Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Slow Comp II Split


  • Please log in to reply
10 replies to this topic

#1 wishmd

wishmd

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:06:56 AM

Posted 12 January 2015 - 04:36 PM

Mod Edit .... Split from http://www.bleepingcomputer.com/forums/t/44690/slow-computer/page-13#entry3594238
to Am I Infected
~~ boopme


I've got a different, though apparently somewhat related problem. My system runs OK when it's been cleaned (no malware, defragged, used CCleaner, cleaned up the Startup menu), but once I use it for a little while it starts almost freezing up. I get messages like "Firefox not responding" and Thunderbird not responding", "a plugin has stopped", and such. Then I clean it again and it works OK for a very little while, and then it happens again. Very frustrating. I've also tried reintallling Firefox, but that does not help. When I start Firefox without plugins, it works a little better, but I need Dashlane, so it's not a permanent solution either.
 
Help is much appreciated.


Edited by boopme, 12 January 2015 - 10:15 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,421 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:56 AM

Posted 12 January 2015 - 07:40 PM

What did you to clean it?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 wishmd

wishmd
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:06:56 AM

Posted 12 January 2015 - 07:56 PM

I used Smart Defrag 3 to defrag; then CClean and SlimCleaner to clean (did not defrag the registry). Also use CleanUp.exe occasionally. I use Avast for virus detection, MalwareBytes for scanning, and Comodo for Firewall.



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,421 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:56 AM

Posted 12 January 2015 - 10:18 PM

I moved this from that XP topic.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 wishmd

wishmd
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:06:56 AM

Posted 13 January 2015 - 04:41 PM

I'm listing the logs you requested, except for ESET, which I will try to provide separately. For some reason ESET goes to around 40% and then the com,puter restarts and all the ESET data is lost. Last time there were 40 items found, so I'll try again, perhaps just to that point. Here is the rest:

 

MiniToolBox:

MiniToolBox by Farbar  Version: 30-11-2014
Ran by Gil (administrator) on 13-01-2015 at 08:11:02
Running from "C:\Documents and Settings\Gil\desktop"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================
Windows IP ConfigurationSuccessfully flushed the DNS Resolver Cache.
========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 192.43.244.18
127.0.0.1       localhost
127.0.0.1 activate.adobe.com
127.0.0.1 hl2rcv.adobe.com
127.0.0.1 t3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 activate.wip.adobe.com
127.0.0.1 activate.wip1.adobe.com
127.0.0.1 activate.wip2.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 activate.wip4.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com

There are 89 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

SiS 900-Based PCI Fast Ethernet Adapter = Local Area Connection 4 (Connected)
1394 Net Adapter = 1394 Connection (Connected)


# ----------------------------------
# Interface IP Configuration         
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection 4"

set address name="Local Area Connection 4" source=dhcp
set dns name="Local Area Connection 4" source=dhcp register=PRIMARY
set wins name="Local Area Connection 4" source=dhcp


popd
# End of interface IP configuration


Windows IP Configuration        Host Name . . . . . . . . . . . . : gil-pc        Primary Dns Suffix  . . . . . . . :         Node Type . . . . . . . . . . . . : Unknown        IP Routing Enabled. . . . . . . . : No        WINS Proxy Enabled. . . . . . . . : NoEthernet adapter Local Area Connection 4:        Connection-specific DNS Suffix  . :         Description . . . . . . . . . . . : SiS 900-Based PCI Fast Ethernet Adapter        Physical Address. . . . . . . . . : 00-0C-76-3C-08-D5        Dhcp Enabled. . . . . . . . . . . : Yes        Autoconfiguration Enabled . . . . : Yes        IP Address. . . . . . . . . . . . : 192.168.1.2        Subnet Mask . . . . . . . . . . . : 255.255.255.0        Default Gateway . . . . . . . . . : 192.168.1.1        DHCP Server . . . . . . . . . . . : 192.168.1.1        DNS Servers . . . . . . . . . . . : 192.168.1.1        Lease Obtained. . . . . . . . . . : Tuesday, January 13, 2015 7:45:51 AM        Lease Expires . . . . . . . . . . : Wednesday, January 14, 2015 7:45:51 AMServer:  UnKnown
Address:  192.168.1.1

Name:    google.com
Addresses:  74.125.196.100, 74.125.196.102, 74.125.196.139, 74.125.196.101
      74.125.196.138, 74.125.196.113

Pinging google.com [64.233.176.102] with 32 bytes of data:Reply from 64.233.176.102: bytes=32 time=20ms TTL=42Reply from 64.233.176.102: bytes=32 time=20ms TTL=42Ping statistics for 64.233.176.102:    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds:    Minimum = 20ms, Maximum = 20ms, Average = 20msServer:  UnKnown
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  98.138.253.109, 206.190.36.45, 98.139.183.24

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:Reply from 206.190.36.45: bytes=32 time=103ms TTL=44Reply from 206.190.36.45: bytes=32 time=106ms TTL=44Ping statistics for 206.190.36.45:    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds:    Minimum = 103ms, Maximum = 106ms, Average = 104msPinging 127.0.0.1 with 32 bytes of data:Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Ping statistics for 127.0.0.1:    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds:    Minimum = 0ms, Maximum = 0ms, Average = 0ms===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 0c 76 3c 08 d5 ...... SiS 900-Based PCI Fast Ethernet Adapter - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.2      20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1      1
      169.254.0.0      255.255.0.0      192.168.1.2     192.168.1.2      20
      192.168.1.0    255.255.255.0      192.168.1.2     192.168.1.2      20
      192.168.1.2  255.255.255.255        127.0.0.1       127.0.0.1      20
    192.168.1.255  255.255.255.255      192.168.1.2     192.168.1.2      20
        224.0.0.0        240.0.0.0      192.168.1.2     192.168.1.2      20
  255.255.255.255  255.255.255.255      192.168.1.2     192.168.1.2      1
Default Gateway:       192.168.1.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/13/2015 08:00:10 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Google Drive -- Error 1904. Module C:\Program Files\Google\Drive\googledrivesync32.dll failed to register.  HRESULT -2147023782.  Contact your support personnel.

Error: (01/12/2015 09:56:14 PM) (Source: Application Error) (User: )
Description: Faulting application plugin-container.exe, version 34.0.5.5443, faulting module mozalloc.dll, version 34.0.5.5443, fault address 0x00001425.
Processing media-specific event for [plugin-container.exe!ws!]

Error: (01/12/2015 08:56:11 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Google Drive -- Error 1904. Module C:\Program Files\Google\Drive\googledrivesync32.dll failed to register.  HRESULT -2147023782.  Contact your support personnel.

Error: (01/12/2015 03:57:33 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Google Drive -- Error 1904. Module C:\Program Files\Google\Drive\googledrivesync32.dll failed to register.  HRESULT -2147023782.  Contact your support personnel.

Error: (01/12/2015 11:02:17 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Google Drive -- Error 1904. Module C:\Program Files\Google\Drive\googledrivesync32.dll failed to register.  HRESULT -2147023782.  Contact your support personnel.

Error: (01/11/2015 09:57:31 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Google Drive -- Error 1904. Module C:\Program Files\Google\Drive\googledrivesync32.dll failed to register.  HRESULT -2147023782.  Contact your support personnel.

Error: (01/11/2015 04:56:42 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Google Drive -- Error 1904. Module C:\Program Files\Google\Drive\googledrivesync32.dll failed to register.  HRESULT -2147023782.  Contact your support personnel.

Error: (01/11/2015 00:00:03 PM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Google Drive -- Error 1904. Module C:\Program Files\Google\Drive\googledrivesync32.dll failed to register.  HRESULT -2147023782.  Contact your support personnel.

Error: (01/11/2015 06:56:00 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Google Drive -- Error 1904. Module C:\Program Files\Google\Drive\googledrivesync32.dll failed to register.  HRESULT -2147023782.  Contact your support personnel.

Error: (01/11/2015 01:56:03 AM) (Source: MsiInstaller) (User: NT AUTHORITY)
Description: Product: Google Drive -- Error 1904. Module C:\Program Files\Google\Drive\googledrivesync32.dll failed to register.  HRESULT -2147023782.  Contact your support personnel.


System errors:
=============
Error: (01/13/2015 07:56:40 AM) (Source: 0) (User: )
Description: \Device\LanmanDatagramReceiverACERASPIRENetBT_Tcpip_{14C87BC8-8F5B-482

Error: (01/13/2015 07:47:34 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (01/13/2015 07:47:34 AM) (Source: Service Control Manager) (User: )
Description: The Windows Image Acquisition (WIA) service hung on starting.

Error: (01/12/2015 09:15:19 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort1

Error: (01/12/2015 08:18:25 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (01/12/2015 08:18:25 PM) (Source: Service Control Manager) (User: )
Description: The Windows Image Acquisition (WIA) service hung on starting.

Error: (01/12/2015 01:28:13 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort1

Error: (01/12/2015 10:56:09 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
SBRE

Error: (01/12/2015 10:56:09 AM) (Source: Service Control Manager) (User: )
Description: The Windows Image Acquisition (WIA) service hung on starting.

Error: (01/12/2015 10:53:36 AM) (Source: 0) (User: )
Description: 0xC0000001HarddiskVolume1


Microsoft Office Sessions:
=========================


=========================== Installed Programs ============================
Absolute Uninstaller 5.3.1.17 (HKLM\...\Absolute Uninstaller) (Version: 5.3.1.17 - Glarysoft Ltd)
Adobe Acrobat XI Pro (HKLM\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.06 - Adobe Systems)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Apple Application Support (HKLM\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.0.2208 - AVAST Software)
AVG PC TuneUp 2014 (en-US) (Version: 14.0.1001.519 - AVG) Hidden
AVG PC TuneUp 2014 (HKLM\...\AVG PC TuneUp) (Version: 14.0.1001.519 - AVG)
AVG PC TuneUp 2014 (Version: 14.0.1001.519 - AVG) Hidden
BitTorrent (HKCU\...\BitTorrent) (Version: 7.9.2.36804 - BitTorrent Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
Chrome Remote Desktop Host (HKLM\...\{6FC79C95-F54F-4515-8012-01F33D894492}) (Version: 40.0.2214.44 - Google Inc.)
CleanUp! (HKLM\...\CleanUp!) (Version:  - )
Dashlane (HKCU\...\Dashlane) (Version: 3.2.0.75803 - Dashlane SAS)
Definition Update for Microsoft Office 2010 (KB2910899) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{C8358E8D-6C89-41B3-8439-FEFBC0353D81}) (Version:  - Microsoft)
Dragon NaturallySpeaking 12 (HKLM\...\{D5D422B9-6976-4E98-8DDF-9632CB515D7E}) (Version: 12.50.000 - Nuance Communications Inc.)
Dropbox (HKCU\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.)
Google Chrome (HKCU\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Hardwood Spades (HKLM\...\Hardwood Spades) (Version:  - )
Java 8 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 (Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Deployment Toolkit 2010 Update 1 (5.1.1642.01) (HKLM\...\{6CD6187B-503B-4976-9334-94D4CE8261B6}) (Version: 5.1.1642.1 - Microsoft)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.4734.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Primary Interoperability Assemblies 2005 (HKLM\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Software Update for Web Folders  (English) 14 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 (HKLM\...\{EDEA8AB7-7683-4ED2-AA19-E6C078064C0D}) (Version: 3.0.5305.0 - Microsoft Corporation)
Microsoft_VC80_ATL_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden
MozBackup 1.5.1 (HKLM\...\MozBackup) (Version:  - Pavel Cvrcek)
Mozilla Firefox 34.0.5 (x86 en-US) (HKLM\...\Mozilla Firefox 34.0.5 (x86 en-US)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla)
Mozilla Thunderbird 31.3.0 (x86 en-US) (HKLM\...\Mozilla Thunderbird 31.3.0 (x86 en-US)) (Version: 31.3.0 - Mozilla)
Smart Defrag 3 (HKLM\...\Smart Defrag 3 Pro_is1) (Version: 3.3 - IObit)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2836939) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2836939v3) (Version: 3 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (HKLM\...\{0A0CADCF-78DA-33C4-A350-CD51849B9702}.KB2836939v3) (Version: 3 - Microsoft Corporation)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version:  - Microsoft)
Update for Windows Internet Explorer 7 (KB976749) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows Internet Explorer 7 (KB980182) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows Internet Explorer 8 (KB2632503) (HKLM\...\KB2632503-IE8) (Version: 1 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Installer Clean Up (HKLM\...\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}) (Version: 3.00.00.0000 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version:  - Microsoft Corporation)
Windows Media Encoder 9 Series (HKLM\...\Windows Media Encoder 9) (Version:  - )
Windows Media Encoder 9 Series (Version: 9.00.2980 - Microsoft Corporation) Hidden
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )

========================= Memory info: ===================================

Percentage of memory in use: 52%
Total physical RAM: 1023.48 MB
Available physical RAM: 484.61 MB
Total Pagefile: 2461.48 MB
Available Pagefile: 1448.4 MB
Total Virtual: 2047.88 MB
Available Virtual: 1973.54 MB

========================= Partitions: =====================================

2 Drive c: (Local Disk) (Fixed) (Total:232.88 GB) (Free:119.95 GB) NTFS
5 Drive i: (Local Disk) (Fixed) (Total:232.88 GB) (Free:106.33 GB) NTFS

========================= Users: ========================================

User accounts for \\GIL-PC

Administrator            ASPNET                   Gil                      
Guest                    HelpAssistant            SUPPORT_388945a0         


**** End of log ****

 

TDSS:

08:23:57.0218 0x1674  TDSS rootkit removing tool 3.0.0.42 Dec 12 2014 00:35:20
08:24:00.0968 0x1674  ============================================================
08:24:00.0968 0x1674  Current date / time: 2015/01/13 08:24:00.0968
08:24:00.0968 0x1674  SystemInfo:
08:24:00.0968 0x1674  
08:24:00.0968 0x1674  OS Version: 5.1.2600 ServicePack: 3.0
08:24:00.0968 0x1674  Product type: Workstation
08:24:00.0968 0x1674  ComputerName: GIL-PC
08:24:00.0968 0x1674  UserName: Gil
08:24:00.0968 0x1674  Windows directory: C:\WINDOWS
08:24:00.0968 0x1674  System windows directory: C:\WINDOWS
08:24:00.0968 0x1674  Processor architecture: Intel x86
08:24:00.0968 0x1674  Number of processors: 2
08:24:00.0968 0x1674  Page size: 0x1000
08:24:00.0968 0x1674  Boot type: Normal boot
08:24:00.0968 0x1674  ============================================================
08:24:07.0187 0x1674  KLMD registered as C:\WINDOWS\system32\drivers\76385902.sys
08:24:11.0328 0x1674  System UUID: {A071A949-6C9B-FC59-D52E-D017FFCE04C4}
08:24:14.0515 0x1674  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
08:24:14.0515 0x1674  Drive \Device\Harddisk1\DR2 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
08:24:14.0859 0x1674  ============================================================
08:24:14.0859 0x1674  \Device\Harddisk0\DR0:
08:24:14.0921 0x1674  MBR partitions:
08:24:14.0921 0x1674  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C0681
08:24:14.0921 0x1674  \Device\Harddisk1\DR2:
08:24:14.0921 0x1674  MBR partitions:
08:24:14.0921 0x1674  \Device\Harddisk1\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C4542
08:24:14.0921 0x1674  ============================================================
08:24:15.0218 0x1674  C: <-> \Device\Harddisk0\DR0\Partition1
08:24:15.0296 0x1674  I: <-> \Device\Harddisk1\DR2\Partition1
08:24:15.0296 0x1674  ============================================================
08:24:15.0296 0x1674  Initialize success
08:24:15.0296 0x1674  ============================================================
08:24:19.0812 0x11d0  ============================================================
08:24:19.0812 0x11d0  Scan started
08:24:19.0812 0x11d0  Mode: Manual;
08:24:19.0812 0x11d0  ============================================================
08:24:19.0812 0x11d0  KSN ping started
08:24:24.0250 0x11d0  KSN ping finished: true
08:24:26.0156 0x11d0  ================ Scan system memory ========================
08:24:26.0171 0x11d0  System memory - ok
08:24:26.0171 0x11d0  ================ Scan services =============================
08:24:26.0437 0x11d0  Abiosdsk - ok
08:24:26.0453 0x11d0  abp480n5 - ok
08:24:26.0687 0x11d0  [ 35F57598F0589FEB3C3ABC1621BF329F, BFC2B02A201AFB5E97C7986A2478FBB514665EDC49231D28EF1DBF9465074B6C ] ACDaemon        C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
08:24:26.0765 0x11d0  ACDaemon - ok
08:24:27.0062 0x11d0  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
08:24:27.0078 0x11d0  ACPI - ok
08:24:27.0140 0x11d0  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
08:24:27.0140 0x11d0  ACPIEC - ok
08:24:27.0375 0x11d0  [ 75A130CED608509B1249244E0C891525, 8AEDA050360CD9FE92A1790BD5DF8334891160E038DF0706E9B9F24296493F1A ] AcrSch2Svc      C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
08:24:27.0546 0x11d0  AcrSch2Svc - ok
08:24:27.0640 0x11d0  [ 5A8104D0DDA7C48D967F6A66AFF35CC5, 07E27BE72DAEABFA98B9A6AF3CCE706695D33A496F2308F7BAFFA86CF62E2B86 ] ADExchange      C:\Program Files\Common Files\ArcSoft\esinter\Bin\eservutil.exe
08:24:27.0687 0x11d0  ADExchange - ok
08:24:27.0703 0x11d0  adfs - ok
08:24:27.0875 0x11d0  [ 4E48A7DF7ECACB38C686B2BEBAA687A3, D4DEE6BD464855B24A6D40BC6A9279B2041099615C6A319D869DA113AD896EA3 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
08:24:27.0921 0x11d0  AdobeFlashPlayerUpdateSvc - ok
08:24:27.0937 0x11d0  adpu160m - ok
08:24:28.0046 0x11d0  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
08:24:28.0093 0x11d0  aec - ok
08:24:28.0156 0x11d0  [ FE3EA6E9AFC1A78E6EDCA121E006AFB7, B596ABBAC058D93C505C9DBF8685049C88E4364195A4092DB580D2D44FA8C23C ] Afc             C:\WINDOWS\system32\drivers\Afc.sys
08:24:28.0250 0x11d0  Afc - ok
08:24:28.0312 0x11d0  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
08:24:28.0328 0x11d0  AFD - ok
08:24:28.0328 0x11d0  Aha154x - ok
08:24:28.0343 0x11d0  aic78u2 - ok
08:24:28.0359 0x11d0  aic78xx - ok
08:24:29.0234 0x11d0  [ DD8520280304B6145A6BE31008748C7C, 4007EAA97E501492E450241338759337EF05E4F5C61AA05FF4BA3CFAD036B0D9 ] ALCXWDM         C:\WINDOWS\system32\drivers\ALCXWDM.SYS
08:24:29.0781 0x11d0  ALCXWDM - ok
08:24:29.0859 0x11d0  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
08:24:29.0875 0x11d0  Alerter - ok
08:24:29.0890 0x11d0  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             C:\WINDOWS\System32\alg.exe
08:24:29.0906 0x11d0  ALG - ok
08:24:29.0906 0x11d0  AliIde - ok
08:24:29.0937 0x11d0  amsint - ok
08:24:30.0015 0x11d0  [ A5299D04ED225D64CF07A568A3E1BF8C, 6F7E73893127BADC8C9815E9BCC0EB5F6584E254D0D09A0B6A680704C71E0A90 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:24:30.0046 0x11d0  Apple Mobile Device - ok
08:24:30.0109 0x11d0  [ D8849F77C0B66226335A59D26CB4EDC6, 4990031453204C57E36E850252A39B05D6ECDAB9E71A8136FB4900F17E59C9CA ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
08:24:30.0171 0x11d0  AppMgmt - ok
08:24:30.0234 0x11d0  [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
08:24:30.0250 0x11d0  Arp1394 - ok
08:24:30.0265 0x11d0  asc - ok
08:24:30.0281 0x11d0  asc3350p - ok
08:24:30.0281 0x11d0  asc3550 - ok
08:24:30.0484 0x11d0  [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
08:24:30.0500 0x11d0  aspnet_state - ok
08:24:30.0546 0x11d0  [ 9D23DE88C3B18BA87CD4587177CA6CEA, 46DBB867FC73E30320852F744F38B66906DD5B96C4EBB03F504CF33E867A8470 ] aswHwid         C:\WINDOWS\system32\drivers\aswHwid.sys
08:24:30.0546 0x11d0  aswHwid - ok
08:24:30.0593 0x11d0  [ 73A9014A9C4B19AA093DA05ED4246E27, F03C8433EB00229490BCD293CC97EF72452E156212D56C24BBA95C8E1B207D1A ] aswMonFlt       C:\WINDOWS\system32\drivers\aswMonFlt.sys
08:24:30.0609 0x11d0  aswMonFlt - ok
08:24:30.0687 0x11d0  [ 0926775B8C3B32EE99921CCB0F85378E, 21A46B124B3E9F2569030E2DF591858B85AA640DDBB5C994B5C00A1E78C9EF67 ] AswRdr          C:\WINDOWS\system32\drivers\aswRdr.sys
08:24:30.0703 0x11d0  AswRdr - ok
08:24:30.0765 0x11d0  [ 6544697080421E62E97AAFBD0A8AA391, BB3F492BF828A147B82FDD1FC9EB9867D96DE0481554A59745D41C6BAB551700 ] aswRvrt         C:\WINDOWS\system32\drivers\aswRvrt.sys
08:24:30.0765 0x11d0  aswRvrt - ok
08:24:30.0859 0x11d0  [ E73CBE3420ECFA8FF7D0467E170E335D, B994342C92AE9167908B8CA3D03DC278E919C7073512461AFFD4C25E8D2D8D66 ] aswSnx          C:\WINDOWS\system32\drivers\aswSnx.sys
08:24:30.0906 0x11d0  aswSnx - ok
08:24:31.0000 0x11d0  [ 1624D5AD126B8AFE2B2E85E5B8364EB6, AB97A74C1CA9921F7753D98516D7E11750D5D3ACD143C83273B0B295625440A0 ] aswSP           C:\WINDOWS\system32\drivers\aswSP.sys
08:24:31.0078 0x11d0  aswSP - ok
08:24:31.0125 0x11d0  [ 4C0ECF1AFA6992904814C74B99DD36F9, AA0D9BA7FE829888C636EC9D72E8E2D987A1C3FF092F95A38EC607CEE25A91F8 ] aswTdi          C:\WINDOWS\system32\drivers\aswTdi.sys
08:24:31.0140 0x11d0  aswTdi - ok
08:24:31.0218 0x11d0  [ 0EFBC2962B156E8AC267F96D4D93EF06, 8A69672CE8B68A0A683D583287473BFAB7CF8B9771C22E398607CF2A151C7124 ] aswVmm          C:\WINDOWS\system32\drivers\aswVmm.sys
08:24:31.0250 0x11d0  aswVmm - ok
08:24:31.0281 0x11d0  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
08:24:31.0281 0x11d0  AsyncMac - ok
08:24:31.0343 0x11d0  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
08:24:31.0343 0x11d0  atapi - ok
08:24:31.0359 0x11d0  Atdisk - ok
08:24:31.0421 0x11d0  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
08:24:31.0437 0x11d0  Atmarpc - ok
08:24:31.0500 0x11d0  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
08:24:31.0500 0x11d0  AudioSrv - ok
08:24:31.0562 0x11d0  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
08:24:31.0562 0x11d0  audstub - ok
08:24:31.0718 0x11d0  [ E3F7EC811923F3F1A77B185F22638E5E, 324041256314C1471B5F123FA8DECC8F374A6B497A6419D4CAF61E68E1733265 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
08:24:31.0734 0x11d0  avast! Antivirus - ok
08:24:31.0796 0x11d0  [ C7DFD42D1906BB6F3AB7368A638C706A, F0177AA26836ABF5AF5E99AE3599363D59C3417A198C6F0318293A8CD33F7C8D ] awecho          C:\WINDOWS\system32\drivers\awechomd.sys
08:24:31.0812 0x11d0  awecho - ok
08:24:32.0031 0x11d0  [ 2C57A502C65E8173B7D0ACF2A34C0DF7, 6A5469C4FD6FE102CDE8D7F153941BFBE53F719C8FC59BC5B956AF90DE9557DD ] awhost32        C:\Program Files\Symantec\pcAnywhere\awhost32.exe
08:24:32.0171 0x11d0  awhost32 - ok
08:24:32.0218 0x11d0  [ FCD631B75D01FECB673D52BFE87774AC, 0DC4322F59748FBC77B87E4EB9E74A14E3DD402B953082BEB771750C516F034B ] awlegacy        C:\WINDOWS\System32\Drivers\awlegacy.sys
08:24:32.0234 0x11d0  awlegacy - ok
08:24:32.0281 0x11d0  [ BE23B51D1AF7AB948F883F864454393D, 9EA606AD38317899BDEBA052B8F28EAE35B1E75DB12329F64CE9623FB08634DC ] AW_HOST         C:\WINDOWS\system32\drivers\aw_host5.sys
08:24:32.0312 0x11d0  AW_HOST - ok
08:24:32.0375 0x11d0  [ 5D7BE7B19E827125E016325334E58FF1, 76AE80C91BF53DF4EE18C92D47EDC6541C2013E3669278166079D1A4A24F9FB6 ] BANTExt         C:\WINDOWS\System32\Drivers\BANTExt.sys
08:24:32.0406 0x11d0  BANTExt - ok
08:24:32.0453 0x11d0  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
08:24:32.0484 0x11d0  Beep - ok
08:24:32.0625 0x11d0  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            C:\WINDOWS\system32\qmgr.dll
08:24:32.0703 0x11d0  BITS - ok
08:24:32.0906 0x11d0  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
08:24:32.0968 0x11d0  Bonjour Service - ok
08:24:33.0015 0x11d0  [ D3FACB34FFF5DB91ADB70987838F8BA7, 5892F2070F040D0E80D527BE7422F5583548BECF36BBDA07E1CF246A8B5E60E4 ] Brother XP spl Service C:\WINDOWS\system32\brsvc01a.exe
08:24:33.0031 0x11d0  Brother XP spl Service - ok
08:24:33.0078 0x11d0  [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser         C:\WINDOWS\System32\browser.dll
08:24:33.0093 0x11d0  Browser - ok
08:24:33.0140 0x11d0  [ 92A964547B96D697E5E9ED43B4297F5A, 01A84802B68253FF093EAFED5B85DE716BB85EBD080D92D4814B6FB39286CD24 ] BrScnUsb        C:\WINDOWS\system32\Drivers\BrScnUsb.sys
08:24:33.0171 0x11d0  BrScnUsb - ok
08:24:33.0234 0x11d0  [ 7FDC0A90C231874253C0F4AC4343E288, 140E7C91895C1C4F34EC37D53FCFF3DC8525F3A16A9096A3AA9CF4B211289888 ] BrSerIb         C:\WINDOWS\system32\DRIVERS\BrSerIb.sys
08:24:33.0250 0x11d0  BrSerIb - ok
08:24:33.0296 0x11d0  [ 26051D886F3333CB41857D6F52248DE1, EB9DA9AC1B766593ED2F538E367355CEBD6AE14FB3F5926443BBACC8924A6020 ] BrSerIf         C:\WINDOWS\system32\Drivers\BrSerIf.sys
08:24:33.0296 0x11d0  BrSerIf - ok
08:24:33.0312 0x11d0  [ 7AC85CDC03BEFD78908B3B6A73D201D0, 338BE17C3FF86F4C4FB5810C844BCB404FFF2BF18239065410D24B155D8E32B8 ] BrUsbSer        C:\WINDOWS\system32\Drivers\BrUsbSer.sys
08:24:33.0359 0x11d0  BrUsbSer - ok
08:24:33.0421 0x11d0  [ F5390255C73F8CB4995BDC687555FD19, 7C2E7E166B8693C74701B03216E695FCE27D896A0F6A981E54AEFFBE1DA3753D ] BrUsbSIb        C:\WINDOWS\system32\DRIVERS\BrUsbSIb.sys
08:24:33.0437 0x11d0  BrUsbSIb - ok
08:24:33.0515 0x11d0  [ 065818B8A2CD7F08D6DC8C598191548C, 08982EB22484ECCA1A7FD0C6A10E6D0BB09F624CEBC397C9B241C2D75C984C70 ] BrYNSvc         C:\Program Files\Browny02\BrYNSvc.exe
08:24:33.0593 0x11d0  BrYNSvc - ok
08:24:33.0625 0x11d0  [ A80FF6E7A4692C7DE16339ED7E0756C4, 2C9876814549DF490242B5308885525DA309FCBBB6A00A28BC7BF466EA9964E4 ] camerVAWdm      C:\WINDOWS\system32\DRIVERS\VAud_WDM.sys
08:24:33.0656 0x11d0  camerVAWdm - ok
08:24:33.0734 0x11d0  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
08:24:33.0750 0x11d0  cbidf2k - ok
08:24:33.0796 0x11d0  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
08:24:33.0812 0x11d0  CCDECODE - ok
08:24:33.0828 0x11d0  cd20xrnt - ok
08:24:33.0875 0x11d0  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
08:24:33.0906 0x11d0  Cdaudio - ok
08:24:33.0953 0x11d0  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
08:24:33.0984 0x11d0  Cdfs - ok
08:24:34.0046 0x11d0  [ 4B0A100EAF5C49EF3CCA8C641431EACC, 88D9C066FFB863910EE1863CE63D38846ACA2DF72D6B5FDFCE0F3379A6DA5EF9 ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
08:24:34.0062 0x11d0  Cdrom - ok
08:24:34.0078 0x11d0  Changer - ok
08:24:34.0250 0x11d0  [ C2E6D83BF43DE99F91FD5BE8AEB55E46, C9CA149A7A0C1FA2538ED65B17DE1C935A7D91DA9978DD859D1AC41AB7771CC3 ] chromoting      C:\Program Files\Google\Chrome Remote Desktop\40.0.2214.44\remoting_host.exe
08:24:34.0281 0x11d0  chromoting - ok
08:24:34.0359 0x11d0  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
08:24:34.0375 0x11d0  CiSvc - ok
08:24:34.0437 0x11d0  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
08:24:34.0468 0x11d0  ClipSrv - ok
08:24:34.0609 0x11d0  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:24:34.0625 0x11d0  clr_optimization_v2.0.50727_32 - ok
08:24:34.0703 0x11d0  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:24:34.0953 0x11d0  clr_optimization_v4.0.30319_32 - ok
08:24:36.0296 0x11d0  [ 4F29CBCC2CF13C31C20276887520EFC6, 4C8DE285C1AE9B4C40880DA2C29F1FCD597E23829DA3818A0BB46566ACBE7F8A ] cmdAgent        C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
08:24:38.0343 0x11d0  cmdAgent - ok
08:24:38.0453 0x11d0  [ EC05692C0D49EF8D81CB3663C503C5CF, 51F289B5FB616AAA6380E958F72D01C15020F2595D39353CD42F6E16350E9ABD ] cmderd          C:\WINDOWS\system32\DRIVERS\cmderd.sys
08:24:38.0468 0x11d0  cmderd - ok
08:24:38.0609 0x11d0  [ 35E764C6426A229EC263671FA0EEF251, 4A81195D8132FCBCB134D6924A2386AD7987859E0BC0C4154A9681817C0739CC ] cmdGuard        C:\WINDOWS\system32\DRIVERS\cmdguard.sys
08:24:38.0671 0x11d0  cmdGuard - ok
08:24:38.0703 0x11d0  [ 955BDC094490D039DCF012EC9B2D8259, 2C01FB554D1B1DB38952D07F5F22D52A51AA75FF731C624241DCDF7834905566 ] cmdHlp          C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
08:24:38.0718 0x11d0  cmdHlp - ok
08:24:38.0718 0x11d0  CmdIde - ok
08:24:39.0046 0x11d0  [ 486DE1D1E08F2D096DEFEAFD8EE240B4, BFA1D21CBD78C6564144F97B085F4D9EB68EBB20DFEB8E3CAA0DD9C304CF88B1 ] cmdvirth        C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
08:24:39.0250 0x11d0  cmdvirth - ok
08:24:39.0265 0x11d0  cnnctfy2MP - ok
08:24:39.0359 0x11d0  [ 8ED4497E4CC0C030EAC8E2FFA1DD9679, 029CA18ED6355D3DE277ACF4C2B307C8E3DDF58C095CAA94CED0E48B95B51375 ] COMMONFX        C:\WINDOWS\system32\drivers\COMMONFX.SYS
08:24:39.0375 0x11d0  COMMONFX - ok
08:24:39.0406 0x11d0  COMMONFX.DLL - ok
08:24:39.0421 0x11d0  [ 8ED4497E4CC0C030EAC8E2FFA1DD9679, 029CA18ED6355D3DE277ACF4C2B307C8E3DDF58C095CAA94CED0E48B95B51375 ] COMMONFX.SYS    C:\WINDOWS\System32\drivers\COMMONFX.SYS
08:24:39.0421 0x11d0  COMMONFX.SYS - ok
08:24:39.0437 0x11d0  COMSysApp - ok
08:24:39.0468 0x11d0  Cpqarray - ok
08:24:39.0578 0x11d0  cpuz135 - ok
08:24:39.0640 0x11d0  [ C0EAD9F8AB83D41FF07303C75589C2B8, C89CAC39BCD2FA2DCC56D7EE84FF66127BCECCAE400E119FE41BF4C4D769504B ] Creative Audio Engine Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
08:24:39.0656 0x11d0  Creative Audio Engine Licensing Service - ok
08:24:39.0671 0x11d0  Crypkey License - ok
08:24:39.0718 0x11d0  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
08:24:39.0734 0x11d0  CryptSvc - ok
08:24:39.0812 0x11d0  [ 6191A973461852A09D643609E1D5F7C6, 66D731C335B8A6CA225B8B5CCB4B89B1920928322E2483D4CAF2CF250606A917 ] CT20XUT.DLL     C:\WINDOWS\system32\CT20XUT.DLL
08:24:39.0843 0x11d0  CT20XUT.DLL - ok
08:24:39.0968 0x11d0  [ C1E3B24CA4871BD2A8C3B95110E78721, 6EA9146E98B971A5564F457CD457BD12B612187A351022498BA8F1036C899EBA ] ctac32k         C:\WINDOWS\system32\drivers\ctac32k.sys
08:24:40.0062 0x11d0  ctac32k - ok
08:24:40.0171 0x11d0  [ 13E797253EA98C2574C878DE78CA691E, 46B586FFA7981327C437E58B5CB0C09580ADE8AD1E0EF64591DBA9A41E4C4069 ] ctaud2k         C:\WINDOWS\system32\drivers\ctaud2k.sys
08:24:40.0218 0x11d0  ctaud2k - ok
08:24:40.0343 0x11d0  [ AB3456984B59D1425BEFC0D457D41DD4, 088AA379B54A8FCB32FB5EFB00374470C0A51392F60EA9DA33DCFAE72D90491A ] CTAUDFX         C:\WINDOWS\system32\drivers\CTAUDFX.SYS
08:24:40.0484 0x11d0  CTAUDFX - ok
08:24:40.0500 0x11d0  CTAUDFX.DLL - ok
08:24:40.0562 0x11d0  [ AB3456984B59D1425BEFC0D457D41DD4, 088AA379B54A8FCB32FB5EFB00374470C0A51392F60EA9DA33DCFAE72D90491A ] CTAUDFX.SYS     C:\WINDOWS\System32\drivers\CTAUDFX.SYS
08:24:40.0578 0x11d0  CTAUDFX.SYS - ok
08:24:40.0812 0x11d0  [ 87CB26A58E2B8BF57F4FC92838318C12, AA58EB4F7E13C3DEC52E813AC64099DC4E07E0537C562E90F55745898DF6686B ] CTAudSvcService C:\Program Files\Creative\Shared Files\CTAudSvc.exe
08:24:40.0843 0x11d0  CTAudSvcService - ok
08:24:40.0968 0x11d0  [ D5E38C394787C1FBFC70E0C50345C25C, E7AE0E6D7AB93EACA0F3F7691E085B7D9AFFEB943F817EAE1D1FF5CD29F4FC46 ] ctdvda2k        C:\WINDOWS\system32\drivers\ctdvda2k.sys
08:24:41.0031 0x11d0  ctdvda2k - ok
08:24:41.0140 0x11d0  [ 6A57F82009563AEE8826F117E1D3C72C, C1D8E5AF7571B01C039B431862F5937F1315996D8039F48780E856F7640A99D1 ] CTEAPSFX.DLL    C:\WINDOWS\system32\CTEAPSFX.DLL
08:24:41.0156 0x11d0  CTEAPSFX.DLL - ok
08:24:41.0281 0x11d0  [ C8AC1FFAEADD655193D7B1811A572D8D, 708A16A6A642F5A21FDFA478964B4D428ACA329CBE6308BAB3759B5C058955E2 ] CTEDSPFX.DLL    C:\WINDOWS\system32\CTEDSPFX.DLL
08:24:41.0296 0x11d0  CTEDSPFX.DLL - ok
08:24:41.0390 0x11d0  [ 44495D9DAF675257D00B25B041EE6667, 23123D90B9C6E42FE3871D0F417A413BC5515543B9F380D158D523806E29401B ] CTEDSPIO.DLL    C:\WINDOWS\system32\CTEDSPIO.DLL
08:24:41.0437 0x11d0  CTEDSPIO.DLL - ok
08:24:41.0484 0x11d0  [ 8E90B1762CB42E2FC76DAC9210C83C66, 3F9FABCC92F10234D86E75B5FBC97096FF5EF49694B20B8A425F063C03368F86 ] CTEDSPSY.DLL    C:\WINDOWS\system32\CTEDSPSY.DLL
08:24:41.0531 0x11d0  CTEDSPSY.DLL - ok
08:24:41.0593 0x11d0  [ B4297863E9FCE34C0493FCA66F0970A2, 8729973F1DFD05CF6E6FD6E6D1C1C35F22E229F11B432819538A19C676D6ADA3 ] CTERFXFX        C:\WINDOWS\system32\drivers\CTERFXFX.SYS
08:24:41.0640 0x11d0  CTERFXFX - ok
08:24:41.0640 0x11d0  CTERFXFX.DLL - ok
08:24:41.0671 0x11d0  [ B4297863E9FCE34C0493FCA66F0970A2, 8729973F1DFD05CF6E6FD6E6D1C1C35F22E229F11B432819538A19C676D6ADA3 ] CTERFXFX.SYS    C:\WINDOWS\System32\drivers\CTERFXFX.SYS
08:24:41.0687 0x11d0  CTERFXFX.SYS - ok
08:24:42.0015 0x11d0  [ 2C48E9D8CA703964463F27AE341115B7, 7EB81214200A4ED6BFAFC7F1CC70353F136BEF8CA55953EF554C73FD78357885 ] CTEXFIFX.DLL    C:\WINDOWS\system32\CTEXFIFX.DLL
08:24:42.0109 0x11d0  CTEXFIFX.DLL - ok
08:24:42.0140 0x11d0  [ F7657C598E7C29C6683C1E4A8DD68884, 84EA9946F00141A839C42FE19DB9B3A589433E472D26D6126D084B7F217B2642 ] CTHWIUT.DLL     C:\WINDOWS\system32\CTHWIUT.DLL
08:24:42.0156 0x11d0  CTHWIUT.DLL - ok
08:24:42.0218 0x11d0  [ D19AB3A7DF104250429000F26E0D4049, 583449BB7F3A3DA26007AAA2BFAF52A7734256CECADB979159A26DAB9C30BA74 ] ctprxy2k        C:\WINDOWS\system32\drivers\ctprxy2k.sys
08:24:42.0234 0x11d0  ctprxy2k - ok
08:24:42.0359 0x11d0  [ D665DA6B6AEA45B9DB090096F2AEF023, 155D6BA1F4AB24B00DCD166F09E8A637F6E9FC8E8F78EE22EC208BB287094FF0 ] CTSBLFX         C:\WINDOWS\system32\drivers\CTSBLFX.SYS
08:24:42.0421 0x11d0  CTSBLFX - ok
08:24:42.0453 0x11d0  CTSBLFX.DLL - ok
08:24:42.0515 0x11d0  [ D665DA6B6AEA45B9DB090096F2AEF023, 155D6BA1F4AB24B00DCD166F09E8A637F6E9FC8E8F78EE22EC208BB287094FF0 ] CTSBLFX.SYS     C:\WINDOWS\System32\drivers\CTSBLFX.SYS
08:24:42.0546 0x11d0  CTSBLFX.SYS - ok
08:24:42.0625 0x11d0  [ 27C23069325ACDC27021671424F11BC1, BA0BA67AC1CC4C707B029441A86AFF099E81608B16ED6CA559C0A5A609CF24F7 ] ctsfm2k         C:\WINDOWS\system32\drivers\ctsfm2k.sys
08:24:42.0640 0x11d0  ctsfm2k - ok
08:24:42.0656 0x11d0  dac2w2k - ok
08:24:42.0671 0x11d0  dac960nt - ok
08:24:42.0765 0x11d0  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
08:24:42.0843 0x11d0  DcomLaunch - ok
08:24:42.0921 0x11d0  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
08:24:42.0953 0x11d0  Dhcp - ok
08:24:43.0015 0x11d0  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
08:24:43.0046 0x11d0  Disk - ok
08:24:43.0046 0x11d0  dmadmin - ok
08:24:43.0203 0x11d0  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
08:24:43.0343 0x11d0  dmboot - ok
08:24:43.0390 0x11d0  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
08:24:43.0406 0x11d0  dmio - ok
08:24:43.0468 0x11d0  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
08:24:43.0484 0x11d0  dmload - ok
08:24:43.0531 0x11d0  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        C:\WINDOWS\System32\dmserver.dll
08:24:43.0546 0x11d0  dmserver - ok
08:24:43.0593 0x11d0  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
08:24:43.0609 0x11d0  DMusic - ok
08:24:43.0687 0x11d0  [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
08:24:43.0703 0x11d0  Dnscache - ok
08:24:43.0765 0x11d0  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
08:24:43.0781 0x11d0  Dot3svc - ok
08:24:43.0796 0x11d0  dpti2o - ok
08:24:43.0875 0x11d0  [ CCA30A1F8398B46431A03CF6BB0F8789, 98EB10F1021BB51A7C427FC518E63569273DC98A74F02ADC7C6A86EBFD11C093 ] DragonSvc       C:\Program Files\Common Files\Nuance\dgnsvc.exe
08:24:43.0906 0x11d0  DragonSvc - ok
08:24:43.0953 0x11d0  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
08:24:43.0968 0x11d0  drmkaud - ok
08:24:44.0031 0x11d0  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         C:\WINDOWS\System32\eapsvc.dll
08:24:44.0046 0x11d0  EapHost - ok
08:24:44.0125 0x11d0  [ D03A26D94F3A24CC6C32D70BD63BAEAA, ECF6AEBBB7893A7530C35CBC4D344B3B1BA7932DD3A3142DBCA5EBFA239A9506 ] emupia          C:\WINDOWS\system32\drivers\emupia2k.sys
08:24:44.0140 0x11d0  emupia - ok
08:24:44.0156 0x11d0  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
08:24:44.0171 0x11d0  ERSvc - ok
08:24:44.0250 0x11d0  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog        C:\WINDOWS\system32\services.exe
08:24:44.0281 0x11d0  Eventlog - ok
08:24:44.0343 0x11d0  [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem     C:\WINDOWS\System32\es.dll
08:24:44.0375 0x11d0  EventSystem - ok
08:24:44.0437 0x11d0  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
08:24:44.0453 0x11d0  Fastfat - ok
08:24:44.0546 0x11d0  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
08:24:44.0593 0x11d0  FastUserSwitchingCompatibility - ok
08:24:44.0625 0x11d0  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
08:24:44.0625 0x11d0  Fdc - ok
08:24:44.0640 0x11d0  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
08:24:44.0656 0x11d0  Fips - ok
08:24:44.0796 0x11d0  [ 1F63900E2EB00101B9ACA2B7A870704E, 5AFE1FC852937FECE6B33147BD0110436FE97F33BFDA3F69B1F5EDAD6FFC09C6 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
08:24:44.0953 0x11d0  FLEXnet Licensing Service - ok
08:24:45.0000 0x11d0  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
08:24:45.0000 0x11d0  Flpydisk - ok
08:24:45.0046 0x11d0  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
08:24:45.0062 0x11d0  FltMgr - ok
08:24:45.0140 0x11d0  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
08:24:45.0140 0x11d0  FontCache3.0.0.0 - ok
08:24:45.0203 0x11d0  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
08:24:45.0218 0x11d0  Fs_Rec - ok
08:24:45.0265 0x11d0  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
08:24:45.0281 0x11d0  Ftdisk - ok
08:24:45.0296 0x11d0  [ 065639773D8B03F33577F6CDAEA21063, F20D0F3256F5F894CCA48755B23679619B5D02A0F64A142FC6CB619FC0952067 ] gameenum        C:\WINDOWS\system32\DRIVERS\gameenum.sys
08:24:45.0312 0x11d0  gameenum - ok
08:24:45.0375 0x11d0  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
08:24:45.0390 0x11d0  GEARAspiWDM - ok
08:24:45.0421 0x11d0  [ B390BC5AA09F333C5D95BE651C073564, AC6FA9123C03A54143D666A75771EE44E3493B22D43B2972547F3E7FCDA95C7F ] Gernuwa         C:\WINDOWS\system32\drivers\Gernuwa.sys
08:24:45.0437 0x11d0  Gernuwa - ok
08:24:45.0500 0x11d0  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
08:24:45.0515 0x11d0  Gpc - ok
08:24:45.0562 0x11d0  [ CEC45180029F1012054A41CEEEA9CEAB, FCE330FB9E4A9BA0BD1C31D94A5A73034175DB5FF4115009B3B3FFE327E31995 ] grmnusb         C:\WINDOWS\system32\drivers\grmnusb.sys
08:24:45.0593 0x11d0  grmnusb - ok
08:24:45.0718 0x11d0  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
08:24:45.0734 0x11d0  gupdate - ok
08:24:45.0750 0x11d0  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
08:24:45.0750 0x11d0  gupdatem - ok
08:24:46.0046 0x11d0  [ F5F17B523E467FA3DDA7D9A40D296961, F12EADBA8557DADE2960E82CBC63FBB3344EC940CD7A6D8618653B7EE7CA5C95 ] ha10kx2k        C:\WINDOWS\system32\drivers\ha10kx2k.sys
08:24:46.0078 0x11d0  ha10kx2k - ok
08:24:46.0171 0x11d0  [ 42C81F4691681DED6E1FC639AABED570, 6AC5FD7BC44CB8708957ED119D2528C0DDD8A43C9009F492389EBBA08C7CA2BE ] hap16v2k        C:\WINDOWS\system32\drivers\hap16v2k.sys
08:24:46.0203 0x11d0  hap16v2k - ok
08:24:46.0265 0x11d0  [ 29EE8F6FCD5E9B206C0D91923E882F6A, 1FD45A6AB7E79BC1E1946BAD82CAD0199B2A34EDF409C7683F7945018F0F2AA6 ] hap17v2k        C:\WINDOWS\system32\drivers\hap17v2k.sys
08:24:46.0296 0x11d0  hap17v2k - ok
08:24:46.0390 0x11d0  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
08:24:46.0406 0x11d0  helpsvc - ok
08:24:46.0437 0x11d0  [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] HidServ         C:\WINDOWS\System32\hidserv.dll
08:24:46.0453 0x11d0  HidServ - ok
08:24:46.0515 0x11d0  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
08:24:46.0515 0x11d0  HidUsb - ok
08:24:46.0578 0x11d0  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
08:24:46.0593 0x11d0  hkmsvc - ok
08:24:46.0609 0x11d0  hpn - ok
08:24:46.0734 0x11d0  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
08:24:46.0765 0x11d0  HTTP - ok
08:24:46.0812 0x11d0  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
08:24:46.0843 0x11d0  HTTPFilter - ok
08:24:46.0859 0x11d0  i2omgmt - ok
08:24:46.0875 0x11d0  i2omp - ok
08:24:46.0906 0x11d0  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
08:24:46.0921 0x11d0  i8042prt - ok
08:24:47.0078 0x11d0  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
08:24:47.0093 0x11d0  IDriverT - ok
08:24:47.0453 0x11d0  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
08:24:47.0515 0x11d0  idsvc - ok
08:24:47.0546 0x11d0  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
08:24:47.0546 0x11d0  Imapi - ok
08:24:47.0593 0x11d0  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    C:\WINDOWS\System32\imapi.exe
08:24:47.0609 0x11d0  ImapiService - ok
08:24:47.0625 0x11d0  ini910u - ok
08:24:47.0687 0x11d0  [ 1F42F92CF80942F5E3CBD1C59F1C81A9, 941CA3B212D614C6201E2BE54A170D14BDEE4B3D00962BDB7CE6E05768AE4275 ] Inspect         C:\WINDOWS\system32\DRIVERS\inspect.sys
08:24:47.0703 0x11d0  Inspect - ok
08:24:47.0718 0x11d0  IntelIde - ok
08:24:47.0781 0x11d0  [ 8C953733D8F36EB2133F5BB58808B66B, 555868F246D73652E998B0B1296476E42FCEDED30D646CC000F31ECE4EBC25E6 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
08:24:47.0828 0x11d0  intelppm - ok
08:24:48.0281 0x11d0  [ F61BD411A315B9721DDEF61E44D34474, 9A0D57666FB53E22DFC0000E8118B80455E58A8A8950C6FF77698C7EBC1A4F3C ] IntelS51        C:\WINDOWS\system32\DRIVERS\IntelS51.sys
08:24:48.0640 0x11d0  IntelS51 - ok
08:24:48.0671 0x11d0  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] ip6fw           C:\WINDOWS\system32\drivers\ip6fw.sys
08:24:48.0687 0x11d0  ip6fw - ok
08:24:48.0734 0x11d0  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
08:24:48.0750 0x11d0  IpFilterDriver - ok
08:24:48.0796 0x11d0  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
08:24:48.0812 0x11d0  IpInIp - ok
08:24:48.0890 0x11d0  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
08:24:48.0937 0x11d0  IpNat - ok
08:24:49.0031 0x11d0  [ E8A39D41474BE42FD8830CED32932D6C, 66D59E61E46253D06A4811CE2101C0AD4EEFE25C676548BBB1B0D056A20B5DC6 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
08:24:49.0093 0x11d0  iPod Service - ok
08:24:49.0140 0x11d0  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
08:24:49.0156 0x11d0  IPSec - ok
08:24:49.0203 0x11d0  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
08:24:49.0218 0x11d0  IRENUM - ok
08:24:49.0250 0x11d0  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
08:24:49.0265 0x11d0  isapnp - ok
08:24:49.0312 0x11d0  [ 2F03CEB28307983F3B36216D35FFA5AA, EACAE0F03BD2A8F72458884CECFF3FD0CE093DDAC7C57B64FB9AF5E4BFBFFA21 ] ISODrive        C:\Program Files\UltraISO\drivers\ISODrive.sys
08:24:49.0312 0x11d0  ISODrive - ok
08:24:49.0437 0x11d0  [ BF918C9473D64BBD53C22C47045883F5, 1980726FBFEEE75E4B360B1A4F438CF1ADD929AC21BD5197F740CB8AD8194BD2 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
08:24:49.0453 0x11d0  JavaQuickStarterService - ok
08:24:49.0500 0x11d0  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
08:24:49.0500 0x11d0  Kbdclass - ok
08:24:49.0546 0x11d0  [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
08:24:49.0546 0x11d0  kbdhid - ok
08:24:49.0609 0x11d0  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
08:24:49.0625 0x11d0  kmixer - ok
08:24:49.0671 0x11d0  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
08:24:49.0671 0x11d0  KSecDD - ok
08:24:49.0718 0x11d0  [ 151D8C22A57025D0619D9ED452A4F1FF, DA303B581E6D110BCC17DC1934277AC55DE07D00EBC58501EB9C2C220AC68EB9 ] L8042Kbd        C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys
08:24:49.0734 0x11d0  L8042Kbd - ok
08:24:49.0750 0x11d0  [ 732AFC2D2643916CFA135130D2ADBC20, 98790F493CE17939AD71FB24BE0E84945296A92E9BDB183F52D4A5C20FA303FC ] L8042mou        C:\WINDOWS\system32\DRIVERS\L8042mou.Sys
08:24:49.0765 0x11d0  L8042mou - ok
08:24:49.0828 0x11d0  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
08:24:49.0875 0x11d0  lanmanserver - ok
08:24:49.0937 0x11d0  [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
08:24:49.0984 0x11d0  lanmanworkstation - ok
08:24:50.0046 0x11d0  [ CA63FE81705AD660E482BEF210BF2C73, 4ABEBEEA20BC83E41BC3318039E7719CDF75097DAB3904648D7852CB2886086D ] LBeepKE         C:\WINDOWS\system32\Drivers\LBeepKE.sys
08:24:50.0046 0x11d0  LBeepKE - ok
08:24:50.0062 0x11d0  lbrtfdc - ok
08:24:50.0187 0x11d0  [ AB097D0F93B30A6D79D430422AC6A7E8, 2A5543EFDF3B8983E20887A6775CAFFF04B0A8CEC9CA3F484AD00BE220479C43 ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
08:24:50.0234 0x11d0  LBTServ - ok
08:24:50.0281 0x11d0  [ ED8F9311CAE12C41A58DAE2EA6D6C849, 8F54E06E81B85C3CF996DE872C8B2B8B2A57F3349F0A37031819FD51345A23A5 ] LEqdUsb         C:\WINDOWS\system32\Drivers\LEqdUsb.Sys
08:24:50.0296 0x11d0  LEqdUsb - ok
08:24:50.0328 0x11d0  [ 9943F10C60EAF714C7010B37025A5AC5, DA4A537DF188BB9207A78946B1AD0EE00370457663ED36E046300BB91596CC89 ] LHidEqd         C:\WINDOWS\system32\Drivers\LHidEqd.Sys
08:24:50.0343 0x11d0  LHidEqd - ok
08:24:50.0390 0x11d0  [ B68309F25C5787385DA842EB5B496958, 19A5BE5D29BAE0C2CE8B7FC0FB88F2258F600C69E0E9673703B98BE20A56B3B9 ] LHidFilt        C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
08:24:50.0390 0x11d0  LHidFilt - ok
08:24:50.0437 0x11d0  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
08:24:50.0468 0x11d0  LmHosts - ok
08:24:50.0484 0x11d0  [ 63D3B1D3CD267FCC186A0146B80D453B, 990935AD04A14AB9CB8E37DEABA94213763DE16774FF9079640C13A66B844068 ] LMouFilt        C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
08:24:50.0484 0x11d0  LMouFilt - ok
08:24:50.0546 0x11d0  [ 46F0396649101C27968089D127395980, CAF06856EACF830252998B51F3BAFA8CFBBDD6D05AD124548CF3ED79EDC92336 ] LMouKE          C:\WINDOWS\system32\DRIVERS\LMouKE.Sys
08:24:50.0578 0x11d0  LMouKE - ok
08:24:50.0609 0x11d0  [ A3F4391DFDF2F9E9FE4EAD193265A5AD, A60A1A345622F4758181FB0B6EE784B0B718105FEE7B0F6FEDE5AD59FE448EE1 ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
08:24:50.0609 0x11d0  MBAMProtector - ok
08:24:50.0828 0x11d0  [ 0BB29DE40C9D9529793DCDB59A43CF5B, 251001A407D32EF22F64915EEFFAAEC229073C4549BF7D9D1D4209B7D15B4681 ] MBAMScheduler   C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
08:24:51.0000 0x11d0  MBAMScheduler - ok
08:24:51.0109 0x11d0  [ 5F82D8188B370B0CF185D4AE2B9B4A0E, 549B53DD989A069E1C38347C4CEF5283DF9B428CE102799B06A20D3D8F23825F ] MBAMService     C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
08:24:51.0156 0x11d0  MBAMService - ok
08:24:51.0203 0x11d0  [ 8E2E9CCD873ABF180F48BCAEEEBE347D, 35DBBB8E63B480151EA5701D9DB7C90642FA2391D044DB400D3644F3E21BB0C1 ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
08:24:51.0218 0x11d0  MBAMSwissArmy - ok
08:24:51.0328 0x11d0  [ 7CF1B716372B89568AE4C0FE769F5869, 0D70A7A594BCFBB26D7249C0F4B0AF9EF874F2318B3FDCE44648CC61279594ED ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
08:24:51.0375 0x11d0  MDM - ok
08:24:51.0437 0x11d0  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
08:24:51.0468 0x11d0  Messenger - ok
08:24:51.0578 0x11d0  Microsoft SharePoint Workspace Audit Service - ok
08:24:51.0609 0x11d0  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
08:24:51.0625 0x11d0  mnmdd - ok
08:24:51.0656 0x11d0  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         C:\WINDOWS\System32\mnmsrvc.exe
08:24:51.0687 0x11d0  mnmsrvc - ok
08:24:51.0718 0x11d0  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
08:24:51.0734 0x11d0  Modem - ok
08:24:51.0781 0x11d0  [ 1992E0D143B09653AB0F9C5E04B0FD65, 1431EC53A65F561C235A08F926C5348A6B21B06A08C075DE8172A88EE0AA634E ] MODEMCSA        C:\WINDOWS\system32\drivers\MODEMCSA.sys
08:24:51.0796 0x11d0  MODEMCSA - ok
08:24:51.0828 0x11d0  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
08:24:51.0843 0x11d0  Mouclass - ok
08:24:51.0890 0x11d0  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
08:24:51.0906 0x11d0  mouhid - ok
08:24:51.0937 0x11d0  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
08:24:51.0953 0x11d0  MountMgr - ok
08:24:52.0046 0x11d0  [ B4E9C7383A705628AD491CF0F87D901F, 5C0CD7133D4F5B1E0466CDB2A2210ECA57206A8BC41F37BC6324120AE5501C70 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
08:24:52.0093 0x11d0  MozillaMaintenance - ok
08:24:52.0140 0x11d0  [ DAC38EF64DBDD5C163ED07E5D0D54C1C, 38D4A2A11109D924A723D778D3A8A7ED5BF7ACC2856E0C9947F27C248090507E ] mr7911          C:\WINDOWS\system32\DRIVERS\mr7911.sys
08:24:52.0156 0x11d0  mr7911 - ok
08:24:52.0171 0x11d0  mraid35x - ok
08:24:52.0203 0x11d0  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
08:24:52.0218 0x11d0  MRxDAV - ok
08:24:52.0359 0x11d0  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
08:24:52.0406 0x11d0  MRxSmb - ok
08:24:52.0468 0x11d0  [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
08:24:52.0515 0x11d0  MSDTC - ok
08:24:52.0562 0x11d0  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
08:24:52.0578 0x11d0  Msfs - ok
08:24:52.0750 0x11d0  [ 29E0EC2A9DC4C7913657A51DFFF97856, 64249C107BF468B6E4A94571CE99746E99E68E9C1207FADCA261269C0F4E0859 ] MSHUSBVideo     C:\WINDOWS\system32\Drivers\nx6000.sys
08:24:52.0828 0x11d0  MSHUSBVideo - ok
08:24:52.0828 0x11d0  MSIServer - ok
08:24:53.0000 0x11d0  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
08:24:53.0015 0x11d0  MSKSSRV - ok
08:24:53.0203 0x11d0  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
08:24:53.0250 0x11d0  MSPCLOCK - ok
08:24:53.0312 0x11d0  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
08:24:53.0359 0x11d0  MSPQM - ok
08:24:53.0437 0x11d0  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
08:24:53.0468 0x11d0  mssmbios - ok
08:24:53.0515 0x11d0  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
08:24:53.0546 0x11d0  MSTEE - ok
08:24:53.0625 0x11d0  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
08:24:53.0640 0x11d0  Mup - ok
08:24:53.0765 0x11d0  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
08:24:53.0812 0x11d0  NABTSFEC - ok
08:24:54.0500 0x11d0  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        C:\WINDOWS\System32\qagentrt.dll
08:24:54.0578 0x11d0  napagent - ok
08:24:54.0718 0x11d0  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
08:24:54.0734 0x11d0  NDIS - ok
08:24:54.0781 0x11d0  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
08:24:54.0796 0x11d0  NdisIP - ok
08:24:54.0906 0x11d0  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
08:24:54.0937 0x11d0  NdisTapi - ok
08:24:55.0578 0x11d0  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
08:24:55.0593 0x11d0  Ndisuio - ok
08:24:55.0828 0x11d0  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
08:24:55.0875 0x11d0  NdisWan - ok
08:24:55.0953 0x11d0  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
08:24:55.0968 0x11d0  NDProxy - ok
08:24:56.0000 0x11d0  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
08:24:56.0000 0x11d0  NetBIOS - ok
08:24:56.0062 0x11d0  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
08:24:56.0078 0x11d0  NetBT - ok
08:24:56.0125 0x11d0  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          C:\WINDOWS\system32\netdde.exe
08:24:56.0187 0x11d0  NetDDE - ok
08:24:56.0203 0x11d0  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
08:24:56.0218 0x11d0  NetDDEdsdm - ok
08:24:56.0250 0x11d0  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        C:\WINDOWS\System32\lsass.exe
08:24:56.0281 0x11d0  Netlogon - ok
08:24:56.0328 0x11d0  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          C:\WINDOWS\System32\netman.dll
08:24:56.0390 0x11d0  Netman - ok
08:24:56.0453 0x11d0  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
08:24:56.0453 0x11d0  NetTcpPortSharing - ok
08:24:56.0531 0x11d0  [ AEC4E29D5511851CF104BC21C4A70542, B7C4F7E13F1CCF83A001FD085C6A7C892342CCD9D75BAB5BAC5D0E6A1BD92FF9 ] NetworkX        C:\WINDOWS\system32\ckldrv.sys
08:24:56.0531 0x11d0  NetworkX - ok
08:24:56.0562 0x11d0  [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
08:24:56.0578 0x11d0  NIC1394 - ok
08:24:56.0640 0x11d0  [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla             C:\WINDOWS\System32\mswsock.dll
08:24:56.0687 0x11d0  Nla - ok
08:24:56.0718 0x11d0  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
08:24:56.0734 0x11d0  Npfs - ok
08:24:56.0812 0x11d0  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
08:24:56.0843 0x11d0  Ntfs - ok
08:24:56.0859 0x11d0  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         C:\WINDOWS\System32\lsass.exe
08:24:56.0875 0x11d0  NtLmSsp - ok
08:24:56.0953 0x11d0  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
08:24:57.0000 0x11d0  NtmsSvc - ok
08:24:57.0031 0x11d0  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
08:24:57.0046 0x11d0  Null - ok
08:24:58.0375 0x11d0  [ 9F4384AA43548DDD438F7B7825D11699, D1C774881D8156C03FDEE2AC141A47A8457E2001003018D0653FE5309367B06C ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
08:25:00.0156 0x11d0  nv - ok
08:25:00.0265 0x11d0  [ 0C41C4ACFE00D826DB479C40C1D9EDC8, D701B94B92EC3226F7FEC0BCA4F03CAC69A760DA3965E121950D56E7E255F7C6 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
08:25:00.0281 0x11d0  NVSvc - ok
08:25:00.0343 0x11d0  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
08:25:00.0343 0x11d0  NwlnkFlt - ok
08:25:00.0359 0x11d0  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
08:25:00.0375 0x11d0  NwlnkFwd - ok
08:25:00.0406 0x11d0  [ CA33832DF41AFB202EE7AEB05145922F, 9DD0089C2E13C7F81214C3B5A4A61276292052F9BBFEA7FCD0F6AA27815D5F95 ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
08:25:00.0421 0x11d0  ohci1394 - ok
08:25:00.0968 0x11d0  [ 9BFD0A072459782E3638362A4473E283, 86F4C254505905E7184786F97E1E36E92A8786E0D57F14C969CAD02CCEB3D2B4 ] OS Selector     C:\Program Files\Acronis\DiskDirector\OSS\reinstall_svc.exe
08:25:01.0171 0x11d0  OS Selector - ok
08:25:01.0250 0x11d0  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:25:01.0250 0x11d0  ose - ok
08:25:02.0218 0x11d0  [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
08:25:03.0125 0x11d0  osppsvc - ok
08:25:03.0250 0x11d0  [ 4B8AABB697AE81A61395A19CE4447D49, E8ED9057410ECF4410C18A08C7FF013FA7390A45174D94ADB77B05515F74710E ] ossrv           C:\WINDOWS\system32\drivers\ctoss2k.sys
08:25:03.0281 0x11d0  ossrv - ok
08:25:03.0359 0x11d0  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
08:25:03.0390 0x11d0  Parport - ok
08:25:03.0421 0x11d0  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
08:25:03.0437 0x11d0  PartMgr - ok
08:25:03.0500 0x11d0  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
08:25:03.0515 0x11d0  ParVdm - ok
08:25:03.0546 0x11d0  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
08:25:03.0562 0x11d0  PCI - ok
08:25:03.0578 0x11d0  PCIDump - ok
08:25:03.0609 0x11d0  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
08:25:03.0625 0x11d0  PCIIde - ok
08:25:03.0656 0x11d0  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
08:25:03.0671 0x11d0  Pcmcia - ok
08:25:03.0687 0x11d0  PDCOMP - ok
08:25:03.0812 0x11d0  [ 7CADB4ABAE72390951886CF259791F5F, 9A0F4113F4E09911A44843F31E8C7047EEA39611AB490A4CF16FAE9D95310076 ] PDFProFiltSrvPP C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe
08:25:03.0812 0x11d0  PDFProFiltSrvPP - ok
08:25:03.0828 0x11d0  PDFRAME - ok
08:25:03.0843 0x11d0  PDRELI - ok
08:25:03.0859 0x11d0  PDRFRAME - ok
08:25:03.0875 0x11d0  perc2 - ok
08:25:03.0890 0x11d0  perc2hib - ok
08:25:03.0953 0x11d0  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay        C:\WINDOWS\system32\services.exe
08:25:03.0984 0x11d0  PlugPlay - ok
08:25:04.0015 0x11d0  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent     C:\WINDOWS\System32\lsass.exe
08:25:04.0031 0x11d0  PolicyAgent - ok
08:25:04.0078 0x11d0  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
08:25:04.0109 0x11d0  PptpMiniport - ok
08:25:04.0140 0x11d0  [ A32BEBAF723557681BFC6BD93E98BD26, 35039BA72A29F87B2CA37DCDE4EFDAABBDEAD8CE3EB8652ACC665994118145A6 ] Processor       C:\WINDOWS\system32\DRIVERS\processr.sys
08:25:04.0156 0x11d0  Processor - ok
08:25:04.0171 0x11d0  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
08:25:04.0203 0x11d0  ProtectedStorage - ok
08:25:04.0218 0x11d0  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
08:25:04.0250 0x11d0  PSched - ok
08:25:04.0296 0x11d0  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
08:25:04.0312 0x11d0  Ptilink - ok
08:25:04.0343 0x11d0  [ 40FEDD328F98245AD201CF5F9F311724, CE1582652B6A7CACE46D8B492CAA8E51EA46C3890EF640E8C5E1E053731A4D74 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
08:25:04.0375 0x11d0  PxHelp20 - ok
08:25:04.0375 0x11d0  ql1080 - ok
08:25:04.0406 0x11d0  Ql10wnt - ok
08:25:04.0421 0x11d0  ql12160 - ok
08:25:04.0437 0x11d0  ql1240 - ok
08:25:04.0453 0x11d0  ql1280 - ok
08:25:04.0484 0x11d0  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
08:25:04.0484 0x11d0  RasAcd - ok
08:25:04.0546 0x11d0  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         C:\WINDOWS\System32\rasauto.dll
08:25:04.0578 0x11d0  RasAuto - ok
08:25:04.0609 0x11d0  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
08:25:04.0625 0x11d0  Rasl2tp - ok
08:25:04.0703 0x11d0  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          C:\WINDOWS\System32\rasmans.dll
08:25:04.0734 0x11d0  RasMan - ok
08:25:04.0765 0x11d0  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
08:25:04.0765 0x11d0  RasPppoe - ok
08:25:04.0781 0x11d0  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
08:25:04.0796 0x11d0  Raspti - ok
08:25:04.0843 0x11d0  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
08:25:04.0859 0x11d0  Rdbss - ok
08:25:04.0890 0x11d0  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
08:25:04.0890 0x11d0  RDPCDD - ok
08:25:04.0937 0x11d0  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
08:25:04.0953 0x11d0  rdpdr - ok
08:25:05.0031 0x11d0  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
08:25:05.0046 0x11d0  RDPWD - ok
08:25:05.0125 0x11d0  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
08:25:05.0171 0x11d0  RDSessMgr - ok
08:25:05.0234 0x11d0  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
08:25:05.0250 0x11d0  redbook - ok
08:25:05.0312 0x11d0  [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
08:25:05.0343 0x11d0  RemoteAccess - ok
08:25:05.0406 0x11d0  [ 5B19B557B0C188210A56A6B699D90B8F, 0FA880B81AE615206FD1738B83428AAA491D54B24168339DE6E87FDE8C6C14B0 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
08:25:05.0437 0x11d0  RemoteRegistry - ok
08:25:05.0484 0x11d0  [ 8B5B8A11306190C6963D3473F052D3C8, BEBCCA8109C742447C862907B7A3924548303AC720E3FB16563F24DF3238F82B ] Revoflt         C:\WINDOWS\system32\DRIVERS\revoflt.sys
08:25:05.0531 0x11d0  Revoflt - ok
08:25:05.0562 0x11d0  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      C:\WINDOWS\System32\locator.exe
08:25:05.0593 0x11d0  RpcLocator - ok
08:25:05.0734 0x11d0  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs           C:\WINDOWS\system32\rpcss.dll
08:25:05.0750 0x11d0  RpcSs - ok
08:25:05.0828 0x11d0  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\System32\rsvp.exe
08:25:05.0859 0x11d0  RSVP - ok
08:25:05.0890 0x11d0  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           C:\WINDOWS\system32\lsass.exe
08:25:05.0906 0x11d0  SamSs - ok
08:25:05.0968 0x11d0  SASENUM - ok
08:25:05.0984 0x11d0  SBRE - ok
08:25:06.0015 0x11d0  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
08:25:06.0062 0x11d0  SCardSvr - ok
08:25:06.0093 0x11d0  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
08:25:06.0156 0x11d0  Schedule - ok
08:25:06.0218 0x11d0  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
08:25:06.0234 0x11d0  Secdrv - ok
08:25:06.0265 0x11d0  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        C:\WINDOWS\System32\seclogon.dll
08:25:06.0296 0x11d0  seclogon - ok
08:25:06.0312 0x11d0  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            C:\WINDOWS\system32\sens.dll
08:25:06.0343 0x11d0  SENS - ok
08:25:06.0375 0x11d0  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
08:25:06.0390 0x11d0  serenum - ok
08:25:06.0421 0x11d0  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
08:25:06.0437 0x11d0  Serial - ok
08:25:06.0515 0x11d0  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
08:25:06.0531 0x11d0  Sfloppy - ok
08:25:06.0687 0x11d0  [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
08:25:06.0734 0x11d0  SharedAccess - ok
08:25:06.0765 0x11d0  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
08:25:06.0812 0x11d0  ShellHWDetection - ok
08:25:06.0843 0x11d0  Simbad - ok
08:25:06.0890 0x11d0  [ 3FBB6EF8B5A71A2FA11F5F461BB73219, E71F7BB8F690351ACB0C02B2BC01F8837F55645B9BF7682C0F9329BA00637F0A ] SISNIC          C:\WINDOWS\system32\DRIVERS\sisnic.sys
08:25:06.0890 0x11d0  SISNIC - ok
08:25:06.0953 0x11d0  [ A1348A901A44760CCD76043525E851D0, 170ECAD37A62CF102FBA14B12FF96D0045B9B2D247E881C41FC29141224E8F4F ] SISNICXP        C:\WINDOWS\system32\DRIVERS\sisnicxp.sys
08:25:06.0968 0x11d0  SISNICXP - ok
08:25:07.0015 0x11d0  [ 3A4DB551BCBFB9779B67E1982A1A8400, F51E5B34CAC2594631FC94D0B56C4534C77BC3E282C8BA46F892708BADDF4297 ] SiSV            C:\WINDOWS\system32\DRIVERS\SiSV.sys
08:25:07.0031 0x11d0  SiSV - ok
08:25:07.0359 0x11d0  [ 9F712B26EE3B0242DE997A42FD302E2C, 12663EB108F158282A965EE70980627C2F2332BA7944D7DE03B78E18BEB87D26 ] Skype C2C Service C:\Documents and Settings\All Users.WINDOWS\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
08:25:07.0578 0x11d0  Skype C2C Service - ok
08:25:07.0687 0x11d0  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
08:25:07.0750 0x11d0  SkypeUpdate - ok
08:25:07.0812 0x11d0  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
08:25:07.0828 0x11d0  SLIP - ok
08:25:07.0890 0x11d0  [ 853DADF45A76CB18EBC415EEBFFE0065, 854C36D254439E8DB01E14A4C6944637DBF2FE0485B4AE0C6585DBA5110835BB ] SmartDefragDriver C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
08:25:07.0906 0x11d0  SmartDefragDriver - ok
08:25:08.0015 0x11d0  [ C6DAFC9AF23D54CA0E222B215D5E8378, 13269951F2A41D032C5EBA1BD0ED59B2E3053A4C2EB2F438B4BB404F5B807E9A ] snapman         C:\WINDOWS\system32\DRIVERS\snapman.sys
08:25:08.0031 0x11d0  snapman - ok
08:25:08.0109 0x11d0  [ A1ECEEAA5C5E74B2499EB51D38185B84, BB866DDA4D1F85A68A652204DAC7378456793E096A15F88B9C153BECD3D18C27 ] SONYPVU1        C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
08:25:08.0125 0x11d0  SONYPVU1 - ok
08:25:08.0140 0x11d0  Sparrow - ok
08:25:08.0218 0x11d0  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
08:25:08.0218 0x11d0  splitter - ok
08:25:08.0296 0x11d0  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
08:25:08.0328 0x11d0  Spooler - ok
08:25:08.0359 0x11d0  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
08:25:08.0359 0x11d0  sr - ok
08:25:08.0468 0x11d0  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       C:\WINDOWS\System32\srsvc.dll
08:25:08.0515 0x11d0  srservice - ok
08:25:08.0593 0x11d0  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
08:25:08.0640 0x11d0  Srv - ok
08:25:08.0687 0x11d0  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
08:25:08.0718 0x11d0  SSDPSRV - ok
08:25:08.0781 0x11d0  [ A9573045BAA16EAB9B1085205B82F1ED, 6A4D68BCD4968C17451EB1C4AB420FFA844D089845520D222BC4A2BD14583C56 ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
08:25:08.0796 0x11d0  StillCam - ok
08:25:08.0859 0x11d0  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
08:25:08.0937 0x11d0  stisvc - ok
08:25:08.0984 0x11d0  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
08:25:09.0000 0x11d0  streamip - ok
08:25:09.0078 0x11d0  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
08:25:09.0093 0x11d0  swenum - ok
08:25:09.0125 0x11d0  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
08:25:09.0140 0x11d0  swmidi - ok
08:25:09.0156 0x11d0  SwPrv - ok
08:25:09.0187 0x11d0  symc810 - ok
08:25:09.0203 0x11d0  symc8xx - ok
08:25:09.0218 0x11d0  sym_hi - ok
08:25:09.0234 0x11d0  sym_u3 - ok
08:25:09.0312 0x11d0  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
08:25:09.0343 0x11d0  sysaudio - ok
08:25:09.0406 0x11d0  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
08:25:09.0453 0x11d0  SysmonLog - ok
08:25:09.0578 0x11d0  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
08:25:09.0656 0x11d0  TapiSrv - ok
08:25:09.0750 0x11d0  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
08:25:09.0812 0x11d0  Tcpip - ok
08:25:09.0875 0x11d0  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
08:25:09.0890 0x11d0  TDPIPE - ok
08:25:09.0921 0x11d0  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
08:25:09.0937 0x11d0  TDTCP - ok
08:25:09.0984 0x11d0  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
08:25:10.0000 0x11d0  TermDD - ok
08:25:10.0078 0x11d0  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     C:\WINDOWS\System32\termsrv.dll
08:25:10.0140 0x11d0  TermService - ok
08:25:10.0171 0x11d0  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes          C:\WINDOWS\System32\shsvcs.dll
08:25:10.0203 0x11d0  Themes - ok
08:25:10.0265 0x11d0  [ DB7205804759FF62C34E3EFD8A4CC76A, 13A4248F528CE98ACA66898E56822E4FC49B11F491FF1F61A687BA601BF0A802 ] TlntSvr         C:\WINDOWS\System32\tlntsvr.exe
08:25:10.0296 0x11d0  TlntSvr - ok
08:25:10.0312 0x11d0  TosIde - ok
08:25:10.0343 0x11d0  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
08:25:10.0406 0x11d0  TrkWks - ok
08:25:10.0421 0x11d0  TSP - ok
08:25:10.0859 0x11d0  [ F88A177FA51674CE8EAF43DA56DF5D36, D565C86BAAE8431D139C7FF79F9F365FE2361FCA302B9AB7E33169D08483F28B ] TuneUp.UtilitiesSvc C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
08:25:11.0109 0x11d0  TuneUp.UtilitiesSvc - ok
08:25:11.0171 0x11d0  [ E5049C43601473B5A909058596111229, 96CFE481F767C66FA2877594384086C1BE8B2BADBF12DBF4CB72CF73898D0876 ] TuneUpUtilitiesDrv C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys
08:25:11.0171 0x11d0  TuneUpUtilitiesDrv - ok
08:25:11.0218 0x11d0  [ D85938F272D1BCF3DB3A31FC0A048928, 798328C8C06EEE7B0852E6D2B16C3AF24D529737ECA2E9725415261A5736D051 ] uagp35          C:\WINDOWS\system32\DRIVERS\uagp35.sys
08:25:11.0218 0x11d0  uagp35 - ok
08:25:11.0265 0x11d0  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
08:25:11.0281 0x11d0  Udfs - ok
08:25:11.0281 0x11d0  ultra - ok
08:25:11.0406 0x11d0  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
08:25:11.0484 0x11d0  Update - ok
08:25:11.0562 0x11d0  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        C:\WINDOWS\System32\upnphost.dll
08:25:11.0609 0x11d0  upnphost - ok
08:25:11.0640 0x11d0  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             C:\WINDOWS\System32\ups.exe
08:25:11.0671 0x11d0  UPS - ok
08:25:11.0781 0x11d0  [ 8BF5D980CDCE35FB26F05047144BB57E, 8A770DD649FA0D6F574651E5525B983261B823C5778764598D89C453E68ED3F1 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
08:25:11.0796 0x11d0  USBAAPL - ok
08:25:11.0828 0x11d0  [ 65898A183FBF1D1F7759D5CCB364DCD4, 85E823123FDB4CA5F8255064E22A444627999055EC3419DFD001371893F36AB9 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
08:25:11.0843 0x11d0  usbaudio - ok
08:25:11.0890 0x11d0  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
08:25:11.0906 0x11d0  usbccgp - ok
08:25:11.0968 0x11d0  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
08:25:11.0984 0x11d0  usbehci - ok
08:25:12.0015 0x11d0  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
08:25:12.0031 0x11d0  usbhub - ok
08:25:12.0093 0x11d0  [ 0DAECCE65366EA32B162F85F07C6753B, 3C33AC2FC95E876933F2016CF0CDA2745491679728684DA8DF95A515CE4804BD ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys
08:25:12.0109 0x11d0  usbohci - ok
08:25:12.0140 0x11d0  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
08:25:12.0140 0x11d0  usbprint - ok
08:25:12.0187 0x11d0  [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
08:25:12.0203 0x11d0  usbscan - ok
08:25:12.0250 0x11d0  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
08:25:12.0281 0x11d0  USBSTOR - ok
08:25:12.0328 0x11d0  [ 813236B1183CFCF289E367BD5DE6E29E, 167FE18A96F330AEEC1A4C419770C15EFEB536D43838285E51E7A62E95DF4674 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys
08:25:12.0343 0x11d0  usbvideo - ok
08:25:12.0406 0x11d0  [ 977F4871F0C9326D561BD9E842A34CC4, DB0DC1E79503582682122C29FC42BC3821734B4AAC3A4B83D229607E6695F31B ] UxTuneUp        C:\WINDOWS\System32\uxtuneup.dll
08:25:12.0468 0x11d0  UxTuneUp - ok
08:25:12.0515 0x11d0  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
08:25:12.0531 0x11d0  VgaSave - ok
08:25:12.0546 0x11d0  ViaIde - ok
08:25:12.0609 0x11d0  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
08:25:12.0625 0x11d0  VolSnap - ok
08:25:12.0765 0x11d0  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             C:\WINDOWS\System32\vssvc.exe
08:25:12.0812 0x11d0  VSS - ok
08:25:12.0890 0x11d0  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time         C:\WINDOWS\System32\w32time.dll
08:25:12.0937 0x11d0  W32Time - ok
08:25:12.0984 0x11d0  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
08:25:13.0015 0x11d0  Wanarp - ok
08:25:13.0187 0x11d0  [ FD47474BD21794508AF449D9D91AF6E6, 2AD586390824F673B5DC5D86FC2423ED9252413D221E1C7EC3A760782DB6436A ] Wdf01000        C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
08:25:13.0296 0x11d0  Wdf01000 - ok
08:25:13.0328 0x11d0  WDICA - ok
08:25:13.0359 0x11d0  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
08:25:13.0390 0x11d0  wdmaud - ok
08:25:13.0453 0x11d0  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       C:\WINDOWS\System32\webclnt.dll
08:25:13.0515 0x11d0  WebClient - ok
08:25:13.0562 0x11d0  [ 05FB36A51E04A6C6B3A5F125FA692E6B, 2EC85CEA38C19CB8FF369565074A6A261804AAE016337AB193943162AE270D2D ] wimmount        C:\WINDOWS\system32\DRIVERS\wimmount.sys
08:25:13.0578 0x11d0  wimmount - ok
08:25:13.0718 0x11d0  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
08:25:13.0750 0x11d0  winmgmt - ok
08:25:13.0875 0x11d0  [ 18F347402DA544A780949B8FDF83351B, D1AD972D438A51A4998FEF68670395DAE3353240AD2A17F35794287AF0826FFB ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
08:25:14.0406 0x11d0  WinRM - ok
08:25:14.0484 0x11d0  [ 0232776C73CD31C47E5139B52C6000B9, 98CBECB250032A2589AE50427A9B3C95D6EF58694786F253C4F27822075786E9 ] WISTechVIDCAP   C:\WINDOWS\system32\drivers\Xstream.sys
08:25:14.0500 0x11d0  WISTechVIDCAP - ok
08:25:14.0656 0x11d0  [ 94A85E956A065E23E0010A6A7826243B, F70A8301D071667718F04A9F261946ED8D64EE1B08055C518186252198F8F3F1 ] WLSetupSvc      C:\Program Files\Windows Live\installer\WLSetupSvc.exe
08:25:14.0718 0x11d0  WLSetupSvc - ok
08:25:14.0781 0x11d0  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
08:25:14.0796 0x11d0  WmdmPmSN - ok
08:25:14.0984 0x11d0  [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] Wmi             C:\WINDOWS\System32\advapi32.dll
08:25:15.0046 0x11d0  Wmi - ok
08:25:15.0125 0x11d0  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        C:\WINDOWS\System32\wbem\wmiapsrv.exe
08:25:15.0140 0x11d0  WmiApSrv - ok
08:25:15.0421 0x11d0  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B, C71FAAC752F6D58BF8556661252DBF8C5DDD090CAE002A2C7E09C9A014526066 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
08:25:15.0546 0x11d0  WMPNetworkSvc - ok
08:25:15.0609 0x11d0  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
08:25:15.0625 0x11d0  WpdUsb - ok
08:25:15.0875 0x11d0  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
08:25:16.0046 0x11d0  WPFFontCache_v0400 - ok
08:25:16.0125 0x11d0  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
08:25:16.0140 0x11d0  WS2IFSL - ok
08:25:16.0203 0x11d0  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
08:25:16.0250 0x11d0  wscsvc - ok
08:25:16.0265 0x11d0  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
08:25:16.0281 0x11d0  WSTCODEC - ok
08:25:16.0296 0x11d0  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
08:25:16.0328 0x11d0  wuauserv - ok
08:25:16.0390 0x11d0  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
08:25:16.0406 0x11d0  WudfPf - ok
08:25:16.0453 0x11d0  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
08:25:16.0500 0x11d0  WudfRd - ok
08:25:16.0562 0x11d0  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
08:25:16.0593 0x11d0  WudfSvc - ok
08:25:16.0734 0x11d0  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
08:25:16.0843 0x11d0  WZCSVC - ok
08:25:16.0890 0x11d0  [ 8A73CC9A6292CF4B7B54B622ED9BD437, 4DCCF1B61CBD37FBACF805205774EAF867E2AD7F88204BA0BA8FD4E0A45D0D09 ] XLoader         C:\WINDOWS\system32\Drivers\XLoader.sys
08:25:16.0906 0x11d0  XLoader - ok
08:25:16.0984 0x11d0  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
08:25:17.0015 0x11d0  xmlprov - ok
08:25:17.0046 0x11d0  ================ Scan global ===============================
08:25:17.0078 0x11d0  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
08:25:17.0281 0x11d0  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
08:25:17.0515 0x11d0  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
08:25:17.0593 0x11d0  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
08:25:17.0625 0x11d0  [ Global ] - ok
08:25:17.0625 0x11d0  ================ Scan MBR ==================================
08:25:17.0718 0x11d0  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
08:25:19.0906 0x11d0  \Device\Harddisk0\DR0 - ok
08:25:19.0906 0x11d0  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR2
08:25:20.0656 0x11d0  \Device\Harddisk1\DR2 - ok
08:25:20.0671 0x11d0  ================ Scan VBR ==================================
08:25:20.0890 0x11d0  [ 168DF6BCAFDD907BD8357D410257CC85 ] \Device\Harddisk0\DR0\Partition1
08:25:20.0984 0x11d0  \Device\Harddisk0\DR0\Partition1 - ok
08:25:20.0984 0x11d0  [ AB53A24164D9FCD8CAAFF6F87EF0054B ] \Device\Harddisk1\DR2\Partition1
08:25:21.0031 0x11d0  \Device\Harddisk1\DR2\Partition1 - ok
08:25:21.0031 0x11d0  ================ Scan generic autorun ======================
08:25:21.0328 0x11d0  [ D2B7C4F3A41B22D6BA033F06CC19D194, 7389784F59ABDA14C2DE4EE74A06B77D42C75D54B9AB2AA337E49F3BFF2DCA78 ] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
08:25:21.0531 0x11d0  COMODO Internet Security - ok
08:25:23.0421 0x11d0  [ 312C7978F0A42DB0475CE31D884DCE88, 53DBEF2473F39754BB1BC352DB9A32607FD3A2E2DC5E7AA6AE821CABEC00CCD1 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
08:25:25.0109 0x11d0  AvastUI.exe - ok
08:25:25.0484 0x11d0  [ F497791A298F2FF3D447D7AD209BBB2C, FD14E1014490654265A71815D8C3053CA14F3CB2FA790E915B73B7A426B00928 ] C:\Documents and Settings\Gil\Application Data\Dashlane\Dashlane.exe
08:25:25.0500 0x11d0  Dashlane - ok
08:25:25.0546 0x11d0  [ 5F1D5F88303D4A4DBC8E5F97BA967CC3, 5FB24FC7916A6E6B3BE7D84CB1684215B266CD1495575C2E5672B8447932E5B1 ] C:\WINDOWS\system32\ctfmon.exe
08:25:25.0578 0x11d0  ctfmon.exe - ok
08:25:27.0015 0x11d0  [ F308D7378BF60B91DA495FCAA1C216E7, 7D67B6D1CE11685F87B3CF9689AF0B089D3340A72C7A0B9633C826AEE49B405E ] C:\Program Files\CCleaner\CCleaner.exe
08:25:30.0156 0x11d0  CCleaner Monitoring - ok
08:25:32.0968 0x11d0  [ 41431CC1C6817FFBD352BF762EE09BC5, D65FD0B73F432704DF9499EC1297506AE3B0538C4616EBCD447F38A671FD41EB ] C:\Documents and Settings\Gil\Application Data\BitTorrent\BitTorrent.exe
08:25:33.0718 0x11d0  BitTorrent - ok
08:25:33.0750 0x11d0  [ 5F1D5F88303D4A4DBC8E5F97BA967CC3, 5FB24FC7916A6E6B3BE7D84CB1684215B266CD1495575C2E5672B8447932E5B1 ] C:\WINDOWS\system32\ctfmon.exe
08:25:33.0765 0x11d0  ctfmon.exe - ok
08:25:33.0765 0x11d0  Waiting for KSN requests completion. In queue: 2
08:25:34.0765 0x11d0  Waiting for KSN requests completion. In queue: 2
08:25:35.0765 0x11d0  Waiting for KSN requests completion. In queue: 1
08:25:46.0187 0x11d0  AV detected via SS1: avast! Antivirus, 5.0.167774368, enabled, updated
08:25:46.0187 0x11d0  AV detected via SS1: Lavasoft Ad-Aware, 5.0.5116, disabled, updated
08:25:46.0218 0x11d0  FW detected via SS1: Lavasoft Ad-Aware, 5.0.5116, disabled
08:25:46.0218 0x11d0  FW detected via SS1: COMODO Firewall, 6.0, enabled
08:25:48.0687 0x11d0  ============================================================
08:25:48.0687 0x11d0  Scan finished
08:25:48.0687 0x11d0  ============================================================
08:25:48.0703 0x1538  Detected object count: 0
08:25:48.0703 0x1538  Actual detected object count: 0

 

ADW:

# AdwCleaner v4.107 - Report created 13/01/2015 at 08:51:37
# Updated 07/01/2015 by Xplode
# Database : 2015-01-13.2 [Live]
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Gil - GIL-PC
# Running from : C:\Documents and Settings\Gil\desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : Skype C2C Service

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users.WINDOWS\Application Data\driver whiz
Folder Deleted : C:\Documents and Settings\Gil\My Documents\drivergenius
Folder Deleted : C:\Documents and Settings\Gil\Application Data\Mozilla\Firefox\Profiles\k025ym1u.default-1398818514703\Extensions\ascsurfingprotection@iobit.com
[!] Folder Deleted : C:\Documents and Settings\Gil\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bbmegnmpleoagolcnjnejdacakedpcgd

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Value Deleted : HKCU\Software\Mozilla\Firefox\Extensions [{442718d9-475e-452a-b3e1-fb1ee16b8e9f}]
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0055C089-8582-441B-A0BF-17B458C2A3A8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8DCB7100-DF86-4384-8842-8FA844297B3F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D2CE3E00-F94A-4740-988E-03DC2F38C34F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8DCB7100-DF86-4384-8842-8FA844297B3F}

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


-\\ Mozilla Firefox v34.0.5 (x86 en-US)

[rk89njc1.default-1417834292328\prefs.js] - Line Deleted : user_pref("extensions.dashlane.safesearchcapable", false);

-\\ Google Chrome v


-\\ Comodo Dragon v


*************************

AdwCleaner[R0].txt - [29462 octets] - [18/12/2013 13:58:11]
AdwCleaner[R10].txt - [3534 octets] - [17/11/2014 16:12:23]
AdwCleaner[R11].txt - [2171 octets] - [18/12/2014 18:01:23]
AdwCleaner[R12].txt - [3686 octets] - [13/01/2015 08:40:45]
AdwCleaner[R1].txt - [1807 octets] - [18/12/2013 16:04:16]
AdwCleaner[R2].txt - [1867 octets] - [18/12/2013 20:07:43]
AdwCleaner[R3].txt - [2812 octets] - [21/06/2014 13:32:40]
AdwCleaner[R4].txt - [1621 octets] - [04/07/2014 20:33:30]
AdwCleaner[R5].txt - [2054 octets] - [13/07/2014 18:56:07]
AdwCleaner[R6].txt - [2403 octets] - [20/07/2014 14:07:57]
AdwCleaner[R7].txt - [3878 octets] - [06/09/2014 20:14:33]
AdwCleaner[R8].txt - [3938 octets] - [07/09/2014 19:27:56]
AdwCleaner[R9].txt - [2124 octets] - [18/10/2014 20:34:23]
AdwCleaner[S0].txt - [30190 octets] - [18/12/2013 15:44:59]
AdwCleaner[S10].txt - [3022 octets] - [13/01/2015 08:51:37]
AdwCleaner[S1].txt - [1903 octets] - [18/12/2013 20:17:52]
AdwCleaner[S2].txt - [2901 octets] - [21/06/2014 13:42:50]
AdwCleaner[S3].txt - [1684 octets] - [05/07/2014 08:42:34]
AdwCleaner[S4].txt - [2123 octets] - [13/07/2014 19:00:24]
AdwCleaner[S5].txt - [2482 octets] - [20/07/2014 14:18:25]
AdwCleaner[S6].txt - [4051 octets] - [07/09/2014 19:43:56]
AdwCleaner[S7].txt - [2120 octets] - [18/10/2014 20:58:57]
AdwCleaner[S8].txt - [3982 octets] - [17/11/2014 16:19:44]
AdwCleaner[S9].txt - [2236 octets] - [18/12/2014 18:35:28]

########## EOF - C:\AdwCleaner\AdwCleaner[S10].txt - [3623 octets] ##########
 

JunkwareRemoval:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.1 (12.28.2014:1)
OS: Microsoft Windows XP x86
Ran by Gil on Tue 01/13/2015 at  9:10:04.39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files

Successfully deleted: [File] "C:\WINDOWS\wininit.ini"



~~~ Folders

Successfully deleted: [Folder] "C:\WINDOWS\system32\ai_recyclebin"





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 01/13/2015 at  9:40:42.50
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,421 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:56 AM

Posted 13 January 2015 - 08:01 PM

Ok lets see if it can finish.
You may want to try Safe Mode with Networking.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 wishmd

wishmd
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:06:56 AM

Posted 14 January 2015 - 10:49 AM

Well, I tried ESET 5 times. Twice it just restarted the computer after about 40%. Then I tried using Safe Mode with Networking and it froze the computer after about 10%. I am no longer using Internet Explorer, so I had to download the app.

 

It registered 29 possible issues before crashing, so I can stop it at that point and send you what's there, if that will be helpful. Or perhaps there is another app I can use?

 

Thanks!



#8 wishmd

wishmd
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:06:56 AM

Posted 14 January 2015 - 02:10 PM

OK, I ran ESET up to 10% (to avoid freezing again), and here are the results:

C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.10.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.11.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.12.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.13.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.14.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.15.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.16.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.17.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.18.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.19.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.20.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.21.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.22.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.5.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.6.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.7.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.8.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\IObit Apps Toolbar\FF\components\iobitappsFF.dll.9.vir    a variant of Win32/Toolbar.Widgi potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\NCH Software\Disketch\disketch.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\NCH Software\Disketch\disketchsetup_v3.32.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\NCH Software\ExpressBurn\expressburn.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\NCH Software\ExpressBurn\expressburnsetup_v4.72.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\NCH Software\PhotoPad\photopad.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\NCH Software\PhotoPad\photopadsetup_v2.59.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\NCH Software\PhotoStage\photostage.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\NCH Software\PhotoStage\photostagesetup_v3.00.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\NCH Software\Pixillion\pixillion.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\NCH Software\Pixillion\pixillionsetup_v2.75.exe.vir    a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application
C:\AdwCleaner\Quarantine\C\Program Files\Search Toolbar\SearchToolbarUpdater.exe.vir    Win32/Toolbar.Zugo potentially unwanted application
C:\Documents and Settings\All Users.WINDOWS\Application Data\IObit\ASCDownloader\ASCSetup.exe    a variant of Win32/Toolbar.Widgi.B potentially unwanted application
 

 

Hope this helps.

Thanks.



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,421 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:56 AM

Posted 14 January 2015 - 02:46 PM

Ok those will need to go. If you cannot complete the ESET we will need to move you and use stronger tools
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 wishmd

wishmd
  • Topic Starter

  • Members
  • 74 posts
  • OFFLINE
  •  
  • Local time:06:56 AM

Posted 05 February 2015 - 10:11 PM

Sorry for the delay as I have been away from the computer. OK... since I was unable to complete the ESET run, you indicated moving me elsewhere and using more powerful tools. So where do we go from here? Still having the same problems.

 

Thanks much.



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,421 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:56 AM

Posted 06 February 2015 - 03:45 PM

Please follow this Preparation Guide and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users