Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Cant remove the virus and malware


  • This topic is locked This topic is locked
8 replies to this topic

#1 cowboys2006

cowboys2006

  • Members
  • 237 posts
  • OFFLINE
  •  
  • Local time:04:11 PM

Posted 25 January 2015 - 10:39 AM

I have ran, superanti spyware,malwarebytes,hitmanpro,Norton, and this wont get remove from the computer. everytime I try to use the computer I get pop ups and also a message that I need to call some place. I am trying to fix my grams computer and I am trying to save all the pcitures that she currently has don't want to restore the whole thing. can someone please help me.

 

let me know what I can do. and what is needed.

 

currently funning in safe mode when I load on regular desktop it takes a long time extremely slow.

 

thank you

 

 

edit

 

its been a long time that I having posted in here. if I didn't do it right I apologize for it.

 

 

I keep on getting a message to download showed.js from ads.pubmatic.com

 

I close it and it keeps on coming back.

 

again any help would be great.

 

Thank you.


Edited by cowboys2006, 25 January 2015 - 04:50 PM.


BC AdBot (Login to Remove)

 


m

#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:11 PM

Posted 25 January 2015 - 05:01 PM

Hello cowboys. let's look at these logs.

What is your browser?


Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

Edited by boopme, 25 January 2015 - 05:03 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 cowboys2006

cowboys2006
  • Topic Starter

  • Members
  • 237 posts
  • OFFLINE
  •  
  • Local time:04:11 PM

Posted 25 January 2015 - 07:21 PM

currently using internet explorer but also using goggle and I get pop ups there

 

here is the logs

 

 

MiniToolBox by Farbar  Version: 30-11-2014
Ran by grandmaardy (administrator) on 25-01-2015 at 17:13:11
Running from "C:\Users\grandmaardy\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Ralink RT3090 802.11n WiFi Adapter = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled taskoffload=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : grandmaardy-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : CC-AF-78-53-6D-35
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : F0-DE-F1-6F-73-87
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Ralink RT3090 802.11n WiFi Adapter
   Physical Address. . . . . . . . . : CC-AF-78-53-6D-34
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::1001:aacb:97f8:4852%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.4(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, January 25, 2015 3:03:56 PM
   Lease Expires . . . . . . . . . . : Monday, January 26, 2015 3:03:56 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 197963640
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-93-76-74-CC-AF-78-53-6D-34
   DNS Servers . . . . . . . . . . . : 50.7.75.30
                                       76.73.6.110
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:34c2:2938:3f57:fefb(Preferred)
   Link-local IPv6 Address . . . . . : fe80::34c2:2938:3f57:fefb%15(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 12:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{CE0975D6-EBAC-4AAC-9308-E5D7E8F2DA37}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  50.7.75.30

Name:    google.com
Addresses:  2607:f8b0:4004:801::1006
   74.125.228.32
   74.125.228.37
   74.125.228.41
   74.125.228.36
   74.125.228.33
   74.125.228.34
   74.125.228.46
   74.125.228.38
   74.125.228.39
   74.125.228.35
   74.125.228.40

Pinging google.com [74.125.228.35] with 32 bytes of data:
Reply from 74.125.228.35: bytes=32 time=33ms TTL=52
Reply from 74.125.228.35: bytes=32 time=34ms TTL=52

Ping statistics for 74.125.228.35:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 33ms, Maximum = 34ms, Average = 33ms
Server:  UnKnown
Address:  50.7.75.30

Name:    yahoo.com
Addresses:  98.138.253.109
   206.190.36.45
   98.139.183.24

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=34ms TTL=51
Reply from 98.138.253.109: bytes=32 time=35ms TTL=51

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 34ms, Maximum = 35ms, Average = 34ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 14...cc af 78 53 6d 35 ......Microsoft Virtual WiFi Miniport Adapter
 12...f0 de f1 6f 73 87 ......Realtek PCIe GBE Family Controller
 11...cc af 78 53 6d 34 ......Ralink RT3090 802.11n WiFi Adapter
  1...........................Software Loopback Interface 1
 15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 13...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.4     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.4    281
      192.168.1.4  255.255.255.255         On-link       192.168.1.4    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.4    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.4    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.4    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 15     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 15     58 2001::/32                On-link
 15    306 2001:0:9d38:6abd:34c2:2938:3f57:fefb/128
                                    On-link
 11    281 fe80::/64                On-link
 15    306 fe80::/64                On-link
 11    281 fe80::1001:aacb:97f8:4852/128
                                    On-link
 15    306 fe80::34c2:2938:3f57:fefb/128
                                    On-link
  1    306 ff00::/8                 On-link
 15    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================

System errors:
=============
Error: (01/25/2015 03:51:54 PM) (Source: Application Popup) (User: )
Description: \??\C:\Windows\System32\drivers\TrueSight.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI AVIVO64 Codecs (Version: 11.6.0.10518 - ATI Technologies Inc.) Hidden
ATI Catalyst Install Manager (HKLM\...\{37B907C1-EA3D-4894-EEBE-275CB0BF5BA2}) (Version: 3.0.812.0 - ATI Technologies, Inc.)
Best Buy pc app (Version: 3.2.2.1 - Best Buy) Hidden
Best Buy pc app (x32 Version: 3.2.2.1 - Best Buy) Hidden
BioExcess (HKLM-x32\...\InstallShield_{E6CB67CC-71D2-46b9-8D43-A4641A9EECB2}) (Version: 7.0.67.0 - Egis Technology Inc.)
BioExcess (Version: 7.0.67.0 - Egis Technology Inc.) Hidden
BioExcess (x32 Version: 7.0.67.0 - Egis Technology Inc.) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2011.0525.1041.17280 - ATI) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2011.0525.1041.17280 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2011.0525.1041.17280 - ATI) Hidden
Catalyst Control Center Profiles Mobile (x32 Version: 2011.0525.1041.17280 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Czech (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Danish (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Dutch (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help English (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Finnish (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help French (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help German (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Greek (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Italian (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Japanese (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Korean (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Polish (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Russian (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Spanish (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Swedish (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Thai (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
CCC Help Turkish (x32 Version: 2011.0525.1040.17280 - ATI) Hidden
ccc-core-static (x32 Version: 2011.0525.1041.17280 - ATI) Hidden
ccc-utility64 (Version: 2011.0525.1041.17280 - ATI) Hidden
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.4.50 - Conexant)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.3728 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 3.1.3728 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
EgisTec ES603 WDM Driver (HKLM-x32\...\InstallShield_{AE4167B0-F589-4D2A-BF05-E181D543C49F}) (Version: 3.0.20.0 - Egis Technology Inc.)
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 6.0.2.1 - Lenovo)
Energy Management (x32 Version: 6.0.2.1 - Lenovo) Hidden
ES603 WDM Driver (x32 Version: 3.0.20.0 - Egis Technology Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.234 - SurfRight B.V.)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Java Auto Updater (x32 Version: 2.8.31.13 - Oracle Corporation) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Lenovo EE Boot Optimizer (HKLM\...\Lenovo EE Boot Optimizer) (Version: 0.0.1.7 - Lenovo)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.0.2525 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 7.0.0.2525 - CyberLink Corp.) Hidden
Lenovo Security Suite (HKLM-x32\...\InstallShield_{0034859F-8E01-4C1D-BE77-F891C4786FBC}) (Version: 2.0.13.0 - Lenovo)
Lenovo Security Suite (x32 Version: 2.0.13.0 - Lenovo) Hidden
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4675.1003 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Starter 2010 - English (HKLM-x32\...\{90140011-0066-0409-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4023.1211 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Norton 360 (HKLM-x32\...\N360) (Version: 21.6.0.32 - Symantec Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Port Locker (HKLM-x32\...\InstallShield_{A6FEE06D-C7E1-48CB-A9DF-1E317CF83CA4}) (Version: 1.0.5.24 - Egis Technology Inc.)
Port Locker (Version: 1.0.5.24 - Egis Technology Inc.) Hidden
Port Locker (x32 Version: 1.0.5.24 - Egis Technology Inc.) Hidden
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.7303 - CyberLink Corp.)
PowerXpressHybrid (x32 Version: 1.00.0000 - ATI) Hidden
Ralink RT2860 Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}) (Version: 1.2.0.30 - Ralink)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.42.304.2011 - Realtek)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10008 - Realtek Semiconductor Corp.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1168 - SUPERAntiSpyware.com)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.2.5.2 - Synaptics Incorporated)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.6 - Lenovo)
UserGuide (x32 Version: 1.0.0.6 - Lenovo) Hidden
VeriFace (HKLM-x32\...\VeriFace) (Version: 4.0.0.1224 - Lenovo)
Windows Driver Package - Lenovo (ACPIVPC) System  (12/02/2010 6.1.0.1) (HKLM\...\EA12B1FB53CE4E387C31A85236C41EF559B5E392) (Version: 12/02/2010 6.1.0.1 - Lenovo)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WMV9/VC-1 Video Playback (Version: 1.00.0000 - ATI Technologies Inc.) Hidden

========================= Devices: ================================

========================= Memory info: ===================================

Percentage of memory in use: 63%
Total physical RAM: 3686.11 MB
Available physical RAM: 1360.91 MB
Total Pagefile: 7370.4 MB
Available Pagefile: 5373.91 MB
Total Virtual: 4095.88 MB
Available Virtual: 3975.68 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:254.14 GB) (Free:208.77 GB) NTFS
2 Drive d: (LENOVO) (Fixed) (Total:29 GB) (Free:27.08 GB) NTFS

========================= Users: ========================================

User accounts for \\GRANDMAARDY-PC

Administrator            grandmaardy              Guest                   

**** End of log ****

 

 

 

# AdwCleaner v4.109 - Report created 25/01/2015 at 17:20:40
# Updated 24/01/2015 by Xplode
# Database : 2015-01-25.1 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : grandmaardy - GRANDMAARDY-PC
# Running from : C:\Users\grandmaardy\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17496

-\\ Google Chrome v35.0.1916.153

*************************

AdwCleaner[R0].txt - [5893 octets] - [25/01/2015 13:34:07]
AdwCleaner[R1].txt - [687 octets] - [25/01/2015 17:20:40]
AdwCleaner[S0].txt - [5837 octets] - [25/01/2015 13:39:13]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [806 octets] ##########

 

 

 

 

17:16:48.0101 0x0768 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04

17:16:55.0004 0x0768 ============================================================

17:16:55.0004 0x0768 Current date / time: 2015/01/25 17:16:55.0004

17:16:55.0004 0x0768 SystemInfo:

17:16:55.0007 0x0768

17:16:55.0007 0x0768 OS Version: 6.1.7601 ServicePack: 1.0

17:16:55.0007 0x0768 Product type: Workstation

17:16:55.0007 0x0768 ComputerName: GRANDMAARDY-PC

17:16:55.0007 0x0768 UserName: grandmaardy

17:16:55.0007 0x0768 Windows directory: C:\windows

17:16:55.0007 0x0768 System windows directory: C:\windows

17:16:55.0007 0x0768 Running under WOW64

17:16:55.0007 0x0768 Processor architecture: Intel x64

17:16:55.0007 0x0768 Number of processors: 2

17:16:55.0007 0x0768 Page size: 0x1000

17:16:55.0007 0x0768 Boot type: Normal boot

17:16:55.0007 0x0768 ============================================================

17:16:58.0957 0x0768 KLMD registered as C:\windows\system32\drivers\42167503.sys

17:16:59.0228 0x0768 System UUID: {C04D59A2-D257-0AE9-9E8F-10066F78A7BF}

17:16:59.0976 0x0768 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

17:16:59.0992 0x0768 ============================================================

17:16:59.0992 0x0768 \Device\Harddisk0\DR0:

17:16:59.0992 0x0768 MBR partitions:

17:16:59.0992 0x0768 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000

17:16:59.0992 0x0768 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x1FC49800

17:17:00.0023 0x0768 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1FCAE800, BlocksNum 0x39FD800

17:17:00.0023 0x0768 ============================================================

17:17:00.0070 0x0768 C: <-> \Device\Harddisk0\DR0\Partition2

17:17:00.0117 0x0768 D: <-> \Device\Harddisk0\DR0\Partition3

17:17:00.0117 0x0768 ============================================================

17:17:00.0117 0x0768 Initialize success

17:17:00.0117 0x0768 ============================================================

17:17:17.0417 0x1bec ============================================================

17:17:17.0417 0x1bec Scan started

17:17:17.0417 0x1bec Mode: Manual;

17:17:17.0417 0x1bec ============================================================

17:17:17.0417 0x1bec KSN ping started

17:17:22.0902 0x1bec KSN ping finished: true

17:17:25.0213 0x1bec ================ Scan system memory ========================

17:17:25.0213 0x1bec System memory - ok

17:17:25.0213 0x1bec ================ Scan services =============================

17:17:25.0353 0x1bec [ 970C70F6B2953ED43822D3797855D84C, CB22723678B514277BC6E6DDDD206F3B2377CD889C9D473A47A7056BE597BC6B ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

17:17:25.0369 0x1bec !SASCORE - ok

17:17:25.0712 0x1bec [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\windows\system32\drivers\1394ohci.sys

17:17:25.0712 0x1bec 1394ohci - ok

17:17:25.0759 0x1bec [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\windows\system32\drivers\ACPI.sys

17:17:25.0774 0x1bec ACPI - ok

17:17:25.0790 0x1bec [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys

17:17:25.0790 0x1bec AcpiPmi - ok

17:17:25.0852 0x1bec [ 5BBFF8B826EC38D32C26334E079C7EFC, 673D46409F0225A804B55FFB77E82AF34F8C7A93BEEF92DC3DFAC7EFCC5F09B6 ] ACPIVPC C:\windows\system32\DRIVERS\AcpiVpc.sys

17:17:25.0852 0x1bec ACPIVPC - ok

17:17:26.0196 0x1bec [ A2A9C100FE1BE20A76C0B80D4CA44103, C34B4A31C8563E29EC6A3D318C40075F43C891C23D156F53EE2102C959B7887F ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

17:17:26.0211 0x1bec AdobeFlashPlayerUpdateSvc - ok

17:17:26.0305 0x1bec [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\windows\system32\drivers\adp94xx.sys

17:17:26.0320 0x1bec adp94xx - ok

17:17:26.0445 0x1bec [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\windows\system32\drivers\adpahci.sys

17:17:26.0476 0x1bec adpahci - ok

17:17:26.0710 0x1bec [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\windows\system32\drivers\adpu320.sys

17:17:26.0726 0x1bec adpu320 - ok

17:17:26.0866 0x1bec [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\windows\System32\aelupsvc.dll

17:17:26.0882 0x1bec AeLookupSvc - ok

17:17:27.0043 0x1bec [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\windows\system32\drivers\afd.sys

17:17:27.0074 0x1bec AFD - ok

17:17:27.0105 0x1bec [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\windows\system32\drivers\agp440.sys

17:17:27.0121 0x1bec agp440 - ok

17:17:27.0215 0x1bec [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\windows\System32\alg.exe

17:17:27.0215 0x1bec ALG - ok

17:17:27.0261 0x1bec [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\windows\system32\drivers\aliide.sys

17:17:27.0261 0x1bec aliide - ok

17:17:27.0308 0x1bec [ C907240FE95DE405E40342419B9D2AFE, 7554AE32E1B626F47EBE7E08D29B0687B1649413359970AD124034F327E8F78F ] AMD External Events Utility C:\windows\system32\atiesrxx.exe

17:17:27.0324 0x1bec AMD External Events Utility - ok

17:17:27.0339 0x1bec [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\windows\system32\drivers\amdide.sys

17:17:27.0371 0x1bec amdide - ok

17:17:27.0417 0x1bec [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\windows\system32\drivers\amdk8.sys

17:17:27.0417 0x1bec AmdK8 - ok

17:17:28.0229 0x1bec [ 76310C6DC018CE6310E4520789B9E40A, 1D96FDF12C14E25D6C4AD7B888C0FE168087EA6EC5E74B7C44EE0A9AFAE430B5 ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys

17:17:28.0603 0x1bec amdkmdag - ok

17:17:28.0681 0x1bec [ 3CBD33B1903C0A10FB746388EED91370, 02AF03825E1366CA81B809A160B3AACC4C7EB721A306CB205659404AD31B3141 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys

17:17:28.0697 0x1bec amdkmdap - ok

17:17:28.0728 0x1bec [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys

17:17:28.0728 0x1bec AmdPPM - ok

17:17:28.0759 0x1bec [ CC3021D064EB6D3C2F949530E2B0BA47, 3BEFF55082E742454283CC963624B3E11EE0BB4AA8B605D8F26CCCDB9FF4AE38 ] amdsata C:\windows\system32\DRIVERS\amdsata.sys

17:17:28.0759 0x1bec amdsata - ok

17:17:28.0806 0x1bec [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\windows\system32\drivers\amdsbs.sys

17:17:28.0821 0x1bec amdsbs - ok

17:17:28.0868 0x1bec [ FFC5A0F6263574EF0D5467496B721F77, 85C949FA223099B33AFCFBC8AC85E82E6CDAAA315F13B7AF1189AC917CB70331 ] amdxata C:\windows\system32\drivers\amdxata.sys

17:17:28.0868 0x1bec amdxata - ok

17:17:28.0946 0x1bec [ 80B9412C4DE09147581FC935FB4C97AB, 0C9661F7B5EF7F9D61981790B7AB64E3375BD117962166619D0CC546A2D014D3 ] AppID C:\windows\system32\drivers\appid.sys

17:17:28.0962 0x1bec AppID - ok

17:17:28.0998 0x1bec [ F71CA01C24FC3798A717B5A6F682F9AD, 8CF1C209E7BBBAD02D6D087293C0B681CDA3170AF119CA2916C2708D8801E749 ] AppIDSvc C:\windows\System32\appidsvc.dll

17:17:28.0998 0x1bec AppIDSvc - ok

17:17:29.0045 0x1bec [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\windows\System32\appinfo.dll

17:17:29.0060 0x1bec Appinfo - ok

17:17:29.0185 0x1bec [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

17:17:29.0185 0x1bec Apple Mobile Device - ok

17:17:29.0232 0x1bec [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\windows\system32\drivers\arc.sys

17:17:29.0248 0x1bec arc - ok

17:17:29.0263 0x1bec [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\windows\system32\drivers\arcsas.sys

17:17:29.0279 0x1bec arcsas - ok

17:17:29.0435 0x1bec [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe

17:17:29.0435 0x1bec aspnet_state - ok

17:17:29.0466 0x1bec [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys

17:17:29.0482 0x1bec AsyncMac - ok

17:17:29.0513 0x1bec [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\windows\system32\drivers\atapi.sys

17:17:29.0528 0x1bec atapi - ok

17:17:29.0606 0x1bec [ 4BF5BCA6E2608CD8A00BC4A6673A9F47, 172240231981162F67DD2CF13C6D8C807EFFCE9C24B476F2942BC3E1F41C1A71 ] AtiHDAudioService C:\windows\system32\drivers\AtihdW76.sys

17:17:29.0606 0x1bec AtiHDAudioService - ok

17:17:29.0669 0x1bec [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll

17:17:29.0716 0x1bec AudioEndpointBuilder - ok

17:17:29.0762 0x1bec [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv C:\windows\System32\Audiosrv.dll

17:17:29.0794 0x1bec AudioSrv - ok

17:17:29.0840 0x1bec [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\windows\System32\AxInstSV.dll

17:17:29.0856 0x1bec AxInstSV - ok

17:17:29.0903 0x1bec [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys

17:17:29.0918 0x1bec b06bdrv - ok

17:17:29.0981 0x1bec [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys

17:17:29.0996 0x1bec b57nd60a - ok

17:17:30.0028 0x1bec [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\windows\System32\bdesvc.dll

17:17:30.0028 0x1bec BDESVC - ok

17:17:30.0059 0x1bec [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\windows\system32\drivers\Beep.sys

17:17:30.0059 0x1bec Beep - ok

17:17:30.0137 0x1bec [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\windows\System32\bfe.dll

17:17:30.0184 0x1bec BFE - ok

17:17:30.0418 0x1bec [ 5B474BB95B8C7B9D15E82390F9A4FE75, F211E0E5286574BD200D8EBC9DD80A23E8323326625038F64354E87B5D542CF1 ] BHDrvx64 C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20150106.001\BHDrvx64.sys

17:17:30.0480 0x1bec BHDrvx64 - ok

17:17:30.0574 0x1bec [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\windows\System32\qmgr.dll

17:17:30.0636 0x1bec BITS - ok

17:17:30.0667 0x1bec [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys

17:17:30.0667 0x1bec blbdrive - ok

17:17:30.0761 0x1bec [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

17:17:30.0776 0x1bec Bonjour Service - ok

17:17:30.0823 0x1bec [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\windows\system32\DRIVERS\bowser.sys

17:17:30.0839 0x1bec bowser - ok

17:17:30.0870 0x1bec [ AAA4F992F879977A000FE8B8C730CD2C, A109D3F7CA9D49B98FDA5CA34C60055690F72400CCC96D48076FA86086E4C74D ] BPntDrv C:\windows\system32\drivers\BPntDrv.sys

17:17:30.0870 0x1bec BPntDrv - ok

17:17:30.0901 0x1bec [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys

17:17:30.0901 0x1bec BrFiltLo - ok

17:17:30.0917 0x1bec [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys

17:17:30.0932 0x1bec BrFiltUp - ok

17:17:30.0964 0x1bec [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\windows\System32\browser.dll

17:17:30.0984 0x1bec Browser - ok

17:17:31.0018 0x1bec [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\windows\System32\Drivers\Brserid.sys

17:17:31.0034 0x1bec Brserid - ok

17:17:31.0065 0x1bec [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys

17:17:31.0065 0x1bec BrSerWdm - ok

17:17:31.0080 0x1bec [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys

17:17:31.0080 0x1bec BrUsbMdm - ok

17:17:31.0096 0x1bec [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys

17:17:31.0096 0x1bec BrUsbSer - ok

17:17:31.0143 0x1bec [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\windows\system32\drivers\BthEnum.sys

17:17:31.0143 0x1bec BthEnum - ok

17:17:31.0174 0x1bec [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys

17:17:31.0174 0x1bec BTHMODEM - ok

17:17:31.0221 0x1bec [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\windows\system32\DRIVERS\bthpan.sys

17:17:31.0221 0x1bec BthPan - ok

17:17:31.0299 0x1bec [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys

17:17:31.0314 0x1bec BTHPORT - ok

17:17:31.0377 0x1bec [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\windows\system32\bthserv.dll

17:17:31.0377 0x1bec bthserv - ok

17:17:31.0392 0x1bec [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys

17:17:31.0408 0x1bec BTHUSB - ok

17:17:31.0502 0x1bec [ 0510396A957E9FD7205BA62D3CAE4528, C80C39EB3A87C5111132E96E966CF74ACABA36DE7714B545A707027D35995792 ] ccSet_N360 C:\windows\system32\drivers\N360x64\1506000.020\ccSetx64.sys

17:17:31.0517 0x1bec ccSet_N360 - ok

17:17:31.0548 0x1bec [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys

17:17:31.0548 0x1bec cdfs - ok

17:17:31.0595 0x1bec [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\windows\system32\DRIVERS\cdrom.sys

17:17:31.0611 0x1bec cdrom - ok

17:17:31.0642 0x1bec [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\windows\System32\certprop.dll

17:17:31.0642 0x1bec CertPropSvc - ok

17:17:31.0689 0x1bec [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\windows\system32\drivers\circlass.sys

17:17:31.0689 0x1bec circlass - ok

17:17:31.0736 0x1bec [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\windows\system32\CLFS.sys

17:17:31.0767 0x1bec CLFS - ok

17:17:31.0985 0x1bec [ 7E526C5B4DD233EBCF1EA3EC211E2913, 9DC99F18454001AF5462C773C174E2D6E503316550C7E9D7824E9CBC503FCA3B ] ClickToRunSvc C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe

17:17:32.0094 0x1bec ClickToRunSvc - ok

17:17:32.0204 0x1bec [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

17:17:32.0219 0x1bec clr_optimization_v2.0.50727_32 - ok

17:17:32.0282 0x1bec [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

17:17:32.0282 0x1bec clr_optimization_v2.0.50727_64 - ok

17:17:32.0422 0x1bec [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

17:17:32.0422 0x1bec clr_optimization_v4.0.30319_32 - ok

17:17:32.0469 0x1bec [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

17:17:32.0469 0x1bec clr_optimization_v4.0.30319_64 - ok

17:17:32.0531 0x1bec [ 50F92C943F18B070F166D019DFAB3D9A, A997EAFFC1598B1D0A9E1A4475F25418CA8AA6B703B53A71B1AF028E247C9950 ] clwvd C:\windows\system32\DRIVERS\clwvd.sys

17:17:32.0547 0x1bec clwvd - ok

17:17:32.0578 0x1bec [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys

17:17:32.0578 0x1bec CmBatt - ok

17:17:32.0609 0x1bec [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\windows\system32\drivers\cmdide.sys

17:17:32.0609 0x1bec cmdide - ok

17:17:32.0687 0x1bec [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\windows\system32\Drivers\cng.sys

17:17:32.0703 0x1bec CNG - ok

17:17:32.0843 0x1bec [ A260BE645DD096D90318C8CF98536720, ACFDC643485AAAB40ABB3A00C8D9F2E962AF273B95118F0CD19FB8E93E8BF032 ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys

17:17:32.0906 0x1bec CnxtHdAudService - ok

17:17:32.0937 0x1bec [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\windows\system32\drivers\compbatt.sys

17:17:32.0937 0x1bec Compbatt - ok

17:17:32.0973 0x1bec [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys

17:17:32.0989 0x1bec CompositeBus - ok

17:17:33.0004 0x1bec COMSysApp - ok

17:17:33.0035 0x1bec [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\windows\system32\drivers\crcdisk.sys

17:17:33.0035 0x1bec crcdisk - ok

17:17:33.0082 0x1bec [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] CryptSvc C:\windows\system32\cryptsvc.dll

17:17:33.0098 0x1bec CryptSvc - ok

17:17:33.0269 0x1bec [ FD557A50A65E44041CD2FCEF4BEB04DB, 746D5958F7198895D35A23566D3736D993D57726BF59D91421D8091C48926A26 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE

17:17:33.0301 0x1bec cvhsvc - ok

17:17:33.0363 0x1bec [ F160B26B26BA4AFE8CECC12ED5AC231E, 8DA8921A40B67ACFC7E47A54870181CDA1866901A3E8B3A2393D7C006C6B3A42 ] CxAudMsg C:\windows\system32\CxAudMsg64.exe

17:17:33.0363 0x1bec CxAudMsg - ok

17:17:33.0441 0x1bec [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\windows\system32\rpcss.dll

17:17:33.0472 0x1bec DcomLaunch - ok

17:17:33.0519 0x1bec [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\windows\System32\defragsvc.dll

17:17:33.0535 0x1bec defragsvc - ok

17:17:33.0566 0x1bec [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\windows\system32\Drivers\dfsc.sys

17:17:33.0566 0x1bec DfsC - ok

17:17:33.0628 0x1bec [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\windows\system32\dhcpcore.dll

17:17:33.0659 0x1bec Dhcp - ok

17:17:33.0691 0x1bec [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\windows\system32\drivers\discache.sys

17:17:33.0691 0x1bec discache - ok

17:17:33.0737 0x1bec [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\windows\system32\drivers\disk.sys

17:17:33.0737 0x1bec Disk - ok

17:17:33.0784 0x1bec [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\windows\System32\dnsrslvr.dll

17:17:33.0800 0x1bec Dnscache - ok

17:17:33.0847 0x1bec [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\windows\System32\dot3svc.dll

17:17:33.0862 0x1bec dot3svc - ok

17:17:33.0909 0x1bec [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\windows\system32\dps.dll

17:17:33.0909 0x1bec DPS - ok

17:17:33.0971 0x1bec [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\windows\system32\drivers\drmkaud.sys

17:17:33.0971 0x1bec drmkaud - ok

17:17:34.0081 0x1bec [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys

17:17:34.0127 0x1bec DXGKrnl - ok

17:17:34.0159 0x1bec [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\windows\System32\eapsvc.dll

17:17:34.0174 0x1bec EapHost - ok

17:17:34.0408 0x1bec [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\windows\system32\drivers\evbda.sys

17:17:34.0533 0x1bec ebdrv - ok

17:17:34.0611 0x1bec [ 47A68B3DBBB34D4FE61DE221A8536627, BC61CE4BD4F3A12C75BA6EB9D239F24CD3F54495DE9D6C901F4DAF5D92E8366B ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys

17:17:34.0627 0x1bec eeCtrl - ok

17:17:34.0673 0x1bec [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS C:\windows\System32\lsass.exe

17:17:34.0673 0x1bec EFS - ok

17:17:34.0798 0x1bec [ 2C1A297638E4319179A1112D4D6522B8, A5A9A82245D631EE50C9F5BF22C85B18E4BAABAB1C559E1833164578C2EC618F ] EgisTec Service C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe

17:17:34.0829 0x1bec EgisTec Service - ok

17:17:34.0907 0x1bec [ 0AC3BAA7DF250C76DD9BCFC51565CB5F, 018F0DABF6B948E39423CE899BEFC864240402D5F31B86BEAD655ABEF4AFAFC3 ] EgisTec Service Help C:\Program Files (x86)\EgisTec Port Locker\Egishlpsvc.exe

17:17:34.0923 0x1bec EgisTec Service Help - ok

17:17:34.0990 0x1bec [ 7745AAFFB61438C28C75E18CE98D4E64, 236FFA327A6EC1DB952B23ECAAA4969241F15376D374CDFD39916E1C0882B216 ] EgisTec Ticket Service C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe

17:17:35.0022 0x1bec EgisTec Ticket Service - ok

17:17:35.0053 0x1bec [ 33708C6D915F8DE734CF3ABB0731515B, AE4FFC410C0A90C94C196E04DEACD0E707750D14DEC460D6DD79140320FE62B0 ] EgisTecFF C:\windows\system32\DRIVERS\EgisTecFF.sys

17:17:35.0068 0x1bec EgisTecFF - ok

17:17:35.0162 0x1bec [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\windows\ehome\ehRecvr.exe

17:17:35.0193 0x1bec ehRecvr - ok

17:17:35.0224 0x1bec [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\windows\ehome\ehsched.exe

17:17:35.0224 0x1bec ehSched - ok

17:17:35.0271 0x1bec [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\windows\system32\drivers\elxstor.sys

17:17:35.0302 0x1bec elxstor - ok

17:17:35.0365 0x1bec [ B9773081AAF65E6D553496BA0CADCBB3, 3A77A12544755BFA1ABAA6DC53E5F03522627F57EF7092E3CC54C6431C75076A ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys

17:17:35.0365 0x1bec EraserUtilRebootDrv - ok

17:17:35.0396 0x1bec [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\windows\system32\drivers\errdev.sys

17:17:35.0396 0x1bec ErrDev - ok

17:17:35.0490 0x1bec [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\windows\system32\es.dll

17:17:35.0521 0x1bec EventSystem - ok

17:17:35.0552 0x1bec [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\windows\system32\drivers\exfat.sys

17:17:35.0568 0x1bec exfat - ok

17:17:35.0599 0x1bec [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\windows\system32\drivers\fastfat.sys

17:17:35.0614 0x1bec fastfat - ok

17:17:35.0661 0x1bec [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\windows\system32\fxssvc.exe

17:17:35.0692 0x1bec Fax - ok

17:17:35.0724 0x1bec [ 0BDD7984DB7AAFF6DFEFD11D82D473DB, 616B20DD438DA1F18949DD99513889D47A5773E7FD98776B61A2A654733C855E ] fbfmon C:\windows\system32\drivers\fbfmon.sys

17:17:35.0739 0x1bec fbfmon - ok

17:17:35.0755 0x1bec [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\windows\system32\drivers\fdc.sys

17:17:35.0755 0x1bec fdc - ok

17:17:35.0786 0x1bec [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\windows\system32\fdPHost.dll

17:17:35.0786 0x1bec fdPHost - ok

17:17:35.0817 0x1bec [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\windows\system32\fdrespub.dll

17:17:35.0817 0x1bec FDResPub - ok

17:17:35.0848 0x1bec [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\windows\system32\drivers\fileinfo.sys

17:17:35.0848 0x1bec FileInfo - ok

17:17:35.0864 0x1bec [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\windows\system32\drivers\filetrace.sys

17:17:35.0864 0x1bec Filetrace - ok

17:17:35.0880 0x1bec [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\windows\system32\drivers\flpydisk.sys

17:17:35.0880 0x1bec flpydisk - ok

17:17:35.0911 0x1bec [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\windows\system32\drivers\fltmgr.sys

17:17:35.0926 0x1bec FltMgr - ok

17:17:36.0036 0x1bec [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\windows\system32\FntCache.dll

17:17:36.0114 0x1bec FontCache - ok

17:17:36.0176 0x1bec [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

17:17:36.0176 0x1bec FontCache3.0.0.0 - ok

17:17:36.0238 0x1bec [ 721A1C957BD23829C6D2BE5C7CDC1012, 8ACCDC0B059032824BA1D52030CD7F3D8A3F4D90FCE5968E0094DC3F437C8385 ] FPSensor C:\windows\system32\Drivers\FPSensor.sys

17:17:36.0238 0x1bec FPSensor - ok

17:17:36.0270 0x1bec [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\windows\system32\drivers\FsDepends.sys

17:17:36.0270 0x1bec FsDepends - ok

17:17:36.0316 0x1bec [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys

17:17:36.0316 0x1bec Fs_Rec - ok

17:17:36.0379 0x1bec [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys

17:17:36.0394 0x1bec fvevol - ok

17:17:36.0426 0x1bec [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys

17:17:36.0426 0x1bec gagp30kx - ok

17:17:36.0504 0x1bec [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\windows\System32\gpsvc.dll

17:17:36.0566 0x1bec gpsvc - ok

17:17:36.0644 0x1bec [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

17:17:36.0644 0x1bec gupdate - ok

17:17:36.0706 0x1bec [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

17:17:36.0706 0x1bec gupdatem - ok

17:17:36.0784 0x1bec [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

17:17:36.0784 0x1bec gusvc - ok

17:17:36.0847 0x1bec [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys

17:17:36.0847 0x1bec hcw85cir - ok

17:17:36.0894 0x1bec [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys

17:17:36.0909 0x1bec HdAudAddService - ok

17:17:36.0940 0x1bec [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys

17:17:36.0940 0x1bec HDAudBus - ok

17:17:36.0974 0x1bec [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\windows\system32\drivers\HidBatt.sys

17:17:36.0977 0x1bec HidBatt - ok

17:17:36.0992 0x1bec [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\windows\system32\drivers\hidbth.sys

17:17:37.0008 0x1bec HidBth - ok

17:17:37.0039 0x1bec [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\windows\system32\drivers\hidir.sys

17:17:37.0055 0x1bec HidIr - ok

17:17:37.0101 0x1bec [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\windows\system32\hidserv.dll

17:17:37.0101 0x1bec hidserv - ok

17:17:37.0148 0x1bec [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys

17:17:37.0164 0x1bec HidUsb - ok

17:17:37.0226 0x1bec [ 39E6D726A126157D807221DBAF367F37, FB421F8926D95F47C4783C56ADDD3E489010652ED86066A576CBE8D16ABD459A ] HitmanProScheduler C:\Program Files\HitmanPro\hmpsched.exe

17:17:37.0226 0x1bec HitmanProScheduler - ok

17:17:37.0273 0x1bec [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\windows\system32\kmsvc.dll

17:17:37.0289 0x1bec hkmsvc - ok

17:17:37.0304 0x1bec [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll

17:17:37.0351 0x1bec HomeGroupListener - ok

17:17:37.0413 0x1bec [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll

17:17:37.0445 0x1bec HomeGroupProvider - ok

17:17:37.0476 0x1bec [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys

17:17:37.0491 0x1bec HpSAMD - ok

17:17:37.0569 0x1bec [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\windows\system32\drivers\HTTP.sys

17:17:37.0601 0x1bec HTTP - ok

17:17:37.0616 0x1bec [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys

17:17:37.0616 0x1bec hwpolicy - ok

17:17:37.0647 0x1bec [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys

17:17:37.0663 0x1bec i8042prt - ok

17:17:37.0741 0x1bec [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\windows\system32\drivers\iaStorV.sys

17:17:37.0757 0x1bec iaStorV - ok

17:17:37.0881 0x1bec [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

17:17:37.0913 0x1bec idsvc - ok

17:17:38.0053 0x1bec [ 77095B7820F1690A5A9DE26AF6819F20, D1A17BB9635F552C8780CE9921091D5FAEAD54DF11C8DB42253A3CE4A8FEA561 ] IDSVia64 C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20150123.001\IDSvia64.sys

17:17:38.0084 0x1bec IDSVia64 - ok

17:17:38.0100 0x1bec IEEtwCollectorService - ok

17:17:38.0131 0x1bec [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\windows\system32\drivers\iirsp.sys

17:17:38.0131 0x1bec iirsp - ok

17:17:38.0209 0x1bec [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\windows\System32\ikeext.dll

17:17:38.0271 0x1bec IKEEXT - ok

17:17:38.0318 0x1bec [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\windows\system32\drivers\intelide.sys

17:17:38.0318 0x1bec intelide - ok

17:17:38.0349 0x1bec [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\windows\system32\drivers\intelppm.sys

17:17:38.0349 0x1bec intelppm - ok

17:17:38.0396 0x1bec [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\windows\system32\ipbusenum.dll

17:17:38.0412 0x1bec IPBusEnum - ok

17:17:38.0427 0x1bec [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys

17:17:38.0427 0x1bec IpFilterDriver - ok

17:17:38.0505 0x1bec [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\windows\System32\iphlpsvc.dll

17:17:38.0552 0x1bec iphlpsvc - ok

17:17:38.0583 0x1bec [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys

17:17:38.0583 0x1bec IPMIDRV - ok

17:17:38.0615 0x1bec [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\windows\system32\drivers\ipnat.sys

17:17:38.0615 0x1bec IPNAT - ok

17:17:38.0646 0x1bec [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\windows\system32\drivers\irenum.sys

17:17:38.0646 0x1bec IRENUM - ok

17:17:38.0677 0x1bec [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\windows\system32\drivers\isapnp.sys

17:17:38.0677 0x1bec isapnp - ok

17:17:38.0755 0x1bec [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys

17:17:38.0771 0x1bec iScsiPrt - ok

17:17:38.0817 0x1bec [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys

17:17:38.0817 0x1bec kbdclass - ok

17:17:38.0849 0x1bec [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\windows\system32\DRIVERS\kbdhid.sys

17:17:38.0849 0x1bec kbdhid - ok

17:17:38.0880 0x1bec [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso C:\windows\system32\lsass.exe

17:17:38.0880 0x1bec KeyIso - ok

17:17:38.0942 0x1bec [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys

17:17:38.0958 0x1bec KSecDD - ok

17:17:39.0025 0x1bec [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys

17:17:39.0025 0x1bec KSecPkg - ok

17:17:39.0056 0x1bec [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\windows\system32\drivers\ksthunk.sys

17:17:39.0056 0x1bec ksthunk - ok

17:17:39.0103 0x1bec [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\windows\system32\msdtckrm.dll

17:17:39.0150 0x1bec KtmRm - ok

17:17:39.0197 0x1bec [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\windows\system32\srvsvc.dll

17:17:39.0244 0x1bec LanmanServer - ok

17:17:39.0275 0x1bec [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll

17:17:39.0290 0x1bec LanmanWorkstation - ok

17:17:39.0322 0x1bec [ BE166935083F9C38EDFDC21B9A7A679B, 89C64DBE58E1B974208AAAA5CC757C599B1439C205C3C48BF16BA054A06DBC94 ] LHDmgr C:\windows\system32\DRIVERS\LhdX64.sys

17:17:39.0337 0x1bec LHDmgr - ok

17:17:39.0368 0x1bec [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\windows\system32\DRIVERS\lltdio.sys

17:17:39.0368 0x1bec lltdio - ok

17:17:39.0415 0x1bec [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\windows\System32\lltdsvc.dll

17:17:39.0462 0x1bec lltdsvc - ok

17:17:39.0509 0x1bec [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\windows\System32\lmhsvc.dll

17:17:39.0509 0x1bec lmhosts - ok

17:17:39.0571 0x1bec [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys

17:17:39.0571 0x1bec LSI_FC - ok

17:17:39.0602 0x1bec [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys

17:17:39.0602 0x1bec LSI_SAS - ok

17:17:39.0618 0x1bec [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys

17:17:39.0634 0x1bec LSI_SAS2 - ok

17:17:39.0649 0x1bec [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys

17:17:39.0665 0x1bec LSI_SCSI - ok

17:17:39.0680 0x1bec [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\windows\system32\drivers\luafv.sys

17:17:39.0696 0x1bec luafv - ok

17:17:39.0899 0x1bec [ 0BB29DE40C9D9529793DCDB59A43CF5B, 251001A407D32EF22F64915EEFFAAEC229073C4549BF7D9D1D4209B7D15B4681 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

17:17:39.0977 0x1bec MBAMScheduler - ok

17:17:40.0024 0x1bec [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] MBAMSwissArmy C:\windows\system32\drivers\MBAMSwissArmy.sys

17:17:40.0039 0x1bec MBAMSwissArmy - ok

17:17:40.0070 0x1bec [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll

17:17:40.0086 0x1bec Mcx2Svc - ok

17:17:40.0102 0x1bec [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\windows\system32\drivers\megasas.sys

17:17:40.0102 0x1bec megasas - ok

17:17:40.0148 0x1bec [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\windows\system32\drivers\MegaSR.sys

17:17:40.0164 0x1bec MegaSR - ok

17:17:40.0195 0x1bec [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\windows\system32\mmcss.dll

17:17:40.0195 0x1bec MMCSS - ok

17:17:40.0226 0x1bec [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\windows\system32\drivers\modem.sys

17:17:40.0226 0x1bec Modem - ok

17:17:40.0242 0x1bec [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\windows\system32\DRIVERS\monitor.sys

17:17:40.0242 0x1bec monitor - ok

17:17:40.0273 0x1bec [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys

17:17:40.0273 0x1bec mouclass - ok

17:17:40.0304 0x1bec [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys

17:17:40.0304 0x1bec mouhid - ok

17:17:40.0336 0x1bec [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\windows\system32\drivers\mountmgr.sys

17:17:40.0336 0x1bec mountmgr - ok

17:17:40.0367 0x1bec [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\windows\system32\drivers\mpio.sys

17:17:40.0367 0x1bec mpio - ok

17:17:40.0398 0x1bec [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys

17:17:40.0398 0x1bec mpsdrv - ok

17:17:40.0492 0x1bec [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\windows\system32\mpssvc.dll

17:17:40.0538 0x1bec MpsSvc - ok

17:17:40.0585 0x1bec [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\windows\system32\drivers\mrxdav.sys

17:17:40.0601 0x1bec MRxDAV - ok

17:17:40.0616 0x1bec [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys

17:17:40.0632 0x1bec mrxsmb - ok

17:17:40.0663 0x1bec [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys

17:17:40.0679 0x1bec mrxsmb10 - ok

17:17:40.0710 0x1bec [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys

17:17:40.0710 0x1bec mrxsmb20 - ok

17:17:40.0757 0x1bec [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\windows\system32\drivers\msahci.sys

17:17:40.0757 0x1bec msahci - ok

17:17:40.0804 0x1bec [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\windows\system32\drivers\msdsm.sys

17:17:40.0819 0x1bec msdsm - ok

17:17:40.0866 0x1bec [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\windows\System32\msdtc.exe

17:17:40.0913 0x1bec MSDTC - ok

17:17:40.0960 0x1bec [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\windows\system32\drivers\Msfs.sys

17:17:40.0965 0x1bec Msfs - ok

17:17:40.0980 0x1bec [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys

17:17:40.0980 0x1bec mshidkmdf - ok

17:17:41.0011 0x1bec [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\windows\system32\drivers\msisadrv.sys

17:17:41.0011 0x1bec msisadrv - ok

17:17:41.0074 0x1bec [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\windows\system32\iscsiexe.dll

17:17:41.0121 0x1bec MSiSCSI - ok

17:17:41.0121 0x1bec msiserver - ok

17:17:41.0167 0x1bec [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys

17:17:41.0167 0x1bec MSKSSRV - ok

17:17:41.0199 0x1bec [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys

17:17:41.0199 0x1bec MSPCLOCK - ok

17:17:41.0199 0x1bec [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\windows\system32\drivers\MSPQM.sys

17:17:41.0214 0x1bec MSPQM - ok

17:17:41.0245 0x1bec [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\windows\system32\drivers\MsRPC.sys

17:17:41.0292 0x1bec MsRPC - ok

17:17:41.0323 0x1bec [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys

17:17:41.0323 0x1bec mssmbios - ok

17:17:41.0323 0x1bec [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\windows\system32\drivers\MSTEE.sys

17:17:41.0339 0x1bec MSTEE - ok

17:17:41.0355 0x1bec [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\windows\system32\drivers\MTConfig.sys

17:17:41.0355 0x1bec MTConfig - ok

17:17:41.0386 0x1bec [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\windows\system32\Drivers\mup.sys

17:17:41.0401 0x1bec Mup - ok

17:17:41.0417 0x1bec [ 9B1EAC6FAF6F37305E822F5588DC8056, AE0DC044159BB03EE8A39AE0682C8F6A78D89AD5A6192E7006D75850ECD50E9D ] mwlPSDFilter C:\windows\system32\DRIVERS\mwlPSDFilter.sys

17:17:41.0417 0x1bec mwlPSDFilter - ok

17:17:41.0433 0x1bec [ AD55C1524B296280ED9C6E0D730D35DA, 8E5F9652CFCB325E131CEB2E4871126EB6F940DF7894B2E7F8241F1EF69920ED ] mwlPSDNServ C:\windows\system32\DRIVERS\mwlPSDNServ.sys

17:17:41.0433 0x1bec mwlPSDNServ - ok

17:17:41.0448 0x1bec [ 2B599E6EC8843637BDD62E7F8F3BA201, 51EE657FC6CA4F2BCC24573B27379231EF30920A559423A860A278C59F4B9F98 ] mwlPSDVDisk C:\windows\system32\DRIVERS\mwlPSDVDisk.sys

17:17:41.0464 0x1bec mwlPSDVDisk - ok

17:17:41.0698 0x1bec [ A0C88349651D9F5421AFD363C27102E8, 71D5F7EDAF47AB1376444CB648BFD86CEA36735EE42A9935BDB876DF8F765F45 ] N360 C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe

17:17:41.0713 0x1bec N360 - ok

17:17:41.0776 0x1bec [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\windows\system32\qagentRT.dll

17:17:41.0838 0x1bec napagent - ok

17:17:41.0932 0x1bec [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys

17:17:41.0947 0x1bec NativeWifiP - ok

17:17:42.0057 0x1bec [ 54F4B358F41C664CBDE4507D67EED1CD, CDCA0A778AF596933CD7CBF1119FCA551ECC03CBBD4F1E8213C3FD2FECA902F2 ] NAVENG C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20150125.005\ENG64.SYS

17:17:42.0072 0x1bec NAVENG - ok

17:17:42.0228 0x1bec [ A74D67EEEB3938FD2FA3B65B24C32C44, 4D780B70B57E23A3A155794C4DEEBD856E32D35B789BDF4673AAC8FC3AC4367B ] NAVEX15 C:\Program Files (x86)\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20150125.005\EX64.SYS

17:17:42.0322 0x1bec NAVEX15 - ok

17:17:42.0447 0x1bec [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\windows\system32\drivers\ndis.sys

17:17:42.0493 0x1bec NDIS - ok

17:17:42.0509 0x1bec [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys

17:17:42.0525 0x1bec NdisCap - ok

17:17:42.0540 0x1bec [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys

17:17:42.0540 0x1bec NdisTapi - ok

17:17:42.0571 0x1bec [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys

17:17:42.0587 0x1bec Ndisuio - ok

17:17:42.0603 0x1bec [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys

17:17:42.0618 0x1bec NdisWan - ok

17:17:42.0649 0x1bec [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\windows\system32\drivers\NDProxy.sys

17:17:42.0649 0x1bec NDProxy - ok

17:17:42.0665 0x1bec [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys

17:17:42.0681 0x1bec NetBIOS - ok

17:17:42.0712 0x1bec [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\windows\system32\DRIVERS\netbt.sys

17:17:42.0727 0x1bec NetBT - ok

17:17:42.0743 0x1bec [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon C:\windows\system32\lsass.exe

17:17:42.0759 0x1bec Netlogon - ok

17:17:42.0821 0x1bec [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\windows\System32\netman.dll

17:17:42.0883 0x1bec Netman - ok

17:17:42.0946 0x1bec [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

17:17:42.0946 0x1bec NetMsmqActivator - ok

17:17:42.0998 0x1bec [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

17:17:43.0013 0x1bec NetPipeActivator - ok

17:17:43.0060 0x1bec [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\windows\System32\netprofm.dll

17:17:43.0107 0x1bec netprofm - ok

17:17:43.0216 0x1bec [ 813B7C722BA97E703D375ABA170E16CC, 9E1437C11CA2218C6A8B05C51F168F0896BB00FE7D7534BA80596AB67ED483DF ] netr28x C:\windows\system32\DRIVERS\netr28x.sys

17:17:43.0278 0x1bec netr28x - ok

17:17:43.0294 0x1bec [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

17:17:43.0310 0x1bec NetTcpActivator - ok

17:17:43.0325 0x1bec [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

17:17:43.0325 0x1bec NetTcpPortSharing - ok

17:17:43.0372 0x1bec [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys

17:17:43.0372 0x1bec nfrd960 - ok

17:17:43.0434 0x1bec [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\windows\System32\nlasvc.dll

17:17:43.0466 0x1bec NlaSvc - ok

17:17:43.0481 0x1bec [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\windows\system32\drivers\Npfs.sys

17:17:43.0481 0x1bec Npfs - ok

17:17:43.0528 0x1bec [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\windows\system32\nsisvc.dll

17:17:43.0528 0x1bec nsi - ok

17:17:43.0544 0x1bec [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys

17:17:43.0544 0x1bec nsiproxy - ok

17:17:43.0700 0x1bec [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\windows\system32\drivers\Ntfs.sys

17:17:43.0793 0x1bec Ntfs - ok

17:17:43.0824 0x1bec [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\windows\system32\drivers\Null.sys

17:17:43.0840 0x1bec Null - ok

17:17:43.0887 0x1bec [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\windows\system32\drivers\nvraid.sys

17:17:43.0902 0x1bec nvraid - ok

17:17:43.0934 0x1bec [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\windows\system32\drivers\nvstor.sys

17:17:43.0949 0x1bec nvstor - ok

17:17:43.0980 0x1bec [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\windows\system32\drivers\nv_agp.sys

17:17:43.0996 0x1bec nv_agp - ok

17:17:44.0027 0x1bec [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys

17:17:44.0027 0x1bec ohci1394 - ok

17:17:44.0090 0x1bec [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

17:17:44.0105 0x1bec ose - ok

17:17:44.0480 0x1bec [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

17:17:44.0682 0x1bec osppsvc - ok

17:17:44.0745 0x1bec [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\windows\system32\pnrpsvc.dll

17:17:44.0792 0x1bec p2pimsvc - ok

17:17:44.0885 0x1bec [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\windows\system32\p2psvc.dll

17:17:44.0948 0x1bec p2psvc - ok

17:17:44.0963 0x1bec [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\windows\system32\drivers\parport.sys

17:17:44.0981 0x1bec Parport - ok

17:17:45.0015 0x1bec [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\windows\system32\drivers\partmgr.sys

17:17:45.0015 0x1bec partmgr - ok

17:17:45.0062 0x1bec [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] PcaSvc C:\windows\System32\pcasvc.dll

17:17:45.0077 0x1bec PcaSvc - ok

17:17:45.0109 0x1bec [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\windows\system32\drivers\pci.sys

17:17:45.0124 0x1bec pci - ok

17:17:45.0155 0x1bec [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\windows\system32\drivers\pciide.sys

17:17:45.0171 0x1bec pciide - ok

17:17:45.0187 0x1bec [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\windows\system32\drivers\pcmcia.sys

17:17:45.0202 0x1bec pcmcia - ok

17:17:45.0233 0x1bec [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\windows\system32\drivers\pcw.sys

17:17:45.0249 0x1bec pcw - ok

17:17:45.0296 0x1bec [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] PEAUTH C:\windows\system32\drivers\peauth.sys

17:17:45.0327 0x1bec PEAUTH - ok

17:17:45.0499 0x1bec [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\windows\SysWow64\perfhost.exe

17:17:45.0514 0x1bec PerfHost - ok

17:17:45.0655 0x1bec [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\windows\system32\pla.dll

17:17:45.0779 0x1bec pla - ok

17:17:45.0857 0x1bec [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\windows\system32\umpnpmgr.dll

17:17:45.0904 0x1bec PlugPlay - ok

17:17:45.0920 0x1bec [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll

17:17:45.0935 0x1bec PNRPAutoReg - ok

17:17:45.0967 0x1bec [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\windows\system32\pnrpsvc.dll

17:17:45.0998 0x1bec PNRPsvc - ok

17:17:46.0045 0x1bec [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\windows\System32\ipsecsvc.dll

17:17:46.0076 0x1bec PolicyAgent - ok

17:17:46.0123 0x1bec [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\windows\system32\umpo.dll

17:17:46.0169 0x1bec Power - ok

17:17:46.0201 0x1bec [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys

17:17:46.0216 0x1bec PptpMiniport - ok

17:17:46.0232 0x1bec [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\windows\system32\drivers\processr.sys

17:17:46.0232 0x1bec Processor - ok

17:17:46.0310 0x1bec [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\windows\system32\profsvc.dll

17:17:46.0341 0x1bec ProfSvc - ok

17:17:46.0357 0x1bec [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\windows\system32\lsass.exe

17:17:46.0357 0x1bec ProtectedStorage - ok

17:17:46.0403 0x1bec [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\windows\system32\DRIVERS\pacer.sys

17:17:46.0419 0x1bec Psched - ok

17:17:46.0528 0x1bec [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\windows\system32\drivers\ql2300.sys

17:17:46.0591 0x1bec ql2300 - ok

17:17:46.0637 0x1bec [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\windows\system32\drivers\ql40xx.sys

17:17:46.0653 0x1bec ql40xx - ok

17:17:46.0700 0x1bec [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\windows\system32\qwave.dll

17:17:46.0731 0x1bec QWAVE - ok

17:17:46.0747 0x1bec [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys

17:17:46.0747 0x1bec QWAVEdrv - ok

17:17:46.0762 0x1bec [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys

17:17:46.0778 0x1bec RasAcd - ok

17:17:46.0809 0x1bec [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys

17:17:46.0809 0x1bec RasAgileVpn - ok

17:17:46.0825 0x1bec [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\windows\System32\rasauto.dll

17:17:46.0840 0x1bec RasAuto - ok

17:17:46.0856 0x1bec [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys

17:17:46.0871 0x1bec Rasl2tp - ok

17:17:46.0903 0x1bec [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\windows\System32\rasmans.dll

17:17:46.0949 0x1bec RasMan - ok

17:17:46.0975 0x1bec [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys

17:17:46.0975 0x1bec RasPppoe - ok

17:17:47.0006 0x1bec [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys

17:17:47.0006 0x1bec RasSstp - ok

17:17:47.0037 0x1bec [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\windows\system32\DRIVERS\rdbss.sys

17:17:47.0053 0x1bec rdbss - ok

17:17:47.0084 0x1bec [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\windows\system32\drivers\rdpbus.sys

17:17:47.0084 0x1bec rdpbus - ok

17:17:47.0178 0x1bec [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys

17:17:47.0178 0x1bec RDPCDD - ok

17:17:47.0287 0x1bec [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys

17:17:47.0287 0x1bec RDPENCDD - ok

17:17:47.0318 0x1bec [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys

17:17:47.0318 0x1bec RDPREFMP - ok

17:17:47.0365 0x1bec [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\windows\system32\drivers\RDPWD.sys

17:17:47.0381 0x1bec RDPWD - ok

17:17:47.0412 0x1bec [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\windows\system32\drivers\rdyboost.sys

17:17:47.0412 0x1bec rdyboost - ok

17:17:47.0490 0x1bec [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\windows\System32\mprdim.dll

17:17:47.0505 0x1bec RemoteAccess - ok

17:17:47.0537 0x1bec [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\windows\system32\regsvc.dll

17:17:47.0583 0x1bec RemoteRegistry - ok

17:17:47.0630 0x1bec [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys

17:17:47.0646 0x1bec RFCOMM - ok

17:17:47.0708 0x1bec [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\windows\System32\RpcEpMap.dll

17:17:47.0724 0x1bec RpcEptMapper - ok

17:17:47.0755 0x1bec [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\windows\system32\locator.exe

17:17:47.0755 0x1bec RpcLocator - ok

17:17:47.0817 0x1bec [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\windows\system32\rpcss.dll

17:17:47.0849 0x1bec RpcSs - ok

17:17:47.0895 0x1bec [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\windows\system32\DRIVERS\rspndr.sys

17:17:47.0895 0x1bec rspndr - ok

17:17:47.0942 0x1bec [ E54A5586A28D0630A79A68BBAB84BFCF, F6FBF1E4C64351CEB205DDCD17C35EA26439E98F3528F96AE326959A7C26B488 ] RSUSBVSTOR C:\windows\system32\Drivers\RtsUVStor.sys

17:17:47.0958 0x1bec RSUSBVSTOR - ok

17:17:48.0020 0x1bec [ 3372196F61AF48503656EF6AA3E92D1B, 47816E28E9DE9F9698A47D7C7782D2F9E62D51A7BC92F91F2B23F818C61F2020 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys

17:17:48.0051 0x1bec RTL8167 - ok

17:17:48.0083 0x1bec [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs C:\windows\system32\lsass.exe

17:17:48.0083 0x1bec SamSs - ok

17:17:48.0161 0x1bec [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS

17:17:48.0176 0x1bec SASDIFSV - ok

17:17:48.0192 0x1bec [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS

17:17:48.0192 0x1bec SASKUTIL - ok

17:17:48.0223 0x1bec [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\windows\system32\drivers\sbp2port.sys

17:17:48.0239 0x1bec sbp2port - ok

17:17:48.0270 0x1bec [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\windows\System32\SCardSvr.dll

17:17:48.0317 0x1bec SCardSvr - ok

17:17:48.0348 0x1bec [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys

17:17:48.0348 0x1bec scfilter - ok

17:17:48.0426 0x1bec [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\windows\system32\schedsvc.dll

17:17:48.0504 0x1bec Schedule - ok

17:17:48.0551 0x1bec [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\windows\System32\certprop.dll

17:17:48.0551 0x1bec SCPolicySvc - ok

17:17:48.0582 0x1bec [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\windows\System32\SDRSVC.dll

17:17:48.0629 0x1bec SDRSVC - ok

17:17:48.0691 0x1bec [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\windows\system32\drivers\secdrv.sys

17:17:48.0691 0x1bec secdrv - ok

17:17:48.0722 0x1bec [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\windows\system32\seclogon.dll

17:17:48.0738 0x1bec seclogon - ok

17:17:48.0769 0x1bec [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\windows\System32\sens.dll

17:17:48.0785 0x1bec SENS - ok

17:17:48.0831 0x1bec [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\windows\system32\sensrsvc.dll

17:17:48.0847 0x1bec SensrSvc - ok

17:17:48.0863 0x1bec [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\windows\system32\drivers\serenum.sys

17:17:48.0878 0x1bec Serenum - ok

17:17:48.0909 0x1bec [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\windows\system32\drivers\serial.sys

17:17:48.0909 0x1bec Serial - ok

17:17:48.0956 0x1bec [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\windows\system32\drivers\sermouse.sys

17:17:48.0956 0x1bec sermouse - ok

17:17:48.0992 0x1bec [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\windows\system32\sessenv.dll

17:17:49.0008 0x1bec SessionEnv - ok

17:17:49.0024 0x1bec [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\windows\system32\drivers\sffdisk.sys

17:17:49.0039 0x1bec sffdisk - ok

17:17:49.0039 0x1bec [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys

17:17:49.0039 0x1bec sffp_mmc - ok

17:17:49.0055 0x1bec [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys

17:17:49.0055 0x1bec sffp_sd - ok

17:17:49.0070 0x1bec [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\windows\system32\drivers\sfloppy.sys

17:17:49.0070 0x1bec sfloppy - ok

17:17:49.0148 0x1bec [ 2046AA7491DE7EFA4D70E615D9BC9D09, A8763D059AD68D5842C407FA9644E0B129BEF0F63CD87E62B80B05441EDC3489 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys

17:17:49.0195 0x1bec Sftfs - ok

17:17:49.0258 0x1bec [ 77C5A741A7452812F278EF2C18478862, 0B763679EB7EFB8ED9DCE7B429706E939BB65BA6BCF1BAE0E0426D4E87074B8C ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe

17:17:49.0289 0x1bec sftlist - ok

17:17:49.0336 0x1bec [ 0E0446BC4D51BE4263ACB7E33491191C, 2AD039FB440560658C4E06F67CC192EF71577EF3FF789A43C08430CE5EAE5A70 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys

17:17:49.0367 0x1bec Sftplay - ok

17:17:49.0382 0x1bec [ C5FB982CD266E604ED3142102C26D62C, A6BC0D72E98F924274ECAD49C85F0775D1CD45B97CD43F53DF3992B560835FC5 ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys

17:17:49.0382 0x1bec Sftredir - ok

17:17:49.0414 0x1bec [ 2575511AF67AA1FA068CCC4918E2C2A3, 3152FF5AC2CF6FE966DA59B1B33E22F9BD9B6BB4310441870528364BA9501A4D ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys

17:17:49.0414 0x1bec Sftvol - ok

17:17:49.0445 0x1bec [ 39B1D0A636A400304565D4521FAD6D77, 1F01DB35B5A477AA7A77585C9304E6B5F3E67807531305BCA93A7F494CED8F59 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe

17:17:49.0445 0x1bec sftvsa - ok

17:17:49.0507 0x1bec [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\windows\System32\ipnathlp.dll

17:17:49.0554 0x1bec SharedAccess - ok

17:17:49.0601 0x1bec [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll

17:17:49.0710 0x1bec ShellHWDetection - ok

17:17:49.0757 0x1bec [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys

17:17:49.0757 0x1bec SiSRaid2 - ok

17:17:49.0788 0x1bec [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys

17:17:49.0788 0x1bec SiSRaid4 - ok

17:17:49.0835 0x1bec [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\windows\system32\DRIVERS\smb.sys

17:17:49.0835 0x1bec Smb - ok

17:17:49.0882 0x1bec [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\windows\System32\snmptrap.exe

17:17:49.0897 0x1bec SNMPTRAP - ok

17:17:49.0928 0x1bec [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\windows\system32\drivers\spldr.sys

17:17:49.0928 0x1bec spldr - ok

17:17:50.0006 0x1bec [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\windows\System32\spoolsv.exe

17:17:50.0038 0x1bec Spooler - ok

17:17:50.0272 0x1bec [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\windows\system32\sppsvc.exe

17:17:50.0537 0x1bec sppsvc - ok

17:17:50.0568 0x1bec [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\windows\system32\sppuinotify.dll

17:17:50.0584 0x1bec sppuinotify - ok

17:17:50.0724 0x1bec [ E163E10191958FF6A2B0B48353F9E9FD, C4F5B83B5C435458AEEC4BD5C6A0FE15F4C3CD5C23CA7F5949A62214634DBB36 ] SRTSP C:\windows\System32\Drivers\N360x64\1506000.020\SRTSP64.SYS

17:17:50.0818 0x1bec SRTSP - ok

17:17:50.0880 0x1bec [ 68E7B6708B9EEE021301C483825D05EA, 87E262405473A063E3E6E9D1D61D8381C997C95F77317CDBB3C59369436E70C5 ] SRTSPX C:\windows\system32\drivers\N360x64\1506000.020\SRTSPX64.SYS

17:17:50.0880 0x1bec SRTSPX - ok

17:17:50.0942 0x1bec [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\windows\system32\DRIVERS\srv.sys

17:17:51.0010 0x1bec srv - ok

17:17:51.0088 0x1bec [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\windows\system32\DRIVERS\srv2.sys

17:17:51.0119 0x1bec srv2 - ok

17:17:51.0166 0x1bec [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys

17:17:51.0166 0x1bec srvnet - ok

17:17:51.0213 0x1bec [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\windows\System32\ssdpsrv.dll

17:17:51.0259 0x1bec SSDPSRV - ok

17:17:51.0275 0x1bec [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\windows\system32\sstpsvc.dll

17:17:51.0291 0x1bec SstpSvc - ok

17:17:51.0322 0x1bec [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\windows\system32\drivers\stexstor.sys

17:17:51.0322 0x1bec stexstor - ok

17:17:51.0400 0x1bec [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\windows\System32\wiaservc.dll

17:17:51.0462 0x1bec stisvc - ok

17:17:51.0493 0x1bec [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\windows\system32\DRIVERS\swenum.sys

17:17:51.0493 0x1bec swenum - ok

17:17:51.0540 0x1bec [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\windows\System32\swprv.dll

17:17:51.0587 0x1bec swprv - ok

17:17:51.0649 0x1bec [ 5C9EE2303CA7F267665D75237862B39C, 5DECD977A823C14B4D980D3DB621BC875231B741653F0450A027FC9E87725F9D ] SymDS C:\windows\system32\drivers\N360x64\1506000.020\SYMDS64.SYS

17:17:51.0727 0x1bec SymDS - ok

17:17:51.0805 0x1bec [ 9F31630D7FC2DD9D5DA1CE359AAD1F46, 296D29EDF53956D1899DE4669AB429C280DF9F183F00AE1CE528E7C575802235 ] SymEFA C:\windows\system32\drivers\N360x64\1506000.020\SYMEFA64.SYS

17:17:51.0883 0x1bec SymEFA - ok

17:17:51.0946 0x1bec [ 97E11C50CE52277B377396EA8838E539, E17D03F80E14F961C41F2D54D1EF73D29BF01F38459C5710D786234F8BA3C835 ] SymEvent C:\windows\system32\Drivers\SYMEVENT64x86.SYS

17:17:51.0946 0x1bec SymEvent - ok

17:17:52.0024 0x1bec [ 2C95265BE19F338E1C1090E4E91055BB, 1E580E9367B1C89B06BD4B34EFD94CD511FD3AA1617D943DDFE0A28B7ED5D5F9 ] SymIRON C:\windows\system32\drivers\N360x64\1506000.020\Ironx64.SYS

17:17:52.0039 0x1bec SymIRON - ok

17:17:52.0102 0x1bec [ 5570A74FF9B1EFBC5154DD1E2F05C517, 2C883A0334CBE4AE257028805C9BB1E529A80F56BA6D341E8EBB83CB3E46FEB7 ] SymNetS C:\windows\System32\Drivers\N360x64\1506000.020\SYMNETS.SYS

17:17:52.0149 0x1bec SymNetS - ok

17:17:52.0320 0x1bec [ 09E811486038F1C06F9E00DFFAAB7A4E, B0D983659CFBD89DA2821171414EB2D9604E02E97AAB4798D64A0FF4E8A3EAB2 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys

17:17:52.0414 0x1bec SynTP - ok

17:17:52.0539 0x1bec [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\windows\system32\sysmain.dll

17:17:52.0663 0x1bec SysMain - ok

17:17:52.0695 0x1bec [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll

17:17:52.0710 0x1bec TabletInputService - ok

17:17:52.0757 0x1bec [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\windows\System32\tapisrv.dll

17:17:52.0804 0x1bec TapiSrv - ok

17:17:52.0819 0x1bec [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\windows\System32\tbssvc.dll

17:17:52.0835 0x1bec TBS - ok

17:17:53.0012 0x1bec [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\windows\system32\drivers\tcpip.sys

17:17:53.0090 0x1bec Tcpip - ok

17:17:53.0230 0x1bec [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys

17:17:53.0308 0x1bec TCPIP6 - ok

17:17:53.0370 0x1bec [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys

17:17:53.0370 0x1bec tcpipreg - ok

17:17:53.0417 0x1bec [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\windows\system32\drivers\tdpipe.sys

17:17:53.0417 0x1bec TDPIPE - ok

17:17:53.0448 0x1bec [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\windows\system32\drivers\tdtcp.sys

17:17:53.0448 0x1bec TDTCP - ok

17:17:53.0511 0x1bec [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\windows\system32\DRIVERS\tdx.sys

17:17:53.0511 0x1bec tdx - ok

17:17:53.0916 0x1bec [ 4ACFC5853A3F0C6C2F54E537C23EE90F, 47D81F471A250696A1A0D19294FC553EB88D813612A8351C89F65D7BF99C8532 ] TeamViewer9 C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe

17:17:54.0119 0x1bec TeamViewer9 - ok

17:17:54.0150 0x1bec [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\windows\system32\DRIVERS\termdd.sys

17:17:54.0166 0x1bec TermDD - ok

17:17:54.0244 0x1bec [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\windows\System32\termsrv.dll

17:17:54.0291 0x1bec TermService - ok

17:17:54.0338 0x1bec [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\windows\system32\themeservice.dll

17:17:54.0353 0x1bec Themes - ok

17:17:54.0384 0x1bec [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\windows\system32\mmcss.dll

17:17:54.0400 0x1bec THREADORDER - ok

17:17:54.0416 0x1bec [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\windows\System32\trkwks.dll

17:17:54.0447 0x1bec TrkWks - ok

17:17:54.0478 0x1bec [ FD44FA80DA03EA144153A76DEBBB61B4, 0C46717F489A415A583470DAE8CF58E47BC307B9CB0F9DB6C4EDF33B7525475C ] TrueSight C:\Windows\System32\drivers\TrueSight.sys

17:17:54.0494 0x1bec TrueSight - ok

17:17:54.0572 0x1bec [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe

17:17:54.0618 0x1bec TrustedInstaller - ok

17:17:54.0665 0x1bec [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys

17:17:54.0681 0x1bec tssecsrv - ok

17:17:54.0712 0x1bec [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys

17:17:54.0712 0x1bec TsUsbFlt - ok

17:17:54.0743 0x1bec [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys

17:17:54.0759 0x1bec TsUsbGD - ok

17:17:54.0806 0x1bec [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys

17:17:54.0806 0x1bec tunnel - ok

17:17:54.0837 0x1bec [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\windows\system32\drivers\uagp35.sys

17:17:54.0852 0x1bec uagp35 - ok

17:17:54.0899 0x1bec [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\windows\system32\DRIVERS\udfs.sys

17:17:54.0946 0x1bec udfs - ok

17:17:54.0998 0x1bec [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\windows\system32\UI0Detect.exe

17:17:55.0013 0x1bec UI0Detect - ok

17:17:55.0045 0x1bec [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys

17:17:55.0060 0x1bec uliagpkx - ok

17:17:55.0091 0x1bec [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\windows\system32\DRIVERS\umbus.sys

17:17:55.0091 0x1bec umbus - ok

17:17:55.0123 0x1bec [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\windows\system32\drivers\umpass.sys

17:17:55.0138 0x1bec UmPass - ok

17:17:55.0169 0x1bec [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\windows\System32\upnphost.dll

17:17:55.0216 0x1bec upnphost - ok

17:17:55.0263 0x1bec [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys

17:17:55.0279 0x1bec usbccgp - ok

17:17:55.0310 0x1bec [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\windows\system32\drivers\usbcir.sys

17:17:55.0310 0x1bec usbcir - ok

17:17:55.0357 0x1bec [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\windows\system32\DRIVERS\usbehci.sys

17:17:55.0357 0x1bec usbehci - ok

17:17:55.0403 0x1bec [ 76E2FFAD301490BA27B947C6507752FB, A4C6FC5C3BF428C624D0792873CB01C8F16F49B0E8B36422025A1094F0AAE231 ] usbfilter C:\windows\system32\DRIVERS\usbfilter.sys

17:17:55.0403 0x1bec usbfilter - ok

17:17:55.0450 0x1bec [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys

17:17:55.0497 0x1bec usbhub - ok

17:17:55.0513 0x1bec [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\windows\system32\DRIVERS\usbohci.sys

17:17:55.0528 0x1bec usbohci - ok

17:17:55.0559 0x1bec [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\windows\system32\DRIVERS\usbprint.sys

17:17:55.0559 0x1bec usbprint - ok

17:17:55.0606 0x1bec [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys

17:17:55.0606 0x1bec usbscan - ok

17:17:55.0637 0x1bec [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS

17:17:55.0637 0x1bec USBSTOR - ok

17:17:55.0700 0x1bec [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\windows\system32\drivers\usbuhci.sys

17:17:55.0700 0x1bec usbuhci - ok

17:17:55.0747 0x1bec [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys

17:17:55.0762 0x1bec usbvideo - ok

17:17:55.0793 0x1bec [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\windows\System32\uxsms.dll

17:17:55.0809 0x1bec UxSms - ok

17:17:55.0825 0x1bec [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc C:\windows\system32\lsass.exe

17:17:55.0840 0x1bec VaultSvc - ok

17:17:55.0887 0x1bec [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys

17:17:55.0887 0x1bec vdrvroot - ok

17:17:55.0934 0x1bec [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\windows\System32\vds.exe

17:17:55.0996 0x1bec vds - ok

17:17:56.0027 0x1bec [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\windows\system32\DRIVERS\vgapnp.sys

17:17:56.0027 0x1bec vga - ok

17:17:56.0043 0x1bec [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\windows\System32\drivers\vga.sys

17:17:56.0043 0x1bec VgaSave - ok

17:17:56.0074 0x1bec [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\windows\system32\drivers\vhdmp.sys

17:17:56.0090 0x1bec vhdmp - ok

17:17:56.0121 0x1bec [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\windows\system32\drivers\viaide.sys

17:17:56.0121 0x1bec viaide - ok

17:17:56.0168 0x1bec [ B977390908F5FC42B66E74D1E96843E6, 16FE34AB2BDF1F3798439D837ECA2E1D3DEDC6B71141C3F77B80181EAE715554 ] vm331avs C:\windows\system32\Drivers\vm331avs.sys

17:17:56.0183 0x1bec vm331avs - ok

17:17:56.0199 0x1bec [ 40C39413A2458016FF43444750F467CA, 7753B8C622F15D851FC65851586E8C0FDDD0B00D66C54C5222BB1BD06DCD2A90 ] vmuvcflt C:\windows\system32\Drivers\vmuvcflt.sys

17:17:56.0199 0x1bec vmuvcflt - ok

17:17:56.0230 0x1bec [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\windows\system32\drivers\volmgr.sys

17:17:56.0230 0x1bec volmgr - ok

17:17:56.0277 0x1bec [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\windows\system32\drivers\volmgrx.sys

17:17:56.0308 0x1bec volmgrx - ok

17:17:56.0339 0x1bec [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\windows\system32\drivers\volsnap.sys

17:17:56.0355 0x1bec volsnap - ok

17:17:56.0386 0x1bec [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\windows\system32\drivers\vsmraid.sys

17:17:56.0402 0x1bec vsmraid - ok

17:17:56.0511 0x1bec [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\windows\system32\vssvc.exe

17:17:56.0589 0x1bec VSS - ok

17:17:56.0620 0x1bec [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys

17:17:56.0620 0x1bec vwifibus - ok

17:17:56.0651 0x1bec [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys

17:17:56.0667 0x1bec vwififlt - ok

17:17:56.0698 0x1bec [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys

17:17:56.0698 0x1bec vwifimp - ok

17:17:56.0745 0x1bec [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\windows\system32\w32time.dll

17:17:56.0839 0x1bec W32Time - ok

17:17:56.0870 0x1bec [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\windows\system32\drivers\wacompen.sys

17:17:56.0870 0x1bec WacomPen - ok

17:17:56.0917 0x1bec [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\windows\system32\DRIVERS\wanarp.sys

17:17:56.0932 0x1bec WANARP - ok

17:17:56.0948 0x1bec [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys

17:17:56.0948 0x1bec Wanarpv6 - ok

17:17:57.0078 0x1bec [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe

17:17:57.0156 0x1bec WatAdminSvc - ok

17:17:57.0280 0x1bec [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\windows\system32\wbengine.exe

17:17:57.0405 0x1bec wbengine - ok

17:17:57.0452 0x1bec [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\windows\System32\wbiosrvc.dll

17:17:57.0483 0x1bec WbioSrvc - ok

17:17:57.0530 0x1bec [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\windows\System32\wcncsvc.dll

17:17:57.0577 0x1bec wcncsvc - ok

17:17:57.0608 0x1bec [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll

17:17:57.0624 0x1bec WcsPlugInService - ok

17:17:57.0686 0x1bec [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\windows\system32\drivers\wd.sys

17:17:57.0686 0x1bec Wd - ok

17:17:57.0795 0x1bec [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys

17:17:57.0842 0x1bec Wdf01000 - ok

17:17:57.0873 0x1bec [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\windows\system32\wdi.dll

17:17:57.0889 0x1bec WdiServiceHost - ok

17:17:57.0904 0x1bec [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\windows\system32\wdi.dll

17:17:57.0920 0x1bec WdiSystemHost - ok

17:17:57.0982 0x1bec [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\windows\System32\webclnt.dll

17:17:58.0029 0x1bec WebClient - ok

17:17:58.0060 0x1bec [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\windows\system32\wecsvc.dll

17:17:58.0092 0x1bec Wecsvc - ok

17:17:58.0107 0x1bec [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\windows\System32\wercplsupport.dll

17:17:58.0138 0x1bec wercplsupport - ok

17:17:58.0170 0x1bec [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\windows\System32\WerSvc.dll

17:17:58.0185 0x1bec WerSvc - ok

17:17:58.0216 0x1bec [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys

17:17:58.0216 0x1bec WfpLwf - ok

17:17:58.0248 0x1bec [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\windows\system32\drivers\wimmount.sys

17:17:58.0248 0x1bec WIMMount - ok

17:17:58.0279 0x1bec WinDefend - ok

17:17:58.0310 0x1bec WinHttpAutoProxySvc - ok

17:17:58.0404 0x1bec [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll

17:17:58.0419 0x1bec Winmgmt - ok

17:17:58.0591 0x1bec [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\windows\system32\WsmSvc.dll

17:17:58.0778 0x1bec WinRM - ok

17:17:58.0887 0x1bec [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\windows\System32\wlansvc.dll

17:17:58.0965 0x1bec Wlansvc - ok

17:17:59.0017 0x1bec [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe

17:17:59.0033 0x1bec wlcrasvc - ok

17:17:59.0204 0x1bec [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

17:17:59.0298 0x1bec wlidsvc - ok

17:17:59.0376 0x1bec [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys

17:17:59.0376 0x1bec WmiAcpi - ok

17:17:59.0438 0x1bec [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe

17:17:59.0454 0x1bec wmiApSrv - ok

17:17:59.0469 0x1bec WMPNetworkSvc - ok

17:17:59.0532 0x1bec [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\windows\System32\wpcsvc.dll

17:17:59.0547 0x1bec WPCSvc - ok

17:17:59.0563 0x1bec [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\windows\system32\wpdbusenum.dll

17:17:59.0579 0x1bec WPDBusEnum - ok

17:17:59.0719 0x1bec [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys

17:17:59.0719 0x1bec ws2ifsl - ok

17:17:59.0781 0x1bec [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\windows\System32\wscsvc.dll

17:17:59.0797 0x1bec wscsvc - ok

17:17:59.0797 0x1bec WSearch - ok

17:17:59.0859 0x1bec [ 83575C43B2BFE9AB0661A7F957E843C0, 6FCE62721902A4F35F1A4CED8AF60A0346CFAB657ED92DE4CEFF19BDB830D32D ] wsvd C:\windows\system32\DRIVERS\wsvd.sys

17:17:59.0875 0x1bec wsvd - ok

17:18:00.0140 0x1bec [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv C:\windows\system32\wuaueng.dll

17:18:00.0281 0x1bec wuauserv - ok

17:18:00.0327 0x1bec [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\windows\system32\drivers\WudfPf.sys

17:18:00.0343 0x1bec WudfPf - ok

17:18:00.0405 0x1bec [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys

17:18:00.0421 0x1bec WUDFRd - ok

17:18:00.0483 0x1bec [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\windows\System32\WUDFSvc.dll

17:18:00.0499 0x1bec wudfsvc - ok

17:18:00.0546 0x1bec [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\windows\System32\wwansvc.dll

17:18:00.0593 0x1bec WwanSvc - ok

17:18:00.0702 0x1bec ================ Scan global ===============================

17:18:00.0764 0x1bec [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll

17:18:00.0811 0x1bec [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll

17:18:00.0859 0x1bec [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll

17:18:00.0921 0x1bec [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll

17:18:00.0989 0x1bec [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe

17:18:01.0012 0x1bec [ Global ] - ok

17:18:01.0012 0x1bec ================ Scan MBR ==================================

17:18:01.0043 0x1bec [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0

17:18:02.0998 0x1bec \Device\Harddisk0\DR0 - ok

17:18:02.0998 0x1bec ================ Scan VBR ==================================

17:18:03.0013 0x1bec [ 3479CE23104BFF80AF92376F60ADE43A ] \Device\Harddisk0\DR0\Partition1

17:18:03.0013 0x1bec \Device\Harddisk0\DR0\Partition1 - ok

17:18:03.0029 0x1bec [ A25AD461EDD139E2F5886B8F737676E7 ] \Device\Harddisk0\DR0\Partition2

17:18:03.0029 0x1bec \Device\Harddisk0\DR0\Partition2 - ok

17:18:03.0060 0x1bec [ 5AFE1E997D76A315058F3A11F5978691 ] \Device\Harddisk0\DR0\Partition3

17:18:03.0060 0x1bec \Device\Harddisk0\DR0\Partition3 - ok

17:18:03.0060 0x1bec ================ Scan generic autorun ======================

17:18:03.0076 0x1bec SynTPEnh - ok

17:18:03.0684 0x1bec [ 39F53D30AAF0427A02D6F1223C18DC5B, 0916F1A2F53BD2D65538A3E215A80BA7EA87D52D8B9C1885E0FB2D365A68BEDB ] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe

17:18:04.0074 0x1bec Energy Management - ok

17:18:04.0449 0x1bec [ F43AB67D41349AD8BB1FE045C5C49832, E79C50F6EA022AA41A502D780CB72232AC094FD008C31EDC51A1F58EF00B1F08 ] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe

17:18:04.0683 0x1bec EnergyUtility - ok

17:18:04.0745 0x1bec [ 3F35AC7163E403C1FA8D34EB2FF36302, 47AE59E315A2BAE7003A18BFDC3859EFBED511822F4BA5F2E02C6D2464A019C1 ] C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe

17:18:04.0745 0x1bec Lenovo EE Boot Optimizer - ok

17:18:04.0870 0x1bec [ 54FD18353891810B3C4F492D51078E65, D02A6BA8D1166EB6180701ADAF984D69747CC443AABFA1E9AB8CFCFEEFDB96DC ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

17:18:04.0917 0x1bec StartCCC - ok

17:18:04.0932 0x1bec 331BigDog - ok

17:18:05.0000 0x1bec [ 0453907E40313F95371CF0CA603E5EE3, 7E62A05070BCF45391AA3C2A06F4197795BB95ABA3737CDC2E979A993C47F2F7 ] C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe

17:18:05.0031 0x1bec EgisTecPMMUpdate - ok

17:18:05.0046 0x1bec [ 12F639E4677756AF38F1B036D6CD78E5, 0E0430DA3A42A35254E92BC419EA8A93D69F3DFC58A0723BAC58A7C90CE9610E ] C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe

17:18:05.0062 0x1bec EgisUpdate - ok

17:18:05.0109 0x1bec [ 0B0E1595C3546F94013015ECADD79210, 2BBBA4CBFDDDC994F0AAFEC3B835EFB7FCA4677590D58FBA7609EC79F66ABE5C ] C:\Program Files (x86)\EgisTec BioExcess\EgisTSR.exe

17:18:05.0124 0x1bec VitaKeyTSR - ok

17:18:05.0156 0x1bec [ 0A7AC2320F5ACB63A44F8BBFC41D930A, 045884D40820128C0B8B6907DFF0E0BCBF0F0EE1421414500DE965ACC4E27DDB ] C:\Program Files (x86)\EgisTec Port Locker\EgisPLTSR.exe

17:18:05.0171 0x1bec PLTSR - ok

17:18:05.0234 0x1bec [ BDB70EA0834EEC93927D9ABF95D11CB7, 6B92A96BFD08B4CFBBE3E983019E17029E4E886FDE821D06C94D0D9946B69964 ] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe

17:18:05.0249 0x1bec VeriFaceManager - ok

17:18:05.0280 0x1bec [ B00F98FF6FE8682FF941BEB2559BF191, EB443E294C5609F426BF6EE388F3A4B71EFE2C6A8216C0F6DE7AE6DB382BF620 ] C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe

17:18:05.0280 0x1bec YouCam Mirage - ok

17:18:05.0327 0x1bec [ 7CD9BF0A5F47F9584E59BDF674FD1C5D, 821F2A5380B1E64B0629D67259BA92A923D5D405526CB6C44BC422294C031C1F ] C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe

17:18:05.0327 0x1bec YouCam Tray - ok

17:18:05.0405 0x1bec [ A01FB0B0C58319FB350A53EDAA947D36, F096607CEA3EB1D569B9767B98C1409F54332A97B78848BC3CBEB92FDFAAB787 ] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe

17:18:05.0436 0x1bec UpdateP2GShortCut - ok

17:18:05.0514 0x1bec [ 3FB4E7E2069F0FD9E15ABC18D605E427, 2FFC218E575DA9E8C86E468227B302752C73EA3246CC0A599D7BCC41ED404F4D ] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe

17:18:05.0530 0x1bec UpdatePRCShortCut - ok

17:18:05.0670 0x1bec [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe

17:18:05.0748 0x1bec Sidebar - ok

17:18:05.0780 0x1bec [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe

17:18:05.0795 0x1bec mctadmin - ok

17:18:05.0858 0x1bec [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe

17:18:05.0904 0x1bec Sidebar - ok

17:18:05.0920 0x1bec [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe

17:18:05.0936 0x1bec mctadmin - ok

17:18:06.0404 0x1bec [ 69CFED513B87D6FE10DBE421708501B3, DE7F8F22EB5C88DF11C51E5FD69A18EDAFDA6873AAFFBC5BD134DC67E2E75813 ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

17:18:06.0716 0x1bec SUPERAntiSpyware - ok

17:18:06.0731 0x1bec Waiting for KSN requests completion. In queue: 18

17:18:07.0740 0x1bec Waiting for KSN requests completion. In queue: 18

17:18:08.0754 0x1bec Waiting for KSN requests completion. In queue: 18

17:18:09.0788 0x1bec AV detected via SS2: Norton 360, C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\WSCStub.exe ( 21.6.0.0 ), 0x50000 ( disabled : updated )

17:18:09.0804 0x1bec FW detected via SS2: Norton 360, C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\WSCStub.exe ( 21.6.0.0 ), 0x51010 ( enabled )

17:18:12.0773 0x1bec ============================================================

17:18:12.0773 0x1bec Scan finished

17:18:12.0773 0x1bec ============================================================

17:18:12.0789 0x09b8 Detected object count: 0

17:18:12.0789 0x09b8 Actual detected object count: 0

 

 

C:\Users\All Users\IObit\ASCDownloader\ASCSetup.exe a variant of Win32/Toolbar.Widgi.B potentially unwanted application 
C:\$RECYCLE.BIN\S-1-5-21-3041133606-2298625318-4002830290-1000\$R6XYHQ9.exe a variant of Win32/OutBrowse.BS potentially unwanted application deleted - quarantined
C:\$RECYCLE.BIN\S-1-5-21-3041133606-2298625318-4002830290-1000\$RTQI14N.crx a variant of Win32/Toolbar.MyWebSearch.AC potentially unwanted application deleted - quarantined
C:\ProgramData\IObit\ASCDownloader\ASCSetup.exe a variant of Win32/Toolbar.Widgi.B potentially unwanted application deleted - quarantined
C:\Users\grandmaardy\Downloads\Java.exe a variant of Win32/OutBrowse.BS potentially unwanted application deleted - quarantined
C:\Windows\Installer\MSIE13E.tmp a variant of Win32/Bundled.Toolbar.Ask.F potentially unsafe application deleted - quarantined
 



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:11 PM

Posted 25 January 2015 - 07:41 PM

OK now run RKill and immediately run MBAM after. Post 2 logs.

Please download Rkill by Grinler and save it to your desktop.
  • Link 1
  • Link 2
    • Double-click on the Rkill desktop icon to run the tool.
    • If using Vista, right-click on it and Run As Administrator.
    • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
    • If not, delete the file, then download and use the one provided in Link 2.
    • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
    • If the tool does not run from any of the links provided, please let me know.
  • Do not reboot the computer, you will need to run the application again.
Download 51a46ae42d560-malwarebytes_anti_malware.MalwareBytes Anti-Malware to your desktop.
  • Double-click mbam-setup-2.0.exe to start the installation of Malwarebytes Anti-Malware.
  • Follow the instructions on your screen to complete the installation. You can find the complete installation procedure here.
  • Click the Scan Now button, a threat scan will start automatically.
  • MalwareBytes Anti-Malware will now check for the latest updates. Click Update Now if new updates are available.
  • Your computer is now being scanned, please do not use your computer during the scan.
    • If no threats were found, click View detailed log.
      • Click Export and save the log as a .txt file on your Desktop or another location.
    • If the scan detected any threats, click Apply Actions.
      • To complete any actions taken you will be prompted to restart your computer...click on Yes.
      • After reboot, start Malwarebytes Anti-Malware again and click the History Tab at the top and select Application Logs.
      • Check the box next to Scan Log. Choose the most current scan and click View.
      • Click Export and save the log as a .txt file on your Desktop or another location.
  • Providing the MalwareBytes' Anti-Malware log file
    • Attach the log file you just saved to your next reply for further review.
    How is it??


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 cowboys2006

cowboys2006
  • Topic Starter

  • Members
  • 237 posts
  • OFFLINE
  •  
  • Local time:04:11 PM

Posted 25 January 2015 - 08:28 PM

Rkill 2.7.0 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2015 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 01/25/2015 07:50:06 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

Program finished at: 01/25/2015 07:51:28 PM
Execution time: 0 hours(s), 1 minute(s), and 22 seconds(s)

 

 

 

 

 

I cant get malware bytes log to come up its not displaying the whole screen page. but it came out clean nothing was wrong no detection.

 

 

computer seems to run better haven't  booted the computer. Let me boot and see how it works also going to try google chrome see how that works I haven't gotten the message about downloading or trying to downalod something.

 

 

 

should we try another scan from another program to double check?



#6 cowboys2006

cowboys2006
  • Topic Starter

  • Members
  • 237 posts
  • OFFLINE
  •  
  • Local time:04:11 PM

Posted 25 January 2015 - 08:30 PM

ok I have tried google and  I am getting a lot of pop ups and ad's still

 

 

theres something about wild west coupon that comes up in the search in google.

 

 

 

I did a bit of more playing and I got that download thing again.


Edited by cowboys2006, 25 January 2015 - 08:39 PM.


#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:11 PM

Posted 25 January 2015 - 09:25 PM

Hello, this is easy enough to fix but we need to use stronger tools then allowed here in the AII forum. Start a new topic "Google Popups".

Please follow this Preparation Guide, do steps 6,7 and 8 and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 cowboys2006

cowboys2006
  • Topic Starter

  • Members
  • 237 posts
  • OFFLINE
  •  
  • Local time:04:11 PM

Posted 25 January 2015 - 09:47 PM

ok thanks I have posted on the other one..

 

 

ill keep you posted thank you for the help



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:11 PM

Posted 25 January 2015 - 09:57 PM

No problem.

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.
From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.
Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.
The current wait time is 1 - 2 days and ALL logs are answered.
If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.
To avoid confusion, I am closing this topic.

Edited by boopme, 25 January 2015 - 09:57 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users