Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I believe that I'm infected with some kind of UDP attack virus.


  • Please log in to reply
11 replies to this topic

#1 playman

playman

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:19 AM

Posted 05 May 2015 - 07:14 AM

Hi there

 

Not quite sure how to describe this but i'll try my best.

About a week ago the internet started working really slow, until at one point it just stopped working at all, well

all of the the internet outside of my country stopped working for us and only servers in my country worked, I live in Iceland, only websites ending with http:/www.*.is worked for us.

I called My ISP and they told me that our IP address had been blocked on either side of the Farice fiber to iceland.

I asked why that happened, he said that we had been under a UDP package attack and our IP was receiving about 

100-150mb per second of UDP packages which crumpled their servers and they had to do a full reboot of the system.

the next day after the attack they changed our IP address, it was a fresh one and had no connection to us, about 1 week

later the attack started again and it was the same story, their servers crumbled and we were IP blocked again.

Because of their small servers and no 24/7 support they wanted us to move to another company which had much

larger servers and bandwidth and better support than the one we were originally at.

 

So....

At first the net was stable and everything was ok, but the next day the net went *bleeping* again, had to restart the

router to get it back.

So there must be a virus/rouge/malware in one or more of the computers that sends a signal or something to attack us.

I believe that i've narrowed the problem to certain machine on the local net, it had some malware that was scanned and removed with Comodo internet security, there are about 5 other computers on the network.

Any one that can help us with this pesky problem?

 



BC AdBot (Login to Remove)

 


m

#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,270 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:19 PM

Posted 05 May 2015 - 12:15 PM

Hello playman, I suggest starting with the main run these. Then do each machine.

Let's do one at a time.

3Al62Pm.pngMiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
SXvL3ZF.pngTDSSKiller
  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
cvMlKv6.pngESET Online Scanner
  • Hold down Control and click on this link to open ESET Online Scanner in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE: Sometimes if ESET finds no infections it will not create a log.
>>>

51a46ae42d560-malwarebytes_anti_malware.Malwarebytes Anti-Malware
  • Download MalwareBytes Anti-Malware to your desktop.
  • Double-click mbam-setup-2.0.exe to start the installation of Malwarebytes Anti-Malware.
  • Follow the instructions on your screen to complete the installation. You can find the complete installation procedure here.
  • Click the Scan Now button, a threat scan will start automatically.
  • MalwareBytes Anti-Malware will now check for the latest updates. Click Update Now if new updates are available.
  • Your computer is now being scanned, please do not use your computer during the scan.
    • If no threats were found, click View detailed log.
      • Click Export and save the log as a .txt file on your Desktop or another location.
    • If the scan detected any threats, click Apply Actions.
      • To complete any actions taken you will be prompted to restart your computer...click on Yes.
      • After reboot, start Malwarebytes Anti-Malware again and click the History Tab at the top and select Application Logs.
      • Check the box next to Scan Log. Choose the most current scan and click View.
      • Click Export and save the log as a .txt file on your Desktop or another location.
  • Providing the MalwareBytes' Anti-Malware log file
    • Attach the log file you just saved to your next reply for further review.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 playman

playman
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:19 AM

Posted 07 May 2015 - 05:56 AM

Hi boopme and thank you for your time.

 

Sorry for the late reply, ESET took really long time to finish it's scan.

I'm sorry but I did not select "Remove found threats" but I did remove the threats manually, the ones

that have * (just in the ESET scan)in front of the drive letter are the ones I did not remove

as I believe them to be false positives and i've had them much longer then two weeks or

when the problems started, but if I have to I can let ESET scan 

again and make it remove them if you believe that that is necessary.

 

 

ESET Scan.txt

C:\Program Files (x86)\SuperScan\scanner.exe Win32/NetTool.SuperScan.AA potentially unsafe application
C:\Program Files (x86)\SuperScan\ws2check.exe Win32/NetTool.SuperScan.AA potentially unsafe application
C:\ProgramData\COMODO\Cis\Quarantine\data\{FA2A3D8E-800A-4B27-9978-C4F2D678D84F} Win32/NetTool.SuperScan.AA potentially unsafe application
C:\Users\All Users\Application Data\COMODO\Cis\Quarantine\data\{FA2A3D8E-800A-4B27-9978-C4F2D678D84F} Win32/NetTool.SuperScan.AA potentially unsafe application
C:\Users\All Users\COMODO\Cis\Quarantine\data\{FA2A3D8E-800A-4B27-9978-C4F2D678D84F} Win32/NetTool.SuperScan.AA potentially unsafe application
C:\Users\playman\Downloads\ccsetup504.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application
C:\Users\playman\Downloads\Setup_FileViewPro_2015.exe Win32/Solvusoft.A potentially unwanted application
*E:\ISO's\Hiren's.BootCD.15.1.iso Win32/PSWTool.KonBoot.A potentially unsafe application
*E:\ISO's\Windows XP SP3.ISO Win32/HackTool.WpaKill.B potentially unsafe application
*E:\Programs\Unlocker1%5B1%5D.9.0.exe Win32/Adware.ADON potentially unwanted application
*E:\Programs\XP crack\Windows_XP_Product_Activation_Killer.exe a variant of Win32/HackTool.Patcher.O potentially unsafe application
E:\Temp Client Storage\Mamma tóta\Alma\Local Settings\Temp\Temporary Internet Files\Content.IE5\3L5GBBEF\scan[1].htm Win32/Adware.SpyShredder application
 
Result.txt
MiniToolBox by Farbar  Version: 14-04-2015
Ran by playman (administrator) on 06-05-2015 at 09:04:57
Running from "C:\Users\playman\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: MS-7309 Manufacturer: MSI
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
NVIDIA nForce 10/100 Mbps Ethernet  = Local Area Connection (Connected)
VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Connected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection" nexthop=192.168.1.1 publish=Yes
add address name="Local Area Connection" address=192.168.1.6 mask=255.255.255.0
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : playman-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : NVIDIA nForce 10/100 Mbps Ethernet 
   Physical Address. . . . . . . . . : 00-19-DB-BE-4E-3B
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::58fd:6078:df51:27ba%10(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.6(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 234887643
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-A8-F2-FE-00-19-DB-BE-4E-3B
   DNS Servers . . . . . . . . . . . : 192.168.1.1
                                       8.8.4.4
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter VirtualBox Host-Only Network:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : VirtualBox Host-Only Ethernet Adapter
   Physical Address. . . . . . . . . : 08-00-27-00-40-6A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::cca5:e577:5895:561e%20(Preferred) 
   Autoconfiguration IPv4 Address. . : 169.254.86.30(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.0.0
   Default Gateway . . . . . . . . . : 
   DHCPv6 IAID . . . . . . . . . . . : 487063591
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-A8-F2-FE-00-19-DB-BE-4E-3B
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.{3F01315E-5B66-4040-BF4C-72AD97ED42A9}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 9:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{CF9B7EBD-A53F-4A12-8F26-4B3872776657}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  Zhone.Home
Address:  192.168.1.1
 
Name:    google.com
Addresses:  2a00:1450:400b:801::200e
 193.4.115.241
 193.4.115.249
 193.4.115.251
 193.4.115.250
 193.4.115.243
 193.4.115.245
 193.4.115.242
 193.4.115.248
 193.4.115.240
 193.4.115.244
 193.4.115.247
 193.4.115.246
 
 
Pinging google.com [193.4.115.241] with 32 bytes of data:
Reply from 193.4.115.241: bytes=32 time=10ms TTL=59
Reply from 193.4.115.241: bytes=32 time=9ms TTL=59
 
Ping statistics for 193.4.115.241:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 9ms, Maximum = 10ms, Average = 9ms
Server:  Zhone.Home
Address:  192.168.1.1
 
Name:    yahoo.com
Addresses:  206.190.36.45
 98.139.183.24
 98.138.253.109
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=196ms TTL=50
Reply from 206.190.36.45: bytes=32 time=197ms TTL=50
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 196ms, Maximum = 197ms, Average = 196ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 10...00 19 db be 4e 3b ......NVIDIA nForce 10/100 Mbps Ethernet 
 20...08 00 27 00 40 6a ......VirtualBox Host-Only Ethernet Adapter
  1...........................Software Loopback Interface 1
 11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.6    276
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      169.254.0.0      255.255.0.0         On-link     169.254.86.30    276
    169.254.86.30  255.255.255.255         On-link     169.254.86.30    276
  169.254.255.255  255.255.255.255         On-link     169.254.86.30    276
      192.168.1.0    255.255.255.0         On-link       192.168.1.6    276
      192.168.1.6  255.255.255.255         On-link       192.168.1.6    276
    192.168.1.255  255.255.255.255         On-link       192.168.1.6    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     169.254.86.30    276
        224.0.0.0        240.0.0.0         On-link       192.168.1.6    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     169.254.86.30    276
  255.255.255.255  255.255.255.255         On-link       192.168.1.6    276
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0      192.168.1.1  Default 
===========================================================================
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 20    276 fe80::/64                On-link
 10    276 fe80::/64                On-link
 10    276 fe80::58fd:6078:df51:27ba/128
                                    On-link
 20    276 fe80::cca5:e577:5895:561e/128
                                    On-link
  1    306 ff00::/8                 On-link
 20    276 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 09 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog5 09 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (05/04/2015 02:18:40 PM) (Source: Application Hang) (User: )
Description: The program Explorer.EXE version 6.1.7601.17567 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: e0c
 
Start Time: 01d0866dad1d0d80
 
Termination Time: 0
 
Application Path: C:\Windows\Explorer.EXE
 
Report Id: 64b631e1-f268-11e4-9aac-0019dbbe4e3b
 
Error: (05/04/2015 01:24:36 PM) (Source: Application Error) (User: )
Description: Faulting application name: MspySvcHost.exe, version: 2.0.300.0, time stamp: 0x538d4f97
Faulting module name: MSVCR100.dll, version: 10.0.40219.325, time stamp: 0x4df2bcac
Exception code: 0x40000015
Fault offset: 0x00000000000761c9
Faulting process id: 0x760
Faulting application start time: 0xMspySvcHost.exe0
Faulting application path: MspySvcHost.exe1
Faulting module path: MspySvcHost.exe2
Report Id: MspySvcHost.exe3
 
Error: (05/04/2015 01:24:32 PM) (Source: MspyData) (User: )
Description: MspyMedia.cpp(32) : error 0x80040e2f: See Debugger Output for more information
.
 
Error: (05/04/2015 01:24:28 PM) (Source: WinMgmt) (User: )
Description: CisWmiSELECT * FROM CisFileRatingChangeCisFileRatingChange//./root/cis
 
Error: (05/04/2015 01:24:28 PM) (Source: WinMgmt) (User: )
Description: CisWmiSELECT * FROM CisStatusChangeCisStatusChange//./root/cis
 
Error: (05/04/2015 01:24:28 PM) (Source: WinMgmt) (User: )
Description: CisWmiSELECT * FROM CisNotificationCisNotification//./root/cis
 
Error: (05/04/2015 01:24:28 PM) (Source: WinMgmt) (User: )
Description: CisWmiSELECT * FROM FwAlertFwAlert//./root/cis
 
Error: (05/04/2015 01:24:28 PM) (Source: WinMgmt) (User: )
Description: CisWmiSELECT * FROM DfAlertDfAlert//./root/cis
 
Error: (05/04/2015 01:24:28 PM) (Source: WinMgmt) (User: )
Description: CisWmiSELECT * FROM AvAlertAvAlert//./root/cis
 
Error: (05/04/2015 01:24:28 PM) (Source: WinMgmt) (User: )
Description: CisWmiSELECT * FROM CisAlertCisAlert//./root/cis
 
 
System errors:
=============
Error: (05/06/2015 08:43:01 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk2\DR5, has a bad block.
 
Error: (05/06/2015 08:42:54 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk2\DR5, has a bad block.
 
Error: (05/06/2015 08:42:51 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk2\DR5, has a bad block.
 
Error: (05/06/2015 08:42:48 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk2\DR5, has a bad block.
 
Error: (05/06/2015 08:42:45 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk2\DR5, has a bad block.
 
Error: (05/06/2015 08:42:42 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk2\DR5, has a bad block.
 
Error: (05/06/2015 08:42:39 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk2\DR5, has a bad block.
 
Error: (05/06/2015 08:42:36 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk2\DR5, has a bad block.
 
Error: (05/06/2015 08:42:33 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk2\DR5, has a bad block.
 
Error: (05/06/2015 08:42:30 AM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk2\DR5, has a bad block.
 
 
Microsoft Office Sessions:
=========================
Error: (05/04/2015 02:18:40 PM) (Source: Application Hang)(User: )
Description: Explorer.EXE6.1.7601.17567e0c01d0866dad1d0d800C:\Windows\Explorer.EXE64b631e1-f268-11e4-9aac-0019dbbe4e3b
 
Error: (05/04/2015 01:24:36 PM) (Source: Application Error)(User: )
Description: MspySvcHost.exe2.0.300.0538d4f97MSVCR100.dll10.0.40219.3254df2bcac4000001500000000000761c976001d0866d9f113a40C:\Program Files\Mirekusoft\Install Monitor\MspySvcHost.exeC:\Windows\system32\MSVCR100.dlle806a000-f260-11e4-9aac-0019dbbe4e3b
 
Error: (05/04/2015 01:24:32 PM) (Source: MspyData)(User: )
Description: MspyMedia.cpp(32) : error 0x80040e2f: See Debugger Output for more information
 
Error: (05/04/2015 01:24:28 PM) (Source: WinMgmt)(User: )
Description: CisWmiSELECT * FROM CisFileRatingChangeCisFileRatingChange//./root/cis
 
Error: (05/04/2015 01:24:28 PM) (Source: WinMgmt)(User: )
Description: CisWmiSELECT * FROM CisStatusChangeCisStatusChange//./root/cis
 
Error: (05/04/2015 01:24:28 PM) (Source: WinMgmt)(User: )
Description: CisWmiSELECT * FROM CisNotificationCisNotification//./root/cis
 
Error: (05/04/2015 01:24:28 PM) (Source: WinMgmt)(User: )
Description: CisWmiSELECT * FROM FwAlertFwAlert//./root/cis
 
Error: (05/04/2015 01:24:28 PM) (Source: WinMgmt)(User: )
Description: CisWmiSELECT * FROM DfAlertDfAlert//./root/cis
 
Error: (05/04/2015 01:24:28 PM) (Source: WinMgmt)(User: )
Description: CisWmiSELECT * FROM AvAlertAvAlert//./root/cis
 
Error: (05/04/2015 01:24:28 PM) (Source: WinMgmt)(User: )
Description: CisWmiSELECT * FROM CisAlertCisAlert//./root/cis
 
 
CodeIntegrity Errors:
===================================
  Date: 2015-04-30 10:36:22.982
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-04-30 10:36:22.902
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-04-30 10:36:22.825
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-04-30 10:36:22.748
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Unlocker\UnlockerDriver5.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-02-18 11:57:21.354
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Temp1\recup_dir.2\f0193321_consent.exe because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-02-18 11:57:20.852
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Temp1\recup_dir.2\f0193321_consent.exe because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-02-18 11:57:20.428
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Temp1\recup_dir.2\f0193321_consent.exe because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-02-18 11:57:19.923
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Temp1\recup_dir.2\f0193321_consent.exe because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-02-18 11:57:19.407
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Temp1\recup_dir.2\f0193321_consent.exe because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-02-18 11:57:18.819
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Temp1\recup_dir.2\f0193321_consent.exe because the set of per-page image hashes could not be found on the system.
 
 
 
##CAMERADRIVERNAME## (HKLM-x32\...\QcDrv) (Version:  - )
=========================== Installed Programs ============================
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.37754 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
AddCustomPaper (x32 Version: 1.4.0 - Hewlett-Packard) Hidden
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Advanced LAN Scanner v1.0 BETA 1 (HKLM-x32\...\Advanced LAN Scanner v1.0 BETA 1) (Version:  - )
Angry IP Scanner (HKLM-x32\...\Angry IP Scanner) (Version: 3.3.2 - Angry IP Scanner)
B9100 (x32 Version: 130.0.396.000 - Hewlett-Packard) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
BSIZE_CDA_B9100_Software_Min (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
Carmageddon 2 Carpocalypse Now (HKLM-x32\...\GOGPACKCARMAGEDDON2_is1) (Version: 2.0.0.26 - GOG.com)
CCleaner (HKLM\...\CCleaner) (Version: 5.04 - Piriform)
Chromodo (HKLM-x32\...\Chromodo) (Version: 36.7.0.8 - Comodo)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 36.1.1.21 - Comodo)
COMODO Internet Security Pro (HKLM\...\{73830292-868E-4C82-9AF5-CCFE2047B6A3}) (Version: 8.2.0.4508 - COMODO Security Solutions Inc.)
COMODO Programs Manager (HKLM\...\{D968E920-3A49-48EB-BA1D-8964DCDF0CA9}) (Version: 1.3_build_30 - COMODO)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Destinations (x32 Version: 130.0.0.0 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 130.0.465.000 - Hewlett-Packard) Hidden
EaseUS Data Recovery Wizard 8.5 (HKLM\...\EaseUS Data Recovery Wizard 8.5_is1) (Version:  - EaseUS)
EaseUS Partition Master 10.1 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version:  - EaseUS)
FileZilla Client 3.9.0.6 (HKLM-x32\...\FileZilla Client) (Version: 3.9.0.6 - Tim Kosse)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
GFI LanGuard 11 Agent (x32 Version: 11.4.2015.0130 - GFI Software Ltd) Hidden
GOG.com Carmageddon 2 (HKLM\...\{753f4dd7-070a-4364-b384-36a077200785}.sdb) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
Hama Double Action Air Grip (HKLM-x32\...\{975E4CAE-D408-48DA-9346-65D7DB72B7DE}) (Version: 1.00.0000 - GASIA)
Hard Disk Sentinel PRO (HKLM-x32\...\Hard Disk Sentinel_is1) (Version:  - HDS)
HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version:  - EFD Software)
HD Tune Pro 5.50 (HKLM-x32\...\HD Tune Pro_is1) (Version:  - EFD Software)
HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP)
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Photosmart B9100 Printer Driver Software 13.0 Rel. A (HKLM\...\{F40C3DA3-595C-4ED3-99AE-06CDF75F6F92}) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Photosmart Pro print plug-in for Adobe Photoshop ® (HKLM-x32\...\{E9D84FC1-A0B3-4527-B606-AC255470B72F}) (Version: 1.2.107 - http://www.hp.com/support)
HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM-x32\...\{7059BDA7-E1DB-442C-B7A1-6144596720A4}) (Version: 4.000.011.006 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPPhotosmartEssential (x32 Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 130.0.371.000 - Hewlett-Packard) Hidden
HyperTerminal Private Edition v7.0 (HKLM-x32\...\HTPE3) (Version:  - )
ImageZipper (HKLM-x32\...\ImageZipper) (Version: 1.0.4 - Smart Image and Vision)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Inkscape 0.48.4 (HKLM-x32\...\Inkscape) (Version: 0.48.4 - )
inSSIDer 4 (HKLM-x32\...\{068F709E-5BA2-4C2F-84E9-B2DFF374F366}) (Version: 4.2.0.12 - MetaGeek, LLC)
iSpy (64 bit) (HKLM\...\{0829DD27-4EF9-4F3B-84D1-C35684563E4D}) (Version: 6.2.5 - iSpy)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Java Auto Updater (x32 Version: 2.1.71.14 - Oracle, Inc.) Hidden
JDSU Network Analyzer Software Standard Edition (HKLM-x32\...\JDSU Network Analyzer Software Standard Edition) (Version: 7.70.100.1 - JDS Uniphase Corporation)
JPEG Recovery Pro 4.0 (HKLM-x32\...\JPEG Recovery Pro 4.0) (Version:  - )
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Logitech Gaming Software (Version: 8.30.28 - Logitech Inc.) Hidden
Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.183 - Logitech Inc.)
Logitech QuickCam Software (HKLM-x32\...\{C43048A9-742C-4DAD-90D2-E3B53C9DB825}) (Version: 8.47.0000 - Logitech, Inc.)
Magic ISO Maker v5.5 (build 0281) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0281)) (Version:  - )
MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version:  - )
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Mirekusoft Install Monitor (HKLM\...\{33FA76FA-441B-4612-A969-ED1DB9758350}) (Version: 2.0.300.0 - Mirekusoft)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Network Stumbler 0.4.0 (remove only) (HKLM-x32\...\Network Stumbler) (Version:  - )
Network64 (Version: 130.0.572.000 - Hewlett-Packard) Hidden
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.5 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 334.89 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 334.89 - NVIDIA Corporation)
NVIDIA Control Panel 334.89 (Version: 334.89 - NVIDIA Corporation) Hidden
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.62.40 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.2.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 334.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 334.89 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 11.10.13 (Version: 11.10.13 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3489 - NVIDIA Corporation) Hidden
NVIDIA Update 11.10.13 (Version: 11.10.13 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 11.10.13 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.20 - NVIDIA Corporation)
Oracle VM VirtualBox 4.3.26 (HKLM\...\{5771F59A-BFC9-4FAF-A883-7642EF4BA3C3}) (Version: 4.3.26 - Oracle Corporation)
PDF to DWG Converter 2013 (HKLM-x32\...\{AAE0665E-71A5-4A72-ACBD-1D871FC732F1}) (Version:  - )
PE Explorer 1.99 R6 (HKLM-x32\...\PE Explorer_is1) (Version: 1.99.6 - Heaventools Software)
Process Hacker 2.33 (r5590) (HKLM\...\Process_Hacker2_is1) (Version: 2.33.0.5590 - wj32)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7111 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Revo Uninstaller Pro 3.1.2 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.2 - VS Revo Group, Ltd.)
SHIELD Streaming (Version: 1.7.321 - NVIDIA Corporation) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 13.0 - HP)
SketchUp 2014 (HKLM-x32\...\{A608A8D3-E77C-4BEE-8F2A-F8124F5F0FE2}) (Version: 14.0.4900 - Trimble Navigation Limited)
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
SmartWebPrinting (x32 Version: 130.0.457.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 130.0.373.000 - Hewlett-Packard) Hidden
SPC 700NC PC Camera (HKLM-x32\...\{9C5B9ED6-0344-4550-A4AB-C4499EB36053}) (Version:  - )
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
Spotify (HKCU\...\Spotify) (Version: 1.0.4.90.g0b6df40b - Spotify AB)
Status (x32 Version: 130.0.469.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.41459 - TeamViewer)
Telegram Desktop version 0.8.7 (HKCU\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 0.8.7 - Telegram Messenger LLP)
Tera Term 4.86 (HKLM-x32\...\Tera Term_is1) (Version:  - )
Tiny Burner 1 (HKLM-x32\...\Tiny Burner_is1) (Version: 1.0 - Softland)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
Total Uninstall 6.13.0 (HKLM\...\Total Uninstall 6_is1) (Version: 6.13.0 - Gavrila Martau)
TrayApp (x32 Version: 130.0.422.000 - Hewlett-Packard) Hidden
Universal Extractor 1.6.1 (HKLM-x32\...\Universal Extractor_is1) (Version: 1.6.1 - Jared Breland)
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
Unlocker 1.9.0 (HKLM-x32\...\Unlocker) (Version: 1.9.0 - Cedrick Collomb)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
webcamXP 5 Free (HKLM-x32\...\wLite) (Version: 5.8.6.0 - Moonware Studios)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Wireshark 1.12.3 (64-bit) (HKLM-x32\...\Wireshark) (Version: 1.12.3 - The Wireshark developer community, http://www.wireshark.org)
Wise Data Recovery 3.44 (HKLM-x32\...\Wise Data Recovery_is1) (Version: 3.44 - WiseCleaner.com, Inc.)
Yawcam 0.4.1 (HKLM-x32\...\{8FE96B14-E1F9-47BF-8BA1-A81467CD259B}_is1) (Version:  - )
 
========================= Memory info: ===================================
 
Percentage of memory in use: 51%
Total physical RAM: 4095.42 MB
Available physical RAM: 1971.14 MB
Total Pagefile: 8189.03 MB
Available Pagefile: 3420.06 MB
Total Virtual: 4095.88 MB
Available Virtual: 3970.86 MB
 
========================= Partitions: =====================================
 
2 Drive c: () (Fixed) (Total:68.82 GB) (Free:21.72 GB) NTFS
4 Drive e: (Geymsla) (Fixed) (Total:232.88 GB) (Free:177.7 GB) NTFS
6 Drive g: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
7 Drive h: (HRM_CCSA_X64FRE_EN-US_DV5) (CDROM) (Total:3.34 GB) (Free:0 GB) UDF
8 Drive i: () (Fixed) (Total:232.79 GB) (Free:218.28 GB) NTFS
9 Drive j: () (Removable) (Total:3.74 GB) (Free:0.99 GB) FAT32
 
========================= Users: ========================================
 
User accounts for \\PLAYMAN-PC
 
Administrator            Guest                    LANGUARD_11_USER         
playman                  
 
 
**** End of log ****
 
TDSSKiller.3.0.0.44_06.05.2015_09.59.08_log.txt
 
09:59:08.0517 0x27e0  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
09:59:14.0165 0x27e0  ============================================================
09:59:14.0165 0x27e0  Current date / time: 2015/05/06 09:59:14.0165
09:59:14.0165 0x27e0  SystemInfo:
09:59:14.0166 0x27e0  
09:59:14.0166 0x27e0  OS Version: 6.1.7601 ServicePack: 1.0
09:59:14.0166 0x27e0  Product type: Workstation
09:59:14.0166 0x27e0  ComputerName: PLAYMAN-PC
09:59:14.0166 0x27e0  UserName: playman
09:59:14.0166 0x27e0  Windows directory: C:\Windows
09:59:14.0166 0x27e0  System windows directory: C:\Windows
09:59:14.0166 0x27e0  Running under WOW64
09:59:14.0166 0x27e0  Processor architecture: Intel x64
09:59:14.0166 0x27e0  Number of processors: 2
09:59:14.0166 0x27e0  Page size: 0x1000
09:59:14.0166 0x27e0  Boot type: Normal boot
09:59:14.0166 0x27e0  ============================================================
09:59:15.0342 0x27e0  KLMD registered as C:\Windows\system32\drivers\60183448.sys
09:59:15.0807 0x27e0  System UUID: {0EDFF860-C13D-98E0-9A96-E9C18A7454BE}
09:59:16.0802 0x27e0  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:59:16.0805 0x27e0  Drive \Device\Harddisk1\DR1 - Size: 0x113ABE0000 ( 68.92 Gb ), SectorSize: 0x200, Cylinders: 0x2324, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:59:16.0819 0x27e0  Drive \Device\Harddisk2\DR5 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
09:59:17.0166 0x27e0  Drive \Device\Harddisk3\DR6 - Size: 0xEFD00000 ( 3.75 Gb ), SectorSize: 0x200, Cylinders: 0x1E9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
09:59:17.0168 0x27e0  ============================================================
09:59:17.0168 0x27e0  \Device\Harddisk0\DR0:
09:59:17.0168 0x27e0  MBR partitions:
09:59:17.0168 0x27e0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C4542
09:59:17.0168 0x27e0  \Device\Harddisk1\DR1:
09:59:17.0168 0x27e0  MBR partitions:
09:59:17.0169 0x27e0  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
09:59:17.0169 0x27e0  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x89A2800
09:59:17.0169 0x27e0  \Device\Harddisk2\DR5:
09:59:17.0169 0x27e0  MBR partitions:
09:59:17.0169 0x27e0  \Device\Harddisk2\DR5\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
09:59:17.0169 0x27e0  \Device\Harddisk2\DR5\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D192000
09:59:17.0169 0x27e0  \Device\Harddisk3\DR6:
09:59:17.0170 0x27e0  MBR partitions:
09:59:17.0170 0x27e0  \Device\Harddisk3\DR6\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x77E7C1
09:59:17.0170 0x27e0  ============================================================
09:59:17.0198 0x27e0  C: <-> \Device\Harddisk1\DR1\Partition2
09:59:17.0221 0x27e0  E: <-> \Device\Harddisk0\DR0\Partition1
09:59:17.0294 0x27e0  G: <-> \Device\Harddisk2\DR5\Partition1
09:59:17.0344 0x27e0  I: <-> \Device\Harddisk2\DR5\Partition2
09:59:17.0344 0x27e0  ============================================================
09:59:17.0344 0x27e0  Initialize success
09:59:17.0344 0x27e0  ============================================================
10:00:14.0856 0x2470  ============================================================
10:00:14.0856 0x2470  Scan started
10:00:14.0856 0x2470  Mode: Manual; 
10:00:14.0856 0x2470  ============================================================
10:00:14.0856 0x2470  KSN ping started
10:00:17.0591 0x2470  KSN ping finished: true
10:00:19.0145 0x2470  ================ Scan system memory ========================
10:00:19.0145 0x2470  System memory - ok
10:00:19.0146 0x2470  ================ Scan services =============================
10:00:19.0300 0x2470  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
10:00:19.0353 0x2470  1394ohci - ok
10:00:19.0429 0x2470  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
10:00:19.0438 0x2470  ACPI - ok
10:00:19.0446 0x2470  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
10:00:19.0475 0x2470  AcpiPmi - ok
10:00:19.0557 0x2470  [ 4C72FDD915D62EAEF149BD9C73AB9CF4, 8EA45A1B88DFD819F0ADA3AF36D464E1BF52574269592370E0CC8D0490680E1F ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:00:19.0626 0x2470  AdobeARMservice - ok
10:00:19.0724 0x2470  [ B04A4810C6CC205F9DC72DC22E4AB236, 547321F5C28C80D4818372D65E2A33D4BAC593015DD6613B24586FE4B4A95D5D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:00:19.0730 0x2470  AdobeFlashPlayerUpdateSvc - ok
10:00:19.0785 0x2470  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
10:00:19.0807 0x2470  adp94xx - ok
10:00:19.0845 0x2470  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
10:00:19.0886 0x2470  adpahci - ok
10:00:19.0909 0x2470  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
10:00:19.0927 0x2470  adpu320 - ok
10:00:19.0951 0x2470  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
10:00:19.0958 0x2470  AeLookupSvc - ok
10:00:20.0010 0x2470  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
10:00:20.0023 0x2470  AFD - ok
10:00:20.0055 0x2470  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
10:00:20.0067 0x2470  agp440 - ok
10:00:20.0086 0x2470  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
10:00:20.0097 0x2470  ALG - ok
10:00:20.0113 0x2470  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
10:00:20.0131 0x2470  aliide - ok
10:00:20.0160 0x2470  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
10:00:20.0170 0x2470  amdide - ok
10:00:20.0191 0x2470  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
10:00:20.0197 0x2470  AmdK8 - ok
10:00:20.0214 0x2470  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
10:00:20.0250 0x2470  AmdPPM - ok
10:00:20.0281 0x2470  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
10:00:20.0316 0x2470  amdsata - ok
10:00:20.0338 0x2470  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
10:00:20.0368 0x2470  amdsbs - ok
10:00:20.0384 0x2470  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
10:00:20.0424 0x2470  amdxata - ok
10:00:20.0471 0x2470  [ 90C53BD47979FB8814F465A08B885102, 5EDFC1909FC1FF9133A534DFCC5408CF3A777AC41FB21FAD375436E3D86C02EC ] AppID           C:\Windows\system32\drivers\appid.sys
10:00:20.0484 0x2470  AppID - ok
10:00:20.0497 0x2470  [ 72D4757510FDA69D729169C00AFC211E, FB9686D0D94EE7C19A3994C29E8331A6EC3020B2980B2CC75F72F3AB25512C15 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
10:00:20.0518 0x2470  AppIDSvc - ok
10:00:20.0552 0x2470  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
10:00:20.0563 0x2470  Appinfo - ok
10:00:20.0583 0x2470  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
10:00:20.0604 0x2470  arc - ok
10:00:20.0623 0x2470  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
10:00:20.0651 0x2470  arcsas - ok
10:00:20.0746 0x2470  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:00:20.0766 0x2470  aspnet_state - ok
10:00:20.0792 0x2470  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
10:00:20.0829 0x2470  AsyncMac - ok
10:00:20.0856 0x2470  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
10:00:20.0857 0x2470  atapi - ok
10:00:20.0921 0x2470  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:00:20.0962 0x2470  AudioEndpointBuilder - ok
10:00:20.0988 0x2470  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
10:00:21.0002 0x2470  AudioSrv - ok
10:00:21.0028 0x2470  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
10:00:21.0056 0x2470  AxInstSV - ok
10:00:21.0105 0x2470  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
10:00:21.0131 0x2470  b06bdrv - ok
10:00:21.0173 0x2470  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
10:00:21.0192 0x2470  b57nd60a - ok
10:00:21.0216 0x2470  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
10:00:21.0251 0x2470  BDESVC - ok
10:00:21.0268 0x2470  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
10:00:21.0294 0x2470  Beep - ok
10:00:21.0365 0x2470  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
10:00:21.0402 0x2470  BFE - ok
10:00:21.0467 0x2470  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
10:00:21.0539 0x2470  BITS - ok
10:00:21.0557 0x2470  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
10:00:21.0584 0x2470  blbdrive - ok
10:00:21.0679 0x2470  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:00:21.0707 0x2470  Bonjour Service - ok
10:00:21.0731 0x2470  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
10:00:21.0766 0x2470  bowser - ok
10:00:21.0787 0x2470  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:00:21.0797 0x2470  BrFiltLo - ok
10:00:21.0806 0x2470  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:00:21.0819 0x2470  BrFiltUp - ok
10:00:21.0844 0x2470  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
10:00:21.0858 0x2470  Browser - ok
10:00:21.0890 0x2470  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
10:00:21.0915 0x2470  Brserid - ok
10:00:21.0925 0x2470  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
10:00:21.0941 0x2470  BrSerWdm - ok
10:00:21.0950 0x2470  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
10:00:21.0959 0x2470  BrUsbMdm - ok
10:00:21.0966 0x2470  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
10:00:21.0976 0x2470  BrUsbSer - ok
10:00:22.0016 0x2470  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
10:00:22.0041 0x2470  BthEnum - ok
10:00:22.0058 0x2470  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
10:00:22.0095 0x2470  BTHMODEM - ok
10:00:22.0127 0x2470  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
10:00:22.0143 0x2470  BthPan - ok
10:00:22.0198 0x2470  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
10:00:22.0242 0x2470  BTHPORT - ok
10:00:22.0260 0x2470  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
10:00:22.0273 0x2470  bthserv - ok
10:00:22.0305 0x2470  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
10:00:22.0326 0x2470  BTHUSB - ok
10:00:22.0409 0x2470  [ 6E1641724439E18CE55ADEE2D347AA19, 07368E91035C6EAE5CBF5515C895E43AA6EE2D7261AA984414F0A4B8C7E5096C ] CamDrL64        C:\Windows\system32\DRIVERS\CamDrL64.sys
10:00:22.0446 0x2470  CamDrL64 - ok
10:00:22.0462 0x2470  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
10:00:22.0473 0x2470  cdfs - ok
10:00:22.0522 0x2470  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
10:00:22.0567 0x2470  cdrom - ok
10:00:22.0609 0x2470  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
10:00:22.0621 0x2470  CertPropSvc - ok
10:00:22.0820 0x2470  [ 24B2979152AE83C3D95433D514AE7062, 96CE2911F382620135EFE7F2A46432235BDA55FFFD23B34980436B277B554215 ] ChromodoUpdater C:\Program Files (x86)\Comodo\Chromodo\chromodo_updater.exe
10:00:22.0876 0x2470  ChromodoUpdater - ok
10:00:22.0912 0x2470  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
10:00:22.0922 0x2470  circlass - ok
10:00:22.0960 0x2470  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
10:00:22.0971 0x2470  CLFS - ok
10:00:23.0013 0x2470  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:00:23.0076 0x2470  clr_optimization_v2.0.50727_32 - ok
10:00:23.0109 0x2470  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:00:23.0133 0x2470  clr_optimization_v2.0.50727_64 - ok
10:00:23.0198 0x2470  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:00:23.0265 0x2470  clr_optimization_v4.0.30319_32 - ok
10:00:23.0279 0x2470  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:00:23.0300 0x2470  clr_optimization_v4.0.30319_64 - ok
10:00:23.0325 0x2470  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
10:00:23.0342 0x2470  CmBatt - ok
10:00:23.0680 0x2470  [ 3BE967B88EFD7F1AE2E60A7AAA941E50, C3751F9E1A463D6EE8B5A5DA71FA07F103BE116147E65986B7A14F60FFA2492B ] CmdAgent        C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
10:00:23.0818 0x2470  CmdAgent - ok
10:00:23.0852 0x2470  [ E647139EA5C54D2245074DBD551DF637, 53F1F98E1CF6234FDB3890A78C8D0343EE6E4CF538A7D504726A63D6A139AED8 ] cmderd          C:\Windows\system32\DRIVERS\cmderd.sys
10:00:23.0879 0x2470  cmderd - ok
10:00:23.0945 0x2470  [ 5BDC0D839189FC02412291885FC00DEB, 405E7DADCD1132C0CF4DFA4E41A700313A76E97E59331E284D7087A54D786E13 ] cmdGuard        C:\Windows\system32\DRIVERS\cmdguard.sys
10:00:23.0980 0x2470  cmdGuard - ok
10:00:24.0004 0x2470  [ D68EAB573AC627A87DC89528A81465FB, 232BA61F0F9889C280E7B66EFAE5F6EB2B29B28FC2CCA8867AE4A1EEB99108BA ] cmdHlp          C:\Windows\system32\DRIVERS\cmdhlp.sys
10:00:24.0016 0x2470  cmdHlp - ok
10:00:24.0038 0x2470  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
10:00:24.0051 0x2470  cmdide - ok
10:00:24.0172 0x2470  [ 5D97D2938DD414D5F76B521AE4F91F3A, C2B7C533DE0D88360E18964C0EC68FA9D244149406A259F84C0489C61C83FA48 ] cmdvirth        C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe
10:00:24.0217 0x2470  cmdvirth - ok
10:00:24.0265 0x2470  [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG             C:\Windows\system32\Drivers\cng.sys
10:00:24.0290 0x2470  CNG - ok
10:00:24.0315 0x2470  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
10:00:24.0328 0x2470  Compbatt - ok
10:00:24.0352 0x2470  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
10:00:24.0386 0x2470  CompositeBus - ok
10:00:24.0396 0x2470  COMSysApp - ok
10:00:24.0441 0x2470  [ 3AFC78A23643D5E99467F607A9201051, 9EB0EEF786F0FC5E2E2AAC9474FB138A7323686204B90F6FE60AC4B1566D0F7D ] CPMService      C:\Program Files\COMODO\COMODO Programs Manager\CPMService.exe
10:00:24.0454 0x2470  CPMService - ok
10:00:24.0533 0x2470  cpuz134 - ok
10:00:24.0552 0x2470  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
10:00:24.0561 0x2470  crcdisk - ok
10:00:24.0586 0x2470  [ 1CD76A83B9E8E9A5A3519B39E28354D9, F9931743B99820FFBFB13136DFFD92F86802D543F9D8478648CDC554FB38899D ] CryptSvc        C:\Windows\system32\cryptsvc.dll
10:00:24.0614 0x2470  CryptSvc - ok
10:00:24.0638 0x2470  [ 252E7E440488AB3A27FADA3E52AD258C, 84D110FC4E43324962BF5AEA8E7B8843058D6770EEDFAEC3312F3BF9D429E8B1 ] cumon           C:\Windows\system32\drivers\cumon.sys
10:00:24.0657 0x2470  cumon - ok
10:00:24.0706 0x2470  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
10:00:24.0721 0x2470  DcomLaunch - ok
10:00:24.0772 0x2470  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
10:00:24.0781 0x2470  defragsvc - ok
10:00:24.0801 0x2470  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
10:00:24.0821 0x2470  DfsC - ok
10:00:24.0854 0x2470  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
10:00:24.0873 0x2470  Dhcp - ok
10:00:24.0887 0x2470  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
10:00:24.0894 0x2470  discache - ok
10:00:24.0907 0x2470  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
10:00:24.0919 0x2470  Disk - ok
10:00:24.0944 0x2470  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
10:00:24.0978 0x2470  Dnscache - ok
10:00:25.0005 0x2470  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
10:00:25.0025 0x2470  dot3svc - ok
10:00:25.0054 0x2470  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
10:00:25.0084 0x2470  Dot4 - ok
10:00:25.0112 0x2470  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
10:00:25.0123 0x2470  Dot4Print - ok
10:00:25.0142 0x2470  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
10:00:25.0164 0x2470  dot4usb - ok
10:00:25.0198 0x2470  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
10:00:25.0211 0x2470  DPS - ok
10:00:25.0392 0x2470  [ E4A0D0C8F17073BE392F062DD1F6B50E, 26CF71517C09B24B6F6AB5AC902FF0D1426351BCCD6AB571510C83D0F6E32FE6 ] DragonUpdater   C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
10:00:25.0504 0x2470  DragonUpdater - ok
10:00:25.0533 0x2470  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
10:00:25.0558 0x2470  drmkaud - ok
10:00:25.0632 0x2470  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
10:00:25.0672 0x2470  DXGKrnl - ok
10:00:25.0697 0x2470  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
10:00:25.0719 0x2470  EapHost - ok
10:00:25.0885 0x2470  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
10:00:26.0017 0x2470  ebdrv - ok
10:00:26.0044 0x2470  [ CA4FC33FB22D92368A0B221092B46374, 2FB8C496216E5D11627F7832B3B8ABE486E71DF4EC28EABE33F89847BFC5E591 ] EFS             C:\Windows\System32\lsass.exe
10:00:26.0065 0x2470  EFS - ok
10:00:26.0140 0x2470  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
10:00:26.0164 0x2470  ehRecvr - ok
10:00:26.0188 0x2470  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
10:00:26.0201 0x2470  ehSched - ok
10:00:26.0240 0x2470  [ BE2902E13CA69383F449B6BF927844FB, F092785E305D8E1FE795AF98A7A7B7B4548A0D6687060568C9E078FFA8D65C1C ] ElbyCDIO        C:\Windows\system32\Drivers\ElbyCDIO.sys
10:00:26.0267 0x2470  ElbyCDIO - ok
10:00:26.0325 0x2470  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
10:00:26.0369 0x2470  elxstor - ok
10:00:26.0402 0x2470  [ 6106653B08F4F72EEAA7F099E7C408A4, 96B77284744F8761C4F2558388E0AEE2140618B484FF53FA8B222B340D2A9C84 ] epmntdrv        C:\Windows\system32\epmntdrv.sys
10:00:26.0430 0x2470  epmntdrv - ok
10:00:26.0462 0x2470  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
10:00:26.0521 0x2470  ErrDev - ok
10:00:26.0569 0x2470  [ 991C04A31777ED77CB92A4F96F14C2E2, 6CC2A311D8E67032D0847D70B20DCA87B52B2B7FB3C380B3A5AB6C233E955DD2 ] EuGdiDrv        C:\Windows\system32\EuGdiDrv.sys
10:00:26.0593 0x2470  EuGdiDrv - ok
10:00:26.0625 0x2470  [ E1038A9D1BD3C3D4EC7801882D8BB027, 0F149FD47896CBAA6C2D665694529B2C7392D34102AA98E018CB33459E251930 ] Evdd            C:\Windows\system32\drivers\evdd.sys
10:00:26.0633 0x2470  Evdd - ok
10:00:26.0677 0x2470  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
10:00:26.0689 0x2470  EventSystem - ok
10:00:26.0714 0x2470  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
10:00:26.0742 0x2470  exfat - ok
10:00:26.0764 0x2470  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
10:00:26.0781 0x2470  fastfat - ok
10:00:26.0827 0x2470  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
10:00:26.0851 0x2470  Fax - ok
10:00:26.0866 0x2470  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
10:00:26.0890 0x2470  fdc - ok
10:00:26.0915 0x2470  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
10:00:26.0921 0x2470  fdPHost - ok
10:00:26.0937 0x2470  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
10:00:26.0950 0x2470  FDResPub - ok
10:00:26.0964 0x2470  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
10:00:26.0989 0x2470  FileInfo - ok
10:00:27.0003 0x2470  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
10:00:27.0036 0x2470  Filetrace - ok
10:00:27.0053 0x2470  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
10:00:27.0071 0x2470  flpydisk - ok
10:00:27.0100 0x2470  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
10:00:27.0128 0x2470  FltMgr - ok
10:00:27.0214 0x2470  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
10:00:27.0267 0x2470  FontCache - ok
10:00:27.0311 0x2470  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:00:27.0382 0x2470  FontCache3.0.0.0 - ok
10:00:27.0401 0x2470  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
10:00:27.0429 0x2470  FsDepends - ok
10:00:27.0453 0x2470  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
10:00:27.0470 0x2470  Fs_Rec - ok
10:00:27.0511 0x2470  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
10:00:27.0524 0x2470  fvevol - ok
10:00:27.0535 0x2470  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
10:00:27.0545 0x2470  gagp30kx - ok
10:00:27.0599 0x2470  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
10:00:27.0645 0x2470  gpsvc - ok
10:00:27.0691 0x2470  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:00:27.0694 0x2470  gupdate - ok
10:00:27.0709 0x2470  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:00:27.0712 0x2470  gupdatem - ok
10:00:27.0724 0x2470  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
10:00:27.0744 0x2470  hcw85cir - ok
10:00:27.0799 0x2470  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:00:27.0843 0x2470  HdAudAddService - ok
10:00:27.0876 0x2470  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
10:00:27.0889 0x2470  HDAudBus - ok
10:00:27.0904 0x2470  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
10:00:27.0923 0x2470  HidBatt - ok
10:00:27.0942 0x2470  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
10:00:27.0965 0x2470  HidBth - ok
10:00:27.0984 0x2470  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
10:00:28.0002 0x2470  HidIr - ok
10:00:28.0025 0x2470  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
10:00:28.0048 0x2470  hidserv - ok
10:00:28.0075 0x2470  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
10:00:28.0118 0x2470  HidUsb - ok
10:00:28.0141 0x2470  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
10:00:28.0165 0x2470  hkmsvc - ok
10:00:28.0193 0x2470  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:00:28.0210 0x2470  HomeGroupListener - ok
10:00:28.0233 0x2470  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:00:28.0254 0x2470  HomeGroupProvider - ok
10:00:28.0334 0x2470  [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
10:00:28.0340 0x2470  hpqcxs08 - ok
10:00:28.0380 0x2470  [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
10:00:28.0451 0x2470  hpqddsvc - ok
10:00:28.0471 0x2470  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
10:00:28.0489 0x2470  HpSAMD - ok
10:00:28.0556 0x2470  [ 7F57926169C1B8ABA9274EA7D4B70F18, A2BB01054737C6B0461381221D1C344951AC2BE9E5AE01E15A6871B31B62BE78 ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
10:00:28.0578 0x2470  HPSLPSVC - ok
10:00:28.0640 0x2470  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
10:00:28.0670 0x2470  HTTP - ok
10:00:28.0689 0x2470  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
10:00:28.0695 0x2470  hwpolicy - ok
10:00:28.0720 0x2470  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
10:00:28.0733 0x2470  i8042prt - ok
10:00:28.0774 0x2470  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
10:00:28.0805 0x2470  iaStorV - ok
10:00:28.0889 0x2470  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:00:28.0930 0x2470  idsvc - ok
10:00:28.0953 0x2470  IEEtwCollectorService - ok
10:00:28.0970 0x2470  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
10:00:28.0989 0x2470  iirsp - ok
10:00:29.0055 0x2470  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
10:00:29.0095 0x2470  IKEEXT - ok
10:00:29.0124 0x2470  [ E973F9A8734ABAB33BE777CE940F9562, FA9E44AF737BC42467E734A50A48A0D4176A79DB54DBBA3504674F1E3568AC73 ] inspect         C:\Windows\system32\DRIVERS\inspect.sys
10:00:29.0134 0x2470  inspect - ok
10:00:29.0336 0x2470  [ 69976169745EDFB3225D9ABEB5E91155, D1AFF69AF178B46FD9F319AA9DF8738ACB03559DE24C1114EEF46A22D01F0982 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:00:29.0435 0x2470  IntcAzAudAddService - ok
10:00:29.0461 0x2470  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
10:00:29.0488 0x2470  intelide - ok
10:00:29.0520 0x2470  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
10:00:29.0539 0x2470  intelppm - ok
10:00:29.0567 0x2470  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
10:00:29.0590 0x2470  IPBusEnum - ok
10:00:29.0616 0x2470  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:00:29.0647 0x2470  IpFilterDriver - ok
10:00:29.0703 0x2470  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
10:00:29.0751 0x2470  iphlpsvc - ok
10:00:29.0774 0x2470  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
10:00:29.0806 0x2470  IPMIDRV - ok
10:00:29.0815 0x2470  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
10:00:29.0821 0x2470  IPNAT - ok
10:00:29.0844 0x2470  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
10:00:29.0865 0x2470  IRENUM - ok
10:00:29.0888 0x2470  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
10:00:29.0923 0x2470  isapnp - ok
10:00:29.0970 0x2470  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
10:00:30.0011 0x2470  iScsiPrt - ok
10:00:30.0026 0x2470  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
10:00:30.0039 0x2470  kbdclass - ok
10:00:30.0064 0x2470  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
10:00:30.0099 0x2470  kbdhid - ok
10:00:30.0112 0x2470  [ CA4FC33FB22D92368A0B221092B46374, 2FB8C496216E5D11627F7832B3B8ABE486E71DF4EC28EABE33F89847BFC5E591 ] KeyIso          C:\Windows\system32\lsass.exe
10:00:30.0114 0x2470  KeyIso - ok
10:00:30.0134 0x2470  [ 063C09DB965E3DFD6F4F08416F6DB8F5, 0BE015C59288397536B3941BA55EFE0CF06714BC43FF3A33A1D844B4E0F16097 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
10:00:30.0156 0x2470  KSecDD - ok
10:00:30.0185 0x2470  [ 1FA627E63195BF3BF636BFEF0D7190D4, 794456605303F4916E81BE899E0B05CB070094E719ADA8BE8072A761E35CA8E9 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
10:00:30.0218 0x2470  KSecPkg - ok
10:00:30.0241 0x2470  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
10:00:30.0253 0x2470  ksthunk - ok
10:00:30.0293 0x2470  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
10:00:30.0317 0x2470  KtmRm - ok
10:00:30.0361 0x2470  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
10:00:30.0380 0x2470  LanmanServer - ok
10:00:30.0417 0x2470  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:00:30.0443 0x2470  LanmanWorkstation - ok
10:00:30.0476 0x2470  [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
10:00:30.0549 0x2470  LGBusEnum - ok
10:00:30.0615 0x2470  [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
10:00:30.0677 0x2470  LGVirHid - ok
10:00:30.0743 0x2470  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
10:00:30.0755 0x2470  lltdio - ok
10:00:30.0793 0x2470  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
10:00:30.0812 0x2470  lltdsvc - ok
10:00:30.0827 0x2470  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
10:00:30.0839 0x2470  lmhosts - ok
10:00:30.0856 0x2470  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
10:00:30.0884 0x2470  LSI_FC - ok
10:00:30.0896 0x2470  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
10:00:30.0911 0x2470  LSI_SAS - ok
10:00:30.0922 0x2470  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:00:30.0930 0x2470  LSI_SAS2 - ok
10:00:30.0957 0x2470  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:00:31.0005 0x2470  LSI_SCSI - ok
10:00:31.0076 0x2470  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
10:00:31.0118 0x2470  luafv - ok
10:00:31.0210 0x2470  [ CE6E5146039D248FEB991FBC9E2B6A7B, 4F995D56AF651EB75E3FFC2E5B1551AB9447E81C4376101594D5A763A5ECC4E9 ] lvpopf64        C:\Windows\system32\DRIVERS\lvpopf64.sys
10:00:31.0265 0x2470  lvpopf64 - ok
10:00:31.0295 0x2470  [ 6D5EA90F86F9B28CD44AF6BA9BE03BF9, 6A92EF21EB7543389649900BAB241A846DFE9CADF785D7352052C003AA717E5F ] LVUSBS64        C:\Windows\system32\drivers\LVUSBS64.sys
10:00:31.0309 0x2470  LVUSBS64 - ok
10:00:31.0512 0x2470  [ EB12688842EDE30C843A123FA6855858, 24DD1E4F32CA08EF2263100A3C65BF8D904BB0FFC55025519C477E7BAA31E064 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
10:00:31.0627 0x2470  LVUVC64 - ok
10:00:31.0673 0x2470  [ 79D51E7F5926E8CE1B3EBECEBAE28CFF, 2722E217AF11F928E58F694E5C1CC5776283A56C54E7F84401FECFBD73E91EBA ] mcdbus          C:\Windows\system32\DRIVERS\mcdbus.sys
10:00:31.0693 0x2470  mcdbus - ok
10:00:31.0727 0x2470  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
10:00:31.0746 0x2470  Mcx2Svc - ok
10:00:31.0765 0x2470  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
10:00:31.0775 0x2470  megasas - ok
10:00:31.0802 0x2470  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
10:00:31.0824 0x2470  MegaSR - ok
10:00:31.0851 0x2470  [ F184DDC190542FEA47267820DA8AAC33, 85AE2A228DC0FB63F082517E14F14F4B79094EFF2C06029B49A1199EFFA0815B ] Minstmon        C:\Windows\system32\DRIVERS\minstmon.sys
10:00:31.0876 0x2470  Minstmon - ok
10:00:31.0897 0x2470  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
10:00:31.0922 0x2470  MMCSS - ok
10:00:31.0931 0x2470  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
10:00:31.0947 0x2470  Modem - ok
10:00:31.0974 0x2470  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
10:00:31.0980 0x2470  monitor - ok
10:00:32.0002 0x2470  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
10:00:32.0023 0x2470  mouclass - ok
10:00:32.0052 0x2470  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
10:00:32.0074 0x2470  mouhid - ok
10:00:32.0103 0x2470  [ 87BCD1034CBF33537D4D4C251D39BA26, CB9DD235B62B79383F99873D75E26EEA5EE7914CA89E4B75992207F83420437F ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
10:00:32.0115 0x2470  mountmgr - ok
10:00:32.0130 0x2470  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
10:00:32.0170 0x2470  mpio - ok
10:00:32.0198 0x2470  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
10:00:32.0211 0x2470  mpsdrv - ok
10:00:32.0272 0x2470  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
10:00:32.0309 0x2470  MpsSvc - ok
10:00:32.0338 0x2470  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
10:00:32.0366 0x2470  MRxDAV - ok
10:00:32.0397 0x2470  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
10:00:32.0430 0x2470  mrxsmb - ok
10:00:32.0465 0x2470  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:00:32.0517 0x2470  mrxsmb10 - ok
10:00:32.0532 0x2470  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:00:32.0551 0x2470  mrxsmb20 - ok
10:00:32.0578 0x2470  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
10:00:32.0597 0x2470  msahci - ok
10:00:32.0620 0x2470  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
10:00:32.0652 0x2470  msdsm - ok
10:00:32.0671 0x2470  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
10:00:32.0686 0x2470  MSDTC - ok
10:00:32.0713 0x2470  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
10:00:32.0737 0x2470  Msfs - ok
10:00:32.0745 0x2470  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
10:00:32.0770 0x2470  mshidkmdf - ok
10:00:32.0794 0x2470  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
10:00:32.0801 0x2470  msisadrv - ok
10:00:32.0831 0x2470  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
10:00:32.0858 0x2470  MSiSCSI - ok
10:00:32.0864 0x2470  msiserver - ok
10:00:32.0875 0x2470  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
10:00:32.0904 0x2470  MSKSSRV - ok
10:00:32.0925 0x2470  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
10:00:32.0934 0x2470  MSPCLOCK - ok
10:00:32.0948 0x2470  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
10:00:32.0957 0x2470  MSPQM - ok
10:00:32.0984 0x2470  [ D72B17457006EBC324ABD13BE88D354D, 3502B5281E94846F28F6FB3CEDB5EB963096A592316A9EC17A2A6F099FA9A181 ] MspyData        C:\Program Files\Mirekusoft\Install Monitor\MspySvcHost.exe
10:00:33.0009 0x2470  MspyData - ok
10:00:33.0013 0x2470  [ D72B17457006EBC324ABD13BE88D354D, 3502B5281E94846F28F6FB3CEDB5EB963096A592316A9EC17A2A6F099FA9A181 ] MspyMon         C:\Program Files\Mirekusoft\Install Monitor\MspySvcHost.exe
10:00:33.0014 0x2470  MspyMon - ok
10:00:33.0049 0x2470  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
10:00:33.0066 0x2470  MsRPC - ok
10:00:33.0082 0x2470  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
10:00:33.0083 0x2470  mssmbios - ok
10:00:33.0100 0x2470  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
10:00:33.0110 0x2470  MSTEE - ok
10:00:33.0122 0x2470  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
10:00:33.0135 0x2470  MTConfig - ok
10:00:33.0162 0x2470  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
10:00:33.0174 0x2470  Mup - ok
10:00:33.0196 0x2470  [ 1163CB813EC4A8DBB7E79AA9FBAFCD04, CBE180120302C7107972E012853201FAEE52344B16FCCDC84C943FEAB7A52A73 ] NAMP60          C:\Windows\system32\DRIVERS\NAMP60.sys
10:00:33.0220 0x2470  NAMP60 - ok
10:00:33.0263 0x2470  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
10:00:33.0278 0x2470  napagent - ok
10:00:33.0299 0x2470  [ 85DC56AC953CB08502621FDD873C1D5E, 3A001220EDE8FC6619DB78BD84D6E97034828A1C6C715F876605E42423C0E210 ] NASP60          C:\Windows\system32\DRIVERS\NASP60.sys
10:00:33.0309 0x2470  NASP60 - ok
10:00:33.0349 0x2470  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
10:00:33.0369 0x2470  NativeWifiP - ok
10:00:33.0440 0x2470  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
10:00:33.0466 0x2470  NDIS - ok
10:00:33.0511 0x2470  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
10:00:33.0549 0x2470  NdisCap - ok
10:00:33.0569 0x2470  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
10:00:33.0581 0x2470  NdisTapi - ok
10:00:33.0608 0x2470  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
10:00:33.0644 0x2470  Ndisuio - ok
10:00:33.0674 0x2470  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
10:00:33.0707 0x2470  NdisWan - ok
10:00:33.0732 0x2470  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
10:00:33.0756 0x2470  NDProxy - ok
10:00:33.0782 0x2470  [ D5AC41AE382738483FAFFBD7E373D49A, 68793D15566F387650E9C5010E1CA73BDE3EB4BA431EA0A1673004CAE08413B0 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
10:00:33.0805 0x2470  Net Driver HPZ12 - ok
10:00:33.0829 0x2470  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
10:00:33.0867 0x2470  NetBIOS - ok
10:00:33.0907 0x2470  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
10:00:33.0923 0x2470  NetBT - ok
10:00:33.0933 0x2470  [ CA4FC33FB22D92368A0B221092B46374, 2FB8C496216E5D11627F7832B3B8ABE486E71DF4EC28EABE33F89847BFC5E591 ] Netlogon        C:\Windows\system32\lsass.exe
10:00:33.0935 0x2470  Netlogon - ok
10:00:33.0966 0x2470  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
10:00:33.0991 0x2470  Netman - ok
10:00:34.0026 0x2470  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:00:34.0094 0x2470  NetMsmqActivator - ok
10:00:34.0103 0x2470  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:00:34.0106 0x2470  NetPipeActivator - ok
10:00:34.0142 0x2470  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
10:00:34.0155 0x2470  netprofm - ok
10:00:34.0172 0x2470  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:00:34.0176 0x2470  NetTcpActivator - ok
10:00:34.0184 0x2470  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:00:34.0187 0x2470  NetTcpPortSharing - ok
10:00:34.0203 0x2470  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
10:00:34.0212 0x2470  nfrd960 - ok
10:00:34.0247 0x2470  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
10:00:34.0257 0x2470  NlaSvc - ok
10:00:34.0276 0x2470  [ DE7FCC77F4A503AF4CA6A47D49B3713D, 4BFAA99393F635CD05D91A64DE73EDB5639412C129E049F0FE34F88517A10FC6 ] NPF             C:\Windows\system32\drivers\npf.sys
10:00:34.0304 0x2470  NPF - ok
10:00:34.0321 0x2470  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
10:00:34.0338 0x2470  Npfs - ok
10:00:34.0355 0x2470  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
10:00:34.0388 0x2470  nsi - ok
10:00:34.0397 0x2470  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
10:00:34.0409 0x2470  nsiproxy - ok
10:00:34.0521 0x2470  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
10:00:34.0567 0x2470  Ntfs - ok
10:00:34.0583 0x2470  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
10:00:34.0609 0x2470  Null - ok
10:00:34.0674 0x2470  [ A85B4F2EF3A7304A5399EF0526423040, E45854691BA6AE36E53C2922CC93FF13DC2D84CBE7FE13A2F0B1CE1C16D1D158 ] NVENETFD        C:\Windows\system32\DRIVERS\nvm62x64.sys
10:00:34.0704 0x2470  NVENETFD - ok
10:00:35.0408 0x2470  [ 52B33E12FF8C9E219CAEC1BB4A5F5E4C, 5272178B39FEDB3F001249FE7C852787EFD715FC49BBAAE58158A189AFB8A337 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
10:00:35.0868 0x2470  nvlddmkm - ok
10:00:35.0944 0x2470  [ 0AD267A4674805B61A5D7B911D2A978A, FD4A80BD4BBBC0D820E363EB1566FF878DE4097F2CCA2AC1BEDF75DE343F60E7 ] NVNET           C:\Windows\system32\DRIVERS\nvmf6264.sys
10:00:35.0968 0x2470  NVNET - ok
10:00:36.0107 0x2470  [ D2FE0376285A783693469422678E878B, 9F0B1A6694CA7BDAAA3B26BE1D344A3FC7B98162518A259C273360EFF075CD75 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
10:00:36.0180 0x2470  NvNetworkService - ok
10:00:36.0210 0x2470  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
10:00:36.0213 0x2470  nvraid - ok
10:00:36.0230 0x2470  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
10:00:36.0242 0x2470  nvstor - ok
10:00:37.0062 0x2470  [ 4F0E2990DB12849D428DE7B0AC5D92B9, 77A058EFFE07E46F0DFF419DC1C204C245598E6A6F6EDFF545802D9C1573EAA0 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
10:00:37.0677 0x2470  NvStreamSvc - ok
10:00:37.0797 0x2470  [ 2B47EDD27365F9F5D8E87648BECF52C4, CADA4B19791441373580919FFF89623489C7A1737857760B96CC3F0A08DB8D59 ] nvsvc           C:\Windows\system32\nvvsvc.exe
10:00:37.0821 0x2470  nvsvc - ok
10:00:37.0854 0x2470  [ 939C0FAE9CC0CDD69E6508BDE4C11FE5, 1E82FF4A8797A0EC5DF0E54DE7F358542C73FFFBECADDF86ED66839182E3B55D ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
10:00:37.0867 0x2470  nvvad_WaveExtensible - ok
10:00:37.0888 0x2470  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
10:00:37.0900 0x2470  nv_agp - ok
10:00:37.0917 0x2470  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
10:00:37.0938 0x2470  ohci1394 - ok
10:00:37.0987 0x2470  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:00:38.0001 0x2470  ose - ok
10:00:38.0037 0x2470  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
10:00:38.0061 0x2470  p2pimsvc - ok
10:00:38.0109 0x2470  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
10:00:38.0162 0x2470  p2psvc - ok
10:00:38.0185 0x2470  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
10:00:38.0209 0x2470  Parport - ok
10:00:38.0233 0x2470  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
10:00:38.0267 0x2470  partmgr - ok
10:00:38.0299 0x2470  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
10:00:38.0330 0x2470  PcaSvc - ok
10:00:38.0353 0x2470  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
10:00:38.0358 0x2470  pci - ok
10:00:38.0372 0x2470  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
10:00:38.0398 0x2470  pciide - ok
10:00:38.0425 0x2470  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
10:00:38.0442 0x2470  pcmcia - ok
10:00:38.0457 0x2470  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
10:00:38.0482 0x2470  pcw - ok
10:00:38.0539 0x2470  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
10:00:38.0562 0x2470  PEAUTH - ok
10:00:38.0620 0x2470  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
10:00:38.0671 0x2470  PerfHost - ok
10:00:38.0756 0x2470  [ D349073DC7493A8D73B2EA2DC601A322, 1FCAE2968968130E6065E55B32E335A49C28AF5DDF6587A6733A714E74405223 ] phc700          C:\Windows\system32\DRIVERS\phc700.sys
10:00:38.0790 0x2470  phc700 - ok
10:00:38.0878 0x2470  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
10:00:38.0957 0x2470  pla - ok
10:00:39.0006 0x2470  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
10:00:39.0019 0x2470  PlugPlay - ok
10:00:39.0030 0x2470  [ 37F6046CDC630442D7DC087501FF6FC6, EFC0F3DA49839CA263CD95AE5015F4FC554D9D845A58A699C542C8C96E70ED3C ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
10:00:39.0054 0x2470  Pml Driver HPZ12 - ok
10:00:39.0078 0x2470  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
10:00:39.0110 0x2470  PNRPAutoReg - ok
10:00:39.0147 0x2470  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
10:00:39.0156 0x2470  PNRPsvc - ok
10:00:39.0198 0x2470  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
10:00:39.0220 0x2470  PolicyAgent - ok
10:00:39.0247 0x2470  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
10:00:39.0274 0x2470  Power - ok
10:00:39.0299 0x2470  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
10:00:39.0323 0x2470  PptpMiniport - ok
10:00:39.0340 0x2470  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
10:00:39.0350 0x2470  Processor - ok
10:00:39.0375 0x2470  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
10:00:39.0418 0x2470  ProfSvc - ok
10:00:39.0429 0x2470  [ CA4FC33FB22D92368A0B221092B46374, 2FB8C496216E5D11627F7832B3B8ABE486E71DF4EC28EABE33F89847BFC5E591 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:00:39.0431 0x2470  ProtectedStorage - ok
10:00:39.0491 0x2470  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
10:00:39.0503 0x2470  Psched - ok
10:00:39.0586 0x2470  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
10:00:39.0644 0x2470  ql2300 - ok
10:00:39.0670 0x2470  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
10:00:39.0707 0x2470  ql40xx - ok
10:00:39.0745 0x2470  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
10:00:39.0784 0x2470  QWAVE - ok
10:00:39.0803 0x2470  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
10:00:39.0835 0x2470  QWAVEdrv - ok
10:00:39.0849 0x2470  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
10:00:39.0879 0x2470  RasAcd - ok
10:00:39.0914 0x2470  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
10:00:39.0936 0x2470  RasAgileVpn - ok
10:00:39.0959 0x2470  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
10:00:39.0972 0x2470  RasAuto - ok
10:00:39.0993 0x2470  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
10:00:40.0015 0x2470  Rasl2tp - ok
10:00:40.0050 0x2470  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
10:00:40.0097 0x2470  RasMan - ok
10:00:40.0121 0x2470  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
10:00:40.0134 0x2470  RasPppoe - ok
10:00:40.0155 0x2470  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
10:00:40.0176 0x2470  RasSstp - ok
10:00:40.0207 0x2470  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
10:00:40.0247 0x2470  rdbss - ok
10:00:40.0259 0x2470  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
10:00:40.0292 0x2470  rdpbus - ok
10:00:40.0307 0x2470  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
10:00:40.0320 0x2470  RDPCDD - ok
10:00:40.0349 0x2470  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
10:00:40.0355 0x2470  RDPENCDD - ok
10:00:40.0366 0x2470  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
10:00:40.0372 0x2470  RDPREFMP - ok
10:00:40.0410 0x2470  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
10:00:40.0423 0x2470  RdpVideoMiniport - ok
10:00:40.0452 0x2470  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
10:00:40.0475 0x2470  RDPWD - ok
10:00:40.0506 0x2470  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
10:00:40.0546 0x2470  rdyboost - ok
10:00:40.0571 0x2470  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
10:00:40.0595 0x2470  RemoteAccess - ok
10:00:40.0620 0x2470  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
10:00:40.0639 0x2470  RemoteRegistry - ok
10:00:40.0662 0x2470  [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt         C:\Windows\system32\DRIVERS\revoflt.sys
10:00:40.0673 0x2470  Revoflt - ok
10:00:40.0711 0x2470  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
10:00:40.0724 0x2470  RFCOMM - ok
10:00:40.0755 0x2470  [ 83A6C2CAFE236652D1559640594A0EA8, 52360F17C9C70C9CEA3316560B40C4D89FD705ED7E6B6088C99FC54D4CC35EB5 ] rpcapd          C:\Program Files (x86)\WinPcap\rpcapd.exe
10:00:40.0767 0x2470  rpcapd - ok
10:00:40.0792 0x2470  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
10:00:40.0804 0x2470  RpcEptMapper - ok
10:00:40.0822 0x2470  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
10:00:40.0856 0x2470  RpcLocator - ok
10:00:40.0906 0x2470  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
10:00:40.0919 0x2470  RpcSs - ok
10:00:40.0942 0x2470  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
10:00:40.0967 0x2470  rspndr - ok
10:00:41.0026 0x2470  [ 3641E624C8C5D5EA089AE9B5340B5B79, 87AE88F56990A3F5B21B0C6D01C18C1D5D54243E2B8E18C1A4593C7025CDE41A ] rt70x64         C:\Windows\system32\DRIVERS\netr7064.sys
10:00:41.0048 0x2470  rt70x64 - ok
10:00:41.0061 0x2470  [ CA4FC33FB22D92368A0B221092B46374, 2FB8C496216E5D11627F7832B3B8ABE486E71DF4EC28EABE33F89847BFC5E591 ] SamSs           C:\Windows\system32\lsass.exe
10:00:41.0063 0x2470  SamSs - ok
10:00:41.0091 0x2470  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
10:00:41.0129 0x2470  sbp2port - ok
10:00:41.0150 0x2470  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
10:00:41.0185 0x2470  SCardSvr - ok
10:00:41.0211 0x2470  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
10:00:41.0243 0x2470  scfilter - ok
10:00:41.0327 0x2470  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
10:00:41.0370 0x2470  Schedule - ok
10:00:41.0388 0x2470  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
10:00:41.0390 0x2470  SCPolicySvc - ok
10:00:41.0407 0x2470  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
10:00:41.0431 0x2470  SDRSVC - ok
10:00:41.0459 0x2470  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
10:00:41.0487 0x2470  secdrv - ok
10:00:41.0509 0x2470  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
10:00:41.0540 0x2470  seclogon - ok
10:00:41.0561 0x2470  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
10:00:41.0574 0x2470  SENS - ok
10:00:41.0592 0x2470  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
10:00:41.0604 0x2470  SensrSvc - ok
10:00:41.0620 0x2470  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
10:00:41.0633 0x2470  Serenum - ok
10:00:41.0651 0x2470  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
10:00:41.0676 0x2470  Serial - ok
10:00:41.0697 0x2470  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
10:00:41.0709 0x2470  sermouse - ok
10:00:41.0739 0x2470  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
10:00:41.0774 0x2470  SessionEnv - ok
10:00:41.0800 0x2470  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
10:00:41.0809 0x2470  sffdisk - ok
10:00:41.0823 0x2470  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
10:00:41.0832 0x2470  sffp_mmc - ok
10:00:41.0838 0x2470  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
10:00:41.0853 0x2470  sffp_sd - ok
10:00:41.0874 0x2470  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
10:00:41.0898 0x2470  sfloppy - ok
10:00:41.0936 0x2470  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
10:00:41.0961 0x2470  SharedAccess - ok
10:00:42.0009 0x2470  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:00:42.0027 0x2470  ShellHWDetection - ok
10:00:42.0038 0x2470  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:00:42.0069 0x2470  SiSRaid2 - ok
10:00:42.0083 0x2470  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
10:00:42.0140 0x2470  SiSRaid4 - ok
10:00:42.0212 0x2470  [ 704B4F81729F676BBF034529FC334D82, 1E50DAF97836807A500284385D99272780A8B69CA88761250451060B207824F8 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
10:00:42.0219 0x2470  SkypeUpdate - ok
10:00:42.0241 0x2470  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
10:00:42.0251 0x2470  Smb - ok
10:00:42.0284 0x2470  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
10:00:42.0305 0x2470  SNMPTRAP - ok
10:00:42.0322 0x2470  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
10:00:42.0328 0x2470  spldr - ok
10:00:42.0375 0x2470  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
10:00:42.0395 0x2470  Spooler - ok
10:00:42.0575 0x2470  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
10:00:42.0664 0x2470  sppsvc - ok
10:00:42.0695 0x2470  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
10:00:42.0707 0x2470  sppuinotify - ok
10:00:42.0769 0x2470  [ A6CFF1AF7664627A296B6A0A96CF876E, DAD7B09341ABAA7F26AB7F93BD2B910BD2BA6ECFD317C1BCB66FFEC332A655A0 ] sptd            C:\Windows\System32\Drivers\sptd.sys
10:00:42.0770 0x2470  Suspicious file ( NoAccess ): C:\Windows\System32\Drivers\sptd.sys. md5: A6CFF1AF7664627A296B6A0A96CF876E, sha256: DAD7B09341ABAA7F26AB7F93BD2B910BD2BA6ECFD317C1BCB66FFEC332A655A0
10:00:42.0771 0x2470  sptd - detected LockedFile.Multi.Generic ( 1 )
10:00:45.0522 0x2470  Detect skipped due to KSN trusted
10:00:45.0522 0x2470  sptd - ok
10:00:45.0562 0x2470  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
10:00:45.0635 0x2470  srv - ok
10:00:45.0672 0x2470  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
10:00:45.0720 0x2470  srv2 - ok
10:00:45.0738 0x2470  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
10:00:45.0773 0x2470  srvnet - ok
10:00:45.0792 0x2470  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
10:00:45.0804 0x2470  SSDPSRV - ok
10:00:45.0825 0x2470  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
10:00:45.0851 0x2470  SstpSvc - ok
10:00:45.0939 0x2470  [ AFE32AFD30464FC59CB8E88DC72F66FA, 24644F8AA47E61B98EF867BE18A9BE383822D64F3AADF2ED35E42FBFBA7B340F ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
10:00:46.0075 0x2470  Steam Client Service - ok
10:00:46.0144 0x2470  [ B5D2F4BF587FD60AF75B09EFC1AD0E0A, 2033D6DFCA7A48E338D94427AEC82DA761618D5D3AEB22E5A64427D2C2DB0350 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
10:00:46.0249 0x2470  Stereo Service - ok
10:00:46.0273 0x2470  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
10:00:46.0294 0x2470  stexstor - ok
10:00:46.0354 0x2470  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
10:00:46.0396 0x2470  stisvc - ok
10:00:46.0413 0x2470  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
10:00:46.0439 0x2470  swenum - ok
10:00:46.0489 0x2470  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
10:00:46.0504 0x2470  swprv - ok
10:00:46.0619 0x2470  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
10:00:46.0681 0x2470  SysMain - ok
10:00:46.0703 0x2470  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:00:46.0740 0x2470  TabletInputService - ok
10:00:46.0784 0x2470  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
10:00:46.0838 0x2470  TapiSrv - ok
10:00:46.0854 0x2470  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
10:00:46.0886 0x2470  TBS - ok
10:00:47.0024 0x2470  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
10:00:47.0085 0x2470  Tcpip - ok
10:00:47.0179 0x2470  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
10:00:47.0217 0x2470  TCPIP6 - ok
10:00:47.0244 0x2470  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
10:00:47.0270 0x2470  tcpipreg - ok
10:00:47.0295 0x2470  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
10:00:47.0306 0x2470  TDPIPE - ok
10:00:47.0324 0x2470  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
10:00:47.0347 0x2470  TDTCP - ok
10:00:47.0376 0x2470  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
10:00:47.0398 0x2470  tdx - ok
10:00:47.0714 0x2470  [ 6CA83C69643E7BF144A428B7BDC7D630, DB015BA4428509E1D5BE74FEFB446A29D316564617EB15A379424B3FCE3B74A9 ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
10:00:47.0908 0x2470  TeamViewer - ok
10:00:47.0943 0x2470  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
10:00:47.0988 0x2470  TermDD - ok
10:00:48.0043 0x2470  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
10:00:48.0098 0x2470  TermService - ok
10:00:48.0127 0x2470  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
10:00:48.0139 0x2470  Themes - ok
10:00:48.0156 0x2470  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
10:00:48.0159 0x2470  THREADORDER - ok
10:00:48.0173 0x2470  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
10:00:48.0185 0x2470  TrkWks - ok
10:00:48.0215 0x2470  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:00:48.0228 0x2470  TrustedInstaller - ok
10:00:48.0250 0x2470  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
10:00:48.0261 0x2470  tssecsrv - ok
10:00:48.0285 0x2470  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
10:00:48.0312 0x2470  TsUsbFlt - ok
10:00:48.0355 0x2470  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
10:00:48.0378 0x2470  tunnel - ok
10:00:48.0396 0x2470  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
10:00:48.0406 0x2470  uagp35 - ok
10:00:48.0439 0x2470  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
10:00:48.0496 0x2470  udfs - ok
10:00:48.0521 0x2470  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
10:00:48.0543 0x2470  UI0Detect - ok
10:00:48.0563 0x2470  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
10:00:48.0579 0x2470  uliagpkx - ok
10:00:48.0605 0x2470  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
10:00:48.0624 0x2470  umbus - ok
10:00:48.0636 0x2470  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
10:00:48.0659 0x2470  UmPass - ok
10:00:48.0701 0x2470  [ BB879DCFD22926EFBEB3298129898CBB, 2A24E6CD5D6E0CEA3082C0699A2371084CC1268B31BC714098EA0D0C11B3AFAC ] UnlockerDriver5 C:\Program Files (x86)\Unlocker\UnlockerDriver5.sys
10:00:48.0776 0x2470  UnlockerDriver5 - ok
10:00:48.0817 0x2470  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
10:00:48.0846 0x2470  upnphost - ok
10:00:48.0877 0x2470  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
10:00:48.0917 0x2470  usbaudio - ok
10:00:48.0934 0x2470  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
10:00:48.0953 0x2470  usbccgp - ok
10:00:48.0979 0x2470  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
10:00:48.0992 0x2470  usbcir - ok
10:00:49.0004 0x2470  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
10:00:49.0025 0x2470  usbehci - ok
10:00:49.0067 0x2470  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
10:00:49.0108 0x2470  usbhub - ok
10:00:49.0136 0x2470  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
10:00:49.0161 0x2470  usbohci - ok
10:00:49.0195 0x2470  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
10:00:49.0206 0x2470  usbprint - ok
10:00:49.0222 0x2470  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:00:49.0239 0x2470  USBSTOR - ok
10:00:49.0249 0x2470  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
10:00:49.0261 0x2470  usbuhci - ok
10:00:49.0295 0x2470  [ 7B28E2FBE75115660FAB31079C0A9F29, 81BB5A3E64B652A672A0782A88ABF6DDD729D38712D0706CE0FB9DE6D1EE1515 ] usb_rndisx      C:\Windows\system32\DRIVERS\usb8023x.sys
10:00:49.0308 0x2470  usb_rndisx - ok
10:00:49.0329 0x2470  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
10:00:49.0356 0x2470  UxSms - ok
10:00:49.0371 0x2470  [ CA4FC33FB22D92368A0B221092B46374, 2FB8C496216E5D11627F7832B3B8ABE486E71DF4EC28EABE33F89847BFC5E591 ] VaultSvc        C:\Windows\system32\lsass.exe
10:00:49.0373 0x2470  VaultSvc - ok
10:00:49.0455 0x2470  [ 8693BF3C413D225DB72D3F4F4E90FC21, E37D1BAB6C32C29A50ED83094EFEC6CE26BED42BF73660A7BCADD366E3471354 ] VBoxDrv         C:\Windows\system32\DRIVERS\VBoxDrv.sys
10:00:49.0497 0x2470  VBoxDrv - ok
10:00:49.0519 0x2470  [ 87D4E923785CDFA655B53A78DD99BD2B, CCE460ED6C1292284B22B675CEDBB86CC3D329B15B1B9F77EA80AC7EDB774B65 ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
10:00:49.0532 0x2470  VBoxNetAdp - ok
10:00:49.0558 0x2470  [ 3BE9EEA378F69D296E8168D01A6913BD, EEB76C217CFE2960506E4012D130233858D74C4FF1657DF3EA499CFF651B2C3F ] VBoxNetFlt      C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
10:00:49.0583 0x2470  VBoxNetFlt - ok
10:00:49.0612 0x2470  [ B820D9ACE4EDB499D33B2051B973FBBF, F5D344BA8640DE46DD825B20C1A9F3546342938DEA1571CD1245B6F4EC938346 ] VBoxUSBMon      C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
10:00:49.0625 0x2470  VBoxUSBMon - ok
10:00:49.0656 0x2470  [ 3C8E2C591345F38149C69FE8E5DF8C90, 9F4BB9BDA09CB2E99A6A888B288F322AE5C460B5D124CD714C6F00FF5029144B ] VClone          C:\Windows\system32\DRIVERS\VClone.sys
10:00:49.0669 0x2470  VClone - ok
10:00:49.0684 0x2470  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
10:00:49.0697 0x2470  vdrvroot - ok
10:00:49.0739 0x2470  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
10:00:49.0787 0x2470  vds - ok
10:00:49.0806 0x2470  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
10:00:49.0817 0x2470  vga - ok
10:00:49.0827 0x2470  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
10:00:49.0850 0x2470  VgaSave - ok
10:00:49.0883 0x2470  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
10:00:49.0912 0x2470  vhdmp - ok
10:00:49.0928 0x2470  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
10:00:49.0952 0x2470  viaide - ok
10:00:49.0965 0x2470  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
10:00:49.0990 0x2470  volmgr - ok
10:00:50.0024 0x2470  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
10:00:50.0035 0x2470  volmgrx - ok
10:00:50.0060 0x2470  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
10:00:50.0100 0x2470  volsnap - ok
10:00:50.0120 0x2470  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
10:00:50.0148 0x2470  vsmraid - ok
10:00:50.0258 0x2470  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
10:00:50.0316 0x2470  VSS - ok
10:00:50.0330 0x2470  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
10:00:50.0355 0x2470  vwifibus - ok
10:00:50.0397 0x2470  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
10:00:50.0436 0x2470  W32Time - ok
10:00:50.0457 0x2470  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
10:00:50.0466 0x2470  WacomPen - ok
10:00:50.0501 0x2470  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
10:00:50.0523 0x2470  WANARP - ok
10:00:50.0529 0x2470  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
10:00:50.0532 0x2470  Wanarpv6 - ok
10:00:50.0631 0x2470  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
10:00:50.0677 0x2470  WatAdminSvc - ok
10:00:50.0766 0x2470  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
10:00:50.0826 0x2470  wbengine - ok
10:00:50.0853 0x2470  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
10:00:50.0871 0x2470  WbioSrvc - ok
10:00:50.0902 0x2470  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
10:00:50.0914 0x2470  wcncsvc - ok
10:00:50.0933 0x2470  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:00:50.0955 0x2470  WcsPlugInService - ok
10:00:50.0975 0x2470  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
10:00:50.0986 0x2470  Wd - ok
10:00:51.0041 0x2470  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
10:00:51.0072 0x2470  Wdf01000 - ok
10:00:51.0095 0x2470  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
10:00:51.0107 0x2470  WdiServiceHost - ok
10:00:51.0113 0x2470  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
10:00:51.0118 0x2470  WdiSystemHost - ok
10:00:51.0145 0x2470  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
10:00:51.0165 0x2470  WebClient - ok
10:00:51.0184 0x2470  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
10:00:51.0203 0x2470  Wecsvc - ok
10:00:51.0219 0x2470  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
10:00:51.0231 0x2470  wercplsupport - ok
10:00:51.0247 0x2470  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
10:00:51.0260 0x2470  WerSvc - ok
10:00:51.0287 0x2470  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
10:00:51.0300 0x2470  WfpLwf - ok
10:00:51.0312 0x2470  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
10:00:51.0321 0x2470  WIMMount - ok
10:00:51.0331 0x2470  WinDefend - ok
10:00:51.0340 0x2470  WinHttpAutoProxySvc - ok
10:00:51.0381 0x2470  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
10:00:51.0400 0x2470  Winmgmt - ok
10:00:51.0517 0x2470  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
10:00:51.0585 0x2470  WinRM - ok
10:00:51.0623 0x2470  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\drivers\WinUSB.sys
10:00:51.0655 0x2470  WinUsb - ok
10:00:51.0721 0x2470  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
10:00:51.0763 0x2470  Wlansvc - ok
10:00:51.0966 0x2470  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:00:52.0032 0x2470  wlidsvc - ok
10:00:52.0060 0x2470  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
10:00:52.0069 0x2470  WmiAcpi - ok
10:00:52.0100 0x2470  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
10:00:52.0112 0x2470  wmiApSrv - ok
10:00:52.0134 0x2470  WMPNetworkSvc - ok
10:00:52.0152 0x2470  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
10:00:52.0165 0x2470  WPCSvc - ok
10:00:52.0183 0x2470  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
10:00:52.0196 0x2470  WPDBusEnum - ok
10:00:52.0215 0x2470  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
10:00:52.0246 0x2470  ws2ifsl - ok
10:00:52.0268 0x2470  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
10:00:52.0281 0x2470  wscsvc - ok
10:00:52.0286 0x2470  WSearch - ok
10:00:52.0426 0x2470  [ 0814A74C853F50B354F08F83DDA9F7FB, 0A63BAA8DE451B8C2C71FEF961718E769B9BAC305C76D24048C664CB27D0DF28 ] wuauserv        C:\Windows\system32\wuaueng.dll
10:00:52.0490 0x2470  wuauserv - ok
10:00:52.0515 0x2470  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
10:00:52.0527 0x2470  WudfPf - ok
10:00:52.0566 0x2470  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
10:00:52.0571 0x2470  WUDFRd - ok
10:00:52.0589 0x2470  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
10:00:52.0602 0x2470  wudfsvc - ok
10:00:52.0631 0x2470  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
10:00:52.0658 0x2470  WwanSvc - ok
10:00:52.0693 0x2470  ================ Scan global ===============================
10:00:52.0714 0x2470  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
10:00:52.0762 0x2470  [ EA32F4EA3AE06EDD122FBCD5A489E457, C6E464170121D1714A367CFC80C5EA15D42AD34909039FDB114EAD3B878A47F6 ] C:\Windows\system32\winsrv.dll
10:00:52.0789 0x2470  [ EA32F4EA3AE06EDD122FBCD5A489E457, C6E464170121D1714A367CFC80C5EA15D42AD34909039FDB114EAD3B878A47F6 ] C:\Windows\system32\winsrv.dll
10:00:52.0811 0x2470  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
10:00:52.0884 0x2470  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
10:00:52.0895 0x2470  [ Global ] - ok
10:00:52.0895 0x2470  ================ Scan MBR ==================================
10:00:52.0911 0x2470  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
10:00:52.0918 0x2470  \Device\Harddisk0\DR0 - ok
10:00:52.0927 0x2470  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
10:00:53.0048 0x2470  \Device\Harddisk1\DR1 - ok
10:00:53.0053 0x2470  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR5
10:00:54.0084 0x2470  \Device\Harddisk2\DR5 - ok
10:00:54.0088 0x2470  [ 739B36F7A373FC81121D831231B6D311 ] \Device\Harddisk3\DR6
10:00:54.0093 0x2470  \Device\Harddisk3\DR6 - ok
10:00:54.0093 0x2470  ================ Scan VBR ==================================
10:00:54.0097 0x2470  [ 6B1A02D44CC65218CF6626AA891594A2 ] \Device\Harddisk0\DR0\Partition1
10:00:54.0106 0x2470  \Device\Harddisk0\DR0\Partition1 - ok
10:00:54.0110 0x2470  [ F68D2F58C89E91D861BE8C09451E8FCE ] \Device\Harddisk1\DR1\Partition1
10:00:54.0111 0x2470  \Device\Harddisk1\DR1\Partition1 - ok
10:00:54.0126 0x2470  [ DDC46D7969B5E04E9D2116979D22EAD0 ] \Device\Harddisk1\DR1\Partition2
10:00:54.0127 0x2470  \Device\Harddisk1\DR1\Partition2 - ok
10:00:54.0132 0x2470  [ 1787EAAD8303EA2D637CA328C1CD97A6 ] \Device\Harddisk2\DR5\Partition1
10:00:54.0135 0x2470  \Device\Harddisk2\DR5\Partition1 - ok
10:00:54.0139 0x2470  [ 779EC798E2B0D7325197BB7CC112EE79 ] \Device\Harddisk2\DR5\Partition2
10:00:54.0141 0x2470  \Device\Harddisk2\DR5\Partition2 - ok
10:00:54.0145 0x2470  [ 732F503D7D0726E7E774766B1365F575 ] \Device\Harddisk3\DR6\Partition1
10:00:54.0148 0x2470  \Device\Harddisk3\DR6\Partition1 - ok
10:00:54.0148 0x2470  ================ Scan generic autorun ======================
10:00:54.0793 0x2470  [ 16438B000BF56F2CD7FDB5E6C3B38C7E, 32D6E69E6367D3ADB2189DA89103CB9910CE791EFB0879515DDD380A96D85BAE ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
10:00:55.0279 0x2470  RTHDVCPL - ok
10:00:55.0444 0x2470  [ EE73B56ED71EB6383F25FA5468923BB2, 0A13F25C55D97A3F86766BED449265514147D41ABB392C9451B9FB070EC7E8E4 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
10:00:55.0517 0x2470  NvBackend - ok
10:00:55.0544 0x2470  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
10:00:55.0547 0x2470  ShadowPlay - ok
10:00:55.0556 0x2470  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
10:00:55.0559 0x2470  Logitech Download Assistant - ok
10:00:56.0193 0x2470  [ 3F0B5EBDEB180C073E01A4A2DFA28C12, 0ACE6F70260E17284B8307D0DD0ACC9B59B379A99AE43429AB644B421ADAE8A7 ] C:\Program Files\Logitech Gaming Software\LCore.exe
10:00:56.0664 0x2470  Launch LCore - ok
10:00:56.0795 0x2470  [ 73BB7AC752D393494565A56A91B986CA, 5286A7B1719F2735C84212B5C8BC2BC57B03E9E7C4DF779EF582629DCBD01785 ] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
10:00:56.0829 0x2470  COMODO Internet Security - ok
10:00:56.0844 0x2470  [ 255E405D801CF01247390F38F92D8042, B0A4C2B6F40D7AD177DBD40C26B579D67CC9A95552970D9F6F0C7DE372CE2A2F ] C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe
10:00:56.0853 0x2470  UnlockerAssistant - ok
10:00:56.0929 0x2470  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
10:00:57.0081 0x2470  Sidebar - ok
10:00:57.0109 0x2470  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
10:00:57.0133 0x2470  mctadmin - ok
10:00:57.0192 0x2470  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
10:00:57.0214 0x2470  Sidebar - ok
10:00:57.0223 0x2470  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
10:00:57.0227 0x2470  mctadmin - ok
10:00:57.0245 0x2470  Skype - ok
10:00:57.0288 0x2470  [ B22CB67919EBAD88B0E8BB9CDA446010, 2F744FEAC48EDE7D6B6D2727F7DDFA80B26D9E3B0009741B00992B19AD85E128 ] C:\Windows\System32\StikyNot.exe
10:00:57.0309 0x2470  RESTART_STICKY_NOTES - ok
10:00:57.0485 0x2470  [ 9F047EAEC4E5259CFA27A36EE604E9CA, 043ADD1D8AFF8BC84834621FE9C82E8F05370D1D39E71E99B90D271CAD726131 ] C:\Users\playman\AppData\Roaming\Spotify\SpotifyWebHelper.exe
10:00:57.0670 0x2470  Spotify Web Helper - ok
10:00:58.0042 0x2470  [ F679E30A5F7CE39F7FA134E61BD2D6D3, 84BD25FFF9C47AC5A00E225DCF03D82A79FE036E3B553D2D81254F2F1FC120A1 ] C:\Program Files\CCleaner\CCleaner64.exe
10:00:58.0287 0x2470  CCleaner Monitoring - ok
10:00:58.0650 0x2470  [ B60CBD7083F313906410F5333B96B563, 754367C8A2BA9870FCEDB32D31FCABBBE4DC135C0016B82A34833BC85D9F799B ] C:\Users\playman\AppData\Roaming\Spotify\Spotify.exe
10:00:58.0815 0x2470  Spotify - ok
10:00:58.0836 0x2470  Waiting for KSN requests completion. In queue: 116
10:00:59.0836 0x2470  Waiting for KSN requests completion. In queue: 116
10:01:00.0836 0x2470  Waiting for KSN requests completion. In queue: 116
10:01:01.0903 0x2470  AV detected via SS2: COMODO Antivirus, C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe ( 8.2.0.4508 ), 0x61000 ( enabled : updated )
10:01:01.0907 0x2470  FW detected via SS2: COMODO Firewall, C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe ( 8.2.0.4508 ), 0x61010 ( enabled )
10:01:04.0853 0x2470  ============================================================
10:01:04.0853 0x2470  Scan finished
10:01:04.0853 0x2470  ============================================================
10:01:04.0863 0x242c  Detected object count: 0
10:01:04.0863 0x242c  Actual detected object count: 0
10:08:16.0274 0x27d4  Deinitialize success
 
AdwCleaner[R0].txt
 
# AdwCleaner v4.203 - Logfile created 06/05/2015 at 10:11:25
# Updated 30/04/2015 by Xplode
# Database : 2015-05-05.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : playman - PLAYMAN-PC
# Running from : C:\Users\playman\Downloads\adwcleaner_4.203.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
File Found : C:\Users\playman\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_cmaiofennmphjldldcpphcechfnnohja_0.localstorage
File Found : C:\Users\playman\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_cmaiofennmphjldldcpphcechfnnohja_0.localstorage-journal
Folder Found : C:\Users\playman\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
 
***** [ Scheduled tasks ] *****
 
Task Found : LaunchSignup
Task Found : YourFile DownloaderUpdate
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Data Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local
Key Found : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Key Found : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Key Found : HKLM\SOFTWARE\Classes\driverscanner
Key Found : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Key Found : HKLM\SOFTWARE\Uniblue
Key Found : HKLM\SOFTWARE\YourFileDownloader
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
 
***** [ Web browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17728
 
 
-\\ Google Chrome v42.0.2311.135
 
 
-\\ Comodo Dragon v36.1.1.21
 
[C:\Users\playman\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Found [Extension] : cmaiofennmphjldldcpphcechfnnohja
 
*************************
 
AdwCleaner[R0].txt - [2136 bytes] - [06/05/2015 10:11:25]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2195 bytes] ##########
 

JRT.txt

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.6.7 (04.30.2015:1)
OS: Windows 7 Home Premium x64
Ran by playman on miÐ. 06.05.2015 at 10:22:57,50
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Tasks
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on miÐ. 06.05.2015 at 10:51:34,18
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
MBAM.txt
 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 7.5.2015
Scan Time: 09:20:19
Logfile: MBAM.txt
Administrator: Yes
 
Version: 2.01.6.1022
Malware Database: v2015.05.07.01
Rootkit Database: v2015.04.21.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: playman
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 347481
Time Elapsed: 21 min, 11 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Disabled
Rootkits: Enabled
Deep Rootkit Scan: Enabled
Heuristics: Disabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 1
Hacktool.Agent, C:\ProgramData\COMODO\Cis\Quarantine\data\{312F4BAB-EC85-4CB6-ACA0-FA599B530045}, Quarantined, [f0dd405059312b0b612580fca95804fc], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)

Edited by playman, 07 May 2015 - 05:59 AM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,270 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:19 PM

Posted 07 May 2015 - 02:36 PM

Remove what ADWceaner found
 
Double click on AdwCleaner.exe to run the tool again. Vista/Windows 7/8 users right-click and select Run As Administrator
  • The tool will start to update the database, please wait a bit.
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished... <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 playman

playman
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:19 AM

Posted 08 May 2015 - 05:37 AM

# AdwCleaner v4.203 - Logfile created 08/05/2015 at 10:30:48
# Updated 30/04/2015 by Xplode
# Database : 2015-05-05.1 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : playman - PLAYMAN-PC
# Running from : C:\Users\playman\Downloads\adwcleaner_4.203.exe
# Option : Cleaning
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Users\playman\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
File Deleted : C:\Users\playman\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_cmaiofennmphjldldcpphcechfnnohja_0.localstorage
File Deleted : C:\Users\playman\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_cmaiofennmphjldldcpphcechfnnohja_0.localstorage-journal
 
***** [ Scheduled tasks ] *****
 
Task Deleted : LaunchSignup
Task Deleted : YourFile DownloaderUpdate
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\driverscanner
Key Deleted : HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
Key Deleted : HKLM\SOFTWARE\Uniblue
Key Deleted : HKLM\SOFTWARE\YourFileDownloader
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local
 
***** [ Web browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17728
 
 
-\\ Google Chrome v42.0.2311.135
 
 
-\\ Comodo Dragon v36.1.1.21
 
[C:\Users\playman\AppData\Local\Comodo\Dragon\User Data\Default\Preferences] - Deleted [Extension] : cmaiofennmphjldldcpphcechfnnohja
 
*************************
 
AdwCleaner[R0].txt - [2282 bytes] - [06/05/2015 10:11:25]
AdwCleaner[R1].txt - [2302 bytes] - [08/05/2015 08:45:18]
AdwCleaner[S0].txt - [2253 bytes] - [08/05/2015 10:30:48]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2312  bytes] ##########


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,270 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:19 PM

Posted 08 May 2015 - 12:47 PM

Ok thanks, I am unsure that ESET removed what it found o run it again and ◾Make sure that the option Remove found threats IS checked, and the option Scan archives is checked.

How is it now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 playman

playman
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:19 AM

Posted 12 May 2015 - 04:05 AM

Here it is.

 

E:\ISO's\Hiren's.BootCD.15.1.iso Win32/PSWTool.KonBoot.A potentially unsafe application deleted - quarantined
E:\ISO's\Windows XP SP3.ISO Win32/HackTool.WpaKill.B potentially unsafe application deleted - quarantined
E:\Programs\Unlocker1%5B1%5D.9.0.exe Win32/Adware.ADON potentially unwanted application deleted - quarantined
E:\Programs\XP crack\XP crack.rar a variant of Win32/HackTool.Patcher.O potentially unsafe application deleted - quarantined


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,270 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:19 PM

Posted 12 May 2015 - 11:38 AM

Hi, looks like you installed a crack tool and it carried a serious virus. Eset seems to have grabbed it but lets be sure it didn't leave friends'

Run Rkill an then Immediately run MBAM again.
Please download Rkill by Grinler and save it to your desktop.
  • Link 1
  • Link 2
    • Double-click on the Rkill desktop icon to run the tool.
    • If using Vista, right-click on it and Run As Administrator.
    • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
    • If not, delete the file, then download and use the one provided in Link 2.
    • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
    • If the tool does not run from any of the links provided, please let me know.
  • Do not reboot the computer, you will need to run the application again.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 playman

playman
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:19 AM

Posted 13 May 2015 - 05:32 AM

RKILL first runn

 

Rkill 2.7.0 by Lawrence Abrams (Grinler)
Copyright 2008-2015 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 05/13/2015 09:20:35 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * C:\Windows\SysWOW64\LVCOMSX.EXE (PID: 11424) [WD-HEUR]
 
1 proccess terminated!
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
 * Windows Firewall Disabled
 
   [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
   "EnableFirewall" = dword:00000000
 
Checking Windows Service Integrity: 
 
 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * No issues found.
 
Program finished at: 05/13/2015 09:21:50 AM
Execution time: 0 hours(s), 1 minute(s), and 14 seconds(s)
 
Malwarebytes
 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 13.5.2015
Scan Time: 09:25:20
Logfile: MBAM2.txt
Administrator: Yes
 
Version: 2.01.6.1022
Malware Database: v2015.05.13.01
Rootkit Database: v2015.04.21.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: playman
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 348764
Time Elapsed: 22 min, 11 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Disabled
Rootkits: Enabled
Deep Rootkit Scan: Enabled
Heuristics: Disabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)

 

 

RKILL Second run

 

Rkill 2.7.0 by Lawrence Abrams (Grinler)

Copyright 2008-2015 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 05/13/2015 10:24:40 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * C:\Windows\SysWOW64\LVCOMSX.EXE (PID: 10804) [WD-HEUR]
 
1 proccess terminated!
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
 * Windows Firewall Disabled
 
   [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
   "EnableFirewall" = dword:00000000
 
Checking Windows Service Integrity: 
 
 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * No issues found.
 
Program finished at: 05/13/2015 10:25:36 AM
Execution time: 0 hours(s), 0 minute(s), and 56 seconds(s)


#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,270 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:19 PM

Posted 13 May 2015 - 01:54 PM

Ok, How I it running now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 playman

playman
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Local time:12:19 AM

Posted 15 May 2015 - 08:40 AM

Just as same as before I believe, but only time will tell if we get another UDP attack, as there was a about a week gap between the last attacks.



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,270 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:19 PM

Posted 15 May 2015 - 01:22 PM

Ok, If it happens again we'll get a deep look.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users