41:16.0500 0x1978  Psched - ok
17:41:16.0520 0x1978  [ FBF4DB6D53585437E41A113300002A2B, A0145CE87A95DA3775B28A00E741660C26ADE34BBCC7FC502ED809931482C8F2 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
17:41:16.0520 0x1978  PxHlpa64 - ok
17:41:16.0600 0x1978  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
17:41:16.0630 0x1978  ql2300 - ok
17:41:16.0650 0x1978  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
17:41:16.0650 0x1978  ql40xx - ok
17:41:16.0740 0x1978  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
17:41:16.0750 0x1978  QWAVE - ok
17:41:16.0760 0x1978  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
17:41:16.0760 0x1978  QWAVEdrv - ok
17:41:16.0770 0x1978  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
17:41:16.0770 0x1978  RasAcd - ok
17:41:16.0830 0x1978  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
17:41:16.0830 0x1978  RasAgileVpn - ok
17:41:16.0840 0x1978  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
17:41:16.0850 0x1978  RasAuto - ok
17:41:16.0900 0x1978  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
17:41:16.0900 0x1978  Rasl2tp - ok
17:41:16.0950 0x1978  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
17:41:16.0960 0x1978  RasMan - ok
17:41:17.0010 0x1978  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
17:41:17.0010 0x1978  RasPppoe - ok
17:41:17.0020 0x1978  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
17:41:17.0020 0x1978  RasSstp - ok
17:41:17.0080 0x1978  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
17:41:17.0090 0x1978  rdbss - ok
17:41:17.0100 0x1978  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
17:41:17.0110 0x1978  rdpbus - ok
17:41:17.0150 0x1978  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
17:41:17.0150 0x1978  RDPCDD - ok
17:41:17.0160 0x1978  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
17:41:17.0160 0x1978  RDPENCDD - ok
17:41:17.0170 0x1978  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
17:41:17.0170 0x1978  RDPREFMP - ok
17:41:17.0260 0x1978  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:41:17.0260 0x1978  RdpVideoMiniport - ok
17:41:17.0300 0x1978  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
17:41:17.0310 0x1978  RDPWD - ok
17:41:17.0360 0x1978  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
17:41:17.0360 0x1978  rdyboost - ok
17:41:17.0390 0x1978  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
17:41:17.0400 0x1978  RemoteAccess - ok
17:41:17.0420 0x1978  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
17:41:17.0430 0x1978  RemoteRegistry - ok
17:41:17.0450 0x1978  [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt         C:\Windows\system32\DRIVERS\revoflt.sys
17:41:17.0460 0x1978  Revoflt - ok
17:41:17.0630 0x1978  [ A682147FEED222560875931AE8A2C73F, B07D459FD5B76FAC18B87A3DD7DA058813E68186CDDA1284A972921892C82EC4 ] ReyhoogIvta     C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvta.exe
17:41:17.0690 0x1978  ReyhoogIvta - ok
17:41:17.0790 0x1978  [ 805AE1F90C64758D19AAA001CF8CBA12, 28E389FD9D8106D922AAD0FF93107C4C2900565480ACD9E909D8C134E39E39A1 ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
17:41:17.0800 0x1978  RichVideo - ok
17:41:17.0800 0x1978  RimUsb - ok
17:41:17.0820 0x1978  [ C903D49655B4AAE46673F0AAA6BE0F58, 0F861775323CC1792A4A4B43D6375532D982FBC9FCC03184B55101A2A579A832 ] RimVSerPort     C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys
17:41:17.0820 0x1978  RimVSerPort - ok
17:41:17.0860 0x1978  [ 388D3DD1A6457280F3BADBA9F3ACD6B1, 5C534EA15195B1301C917904627AF09FE2ABA3FEE1641B5C87E8F3191BC49058 ] ROOTMODEM       C:\Windows\system32\Drivers\RootMdm.sys
17:41:17.0860 0x1978  ROOTMODEM - ok
17:41:17.0910 0x1978  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
17:41:17.0910 0x1978  RpcEptMapper - ok
17:41:17.0970 0x1978  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
17:41:17.0970 0x1978  RpcLocator - ok
17:41:18.0030 0x1978  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
17:41:18.0040 0x1978  RpcSs - ok
17:41:18.0050 0x1978  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
17:41:18.0050 0x1978  rspndr - ok
17:41:18.0110 0x1978  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
17:41:18.0110 0x1978  RTL8167 - ok
17:41:18.0160 0x1978  [ DFADCAE64AEBE2C67DA9CD2AE74CCDE5, 62DA8B88DA415DE610EA976B5BCEDEC3756BFE5D879241E1CCC30644E755695C ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh64.sys
17:41:18.0160 0x1978  RTL8169 - ok
17:41:18.0170 0x1978  rwcbufkd - ok
17:41:18.0220 0x1978  [ A49CDA75F8E41F769D19E2669BD62B37, 768A7CAD039C0285191E9D20E36ED8B9A2009499D75888AD88418385B0B9E1AB ] S3XXx64         C:\Windows\system32\DRIVERS\S3XXx64.sys
17:41:18.0220 0x1978  S3XXx64 - ok
17:41:18.0220 0x1978  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
17:41:18.0230 0x1978  SamSs - ok
17:41:18.0260 0x1978  [ CDB954C736D51DC5FA712C039AF4F683, A72D701B475255622FF46CB75F2D32DE25319E98963D2F46A8A58CAFEA6F3C86 ] SbFw            C:\Windows\system32\drivers\SbFw.sys
17:41:18.0260 0x1978  SbFw - ok
17:41:18.0270 0x1978  [ 5DE22E3CB6140213DA2E0599B08D525C, E36AACBDC42C719E6DA0CD94501D18372065546E4AD8CE3AE84AE1092235BA1D ] SBFWIMCL        C:\Windows\system32\DRIVERS\sbfwim.sys
17:41:18.0280 0x1978  SBFWIMCL - ok
17:41:18.0280 0x1978  [ 5DE22E3CB6140213DA2E0599B08D525C, E36AACBDC42C719E6DA0CD94501D18372065546E4AD8CE3AE84AE1092235BA1D ] SBFWIMCLMP      C:\Windows\system32\DRIVERS\SBFWIM.sys
17:41:18.0290 0x1978  SBFWIMCLMP - ok
17:41:18.0310 0x1978  [ A5BC45F8C2F30350E7566799C86B2F5D, 2E7F0DDDB098F5A74AB4E24721FF04CB7AC1B384CF6E80CCD577AE945D1DA647 ] sbhips          C:\Windows\system32\drivers\sbhips.sys
17:41:18.0310 0x1978  sbhips - ok
17:41:18.0350 0x1978  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
17:41:18.0350 0x1978  sbp2port - ok
17:41:18.0360 0x1978  SBRE - ok
17:41:18.0370 0x1978  [ F9955774A6BF0A5CA696F591C7B80A79, 6BE41DF831CBDDF36A2AF33E8D9D8ACAB72DF554651AD7C7E1237713B0778C45 ] SbTis           C:\Windows\system32\drivers\sbtis.sys
17:41:18.0380 0x1978  SbTis - ok
17:41:18.0430 0x1978  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
17:41:18.0430 0x1978  SCardSvr - ok
17:41:18.0460 0x1978  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
17:41:18.0460 0x1978  scfilter - ok
17:41:18.0540 0x1978  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
17:41:18.0560 0x1978  Schedule - ok
17:41:18.0610 0x1978  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
17:41:18.0610 0x1978  SCPolicySvc - ok
17:41:18.0620 0x1978  [ A49CDA75F8E41F769D19E2669BD62B37, 768A7CAD039C0285191E9D20E36ED8B9A2009499D75888AD88418385B0B9E1AB ] SCR3xx USB Smart Card Reader64 C:\Windows\system32\DRIVERS\S3XXx64.sys
17:41:18.0630 0x1978  SCR3xx USB Smart Card Reader64 - ok
17:41:18.0680 0x1978  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
17:41:18.0680 0x1978  SDRSVC - ok
17:41:18.0710 0x1978  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
17:41:18.0710 0x1978  secdrv - ok
17:41:18.0740 0x1978  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
17:41:18.0740 0x1978  seclogon - ok
17:41:18.0790 0x1978  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
17:41:18.0800 0x1978  SENS - ok
17:41:18.0810 0x1978  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
17:41:18.0810 0x1978  SensrSvc - ok
17:41:18.0830 0x1978  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
17:41:18.0830 0x1978  Serenum - ok
17:41:18.0840 0x1978  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
17:41:18.0850 0x1978  Serial - ok
17:41:18.0890 0x1978  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
17:41:18.0890 0x1978  sermouse - ok
17:41:18.0940 0x1978  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
17:41:18.0940 0x1978  SessionEnv - ok
17:41:19.0130 0x1978  [ 86A4C2600B5E78448E1512FBB908B515, 834F63F55F2F9311BC7FA9BDE514DBFF9F7028F2ABF04CAB7172409B273B8371 ] sfcdpsrv        C:\Program Files (x86)\Common Files\Seagate\CDP\afcdpsrv.exe
17:41:19.0180 0x1978  sfcdpsrv - ok
17:41:19.0210 0x1978  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
17:41:19.0210 0x1978  sffdisk - ok
17:41:19.0210 0x1978  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
17:41:19.0210 0x1978  sffp_mmc - ok
17:41:19.0240 0x1978  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
17:41:19.0240 0x1978  sffp_sd - ok
17:41:19.0270 0x1978  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
17:41:19.0270 0x1978  sfloppy - ok
17:41:19.0380 0x1978  [ 6E41C4E3179BBD1E24B382440E996C48, 8700D22BC789398D855B2F481F2BA426DF09AC1153344A9DF7485D43A8ED77C0 ] SgtSch2Svc      C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe
17:41:19.0400 0x1978  SgtSch2Svc - ok
17:41:19.0460 0x1978  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
17:41:19.0470 0x1978  SharedAccess - ok
17:41:19.0520 0x1978  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:41:19.0530 0x1978  ShellHWDetection - ok
17:41:19.0550 0x1978  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:41:19.0550 0x1978  SiSRaid2 - ok
17:41:19.0570 0x1978  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
17:41:19.0570 0x1978  SiSRaid4 - ok
17:41:19.0673 0x1978  [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
17:41:19.0683 0x1978  SkypeUpdate - ok
17:41:19.0693 0x1978  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
17:41:19.0703 0x1978  Smb - ok
17:41:19.0763 0x1978  [ 10450F432811D7FDA60A97FCC674D7B2, FD6245B06DD81C6E287DA47173D622357D86D84E3A5444CD34645973FE2E8BF5 ] snapman         C:\Windows\system32\DRIVERS\snapman.sys
17:41:19.0773 0x1978  snapman - ok
17:41:19.0813 0x1978  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
17:41:19.0813 0x1978  SNMPTRAP - ok
17:41:19.0823 0x1978  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
17:41:19.0823 0x1978  spldr - ok
17:41:19.0883 0x1978  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
17:41:19.0893 0x1978  Spooler - ok
17:41:20.0033 0x1978  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
17:41:20.0093 0x1978  sppsvc - ok
17:41:20.0113 0x1978  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
17:41:20.0113 0x1978  sppuinotify - ok
17:41:20.0133 0x1978  [ B9413B99DBB704E0F5824775A1118CC7, 75AAA548705764ECFB7A0C96E691AF80DBB824DC2BA8D356D8D157E6768F14C9 ] Spyder2         C:\Windows\system32\DRIVERS\Spyder2.sys
17:41:20.0133 0x1978  Spyder2 - ok
17:41:20.0183 0x1978  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
17:41:20.0203 0x1978  srv - ok
17:41:20.0253 0x1978  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
17:41:20.0263 0x1978  srv2 - ok
17:41:20.0283 0x1978  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
17:41:20.0293 0x1978  srvnet - ok
17:41:20.0333 0x1978  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
17:41:20.0343 0x1978  SSDPSRV - ok
17:41:20.0353 0x1978  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
17:41:20.0363 0x1978  SstpSvc - ok
17:41:20.0423 0x1978  [ D2230317777033CD0456990BFC4994E5, 0F2F559593EAD7AB4596E67E9AE56E5ABF5C945201366CFC972357C22A4F776A ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
17:41:20.0433 0x1978  Stereo Service - ok
17:41:20.0483 0x1978  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
17:41:20.0483 0x1978  stexstor - ok
17:41:20.0513 0x1978  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
17:41:20.0523 0x1978  StillCam - ok
17:41:20.0603 0x1978  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
17:41:20.0623 0x1978  stisvc - ok
17:41:20.0673 0x1978  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
17:41:20.0673 0x1978  swenum - ok
17:41:20.0813 0x1978  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
17:41:20.0823 0x1978  SwitchBoard - ok
17:41:20.0843 0x1978  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
17:41:20.0853 0x1978  swprv - ok
17:41:20.0953 0x1978  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
17:41:20.0983 0x1978  SysMain - ok
17:41:21.0023 0x1978  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:41:21.0023 0x1978  TabletInputService - ok
17:41:21.0133 0x1978  [ FFDF8B9B796E5243214233A8DB622E3D, 307DAAA783E1409153A0FEBF619B27109E6D1271072198F54877278F8298757F ] TabletServiceWacom C:\Windows\system32\Wacom_Tablet.exe
17:41:21.0193 0x1978  TabletServiceWacom - ok
17:41:21.0253 0x1978  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
17:41:21.0263 0x1978  TapiSrv - ok
17:41:21.0313 0x1978  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
17:41:21.0313 0x1978  TBS - ok
17:41:21.0423 0x1978  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
17:41:21.0453 0x1978  Tcpip - ok
17:41:21.0493 0x1978  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
17:41:21.0523 0x1978  TCPIP6 - ok
17:41:21.0553 0x1978  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
17:41:21.0553 0x1978  tcpipreg - ok
17:41:21.0593 0x1978  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
17:41:21.0593 0x1978  TDPIPE - ok
17:41:21.0673 0x1978  [ 99527D49EE0A96FC25537C61B270A372, 519E23F86EC86349F92C4A88DBD19C097AEE0A6E152776B32B45D293ED14946B ] tdrpman273      C:\Windows\system32\DRIVERS\tdrpm273.sys
17:41:21.0703 0x1978  tdrpman273 - ok
17:41:21.0743 0x1978  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
17:41:21.0743 0x1978  TDTCP - ok
17:41:21.0793 0x1978  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
17:41:21.0793 0x1978  tdx - ok
17:41:21.0853 0x1978  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
17:41:21.0853 0x1978  TermDD - ok
17:41:21.0913 0x1978  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
17:41:21.0933 0x1978  TermService - ok
17:41:21.0973 0x1978  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
17:41:21.0973 0x1978  Themes - ok
17:41:22.0013 0x1978  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
17:41:22.0013 0x1978  THREADORDER - ok
17:41:22.0073 0x1978  [ EBBAEA02F0095A798000C7E06B16D41B, CBEAC6CBF0F8D5B72ACCBADA6BD1DF1EB31F84B0D973DA955337991D4DBBDF7E ] timounter       C:\Windows\system32\DRIVERS\timntr.sys
17:41:22.0093 0x1978  timounter - ok
17:41:22.0103 0x1978  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
17:41:22.0113 0x1978  TrkWks - ok
17:41:22.0193 0x1978  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:41:22.0193 0x1978  TrustedInstaller - ok
17:41:22.0253 0x1978  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
17:41:22.0253 0x1978  tssecsrv - ok
17:41:22.0283 0x1978  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
17:41:22.0293 0x1978  TsUsbFlt - ok
17:41:22.0333 0x1978  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
17:41:22.0333 0x1978  tunnel - ok
17:41:22.0373 0x1978  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
17:41:22.0373 0x1978  uagp35 - ok
17:41:22.0423 0x1978  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
17:41:22.0433 0x1978  udfs - ok
17:41:22.0473 0x1978  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
17:41:22.0483 0x1978  UI0Detect - ok
17:41:22.0513 0x1978  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
17:41:22.0513 0x1978  uliagpkx - ok
17:41:22.0543 0x1978  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
17:41:22.0543 0x1978  umbus - ok
17:41:22.0563 0x1978  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
17:41:22.0573 0x1978  UmPass - ok
17:41:22.0623 0x1978  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
17:41:22.0633 0x1978  upnphost - ok
17:41:22.0663 0x1978  [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
17:41:22.0663 0x1978  USBAAPL64 - ok
17:41:22.0713 0x1978  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
17:41:22.0713 0x1978  usbaudio - ok
17:41:22.0763 0x1978  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
17:41:22.0773 0x1978  usbccgp - ok
17:41:22.0813 0x1978  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
17:41:22.0813 0x1978  usbcir - ok
17:41:22.0853 0x1978  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
17:41:22.0863 0x1978  usbehci - ok
17:41:22.0883 0x1978  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
17:41:22.0893 0x1978  usbhub - ok
17:41:22.0923 0x1978  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
17:41:22.0923 0x1978  usbohci - ok
17:41:22.0953 0x1978  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
17:41:22.0953 0x1978  usbprint - ok
17:41:22.0993 0x1978  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
17:41:23.0003 0x1978  usbscan - ok
17:41:23.0043 0x1978  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:41:23.0043 0x1978  USBSTOR - ok
17:41:23.0063 0x1978  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
17:41:23.0063 0x1978  usbuhci - ok
17:41:23.0113 0x1978  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
17:41:23.0123 0x1978  usbvideo - ok
17:41:23.0153 0x1978  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
17:41:23.0163 0x1978  UxSms - ok
17:41:23.0173 0x1978  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
17:41:23.0173 0x1978  VaultSvc - ok
17:41:23.0213 0x1978  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
17:41:23.0213 0x1978  vdrvroot - ok
17:41:23.0273 0x1978  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
17:41:23.0283 0x1978  vds - ok
17:41:23.0333 0x1978  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
17:41:23.0333 0x1978  vga - ok
17:41:23.0343 0x1978  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
17:41:23.0343 0x1978  VgaSave - ok
17:41:23.0393 0x1978  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
17:41:23.0393 0x1978  vhdmp - ok
17:41:23.0433 0x1978  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
17:41:23.0443 0x1978  viaide - ok
17:41:23.0453 0x1978  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:41:23.0453 0x1978  volmgr - ok
17:41:23.0503 0x1978  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
17:41:23.0513 0x1978  volmgrx - ok
17:41:23.0533 0x1978  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
17:41:23.0543 0x1978  volsnap - ok
17:41:23.0563 0x1978  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
17:41:23.0563 0x1978  vsmraid - ok
17:41:23.0653 0x1978  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
17:41:23.0683 0x1978  VSS - ok
17:41:23.0693 0x1978  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
17:41:23.0693 0x1978  vwifibus - ok
17:41:23.0753 0x1978  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
17:41:23.0763 0x1978  W32Time - ok
17:41:23.0813 0x1978  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
17:41:23.0813 0x1978  WacomPen - ok
17:41:23.0833 0x1978  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
17:41:23.0833 0x1978  WANARP - ok
17:41:23.0833 0x1978  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:41:23.0843 0x1978  Wanarpv6 - ok
17:41:23.0943 0x1978  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
17:41:23.0963 0x1978  WatAdminSvc - ok
17:41:24.0063 0x1978  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
17:41:24.0083 0x1978  wbengine - ok
17:41:24.0093 0x1978  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
17:41:24.0103 0x1978  WbioSrvc - ok
17:41:24.0153 0x1978  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
17:41:24.0173 0x1978  wcncsvc - ok
17:41:24.0203 0x1978  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:41:24.0203 0x1978  WcsPlugInService - ok
17:41:24.0223 0x1978  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
17:41:24.0223 0x1978  Wd - ok
17:41:24.0283 0x1978  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
17:41:24.0303 0x1978  Wdf01000 - ok
17:41:24.0313 0x1978  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
17:41:24.0323 0x1978  WdiServiceHost - ok
17:41:24.0323 0x1978  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
17:41:24.0323 0x1978  WdiSystemHost - ok
17:41:24.0373 0x1978  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
17:41:24.0383 0x1978  WebClient - ok
17:41:24.0403 0x1978  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
17:41:24.0403 0x1978  Wecsvc - ok
17:41:24.0453 0x1978  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
17:41:24.0463 0x1978  wercplsupport - ok
17:41:24.0473 0x1978  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
17:41:24.0473 0x1978  WerSvc - ok
17:41:24.0493 0x1978  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
17:41:24.0493 0x1978  WfpLwf - ok
17:41:24.0493 0x1978  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
17:41:24.0503 0x1978  WIMMount - ok
17:41:24.0533 0x1978  WinDefend - ok
17:41:24.0533 0x1978  WinHttpAutoProxySvc - ok
17:41:24.0623 0x1978  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
17:41:24.0623 0x1978  Winmgmt - ok
17:41:24.0720 0x1978  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
17:41:24.0745 0x1978  WinRM - ok
17:41:24.0795 0x1978  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
17:41:24.0795 0x1978  WinUsb - ok
17:41:24.0925 0x1978  [ C5A88770B321C956109AA08EE0440B2A, 5D8C771955BBBB9006CDC6A797BF2CEECB8F2B43D4575BE0DDFAFC5113DC7A5C ] WiselinkPro     C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe
17:41:24.0975 0x1978  WiselinkPro - ok
17:41:25.0055 0x1978  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
17:41:25.0075 0x1978  Wlansvc - ok
17:41:25.0255 0x1978  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:41:25.0295 0x1978  wlidsvc - ok
17:41:25.0335 0x1978  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
17:41:25.0335 0x1978  WmiAcpi - ok
17:41:25.0375 0x1978  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
17:41:25.0375 0x1978  wmiApSrv - ok
17:41:25.0405 0x1978  WMPNetworkSvc - ok
17:41:25.0425 0x1978  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
17:41:25.0435 0x1978  WPCSvc - ok
17:41:25.0485 0x1978  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
17:41:25.0485 0x1978  WPDBusEnum - ok
17:41:25.0515 0x1978  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
17:41:25.0515 0x1978  ws2ifsl - ok
17:41:25.0555 0x1978  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
17:41:25.0565 0x1978  wscsvc - ok
17:41:25.0565 0x1978  WSearch - ok
17:41:25.0695 0x1978  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
17:41:25.0745 0x1978  wuauserv - ok
17:41:25.0795 0x1978  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
17:41:25.0795 0x1978  WudfPf - ok
17:41:25.0845 0x1978  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
17:41:25.0855 0x1978  WUDFRd - ok
17:41:25.0895 0x1978  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
17:41:25.0905 0x1978  wudfsvc - ok
17:41:25.0955 0x1978  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
17:41:25.0965 0x1978  WwanSvc - ok
17:41:25.0975 0x1978  ================ Scan global ===============================
17:41:26.0005 0x1978  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
17:41:26.0035 0x1978  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
17:41:26.0055 0x1978  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
17:41:26.0085 0x1978  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
17:41:26.0145 0x1978  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
17:41:26.0155 0x1978  [ Global ] - ok
17:41:26.0155 0x1978  ================ Scan MBR ==================================
17:41:26.0155 0x1978  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
17:41:26.0375 0x1978  \Device\Harddisk0\DR0 - ok
17:41:26.0375 0x1978  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR1
17:41:26.0385 0x1978  \Device\Harddisk1\DR1 - ok
17:41:26.0385 0x1978  ================ Scan VBR ==================================
17:41:26.0385 0x1978  [ 6ED101E54223C580F4FD11665AE700E6 ] \Device\Harddisk0\DR0\Partition1
17:41:26.0435 0x1978  \Device\Harddisk0\DR0\Partition1 - ok
17:41:26.0435 0x1978  [ 5B9F07F88CE92BF707D5A3E13DCBBA7F ] \Device\Harddisk1\DR1\Partition1
17:41:26.0435 0x1978  \Device\Harddisk1\DR1\Partition1 - ok
17:41:26.0435 0x1978  ================ Scan generic autorun ======================
17:41:26.0515 0x1978  [ 243D6EAF8DD03F64D399AEC3749ABB8F, 9E1CCF18ED88E734B38A167945E887ACB04DC61C5F2B1084209FFF0DBA359772 ] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
17:41:26.0515 0x1978  Acronis Scheduler2 Service - ok
17:41:26.0585 0x1978  [ 5447AF432CDA61159ADDE218C468FFD9, 63BD74521F679F195C24C1818267ECCBD8A7F5C2B4CEF3E60EC46B5AE0AC72A8 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
17:41:26.0595 0x1978  AdobeAAMUpdater-1.0 - ok
17:41:26.0735 0x1978  [ A6AAD37CDCAE75CB62D039E3A4D8F5E3, 4FF763B0D129175BA1B1E794BA313E6C63F7A89D377C786BF5E730AF2A1D95D1 ] C:\Program Files\Microsoft Security Client\msseces.exe
17:41:26.0755 0x1978  MSC - ok
17:41:27.0095 0x1978  [ F55D01FCB10811E1AB77E3C7AB60859B, F9E7F1124AD02801D3DF9D0FBADC3E3EC3D271E16F568E0A233C89545AD1C9AE ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
17:41:27.0205 0x1978  RtHDVCpl - ok
17:41:27.0255 0x1978  [ F3E78CF2B444FD00B71FF1CCD53B43D3, C2AA541D50A8C1CCF734774EADE9AE3903FFD0FF36AF2F68A81C7275FB46D77D ] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
17:41:27.0285 0x1978  Skytel - ok
17:41:27.0455 0x1978  [ AC9F294EF500C115709D389779635605, 86EC00A29BC05895CA37350134C83A274D0A862A5487C0B76D7C49CFB435C66F ] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
17:41:27.0485 0x1978  CanonMyPrinter - ok
17:41:27.0635 0x1978  [ BF3DE35824837DF4D39E462874850BBE, 0708BC8F806144804F05B632E968823ECB371F71328E08F2639537B4C316F3F1 ] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe
17:41:27.0655 0x1978  CanonSolutionMenu - ok
17:41:27.0755 0x1978  [ 66B1C09A03323BC0142B62769ACB195E, 54B59524DE975DF649AD0C781772753135F6F73BA1A5E2458658665565BAADEC ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
17:41:27.0785 0x1978  NvBackend - ok
17:41:27.0845 0x1978  [ F4BA3F5E9CABB08A02F8CD0C7131BEDD, 4AF414F3B8D4D0DC2DDA908DA4947EBA00444267B1964031C0D4BD67E6BD8209 ] C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedhlp.exe
17:41:27.0845 0x1978  Seagate Scheduler2 Service - ok
17:41:27.0845 0x1978  P17RunE - ok
17:41:27.0915 0x1978  [ 8B617F2935E7F0B8A15F64D308DBF7C1, BD47BCCC913D1200971048126672C0464404D2F51723CB2EDEC7AAD980715CAE ] C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
17:41:27.0915 0x1978  LifeCam - ok
17:41:28.0015 0x1978  [ 0260BBC74AF28E6D30CF5DFECED9ACC1, 296D552CF469BEB79127EE53D82448AA8DCEA15F536F9AF92B3B72B4BB4B1C4C ] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
17:41:28.0045 0x1978  TrueImageMonitor.exe - ok
17:41:28.0065 0x1978  [ C419DF63E0121D72411285780C2FC6CC, F47F854D327C589D174D3BB5B55D5C05F5ACA73DF52A6BEF47596B9010190291 ] C:\Windows\UpdReg.EXE
17:41:28.0065 0x1978  UpdReg - ok
17:41:28.0125 0x1978  [ ED191C327A6695B35F614BD420E9EB5D, 7F4CC0EFA3F624C966E8AD78C1AC049C2CAB99D6C667D15F89A54AFC8CF0D4AA ] C:\Program Files (x86)\Creative\SBAudigy\Volume Panel\VolPanlu.exe
17:41:28.0135 0x1978  VolPanel - ok
17:41:28.0205 0x1978  [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
17:41:28.0205 0x1978  GrooveMonitor - ok
17:41:28.0235 0x1978  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
17:41:28.0255 0x1978  SwitchBoard - ok
17:41:28.0365 0x1978  [ D5B783DACE1BBDD382A63C894BAB8E1E, 20BA7479B3BE8AC7771AA91DB9C4F3B46DADDFF9C48627A5C7C460546DD20AF3 ] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
17:41:28.0385 0x1978  AdobeCS5ServiceManager - ok
17:41:28.0435 0x1978  [ 09E60B4FE341A94A300830C008907099, 5F07868953FAA8FFA9E6477F6BAC52DEEDF3EA4A3F8AF5B4E15878D8240223AB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
17:41:28.0445 0x1978  APSDaemon - ok
17:41:28.0495 0x1978  [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
17:41:28.0505 0x1978  HP Software Update - ok
17:41:28.0565 0x1978  [ 10035E4C014522FE740172FF0B4FF43E, B09DCF7E147990C723EF044FB064D8793D18131519D292D88B71920C127AEF86 ] C:\Windows\ehome\ehTray.exe
17:41:28.0565 0x1978  ehTray.exe - ok
17:41:28.0575 0x1978  ISUSPM - ok
17:41:28.0645 0x1978  [ 271B0D188430670509CB9943D5229205, 74CB5A9D8B5988AE08C0F65C601FC54F8745BAB6825B6FEEFBA8F068D656D8D7 ] C:\Program Files (x86)\QuickTime\QTTask.exe
17:41:28.0655 0x1978  QuickTime Task - ok
17:41:28.0715 0x1978  [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
17:41:28.0715 0x1978  swg - ok
17:41:28.0745 0x1978  Skype - ok
17:41:28.0745 0x1978  TomTomHOME.exe - ok
17:41:28.0745 0x1978  necad - ok
17:41:28.0785 0x1978  yfpwvwtb - ok
17:41:28.0785 0x1978  MotoCast - ok
17:41:28.0885 0x1978  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
17:41:28.0905 0x1978  Sidebar - ok
17:41:28.0945 0x1978  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
17:41:28.0945 0x1978  mctadmin - ok
17:41:28.0945 0x1978  [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
17:41:28.0955 0x1978  swg - ok
17:41:29.0125 0x1978  [ 22F7B9670AD770C7ED7F4738204C8E5C, 7B793AC094CB1B073419B5DAE09DFBB8EBED03D29301F490AA76EA0667613438 ] C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
17:41:29.0165 0x1978  HP Officejet Pro 8600 (NET) - ok
17:41:29.0165 0x1978  Skype - ok
17:41:29.0485 0x1978  [ B2BAE2D76FBE9FDC3F6E0D1F886DF367, 964EBF736891BE252C68FCE1F9EAD5E60E6E0C2119D21C6DF49FBD30FBB678EF ] C:\Program Files\CCleaner\CCleaner64.exe
17:41:29.0595 0x1978  CCleaner Monitoring - ok
17:41:29.0625 0x1978  [ 271B0D188430670509CB9943D5229205, 74CB5A9D8B5988AE08C0F65C601FC54F8745BAB6825B6FEEFBA8F068D656D8D7 ] C:\Program Files (x86)\QuickTime\QTTask.exe
17:41:29.0635 0x1978  QuickTime Task - ok
17:41:29.0635 0x1978  Skype - ok
17:41:29.0655 0x1978  [ 5D61BE7DB55B026A5D61A3EED09D0EAD, D32CC7B31A6F98C60ABC313ABC7D1143681F72DE2BB2604711A0BA20710CAAAE ] C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
17:41:29.0655 0x1978  swg - ok
17:41:29.0838 0x1978  [ B2BAE2D76FBE9FDC3F6E0D1F886DF367, 964EBF736891BE252C68FCE1F9EAD5E60E6E0C2119D21C6DF49FBD30FBB678EF ] C:\Program Files\CCleaner\CCleaner64.exe
17:41:29.0958 0x1978  CCleaner Monitoring - ok
17:41:29.0968 0x1978  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.6.305.0 ), 0x61000 ( enabled : updated )
17:41:29.0968 0x1978  Win FW state via NFP2: enabled
17:41:30.0168 0x1978  ============================================================
17:41:30.0168 0x1978  Scan finished
17:41:30.0168 0x1978  ============================================================
17:41:30.0168 0x25fc  Detected object count: 0
17:41:30.0168 0x25fc  Actual detected object count: 0>
 



#6 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:12 PM

Posted 06 January 2015 - 04:34 AM

Did you install this software?

 

 

C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvta.exe


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#7 pkshome

pkshome
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 06 January 2015 - 04:54 PM

Not that I recall.  It must also be a hidden file as I cannot see in in windows explorer.



#8 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:12 PM

Posted 08 January 2015 - 04:43 AM

Fix with FRST (normal mode)

WARNING: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
 

  • Download the attached fixlist.txt and save it to the location where FRST is saved to.
  • Run FRST.exe (on 64bit, run FRST64.exe) and press the Fix button just once and wait.
  • The tool will make a log (Fixlog.txt) which you find where you saved FRST. Please post it to your reply.

 

 

 

 

Full System Scan with Malwarebytes Antimalware
 

  • If not existing, please download Malwarebytes Anti-Malware to your desktop.
  • Double-click the downloaded setup file and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:
    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
  • Click Finish.

If the program is already installed:

  • Run Malwarebytes Antimalware
  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.

  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.

 

Attached Files


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#9 pkshome

pkshome
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 08 January 2015 - 10:58 AM

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 1/8/2015
Scan Time: 9:09:06 AM
Logfile:
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2015.01.08.09
Rootkit Database: v2015.01.07.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Administrator

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 605318
Time Elapsed: 37 min, 27 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 2
PUP.Optional.ShoppingGate.A, C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_inst.shoppingate.info_0.localstorage, Quarantined, [1bde39bb3554ba7c5d997023d82b43bd],
PUP.Optional.ReMarkable.A, C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_static.re-markable00.re-markable.net_0.localstorage, Quarantined, [49b0dc186920da5ca853ca1cec189e62],

Physical Sectors: 0
(No malicious items detected)

(end)

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-01-2015
Ran by Wendy at 2015-01-08 08:41:08 Run:1
Running from C:\FRST
Loaded Profiles: UpdatusUser & Wendy & Administrator (Available profiles: UpdatusUser & Wendy & Administrator)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Task: {CE4CF6C3-2FB9-41FC-979E-27A80794761A} - \PastaQuotes No Task File <==== ATTENTION
Task: {A4711950-E8D6-466F-B877-7ACE5B0D5F1C} - System32\Tasks\RPC => C:\Program Files (x86)\Bull Softwares\Reg Pro Cleaner\RegProCleaner.exe
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-449528145-1685180860-1442867481-1012\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyEnable: [HKLM] => ProxyEnable is set.
ProxyEnable: [HKLM-x32] => ProxyEnable is set.
ProxyServer: [HKLM] => http=127.0.0.1:9880
ProxyServer: [HKLM-x32] => http=127.0.0.1:9880
ProxyEnable: [S-1-5-21-449528145-1685180860-1442867481-500] => Internet Explorer proxy is enabled.
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR dev: Chrome dev build detected! <======= ATTENTION

S1 rwcbufkd; \??\C:\Windows\system32\drivers\rwcbufkd.sys [X]
R2 ReyhoogIvta; C:\Program Files (x86)\ReyhoogIvta\ReyhoogIvta.exe [3938816 2014-12-23] () [File not signed]

C:\Program Files (x86)\Bull Softwares\Reg Pro Cleaner
2014-12-31 14:21 - 2014-12-31 14:22 - 00000000 _SHDC () C:\Program Files (x86)\ReyhoogIvta
2014-12-31 14:21 - 2014-12-31 14:21 - 00000258 __RSH () C:\ProgramData\ntuser.pol
2014-12-31 14:21 - 2014-12-31 14:21 - 00000000 ____D () C:\Users\Wendy\AppData\Local\Comodo
2014-12-31 14:21 - 2014-12-31 14:21 - 00000000 ____D () C:\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Google
2014-12-31 14:21 - 2014-12-31 14:21 - 00000000 ____D () C:\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Comodo
2014-12-31 14:21 - 2014-12-31 14:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Google
2014-12-31 14:21 - 2014-12-31 14:21 - 00000000 ____D () C:\Users\Guest\AppData\Local\Comodo
2014-12-31 14:21 - 2014-12-31 14:21 - 00000000 ____D () C:\Users\Guest
2014-12-31 14:21 - 2014-12-31 14:21 - 00000000 ____D () C:\Users\Administrator\AppData\Local\Comodo

EmptyTemp:
*****************

"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CE4CF6C3-2FB9-41FC-979E-27A80794761A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE4CF6C3-2FB9-41FC-979E-27A80794761A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PastaQuotes" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{A4711950-E8D6-466F-B877-7ACE5B0D5F1C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A4711950-E8D6-466F-B877-7ACE5B0D5F1C}" => Key deleted successfully.
C:\Windows\System32\Tasks\RPC => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RPC" => Key deleted successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-449528145-1685180860-1442867481-1012\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
HKU\S-1-5-21-449528145-1685180860-1442867481-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value deleted successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
CHR dev: Chrome dev build detected! <======= ATTENTION => Error: No automatic fix found for this entry.
rwcbufkd => Service deleted successfully.
ReyhoogIvta => Unable to stop service
ReyhoogIvta => Service deleted successfully.
"C:\Program Files (x86)\Bull Softwares\Reg Pro Cleaner" => File/Directory not found.
C:\Program Files (x86)\ReyhoogIvta => Moved successfully.
C:\ProgramData\ntuser.pol => Moved successfully.
C:\Users\Wendy\AppData\Local\Comodo => Moved successfully.
C:\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Google => Moved successfully.
C:\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Comodo => Moved successfully.
C:\Users\Guest\AppData\Local\Google => Moved successfully.
C:\Users\Guest\AppData\Local\Comodo => Moved successfully.
C:\Users\Guest => Moved successfully.
C:\Users\Administrator\AppData\Local\Comodo => Moved successfully.
EmptyTemp: => Removed 629.1 MB temporary data.

The system needed a reboot.

==== End of Fixlog 08:41:56 ====



#10 pkshome

pkshome
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 08 January 2015 - 11:03 AM

After running the process, my proxy is currently correct. Let me know what other steps I may need to take.

#11 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:12 PM

Posted 09 January 2015 - 06:15 AM

Scan with ESET Online Scan

Go here to run an online scannner from ESET. Windows Vista/Windows 7/Windows 8 users will need to right click on their Internet Explorer shortcut, and select Run as Administrator

  • Note: For browsers other than Internet Explorer, you will be prompted to download and install esetsmartinstaller_enu.exe. Click on the link and save the file to a convenient location. Double click on it to install and a new window will open. Follow the prompts.
  • Turn off the real time scanner of any existing antivirus program while performing the online scan. Here's how.
  • Click the blue Run ESET Online Scanner button
  • Tick the box next to YES, I accept the Terms of Use.
  • Click Start
  • When asked, allow the program to install the "OnlineScanner.cab" activex control by clicking the Install button
  • Once the activex control is installed, on the next screen click on Enable detection of potentially unwanted applications
  • Click on Advanced Settings
  • Make sure that the option Remove found threats is unticked.
  • Ensure these options are ticked
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start
  • Wait for the scan to finish
  • When the scan is done, if it shows a screen that says "Threats found!", then click "List of found threats", and then click "Export to text file..."
  • Save that text file on your desktop. Copy and paste the contents of that log as a reply to this topic.
  • Close the ESET online scan, and let me know how things are now.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#12 pkshome

pkshome
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 09 January 2015 - 03:52 PM

As of now everything is working.

C:\iLividSetupV1.exe a variant of Win32/Toolbar.SearchSuite.Z potentially unwanted application
C:\iLividSetupV2.exe a variant of Win32/Toolbar.SearchSuite.Z potentially unwanted application
C:\AdwCleaner\Quarantine\C\Users\Administrator\AppData\Local\iLivid\Helper.dll.vir a variant of Win32/Toolbar.SearchSuite.P potentially unwanted application
C:\AdwCleaner\Quarantine\C\Users\Mike and Wendy\AppData\Local\Babylon\Setup\BExternal.dll.vir a variant of Win32/Toolbar.Babylon.F potentially unwanted application
C:\AdwCleaner\Quarantine\C\Users\Mike and Wendy\AppData\Local\Babylon\Setup\IECookieLow.dll.vir a variant of Win32/Toolbar.Babylon.E potentially unwanted application
C:\AdwCleaner\Quarantine\C\Users\Mike and Wendy\AppData\Local\Babylon\Setup\Setup.exe.vir a variant of Win32/Toolbar.Babylon.E potentially unwanted application
C:\FRST\Quarantine\C\Program Files (x86)\ReyhoogIvta\ReyhoogIvta.exe a variant of Win32/Adware.ObronaAds.B application
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Torch\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Torch\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Mike and Wendy\AppData\Roaming\g36ov.exe.vir a variant of Win32/TrojanDownloader.VB.QBA trojan
C:\Qoobox\Quarantine\C\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Torch\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\UpdatusUser.MikeandWendy-PC\AppData\Local\Torch\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Wendy\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Wendy\AppData\Local\Chromatic Browser\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Wendy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Wendy\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Wendy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Wendy\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Wendy\AppData\Local\Torch\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\KOaJ.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Wendy\AppData\Local\Torch\User Data\Default\Extensions\hhhemeikdfalfooiabmoapeogbgobchg\5.2\lsdb.js.vir JS/Kryptik.ATB trojan
C:\Qoobox\Quarantine\C\Users\Wendy\AppData\Roaming\Mozilla\Firefox\Profiles\nf1mwsqk.default\extensions\DiDDJm@o.org\content\bg.js.vir JS/Kryptik.ATB trojan
C:\Users\Administrator\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\65870752-4bf70bc2 multiple threats
C:\Users\Wendy\Downloads\FLVPlayer-Chrome.exe NSIS/TrojanDownloader.Adload.AA trojan
C:\Users\Wendy\Downloads\DAD\4 ccsetup404.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Wendy\Downloads\DAD\files.ZIP Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Wendy\Downloads\DAD\manualdownload_14371_STN_2.exe a variant of Win32/InstallIQ.A potentially unwanted application
D:\iLividSetupV1.exe a variant of Win32/Toolbar.SearchSuite.Z potentially unwanted application
D:\iLividSetupV2.exe a variant of Win32/Toolbar.SearchSuite.Z potentially unwanted application
D:\Adobe CS4 Master Collection - Shadeyman\Activation Disabler.cmd BAT/HostsChanger.A potentially unsafe application

#13 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:12 PM

Posted 12 January 2015 - 03:55 AM

 

C:\Users\Wendy\Downloads\FLVPlayer-Chrome.exe

Delete this file!

 

 

 

 

C:\iLividSetupV1.exe a variant of Win32/Toolbar.SearchSuite.Z potentially unwanted application
C:\iLividSetupV2.exe a variant of Win32/Toolbar.SearchSuite.Z potentially unwanted application

C:\Users\Wendy\Downloads\DAD\4 ccsetup404.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Wendy\Downloads\DAD\files.ZIP Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\Wendy\Downloads\DAD\manualdownload_14371_STN_2.exe a variant of Win32/InstallIQ.A potentially unwanted application
D:\iLividSetupV1.exe a variant of Win32/Toolbar.SearchSuite.Z potentially unwanted application
D:\iLividSetupV2.exe a variant of Win32/Toolbar.SearchSuite.Z potentially unwanted application
D:\Adobe CS4 Master Collection - Shadeyman\Activation Disabler.cmd BAT/HostsChanger.A potentially unsafe application

These filese aren´t malware but contain security risks. I´d delete them immediately - your choice.

 

 

Then we can do the cleanup - if you are facing any issues, report that immediately.

Delete junk with adwCleaner


Please download AdwCleaner to your desktop.


  • Run adwcleaner.exe
  • Hit Scan and wait for the scan to finish.
  • Confirm the message but don´t uncheck anything.
  • Hit Clean
  • When the run is finished, it will open up a text file
  • Please post its contents within your next reply
  • You´ll find the log file at C:\AdwCleaner[S1].txt also




Delete junk with JRT

thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.




SecurityCheck

Reboot your system before starting!

Please download SecurityCheck: LINK Mirror (if the link is down)

  • Save it to your desktop, start it and follow the instructions in the window.
  • After the scan finished the (checkup.txt) will open. Copy its content to your thread (Note: Do NOT post this one into a code box!


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#14 pkshome

pkshome
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 12 January 2015 - 09:07 AM

I deleted all of the files listed above and below are the results of the scan and clean. Everything seems to be working perfectly.

# AdwCleaner v4.107 - Report created 12/01/2015 at 07:46:15
# Updated 07/01/2015 by Xplode
# Database : 2015-01-11.2 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Wendy - MIKEANDWENDY-PC
# Running from : C:\Users\Wendy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7AKVN34F\adwcleaner_4.107.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files (x86)\GU Player
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Folder Deleted : C:\Users\Mike and Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Folder Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
File Deleted : C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17496


-\\ Mozilla Firefox v33.1 (x86 en-US)


-\\ Google Chrome v39.0.2171.95

[C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : apdfllckaahabafndbhieahigkjlhalf
[C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : bepbmhgboaologfdajaanbcjmnhjmhfn
[C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : pjkljhegncpnkpknbcohdijeoejaedia
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : apdfllckaahabafndbhieahigkjlhalf
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : bepbmhgboaologfdajaanbcjmnhjmhfn
[C:\Users\Wendy\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : pjkljhegncpnkpknbcohdijeoejaedia

*************************

AdwCleaner[R0].txt - [7547 octets] - [01/05/2014 05:41:05]
AdwCleaner[R1].txt - [6313 octets] - [02/01/2015 17:09:54]
AdwCleaner[R2].txt - [2774 octets] - [02/01/2015 17:30:41]
AdwCleaner[R3].txt - [3098 octets] - [12/01/2015 07:42:16]
AdwCleaner[S0].txt - [7663 octets] - [01/05/2014 05:44:16]
AdwCleaner[S1].txt - [6304 octets] - [02/01/2015 17:13:20]
AdwCleaner[S2].txt - [3122 octets] - [02/01/2015 17:32:11]
AdwCleaner[S3].txt - [3049 octets] - [12/01/2015 07:46:15]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [3109 octets] ##########

#15 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:12 PM

Posted 13 January 2015 - 09:53 AM

what about the other log files? ;)


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users