Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Security Request Outbound Traffic Detected


  • Please log in to reply
7 replies to this topic

#1 weiletc2

weiletc2

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:12:28 PM

Posted 20 July 2015 - 05:46 PM

The topic title listed in the subject line of this post pops up on my computer screen randomly every once in a while completely disrupting whatever I am doing.  It sometime causes a web page to crash so I need to start again.  I have literally been trying to write this post all day.

 

Full text of the pop-up is:

Security Request

Outbound Traffic Detected

We have detected a large volume of suspicious outgoing traffic on

your system.  Your computer may be infected with something that

Norton Power Eraser can detect and remove

Do you want to run Norton Power Eraser?

 

If I run Power Eraser it does nothing.  When I cancel the window it comes back.  Can someone please help me remove this?

 



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,058 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:28 PM

Posted 20 July 2015 - 08:38 PM

Hello can you run these??

You may need to disable NORTON TO RUN SOME/

3Al62Pm.pngMiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
SXvL3ZF.pngTDSSKiller
  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
cvMlKv6.pngESET Online Scanner
  • Hold down Control and click on this link to open ESET Online Scanner in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE: Sometimes if ESET finds no infections it will not create a log.
>>>

51a46ae42d560-malwarebytes_anti_malware.Malwarebytes Anti-Malware
  • Download MalwareBytes Anti-Malware to your desktop.
  • Double-click mbam-setup-2.0.exe to start the installation of Malwarebytes Anti-Malware.
  • Follow the instructions on your screen to complete the installation. You can find the complete installation procedure here.
  • Click the Scan Now button, a threat scan will start automatically.
  • MalwareBytes Anti-Malware will now check for the latest updates. Click Update Now if new updates are available.
  • Your computer is now being scanned, please do not use your computer during the scan.
    • If no threats were found, click View detailed log.
      • Click Export and save the log as a .txt file on your Desktop or another location.
    • If the scan detected any threats, click Apply Actions.
      • To complete any actions taken you will be prompted to restart your computer...click on Yes.
      • After reboot, start Malwarebytes Anti-Malware again and click the History Tab at the top and select Application Logs.
      • Check the box next to Scan Log. Choose the most current scan and click View.
      • Click Export and save the log as a .txt file on your Desktop or another location.
  • Providing the MalwareBytes' Anti-Malware log file
    • Attach the log file you just saved to your next reply for further review.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 weiletc2

weiletc2
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:12:28 PM

Posted 21 July 2015 - 11:55 AM

THANK YOU, Thank You, thank you!!!  I ran through your instructions and sure enough my problems have been resolved.  The annoying pop-ups referring to Norton Eraser are gone as well as the other ads I was struggling with. 



#4 Kshitij

Kshitij

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 10 October 2015 - 02:19 PM

MiniToolBox by Farbar  Version: 25-07-2015 01
Ran by Kbleepij (administrator) on 11-10-2015 at 00:36:44
Running from "C:\Users\Kbleepij\Desktop\Outbound Traffic Resolution"
Microsoft Windows 8.1 Single Language  (X64)
Model: HP Pavilion 15 Notebook PC Manufacturer: Hewlett-Packard
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Ralink RT3290 802.11bgn Wi-Fi Adapter = Wi-Fi (Connected)
Realtek PCIe FE Family Controller = Ethernet (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : KbleepijAnandLaptop
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Wireless LAN adapter Local Area Connection* 11:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : BC-85-56-F3-7C-03
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wi-Fi:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Ralink RT3290 802.11bgn Wi-Fi Adapter
   Physical Address. . . . . . . . . : BC-85-56-F3-7C-01
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::9dff:d6ab:2042:4c79%4(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.48(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 10 October 2015 11:20:20 PM
   Lease Expires . . . . . . . . . . : 11 October 2015 11:20:26 AM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 79463766
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-5C-8A-EA-A4-5D-36-71-E1-AA
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Bluetooth Network Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : BC-85-56-F3-7C-02
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Ethernet:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : A4-5D-36-71-E1-AA
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.1.1
 
Name:    google.com
Address:  216.58.196.110
 
 
Pinging google.com [216.58.196.110] with 32 bytes of data:
Reply from 216.58.196.110: bytes=32 time=46ms TTL=57
Reply from 216.58.196.110: bytes=32 time=32ms TTL=57
 
Ping statistics for 216.58.196.110:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 32ms, Maximum = 46ms, Average = 39ms
Server:  UnKnown
Address:  192.168.1.1
 
Name:    yahoo.com
Addresses:  206.190.36.45
 98.138.253.109
 98.139.183.24
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=321ms TTL=51
Reply from 206.190.36.45: bytes=32 time=301ms TTL=51
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 301ms, Maximum = 321ms, Average = 311ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 25...bc 85 56 f3 7c 03 ......Microsoft Wi-Fi Direct Virtual Adapter
  4...bc 85 56 f3 7c 01 ......Ralink RT3290 802.11bgn Wi-Fi Adapter
  5...bc 85 56 f3 7c 02 ......Bluetooth Device (Personal Area Network)
  3...a4 5d 36 71 e1 aa ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.48     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.48    281
     192.168.1.48  255.255.255.255         On-link      192.168.1.48    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.48    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.48    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.48    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  4    281 fe80::/64                On-link
  4    281 fe80::9dff:d6ab:2042:4c79/128
                                    On-link
  1    306 ff00::/8                 On-link
  4    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
 If Metric Network Destination      Gateway
  0   9000 ::/0                     2620:9b::1900:1
  0 4294967295 2620:9b::/96             On-link
===========================================================================
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [55296] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65536] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23040] (Microsoft Corporation)
Catalog5 07 C:\WINDOWS\SysWOW64\wshbth.dll [50688] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\Provider32\Provider.dll [228352] (drms media group)
Catalog9 02 C:\WINDOWS\Provider32\Provider.dll [228352] (drms media group)
Catalog9 03 C:\WINDOWS\Provider32\Provider.dll [228352] (drms media group)
Catalog9 04 C:\WINDOWS\Provider32\Provider.dll [228352] (drms media group)
Catalog9 05 C:\WINDOWS\Provider32\Provider.dll [228352] (drms media group)
Catalog9 06 C:\WINDOWS\Provider32\Provider.dll [228352] (drms media group)
Catalog9 07 C:\WINDOWS\Provider32\Provider.dll [228352] (drms media group)
Catalog9 08 C:\WINDOWS\Provider32\Provider.dll [228352] (drms media group)
Catalog9 09 C:\WINDOWS\Provider32\Provider.dll [228352] (drms media group)
Catalog9 10 C:\WINDOWS\Provider32\Provider.dll [228352] (drms media group)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 16 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 17 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 18 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 19 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 20 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 21 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 22 C:\WINDOWS\Provider32\Provider.dll [228352] (drms media group)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [69120] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30720] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog9 01 C:\WINDOWS\Provider.dll [270848] (drms media group)
x64-Catalog9 02 C:\WINDOWS\Provider.dll [270848] (drms media group)
x64-Catalog9 03 C:\WINDOWS\Provider.dll [270848] (drms media group)
x64-Catalog9 04 C:\WINDOWS\Provider.dll [270848] (drms media group)
x64-Catalog9 05 C:\WINDOWS\Provider.dll [270848] (drms media group)
x64-Catalog9 06 C:\WINDOWS\Provider.dll [270848] (drms media group)
x64-Catalog9 07 C:\WINDOWS\Provider.dll [270848] (drms media group)
x64-Catalog9 08 C:\WINDOWS\Provider.dll [270848] (drms media group)
x64-Catalog9 09 C:\WINDOWS\Provider.dll [270848] (drms media group)
x64-Catalog9 10 C:\WINDOWS\Provider.dll [270848] (drms media group)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 14 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 15 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 16 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 17 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 18 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 19 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 20 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 21 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 22 C:\WINDOWS\Provider.dll [270848] (drms media group)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (10/11/2015 12:05:11 AM) (Source: Application Hang) (User: )
Description: The program Evernote.Windows.exe version 3.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 2220
 
Start Time: 01d1038a41d1900e
 
Termination Time: 4294967295
 
Application Path: C:\Program Files\WindowsApps\Evernote.Evernote_3.2.1.95_x86__q4d96b2w5wcc2\Evernote.Windows.exe
 
Report Id: 8e50ab7e-6f7d-11e5-8342-bc8556f37c02
 
Faulting package full name: Evernote.Evernote_3.2.1.95_x86__q4d96b2w5wcc2
 
Faulting package-relative application ID: App
 
Error: (10/11/2015 12:04:35 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: KbleepIJANANDLAP)
Description: Package Evernote.Evernote_3.2.1.95_x86__q4d96b2w5wcc2+App was terminated because it took too long to suspend.
 
Error: (10/10/2015 11:15:27 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU Client has failed to start
 
Error: (10/10/2015 10:02:15 PM) (Source: Application Error) (User: )
Description: Faulting application name: Updatesvc.exe, version: 1.0.0.1, time stamp: 0x55b653a5
Faulting module name: Updatesvc.exe, version: 1.0.0.1, time stamp: 0x55b653a5
Exception code: 0x40000015
Fault offset: 0x000000000001341d
Faulting process id: 0x13d4
Faulting application start time: 0xUpdatesvc.exe0
Faulting application path: Updatesvc.exe1
Faulting module path: Updatesvc.exe2
Report Id: Updatesvc.exe3
Faulting package full name: Updatesvc.exe4
Faulting package-relative application ID: Updatesvc.exe5
 
Error: (10/10/2015 09:01:12 PM) (Source: Application Error) (User: )
Description: Faulting application name: Updatesvc.exe, version: 1.0.0.1, time stamp: 0x55b653a5
Faulting module name: Updatesvc.exe, version: 1.0.0.1, time stamp: 0x55b653a5
Exception code: 0x40000015
Fault offset: 0x000000000001341d
Faulting process id: 0xb60
Faulting application start time: 0xUpdatesvc.exe0
Faulting application path: Updatesvc.exe1
Faulting module path: Updatesvc.exe2
Report Id: Updatesvc.exe3
Faulting package full name: Updatesvc.exe4
Faulting package-relative application ID: Updatesvc.exe5
 
Error: (10/10/2015 08:32:21 AM) (Source: ATIeRecord) (User: )
Description: ATI EEU Client has failed to start
 
Error: (10/09/2015 11:38:39 PM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.3.9600.17667, time stamp: 0x54c6f7c2
Faulting module name: Windows.UI.Search.dll, version: 6.3.9600.17415, time stamp: 0x54503885
Exception code: 0xc0000005
Fault offset: 0x000000000019e9ec
Faulting process id: 0xf24
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3
Faulting package full name: Explorer.EXE4
Faulting package-relative application ID: Explorer.EXE5
 
Error: (10/09/2015 11:35:19 PM) (Source: Application Hang) (User: )
Description: The program LiveComm.exe version 17.5.9600.20911 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 1380
 
Start Time: 01d102a43ed24198
 
Termination Time: 4294967295
 
Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
 
Report Id: 49e5bf9c-6eb0-11e5-833f-bc8556f37c02
 
Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
 
Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1
 
Error: (10/09/2015 04:08:03 PM) (Source: ATIeRecord) (User: )
Description: ATI EEU Client has failed to start
 
Error: (10/09/2015 12:27:02 AM) (Source: Application Hang) (User: )
Description: The program LiveComm.exe version 17.5.9600.20911 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 1374
 
Start Time: 01d101bafe2789e6
 
Termination Time: 4294967295
 
Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe
 
Report Id: 537a2930-6dee-11e5-833c-bc8556f37c02
 
Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe
 
Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1
 
 
System errors:
=============
Error: (10/10/2015 11:15:47 PM) (Source: Service Control Manager) (User: )
Description: The Mobile Partner. OUC service failed to start due to the following error: 
%%1053
 
Error: (10/10/2015 11:15:47 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Mobile Partner. OUC service to connect.
 
Error: (10/10/2015 10:02:16 PM) (Source: Service Control Manager) (User: )
Description: The UpdateSvc service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
 
Error: (10/10/2015 09:01:15 PM) (Source: Service Control Manager) (User: )
Description: The UpdateSvc service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
 
Error: (10/10/2015 08:00:59 PM) (Source: Service Control Manager) (User: )
Description: The Mobile Partner. OUC service failed to start due to the following error: 
%%1053
 
Error: (10/10/2015 08:00:59 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Mobile Partner. OUC service to connect.
 
Error: (10/10/2015 07:59:59 PM) (Source: Microsoft-Windows-HAL) (User: NT AUTHORITY)
Description: The system watchdog timer was triggered.
 
Error: (10/10/2015 08:00:36 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 9:02:17 AM on ‎10/‎10/‎2015 was unexpected.
 
Error: (10/10/2015 08:32:32 AM) (Source: Service Control Manager) (User: )
Description: The Mobile Partner. OUC service failed to start due to the following error: 
%%1053
 
Error: (10/10/2015 08:32:32 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Mobile Partner. OUC service to connect.
 
 
Microsoft Office Sessions:
=========================
Error: (10/11/2015 12:05:11 AM) (Source: Application Hang)(User: )
Description: Evernote.Windows.exe3.0.0.0222001d1038a41d1900e4294967295C:\Program Files\WindowsApps\Evernote.Evernote_3.2.1.95_x86__q4d96b2w5wcc2\Evernote.Windows.exe8e50ab7e-6f7d-11e5-8342-bc8556f37c02Evernote.Evernote_3.2.1.95_x86__q4d96b2w5wcc2App
 
Error: (10/11/2015 12:04:35 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: KbleepIJANANDLAP)
Description: Evernote.Evernote_3.2.1.95_x86__q4d96b2w5wcc2+App
 
Error: (10/10/2015 11:15:27 PM) (Source: ATIeRecord)(User: )
Description: 
 
Error: (10/10/2015 10:02:15 PM) (Source: Application Error)(User: )
Description: Updatesvc.exe1.0.0.155b653a5Updatesvc.exe1.0.0.155b653a540000015000000000001341d13d401d10370d76cf200C:\WINDOWS\Updatesvc.exeC:\WINDOWS\Updatesvc.exe76ff5f2d-6f6c-11e5-8341-bc8556f37c02
 
Error: (10/10/2015 09:01:12 PM) (Source: Application Error)(User: )
Description: Updatesvc.exe1.0.0.155b653a5Updatesvc.exe1.0.0.155b653a540000015000000000001341db6001d103684fdfab27C:\WINDOWS\Updatesvc.exeC:\WINDOWS\Updatesvc.exeef8187ca-6f63-11e5-8341-bc8556f37c02
 
Error: (10/10/2015 08:32:21 AM) (Source: ATIeRecord)(User: )
Description: 
 
Error: (10/09/2015 11:38:39 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.3.9600.1766754c6f7c2Windows.UI.Search.dll6.3.9600.1741554503885c0000005000000000019e9ecf2401d102a430b8188dC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\Windows.UI.Search.dllc4103cbb-6eb0-11e5-833f-bc8556f37c02
 
Error: (10/09/2015 11:35:19 PM) (Source: Application Hang)(User: )
Description: LiveComm.exe17.5.9600.20911138001d102a43ed241984294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe49e5bf9c-6eb0-11e5-833f-bc8556f37c02microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
 
Error: (10/09/2015 04:08:03 PM) (Source: ATIeRecord)(User: )
Description: 
 
Error: (10/09/2015 12:27:02 AM) (Source: Application Hang)(User: )
Description: LiveComm.exe17.5.9600.20911137401d101bafe2789e64294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe537a2930-6dee-11e5-833c-bc8556f37c02microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
 
 
CodeIntegrity Errors:
===================================
  Date: 2015-01-21 19:40:00.089
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\WindowsApps\59049JonathanToh.Torchlight_1.0.0.1_neutral__59yemesmzwar8\TorchLight.exe that did not meet the Store signing level requirements.
 
 
=========================== Installed Programs ============================
 
µTorrent (HKCU\...\uTorrent) (Version: 3.4.4.40911 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
8085 Simulator (HKLM-x32\...\{79051F9F-F5AE-44FC-9C5F-725CCC4684B4}) (Version: 1.0.2 - J-Tech Softwares)
8085 simulator by vikas enterprises® (HKLM-x32\...\8085 simulator by vikas enterprises®) (Version:  - )
Adobe Flash Player 17 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.185 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.6.636 - Adobe Systems, Inc.)
AMD Catalyst Install Manager (HKLM\...\{EA5160BE-7558-2716-01DB-FFE7F316957A}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
Android SDK Tools (HKLM-x32\...\Android SDK Tools) (Version: 1.16 - Google Inc.)
Any Send 1.0 (x64) (HKLM\...\{BAB72871-C133-4628-9B56-6B17E90389E1}) (Version: 1.0.0 - Adylitica) Hidden
Any Send for Windows (HKLM-x32\...\{51142af8-bc9b-44c1-b78d-9e6c453b3022}) (Version: 1.0.0 - Adylitica, Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Belarc Advisor 8.4 (HKLM-x32\...\Belarc Advisor) (Version: 8.4.0.0 - Belarc Inc.)
BitTorrent (HKCU\...\BitTorrent) (Version: 7.9.2.32128 - BitTorrent Inc.)
BlueJ (HKLM-x32\...\{7D66971C-652B-4065-A6B1-B3EE313C254B}) (Version: 3.1.1 - BlueJ Team)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3.5901 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.3.2608 - CyberLink Corp.)
Cyberlink PhotoDirector (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.3711 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.2527 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.3.2606 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.8.5004 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.6.6117 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Distributed Computing Experiment (HKLM\...\Distributed Computing Experiment) (Version:  - )
DustApps (HKLM-x32\...\DustApps) (Version: 1.35.11.26 - DustApps)
EaseUS Data Recovery Wizard 7.0 (HKLM-x32\...\EaseUS Data Recovery Wizard 7.0_is1) (Version:  - EaseUS)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
eSupport UndeletePlus 3.0.2.406 (HKLM-x32\...\eSupport UndeletePlus_is1) (Version:  - Copyright © 2011 eSupport.com • All Rights Reserved)
Free Alarm Clock 3.1.0 (HKLM-x32\...\{8ED5A2F1-338F-4608-8AF7-BCD1ADC1E1F7}_is1) (Version: 3.1 - Comfort Software Group)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{ADA8583A-C20B-414B-8CB7-3AA7A89F7952}) (Version: 7.1.4.1529 - Google)
Google Photos Backup (HKCU\...\Google Photos Backup) (Version: 1.1.1.256 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.28.15 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
Grammarly for Microsoft Office Suite (HKLM\...\{F8ADEE0D-3143-4E71-8CCD-9423105A6199}_is1) (Version: 6.2.46.5085 - Grammarly)
GTK2-Runtime (HKLM-x32\...\GTK2-Runtime) (Version:  - )
Hewlett-Packard ACLM.NET v1.2.1.1 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{54CE68A8-4F2D-4328-B1F7-D6C720405F7F}) (Version: 4.2.9.1 - Hewlett-Packard Company)
HP CoolSense (HKLM-x32\...\{11AF9A96-6D83-4C3B-8DCB-16EA2A358E3F}) (Version: 2.10.51 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{F2481209-98FE-4943-8903-90D19E1B7062}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Quick Start (HKLM-x32\...\{574F0207-8E98-46CD-8F79-318348C98C46}) (Version: 1.0.4660.30220 - Hewlett-Packard)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.6317.4309 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}) (Version: 7.0.39.15 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{96D12EC9-720B-45FB-904C-36D6307A1C76}) (Version: 11.51.0048 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{E35601C0-BA8E-4F32-919A-C7EF4CA81F67}) (Version: 11.51.0048 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{C27D60E4-3132-45A3-A71A-E3BD1DA3F794}) (Version: 1.0.4 - Hewlett-Packard Company)
HP Utility Center (HKLM\...\{73237EBB-B26F-4628-8754-4EFE563D72E9}) (Version: 2.1.5 - Hewlett-Packard Company)
HP Wireless Button Driver (HKLM-x32\...\{30B2D1D8-0A07-4B71-9553-0710C5D31E35}) (Version: 1.1.2.1 - Hewlett-Packard Company)
Image2Ico (HKLM-x32\...\Image2Ico_is1) (Version:  - Helmsman, Inc.)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.30.1349 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.0.7.1002 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.63463 - Intel Corporation)
J2SE Development Kit 5.0 Update 1 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0150010}) (Version: 1.5.0.10 - Sun Microsystems, Inc.)
J2SE Runtime Environment 5.0 Update 1 (HKLM-x32\...\{3248F0A8-6813-11D6-A77B-00B0D0150010}) (Version: 1.5.0.10 - Sun Microsystems, Inc.)
JPG to Icon Converter 1.0 (HKLM-x32\...\JPG to Icon Converter_is1) (Version:  - qweas.com/freeware)
LogMeIn Hamachi (HKLM-x32\...\{32CB6BDF-F465-4BE8-9B57-1422057B61B9}) (Version: 2.2.0.266 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.266 - LogMeIn, Inc.)
Mah Jong Medley (HKLM-x32\...\WTA-e6d8f0e0-6eae-4f35-aead-ed39a8a9a3f9) (Version: 2.2.0.95 - WildTangent) Hidden
Mahjongg Dimensions Deluxe: Tiles in Time (HKLM-x32\...\WTA-eb883406-a052-4c6a-8796-d7d395944c8e) (Version: 2.2.0.98 - WildTangent) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MinGW-Get version 0.5-beta-20120426-1 (HKLM-x32\...\{AC2C1BDB-1E91-4F94-B99C-E716FE2E9C75}_is1) (Version: 0.5-beta-20120426-1 - MinGW)
Mobile Partner (HKLM-x32\...\Mobile Partner) (Version: 23.001.07.06.910 - Huawei Technologies Co.,Ltd)
Movie Maker (HKLM-x32\...\{5BABDA39-61CF-41EE-992D-4054B6649A9B}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{ED6C77F9-4D7E-447C-9EC0-9A212D075535}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 41.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 41.0 (x86 en-US)) (Version: 41.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.0.5738 - Mozilla)
Norton Internet Security (HKLM-x32\...\NIS) (Version: 22.5.4.24 - Symantec Corporation)
OEM Application Profile (HKLM-x32\...\{C89A97B6-F991-EBB5-77B7-927BCF420EBE}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Opera Stable 28.0.1750.51 (HKLM-x32\...\Opera 28.0.1750.51) (Version: 28.0.1750.51 - Opera Software ASA)
Pandora Service (HKLM-x32\...\4F6D5E84-5826-4394-9F40-3A9A19165651_is1) (Version:  - Pandora.TV)
PandoraRecovery (Remove Only) (HKLM-x32\...\PandoraRecovery) (Version:  - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Plants vs. Zombies - Game of the Year (HKLM-x32\...\WTA-cbba5459-23b0-44ab-a569-e213a6533385) (Version: 2.2.0.98 - WildTangent) Hidden
Potplayer-64 Bits (HKLM\...\PotPlayer64) (Version:  - Daum Kakao Corp.)
PX Profile Update (HKLM-x32\...\{CAE1460A-D3C3-9946-5D04-5873A05E6688}) (Version: 1.00.1. - AMD) Hidden
Ralink Bluetooth Stack (HKLM\...\{C079427A-BB28-5168-3DB1-DC6608D226D4}) (Version: 11.0.748.2 - Mediatek)
Ralink RT3290 802.11bgn Wi-Fi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.45.0 - Mediatek)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.7.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6856 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{BCDA54F6-C4B6-4519-A09E-FA064A6B4098}) (Version: 1.1.9200.007 - Realtek Semiconductor Corp.)
RSLogix 500 English 9.00.00 (CPR 9) (HKLM-x32\...\{4162E1D7-135C-4C55-8E05-93311EA74DD3}) (Version: 9.00.00 - Rockwell Automation Inc)
Sense (HKLM-x32\...\Sense) (Version: 1.32.153.0 - Object Browser)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.103 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.3.12.1 - Synaptics Incorporated)
Tata Photon+ (HKLM-x32\...\Tata Photon+) (Version: 11.030.01.28.628 - Huawei Technologies Co.,Ltd)
The KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 3.6.0.87 - KMP Media co., Ltd)
TurboC++ 3.0.7.7c (HKLM-x32\...\TurboC++) (Version: 3.0.7.7c - NeutroNVegetOStrikeR.DbZ)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
Windows Driver Package - Silicon Laboratories (silabenm) Ports  (10/18/2013 6.6.1.0) (HKLM\...\F92C2D6CB4EA0EE558BDF5F8BDD69083DFC62179) (Version: 10/18/2013 6.6.1.0 - Silicon Laboratories)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version:  - )
Wondershare Video Converter Platinum(Build 5.2.3.2) (HKLM-x32\...\Wondershare Video Converter Platinum_is1) (Version:  - Wondershare Software)
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 69%
Total physical RAM: 3988.27 MB
Available physical RAM: 1207.47 MB
Total Virtual: 6364.27 MB
Available Virtual: 2736.87 MB
 
========================= Partitions: =====================================
 
1 Drive c: (Windows) (Fixed) (Total:692.79 GB) (Free:64.31 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:24.09 GB) (Free:2.44 GB) NTFS
4 Drive f: (New Volume) (Fixed) (Total:23.62 GB) (Free:4.57 GB) NTFS
5 Drive k: (New Volume) (Fixed) (Total:189.8 GB) (Free:2.8 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\KbleepIJANANDLAP
 
Administrator            Guest                    Kbleepij                  
 
 
**** End of log ****
 


#5 Kshitij

Kshitij

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 10 October 2015 - 02:56 PM

00:41:39.0380 0x1fb8  TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
00:41:39.0381 0x1fb8  UEFI system
00:41:45.0902 0x1fb8  ============================================================
00:41:45.0902 0x1fb8  Current date / time: 2015/10/11 00:41:45.0902
00:41:45.0902 0x1fb8  SystemInfo:
00:41:45.0902 0x1fb8  
00:41:45.0903 0x1fb8  OS Version: 6.3.9600 ServicePack: 0.0
00:41:45.0903 0x1fb8  Product type: Workstation
00:41:45.0903 0x1fb8  ComputerName: KbleepIJANANDLAP
00:41:45.0903 0x1fb8  UserName: Kbleepij
00:41:45.0903 0x1fb8  Windows directory: C:\WINDOWS
00:41:45.0903 0x1fb8  System windows directory: C:\WINDOWS
00:41:45.0903 0x1fb8  Running under WOW64
00:41:45.0903 0x1fb8  Processor architecture: Intel x64
00:41:45.0903 0x1fb8  Number of processors: 4
00:41:45.0903 0x1fb8  Page size: 0x1000
00:41:45.0903 0x1fb8  Boot type: Normal boot
00:41:45.0903 0x1fb8  ============================================================
00:41:48.0625 0x1fb8  KLMD registered as C:\WINDOWS\system32\drivers\77257230.sys
00:41:53.0860 0x1fb8  System UUID: {B1C9C6BA-91B6-1C3C-408D-48868E3640FC}
00:42:01.0608 0x1fb8  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:42:01.0651 0x1fb8  ============================================================
00:42:01.0651 0x1fb8  \Device\Harddisk0\DR0:
00:42:01.0652 0x1fb8  GPT partitions:
00:42:01.0652 0x1fb8  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {8D7FC5FE-24D6-4FA6-9A60-09A4AA1CFD3B}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000
00:42:01.0652 0x1fb8  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {CE1C4DCF-A396-485B-BF2B-25BD1051E2C8}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x82000
00:42:01.0652 0x1fb8  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {AC571137-01F5-4280-9A83-39D52529E42F}, Name: Microsoft reserved partition, StartLBA 0x14A800, BlocksNum 0x40000
00:42:01.0653 0x1fb8  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {EA5BC6FE-3A54-4FA4-9E23-D3509E2E18A8}, Name: Basic data partition, StartLBA 0x18A800, BlocksNum 0x56992800
00:42:01.0653 0x1fb8  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {0A45A7E3-7424-4DE9-8434-A9A032FF0D79}, Name: , StartLBA 0x56B1D000, BlocksNum 0xE1000
00:42:01.0653 0x1fb8  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F819AE15-FF7B-4959-9E52-F63C160D17ED}, Name: Basic data partition, StartLBA 0x56BFE000, BlocksNum 0x17B9A000
00:42:01.0653 0x1fb8  \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {7A9034C2-3419-40C4-B27F-5DFE551D16F3}, Name: Basic data partition, StartLBA 0x6E798800, BlocksNum 0x2F3E800
00:42:01.0653 0x1fb8  \Device\Harddisk0\DR0\Partition8: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {39940F10-3512-4067-8F3A-C33E0FD8E21E}, Name: Basic data partition, StartLBA 0x716D7800, BlocksNum 0x302F000
00:42:01.0653 0x1fb8  MBR partitions:
00:42:01.0653 0x1fb8  ============================================================
00:42:01.0674 0x1fb8  C: <-> \Device\Harddisk0\DR0\Partition4
00:42:01.0710 0x1fb8  D: <-> \Device\Harddisk0\DR0\Partition8
00:42:01.0749 0x1fb8  F: <-> \Device\Harddisk0\DR0\Partition7
00:42:01.0785 0x1fb8  K: <-> \Device\Harddisk0\DR0\Partition6
00:42:01.0785 0x1fb8  ============================================================
00:42:01.0785 0x1fb8  Initialize success
00:42:01.0785 0x1fb8  ============================================================
00:42:04.0900 0x20f4  ============================================================
00:42:04.0900 0x20f4  Scan started
00:42:04.0900 0x20f4  Mode: Manual; 
00:42:04.0900 0x20f4  ============================================================
00:42:04.0900 0x20f4  KSN ping started
00:42:07.0573 0x20f4  KSN ping finished: true
00:42:14.0376 0x20f4  ================ Scan system memory ========================
00:42:14.0376 0x20f4  System memory - ok
00:42:14.0377 0x20f4  ================ Scan services =============================
00:42:14.0568 0x20f4  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
00:42:14.0580 0x20f4  1394ohci - ok
00:42:14.0644 0x20f4  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
00:42:14.0649 0x20f4  3ware - ok
00:42:14.0705 0x20f4  [ 899B7E724BF19F17978B6A37B864A277, F7D166DC5F7642D4B834B1E0D956929BA94F3E4D402989FC1A681A08FA1F86B6 ] Accelerometer   C:\WINDOWS\system32\DRIVERS\Accelerometer.sys
00:42:14.0708 0x20f4  Accelerometer - ok
00:42:14.0778 0x20f4  [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
00:42:14.0811 0x20f4  ACPI - ok
00:42:14.0826 0x20f4  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
00:42:14.0830 0x20f4  acpiex - ok
00:42:14.0865 0x20f4  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
00:42:14.0867 0x20f4  acpipagr - ok
00:42:14.0904 0x20f4  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
00:42:14.0906 0x20f4  AcpiPmi - ok
00:42:14.0914 0x20f4  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
00:42:14.0916 0x20f4  acpitime - ok
00:42:15.0031 0x20f4  [ 013697369EAFFA675D0671607F036020, 65611C775AC4681E46A6565E5A7A4FF3363C66EBDC98C4C58AFB365D40BE23B6 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:42:15.0035 0x20f4  AdobeARMservice - ok
00:42:15.0104 0x20f4  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
00:42:15.0135 0x20f4  ADP80XX - ok
00:42:15.0174 0x20f4  [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
00:42:15.0183 0x20f4  AeLookupSvc - ok
00:42:15.0254 0x20f4  [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
00:42:15.0258 0x20f4  AERTFilters - ok
00:42:15.0297 0x20f4  [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
00:42:15.0321 0x20f4  AFD - ok
00:42:15.0363 0x20f4  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
00:42:15.0368 0x20f4  agp440 - ok
00:42:15.0394 0x20f4  [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
00:42:15.0407 0x20f4  ahcache - ok
00:42:15.0436 0x20f4  [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG             C:\WINDOWS\System32\alg.exe
00:42:15.0442 0x20f4  ALG - ok
00:42:15.0490 0x20f4  [ 3422B50A39334D276528D37E2F9E18A9, 1B3AA82D565D2396DEE83FB2515C0044997D1038AA5EFCE67F112BE3C2540847 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
00:42:15.0511 0x20f4  AMD External Events Utility - ok
00:42:15.0537 0x20f4  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
00:42:15.0543 0x20f4  AmdK8 - ok
00:42:16.0091 0x20f4  [ 7D88903B60748051A4DA0334C9EE87CA, E170A2136B27CC2DCDB73CCE7F242ABB3ED6453C6EFFC3626FFE995337AB883E ] amdkmdag        C:\WINDOWS\system32\DRIVERS\atikmdag.sys
00:42:16.0700 0x20f4  amdkmdag - ok
00:42:16.0776 0x20f4  [ 781E359349FD4059255E7C7986D680E7, AAD10E1E8AF9FF2CFDCD6DB6976228F8F48BECFE5B09AFB7D591FE0997A12CE6 ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
00:42:16.0814 0x20f4  amdkmdap - ok
00:42:16.0839 0x20f4  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
00:42:16.0846 0x20f4  AmdPPM - ok
00:42:16.0879 0x20f4  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
00:42:16.0897 0x20f4  amdsata - ok
00:42:16.0921 0x20f4  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
00:42:16.0931 0x20f4  amdsbs - ok
00:42:16.0949 0x20f4  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
00:42:16.0951 0x20f4  amdxata - ok
00:42:17.0006 0x20f4  [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
00:42:17.0010 0x20f4  AppHostSvc - ok
00:42:17.0035 0x20f4  [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID           C:\WINDOWS\system32\drivers\appid.sys
00:42:17.0039 0x20f4  AppID - ok
00:42:17.0077 0x20f4  [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
00:42:17.0080 0x20f4  AppIDSvc - ok
00:42:17.0120 0x20f4  [ 680BFB820C5A943AB709BAA2B1EF27F2, A51D2A7976A762FE470C13C6D1BA0319A0FB19C9E66BF02AA44F83EAEC7130F8 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
00:42:17.0125 0x20f4  Appinfo - ok
00:42:17.0184 0x20f4  [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
00:42:17.0206 0x20f4  AppReadiness - ok
00:42:17.0288 0x20f4  [ 573542B5E97772021B73E854DA861DAA, C3FD00FA28060F8D7CDFD455BBB5FF8239CB76DDFFF2BDAE6AA944674DD993D3 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
00:42:17.0340 0x20f4  AppXSvc - ok
00:42:17.0367 0x20f4  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
00:42:17.0372 0x20f4  arcsas - ok
00:42:17.0501 0x20f4  [ AA2E8C6B8D7EA7BAF04C988801927F48, 4B82043F1B9C67CDCDC71102F7AEE05EEA8F9775A5CB33AE80F4DCDB42521C40 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
00:42:17.0534 0x20f4  aspnet_state - ok
00:42:17.0570 0x20f4  [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
00:42:17.0572 0x20f4  AsyncMac - ok
00:42:17.0594 0x20f4  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
00:42:17.0608 0x20f4  atapi - ok
00:42:17.0659 0x20f4  [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
00:42:17.0670 0x20f4  AudioEndpointBuilder - ok
00:42:17.0721 0x20f4  [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
00:42:17.0758 0x20f4  Audiosrv - ok
00:42:17.0787 0x20f4  [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
00:42:17.0792 0x20f4  AxInstSV - ok
00:42:17.0851 0x20f4  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
00:42:17.0872 0x20f4  b06bdrv - ok
00:42:17.0904 0x20f4  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
00:42:17.0907 0x20f4  BasicDisplay - ok
00:42:17.0923 0x20f4  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
00:42:17.0926 0x20f4  BasicRender - ok
00:42:17.0972 0x20f4  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
00:42:17.0974 0x20f4  bcmfn2 - ok
00:42:18.0021 0x20f4  [ 77D760E9B477C21487C171F561497F98, 2393D466CEC863C771C5BB4CD81B251635DC084386134B8E13F74F3E1C6D68DF ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
00:42:18.0036 0x20f4  BDESVC - ok
00:42:18.0073 0x20f4  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
00:42:18.0074 0x20f4  Beep - ok
00:42:18.0147 0x20f4  [ 7BCB00EA702F78EC74CD9699D85CE80B, 17241ADAA13051B560DB9FA9079CAE6321D5B49788B596C125DC912443B00421 ] BFE             C:\WINDOWS\System32\bfe.dll
00:42:18.0180 0x20f4  BFE - ok
00:42:18.0464 0x20f4  [ 3E2882C7D02E34D5528BDDECD8CEF930, 39AEB34BD5BFD0BE6C8D0E37D5D5912B76B87A442C2AD91AC3E5F709D73C809C ] BHDrvx64        C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\BASHDefs\20151005.001\BHDrvx64.sys
00:42:18.0568 0x20f4  BHDrvx64 - ok
00:42:18.0674 0x20f4  [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS            C:\WINDOWS\System32\qmgr.dll
00:42:18.0808 0x20f4  BITS - ok
00:42:18.0844 0x20f4  [ D23AFE4382877E685B87921112C7D8E7, 5EA7F3083C595C8CAD6A65BB6218FFACF64D9BBC985C86FBA4A0E5639B47AB12 ] BlueletAudio    C:\WINDOWS\system32\DRIVERS\blueletaudio.sys
00:42:18.0857 0x20f4  BlueletAudio - ok
00:42:18.0972 0x20f4  [ 9EA0331B0BE5FBBB252348E0CF55D109, 13E1DCA616D1DB720B1F401E4E72D03B343C40505CBFA30457ED584C94306718 ] BlueSoleilCS    C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe
00:42:19.0038 0x20f4  BlueSoleilCS - ok
00:42:19.0060 0x20f4  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
00:42:19.0066 0x20f4  bowser - ok
00:42:19.0111 0x20f4  [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
00:42:19.0124 0x20f4  BrokerInfrastructure - ok
00:42:19.0150 0x20f4  [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser         C:\WINDOWS\System32\browser.dll
00:42:19.0158 0x20f4  Browser - ok
00:42:19.0202 0x20f4  [ 548744FF67C654C378FCA0C897CCB3C0, DC8ADAFDC93CF36EF45EDF2AEA8ECBFD4A6CA5B76E0B6F9AAD04DB411C1346F9 ] BsHelpCS        C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe
00:42:19.0208 0x20f4  BsHelpCS - ok
00:42:19.0244 0x20f4  [ 34AAF6FD68B8403E76F0D08A8C1C1DA3, 2255F88C04E89AA80231B67287D81271DC226007F01CFCB55EB1EBF640C6FCF5 ] BtAudioBusSrv   C:\WINDOWS\System32\Drivers\BtAudioBus.sys
00:42:19.0247 0x20f4  BtAudioBusSrv - ok
00:42:19.0283 0x20f4  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
00:42:19.0286 0x20f4  BthAvrcpTg - ok
00:42:19.0317 0x20f4  [ 1104A31260CCF4318C884E0AE6C513BF, A8F83B558944DEF0F84414A11DC3CB90C3A92377B46760EC0A9B8BC22FB0D5C7 ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
00:42:19.0320 0x20f4  BthEnum - ok
00:42:19.0355 0x20f4  [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
00:42:19.0359 0x20f4  BthHFEnum - ok
00:42:19.0397 0x20f4  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
00:42:19.0399 0x20f4  bthhfhid - ok
00:42:19.0407 0x20f4  BthHFSrv - ok
00:42:19.0447 0x20f4  [ CE3921CC0814574A699628776B3AE301, 63FF436E5FB3D3FF83191191425F124E5F8551E33F3AC222495EC2E39E44E63F ] BthL2caScoIfSrv C:\WINDOWS\System32\Drivers\BtL2caScoIf.sys
00:42:19.0450 0x20f4  BthL2caScoIfSrv - ok
00:42:19.0497 0x20f4  [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum       C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
00:42:19.0508 0x20f4  BthLEEnum - ok
00:42:19.0519 0x20f4  [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
00:42:19.0523 0x20f4  BTHMODEM - ok
00:42:19.0550 0x20f4  [ FEA8FC81431AD93F44D5FBFBBF096AA7, C0581DF6B2AD24836604B083F4866F93A3F4D9091D382029948A5E6221EDF788 ] BthPan          C:\WINDOWS\System32\drivers\bthpan.sys
00:42:19.0557 0x20f4  BthPan - ok
00:42:19.0673 0x20f4  [ 0CC00ADC1B84C93FB46E1A0974E956E1, 64C759244651B916901F4D0C82C3D6034532A20714A72FD26FC9D050B99E230B ] BTHPORT         C:\WINDOWS\System32\Drivers\BTHport.sys
00:42:19.0730 0x20f4  BTHPORT - ok
00:42:19.0777 0x20f4  [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv         C:\WINDOWS\system32\bthserv.dll
00:42:19.0782 0x20f4  bthserv - ok
00:42:19.0823 0x20f4  [ 08EA90955AED2D959EE67DF6EDF0E2B6, 0A70AA67E5DD24C473C66A570C0FEBA9D398A0F0AD8386FE05D01C4D16346968 ] BTHUSB          C:\WINDOWS\System32\Drivers\BTHUSB.sys
00:42:19.0829 0x20f4  BTHUSB - ok
00:42:19.0868 0x20f4  [ 6F9C5E08B53E9AB0C1AE380B87F41A9C, 3B6565E6463168C8FCAE631D569167F79E9DD53D8850760920A5ADE018040312 ] btUrbFilterDrv  C:\WINDOWS\System32\Drivers\IvtUrbBtFlt.sys
00:42:19.0872 0x20f4  btUrbFilterDrv - ok
00:42:20.0186 0x20f4  [ 5A1C7DBDDB001BC6F1D1720E655445E2, 07A766C804D0709936FF18A2F67C49D6499BEF9CEEB1EF69F654A35268A11027 ] ccSet_NIS       C:\WINDOWS\system32\drivers\NISx64\1605040.018\ccSetx64.sys
00:42:20.0204 0x20f4  ccSet_NIS - ok
00:42:20.0228 0x20f4  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
00:42:20.0235 0x20f4  cdfs - ok
00:42:20.0441 0x20f4  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
00:42:20.0462 0x20f4  cdrom - ok
00:42:20.0587 0x20f4  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
00:42:20.0609 0x20f4  CertPropSvc - ok
00:42:20.0651 0x20f4  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
00:42:20.0656 0x20f4  circlass - ok
00:42:20.0711 0x20f4  [ 8EB7E70C2D348FE2476A2E3F2D585E3D, 2B5D407FACF1D049261026CC552A7C93B028A661B0F4E959815EAE7670054127 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
00:42:20.0727 0x20f4  CLFS - ok
00:42:20.0776 0x20f4  [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive  C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
00:42:20.0781 0x20f4  CLVirtualDrive - ok
00:42:20.0794 0x20f4  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
00:42:20.0796 0x20f4  CmBatt - ok
00:42:20.0870 0x20f4  [ 5E5AB950693F2C6D6ACBEE3A74697ED7, 3790A7DD0AC65F47A697A577744FDFA4CC1CA3422884C84E499F97AC91BA84F3 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
00:42:20.0893 0x20f4  CNG - ok
00:42:20.0923 0x20f4  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
00:42:20.0925 0x20f4  CompositeBus - ok
00:42:20.0935 0x20f4  COMSysApp - ok
00:42:20.0968 0x20f4  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
00:42:20.0972 0x20f4  condrv - ok
00:42:21.0133 0x20f4  [ D8724B606616B2B75AF54096119580F5, 53E1DEF9F966FDE5898759A33FB62B5062A941E97B235D6F6EF79A5AD1283BDE ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
00:42:21.0191 0x20f4  cphs - ok
00:42:21.0239 0x20f4  [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
00:42:21.0249 0x20f4  CryptSvc - ok
00:42:21.0297 0x20f4  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\WINDOWS\system32\drivers\dam.sys
00:42:21.0303 0x20f4  dam - ok
00:42:21.0398 0x20f4  [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
00:42:21.0439 0x20f4  DcomLaunch - ok
00:42:21.0523 0x20f4  [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
00:42:21.0553 0x20f4  defragsvc - ok
00:42:21.0610 0x20f4  [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
00:42:21.0629 0x20f4  DeviceAssociationService - ok
00:42:21.0672 0x20f4  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
00:42:21.0695 0x20f4  DeviceInstall - ok
00:42:21.0730 0x20f4  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
00:42:21.0736 0x20f4  Dfsc - ok
00:42:21.0778 0x20f4  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
00:42:21.0789 0x20f4  dg_ssudbus - ok
00:42:21.0845 0x20f4  [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
00:42:21.0861 0x20f4  Dhcp - ok
00:42:21.0959 0x20f4  [ 21EDAD8188372C912B7BB9B1C6CB0D38, 4A102745DE8A2A82D2C069B30503BF9FF2312A035A82854F84EF9C27E3533CEE ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
00:42:22.0022 0x20f4  DiagTrack - ok
00:42:22.0051 0x20f4  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\WINDOWS\system32\drivers\disk.sys
00:42:22.0057 0x20f4  disk - ok
00:42:22.0076 0x20f4  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
00:42:22.0078 0x20f4  dmvsc - ok
00:42:22.0128 0x20f4  [ 33ADFB7453BF3271463712C4BCE61AD1, A1DB30F874BA7B2C4C653494D70B46B94BF7D39D0DD8559F6CA7A14B676FD617 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
00:42:22.0139 0x20f4  Dnscache - ok
00:42:22.0174 0x20f4  [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
00:42:22.0186 0x20f4  dot3svc - ok
00:42:22.0222 0x20f4  [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS             C:\WINDOWS\system32\dps.dll
00:42:22.0230 0x20f4  DPS - ok
00:42:22.0255 0x20f4  [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
00:42:22.0256 0x20f4  drmkaud - ok
00:42:22.0295 0x20f4  [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
00:42:22.0305 0x20f4  DsmSvc - ok
00:42:22.0401 0x20f4  [ E1BB0B6F00F470B451AB45EA13EBA0B3, 3A2FC2175B69A5EB98D6C2D563DBFDCB320647AB87A14E47FAE800423DCACDAB ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
00:42:22.0485 0x20f4  DXGKrnl - ok
00:42:22.0514 0x20f4  [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
00:42:22.0530 0x20f4  Eaphost - ok
00:42:22.0717 0x20f4  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
00:42:22.0885 0x20f4  ebdrv - ok
00:42:22.0976 0x20f4  [ 93EA893A8C2C561648A559E48C723412, 14F9AD8BCF423BC40F7B3D2D7BC0F795CD3C54800C854873BD170ADF2A735B64 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
00:42:23.0010 0x20f4  eeCtrl - ok
00:42:23.0037 0x20f4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS             C:\WINDOWS\System32\lsass.exe
00:42:23.0041 0x20f4  EFS - ok
00:42:23.0082 0x20f4  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
00:42:23.0101 0x20f4  EhStorClass - ok
00:42:23.0119 0x20f4  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
00:42:23.0127 0x20f4  EhStorTcgDrv - ok
00:42:23.0159 0x20f4  [ 8400C9E33B68C556BF63AEF490EB145C, A840DF1A27C935DD427E53C5D2FFFE79E612D0B4074CE26AA992DA62D4925806 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
00:42:23.0166 0x20f4  EraserUtilRebootDrv - ok
00:42:23.0188 0x20f4  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
00:42:23.0190 0x20f4  ErrDev - ok
00:42:23.0272 0x20f4  [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem     C:\WINDOWS\system32\es.dll
00:42:23.0298 0x20f4  EventSystem - ok
00:42:23.0348 0x20f4  [ 334C907536E815E56CD13108A6D5FB9D, 0CEA0A330607B44A4CF0F0D5C92E91C7E2157404410F651CC4F8BA14A74523AE ] ewusbmbb        C:\WINDOWS\system32\DRIVERS\ewusbwwan.sys
00:42:23.0365 0x20f4  ewusbmbb - ok
00:42:23.0390 0x20f4  [ 86F7951BBCEE4A86E79A97306BD14318, 84B52A0392DA53ED71A2C4D483DD93DDF552BF8AC764C7BD47BE0EB58C7C8219 ] ew_hwusbdev     C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys
00:42:23.0396 0x20f4  ew_hwusbdev - ok
00:42:23.0419 0x20f4  [ 55E0EDA185869F7EA67EA97FD0655B39, D4A51E383102AA48F022EFCA08FAC389336A22C1DF60E17815117EFA60716964 ] ew_usbenumfilter C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys
00:42:23.0421 0x20f4  ew_usbenumfilter - ok
00:42:23.0465 0x20f4  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
00:42:23.0475 0x20f4  exfat - ok
00:42:23.0499 0x20f4  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
00:42:23.0508 0x20f4  fastfat - ok
00:42:23.0578 0x20f4  [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax             C:\WINDOWS\system32\fxssvc.exe
00:42:23.0618 0x20f4  Fax - ok
00:42:23.0643 0x20f4  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
00:42:23.0646 0x20f4  fdc - ok
00:42:23.0674 0x20f4  [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
00:42:23.0678 0x20f4  fdPHost - ok
00:42:23.0706 0x20f4  [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
00:42:23.0710 0x20f4  FDResPub - ok
00:42:23.0745 0x20f4  [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
00:42:23.0753 0x20f4  fhsvc - ok
00:42:23.0796 0x20f4  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
00:42:23.0800 0x20f4  FileInfo - ok
00:42:23.0818 0x20f4  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
00:42:23.0821 0x20f4  Filetrace - ok
00:42:23.0839 0x20f4  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
00:42:23.0841 0x20f4  flpydisk - ok
00:42:23.0887 0x20f4  [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
00:42:23.0905 0x20f4  FltMgr - ok
00:42:24.0015 0x20f4  [ 1E93CBB75D167CDF85501A8C790097A8, C9E5DD090C94E7855939CE1F416460DB408EFF897C2CD52E0D52A734D8ED18B7 ] FontCache       C:\WINDOWS\system32\FntCache.dll
00:42:24.0090 0x20f4  FontCache - ok
00:42:24.0197 0x20f4  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:42:24.0202 0x20f4  FontCache3.0.0.0 - ok
00:42:24.0237 0x20f4  [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
00:42:24.0243 0x20f4  FsDepends - ok
00:42:24.0276 0x20f4  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
00:42:24.0291 0x20f4  Fs_Rec - ok
00:42:24.0358 0x20f4  [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
00:42:24.0393 0x20f4  fvevol - ok
00:42:24.0417 0x20f4  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
00:42:24.0420 0x20f4  FxPPM - ok
00:42:24.0438 0x20f4  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
00:42:24.0443 0x20f4  gagp30kx - ok
00:42:24.0483 0x20f4  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
00:42:24.0486 0x20f4  gencounter - ok
00:42:24.0523 0x20f4  globalUpdate - ok
00:42:24.0531 0x20f4  globalUpdatem - ok
00:42:24.0583 0x20f4  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
00:42:24.0592 0x20f4  GPIOClx0101 - ok
00:42:24.0706 0x20f4  [ 0D03F87D4FF4ADBAF8336DD80548155A, BC10CFA88EA2F41A8D96CB810B7953A4C168B79273A3E804A9F020F49AB58CD3 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
00:42:24.0777 0x20f4  gpsvc - ok
00:42:24.0863 0x20f4  [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:42:24.0875 0x20f4  gupdate - ok
00:42:24.0887 0x20f4  [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:42:24.0894 0x20f4  gupdatem - ok
00:42:24.0930 0x20f4  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
00:42:24.0950 0x20f4  gusvc - ok
00:42:25.0003 0x20f4  [ 186AD2DF9B3323DF4637A5EA65B6F49A, C081755F389A5FEDE9F82320CCF63697B0D732F7E2A621ABF1D0D2563214E40F ] Hamachi         C:\WINDOWS\system32\DRIVERS\Hamdrv.sys
00:42:25.0008 0x20f4  Hamachi - ok
00:42:25.0036 0x20f4  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
00:42:25.0043 0x20f4  HDAudBus - ok
00:42:25.0093 0x20f4  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
00:42:25.0095 0x20f4  HidBatt - ok
00:42:25.0139 0x20f4  [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
00:42:25.0145 0x20f4  HidBth - ok
00:42:25.0168 0x20f4  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
00:42:25.0174 0x20f4  hidi2c - ok
00:42:25.0221 0x20f4  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
00:42:25.0229 0x20f4  HidIr - ok
00:42:25.0270 0x20f4  [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv         C:\WINDOWS\system32\hidserv.dll
00:42:25.0274 0x20f4  hidserv - ok
00:42:25.0318 0x20f4  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
00:42:25.0321 0x20f4  HidUsb - ok
00:42:25.0361 0x20f4  [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
00:42:25.0369 0x20f4  hkmsvc - ok
00:42:25.0464 0x20f4  [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
00:42:25.0486 0x20f4  HomeGroupListener - ok
00:42:25.0578 0x20f4  [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
00:42:25.0599 0x20f4  HomeGroupProvider - ok
00:42:25.0718 0x20f4  [ 77E81E788CC63E65272A7D247F441505, EA57947495A6FD5B6FCC06AD396AEEEEE44AA5EB924B1A4D71C81B1265120F7B ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
00:42:25.0726 0x20f4  HP Support Assistant Service - ok
00:42:25.0786 0x20f4  [ D104FF402FC3DDB686E6DEF00334DB26, 6CCE56587C02ECE474C6BF959C4A6F752A1FF0B718FBE8EE4FD9755313A207C1 ] hpdskflt        C:\WINDOWS\system32\DRIVERS\hpdskflt.sys
00:42:25.0843 0x20f4  hpdskflt - ok
00:42:25.0975 0x20f4  [ 9B7EDD3FE7C211C36E921D34D18A3A0A, 03A450F85A042F9668D1560FA2B8B89783568C87CDB1A8685CDA2AC9FE3761C3 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
00:42:26.0070 0x20f4  hpqwmiex - ok
00:42:26.0096 0x20f4  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
00:42:26.0108 0x20f4  HpSAMD - ok
00:42:26.0121 0x20f4  [ 55FFCBB036D7BE4BCA6FA1421203A27F, 5BB865FC631390F59AF5F2452D4D2DA47E34A49E194C8010E942F5A2013F3895 ] hpsrv           C:\WINDOWS\system32\Hpservice.exe
00:42:26.0124 0x20f4  hpsrv - ok
00:42:26.0263 0x20f4  [ A76C371A65AF0CA1E7F9D85A5722E643, C76ABB51A80213B7363C02AC5561641E2A24477546316BF448750D256977A3BF ] HPWMISVC        C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
00:42:26.0318 0x20f4  HPWMISVC - ok
00:42:26.0437 0x20f4  [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
00:42:26.0506 0x20f4  HTTP - ok
00:42:26.0536 0x20f4  [ CBCE5CE65C03E86AAAC565D4D56AF7BB, 5E3B86C8CBBD80B80D7314E6E88378FE2B414936544636C16E9F7DA6264A6709 ] huawei_cdcacm   C:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys
00:42:26.0544 0x20f4  huawei_cdcacm - ok
00:42:26.0601 0x20f4  [ 1642C62F1FD5E1FF44608283994A7BB8, 4646AA0EF74A2AEE6C17D12206FCFE1E84D6FA712AD95A171F16D11BC9D3F11A ] huawei_enumerator C:\WINDOWS\System32\drivers\ew_jubusenum.sys
00:42:26.0616 0x20f4  huawei_enumerator - ok
00:42:26.0677 0x20f4  [ DF65F49F3A108AB509D675312FC896B8, E88F15DED4346E127F182B3D1DA2D1506998844212940281355C8ED96776141C ] huawei_ext_ctrl C:\WINDOWS\System32\drivers\ew_juextctrl.sys
00:42:26.0680 0x20f4  huawei_ext_ctrl - ok
00:42:26.0738 0x20f4  [ 962032D69A8CA503F030F311CF4487B7, 1E4009A0CA6F73D02171D14FDCC875E5AD36C6CE50F1F1B1642741A0914703EB ] huawei_wwanecm  C:\WINDOWS\system32\DRIVERS\ew_juwwanecm.sys
00:42:26.0770 0x20f4  huawei_wwanecm - ok
00:42:26.0830 0x20f4  [ 04D1DE1E8ACE40CA396502C90524E945, C579D0C9D08617E91EAC4EE0D74BBE2911E1D76BF10D7120CCEEB0C23A9EF8E6 ] hwdatacard      C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
00:42:26.0845 0x20f4  hwdatacard - ok
00:42:26.0927 0x20f4  HWDeviceService64.exe - ok
00:42:26.0958 0x20f4  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
00:42:26.0960 0x20f4  hwpolicy - ok
00:42:27.0001 0x20f4  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
00:42:27.0003 0x20f4  hyperkbd - ok
00:42:27.0042 0x20f4  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
00:42:27.0045 0x20f4  HyperVideo - ok
00:42:27.0089 0x20f4  [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
00:42:27.0098 0x20f4  i8042prt - ok
00:42:27.0127 0x20f4  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
00:42:27.0130 0x20f4  iaLPSSi_GPIO - ok
00:42:27.0156 0x20f4  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
00:42:27.0163 0x20f4  iaLPSSi_I2C - ok
00:42:27.0238 0x20f4  [ 118CBC8D092787B604115F5267F77AE8, 6617C5C0659523351F232DFF1C56B29E3DD8A7D56ED4CBDB3E9F374CE0E205C7 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
00:42:27.0271 0x20f4  iaStorA - ok
00:42:27.0343 0x20f4  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
00:42:27.0379 0x20f4  iaStorAV - ok
00:42:27.0533 0x20f4  [ 8B262229FF72E822E51080AD9B22D4CB, 34DAC09BC693A7A38BA88306A02157C74BFADF96CAC2BE16112DC2C22CDF78D8 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
00:42:27.0534 0x20f4  IAStorDataMgrSvc - ok
00:42:27.0585 0x20f4  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
00:42:27.0616 0x20f4  iaStorV - ok
00:42:27.0671 0x20f4  [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS            C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
00:42:27.0687 0x20f4  ICCS - ok
00:42:27.0872 0x20f4  [ 55780CBB981F19CF97B455A3546F1C7C, D27738A9C288741FD665163AEC9A9A7392EBE64CF38A689C55B4606223BCA265 ] IDSVia64        C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\IPSDefs\20151009.001\IDSvia64.sys
00:42:27.0907 0x20f4  IDSVia64 - ok
00:42:27.0918 0x20f4  IEEtwCollectorService - ok
00:42:28.0285 0x20f4  [ 076023219E918D34585B231029A44571, C2AB0DE0D80D0BC6595C9F9655A890531E7952599714DC03B4ECB46947D833A8 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
00:42:28.0676 0x20f4  igfx - ok
00:42:28.0736 0x20f4  [ C814D4A0B7B91E936B2DC0828C69ACAB, A19B503CB3C598474C61DA6F1AC087CCF287F7523D2F932B21EF21E7CA1809B1 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
00:42:28.0752 0x20f4  igfxCUIService1.0.0.0 - ok
00:42:28.0836 0x20f4  [ 3DBDBD9581C015F02651D6A89801FAD5, 81B6D302C9CD29AD8319515056CFBCD0BD25619B2B166937ACD5F1416B568837 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
00:42:28.0910 0x20f4  IKEEXT - ok
00:42:28.0954 0x20f4  [ FC7C456AF9B9811499EDBD10616832EE, CA2D8B0E672D3AE449C2FF0B9E142D74E8C72FD877D11162A9F7CC51AF58220F ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
00:42:28.0971 0x20f4  intaud_WaveExtensible - ok
00:42:29.0144 0x20f4  [ 626FDED7A720513E9FF53EDCBE64D75C, 205DA88F5D49CFE4433BC3DF63C30677634C8D3292E2B1706C81C2B9CD50FC68 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
00:42:29.0336 0x20f4  IntcAzAudAddService - ok
00:42:29.0564 0x20f4  [ 0E0B99617ED3FDB6C5F0E2D62709B5DF, A656CA3A60E62BE16A015150B23136CE150F9876B4035E9E8D8E73D1707B37A4 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
00:42:29.0678 0x20f4  IntcDAud - ok
00:42:29.0842 0x20f4  [ C6128F2E3DC6156C6F8828F9F1B96010, 612C1191AFB8F69BA5634E8C52BDDE608F57D98FA4C76C5A337676A5F1E8191D ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
00:42:29.0874 0x20f4  Intel® Capability Licensing Service Interface - ok
00:42:29.0941 0x20f4  [ 729AB4F0608E95EFF8FDEF23596283E2, 62A2091FF440C65505AB3E38436A86D9B0978BCB9485960EFCE0C5CBC8E06201 ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
00:42:30.0002 0x20f4  Intel® Capability Licensing Service TCP IP Interface - ok
00:42:30.0074 0x20f4  [ B32A84262049E43DB2FDB70F2EAF3BEE, B80214F5A697F7C163E62448FAC4FC71E798114E1C0FBB52C3A16534208849B7 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
00:42:30.0081 0x20f4  Intel® ME Service - ok
00:42:30.0133 0x20f4  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
00:42:30.0183 0x20f4  intelide - ok
00:42:30.0279 0x20f4  [ A770340FC02B999EF0DE6C2A6BC8437C, 214567BE706B21BEA7EC13AF6B10FBFF658000511DBBA79BAA28D1D4EFD029A7 ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
00:42:30.0306 0x20f4  intelpep - ok
00:42:30.0391 0x20f4  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
00:42:30.0450 0x20f4  intelppm - ok
00:42:30.0500 0x20f4  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
00:42:30.0545 0x20f4  IpFilterDriver - ok
00:42:30.0723 0x20f4  [ A5800036E4EA06697A34742A24ACFBE1, BA67060526E9213000B4206F86A74F904999AD7018EFCBE4FE9708650DA9D973 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
00:42:30.0762 0x20f4  iphlpsvc - ok
00:42:30.0796 0x20f4  [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
00:42:30.0801 0x20f4  IPMIDRV - ok
00:42:30.0850 0x20f4  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
00:42:30.0858 0x20f4  IPNAT - ok
00:42:30.0888 0x20f4  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
00:42:30.0891 0x20f4  IRENUM - ok
00:42:30.0904 0x20f4  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
00:42:30.0928 0x20f4  isapnp - ok
00:42:31.0059 0x20f4  [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
00:42:31.0077 0x20f4  iScsiPrt - ok
00:42:31.0142 0x20f4  [ A90C843F4FDD7A07129BA73C6BE13976, A76DEA9F09E3B2F18D3B646A0DD39E2773EC62E2F3C55421BA61C12190D78C1C ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
00:42:31.0172 0x20f4  iwdbus - ok
00:42:31.0275 0x20f4  [ 08B14887C0B98101F8EC207817A0D734, DF2B2C16F9C8EA05533AE26C3302C41D5B67966D8E55ED8625353AE1D70FBD29 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
00:42:31.0307 0x20f4  jhi_service - ok
00:42:31.0386 0x20f4  [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
00:42:31.0430 0x20f4  kbdclass - ok
00:42:31.0459 0x20f4  [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
00:42:31.0506 0x20f4  kbdhid - ok
00:42:31.0600 0x20f4  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
00:42:31.0642 0x20f4  kdnic - ok
00:42:31.0693 0x20f4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso          C:\WINDOWS\system32\lsass.exe
00:42:31.0697 0x20f4  KeyIso - ok
00:42:31.0782 0x20f4  [ 4E829B18D5BAEC29893792A3C671A847, 64C3B99F53A9D1ACA802B46B09E820AD210B667D5A1CD0ADAF1F12944B15B52E ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
00:42:31.0786 0x20f4  KSecDD - ok
00:42:31.0860 0x20f4  [ 46711F40D0F9E63F786ED23F9BD5215E, 1FBC5101D843E5B43184C98B3D9AF3015C9409EEA6C7BB01B143FD08D4946FC0 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
00:42:31.0881 0x20f4  KSecPkg - ok
00:42:31.0925 0x20f4  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
00:42:31.0940 0x20f4  ksthunk - ok
00:42:31.0976 0x20f4  [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
00:42:31.0993 0x20f4  KtmRm - ok
00:42:32.0048 0x20f4  [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
00:42:32.0066 0x20f4  LanmanServer - ok
00:42:32.0146 0x20f4  [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
00:42:32.0182 0x20f4  LanmanWorkstation - ok
00:42:32.0263 0x20f4  [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc           C:\WINDOWS\System32\GeofenceMonitorService.dll
00:42:32.0300 0x20f4  lfsvc - ok
00:42:32.0338 0x20f4  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
00:42:32.0343 0x20f4  lltdio - ok
00:42:32.0388 0x20f4  [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
00:42:32.0403 0x20f4  lltdsvc - ok
00:42:32.0432 0x20f4  [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
00:42:32.0436 0x20f4  lmhosts - ok
00:42:32.0472 0x20f4  [ 920F6774762DE8D8477088B6F38FBD6C, DA056D27FE775835CD6F8F5F3143179D818C20658304E21100B534C24079916C ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
00:42:32.0483 0x20f4  LMS - ok
00:42:32.0527 0x20f4  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
00:42:32.0533 0x20f4  LSI_SAS - ok
00:42:32.0545 0x20f4  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
00:42:32.0550 0x20f4  LSI_SAS2 - ok
00:42:32.0562 0x20f4  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\WINDOWS\system32\drivers\lsi_sas3.sys
00:42:32.0566 0x20f4  LSI_SAS3 - ok
00:42:32.0609 0x20f4  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
00:42:32.0613 0x20f4  LSI_SSS - ok
00:42:32.0685 0x20f4  [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM             C:\WINDOWS\System32\lsm.dll
00:42:32.0717 0x20f4  LSM - ok
00:42:32.0741 0x20f4  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
00:42:32.0746 0x20f4  luafv - ok
00:42:32.0797 0x20f4  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
00:42:32.0800 0x20f4  megasas - ok
00:42:32.0885 0x20f4  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
00:42:32.0915 0x20f4  megasr - ok
00:42:32.0947 0x20f4  [ D71FD7A4FDB01C554AE144037B688DF1, 74D33303DA559A3A2EB809FC0EC3722D24F7F1A37BC7370680CFEB951BE735AF ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
00:42:32.0950 0x20f4  MEIx64 - ok
00:42:33.0066 0x20f4  Microsoft SharePoint Workspace Audit Service - ok
00:42:33.0112 0x20f4  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS           C:\WINDOWS\system32\mmcss.dll
00:42:33.0118 0x20f4  MMCSS - ok
00:42:33.0198 0x20f4  [ 625C98D60AD5AB1FCCBD0E2C0AC0D905, 13015E18450F817DAA2A1383999A78A21EC1CBF6FD8F2CACD6E022BB75BBF18C ] Mobile Partner. RunOuc C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe
00:42:33.0224 0x20f4  Mobile Partner. RunOuc - ok
00:42:33.0292 0x20f4  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
00:42:33.0332 0x20f4  Modem - ok
00:42:33.0350 0x20f4  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
00:42:33.0357 0x20f4  monitor - ok
00:42:33.0403 0x20f4  [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
00:42:33.0419 0x20f4  mouclass - ok
00:42:33.0498 0x20f4  [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
00:42:33.0501 0x20f4  mouhid - ok
00:42:33.0534 0x20f4  [ 9A788037D768809DFD677F4BA08A224A, E0686B3318F924E440ADA439D6671D44D3FF97C13D45C2E0A3A7B9E23DA38350 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
00:42:33.0539 0x20f4  mountmgr - ok
00:42:33.0585 0x20f4  [ E96D4881189E3241A80EE54EFAB02E00, 13DC3174A2A5CF20C63C3EA5E2FF4060B15B40B02CCB29B41EC7A53047B69D9F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
00:42:33.0600 0x20f4  MozillaMaintenance - ok
00:42:33.0644 0x20f4  [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
00:42:33.0665 0x20f4  mpsdrv - ok
00:42:33.0785 0x20f4  [ C18AA14126ADC66478E8E962B2DFAA98, A6F8CE9D88D590DC083253004392572C3BD02C33433CD6C0D9117D2AA7171EEC ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
00:42:33.0829 0x20f4  MpsSvc - ok
00:42:33.0855 0x20f4  [ DB32958F0E704EFBF7F15161A569E39F, 8A26448B954F8A16EE9BA72EF47F6C549A75B30BD13FEB5A29EB099A74D8F678 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
00:42:33.0866 0x20f4  MRxDAV - ok
00:42:33.0938 0x20f4  [ 6FBDF2B1B025A8E6E069234362FFFFB7, CF1AFC088F59AD61037F4C4650F3BAEE7FE37C40B3A27B903475F005410F8155 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
00:42:33.0964 0x20f4  mrxsmb - ok
00:42:33.0994 0x20f4  [ BCBD64220AD85C26823453FF1DC3EFBD, 0245E3659E9135B9276F3CCFBEA0CEFFC4F4C0826F6D19B6329057620235F087 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
00:42:34.0007 0x20f4  mrxsmb10 - ok
00:42:34.0070 0x20f4  [ 57C2473D501331211D6885FD59F3E44B, 10253703DB32A32291C61B6962A79E374B5DF7DD14A6B6AFD08A99EF26206619 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
00:42:34.0079 0x20f4  mrxsmb20 - ok
00:42:34.0105 0x20f4  [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
00:42:34.0110 0x20f4  MsBridge - ok
00:42:34.0141 0x20f4  [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
00:42:34.0149 0x20f4  MSDTC - ok
00:42:34.0193 0x20f4  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
00:42:34.0195 0x20f4  Msfs - ok
00:42:34.0225 0x20f4  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
00:42:34.0228 0x20f4  msgpiowin32 - ok
00:42:34.0262 0x20f4  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
00:42:34.0263 0x20f4  mshidkmdf - ok
00:42:34.0283 0x20f4  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
00:42:34.0285 0x20f4  mshidumdf - ok
00:42:34.0308 0x20f4  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
00:42:34.0310 0x20f4  msisadrv - ok
00:42:34.0343 0x20f4  [ 4EAEEBAC8CFF4E0D717DFA920BC58A90, A65CB1BB3392B6A04B978348CAC18A414560A6B04A727F22DFC0ADB20DD3AF6B ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
00:42:34.0351 0x20f4  MSiSCSI - ok
00:42:34.0358 0x20f4  msiserver - ok
00:42:34.0375 0x20f4  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
00:42:34.0377 0x20f4  MSKSSRV - ok
00:42:34.0405 0x20f4  [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
00:42:34.0409 0x20f4  MsLldp - ok
00:42:34.0450 0x20f4  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
00:42:34.0452 0x20f4  MSPCLOCK - ok
00:42:34.0466 0x20f4  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
00:42:34.0468 0x20f4  MSPQM - ok
00:42:34.0496 0x20f4  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
00:42:34.0510 0x20f4  MsRPC - ok
00:42:34.0537 0x20f4  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
00:42:34.0540 0x20f4  mssmbios - ok
00:42:34.0576 0x20f4  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
00:42:34.0577 0x20f4  MSTEE - ok
00:42:34.0599 0x20f4  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
00:42:34.0601 0x20f4  MTConfig - ok
00:42:34.0621 0x20f4  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
00:42:34.0626 0x20f4  Mup - ok
00:42:34.0666 0x20f4  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
00:42:34.0670 0x20f4  mvumis - ok
00:42:34.0759 0x20f4  [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent        C:\WINDOWS\system32\qagentRT.dll
00:42:34.0779 0x20f4  napagent - ok
00:42:34.0846 0x20f4  [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
00:42:34.0867 0x20f4  NativeWifiP - ok
00:42:34.0932 0x20f4  [ 5A4EC58A5F2E63DB2092B343CF1B2834, 33F957565E38A3A2842DDB16D7C969F93A4FB888DB5AFBBF5431A712FADE4E13 ] NAVENG          C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\VirusDefs\20151009.016\ENG64.SYS
00:42:34.0938 0x20f4  NAVENG - ok
00:42:35.0084 0x20f4  [ 526EA496D7F06B3746775046B33027C1, FEC0B860F49C28ED6ED721A09D19239BB1E20CE3A29697B24B2FE604AE0EB808 ] NAVEX15         C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\VirusDefs\20151009.016\EX64.SYS
00:42:35.0183 0x20f4  NAVEX15 - ok
00:42:35.0224 0x20f4  [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
00:42:35.0236 0x20f4  NcaSvc - ok
00:42:35.0272 0x20f4  [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService      C:\WINDOWS\System32\ncbservice.dll
00:42:35.0285 0x20f4  NcbService - ok
00:42:35.0331 0x20f4  [ 9ACED0F5B458C9011F39143326494E93, 9DFFC7EE7DE6FD92545EC6A203213C498A01EEFB0BC55460D339BCE498E56A7F ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
00:42:35.0337 0x20f4  NcdAutoSetup - ok
00:42:35.0438 0x20f4  [ 97DC5967F65503213FD1F1B3E4A6F983, 3EC515856C7CE9B30032F963DC04190F66EE62402A819781DC45B7D088C84229 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
00:42:35.0498 0x20f4  NDIS - ok
00:42:35.0530 0x20f4  [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
00:42:35.0534 0x20f4  NdisCap - ok
00:42:35.0565 0x20f4  [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
00:42:35.0571 0x20f4  NdisImPlatform - ok
00:42:35.0589 0x20f4  [ 82821F4EEC776B4CF11695A38F3ABA46, 23184F9D31E662855DC4D23EFE7C2FE00E5487D3762B6024704A5D8C87762E1C ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
00:42:35.0593 0x20f4  NdisTapi - ok
00:42:35.0643 0x20f4  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
00:42:35.0648 0x20f4  Ndisuio - ok
00:42:35.0671 0x20f4  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
00:42:35.0674 0x20f4  NdisVirtualBus - ok
00:42:35.0709 0x20f4  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
00:42:35.0721 0x20f4  NdisWan - ok
00:42:35.0739 0x20f4  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
00:42:35.0749 0x20f4  NdisWanLegacy - ok
00:42:35.0773 0x20f4  [ DDD7F92A83F74D1476B71FBA9530A8DC, D3F94FC9F48854E09B0B77CE5E1C1DB948D54EAC63C5583437051BB893B5A386 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
00:42:35.0778 0x20f4  NDProxy - ok
00:42:35.0801 0x20f4  [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
00:42:35.0808 0x20f4  Ndu - ok
00:42:35.0830 0x20f4  [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
00:42:35.0834 0x20f4  NetBIOS - ok
00:42:35.0887 0x20f4  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
00:42:35.0900 0x20f4  NetBT - ok
00:42:35.0914 0x20f4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon        C:\WINDOWS\system32\lsass.exe
00:42:35.0918 0x20f4  Netlogon - ok
00:42:35.0955 0x20f4  [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman          C:\WINDOWS\System32\netman.dll
00:42:35.0973 0x20f4  Netman - ok
00:42:36.0042 0x20f4  [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
00:42:36.0076 0x20f4  netprofm - ok
00:42:36.0250 0x20f4  [ B863D45D0E5FA6DF7C06B404D7F8C2AA, BC3EA27ACEB0D5DF1319D0374FA37BBE8D2D3F6B673F0CB1954624175255F95B ] netr28x         C:\WINDOWS\system32\DRIVERS\netr28x.sys
00:42:36.0434 0x20f4  netr28x - ok
00:42:36.0501 0x20f4  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
00:42:36.0564 0x20f4  NetTcpPortSharing - ok
00:42:36.0598 0x20f4  [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc          C:\WINDOWS\System32\drivers\netvsc63.sys
00:42:36.0606 0x20f4  netvsc - ok
00:42:36.0838 0x20f4  [ 20D6DF15D1F24069880ADDAFE026441A, 3C11D937BE56D1E4DD71C3B40A6233DBEA53D0DB7901F60DC78764C65DD3FBA0 ] NIS             C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\NIS.exe
00:42:36.0849 0x20f4  NIS - ok
00:42:36.0894 0x20f4  [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
00:42:36.0916 0x20f4  NlaSvc - ok
00:42:36.0949 0x20f4  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
00:42:36.0958 0x20f4  Npfs - ok
00:42:37.0005 0x20f4  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
00:42:37.0024 0x20f4  npsvctrig - ok
00:42:37.0054 0x20f4  [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi             C:\WINDOWS\system32\nsisvc.dll
00:42:37.0061 0x20f4  nsi - ok
00:42:37.0089 0x20f4  [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
00:42:37.0092 0x20f4  nsiproxy - ok
00:42:37.0213 0x20f4  [ 7F68063A5A0461E02BC860CE0E6BFDDC, 47E9F75D27B97278B74034B7D3951A26B1644911ED321455E08D935731C858DE ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
00:42:37.0301 0x20f4  Ntfs - ok
00:42:37.0353 0x20f4  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\WINDOWS\system32\drivers\Null.sys
00:42:37.0355 0x20f4  Null - ok
00:42:37.0389 0x20f4  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
00:42:37.0396 0x20f4  nvraid - ok
00:42:37.0415 0x20f4  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
00:42:37.0422 0x20f4  nvstor - ok
00:42:37.0440 0x20f4  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
00:42:37.0449 0x20f4  nv_agp - ok
00:42:37.0524 0x20f4  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:42:37.0549 0x20f4  ose - ok
00:42:38.0735 0x20f4  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
00:42:38.0968 0x20f4  osppsvc - ok
00:42:39.0033 0x20f4  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
00:42:39.0050 0x20f4  p2pimsvc - ok
00:42:39.0100 0x20f4  [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
00:42:39.0120 0x20f4  p2psvc - ok
00:42:39.0183 0x20f4  [ 1011C779C9FCD01AFA96490C86A50421, CC91CF43600E4321807F1AEDCAF5FB8B30E1D4B469110391107E9D269C5BD410 ] PanService      C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
00:42:39.0209 0x20f4  PanService - ok
00:42:39.0276 0x20f4  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
00:42:39.0297 0x20f4  Parport - ok
00:42:39.0330 0x20f4  [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
00:42:39.0351 0x20f4  partmgr - ok
00:42:39.0408 0x20f4  [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
00:42:39.0431 0x20f4  PcaSvc - ok
00:42:39.0478 0x20f4  [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\WINDOWS\system32\drivers\pci.sys
00:42:39.0489 0x20f4  pci - ok
00:42:39.0506 0x20f4  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
00:42:39.0508 0x20f4  pciide - ok
00:42:39.0529 0x20f4  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
00:42:39.0536 0x20f4  pcmcia - ok
00:42:39.0551 0x20f4  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
00:42:39.0554 0x20f4  pcw - ok
00:42:39.0599 0x20f4  [ 24A8DFC07E4BAF29AEA26E383D4CC886, 1B903FE52CD816662D37A8113930B4B7019B6996D49F1982D8F42933A3525A67 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
00:42:39.0604 0x20f4  pdc - ok
00:42:39.0680 0x20f4  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
00:42:39.0707 0x20f4  PEAUTH - ok
00:42:39.0816 0x20f4  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
00:42:39.0833 0x20f4  PerfHost - ok
00:42:39.0948 0x20f4  [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla             C:\WINDOWS\system32\pla.dll
00:42:40.0055 0x20f4  pla - ok
00:42:40.0093 0x20f4  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
00:42:40.0102 0x20f4  PlugPlay - ok
00:42:40.0133 0x20f4  [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
00:42:40.0138 0x20f4  PNRPAutoReg - ok
00:42:40.0178 0x20f4  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
00:42:40.0194 0x20f4  PNRPsvc - ok
00:42:40.0229 0x20f4  [ BDD52AB4AEBB8B1904568DBD0CCB70CB, C3D1DBA349C79B43DCDD9EF5255C5EE973EFB844235B808B5EF9B63A51FF00AA ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
00:42:40.0249 0x20f4  PolicyAgent - ok
00:42:40.0298 0x20f4  [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power           C:\WINDOWS\system32\umpo.dll
00:42:40.0307 0x20f4  Power - ok
00:42:40.0371 0x20f4  [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
00:42:40.0447 0x20f4  PptpMiniport - ok
00:42:40.0714 0x20f4  [ E3514CE7CB4AF80ECCA383F065BC77C0, 1EA06D358A07EB9DFB703CEFC4EB834B947B899E0ACFE1C494E2DAED63F1D4B5 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
00:42:40.0896 0x20f4  PrintNotify - ok
00:42:40.0958 0x20f4  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
00:42:40.0979 0x20f4  Processor - ok
00:42:41.0022 0x20f4  [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
00:42:41.0036 0x20f4  ProfSvc - ok
00:42:41.0108 0x20f4  [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
00:42:41.0200 0x20f4  Psched - ok
00:42:41.0236 0x20f4  [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE           C:\WINDOWS\system32\qwave.dll
00:42:41.0270 0x20f4  QWAVE - ok
00:42:41.0306 0x20f4  [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
00:42:41.0310 0x20f4  QWAVEdrv - ok
00:42:41.0344 0x20f4  [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
00:42:41.0347 0x20f4  RasAcd - ok
00:42:41.0375 0x20f4  [ E8FFD8BE3C50E7A71C5FBB87BDD1128E, 3E3EB906CC9A1CCA09580DA9F94DD0E1162CABD343874B76718DC4F2E9069C4E ] RasAgileVpn     C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
00:42:41.0382 0x20f4  RasAgileVpn - ok
00:42:41.0418 0x20f4  [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
00:42:41.0425 0x20f4  RasAuto - ok
00:42:41.0454 0x20f4  [ BBB6272B7F46C4640A8CDB8A70C3450F, 4266C3ABD0D1D0219F715EA0F155744F7C1E3A7B722BE863831B57AE785419A2 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
00:42:41.0459 0x20f4  Rasl2tp - ok
00:42:41.0523 0x20f4  [ F83B38FCD4F69157B3D158433FA149CC, AB103BD3E2B3B134CB355C556DF70BCF0CF4DB11EFF7DB4A9876D5AA43D81293 ] RasMan          C:\WINDOWS\System32\rasmans.dll
00:42:41.0549 0x20f4  RasMan - ok
00:42:41.0573 0x20f4  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
00:42:41.0578 0x20f4  RasPppoe - ok
00:42:41.0615 0x20f4  [ 41F631007A158FEBB67F0E2AD1601BBA, EB5EA7277F4178BC27E55BF850AEBCD84B6BED80B2383CFB29548824AAFED135 ] RasSstp         C:\WINDOWS\system32\DRIVERS\rassstp.sys
00:42:41.0620 0x20f4  RasSstp - ok
00:42:41.0674 0x20f4  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
00:42:41.0693 0x20f4  rdbss - ok
00:42:41.0727 0x20f4  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
00:42:41.0730 0x20f4  rdpbus - ok
00:42:41.0758 0x20f4  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
00:42:41.0767 0x20f4  RDPDR - ok
00:42:41.0806 0x20f4  [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
00:42:41.0809 0x20f4  RdpVideoMiniport - ok
00:42:41.0860 0x20f4  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
00:42:41.0875 0x20f4  rdyboost - ok
00:42:41.0970 0x20f4  [ 615DFD97DEA56CE1C3A52185A3038FF8, 707BF5F9FAE478A12656D15013F507CC1335E7B72BD21CA99BB813CB95E37BC0 ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
00:42:42.0033 0x20f4  ReFS - ok
00:42:42.0087 0x20f4  [ 0CF7CB56BF2D5E9DBCEE0185CB626FAD, 2BD2E2FB1D2EADD1F70EF55E8523C353F95D4FEB1BAD5017FA4D94F790F27825 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
00:42:42.0105 0x20f4  RemoteAccess - ok
00:42:42.0227 0x20f4  [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
00:42:42.0307 0x20f4  RemoteRegistry - ok
00:42:42.0538 0x20f4  [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM          C:\WINDOWS\System32\drivers\rfcomm.sys
00:42:42.0642 0x20f4  RFCOMM - ok
00:42:42.0757 0x20f4  [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
00:42:42.0772 0x20f4  RpcEptMapper - ok
00:42:42.0846 0x20f4  [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator      C:\WINDOWS\system32\locator.exe
00:42:42.0889 0x20f4  RpcLocator - ok
00:42:42.0982 0x20f4  [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
00:42:43.0018 0x20f4  RpcSs - ok
00:42:43.0067 0x20f4  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
00:42:43.0074 0x20f4  rspndr - ok
00:42:43.0180 0x20f4  [ 3B7A94926B52D171C5B515EDECC2118E, 4D3A8F24AAA8DD155BE2B5814701FFE67C367BB29D31D615685277D2DEF0DB0A ] rtbth           C:\WINDOWS\System32\drivers\rtbth.sys
00:42:43.0233 0x20f4  rtbth - ok
00:42:43.0376 0x20f4  [ 3A50489C017292386C1C6CF6EB283F23, 42E2C75A83A45070BB548591B83C3744F5DF6BB3743221D0442C1BA23789AD5D ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
00:42:43.0387 0x20f4  RtkAudioService - ok
00:42:43.0439 0x20f4  [ 17DFD02577A5A635FA9642E1F7AE866B, C7135554556CB70F47EDB5A7E1EB0F14D7D3AB42521C3CB9FDFCEC7587A67C92 ] RTL8168         C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
00:42:43.0483 0x20f4  RTL8168 - ok
00:42:43.0573 0x20f4  [ A336CE9CED25DAD273CC66556A511E0B, BC5FCD9C15F10A5775AA0E5BCEFA556A9D0B57267FA5518E1B3369BE066DD88C ] RTSPER          C:\WINDOWS\system32\DRIVERS\RtsPer.sys
00:42:43.0605 0x20f4  RTSPER - ok
00:42:43.0640 0x20f4  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
00:42:43.0654 0x20f4  s3cap - ok
00:42:43.0682 0x20f4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs           C:\WINDOWS\system32\lsass.exe
00:42:43.0685 0x20f4  SamSs - ok
00:42:43.0726 0x20f4  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
00:42:43.0733 0x20f4  sbp2port - ok
00:42:43.0770 0x20f4  [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
00:42:43.0787 0x20f4  SCardSvr - ok
00:42:43.0812 0x20f4  [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
00:42:43.0821 0x20f4  ScDeviceEnum - ok
00:42:43.0846 0x20f4  [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
00:42:43.0849 0x20f4  scfilter - ok
00:42:43.0922 0x20f4  [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
00:42:43.0976 0x20f4  Schedule - ok
00:42:44.0014 0x20f4  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
00:42:44.0022 0x20f4  SCPolicySvc - ok
00:42:44.0074 0x20f4  [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
00:42:44.0086 0x20f4  sdbus - ok
00:42:44.0126 0x20f4  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
00:42:44.0131 0x20f4  sdstor - ok
00:42:44.0165 0x20f4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
00:42:44.0167 0x20f4  secdrv - ok
00:42:44.0194 0x20f4  [ BA24CEA7152239F42ECD04AFB7C89D24, A2A11EABB0C283772B74667C7544B61BEB1B9745FBF065E831542129EB585AFA ] seclogon        C:\WINDOWS\system32\seclogon.dll
00:42:44.0198 0x20f4  seclogon - ok
00:42:44.0224 0x20f4  [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS            C:\WINDOWS\System32\sens.dll
00:42:44.0230 0x20f4  SENS - ok
00:42:44.0284 0x20f4  [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
00:42:44.0297 0x20f4  SensrSvc - ok
00:42:44.0331 0x20f4  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
00:42:44.0335 0x20f4  SerCx - ok
00:42:44.0361 0x20f4  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
00:42:44.0368 0x20f4  SerCx2 - ok
00:42:44.0388 0x20f4  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
00:42:44.0391 0x20f4  Serenum - ok
00:42:44.0407 0x20f4  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
00:42:44.0412 0x20f4  Serial - ok
00:42:44.0458 0x20f4  [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
00:42:44.0461 0x20f4  sermouse - ok
00:42:44.0524 0x20f4  [ 3A2F1A7472C3B7CC9B89C8516C726488, 9BCBBAC10C900EA7B30822B463A77EE5067F217C4B490857A09E5277983CB89B ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
00:42:44.0542 0x20f4  SessionEnv - ok
00:42:44.0591 0x20f4  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
00:42:44.0593 0x20f4  sfloppy - ok
00:42:44.0635 0x20f4  [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
00:42:44.0658 0x20f4  SharedAccess - ok
00:42:44.0748 0x20f4  [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
00:42:44.0775 0x20f4  ShellHWDetection - ok
00:42:44.0803 0x20f4  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
00:42:44.0806 0x20f4  SiSRaid2 - ok
00:42:44.0839 0x20f4  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
00:42:44.0843 0x20f4  SiSRaid4 - ok
00:42:44.0975 0x20f4  [ E6035ADBA3F13ACF1BEDA7B5D50FDBBB, A840D072395F2394E3B55A080F8F17CC3A02E8BCAFE8B8EC0374ECA1EFF05C23 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
00:42:44.0989 0x20f4  SkypeUpdate - ok
00:42:45.0020 0x20f4  [ 3E76F338E42616A22CA3AC379F95F2CB, 8EFE03420FF5BB518D1B9A38770A4A3FF19979D19F023F3C07C21E26676D9317 ] SmbDrv          C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys
00:42:45.0023 0x20f4  SmbDrv - ok
00:42:45.0065 0x20f4  [ 093A861D0F07BA2BAB199778E5F0E118, 4252A308B97DA8436EFD3749D66EA7B97129707E164228ACBFF51704B139541C ] SmbDrvI         C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys
00:42:45.0068 0x20f4  SmbDrvI - ok
00:42:45.0091 0x20f4  [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost         C:\WINDOWS\System32\smphost.dll
00:42:45.0095 0x20f4  smphost - ok
00:42:45.0134 0x20f4  [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
00:42:45.0170 0x20f4  SNMPTRAP - ok
00:42:45.0217 0x20f4  [ D24B1945ED1F9C96DA786DBBF1E983CE, B46CB0B72B7A3DF94A46B8D65E38535C5F8E72A55CF2DC48EFA1F9A0108691C4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
00:42:45.0238 0x20f4  spaceport - ok
00:42:45.0276 0x20f4  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
00:42:45.0281 0x20f4  SpbCx - ok
00:42:45.0333 0x20f4  [ FCB156A6745631A67DEA61827061D483, 9275ABFA1E1E595969A71C0DA228D18D1B868BF46E097E1276142BD80F8A32C9 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
00:42:45.0368 0x20f4  Spooler - ok
00:42:45.0696 0x20f4  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
00:42:46.0010 0x20f4  sppsvc - ok
00:42:46.0128 0x20f4  [ BFA32A566B958EF5A1D6383F3CB03AA2, BD899DE3815C88F825C3D93AA8AA43C178626F43E4B14C107A91C68155D64F71 ] SRTSP           C:\WINDOWS\System32\Drivers\NISx64\1605040.018\SRTSP64.SYS
00:42:46.0169 0x20f4  SRTSP - ok
00:42:46.0196 0x20f4  [ BA2ABBEA69BD1866C973DE11CB0CE9F8, 7A04BC2F4DA9A69A996911CC429064D24CF51F4046A2EE688D4326B44C9EDAFB ] SRTSPX          C:\WINDOWS\system32\drivers\NISx64\1605040.018\SRTSPX64.SYS
00:42:46.0210 0x20f4  SRTSPX - ok
00:42:46.0285 0x20f4  [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
00:42:46.0314 0x20f4  srv - ok
00:42:46.0402 0x20f4  [ 00D8AC8E3053290BDE6EA2FB6810D2FC, 957FEF84CBBAE71829529AE99A1B24F52D7831BD666442D0132FBB825409A75D ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
00:42:46.0431 0x20f4  srv2 - ok
00:42:46.0463 0x20f4  [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
00:42:46.0474 0x20f4  srvnet - ok
00:42:46.0509 0x20f4  [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
00:42:46.0523 0x20f4  SSDPSRV - ok
00:42:46.0561 0x20f4  [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
00:42:46.0570 0x20f4  SstpSvc - ok
00:42:46.0597 0x20f4  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
00:42:46.0606 0x20f4  ssudmdm - ok
00:42:46.0648 0x20f4  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
00:42:46.0651 0x20f4  stexstor - ok
00:42:46.0726 0x20f4  [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
00:42:46.0753 0x20f4  stisvc - ok
00:42:46.0771 0x20f4  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
00:42:46.0777 0x20f4  storahci - ok
00:42:46.0811 0x20f4  [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
00:42:46.0814 0x20f4  storflt - ok
00:42:46.0851 0x20f4  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
00:42:46.0855 0x20f4  stornvme - ok
00:42:46.0873 0x20f4  [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
00:42:46.0877 0x20f4  StorSvc - ok
00:42:46.0902 0x20f4  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
00:42:46.0905 0x20f4  storvsc - ok
00:42:46.0925 0x20f4  [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc           C:\WINDOWS\system32\svsvc.dll
00:42:46.0929 0x20f4  svsvc - ok
00:42:46.0958 0x20f4  [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
00:42:46.0960 0x20f4  swenum - ok
00:42:47.0039 0x20f4  [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv           C:\WINDOWS\System32\swprv.dll
00:42:47.0073 0x20f4  swprv - ok
00:42:47.0169 0x20f4  [ C9EC22D5B3C6B32A7C8B4A73870A7379, BA530C64FDE63D9A4023BB9E667497D5248B2910BC1A214B592318CC64034735 ] SymEFASI        C:\WINDOWS\system32\drivers\NISx64\1605040.018\SYMEFASI64.SYS
00:42:47.0233 0x20f4  SymEFASI - ok
00:42:47.0261 0x20f4  [ 1DE0CBF15AC67AE0E5B456ADEFB89493, C764815313BB4332279730AA02531A448A1D32F5B6D5689FF04549406A5B5212 ] SymELAM         C:\WINDOWS\system32\drivers\NISx64\1605040.018\SymELAM.sys
00:42:47.0266 0x20f4  SymELAM - ok
00:42:47.0295 0x20f4  [ 6DF8F618B93C821630C9BAA8DA3FAAAF, 553972D63F3347291EC8370AB910F741EF1DA61BC74FBA4192EF6E1DF567FB99 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
00:42:47.0301 0x20f4  SymEvent - ok
00:42:47.0340 0x20f4  [ 0891E59A27208B9B727BAB863B853E80, 7BBDD53CB7AB003DF803D6D596A2B5216425DCC7FA8D3F311AE5BD4EC19FBB0A ] SymIRON         C:\WINDOWS\system32\drivers\NISx64\1605040.018\Ironx64.SYS
00:42:47.0352 0x20f4  SymIRON - ok
00:42:47.0439 0x20f4  [ 751C968945EFD42469FE52D6CE384196, 3386681036909F60A249951009822190EFB1C390D2F46E7EFE44893F28D0F31C ] SymNetS         C:\WINDOWS\System32\Drivers\NISx64\1605040.018\SYMNETS.SYS
00:42:47.0462 0x20f4  SymNetS - ok
00:42:47.0509 0x20f4  [ 58D6878DACD9C4EA81D352914254426B, 54642AC8ED9360F99A2B3962F5F0DD42A8B2249A2A4DD4E69E6048894A199604 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
00:42:47.0528 0x20f4  SynTP - ok
00:42:47.0620 0x20f4  [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain         C:\WINDOWS\system32\sysmain.dll
00:42:47.0695 0x20f4  SysMain - ok
00:42:47.0747 0x20f4  [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
00:42:47.0761 0x20f4  SystemEventsBroker - ok
00:42:47.0796 0x20f4  [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
00:42:47.0805 0x20f4  TabletInputService - ok
00:42:47.0848 0x20f4  [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
00:42:47.0873 0x20f4  TapiSrv - ok
00:42:48.0036 0x20f4  [ 746DDF7D59AB8D721C88D48434597E8D, 78BDBAB8D1E86A11804FEB19B355C0FAD04ACE8DD4BDDFDADCE5461E259BCE82 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
00:42:48.0151 0x20f4  Tcpip - ok
00:42:48.0298 0x20f4  [ 746DDF7D59AB8D721C88D48434597E8D, 78BDBAB8D1E86A11804FEB19B355C0FAD04ACE8DD4BDDFDADCE5461E259BCE82 ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
00:42:48.0423 0x20f4  TCPIP6 - ok
00:42:48.0472 0x20f4  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
00:42:48.0480 0x20f4  tcpipreg - ok
00:42:48.0536 0x20f4  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
00:42:48.0557 0x20f4  tdx - ok
00:42:48.0596 0x20f4  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
00:42:48.0600 0x20f4  terminpt - ok
00:42:48.0700 0x20f4  [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService     C:\WINDOWS\System32\termsrv.dll
00:42:48.0772 0x20f4  TermService - ok
00:42:48.0825 0x20f4  [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes          C:\WINDOWS\system32\themeservice.dll
00:42:48.0831 0x20f4  Themes - ok
00:42:48.0857 0x20f4  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
00:42:48.0877 0x20f4  THREADORDER - ok
00:42:48.0920 0x20f4  [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
00:42:48.0934 0x20f4  TimeBroker - ok
00:42:48.0959 0x20f4  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
00:42:48.0968 0x20f4  TPM - ok
00:42:49.0004 0x20f4  [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
00:42:49.0011 0x20f4  TrkWks - ok
00:42:49.0073 0x20f4  [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
00:42:49.0078 0x20f4  TrustedInstaller - ok
00:42:49.0101 0x20f4  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
00:42:49.0105 0x20f4  TsUsbFlt - ok
00:42:49.0134 0x20f4  [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
00:42:49.0137 0x20f4  TsUsbGD - ok
00:42:49.0154 0x20f4  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
00:42:49.0161 0x20f4  tunnel - ok
00:42:49.0199 0x20f4  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
00:42:49.0203 0x20f4  uagp35 - ok
00:42:49.0220 0x20f4  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
00:42:49.0225 0x20f4  UASPStor - ok
00:42:49.0265 0x20f4  [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
00:42:49.0275 0x20f4  UCX01000 - ok
00:42:49.0308 0x20f4  [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
00:42:49.0321 0x20f4  udfs - ok
00:42:49.0357 0x20f4  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
00:42:49.0360 0x20f4  UEFI - ok
00:42:49.0397 0x20f4  [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
00:42:49.0402 0x20f4  UI0Detect - ok
00:42:49.0425 0x20f4  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
00:42:49.0429 0x20f4  uliagpkx - ok
00:42:49.0451 0x20f4  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
00:42:49.0454 0x20f4  umbus - ok
00:42:49.0490 0x20f4  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
00:42:49.0493 0x20f4  UmPass - ok
00:42:49.0545 0x20f4  [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
00:42:49.0560 0x20f4  UmRdpService - ok
00:42:49.0657 0x20f4  [ 9B8C9350985983E9760E1786731A8728, 78178FDE1329E5B55F77FF73C66B01279A03E2E3C3CB7E3D9DF14291D206D780 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
00:42:49.0672 0x20f4  UNS - ok
00:42:49.0720 0x20f4  [ 073D76B64EE698BE3EB938FE1243DE3F, A5BE28CA3B0E4A03193548B2F007593D30E187421B8CE8BA0D75CFC122864038 ] UpdateServiceTool C:\Program Files (x86)\Bin\UpdateTool\UpdaterToolService.exe
00:42:49.0721 0x20f4  UpdateServiceTool - ok
00:42:49.0752 0x20f4  [ 22BA235C53CCFCBE1FF0FEB9C936AA86, D671B1568FA80B7909CCC44D369E47421908C0B9B7CD355575DB104C129D6CAB ] UpdateSvc       C:\WINDOWS\Updatesvc.exe
00:42:49.0761 0x20f4  UpdateSvc - ok
00:42:49.0835 0x20f4  [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost        C:\WINDOWS\System32\upnphost.dll
00:42:49.0857 0x20f4  upnphost - ok
00:42:49.0897 0x20f4  [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
00:42:49.0919 0x20f4  usbccgp - ok
00:42:49.0974 0x20f4  [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
00:42:49.0988 0x20f4  usbcir - ok
00:42:50.0012 0x20f4  [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
00:42:50.0017 0x20f4  usbehci - ok
00:42:50.0098 0x20f4  [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
00:42:50.0118 0x20f4  usbhub - ok
00:42:50.0178 0x20f4  [ 95B0179BDA907252025DEEA183699FB3, A6BDFB93EE9418A83407024204A41640A08638C60E2BE75C249D102601DC1D80 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
00:42:50.0201 0x20f4  USBHUB3 - ok
00:42:50.0226 0x20f4  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
00:42:50.0229 0x20f4  usbohci - ok
00:42:50.0262 0x20f4  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
00:42:50.0265 0x20f4  usbprint - ok
00:42:50.0315 0x20f4  [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
00:42:50.0327 0x20f4  USBSTOR - ok
00:42:50.0367 0x20f4  [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
00:42:50.0370 0x20f4  usbuhci - ok
00:42:50.0400 0x20f4  [ 5C8F604F6DC74177CDD8372D7B1ADFF0, C1DE9A37A7A01CCCBFCE13C1E5B26683F620AB21EDA5A14C82022E2F49C84484 ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
00:42:50.0411 0x20f4  usbvideo - ok
00:42:50.0456 0x20f4  [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
00:42:50.0474 0x20f4  USBXHCI - ok
00:42:50.0502 0x20f4  [ 3CAAB947B1F247A570DE15983BEDEBCF, 81480D999F67A1755D5C21CE046FB439F0FBD743F73D23C19BC8C4DEB78A4F91 ] usb_rndisx      C:\WINDOWS\system32\DRIVERS\usb8023x.sys
00:42:50.0504 0x20f4  usb_rndisx - ok
00:42:50.0526 0x20f4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc        C:\WINDOWS\system32\lsass.exe
00:42:50.0531 0x20f4  VaultSvc - ok
00:42:50.0548 0x20f4  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
00:42:50.0551 0x20f4  vdrvroot - ok
00:42:50.0644 0x20f4  [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds             C:\WINDOWS\System32\vds.exe
00:42:50.0697 0x20f4  vds - ok
00:42:50.0737 0x20f4  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
00:42:50.0745 0x20f4  VerifierExt - ok
00:42:50.0810 0x20f4  [ C06E8481E068F170A258441639AC5792, 2F550530BACB511A195D5047F003B01CB6E04FA9A0DCCF638CB3D51FF5467DC7 ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
00:42:50.0837 0x20f4  vhdmp - ok
00:42:50.0859 0x20f4  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
00:42:50.0862 0x20f4  viaide - ok
00:42:50.0892 0x20f4  [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
00:42:50.0897 0x20f4  vmbus - ok
00:42:50.0926 0x20f4  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
00:42:50.0928 0x20f4  VMBusHID - ok
00:42:50.0996 0x20f4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
00:42:51.0018 0x20f4  vmicguestinterface - ok
00:42:51.0047 0x20f4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
00:42:51.0067 0x20f4  vmicheartbeat - ok
00:42:51.0094 0x20f4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
00:42:51.0113 0x20f4  vmickvpexchange - ok
00:42:51.0140 0x20f4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
00:42:51.0160 0x20f4  vmicrdv - ok
00:42:51.0187 0x20f4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
00:42:51.0206 0x20f4  vmicshutdown - ok
00:42:51.0233 0x20f4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
00:42:51.0256 0x20f4  vmictimesync - ok
00:42:51.0284 0x20f4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
00:42:51.0304 0x20f4  vmicvss - ok
00:42:51.0333 0x20f4  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
00:42:51.0338 0x20f4  volmgr - ok
00:42:51.0391 0x20f4  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
00:42:51.0406 0x20f4  volmgrx - ok
00:42:51.0444 0x20f4  [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
00:42:51.0461 0x20f4  volsnap - ok
00:42:51.0479 0x20f4  [ EF31713EE4C7CCFE4049F7E7F15645A2, 35D198D3F1061E19A7EF89FA1E75377049CD6BCA9702F8076B9F95BB8737E0D4 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
00:42:51.0520 0x20f4  vpci - ok
00:42:51.0554 0x20f4  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
00:42:51.0634 0x20f4  vsmraid - ok
00:42:51.0729 0x20f4  [ 94FAFD473CDD80CE19A21FB9503D7ED1, 953E5E8C753C0017E1258695A76F60CC05D283F7476B9D9C5C8AC78B8E3FCE18 ] VSS             C:\WINDOWS\system32\vssvc.exe
00:42:51.0791 0x20f4  VSS - ok
00:42:51.0846 0x20f4  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
00:42:51.0876 0x20f4  VSTXRAID - ok
00:42:51.0956 0x20f4  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
00:42:51.0960 0x20f4  vwifibus - ok
00:42:52.0002 0x20f4  [ 35BF5C5F5E3C9902C98978C7640574DA, C61E50B04000DCEC72365723F0C0725C2E005529DAF2777A59E624C14DA29E55 ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
00:42:52.0012 0x20f4  vwififlt - ok
00:42:52.0031 0x20f4  [ 65ED7B9CFEA893DF7748D5FF692690DE, 73AB9D8BB928B3247BDFC7BB47AD7FCA763B375DC250C251DB4E0573531040E8 ] vwifimp         C:\WINDOWS\system32\DRIVERS\vwifimp.sys
00:42:52.0034 0x20f4  vwifimp - ok
00:42:52.0092 0x20f4  [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time         C:\WINDOWS\system32\w32time.dll
00:42:52.0111 0x20f4  W32Time - ok
00:42:52.0171 0x20f4  [ 8E553C859C83784DEC08B10AFC3EAC92, 41D8DBA1500DBD3AC9783169ACF545805EF05069F12866238992A30794369254 ] w3logsvc        C:\WINDOWS\system32\inetsrv\w3logsvc.dll
00:42:52.0175 0x20f4  w3logsvc - ok
00:42:52.0194 0x20f4  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
00:42:52.0197 0x20f4  WacomPen - ok
00:42:52.0223 0x20f4  [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:42:52.0227 0x20f4  Wanarp - ok
00:42:52.0236 0x20f4  [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
00:42:52.0241 0x20f4  Wanarpv6 - ok
00:42:52.0301 0x20f4  [ 9BAE40BD31E3EE0B0C70BEF167E0A2BC, 2419AC815C95F2629E1832973501983D06F788728755605D42D6C8565C3CBBF1 ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
00:42:52.0324 0x20f4  WAS - ok
00:42:52.0425 0x20f4  [ A81988DCC4FA440AA88B84CA452F5E22, 3573AAA09971E8ADB6FEFA778E02B2D8EE5E4249267CF37A524D9F019CC836FB ] wbengine        C:\WINDOWS\system32\wbengine.exe
00:42:52.0488 0x20f4  wbengine - ok
00:42:52.0553 0x20f4  [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
00:42:52.0575 0x20f4  WbioSrvc - ok
00:42:52.0622 0x20f4  [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
00:42:52.0638 0x20f4  Wcmsvc - ok
00:42:52.0696 0x20f4  [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
00:42:52.0718 0x20f4  wcncsvc - ok
00:42:52.0741 0x20f4  [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
00:42:52.0746 0x20f4  WcsPlugInService - ok
00:42:52.0788 0x20f4  [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
00:42:52.0791 0x20f4  WdBoot - ok
00:42:52.0860 0x20f4  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
00:42:52.0893 0x20f4  Wdf01000 - ok
00:42:52.0944 0x20f4  [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
00:42:52.0956 0x20f4  WdFilter - ok
00:42:52.0988 0x20f4  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
00:42:52.0995 0x20f4  WdiServiceHost - ok
00:42:53.0003 0x20f4  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
00:42:53.0010 0x20f4  WdiSystemHost - ok
00:42:53.0042 0x20f4  [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
00:42:53.0048 0x20f4  WdNisDrv - ok
00:42:53.0079 0x20f4  WdNisSvc - ok
00:42:53.0132 0x20f4  [ 40F83492DB9ABBA59773A45FB487C8B2, 0D0DE0B0C9B929FEFD2674CCF17F5F2FC4B16EAB8E1981BBCE51B0305FD7D75E ] WebClient       C:\WINDOWS\System32\webclnt.dll
00:42:53.0145 0x20f4  WebClient - ok
00:42:53.0189 0x20f4  [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
00:42:53.0201 0x20f4  Wecsvc - ok
00:42:53.0282 0x20f4  [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
00:42:53.0289 0x20f4  WEPHOSTSVC - ok
00:42:53.0323 0x20f4  [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
00:42:53.0329 0x20f4  wercplsupport - ok
00:42:53.0352 0x20f4  [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
00:42:53.0360 0x20f4  WerSvc - ok
00:42:53.0397 0x20f4  [ BAB713B409258DB7B5D9F9693F802B0E, C0D0391EC4FDC07E0A07F4EEB2DC9CC5B2BE5D2E292E7D01929E8D39D6F73EA5 ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
00:42:53.0404 0x20f4  WFPLWFS - ok
00:42:53.0440 0x20f4  [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
00:42:53.0449 0x20f4  WiaRpc - ok
00:42:53.0479 0x20f4  [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
00:42:53.0482 0x20f4  WIMMount - ok
00:42:53.0488 0x20f4  WinDefend - ok
00:42:53.0573 0x20f4  [ 10DAD6A7FC617A221313BD584E3C3A00, F139B878668ECF38FE59831E8595A207D5CEEE76C6FFDA8C9F735435E601A763 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
00:42:53.0610 0x20f4  WinHttpAutoProxySvc - ok
00:42:53.0691 0x20f4  [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
00:42:53.0703 0x20f4  Winmgmt - ok
00:42:53.0863 0x20f4  [ 75436315AA383CF527695C6D49D0CA59, E3D55F2ACBD45D4D031FA6CA799394459C89BE50FF6ADE4FE36F2CAB2D2E63D0 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
00:42:54.0014 0x20f4  WinRM - ok
00:42:54.0219 0x20f4  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb          C:\WINDOWS\System32\drivers\WinUsb.sys
00:42:54.0225 0x20f4  WinUsb - ok
00:42:54.0289 0x20f4  [ 4F2A80D65AE6F845776E2F06AE6782ED, 2455537C048115435D9EDE4B18F9F54C43912076AEF36BDEFEC35AF2140B8B2E ] WirelessButtonDriver C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys
00:42:54.0293 0x20f4  WirelessButtonDriver - ok
00:42:54.0423 0x20f4  [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
00:42:54.0484 0x20f4  WlanSvc - ok
00:42:54.0595 0x20f4  [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
00:42:54.0664 0x20f4  wlidsvc - ok
00:42:54.0709 0x20f4  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
00:42:54.0713 0x20f4  WmiAcpi - ok
00:42:54.0742 0x20f4  [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
00:42:54.0764 0x20f4  wmiApSrv - ok
00:42:54.0804 0x20f4  WMPNetworkSvc - ok
00:42:54.0823 0x20f4  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
00:42:54.0831 0x20f4  Wof - ok
00:42:54.0941 0x20f4  [ 588040D595BBF0856CA1ADD941A8ED17, CBC92BB5453FE1BEA6F33239B7CE884F312559591383408EA5F95A006156C5D3 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
00:42:55.0007 0x20f4  workfolderssvc - ok
00:42:55.0038 0x20f4  [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
00:42:55.0042 0x20f4  wpcfltr - ok
00:42:55.0070 0x20f4  [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
00:42:55.0075 0x20f4  WPCSvc - ok
00:42:55.0105 0x20f4  [ 2ADE11F3D84709C5F6781E4C59F11683, F003C43396CF8FCF44EAB87583650DB4D2A233322D28D6A78D1694945D9073BB ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
00:42:55.0113 0x20f4  WPDBusEnum - ok
00:42:55.0154 0x20f4  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
00:42:55.0157 0x20f4  WpdUpFltr - ok
00:42:55.0181 0x20f4  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
00:42:55.0184 0x20f4  ws2ifsl - ok
00:42:55.0222 0x20f4  [ 5596C0960ED6ED7494BF2A55DE428684, C95CF09A657F37F421CC80E16F2F95B8EC59A8D5D48F104551155EAC8E53DCB2 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
00:42:55.0231 0x20f4  wscsvc - ok
00:42:55.0240 0x20f4  WSearch - ok
00:42:55.0439 0x20f4  [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService       C:\WINDOWS\System32\WSService.dll
00:42:55.0624 0x20f4  WSService - ok
00:42:55.0827 0x20f4  [ 3F726FF7B1ACC7D5E89940EA5BFF0E61, DF84486870C677B30985005A909CFDF8446BD566F601A295FF29F258E1D1AFF4 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
00:42:56.0011 0x20f4  wuauserv - ok
00:42:56.0043 0x20f4  [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
00:42:56.0049 0x20f4  WudfPf - ok
00:42:56.0090 0x20f4  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
00:42:56.0100 0x20f4  WUDFRd - ok
00:42:56.0114 0x20f4  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFSensorLP    C:\WINDOWS\System32\drivers\WUDFRd.sys
00:42:56.0123 0x20f4  WUDFSensorLP - ok
00:42:56.0149 0x20f4  [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
00:42:56.0157 0x20f4  wudfsvc - ok
00:42:56.0172 0x20f4  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdComp     C:\WINDOWS\System32\drivers\WUDFRd.sys
00:42:56.0180 0x20f4  WUDFWpdComp - ok
00:42:56.0233 0x20f4  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs       C:\WINDOWS\System32\drivers\WUDFRd.sys
00:42:56.0243 0x20f4  WUDFWpdFs - ok
00:42:56.0261 0x20f4  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp      C:\WINDOWS\System32\drivers\WUDFRd.sys
00:42:56.0270 0x20f4  WUDFWpdMtp - ok
00:42:56.0326 0x20f4  [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
00:42:56.0346 0x20f4  WwanSvc - ok
00:42:56.0375 0x20f4  ================ Scan global ===============================
00:42:56.0414 0x20f4  [ 05B08C20B8428ECE088CB5635696A48D, 471642A2D0E5C3BB235962FC8D86A49AC30D7DDE80B97E348425BBFCDE4DCDC3 ] C:\WINDOWS\system32\basesrv.dll
00:42:56.0452 0x20f4  [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\WINDOWS\system32\winsrv.dll
00:42:56.0483 0x20f4  [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\WINDOWS\system32\sxssrv.dll
00:42:56.0519 0x20f4  [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\WINDOWS\system32\services.exe
00:42:56.0538 0x20f4  [ Global ] - ok
00:42:56.0540 0x20f4  ================ Scan MBR ==================================
00:42:56.0555 0x20f4  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
00:42:56.0573 0x20f4  \Device\Harddisk0\DR0 - ok
00:42:56.0574 0x20f4  ================ Scan VBR ==================================
00:42:56.0579 0x20f4  [ 453ED2B58F816B4F5C3AD19CB365DF1E ] \Device\Harddisk0\DR0\Partition1
00:42:56.0647 0x20f4  \Device\Harddisk0\DR0\Partition1 - ok
00:42:56.0667 0x20f4  [ B55D36C5A455F1BDB59D5A0CA4967209 ] \Device\Harddisk0\DR0\Partition2
00:42:56.0725 0x20f4  \Device\Harddisk0\DR0\Partition2 - ok
00:42:56.0739 0x20f4  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
00:42:56.0740 0x20f4  \Device\Harddisk0\DR0\Partition3 - ok
00:42:56.0755 0x20f4  [ 884F0157D765C26859FCFD5A1CD0C74C ] \Device\Harddisk0\DR0\Partition4
00:42:56.0812 0x20f4  \Device\Harddisk0\DR0\Partition4 - ok
00:42:56.0866 0x20f4  [ A3F861D7116190F30DB85EFC063CCC7F ] \Device\Harddisk0\DR0\Partition5
00:42:56.0877 0x20f4  \Device\Harddisk0\DR0\Partition5 - ok
00:42:56.0893 0x20f4  [ 808109997E33083E11378D5F1F0468BA ] \Device\Harddisk0\DR0\Partition6
00:42:56.0904 0x20f4  \Device\Harddisk0\DR0\Partition6 - ok
00:42:56.0927 0x20f4  [ 9358F310105E869D95DAC756505EFFE5 ] \Device\Harddisk0\DR0\Partition7
00:42:57.0121 0x20f4  \Device\Harddisk0\DR0\Partition7 - ok
00:42:57.0153 0x20f4  [ BBD332832B989A37243F9D7DD60C15DB ] \Device\Harddisk0\DR0\Partition8
00:42:57.0163 0x20f4  \Device\Harddisk0\DR0\Partition8 - ok
00:42:57.0163 0x20f4  ================ Scan generic autorun ======================
00:42:57.0550 0x20f4  [ D1378B8038623CEA64CD8BFC8282B3AF, CA01875C280AFE28EF1D717AE54E3EE9EE907F53CCDC05EDE5102497BAE0FBD7 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
00:42:57.0870 0x20f4  RTHDVCPL - ok
00:42:57.0932 0x20f4  [ 8EC9EF60E24E88DC5DC74D305925E2CF, 37719AAD02B4EA851F899AB4A3464EA381B96BA2E386A52BF9FDAA8C9257FDBE ] C:\Windows\system32\igfxtray.exe
00:42:57.0950 0x20f4  IgfxTray - ok
00:42:57.0954 0x20f4  HotKeysCmds - ok
00:42:57.0958 0x20f4  Persistence - ok
00:42:57.0959 0x20f4  SynTPEnh - ok
00:42:58.0036 0x20f4  [ F296B2496B98E3E62F0D15D2194428CA, 2640724BF1FA06EBEB83A624F42FCB1A23FFAEB9C83D14715B5BF1AFC4BA8182 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
00:42:58.0068 0x20f4  StartCCC - ok
00:42:58.0126 0x20f4  [ A2221900B57AEC20577996744FA4A56A, AFEF9176DBA86CDB16A7E84AD0DF6433D4F5865948774FB6B619CBEBEC004592 ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
00:42:58.0130 0x20f4  RemoteControl10 - ok
00:42:58.0225 0x20f4  [ 30D312FB9F4CD0DB48884AC58841D420, 55758E68FB3A5CF5A5D936448E8AE585835E9BEA2AD95BE3429D0959EA689789 ] C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
00:42:58.0270 0x20f4  HPMessageService - ok
00:42:58.0353 0x20f4  [ 187F4C75A89E3F412322C94526320074, D78FA7EF93C8C7B4326A5B6DB04A92ADD091DF00658FA8731D07C5D3BE29ED04 ] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
00:42:58.0371 0x20f4  BCSSync - ok
00:42:58.0373 0x20f4  UpdateTool - ok
00:42:58.0375 0x20f4  SPDriver - ok
00:42:58.0445 0x20f4  [ 21CBCE4FC4B7916E7755710883C36AE1, 2E20E072E3D2DAAC5F413A6F56070C6C8C5DAB3DDD6BE0A12F90E56BD5137F5B ] C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe
00:42:58.0462 0x20f4  BtTray - ok
00:42:58.0715 0x20f4  [ CFEDDB638643C9B4DDD1570EB17D7C16, 8EA72FAD24BA0DE4E207773CAADF6BAE7055C6B27E3E3D1B8B74EE726872054A ] F:\hamachi-2-ui.exe
00:42:58.0927 0x20f4  LogMeIn Hamachi Ui - ok
00:42:59.0057 0x20f4  [ B1868F9E2B5224E57CE55570AF4FBC99, A4279BE54CA66029BA208049162DC0C9E9EA3BB7830B7E310CA8868614564F34 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
00:42:59.0224 0x20f4  Wondershare Helper Compact.exe - ok
00:42:59.0345 0x20f4  [ E3FB05F33E1404AD606B1E1FE7C323C3, 6EBE719FD611A5A0C16795D4D4244CCB44DA93C31942523883BD1C56A37589E5 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
00:42:59.0384 0x20f4  Adobe ARM - ok
00:42:59.0483 0x20f4  [ D1C8B0DC04347B6B9B5B3B9204DF6756, DA4D1CC98DCDFDF674F83164843A6B4E8830232700BE13CC755F94638351DA8B ] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
00:42:59.0533 0x20f4  HP CoolSense - ok
00:42:59.0571 0x20f4  [ BBAF86173CC44141913278FE642D9D4C, ADF30BC2E756B42BFF841159D28DC72CCC98DDC1C04FBBB3FC44110CFDAE5ABF ] C:\Windows\Speech\Common\sapisvr.exe
00:42:59.0574 0x20f4  Speech Recognition - ok
00:42:59.0711 0x20f4  [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] C:\Users\Kbleepij\AppData\Local\Google\Update\GoogleUpdate.exe
00:42:59.0717 0x20f4  Google Update - ok
00:42:59.0835 0x20f4  [ 7A60DCF0B0F2521A7F505F8A56E5AB68, 7F23D55D4BC55ACACA9E4F94DA2439539FD2AA96D1DCA6FF58C8469F7F9C622F ] F:\FreeAlarmClock\FreeAlarmClock.exe
00:42:59.0886 0x20f4  FreeAC - ok
00:42:59.0928 0x20f4  Skype - ok
00:43:00.0084 0x20f4  [ 8150D92888E57CFBC48119DD32ABE7AA, 1F3B344B3755892549E319906C721603388722D436648067322F8B5090A1AC28 ] C:\Users\Kbleepij\AppData\Roaming\uTorrent\uTorrent.exe
00:43:02.0735 0x20f4  uTorrent - ok
00:43:02.0847 0x20f4  [ 71DCFA65CC4349CF08BFFF7A14D8BAE4, 61DAE2C9EED97F325F449A77FB2E1AAAB90AA2329A0B7AE182B8A808017C11F0 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
00:43:02.0878 0x20f4  GoogleChromeAutoLaunch_41C7515FDFF3BC5CACFCD6E831388951 - ok
00:43:02.0882 0x20f4  Waiting for KSN requests completion. In queue: 164
00:43:03.0883 0x20f4  Waiting for KSN requests completion. In queue: 164
00:43:04.0884 0x20f4  Waiting for KSN requests completion. In queue: 164
00:43:05.0959 0x20f4  AV detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\WSCStub.exe ( 22.5.0.0 ), 0x51000 ( enabled : updated )
00:43:06.0019 0x20f4  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
00:43:06.0022 0x20f4  FW detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\WSCStub.exe ( 22.5.0.0 ), 0x51010 ( enabled )
00:43:09.0024 0x20f4  ============================================================
00:43:09.0024 0x20f4  Scan finished
00:43:09.0024 0x20f4  ============================================================
00:43:09.0037 0x23a4  Detected object count: 0
00:43:09.0037 0x23a4  Actual detected object count: 0
00:43:53.0309 0x0798  Deinitialize success
 


#6 Kshitij

Kshitij

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 10 October 2015 - 03:01 PM

# AdwCleaner v5.013 - Logfile created 11/10/2015 at 01:15:17
# Updated 09/10/2015 by Xplode
# Database : 2015-10-09.3 [Server]
# Operating system : Windows 8.1 Single Language  (x64)
# Username : Kbleepij - KbleepIJANANDLAP
# Running from : C:\Users\Kbleepij\Desktop\Outbound Traffic Resolution\AdwCleaner.exe
# Option : Cleaning
 
***** [ Services ] *****
 
[-] Service Deleted : globalUpdate
[-] Service Deleted : globalUpdatem
[-] Service Deleted : PanService
[-] Service Deleted : UpdateServiceTool
 
***** [ Folders ] *****
 
[-] Folder Deleted : C:\Program Files\DCE
[-] Folder Deleted : C:\Program Files (x86)\globalUpdate
[-] Folder Deleted : C:\Program Files (x86)\iSafe
[-] Folder Deleted : C:\Program Files (x86)\Mobogenie
[-] Folder Deleted : C:\Program Files (x86)\PANDORA.TV
[-] Folder Deleted : C:\Program Files (x86)\TheTorntv V10
[-] Folder Deleted : C:\Program Files (x86)\helper king
[!] Folder Not Deleted : C:\Program Files (x86)\TheTorntv V10
[-] Folder Deleted : C:\ProgramData\WPM
[-] Folder Deleted : C:\ProgramData\AnySend
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eSupport.com
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Local\genienext
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Local\globalUpdate
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Local\Mobogenie
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Local\Wajam
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen
[-] Folder Deleted : C:\Users\Kbleepij\AppData\LocalLow\Sense
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Roaming\ap_logs
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Roaming\eCyber
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Roaming\newnext.me
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Roaming\AnySend
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\Extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF}
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\Extensions\faststartff@gmail.com
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\Extensions\a338c5448f724f94af2f11@cc4cdd6788a64e7ca7d83cb2cd.com
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\Extensions\detgdp@gmail.com
[!] Folder Not Deleted : C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\Extensions\{746505DC-0E21-4667-97F8-72EA6BCF5EEF}
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\Extensions\143f44cf-d99c-4e45-8cd9-ef929de77aa8@bdbf6038-0097-480c-8d8e-fc48e28131a8.com
[-] Folder Deleted : C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\Extensions\staged\143f44cf-d99c-4e45-8cd9-ef929de77aa8@bdbf6038-0097-480c-8d8e-fc48e28131a8.com
[!] Folder Not Deleted : C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\Extensions\a338c5448f724f94af2f11@cc4cdd6788a64e7ca7d83cb2cd.com
[-] Folder Deleted : C:\Users\Kbleepij\Documents\Mobogenie
 
***** [ Files ] *****
 
[-] File Deleted : C:\AnySend.lnk
[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\delta-homes.xml
[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\istartsurf.xml
[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\nationzoom.xml
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kbfnbcaeplbcioakkpcpgfkobkghlhen_0.localstorage
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_kbfnbcaeplbcioakkpcpgfkobkghlhen_0.localstorage-journal
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.re-markable00.re-markable.net_0.localstorage
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.re-markable00.re-markable.net_0.localstorage-journal
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage-journal
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.lyricsfreak.com_0.localstorage
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.lyricsfreak.com_0.localstorage-journal
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.metrolyrics.com_0.localstorage
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.metrolyrics.com_0.localstorage-journal
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.lyricsmode.com_0.localstorage
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.lyricsmode.com_0.localstorage-journal
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_hdapp1008-a.akamaihd.net_0.localstorage
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_hdapp1008-a.akamaihd.net_0.localstorage-journal
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
[-] File Deleted : C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
[-] File Deleted : C:\Users\Kbleepij\AppData\Roaming\aps.uninstall.scan.results
[-] File Deleted : C:\Users\Kbleepij\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TornTvDownloader.lnk
[-] File Deleted : C:\WINDOWS\SysNative\log\iSafeKrnlCall.log
[-] File Deleted : C:\WINDOWS\SysNative\roboot64.exe
 
***** [ DLLs ] *****
 
 
***** [ Shortcuts ] *****
 
[-] Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[-] Shortcut Disinfected : C:\Users\Kbleepij\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[-] Shortcut Disinfected : C:\Users\Kbleepij\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[-] Shortcut Disinfected : C:\Users\Kbleepij\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[-] Shortcut Disinfected : C:\Users\Kbleepij\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk
[-] Shortcut Disinfected : C:\Users\Kbleepij\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk
 
***** [ Scheduled tasks ] *****
 
[-] Task Deleted : APSnotifierPP1
[-] Task Deleted : APSnotifierPP2
[-] Task Deleted : APSnotifierPP3
[-] Task Deleted : Desk 365 RunAsStdUser
[-] Task Deleted : globalUpdateUpdateTaskMachineCore
[-] Task Deleted : globalUpdateUpdateTaskMachineUA
[-] Task Deleted : ShopperPro
[-] Task Deleted : ShopperProJSUpd
[-] Task Deleted : ShopperProUpd
[-] Task Deleted : SPDriver
[-] Task Deleted : YTDownloaderUpd
[-] Task Deleted : helper_king_updating_service
[-] Task Deleted : UNELEVATE_10503
[-] Task Deleted : UNELEVATE_21747
[-] Task Deleted : UNELEVATE_24062
[-] Task Deleted : UNELEVATE_24651
[-] Task Deleted : UNELEVATE_32035
[-] Task Deleted : globalUpdateUpdateTaskMachineCore
[-] Task Deleted : globalUpdateUpdateTaskMachineUA
 
***** [ Registry ] *****
 
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickCtrl.10
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.OneClickProcessLauncherMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdate.Update3WebControl.4
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoCreateAsync.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreMachineClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CredentialDialogMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassMachineFallback.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.ProcessLauncher.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachine.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebMachineFallback.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO
[-] Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SPDriver]
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\Wpm
[-] Key Deleted : HKCU\Software\Mozilla\Extends
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [Sense-bg.exe]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [TheTorntv V10-bg.exe]
[-] Key Deleted : HKLM\SOFTWARE\c6613119-bb84-4597-a181-89fd35b67e70
[-] Key Deleted : HKLM\SOFTWARE\ca9e0a02-291c-48d2-a098-d80f2dadc97a
[-] Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.BHO
[-] Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.BHO.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.Sandbox
[-] Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0048292.Sandbox.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0063311.BHO
[-] Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0063311.BHO.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0063311.Sandbox
[-] Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0063311.Sandbox.1
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [faststartff@gmail.com]
[-] Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [detgdp@gmail.com]
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\noajmlkipclmeolfcnflkjhijkigpfjh
[-] Key Deleted : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\noajmlkipclmeolfcnflkjhijkigpfjh
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1663C10B-0D55-438D-8496-19A3DBAEC0E4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{69F256DF-BA98-45E9-86EA-FC3CFECF9D30}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E87FC94-9866-49B9-8E93-5736D6DE3DD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{834469E3-CA2B-4F21-A5CA-4F6F4DBCDE87}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8529FAA3-5BFD-43C1-AB35-B53C4B96C6E5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ADBC39BE-3D20-4333-8D99-E91EB1B62474}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CFC47BB5-5FB5-4AD0-8427-6AA04334A3FC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E06CA7F5-BA34-4FF6-8D24-B1BDC594D91F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E0ADB535-D7B5-4D8B-B15D-578BDD20D76A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F6421EE5-A5BE-4D31-81D5-C16B7BF48E4C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD8E81D0-F5FE-4CB1-9AEA-1E163D2BAB78}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{61AB12E1-A5FF-11D1-B2E9-444553540000}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{82351441-9094-11D1-A24B-00A0C932C7DF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{363F46BE-27B4-4C8D-99E7-B1E049B84376}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{90A9B7D2-3794-45EA-9E23-140E3938D2D9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A753A1EC-973E-4718-AF8E-A3F554D45C44}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02AFA80F-4BEE-41FD-8572-214B58A9EF90}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622332211}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{82351433-9094-11D1-A24B-00A0C932C7DF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440444824492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440644334411}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2ea66ad0-e577-4281-9544-614848636984}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7cf7ba75-72a8-4652-807b-1437f9214f98}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e79bc9a5-a284-4ec4-80dc-b7a09fcfdb51}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ed19facf-6a9e-4fa0-972a-cfaf353404a4}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220622332211}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2ea66ad0-e577-4281-9544-614848636984}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7cf7ba75-72a8-4652-807b-1437f9214f98}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e79bc9a5-a284-4ec4-80dc-b7a09fcfdb51}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ed19facf-6a9e-4fa0-972a-cfaf353404a4}
[-] Key Deleted : HKU\.DEFAULT\Software\TornTv Downloader
[-] Key Deleted : HKU\.DEFAULT\Software\DustApps
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\Sense
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\TheTorntv V10
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\DustApps
[!] Key Not Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\TheTorntv V10
[-] Key Deleted : HKCU\Software\1ClickDownload
[-] Key Deleted : HKCU\Software\eSupport.com
[-] Key Deleted : HKCU\Software\GlobalUpdate
[-] Key Deleted : HKCU\Software\InstalledBrowserExtensions
[-] Key Deleted : HKCU\Software\ShopperPro
[-] Key Deleted : HKCU\Software\Softonic
[-] Key Deleted : HKCU\Software\V9
[-] Key Deleted : HKCU\Software\YahooPartnerToolbar
[-] Key Deleted : HKCU\Software\TornTv Downloader
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Sense
[-] Key Deleted : HKCU\Software\AppDataLow\Software\TheTorntv V10
[!] Key Not Deleted : HKCU\Software\AppDataLow\Software\TheTorntv V10
[-] Key Deleted : HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] Key Deleted : HKLM\SOFTWARE\delta-homesSoftware
[-] Key Deleted : HKLM\SOFTWARE\Desksvc
[-] Key Deleted : HKLM\SOFTWARE\GlobalUpdate
[-] Key Deleted : HKLM\SOFTWARE\hdcode
[-] Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : HKLM\SOFTWARE\istartsurfSoftware
[-] Key Deleted : HKLM\SOFTWARE\nationzoomSoftware
[-] Key Deleted : HKLM\SOFTWARE\PIP
[-] Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
[-] Key Deleted : HKLM\SOFTWARE\supWPM
[-] Key Deleted : HKLM\SOFTWARE\TheTorntv V10
[-] Key Deleted : HKLM\SOFTWARE\V9
[-] Key Deleted : HKLM\SOFTWARE\AnySend
[-] Key Deleted : HKLM\SOFTWARE\DustApps
[!] Key Not Deleted : HKLM\SOFTWARE\TheTorntv V10
[-] Key Deleted : HKLM\SOFTWARE\TheTorntv V10-nv
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Sense
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DustApps
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\JPG to Icon Converter_is1
[!] Key Not Deleted : [x64] HKCU\Software\1ClickDownload
[!] Key Not Deleted : [x64] HKCU\Software\eSupport.com
[!] Key Not Deleted : [x64] HKCU\Software\GlobalUpdate
[!] Key Not Deleted : [x64] HKCU\Software\InstalledBrowserExtensions
[!] Key Not Deleted : [x64] HKCU\Software\ShopperPro
[!] Key Not Deleted : [x64] HKCU\Software\Softonic
[!] Key Not Deleted : [x64] HKCU\Software\V9
[!] Key Not Deleted : [x64] HKCU\Software\YahooPartnerToolbar
[!] Key Not Deleted : [x64] HKCU\Software\TornTv Downloader
[-] Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : [x64] HKLM\SOFTWARE\SampleShellExtnesion
[-] Key Deleted : [x64] HKLM\SOFTWARE\TheTorntv V10-nv
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Distributed Computing Experiment
[!] Key Not Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\Sense
[!] Key Not Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\TheTorntv V10
[!] Key Not Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\DustApps
[!] Key Not Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\TheTorntv V10
[!] Key Not Deleted : HKU\S-1-5-21-434424731-3215803380-4109230285-1001\Software\AppDataLow\Software\Crossrider
[!] Key Not Deleted : HKU\S-1-5-21-434424731-3215803380-4109230285-1001\Software\AppDataLow\Software\Sense
[!] Key Not Deleted : HKU\S-1-5-21-434424731-3215803380-4109230285-1001\Software\AppDataLow\Software\TheTorntv V10
[!] Key Not Deleted : HKU\S-1-5-21-434424731-3215803380-4109230285-1001\Software\AppDataLow\Software\TheTorntv V10
[!] Key Not Deleted : HKU\S-1-5-18\Software\AppDataLow\Software\Sense
[!] Key Not Deleted : HKU\S-1-5-18\Software\AppDataLow\Software\TheTorntv V10
[!] Key Not Deleted : HKU\S-1-5-18\Software\AppDataLow\Software\DustApps
[!] Key Not Deleted : HKU\S-1-5-18\Software\AppDataLow\Software\TheTorntv V10
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKU\S-1-5-21-434424731-3215803380-4109230285-1001\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Restored : HKU\S-1-5-21-434424731-3215803380-4109230285-1001\Software\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Restored : HKU\S-1-5-21-434424731-3215803380-4109230285-1001\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data Restored : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[!] Key Not Deleted : HKU\S-1-5-21-434424731-3215803380-4109230285-1001\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
[-] Data Restored : HKU\S-1-5-21-434424731-3215803380-4109230285-1001\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
 
***** [ Web browsers ] *****
 
[-] [C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\prefs.js] [Preference] Deleted : user_pref("browser.newtab.url", "hxxp://www.delta-homes.com/newtab/?type=nt&ts=1420112938&from=wpm12311&uid=HGSTXHTS541010A9E680_JB1000130RW3SR0RW3SRX");
[-] [C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\prefs.js] [Preference] Deleted : user_pref("browser.search.defaultenginename", "delta-homes");
[-] [C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\prefs.js] [Preference] Deleted : user_pref("browser.search.selectedEngine", "delta-homes");
[-] [C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\prefs.js] [Preference] Deleted : user_pref("browser.startup.homepage", "hxxp://www.istartsurf.com/?type=hp&ts=1410448520&from=ild&uid=HGSTXHTS541010A9E680_JB1000130RW3SR0RW3SRX");
[-] [C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\prefs.js] [Preference] Deleted : user_pref("extensions.a143f44cfd99c4e458cd9ef929de77aa8bdbf60380097480c8d8efc48e28131a8com48292.48292.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssf[...]
[-] [C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\prefs.js] [Preference] Deleted : user_pref("extensions.aa338c5448f724f94af2f11cc4cdd6788a64e7ca7d83cb2cdcom63311.63311.internaldb.__ICM_LITE__blacklist_domain.value", "%7B%22SLIDERS%22%3A%5B%226pm.com%22%2C%22amazon.co.uk%22%2C%22ama[...]
[-] [C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\prefs.js] [Preference] Deleted : user_pref("extensions.aa338c5448f724f94af2f11cc4cdd6788a64e7ca7d83cb2cdcom63311.63311.internaldb.__ICM_LITE__fifty_test_rules.value", "%7B%22DE%22%3A%7B%22ALL%22%3A%5B%22anastasiadate.com%22%2C%22opti[...]
[-] [C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\prefs.js] [Preference] Deleted : user_pref("extensions.aa338c5448f724f94af2f11cc4cdd6788a64e7ca7d83cb2cdcom63311.63311.internaldb.monetization_plugin_bundledUrls.value", "%7B%22dealply_s%22%3A%7B%22urls%22%3A%5B%22ssfiles.com%22%5D%7[...]
[-] [C:\Users\Kbleepij\AppData\Roaming\Mozilla\Firefox\Profiles\da75xzci.default\prefs.js] [Preference] Deleted : user_pref("extensions.crossrider.bic", "1436090a472f88d56300fee6f4855dca");
[-] [C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.delta-homes.com/?type=hp&ts=1420112938&from=wpm12311&uid=HGSTXHTS541010A9E680_JB1000130RW3SR0RW3SRX
[-] [C:\Users\Kbleepij\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : kbfnbcaeplbcioakkpcpgfkobkghlhen
 
*************************
 
:: Winsock settings cleared
 
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [28844 bytes] ##########


#7 Kshitij

Kshitij

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 10 October 2015 - 03:17 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.4 (09.28.2015:1)
OS: Windows 8.1 Single Language x64
Ran by Kbleepij on 11-10-2015 at  1:37:52.39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Tasks
 
 
 
~~~ Registry Values
 
Successfully deleted: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_41C7515FDFF3BC5CACFCD6E831388951
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{0622D1AC-7D62-42F9-8393-A66E32146E0C}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220422822292}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{22222222-2222-2222-2222-220622842259}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{55555555-5555-5555-5555-550455825592}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{55555555-5555-5555-5555-550655335511}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{55555555-5555-5555-5555-550655845559}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660466826692}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660666336611}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Interface\{66666666-6666-6666-6666-660666846659}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\TypeLib\{44444444-4444-4444-4444-440644844459}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{22222222-2222-2222-2222-220422822292}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{22222222-2222-2222-2222-220622842259}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{55555555-5555-5555-5555-550455825592}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{55555555-5555-5555-5555-550655335511}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{55555555-5555-5555-5555-550655845559}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66666666-6666-6666-6666-660466826692}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66666666-6666-6666-6666-660666336611}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\Interface\{66666666-6666-6666-6666-660666846659}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440644844459}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110411821192}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110611841159}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{55555555-5555-5555-5555-550455825592}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{55555555-5555-5555-5555-550655335511}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{55555555-5555-5555-5555-550655845559}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660466826692}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660666336611}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Interface\{66666666-6666-6666-6666-660666846659}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\TypeLib\{44444444-4444-4444-4444-440644844459}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{55555555-5555-5555-5555-550455825592}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{55555555-5555-5555-5555-550655335511}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{55555555-5555-5555-5555-550655845559}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66666666-6666-6666-6666-660466826692}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66666666-6666-6666-6666-660666336611}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\Interface\{66666666-6666-6666-6666-660666846659}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\TypeLib\{44444444-4444-4444-4444-440644844459}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0622D1AC-7D62-42F9-8393-A66E32146E0C}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{0622D1AC-7D62-42F9-8393-A66E32146E0C}
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] C:\ProgramData\Microsoft\Windows\Start Menu\Programs\(default)
Successfully deleted: [Folder] C:\Users\Kbleepij\Appdata\Local\installer
Successfully deleted: [Folder] C:\WINDOWS\provider
Successfully deleted: [Folder] C:\WINDOWS\provider32
 
 
 
~~~ FireFox
 
Successfully deleted: [Folder] C:\Users\Kbleepij\AppData\Roaming\mozilla\firefox\profiles\da75xzci.default\extensions\staged
Emptied folder: C:\Users\Kbleepij\AppData\Roaming\mozilla\firefox\profiles\da75xzci.default\minidumps [6 files]
 
 
 
~~~ Chrome
 
Successfully deleted: [Folder] C:\Users\Kbleepij\Appdata\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol
 
[C:\Users\Kbleepij\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset
 
[C:\Users\Kbleepij\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:
 
[C:\Users\Kbleepij\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset
 
[C:\Users\Kbleepij\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[
  lbfehkoinhhcknnbdgnnmjhiladcgbol
]
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 11-10-2015 at  1:45:41.37
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,058 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:28 PM

Posted 10 October 2015 - 06:48 PM

How is your running now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users