Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Proxy settings that can't be removed


  • This topic is locked This topic is locked
35 replies to this topic

#1 greenarcher02

greenarcher02

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:02:26 PM

Posted 16 January 2015 - 09:22 AM

Hi, I'm on Windows 8.1 64-bit. There's proxy settings in PC Settings that I can't remove. It has this in the address: http=127.0.0.1:8080;https=127.0.0.1:8080

 

It appears in PC settings>Network, but not in Internet Options>Connections>LAN Settings. But I can't edit in Internet Options either. I tried the supposed fixes (for Windows 7) that I found here but none of them work.

 

I ran a scan in FRST64 and this is what came up:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-01-2015 01
Ran by Winfred Arman Lati (administrator) on WIN on 16-01-2015 22:19:20
Running from C:\Users\Winfred Arman Lati\Downloads
Loaded Profiles: Winfred Arman Lati (Available profiles: Winfred Arman Lati)
Platform: Windows 8.1 Single Language (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
() C:\Program Files (x86)\Common Files\Microsoft\Care Suite\ADUService\ADUService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(InstallShield) C:\Program Files (x86)\Connectify Updater\Updater.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyService.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\Active Clip\Active Clip.exe
() C:\Program Files (x86)\Garena Plus\ggdllhost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Realtek Semiconductor Crop.) C:\Program Files\Realtek\Audio\HDA\vncutil64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectify.exe
(Connectify) C:\Program Files (x86)\Connectify\DispatchUI.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
() C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe
(Spotify Ltd) C:\Users\Winfred Arman Lati\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Program Files (x86)\Optical TrackPad\OTPCmd.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Autodesk Inc.) C:\Users\Winfred Arman Lati\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16.0.3327.1030_x64__8wekyb3d8bbwe\onenoteim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17477_none_fa2b7d3b9b36c7b4\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\prevhost.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [vncutil] => C:\Program Files\Realtek\Audio\HDA\vncutil64.exe [562792 2012-08-07] (Realtek Semiconductor Crop.)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [Connectify Hotspot] => C:\Program Files (x86)\Connectify\Connectify.exe [3761952 2014-03-05] (Connectify)
HKLM\...\Run: [Connectify Dispatch] => C:\Program Files (x86)\Connectify\DispatchUI.exe [1672992 2014-03-05] (Connectify)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [OTPCmd] => C:\Program Files (x86)\Optical TrackPad\OTPCmd.exe [6597184 2012-09-04] ()
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [493960 2014-12-05] (Autodesk Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [GarenaPlus] => C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe [9974576 2014-10-27] ()
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [Spotify Web Helper] => C:\Users\Winfred Arman Lati\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-13] (Spotify Ltd)
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-13] (Piriform Ltd)
Startup: C:\Users\Winfred Arman Lati\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [HKLM] => ProxyEnable is set.
ProxyEnable: [HKLM-x32] => ProxyEnable is set.
ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
HKU\S-1-5-21-3450639996-933504725-588580379-1005\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-3450639996-933504725-588580379-1005\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://sony13.msn.com
HKU\S-1-5-21-3450639996-933504725-588580379-1005\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://vaio-online.sony.com/
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Hosts: 127.0.0.1 updates.conectify.me
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_257.dll ()
FF Plugin: @java.com/DTPlugin,version=10.5.0 -> C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.5.0 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll ( Garena)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Extension: FlashGot - C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2014-11-09]
FF Extension: QR  Code  - C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default\Extensions\{6a910736-6fab-4480-841a-36325cce134f}.xpi [2014-11-09]

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-12-05] (Autodesk Inc.)
R2 ADUServiceNSRT; C:\Program Files (x86)\Common Files\Microsoft\Care Suite\ADUService\ADUService.exe [82568 2014-11-06] () [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [487936 2014-03-05] (Connectify) [File not signed]
R2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-23] (Intel Corporation)
R2 Intel® Wireless Bluetooth® 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-24] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165760 2012-07-23] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-10-11] ()
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation)
R2 NFCProxyService; C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe [470528 2011-11-16] (Sony Corporation) [File not signed]
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [3563344 2014-11-19] (INCA Internet Co., Ltd.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [200808 2012-08-07] (Realtek Semiconductor)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [266168 2013-11-19] (Intel Corporation)
R2 Updater.exe; C:\Program Files (x86)\Connectify Updater\Updater.exe [39936 2014-11-27] (InstallShield) [File not signed]
S3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2012-11-07] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1642544 2014-02-28] (Sony Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3671792 2013-10-11] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-09-24] (Microsoft Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [132920 2013-04-23] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1385784 2013-06-27] (Motorola Solutions, Inc.)
R1 cnnctfy3; C:\Windows\system32\DRIVERS\cnnctfy3.sys [35352 2015-01-01] (Connectify)
R3 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-11-08] (Disc Soft Ltd)
S3 ggsomc; C:\Windows\System32\drivers\ggsomc.sys [30424 2014-11-30] (Sony Mobile Communications)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344864 2013-09-23] (Intel Corporation)
S3 npkcrypt; C:\Program Files (x86)\Level Up Games\Ragnarok Online\npkcrypt.sys [21442 2012-03-09] (INCA Internet Co., Ltd.) [File not signed]
R3 OTGMouUSB; C:\Windows\system32\DRIVERS\OTGMouUSB.sys [22592 2012-08-23] (CRUCIALTEC Co.,Ltd.)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 qcusbser; C:\Windows\system32\DRIVERS\qcusbser.sys [242688 2013-04-24] (QUALCOMM Incorporated)
R3 semav6thermal64ro; C:\WINDOWS\system32\drivers\semav6thermal64ro.sys [13792 2014-11-09] ()
R3 SensorsAlsDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 SensorsHIDClassDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 SensorsServiceDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 sonyfelicaportm; C:\Windows\System32\Drivers\sonyfelicaportm.sys [45160 2012-07-27] (Sony Corporation)
R3 sonynfcport100c; C:\Windows\System32\Drivers\sonynfcport100c.sys [62056 2012-06-30] (Sony Corporation)
R3 sonynfcport100f; C:\Windows\System32\Drivers\sonynfcport100f.sys [647784 2012-08-30] (Sony Corporation)
R3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 npkycryp; \??\C:\Program Files (x86)\Level Up Games\Ragnarok Online\npkycryp.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-16 22:17 - 2015-01-16 22:17 - 00031293 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-16 21:58 - 2015-01-16 21:58 - 00002798 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-01-16 21:58 - 2015-01-16 21:58 - 00000834 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-01-16 21:58 - 2015-01-16 21:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-01-16 21:58 - 2015-01-16 21:58 - 00000000 ____D () C:\Program Files\CCleaner
2015-01-16 21:20 - 2015-01-16 21:20 - 00044226 _____ () C:\Users\Winfred Arman Lati\Downloads\Addition.txt
2015-01-16 21:19 - 2015-01-16 22:19 - 00019858 _____ () C:\Users\Winfred Arman Lati\Downloads\FRST.txt
2015-01-16 21:07 - 2015-01-16 22:19 - 00000000 ____D () C:\FRST
2015-01-16 21:06 - 2015-01-16 21:06 - 02125312 _____ (Farbar) C:\Users\Winfred Arman Lati\Downloads\FRST64.exe
2015-01-15 23:19 - 2014-12-19 14:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-01-15 23:19 - 2014-12-12 10:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-01-15 23:19 - 2014-12-12 08:51 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-01-15 23:19 - 2014-12-09 09:50 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-01-15 23:19 - 2014-12-09 03:42 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-01-15 23:19 - 2014-12-06 11:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-01-15 23:19 - 2014-12-06 09:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-01-15 23:19 - 2014-12-06 09:35 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-01-01 14:28 - 2015-01-01 14:28 - 00000497 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.ics
2015-01-01 14:10 - 2015-01-01 14:10 - 00000380 _____ () C:\Users\Public\Desktop\Connectify Dispatch.lnk
2015-01-01 14:10 - 2015-01-01 14:10 - 00000364 _____ () C:\Users\Public\Desktop\Connectify Hotspot.lnk
2015-01-01 14:10 - 2015-01-01 14:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Connectify
2015-01-01 14:09 - 2015-01-01 14:09 - 00035352 _____ (Connectify) C:\WINDOWS\system32\Drivers\cnnctfy3.sys
2015-01-01 14:06 - 2015-01-01 14:13 - 00000472 _____ () C:\WINDOWS\Tasks\Connectify Updater.job
2015-01-01 14:06 - 2015-01-01 14:13 - 00000000 ____D () C:\ProgramData\Connectify
2015-01-01 14:06 - 2015-01-01 14:09 - 00000000 ____D () C:\Program Files (x86)\Connectify Updater
2015-01-01 14:06 - 2015-01-01 14:06 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Connectify Updater
2015-01-01 14:01 - 2015-01-01 14:01 - 00000000 ____D () C:\Users\Winfred Arman Lati\Downloads\Connectify Hotspot & Dispatch Pro 7.3.3.30440 + Crack (Working Nov14)
2015-01-01 00:50 - 2015-01-01 00:50 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\LooksBuilder
2014-12-29 13:17 - 2014-12-29 13:17 - 00003886 _____ () C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2014-12-29 02:28 - 2014-12-29 02:28 - 00000998 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2014-12-23 19:26 - 2015-01-16 22:17 - 00000000 ____D () C:\Program Files (x86)\Connectify
2014-12-20 02:14 - 2014-12-20 02:14 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\java
2014-12-20 02:14 - 2014-12-20 02:14 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\.minecraft

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-16 22:17 - 2014-12-09 04:01 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\TeamViewer
2015-01-16 22:17 - 2014-11-09 15:23 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\uTorrent
2015-01-16 22:17 - 2014-11-09 07:29 - 00000000 ___DC () C:\WINDOWS\Panther
2015-01-16 22:17 - 2014-11-08 16:59 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\DAEMON Tools Lite
2015-01-16 22:15 - 2014-11-06 21:57 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3450639996-933504725-588580379-1005
2015-01-16 22:14 - 2014-11-09 15:08 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\GarenaPlus
2015-01-16 22:14 - 2014-11-09 15:07 - 00000000 ____D () C:\ProgramData\GarenaMessenger
2015-01-16 22:10 - 2014-11-09 15:08 - 00003496 _____ () C:\WINDOWS\System32\Tasks\gg_uac_daemon_Winfred Arman Lati
2015-01-16 22:10 - 2014-11-09 14:52 - 00000910 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-16 22:10 - 2014-11-08 15:42 - 00000000 ___DO () C:\Users\Winfred Arman Lati\OneDrive
2015-01-16 22:07 - 2014-11-09 14:52 - 00000914 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-16 22:04 - 2014-09-24 15:20 - 00865408 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-16 22:00 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-01-16 22:00 - 2013-08-22 22:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-16 22:00 - 2013-08-22 21:25 - 00786432 ___SH () C:\WINDOWS\system32\config\BBI
2015-01-16 21:53 - 2014-11-08 17:08 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-01-16 21:28 - 2014-12-13 22:29 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-16 20:41 - 2014-11-08 17:08 - 00001114 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-01-16 20:41 - 2014-11-08 17:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-16 20:41 - 2014-11-08 17:08 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-16 20:32 - 2014-11-09 13:46 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\Adobe
2015-01-16 12:11 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2015-01-16 12:01 - 2014-11-07 00:20 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-16 12:01 - 2012-07-26 15:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-01-16 11:58 - 2014-11-07 00:20 - 113365784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-01-16 11:56 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-01-16 11:51 - 2014-11-08 16:09 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\Spotify
2015-01-14 21:28 - 2014-12-13 22:29 - 00003718 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-01-13 20:27 - 2014-11-08 16:15 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\Spotify
2015-01-10 21:07 - 2014-11-06 21:44 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\Packages
2015-01-06 08:08 - 2014-09-24 18:03 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-01-06 08:08 - 2014-09-24 18:03 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-01 15:11 - 2012-08-04 03:27 - 00000000 ____D () C:\ProgramData\boost_interprocess
2015-01-01 00:50 - 2014-11-09 14:04 - 00000000 ____D () C:\Users\Winfred Arman Lati\Documents\Adobe
2014-12-31 21:44 - 2014-11-09 00:37 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\iolo
2014-12-31 19:14 - 2014-11-06 22:34 - 00298120 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-12-29 13:15 - 2014-11-06 21:08 - 00000000 ____D () C:\Update
2014-12-29 02:28 - 2012-08-04 03:19 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Sony Corporation
2014-12-29 02:28 - 2012-07-26 11:31 - 00000000 ____D () C:\ProgramData\Sony Corporation
2014-12-29 02:27 - 2012-08-04 03:12 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-12-22 00:59 - 2014-11-09 02:13 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-12-21 20:25 - 2014-11-09 20:44 - 00000000 ____D () C:\Users\Winfred Arman Lati\Documents\Autodesk Application Manager
2014-12-21 19:58 - 2014-11-09 14:45 - 00000034 _____ () C:\Users\Winfred Arman Lati\AppData\Roaming\AdobeWLCMCache.dat

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-01-16 22:10

==================== End Of Log ============================

 

 

And this was in Addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-01-2015 01
Ran by Winfred Arman Lati at 2015-01-16 21:20:11
Running from C:\Users\Winfred Arman Lati\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.2.0 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.6.0.19140 - Adobe Systems Incorporated)
Adobe Audition CC 2014 (HKLM-x32\...\{F3388E10-EFA9-4A80-B28E-2E647F8D00C4}) (Version: 7.2.0 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.5.23 - Adobe Systems Incorporated.)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.257 - Adobe Systems Incorporated)
Adobe Illustrator CC 2014 (HKLM-x32\...\{2B4B4082-8043-4646-8334-B0A29E641211}) (Version: 18.1.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.2 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.7 64-bit (HKLM\...\{1B77B02E-17E4-4B6D-B8A1-74B29AF3D8DD}) (Version: 5.7.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2014 (HKLM-x32\...\{07BE616F-9E42-4C90-AF4F-0F32A5B088E7}) (Version: 8.2.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk)
Autodesk SketchBook Pro 2015 (HKLM\...\Autodesk SketchBook Pro 2015) (Version: 7.0.0.12 - Autodesk)
Autodesk SketchBook Pro 2015 (Version: 7.0.0.12 - Autodesk) Hidden
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Connectify (HKLM\...\Connectify) (Version: 7.3.3.30440 - Connectify)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.16 - Dolby Laboratories Inc)
Emergency Download Driver (HKLM-x32\...\{05DBF996-83D0-4C40-8D3A-A6850800BC88}) (Version: 1.1.7.1439 - Nokia)
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Flash Update Installer (x32 Version: 5.0.0 - Microsoft) Hidden
Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.18.3 - Androxyde)
Fuse Installer (x32 Version: 5.0.0 - Nokia) Hidden
Garena - League of Legends (HKLM-x32\...\LoLPH) (Version:  - Garena Online Pte Ltd.)
Garena Plus (HKLM-x32\...\im) (Version: 2011 - Garena Online Pte Ltd.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology(patch version 3.0.1327.1) (HKLM\...\{302600C1-6BDF-4FD1-1307-148929CC1385}) (Version: 3.1.1307.0362 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{105fa5c4-72e1-41f2-a82c-884d8aa4b381}) (Version: 16.6.0 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
KUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Lumia Software Recovery Tool 5.0.0 (HKLM-x32\...\{29d74d87-c8d8-4a21-a890-8ae1903ab9ad}) (Version: 5.0.0 - Microsoft)
Lumia Software Recovery Tool 5.0.0 (x32 Version: 5.0.0 - Microsoft) Hidden
Magic Bullet Suite 64-bit (HKLM-x32\...\InstallShield_{E7676EF4-3896-4B7E-B030-1356EEC477CE}) (Version: 11.4.4 - Red Giant)
Magic Bullet Suite 64-bit (Version: 11.4.4 - Red Giant) Hidden
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 en-US)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 33.0.3 - Mozilla)
MPC-HC 1.7.7 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.7 - MPC-HC Team)
NFC Port Software (HKLM-x32\...\{1FCD587F-ACBF-41BF-8CFF-4FDC99330037}) (Version: 5.2.0.21 - Sony Corporation)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.8 - Google)
Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia)
Optical TrackPad (HKLM-x32\...\{969BCD14-AEDB-4A23-9DB8-DFBC3753340C}) (Version: 4.00.0000 - CRUCIALTEC)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Photobook Designer (HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Photobook Designer) (Version: Photobook Designer 4.2.1 - Photobook Philippines)
Product API Installer (x32 Version: 5.0.0 - Microsoft) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Ragnarok Online (HKLM-x32\...\Ragnarok Online 1.0.0) (Version: 1.0.0 - Level Up Games)
Ragnarok Online (x32 Version: 1.0.0 - Level Up Games) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.28145 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6695 - Realtek Semiconductor Corp.)
Restore (x32 Version: 1.0.0 - Sony Corporation) Hidden
Sony Location Sensor Driver (HKLM\...\{8539061B-0D41-4EF7-AEF7-040C3C0BAAAC}) (Version: 1.0.1.08060 - Sony Corporation)
Spotify (HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
USB Serial Port Driver (HKLM-x32\...\{3D924542-36BE-49DE-8805-8887C0C8A912}) (Version: 1.1.6.1439 - Nokia)
VAIO - Active Clip (HKLM-x32\...\{D5DFB462-F7B2-4782-8EDB-0B08F23D12A6}) (Version: 1.0.0.08170 - Sony Corporation)
VAIO - Xperia Link (HKLM-x32\...\{D91558BF-D1F3-411F-AEFE-8774CB406512}) (Version: 1.0.0.08170 - Sony Corporation)
VAIO Care (HKLM\...\{1C22618A-FEFA-4F20-B67D-F1311E6804AC}) (Version: 8.4.1.07026 - Sony Corporation)
VAIO Care Hardware Diagnostics Plugin (HKLM-x32\...\{EC153498-00E1-4C9C-89BE-81527C6750BE}) (Version: 4.11.1.11220 - Sony Corporation)
VAIO Care Recovery (HKLM\...\{15B9204E-BA09-485E-8F2C-094AC0077664}) (Version: 1.1.2.13230 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 6.0.2.08311 - Sony Corporation)
VAIO CPU Fan Diagnostic (HKLM-x32\...\{BCE6E3D7-B565-4E1B-AC77-F780666A35FB}) (Version: 1.1.0.09200 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.10.0.07270 - Sony Corporation)
VAIO Easy Connect (x32 Version: 8.2.0.14170 - Sony Corporation) Hidden
VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 3.0.0.08060 - Sony Corporation)
VAIO Gesture Control (HKLM-x32\...\{692955F2-DE9F-4078-8FAA-858D6F3A1776}) (Version: 2.0.0.08240 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.0.0.08240 - Sony Corporation) Hidden
VAIO Image Optimizer (HKLM-x32\...\InstallShield_{5597C927-029A-46A7-A0C0-8DABD9891A50}) (Version: 3.3.00.10220 - Sony Corporation)
VAIO Image Optimizer (x32 Version: 3.0.00.08170 - Sony Corporation) Hidden
VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 2.0.0.08090 - Sony Corporation)
VAIO Manual (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 3.0.0.08100 - Sony Corporation)
VAIO Media Server Settings (HKLM\...\{62A172B2-550E-499D-9A82-5190D18390AA}) (Version: 1.0.2.11060 - Sony Corporation)
VAIO Movie Creator Template Data (HKLM-x32\...\InstallShield_{00A663F1-6C03-48CA-8E85-55806AAE2615}) (Version: 4.0.00.08170 - Sony Corporation)
VAIO Movie Creator Template Data (x32 Version: 4.0.00.08170 - Sony Corporation) Hidden
VAIO Transfer Support (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.8.0.08212 - Sony Corporation)
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.0.1.02280 - Sony Corporation)
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VHD (x32 Version: 1.0.0 - Sony Corporation) Hidden
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VMLx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VSCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VU5x64 (Version: 1.1.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.1.0 - Sony Corporation ) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
Winrar Activator version 1.2 (HKLM-x32\...\{AE0B3F2A-EB65-4D01-A3E1-6D879C6AAF2A}_is1) (Version: 1.2 - Rarlab)
WinUsb CoInstallers (HKLM-x32\...\{B7D4B08A-9D89-4369-B51C-92CF8C03D2F8}) (Version: 1.1.8.1406 - Nokia)
WinUSB Compatible ID Drivers (HKLM-x32\...\{316ED84C-ACDA-4F1F-8E64-52B7AFF8677D}) (Version: 1.1.9.1439 - Nokia)
WinUSB Drivers ext (HKLM-x32\...\{238EAE31-4E9E-43CF-B244-C4879279E6AF}) (Version: 1.1.12.1439 - Nokia)
XperiaLinkx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3450639996-933504725-588580379-1005_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points  =========================

29-12-2014 02:27:44 Removed VAIO Update
06-01-2015 20:29:09 Scheduled Checkpoint
15-01-2015 22:24:51 Scheduled Checkpoint

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 21:25 - 2015-01-16 12:28 - 00000859 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 updates.conectify.me

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {030692CA-B7E9-4650-8B51-EAF3A2F7331E} - System32\Tasks\Red Giant Link => C:\Program Files (x86)\Red Giant Link\Common\Red Giant Link.exe [2013-01-02] ()
Task: {17CAAC3B-8BF6-4C3E-B749-1F25F6118A0E} - System32\Tasks\Sony Corporation\VAIO Care\UpdateSolution => C:\Program Files\Sony\VAIO Care\Solution.Updater.exe [2014-06-25] (Sony Corporation)
Task: {1EE1C898-EC16-4001-B58F-ADAE73556995} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {1F745176-4CCB-4821-A7B2-1D90675F0DA7} - System32\Tasks\gg_uac_daemon_Winfred Arman Lati => C:\Program Files (x86)\Garena Plus\ggdllhost.exe [2013-09-29] ()
Task: {27AD8F81-DFC6-40F3-9EFE-A6F36920AAC7} - System32\Tasks\Sony Corporation\VAIO Care\VCSelfHeal => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {295A8C8C-F331-45F8-9386-2DD7B34ACEF1} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-08-18] (Sony Corporation)
Task: {36C0E97A-D7A7-42EF-918A-7A1F682F2DAE} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {49185D86-8777-4AFD-BB15-6DCB883DF0D0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {4B1EEBE9-31F3-4D77-B7A7-A7B68FBF1107} - System32\Tasks\Connectify Updater => Wscript.exe //nologo //E:jscript //B "C:\Program Files (x86)\Connectify Updater\updater.ini"
Task: {516694DE-F4F2-455F-A35E-DCE8FE99F31A} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorUser => C:\Program Files\Sony\VAIO Improvement\vim.exe [2012-08-10] (Sony Corporation)
Task: {5F077011-8761-4F32-8900-5C46B24BE9E5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-09] (Google Inc.)
Task: {65B523AA-EE55-44BE-8DB9-6CD11FFE4431} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {6D414705-43B2-4380-A54B-D08F8377A89C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-01-16] (Microsoft Corporation)
Task: {6FD068B6-EFEA-43EE-8E8C-6A9E8F81F11E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {73B0FE85-0417-4A4F-ABFF-5FAEBBDB33B1} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {75FFFAE3-530C-4229-8703-7845D3C1B21F} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2014-03-01] (Sony Corporation)
Task: {8581F964-569E-45AB-8F76-DC7300A52927} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {8AEDB3DB-9F46-41A3-BB0C-8EFCCE7EF1EB} - System32\Tasks\Sony Corporation\Active Clip\Active Clip => C:\Program Files (x86)\Sony\Active Clip\Active Clip.exe [2012-08-18] (Sony Corporation)
Task: {92699331-EB79-4837-9901-5A9794FA289E} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {987A70A8-1B9F-4EA7-B6E9-692E4C730199} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-14] (Adobe Systems Incorporated)
Task: {AA8E42A7-77E5-4C2B-80CE-2405B3AF6BA1} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [2014-01-16] (Sony Corporation)
Task: {AE7A07ED-F594-4F61-BF88-6F3FBE3C6163} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2014-02-28] (Sony Corporation)
Task: {AF2D3804-7332-4E2D-BA69-EED47BC96C8D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-09] (Google Inc.)
Task: {BC1100FC-90D9-46CA-BB97-D8A1C9DD6B5F} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorSystem => C:\Program Files\Sony\VAIO Improvement\vim.exe [2012-08-10] (Sony Corporation)
Task: {BE7A7676-0483-4A92-8006-096572C3CE96} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-winlati@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {C5A5F1DD-85EA-4CEE-94B0-EBC97753969F} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {C98F2A0A-EC18-4D2D-97E7-92BD5CE1FCCE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {CB45BBE8-4269-4EAA-BB63-F0705E757DFA} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {CB95467C-F52F-4FB2-8017-D968C3CB14C4} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2012-08-10] (Sony Corporation)
Task: {D7EAADB5-1A0B-47DC-B23F-FE2ED9B280D9} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {D8ECD80D-CDD1-4F03-9E60-999E3D4EB8AB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {DB374E04-266E-41FF-8BC2-F2792BAD5F03} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-08-18] (Sony Corporation)
Task: {E2B9C214-A3DA-44EE-8EC5-02EAA3360853} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {E385D8A4-CBE9-44C2-A463-6EE0D7910FB3} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {EE4AED59-0134-486A-9CAC-D72A3900D5F8} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2012-08-04] (Sony Corporation)
Task: {EEDE9141-9C65-43C1-83E1-0CCEEBC433E4} - System32\Tasks\USER_ESRV_SVC => Wscript.exe //B //NoLogo "C:\Program Files\Sony\VAIO Care\ESRV\task.vbs"
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Connectify Updater.job =>
 ?wS‘ù@ÉEð±<€þF¦<
 ÿÿÿÿ$„!wscript.exeQ//nologo //E:jscript //B "C:\Program Files (x86)\Connectify Updater\updater.ini"WORKGROUP\WIN$9Provides update functionality to [COMPANY] applications.0ßD
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-11-06 13:24 - 2014-11-06 13:24 - 00082568 _____ () C:\Program Files (x86)\Common Files\Microsoft\Care Suite\ADUService\ADUService.exe
2013-09-29 16:31 - 2013-09-29 16:31 - 00049456 _____ () C:\Program Files (x86)\Garena Plus\ggdllhost.exe
2014-11-28 22:03 - 2014-11-28 22:03 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\ErrorReporting.dll
2013-09-29 16:31 - 2014-10-27 15:22 - 09974576 _____ () C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe
2012-08-04 03:15 - 2012-09-04 03:47 - 06597184 _____ () C:\Program Files (x86)\Optical TrackPad\OTPCmd.exe
2014-11-09 20:43 - 2014-12-05 10:27 - 00055688 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2014-11-09 20:43 - 2014-12-05 10:27 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2015-01-01 14:09 - 2014-03-05 04:30 - 00376608 _____ () C:\Program Files (x86)\Connectify\NativeLibrary.dll
2015-01-01 14:09 - 2014-03-05 04:30 - 03177760 _____ () C:\Program Files (x86)\Connectify\ConnectifyNAT.dll
2015-01-01 14:09 - 2014-03-05 04:30 - 00714016 _____ () C:\Program Files (x86)\Connectify\log4cplus.dll
2015-01-01 14:09 - 2014-03-05 04:30 - 00354080 _____ () C:\Program Files (x86)\Connectify\LibDispatch.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00553776 _____ () C:\Program Files (x86)\Garena Plus\ggspawn.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00104752 _____ () C:\Program Files (x86)\Garena Plus\CommonLib.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00033584 _____ () C:\Program Files (x86)\Garena Plus\DibModule.dll
2013-09-29 16:31 - 2014-12-09 18:26 - 00034960 _____ () C:\Program Files (x86)\Garena Plus\VersionModule.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00051504 _____ () C:\Program Files (x86)\Garena Plus\FileLoader.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00087344 _____ () C:\Program Files (x86)\Garena Plus\PluginKernel.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00487216 _____ () C:\Program Files (x86)\Garena Plus\CxImage.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00025392 _____ () C:\Program Files (x86)\Garena Plus\PluginModule.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00170800 _____ () C:\Program Files (x86)\Garena Plus\lib\fs\YYFileSystem.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00374064 _____ () C:\Program Files (x86)\Garena Plus\lib\Http.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00184624 _____ () C:\Program Files (x86)\Garena Plus\lib\MP3Module.dll
2012-02-22 16:52 - 2012-02-22 16:52 - 00162304 _____ () C:\Program Files (x86)\Garena Plus\lame_enc.DLL
2013-09-29 16:31 - 2013-09-29 16:31 - 00219952 _____ () C:\Program Files (x86)\Garena Plus\lib\TaskManagerLib.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00106288 _____ () C:\Program Files (x86)\Garena Plus\lib\UILayout.dll
2013-09-29 16:31 - 2014-02-21 16:41 - 00958256 _____ () C:\Program Files (x86)\Garena Plus\lib\XLL.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00055088 _____ () C:\Program Files (x86)\Garena Plus\lib\XmlUIModule.dll
2012-02-22 16:52 - 2012-02-22 16:52 - 00573100 _____ () C:\Program Files (x86)\Garena Plus\sqlite3.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00224560 _____ () C:\Program Files (x86)\Garena Plus\Plugins\StatsPlugin.dll
2013-09-29 16:31 - 2014-11-20 15:54 - 00961680 _____ () C:\Program Files (x86)\Garena Plus\Plugins\ggplugin.dll
2013-09-29 16:31 - 2014-06-11 21:45 - 00192816 _____ () C:\Program Files (x86)\Garena Plus\ImageModule.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00155440 _____ () C:\Program Files (x86)\Garena Plus\libmpg123.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 02941232 _____ () C:\Program Files (x86)\Garena Plus\ggdownloader.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00065840 _____ () C:\Program Files (x86)\Garena Plus\lib\delay_load\AudioMixerLib.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00016688 _____ () C:\Program Files (x86)\Garena Plus\lib\delay_load\ClientTcp.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 01545520 _____ () C:\Program Files (x86)\Garena Plus\lib\delay_load\FileSender.dll
2013-02-01 13:42 - 2013-02-01 13:42 - 00153088 _____ () C:\Program Files (x86)\Garena Plus\libzmq.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00956208 _____ () C:\Program Files (x86)\Garena Plus\lib\delay_load\GaFileTransfer.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00245040 _____ () C:\Program Files (x86)\Garena Plus\lib\delay_load\MediaEngine.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00026416 _____ () C:\Program Files (x86)\Garena Plus\ServerMemAlloc.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00516912 _____ () C:\Program Files (x86)\Garena Plus\lib\delay_load\RSALib.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00068400 _____ () C:\Program Files (x86)\Garena Plus\lib\delay_load\UdtLib.dll
2015-01-16 21:18 - 2014-12-05 10:27 - 00104328 _____ () C:\Users\Winfred Arman Lati\AppData\Local\Autodesk\.AdskAppManager\R1\qjson0.dll
2014-10-14 23:28 - 2014-10-14 23:28 - 08897696 _____ () C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Winfred Arman Lati\OneDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Norton Online Backup"

========================= Accounts: ==========================

Administrator (S-1-5-21-3450639996-933504725-588580379-500 - Administrator - Disabled)
Guest (S-1-5-21-3450639996-933504725-588580379-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3450639996-933504725-588580379-1007 - Limited - Enabled)
Winfred Arman Lati (S-1-5-21-3450639996-933504725-588580379-1005 - Administrator - Enabled) => C:\Users\Winfred Arman Lati

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (01/16/2015 09:18:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WLANExt.exe, version: 6.3.9600.17415, time stamp: 0x545041d0
Faulting module name: MSVCR110.dll, version: 11.0.51106.1, time stamp: 0x5098826e
Exception code: 0xc0000005
Fault offset: 0x0000000000037235
Faulting process id: 0x478
Faulting application start time: 0xWLANExt.exe0
Faulting application path: WLANExt.exe1
Faulting module path: WLANExt.exe2
Report Id: WLANExt.exe3
Faulting package full name: WLANExt.exe4
Faulting package-relative application ID: WLANExt.exe5

Error: (01/16/2015 09:15:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WLANExt.exe, version: 6.3.9600.17415, time stamp: 0x545041d0
Faulting module name: MSVCR110.dll, version: 11.0.51106.1, time stamp: 0x5098826e
Exception code: 0xc0000005
Fault offset: 0x0000000000037235
Faulting process id: 0x488
Faulting application start time: 0xWLANExt.exe0
Faulting application path: WLANExt.exe1
Faulting module path: WLANExt.exe2
Report Id: WLANExt.exe3
Faulting package full name: WLANExt.exe4
Faulting package-relative application ID: WLANExt.exe5

Error: (01/16/2015 09:08:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WLANExt.exe, version: 6.3.9600.17415, time stamp: 0x545041d0
Faulting module name: MSVCR110.dll, version: 11.0.51106.1, time stamp: 0x5098826e
Exception code: 0xc0000005
Fault offset: 0x0000000000037235
Faulting process id: 0x47c
Faulting application start time: 0xWLANExt.exe0
Faulting application path: WLANExt.exe1
Faulting module path: WLANExt.exe2
Report Id: WLANExt.exe3
Faulting package full name: WLANExt.exe4
Faulting package-relative application ID: WLANExt.exe5

Error: (01/16/2015 08:32:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WLANExt.exe, version: 6.3.9600.17415, time stamp: 0x545041d0
Faulting module name: MSVCR110.dll, version: 11.0.51106.1, time stamp: 0x5098826e
Exception code: 0xc0000005
Fault offset: 0x0000000000037235
Faulting process id: 0x1be8
Faulting application start time: 0xWLANExt.exe0
Faulting application path: WLANExt.exe1
Faulting module path: WLANExt.exe2
Report Id: WLANExt.exe3
Faulting package full name: WLANExt.exe4
Faulting package-relative application ID: WLANExt.exe5

Error: (01/16/2015 00:22:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WLANExt.exe, version: 6.3.9600.17415, time stamp: 0x545041d0
Faulting module name: MSVCR110.dll, version: 11.0.51106.1, time stamp: 0x5098826e
Exception code: 0xc0000005
Fault offset: 0x0000000000037235
Faulting process id: 0x484
Faulting application start time: 0xWLANExt.exe0
Faulting application path: WLANExt.exe1
Faulting module path: WLANExt.exe2
Report Id: WLANExt.exe3
Faulting package full name: WLANExt.exe4
Faulting package-relative application ID: WLANExt.exe5

Error: (01/16/2015 00:19:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WLANExt.exe, version: 6.3.9600.17415, time stamp: 0x545041d0
Faulting module name: MSVCR110.dll, version: 11.0.51106.1, time stamp: 0x5098826e
Exception code: 0xc0000005
Fault offset: 0x0000000000037235
Faulting process id: 0x478
Faulting application start time: 0xWLANExt.exe0
Faulting application path: WLANExt.exe1
Faulting module path: WLANExt.exe2
Report Id: WLANExt.exe3
Faulting package full name: WLANExt.exe4
Faulting package-relative application ID: WLANExt.exe5

Error: (01/16/2015 00:02:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WLANExt.exe, version: 6.3.9600.17415, time stamp: 0x545041d0
Faulting module name: MSVCR110.dll, version: 11.0.51106.1, time stamp: 0x5098826e
Exception code: 0xc0000005
Fault offset: 0x0000000000037235
Faulting process id: 0x4c0
Faulting application start time: 0xWLANExt.exe0
Faulting application path: WLANExt.exe1
Faulting module path: WLANExt.exe2
Report Id: WLANExt.exe3
Faulting package full name: WLANExt.exe4
Faulting package-relative application ID: WLANExt.exe5

Error: (01/16/2015 11:46:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WLANExt.exe, version: 6.3.9600.17415, time stamp: 0x545041d0
Faulting module name: MSVCR110.dll, version: 11.0.51106.1, time stamp: 0x5098826e
Exception code: 0xc0000005
Fault offset: 0x0000000000037235
Faulting process id: 0x2c08
Faulting application start time: 0xWLANExt.exe0
Faulting application path: WLANExt.exe1
Faulting module path: WLANExt.exe2
Report Id: WLANExt.exe3
Faulting package full name: WLANExt.exe4
Faulting package-relative application ID: WLANExt.exe5

Error: (01/15/2015 06:16:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: WLANExt.exe, version: 6.3.9600.17415, time stamp: 0x545041d0
Faulting module name: MSVCR110.dll, version: 11.0.51106.1, time stamp: 0x5098826e
Exception code: 0xc0000005
Fault offset: 0x0000000000037235
Faulting process id: 0x1580
Faulting application start time: 0xWLANExt.exe0
Faulting application path: WLANExt.exe1
Faulting module path: WLANExt.exe2
Report Id: WLANExt.exe3
Faulting package full name: WLANExt.exe4
Faulting package-relative application ID: WLANExt.exe5

Error: (01/14/2015 09:22:35 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: The volume \\?\Volume{bf76ccb0-af6d-4e8f-a995-1eef329e0ee3}\ was not optimized because an error was encountered: The parameter is incorrect. (0x80070057)

System errors:
=============
Error: (01/16/2015 09:18:38 PM) (Source: Schannel) (EventID: 4108) (User: WIN)
Description: The certificate received from the remote server has not validated correctly. The error code is 0x80092012. The SSL connection request has failed. The attached data contains the server certificate.

Error: (01/16/2015 09:18:38 PM) (Source: Schannel) (EventID: 4120) (User: WIN)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 43. The Windows SChannel error state is 552.

Error: (01/16/2015 09:18:37 PM) (Source: Schannel) (EventID: 4108) (User: WIN)
Description: The certificate received from the remote server has not validated correctly. The error code is 0x80092012. The SSL connection request has failed. The attached data contains the server certificate.

Error: (01/16/2015 09:18:37 PM) (Source: Schannel) (EventID: 4120) (User: WIN)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 43. The Windows SChannel error state is 552.

Error: (01/16/2015 09:18:31 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\WINDOWS\System32\IWMSSvc.dll

Error: (01/16/2015 09:18:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Intel® Centrino® Wireless Bluetooth® + High Speed Security Service service failed to start due to the following error:
%%109

Error: (01/16/2015 09:18:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The VAIO Event Service service failed to start due to the following error:
%%109

Error: (01/16/2015 09:18:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Print Spooler service failed to start due to the following error:
%%1069

Error: (01/16/2015 09:18:09 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: The Spooler service was unable to log on as NT AUTHORITY\SYSTEM with the currently configured password due to the following error:
%%50

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).

Error: (01/16/2015 09:18:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The TeamViewer 9 service failed to start due to the following error:
%%109

Microsoft Office Sessions:
=========================
Error: (01/16/2015 09:18:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WLANExt.exe6.3.9600.17415545041d0MSVCR110.dll11.0.51106.15098826ec0000005000000000003723547801d0318ee87640d3C:\WINDOWS\system32\WLANExt.exeC:\WINDOWS\system32\MSVCR110.dll286d56f3-9d82-11e4-be9a-5453ed1c75e8

Error: (01/16/2015 09:15:19 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WLANExt.exe6.3.9600.17415545041d0MSVCR110.dll11.0.51106.15098826ec0000005000000000003723548801d0318e77d8bd7aC:\WINDOWS\system32\WLANExt.exeC:\WINDOWS\system32\MSVCR110.dllb7e2e6dc-9d81-11e4-be99-5453ed1c75e8

Error: (01/16/2015 09:08:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WLANExt.exe6.3.9600.17415545041d0MSVCR110.dll11.0.51106.15098826ec0000005000000000003723547c01d0318d7c4c216aC:\WINDOWS\system32\WLANExt.exeC:\WINDOWS\system32\MSVCR110.dllbc433751-9d80-11e4-be98-5453ed1c75e8

Error: (01/16/2015 08:32:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WLANExt.exe6.3.9600.17415545041d0MSVCR110.dll11.0.51106.15098826ec000000500000000000372351be801d031886d547a1eC:\WINDOWS\system32\WLANExt.exeC:\WINDOWS\system32\MSVCR110.dllb838adbb-9d7b-11e4-be97-5453ed1c75e8

Error: (01/16/2015 00:22:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WLANExt.exe6.3.9600.17415545041d0MSVCR110.dll11.0.51106.15098826ec0000005000000000003723548401d03144181968ddC:\WINDOWS\system32\WLANExt.exeC:\WINDOWS\system32\MSVCR110.dll58212f92-9d37-11e4-be97-5453ed1c75e8

Error: (01/16/2015 00:19:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WLANExt.exe6.3.9600.17415545041d0MSVCR110.dll11.0.51106.15098826ec0000005000000000003723547801d031438dd0a3bdC:\WINDOWS\system32\WLANExt.exeC:\WINDOWS\system32\MSVCR110.dllcddd2e87-9d36-11e4-be96-5453ed1c75e8

Error: (01/16/2015 00:02:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WLANExt.exe6.3.9600.17415545041d0MSVCR110.dll11.0.51106.15098826ec000000500000000000372354c001d031413a92b094C:\WINDOWS\system32\WLANExt.exeC:\WINDOWS\system32\MSVCR110.dll7b783570-9d34-11e4-be95-5453ed1c75e8

Error: (01/16/2015 11:46:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: WLANExt.exe6.3.9600.17415545041d0MSVCR110.dll11.0.51106.15098826ec000000500000000000372352c0801d0313f03093171C:\WINDOWS\system32\WLANExt.exeC:\WINDOWS\system32\MSVCR110.dll46151445-9d32-11e4-be94-5453ed1c75e8

Error: (01/15/2015 06:16:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WLANExt.exe6.3.9600.17415545041d0MSVCR110.dll11.0.51106.15098826ec00000050000000000037235158001d030ac547df9a7C:\WINDOWS\system32\WLANExt.exeC:\WINDOWS\system32\MSVCR110.dll95d570c0-9c9f-11e4-be94-5453ed1c75e8

Error: (01/14/2015 09:22:35 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: \\?\Volume{bf76ccb0-af6d-4e8f-a995-1eef329e0ee3}\The parameter is incorrect. (0x80070057)

CodeIntegrity Errors:
===================================
  Date: 2015-01-01 15:04:47.690
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-01 14:03:37.740
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-01 14:03:37.362
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-01 14:03:11.272
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-01 12:43:12.979
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-01 12:25:36.973
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-12-30 18:38:16.482
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-12-30 15:45:30.753
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-12-24 22:19:13.214
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-12-22 12:49:52.431
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: Intel® Core™ i5-3317U CPU @ 1.70GHz
Percentage of memory in use: 57%
Total physical RAM: 3973.75 MB
Available physical RAM: 1687.49 MB
Total Pagefile: 8325.75 MB
Available Pagefile: 5690.99 MB
Total Virtual: 131072 MB
Available Virtual: 131071.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:104.22 GB) (Free:30.43 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================

 

 

Thanks in advanced.



BC AdBot (Login to Remove)

 


#2 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:26 AM

Posted 16 January 2015 - 10:40 AM

Hey, :)
Please move FRST to your Desktop.

Step 1: Adwarecleaner

Please download AdwCleaner (by Xplode) from the link below and save it to your Desktop:

Download Mirror #1
  • Right-click on AdwCleaner.exe and select Run as administrator. (If you have Windows XP the just run it)
  • Click Scan and let the scan run.
  • When it finishes, click Clean, following the on screen prompts
  • After your computer reboots, a log will open. Please Copy (Ctrl+C) and Paste (Ctrl+V) this into your next post.
Note: The log can also be found in here: C:\AdwCleaner\

Step 2: Malwarebytes

Please download Malwarebytes Anti-Malware to your desktop Install the progamme and select update
Once it has updated select Settings > Detection and Protection
Tick Scan for rootkits

MBAMsettings.JPG

Go back to the Dashboard and select Scan Now

MBAMScan.JPG

If threats are detected, click the Apply Actions button, MBAM will ask for a reboot.

MBAMReboot.JPG

MBAMLog.JPG

On completion of the scan (or after the reboot) select View Detailed Log
Select Export > Select text file and save to the desktop
Attach/Post that log

Step 3: Junkware Removal Tool

thisisujrt.gif  Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Step 4: FRST Scan
  • Run FRST. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • Click Scan to start FRST.
  • When FRST finishes scanning, a log, FRST.txt, will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of this log into your next post please.

Edited by Machiavelli, 16 January 2015 - 10:41 AM.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#3 greenarcher02

greenarcher02
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:02:26 PM

Posted 18 January 2015 - 03:48 PM

Sorry for the late reply. Here are the logs.

 

Step 1 logs: AdwCleaner

 

# AdwCleaner v4.108 - Report created 19/01/2015 at 01:51:22
# Updated 17/01/2015 by Xplode
# Database : 2015-01-13.2 [Live]
# Operating System : Windows 8.1 Single Language  (64 bits)
# Username : Winfred Arman Lati - WIN
# Running from : C:\Users\Winfred Arman Lati\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IM

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

-\\ Mozilla Firefox v34.0.5 (x86 en-US)

*************************

AdwCleaner[R0].txt - [1131 octets] - [19/01/2015 01:49:56]
AdwCleaner[S0].txt - [1059 octets] - [19/01/2015 01:51:22]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1119 octets] ##########

 

Step 2 logs: Malwarebytes

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 2015-01-19
Scan Time: 04:14:44
Logfile:
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2015.01.18.08
Rootkit Database: v2015.01.14.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: Winfred Arman Lati

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 386128
Time Elapsed: 8 min, 27 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

 

Step 3 logs: Junkware Removal Tool

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.1 (12.28.2014:1)
OS: Windows 8.1 Single Language x64
Ran by Winfred Arman Lati on 2015-01-19 at  4:37:35.21
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

 

~~~ Files

 

~~~ Folders

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 2015-01-19 at  4:39:27.21
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

Step 4 logs: FRST

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-01-2015 01
Ran by Winfred Arman Lati (administrator) on WIN on 19-01-2015 04:43:27
Running from C:\Users\Winfred Arman Lati\Desktop
Loaded Profiles: Winfred Arman Lati (Available profiles: Winfred Arman Lati)
Platform: Windows 8.1 Single Language (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
() C:\Program Files (x86)\Common Files\Microsoft\Care Suite\ADUService\ADUService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyService.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
() C:\Program Files (x86)\Garena Plus\ggdllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\Active Clip\Active Clip.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Realtek Semiconductor Crop.) C:\Program Files\Realtek\Audio\HDA\vncutil64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectify.exe
(Connectify) C:\Program Files (x86)\Connectify\DispatchUI.exe
() C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe
(Spotify Ltd) C:\Users\Winfred Arman Lati\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
() C:\Program Files (x86)\Optical TrackPad\OTPCmd.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Autodesk Inc.) C:\Users\Winfred Arman Lati\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16.0.3327.1030_x64__8wekyb3d8bbwe\onenoteim.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [vncutil] => C:\Program Files\Realtek\Audio\HDA\vncutil64.exe [562792 2012-08-07] (Realtek Semiconductor Crop.)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [Connectify Hotspot] => C:\Program Files (x86)\Connectify\Connectify.exe [3761952 2014-03-05] (Connectify)
HKLM\...\Run: [Connectify Dispatch] => C:\Program Files (x86)\Connectify\DispatchUI.exe [1672992 2014-03-05] (Connectify)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [OTPCmd] => C:\Program Files (x86)\Optical TrackPad\OTPCmd.exe [6597184 2012-09-04] ()
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [493960 2014-12-05] (Autodesk Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [GarenaPlus] => C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe [9974576 2014-10-27] ()
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [Spotify Web Helper] => C:\Users\Winfred Arman Lati\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-13] (Spotify Ltd)
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-13] (Piriform Ltd)
Startup: C:\Users\Winfred Arman Lati\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
HKU\S-1-5-21-3450639996-933504725-588580379-1005\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-3450639996-933504725-588580379-1005\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://sony13.msn.com
HKU\S-1-5-21-3450639996-933504725-588580379-1005\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://vaio-online.sony.com/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Hosts: 127.0.0.1 updates.conectify.me
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_257.dll ()
FF Plugin: @java.com/DTPlugin,version=10.5.0 -> C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.5.0 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll ( Garena)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Extension: FlashGot - C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2014-11-09]
FF Extension: QR  Code  - C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default\Extensions\{6a910736-6fab-4480-841a-36325cce134f}.xpi [2014-11-09]

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-12-05] (Autodesk Inc.)
R2 ADUServiceNSRT; C:\Program Files (x86)\Common Files\Microsoft\Care Suite\ADUService\ADUService.exe [82568 2014-11-06] () [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [487936 2014-03-05] (Connectify) [File not signed]
R2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-23] (Intel Corporation)
R2 Intel® Wireless Bluetooth® 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-24] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165760 2012-07-23] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-10-11] ()
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation)
R2 NFCProxyService; C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe [470528 2011-11-16] (Sony Corporation) [File not signed]
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [3563344 2014-11-19] (INCA Internet Co., Ltd.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [200808 2012-08-07] (Realtek Semiconductor)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [266168 2013-11-19] (Intel Corporation)
S2 Updater.exe; C:\Program Files (x86)\Connectify Updater\Updater.exe [39936 2014-11-27] (InstallShield) [File not signed]
S3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2012-11-07] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1642544 2014-02-28] (Sony Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3671792 2013-10-11] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-09-24] (Microsoft Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [132920 2013-04-23] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1385784 2013-06-27] (Motorola Solutions, Inc.)
R1 cnnctfy3; C:\Windows\system32\DRIVERS\cnnctfy3.sys [35352 2015-01-01] (Connectify)
R3 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-11-08] (Disc Soft Ltd)
S3 ggsomc; C:\Windows\System32\drivers\ggsomc.sys [30424 2014-11-30] (Sony Mobile Communications)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344864 2013-09-23] (Intel Corporation)
S3 npkcrypt; C:\Program Files (x86)\Level Up Games\Ragnarok Online\npkcrypt.sys [21442 2012-03-09] (INCA Internet Co., Ltd.) [File not signed]
R3 OTGMouUSB; C:\Windows\system32\DRIVERS\OTGMouUSB.sys [22592 2012-08-23] (CRUCIALTEC Co.,Ltd.)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 qcusbser; C:\Windows\system32\DRIVERS\qcusbser.sys [242688 2013-04-24] (QUALCOMM Incorporated)
R3 semav6thermal64ro; C:\WINDOWS\system32\drivers\semav6thermal64ro.sys [13792 2014-11-09] ()
R3 SensorsAlsDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 SensorsHIDClassDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 SensorsServiceDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 sonyfelicaportm; C:\Windows\System32\Drivers\sonyfelicaportm.sys [45160 2012-07-27] (Sony Corporation)
R3 sonynfcport100c; C:\Windows\System32\Drivers\sonynfcport100c.sys [62056 2012-06-30] (Sony Corporation)
R3 sonynfcport100f; C:\Windows\System32\Drivers\sonynfcport100f.sys [647784 2012-08-30] (Sony Corporation)
R3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 npkycryp; \??\C:\Program Files (x86)\Level Up Games\Ragnarok Online\npkycryp.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-19 04:43 - 2015-01-19 04:43 - 00019251 _____ () C:\Users\Winfred Arman Lati\Desktop\FRST.txt
2015-01-19 04:42 - 2015-01-19 04:42 - 00000000 ____D () C:\Users\Winfred Arman Lati\Desktop\FRST-OlderVersion
2015-01-19 04:39 - 2015-01-19 04:39 - 00000643 _____ () C:\Users\Winfred Arman Lati\Desktop\JRT.txt
2015-01-19 04:37 - 2015-01-19 04:37 - 00000000 ____D () C:\WINDOWS\ERUNT
2015-01-19 04:27 - 2015-01-19 04:27 - 01707939 _____ (Thisisu) C:\Users\Winfred Arman Lati\Desktop\JRT.exe
2015-01-19 01:51 - 2015-01-19 04:24 - 00000660 _____ () C:\WINDOWS\PFRO.log
2015-01-19 01:51 - 2015-01-19 04:24 - 00000154 _____ () C:\WINDOWS\setupact.log
2015-01-19 01:51 - 2015-01-19 01:51 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-01-19 01:49 - 2015-01-19 01:51 - 00000000 ____D () C:\AdwCleaner
2015-01-19 01:43 - 2015-01-19 01:43 - 02186752 _____ () C:\Users\Winfred Arman Lati\Desktop\AdwCleaner.exe
2015-01-16 22:17 - 2015-01-19 04:31 - 00133045 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-16 21:58 - 2015-01-16 21:58 - 00002798 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-01-16 21:58 - 2015-01-16 21:58 - 00000834 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-01-16 21:58 - 2015-01-16 21:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-01-16 21:58 - 2015-01-16 21:58 - 00000000 ____D () C:\Program Files\CCleaner
2015-01-16 21:20 - 2015-01-16 21:20 - 00044226 _____ () C:\Users\Winfred Arman Lati\Downloads\Addition.txt
2015-01-16 21:19 - 2015-01-16 22:20 - 00029949 _____ () C:\Users\Winfred Arman Lati\Downloads\FRST.txt
2015-01-16 21:07 - 2015-01-19 04:43 - 00000000 ____D () C:\FRST
2015-01-16 21:06 - 2015-01-19 04:42 - 02126848 _____ (Farbar) C:\Users\Winfred Arman Lati\Desktop\FRST64.exe
2015-01-15 23:19 - 2014-12-19 14:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-01-15 23:19 - 2014-12-12 10:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-01-15 23:19 - 2014-12-12 08:51 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-01-15 23:19 - 2014-12-09 09:50 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-01-15 23:19 - 2014-12-09 03:42 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-01-15 23:19 - 2014-12-06 11:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-01-15 23:19 - 2014-12-06 09:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-01-15 23:19 - 2014-12-06 09:35 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-01-01 14:28 - 2015-01-01 14:28 - 00000497 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.ics
2015-01-01 14:10 - 2015-01-01 14:10 - 00000380 _____ () C:\Users\Public\Desktop\Connectify Dispatch.lnk
2015-01-01 14:10 - 2015-01-01 14:10 - 00000364 _____ () C:\Users\Public\Desktop\Connectify Hotspot.lnk
2015-01-01 14:10 - 2015-01-01 14:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Connectify
2015-01-01 14:09 - 2015-01-01 14:09 - 00035352 _____ (Connectify) C:\WINDOWS\system32\Drivers\cnnctfy3.sys
2015-01-01 14:06 - 2015-01-01 14:13 - 00000472 _____ () C:\WINDOWS\Tasks\Connectify Updater.job
2015-01-01 14:06 - 2015-01-01 14:13 - 00000000 ____D () C:\ProgramData\Connectify
2015-01-01 14:06 - 2015-01-01 14:09 - 00000000 ____D () C:\Program Files (x86)\Connectify Updater
2015-01-01 14:06 - 2015-01-01 14:06 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Connectify Updater
2015-01-01 14:01 - 2015-01-01 14:01 - 00000000 ____D () C:\Users\Winfred Arman Lati\Downloads\Connectify Hotspot & Dispatch Pro 7.3.3.30440 + Crack (Working Nov14)
2015-01-01 00:50 - 2015-01-01 00:50 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\LooksBuilder
2014-12-29 13:17 - 2014-12-29 13:17 - 00003886 _____ () C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2014-12-29 02:28 - 2014-12-29 02:28 - 00000998 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2014-12-23 19:26 - 2015-01-16 22:17 - 00000000 ____D () C:\Program Files (x86)\Connectify
2014-12-20 02:14 - 2014-12-20 02:14 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\java
2014-12-20 02:14 - 2014-12-20 02:14 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\.minecraft

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-19 04:29 - 2014-11-06 21:57 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3450639996-933504725-588580379-1005
2015-01-19 04:29 - 2014-09-24 15:20 - 00865408 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-19 04:28 - 2014-12-13 22:29 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-19 04:28 - 2014-11-09 15:08 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\GarenaPlus
2015-01-19 04:28 - 2014-11-09 15:07 - 00000000 ____D () C:\ProgramData\GarenaMessenger
2015-01-19 04:24 - 2014-11-09 15:08 - 00003496 _____ () C:\WINDOWS\System32\Tasks\gg_uac_daemon_Winfred Arman Lati
2015-01-19 04:24 - 2014-11-09 14:52 - 00000910 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-19 04:24 - 2014-11-08 15:42 - 00000000 ___DO () C:\Users\Winfred Arman Lati\OneDrive
2015-01-19 04:24 - 2013-08-22 22:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-19 04:24 - 2013-08-22 21:25 - 00786432 ___SH () C:\WINDOWS\system32\config\BBI
2015-01-19 04:20 - 2014-11-08 16:09 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\Spotify
2015-01-19 04:14 - 2014-11-08 17:08 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-01-19 04:07 - 2014-11-09 14:52 - 00000914 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-19 04:00 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-01-19 02:00 - 2014-11-09 13:46 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\Adobe
2015-01-19 01:34 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-01-16 22:17 - 2014-12-09 04:01 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\TeamViewer
2015-01-16 22:17 - 2014-11-09 15:23 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\uTorrent
2015-01-16 22:17 - 2014-11-09 07:29 - 00000000 ___DC () C:\WINDOWS\Panther
2015-01-16 22:17 - 2014-11-08 16:59 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\DAEMON Tools Lite
2015-01-16 20:41 - 2014-11-08 17:08 - 00001114 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-01-16 20:41 - 2014-11-08 17:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-16 20:41 - 2014-11-08 17:08 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-16 12:11 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2015-01-16 12:01 - 2014-11-07 00:20 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-16 12:01 - 2012-07-26 15:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-01-16 11:58 - 2014-11-07 00:20 - 113365784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-01-14 21:28 - 2014-12-13 22:29 - 00003718 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-01-13 20:27 - 2014-11-08 16:15 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\Spotify
2015-01-10 21:07 - 2014-11-06 21:44 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\Packages
2015-01-06 08:08 - 2014-09-24 18:03 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-01-06 08:08 - 2014-09-24 18:03 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-01 15:11 - 2012-08-04 03:27 - 00000000 ____D () C:\ProgramData\boost_interprocess
2015-01-01 00:50 - 2014-11-09 14:04 - 00000000 ____D () C:\Users\Winfred Arman Lati\Documents\Adobe
2014-12-31 21:44 - 2014-11-09 00:37 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\iolo
2014-12-31 19:14 - 2014-11-06 22:34 - 00298120 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-12-29 13:15 - 2014-11-06 21:08 - 00000000 ____D () C:\Update
2014-12-29 02:28 - 2012-08-04 03:19 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Sony Corporation
2014-12-29 02:28 - 2012-07-26 11:31 - 00000000 ____D () C:\ProgramData\Sony Corporation
2014-12-29 02:27 - 2012-08-04 03:12 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-12-22 00:59 - 2014-11-09 02:13 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-12-21 20:25 - 2014-11-09 20:44 - 00000000 ____D () C:\Users\Winfred Arman Lati\Documents\Autodesk Application Manager
2014-12-21 19:58 - 2014-11-09 14:45 - 00000034 _____ () C:\Users\Winfred Arman Lati\AppData\Roaming\AdobeWLCMCache.dat

==================== Files in the root of some directories =======
2014-11-09 14:45 - 2014-12-21 19:58 - 0000034 _____ () C:\Users\Winfred Arman Lati\AppData\Roaming\AdobeWLCMCache.dat
2014-11-13 13:53 - 2014-11-13 19:56 - 0003072 _____ () C:\Users\Winfred Arman Lati\AppData\Roaming\Photobook Designer Prefsv3
2012-08-04 03:12 - 2012-08-04 03:12 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\Winfred Arman Lati\AppData\Local\Temp\Quarantine.exe
C:\Users\Winfred Arman Lati\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-01-16 22:10

==================== End Of Log ============================

 

Addition

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-01-2015 01
Ran by Winfred Arman Lati at 2015-01-19 04:43:51
Running from C:\Users\Winfred Arman Lati\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.2.0 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.6.0.19140 - Adobe Systems Incorporated)
Adobe Audition CC 2014 (HKLM-x32\...\{F3388E10-EFA9-4A80-B28E-2E647F8D00C4}) (Version: 7.2.0 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.5.23 - Adobe Systems Incorporated.)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.257 - Adobe Systems Incorporated)
Adobe Illustrator CC 2014 (HKLM-x32\...\{2B4B4082-8043-4646-8334-B0A29E641211}) (Version: 18.1.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.2 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.7 64-bit (HKLM\...\{1B77B02E-17E4-4B6D-B8A1-74B29AF3D8DD}) (Version: 5.7.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2014 (HKLM-x32\...\{07BE616F-9E42-4C90-AF4F-0F32A5B088E7}) (Version: 8.2.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk)
Autodesk SketchBook Pro 2015 (HKLM\...\Autodesk SketchBook Pro 2015) (Version: 7.0.0.12 - Autodesk)
Autodesk SketchBook Pro 2015 (Version: 7.0.0.12 - Autodesk) Hidden
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Connectify (HKLM\...\Connectify) (Version: 7.3.3.30440 - Connectify)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.16 - Dolby Laboratories Inc)
Emergency Download Driver (HKLM-x32\...\{05DBF996-83D0-4C40-8D3A-A6850800BC88}) (Version: 1.1.7.1439 - Nokia)
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Flash Update Installer (x32 Version: 5.0.0 - Microsoft) Hidden
Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.18.3 - Androxyde)
Fuse Installer (x32 Version: 5.0.0 - Nokia) Hidden
Garena - League of Legends (HKLM-x32\...\LoLPH) (Version:  - Garena Online Pte Ltd.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology(patch version 3.0.1327.1) (HKLM\...\{302600C1-6BDF-4FD1-1307-148929CC1385}) (Version: 3.1.1307.0362 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{105fa5c4-72e1-41f2-a82c-884d8aa4b381}) (Version: 16.6.0 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
KUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Lumia Software Recovery Tool 5.0.0 (HKLM-x32\...\{29d74d87-c8d8-4a21-a890-8ae1903ab9ad}) (Version: 5.0.0 - Microsoft)
Lumia Software Recovery Tool 5.0.0 (x32 Version: 5.0.0 - Microsoft) Hidden
Magic Bullet Suite 64-bit (HKLM-x32\...\InstallShield_{E7676EF4-3896-4B7E-B030-1356EEC477CE}) (Version: 11.4.4 - Red Giant)
Magic Bullet Suite 64-bit (Version: 11.4.4 - Red Giant) Hidden
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 en-US)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 33.0.3 - Mozilla)
MPC-HC 1.7.7 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.7 - MPC-HC Team)
NFC Port Software (HKLM-x32\...\{1FCD587F-ACBF-41BF-8CFF-4FDC99330037}) (Version: 5.2.0.21 - Sony Corporation)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.8 - Google)
Nokia Connectivity Cable Driver (HKLM-x32\...\{D4BF151C-70A8-4CE2-906F-4173A575BAD9}) (Version: 7.1.182.0 - Nokia)
Optical TrackPad (HKLM-x32\...\{969BCD14-AEDB-4A23-9DB8-DFBC3753340C}) (Version: 4.00.0000 - CRUCIALTEC)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Photobook Designer (HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Photobook Designer) (Version: Photobook Designer 4.2.1 - Photobook Philippines)
Product API Installer (x32 Version: 5.0.0 - Microsoft) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Ragnarok Online (HKLM-x32\...\Ragnarok Online 1.0.0) (Version: 1.0.0 - Level Up Games)
Ragnarok Online (x32 Version: 1.0.0 - Level Up Games) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.28145 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6695 - Realtek Semiconductor Corp.)
Restore (x32 Version: 1.0.0 - Sony Corporation) Hidden
Sony Location Sensor Driver (HKLM\...\{8539061B-0D41-4EF7-AEF7-040C3C0BAAAC}) (Version: 1.0.1.08060 - Sony Corporation)
Spotify (HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
USB Serial Port Driver (HKLM-x32\...\{3D924542-36BE-49DE-8805-8887C0C8A912}) (Version: 1.1.6.1439 - Nokia)
VAIO - Active Clip (HKLM-x32\...\{D5DFB462-F7B2-4782-8EDB-0B08F23D12A6}) (Version: 1.0.0.08170 - Sony Corporation)
VAIO - Xperia Link (HKLM-x32\...\{D91558BF-D1F3-411F-AEFE-8774CB406512}) (Version: 1.0.0.08170 - Sony Corporation)
VAIO Care (HKLM\...\{1C22618A-FEFA-4F20-B67D-F1311E6804AC}) (Version: 8.4.1.07026 - Sony Corporation)
VAIO Care Hardware Diagnostics Plugin (HKLM-x32\...\{EC153498-00E1-4C9C-89BE-81527C6750BE}) (Version: 4.11.1.11220 - Sony Corporation)
VAIO Care Recovery (HKLM\...\{15B9204E-BA09-485E-8F2C-094AC0077664}) (Version: 1.1.2.13230 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 6.0.2.08311 - Sony Corporation)
VAIO CPU Fan Diagnostic (HKLM-x32\...\{BCE6E3D7-B565-4E1B-AC77-F780666A35FB}) (Version: 1.1.0.09200 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.10.0.07270 - Sony Corporation)
VAIO Easy Connect (x32 Version: 8.2.0.14170 - Sony Corporation) Hidden
VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 3.0.0.08060 - Sony Corporation)
VAIO Gesture Control (HKLM-x32\...\{692955F2-DE9F-4078-8FAA-858D6F3A1776}) (Version: 2.0.0.08240 - Sony Corporation)
VAIO Gesture Control (x32 Version: 2.0.0.08240 - Sony Corporation) Hidden
VAIO Image Optimizer (HKLM-x32\...\InstallShield_{5597C927-029A-46A7-A0C0-8DABD9891A50}) (Version: 3.3.00.10220 - Sony Corporation)
VAIO Image Optimizer (x32 Version: 3.0.00.08170 - Sony Corporation) Hidden
VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 2.0.0.08090 - Sony Corporation)
VAIO Manual (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 3.0.0.08100 - Sony Corporation)
VAIO Media Server Settings (HKLM\...\{62A172B2-550E-499D-9A82-5190D18390AA}) (Version: 1.0.2.11060 - Sony Corporation)
VAIO Movie Creator Template Data (HKLM-x32\...\InstallShield_{00A663F1-6C03-48CA-8E85-55806AAE2615}) (Version: 4.0.00.08170 - Sony Corporation)
VAIO Movie Creator Template Data (x32 Version: 4.0.00.08170 - Sony Corporation) Hidden
VAIO Transfer Support (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.8.0.08212 - Sony Corporation)
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.0.1.02280 - Sony Corporation)
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VHD (x32 Version: 1.0.0 - Sony Corporation) Hidden
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VMLx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VSCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VSSTx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VU5x64 (Version: 1.1.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.1.0 - Sony Corporation ) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
Winrar Activator version 1.2 (HKLM-x32\...\{AE0B3F2A-EB65-4D01-A3E1-6D879C6AAF2A}_is1) (Version: 1.2 - Rarlab)
WinUsb CoInstallers (HKLM-x32\...\{B7D4B08A-9D89-4369-B51C-92CF8C03D2F8}) (Version: 1.1.8.1406 - Nokia)
WinUSB Compatible ID Drivers (HKLM-x32\...\{316ED84C-ACDA-4F1F-8E64-52B7AFF8677D}) (Version: 1.1.9.1439 - Nokia)
WinUSB Drivers ext (HKLM-x32\...\{238EAE31-4E9E-43CF-B244-C4879279E6AF}) (Version: 1.1.12.1439 - Nokia)
XperiaLinkx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3450639996-933504725-588580379-1005_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points  =========================

29-12-2014 02:27:44 Removed VAIO Update
06-01-2015 20:29:09 Scheduled Checkpoint
15-01-2015 22:24:51 Scheduled Checkpoint

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 21:25 - 2015-01-16 12:28 - 00000859 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 updates.conectify.me

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {030692CA-B7E9-4650-8B51-EAF3A2F7331E} - System32\Tasks\Red Giant Link => C:\Program Files (x86)\Red Giant Link\Common\Red Giant Link.exe [2013-01-02] ()
Task: {17CAAC3B-8BF6-4C3E-B749-1F25F6118A0E} - System32\Tasks\Sony Corporation\VAIO Care\UpdateSolution => C:\Program Files\Sony\VAIO Care\Solution.Updater.exe [2014-06-25] (Sony Corporation)
Task: {1EE1C898-EC16-4001-B58F-ADAE73556995} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {27AD8F81-DFC6-40F3-9EFE-A6F36920AAC7} - System32\Tasks\Sony Corporation\VAIO Care\VCSelfHeal => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {295A8C8C-F331-45F8-9386-2DD7B34ACEF1} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-08-18] (Sony Corporation)
Task: {36C0E97A-D7A7-42EF-918A-7A1F682F2DAE} - System32\Tasks\Sony Corporation\VAIO Care\CheckSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {49185D86-8777-4AFD-BB15-6DCB883DF0D0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {4B1EEBE9-31F3-4D77-B7A7-A7B68FBF1107} - System32\Tasks\Connectify Updater => Wscript.exe //nologo //E:jscript //B "C:\Program Files (x86)\Connectify Updater\updater.ini"
Task: {516694DE-F4F2-455F-A35E-DCE8FE99F31A} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorUser => C:\Program Files\Sony\VAIO Improvement\vim.exe [2012-08-10] (Sony Corporation)
Task: {5F077011-8761-4F32-8900-5C46B24BE9E5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-09] (Google Inc.)
Task: {65B523AA-EE55-44BE-8DB9-6CD11FFE4431} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {6F4014F8-5F2D-467B-89EE-BD5A61045B53} - System32\Tasks\gg_uac_daemon_Winfred Arman Lati => C:\Program Files (x86)\Garena Plus\ggdllhost.exe [2013-09-29] ()
Task: {6FD068B6-EFEA-43EE-8E8C-6A9E8F81F11E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {73B0FE85-0417-4A4F-ABFF-5FAEBBDB33B1} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {75FFFAE3-530C-4229-8703-7845D3C1B21F} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2014-03-01] (Sony Corporation)
Task: {8581F964-569E-45AB-8F76-DC7300A52927} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {8AEDB3DB-9F46-41A3-BB0C-8EFCCE7EF1EB} - System32\Tasks\Sony Corporation\Active Clip\Active Clip => C:\Program Files (x86)\Sony\Active Clip\Active Clip.exe [2012-08-18] (Sony Corporation)
Task: {92699331-EB79-4837-9901-5A9794FA289E} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {987A70A8-1B9F-4EA7-B6E9-692E4C730199} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-14] (Adobe Systems Incorporated)
Task: {A9477350-C402-40B6-BDCD-1EAD54C41591} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-01-16] (Microsoft Corporation)
Task: {AA8E42A7-77E5-4C2B-80CE-2405B3AF6BA1} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [2014-01-16] (Sony Corporation)
Task: {AF2D3804-7332-4E2D-BA69-EED47BC96C8D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-09] (Google Inc.)
Task: {BC1100FC-90D9-46CA-BB97-D8A1C9DD6B5F} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementMonitorSystem => C:\Program Files\Sony\VAIO Improvement\vim.exe [2012-08-10] (Sony Corporation)
Task: {BE7A7676-0483-4A92-8006-096572C3CE96} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-winlati@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {C5A5F1DD-85EA-4CEE-94B0-EBC97753969F} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {C98F2A0A-EC18-4D2D-97E7-92BD5CE1FCCE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {CB45BBE8-4269-4EAA-BB63-F0705E757DFA} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {CB95467C-F52F-4FB2-8017-D968C3CB14C4} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2012-08-10] (Sony Corporation)
Task: {D7EAADB5-1A0B-47DC-B23F-FE2ED9B280D9} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {D8ECD80D-CDD1-4F03-9E60-999E3D4EB8AB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {DB374E04-266E-41FF-8BC2-F2792BAD5F03} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2012-08-18] (Sony Corporation)
Task: {E2B9C214-A3DA-44EE-8EC5-02EAA3360853} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {E385D8A4-CBE9-44C2-A463-6EE0D7910FB3} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2014-07-02] (Sony Corporation)
Task: {EDC43FF1-D314-461E-BE1E-DB2C3C83B52F} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2014-02-28] (Sony Corporation)
Task: {EE4AED59-0134-486A-9CAC-D72A3900D5F8} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2012-08-04] (Sony Corporation)
Task: {EEDE9141-9C65-43C1-83E1-0CCEEBC433E4} - System32\Tasks\USER_ESRV_SVC => Wscript.exe //B //NoLogo "C:\Program Files\Sony\VAIO Care\ESRV\task.vbs"
Task: {FCF18060-8DD8-42F5-B274-7899906FB008} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-13] (Piriform Ltd)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Connectify Updater.job =>
 ?wS‘ù@ÉEð±<€þF¦<
 ÿÿÿÿ$„!wscript.exeQ//nologo //E:jscript //B "C:\Program Files (x86)\Connectify Updater\updater.ini"WORKGROUP\WIN$9Provides update functionality to [COMPANY] applications.0ßD
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-11-06 13:24 - 2014-11-06 13:24 - 00082568 _____ () C:\Program Files (x86)\Common Files\Microsoft\Care Suite\ADUService\ADUService.exe
2013-09-29 16:31 - 2013-09-29 16:31 - 00049456 _____ () C:\Program Files (x86)\Garena Plus\ggdllhost.exe
2013-09-29 16:31 - 2014-10-27 15:22 - 09974576 _____ () C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe
2012-08-04 03:15 - 2012-09-04 03:47 - 06597184 _____ () C:\Program Files (x86)\Optical TrackPad\OTPCmd.exe
2013-11-19 10:21 - 2013-11-19 10:21 - 00062464 _____ () C:\Program Files\Sony\VAIO Care\listener.exe
2014-11-09 20:43 - 2014-12-05 10:27 - 00055688 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\QtSolutions_Service-head.dll
2014-11-09 20:43 - 2014-12-05 10:27 - 00104328 _____ () C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\qjson0.dll
2015-01-01 14:09 - 2014-03-05 04:30 - 00376608 _____ () C:\Program Files (x86)\Connectify\NativeLibrary.dll
2015-01-01 14:09 - 2014-03-05 04:30 - 03177760 _____ () C:\Program Files (x86)\Connectify\ConnectifyNAT.dll
2015-01-01 14:09 - 2014-03-05 04:30 - 00714016 _____ () C:\Program Files (x86)\Connectify\log4cplus.dll
2015-01-01 14:09 - 2014-03-05 04:30 - 00354080 _____ () C:\Program Files (x86)\Connectify\LibDispatch.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00553776 _____ () C:\Program Files (x86)\Garena Plus\ggspawn.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00104752 _____ () C:\Program Files (x86)\Garena Plus\CommonLib.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00033584 _____ () C:\Program Files (x86)\Garena Plus\DibModule.dll
2013-09-29 16:31 - 2014-12-09 18:26 - 00034960 _____ () C:\Program Files (x86)\Garena Plus\VersionModule.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00051504 _____ () C:\Program Files (x86)\Garena Plus\FileLoader.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00087344 _____ () C:\Program Files (x86)\Garena Plus\PluginKernel.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00487216 _____ () C:\Program Files (x86)\Garena Plus\CxImage.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00025392 _____ () C:\Program Files (x86)\Garena Plus\PluginModule.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00170800 _____ () C:\Program Files (x86)\Garena Plus\lib\fs\YYFileSystem.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00374064 _____ () C:\Program Files (x86)\Garena Plus\lib\Http.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00184624 _____ () C:\Program Files (x86)\Garena Plus\lib\MP3Module.dll
2012-02-22 16:52 - 2012-02-22 16:52 - 00162304 _____ () C:\Program Files (x86)\Garena Plus\lame_enc.DLL
2013-09-29 16:31 - 2013-09-29 16:31 - 00219952 _____ () C:\Program Files (x86)\Garena Plus\lib\TaskManagerLib.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00106288 _____ () C:\Program Files (x86)\Garena Plus\lib\UILayout.dll
2013-09-29 16:31 - 2014-02-21 16:41 - 00958256 _____ () C:\Program Files (x86)\Garena Plus\lib\XLL.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00055088 _____ () C:\Program Files (x86)\Garena Plus\lib\XmlUIModule.dll
2012-02-22 16:52 - 2012-02-22 16:52 - 00573100 _____ () C:\Program Files (x86)\Garena Plus\sqlite3.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00224560 _____ () C:\Program Files (x86)\Garena Plus\Plugins\StatsPlugin.dll
2013-09-29 16:31 - 2014-11-20 15:54 - 00961680 _____ () C:\Program Files (x86)\Garena Plus\Plugins\ggplugin.dll
2013-09-29 16:31 - 2014-06-11 21:45 - 00192816 _____ () C:\Program Files (x86)\Garena Plus\ImageModule.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00155440 _____ () C:\Program Files (x86)\Garena Plus\libmpg123.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 02941232 _____ () C:\Program Files (x86)\Garena Plus\ggdownloader.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00065840 _____ () C:\Program Files (x86)\Garena Plus\lib\delay_load\AudioMixerLib.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00016688 _____ () C:\Program Files (x86)\Garena Plus\lib\delay_load\ClientTcp.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 01545520 _____ () C:\Program Files (x86)\Garena Plus\lib\delay_load\FileSender.dll
2013-02-01 13:42 - 2013-02-01 13:42 - 00153088 _____ () C:\Program Files (x86)\Garena Plus\libzmq.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00956208 _____ () C:\Program Files (x86)\Garena Plus\lib\delay_load\GaFileTransfer.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00245040 _____ () C:\Program Files (x86)\Garena Plus\lib\delay_load\MediaEngine.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00026416 _____ () C:\Program Files (x86)\Garena Plus\ServerMemAlloc.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00516912 _____ () C:\Program Files (x86)\Garena Plus\lib\delay_load\RSALib.dll
2013-09-29 16:31 - 2013-09-29 16:31 - 00068400 _____ () C:\Program Files (x86)\Garena Plus\lib\delay_load\UdtLib.dll
2015-01-19 04:25 - 2014-12-05 10:27 - 00104328 _____ () C:\Users\Winfred Arman Lati\AppData\Local\Autodesk\.AdskAppManager\R1\qjson0.dll
2014-10-14 23:28 - 2014-10-14 23:28 - 08897696 _____ () C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2012-08-04 03:14 - 2012-07-23 09:52 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Winfred Arman Lati\OneDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Norton Online Backup"

========================= Accounts: ==========================

Administrator (S-1-5-21-3450639996-933504725-588580379-500 - Administrator - Disabled)
Guest (S-1-5-21-3450639996-933504725-588580379-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3450639996-933504725-588580379-1007 - Limited - Enabled)
Winfred Arman Lati (S-1-5-21-3450639996-933504725-588580379-1005 - Administrator - Enabled) => C:\Users\Winfred Arman Lati

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (01/19/2015 04:44:03 AM) (Source: DCOM) (EventID: 10010) (User: WIN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (01/19/2015 04:43:33 AM) (Source: DCOM) (EventID: 10010) (User: WIN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (01/19/2015 04:43:03 AM) (Source: DCOM) (EventID: 10010) (User: WIN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (01/19/2015 04:42:33 AM) (Source: DCOM) (EventID: 10010) (User: WIN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (01/19/2015 04:41:47 AM) (Source: DCOM) (EventID: 10010) (User: WIN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (01/19/2015 04:41:17 AM) (Source: DCOM) (EventID: 10010) (User: WIN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (01/19/2015 04:40:47 AM) (Source: DCOM) (EventID: 10010) (User: WIN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Error: (01/19/2015 04:40:17 AM) (Source: DCOM) (EventID: 10010) (User: WIN)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2015-01-01 15:04:47.690
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-01 14:03:37.740
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-01 14:03:37.362
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-01 14:03:11.272
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-01 12:43:12.979
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-01-01 12:25:36.973
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-12-30 18:38:16.482
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-12-30 15:45:30.753
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-12-24 22:19:13.214
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2014-12-22 12:49:52.431
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: Intel® Core™ i5-3317U CPU @ 1.70GHz
Percentage of memory in use: 56%
Total physical RAM: 3973.75 MB
Available physical RAM: 1734.95 MB
Total Pagefile: 8325.75 MB
Available Pagefile: 5561.75 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:104.22 GB) (Free:33.02 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End Of Log ============================

 

 

 

Thank you so much for your time and effort.

 

EDIT: I forgot to mention that it's still there. I can't browse in IE modern app but browsing, for the most part, works on desktop browsers. Although I can't access Bing, among other sites.

 

Here's what it looks like, just in case:

proxy.png

proxy02.png

What's weird is that this is the only account on this PC and I'm already the administrator.


Edited by greenarcher02, 18 January 2015 - 04:00 PM.


#4 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:26 AM

Posted 18 January 2015 - 04:49 PM

Hey, :)

Step 1: FRST Fix
  • Please open Notepad.exe. Make sure that you don't use any other software than Notepad.exe!
  • Copy and Paste the content of the codebox below into the empty textfile:

    ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
    ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
    SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    Hosts: 127.0.0.1 updates.conectify.me
    AlternateDataStreams: C:\Users\Winfred Arman Lati\OneDrive:ms-properties
    EmptyTemp:
  • Then click on File >> Save as
    • File Name: Fixlist.txt
    • From the Save as type drop down list, choose All Files
  • It is very important that you save this textfile on your Desktop!
Note: It's important that both files, FRST.exe/FRST64.exe and fixlist.txt are in the same location or the fix will not work
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
  • Run FRST.exe/FRST64.exe (Note: If FRST advises there is a new updated version to be downloaded, allow this.)and press the Fix button just once and wait
  • If for some reason the tool needs a restart, please make sure you let the system restart normally, then let the tool complete its run
  • When finished, FRST will generate a log (Fixlog.txt) in the same location the tool was run, please post it to your reply
Step 2: FRST Scan
  • Run FRST. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • Click Scan to start FRST.
  • When FRST finishes scanning, a log, FRST.txt, will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of this log into your next post please.
Step 3: ESET

Please run a free online scan with the ESET Online Scanner:

IMPORTANT: You MUST use Internet Explorer for this step!
  • Visit the ESET Online Scanner Web Page
  • Select the blue Run ESET Online Scanner button:
    ESET1_zps23a5e840.png
  • Tick the box next to YES, I accept the Terms of Use and click Start
    ESET_EULA2_zps9451f1c3.png
  • When asked, allow the ActiveX control to install.
  • Select Enable detection of potentially unwanted applications and select Advanced Settings:
    ESET2_zpsc701c045.png
  • Make sure to check the options Remove found threats and Enable Anti-Stealth technology are checked:
    ESET4_zps0afafd0d.png
  • Click Start. (This scan can take several hours, so please be patient):
    ESET3_zpsccd1657d.png
  • Once the scan is completed, select List of found threats:
    ESET5_zpsd27be299.png
  • Select Export to text file... and save the file as ESETlog.txt on your Desktop:
    ESET6_zpsc17d154e.png
  • Click the Back button.
  • Click the Finish button:
    ESET9_zps51587217.png
  • Use Notepad to open the saved log file (on your Desktop- ESET.txt)[/b]
  • Copy and paste that log as a reply to this topic.
Step 4: Question

How is your PC running?

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#5 greenarcher02

greenarcher02
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:02:26 PM

Posted 19 January 2015 - 10:10 AM

FRST Fix:

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-01-2015 01
Ran by Winfred Arman Lati at 2015-01-19 12:51:33 Run:12
Running from C:\Users\Winfred Arman Lati\Desktop
Loaded Profiles: Winfred Arman Lati (Available profiles: Winfred Arman Lati)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Hosts: 127.0.0.1 updates.conectify.me
AlternateDataStreams: C:\Users\Winfred Arman Lati\OneDrive:ms-properties
EmptyTemp:
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
C:\Users\Winfred Arman Lati\OneDrive => ":ms-properties" ADS removed successfully.
EmptyTemp: => Removed 134.8 MB temporary data.

The system needed a reboot.

==== End of Fixlog 12:51:37 ====

 

 

FRST Scan:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-01-2015 01
Ran by Winfred Arman Lati (administrator) on WIN on 19-01-2015 12:54:34
Running from C:\Users\Winfred Arman Lati\Desktop
Loaded Profiles: Winfred Arman Lati (Available profiles: Winfred Arman Lati)
Platform: Windows 8.1 Single Language (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
() C:\Program Files (x86)\Common Files\Microsoft\Care Suite\ADUService\ADUService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(InstallShield) C:\Program Files (x86)\Connectify Updater\Updater.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyService.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
() C:\Program Files (x86)\Garena Plus\ggdllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\Active Clip\Active Clip.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe
(Realtek Semiconductor Crop.) C:\Program Files\Realtek\Audio\HDA\vncutil64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectify.exe
(Connectify) C:\Program Files (x86)\Connectify\DispatchUI.exe
() C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe
(Spotify Ltd) C:\Users\Winfred Arman Lati\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
() C:\Program Files (x86)\Optical TrackPad\OTPCmd.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Autodesk Inc.) C:\Users\Winfred Arman Lati\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16.0.3327.1030_x64__8wekyb3d8bbwe\onenoteim.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [vncutil] => C:\Program Files\Realtek\Audio\HDA\vncutil64.exe [562792 2012-08-07] (Realtek Semiconductor Crop.)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [Connectify Hotspot] => C:\Program Files (x86)\Connectify\Connectify.exe [3761952 2014-03-05] (Connectify)
HKLM\...\Run: [Connectify Dispatch] => C:\Program Files (x86)\Connectify\DispatchUI.exe [1672992 2014-03-05] (Connectify)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [OTPCmd] => C:\Program Files (x86)\Optical TrackPad\OTPCmd.exe [6597184 2012-09-04] ()
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [493960 2014-12-05] (Autodesk Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [GarenaPlus] => C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe [9974576 2014-10-27] ()
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [Spotify Web Helper] => C:\Users\Winfred Arman Lati\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-13] (Spotify Ltd)
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-13] (Piriform Ltd)
Startup: C:\Users\Winfred Arman Lati\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [HKLM] => ProxyEnable is set.
ProxyEnable: [HKLM-x32] => ProxyEnable is set.
ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
HKU\S-1-5-21-3450639996-933504725-588580379-1005\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-3450639996-933504725-588580379-1005\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://sony13.msn.com
HKU\S-1-5-21-3450639996-933504725-588580379-1005\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://vaio-online.sony.com/
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_257.dll ()
FF Plugin: @java.com/DTPlugin,version=10.5.0 -> C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.5.0 -> C:\WINDOWS\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll ( Garena)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Extension: FlashGot - C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2014-11-09]
FF Extension: QR  Code  - C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default\Extensions\{6a910736-6fab-4480-841a-36325cce134f}.xpi [2014-11-09]

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-12-05] (Autodesk Inc.)
R2 ADUServiceNSRT; C:\Program Files (x86)\Common Files\Microsoft\Care Suite\ADUService\ADUService.exe [82568 2014-11-06] () [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [487936 2014-03-05] (Connectify) [File not signed]
R2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-23] (Intel Corporation)
R2 Intel® Wireless Bluetooth® 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-24] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165760 2012-07-23] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-10-11] ()
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation)
R2 NFCProxyService; C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe [470528 2011-11-16] (Sony Corporation) [File not signed]
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [3563344 2014-11-19] (INCA Internet Co., Ltd.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [200808 2012-08-07] (Realtek Semiconductor)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [266168 2013-11-19] (Intel Corporation)
R2 Updater.exe; C:\Program Files (x86)\Connectify Updater\Updater.exe [39936 2014-11-27] (InstallShield) [File not signed]
S3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2012-11-07] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1642544 2014-02-28] (Sony Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3671792 2013-10-11] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-09-24] (Microsoft Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [132920 2013-04-23] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1385784 2013-06-27] (Motorola Solutions, Inc.)
R1 cnnctfy3; C:\Windows\system32\DRIVERS\cnnctfy3.sys [35352 2015-01-01] (Connectify)
R3 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-11-08] (Disc Soft Ltd)
S3 ggsomc; C:\Windows\System32\drivers\ggsomc.sys [30424 2014-11-30] (Sony Mobile Communications)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344864 2013-09-23] (Intel Corporation)
S3 npkcrypt; C:\Program Files (x86)\Level Up Games\Ragnarok Online\npkcrypt.sys [21442 2012-03-09] (INCA Internet Co., Ltd.) [File not signed]
R3 OTGMouUSB; C:\Windows\system32\DRIVERS\OTGMouUSB.sys [22592 2012-08-23] (CRUCIALTEC Co.,Ltd.)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 qcusbser; C:\Windows\system32\DRIVERS\qcusbser.sys [242688 2013-04-24] (QUALCOMM Incorporated)
R3 semav6thermal64ro; C:\WINDOWS\system32\drivers\semav6thermal64ro.sys [13792 2014-11-09] ()
R3 SensorsAlsDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 SensorsHIDClassDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 SensorsServiceDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 sonyfelicaportm; C:\Windows\System32\Drivers\sonyfelicaportm.sys [45160 2012-07-27] (Sony Corporation)
R3 sonynfcport100c; C:\Windows\System32\Drivers\sonynfcport100c.sys [62056 2012-06-30] (Sony Corporation)
R3 sonynfcport100f; C:\Windows\System32\Drivers\sonynfcport100f.sys [647784 2012-08-30] (Sony Corporation)
R3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 npkycryp; \??\C:\Program Files (x86)\Level Up Games\Ragnarok Online\npkycryp.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-19 04:43 - 2015-01-19 12:54 - 00019282 _____ () C:\Users\Winfred Arman Lati\Desktop\FRST.txt
2015-01-19 04:43 - 2015-01-19 04:44 - 00034131 _____ () C:\Users\Winfred Arman Lati\Desktop\Addition.txt
2015-01-19 04:42 - 2015-01-19 04:42 - 00000000 ____D () C:\Users\Winfred Arman Lati\Desktop\FRST-OlderVersion
2015-01-19 04:39 - 2015-01-19 04:39 - 00000643 _____ () C:\Users\Winfred Arman Lati\Desktop\JRT.txt
2015-01-19 04:37 - 2015-01-19 04:37 - 00000000 ____D () C:\WINDOWS\ERUNT
2015-01-19 04:27 - 2015-01-19 04:27 - 01707939 _____ (Thisisu) C:\Users\Winfred Arman Lati\Desktop\JRT.exe
2015-01-19 01:51 - 2015-01-19 12:52 - 00000308 _____ () C:\WINDOWS\setupact.log
2015-01-19 01:51 - 2015-01-19 04:49 - 00001010 _____ () C:\WINDOWS\PFRO.log
2015-01-19 01:51 - 2015-01-19 01:51 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-01-19 01:49 - 2015-01-19 01:51 - 00000000 ____D () C:\AdwCleaner
2015-01-19 01:43 - 2015-01-19 01:43 - 02186752 _____ () C:\Users\Winfred Arman Lati\Desktop\AdwCleaner.exe
2015-01-16 22:17 - 2015-01-19 12:51 - 00219483 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-16 21:58 - 2015-01-16 21:58 - 00002798 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-01-16 21:58 - 2015-01-16 21:58 - 00000834 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-01-16 21:58 - 2015-01-16 21:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-01-16 21:58 - 2015-01-16 21:58 - 00000000 ____D () C:\Program Files\CCleaner
2015-01-16 21:20 - 2015-01-16 21:20 - 00044226 _____ () C:\Users\Winfred Arman Lati\Downloads\Addition.txt
2015-01-16 21:19 - 2015-01-16 22:20 - 00029949 _____ () C:\Users\Winfred Arman Lati\Downloads\FRST.txt
2015-01-16 21:07 - 2015-01-19 12:54 - 00000000 ____D () C:\FRST
2015-01-16 21:06 - 2015-01-19 04:42 - 02126848 _____ (Farbar) C:\Users\Winfred Arman Lati\Desktop\FRST64.exe
2015-01-15 23:19 - 2014-12-19 14:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-01-15 23:19 - 2014-12-12 10:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-01-15 23:19 - 2014-12-12 08:51 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-01-15 23:19 - 2014-12-09 09:50 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-01-15 23:19 - 2014-12-09 03:42 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-01-15 23:19 - 2014-12-06 11:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-01-15 23:19 - 2014-12-06 09:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-01-15 23:19 - 2014-12-06 09:35 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-01-01 14:28 - 2015-01-01 14:28 - 00000497 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.ics
2015-01-01 14:10 - 2015-01-01 14:10 - 00000380 _____ () C:\Users\Public\Desktop\Connectify Dispatch.lnk
2015-01-01 14:10 - 2015-01-01 14:10 - 00000364 _____ () C:\Users\Public\Desktop\Connectify Hotspot.lnk
2015-01-01 14:10 - 2015-01-01 14:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Connectify
2015-01-01 14:09 - 2015-01-01 14:09 - 00035352 _____ (Connectify) C:\WINDOWS\system32\Drivers\cnnctfy3.sys
2015-01-01 14:06 - 2015-01-01 14:13 - 00000472 _____ () C:\WINDOWS\Tasks\Connectify Updater.job
2015-01-01 14:06 - 2015-01-01 14:13 - 00000000 ____D () C:\ProgramData\Connectify
2015-01-01 14:06 - 2015-01-01 14:09 - 00000000 ____D () C:\Program Files (x86)\Connectify Updater
2015-01-01 14:06 - 2015-01-01 14:06 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Connectify Updater
2015-01-01 14:01 - 2015-01-01 14:01 - 00000000 ____D () C:\Users\Winfred Arman Lati\Downloads\Connectify Hotspot & Dispatch Pro 7.3.3.30440 + Crack (Working Nov14)
2015-01-01 00:50 - 2015-01-01 00:50 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\LooksBuilder
2014-12-29 13:17 - 2014-12-29 13:17 - 00003886 _____ () C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2014-12-29 02:28 - 2014-12-29 02:28 - 00000998 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2014-12-23 19:26 - 2015-01-16 22:17 - 00000000 ____D () C:\Program Files (x86)\Connectify
2014-12-20 02:14 - 2014-12-20 02:14 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\java
2014-12-20 02:14 - 2014-12-20 02:14 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\.minecraft

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-19 12:52 - 2014-11-09 15:08 - 00003496 _____ () C:\WINDOWS\System32\Tasks\gg_uac_daemon_Winfred Arman Lati
2015-01-19 12:52 - 2014-11-09 14:52 - 00000910 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-19 12:52 - 2014-11-08 15:42 - 00000000 __RDO () C:\Users\Winfred Arman Lati\OneDrive
2015-01-19 12:52 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-01-19 12:52 - 2013-08-22 22:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-19 12:51 - 2013-08-22 21:25 - 00786432 ___SH () C:\WINDOWS\system32\config\BBI
2015-01-19 12:18 - 2014-11-09 15:23 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\uTorrent
2015-01-19 12:18 - 2014-09-24 15:20 - 00865408 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-19 05:03 - 2014-11-06 21:57 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3450639996-933504725-588580379-1005
2015-01-19 04:53 - 2014-11-09 15:08 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\GarenaPlus
2015-01-19 04:53 - 2014-11-09 15:07 - 00000000 ____D () C:\ProgramData\GarenaMessenger
2015-01-19 04:28 - 2014-12-13 22:29 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-19 04:20 - 2014-11-08 16:09 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\Spotify
2015-01-19 04:14 - 2014-11-08 17:08 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-01-19 04:07 - 2014-11-09 14:52 - 00000914 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-19 02:00 - 2014-11-09 13:46 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\Adobe
2015-01-19 01:34 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-01-16 22:17 - 2014-12-09 04:01 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\TeamViewer
2015-01-16 22:17 - 2014-11-09 07:29 - 00000000 ___DC () C:\WINDOWS\Panther
2015-01-16 22:17 - 2014-11-08 16:59 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\DAEMON Tools Lite
2015-01-16 20:41 - 2014-11-08 17:08 - 00001114 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-01-16 20:41 - 2014-11-08 17:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-16 20:41 - 2014-11-08 17:08 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-16 12:11 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2015-01-16 12:01 - 2014-11-07 00:20 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-16 12:01 - 2012-07-26 15:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-01-16 11:58 - 2014-11-07 00:20 - 113365784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-01-14 21:28 - 2014-12-13 22:29 - 00003718 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-01-13 20:27 - 2014-11-08 16:15 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\Spotify
2015-01-10 21:07 - 2014-11-06 21:44 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\Packages
2015-01-06 08:08 - 2014-09-24 18:03 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-01-06 08:08 - 2014-09-24 18:03 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-01 15:11 - 2012-08-04 03:27 - 00000000 ____D () C:\ProgramData\boost_interprocess
2015-01-01 00:50 - 2014-11-09 14:04 - 00000000 ____D () C:\Users\Winfred Arman Lati\Documents\Adobe
2014-12-31 21:44 - 2014-11-09 00:37 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\iolo
2014-12-31 19:14 - 2014-11-06 22:34 - 00298120 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-12-29 13:15 - 2014-11-06 21:08 - 00000000 ____D () C:\Update
2014-12-29 02:28 - 2012-08-04 03:19 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Sony Corporation
2014-12-29 02:28 - 2012-07-26 11:31 - 00000000 ____D () C:\ProgramData\Sony Corporation
2014-12-29 02:27 - 2012-08-04 03:12 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-12-22 00:59 - 2014-11-09 02:13 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-12-21 20:25 - 2014-11-09 20:44 - 00000000 ____D () C:\Users\Winfred Arman Lati\Documents\Autodesk Application Manager
2014-12-21 19:58 - 2014-11-09 14:45 - 00000034 _____ () C:\Users\Winfred Arman Lati\AppData\Roaming\AdobeWLCMCache.dat

==================== Files in the root of some directories =======
2014-11-09 14:45 - 2014-12-21 19:58 - 0000034 _____ () C:\Users\Winfred Arman Lati\AppData\Roaming\AdobeWLCMCache.dat
2014-11-13 13:53 - 2014-11-13 19:56 - 0003072 _____ () C:\Users\Winfred Arman Lati\AppData\Roaming\Photobook Designer Prefsv3
2012-08-04 03:12 - 2012-08-04 03:12 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-01-19 05:03

==================== End Of Log ============================

 

ESET:

There were no threats found and I didn't see an option to export to text file:

eset_no_threats.png

 

The problem is still there, unfortunately. Am I doing anything wrong? If so, I'm really sorry. And thank you for all your help.


Edited by greenarcher02, 19 January 2015 - 10:12 AM.


#6 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:26 AM

Posted 20 January 2015 - 11:25 AM

Hey, :)
  • Please open Notepad.exe. Make sure that you don't use any other software than Notepad.exe!
  • Copy and Paste the content of the codebox below into the empty textfile:

    ProxyEnable: [HKLM] => ProxyEnable is set.
    ProxyEnable: [HKLM-x32] => ProxyEnable is set.
    ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
    ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
    
  • Then click on File >> Save as
    • File Name: Fixlist.txt
    • From the Save as type drop down list, choose All Files
  • It is very important that you save this textfile on your Desktop!
Note: It's important that both files, FRST.exe/FRST64.exe and fixlist.txt are in the same location or the fix will not work
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
  • Run FRST.exe/FRST64.exe (Note: If FRST advises there is a new updated version to be downloaded, allow this.)and press the Fix button just once and wait
  • If for some reason the tool needs a restart, please make sure you let the system restart normally, then let the tool complete its run
  • When finished, FRST will generate a log (Fixlog.txt) in the same location the tool was run, please post it to your reply
Still issues?

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#7 greenarcher02

greenarcher02
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:02:26 PM

Posted 20 January 2015 - 12:03 PM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-01-2015 01
Ran by Winfred Arman Lati at 2015-01-21 00:59:59 Run:14
Running from C:\Users\Winfred Arman Lati\Desktop
Loaded Profiles: Winfred Arman Lati (Available profiles: Winfred Arman Lati)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
ProxyEnable: [HKLM] => ProxyEnable is set.
ProxyEnable: [HKLM-x32] => ProxyEnable is set.
ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.

==== End of Fixlog 01:00:00 ====

 

It didn't require a restart, and it went okay for a while. Until I restarted. The proxy settings came back after restarting the PC :(



#8 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:26 AM

Posted 20 January 2015 - 01:56 PM

Hey, :)

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe to run the tool for known TDSS variants. Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process. Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#9 greenarcher02

greenarcher02
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:02:26 PM

Posted 21 January 2015 - 07:01 AM

Nothing was found. I'm cutting the logs in 2 since it said the post is too long.

 

19:43:25.0416 0x1bb4  TDSS rootkit removing tool 3.0.0.43 Jan 19 2015 18:43:19
19:43:25.0416 0x1bb4  UEFI system
19:43:31.0707 0x1bb4  ============================================================
19:43:31.0707 0x1bb4  Current date / time: 2015/01/21 19:43:31.0707
19:43:31.0707 0x1bb4  SystemInfo:
19:43:31.0707 0x1bb4  
19:43:31.0707 0x1bb4  OS Version: 6.3.9600 ServicePack: 0.0
19:43:31.0707 0x1bb4  Product type: Workstation
19:43:31.0707 0x1bb4  ComputerName: WIN
19:43:31.0708 0x1bb4  UserName: Winfred Arman Lati
19:43:31.0708 0x1bb4  Windows directory: C:\WINDOWS
19:43:31.0708 0x1bb4  System windows directory: C:\WINDOWS
19:43:31.0708 0x1bb4  Running under WOW64
19:43:31.0708 0x1bb4  Processor architecture: Intel x64
19:43:31.0708 0x1bb4  Number of processors: 4
19:43:31.0708 0x1bb4  Page size: 0x1000
19:43:31.0708 0x1bb4  Boot type: Normal boot
19:43:31.0708 0x1bb4  ============================================================
19:43:31.0861 0x1bb4  KLMD registered as C:\WINDOWS\system32\drivers\82258830.sys
19:43:32.0005 0x1bb4  System UUID: {0EC15039-99B8-5D57-F3EC-60215002BBD5}
19:43:32.0402 0x1bb4  Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:43:32.0406 0x1bb4  ============================================================
19:43:32.0406 0x1bb4  \Device\Harddisk0\DR0:
19:43:32.0406 0x1bb4  GPT partitions:
19:43:32.0407 0x1bb4  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {F4019732-066E-4E12-8273-346C5641494F}, UniqueGUID: {62E7FEF0-BBCF-4259-A298-A30EB988F060}, Name: , StartLBA 0x800, BlocksNum 0x82000
19:43:32.0407 0x1bb4  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {E65E4AEF-1DAD-4D2B-90AC-7390D875A042}, Name: , StartLBA 0x82800, BlocksNum 0x2E1000
19:43:32.0407 0x1bb4  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {9DD84880-47DB-4801-B6FE-A41CBAD6F171}, Name: EFI system partition, StartLBA 0x363800, BlocksNum 0x82000
19:43:32.0407 0x1bb4  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {49FF10AD-3376-4DF7-9D0C-08226B104F44}, Name: Microsoft reserved partition, StartLBA 0x3E5800, BlocksNum 0x40000
19:43:32.0407 0x1bb4  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {67FBABC2-B86B-4AC6-9F56-F38A88797691}, Name: Basic data partition, StartLBA 0x425800, BlocksNum 0xD06E800
19:43:32.0407 0x1bb4  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {BF76CCB0-AF6D-4E8F-A995-1EEF329E0EE3}, Name: , StartLBA 0xD494000, BlocksNum 0xE1000
19:43:32.0407 0x1bb4  \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {2FAABAAD-AD09-4F4E-9EF6-2146B08069BD}, Name: , StartLBA 0xD575000, BlocksNum 0x1907000
19:43:32.0407 0x1bb4  MBR partitions:
19:43:32.0407 0x1bb4  ============================================================
19:43:32.0408 0x1bb4  C: <-> \Device\Harddisk0\DR0\Partition5
19:43:32.0408 0x1bb4  ============================================================
19:43:32.0408 0x1bb4  Initialize success
19:43:32.0408 0x1bb4  ============================================================
19:43:56.0909 0x2220  ============================================================
19:43:56.0909 0x2220  Scan started
19:43:56.0909 0x2220  Mode: Manual;
19:43:56.0909 0x2220  ============================================================
19:43:56.0909 0x2220  KSN ping started
19:43:59.0423 0x2220  KSN ping finished: true
19:43:59.0724 0x2220  ================ Scan system memory ========================
19:43:59.0724 0x2220  System memory - ok
19:43:59.0725 0x2220  ================ Scan services =============================
19:43:59.0775 0x2220  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
19:43:59.0783 0x2220  1394ohci - ok
19:43:59.0794 0x2220  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
19:43:59.0797 0x2220  3ware - ok
19:43:59.0816 0x2220  [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
19:43:59.0830 0x2220  ACPI - ok
19:43:59.0836 0x2220  [ CFA8E06DEFA40BA2702FA92A98BDAA86, CDAD728F6E65026C6B8F348FE09312D024674FB4FDE08749D836EF4FFCF99F0F ] acpials         C:\WINDOWS\System32\drivers\acpials.sys
19:43:59.0837 0x2220  acpials - ok
19:43:59.0842 0x2220  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
19:43:59.0844 0x2220  acpiex - ok
19:43:59.0848 0x2220  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
19:43:59.0849 0x2220  acpipagr - ok
19:43:59.0855 0x2220  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
19:43:59.0856 0x2220  AcpiPmi - ok
19:43:59.0860 0x2220  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
19:43:59.0861 0x2220  acpitime - ok
19:43:59.0878 0x2220  [ CBDF353624D1744734F2FD13B4786F90, 615C695F842D2F777C7D0DAA19B3674AB903FDC401E22A130C04DB0D0C1486D2 ] AdAppMgrSvc     C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
19:43:59.0891 0x2220  AdAppMgrSvc - ok
19:43:59.0897 0x2220  [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:43:59.0899 0x2220  AdobeARMservice - ok
19:43:59.0923 0x2220  [ CB1719E3EA00A0C114A8AD2655F43754, B38D21C4A7A83904CADEBA96A56AA5D1807C412A8E0BEFC889DF20D02941E570 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:43:59.0928 0x2220  AdobeFlashPlayerUpdateSvc - ok
19:43:59.0950 0x2220  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
19:43:59.0965 0x2220  ADP80XX - ok
19:43:59.0972 0x2220  [ 02CB607A0EDCDF57F61F166F51F5BBF4, 8706392144A47982BB36D8B08F833F8928A12F2DF18C557FEA2A88536B2BE675 ] ADUServiceNSRT  C:\Program Files (x86)\Common Files\Microsoft\Care Suite\ADUService\ADUService.exe
19:43:59.0974 0x2220  ADUServiceNSRT - ok
19:43:59.0982 0x2220  [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
19:43:59.0987 0x2220  AeLookupSvc - ok
19:44:00.0002 0x2220  [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
19:44:00.0013 0x2220  AFD - ok
19:44:00.0020 0x2220  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
19:44:00.0022 0x2220  agp440 - ok
19:44:00.0028 0x2220  [ F0CB6DB513CAC393D04A0FCE0A59E1BF, E6EE159D0E6B1F666946B1FE421874044E89BB2EB60A521BAA111A1229FA7B2D ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
19:44:00.0029 0x2220  ahcache - ok
19:44:00.0035 0x2220  [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG             C:\WINDOWS\System32\alg.exe
19:44:00.0037 0x2220  ALG - ok
19:44:00.0045 0x2220  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
19:44:00.0047 0x2220  AmdK8 - ok
19:44:00.0054 0x2220  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
19:44:00.0057 0x2220  AmdPPM - ok
19:44:00.0063 0x2220  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
19:44:00.0065 0x2220  amdsata - ok
19:44:00.0074 0x2220  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
19:44:00.0080 0x2220  amdsbs - ok
19:44:00.0084 0x2220  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
19:44:00.0085 0x2220  amdxata - ok
19:44:00.0093 0x2220  [ 4DE4BE679205B3A712562507AEE75227, 1C40F14A2BFFFB8E9646B57419D9F810A86D0DCD94F9DE9D9851D498F86F343E ] AMPPAL          C:\WINDOWS\System32\drivers\AMPPAL.sys
19:44:00.0096 0x2220  AMPPAL - ok
19:44:00.0103 0x2220  [ 4DE4BE679205B3A712562507AEE75227, 1C40F14A2BFFFB8E9646B57419D9F810A86D0DCD94F9DE9D9851D498F86F343E ] AMPPALP         C:\WINDOWS\system32\DRIVERS\amppal.sys
19:44:00.0107 0x2220  AMPPALP - ok
19:44:00.0127 0x2220  [ 03CA03047B1CEC93D459BAF5E5BB22B1, 7506CEBCE4A8B113467430BDB54A5434E538AAC39E4BB421E4E0B50F7C931457 ] AMPPALR3        C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
19:44:00.0142 0x2220  AMPPALR3 - ok
19:44:00.0148 0x2220  [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID           C:\WINDOWS\system32\drivers\appid.sys
19:44:00.0150 0x2220  AppID - ok
19:44:00.0155 0x2220  [ 34B2E222F82D05398DAE7203B36B6A2B, AC04BC6B5A36A6807FFE302E9ACF073342B4D76B0BB386249251CB3CA1852CE8 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
19:44:00.0156 0x2220  AppIDSvc - ok
19:44:00.0162 0x2220  [ 680BFB820C5A943AB709BAA2B1EF27F2, A51D2A7976A762FE470C13C6D1BA0319A0FB19C9E66BF02AA44F83EAEC7130F8 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
19:44:00.0165 0x2220  Appinfo - ok
19:44:00.0182 0x2220  [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
19:44:00.0193 0x2220  AppReadiness - ok
19:44:00.0224 0x2220  [ 573542B5E97772021B73E854DA861DAA, C3FD00FA28060F8D7CDFD455BBB5FF8239CB76DDFFF2BDAE6AA944674DD993D3 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
19:44:00.0250 0x2220  AppXSvc - ok
19:44:00.0258 0x2220  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
19:44:00.0260 0x2220  arcsas - ok
19:44:00.0266 0x2220  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
19:44:00.0267 0x2220  atapi - ok
19:44:00.0276 0x2220  [ 8779FDAE68BC948B0FE152E758CC8DA7, 13070C2073F8E7546B48AE9CF54067B9BB75DFCD98F2987B90FFAD20D40D54CF ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
19:44:00.0281 0x2220  AudioEndpointBuilder - ok
19:44:00.0304 0x2220  [ 61EA45A645854FE81D8A924E2D93DFFE, 34F79532297F609CA93C380B68BB8B7B0F027F9C8F4FB8E02A9A43EA3D155F1B ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
19:44:00.0321 0x2220  Audiosrv - ok
19:44:00.0327 0x2220  [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
19:44:00.0330 0x2220  AxInstSV - ok
19:44:00.0346 0x2220  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
19:44:00.0356 0x2220  b06bdrv - ok
19:44:00.0362 0x2220  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
19:44:00.0363 0x2220  BasicDisplay - ok
19:44:00.0368 0x2220  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
19:44:00.0370 0x2220  BasicRender - ok
19:44:00.0376 0x2220  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
19:44:00.0378 0x2220  bcmfn2 - ok
19:44:00.0389 0x2220  [ 77D760E9B477C21487C171F561497F98, 2393D466CEC863C771C5BB4CD81B251635DC084386134B8E13F74F3E1C6D68DF ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
19:44:00.0396 0x2220  BDESVC - ok
19:44:00.0402 0x2220  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
19:44:00.0403 0x2220  Beep - ok
19:44:00.0427 0x2220  [ 22A5582ACF0CEE97268D7868C69F35CE, 78A44C10966FE467D3FCC76BE37647AE2CC2BCA9DE5715AD9E643162B23C3A19 ] BFE             C:\WINDOWS\System32\bfe.dll
19:44:00.0443 0x2220  BFE - ok
19:44:00.0467 0x2220  [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS            C:\WINDOWS\System32\qmgr.dll
19:44:00.0488 0x2220  BITS - ok
19:44:00.0556 0x2220  [ E7429ECD0C47CC065EEACF7E9D0E6341, 10D8231E14C908A0949108EB5F84E17BA10ABFC370D0C5F65945B23879AB12BF ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
19:44:00.0578 0x2220  Bluetooth Device Monitor - ok
19:44:00.0607 0x2220  [ 9C0FDB0E3CFE542847E5140FAF17E89F, 290C08C0F8413D15BA41BEFC3D5A9D3E97FB6C55B91FE80D518BEA95A2838173 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
19:44:00.0628 0x2220  Bluetooth OBEX Service - ok
19:44:00.0635 0x2220  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
19:44:00.0638 0x2220  bowser - ok
19:44:00.0648 0x2220  [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
19:44:00.0654 0x2220  BrokerInfrastructure - ok
19:44:00.0661 0x2220  [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser         C:\WINDOWS\System32\browser.dll
19:44:00.0664 0x2220  Browser - ok
19:44:00.0669 0x2220  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
19:44:00.0671 0x2220  BthAvrcpTg - ok
19:44:00.0677 0x2220  [ 1104A31260CCF4318C884E0AE6C513BF, A8F83B558944DEF0F84414A11DC3CB90C3A92377B46760EC0A9B8BC22FB0D5C7 ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
19:44:00.0679 0x2220  BthEnum - ok
19:44:00.0686 0x2220  [ 67343511D80BF3D6D9EEDB5BA8D0B06B, 28436B2E62762686C4FF4FA3F9E7ABB56DA9D6884B6C924ACC544161400593DD ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
19:44:00.0688 0x2220  BthHFEnum - ok
19:44:00.0693 0x2220  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
19:44:00.0695 0x2220  bthhfhid - ok
19:44:00.0709 0x2220  [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
19:44:00.0717 0x2220  BthHFSrv - ok
19:44:00.0728 0x2220  [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum       C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
19:44:00.0734 0x2220  BthLEEnum - ok
19:44:00.0741 0x2220  [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
19:44:00.0743 0x2220  BTHMODEM - ok
19:44:00.0749 0x2220  [ 25BB93167DEF270188072603F92A1EF5, CE4637CE4B63420E218F53CAF89A8C85D036B879B80456FEF3C7C395590E26BB ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
19:44:00.0753 0x2220  BthPan - ok
19:44:00.0786 0x2220  [ C37F4930795B771400C63C3C87E7A6C2, 0D0F54184B2DAA45F646E4F69B85C4411E8DFA88EB4763BB0F386055A420F217 ] BTHPORT         C:\WINDOWS\System32\Drivers\BTHport.sys
19:44:00.0815 0x2220  BTHPORT - ok
19:44:00.0822 0x2220  [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv         C:\WINDOWS\system32\bthserv.dll
19:44:00.0824 0x2220  bthserv - ok
19:44:00.0830 0x2220  [ D30286FF3C7B6318C024D2BC2955C1BF, 47863D046C94A5C19F7D4E0BA393E6FE1E249C78FAB9B8705F7DD2CD87EAC16C ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
19:44:00.0833 0x2220  BTHSSecurityMgr - ok
19:44:00.0840 0x2220  [ 08EA90955AED2D959EE67DF6EDF0E2B6, 0A70AA67E5DD24C473C66A570C0FEBA9D398A0F0AD8386FE05D01C4D16346968 ] BTHUSB          C:\WINDOWS\System32\Drivers\BTHUSB.sys
19:44:00.0843 0x2220  BTHUSB - ok
19:44:00.0849 0x2220  [ 5B8D71504FA8BFA308F6E1169B89D322, 1DC0CF47C5F655EA0F0992020C17A86D05637F55ACBB17380283EBB883A4D14D ] btmaux          C:\WINDOWS\system32\DRIVERS\btmaux.sys
19:44:00.0853 0x2220  btmaux - ok
19:44:00.0885 0x2220  [ E36C1C48F1BC6EFFAEC0930C33DF052A, 0980B5222F4C53DD0F6602AF412850385A0418F2E8685AF85DC430C411AC79B7 ] btmhsf          C:\WINDOWS\system32\DRIVERS\btmhsf.sys
19:44:00.0913 0x2220  btmhsf - ok
19:44:00.0920 0x2220  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
19:44:00.0921 0x2220  cdfs - ok
19:44:00.0930 0x2220  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
19:44:00.0933 0x2220  cdrom - ok
19:44:00.0940 0x2220  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
19:44:00.0944 0x2220  CertPropSvc - ok
19:44:00.0950 0x2220  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
19:44:00.0952 0x2220  circlass - ok
19:44:00.0964 0x2220  [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
19:44:00.0972 0x2220  CLFS - ok
19:44:00.0984 0x2220  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
19:44:00.0985 0x2220  CmBatt - ok
19:44:01.0001 0x2220  [ 114AAF528D3D87D306F3682E618E8091, A030AC04AF042F8F4BB95A9CE2B442D31432C4EEE60502279F169B0FA2E52AAB ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
19:44:01.0013 0x2220  CNG - ok
19:44:01.0020 0x2220  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
19:44:01.0021 0x2220  CompositeBus - ok
19:44:01.0026 0x2220  COMSysApp - ok
19:44:01.0032 0x2220  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
19:44:01.0032 0x2220  condrv - ok
19:44:01.0057 0x2220  [ D8724B606616B2B75AF54096119580F5, 53E1DEF9F966FDE5898759A33FB62B5062A941E97B235D6F6EF79A5AD1283BDE ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
19:44:01.0063 0x2220  cphs - ok
19:44:01.0072 0x2220  [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
19:44:01.0075 0x2220  CryptSvc - ok
19:44:01.0079 0x2220  [ 389C998C64319CD97625B0550E52ECFA, DD0EDDD9C8412F78D2D2B648D67DA887C3040E05DF29F48F71299CB68FDDD0F8 ] dam             C:\WINDOWS\system32\drivers\dam.sys
19:44:01.0082 0x2220  dam - ok
19:44:01.0105 0x2220  [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
19:44:01.0122 0x2220  DcomLaunch - ok
19:44:01.0135 0x2220  [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
19:44:01.0146 0x2220  defragsvc - ok
19:44:01.0159 0x2220  [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
19:44:01.0167 0x2220  DeviceAssociationService - ok
19:44:01.0174 0x2220  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
19:44:01.0178 0x2220  DeviceInstall - ok
19:44:01.0185 0x2220  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
19:44:01.0188 0x2220  Dfsc - ok
19:44:01.0200 0x2220  [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
19:44:01.0208 0x2220  Dhcp - ok
19:44:01.0215 0x2220  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\WINDOWS\system32\drivers\disk.sys
19:44:01.0217 0x2220  disk - ok
19:44:01.0222 0x2220  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
19:44:01.0223 0x2220  dmvsc - ok
19:44:01.0232 0x2220  [ E9AE4FAE83FB38A2962F9032B24CEB3C, CC7D2D8C97CB779791613D76D6E4AF5D628C948C28BAC584C3C7F6A5A6036FBA ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
19:44:01.0238 0x2220  Dnscache - ok
19:44:01.0247 0x2220  [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
19:44:01.0253 0x2220  dot3svc - ok
19:44:01.0260 0x2220  [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS             C:\WINDOWS\system32\dps.dll
19:44:01.0264 0x2220  DPS - ok
19:44:01.0269 0x2220  [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
19:44:01.0270 0x2220  drmkaud - ok
19:44:01.0278 0x2220  [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
19:44:01.0283 0x2220  DsmSvc - ok
19:44:01.0293 0x2220  [ 33F90B202E9DD9B7D489EB59310FDC34, 6ECF6669433E090E9CF6B1875AF18D2C06F8CDB3901D58BF89C3E2202574ABBD ] dtsoftbus01     C:\WINDOWS\System32\drivers\dtsoftbus01.sys
19:44:01.0299 0x2220  dtsoftbus01 - ok
19:44:01.0335 0x2220  [ E1BB0B6F00F470B451AB45EA13EBA0B3, 3A2FC2175B69A5EB98D6C2D563DBFDCB320647AB87A14E47FAE800423DCACDAB ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
19:44:01.0364 0x2220  DXGKrnl - ok
19:44:01.0371 0x2220  [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
19:44:01.0374 0x2220  Eaphost - ok
19:44:01.0448 0x2220  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
19:44:01.0512 0x2220  ebdrv - ok
19:44:01.0521 0x2220  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS             C:\WINDOWS\System32\lsass.exe
19:44:01.0523 0x2220  EFS - ok
19:44:01.0529 0x2220  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
19:44:01.0531 0x2220  EhStorClass - ok
19:44:01.0539 0x2220  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
19:44:01.0542 0x2220  EhStorTcgDrv - ok
19:44:01.0546 0x2220  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
19:44:01.0547 0x2220  ErrDev - ok
19:44:01.0565 0x2220  [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem     C:\WINDOWS\system32\es.dll
19:44:01.0575 0x2220  EventSystem - ok
19:44:01.0593 0x2220  [ 55588867D59BADA2F62E58618CE32B03, F7FAF420103272151194A475D6C8EF4449AFCED787AA3DF7C461370D828E522F ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
19:44:01.0605 0x2220  EvtEng - ok
19:44:01.0613 0x2220  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
19:44:01.0618 0x2220  exfat - ok
19:44:01.0627 0x2220  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
19:44:01.0632 0x2220  fastfat - ok
19:44:01.0650 0x2220  [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax             C:\WINDOWS\system32\fxssvc.exe
19:44:01.0663 0x2220  Fax - ok
19:44:01.0668 0x2220  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
19:44:01.0669 0x2220  fdc - ok
19:44:01.0674 0x2220  [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
19:44:01.0676 0x2220  fdPHost - ok
19:44:01.0681 0x2220  [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
19:44:01.0683 0x2220  FDResPub - ok
19:44:01.0690 0x2220  [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
19:44:01.0693 0x2220  fhsvc - ok
19:44:01.0698 0x2220  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
19:44:01.0700 0x2220  FileInfo - ok
19:44:01.0705 0x2220  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
19:44:01.0706 0x2220  Filetrace - ok
19:44:01.0737 0x2220  [ 8645F91F40B8D022C9AC3DABDF360A6B, 4F83080B1273C92470EB90D80B32056C913240DCC9C4C50B7BE85254066D654D ] FlexNet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
19:44:01.0763 0x2220  FlexNet Licensing Service 64 - ok
19:44:01.0769 0x2220  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
19:44:01.0770 0x2220  flpydisk - ok
19:44:01.0781 0x2220  [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
19:44:01.0789 0x2220  FltMgr - ok
19:44:01.0822 0x2220  [ 7269C9013FCFA3C6E70F03E2630DBFC3, AAB282B4444CC17D197974D05063C7C97E5202E604681DD2DC3BCF0AE77D6057 ] FontCache       C:\WINDOWS\system32\FntCache.dll
19:44:01.0847 0x2220  FontCache - ok
19:44:01.0854 0x2220  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:44:01.0855 0x2220  FontCache3.0.0.0 - ok
19:44:01.0860 0x2220  [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
19:44:01.0862 0x2220  FsDepends - ok
19:44:01.0866 0x2220  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:44:01.0867 0x2220  Fs_Rec - ok
19:44:01.0884 0x2220  [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
19:44:01.0895 0x2220  fvevol - ok
19:44:01.0901 0x2220  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
19:44:01.0902 0x2220  FxPPM - ok
19:44:01.0907 0x2220  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
19:44:01.0909 0x2220  gagp30kx - ok
19:44:01.0913 0x2220  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
19:44:01.0915 0x2220  gencounter - ok
19:44:01.0920 0x2220  [ A1F556318931B9EA276F4E2DA2C1791C, 1E5564A9B213689C56BFBBEC1A7BBFAD78DF1FB55422171C0680935338C5DE57 ] ggflt           C:\WINDOWS\System32\drivers\ggflt.sys
19:44:01.0921 0x2220  ggflt - ok
19:44:01.0926 0x2220  [ 6B503DF845EABF3457E49FBBDA26C10E, A1553E3822EDEA26D8E67FCC7F9EA40DFBED49EC92FD5674AAF938F2D58CF964 ] ggsemc          C:\WINDOWS\System32\drivers\ggsemc.sys
19:44:01.0927 0x2220  ggsemc - ok
19:44:01.0933 0x2220  [ 7F56A3E09A6AD40B07E4EFAD34A40A18, E0EC4293035162E9EFA89A45FFF26B5BC829F7BB7F4D2D5A2CAA5E88AC6DC0C9 ] ggsomc          C:\WINDOWS\System32\drivers\ggsomc.sys
19:44:01.0933 0x2220  ggsomc - ok
19:44:01.0941 0x2220  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
19:44:01.0944 0x2220  GPIOClx0101 - ok
19:44:01.0977 0x2220  [ 0D03F87D4FF4ADBAF8336DD80548155A, BC10CFA88EA2F41A8D96CB810B7953A4C168B79273A3E804A9F020F49AB58CD3 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
19:44:02.0003 0x2220  gpsvc - ok
19:44:02.0011 0x2220  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:44:02.0015 0x2220  gupdate - ok
19:44:02.0019 0x2220  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:44:02.0022 0x2220  gupdatem - ok
19:44:02.0027 0x2220  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
19:44:02.0030 0x2220  HDAudBus - ok
19:44:02.0034 0x2220  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
19:44:02.0035 0x2220  HidBatt - ok
19:44:02.0042 0x2220  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
19:44:02.0045 0x2220  HidBth - ok
19:44:02.0050 0x2220  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
19:44:02.0052 0x2220  hidi2c - ok
19:44:02.0058 0x2220  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
19:44:02.0059 0x2220  HidIr - ok
19:44:02.0064 0x2220  [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv         C:\WINDOWS\system32\hidserv.dll
19:44:02.0065 0x2220  hidserv - ok
19:44:02.0070 0x2220  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
19:44:02.0072 0x2220  HidUsb - ok
19:44:02.0077 0x2220  [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
19:44:02.0080 0x2220  hkmsvc - ok
19:44:02.0090 0x2220  [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
19:44:02.0096 0x2220  HomeGroupListener - ok
19:44:02.0111 0x2220  [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
19:44:02.0121 0x2220  HomeGroupProvider - ok
19:44:02.0127 0x2220  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
19:44:02.0129 0x2220  HpSAMD - ok
19:44:02.0154 0x2220  [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
19:44:02.0174 0x2220  HTTP - ok
19:44:02.0180 0x2220  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
19:44:02.0182 0x2220  hwpolicy - ok
19:44:02.0187 0x2220  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
19:44:02.0188 0x2220  hyperkbd - ok
19:44:02.0193 0x2220  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
19:44:02.0194 0x2220  HyperVideo - ok
19:44:02.0203 0x2220  [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
19:44:02.0207 0x2220  i8042prt - ok
19:44:02.0212 0x2220  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
19:44:02.0213 0x2220  iaLPSSi_GPIO - ok
19:44:02.0219 0x2220  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
19:44:02.0221 0x2220  iaLPSSi_I2C - ok
19:44:02.0239 0x2220  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
19:44:02.0250 0x2220  iaStorA - ok
19:44:02.0268 0x2220  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
19:44:02.0284 0x2220  iaStorAV - ok
19:44:02.0289 0x2220  [ 20E83F4632E15A5E9E716FF2E8AC7FAE, 7CA1A4924F432AD30ED7FA6247C6513DA173EE31132AE115E85C0ED7E5971029 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
19:44:02.0290 0x2220  IAStorDataMgrSvc - ok
19:44:02.0310 0x2220  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
19:44:02.0318 0x2220  iaStorV - ok
19:44:02.0324 0x2220  [ 23E22B130EFE5A225E279467BE146317, 2302C119FE9C57F3A71DFE504489423B6F7140E2DFF5D501883AD971CB671CB4 ] iBtFltCoex      C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys
19:44:02.0327 0x2220  iBtFltCoex - ok
19:44:02.0330 0x2220  IEEtwCollectorService - ok
19:44:02.0409 0x2220  [ 076023219E918D34585B231029A44571, C2AB0DE0D80D0BC6595C9F9655A890531E7952599714DC03B4ECB46947D833A8 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
19:44:02.0484 0x2220  igfx - ok
19:44:02.0500 0x2220  [ C814D4A0B7B91E936B2DC0828C69ACAB, A19B503CB3C598474C61DA6F1AC087CCF287F7523D2F932B21EF21E7CA1809B1 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
19:44:02.0506 0x2220  igfxCUIService1.0.0.0 - ok
19:44:02.0532 0x2220  [ 57322EBB67A59FB64E228F31A84CA43D, 258DA26BDFAB635F145E55CF65CDFCFE4EB91454E3F930489E92810250EF9FD7 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
19:44:02.0552 0x2220  IKEEXT - ok
19:44:02.0560 0x2220  [ FC7C456AF9B9811499EDBD10616832EE, CA2D8B0E672D3AE449C2FF0B9E142D74E8C72FD877D11162A9F7CC51AF58220F ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
19:44:02.0561 0x2220  intaud_WaveExtensible - ok
19:44:02.0643 0x2220  [ DDC860724AEF8F8E42AC61E6585769C6, 62AD5772E8097B03E161E6F14582E2A4BBA0DFA1A1E7F664D881D464E136DBD2 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
19:44:02.0724 0x2220  IntcAzAudAddService - ok
19:44:02.0741 0x2220  [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
19:44:02.0748 0x2220  IntcDAud - ok
19:44:02.0766 0x2220  [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
19:44:02.0777 0x2220  Intel® Capability Licensing Service Interface - ok
19:44:02.0784 0x2220  [ 30E9FAC23E2537D82F2836CB81AEE186, 03E5072D43ECED70EF004D2E6E654B4CCCE059825CC3C641C0534E4C0BC0C7E8 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
19:44:02.0788 0x2220  Intel® ME Service - ok
19:44:02.0794 0x2220  [ AB62699812B02E9268F4DA68F2791512, 7E108FDC5AB41731EAEDFBFB68FEE58F2B0FE6F04BAE0E95A635D12A06269FAA ] Intel® Wireless Bluetooth® 4.0 Radio Management C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
19:44:02.0797 0x2220  Intel® Wireless Bluetooth® 4.0 Radio Management - ok
19:44:02.0801 0x2220  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
19:44:02.0802 0x2220  intelide - ok
19:44:02.0808 0x2220  [ 7AA01AB1C110916825E6E1389F1B9AF2, E2885955AFA0908E194B1BC364C9582249B2B2AFFF93F17F3414F55B1E5F2C42 ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
19:44:02.0809 0x2220  intelpep - ok
19:44:02.0816 0x2220  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
19:44:02.0818 0x2220  intelppm - ok
19:44:02.0824 0x2220  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:44:02.0826 0x2220  IpFilterDriver - ok
19:44:02.0849 0x2220  [ A5800036E4EA06697A34742A24ACFBE1, BA67060526E9213000B4206F86A74F904999AD7018EFCBE4FE9708650DA9D973 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
19:44:02.0868 0x2220  iphlpsvc - ok
19:44:02.0874 0x2220  [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
19:44:02.0877 0x2220  IPMIDRV - ok
19:44:02.0883 0x2220  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
19:44:02.0886 0x2220  IPNAT - ok
19:44:02.0890 0x2220  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
19:44:02.0891 0x2220  IRENUM - ok
19:44:02.0895 0x2220  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
19:44:02.0897 0x2220  isapnp - ok
19:44:02.0909 0x2220  [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
19:44:02.0917 0x2220  iScsiPrt - ok
19:44:02.0922 0x2220  [ A90C843F4FDD7A07129BA73C6BE13976, A76DEA9F09E3B2F18D3B646A0DD39E2773EC62E2F3C55421BA61C12190D78C1C ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
19:44:02.0923 0x2220  iwdbus - ok
19:44:02.0930 0x2220  [ 3C4002D339491AF73D663FFC7F6E5ECB, 0B53047989BDB781572253BC3AA757912FE54366870C1955E687972CE210C285 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
19:44:02.0933 0x2220  jhi_service - ok
19:44:02.0939 0x2220  [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
19:44:02.0941 0x2220  kbdclass - ok
19:44:02.0946 0x2220  [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
19:44:02.0948 0x2220  kbdhid - ok
19:44:02.0953 0x2220  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
19:44:02.0954 0x2220  kdnic - ok
19:44:02.0959 0x2220  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso          C:\WINDOWS\system32\lsass.exe
19:44:02.0960 0x2220  KeyIso - ok
19:44:02.0966 0x2220  [ 4E829B18D5BAEC29893792A3C671A847, 64C3B99F53A9D1ACA802B46B09E820AD210B667D5A1CD0ADAF1F12944B15B52E ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
19:44:02.0968 0x2220  KSecDD - ok
19:44:02.0976 0x2220  [ CA3F19E4B0765135B0F3C99384C535B9, 16441986C4E91F272E5876121272366476DB0496117C5AB4FBC82B07A06C0EC0 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
19:44:02.0979 0x2220  KSecPkg - ok
19:44:02.0985 0x2220  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
19:44:02.0986 0x2220  ksthunk - ok
19:44:02.0997 0x2220  [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
19:44:03.0005 0x2220  KtmRm - ok
19:44:03.0015 0x2220  [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
19:44:03.0023 0x2220  LanmanServer - ok
19:44:03.0033 0x2220  [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
19:44:03.0040 0x2220  LanmanWorkstation - ok
19:44:03.0057 0x2220  [ 2B7479EB47731A8ACBA28AF4C4BDA32D, 67AEB98E7B41337FEFD92CC81BFAD25FBB679998B318C110A4873B1AD8927A97 ] lfsvc           C:\WINDOWS\System32\GeofenceMonitorService.dll
19:44:03.0067 0x2220  lfsvc - ok
19:44:03.0073 0x2220  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
19:44:03.0075 0x2220  lltdio - ok
19:44:03.0084 0x2220  [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
19:44:03.0090 0x2220  lltdsvc - ok
19:44:03.0095 0x2220  [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
19:44:03.0096 0x2220  lmhosts - ok
19:44:03.0104 0x2220  [ 4269D44BB47A6DA5D80B11F4C8536458, 7A8FFC8F851DD9E5C43986BE0888831CB71D188138DF3CF7F787DADDA70915B0 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
19:44:03.0109 0x2220  LMS - ok
19:44:03.0117 0x2220  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
19:44:03.0121 0x2220  LSI_SAS - ok
19:44:03.0126 0x2220  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
19:44:03.0128 0x2220  LSI_SAS2 - ok
19:44:03.0134 0x2220  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\WINDOWS\system32\drivers\lsi_sas3.sys
19:44:03.0136 0x2220  LSI_SAS3 - ok
19:44:03.0141 0x2220  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
19:44:03.0144 0x2220  LSI_SSS - ok
19:44:03.0163 0x2220  [ 9B231CD3E52DF29EE50086FF676D3D6F, A47449CA6C88FE089A6953D05FA33A55A55E0306335A7A102A4CD75429FF0515 ] LSM             C:\WINDOWS\System32\lsm.dll
19:44:03.0179 0x2220  LSM - ok
19:44:03.0187 0x2220  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
19:44:03.0190 0x2220  luafv - ok
19:44:03.0195 0x2220  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
19:44:03.0197 0x2220  megasas - ok
19:44:03.0212 0x2220  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
19:44:03.0223 0x2220  megasr - ok
19:44:03.0228 0x2220  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
19:44:03.0231 0x2220  MEIx64 - ok
19:44:03.0235 0x2220  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS           C:\WINDOWS\system32\mmcss.dll
19:44:03.0238 0x2220  MMCSS - ok
19:44:03.0243 0x2220  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
19:44:03.0244 0x2220  Modem - ok
19:44:03.0248 0x2220  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
19:44:03.0249 0x2220  monitor - ok
19:44:03.0255 0x2220  [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
19:44:03.0257 0x2220  mouclass - ok
19:44:03.0261 0x2220  [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
19:44:03.0262 0x2220  mouhid - ok
19:44:03.0268 0x2220  [ D1D82F007A079A4D623DBD1F36EF30A1, 7901F81B62C5A4196D75A10C05386B16831CB290EFB9A1611CECF281068C520F ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
19:44:03.0271 0x2220  mountmgr - ok
19:44:03.0276 0x2220  [ 9E587AFE2AD4873C809F1E0C598AB435, 0B0ECFF265120BCBAC37CF9B53B18462725AB991D00B90DBEE8DD9375121DA4F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:44:03.0279 0x2220  MozillaMaintenance - ok
19:44:03.0285 0x2220  [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
19:44:03.0287 0x2220  mpsdrv - ok
19:44:03.0308 0x2220  [ C18AA14126ADC66478E8E962B2DFAA98, A6F8CE9D88D590DC083253004392572C3BD02C33433CD6C0D9117D2AA7171EEC ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
19:44:03.0326 0x2220  MpsSvc - ok
19:44:03.0333 0x2220  [ DB32958F0E704EFBF7F15161A569E39F, 8A26448B954F8A16EE9BA72EF47F6C549A75B30BD13FEB5A29EB099A74D8F678 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
19:44:03.0336 0x2220  MRxDAV - ok
19:44:03.0349 0x2220  [ 31233271EDE50D1BBB220F78AFA60486, 2122FAB5BD353DF63CF0FE9CEDBD5DFD1F26F2DE04303E1B3FFB03AA02AECED9 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:44:03.0356 0x2220  mrxsmb - ok
19:44:03.0366 0x2220  [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
19:44:03.0372 0x2220  mrxsmb10 - ok
19:44:03.0380 0x2220  [ 6276AC2AA203CF47811F6EFBBD214FBF, AE55D87D863A626347B0074F4E962080F1989A94153DAF8475593249F616DA2F ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
19:44:03.0385 0x2220  mrxsmb20 - ok
19:44:03.0391 0x2220  [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
19:44:03.0393 0x2220  MsBridge - ok
19:44:03.0400 0x2220  [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
19:44:03.0404 0x2220  MSDTC - ok
19:44:03.0411 0x2220  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
19:44:03.0413 0x2220  Msfs - ok
19:44:03.0419 0x2220  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
19:44:03.0421 0x2220  msgpiowin32 - ok
19:44:03.0425 0x2220  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
19:44:03.0425 0x2220  mshidkmdf - ok
19:44:03.0429 0x2220  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
19:44:03.0430 0x2220  mshidumdf - ok
19:44:03.0435 0x2220  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
19:44:03.0436 0x2220  msisadrv - ok
19:44:03.0444 0x2220  [ 4EAEEBAC8CFF4E0D717DFA920BC58A90, A65CB1BB3392B6A04B978348CAC18A414560A6B04A727F22DFC0ADB20DD3AF6B ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
19:44:03.0448 0x2220  MSiSCSI - ok
19:44:03.0452 0x2220  msiserver - ok
19:44:03.0456 0x2220  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:44:03.0457 0x2220  MSKSSRV - ok
19:44:03.0462 0x2220  [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
19:44:03.0464 0x2220  MsLldp - ok
19:44:03.0468 0x2220  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:44:03.0469 0x2220  MSPCLOCK - ok
19:44:03.0473 0x2220  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
19:44:03.0474 0x2220  MSPQM - ok
19:44:03.0486 0x2220  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
19:44:03.0493 0x2220  MsRPC - ok
19:44:03.0500 0x2220  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
19:44:03.0501 0x2220  mssmbios - ok
19:44:03.0505 0x2220  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
19:44:03.0506 0x2220  MSTEE - ok
19:44:03.0511 0x2220  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
19:44:03.0512 0x2220  MTConfig - ok
19:44:03.0517 0x2220  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
19:44:03.0520 0x2220  Mup - ok
19:44:03.0525 0x2220  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
19:44:03.0527 0x2220  mvumis - ok
19:44:03.0535 0x2220  [ FCDCFEDAF3C1D61DE11FA0DE9453699C, 4E79F1040E62B0DEE00F3035DBFE5241A459FE4C1A46337FF13A25FF8C5A64A5 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
19:44:03.0542 0x2220  MyWiFiDHCPDNS - ok
19:44:03.0553 0x2220  [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent        C:\WINDOWS\system32\qagentRT.dll
19:44:03.0564 0x2220  napagent - ok
19:44:03.0578 0x2220  [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
19:44:03.0588 0x2220  NativeWifiP - ok
19:44:03.0595 0x2220  [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
19:44:03.0599 0x2220  NcaSvc - ok
19:44:03.0606 0x2220  [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService      C:\WINDOWS\System32\ncbservice.dll
19:44:03.0610 0x2220  NcbService - ok
19:44:03.0616 0x2220  [ 9ACED0F5B458C9011F39143326494E93, 9DFFC7EE7DE6FD92545EC6A203213C498A01EEFB0BC55460D339BCE498E56A7F ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
19:44:03.0619 0x2220  NcdAutoSetup - ok
19:44:03.0646 0x2220  [ 21FE65E2E67C4E31EE95CBD1F91C4B24, 6558F2BC10E6B09F7EE5264722FCF572B861EDB60A1433B58A4F4625EC0ABF63 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
19:44:03.0667 0x2220  NDIS - ok
19:44:03.0673 0x2220  [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
19:44:03.0674 0x2220  NdisCap - ok
19:44:03.0680 0x2220  [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
19:44:03.0684 0x2220  NdisImPlatform - ok
19:44:03.0688 0x2220  [ DC1D9F692C2AD84C214584C28501C1F7, 96FC0D1EC48FED963E02648541A2AAC8E72ED00D797EA8E3D0ED02F5EB4816C5 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:44:03.0690 0x2220  NdisTapi - ok
19:44:03.0695 0x2220  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:44:03.0697 0x2220  Ndisuio - ok
19:44:03.0700 0x2220  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
19:44:03.0701 0x2220  NdisVirtualBus - ok
19:44:03.0710 0x2220  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:44:03.0714 0x2220  NdisWan - ok
19:44:03.0721 0x2220  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:44:03.0725 0x2220  NdisWanLegacy - ok
19:44:03.0731 0x2220  [ 0BBE2FA30BAD58C9ADC01E4F84A3D2A1, 913AEC8A5F735C2EFDCB417E4077AB5A15457C601E6E88A1F4FA52C91E6E0BBF ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
19:44:03.0733 0x2220  NDProxy - ok
19:44:03.0739 0x2220  [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
19:44:03.0741 0x2220  Ndu - ok
19:44:03.0747 0x2220  [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
19:44:03.0748 0x2220  NetBIOS - ok
19:44:03.0757 0x2220  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
19:44:03.0763 0x2220  NetBT - ok
19:44:03.0769 0x2220  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon        C:\WINDOWS\system32\lsass.exe
19:44:03.0771 0x2220  Netlogon - ok
19:44:03.0780 0x2220  [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman          C:\WINDOWS\System32\netman.dll
19:44:03.0787 0x2220  Netman - ok
19:44:03.0802 0x2220  [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
19:44:03.0815 0x2220  netprofm - ok
19:44:03.0823 0x2220  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:44:03.0828 0x2220  NetTcpPortSharing - ok
19:44:03.0834 0x2220  [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc          C:\WINDOWS\System32\drivers\netvsc63.sys
19:44:03.0836 0x2220  netvsc - ok
19:44:03.0907 0x2220  [ DBB747CF8BCCFDAA00FE05CED6C06EE9, CF0B73D984699156600D5E1149C95ACADBB882598BD6949E0FF4420CA1DBFED7 ] NETwNe64        C:\WINDOWS\system32\DRIVERS\NETwew00.sys
19:44:03.0970 0x2220  NETwNe64 - ok
19:44:03.0994 0x2220  [ EB8ACA4B01FE07FD38CF927D04D70148, C81F338837B9C9B09D9B274BF5113CD08EB5FD45FD17299FE7E8CB61D3AD44C3 ] NetworkSupport  C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe
19:44:04.0005 0x2220  NetworkSupport - ok
19:44:04.0018 0x2220  [ CB90BA45BCB3AF0D5C67668A2E976160, D5F803761308BFDE713A6F424370D04597219634E21A9F4EA52170AD998209E3 ] NFCProxyService C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe
19:44:04.0027 0x2220  NFCProxyService - ok
19:44:04.0039 0x2220  [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
19:44:04.0048 0x2220  NlaSvc - ok
19:44:04.0053 0x2220  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
19:44:04.0055 0x2220  Npfs - ok
19:44:04.0059 0x2220  npggsvc - ok
19:44:04.0062 0x2220  [ AAF9B4DF67938753CB21808EA3574242, A0C15AD0CE9CC06E7B15A90A61E8C53A3F1EC4AD9E13FF1054E023E9DFB95961 ] npkcrypt        C:\Program Files (x86)\Level Up Games\Ragnarok Online\npkcrypt.sys
19:44:04.0064 0x2220  npkcrypt - ok
19:44:04.0066 0x2220  npkycryp - ok
19:44:04.0072 0x2220  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
19:44:04.0074 0x2220  npsvctrig - ok
19:44:04.0078 0x2220  [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi             C:\WINDOWS\system32\nsisvc.dll
19:44:04.0081 0x2220  nsi - ok
19:44:04.0085 0x2220  [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
19:44:04.0087 0x2220  nsiproxy - ok
19:44:04.0133 0x2220  [ 7F68063A5A0461E02BC860CE0E6BFDDC, 47E9F75D27B97278B74034B7D3951A26B1644911ED321455E08D935731C858DE ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
19:44:04.0173 0x2220  Ntfs - ok
19:44:04.0179 0x2220  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\WINDOWS\system32\drivers\Null.sys
19:44:04.0181 0x2220  Null - ok
19:44:04.0188 0x2220  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
19:44:04.0191 0x2220  nvraid - ok
19:44:04.0198 0x2220  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
19:44:04.0202 0x2220  nvstor - ok
19:44:04.0209 0x2220  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
19:44:04.0212 0x2220  nv_agp - ok
19:44:04.0218 0x2220  [ 11E0B35479C895888BA3D7F619DCFFF3, 6ED82C19898101EC00BD64A9F90595C3D20AD2D2902AA8765B740FB3B9312DDF ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:44:04.0222 0x2220  ose64 - ok
19:44:04.0227 0x2220  [ 8EABC137CD3E3155F425CF982AA11FD5, F895C656D0B75A9D2ECE8DABCB9DAEA672CB67BC38024803C3FA25043B3FD933 ] OTGMouUSB       C:\WINDOWS\system32\DRIVERS\OTGMouUSB.sys
19:44:04.0228 0x2220  OTGMouUSB - ok
19:44:04.0240 0x2220  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
19:44:04.0248 0x2220  p2pimsvc - ok
19:44:04.0261 0x2220  [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
19:44:04.0271 0x2220  p2psvc - ok
19:44:04.0277 0x2220  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
19:44:04.0280 0x2220  Parport - ok
19:44:04.0286 0x2220  [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
19:44:04.0288 0x2220  partmgr - ok
19:44:04.0301 0x2220  [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
19:44:04.0312 0x2220  PcaSvc - ok
19:44:04.0324 0x2220  [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\WINDOWS\system32\drivers\pci.sys
19:44:04.0331 0x2220  pci - ok
19:44:04.0335 0x2220  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
19:44:04.0336 0x2220  pciide - ok
19:44:04.0343 0x2220  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
19:44:04.0347 0x2220  pcmcia - ok
19:44:04.0351 0x2220  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
19:44:04.0352 0x2220  pcw - ok
19:44:04.0358 0x2220  [ ED54A75050211DC77F9B98C41E026858, F92FB59ADE88469EAA50E91D43165C68CC32FDE11595A0069FD43103A674FE44 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
19:44:04.0360 0x2220  pdc - ok
19:44:04.0377 0x2220  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
19:44:04.0390 0x2220  PEAUTH - ok
19:44:04.0412 0x2220  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
19:44:04.0414 0x2220  PerfHost - ok
19:44:04.0454 0x2220  [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla             C:\WINDOWS\system32\pla.dll
19:44:04.0484 0x2220  pla - ok
19:44:04.0492 0x2220  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
19:44:04.0495 0x2220  PlugPlay - ok
19:44:04.0499 0x2220  [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
19:44:04.0502 0x2220  PNRPAutoReg - ok
19:44:04.0513 0x2220  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
19:44:04.0521 0x2220  PNRPsvc - ok
19:44:04.0531 0x2220  [ BDD52AB4AEBB8B1904568DBD0CCB70CB, C3D1DBA349C79B43DCDD9EF5255C5EE973EFB844235B808B5EF9B63A51FF00AA ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
19:44:04.0540 0x2220  PolicyAgent - ok
19:44:04.0547 0x2220  [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power           C:\WINDOWS\system32\umpo.dll
19:44:04.0551 0x2220  Power - ok
19:44:04.0613 0x2220  [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
19:44:04.0672 0x2220  PrintNotify - ok
19:44:04.0683 0x2220  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
19:44:04.0686 0x2220  Processor - ok
19:44:04.0695 0x2220  [ 19424364D8C03B990C4281BE53963FD0, 958FC8436E6B754858E20BC48B0D4B269991E8CA94C15C2761BF04ED52591907 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
19:44:04.0701 0x2220  ProfSvc - ok
19:44:04.0708 0x2220  [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
19:44:04.0712 0x2220  Psched - ok
19:44:04.0716 0x2220  [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64        C:\WINDOWS\system32\Drivers\PxHlpa64.sys
19:44:04.0718 0x2220  PxHlpa64 - ok
19:44:04.0727 0x2220  [ 65D32E9BBCC9FFD36F2BF38C595D283F, 185ADC9094D302B42C1B3080CCEDE16606027FDBE24FE9C70291291F2E38E3B1 ] qcusbser        C:\WINDOWS\system32\DRIVERS\qcusbser.sys
19:44:04.0733 0x2220  qcusbser - ok
19:44:04.0743 0x2220  [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE           C:\WINDOWS\system32\qwave.dll
19:44:04.0751 0x2220  QWAVE - ok
19:44:04.0756 0x2220  [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
19:44:04.0757 0x2220  QWAVEdrv - ok
19:44:04.0761 0x2220  [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:44:04.0763 0x2220  RasAcd - ok
19:44:04.0768 0x2220  [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
19:44:04.0772 0x2220  RasAuto - ok
19:44:04.0788 0x2220  [ F83B38FCD4F69157B3D158433FA149CC, AB103BD3E2B3B134CB355C556DF70BCF0CF4DB11EFF7DB4A9876D5AA43D81293 ] RasMan          C:\WINDOWS\System32\rasmans.dll
19:44:04.0800 0x2220  RasMan - ok
19:44:04.0806 0x2220  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:44:04.0809 0x2220  RasPppoe - ok
19:44:04.0821 0x2220  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:44:04.0830 0x2220  rdbss - ok
19:44:04.0836 0x2220  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
19:44:04.0838 0x2220  rdpbus - ok
19:44:04.0846 0x2220  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
19:44:04.0851 0x2220  RDPDR - ok
19:44:04.0858 0x2220  [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
19:44:04.0860 0x2220  RdpVideoMiniport - ok
19:44:04.0868 0x2220  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
19:44:04.0874 0x2220  rdyboost - ok
19:44:04.0898 0x2220  [ 615DFD97DEA56CE1C3A52185A3038FF8, 707BF5F9FAE478A12656D15013F507CC1335E7B72BD21CA99BB813CB95E37BC0 ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
19:44:04.0919 0x2220  ReFS - ok
19:44:04.0928 0x2220  [ 5B1F724CBCA8E08DC9D4C158C9BC1C1C, D5B170CF4B5420213130E151AFBBD9B84C5F7E710F5F67066E07095DEC1BD4B9 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
19:44:04.0930 0x2220  RegSrvc - ok
19:44:04.0939 0x2220  [ 0CF7CB56BF2D5E9DBCEE0185CB626FAD, 2BD2E2FB1D2EADD1F70EF55E8523C353F95D4FEB1BAD5017FA4D94F790F27825 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
19:44:04.0944 0x2220  RemoteAccess - ok
19:44:04.0951 0x2220  [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
19:44:04.0957 0x2220  RemoteRegistry - ok
19:44:04.0965 0x2220  [ 0527EF6E23B9FAB37DDCBC479C6CFA28, C004CE600074AC434F8B24A3383F8C0ACFA5476D9E3B1493B40911C78B028D64 ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
19:44:04.0971 0x2220  RFCOMM - ok
19:44:04.0976 0x2220  [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
19:44:04.0980 0x2220  RpcEptMapper - ok
19:44:04.0983 0x2220  [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator      C:\WINDOWS\system32\locator.exe
19:44:04.0985 0x2220  RpcLocator - ok
19:44:05.0006 0x2220  [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
19:44:05.0022 0x2220  RpcSs - ok
19:44:05.0033 0x2220  [ F95482385625D1C89576D0E0E22A2229, 9ED3FEF8A73C768CCDB01822384B3A6CB371BF8EADDD4C05057B3BFDEE90595F ] RSPCIESTOR      C:\WINDOWS\system32\DRIVERS\RtsPStor.sys
19:44:05.0041 0x2220  RSPCIESTOR - ok
19:44:05.0046 0x2220  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
19:44:05.0049 0x2220  rspndr - ok
19:44:05.0056 0x2220  [ 2B5A48DF6997F7BD92535C4F76236810, DDFDCD48ABD0048DB5B31C71ADB48C19F0E689D413B70AC942E82DA3B1751968 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
19:44:05.0061 0x2220  RtkAudioService - ok
19:44:05.0077 0x2220  [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168         C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
19:44:05.0089 0x2220  RTL8168 - ok
19:44:05.0093 0x2220  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
19:44:05.0094 0x2220  s3cap - ok
19:44:05.0101 0x2220  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs           C:\WINDOWS\system32\lsass.exe
19:44:05.0103 0x2220  SamSs - ok
19:44:05.0110 0x2220  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
19:44:05.0113 0x2220  sbp2port - ok
19:44:05.0121 0x2220  [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
19:44:05.0127 0x2220  SCardSvr - ok
19:44:05.0132 0x2220  [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
19:44:05.0138 0x2220  ScDeviceEnum - ok
19:44:05.0142 0x2220  [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
19:44:05.0143 0x2220  scfilter - ok
19:44:05.0173 0x2220  [ A626F5E446860F22835E783142D7AE33, 3A786639E1FABCA512F4F91A10811DD3C4D9C9C9BB893362E4D019219D0BD8E2 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
19:44:05.0199 0x2220  Schedule - ok
19:44:05.0208 0x2220  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
19:44:05.0211 0x2220  SCPolicySvc - ok
19:44:05.0221 0x2220  [ 27FF998504DEF8D29A771FBB41707C5E, 82035EA15E5241C9C39B5474E5CBA49BB188B4B792B121ABF98659460A1EDE85 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
19:44:05.0228 0x2220  sdbus - ok
19:44:05.0235 0x2220  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
19:44:05.0237 0x2220  sdstor - ok
19:44:05.0242 0x2220  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
19:44:05.0243 0x2220  secdrv - ok
19:44:05.0247 0x2220  [ BA24CEA7152239F42ECD04AFB7C89D24, A2A11EABB0C283772B74667C7544B61BEB1B9745FBF065E831542129EB585AFA ] seclogon        C:\WINDOWS\system32\seclogon.dll
19:44:05.0249 0x2220  seclogon - ok
19:44:05.0254 0x2220  [ 1ED7A8574A28357097A5CB4063C96B00, 4E248CA66B7DE930AEC501A85F507AB813FC3CEBCBA347DFF3B05CE6CB8E496B ] semav6thermal64ro C:\WINDOWS\system32\drivers\semav6thermal64ro.sys
19:44:05.0255 0x2220  semav6thermal64ro - ok
19:44:05.0261 0x2220  [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS            C:\WINDOWS\System32\sens.dll
19:44:05.0264 0x2220  SENS - ok
19:44:05.0273 0x2220  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] SensorsAlsDriver C:\WINDOWS\System32\drivers\WUDFRd.sys
19:44:05.0277 0x2220  SensorsAlsDriver - ok
19:44:05.0284 0x2220  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] SensorsHIDClassDriver C:\WINDOWS\System32\drivers\WUDFRd.sys
19:44:05.0289 0x2220  SensorsHIDClassDriver - ok
19:44:05.0295 0x2220  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] SensorsServiceDriver C:\WINDOWS\System32\drivers\WUDFRd.sys
19:44:05.0299 0x2220  SensorsServiceDriver - ok
19:44:05.0309 0x2220  [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
19:44:05.0315 0x2220  SensrSvc - ok
19:44:05.0321 0x2220  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
19:44:05.0323 0x2220  SerCx - ok
19:44:05.0330 0x2220  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
19:44:05.0333 0x2220  SerCx2 - ok
19:44:05.0337 0x2220  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
19:44:05.0338 0x2220  Serenum - ok
19:44:05.0345 0x2220  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
19:44:05.0348 0x2220  Serial - ok
19:44:05.0352 0x2220  [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
19:44:05.0354 0x2220  sermouse - ok
19:44:05.0368 0x2220  [ 3A2F1A7472C3B7CC9B89C8516C726488, 9BCBBAC10C900EA7B30822B463A77EE5067F217C4B490857A09E5277983CB89B ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
19:44:05.0377 0x2220  SessionEnv - ok
19:44:05.0382 0x2220  [ 415B1326C40A2E1F251A3845B9C7DF31, D7BD668962B71DC3877366EB0C0BD5CDB1FF564A5866EE58DB90838D78227AD6 ] SFEP            C:\WINDOWS\System32\drivers\SFEP.sys
19:44:05.0383 0x2220  SFEP - ok
19:44:05.0387 0x2220  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
19:44:05.0389 0x2220  sfloppy - ok
19:44:05.0401 0x2220  [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
19:44:05.0411 0x2220  SharedAccess - ok
19:44:05.0429 0x2220  [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:44:05.0443 0x2220  ShellHWDetection - ok
19:44:05.0449 0x2220  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
19:44:05.0450 0x2220  SiSRaid2 - ok
19:44:05.0457 0x2220  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
19:44:05.0459 0x2220  SiSRaid4 - ok
19:44:05.0463 0x2220  [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost         C:\WINDOWS\System32\smphost.dll
19:44:05.0466 0x2220  smphost - ok
19:44:05.0474 0x2220  [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
19:44:05.0475 0x2220  SNMPTRAP - ok
19:44:05.0484 0x2220  [ 3CBFEE060A4FD306F783E1A14926C9AF, 67DF4B3E23DB18E8BC15301F83B1844EFF6BD8E885CA1590EBAAFBAA441968CB ] SOHCImp         C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
19:44:05.0487 0x2220  SOHCImp - ok
19:44:05.0499 0x2220  [ 06B3BFC6AB8E4731AEF2C85383486524, B03E69C0E883B863DACF251A8287D0A6043EFB4CA5CA5576EAEFA3E4486ECBEC ] SOHDms          C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
19:44:05.0508 0x2220  SOHDms - ok
19:44:05.0516 0x2220  [ 3F3E0E389C03AAC4705BC03BFB2A8582, 0D5BF14F12BE6167ECE974BF114336576C38DF5B83D2889316A91381B26948EC ] SOHDs           C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
19:44:05.0518 0x2220  SOHDs - ok
19:44:05.0523 0x2220  [ E35F5A8E99F20D621647B6088923E0C6, B561632CAE019374312F6171FFBC9A640ACB511A7720CF7CEF95846A1C99D43E ] sonyfelicaportm C:\WINDOWS\System32\Drivers\sonyfelicaportm.sys
19:44:05.0525 0x2220  sonyfelicaportm - ok
19:44:05.0530 0x2220  [ 617963482A980973AA263557CDD85C1E, BFB6CD25BCAFE99A6082A183B1AF18CDF1E79B7BD23B4ADEB0226343A076FC1D ] sonynfcport100c C:\WINDOWS\System32\Drivers\sonynfcport100c.sys
19:44:05.0533 0x2220  sonynfcport100c - ok
19:44:05.0549 0x2220  [ 7B58BB947BE397F69D6A2D58F6AE6BB4, A3BD633CEC5936F1FF809560DF41EE8496E84CE997CBD4D3120BC7A54F0107B6 ] sonynfcport100f C:\WINDOWS\System32\Drivers\sonynfcport100f.sys
19:44:05.0562 0x2220  sonynfcport100f - ok
19:44:05.0567 0x2220  [ AA0F913B69BCEC9655ECAAA2312B29D9, 655D6E5B36ABC1C632096243F7FF55C4168A2009A5A43C8FDA5EFA67F972ADF3 ] SOWS            C:\WINDOWS\System32\drivers\sows.sys
19:44:05.0568 0x2220  SOWS - ok
19:44:05.0584 0x2220  [ D24B1945ED1F9C96DA786DBBF1E983CE, B46CB0B72B7A3DF94A46B8D65E38535C5F8E72A55CF2DC48EFA1F9A0108691C4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
19:44:05.0594 0x2220  spaceport - ok
19:44:05.0600 0x2220  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
19:44:05.0602 0x2220  SpbCx - ok
19:44:05.0612 0x2220  [ C03E480E63A80D73FABE28D24D3B6B47, F8C68DC63A5492587F9343158348ADD99A99AF34DC7ED29E5562EE90C0AB8F25 ] SpfService      C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
19:44:05.0618 0x2220  SpfService - ok
19:44:05.0640 0x2220  [ 2E3976C857D7230EC8D2B2276E688255, C0A6A84369CB3E709A6FFEBED2B38AB62D731B79D052D6D6FA8EF855BC428778 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
19:44:05.0657 0x2220  Spooler - ok
19:44:05.0784 0x2220  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
19:44:05.0918 0x2220  sppsvc - ok
19:44:05.0938 0x2220  [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
19:44:05.0946 0x2220  srv - ok
19:44:05.0964 0x2220  [ 00D8AC8E3053290BDE6EA2FB6810D2FC, 957FEF84CBBAE71829529AE99A1B24F52D7831BD666442D0132FBB825409A75D ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
19:44:05.0977 0x2220  srv2 - ok
19:44:05.0986 0x2220  [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
19:44:05.0992 0x2220  srvnet - ok
19:44:06.0000 0x2220  [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
19:44:06.0007 0x2220  SSDPSRV - ok
19:44:06.0015 0x2220  [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
19:44:06.0020 0x2220  SstpSvc - ok
19:44:06.0024 0x2220  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
19:44:06.0025 0x2220  stexstor - ok
19:44:06.0044 0x2220  [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
19:44:06.0058 0x2220  stisvc - ok
19:44:06.0064 0x2220  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
19:44:06.0067 0x2220  storahci - ok
19:44:06.0072 0x2220  [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
19:44:06.0074 0x2220  storflt - ok
19:44:06.0079 0x2220  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
19:44:06.0082 0x2220  stornvme - ok
19:44:06.0086 0x2220  [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
19:44:06.0089 0x2220  StorSvc - ok
19:44:06.0093 0x2220  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
19:44:06.0095 0x2220  storvsc - ok
19:44:06.0098 0x2220  [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc           C:\WINDOWS\system32\svsvc.dll
19:44:06.0101 0x2220  svsvc - ok
19:44:06.0105 0x2220  [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
19:44:06.0106 0x2220  swenum - ok
19:44:06.0125 0x2220  [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv           C:\WINDOWS\System32\swprv.dll
19:44:06.0140 0x2220  swprv - ok
19:44:06.0169 0x2220  [ 3114CB46C2853CA71525428CB0C7CB58, A9CC51506AABBC23BAB2B90E30AB13197A72268A3DE6D2F281C1C367ED7118AE ] SysMain         C:\WINDOWS\system32\sysmain.dll
19:44:06.0193 0x2220  SysMain - ok
19:44:06.0206 0x2220  [ 23BECB70654B192A7E378DEE3DBD8D42, 7596174AE7508B62C40A429645198F6A420D0CD5B62A10AB78516113584E7EDB ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
19:44:06.0215 0x2220  SystemEventsBroker - ok
19:44:06.0224 0x2220  [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
19:44:06.0231 0x2220  TabletInputService - ok
19:44:06.0245 0x2220  [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
19:44:06.0256 0x2220  TapiSrv - ok
19:44:06.0311 0x2220  [ 3C2DF97A21A9BBE6355B0A51F288EFFF, 47BBE47CFE2379B072AEEC360C4F207059BED9AD18C55FDF2AC0DA9CAD837BFB ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
19:44:06.0355 0x2220  Tcpip - ok
19:44:06.0411 0x2220  [ 3C2DF97A21A9BBE6355B0A51F288EFFF, 47BBE47CFE2379B072AEEC360C4F207059BED9AD18C55FDF2AC0DA9CAD837BFB ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:44:06.0452 0x2220  TCPIP6 - ok
19:44:06.0461 0x2220  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
19:44:06.0462 0x2220  tcpipreg - ok
19:44:06.0470 0x2220  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
19:44:06.0472 0x2220  tdx - ok
19:44:06.0567 0x2220  [ 4ACFC5853A3F0C6C2F54E537C23EE90F, 47D81F471A250696A1A0D19294FC553EB88D813612A8351C89F65D7BF99C8532 ] TeamViewer9     C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
19:44:06.0653 0x2220  TeamViewer9 - ok
19:44:06.0663 0x2220  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
19:44:06.0665 0x2220  terminpt - ok
19:44:06.0694 0x2220  [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService     C:\WINDOWS\System32\termsrv.dll
19:44:06.0714 0x2220  TermService - ok
19:44:06.0721 0x2220  [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes          C:\WINDOWS\system32\themeservice.dll
19:44:06.0724 0x2220  Themes - ok
19:44:06.0729 0x2220  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
19:44:06.0732 0x2220  THREADORDER - ok
19:44:06.0741 0x2220  [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
19:44:06.0748 0x2220  TimeBroker - ok
19:44:06.0755 0x2220  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
19:44:06.0760 0x2220  TPM - ok
19:44:06.0767 0x2220  [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
19:44:06.0771 0x2220  TrkWks - ok
19:44:06.0776 0x2220  [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
19:44:06.0779 0x2220  TrustedInstaller - ok
19:44:06.0785 0x2220  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
19:44:06.0787 0x2220  TsUsbFlt - ok
19:44:06.0791 0x2220  [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
19:44:06.0792 0x2220  TsUsbGD - ok
19:44:06.0799 0x2220  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
19:44:06.0803 0x2220  tunnel - ok
19:44:06.0808 0x2220  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
19:44:06.0810 0x2220  uagp35 - ok
19:44:06.0815 0x2220  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
19:44:06.0818 0x2220  UASPStor - ok
19:44:06.0828 0x2220  [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
19:44:06.0833 0x2220  UCX01000 - ok
19:44:06.0842 0x2220  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
19:44:06.0848 0x2220  udfs - ok
19:44:06.0854 0x2220  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
19:44:06.0856 0x2220  UEFI - ok
19:44:06.0863 0x2220  [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
19:44:06.0866 0x2220  UI0Detect - ok
19:44:06.0872 0x2220  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
19:44:06.0874 0x2220  uliagpkx - ok
19:44:06.0878 0x2220  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
19:44:06.0880 0x2220  umbus - ok
19:44:06.0884 0x2220  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
19:44:06.0886 0x2220  UmPass - ok
19:44:06.0895 0x2220  [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
19:44:06.0902 0x2220  UmRdpService - ok
19:44:06.0914 0x2220  [ DBE2E6388379D5CC78099650541E9566, 1914BC929F109A49FB18ED31F239A9813A010B0A3914BC8CD0D6A94A67A072D7 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
19:44:06.0921 0x2220  UNS - ok
19:44:06.0925 0x2220  [ 91E47ECFD242A48B4AF79A7DD37B9F37, 89CCDF4A3060833B0FB8E3E3C8194A5D1F7527CDFE1F236EF9A2E37B4C765C57 ] Updater.exe     C:\Program Files (x86)\Connectify Updater\Updater.exe
19:44:06.0926 0x2220  Updater.exe - ok
19:44:06.0940 0x2220  [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost        C:\WINDOWS\System32\upnphost.dll
19:44:06.0950 0x2220  upnphost - ok
19:44:06.0958 0x2220  [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
19:44:06.0962 0x2220  usbccgp - ok
19:44:06.0969 0x2220  [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
19:44:06.0972 0x2220  usbcir - ok
19:44:06.0978 0x2220  [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
19:44:06.0981 0x2220  usbehci - ok
19:44:06.0996 0x2220  [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
19:44:07.0007 0x2220  usbhub - ok
19:44:07.0023 0x2220  [ FAA564A13576F9284546BF016D27B551, 1D2CD13DC0B02DD40657EE4F93F4A13C78D2F2EF91685E563D78E217C96DF544 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
19:44:07.0035 0x2220  USBHUB3 - ok
19:44:07.0041 0x2220  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
19:44:07.0042 0x2220  usbohci - ok
19:44:07.0047 0x2220  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
19:44:07.0048 0x2220  usbprint - ok
19:44:07.0056 0x2220  [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
19:44:07.0060 0x2220  USBSTOR - ok
19:44:07.0065 0x2220  [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
19:44:07.0066 0x2220  usbuhci - ok
19:44:07.0077 0x2220  [ 5C8F604F6DC74177CDD8372D7B1ADFF0, C1DE9A37A7A01CCCBFCE13C1E5B26683F620AB21EDA5A14C82022E2F49C84484 ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
19:44:07.0083 0x2220  usbvideo - ok
19:44:07.0096 0x2220  [ 1A20F03700D2B2ED775E38D751EF2F63, 76F8BE9F412D4397437E60A7E6231C80EA9B4F5436C9A8FAB967C78604994AE9 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
19:44:07.0104 0x2220  USBXHCI - ok
19:44:07.0116 0x2220  [ 34349E7B488FA61B639117F6BF1EBF99, A7A7E60511F7D6370473D41867F5323695308CC27D3EEB0286687D3A9E0084E9 ] USER_ESRV_SVC   C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
19:44:07.0124 0x2220  USER_ESRV_SVC - ok
19:44:07.0130 0x2220  [ A3C75F5220CAB16A29784433DC241A5B, A9F283114388D02AD20298B7C74367E70FE457FF03B9544A00DBB8A45C68965F ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
19:44:07.0131 0x2220  VAIO Event Service - ok
19:44:07.0144 0x2220  [ 8EF62038EBD54C240486A36F9259C64A, D2EA5718C13D5E62DCA06013E67E651847172950ED7ED7CA7C25CC8422D54260 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
19:44:07.0154 0x2220  VAIO Power Management - ok
19:44:07.0159 0x2220  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc        C:\WINDOWS\system32\lsass.exe
19:44:07.0161 0x2220  VaultSvc - ok
19:44:07.0186 0x2220  [ DEBA4273293DAE85EE4BE3F433C903D7, 62254F305DDE2D14CE3ABD1FA7B2B1F1FAC3925926D73A217EF863F6D4B25FBF ] VCFw            C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
19:44:07.0206 0x2220  VCFw - ok
19:44:07.0211 0x2220  [ EFD47ED6C5824825E214CFE70D26C009, 562FA4E508DF4BD954237CA60978FFF5759E8A08C5DDEB621BC95AAEF89A3CC4 ] VCService       C:\Program Files\Sony\VAIO Care\VCService.exe
19:44:07.0213 0x2220  VCService - ok
19:44:07.0217 0x2220  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
19:44:07.0218 0x2220  vdrvroot - ok
19:44:07.0250 0x2220  [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds             C:\WINDOWS\System32\vds.exe
19:44:07.0276 0x2220  vds - ok
19:44:07.0285 0x2220  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
19:44:07.0289 0x2220  VerifierExt - ok
19:44:07.0309 0x2220  [ F6ECFD6128A16A4851CFE98D4E01B011, C349893E8D7FB9B510A3FAD040F70C3C72B0ACDD5F6EB336951849F9E953717D ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
19:44:07.0323 0x2220  vhdmp - ok
19:44:07.0327 0x2220  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
19:44:07.0328 0x2220  viaide - ok
19:44:07.0334 0x2220  [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
19:44:07.0337 0x2220  vmbus - ok
19:44:07.0341 0x2220  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
19:44:07.0342 0x2220  VMBusHID - ok
19:44:07.0356 0x2220  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
19:44:07.0367 0x2220  vmicguestinterface - ok
19:44:07.0382 0x2220  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
19:44:07.0391 0x2220  vmicheartbeat - ok
19:44:07.0405 0x2220  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
19:44:07.0414 0x2220  vmickvpexchange - ok
19:44:07.0427 0x2220  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
19:44:07.0437 0x2220  vmicrdv - ok
19:44:07.0450 0x2220  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
19:44:07.0459 0x2220  vmicshutdown - ok
19:44:07.0473 0x2220  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
19:44:07.0482 0x2220  vmictimesync - ok
19:44:07.0496 0x2220  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
19:44:07.0505 0x2220  vmicvss - ok
19:44:07.0511 0x2220  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
19:44:07.0514 0x2220  volmgr - ok
19:44:07.0525 0x2220  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
19:44:07.0532 0x2220  volmgrx - ok
19:44:07.0544 0x2220  [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
19:44:07.0553 0x2220  volsnap - ok
19:44:07.0558 0x2220  [ EF31713EE4C7CCFE4049F7E7F15645A2, 35D198D3F1061E19A7EF89FA1E75377049CD6BCA9702F8076B9F95BB8737E0D4 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
19:44:07.0560 0x2220  vpci - ok
19:44:07.0567 0x2220  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
19:44:07.0571 0x2220  vsmraid - ok
19:44:07.0604 0x2220  [ 3B7F9612439EA47151EC5EAB232C1C3F, CA08CCB14CB46512F72E2C20454242B18BC57E34C55B42A37B7EC27B79242CDC ] VSS             C:\WINDOWS\system32\vssvc.exe
19:44:07.0632 0x2220  VSS - ok
19:44:07.0643 0x2220  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
19:44:07.0648 0x2220  VSTXRAID - ok
19:44:07.0686 0x2220  [ C1FAE2E81955DCCD79034A23EC4F3F37, 61B6477C6068B5542D3EE9C6336FBD7589F1CFFD3E850473A539619033533286 ] VUAgent         C:\Program Files\Sony\VAIO Update\vuagent.exe
19:44:07.0716 0x2220  VUAgent - ok
19:44:07.0723 0x2220  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
19:44:07.0725 0x2220  vwifibus - ok
19:44:07.0729 0x2220  [ 35BF5C5F5E3C9902C98978C7640574DA, C61E50B04000DCEC72365723F0C0725C2E005529DAF2777A59E624C14DA29E55 ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
19:44:07.0732 0x2220  vwififlt - ok
19:44:07.0738 0x2220  [ 65ED7B9CFEA893DF7748D5FF692690DE, 73AB9D8BB928B3247BDFC7BB47AD7FCA763B375DC250C251DB4E0573531040E8 ] vwifimp         C:\WINDOWS\system32\DRIVERS\vwifimp.sys
19:44:07.0738 0x2220  vwifimp - ok
19:44:07.0751 0x2220  [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time         C:\WINDOWS\system32\w32time.dll
19:44:07.0760 0x2220  W32Time - ok
19:44:07.0765 0x2220  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
19:44:07.0766 0x2220  WacomPen - ok
19:44:07.0803 0x2220  [ A81988DCC4FA440AA88B84CA452F5E22, 3573AAA09971E8ADB6FEFA778E02B2D8EE5E4249267CF37A524D9F019CC836FB ] wbengine        C:\WINDOWS\system32\wbengine.exe
19:44:07.0833 0x2220  wbengine - ok
19:44:07.0848 0x2220  [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
19:44:07.0858 0x2220  WbioSrvc - ok
19:44:07.0869 0x2220  [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
19:44:07.0877 0x2220  Wcmsvc - ok
19:44:07.0891 0x2220  [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
19:44:07.0901 0x2220  wcncsvc - ok
19:44:07.0906 0x2220  [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
19:44:07.0909 0x2220  WcsPlugInService - ok
19:44:07.0913 0x2220  [ 0359607177E5E9F6041136CC0A5CB0B6, 16687BE2639648CF46E8768BA1798030472C525612C629BF134D053240E2195B ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
19:44:07.0915 0x2220  WdBoot - ok
19:44:07.0918 0x2220  [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM         C:\WINDOWS\System32\drivers\wdcsam64.sys
19:44:07.0920 0x2220  WDC_SAM - ok
19:44:07.0941 0x2220  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
19:44:07.0958 0x2220  Wdf01000 - ok
19:44:07.0967 0x2220  [ DE8D12B4C3F55FA2C5E9774314F6C58A, C3E835DC066A94E1431BCDC90D7EA27AAC6F82826F4A5527B37D865241D7A366 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
19:44:07.0973 0x2220  WdFilter - ok
19:44:07.0978 0x2220  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
19:44:07.0981 0x2220  WdiServiceHost - ok
19:44:07.0986 0x2220  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
19:44:07.0990 0x2220  WdiSystemHost - ok
19:44:08.0000 0x2220  [ 4AD874CDC812EC156265E451B6B09DAB, 6E3E05B8301841425E9BB0D54B35EF386B78EEB307B5A6153FD1F366D30F23FA ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
19:44:08.0003 0x2220  WdNisDrv - ok
19:44:08.0006 0x2220  WdNisSvc - ok
19:44:08.0017 0x2220  [ 185E4111627F7AA6799E1366B5E91D65, 7A02C816DFBCCF47EDB49E5E2005A3D0B80719FAC94F9298D2DBAC63950EDA05 ] WebClient       C:\WINDOWS\System32\webclnt.dll
19:44:08.0026 0x2220  WebClient - ok
19:44:08.0037 0x2220  [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
19:44:08.0044 0x2220  Wecsvc - ok
19:44:08.0050 0x2220  [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
19:44:08.0053 0x2220  WEPHOSTSVC - ok
19:44:08.0059 0x2220  [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
19:44:08.0062 0x2220  wercplsupport - ok
19:44:08.0068 0x2220  [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
19:44:08.0073 0x2220  WerSvc - ok
19:44:08.0080 0x2220  [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
19:44:08.0084 0x2220  WFPLWFS - ok
19:44:08.0090 0x2220  [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
19:44:08.0094 0x2220  WiaRpc - ok
19:44:08.0098 0x2220  [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
19:44:08.0099 0x2220  WIMMount - ok
19:44:08.0101 0x2220  WinDefend - ok
19:44:08.0125 0x2220  [ 10DAD6A7FC617A221313BD584E3C3A00, F139B878668ECF38FE59831E8595A207D5CEEE76C6FFDA8C9F735435E601A763 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
19:44:08.0142 0x2220  WinHttpAutoProxySvc - ok
19:44:08.0153 0x2220  [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
19:44:08.0159 0x2220  Winmgmt - ok
19:44:08.0214 0x2220  [ 75436315AA383CF527695C6D49D0CA59, E3D55F2ACBD45D4D031FA6CA799394459C89BE50FF6ADE4FE36F2CAB2D2E63D0 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
19:44:08.0269 0x2220  WinRM - ok
19:44:08.0280 0x2220  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUSB          C:\WINDOWS\System32\drivers\WinUsb.sys
19:44:08.0283 0x2220  WinUSB - ok
19:44:08.0320 0x2220  [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
19:44:08.0349 0x2220  WlanSvc - ok
19:44:08.0389 0x2220  [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
19:44:08.0420 0x2220  wlidsvc - ok
19:44:08.0426 0x2220  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
19:44:08.0426 0x2220  WmiAcpi - ok
19:44:08.0436 0x2220  [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
19:44:08.0440 0x2220  wmiApSrv - ok
19:44:08.0444 0x2220  WMPNetworkSvc - ok
19:44:08.0452 0x2220  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
19:44:08.0456 0x2220  Wof - ok
19:44:08.0496 0x2220  [ 588040D595BBF0856CA1ADD941A8ED17, CBC92BB5453FE1BEA6F33239B7CE884F312559591383408EA5F95A006156C5D3 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
19:44:08.0529 0x2220  workfolderssvc - ok
19:44:08.0536 0x2220  [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
19:44:08.0538 0x2220  wpcfltr - ok
19:44:08.0541 0x2220  [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
19:44:08.0544 0x2220  WPCSvc - ok
19:44:08.0549 0x2220  [ 2ADE11F3D84709C5F6781E4C59F11683, F003C43396CF8FCF44EAB87583650DB4D2A233322D28D6A78D1694945D9073BB ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
19:44:08.0554 0x2220  WPDBusEnum - ok
19:44:08.0558 0x2220  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
19:44:08.0559 0x2220  WpdUpFltr - ok
19:44:08.0563 0x2220  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
19:44:08.0564 0x2220  ws2ifsl - ok
19:44:08.0571 0x2220  [ 5596C0960ED6ED7494BF2A55DE428684, C95CF09A657F37F421CC80E16F2F95B8EC59A8D5D48F104551155EAC8E53DCB2 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
19:44:08.0576 0x2220  wscsvc - ok
19:44:08.0579 0x2220  WSearch - ok
19:44:08.0653 0x2220  [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService       C:\WINDOWS\System32\WSService.dll
19:44:08.0718 0x2220  WSService - ok
19:44:08.0797 0x2220  [ FCF3912833E1B7F4EE61F07E79A7BBAC, D0E9F8969560BF2CF0BAA13C34AB4299F64841B2CF765537A72236BAAB86771E ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
19:44:08.0863 0x2220  wuauserv - ok
19:44:08.0875 0x2220  [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
19:44:08.0878 0x2220  WudfPf - ok
19:44:08.0886 0x2220  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
19:44:08.0890 0x2220  WUDFRd - ok
19:44:08.0897 0x2220  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFSensorLP    C:\WINDOWS\System32\drivers\WUDFRd.sys
19:44:08.0901 0x2220  WUDFSensorLP - ok
19:44:08.0908 0x2220  [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
19:44:08.0912 0x2220  wudfsvc - ok
19:44:08.0921 0x2220  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs       C:\WINDOWS\System32\drivers\WUDFRd.sys
19:44:08.0925 0x2220  WUDFWpdFs - ok
19:44:08.0932 0x2220  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp      C:\WINDOWS\System32\drivers\WUDFRd.sys
19:44:08.0936 0x2220  WUDFWpdMtp - ok
19:44:08.0950 0x2220  [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
19:44:08.0962 0x2220  WwanSvc - ok
19:44:09.0040 0x2220  [ C4C5C3198C3261BEC89E6C3631047BAF, 78E5604B4B2A184B328C0669781DF11A35AFC04E7375CAB4DB9A48D74929137D ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
19:44:09.0109 0x2220  ZeroConfigService - ok
19:44:09.0122 0x2220  ================ Scan global ===============================
19:44:09.0128 0x2220  [ 243F54DBA6EB48A369CA465E263ABA4A, 9D9F9DE783D000F3EA130EB68FD71319F21E4F1CD4232FB8B2F8A9A67E08F5F4 ] C:\WINDOWS\system32\basesrv.dll
19:44:09.0136 0x2220  [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\WINDOWS\system32\winsrv.dll
19:44:09.0145 0x2220  [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\WINDOWS\system32\sxssrv.dll
19:44:09.0158 0x2220  [ 5BF02EBEFEDC706318C96E2E60EDCB91, DC866C5BC3A887CAAA7169AB9BB2992F6F877B3EA04B62B4F95B6BD54943155F ] C:\WINDOWS\system32\services.exe
19:44:09.0167 0x2220  [ Global ] - ok
19:44:09.0167 0x2220  ================ Scan MBR ==================================
19:44:09.0169 0x2220  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:44:09.0174 0x2220  \Device\Harddisk0\DR0 - ok
19:44:09.0175 0x2220  ================ Scan VBR ==================================
19:44:09.0177 0x2220  [ 805D56AB915221DB8F484E8370590667 ] \Device\Harddisk0\DR0\Partition1
19:44:09.0178 0x2220  \Device\Harddisk0\DR0\Partition1 - ok
19:44:09.0180 0x2220  [ 481362F787986AF25EE612BEBF666A24 ] \Device\Harddisk0\DR0\Partition2
19:44:09.0182 0x2220  \Device\Harddisk0\DR0\Partition2 - ok
19:44:09.0184 0x2220  [ B68E943B0D5C33EE8B7367E0A4792FB5 ] \Device\Harddisk0\DR0\Partition3
19:44:09.0185 0x2220  \Device\Harddisk0\DR0\Partition3 - ok
19:44:09.0189 0x2220  [ 1D2D78BB73D5546C3BD3107FA329B102 ] \Device\Harddisk0\DR0\Partition4
19:44:09.0189 0x2220  \Device\Harddisk0\DR0\Partition4 - ok
19:44:09.0192 0x2220  [ EBB584319598A2476B03D0B784F7F66C ] \Device\Harddisk0\DR0\Partition5
19:44:09.0193 0x2220  \Device\Harddisk0\DR0\Partition5 - ok
19:44:09.0194 0x2220  [ 3040EDD5B49ADDA87BE1B3D99F8E63A6 ] \Device\Harddisk0\DR0\Partition6
19:44:09.0196 0x2220  \Device\Harddisk0\DR0\Partition6 - ok
19:44:09.0198 0x2220  [ 54FD5AF887D91FF4CC8C09CB23BBBF83 ] \Device\Harddisk0\DR0\Partition7
19:44:09.0200 0x2220  \Device\Harddisk0\DR0\Partition7 - ok
19:44:09.0200 0x2220  ================ Scan generic autorun ======================
19:44:09.0214 0x2220  [ 2A21E75EF80242E0646E7567993E977D, FA3EBF967339F64A98C08E42956236C5820E6F5F24D9069C520ABE75DB284C8F ] C:\Program Files\Realtek\Audio\HDA\vncutil64.exe
19:44:09.0225 0x2220  vncutil - ok
19:44:09.0252 0x2220  [ 5E53A66C680A06E26B1234CB0C3CD99B, D782E724FF487459704BFA2BC5BA5E6E7E85BC9D71ECF68BE78F9C74449EB207 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
19:44:09.0274 0x2220  RtHDVBg_Dolby - ok
19:44:09.0303 0x2220  [ 5E53A66C680A06E26B1234CB0C3CD99B, D782E724FF487459704BFA2BC5BA5E6E7E85BC9D71ECF68BE78F9C74449EB207 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
19:44:09.0324 0x2220  RtHDVBg - ok
19:44:09.0337 0x2220  [ 8EC9EF60E24E88DC5DC74D305925E2CF, 37719AAD02B4EA851F899AB4A3464EA381B96BA2E386A52BF9FDAA8C9257FDBE ] C:\Windows\system32\igfxtray.exe
19:44:09.0346 0x2220  IgfxTray - ok
19:44:09.0349 0x2220  BTMTrayAgent - ok
19:44:09.0352 0x2220  [ 4A0477ADCD07EC9D21257A2E456B16C5, CEF9C81730C12283A7600C3D921D89A62B14D1C46544B493F3AF7520DD2D1F79 ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
19:44:09.0354 0x2220  IAStorIcon - ok
19:44:09.0368 0x2220  [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
19:44:09.0378 0x2220  AdobeAAMUpdater-1.0 - ok
19:44:09.0394 0x2220  [ 50D1476C84446135A990F4939DC2DC1D, D062F92863E32EC075BD672F3C185CE8C9329F8B679D5508C396131B1DB30EF7 ] C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
19:44:09.0403 0x2220  Dolby Home Theater v4 - ok
19:44:09.0536 0x2220  [ 65E42BD07837C76B4A9F6301EDC3DD3C, D47B4DB99896F688E39A45785E7E3C570E3DBAD8B6F214B9BD01FFB80AFF7963 ] C:\Program Files (x86)\Optical TrackPad\OTPCmd.exe
19:44:09.0653 0x2220  OTPCmd - ok
19:44:09.0664 0x2220  [ 2E2F360FF158A67F8128EFAAF974189C, 5EDAAF7CCF381B5E767030F2DC52C37F972C4EA36F33BD7D9C422F74AF232DDD ] C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
19:44:09.0666 0x2220  ISBMgr.exe - ok
19:44:09.0669 0x2220  [ 61E4289E91E88C90478D7F4BEB10DCF7, 1D0F4034E0111CF5758F470C15A22A0A28EB8269CB5BF07222C9C0FB07A15C55 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
19:44:09.0672 0x2220  APSDaemon - ok
19:44:09.0684 0x2220  [ 9582680F41C0C4C6E6A2ACCADD7E723E, FC1B9973D679B43B0D476252532A3A5009E94CF79D0757A1DAC422E8EEA6D2A6 ] C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe
19:44:09.0694 0x2220  ADSKAppManager - ok
19:44:09.0709 0x2220  [ 887CAA31048EB8ED09A0CBD0E6F46F09, BBCED0BD4EB00C3FECFC9448223D4C441A868787877291F5489B07B43FAB65A4 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
19:44:09.0717 0x2220  SunJavaUpdateSched - ok
19:44:09.0794 0x2220  [ F73154E180105822A5F9B755BA933737, 1CD775B6CE3736A70EC5FC7A6B77A2FEDA70D59B49A66046CC20B341005501D9 ] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
19:44:09.0862 0x2220  DAEMON Tools Lite - ok
19:44:10.0065 0x2220  [ F4C796C55570F012BFDD70CD218DEDF3, 2FCCB52FA9A855861DB8346755AEA7CAD75561E924EA0D475B6950C5BBAA7D4C ] C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe
19:44:10.0239 0x2220  GarenaPlus - ok
19:44:10.0289 0x2220  [ 08DFA176E4FC0E63ACD8EC854449D2B0, B8CA204C3F318CD9D12F61CDDA5C66184A48D6206F019AD11DB2605FDBEB288D ] C:\Users\Winfred Arman Lati\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
19:44:10.0319 0x2220  Spotify Web Helper - ok
19:44:10.0466 0x2220  [ B2BAE2D76FBE9FDC3F6E0D1F886DF367, 964EBF736891BE252C68FCE1F9EAD5E60E6E0C2119D21C6DF49FBD30FBB678EF ] C:\Program Files\CCleaner\CCleaner64.exe
19:44:10.0595 0x2220  CCleaner Monitoring - ok
19:44:10.0604 0x2220  Waiting for KSN requests completion. In queue: 165
19:44:11.0636 0x2220  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.6.305.0 ), 0x61100 ( enabled : updated )
 


19:44:11.0645 0x2220  Win FW state via NFP2: enabled
19:44:14.0516 0x2220  ============================================================
19:44:14.0516 0x2220  Scan finished
19:44:14.0516 0x2220  ============================================================
19:44:14.0535 0x1cc0  Detected object count: 0
19:44:14.0535 0x1cc0  Actual detected object count: 0
19:44:34.0368 0x231c  ============================================================
19:44:34.0368 0x231c  Scan started
19:44:34.0368 0x231c  Mode: Manual;
19:44:34.0368 0x231c  ============================================================
19:44:34.0368 0x231c  KSN ping started
19:44:34.0444 0x231c  KSN ping finished: true
19:44:34.0617 0x231c  ================ Scan system memory ========================
19:44:34.0617 0x231c  System memory - ok
19:44:34.0619 0x231c  ================ Scan services =============================
19:44:34.0667 0x231c  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
19:44:34.0672 0x231c  1394ohci - ok
19:44:34.0677 0x231c  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
19:44:34.0680 0x231c  3ware - ok
19:44:34.0699 0x231c  [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
19:44:34.0709 0x231c  ACPI - ok
19:44:34.0713 0x231c  [ CFA8E06DEFA40BA2702FA92A98BDAA86, CDAD728F6E65026C6B8F348FE09312D024674FB4FDE08749D836EF4FFCF99F0F ] acpials         C:\WINDOWS\System32\drivers\acpials.sys
19:44:34.0714 0x231c  acpials - ok
19:44:34.0720 0x231c  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
19:44:34.0722 0x231c  acpiex - ok
19:44:34.0727 0x231c  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
19:44:34.0727 0x231c  acpipagr - ok
19:44:34.0731 0x231c  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
19:44:34.0732 0x231c  AcpiPmi - ok
19:44:34.0736 0x231c  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
19:44:34.0737 0x231c  acpitime - ok
19:44:34.0754 0x231c  [ CBDF353624D1744734F2FD13B4786F90, 615C695F842D2F777C7D0DAA19B3674AB903FDC401E22A130C04DB0D0C1486D2 ] AdAppMgrSvc     C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
19:44:34.0765 0x231c  AdAppMgrSvc - ok
19:44:34.0771 0x231c  [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:44:34.0773 0x231c  AdobeARMservice - ok
19:44:34.0798 0x231c  [ CB1719E3EA00A0C114A8AD2655F43754, B38D21C4A7A83904CADEBA96A56AA5D1807C412A8E0BEFC889DF20D02941E570 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:44:34.0803 0x231c  AdobeFlashPlayerUpdateSvc - ok
19:44:34.0823 0x231c  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
19:44:34.0835 0x231c  ADP80XX - ok
19:44:34.0842 0x231c  [ 02CB607A0EDCDF57F61F166F51F5BBF4, 8706392144A47982BB36D8B08F833F8928A12F2DF18C557FEA2A88536B2BE675 ] ADUServiceNSRT  C:\Program Files (x86)\Common Files\Microsoft\Care Suite\ADUService\ADUService.exe
19:44:34.0844 0x231c  ADUServiceNSRT - ok
19:44:34.0852 0x231c  [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
19:44:34.0856 0x231c  AeLookupSvc - ok
19:44:34.0872 0x231c  [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
19:44:34.0881 0x231c  AFD - ok
19:44:34.0887 0x231c  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
19:44:34.0889 0x231c  agp440 - ok
19:44:34.0894 0x231c  [ F0CB6DB513CAC393D04A0FCE0A59E1BF, E6EE159D0E6B1F666946B1FE421874044E89BB2EB60A521BAA111A1229FA7B2D ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
19:44:34.0895 0x231c  ahcache - ok
19:44:34.0901 0x231c  [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG             C:\WINDOWS\System32\alg.exe
19:44:34.0903 0x231c  ALG - ok
19:44:34.0909 0x231c  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
19:44:34.0911 0x231c  AmdK8 - ok
19:44:34.0918 0x231c  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
19:44:34.0920 0x231c  AmdPPM - ok
19:44:34.0925 0x231c  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
19:44:34.0926 0x231c  amdsata - ok
19:44:34.0935 0x231c  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
19:44:34.0940 0x231c  amdsbs - ok
19:44:34.0944 0x231c  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
19:44:34.0945 0x231c  amdxata - ok
19:44:34.0952 0x231c  [ 4DE4BE679205B3A712562507AEE75227, 1C40F14A2BFFFB8E9646B57419D9F810A86D0DCD94F9DE9D9851D498F86F343E ] AMPPAL          C:\WINDOWS\System32\drivers\AMPPAL.sys
19:44:34.0956 0x231c  AMPPAL - ok
19:44:34.0963 0x231c  [ 4DE4BE679205B3A712562507AEE75227, 1C40F14A2BFFFB8E9646B57419D9F810A86D0DCD94F9DE9D9851D498F86F343E ] AMPPALP         C:\WINDOWS\system32\DRIVERS\amppal.sys
19:44:34.0966 0x231c  AMPPALP - ok
19:44:34.0987 0x231c  [ 03CA03047B1CEC93D459BAF5E5BB22B1, 7506CEBCE4A8B113467430BDB54A5434E538AAC39E4BB421E4E0B50F7C931457 ] AMPPALR3        C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
19:44:35.0001 0x231c  AMPPALR3 - ok
19:44:35.0007 0x231c  [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID           C:\WINDOWS\system32\drivers\appid.sys
19:44:35.0008 0x231c  AppID - ok
19:44:35.0013 0x231c  [ 34B2E222F82D05398DAE7203B36B6A2B, AC04BC6B5A36A6807FFE302E9ACF073342B4D76B0BB386249251CB3CA1852CE8 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
19:44:35.0014 0x231c  AppIDSvc - ok
19:44:35.0021 0x231c  [ 680BFB820C5A943AB709BAA2B1EF27F2, A51D2A7976A762FE470C13C6D1BA0319A0FB19C9E66BF02AA44F83EAEC7130F8 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
19:44:35.0023 0x231c  Appinfo - ok
19:44:35.0038 0x231c  [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
19:44:35.0050 0x231c  AppReadiness - ok
19:44:35.0081 0x231c  [ 573542B5E97772021B73E854DA861DAA, C3FD00FA28060F8D7CDFD455BBB5FF8239CB76DDFFF2BDAE6AA944674DD993D3 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
19:44:35.0104 0x231c  AppXSvc - ok
19:44:35.0111 0x231c  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
19:44:35.0114 0x231c  arcsas - ok
19:44:35.0119 0x231c  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
19:44:35.0120 0x231c  atapi - ok
19:44:35.0129 0x231c  [ 8779FDAE68BC948B0FE152E758CC8DA7, 13070C2073F8E7546B48AE9CF54067B9BB75DFCD98F2987B90FFAD20D40D54CF ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
19:44:35.0134 0x231c  AudioEndpointBuilder - ok
19:44:35.0157 0x231c  [ 61EA45A645854FE81D8A924E2D93DFFE, 34F79532297F609CA93C380B68BB8B7B0F027F9C8F4FB8E02A9A43EA3D155F1B ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
19:44:35.0174 0x231c  Audiosrv - ok
19:44:35.0182 0x231c  [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
19:44:35.0184 0x231c  AxInstSV - ok
19:44:35.0199 0x231c  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
19:44:35.0209 0x231c  b06bdrv - ok
19:44:35.0214 0x231c  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
19:44:35.0217 0x231c  BasicDisplay - ok
19:44:35.0221 0x231c  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
19:44:35.0222 0x231c  BasicRender - ok
19:44:35.0228 0x231c  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
19:44:35.0229 0x231c  bcmfn2 - ok
19:44:35.0241 0x231c  [ 77D760E9B477C21487C171F561497F98, 2393D466CEC863C771C5BB4CD81B251635DC084386134B8E13F74F3E1C6D68DF ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
19:44:35.0247 0x231c  BDESVC - ok
19:44:35.0252 0x231c  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
19:44:35.0252 0x231c  Beep - ok
19:44:35.0273 0x231c  [ 22A5582ACF0CEE97268D7868C69F35CE, 78A44C10966FE467D3FCC76BE37647AE2CC2BCA9DE5715AD9E643162B23C3A19 ] BFE             C:\WINDOWS\System32\bfe.dll
19:44:35.0291 0x231c  BFE - ok
19:44:35.0313 0x231c  [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS            C:\WINDOWS\System32\qmgr.dll
19:44:35.0332 0x231c  BITS - ok
19:44:35.0361 0x231c  [ E7429ECD0C47CC065EEACF7E9D0E6341, 10D8231E14C908A0949108EB5F84E17BA10ABFC370D0C5F65945B23879AB12BF ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
19:44:35.0380 0x231c  Bluetooth Device Monitor - ok
19:44:35.0407 0x231c  [ 9C0FDB0E3CFE542847E5140FAF17E89F, 290C08C0F8413D15BA41BEFC3D5A9D3E97FB6C55B91FE80D518BEA95A2838173 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
19:44:35.0427 0x231c  Bluetooth OBEX Service - ok
19:44:35.0435 0x231c  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
19:44:35.0436 0x231c  bowser - ok
19:44:35.0445 0x231c  [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
19:44:35.0449 0x231c  BrokerInfrastructure - ok
19:44:35.0456 0x231c  [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser         C:\WINDOWS\System32\browser.dll
19:44:35.0459 0x231c  Browser - ok
19:44:35.0464 0x231c  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
19:44:35.0465 0x231c  BthAvrcpTg - ok
19:44:35.0471 0x231c  [ 1104A31260CCF4318C884E0AE6C513BF, A8F83B558944DEF0F84414A11DC3CB90C3A92377B46760EC0A9B8BC22FB0D5C7 ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
19:44:35.0472 0x231c  BthEnum - ok
19:44:35.0477 0x231c  [ 67343511D80BF3D6D9EEDB5BA8D0B06B, 28436B2E62762686C4FF4FA3F9E7ABB56DA9D6884B6C924ACC544161400593DD ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
19:44:35.0479 0x231c  BthHFEnum - ok
19:44:35.0483 0x231c  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
19:44:35.0484 0x231c  bthhfhid - ok
19:44:35.0497 0x231c  [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
19:44:35.0503 0x231c  BthHFSrv - ok
19:44:35.0514 0x231c  [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum       C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
19:44:35.0518 0x231c  BthLEEnum - ok
19:44:35.0523 0x231c  [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
19:44:35.0524 0x231c  BTHMODEM - ok
19:44:35.0531 0x231c  [ 25BB93167DEF270188072603F92A1EF5, CE4637CE4B63420E218F53CAF89A8C85D036B879B80456FEF3C7C395590E26BB ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
19:44:35.0533 0x231c  BthPan - ok
19:44:35.0567 0x231c  [ C37F4930795B771400C63C3C87E7A6C2, 0D0F54184B2DAA45F646E4F69B85C4411E8DFA88EB4763BB0F386055A420F217 ] BTHPORT         C:\WINDOWS\System32\Drivers\BTHport.sys
19:44:35.0586 0x231c  BTHPORT - ok
19:44:35.0603 0x231c  [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv         C:\WINDOWS\system32\bthserv.dll
19:44:35.0605 0x231c  bthserv - ok
19:44:35.0611 0x231c  [ D30286FF3C7B6318C024D2BC2955C1BF, 47863D046C94A5C19F7D4E0BA393E6FE1E249C78FAB9B8705F7DD2CD87EAC16C ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
19:44:35.0613 0x231c  BTHSSecurityMgr - ok
19:44:35.0620 0x231c  [ 08EA90955AED2D959EE67DF6EDF0E2B6, 0A70AA67E5DD24C473C66A570C0FEBA9D398A0F0AD8386FE05D01C4D16346968 ] BTHUSB          C:\WINDOWS\System32\Drivers\BTHUSB.sys
19:44:35.0622 0x231c  BTHUSB - ok
19:44:35.0628 0x231c  [ 5B8D71504FA8BFA308F6E1169B89D322, 1DC0CF47C5F655EA0F0992020C17A86D05637F55ACBB17380283EBB883A4D14D ] btmaux          C:\WINDOWS\system32\DRIVERS\btmaux.sys
19:44:35.0631 0x231c  btmaux - ok
19:44:35.0662 0x231c  [ E36C1C48F1BC6EFFAEC0930C33DF052A, 0980B5222F4C53DD0F6602AF412850385A0418F2E8685AF85DC430C411AC79B7 ] btmhsf          C:\WINDOWS\system32\DRIVERS\btmhsf.sys
19:44:35.0686 0x231c  btmhsf - ok
19:44:35.0693 0x231c  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
19:44:35.0694 0x231c  cdfs - ok
19:44:35.0703 0x231c  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
19:44:35.0707 0x231c  cdrom - ok
19:44:35.0713 0x231c  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
19:44:35.0716 0x231c  CertPropSvc - ok
19:44:35.0722 0x231c  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
19:44:35.0723 0x231c  circlass - ok
19:44:35.0735 0x231c  [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
19:44:35.0741 0x231c  CLFS - ok
19:44:35.0753 0x231c  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
19:44:35.0754 0x231c  CmBatt - ok
19:44:35.0770 0x231c  [ 114AAF528D3D87D306F3682E618E8091, A030AC04AF042F8F4BB95A9CE2B442D31432C4EEE60502279F169B0FA2E52AAB ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
19:44:35.0779 0x231c  CNG - ok
19:44:35.0787 0x231c  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
19:44:35.0788 0x231c  CompositeBus - ok
19:44:35.0791 0x231c  COMSysApp - ok
19:44:35.0796 0x231c  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
19:44:35.0797 0x231c  condrv - ok
19:44:35.0822 0x231c  [ D8724B606616B2B75AF54096119580F5, 53E1DEF9F966FDE5898759A33FB62B5062A941E97B235D6F6EF79A5AD1283BDE ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
19:44:35.0827 0x231c  cphs - ok
19:44:35.0837 0x231c  [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
19:44:35.0840 0x231c  CryptSvc - ok
19:44:35.0845 0x231c  [ 389C998C64319CD97625B0550E52ECFA, DD0EDDD9C8412F78D2D2B648D67DA887C3040E05DF29F48F71299CB68FDDD0F8 ] dam             C:\WINDOWS\system32\drivers\dam.sys
19:44:35.0846 0x231c  dam - ok
19:44:35.0868 0x231c  [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
19:44:35.0882 0x231c  DcomLaunch - ok
19:44:35.0898 0x231c  [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
19:44:35.0908 0x231c  defragsvc - ok
19:44:35.0920 0x231c  [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
19:44:35.0928 0x231c  DeviceAssociationService - ok
19:44:35.0934 0x231c  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
19:44:35.0938 0x231c  DeviceInstall - ok
19:44:35.0944 0x231c  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
19:44:35.0947 0x231c  Dfsc - ok
19:44:35.0958 0x231c  [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
19:44:35.0964 0x231c  Dhcp - ok
19:44:35.0971 0x231c  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\WINDOWS\system32\drivers\disk.sys
19:44:35.0973 0x231c  disk - ok
19:44:35.0978 0x231c  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
19:44:35.0979 0x231c  dmvsc - ok
19:44:35.0988 0x231c  [ E9AE4FAE83FB38A2962F9032B24CEB3C, CC7D2D8C97CB779791613D76D6E4AF5D628C948C28BAC584C3C7F6A5A6036FBA ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
19:44:35.0992 0x231c  Dnscache - ok
19:44:36.0001 0x231c  [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
19:44:36.0006 0x231c  dot3svc - ok
19:44:36.0013 0x231c  [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS             C:\WINDOWS\system32\dps.dll
19:44:36.0017 0x231c  DPS - ok
19:44:36.0022 0x231c  [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
19:44:36.0022 0x231c  drmkaud - ok
19:44:36.0031 0x231c  [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
19:44:36.0036 0x231c  DsmSvc - ok
19:44:36.0047 0x231c  [ 33F90B202E9DD9B7D489EB59310FDC34, 6ECF6669433E090E9CF6B1875AF18D2C06F8CDB3901D58BF89C3E2202574ABBD ] dtsoftbus01     C:\WINDOWS\System32\drivers\dtsoftbus01.sys
19:44:36.0052 0x231c  dtsoftbus01 - ok
19:44:36.0085 0x231c  [ E1BB0B6F00F470B451AB45EA13EBA0B3, 3A2FC2175B69A5EB98D6C2D563DBFDCB320647AB87A14E47FAE800423DCACDAB ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
19:44:36.0110 0x231c  DXGKrnl - ok
19:44:36.0117 0x231c  [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
19:44:36.0119 0x231c  Eaphost - ok
19:44:36.0190 0x231c  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
19:44:36.0244 0x231c  ebdrv - ok
19:44:36.0254 0x231c  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS             C:\WINDOWS\System32\lsass.exe
19:44:36.0256 0x231c  EFS - ok
19:44:36.0261 0x231c  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
19:44:36.0263 0x231c  EhStorClass - ok
19:44:36.0270 0x231c  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
19:44:36.0272 0x231c  EhStorTcgDrv - ok
19:44:36.0276 0x231c  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
19:44:36.0277 0x231c  ErrDev - ok
19:44:36.0295 0x231c  [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem     C:\WINDOWS\system32\es.dll
19:44:36.0304 0x231c  EventSystem - ok
19:44:36.0323 0x231c  [ 55588867D59BADA2F62E58618CE32B03, F7FAF420103272151194A475D6C8EF4449AFCED787AA3DF7C461370D828E522F ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
19:44:36.0334 0x231c  EvtEng - ok
19:44:36.0342 0x231c  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
19:44:36.0346 0x231c  exfat - ok
19:44:36.0354 0x231c  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
19:44:36.0358 0x231c  fastfat - ok
19:44:36.0375 0x231c  [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax             C:\WINDOWS\system32\fxssvc.exe
19:44:36.0387 0x231c  Fax - ok
19:44:36.0392 0x231c  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
19:44:36.0393 0x231c  fdc - ok
19:44:36.0397 0x231c  [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
19:44:36.0398 0x231c  fdPHost - ok
19:44:36.0403 0x231c  [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
19:44:36.0404 0x231c  FDResPub - ok
19:44:36.0410 0x231c  [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
19:44:36.0413 0x231c  fhsvc - ok
19:44:36.0419 0x231c  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
19:44:36.0421 0x231c  FileInfo - ok
19:44:36.0425 0x231c  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
19:44:36.0426 0x231c  Filetrace - ok
19:44:36.0456 0x231c  [ 8645F91F40B8D022C9AC3DABDF360A6B, 4F83080B1273C92470EB90D80B32056C913240DCC9C4C50B7BE85254066D654D ] FlexNet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
19:44:36.0477 0x231c  FlexNet Licensing Service 64 - ok
19:44:36.0484 0x231c  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
19:44:36.0484 0x231c  flpydisk - ok
19:44:36.0495 0x231c  [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
19:44:36.0501 0x231c  FltMgr - ok
19:44:36.0534 0x231c  [ 7269C9013FCFA3C6E70F03E2630DBFC3, AAB282B4444CC17D197974D05063C7C97E5202E604681DD2DC3BCF0AE77D6057 ] FontCache       C:\WINDOWS\system32\FntCache.dll
19:44:36.0556 0x231c  FontCache - ok
19:44:36.0563 0x231c  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:44:36.0564 0x231c  FontCache3.0.0.0 - ok
19:44:36.0569 0x231c  [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
19:44:36.0570 0x231c  FsDepends - ok
19:44:36.0574 0x231c  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:44:36.0575 0x231c  Fs_Rec - ok
19:44:36.0590 0x231c  [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
19:44:36.0600 0x231c  fvevol - ok
19:44:36.0605 0x231c  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
19:44:36.0606 0x231c  FxPPM - ok
19:44:36.0611 0x231c  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
19:44:36.0612 0x231c  gagp30kx - ok
19:44:36.0616 0x231c  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
19:44:36.0617 0x231c  gencounter - ok
19:44:36.0621 0x231c  [ A1F556318931B9EA276F4E2DA2C1791C, 1E5564A9B213689C56BFBBEC1A7BBFAD78DF1FB55422171C0680935338C5DE57 ] ggflt           C:\WINDOWS\System32\drivers\ggflt.sys
19:44:36.0622 0x231c  ggflt - ok
19:44:36.0627 0x231c  [ 6B503DF845EABF3457E49FBBDA26C10E, A1553E3822EDEA26D8E67FCC7F9EA40DFBED49EC92FD5674AAF938F2D58CF964 ] ggsemc          C:\WINDOWS\System32\drivers\ggsemc.sys
19:44:36.0627 0x231c  ggsemc - ok
19:44:36.0632 0x231c  [ 7F56A3E09A6AD40B07E4EFAD34A40A18, E0EC4293035162E9EFA89A45FFF26B5BC829F7BB7F4D2D5A2CAA5E88AC6DC0C9 ] ggsomc          C:\WINDOWS\System32\drivers\ggsomc.sys
19:44:36.0633 0x231c  ggsomc - ok
19:44:36.0640 0x231c  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
19:44:36.0642 0x231c  GPIOClx0101 - ok
19:44:36.0674 0x231c  [ 0D03F87D4FF4ADBAF8336DD80548155A, BC10CFA88EA2F41A8D96CB810B7953A4C168B79273A3E804A9F020F49AB58CD3 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
19:44:36.0696 0x231c  gpsvc - ok
19:44:36.0704 0x231c  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:44:36.0707 0x231c  gupdate - ok
19:44:36.0712 0x231c  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:44:36.0714 0x231c  gupdatem - ok
19:44:36.0720 0x231c  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
19:44:36.0722 0x231c  HDAudBus - ok
19:44:36.0726 0x231c  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
19:44:36.0727 0x231c  HidBatt - ok
19:44:36.0734 0x231c  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
19:44:36.0736 0x231c  HidBth - ok
19:44:36.0741 0x231c  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
19:44:36.0742 0x231c  hidi2c - ok
19:44:36.0746 0x231c  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
19:44:36.0747 0x231c  HidIr - ok
19:44:36.0752 0x231c  [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv         C:\WINDOWS\system32\hidserv.dll
19:44:36.0753 0x231c  hidserv - ok
19:44:36.0758 0x231c  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
19:44:36.0758 0x231c  HidUsb - ok
19:44:36.0764 0x231c  [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
19:44:36.0767 0x231c  hkmsvc - ok
19:44:36.0776 0x231c  [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
19:44:36.0781 0x231c  HomeGroupListener - ok
19:44:36.0796 0x231c  [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
19:44:36.0804 0x231c  HomeGroupProvider - ok
19:44:36.0810 0x231c  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
19:44:36.0811 0x231c  HpSAMD - ok
19:44:36.0835 0x231c  [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
19:44:36.0851 0x231c  HTTP - ok
19:44:36.0856 0x231c  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
19:44:36.0857 0x231c  hwpolicy - ok
19:44:36.0861 0x231c  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
19:44:36.0862 0x231c  hyperkbd - ok
19:44:36.0865 0x231c  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
19:44:36.0867 0x231c  HyperVideo - ok
19:44:36.0874 0x231c  [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
19:44:36.0876 0x231c  i8042prt - ok
19:44:36.0882 0x231c  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
19:44:36.0883 0x231c  iaLPSSi_GPIO - ok
19:44:36.0889 0x231c  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
19:44:36.0891 0x231c  iaLPSSi_I2C - ok
19:44:36.0908 0x231c  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
19:44:36.0919 0x231c  iaStorA - ok
19:44:36.0937 0x231c  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
19:44:36.0948 0x231c  iaStorAV - ok
19:44:36.0953 0x231c  [ 20E83F4632E15A5E9E716FF2E8AC7FAE, 7CA1A4924F432AD30ED7FA6247C6513DA173EE31132AE115E85C0ED7E5971029 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
19:44:36.0954 0x231c  IAStorDataMgrSvc - ok
19:44:36.0966 0x231c  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
19:44:36.0974 0x231c  iaStorV - ok
19:44:36.0979 0x231c  [ 23E22B130EFE5A225E279467BE146317, 2302C119FE9C57F3A71DFE504489423B6F7140E2DFF5D501883AD971CB671CB4 ] iBtFltCoex      C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys
19:44:36.0981 0x231c  iBtFltCoex - ok
19:44:36.0985 0x231c  IEEtwCollectorService - ok
19:44:37.0063 0x231c  [ 076023219E918D34585B231029A44571, C2AB0DE0D80D0BC6595C9F9655A890531E7952599714DC03B4ECB46947D833A8 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
19:44:37.0123 0x231c  igfx - ok
19:44:37.0140 0x231c  [ C814D4A0B7B91E936B2DC0828C69ACAB, A19B503CB3C598474C61DA6F1AC087CCF287F7523D2F932B21EF21E7CA1809B1 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
19:44:37.0146 0x231c  igfxCUIService1.0.0.0 - ok
19:44:37.0172 0x231c  [ 57322EBB67A59FB64E228F31A84CA43D, 258DA26BDFAB635F145E55CF65CDFCFE4EB91454E3F930489E92810250EF9FD7 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
19:44:37.0191 0x231c  IKEEXT - ok
19:44:37.0198 0x231c  [ FC7C456AF9B9811499EDBD10616832EE, CA2D8B0E672D3AE449C2FF0B9E142D74E8C72FD877D11162A9F7CC51AF58220F ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
19:44:37.0199 0x231c  intaud_WaveExtensible - ok
19:44:37.0281 0x231c  [ DDC860724AEF8F8E42AC61E6585769C6, 62AD5772E8097B03E161E6F14582E2A4BBA0DFA1A1E7F664D881D464E136DBD2 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
19:44:37.0344 0x231c  IntcAzAudAddService - ok
19:44:37.0361 0x231c  [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
19:44:37.0367 0x231c  IntcDAud - ok
19:44:37.0385 0x231c  [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
19:44:37.0396 0x231c  Intel® Capability Licensing Service Interface - ok
19:44:37.0403 0x231c  [ 30E9FAC23E2537D82F2836CB81AEE186, 03E5072D43ECED70EF004D2E6E654B4CCCE059825CC3C641C0534E4C0BC0C7E8 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
19:44:37.0406 0x231c  Intel® ME Service - ok
19:44:37.0413 0x231c  [ AB62699812B02E9268F4DA68F2791512, 7E108FDC5AB41731EAEDFBFB68FEE58F2B0FE6F04BAE0E95A635D12A06269FAA ] Intel® Wireless Bluetooth® 4.0 Radio Management C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
19:44:37.0415 0x231c  Intel® Wireless Bluetooth® 4.0 Radio Management - ok
19:44:37.0420 0x231c  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
19:44:37.0421 0x231c  intelide - ok
19:44:37.0425 0x231c  [ 7AA01AB1C110916825E6E1389F1B9AF2, E2885955AFA0908E194B1BC364C9582249B2B2AFFF93F17F3414F55B1E5F2C42 ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
19:44:37.0426 0x231c  intelpep - ok
19:44:37.0433 0x231c  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
19:44:37.0435 0x231c  intelppm - ok
19:44:37.0440 0x231c  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:44:37.0442 0x231c  IpFilterDriver - ok
19:44:37.0465 0x231c  [ A5800036E4EA06697A34742A24ACFBE1, BA67060526E9213000B4206F86A74F904999AD7018EFCBE4FE9708650DA9D973 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
19:44:37.0481 0x231c  iphlpsvc - ok
19:44:37.0487 0x231c  [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
19:44:37.0489 0x231c  IPMIDRV - ok
19:44:37.0495 0x231c  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
19:44:37.0498 0x231c  IPNAT - ok
19:44:37.0502 0x231c  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
19:44:37.0503 0x231c  IRENUM - ok
19:44:37.0507 0x231c  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
19:44:37.0508 0x231c  isapnp - ok
19:44:37.0520 0x231c  [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
19:44:37.0525 0x231c  iScsiPrt - ok
19:44:37.0530 0x231c  [ A90C843F4FDD7A07129BA73C6BE13976, A76DEA9F09E3B2F18D3B646A0DD39E2773EC62E2F3C55421BA61C12190D78C1C ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
19:44:37.0531 0x231c  iwdbus - ok
19:44:37.0537 0x231c  [ 3C4002D339491AF73D663FFC7F6E5ECB, 0B53047989BDB781572253BC3AA757912FE54366870C1955E687972CE210C285 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
19:44:37.0540 0x231c  jhi_service - ok
19:44:37.0546 0x231c  [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
19:44:37.0547 0x231c  kbdclass - ok
19:44:37.0552 0x231c  [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
19:44:37.0553 0x231c  kbdhid - ok
19:44:37.0557 0x231c  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
19:44:37.0558 0x231c  kdnic - ok
19:44:37.0562 0x231c  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso          C:\WINDOWS\system32\lsass.exe
19:44:37.0564 0x231c  KeyIso - ok
19:44:37.0570 0x231c  [ 4E829B18D5BAEC29893792A3C671A847, 64C3B99F53A9D1ACA802B46B09E820AD210B667D5A1CD0ADAF1F12944B15B52E ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
19:44:37.0572 0x231c  KSecDD - ok
19:44:37.0579 0x231c  [ CA3F19E4B0765135B0F3C99384C535B9, 16441986C4E91F272E5876121272366476DB0496117C5AB4FBC82B07A06C0EC0 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
19:44:37.0582 0x231c  KSecPkg - ok
19:44:37.0587 0x231c  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
19:44:37.0588 0x231c  ksthunk - ok
19:44:37.0599 0x231c  [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
19:44:37.0606 0x231c  KtmRm - ok
19:44:37.0618 0x231c  [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
19:44:37.0625 0x231c  LanmanServer - ok
19:44:37.0635 0x231c  [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
19:44:37.0641 0x231c  LanmanWorkstation - ok
19:44:37.0657 0x231c  [ 2B7479EB47731A8ACBA28AF4C4BDA32D, 67AEB98E7B41337FEFD92CC81BFAD25FBB679998B318C110A4873B1AD8927A97 ] lfsvc           C:\WINDOWS\System32\GeofenceMonitorService.dll
19:44:37.0667 0x231c  lfsvc - ok
19:44:37.0673 0x231c  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
19:44:37.0675 0x231c  lltdio - ok
19:44:37.0684 0x231c  [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
19:44:37.0689 0x231c  lltdsvc - ok
19:44:37.0693 0x231c  [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
19:44:37.0695 0x231c  lmhosts - ok
19:44:37.0703 0x231c  [ 4269D44BB47A6DA5D80B11F4C8536458, 7A8FFC8F851DD9E5C43986BE0888831CB71D188138DF3CF7F787DADDA70915B0 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
19:44:37.0708 0x231c  LMS - ok
19:44:37.0716 0x231c  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
19:44:37.0718 0x231c  LSI_SAS - ok
19:44:37.0723 0x231c  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
19:44:37.0725 0x231c  LSI_SAS2 - ok
19:44:37.0730 0x231c  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\WINDOWS\system32\drivers\lsi_sas3.sys
19:44:37.0732 0x231c  LSI_SAS3 - ok
19:44:37.0738 0x231c  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
19:44:37.0739 0x231c  LSI_SSS - ok
19:44:37.0759 0x231c  [ 9B231CD3E52DF29EE50086FF676D3D6F, A47449CA6C88FE089A6953D05FA33A55A55E0306335A7A102A4CD75429FF0515 ] LSM             C:\WINDOWS\System32\lsm.dll
19:44:37.0773 0x231c  LSM - ok
19:44:37.0780 0x231c  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
19:44:37.0782 0x231c  luafv - ok
19:44:37.0787 0x231c  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
19:44:37.0789 0x231c  megasas - ok
19:44:37.0804 0x231c  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
19:44:37.0813 0x231c  megasr - ok
19:44:37.0819 0x231c  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
19:44:37.0820 0x231c  MEIx64 - ok
19:44:37.0825 0x231c  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS           C:\WINDOWS\system32\mmcss.dll
19:44:37.0828 0x231c  MMCSS - ok
19:44:37.0833 0x231c  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
19:44:37.0834 0x231c  Modem - ok
19:44:37.0838 0x231c  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
19:44:37.0839 0x231c  monitor - ok
19:44:37.0844 0x231c  [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
19:44:37.0845 0x231c  mouclass - ok
19:44:37.0850 0x231c  [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
19:44:37.0851 0x231c  mouhid - ok
19:44:37.0857 0x231c  [ D1D82F007A079A4D623DBD1F36EF30A1, 7901F81B62C5A4196D75A10C05386B16831CB290EFB9A1611CECF281068C520F ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
19:44:37.0858 0x231c  mountmgr - ok
19:44:37.0864 0x231c  [ 9E587AFE2AD4873C809F1E0C598AB435, 0B0ECFF265120BCBAC37CF9B53B18462725AB991D00B90DBEE8DD9375121DA4F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:44:37.0866 0x231c  MozillaMaintenance - ok
19:44:37.0872 0x231c  [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
19:44:37.0873 0x231c  mpsdrv - ok
19:44:37.0894 0x231c  [ C18AA14126ADC66478E8E962B2DFAA98, A6F8CE9D88D590DC083253004392572C3BD02C33433CD6C0D9117D2AA7171EEC ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
19:44:37.0910 0x231c  MpsSvc - ok
19:44:37.0917 0x231c  [ DB32958F0E704EFBF7F15161A569E39F, 8A26448B954F8A16EE9BA72EF47F6C549A75B30BD13FEB5A29EB099A74D8F678 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
19:44:37.0920 0x231c  MRxDAV - ok
19:44:37.0932 0x231c  [ 31233271EDE50D1BBB220F78AFA60486, 2122FAB5BD353DF63CF0FE9CEDBD5DFD1F26F2DE04303E1B3FFB03AA02AECED9 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:44:37.0939 0x231c  mrxsmb - ok
19:44:37.0950 0x231c  [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
19:44:37.0955 0x231c  mrxsmb10 - ok
19:44:37.0963 0x231c  [ 6276AC2AA203CF47811F6EFBBD214FBF, AE55D87D863A626347B0074F4E962080F1989A94153DAF8475593249F616DA2F ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
19:44:37.0967 0x231c  mrxsmb20 - ok
19:44:37.0973 0x231c  [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
19:44:37.0975 0x231c  MsBridge - ok
19:44:37.0982 0x231c  [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
19:44:37.0985 0x231c  MSDTC - ok
19:44:37.0993 0x231c  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
19:44:37.0994 0x231c  Msfs - ok
19:44:37.0998 0x231c  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
19:44:38.0000 0x231c  msgpiowin32 - ok
19:44:38.0004 0x231c  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
19:44:38.0004 0x231c  mshidkmdf - ok
19:44:38.0008 0x231c  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
19:44:38.0008 0x231c  mshidumdf - ok
19:44:38.0013 0x231c  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
19:44:38.0014 0x231c  msisadrv - ok
19:44:38.0021 0x231c  [ 4EAEEBAC8CFF4E0D717DFA920BC58A90, A65CB1BB3392B6A04B978348CAC18A414560A6B04A727F22DFC0ADB20DD3AF6B ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
19:44:38.0024 0x231c  MSiSCSI - ok
19:44:38.0027 0x231c  msiserver - ok
19:44:38.0031 0x231c  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:44:38.0032 0x231c  MSKSSRV - ok
19:44:38.0037 0x231c  [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
19:44:38.0039 0x231c  MsLldp - ok
19:44:38.0043 0x231c  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:44:38.0044 0x231c  MSPCLOCK - ok
19:44:38.0047 0x231c  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
19:44:38.0048 0x231c  MSPQM - ok
19:44:38.0059 0x231c  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
19:44:38.0066 0x231c  MsRPC - ok
19:44:38.0073 0x231c  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
19:44:38.0074 0x231c  mssmbios - ok
19:44:38.0077 0x231c  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
19:44:38.0078 0x231c  MSTEE - ok
19:44:38.0082 0x231c  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
19:44:38.0083 0x231c  MTConfig - ok
19:44:38.0088 0x231c  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
19:44:38.0090 0x231c  Mup - ok
19:44:38.0094 0x231c  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
19:44:38.0095 0x231c  mvumis - ok
19:44:38.0104 0x231c  [ FCDCFEDAF3C1D61DE11FA0DE9453699C, 4E79F1040E62B0DEE00F3035DBFE5241A459FE4C1A46337FF13A25FF8C5A64A5 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
19:44:38.0109 0x231c  MyWiFiDHCPDNS - ok
19:44:38.0122 0x231c  [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent        C:\WINDOWS\system32\qagentRT.dll
19:44:38.0131 0x231c  napagent - ok
19:44:38.0144 0x231c  [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
19:44:38.0152 0x231c  NativeWifiP - ok
19:44:38.0159 0x231c  [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
19:44:38.0163 0x231c  NcaSvc - ok
19:44:38.0171 0x231c  [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService      C:\WINDOWS\System32\ncbservice.dll
19:44:38.0174 0x231c  NcbService - ok
19:44:38.0179 0x231c  [ 9ACED0F5B458C9011F39143326494E93, 9DFFC7EE7DE6FD92545EC6A203213C498A01EEFB0BC55460D339BCE498E56A7F ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
19:44:38.0182 0x231c  NcdAutoSetup - ok
19:44:38.0208 0x231c  [ 21FE65E2E67C4E31EE95CBD1F91C4B24, 6558F2BC10E6B09F7EE5264722FCF572B861EDB60A1433B58A4F4625EC0ABF63 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
19:44:38.0227 0x231c  NDIS - ok
19:44:38.0232 0x231c  [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
19:44:38.0233 0x231c  NdisCap - ok
19:44:38.0239 0x231c  [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
19:44:38.0242 0x231c  NdisImPlatform - ok
19:44:38.0246 0x231c  [ DC1D9F692C2AD84C214584C28501C1F7, 96FC0D1EC48FED963E02648541A2AAC8E72ED00D797EA8E3D0ED02F5EB4816C5 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:44:38.0247 0x231c  NdisTapi - ok
19:44:38.0252 0x231c  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:44:38.0253 0x231c  Ndisuio - ok
19:44:38.0257 0x231c  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
19:44:38.0258 0x231c  NdisVirtualBus - ok
19:44:38.0267 0x231c  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:44:38.0271 0x231c  NdisWan - ok
19:44:38.0278 0x231c  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:44:38.0281 0x231c  NdisWanLegacy - ok
19:44:38.0287 0x231c  [ 0BBE2FA30BAD58C9ADC01E4F84A3D2A1, 913AEC8A5F735C2EFDCB417E4077AB5A15457C601E6E88A1F4FA52C91E6E0BBF ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
19:44:38.0289 0x231c  NDProxy - ok
19:44:38.0294 0x231c  [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
19:44:38.0296 0x231c  Ndu - ok
19:44:38.0301 0x231c  [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
19:44:38.0303 0x231c  NetBIOS - ok
19:44:38.0312 0x231c  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
19:44:38.0317 0x231c  NetBT - ok
19:44:38.0322 0x231c  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon        C:\WINDOWS\system32\lsass.exe
19:44:38.0323 0x231c  Netlogon - ok
19:44:38.0333 0x231c  [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman          C:\WINDOWS\System32\netman.dll
19:44:38.0338 0x231c  Netman - ok
19:44:38.0353 0x231c  [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
19:44:38.0363 0x231c  netprofm - ok
19:44:38.0373 0x231c  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:44:38.0375 0x231c  NetTcpPortSharing - ok
19:44:38.0381 0x231c  [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc          C:\WINDOWS\System32\drivers\netvsc63.sys
19:44:38.0383 0x231c  netvsc - ok
19:44:38.0451 0x231c  [ DBB747CF8BCCFDAA00FE05CED6C06EE9, CF0B73D984699156600D5E1149C95ACADBB882598BD6949E0FF4420CA1DBFED7 ] NETwNe64        C:\WINDOWS\system32\DRIVERS\NETwew00.sys
19:44:38.0503 0x231c  NETwNe64 - ok
19:44:38.0526 0x231c  [ EB8ACA4B01FE07FD38CF927D04D70148, C81F338837B9C9B09D9B274BF5113CD08EB5FD45FD17299FE7E8CB61D3AD44C3 ] NetworkSupport  C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe
19:44:38.0536 0x231c  NetworkSupport - ok
19:44:38.0549 0x231c  [ CB90BA45BCB3AF0D5C67668A2E976160, D5F803761308BFDE713A6F424370D04597219634E21A9F4EA52170AD998209E3 ] NFCProxyService C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe
19:44:38.0556 0x231c  NFCProxyService - ok
19:44:38.0569 0x231c  [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
19:44:38.0576 0x231c  NlaSvc - ok
19:44:38.0581 0x231c  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
19:44:38.0583 0x231c  Npfs - ok
19:44:38.0586 0x231c  npggsvc - ok
19:44:38.0590 0x231c  [ AAF9B4DF67938753CB21808EA3574242, A0C15AD0CE9CC06E7B15A90A61E8C53A3F1EC4AD9E13FF1054E023E9DFB95961 ] npkcrypt        C:\Program Files (x86)\Level Up Games\Ragnarok Online\npkcrypt.sys
19:44:38.0591 0x231c  npkcrypt - ok
19:44:38.0594 0x231c  npkycryp - ok
19:44:38.0600 0x231c  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
19:44:38.0601 0x231c  npsvctrig - ok
19:44:38.0606 0x231c  [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi             C:\WINDOWS\system32\nsisvc.dll
19:44:38.0608 0x231c  nsi - ok
19:44:38.0612 0x231c  [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
19:44:38.0613 0x231c  nsiproxy - ok
19:44:38.0657 0x231c  [ 7F68063A5A0461E02BC860CE0E6BFDDC, 47E9F75D27B97278B74034B7D3951A26B1644911ED321455E08D935731C858DE ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
19:44:38.0692 0x231c  Ntfs - ok
19:44:38.0699 0x231c  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\WINDOWS\system32\drivers\Null.sys
19:44:38.0700 0x231c  Null - ok
19:44:38.0707 0x231c  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
19:44:38.0709 0x231c  nvraid - ok
19:44:38.0716 0x231c  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
19:44:38.0720 0x231c  nvstor - ok
19:44:38.0726 0x231c  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
19:44:38.0728 0x231c  nv_agp - ok
19:44:38.0735 0x231c  [ 11E0B35479C895888BA3D7F619DCFFF3, 6ED82C19898101EC00BD64A9F90595C3D20AD2D2902AA8765B740FB3B9312DDF ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:44:38.0738 0x231c  ose64 - ok
19:44:38.0742 0x231c  [ 8EABC137CD3E3155F425CF982AA11FD5, F895C656D0B75A9D2ECE8DABCB9DAEA672CB67BC38024803C3FA25043B3FD933 ] OTGMouUSB       C:\WINDOWS\system32\DRIVERS\OTGMouUSB.sys
19:44:38.0743 0x231c  OTGMouUSB - ok
19:44:38.0753 0x231c  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
19:44:38.0761 0x231c  p2pimsvc - ok
19:44:38.0774 0x231c  [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
19:44:38.0782 0x231c  p2psvc - ok
19:44:38.0790 0x231c  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
19:44:38.0792 0x231c  Parport - ok
19:44:38.0798 0x231c  [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
19:44:38.0800 0x231c  partmgr - ok
19:44:38.0813 0x231c  [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
19:44:38.0822 0x231c  PcaSvc - ok
19:44:38.0834 0x231c  [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\WINDOWS\system32\drivers\pci.sys
19:44:38.0839 0x231c  pci - ok
19:44:38.0843 0x231c  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
19:44:38.0844 0x231c  pciide - ok
19:44:38.0851 0x231c  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
19:44:38.0853 0x231c  pcmcia - ok
19:44:38.0857 0x231c  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
19:44:38.0859 0x231c  pcw - ok
19:44:38.0864 0x231c  [ ED54A75050211DC77F9B98C41E026858, F92FB59ADE88469EAA50E91D43165C68CC32FDE11595A0069FD43103A674FE44 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
19:44:38.0866 0x231c  pdc - ok
19:44:38.0883 0x231c  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
19:44:38.0895 0x231c  PEAUTH - ok
19:44:38.0918 0x231c  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
19:44:38.0919 0x231c  PerfHost - ok
19:44:38.0959 0x231c  [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla             C:\WINDOWS\system32\pla.dll
19:44:38.0987 0x231c  pla - ok
19:44:38.0997 0x231c  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
19:44:39.0002 0x231c  PlugPlay - ok
19:44:39.0007 0x231c  [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
19:44:39.0009 0x231c  PNRPAutoReg - ok
19:44:39.0020 0x231c  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
19:44:39.0027 0x231c  PNRPsvc - ok
19:44:39.0040 0x231c  [ BDD52AB4AEBB8B1904568DBD0CCB70CB, C3D1DBA349C79B43DCDD9EF5255C5EE973EFB844235B808B5EF9B63A51FF00AA ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
19:44:39.0047 0x231c  PolicyAgent - ok
19:44:39.0055 0x231c  [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power           C:\WINDOWS\system32\umpo.dll
19:44:39.0058 0x231c  Power - ok
19:44:39.0118 0x231c  [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
19:44:39.0170 0x231c  PrintNotify - ok
19:44:39.0186 0x231c  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
19:44:39.0188 0x231c  Processor - ok
19:44:39.0196 0x231c  [ 19424364D8C03B990C4281BE53963FD0, 958FC8436E6B754858E20BC48B0D4B269991E8CA94C15C2761BF04ED52591907 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
19:44:39.0202 0x231c  ProfSvc - ok
19:44:39.0209 0x231c  [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
19:44:39.0212 0x231c  Psched - ok
19:44:39.0218 0x231c  [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64        C:\WINDOWS\system32\Drivers\PxHlpa64.sys
19:44:39.0219 0x231c  PxHlpa64 - ok
19:44:39.0227 0x231c  [ 65D32E9BBCC9FFD36F2BF38C595D283F, 185ADC9094D302B42C1B3080CCEDE16606027FDBE24FE9C70291291F2E38E3B1 ] qcusbser        C:\WINDOWS\system32\DRIVERS\qcusbser.sys
19:44:39.0231 0x231c  qcusbser - ok
19:44:39.0242 0x231c  [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE           C:\WINDOWS\system32\qwave.dll
19:44:39.0249 0x231c  QWAVE - ok
19:44:39.0254 0x231c  [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
19:44:39.0255 0x231c  QWAVEdrv - ok
19:44:39.0259 0x231c  [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:44:39.0260 0x231c  RasAcd - ok
19:44:39.0266 0x231c  [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
19:44:39.0269 0x231c  RasAuto - ok
19:44:39.0284 0x231c  [ F83B38FCD4F69157B3D158433FA149CC, AB103BD3E2B3B134CB355C556DF70BCF0CF4DB11EFF7DB4A9876D5AA43D81293 ] RasMan          C:\WINDOWS\System32\rasmans.dll
19:44:39.0295 0x231c  RasMan - ok
19:44:39.0301 0x231c  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:44:39.0303 0x231c  RasPppoe - ok
19:44:39.0315 0x231c  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:44:39.0322 0x231c  rdbss - ok
19:44:39.0328 0x231c  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
19:44:39.0329 0x231c  rdpbus - ok
19:44:39.0338 0x231c  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
19:44:39.0341 0x231c  RDPDR - ok
19:44:39.0349 0x231c  [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
19:44:39.0350 0x231c  RdpVideoMiniport - ok
19:44:39.0358 0x231c  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
19:44:39.0363 0x231c  rdyboost - ok
19:44:39.0387 0x231c  [ 615DFD97DEA56CE1C3A52185A3038FF8, 707BF5F9FAE478A12656D15013F507CC1335E7B72BD21CA99BB813CB95E37BC0 ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
19:44:39.0404 0x231c  ReFS - ok
19:44:39.0413 0x231c  [ 5B1F724CBCA8E08DC9D4C158C9BC1C1C, D5B170CF4B5420213130E151AFBBD9B84C5F7E710F5F67066E07095DEC1BD4B9 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
19:44:39.0415 0x231c  RegSrvc - ok
19:44:39.0424 0x231c  [ 0CF7CB56BF2D5E9DBCEE0185CB626FAD, 2BD2E2FB1D2EADD1F70EF55E8523C353F95D4FEB1BAD5017FA4D94F790F27825 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
19:44:39.0429 0x231c  RemoteAccess - ok
19:44:39.0436 0x231c  [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
19:44:39.0440 0x231c  RemoteRegistry - ok
19:44:39.0449 0x231c  [ 0527EF6E23B9FAB37DDCBC479C6CFA28, C004CE600074AC434F8B24A3383F8C0ACFA5476D9E3B1493B40911C78B028D64 ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
19:44:39.0452 0x231c  RFCOMM - ok
19:44:39.0457 0x231c  [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
19:44:39.0460 0x231c  RpcEptMapper - ok
19:44:39.0464 0x231c  [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator      C:\WINDOWS\system32\locator.exe
19:44:39.0465 0x231c  RpcLocator - ok
19:44:39.0486 0x231c  [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
19:44:39.0501 0x231c  RpcSs - ok
19:44:39.0515 0x231c  [ F95482385625D1C89576D0E0E22A2229, 9ED3FEF8A73C768CCDB01822384B3A6CB371BF8EADDD4C05057B3BFDEE90595F ] RSPCIESTOR      C:\WINDOWS\system32\DRIVERS\RtsPStor.sys
19:44:39.0521 0x231c  RSPCIESTOR - ok
19:44:39.0528 0x231c  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
19:44:39.0529 0x231c  rspndr - ok
19:44:39.0537 0x231c  [ 2B5A48DF6997F7BD92535C4F76236810, DDFDCD48ABD0048DB5B31C71ADB48C19F0E689D413B70AC942E82DA3B1751968 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
19:44:39.0541 0x231c  RtkAudioService - ok
19:44:39.0558 0x231c  [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168         C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
19:44:39.0569 0x231c  RTL8168 - ok
19:44:39.0574 0x231c  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
19:44:39.0575 0x231c  s3cap - ok
19:44:39.0582 0x231c  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs           C:\WINDOWS\system32\lsass.exe
19:44:39.0584 0x231c  SamSs - ok
19:44:39.0590 0x231c  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
19:44:39.0592 0x231c  sbp2port - ok
19:44:39.0600 0x231c  [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
19:44:39.0605 0x231c  SCardSvr - ok
19:44:39.0611 0x231c  [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
19:44:39.0614 0x231c  ScDeviceEnum - ok
19:44:39.0619 0x231c  [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
19:44:39.0620 0x231c  scfilter - ok
19:44:39.0650 0x231c  [ A626F5E446860F22835E783142D7AE33, 3A786639E1FABCA512F4F91A10811DD3C4D9C9C9BB893362E4D019219D0BD8E2 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
19:44:39.0674 0x231c  Schedule - ok
19:44:39.0684 0x231c  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
19:44:39.0687 0x231c  SCPolicySvc - ok
19:44:39.0696 0x231c  [ 27FF998504DEF8D29A771FBB41707C5E, 82035EA15E5241C9C39B5474E5CBA49BB188B4B792B121ABF98659460A1EDE85 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
19:44:39.0701 0x231c  sdbus - ok
19:44:39.0706 0x231c  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
19:44:39.0708 0x231c  sdstor - ok
19:44:39.0712 0x231c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
19:44:39.0713 0x231c  secdrv - ok
19:44:39.0718 0x231c  [ BA24CEA7152239F42ECD04AFB7C89D24, A2A11EABB0C283772B74667C7544B61BEB1B9745FBF065E831542129EB585AFA ] seclogon        C:\WINDOWS\system32\seclogon.dll
19:44:39.0720 0x231c  seclogon - ok
19:44:39.0724 0x231c  [ 1ED7A8574A28357097A5CB4063C96B00, 4E248CA66B7DE930AEC501A85F507AB813FC3CEBCBA347DFF3B05CE6CB8E496B ] semav6thermal64ro C:\WINDOWS\system32\drivers\semav6thermal64ro.sys
19:44:39.0725 0x231c  semav6thermal64ro - ok
19:44:39.0730 0x231c  [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS            C:\WINDOWS\System32\sens.dll
19:44:39.0733 0x231c  SENS - ok
19:44:39.0741 0x231c  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] SensorsAlsDriver C:\WINDOWS\System32\drivers\WUDFRd.sys
19:44:39.0745 0x231c  SensorsAlsDriver - ok
19:44:39.0752 0x231c  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] SensorsHIDClassDriver C:\WINDOWS\System32\drivers\WUDFRd.sys
19:44:39.0756 0x231c  SensorsHIDClassDriver - ok
19:44:39.0763 0x231c  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] SensorsServiceDriver C:\WINDOWS\System32\drivers\WUDFRd.sys
19:44:39.0767 0x231c  SensorsServiceDriver - ok
19:44:39.0775 0x231c  [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
19:44:39.0781 0x231c  SensrSvc - ok
19:44:39.0787 0x231c  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
19:44:39.0788 0x231c  SerCx - ok
19:44:39.0795 0x231c  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
19:44:39.0798 0x231c  SerCx2 - ok
19:44:39.0802 0x231c  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
19:44:39.0803 0x231c  Serenum - ok
19:44:39.0809 0x231c  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
19:44:39.0811 0x231c  Serial - ok
19:44:39.0815 0x231c  [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
19:44:39.0817 0x231c  sermouse - ok
19:44:39.0832 0x231c  [ 3A2F1A7472C3B7CC9B89C8516C726488, 9BCBBAC10C900EA7B30822B463A77EE5067F217C4B490857A09E5277983CB89B ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
19:44:39.0839 0x231c  SessionEnv - ok
19:44:39.0844 0x231c  [ 415B1326C40A2E1F251A3845B9C7DF31, D7BD668962B71DC3877366EB0C0BD5CDB1FF564A5866EE58DB90838D78227AD6 ] SFEP            C:\WINDOWS\System32\drivers\SFEP.sys
19:44:39.0845 0x231c  SFEP - ok
19:44:39.0849 0x231c  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
19:44:39.0850 0x231c  sfloppy - ok
19:44:39.0862 0x231c  [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
19:44:39.0870 0x231c  SharedAccess - ok
19:44:39.0888 0x231c  [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:44:39.0899 0x231c  ShellHWDetection - ok
19:44:39.0904 0x231c  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
19:44:39.0906 0x231c  SiSRaid2 - ok
19:44:39.0911 0x231c  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
19:44:39.0912 0x231c  SiSRaid4 - ok
19:44:39.0916 0x231c  [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost         C:\WINDOWS\System32\smphost.dll
19:44:39.0918 0x231c  smphost - ok
19:44:39.0925 0x231c  [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
19:44:39.0927 0x231c  SNMPTRAP - ok
19:44:39.0934 0x231c  [ 3CBFEE060A4FD306F783E1A14926C9AF, 67DF4B3E23DB18E8BC15301F83B1844EFF6BD8E885CA1590EBAAFBAA441968CB ] SOHCImp         C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe
19:44:39.0936 0x231c  SOHCImp - ok
19:44:39.0948 0x231c  [ 06B3BFC6AB8E4731AEF2C85383486524, B03E69C0E883B863DACF251A8287D0A6043EFB4CA5CA5576EAEFA3E4486ECBEC ] SOHDms          C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe
19:44:39.0956 0x231c  SOHDms - ok
19:44:39.0960 0x231c  [ 3F3E0E389C03AAC4705BC03BFB2A8582, 0D5BF14F12BE6167ECE974BF114336576C38DF5B83D2889316A91381B26948EC ] SOHDs           C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe
19:44:39.0962 0x231c  SOHDs - ok
19:44:39.0966 0x231c  [ E35F5A8E99F20D621647B6088923E0C6, B561632CAE019374312F6171FFBC9A640ACB511A7720CF7CEF95846A1C99D43E ] sonyfelicaportm C:\WINDOWS\System32\Drivers\sonyfelicaportm.sys
19:44:39.0968 0x231c  sonyfelicaportm - ok
19:44:39.0972 0x231c  [ 617963482A980973AA263557CDD85C1E, BFB6CD25BCAFE99A6082A183B1AF18CDF1E79B7BD23B4ADEB0226343A076FC1D ] sonynfcport100c C:\WINDOWS\System32\Drivers\sonynfcport100c.sys
19:44:39.0974 0x231c  sonynfcport100c - ok
19:44:39.0991 0x231c  [ 7B58BB947BE397F69D6A2D58F6AE6BB4, A3BD633CEC5936F1FF809560DF41EE8496E84CE997CBD4D3120BC7A54F0107B6 ] sonynfcport100f C:\WINDOWS\System32\Drivers\sonynfcport100f.sys
19:44:40.0001 0x231c  sonynfcport100f - ok
19:44:40.0006 0x231c  [ AA0F913B69BCEC9655ECAAA2312B29D9, 655D6E5B36ABC1C632096243F7FF55C4168A2009A5A43C8FDA5EFA67F972ADF3 ] SOWS            C:\WINDOWS\System32\drivers\sows.sys
19:44:40.0007 0x231c  SOWS - ok
19:44:40.0023 0x231c  [ D24B1945ED1F9C96DA786DBBF1E983CE, B46CB0B72B7A3DF94A46B8D65E38535C5F8E72A55CF2DC48EFA1F9A0108691C4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
19:44:40.0029 0x231c  spaceport - ok
19:44:40.0035 0x231c  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
19:44:40.0037 0x231c  SpbCx - ok
19:44:40.0046 0x231c  [ C03E480E63A80D73FABE28D24D3B6B47, F8C68DC63A5492587F9343158348ADD99A99AF34DC7ED29E5562EE90C0AB8F25 ] SpfService      C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\SPF\SpfService64.exe
19:44:40.0051 0x231c  SpfService - ok
19:44:40.0072 0x231c  [ 2E3976C857D7230EC8D2B2276E688255, C0A6A84369CB3E709A6FFEBED2B38AB62D731B79D052D6D6FA8EF855BC428778 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
19:44:40.0087 0x231c  Spooler - ok
19:44:40.0219 0x231c  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
19:44:40.0335 0x231c  sppsvc - ok
19:44:40.0366 0x231c  [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
19:44:40.0373 0x231c  srv - ok
19:44:40.0391 0x231c  [ 00D8AC8E3053290BDE6EA2FB6810D2FC, 957FEF84CBBAE71829529AE99A1B24F52D7831BD666442D0132FBB825409A75D ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
19:44:40.0402 0x231c  srv2 - ok
19:44:40.0412 0x231c  [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
19:44:40.0416 0x231c  srvnet - ok
19:44:40.0425 0x231c  [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
19:44:40.0430 0x231c  SSDPSRV - ok
19:44:40.0437 0x231c  [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
19:44:40.0441 0x231c  SstpSvc - ok
19:44:40.0446 0x231c  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
19:44:40.0447 0x231c  stexstor - ok
19:44:40.0465 0x231c  [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
19:44:40.0479 0x231c  stisvc - ok
19:44:40.0486 0x231c  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
19:44:40.0488 0x231c  storahci - ok
19:44:40.0493 0x231c  [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
19:44:40.0494 0x231c  storflt - ok
19:44:40.0499 0x231c  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
19:44:40.0501 0x231c  stornvme - ok
19:44:40.0505 0x231c  [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
19:44:40.0506 0x231c  StorSvc - ok
19:44:40.0511 0x231c  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
19:44:40.0512 0x231c  storvsc - ok
19:44:40.0516 0x231c  [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc           C:\WINDOWS\system32\svsvc.dll
19:44:40.0518 0x231c  svsvc - ok
19:44:40.0522 0x231c  [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
19:44:40.0523 0x231c  swenum - ok
19:44:40.0541 0x231c  [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv           C:\WINDOWS\System32\swprv.dll
19:44:40.0554 0x231c  swprv - ok
19:44:40.0583 0x231c  [ 3114CB46C2853CA71525428CB0C7CB58, A9CC51506AABBC23BAB2B90E30AB13197A72268A3DE6D2F281C1C367ED7118AE ] SysMain         C:\WINDOWS\system32\sysmain.dll
19:44:40.0606 0x231c  SysMain - ok
19:44:40.0636 0x231c  [ 23BECB70654B192A7E378DEE3DBD8D42, 7596174AE7508B62C40A429645198F6A420D0CD5B62A10AB78516113584E7EDB ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
19:44:40.0642 0x231c  SystemEventsBroker - ok
19:44:40.0649 0x231c  [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
19:44:40.0653 0x231c  TabletInputService - ok
19:44:40.0663 0x231c  [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
19:44:40.0670 0x231c  TapiSrv - ok
19:44:40.0722 0x231c  [ 3C2DF97A21A9BBE6355B0A51F288EFFF, 47BBE47CFE2379B072AEEC360C4F207059BED9AD18C55FDF2AC0DA9CAD837BFB ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
19:44:40.0763 0x231c  Tcpip - ok
19:44:40.0818 0x231c  [ 3C2DF97A21A9BBE6355B0A51F288EFFF, 47BBE47CFE2379B072AEEC360C4F207059BED9AD18C55FDF2AC0DA9CAD837BFB ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:44:40.0856 0x231c  TCPIP6 - ok
19:44:40.0867 0x231c  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
19:44:40.0869 0x231c  tcpipreg - ok
19:44:40.0876 0x231c  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
19:44:40.0878 0x231c  tdx - ok
19:44:40.0973 0x231c  [ 4ACFC5853A3F0C6C2F54E537C23EE90F, 47D81F471A250696A1A0D19294FC553EB88D813612A8351C89F65D7BF99C8532 ] TeamViewer9     C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
19:44:41.0047 0x231c  TeamViewer9 - ok
19:44:41.0059 0x231c  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
19:44:41.0061 0x231c  terminpt - ok
19:44:41.0086 0x231c  [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService     C:\WINDOWS\System32\termsrv.dll
19:44:41.0107 0x231c  TermService - ok
19:44:41.0113 0x231c  [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes          C:\WINDOWS\system32\themeservice.dll
19:44:41.0115 0x231c  Themes - ok
19:44:41.0121 0x231c  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
19:44:41.0123 0x231c  THREADORDER - ok
19:44:41.0132 0x231c  [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
19:44:41.0138 0x231c  TimeBroker - ok
19:44:41.0146 0x231c  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
19:44:41.0150 0x231c  TPM - ok
19:44:41.0156 0x231c  [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
19:44:41.0159 0x231c  TrkWks - ok
19:44:41.0164 0x231c  [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
19:44:41.0166 0x231c  TrustedInstaller - ok
19:44:41.0173 0x231c  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
19:44:41.0175 0x231c  TsUsbFlt - ok
19:44:41.0179 0x231c  [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
19:44:41.0180 0x231c  TsUsbGD - ok
19:44:41.0187 0x231c  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
19:44:41.0190 0x231c  tunnel - ok
19:44:41.0195 0x231c  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
19:44:41.0196 0x231c  uagp35 - ok
19:44:41.0202 0x231c  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
19:44:41.0203 0x231c  UASPStor - ok
19:44:41.0212 0x231c  [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
19:44:41.0216 0x231c  UCX01000 - ok
19:44:41.0226 0x231c  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
19:44:41.0231 0x231c  udfs - ok
19:44:41.0237 0x231c  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
19:44:41.0238 0x231c  UEFI - ok
19:44:41.0245 0x231c  [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
19:44:41.0247 0x231c  UI0Detect - ok
19:44:41.0252 0x231c  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
19:44:41.0254 0x231c  uliagpkx - ok
19:44:41.0258 0x231c  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
19:44:41.0260 0x231c  umbus - ok
19:44:41.0264 0x231c  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
19:44:41.0264 0x231c  UmPass - ok
19:44:41.0274 0x231c  [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
19:44:41.0281 0x231c  UmRdpService - ok
19:44:41.0292 0x231c  [ DBE2E6388379D5CC78099650541E9566, 1914BC929F109A49FB18ED31F239A9813A010B0A3914BC8CD0D6A94A67A072D7 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
19:44:41.0299 0x231c  UNS - ok
19:44:41.0303 0x231c  [ 91E47ECFD242A48B4AF79A7DD37B9F37, 89CCDF4A3060833B0FB8E3E3C8194A5D1F7527CDFE1F236EF9A2E37B4C765C57 ] Updater.exe     C:\Program Files (x86)\Connectify Updater\Updater.exe
19:44:41.0305 0x231c  Updater.exe - ok
19:44:41.0317 0x231c  [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost        C:\WINDOWS\System32\upnphost.dll
19:44:41.0326 0x231c  upnphost - ok
19:44:41.0335 0x231c  [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
19:44:41.0338 0x231c  usbccgp - ok
19:44:41.0345 0x231c  [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
19:44:41.0347 0x231c  usbcir - ok
19:44:41.0354 0x231c  [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
19:44:41.0356 0x231c  usbehci - ok
19:44:41.0372 0x231c  [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
19:44:41.0378 0x231c  usbhub - ok
19:44:41.0396 0x231c  [ FAA564A13576F9284546BF016D27B551, 1D2CD13DC0B02DD40657EE4F93F4A13C78D2F2EF91685E563D78E217C96DF544 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
19:44:41.0404 0x231c  USBHUB3 - ok
19:44:41.0409 0x231c  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
19:44:41.0410 0x231c  usbohci - ok
19:44:41.0414 0x231c  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
19:44:41.0415 0x231c  usbprint - ok
19:44:41.0423 0x231c  [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
19:44:41.0426 0x231c  USBSTOR - ok
19:44:41.0430 0x231c  [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
19:44:41.0431 0x231c  usbuhci - ok
19:44:41.0441 0x231c  [ 5C8F604F6DC74177CDD8372D7B1ADFF0, C1DE9A37A7A01CCCBFCE13C1E5B26683F620AB21EDA5A14C82022E2F49C84484 ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
19:44:41.0445 0x231c  usbvideo - ok
19:44:41.0458 0x231c  [ 1A20F03700D2B2ED775E38D751EF2F63, 76F8BE9F412D4397437E60A7E6231C80EA9B4F5436C9A8FAB967C78604994AE9 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
19:44:41.0464 0x231c  USBXHCI - ok
19:44:41.0477 0x231c  [ 34349E7B488FA61B639117F6BF1EBF99, A7A7E60511F7D6370473D41867F5323695308CC27D3EEB0286687D3A9E0084E9 ] USER_ESRV_SVC   C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
19:44:41.0484 0x231c  USER_ESRV_SVC - ok
19:44:41.0490 0x231c  [ A3C75F5220CAB16A29784433DC241A5B, A9F283114388D02AD20298B7C74367E70FE457FF03B9544A00DBB8A45C68965F ] VAIO Event Service C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
19:44:41.0491 0x231c  VAIO Event Service - ok
19:44:41.0505 0x231c  [ 8EF62038EBD54C240486A36F9259C64A, D2EA5718C13D5E62DCA06013E67E651847172950ED7ED7CA7C25CC8422D54260 ] VAIO Power Management C:\Program Files\Sony\VAIO Power Management\SPMService.exe
19:44:41.0513 0x231c  VAIO Power Management - ok
19:44:41.0518 0x231c  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc        C:\WINDOWS\system32\lsass.exe
19:44:41.0520 0x231c  VaultSvc - ok
19:44:41.0544 0x231c  [ DEBA4273293DAE85EE4BE3F433C903D7, 62254F305DDE2D14CE3ABD1FA7B2B1F1FAC3925926D73A217EF863F6D4B25FBF ] VCFw            C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
19:44:41.0561 0x231c  VCFw - ok
19:44:41.0566 0x231c  [ EFD47ED6C5824825E214CFE70D26C009, 562FA4E508DF4BD954237CA60978FFF5759E8A08C5DDEB621BC95AAEF89A3CC4 ] VCService       C:\Program Files\Sony\VAIO Care\VCService.exe
19:44:41.0568 0x231c  VCService - ok
19:44:41.0572 0x231c  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
19:44:41.0574 0x231c  vdrvroot - ok
19:44:41.0603 0x231c  [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds             C:\WINDOWS\System32\vds.exe
19:44:41.0625 0x231c  vds - ok
19:44:41.0634 0x231c  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
19:44:41.0638 0x231c  VerifierExt - ok
19:44:41.0657 0x231c  [ F6ECFD6128A16A4851CFE98D4E01B011, C349893E8D7FB9B510A3FAD040F70C3C72B0ACDD5F6EB336951849F9E953717D ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
19:44:41.0667 0x231c  vhdmp - ok
19:44:41.0671 0x231c  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
19:44:41.0672 0x231c  viaide - ok
19:44:41.0678 0x231c  [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
19:44:41.0680 0x231c  vmbus - ok
19:44:41.0685 0x231c  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
19:44:41.0687 0x231c  VMBusHID - ok
19:44:41.0701 0x231c  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
19:44:41.0711 0x231c  vmicguestinterface - ok
19:44:41.0725 0x231c  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
19:44:41.0735 0x231c  vmicheartbeat - ok
19:44:41.0747 0x231c  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
19:44:41.0757 0x231c  vmickvpexchange - ok
19:44:41.0770 0x231c  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
19:44:41.0780 0x231c  vmicrdv - ok
19:44:41.0794 0x231c  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
19:44:41.0804 0x231c  vmicshutdown - ok
19:44:41.0818 0x231c  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
19:44:41.0827 0x231c  vmictimesync - ok
19:44:41.0839 0x231c  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
19:44:41.0848 0x231c  vmicvss - ok
19:44:41.0855 0x231c  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
19:44:41.0857 0x231c  volmgr - ok
19:44:41.0867 0x231c  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
19:44:41.0874 0x231c  volmgrx - ok
19:44:41.0887 0x231c  [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
19:44:41.0892 0x231c  volsnap - ok
19:44:41.0897 0x231c  [ EF31713EE4C7CCFE4049F7E7F15645A2, 35D198D3F1061E19A7EF89FA1E75377049CD6BCA9702F8076B9F95BB8737E0D4 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
19:44:41.0899 0x231c  vpci - ok
19:44:41.0906 0x231c  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
19:44:41.0909 0x231c  vsmraid - ok
19:44:41.0942 0x231c  [ 3B7F9612439EA47151EC5EAB232C1C3F, CA08CCB14CB46512F72E2C20454242B18BC57E34C55B42A37B7EC27B79242CDC ] VSS             C:\WINDOWS\system32\vssvc.exe
19:44:41.0967 0x231c  VSS - ok
19:44:41.0978 0x231c  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
19:44:41.0984 0x231c  VSTXRAID - ok
19:44:42.0021 0x231c  [ C1FAE2E81955DCCD79034A23EC4F3F37, 61B6477C6068B5542D3EE9C6336FBD7589F1CFFD3E850473A539619033533286 ] VUAgent         C:\Program Files\Sony\VAIO Update\vuagent.exe
19:44:42.0048 0x231c  VUAgent - ok
19:44:42.0054 0x231c  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
19:44:42.0055 0x231c  vwifibus - ok
19:44:42.0060 0x231c  [ 35BF5C5F5E3C9902C98978C7640574DA, C61E50B04000DCEC72365723F0C0725C2E005529DAF2777A59E624C14DA29E55 ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
19:44:42.0062 0x231c  vwififlt - ok
19:44:42.0067 0x231c  [ 65ED7B9CFEA893DF7748D5FF692690DE, 73AB9D8BB928B3247BDFC7BB47AD7FCA763B375DC250C251DB4E0573531040E8 ] vwifimp         C:\WINDOWS\system32\DRIVERS\vwifimp.sys
19:44:42.0068 0x231c  vwifimp - ok
19:44:42.0080 0x231c  [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time         C:\WINDOWS\system32\w32time.dll
19:44:42.0088 0x231c  W32Time - ok
19:44:42.0093 0x231c  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
19:44:42.0093 0x231c  WacomPen - ok
19:44:42.0129 0x231c  [ A81988DCC4FA440AA88B84CA452F5E22, 3573AAA09971E8ADB6FEFA778E02B2D8EE5E4249267CF37A524D9F019CC836FB ] wbengine        C:\WINDOWS\system32\wbengine.exe
19:44:42.0157 0x231c  wbengine - ok
19:44:42.0173 0x231c  [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
19:44:42.0183 0x231c  WbioSrvc - ok
19:44:42.0196 0x231c  [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
19:44:42.0204 0x231c  Wcmsvc - ok
19:44:42.0217 0x231c  [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
19:44:42.0226 0x231c  wcncsvc - ok
19:44:42.0231 0x231c  [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
19:44:42.0234 0x231c  WcsPlugInService - ok
19:44:42.0238 0x231c  [ 0359607177E5E9F6041136CC0A5CB0B6, 16687BE2639648CF46E8768BA1798030472C525612C629BF134D053240E2195B ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
19:44:42.0239 0x231c  WdBoot - ok
19:44:42.0242 0x231c  [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM         C:\WINDOWS\System32\drivers\wdcsam64.sys
19:44:42.0243 0x231c  WDC_SAM - ok
19:44:42.0264 0x231c  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
19:44:42.0278 0x231c  Wdf01000 - ok
19:44:42.0288 0x231c  [ DE8D12B4C3F55FA2C5E9774314F6C58A, C3E835DC066A94E1431BCDC90D7EA27AAC6F82826F4A5527B37D865241D7A366 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
19:44:42.0292 0x231c  WdFilter - ok
19:44:42.0298 0x231c  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
19:44:42.0301 0x231c  WdiServiceHost - ok
19:44:42.0306 0x231c  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
19:44:42.0309 0x231c  WdiSystemHost - ok
19:44:42.0314 0x231c  [ 4AD874CDC812EC156265E451B6B09DAB, 6E3E05B8301841425E9BB0D54B35EF386B78EEB307B5A6153FD1F366D30F23FA ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
19:44:42.0317 0x231c  WdNisDrv - ok
19:44:42.0320 0x231c  WdNisSvc - ok
19:44:42.0328 0x231c  [ 185E4111627F7AA6799E1366B5E91D65, 7A02C816DFBCCF47EDB49E5E2005A3D0B80719FAC94F9298D2DBAC63950EDA05 ] WebClient       C:\WINDOWS\System32\webclnt.dll
19:44:42.0334 0x231c  WebClient - ok
19:44:42.0342 0x231c  [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
19:44:42.0347 0x231c  Wecsvc - ok
19:44:42.0352 0x231c  [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
19:44:42.0354 0x231c  WEPHOSTSVC - ok
19:44:42.0359 0x231c  [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
19:44:42.0363 0x231c  wercplsupport - ok
19:44:42.0369 0x231c  [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
19:44:42.0373 0x231c  WerSvc - ok
19:44:42.0379 0x231c  [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
19:44:42.0382 0x231c  WFPLWFS - ok
19:44:42.0387 0x231c  [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
19:44:42.0390 0x231c  WiaRpc - ok
19:44:42.0395 0x231c  [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
19:44:42.0396 0x231c  WIMMount - ok
19:44:42.0398 0x231c  WinDefend - ok
19:44:42.0423 0x231c  [ 10DAD6A7FC617A221313BD584E3C3A00, F139B878668ECF38FE59831E8595A207D5CEEE76C6FFDA8C9F735435E601A763 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
19:44:42.0438 0x231c  WinHttpAutoProxySvc - ok
19:44:42.0450 0x231c  [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
19:44:42.0455 0x231c  Winmgmt - ok
19:44:42.0511 0x231c  [ 75436315AA383CF527695C6D49D0CA59, E3D55F2ACBD45D4D031FA6CA799394459C89BE50FF6ADE4FE36F2CAB2D2E63D0 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
19:44:42.0555 0x231c  WinRM - ok
19:44:42.0571 0x231c  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUSB          C:\WINDOWS\System32\drivers\WinUsb.sys
19:44:42.0573 0x231c  WinUSB - ok
19:44:42.0608 0x231c  [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
19:44:42.0634 0x231c  WlanSvc - ok
19:44:42.0673 0x231c  [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
19:44:42.0702 0x231c  wlidsvc - ok
19:44:42.0709 0x231c  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
19:44:42.0710 0x231c  WmiAcpi - ok
19:44:42.0719 0x231c  [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
19:44:42.0722 0x231c  wmiApSrv - ok
19:44:42.0725 0x231c  WMPNetworkSvc - ok
19:44:42.0732 0x231c  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
19:44:42.0735 0x231c  Wof - ok
19:44:42.0775 0x231c  [ 588040D595BBF0856CA1ADD941A8ED17, CBC92BB5453FE1BEA6F33239B7CE884F312559591383408EA5F95A006156C5D3 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
19:44:42.0803 0x231c  workfolderssvc - ok
19:44:42.0809 0x231c  [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
19:44:42.0811 0x231c  wpcfltr - ok
19:44:42.0814 0x231c  [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
19:44:42.0817 0x231c  WPCSvc - ok
19:44:42.0822 0x231c  [ 2ADE11F3D84709C5F6781E4C59F11683, F003C43396CF8FCF44EAB87583650DB4D2A233322D28D6A78D1694945D9073BB ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
19:44:42.0825 0x231c  WPDBusEnum - ok
19:44:42.0829 0x231c  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
19:44:42.0830 0x231c  WpdUpFltr - ok
19:44:42.0835 0x231c  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
19:44:42.0835 0x231c  ws2ifsl - ok
19:44:42.0843 0x231c  [ 5596C0960ED6ED7494BF2A55DE428684, C95CF09A657F37F421CC80E16F2F95B8EC59A8D5D48F104551155EAC8E53DCB2 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
19:44:42.0848 0x231c  wscsvc - ok
19:44:42.0852 0x231c  WSearch - ok
19:44:42.0926 0x231c  [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService       C:\WINDOWS\System32\WSService.dll
19:44:42.0991 0x231c  WSService - ok
19:44:43.0075 0x231c  [ FCF3912833E1B7F4EE61F07E79A7BBAC, D0E9F8969560BF2CF0BAA13C34AB4299F64841B2CF765537A72236BAAB86771E ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
19:44:43.0135 0x231c  wuauserv - ok
19:44:43.0146 0x231c  [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
19:44:43.0149 0x231c  WudfPf - ok
19:44:43.0157 0x231c  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
19:44:43.0161 0x231c  WUDFRd - ok
19:44:43.0168 0x231c  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFSensorLP    C:\WINDOWS\System32\drivers\WUDFRd.sys
19:44:43.0172 0x231c  WUDFSensorLP - ok
19:44:43.0178 0x231c  [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
19:44:43.0181 0x231c  wudfsvc - ok
19:44:43.0190 0x231c  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs       C:\WINDOWS\System32\drivers\WUDFRd.sys
19:44:43.0194 0x231c  WUDFWpdFs - ok
19:44:43.0201 0x231c  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp      C:\WINDOWS\System32\drivers\WUDFRd.sys
19:44:43.0205 0x231c  WUDFWpdMtp - ok
19:44:43.0219 0x231c  [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
19:44:43.0228 0x231c  WwanSvc - ok
19:44:43.0305 0x231c  [ C4C5C3198C3261BEC89E6C3631047BAF, 78E5604B4B2A184B328C0669781DF11A35AFC04E7375CAB4DB9A48D74929137D ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
19:44:43.0365 0x231c  ZeroConfigService - ok
19:44:43.0378 0x231c  ================ Scan global ===============================
19:44:43.0384 0x231c  [ 243F54DBA6EB48A369CA465E263ABA4A, 9D9F9DE783D000F3EA130EB68FD71319F21E4F1CD4232FB8B2F8A9A67E08F5F4 ] C:\WINDOWS\system32\basesrv.dll
19:44:43.0392 0x231c  [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\WINDOWS\system32\winsrv.dll
19:44:43.0400 0x231c  [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\WINDOWS\system32\sxssrv.dll
19:44:43.0412 0x231c  [ 5BF02EBEFEDC706318C96E2E60EDCB91, DC866C5BC3A887CAAA7169AB9BB2992F6F877B3EA04B62B4F95B6BD54943155F ] C:\WINDOWS\system32\services.exe
19:44:43.0420 0x231c  [ Global ] - ok
19:44:43.0421 0x231c  ================ Scan MBR ==================================
19:44:43.0423 0x231c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:44:43.0427 0x231c  \Device\Harddisk0\DR0 - ok
19:44:43.0428 0x231c  ================ Scan VBR ==================================
19:44:43.0430 0x231c  [ 805D56AB915221DB8F484E8370590667 ] \Device\Harddisk0\DR0\Partition1
19:44:43.0431 0x231c  \Device\Harddisk0\DR0\Partition1 - ok
19:44:43.0434 0x231c  [ 481362F787986AF25EE612BEBF666A24 ] \Device\Harddisk0\DR0\Partition2
19:44:43.0435 0x231c  \Device\Harddisk0\DR0\Partition2 - ok
19:44:43.0437 0x231c  [ B68E943B0D5C33EE8B7367E0A4792FB5 ] \Device\Harddisk0\DR0\Partition3
19:44:43.0438 0x231c  \Device\Harddisk0\DR0\Partition3 - ok
19:44:43.0441 0x231c  [ 1D2D78BB73D5546C3BD3107FA329B102 ] \Device\Harddisk0\DR0\Partition4
19:44:43.0441 0x231c  \Device\Harddisk0\DR0\Partition4 - ok
19:44:43.0444 0x231c  [ EBB584319598A2476B03D0B784F7F66C ] \Device\Harddisk0\DR0\Partition5
19:44:43.0446 0x231c  \Device\Harddisk0\DR0\Partition5 - ok
19:44:43.0449 0x231c  [ 3040EDD5B49ADDA87BE1B3D99F8E63A6 ] \Device\Harddisk0\DR0\Partition6
19:44:43.0450 0x231c  \Device\Harddisk0\DR0\Partition6 - ok
19:44:43.0453 0x231c  [ 54FD5AF887D91FF4CC8C09CB23BBBF83 ] \Device\Harddisk0\DR0\Partition7
19:44:43.0454 0x231c  \Device\Harddisk0\DR0\Partition7 - ok
19:44:43.0455 0x231c  ================ Scan generic autorun ======================
19:44:43.0469 0x231c  [ 2A21E75EF80242E0646E7567993E977D, FA3EBF967339F64A98C08E42956236C5820E6F5F24D9069C520ABE75DB284C8F ] C:\Program Files\Realtek\Audio\HDA\vncutil64.exe
19:44:43.0478 0x231c  vncutil - ok
19:44:43.0507 0x231c  [ 5E53A66C680A06E26B1234CB0C3CD99B, D782E724FF487459704BFA2BC5BA5E6E7E85BC9D71ECF68BE78F9C74449EB207 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
19:44:43.0526 0x231c  RtHDVBg_Dolby - ok
19:44:43.0555 0x231c  [ 5E53A66C680A06E26B1234CB0C3CD99B, D782E724FF487459704BFA2BC5BA5E6E7E85BC9D71ECF68BE78F9C74449EB207 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
19:44:43.0575 0x231c  RtHDVBg - ok
19:44:43.0588 0x231c  [ 8EC9EF60E24E88DC5DC74D305925E2CF, 37719AAD02B4EA851F899AB4A3464EA381B96BA2E386A52BF9FDAA8C9257FDBE ] C:\Windows\system32\igfxtray.exe
19:44:43.0595 0x231c  IgfxTray - ok
19:44:43.0598 0x231c  BTMTrayAgent - ok
19:44:43.0602 0x231c  [ 4A0477ADCD07EC9D21257A2E456B16C5, CEF9C81730C12283A7600C3D921D89A62B14D1C46544B493F3AF7520DD2D1F79 ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
19:44:43.0603 0x231c  IAStorIcon - ok
19:44:43.0616 0x231c  [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
19:44:43.0625 0x231c  AdobeAAMUpdater-1.0 - ok
19:44:43.0640 0x231c  [ 50D1476C84446135A990F4939DC2DC1D, D062F92863E32EC075BD672F3C185CE8C9329F8B679D5508C396131B1DB30EF7 ] C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
19:44:43.0648 0x231c  Dolby Home Theater v4 - ok
19:44:43.0777 0x231c  [ 65E42BD07837C76B4A9F6301EDC3DD3C, D47B4DB99896F688E39A45785E7E3C570E3DBAD8B6F214B9BD01FFB80AFF7963 ] C:\Program Files (x86)\Optical TrackPad\OTPCmd.exe
19:44:43.0880 0x231c  OTPCmd - ok
19:44:43.0890 0x231c  [ 2E2F360FF158A67F8128EFAAF974189C, 5EDAAF7CCF381B5E767030F2DC52C37F972C4EA36F33BD7D9C422F74AF232DDD ] C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
19:44:43.0891 0x231c  ISBMgr.exe - ok
19:44:43.0896 0x231c  [ 61E4289E91E88C90478D7F4BEB10DCF7, 1D0F4034E0111CF5758F470C15A22A0A28EB8269CB5BF07222C9C0FB07A15C55 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
19:44:43.0897 0x231c  APSDaemon - ok
19:44:43.0910 0x231c  [ 9582680F41C0C4C6E6A2ACCADD7E723E, FC1B9973D679B43B0D476252532A3A5009E94CF79D0757A1DAC422E8EEA6D2A6 ] C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe
19:44:43.0918 0x231c  ADSKAppManager - ok
19:44:43.0931 0x231c  [ 887CAA31048EB8ED09A0CBD0E6F46F09, BBCED0BD4EB00C3FECFC9448223D4C441A868787877291F5489B07B43FAB65A4 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
19:44:43.0940 0x231c  SunJavaUpdateSched - ok
19:44:44.0013 0x231c  [ F73154E180105822A5F9B755BA933737, 1CD775B6CE3736A70EC5FC7A6B77A2FEDA70D59B49A66046CC20B341005501D9 ] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
19:44:44.0070 0x231c  DAEMON Tools Lite - ok
19:44:44.0262 0x231c  [ F4C796C55570F012BFDD70CD218DEDF3, 2FCCB52FA9A855861DB8346755AEA7CAD75561E924EA0D475B6950C5BBAA7D4C ] C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe
19:44:44.0418 0x231c  GarenaPlus - ok
19:44:44.0464 0x231c  [ 08DFA176E4FC0E63ACD8EC854449D2B0, B8CA204C3F318CD9D12F61CDDA5C66184A48D6206F019AD11DB2605FDBEB288D ] C:\Users\Winfred Arman Lati\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
19:44:44.0490 0x231c  Spotify Web Helper - ok
19:44:44.0632 0x231c  [ B2BAE2D76FBE9FDC3F6E0D1F886DF367, 964EBF736891BE252C68FCE1F9EAD5E60E6E0C2119D21C6DF49FBD30FBB678EF ] C:\Program Files\CCleaner\CCleaner64.exe
19:44:44.0743 0x231c  CCleaner Monitoring - ok
19:44:44.0752 0x231c  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.6.305.0 ), 0x61100 ( enabled : updated )
19:44:44.0754 0x231c  Win FW state via NFP2: enabled
19:44:45.0161 0x231c  ============================================================
19:44:45.0161 0x231c  Scan finished
19:44:45.0161 0x231c  ============================================================
19:44:45.0177 0x0324  Detected object count: 0
19:44:45.0177 0x0324  Actual detected object count: 0
19:50:44.0734 0x1614  Deinitialize success



#10 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:26 AM

Posted 21 January 2015 - 10:50 AM

:S I must have overseen something. So a new FRST Scan.
  • Run FRST. (if you have Windows Vista / Windows 7 / Windows 8: Please do a Right click on the FRST icon and select Run as Administrator)
  • Click Scan to start FRST.
  • When FRST finishes scanning, a log, FRST.txt, will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of this log into your next post please.

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#11 greenarcher02

greenarcher02
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:02:26 PM

Posted 22 January 2015 - 06:39 AM

Here it is... :S

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-01-2015 01
Ran by Winfred Arman Lati (administrator) on WIN on 22-01-2015 19:37:37
Running from C:\Users\Winfred Arman Lati\Desktop
Loaded Profiles: Winfred Arman Lati (Available profiles: Winfred Arman Lati)
Platform: Windows 8.1 Single Language (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
() C:\Program Files (x86)\Common Files\Microsoft\Care Suite\ADUService\ADUService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(InstallShield) C:\Program Files (x86)\Connectify Updater\Updater.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
() C:\Program Files (x86)\Garena Plus\ggdllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\Active Clip\Active Clip.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Realtek Semiconductor Crop.) C:\Program Files\Realtek\Audio\HDA\vncutil64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
() C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Spotify Ltd) C:\Users\Winfred Arman Lati\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
() C:\Program Files (x86)\Optical TrackPad\OTPCmd.exe
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Autodesk Inc.) C:\Users\Winfred Arman Lati\AppData\Local\Autodesk\.AdskAppManager\R1\AdAppMgr.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Improvement\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Office.OneNote_16.0.3327.1030_x64__8wekyb3d8bbwe\onenoteim.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\ONENOTE.EXE
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_257.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_257.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAdmin.exe
(iolo technologies, LLC) C:\Program Files\Sony\VAIO Care\Iolo\ioloTools.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [vncutil] => C:\Program Files\Realtek\Audio\HDA\vncutil64.exe [562792 2012-08-07] (Realtek Semiconductor Crop.)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-08-07] (Realtek Semiconductor)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [508656 2012-07-26] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [OTPCmd] => C:\Program Files (x86)\Optical TrackPad\OTPCmd.exe [6597184 2012-09-04] ()
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [493960 2014-12-05] (Autodesk Inc.)
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [GarenaPlus] => C:\Program Files (x86)\Garena Plus\GarenaMessenger.exe [9974576 2014-10-27] ()
HKU\S-1-5-21-3450639996-933504725-588580379-1005\...\Run: [Spotify Web Helper] => C:\Users\Winfred Arman Lati\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-13] (Spotify Ltd)
Startup: C:\Users\Winfred Arman Lati\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [HKLM] => ProxyEnable is set.
ProxyEnable: [HKLM-x32] => ProxyEnable is set.
ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
HKU\S-1-5-21-3450639996-933504725-588580379-1005\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-3450639996-933504725-588580379-1005\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://sony13.msn.com
HKU\S-1-5-21-3450639996-933504725-588580379-1005\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://vaio-online.sony.com/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default
FF DefaultSearchEngine: Bing
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_257.dll ()
FF Plugin: @java.com/DTPlugin,version=10.5.0 -> C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @t.garena.com/garenatalk -> C:\Program Files (x86)\Garena Plus\bbtalk\plugins\npPlugin\npGarenaTalkPlugin.dll ( Garena)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Extension: FlashGot - C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2014-11-09]
FF Extension: QR  Code  - C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default\Extensions\{6a910736-6fab-4480-841a-36325cce134f}.xpi [2014-11-09]

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-12-05] (Autodesk Inc.)
R2 ADUServiceNSRT; C:\Program Files (x86)\Common Files\Microsoft\Care Suite\ADUService\ADUService.exe [82568 2014-11-06] () [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-23] (Intel Corporation)
R2 Intel® Wireless Bluetooth® 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-24] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [165760 2012-07-23] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-10-11] ()
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation)
R2 NFCProxyService; C:\Program Files (x86)\Sony\NFC Proxy Service\bin\NFCProxyService.exe [470528 2011-11-16] (Sony Corporation) [File not signed]
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [3563344 2014-11-19] (INCA Internet Co., Ltd.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [200808 2012-08-07] (Realtek Semiconductor)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [266168 2013-11-19] (Intel Corporation)
R2 Updater.exe; C:\Program Files (x86)\Connectify Updater\Updater.exe [39936 2014-11-27] (InstallShield) [File not signed]
S3 USER_ESRV_SVC; C:\Program Files\Sony\VAIO Care\ESRV\esrv_svc.exe [377768 2013-11-19] (Intel Corporation)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2012-11-07] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1642544 2014-02-28] (Sony Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3671792 2013-10-11] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-09-24] (Microsoft Corporation)
S3 btmaux; C:\Windows\system32\DRIVERS\btmaux.sys [132920 2013-04-23] (Motorola Solutions, Inc.)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1385784 2013-06-27] (Motorola Solutions, Inc.)
R3 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-11-08] (Disc Soft Ltd)
S3 ggsomc; C:\Windows\System32\drivers\ggsomc.sys [30424 2014-11-30] (Sony Mobile Communications)
R3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344864 2013-09-23] (Intel Corporation)
S3 npkcrypt; C:\Program Files (x86)\Level Up Games\Ragnarok Online\npkcrypt.sys [21442 2012-03-09] (INCA Internet Co., Ltd.) [File not signed]
R3 OTGMouUSB; C:\Windows\system32\DRIVERS\OTGMouUSB.sys [22592 2012-08-23] (CRUCIALTEC Co.,Ltd.)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 qcusbser; C:\Windows\system32\DRIVERS\qcusbser.sys [242688 2013-04-24] (QUALCOMM Incorporated)
R3 semav6thermal64ro; C:\WINDOWS\system32\drivers\semav6thermal64ro.sys [13792 2014-11-09] ()
R3 SensorsAlsDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 SensorsHIDClassDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 SensorsServiceDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 sonyfelicaportm; C:\Windows\System32\Drivers\sonyfelicaportm.sys [45160 2012-07-27] (Sony Corporation)
R3 sonynfcport100c; C:\Windows\System32\Drivers\sonynfcport100c.sys [62056 2012-06-30] (Sony Corporation)
R3 sonynfcport100f; C:\Windows\System32\Drivers\sonynfcport100f.sys [647784 2012-08-30] (Sony Corporation)
R3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 npkycryp; \??\C:\Program Files (x86)\Level Up Games\Ragnarok Online\npkycryp.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-21 19:41 - 2015-01-21 19:41 - 00000000 ___HD () C:\OneDriveTemp
2015-01-20 22:17 - 2015-01-20 22:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-20 20:48 - 2015-01-20 20:48 - 00000643 _____ () C:\Users\Winfred Arman Lati\Desktop\JRT.txt
2015-01-20 20:46 - 2015-01-21 01:10 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\CrashDumps
2015-01-20 20:43 - 2015-01-20 20:43 - 00034690 _____ () C:\MGlogs.zip
2015-01-20 20:43 - 2015-01-20 20:43 - 00000000 ____D () C:\MGtools
2015-01-20 20:37 - 2015-01-20 20:41 - 00000000 ____D () C:\ProgramData\HitmanPro
2015-01-20 20:32 - 2015-01-20 20:33 - 02186752 _____ () C:\Users\Winfred Arman Lati\Desktop\adwcleaner_4.108.exe
2015-01-20 20:24 - 2015-01-20 20:24 - 00037624 _____ () C:\WINDOWS\system32\Drivers\TrueSight.sys
2015-01-20 20:24 - 2015-01-20 20:24 - 00000000 ____D () C:\ProgramData\RogueKiller
2015-01-20 20:15 - 2015-01-20 20:17 - 01990720 _____ () C:\MGtools.exe
2015-01-20 20:03 - 2015-01-20 20:15 - 11225840 _____ (SurfRight B.V.) C:\Users\Winfred Arman Lati\Desktop\HitmanPro_x64.exe
2015-01-20 20:00 - 2015-01-20 20:01 - 04188824 _____ (Kaspersky Lab ZAO) C:\Users\Winfred Arman Lati\Desktop\tdsskiller.exe
2015-01-20 19:58 - 2014-04-16 07:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-01-20 19:58 - 2014-04-16 07:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-01-20 19:44 - 2015-01-20 19:57 - 18570328 _____ () C:\Users\Winfred Arman Lati\Desktop\RogueKillerX64.exe
2015-01-19 23:50 - 2015-01-19 23:50 - 00053601 _____ () C:\Users\Winfred Arman Lati\Desktop\Result.txt
2015-01-19 23:49 - 2015-01-19 23:49 - 00401920 _____ (Farbar) C:\Users\Winfred Arman Lati\Desktop\MiniToolBox.exe
2015-01-19 04:43 - 2015-01-22 19:37 - 00019360 _____ () C:\Users\Winfred Arman Lati\Desktop\FRST.txt
2015-01-19 04:43 - 2015-01-19 04:44 - 00034131 _____ () C:\Users\Winfred Arman Lati\Desktop\Addition.txt
2015-01-19 04:42 - 2015-01-19 04:42 - 00000000 ____D () C:\Users\Winfred Arman Lati\Desktop\FRST-OlderVersion
2015-01-19 04:37 - 2015-01-19 04:37 - 00000000 ____D () C:\WINDOWS\ERUNT
2015-01-19 04:27 - 2015-01-19 04:27 - 01707939 _____ (Thisisu) C:\Users\Winfred Arman Lati\Desktop\JRT.exe
2015-01-19 01:49 - 2015-01-20 20:55 - 00000000 ____D () C:\AdwCleaner
2015-01-19 01:43 - 2015-01-19 01:43 - 02186752 _____ () C:\Users\Winfred Arman Lati\Desktop\AdwCleaner.exe
2015-01-16 22:17 - 2015-01-22 19:32 - 00824340 _____ () C:\WINDOWS\WindowsUpdate.log
2015-01-16 21:20 - 2015-01-16 21:20 - 00044226 _____ () C:\Users\Winfred Arman Lati\Downloads\Addition.txt
2015-01-16 21:19 - 2015-01-16 22:20 - 00029949 _____ () C:\Users\Winfred Arman Lati\Downloads\FRST.txt
2015-01-16 21:07 - 2015-01-22 19:37 - 00000000 ____D () C:\FRST
2015-01-16 21:06 - 2015-01-19 04:42 - 02126848 _____ (Farbar) C:\Users\Winfred Arman Lati\Desktop\FRST64.exe
2015-01-15 23:19 - 2014-12-19 14:26 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-01-15 23:19 - 2014-12-12 10:04 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-01-15 23:19 - 2014-12-12 08:51 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-01-15 23:19 - 2014-12-09 09:50 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-01-15 23:19 - 2014-12-09 03:42 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-01-15 23:19 - 2014-12-09 03:42 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-01-15 23:19 - 2014-12-06 11:17 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-01-15 23:19 - 2014-12-06 09:41 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-01-15 23:19 - 2014-12-06 09:35 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-01-01 14:28 - 2015-01-01 14:28 - 00000497 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.ics
2015-01-01 14:09 - 2015-01-01 14:09 - 00035352 _____ (Connectify) C:\WINDOWS\system32\Drivers\cnnctfy3.sys
2015-01-01 14:06 - 2015-01-01 14:13 - 00000472 _____ () C:\WINDOWS\Tasks\Connectify Updater.job
2015-01-01 14:06 - 2015-01-01 14:09 - 00000000 ____D () C:\Program Files (x86)\Connectify Updater
2015-01-01 14:06 - 2015-01-01 14:06 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Connectify Updater
2015-01-01 14:01 - 2015-01-01 14:01 - 00000000 ____D () C:\Users\Winfred Arman Lati\Downloads\Connectify Hotspot & Dispatch Pro 7.3.3.30440 + Crack (Working Nov14)
2015-01-01 00:50 - 2015-01-01 00:50 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\LooksBuilder
2014-12-29 13:17 - 2014-12-29 13:17 - 00003886 _____ () C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2014-12-29 02:28 - 2014-12-29 02:28 - 00000998 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-22 19:34 - 2014-11-09 13:46 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\Adobe
2015-01-22 19:32 - 2014-11-09 15:08 - 00003496 _____ () C:\WINDOWS\System32\Tasks\gg_uac_daemon_Winfred Arman Lati
2015-01-22 19:31 - 2014-11-08 15:42 - 00000000 ___DO () C:\Users\Winfred Arman Lati\OneDrive
2015-01-22 19:31 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-01-21 23:07 - 2014-11-09 14:52 - 00000914 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-21 22:42 - 2014-11-06 21:57 - 00003594 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3450639996-933504725-588580379-1005
2015-01-21 22:39 - 2014-11-08 16:09 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\Spotify
2015-01-21 22:39 - 2014-09-24 15:20 - 00865408 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-01-21 22:28 - 2014-12-13 22:29 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-01-21 22:20 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-01-21 21:28 - 2014-11-08 16:15 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\Spotify
2015-01-21 20:53 - 2014-12-12 01:47 - 00000000 ____D () C:\ProgramData\Oracle
2015-01-21 20:52 - 2014-12-12 01:48 - 00098216 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-01-21 20:52 - 2012-08-04 03:18 - 00000000 ____D () C:\Program Files (x86)\Java
2015-01-21 01:14 - 2014-11-09 15:23 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\uTorrent
2015-01-21 01:04 - 2014-11-09 15:08 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\GarenaPlus
2015-01-21 01:04 - 2014-11-09 15:07 - 00000000 ____D () C:\ProgramData\GarenaMessenger
2015-01-21 01:04 - 2014-11-08 17:08 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-01-21 01:02 - 2014-11-09 02:13 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-21 01:01 - 2014-11-09 14:52 - 00000910 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-21 01:01 - 2013-08-22 22:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-01-21 01:01 - 2013-08-22 21:25 - 00786432 ___SH () C:\WINDOWS\system32\config\BBI
2015-01-21 00:31 - 2012-08-04 03:27 - 00000000 ____D () C:\ProgramData\boost_interprocess
2015-01-20 22:29 - 2013-08-22 23:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2015-01-20 21:31 - 2014-11-30 03:18 - 00000000 ____D () C:\Flashtool
2015-01-20 21:31 - 2014-11-09 14:48 - 00000000 ____D () C:\Program Files\WinRAR
2015-01-20 21:29 - 2014-11-06 21:44 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Local\Packages
2015-01-20 19:59 - 2012-07-26 15:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-01-16 22:17 - 2014-12-09 04:01 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\TeamViewer
2015-01-16 22:17 - 2014-11-09 07:29 - 00000000 ___DC () C:\WINDOWS\Panther
2015-01-16 22:17 - 2014-11-08 16:59 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\DAEMON Tools Lite
2015-01-16 20:41 - 2014-11-08 17:08 - 00001114 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-01-16 20:41 - 2014-11-08 17:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-01-16 20:41 - 2014-11-08 17:08 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-01-16 12:01 - 2014-11-07 00:20 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-01-16 11:58 - 2014-11-07 00:20 - 113365784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-01-14 21:28 - 2014-12-13 22:29 - 00003718 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-01-06 08:08 - 2014-09-24 18:03 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-01-06 08:08 - 2014-09-24 18:03 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-01-01 00:50 - 2014-11-09 14:04 - 00000000 ____D () C:\Users\Winfred Arman Lati\Documents\Adobe
2014-12-31 21:44 - 2014-11-09 00:37 - 00000000 ____D () C:\Users\Winfred Arman Lati\AppData\Roaming\iolo
2014-12-31 19:14 - 2014-11-06 22:34 - 00298120 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-12-29 13:15 - 2014-11-06 21:08 - 00000000 ____D () C:\Update
2014-12-29 02:28 - 2012-08-04 03:19 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Sony Corporation
2014-12-29 02:28 - 2012-07-26 11:31 - 00000000 ____D () C:\ProgramData\Sony Corporation
2014-12-29 02:27 - 2012-08-04 03:12 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information

==================== Files in the root of some directories =======
2014-11-09 14:45 - 2014-12-21 19:58 - 0000034 _____ () C:\Users\Winfred Arman Lati\AppData\Roaming\AdobeWLCMCache.dat
2014-11-13 13:53 - 2014-11-13 19:56 - 0003072 _____ () C:\Users\Winfred Arman Lati\AppData\Roaming\Photobook Designer Prefsv3
2012-08-04 03:12 - 2012-08-04 03:12 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\Winfred Arman Lati\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Winfred Arman Lati\AppData\Local\Temp\jre-8u31-windows-au.exe
C:\Users\Winfred Arman Lati\AppData\Local\Temp\Quarantine.exe
C:\Users\Winfred Arman Lati\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-21 22:20

==================== End Of Log ============================



#12 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:26 AM

Posted 22 January 2015 - 10:14 AM

Hey, :)

Still problems?
  • Please open Notepad.exe. Make sure that you don't use any other software than Notepad.exe!
  • Copy and Paste the content of the codebox below into the empty textfile:

    ProxyEnable: [HKLM] => ProxyEnable is set.
    ProxyEnable: [HKLM-x32] => ProxyEnable is set.
    ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
    ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
    SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    FF NetworkProxy: "type", 0
    FF Extension: FlashGot - C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2014-11-09]
    FF Extension: QR  Code  - C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default\Extensions\{6a910736-6fab-4480-841a-36325cce134f}.xpi [2014-11-09]
    S3 npkycryp; \??\C:\Program Files (x86)\Level Up Games\Ragnarok Online\npkycryp.sys [X]
    2015-01-01 14:06 - 2015-01-01 14:13 - 00000472 _____ () C:\WINDOWS\Tasks\Connectify Updater.job
    2015-01-01 14:06 - 2015-01-01 14:09 - 00000000 ____D () C:\Program Files (x86)\Connectify Updater
    2015-01-01 14:06 - 2015-01-01 14:06 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Connectify Updater
    2015-01-01 14:01 - 2015-01-01 14:01 - 00000000 ____D () C:\Users\Winfred Arman Lati\Downloads\Connectify Hotspot & Dispatch Pro 7.3.3.30440 + Crack (Working Nov14)
    2015-01-21 00:31 - 2012-08-04 03:27 - 00000000 ____D () C:\ProgramData\boost_interprocess
    EmptyTemp:
  • Then click on File >> Save as
    • File Name: Fixlist.txt
    • From the Save as type drop down list, choose All Files
  • It is very important that you save this textfile on your Desktop!
Note: It's important that both files, FRST.exe/FRST64.exe and fixlist.txt are in the same location or the fix will not work
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
  • Run FRST.exe/FRST64.exe (Note: If FRST advises there is a new updated version to be downloaded, allow this.)and press the Fix button just once and wait
  • If for some reason the tool needs a restart, please make sure you let the system restart normally, then let the tool complete its run
  • When finished, FRST will generate a log (Fixlog.txt) in the same location the tool was run, please post it to your reply

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#13 greenarcher02

greenarcher02
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:02:26 PM

Posted 23 January 2015 - 09:28 AM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 18-01-2015 01
Ran by Winfred Arman Lati at 2015-01-23 22:20:21 Run:15
Running from C:\Users\Winfred Arman Lati\Desktop
Loaded Profiles: Winfred Arman Lati (Available profiles: Winfred Arman Lati)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
ProxyEnable: [HKLM] => ProxyEnable is set.
ProxyEnable: [HKLM-x32] => ProxyEnable is set.
ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080
ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
FF NetworkProxy: "type", 0
FF Extension: FlashGot - C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2014-11-09]
FF Extension: QR  Code  - C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default\Extensions\{6a910736-6fab-4480-841a-36325cce134f}.xpi [2014-11-09]
S3 npkycryp; \??\C:\Program Files (x86)\Level Up Games\Ragnarok Online\npkycryp.sys [X]
2015-01-01 14:06 - 2015-01-01 14:13 - 00000472 _____ () C:\WINDOWS\Tasks\Connectify Updater.job
2015-01-01 14:06 - 2015-01-01 14:09 - 00000000 ____D () C:\Program Files (x86)\Connectify Updater
2015-01-01 14:06 - 2015-01-01 14:06 - 00003218 _____ () C:\WINDOWS\System32\Tasks\Connectify Updater
2015-01-01 14:01 - 2015-01-01 14:01 - 00000000 ____D () C:\Users\Winfred Arman Lati\Downloads\Connectify Hotspot & Dispatch Pro 7.3.3.30440 + Crack (Working Nov14)
2015-01-21 00:31 - 2012-08-04 03:27 - 00000000 ____D () C:\ProgramData\boost_interprocess
EmptyTemp:
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyEnable => value deleted successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value deleted successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
Firefox Proxy settings were reset.
C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi => Moved successfully.
C:\Users\Winfred Arman Lati\AppData\Roaming\Mozilla\Firefox\Profiles\sps7hed6.default\Extensions\{6a910736-6fab-4480-841a-36325cce134f}.xpi => Moved successfully.
npkycryp => Service deleted successfully.
C:\WINDOWS\Tasks\Connectify Updater.job => Moved successfully.

"C:\Program Files (x86)\Connectify Updater" directory move:

C:\Program Files (x86)\Connectify Updater\FiddlerCore3dot5.dll => Moved successfully.
C:\Program Files (x86)\Connectify Updater\makecert.exe => Moved successfully.
C:\Program Files (x86)\Connectify Updater\Updater.exe => Moved successfully.
C:\Program Files (x86)\Connectify Updater\updater.ini => Moved successfully.
Could not move "C:\Program Files (x86)\Connectify Updater" directory. => Scheduled to move on reboot.

C:\WINDOWS\System32\Tasks\Connectify Updater => Moved successfully.
C:\Users\Winfred Arman Lati\Downloads\Connectify Hotspot & Dispatch Pro 7.3.3.30440 + Crack (Working Nov14) => Moved successfully.
C:\ProgramData\boost_interprocess => Moved successfully.
EmptyTemp: => Removed 397.2 MB temporary data.

=> Result of Scheduled Files to move (Boot Mode: Normal) (Date&Time: 2015-01-23 22:21:19)<=

C:\Program Files (x86)\Connectify Updater => Is moved successfully.

==== End of Fixlog 22:21:19 ====

 

Well, so far it's okay now.

 

Good news is that modern apps are now working properly, including modern IE. Proxy server remains off.

 

Slightly bad news is that proxy settings are unchangeable. It reverts back to off if I try to turn it on. And the annoying "http=127.0.0.1:8080;https=127.0.0.1:8080" is still there.

 

But at least it's off, I guess? It's a good workaround for now, I think. Thank you for your help!



#14 Machiavelli

Machiavelli

    Agent 007


  • Malware Response Instructor
  • 3,976 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:01:26 AM

Posted 23 January 2015 - 01:22 PM

Now , do you want to remove the Proxy somehow or leave the system how it is? :)

~Machiavelli

If I don't reply within 24 hours please PM me!

  • Every topic with no replies within 5 days will be closed.
  • If you like my help here please give me feedback.

unite_blue.png
 
 


#15 greenarcher02

greenarcher02
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:02:26 PM

Posted 23 January 2015 - 01:36 PM

If it isn't too much of a hassle? And/or will it be possible to return it to normal where I can change settings without it reverting back every time?

 

Thanks so much.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users