Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Bad Virus found on windows 7, losing hard-drive space, HELP!

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby boynsini_13 » January 21st, 2015, 2:13 am

B. Back-up programs: Seagate Dashboard/Memeo Instant Back-Up, Western Digital Smart Ware, Western Digital Security, Western Digital Utilities.

I no longer use the seagate external drive because it's not big enough.

I use the Western Digital External Drive
boynsini_13
Regular Member
 
Posts: 79
Joined: January 3rd, 2015, 6:15 am
Advertisement
Register to Remove

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby boynsini_13 » January 21st, 2015, 2:14 am

C. Fix Script:


All processes killed
========== FILES ==========
C:\Windows\4E97AE4712934669BBF34BDE52501A1A.TMP folder moved successfully.
C:\Windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP folder moved successfully.
C:\Windows\6239C519FFFD4F0A938A78C6F2FA0BFA.TMP folder moved successfully.
C:\Windows\6A4A9CD15DF54902ADE898CB01C5FE72.TMP folder moved successfully.
C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP folder moved successfully.
C:\Windows\779979C214934EC292E5D154AE0580D4.TMP folder moved successfully.
C:\Windows\7BA4D682D09C4B2483C06293EAE995D8.TMP folder moved successfully.
C:\Windows\918F6C1486984231BA242DEE161D007E.TMP folder moved successfully.
C:\Windows\930C05E277684ED6AF82CA2EA90192CE.TMP folder moved successfully.
C:\Windows\D005F851ED234778B233A3E32CFD6017.TMP folder moved successfully.
C:\Windows\DFF24A7EC40C49F48C74D420D439DB1E.TMP folder moved successfully.
ADS C:\ProgramData\TEMP:DE406C3E deleted successfully.
ADS C:\ProgramData\TEMP:B1FBBD09 deleted successfully.
========== COMMANDS ==========

[EMPTYFLASH]

User: All Users

User: Arborist

User: Arborist.brianboyns-PC
->Flash cache emptied: 57386 bytes

User: brianboyns
->Flash cache emptied: 75409 bytes

User: Default
->Flash cache emptied: 57311 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb


[EMPTYJAVA]

User: All Users

User: Arborist

User: Arborist.brianboyns-PC

User: brianboyns
->Java cache emptied: 123796 bytes

User: Default

User: Default User

User: Public

Total Java Files Cleaned = 0.00 mb


[EMPTYTEMP]

User: All Users

User: Arborist
->Temp folder emptied: 0 bytes

User: Arborist.brianboyns-PC
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 195 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: brianboyns
->Temp folder emptied: 5105 bytes
->Temporary Internet Files folder emptied: 425821 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 3714953 bytes
->Google Chrome cache emptied: 0 bytes
->Apple Safari cache emptied: 15732736 bytes
->Flash cache emptied: 0 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 70 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 42321906 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 59.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 01202015_215124

Files\Folders moved on Reboot...
C:\Users\brianboyns\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\brianboyns\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZSYL18IV\PIE[1].htc moved successfully.
C:\Users\brianboyns\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XHOD43FC\-npz8I08j1p4obSJnaZfLUVLlIm0umyx7nT5vEtjvLjffwrwgsM9eMI6MK6gw6NuSh90iY83ZAlTifoRdhXtg6[1].eot moved successfully.
C:\Users\brianboyns\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M3IAXPC6\dinpro-medium-webfont[1].eot moved successfully.
C:\Users\brianboyns\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M3IAXPC6\firewall-icon-test[1].htm moved successfully.
C:\Users\brianboyns\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\F3LEL340\us[1].htm moved successfully.
C:\Users\brianboyns\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
boynsini_13
Regular Member
 
Posts: 79
Joined: January 3rd, 2015, 6:15 am

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby boynsini_13 » January 21st, 2015, 2:15 am

D. OTL Text:


OTL logfile created on: 1/20/2015 9:57:42 PM - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\brianboyns\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17501)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.97 Gb Total Physical Memory | 2.54 Gb Available Physical Memory | 64.12% Memory free
7.93 Gb Paging File | 6.42 Gb Available in Paging File | 81.01% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 582.40 Gb Total Space | 14.30 Gb Free Space | 2.46% Space Free | Partition Type: NTFS

Computer Name: BRIANBOYNS-PC | User Name: brianboyns | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (All) ==========

PRC - [2015/01/18 03:22:19 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\brianboyns\Desktop\OTL scanner.exe
PRC - [2014/12/18 09:54:30 | 003,432,976 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
PRC - [2014/12/18 09:51:14 | 003,667,472 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgui.exe
PRC - [2014/12/18 09:45:26 | 000,298,080 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
PRC - [2014/11/21 06:12:54 | 001,871,160 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
PRC - [2014/10/23 15:38:16 | 001,694,048 | R--- | M] (Western Digital Technologies, Inc.) -- C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
PRC - [2014/09/26 22:47:16 | 000,271,744 | ---- | M] (Oracle Corporation) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
PRC - [2014/07/22 15:25:38 | 001,042,808 | R--- | M] (Western Digital Technologies, Inc.) -- C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
PRC - [2014/05/23 12:09:00 | 000,296,312 | R--- | M] (Western Digital Technologies, Inc.) -- C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
PRC - [2014/05/23 12:06:20 | 001,852,264 | R--- | M] (Western Digital Technologies, Inc.) -- C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
PRC - [2011/06/15 17:33:20 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
PRC - [2010/04/30 06:47:00 | 000,014,088 | ---- | M] (Memeo) -- C:\Program Files (x86)\Seagate\Seagate Dashboard\SeagateDashboardService.exe
PRC - [2009/08/28 01:38:58 | 001,150,496 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
PRC - [2009/08/12 14:04:44 | 000,062,208 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe
PRC - [2009/07/13 17:14:16 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ctfmon.exe
PRC - [2009/06/04 18:03:32 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009/06/04 18:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
PRC - [2003/05/31 17:02:32 | 007,544,916 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlservr.exe


========== Modules (No Company Name) ==========


========== Services (SafeList) ==========

SRV:64bit: - [2014/11/21 18:35:29 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2013/05/26 21:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2010/09/22 17:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2009/07/03 17:47:12 | 000,240,160 | ---- | M] (Acer) [On_Demand | Stopped] -- C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe -- (Updater Service)
SRV - [2015/01/16 20:59:05 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/12/18 09:54:30 | 003,432,976 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2014/12/18 09:45:26 | 000,298,080 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe -- (avgwd)
SRV - [2014/11/21 06:12:56 | 000,969,016 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2014/11/21 06:12:54 | 001,871,160 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2014/08/28 03:48:02 | 000,833,728 | ---- | M] (Valve Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014/08/13 01:02:12 | 000,067,224 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2014/07/22 15:25:38 | 001,042,808 | R--- | M] (Western Digital Technologies, Inc.) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe -- (WDBackup)
SRV - [2014/05/23 12:09:00 | 000,296,312 | R--- | M] (Western Digital Technologies, Inc.) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe -- (WDDriveService)
SRV - [2013/10/25 14:39:32 | 000,029,320 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\real\UpdateService\RealPlayerUpdateSvc.exe -- (RealPlayerUpdateSvc)
SRV - [2013/10/17 18:08:06 | 000,039,056 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2013/09/11 21:21:54 | 000,105,144 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2012/03/30 13:41:46 | 000,151,656 | ---- | M] (Microsoft Corp.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe -- (BingDesktopUpdate)
SRV - [2011/07/07 19:31:08 | 000,195,336 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/06/15 17:33:20 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE -- (BBUpdate)
SRV - [2010/04/30 06:47:00 | 000,014,088 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Seagate\Seagate Dashboard\SeagateDashboardService.exe -- (SeagateDashboardService)
SRV - [2010/04/22 16:33:04 | 000,025,824 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe -- (MemeoBackgroundService)
SRV - [2009/08/28 01:38:58 | 001,150,496 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe -- (Greg_Service)
SRV - [2009/08/25 09:38:06 | 000,935,208 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2009/08/12 14:04:44 | 000,062,208 | ---- | M] (NewTech Infosystems, Inc.) [Auto | Running] -- C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe -- (NTI IScheduleSvc)
SRV - [2009/06/04 18:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2014/12/08 21:24:26 | 000,260,888 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgidsdrivera.sys -- (AVGIDSDriver)
DRV:64bit: - [2014/11/21 06:14:22 | 000,063,704 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl)
DRV:64bit: - [2014/11/21 06:14:12 | 000,093,400 | ---- | M] (Malwarebytes Corporation) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\mbamchameleon.sys -- (mbamchameleon)
DRV:64bit: - [2014/11/21 06:14:08 | 000,025,816 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2014/11/18 21:42:04 | 000,203,544 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgidsha.sys -- (AVGIDSHA)
DRV:64bit: - [2014/10/10 15:14:32 | 000,274,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\avgtdia.sys -- (Avgtdia)
DRV:64bit: - [2014/10/05 20:41:40 | 000,124,184 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgmfx64.sys -- (Avgmfx64)
DRV:64bit: - [2014/08/28 20:47:24 | 000,243,480 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgldx64.sys -- (Avgldx64)
DRV:64bit: - [2014/07/18 14:53:26 | 000,313,624 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgloga.sys -- (Avgloga)
DRV:64bit: - [2014/06/18 20:03:34 | 000,153,368 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\avgdiska.sys -- (Avgdiska)
DRV:64bit: - [2014/06/18 20:03:20 | 000,031,512 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avgrkx64.sys -- (Avgrkx64)
DRV:64bit: - [2014/05/23 11:53:14 | 000,014,464 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wdcsam64.sys -- (WDC_SAM)
DRV:64bit: - [2013/12/02 09:15:36 | 000,039,104 | ---- | M] (Spotflux, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tapSF0901.sys -- (tapSF0901)
DRV:64bit: - [2013/10/18 15:18:52 | 000,145,408 | ---- | M] (Intel(R) Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV:64bit: - [2013/10/18 15:18:49 | 010,629,408 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2013/10/18 15:18:01 | 000,302,296 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\e1y62x64.sys -- (e1yexpress)
DRV:64bit: - [2013/10/01 18:22:20 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/12/13 12:50:36 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
DRV:64bit: - [2012/11/21 14:23:29 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/21 12:01:20 | 000,033,240 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV:64bit: - [2012/02/29 22:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/03/10 22:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/10 22:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/03/02 17:17:20 | 000,013,088 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
DRV:64bit: - [2010/11/20 05:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/11 00:11:52 | 000,141,384 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdserd.sys -- (sscdserd)
DRV:64bit: - [2010/11/11 00:11:50 | 000,172,104 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdmdm.sys -- (sscdmdm)
DRV:64bit: - [2010/11/11 00:11:50 | 000,136,264 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdbus.sys -- (sscdbus)
DRV:64bit: - [2010/11/11 00:11:50 | 000,019,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sscdmdfl.sys -- (sscdmdfl)
DRV:64bit: - [2010/09/22 23:36:48 | 000,048,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fssfltr.sys -- (fssfltr)
DRV:64bit: - [2010/06/13 17:21:42 | 000,082,816 | ---- | M] (VSO Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pcouffin.sys -- (pcouffin)
DRV:64bit: - [2009/07/13 17:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/13 17:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/13 17:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 12:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 12:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 12:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 12:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/04 17:54:36 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2009/05/05 15:46:08 | 000,018,432 | ---- | M] (NewTech Infosystems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NTIDrvr.sys -- (NTIDrvr)
DRV:64bit: - [2009/05/05 15:46:08 | 000,016,896 | ---- | M] (NewTech Infosystems Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UBHelper.sys -- (UBHelper)
DRV - [2014/12/14 21:48:34 | 000,026,528 | ---- | M] (REALiX(tm)) [Kernel | System | Running] -- C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS -- (HWiNFO32)
DRV - [2009/07/13 17:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACGW
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-21-2609911718-454996853-969934346-1001\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-2609911718-454996853-969934346-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKU\S-1-5-21-2609911718-454996853-969934346-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
IE - HKU\S-1-5-21-2609911718-454996853-969934346-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKU\S-1-5-21-2609911718-454996853-969934346-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 73 36 F5 5F 29 35 D0 01 [binary data]
IE - HKU\S-1-5-21-2609911718-454996853-969934346-1001\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-2609911718-454996853-969934346-1001\..\SearchScopes,OldDefaultScope = {F29EB221-9A8B-464F-81A9-870718A085E9}
IE - HKU\S-1-5-21-2609911718-454996853-969934346-1001\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-2609911718-454996853-969934346-1001\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKU\S-1-5-21-2609911718-454996853-969934346-1001\..\SearchScopes\{9D46F7F2-F30A-4F8A-A1F9-F090DE388418}: "URL" = https://www.google.com/search?q={searchTerms}
IE - HKU\S-1-5-21-2609911718-454996853-969934346-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2609911718-454996853-969934346-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: ascsurfingprotection%40iobit.com:1.0
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:32.0.3
FF - prefs.js..browser.search.defaultenginename: "Bing "
FF - prefs.js..browser.search.selectedEngine: "Bing "
FF - prefs.js..browser.search.order.3: "Bing "
FF - prefs.js..keyword.URL: "http://www.bing.com/search?FORM=U164DF&PC=U164&q="
FF - prefs.js..browser.startup.homepage: "http://www.bing.com/?pc=U159"
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_257.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.31211.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_257.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0: C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@exent.com/npExentCtl,version=7.0.0.0: C:\Program Files (x86)\Free Ride Games\npExentCtl.dll File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.72.2: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.72.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.31211.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=17.0.2.206: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.5.2: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.5.2: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.5.2: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=17.0.2.206: C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2015/01/16 18:33:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{56D10AE9-6227-455E-95C3-73CD63A091EC}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2015/01/16 18:33:13 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{0153E448-190B-4987-BDE1-F256CADA672F}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2013/11/20 21:45:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 34.0.5\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2014/06/16 21:04:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\brianboyns\AppData\Roaming\Mozilla\Extensions
[2015/01/19 18:37:38 | 000,000,000 | ---D | M] (No name found) -- C:\Users\brianboyns\AppData\Roaming\Mozilla\Firefox\Profiles\9sm9rnun.default\extensions
File not found (No name found) -- C:\PROGRAM FILES (X86)\IOBIT APPS TOOLBAR\FF
File not found (No name found) -- C:\USERS\BRIANBOYNS\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9SM9RNUN.DEFAULT\EXTENSIONS\ADREMOVEEXT@ADREMOVEEXT.NET
File not found (No name found) -- C:\USERS\BRIANBOYNS\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9SM9RNUN.DEFAULT\EXTENSIONS\ASCSURFINGPROTECTION@IOBIT.COM
File not found (No name found) -- C:\USERS\BRIANBOYNS\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\9SM9RNUN.DEFAULT\EXTENSIONS\IOBITASCSURFINGPROTECTION@IOBIT.COM

========== Chrome ==========

CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Error reading preferences file
CHR - Extension: No name found = C:\Users\brianboyns\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek\0.8_0\
CHR - Extension: No name found = C:\Users\brianboyns\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: No name found = C:\Users\brianboyns\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: No name found = C:\Users\brianboyns\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_0\
CHR - Extension: No name found = C:\Users\brianboyns\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: No name found = C:\Users\brianboyns\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: No name found = C:\Users\brianboyns\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap\1.0_0\
CHR - Extension: No name found = C:\Users\brianboyns\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.5.2_0\
CHR - Extension: No name found = C:\Users\brianboyns\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: No name found = C:\Users\brianboyns\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2015/01/20 19:02:54 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (no name) - {10921475-03CE-4E04-90CE-E2E7EF20C814} - No CLSID value found.
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-2609911718-454996853-969934346-1001\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files (x86)\AVG\AVG2015\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [BingDesktop] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe (Microsoft Corp.)
O4 - HKLM..\Run: [DriveUtilitiesHelper] C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe (Western Digital Technologies, Inc.)
O4 - HKLM..\Run: [Memeo AutoSync] C:\Program Files (x86)\Memeo\AutoSync\MemeoLauncher2.exe (Memeo Inc.)
O4 - HKLM..\Run: [Memeo Instant Backup] C:\Program Files (x86)\Memeo\AutoBackup\MemeoLauncher2.exe (Memeo Inc.)
O4 - HKLM..\Run: [Memeo Send] C:\Program Files (x86)\Memeo\Memeo Send\MemeoLauncher.exe ()
O4 - HKLM..\Run: [Seagate Dashboard] C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoLauncher.exe ()
O4 - HKLM..\Run: [WD Drive Unlocker] C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe (Western Digital Technologies, Inc.)
O4 - HKLM..\Run: [WD Quick View] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe (Western Digital Technologies, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2609911718-454996853-969934346-1001\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2609911718-454996853-969934346-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O13 - gopher Prefix: missing
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.72.2)
O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} http://trial.trymicrosoftoffice.com/tri ... /wrc32.ocx (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 10.72.2)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{39A1B8FE-A76A-4B40-86F8-836EA4D3A17F}: DhcpNameServer = 192.168.1.1 75.75.75.75 75.75.76.76
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\livecall - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msnim - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2014/12/27 15:14:43 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2015/01/20 20:58:05 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2015/01/20 20:57:17 | 000,000,000 | --SD | C] -- C:\ComboFix
[2015/01/20 19:09:24 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2015/01/20 18:48:08 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2015/01/20 18:48:08 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2015/01/20 18:48:08 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2015/01/20 18:47:45 | 000,000,000 | ---D | C] -- C:\Qoobox
[2015/01/20 18:47:15 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2015/01/20 18:29:49 | 005,608,785 | R--- | C] (Swearware) -- C:\Users\brianboyns\Desktop\ComboFix.exe
[2015/01/19 18:19:10 | 000,000,000 | ---D | C] -- C:\FRST
[2015/01/19 18:18:11 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2015/01/19 18:16:38 | 002,126,848 | ---- | C] (Farbar) -- C:\Users\brianboyns\Desktop\FRST64.exe
[2015/01/19 18:15:29 | 001,707,939 | ---- | C] (Thisisu) -- C:\Users\brianboyns\Desktop\JRT.exe
[2015/01/19 18:13:51 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2015/01/18 21:14:22 | 000,000,000 | ---D | C] -- C:\_OTL
[2015/01/18 03:22:19 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\brianboyns\Desktop\OTL scanner.exe
[2015/01/17 17:52:30 | 000,000,000 | ---D | C] -- C:\Analytics
[2015/01/17 17:49:49 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\AppData\Local\Western Digital
[2015/01/17 17:49:41 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\AppData\Local\Western_Digital_Technolog
[2015/01/17 17:48:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Package Cache
[2015/01/17 17:41:36 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Downloads
[2015/01/17 17:40:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Western Digital
[2015/01/17 17:40:46 | 000,000,000 | ---D | C] -- C:\Program Files\Western Digital
[2015/01/17 17:40:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Western Digital
[2015/01/17 17:40:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital
[2015/01/17 17:39:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Western Digital
[2015/01/17 17:38:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Western Digital
[2015/01/16 23:49:13 | 000,000,000 | ---D | C] -- C:\ProgramData\MemeoCommon
[2015/01/16 23:48:47 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\AppData\Roaming\Memeo
[2015/01/16 23:48:35 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\AppData\Roaming\Seagate
[2015/01/16 23:48:05 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Seagate Dashboard
[2015/01/16 23:47:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Memeo
[2015/01/16 23:46:57 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Memeo
[2015/01/16 23:46:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Memeo
[2015/01/16 23:45:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Seagate
[2015/01/16 23:44:49 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\AppData\Roaming\Leadertech
[2015/01/16 23:14:00 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srclient.dll
[2015/01/16 23:13:59 | 005,553,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2015/01/16 23:13:59 | 003,971,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2015/01/16 23:13:59 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2015/01/16 23:13:59 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2015/01/16 23:13:58 | 003,916,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2015/01/16 22:23:44 | 000,000,000 | R--D | C] -- C:\Users\brianboyns\Pictures
[2015/01/16 21:19:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
[2015/01/16 20:54:15 | 001,411,096 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SRRPTR64.dll
[2015/01/16 20:54:15 | 000,856,992 | ---- | C] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo264.dll
[2015/01/16 20:54:15 | 000,451,096 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SRAPO64.dll
[2015/01/16 20:54:15 | 000,366,104 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SRCOM64.dll
[2015/01/16 20:54:15 | 000,326,680 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysWow64\SRCOM.dll
[2015/01/16 20:54:15 | 000,326,680 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SRCOM.dll
[2015/01/16 20:54:14 | 003,186,544 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2015/01/16 20:54:14 | 002,860,760 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2015/01/16 20:54:14 | 000,629,464 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtDataProc64.dll
[2015/01/16 20:54:12 | 002,827,120 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RltkAPO64.dll
[2015/01/16 20:54:12 | 001,287,384 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2015/01/16 20:54:11 | 071,040,000 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoRes64.dat
[2015/01/16 20:54:11 | 005,234,952 | ---- | C] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICAPOlfx.dll
[2015/01/16 20:54:11 | 000,995,120 | ---- | C] (Nahimic Inc) -- C:\Windows\SysNative\NahimicAPONSControl.dll
[2015/01/16 20:54:11 | 000,959,704 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll
[2015/01/16 20:54:10 | 014,048,512 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek64.dll
[2015/01/16 20:54:10 | 012,967,680 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO3064.dll
[2015/01/16 20:54:10 | 001,499,984 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO5064.dll
[2015/01/16 20:54:10 | 001,353,472 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO6064.dll
[2015/01/16 20:54:10 | 000,979,280 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO2064.dll
[2015/01/16 20:54:10 | 000,922,880 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2015/01/16 20:54:09 | 000,303,776 | ---- | C] (ICEpower a/s) -- C:\Windows\SysNative\ICEsoundAPO64.dll
[2015/01/16 20:54:08 | 001,550,528 | ---- | C] (Conexant Systems Inc.) -- C:\Windows\SysNative\CX64APO.dll
[2015/01/16 20:54:07 | 000,560,328 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2015/01/16 20:45:53 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2015/01/16 20:45:51 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWbPrxy.exe
[2014/12/27 20:06:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\trend micro
[2014/12/27 20:05:58 | 000,000,000 | ---D | C] -- C:\rsit
[2014/12/27 20:03:51 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\AppData\Roaming\Curiolab
[2014/12/27 20:00:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Exterminate It!
[2014/12/27 14:38:48 | 000,000,000 | ---D | C] -- C:\Program Files\Quick Heal
[2014/12/27 03:33:53 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\AppData\Roaming\Avg_Update_1014av
[2014/12/27 03:33:38 | 000,000,000 | ---D | C] -- C:\ProgramData\Avg_Update_1014av
[2014/12/27 03:23:09 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\AppData\Roaming\AVG2015
[2014/12/27 03:21:48 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\AppData\Roaming\TuneUp Software
[2014/12/27 03:21:16 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2015
[2014/12/27 03:21:16 | 000,000,000 | ---D | C] -- C:\$AVG
[2014/12/27 03:20:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVG
[2014/12/27 03:17:22 | 000,000,000 | --SD | C] -- C:\Windows\SysWow64\Microsoft
[2014/12/27 03:05:46 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2014/12/27 03:05:46 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\AppData\Local\MFAData
[2014/12/27 03:05:46 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\AppData\Local\Avg2015
[2014/12/26 23:02:57 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\AppData\Roaming\LavasoftStatistics
[2014/12/26 23:02:38 | 000,358,736 | ---- | C] (Lavasoft Limited) -- C:\Windows\SysNative\LavasoftTcpService64.dll
[2014/12/26 23:02:37 | 000,312,424 | ---- | C] (Lavasoft Limited) -- C:\Windows\SysWow64\LavasoftTcpService.dll
[2014/12/26 21:12:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Spybot - Search & Destroy 2
[2014/12/26 20:42:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\SparkTrust
[2014/12/26 19:45:40 | 000,000,000 | R--D | C] -- C:\Users\brianboyns\Documents\Videos
[2014/12/26 19:45:40 | 000,000,000 | R--D | C] -- C:\Users\brianboyns\Documents\Music
[2014/12/26 19:44:02 | 000,000,000 | R--D | C] -- C:\Users\brianboyns\Documents\Links
[2014/12/26 19:43:54 | 000,000,000 | R--D | C] -- C:\Users\brianboyns\Documents\Favorites
[2014/12/26 19:41:23 | 000,000,000 | R--D | C] -- C:\Users\brianboyns\Documents\Dropbox
[2014/12/26 19:41:21 | 000,000,000 | R--D | C] -- C:\Users\brianboyns\Documents\Desktop
[2014/12/26 19:41:21 | 000,000,000 | R--D | C] -- C:\Users\brianboyns\Documents\Contacts
[2014/12/26 04:16:18 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\Documents\AppData
[2014/12/26 04:16:18 | 000,000,000 | ---D | C] -- C:\Users\brianboyns\Documents\.swt
[2010/06/13 17:21:42 | 000,082,816 | R--- | C] (VSO Software) -- C:\Users\brianboyns\AppData\Roaming\pcouffin.sys

========== Files - Modified Within 30 Days ==========

[2015/01/20 22:01:00 | 000,018,736 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2015/01/20 22:01:00 | 000,018,736 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2015/01/20 21:54:29 | 000,008,192 | ---- | M] () -- C:\Windows\SysWow64\WDPABKP.dat
[2015/01/20 21:53:07 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/01/20 21:53:03 | 3193,835,520 | -HS- | M] () -- C:\hiberfil.sys
[2015/01/20 21:15:20 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/01/20 20:59:29 | 000,002,503 | ---- | M] () -- C:\Users\brianboyns\Desktop\Safari.lnk
[2015/01/20 19:41:18 | 000,129,752 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2015/01/20 19:02:54 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2015/01/20 18:29:57 | 005,608,785 | R--- | M] (Swearware) -- C:\Users\brianboyns\Desktop\ComboFix.exe
[2015/01/20 18:04:23 | 003,980,506 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2015/01/20 18:04:23 | 001,246,376 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2015/01/20 18:04:23 | 000,006,750 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2015/01/20 18:00:01 | 000,000,474 | ---- | M] () -- C:\Windows\tasks\SparkTrust Registration3.job
[2015/01/19 18:16:45 | 002,126,848 | ---- | M] (Farbar) -- C:\Users\brianboyns\Desktop\FRST64.exe
[2015/01/19 18:15:29 | 001,707,939 | ---- | M] (Thisisu) -- C:\Users\brianboyns\Desktop\JRT.exe
[2015/01/19 18:13:12 | 002,186,752 | ---- | M] () -- C:\Users\brianboyns\Desktop\adwcleaner_4.108.exe
[2015/01/18 03:22:19 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\brianboyns\Desktop\OTL scanner.exe
[2015/01/17 18:05:56 | 000,000,464 | ---- | M] () -- C:\Windows\BRWMARK.INI
[2015/01/17 17:48:54 | 000,001,142 | ---- | M] () -- C:\Users\Public\Desktop\WD Security.lnk
[2015/01/17 17:41:22 | 000,001,154 | ---- | M] () -- C:\Users\Public\Desktop\WD SmartWare.lnk
[2015/01/17 17:40:11 | 000,001,087 | ---- | M] () -- C:\Users\Public\Desktop\WD Drive Utilities.lnk
[2015/01/16 23:48:05 | 000,001,203 | ---- | M] () -- C:\Users\brianboyns\Desktop\Seagate Dashboard.lnk
[2015/01/16 23:48:00 | 000,000,162 | ---- | M] () -- C:\MemeoSendAddin
[2015/01/16 23:14:00 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\srclient.dll
[2015/01/16 23:13:59 | 005,553,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2015/01/16 23:13:59 | 003,971,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2015/01/16 23:13:59 | 000,503,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2015/01/16 23:13:59 | 000,296,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2015/01/16 23:13:58 | 003,916,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2015/01/16 21:19:21 | 000,000,935 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2015.lnk
[2015/01/16 20:59:05 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2015/01/16 20:59:05 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2015/01/16 20:54:15 | 005,804,772 | ---- | M] () -- C:\Windows\SysNative\drivers\rtvienna.dat
[2015/01/16 20:54:15 | 001,411,096 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SRRPTR64.dll
[2015/01/16 20:54:15 | 000,856,992 | ---- | M] (TOSHIBA Corporation) -- C:\Windows\SysNative\tadefxapo264.dll
[2015/01/16 20:54:15 | 000,451,096 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SRAPO64.dll
[2015/01/16 20:54:15 | 000,366,104 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SRCOM64.dll
[2015/01/16 20:54:15 | 000,326,680 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysWow64\SRCOM.dll
[2015/01/16 20:54:15 | 000,326,680 | ---- | M] (Synopsys, Inc.) -- C:\Windows\SysNative\SRCOM.dll
[2015/01/16 20:54:14 | 003,186,544 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2015/01/16 20:54:14 | 002,860,760 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2015/01/16 20:54:14 | 000,629,464 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtDataProc64.dll
[2015/01/16 20:54:12 | 071,040,000 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoRes64.dat
[2015/01/16 20:54:12 | 002,827,120 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RltkAPO64.dll
[2015/01/16 20:54:12 | 001,443,340 | ---- | M] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2015/01/16 20:54:12 | 001,287,384 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2015/01/16 20:54:11 | 012,967,680 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO3064.dll
[2015/01/16 20:54:11 | 005,234,952 | ---- | M] (Nahimic Inc) -- C:\Windows\SysNative\NAHIMICAPOlfx.dll
[2015/01/16 20:54:11 | 000,995,120 | ---- | M] (Nahimic Inc) -- C:\Windows\SysNative\NahimicAPONSControl.dll
[2015/01/16 20:54:11 | 000,959,704 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInstII64.dll
[2015/01/16 20:54:10 | 014,048,512 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek64.dll
[2015/01/16 20:54:10 | 001,499,984 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO5064.dll
[2015/01/16 20:54:10 | 001,353,472 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO6064.dll
[2015/01/16 20:54:10 | 000,979,280 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVoiceAPO2064.dll
[2015/01/16 20:54:10 | 000,922,880 | ---- | M] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2015/01/16 20:54:09 | 000,303,776 | ---- | M] (ICEpower a/s) -- C:\Windows\SysNative\ICEsoundAPO64.dll
[2015/01/16 20:54:08 | 001,550,528 | ---- | M] (Conexant Systems Inc.) -- C:\Windows\SysNative\CX64APO.dll
[2015/01/16 20:54:07 | 000,560,328 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2015/01/16 20:54:07 | 000,096,568 | ---- | M] () -- C:\Windows\SysNative\audioLibVc.dll
[2014/12/27 15:14:43 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2014/12/26 23:02:40 | 000,004,616 | ---- | M] () -- C:\Windows\SysWow64\LavasoftTcpService.ini
[2014/12/26 23:02:40 | 000,002,448 | ---- | M] () -- C:\Windows\SysWow64\LavasoftTcpServiceOff.ini
[2014/12/26 23:02:40 | 000,002,448 | ---- | M] () -- C:\Windows\SysNative\LavasoftTcpServiceOff.ini
[2014/12/26 21:21:04 | 000,000,432 | ---- | M] () -- C:\Windows\tasks\SparkTrust Update Version3_triggeronce.job
[2014/12/26 21:21:04 | 000,000,432 | ---- | M] () -- C:\Windows\tasks\SparkTrust Update Version3.job
[2014/12/26 20:42:53 | 000,001,347 | ---- | M] () -- C:\Users\brianboyns\Application Data\Microsoft\Internet Explorer\Quick Launch\SparkTrust PC Cleaner Plus.lnk
[2014/12/26 20:42:53 | 000,001,323 | ---- | M] () -- C:\Users\brianboyns\Desktop\SparkTrust PC Cleaner Plus.lnk

========== Files Created - No Company Name ==========

[2015/01/20 20:59:29 | 000,002,503 | ---- | C] () -- C:\Users\brianboyns\Desktop\Safari.lnk
[2015/01/20 18:48:08 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2015/01/20 18:48:08 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2015/01/20 18:48:08 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2015/01/20 18:48:08 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2015/01/20 18:48:08 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2015/01/19 19:30:06 | 000,008,192 | ---- | C] () -- C:\Windows\SysWow64\WDPABKP.dat
[2015/01/19 18:13:01 | 002,186,752 | ---- | C] () -- C:\Users\brianboyns\Desktop\adwcleaner_4.108.exe
[2015/01/17 17:48:54 | 000,001,142 | ---- | C] () -- C:\Users\Public\Desktop\WD Security.lnk
[2015/01/17 17:41:22 | 000,001,154 | ---- | C] () -- C:\Users\Public\Desktop\WD SmartWare.lnk
[2015/01/17 17:40:11 | 000,001,087 | ---- | C] () -- C:\Users\Public\Desktop\WD Drive Utilities.lnk
[2015/01/16 23:48:05 | 000,001,203 | ---- | C] () -- C:\Users\brianboyns\Desktop\Seagate Dashboard.lnk
[2015/01/16 23:48:01 | 000,001,138 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Memeo Send.lnk
[2015/01/16 23:48:00 | 000,000,162 | ---- | C] () -- C:\MemeoSendAddin
[2015/01/16 21:19:21 | 000,000,935 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2015.lnk
[2015/01/16 20:54:14 | 005,804,772 | ---- | C] () -- C:\Windows\SysNative\drivers\rtvienna.dat
[2015/01/16 20:54:12 | 001,443,340 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2015/01/16 20:54:07 | 000,096,568 | ---- | C] () -- C:\Windows\SysNative\audioLibVc.dll
[2014/12/26 23:02:40 | 000,004,616 | ---- | C] () -- C:\Windows\SysWow64\LavasoftTcpService.ini
[2014/12/26 23:02:40 | 000,002,448 | ---- | C] () -- C:\Windows\SysWow64\LavasoftTcpServiceOff.ini
[2014/12/26 23:02:40 | 000,002,448 | ---- | C] () -- C:\Windows\SysNative\LavasoftTcpServiceOff.ini
[2014/12/26 20:43:17 | 000,000,474 | ---- | C] () -- C:\Windows\tasks\SparkTrust Registration3.job
[2014/12/26 20:42:53 | 000,001,347 | ---- | C] () -- C:\Users\brianboyns\Application Data\Microsoft\Internet Explorer\Quick Launch\SparkTrust PC Cleaner Plus.lnk
[2014/12/26 20:42:53 | 000,001,323 | ---- | C] () -- C:\Users\brianboyns\Desktop\SparkTrust PC Cleaner Plus.lnk
[2014/12/26 20:42:48 | 000,000,432 | ---- | C] () -- C:\Windows\tasks\SparkTrust Update Version3.job
[2014/12/26 20:42:45 | 000,000,432 | ---- | C] () -- C:\Windows\tasks\SparkTrust Update Version3_triggeronce.job
[2014/02/03 23:29:30 | 000,002,025 | ---- | C] () -- C:\Windows\_isenv31.ini
[2013/11/02 16:14:54 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl
[2013/09/23 17:36:13 | 000,268,968 | ---- | C] () -- C:\Windows\SysWow64\sqlite3.dll
[2011/11/09 12:18:43 | 000,000,235 | R--- | C] () -- C:\Users\brianboyns\AppData\Roaming\devices.xml
[2011/11/09 12:18:43 | 000,000,012 | R--- | C] () -- C:\Users\brianboyns\AppData\Roaming\settings.xml
[2011/01/22 04:43:29 | 000,111,885 | R--- | C] () -- C:\Users\brianboyns\episcopal campus ministry prayer reflections pamflet 2006.pdf
[2011/01/06 22:23:46 | 000,000,022 | R--- | C] () -- C:\Users\brianboyns\AppData\Local\kodakpcd.ini
[2010/06/24 20:04:15 | 000,008,192 | R--- | C] () -- C:\Users\brianboyns\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/13 17:21:42 | 000,099,384 | R--- | C] () -- C:\Users\brianboyns\AppData\Roaming\inst.exe
[2010/06/13 17:21:42 | 000,007,859 | R--- | C] () -- C:\Users\brianboyns\AppData\Roaming\pcouffin.cat
[2010/06/13 17:21:42 | 000,001,167 | R--- | C] () -- C:\Users\brianboyns\AppData\Roaming\pcouffin.inf
[2010/06/12 16:24:09 | 000,000,992 | R--- | C] () -- C:\Users\brianboyns\AppData\Roaming\wklnhst.dat
[2010/05/25 21:39:27 | 000,007,599 | R--- | C] () -- C:\Users\brianboyns\AppData\Local\Resmon.ResmonCfg
[2010/05/25 19:29:51 | 000,025,003 | R--- | C] () -- C:\Users\brianboyns\AppData\Roaming\UserTile.png

========== ZeroAccess Check ==========

[2009/07/13 20:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/06/24 18:05:42 | 014,175,744 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/06/24 17:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 17:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 04:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 17:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2015/01/16 18:33:14 | 000,000,000 | ---D | M] -- C:\Users\Arborist.brianboyns-PC\AppData\Roaming\IObit
[2015/01/16 18:38:45 | 000,000,000 | ---D | M] -- C:\Users\Arborist.brianboyns-PC\AppData\Roaming\ProductData
[2014/12/16 18:01:06 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\.spotflux
[2010/05/25 21:26:40 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\Auslogics
[2014/12/27 03:23:09 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\AVG2015
[2015/01/16 18:38:44 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\Avg_Update_1014av
[2011/02/21 02:46:28 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\BitComet
[2010/05/27 13:07:55 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\com.zoosk.Desktop.096E6A67431258A508A2446A847B240591D2C99B.1
[2014/12/27 20:03:51 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\Curiolab
[2015/01/16 18:33:40 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\Dropbox
[2015/01/16 18:39:37 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\IObit
[2015/01/16 23:44:49 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\Leadertech
[2015/01/18 03:16:28 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\Memeo
[2012/04/03 19:57:10 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\MusicOasis
[2014/12/26 03:35:33 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\ProductData
[2015/01/16 18:33:42 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\Rovio
[2015/01/16 18:33:42 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\Rovio Entertainment Ltd
[2015/01/16 23:48:35 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\Seagate
[2011/01/06 22:20:32 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\Skinux
[2010/06/12 16:24:17 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\Template
[2014/12/27 03:21:48 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\TuneUp Software
[2010/08/11 15:36:30 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\Vso
[2010/12/05 20:58:11 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\WeatherBug
[2011/02/02 18:20:31 | 000,000,000 | ---D | M] -- C:\Users\brianboyns\AppData\Roaming\XemiComputers
[2014/01/13 01:52:17 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\IObit
[2014/01/13 01:52:17 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\IObit

========== Files - Unicode (All) ==========
[2013/11/13 17:22:05 | 104,165,720 | ---- | M] ()(C:\Windows\SysWow64\???^) -- C:\Windows\SysWow64\⥛꜊^
[2013/11/13 17:22:05 | 104,165,720 | ---- | C] ()(C:\Windows\SysWow64\???^) -- C:\Windows\SysWow64\⥛꜊^
[2013/10/05 11:05:20 | 099,386,337 | ---- | M] ()(C:\Windows\SysWow64\???) -- C:\Windows\SysWow64\
[2013/10/04 09:28:49 | 099,386,337 | ---- | C] ()(C:\Windows\SysWow64\???) -- C:\Windows\SysWow64\
[2013/10/01 23:04:57 | 098,712,514 | ---- | M] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\ﻂ靮›
[2013/10/01 11:05:01 | 098,712,514 | ---- | C] ()(C:\Windows\SysWow64\????) -- C:\Windows\SysWow64\ﻂ靮›

< End of report >
boynsini_13
Regular Member
 
Posts: 79
Joined: January 3rd, 2015, 6:15 am

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby boynsini_13 » January 21st, 2015, 2:16 am

E. No changes noticed
boynsini_13
Regular Member
 
Posts: 79
Joined: January 3rd, 2015, 6:15 am

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby pgmigg » January 21st, 2015, 2:40 am

Hello Brian,

Step 1.
ZOEK Scan
  1. Please temporarily disable your AntiVirus program as shown in This topic now to avoid potential conflicts during both download and run.
  2. Download zoek.exe and save it to your desktop.
  3. Close any open browsers.
  4. Right click on zoek.exe and select "Run as administrator..." to run it. If prompted by UAC, please allow it.
  5. Please wait while the tool starts. It will appear to be doing nothing and may take a few seconds to come up.
  6. Click the More Options button below the large panel and check the box:
    • Silent Runners
    • Startup Information
    • Installed Programs
    • System Specs
    • Auto Clean
  7. Click on Run script button
  8. Please wait patiently (it may take a few minutes) until a log report will open (this may be after reboot, if required)
  9. Copy and paste the contents of the opened entire report into your next reply.
    Note: It will also create a log in the C:\ directory named "zoek-results.log"

Step 2.
TDSSKiller - Rootkit Removal Tool Image
Please download the TDSSKiller.exe by Kaspersky... save it to your Desktop. <-Important!!!
  1. Right-click on TDSSKiller.exe and select "Run As Administrator...".
    If TDSSKiller does not run... rename it. Right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. ektfhtw.com).
    If you don't see file extensions, please see: How to change the file extension.
  2. Click the Start Scan button. Do not use the computer during the scan!
  3. Click Change parameters
  4. Under Additional Options CHECK Verify file digital signatures
  5. IMPORTANT: Ensure Detect TDLFS file system remains UNCHECKED.
  6. Click OK if changes were made.
  7. Click Start scan and allow it to scan for Malicious objects.

    • If Malicious objects are detected, the default action will be Cure, ensure SKIP is selected... then click Continue
    • If suspicious objects are detected, the default action will be Skip, ensure Skip is selected... then click Continue
    • If Unsigned files are detected, the default action will be Skip, ensure Skip is selected... then click Continue
    DO NOT change the default actions, other than CURE to SKIP.
  8. You may be asked to reboot the computer to complete the process. Click on Reboot Now and allow the computer to reboot.
  9. A log will be created on your root drive (usually C:) drive. The log will have a name like Name.Version_Date_Time_log.txt.
    for example, C:\TDSSKiller.2.4.1.2_20.04.2010_15.31.43_log.txt.
  10. If no reboot is required, click on Report. A log file should appear.
  11. Please post the contents of the log file in your next reply

Please post each log separately to prevent it being cut off by the forum post size limiter.
Check each after you've posted it to make sure it's all present, if any log is cut off you'll have to post it in sections....

Please include in your next reply:
  1. Answer for my question about proxy.
  2. Do you have any problems executing the instructions?
  3. Contents of the zoek-results.log file
  4. Contents of the TDSSKiller_version_dd.mm.yyyy_hh.mm.ss_log.txt log file
  5. Do you see any changes in computer behavior?

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
MRU Teacher
MRU Teacher
 
Posts: 3181
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby boynsini_13 » January 22nd, 2015, 12:40 am

Hi,

Several Issues, I couldn't find/understand what questions you had about "proxy".

Also, Zoek scan wouldn't finish last night, tried to give it more time and was still stuck. I left it on overnight until now (8:30 pm PST) and was still stuck. Last file it got stuck on was Mozilla Firefox (fix) completed, then ... and was inactive after.

As you can imagine, I'm frustrated, though patient and don't want to take matters into my own hands. I'm constantly losing hard-drive space and am starting to think I'll be down to 0 gigs left and not be able to function or even act on your recommendations and fixes you're providing for me. Thank You Very Much For!!!!! I have a couple computer tech friends that I've talked about this problem with (but not acted on anything they recommended) and been trying to bounce around ideas. One thing I've heard is: "HiJack This" program may be able to create a log that you can determine the virus that is hacking my system. I guess I don't understand why I'm having to constantly download more and more log programs and my processes are getting better, but the virus itself seems to be getting worse. My fear is that when I backed up my hard-drive, I may have a portion of the virus on the back-up and should I have to do a full system restore and install just to communicate further, this problem is going to perpetuate. Mainly, I understand that different logs give different information and I just want to be reassured that we're not going down the wrong rabbit hole chasing a different problem than what I'm experiencing. I also realize that we have to solve one problem to get to the next.

The more pertinent question: Because Zoek is freezing on me, should I move onto TDDSKiller?

Also, what proxy information do you need and how do I obtain it?

Thank You,

Brian
boynsini_13
Regular Member
 
Posts: 79
Joined: January 3rd, 2015, 6:15 am

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby pgmigg » January 22nd, 2015, 1:01 am

Hello Brian,

Also, what proxy information do you need and how do I obtain it?
I'm sorry, this was my carelessness - please simply ignore this question... :oops:

The more pertinent question: Because Zoek is freezing on me, should I move onto TDDSKiller?
Yes, please run TDDSKiller scan.

I'm frustrated, though patient and don't want to take matters into my own hands. I'm constantly losing hard-drive space and am starting to think I'll be down to 0 gigs left and not be able to function or even act on your recommendations and fixes you're providing for me. Thank You Very Much For!!!!! I have a couple computer tech friends that I've talked about this problem with (but not acted on anything they recommended) and been trying to bounce around ideas. One thing I've heard is: "HiJack This" program may be able to create a log that you can determine the virus that is hacking my system. I guess I don't understand why I'm having to constantly download more and more log programs and my processes are getting better, but the virus itself seems to be getting worse. My fear is that when I backed up my hard-drive, I may have a portion of the virus on the back-up and should I have to do a full system restore and install just to communicate further, this problem is going to perpetuate. Mainly, I understand that different logs give different information and I just want to be reassured that we're not going down the wrong rabbit hole chasing a different problem than what I'm experiencing. I also realize that we have to solve one problem to get to the next.
Before I start to kill something, I need to make a diagnosis - find the particular infection or a technical problem, which leads to a decrease in free space. Computer is a complex organism and requires a serious comprehensive analysis of many of its characteristics. Thus it is possible to explain why I use so many different scanners. The HiJackThis is old simple scanner which does not work well with 64-bit Windows 7 you used.

So I am waiting for TDSSKiller log.

Then please run the following:

Create Listing of Files
I'd like to see the listings of all files and directories on the questionable hard disk C:
It will be easier and less error prone, if we create a batch file to do this... Please follow these steps:
  1. Copy all text in the quote box (below) to Notepad.
    @echo off
    dir C:\*.* /A:H /S /R /Q > "%userprofile%\desktop\CDiskList-H.txt"
    dir C:\*.* /S /R /Q > "%userprofile%\desktop\CDiskListAll.txt"
    Del %0
  2. Save the Notepad file on your desktop as CDiskLists.bat... save type as "All Files"
    Image
    EDiskLists.bat <<------------- you should see this on your Desktop.
  3. Double click on EDiskLists.bat to execute it.
    A black CMD window will open, then disappear in a while - this is normal. The EDiskLists.bat file will be deleted.
  4. The two files, CDiskList-H.txt and CDiskListAll.txt will appear on your desktop.
  5. Please attach both of them to your next reply - they are may be too big for usual contents placement.

Please post each log separately to prevent it being cut off by the forum post size limiter.
Check each after you've posted it to make sure it's all present, if any log is cut off you'll have to post it in sections....

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Contents of the TDSSKiller_version_dd.mm.yyyy_hh.mm.ss_log.txt log file
  3. Two attachments of CDiskList-H.txt and CDiskListAll.txt files
  4. Do you see any changes in computer behavior?

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
MRU Teacher
MRU Teacher
 
Posts: 3181
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby boynsini_13 » January 22nd, 2015, 3:16 am

Thank you for the clarification, i figured it was something like that, I just am paranoid that my computer is going to completely crash again. I now understand a lot of why you're directing me in this way and appreciate it very much. Currently running the above.
boynsini_13
Regular Member
 
Posts: 79
Joined: January 3rd, 2015, 6:15 am

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby boynsini_13 » January 22nd, 2015, 3:57 am

TDDS Killer Log PART ONE:

23:40:43.0185 0x10a0 TDSS rootkit removing tool 3.0.0.43 Jan 19 2015 18:43:19
23:40:49.0534 0x10a0 ============================================================
23:40:49.0534 0x10a0 Current date / time: 2015/01/21 23:40:49.0534
23:40:49.0534 0x10a0 SystemInfo:
23:40:49.0534 0x10a0
23:40:49.0534 0x10a0 OS Version: 6.1.7601 ServicePack: 1.0
23:40:49.0534 0x10a0 Product type: Workstation
23:40:49.0534 0x10a0 ComputerName: BRIANBOYNS-PC
23:40:49.0534 0x10a0 UserName: brianboyns
23:40:49.0534 0x10a0 Windows directory: C:\Windows
23:40:49.0534 0x10a0 System windows directory: C:\Windows
23:40:49.0534 0x10a0 Running under WOW64
23:40:49.0534 0x10a0 Processor architecture: Intel x64
23:40:49.0534 0x10a0 Number of processors: 4
23:40:49.0534 0x10a0 Page size: 0x1000
23:40:49.0534 0x10a0 Boot type: Normal boot
23:40:49.0534 0x10a0 ============================================================
23:40:49.0659 0x10a0 KLMD registered as C:\Windows\system32\drivers\93611038.sys
23:40:49.0940 0x10a0 System UUID: {D596920F-C44F-422B-A880-49AFE05FACD8}
23:40:51.0094 0x10a0 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:40:51.0157 0x10a0 ============================================================
23:40:51.0157 0x10a0 \Device\Harddisk0\DR0:
23:40:51.0157 0x10a0 MBR partitions:
23:40:51.0157 0x10a0 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1B58800, BlocksNum 0x32000
23:40:51.0157 0x10a0 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1B8A800, BlocksNum 0x48CCD2B0
23:40:51.0157 0x10a0 ============================================================
23:40:51.0204 0x10a0 C: <-> \Device\Harddisk0\DR0\Partition2
23:40:51.0204 0x10a0 ============================================================
23:40:51.0204 0x10a0 Initialize success
23:40:51.0204 0x10a0 ============================================================
23:40:54.0464 0x0638 ============================================================
23:40:54.0464 0x0638 Scan started
23:40:54.0464 0x0638 Mode: Manual;
23:40:54.0464 0x0638 ============================================================
23:40:54.0464 0x0638 KSN ping started
23:40:57.0241 0x0638 KSN ping finished: true
23:40:57.0771 0x0638 ================ Scan system memory ========================
23:40:57.0771 0x0638 System memory - ok
23:40:57.0787 0x0638 ================ Scan services =============================
23:40:57.0896 0x0638 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:40:57.0912 0x0638 1394ohci - ok
23:40:57.0974 0x0638 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:40:57.0974 0x0638 ACPI - ok
23:40:58.0021 0x0638 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:40:58.0021 0x0638 AcpiPmi - ok
23:40:58.0114 0x0638 [ CB1719E3EA00A0C114A8AD2655F43754, B38D21C4A7A83904CADEBA96A56AA5D1807C412A8E0BEFC889DF20D02941E570 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:40:58.0130 0x0638 AdobeFlashPlayerUpdateSvc - ok
23:40:58.0161 0x0638 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:40:58.0177 0x0638 adp94xx - ok
23:40:58.0208 0x0638 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:40:58.0208 0x0638 adpahci - ok
23:40:58.0224 0x0638 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:40:58.0224 0x0638 adpu320 - ok
23:40:58.0286 0x0638 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:40:58.0286 0x0638 AeLookupSvc - ok
23:40:58.0333 0x0638 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
23:40:58.0348 0x0638 AFD - ok
23:40:58.0395 0x0638 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
23:40:58.0395 0x0638 agp440 - ok
23:40:58.0411 0x0638 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
23:40:58.0426 0x0638 ALG - ok
23:40:58.0442 0x0638 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
23:40:58.0442 0x0638 aliide - ok
23:40:58.0473 0x0638 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
23:40:58.0473 0x0638 amdide - ok
23:40:58.0489 0x0638 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:40:58.0489 0x0638 AmdK8 - ok
23:40:58.0489 0x0638 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:40:58.0504 0x0638 AmdPPM - ok
23:40:58.0536 0x0638 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:40:58.0536 0x0638 amdsata - ok
23:40:58.0551 0x0638 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:40:58.0551 0x0638 amdsbs - ok
23:40:58.0567 0x0638 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:40:58.0567 0x0638 amdxata - ok
23:40:58.0614 0x0638 [ 80B9412C4DE09147581FC935FB4C97AB, 0C9661F7B5EF7F9D61981790B7AB64E3375BD117962166619D0CC546A2D014D3 ] AppID C:\Windows\system32\drivers\appid.sys
23:40:58.0614 0x0638 AppID - ok
23:40:58.0629 0x0638 [ F71CA01C24FC3798A717B5A6F682F9AD, 8CF1C209E7BBBAD02D6D087293C0B681CDA3170AF119CA2916C2708D8801E749 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:40:58.0629 0x0638 AppIDSvc - ok
23:40:58.0676 0x0638 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
23:40:58.0676 0x0638 Appinfo - ok
23:40:58.0692 0x0638 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
23:40:58.0692 0x0638 arc - ok
23:40:58.0707 0x0638 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:40:58.0707 0x0638 arcsas - ok
23:40:59.0628 0x0638 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:40:59.0643 0x0638 aspnet_state - ok
23:40:59.0659 0x0638 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:40:59.0659 0x0638 AsyncMac - ok
23:40:59.0674 0x0638 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
23:40:59.0690 0x0638 atapi - ok
23:40:59.0706 0x0638 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:40:59.0721 0x0638 AudioEndpointBuilder - ok
23:40:59.0752 0x0638 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:40:59.0768 0x0638 AudioSrv - ok
23:40:59.0799 0x0638 [ 54FE1CAFA3B3029B282E6A05EA672031, E972B8A22322FF06903A1E3AB20585E02A21C3A6EA9A75C172231494A08D14D1 ] Avgdiska C:\Windows\system32\DRIVERS\avgdiska.sys
23:40:59.0799 0x0638 Avgdiska - ok
23:40:59.0986 0x0638 [ 225B28E9303D375314C744AE181DF95F, 6BC8F19F6B4D901661022CD8F4EA90A8F1895B6B3BD1225B3708E2CBDCAB8D50 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
23:41:00.0049 0x0638 AVGIDSAgent - ok
23:41:00.0064 0x0638 [ A3124AC9C0AF30ABD000A7CB5779C101, 1719EE6986FC29EE4EA383B2DAF4CAF9C1E70A1F547F75F8D51EDA027D3E5236 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
23:41:00.0064 0x0638 AVGIDSDriver - ok
23:41:00.0080 0x0638 [ 68070AEEE757ACC6EC5BC291B1E8EA1A, 8A4902CE6F4696F33CD6CF98F96FDA7895B99A676916F3137CF34192AF3C25A4 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
23:41:00.0096 0x0638 AVGIDSHA - ok
23:41:00.0127 0x0638 [ 7C9E8FD2BFCE60BDF9B5944C0BE47C87, 0F51507BAECDEF7B6F553066621A03832FF070EC6837A8E304AABA1227F779BF ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
23:41:00.0127 0x0638 Avgldx64 - ok
23:41:00.0158 0x0638 [ 734DCC05A7F327FDCE43A18BA011FD4E, E5245314E60D86911A6A9FC1FE4A0C0D0284D972CE642C28B9B1A43D1553AFA5 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
23:41:00.0158 0x0638 Avgloga - ok
23:41:00.0174 0x0638 [ B4D589C734D796B5B76E0A0E5DA50397, CACAB2C0D01583CEB55C62334A4E9BB46A2E399BE9B7EDC988AEC785DF1FCC1C ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
23:41:00.0174 0x0638 Avgmfx64 - ok
23:41:00.0205 0x0638 [ 3CE824D46BA1871713ABF147E6BAD556, B4D8AFC388BE06D6E3C5CDC865F80FF101E731E1D2B221FFC6C1E28487E1B3CD ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
23:41:00.0205 0x0638 Avgrkx64 - ok
23:41:00.0220 0x0638 [ 0BB7ECAC81554D83A66A0B9F961BB9D0, BBCE86FE8980E06F5A92E8636D6D3F2FD7B6EF7DB999BBEB0E68A5FCB220EDC9 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
23:41:00.0220 0x0638 Avgtdia - ok
23:41:00.0252 0x0638 [ 2B38C7E964FA19A298D04CA177FF8B6F, B233B6AD03217AD72A8F4253FDCF182E6007B5D28178F38BDCACBC16BD69D0CB ] avgwd C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
23:41:00.0267 0x0638 avgwd - ok
23:41:00.0298 0x0638 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:41:00.0298 0x0638 AxInstSV - ok
23:41:00.0330 0x0638 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
23:41:00.0345 0x0638 b06bdrv - ok
23:41:00.0376 0x0638 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:41:00.0376 0x0638 b57nd60a - ok
23:41:00.0486 0x0638 [ 2ED050291BC1D7F9E322E328DB3AAECF, 906DB2E9A8020EDB33C9732C7BA2474D6600C9B14537AAD4EBFE924A7801794B ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
23:41:00.0486 0x0638 BBSvc - ok
23:41:00.0501 0x0638 [ 785DE7ABDA13309D6065305542829E76, 78F49A5349B66042836615EF99B4EB70FA708369D315D105513C04F33070D297 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
23:41:00.0501 0x0638 BBUpdate - ok
23:41:00.0532 0x0638 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
23:41:00.0532 0x0638 BDESVC - ok
23:41:00.0548 0x0638 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
23:41:00.0548 0x0638 Beep - ok
23:41:00.0595 0x0638 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
23:41:00.0610 0x0638 BFE - ok
23:41:00.0657 0x0638 [ 1B63F2B7CA6B5290CC124CDD07520BC9, A97E56CC3668F60C42D0C5A2F50E9519E0CA60D22542DA358364753EF6CCE91C ] BingDesktopUpdate C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
23:41:00.0657 0x0638 BingDesktopUpdate - ok
23:41:00.0720 0x0638 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
23:41:00.0735 0x0638 BITS - ok
23:41:00.0751 0x0638 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:41:00.0751 0x0638 blbdrive - ok
23:41:00.0798 0x0638 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:41:00.0798 0x0638 bowser - ok
23:41:00.0813 0x0638 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:41:00.0813 0x0638 BrFiltLo - ok
23:41:00.0813 0x0638 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:41:00.0813 0x0638 BrFiltUp - ok
23:41:00.0844 0x0638 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
23:41:00.0844 0x0638 BridgeMP - ok
23:41:00.0860 0x0638 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
23:41:00.0860 0x0638 Browser - ok
23:41:00.0876 0x0638 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:41:00.0891 0x0638 Brserid - ok
23:41:00.0891 0x0638 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:41:00.0907 0x0638 BrSerWdm - ok
23:41:00.0907 0x0638 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:41:00.0907 0x0638 BrUsbMdm - ok
23:41:00.0907 0x0638 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:41:00.0922 0x0638 BrUsbSer - ok
23:41:00.0922 0x0638 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:41:00.0922 0x0638 BTHMODEM - ok
23:41:00.0954 0x0638 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
23:41:00.0954 0x0638 bthserv - ok
23:41:01.0016 0x0638 catchme - ok
23:41:01.0032 0x0638 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:41:01.0032 0x0638 cdfs - ok
23:41:01.0078 0x0638 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
23:41:01.0078 0x0638 cdrom - ok
23:41:01.0125 0x0638 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
23:41:01.0125 0x0638 CertPropSvc - ok
23:41:01.0141 0x0638 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:41:01.0141 0x0638 circlass - ok
23:41:01.0156 0x0638 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
23:41:01.0156 0x0638 CLFS - ok
23:41:01.0219 0x0638 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:41:01.0219 0x0638 clr_optimization_v2.0.50727_32 - ok
23:41:01.0266 0x0638 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:41:01.0266 0x0638 clr_optimization_v2.0.50727_64 - ok
23:41:01.0344 0x0638 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:41:01.0344 0x0638 clr_optimization_v4.0.30319_32 - ok
23:41:01.0375 0x0638 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:41:01.0390 0x0638 clr_optimization_v4.0.30319_64 - ok
23:41:01.0406 0x0638 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:41:01.0406 0x0638 CmBatt - ok
23:41:01.0422 0x0638 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:41:01.0422 0x0638 cmdide - ok
23:41:01.0468 0x0638 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
23:41:01.0484 0x0638 CNG - ok
23:41:01.0484 0x0638 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:41:01.0484 0x0638 Compbatt - ok
23:41:01.0515 0x0638 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
23:41:01.0515 0x0638 CompositeBus - ok
23:41:01.0515 0x0638 COMSysApp - ok
23:41:01.0546 0x0638 cpuz134 - ok
23:41:01.0546 0x0638 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:41:01.0562 0x0638 crcdisk - ok
23:41:01.0593 0x0638 [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:41:01.0593 0x0638 CryptSvc - ok
23:41:02.0436 0x0638 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:41:02.0436 0x0638 DcomLaunch - ok
23:41:02.0482 0x0638 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
23:41:02.0482 0x0638 defragsvc - ok
23:41:02.0545 0x0638 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:41:02.0545 0x0638 DfsC - ok
23:41:02.0576 0x0638 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:41:02.0576 0x0638 Dhcp - ok
23:41:02.0607 0x0638 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
23:41:02.0623 0x0638 discache - ok
23:41:02.0623 0x0638 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:41:02.0638 0x0638 Disk - ok
23:41:02.0670 0x0638 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:41:02.0685 0x0638 Dnscache - ok
23:41:02.0732 0x0638 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
23:41:02.0732 0x0638 dot3svc - ok
23:41:02.0794 0x0638 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
23:41:02.0794 0x0638 DPS - ok
23:41:02.0841 0x0638 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:41:02.0841 0x0638 drmkaud - ok
23:41:02.0919 0x0638 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:41:02.0935 0x0638 DXGKrnl - ok
23:41:02.0950 0x0638 [ 11D0ECA73AB25135F65656B93ADBCB3D, 65970D64DFB2272C36918D47B440ECDB45D99BAABB78651BF67D1BD0026A45CC ] e1yexpress C:\Windows\system32\DRIVERS\e1y62x64.sys
23:41:02.0950 0x0638 e1yexpress - ok
23:41:02.0966 0x0638 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
23:41:02.0982 0x0638 EapHost - ok
23:41:03.0075 0x0638 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
23:41:03.0138 0x0638 ebdrv - ok
23:41:03.0184 0x0638 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS C:\Windows\System32\lsass.exe
23:41:03.0184 0x0638 EFS - ok
23:41:03.0262 0x0638 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:41:03.0278 0x0638 ehRecvr - ok
23:41:03.0278 0x0638 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
23:41:03.0294 0x0638 ehSched - ok
23:41:03.0309 0x0638 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:41:03.0325 0x0638 elxstor - ok
23:41:03.0356 0x0638 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:41:03.0356 0x0638 ErrDev - ok
23:41:03.0450 0x0638 [ DF96C3CD6AE15F6D0A6BCB70F9C1E88D, 4D9E779684D19137D43472CA18C8A955AD29C82C5F9D7C7E248A1400EE40EE59 ] esgiguard C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys
23:41:03.0450 0x0638 esgiguard - ok
23:41:03.0496 0x0638 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
23:41:03.0496 0x0638 EventSystem - ok
23:41:03.0528 0x0638 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
23:41:03.0528 0x0638 exfat - ok
23:41:03.0543 0x0638 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:41:03.0543 0x0638 fastfat - ok
23:41:03.0606 0x0638 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
23:41:03.0621 0x0638 Fax - ok
23:41:03.0637 0x0638 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:41:03.0637 0x0638 fdc - ok
23:41:03.0668 0x0638 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
23:41:03.0668 0x0638 fdPHost - ok
23:41:03.0684 0x0638 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
23:41:03.0684 0x0638 FDResPub - ok
23:41:03.0699 0x0638 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:41:03.0699 0x0638 FileInfo - ok
23:41:03.0699 0x0638 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:41:03.0699 0x0638 Filetrace - ok
23:41:03.0715 0x0638 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:41:03.0715 0x0638 flpydisk - ok
23:41:03.0762 0x0638 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:41:03.0762 0x0638 FltMgr - ok
23:41:03.0808 0x0638 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
23:41:03.0840 0x0638 FontCache - ok
23:41:03.0886 0x0638 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:41:03.0886 0x0638 FontCache3.0.0.0 - ok
23:41:03.0902 0x0638 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:41:03.0902 0x0638 FsDepends - ok
23:41:03.0918 0x0638 [ 6C06701BF1DB05405804D7EB610991CE, 75DEB2204D9AC338ED7C4742BEFAFA0AFC7E42B2C1B54A57DF8A1AD097D9EC3E ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
23:41:03.0918 0x0638 fssfltr - ok
23:41:04.0042 0x0638 [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
23:41:04.0074 0x0638 fsssvc - ok
23:41:04.0089 0x0638 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:41:04.0089 0x0638 Fs_Rec - ok
23:41:04.0120 0x0638 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:41:04.0120 0x0638 fvevol - ok
23:41:04.0136 0x0638 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
23:41:04.0136 0x0638 gagp30kx - ok
23:41:04.0152 0x0638 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:41:04.0152 0x0638 GEARAspiWDM - ok
23:41:04.0198 0x0638 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
23:41:04.0214 0x0638 gpsvc - ok
23:41:04.0308 0x0638 [ 816FD5A6F3C2F3D600900096632FC60E, D92401C4B56663F8A12B6390562608A125713408B00266C53844129679E48E9C ] Greg_Service C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
23:41:04.0323 0x0638 Greg_Service - ok
23:41:04.0339 0x0638 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:41:04.0339 0x0638 hcw85cir - ok
23:41:04.0370 0x0638 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:41:04.0370 0x0638 HdAudAddService - ok
23:41:04.0417 0x0638 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
23:41:04.0417 0x0638 HDAudBus - ok
23:41:04.0432 0x0638 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
23:41:04.0432 0x0638 HidBatt - ok
23:41:04.0448 0x0638 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
23:41:04.0448 0x0638 HidBth - ok
23:41:04.0464 0x0638 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:41:04.0464 0x0638 HidIr - ok
23:41:04.0479 0x0638 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
23:41:04.0479 0x0638 hidserv - ok
23:41:05.0290 0x0638 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:41:05.0290 0x0638 HidUsb - ok
23:41:05.0337 0x0638 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:41:05.0337 0x0638 hkmsvc - ok
23:41:05.0384 0x0638 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:41:05.0384 0x0638 HomeGroupListener - ok
23:41:05.0431 0x0638 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:41:05.0446 0x0638 HomeGroupProvider - ok
23:41:05.0478 0x0638 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:41:05.0478 0x0638 HpSAMD - ok
23:41:05.0540 0x0638 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:41:05.0556 0x0638 HTTP - ok
23:41:05.0665 0x0638 [ E5805896A55D4166C20F216249F40FA3, F426BF60D5B916E7A778EF24C49FE1FFE1B2977C2ABD2977FD5C38C6E6CB139F ] HWiNFO32 C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS
23:41:05.0665 0x0638 HWiNFO32 - ok
23:41:05.0696 0x0638 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:41:05.0696 0x0638 hwpolicy - ok
23:41:05.0743 0x0638 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
23:41:05.0743 0x0638 i8042prt - ok
23:41:05.0805 0x0638 [ 7548066DF68A8A1A56B043359F915F37, 6225DDE554E45858374CBD284A85A00F773089A667C08492187A637232B8BD9A ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
23:41:05.0821 0x0638 IAANTMON - ok
23:41:05.0868 0x0638 [ 1D004CB1DA6323B1F55CAEF7F94B61D9, 8FFFB429BA46938724BBB87AB9B3EC77EA17C4B893BABDBDD38309F02963D405 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
23:41:05.0868 0x0638 iaStor - ok
23:41:05.0930 0x0638 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:41:05.0946 0x0638 iaStorV - ok
23:41:06.0008 0x0638 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:41:06.0024 0x0638 idsvc - ok
23:41:06.0055 0x0638 IEEtwCollectorService - ok
23:41:06.0336 0x0638 [ 8814F0B9A09C647D3D7BE735450E7B4C, E82AD0DC556AE7663C1A5CE75DA3619E1614BC88F52558496FF0D569DE04E1CA ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
23:41:06.0523 0x0638 igfx - ok
23:41:06.0554 0x0638 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
23:41:06.0554 0x0638 iirsp - ok
23:41:06.0616 0x0638 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
23:41:06.0648 0x0638 IKEEXT - ok
23:41:06.0772 0x0638 [ D2B1DA73B6E8769A1BE1A55693B7F1B3, FE26FEAD6A45E4596A7CA9689B66511C4BCB4686A1914505257648DCE048CA26 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:41:06.0835 0x0638 IntcAzAudAddService - ok
23:41:06.0866 0x0638 [ B014CE58F0A8048D3924BA8D5CCBC5F1, C2A913B7A7A0CB2B8C1EC9E51DE98B51DF55A9AA4D21804C531E30D9FACCC0F9 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
23:41:06.0866 0x0638 IntcHdmiAddService - ok
23:41:06.0897 0x0638 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
23:41:06.0897 0x0638 intelide - ok
23:41:06.0913 0x0638 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:41:06.0913 0x0638 intelppm - ok
23:41:06.0928 0x0638 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:41:06.0944 0x0638 IPBusEnum - ok
23:41:06.0975 0x0638 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:41:06.0975 0x0638 IpFilterDriver - ok
23:41:07.0022 0x0638 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:41:07.0038 0x0638 iphlpsvc - ok
23:41:07.0084 0x0638 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:41:07.0084 0x0638 IPMIDRV - ok
23:41:07.0100 0x0638 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:41:07.0100 0x0638 IPNAT - ok
23:41:07.0116 0x0638 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:41:07.0116 0x0638 IRENUM - ok
23:41:07.0131 0x0638 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:41:07.0131 0x0638 isapnp - ok
23:41:07.0178 0x0638 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:41:07.0178 0x0638 iScsiPrt - ok
23:41:07.0194 0x0638 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:41:07.0194 0x0638 kbdclass - ok
23:41:07.0240 0x0638 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:41:07.0240 0x0638 kbdhid - ok
23:41:07.0240 0x0638 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso C:\Windows\system32\lsass.exe
23:41:07.0240 0x0638 KeyIso - ok
23:41:07.0287 0x0638 [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:41:07.0287 0x0638 KSecDD - ok
23:41:08.0114 0x0638 [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:41:08.0114 0x0638 KSecPkg - ok
23:41:08.0114 0x0638 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:41:08.0114 0x0638 ksthunk - ok
23:41:08.0145 0x0638 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
23:41:08.0161 0x0638 KtmRm - ok
23:41:08.0223 0x0638 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
23:41:08.0223 0x0638 LanmanServer - ok
23:41:08.0270 0x0638 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:41:08.0270 0x0638 LanmanWorkstation - ok
23:41:08.0286 0x0638 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:41:08.0286 0x0638 lltdio - ok
23:41:08.0317 0x0638 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:41:08.0332 0x0638 lltdsvc - ok
23:41:08.0379 0x0638 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:41:08.0379 0x0638 lmhosts - ok
23:41:08.0395 0x0638 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
23:41:08.0395 0x0638 LSI_FC - ok
23:41:08.0410 0x0638 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
23:41:08.0410 0x0638 LSI_SAS - ok
23:41:08.0442 0x0638 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:41:08.0442 0x0638 LSI_SAS2 - ok
23:41:08.0457 0x0638 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:41:08.0457 0x0638 LSI_SCSI - ok
23:41:08.0473 0x0638 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
23:41:08.0473 0x0638 luafv - ok
23:41:08.0504 0x0638 [ 478CC94C937D235CB0A96AB8F2359D81, 1877AF93FD777F0D5BC02C0CD6E806A165991B6C77D424B13D2D77F8F9D1EFCC ] mbamchameleon C:\Windows\system32\drivers\mbamchameleon.sys
23:41:08.0504 0x0638 mbamchameleon - ok
23:41:08.0551 0x0638 [ CA43F8904E24BBE49982E4C0B29E6579, 2E3E6D02980706061C478C1643F8838310DDAC573C8722AE7F3290CE36B02CB2 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
23:41:08.0551 0x0638 MBAMProtector - ok
23:41:08.0660 0x0638 [ 0BB29DE40C9D9529793DCDB59A43CF5B, 251001A407D32EF22F64915EEFFAAEC229073C4549BF7D9D1D4209B7D15B4681 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
23:41:08.0691 0x0638 MBAMScheduler - ok
23:41:08.0738 0x0638 [ 5F82D8188B370B0CF185D4AE2B9B4A0E, 549B53DD989A069E1C38347C4CEF5283DF9B428CE102799B06A20D3D8F23825F ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
23:41:08.0754 0x0638 MBAMService - ok
23:41:08.0754 0x0638 [ A646C2DDB8C46E9B20A326FAF566646C, F46E3BF392CB4EB53D323BC8CC41EFBB9C5D7C935FECF255F524EB18583A2A37 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
23:41:08.0754 0x0638 MBAMWebAccessControl - ok
23:41:08.0800 0x0638 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:41:08.0800 0x0638 Mcx2Svc - ok
23:41:08.0816 0x0638 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
23:41:08.0816 0x0638 megasas - ok
23:41:08.0832 0x0638 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
23:41:08.0832 0x0638 MegaSR - ok
23:41:08.0878 0x0638 [ 9547F37D0E899FD71B52B2AFD4437C79, 1E77BAEE5647F892A5B2CA4EDDEC38EC7859ADD6EAD72A8934B3C04D02ADF5C6 ] MemeoBackgroundService C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
23:41:08.0878 0x0638 MemeoBackgroundService - ok
23:41:08.0925 0x0638 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
23:41:08.0925 0x0638 MMCSS - ok
23:41:08.0925 0x0638 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
23:41:08.0925 0x0638 Modem - ok
23:41:08.0941 0x0638 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:41:08.0941 0x0638 monitor - ok
23:41:08.0988 0x0638 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:41:08.0988 0x0638 mouclass - ok
23:41:09.0003 0x0638 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:41:09.0003 0x0638 mouhid - ok
23:41:09.0050 0x0638 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:41:09.0050 0x0638 mountmgr - ok
23:41:09.0097 0x0638 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
23:41:09.0097 0x0638 mpio - ok
23:41:09.0112 0x0638 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:41:09.0112 0x0638 mpsdrv - ok
23:41:09.0144 0x0638 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:41:09.0159 0x0638 MpsSvc - ok
23:41:09.0175 0x0638 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:41:09.0175 0x0638 MRxDAV - ok
23:41:09.0222 0x0638 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:41:09.0237 0x0638 mrxsmb - ok
23:41:09.0284 0x0638 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:41:09.0284 0x0638 mrxsmb10 - ok
23:41:09.0331 0x0638 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:41:09.0331 0x0638 mrxsmb20 - ok
23:41:09.0346 0x0638 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
23:41:09.0346 0x0638 msahci - ok
23:41:09.0362 0x0638 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:41:09.0362 0x0638 msdsm - ok
23:41:09.0378 0x0638 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
23:41:09.0393 0x0638 MSDTC - ok
23:41:09.0409 0x0638 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:41:09.0409 0x0638 Msfs - ok
23:41:09.0424 0x0638 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:41:09.0424 0x0638 mshidkmdf - ok
23:41:09.0456 0x0638 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:41:09.0456 0x0638 msisadrv - ok
23:41:09.0487 0x0638 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:41:09.0487 0x0638 MSiSCSI - ok
23:41:09.0487 0x0638 msiserver - ok
23:41:09.0502 0x0638 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:41:09.0502 0x0638 MSKSSRV - ok
23:41:09.0518 0x0638 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:41:09.0518 0x0638 MSPCLOCK - ok
23:41:09.0518 0x0638 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:41:09.0518 0x0638 MSPQM - ok
23:41:09.0565 0x0638 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:41:09.0580 0x0638 MsRPC - ok
23:41:09.0580 0x0638 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
23:41:09.0580 0x0638 mssmbios - ok
23:41:09.0612 0x0638 MSSQL$MICROSOFTBCM - ok
23:41:09.0658 0x0638 [ CB7524C21727404BD3140DCA32DEB7DE, 5B1F111FADC31CD1E6F0345E2F9F989D9E63D64C9F20EFEFAC7A86BD82B8484C ] MSSQLServerADHelper C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
23:41:09.0658 0x0638 MSSQLServerADHelper - ok
23:41:09.0674 0x0638 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:41:09.0674 0x0638 MSTEE - ok
23:41:09.0690 0x0638 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
23:41:09.0690 0x0638 MTConfig - ok
23:41:09.0705 0x0638 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
23:41:09.0705 0x0638 Mup - ok
23:41:09.0752 0x0638 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
23:41:09.0768 0x0638 napagent - ok
23:41:09.0799 0x0638 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:41:09.0799 0x0638 NativeWifiP - ok
23:41:09.0861 0x0638 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
23:41:09.0877 0x0638 NDIS - ok
23:41:09.0892 0x0638 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:41:09.0892 0x0638 NdisCap - ok
23:41:09.0908 0x0638 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:41:09.0908 0x0638 NdisTapi - ok
23:41:09.0955 0x0638 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:41:09.0955 0x0638 Ndisuio - ok
23:41:09.0986 0x0638 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:41:10.0002 0x0638 NdisWan - ok
23:41:10.0048 0x0638 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:41:10.0048 0x0638 NDProxy - ok
23:41:10.0126 0x0638 [ 7D2633295EB6FF2B938185874884059D, B3A4E52ABCB2E2720D8ADB0B68C222D4AB98E838D40B6A731D15EB1D6C9DEA15 ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
23:41:10.0158 0x0638 Nero BackItUp Scheduler 4.0 - ok
23:41:10.0173 0x0638 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:41:10.0173 0x0638 NetBIOS - ok
23:41:10.0984 0x0638 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:41:11.0000 0x0638 NetBT - ok
23:41:11.0016 0x0638 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon C:\Windows\system32\lsass.exe
23:41:11.0016 0x0638 Netlogon - ok
23:41:11.0078 0x0638 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
23:41:11.0078 0x0638 Netman - ok
23:41:11.0156 0x0638 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:41:11.0172 0x0638 NetMsmqActivator - ok
23:41:11.0172 0x0638 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:41:11.0187 0x0638 NetPipeActivator - ok
23:41:11.0203 0x0638 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
23:41:11.0218 0x0638 netprofm - ok
23:41:11.0218 0x0638 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:41:11.0234 0x0638 NetTcpActivator - ok
23:41:11.0234 0x0638 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:41:11.0234 0x0638 NetTcpPortSharing - ok
23:41:11.0250 0x0638 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
23:41:11.0250 0x0638 nfrd960 - ok
23:41:11.0281 0x0638 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
23:41:11.0281 0x0638 NlaSvc - ok
23:41:11.0296 0x0638 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:41:11.0296 0x0638 Npfs - ok
23:41:11.0312 0x0638 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
23:41:11.0312 0x0638 nsi - ok
23:41:11.0328 0x0638 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:41:11.0328 0x0638 nsiproxy - ok
23:41:11.0406 0x0638 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:41:11.0437 0x0638 Ntfs - ok
23:41:11.0484 0x0638 [ BD691091AC7D9713D8F0B07C6B099E6C, 4A69ED227CCBBCB76F78078CEE42506A875759FFB519CB9C40173EF8ACD6D6D2 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe
23:41:11.0484 0x0638 NTI IScheduleSvc - ok
23:41:11.0499 0x0638 [ 64DDD0DEE976302F4BD93E5EFCC2F013, 19F54B4549999EF96FAE1B2B97973F281304843ADE0CF5823574453AB41E3E9C ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
23:41:11.0499 0x0638 NTIDrvr - ok
23:41:11.0515 0x0638 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
23:41:11.0515 0x0638 Null - ok
23:41:11.0562 0x0638 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:41:11.0562 0x0638 nvraid - ok
23:41:11.0608 0x0638 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:41:11.0608 0x0638 nvstor - ok
23:41:11.0655 0x0638 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:41:11.0655 0x0638 nv_agp - ok
23:41:11.0671 0x0638 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:41:11.0671 0x0638 ohci1394 - ok
23:41:11.0749 0x0638 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:41:11.0749 0x0638 ose - ok
23:41:11.0811 0x0638 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:41:11.0827 0x0638 p2pimsvc - ok
23:41:11.0874 0x0638 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
23:41:11.0889 0x0638 p2psvc - ok
23:41:11.0905 0x0638 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
23:41:11.0905 0x0638 Parport - ok
23:41:11.0936 0x0638 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:41:11.0936 0x0638 partmgr - ok
23:41:11.0967 0x0638 [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] PcaSvc C:\Windows\System32\pcasvc.dll
23:41:11.0967 0x0638 PcaSvc - ok
23:41:11.0983 0x0638 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
23:41:11.0983 0x0638 pci - ok
23:41:12.0014 0x0638 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
23:41:12.0014 0x0638 pciide - ok
23:41:12.0030 0x0638 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
23:41:12.0030 0x0638 pcmcia - ok
23:41:12.0045 0x0638 [ AF7CE12C4F3DC8CB2B07685C916BBCFE, 1AF47113778D411BF3CF82ACF428676908121B1F3252133A5F98E188ED1E9C6C ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
23:41:12.0045 0x0638 pcouffin - ok
23:41:12.0061 0x0638 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
23:41:12.0061 0x0638 pcw - ok
23:41:12.0123 0x0638 [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:41:12.0139 0x0638 PEAUTH - ok
23:41:12.0217 0x0638 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:41:12.0217 0x0638 PerfHost - ok
23:41:12.0279 0x0638 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
23:41:12.0310 0x0638 pla - ok
23:41:12.0373 0x0638 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:41:12.0388 0x0638 PlugPlay - ok
23:41:12.0420 0x0638 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:41:12.0420 0x0638 PNRPAutoReg - ok
23:41:12.0451 0x0638 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:41:12.0451 0x0638 PNRPsvc - ok
23:41:12.0513 0x0638 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:41:12.0513 0x0638 PolicyAgent - ok
23:41:12.0529 0x0638 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
23:41:12.0544 0x0638 Power - ok
23:41:12.0591 0x0638 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:41:12.0591 0x0638 PptpMiniport - ok
23:41:12.0607 0x0638 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
23:41:12.0607 0x0638 Processor - ok
23:41:12.0638 0x0638 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
23:41:12.0638 0x0638 ProfSvc - ok
23:41:12.0654 0x0638 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:41:12.0654 0x0638 ProtectedStorage - ok
23:41:12.0700 0x0638 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:41:12.0700 0x0638 Psched - ok
23:41:12.0747 0x0638 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
23:41:12.0778 0x0638 ql2300 - ok
23:41:12.0810 0x0638 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
23:41:12.0810 0x0638 ql40xx - ok
23:41:12.0825 0x0638 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
23:41:12.0825 0x0638 QWAVE - ok
23:41:12.0841 0x0638 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:41:12.0856 0x0638 QWAVEdrv - ok
23:41:12.0856 0x0638 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:41:12.0856 0x0638 RasAcd - ok
23:41:12.0888 0x0638 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:41:12.0888 0x0638 RasAgileVpn - ok
23:41:12.0903 0x0638 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
23:41:12.0903 0x0638 RasAuto - ok
23:41:12.0950 0x0638 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:41:12.0950 0x0638 Rasl2tp - ok
23:41:13.0012 0x0638 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
23:41:13.0012 0x0638 RasMan - ok
23:41:13.0028 0x0638 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:41:13.0028 0x0638 RasPppoe - ok
23:41:13.0808 0x0638 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:41:13.0808 0x0638 RasSstp - ok
23:41:13.0870 0x0638 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:41:13.0870 0x0638 rdbss - ok
23:41:13.0886 0x0638 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
23:41:13.0886 0x0638 rdpbus - ok
23:41:13.0948 0x0638 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:41:13.0948 0x0638 RDPCDD - ok
23:41:13.0964 0x0638 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:41:13.0964 0x0638 RDPENCDD - ok
23:41:13.0964 0x0638 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:41:13.0964 0x0638 RDPREFMP - ok
23:41:14.0011 0x0638 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
23:41:14.0011 0x0638 RdpVideoMiniport - ok
23:41:14.0058 0x0638 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:41:14.0058 0x0638 RDPWD - ok
23:41:14.0104 0x0638 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:41:14.0120 0x0638 rdyboost - ok
23:41:14.0182 0x0638 [ D458B9F0477A02D5C1605420EBB7CB7F, E6364228D0723A565572879EA2BF5333ABA78BA13DB5DEE825C34DE07456C133 ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
23:41:14.0182 0x0638 RealNetworks Downloader Resolver Service - ok
23:41:14.0276 0x0638 [ 4C33683C0EE5EE3368D81D5F1AE0E2DD, 4DDBA566B09368FFC82B08135A8344C2687A44D92AC2B793B00DBBB713BA0961 ] RealPlayerUpdateSvc C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
23:41:14.0276 0x0638 RealPlayerUpdateSvc - ok
23:41:14.0307 0x0638 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:41:14.0307 0x0638 RemoteAccess - ok
23:41:14.0338 0x0638 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:41:14.0338 0x0638 RemoteRegistry - ok
23:41:14.0401 0x0638 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:41:14.0401 0x0638 RpcEptMapper - ok
23:41:14.0432 0x0638 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
23:41:14.0432 0x0638 RpcLocator - ok
23:41:14.0463 0x0638 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\System32\rpcss.dll
23:41:14.0479 0x0638 RpcSs - ok
23:41:14.0494 0x0638 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:41:14.0494 0x0638 rspndr - ok
23:41:14.0510 0x0638 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs C:\Windows\system32\lsass.exe
23:41:14.0510 0x0638 SamSs - ok
23:41:14.0541 0x0638 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:41:14.0541 0x0638 sbp2port - ok
23:41:14.0572 0x0638 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:41:14.0572 0x0638 SCardSvr - ok
boynsini_13
Regular Member
 
Posts: 79
Joined: January 3rd, 2015, 6:15 am

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby boynsini_13 » January 22nd, 2015, 3:57 am

TDDS Killer Log PART ONE:

23:40:43.0185 0x10a0 TDSS rootkit removing tool 3.0.0.43 Jan 19 2015 18:43:19
23:40:49.0534 0x10a0 ============================================================
23:40:49.0534 0x10a0 Current date / time: 2015/01/21 23:40:49.0534
23:40:49.0534 0x10a0 SystemInfo:
23:40:49.0534 0x10a0
23:40:49.0534 0x10a0 OS Version: 6.1.7601 ServicePack: 1.0
23:40:49.0534 0x10a0 Product type: Workstation
23:40:49.0534 0x10a0 ComputerName: BRIANBOYNS-PC
23:40:49.0534 0x10a0 UserName: brianboyns
23:40:49.0534 0x10a0 Windows directory: C:\Windows
23:40:49.0534 0x10a0 System windows directory: C:\Windows
23:40:49.0534 0x10a0 Running under WOW64
23:40:49.0534 0x10a0 Processor architecture: Intel x64
23:40:49.0534 0x10a0 Number of processors: 4
23:40:49.0534 0x10a0 Page size: 0x1000
23:40:49.0534 0x10a0 Boot type: Normal boot
23:40:49.0534 0x10a0 ============================================================
23:40:49.0659 0x10a0 KLMD registered as C:\Windows\system32\drivers\93611038.sys
23:40:49.0940 0x10a0 System UUID: {D596920F-C44F-422B-A880-49AFE05FACD8}
23:40:51.0094 0x10a0 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:40:51.0157 0x10a0 ============================================================
23:40:51.0157 0x10a0 \Device\Harddisk0\DR0:
23:40:51.0157 0x10a0 MBR partitions:
23:40:51.0157 0x10a0 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1B58800, BlocksNum 0x32000
23:40:51.0157 0x10a0 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1B8A800, BlocksNum 0x48CCD2B0
23:40:51.0157 0x10a0 ============================================================
23:40:51.0204 0x10a0 C: <-> \Device\Harddisk0\DR0\Partition2
23:40:51.0204 0x10a0 ============================================================
23:40:51.0204 0x10a0 Initialize success
23:40:51.0204 0x10a0 ============================================================
23:40:54.0464 0x0638 ============================================================
23:40:54.0464 0x0638 Scan started
23:40:54.0464 0x0638 Mode: Manual;
23:40:54.0464 0x0638 ============================================================
23:40:54.0464 0x0638 KSN ping started
23:40:57.0241 0x0638 KSN ping finished: true
23:40:57.0771 0x0638 ================ Scan system memory ========================
23:40:57.0771 0x0638 System memory - ok
23:40:57.0787 0x0638 ================ Scan services =============================
23:40:57.0896 0x0638 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:40:57.0912 0x0638 1394ohci - ok
23:40:57.0974 0x0638 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:40:57.0974 0x0638 ACPI - ok
23:40:58.0021 0x0638 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:40:58.0021 0x0638 AcpiPmi - ok
23:40:58.0114 0x0638 [ CB1719E3EA00A0C114A8AD2655F43754, B38D21C4A7A83904CADEBA96A56AA5D1807C412A8E0BEFC889DF20D02941E570 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:40:58.0130 0x0638 AdobeFlashPlayerUpdateSvc - ok
23:40:58.0161 0x0638 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:40:58.0177 0x0638 adp94xx - ok
23:40:58.0208 0x0638 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:40:58.0208 0x0638 adpahci - ok
23:40:58.0224 0x0638 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:40:58.0224 0x0638 adpu320 - ok
23:40:58.0286 0x0638 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:40:58.0286 0x0638 AeLookupSvc - ok
23:40:58.0333 0x0638 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
23:40:58.0348 0x0638 AFD - ok
23:40:58.0395 0x0638 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
23:40:58.0395 0x0638 agp440 - ok
23:40:58.0411 0x0638 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
23:40:58.0426 0x0638 ALG - ok
23:40:58.0442 0x0638 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
23:40:58.0442 0x0638 aliide - ok
23:40:58.0473 0x0638 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
23:40:58.0473 0x0638 amdide - ok
23:40:58.0489 0x0638 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:40:58.0489 0x0638 AmdK8 - ok
23:40:58.0489 0x0638 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:40:58.0504 0x0638 AmdPPM - ok
23:40:58.0536 0x0638 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:40:58.0536 0x0638 amdsata - ok
23:40:58.0551 0x0638 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:40:58.0551 0x0638 amdsbs - ok
23:40:58.0567 0x0638 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:40:58.0567 0x0638 amdxata - ok
23:40:58.0614 0x0638 [ 80B9412C4DE09147581FC935FB4C97AB, 0C9661F7B5EF7F9D61981790B7AB64E3375BD117962166619D0CC546A2D014D3 ] AppID C:\Windows\system32\drivers\appid.sys
23:40:58.0614 0x0638 AppID - ok
23:40:58.0629 0x0638 [ F71CA01C24FC3798A717B5A6F682F9AD, 8CF1C209E7BBBAD02D6D087293C0B681CDA3170AF119CA2916C2708D8801E749 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:40:58.0629 0x0638 AppIDSvc - ok
23:40:58.0676 0x0638 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
23:40:58.0676 0x0638 Appinfo - ok
23:40:58.0692 0x0638 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
23:40:58.0692 0x0638 arc - ok
23:40:58.0707 0x0638 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:40:58.0707 0x0638 arcsas - ok
23:40:59.0628 0x0638 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:40:59.0643 0x0638 aspnet_state - ok
23:40:59.0659 0x0638 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:40:59.0659 0x0638 AsyncMac - ok
23:40:59.0674 0x0638 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
23:40:59.0690 0x0638 atapi - ok
23:40:59.0706 0x0638 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:40:59.0721 0x0638 AudioEndpointBuilder - ok
23:40:59.0752 0x0638 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:40:59.0768 0x0638 AudioSrv - ok
23:40:59.0799 0x0638 [ 54FE1CAFA3B3029B282E6A05EA672031, E972B8A22322FF06903A1E3AB20585E02A21C3A6EA9A75C172231494A08D14D1 ] Avgdiska C:\Windows\system32\DRIVERS\avgdiska.sys
23:40:59.0799 0x0638 Avgdiska - ok
23:40:59.0986 0x0638 [ 225B28E9303D375314C744AE181DF95F, 6BC8F19F6B4D901661022CD8F4EA90A8F1895B6B3BD1225B3708E2CBDCAB8D50 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
23:41:00.0049 0x0638 AVGIDSAgent - ok
23:41:00.0064 0x0638 [ A3124AC9C0AF30ABD000A7CB5779C101, 1719EE6986FC29EE4EA383B2DAF4CAF9C1E70A1F547F75F8D51EDA027D3E5236 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
23:41:00.0064 0x0638 AVGIDSDriver - ok
23:41:00.0080 0x0638 [ 68070AEEE757ACC6EC5BC291B1E8EA1A, 8A4902CE6F4696F33CD6CF98F96FDA7895B99A676916F3137CF34192AF3C25A4 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
23:41:00.0096 0x0638 AVGIDSHA - ok
23:41:00.0127 0x0638 [ 7C9E8FD2BFCE60BDF9B5944C0BE47C87, 0F51507BAECDEF7B6F553066621A03832FF070EC6837A8E304AABA1227F779BF ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
23:41:00.0127 0x0638 Avgldx64 - ok
23:41:00.0158 0x0638 [ 734DCC05A7F327FDCE43A18BA011FD4E, E5245314E60D86911A6A9FC1FE4A0C0D0284D972CE642C28B9B1A43D1553AFA5 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
23:41:00.0158 0x0638 Avgloga - ok
23:41:00.0174 0x0638 [ B4D589C734D796B5B76E0A0E5DA50397, CACAB2C0D01583CEB55C62334A4E9BB46A2E399BE9B7EDC988AEC785DF1FCC1C ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
23:41:00.0174 0x0638 Avgmfx64 - ok
23:41:00.0205 0x0638 [ 3CE824D46BA1871713ABF147E6BAD556, B4D8AFC388BE06D6E3C5CDC865F80FF101E731E1D2B221FFC6C1E28487E1B3CD ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
23:41:00.0205 0x0638 Avgrkx64 - ok
23:41:00.0220 0x0638 [ 0BB7ECAC81554D83A66A0B9F961BB9D0, BBCE86FE8980E06F5A92E8636D6D3F2FD7B6EF7DB999BBEB0E68A5FCB220EDC9 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
23:41:00.0220 0x0638 Avgtdia - ok
23:41:00.0252 0x0638 [ 2B38C7E964FA19A298D04CA177FF8B6F, B233B6AD03217AD72A8F4253FDCF182E6007B5D28178F38BDCACBC16BD69D0CB ] avgwd C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
23:41:00.0267 0x0638 avgwd - ok
23:41:00.0298 0x0638 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:41:00.0298 0x0638 AxInstSV - ok
23:41:00.0330 0x0638 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
23:41:00.0345 0x0638 b06bdrv - ok
23:41:00.0376 0x0638 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:41:00.0376 0x0638 b57nd60a - ok
23:41:00.0486 0x0638 [ 2ED050291BC1D7F9E322E328DB3AAECF, 906DB2E9A8020EDB33C9732C7BA2474D6600C9B14537AAD4EBFE924A7801794B ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
23:41:00.0486 0x0638 BBSvc - ok
23:41:00.0501 0x0638 [ 785DE7ABDA13309D6065305542829E76, 78F49A5349B66042836615EF99B4EB70FA708369D315D105513C04F33070D297 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
23:41:00.0501 0x0638 BBUpdate - ok
23:41:00.0532 0x0638 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
23:41:00.0532 0x0638 BDESVC - ok
23:41:00.0548 0x0638 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
23:41:00.0548 0x0638 Beep - ok
23:41:00.0595 0x0638 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
23:41:00.0610 0x0638 BFE - ok
23:41:00.0657 0x0638 [ 1B63F2B7CA6B5290CC124CDD07520BC9, A97E56CC3668F60C42D0C5A2F50E9519E0CA60D22542DA358364753EF6CCE91C ] BingDesktopUpdate C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
23:41:00.0657 0x0638 BingDesktopUpdate - ok
23:41:00.0720 0x0638 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
23:41:00.0735 0x0638 BITS - ok
23:41:00.0751 0x0638 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:41:00.0751 0x0638 blbdrive - ok
23:41:00.0798 0x0638 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:41:00.0798 0x0638 bowser - ok
23:41:00.0813 0x0638 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:41:00.0813 0x0638 BrFiltLo - ok
23:41:00.0813 0x0638 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:41:00.0813 0x0638 BrFiltUp - ok
23:41:00.0844 0x0638 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
23:41:00.0844 0x0638 BridgeMP - ok
23:41:00.0860 0x0638 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
23:41:00.0860 0x0638 Browser - ok
23:41:00.0876 0x0638 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:41:00.0891 0x0638 Brserid - ok
23:41:00.0891 0x0638 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:41:00.0907 0x0638 BrSerWdm - ok
23:41:00.0907 0x0638 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:41:00.0907 0x0638 BrUsbMdm - ok
23:41:00.0907 0x0638 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:41:00.0922 0x0638 BrUsbSer - ok
23:41:00.0922 0x0638 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:41:00.0922 0x0638 BTHMODEM - ok
23:41:00.0954 0x0638 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
23:41:00.0954 0x0638 bthserv - ok
23:41:01.0016 0x0638 catchme - ok
23:41:01.0032 0x0638 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:41:01.0032 0x0638 cdfs - ok
23:41:01.0078 0x0638 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
23:41:01.0078 0x0638 cdrom - ok
23:41:01.0125 0x0638 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
23:41:01.0125 0x0638 CertPropSvc - ok
23:41:01.0141 0x0638 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:41:01.0141 0x0638 circlass - ok
23:41:01.0156 0x0638 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
23:41:01.0156 0x0638 CLFS - ok
23:41:01.0219 0x0638 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:41:01.0219 0x0638 clr_optimization_v2.0.50727_32 - ok
23:41:01.0266 0x0638 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:41:01.0266 0x0638 clr_optimization_v2.0.50727_64 - ok
23:41:01.0344 0x0638 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:41:01.0344 0x0638 clr_optimization_v4.0.30319_32 - ok
23:41:01.0375 0x0638 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:41:01.0390 0x0638 clr_optimization_v4.0.30319_64 - ok
23:41:01.0406 0x0638 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:41:01.0406 0x0638 CmBatt - ok
23:41:01.0422 0x0638 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:41:01.0422 0x0638 cmdide - ok
23:41:01.0468 0x0638 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
23:41:01.0484 0x0638 CNG - ok
23:41:01.0484 0x0638 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:41:01.0484 0x0638 Compbatt - ok
23:41:01.0515 0x0638 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
23:41:01.0515 0x0638 CompositeBus - ok
23:41:01.0515 0x0638 COMSysApp - ok
23:41:01.0546 0x0638 cpuz134 - ok
23:41:01.0546 0x0638 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:41:01.0562 0x0638 crcdisk - ok
23:41:01.0593 0x0638 [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:41:01.0593 0x0638 CryptSvc - ok
23:41:02.0436 0x0638 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:41:02.0436 0x0638 DcomLaunch - ok
23:41:02.0482 0x0638 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
23:41:02.0482 0x0638 defragsvc - ok
23:41:02.0545 0x0638 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:41:02.0545 0x0638 DfsC - ok
23:41:02.0576 0x0638 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:41:02.0576 0x0638 Dhcp - ok
23:41:02.0607 0x0638 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
23:41:02.0623 0x0638 discache - ok
23:41:02.0623 0x0638 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:41:02.0638 0x0638 Disk - ok
23:41:02.0670 0x0638 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:41:02.0685 0x0638 Dnscache - ok
23:41:02.0732 0x0638 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
23:41:02.0732 0x0638 dot3svc - ok
23:41:02.0794 0x0638 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
23:41:02.0794 0x0638 DPS - ok
23:41:02.0841 0x0638 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:41:02.0841 0x0638 drmkaud - ok
23:41:02.0919 0x0638 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:41:02.0935 0x0638 DXGKrnl - ok
23:41:02.0950 0x0638 [ 11D0ECA73AB25135F65656B93ADBCB3D, 65970D64DFB2272C36918D47B440ECDB45D99BAABB78651BF67D1BD0026A45CC ] e1yexpress C:\Windows\system32\DRIVERS\e1y62x64.sys
23:41:02.0950 0x0638 e1yexpress - ok
23:41:02.0966 0x0638 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
23:41:02.0982 0x0638 EapHost - ok
23:41:03.0075 0x0638 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
23:41:03.0138 0x0638 ebdrv - ok
23:41:03.0184 0x0638 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS C:\Windows\System32\lsass.exe
23:41:03.0184 0x0638 EFS - ok
23:41:03.0262 0x0638 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:41:03.0278 0x0638 ehRecvr - ok
23:41:03.0278 0x0638 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
23:41:03.0294 0x0638 ehSched - ok
23:41:03.0309 0x0638 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:41:03.0325 0x0638 elxstor - ok
23:41:03.0356 0x0638 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:41:03.0356 0x0638 ErrDev - ok
23:41:03.0450 0x0638 [ DF96C3CD6AE15F6D0A6BCB70F9C1E88D, 4D9E779684D19137D43472CA18C8A955AD29C82C5F9D7C7E248A1400EE40EE59 ] esgiguard C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys
23:41:03.0450 0x0638 esgiguard - ok
23:41:03.0496 0x0638 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
23:41:03.0496 0x0638 EventSystem - ok
23:41:03.0528 0x0638 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
23:41:03.0528 0x0638 exfat - ok
23:41:03.0543 0x0638 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:41:03.0543 0x0638 fastfat - ok
23:41:03.0606 0x0638 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
23:41:03.0621 0x0638 Fax - ok
23:41:03.0637 0x0638 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:41:03.0637 0x0638 fdc - ok
23:41:03.0668 0x0638 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
23:41:03.0668 0x0638 fdPHost - ok
23:41:03.0684 0x0638 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
23:41:03.0684 0x0638 FDResPub - ok
23:41:03.0699 0x0638 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:41:03.0699 0x0638 FileInfo - ok
23:41:03.0699 0x0638 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:41:03.0699 0x0638 Filetrace - ok
23:41:03.0715 0x0638 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:41:03.0715 0x0638 flpydisk - ok
23:41:03.0762 0x0638 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:41:03.0762 0x0638 FltMgr - ok
23:41:03.0808 0x0638 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
23:41:03.0840 0x0638 FontCache - ok
23:41:03.0886 0x0638 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:41:03.0886 0x0638 FontCache3.0.0.0 - ok
23:41:03.0902 0x0638 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:41:03.0902 0x0638 FsDepends - ok
23:41:03.0918 0x0638 [ 6C06701BF1DB05405804D7EB610991CE, 75DEB2204D9AC338ED7C4742BEFAFA0AFC7E42B2C1B54A57DF8A1AD097D9EC3E ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
23:41:03.0918 0x0638 fssfltr - ok
23:41:04.0042 0x0638 [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
23:41:04.0074 0x0638 fsssvc - ok
23:41:04.0089 0x0638 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:41:04.0089 0x0638 Fs_Rec - ok
23:41:04.0120 0x0638 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:41:04.0120 0x0638 fvevol - ok
23:41:04.0136 0x0638 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
23:41:04.0136 0x0638 gagp30kx - ok
23:41:04.0152 0x0638 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:41:04.0152 0x0638 GEARAspiWDM - ok
23:41:04.0198 0x0638 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
23:41:04.0214 0x0638 gpsvc - ok
23:41:04.0308 0x0638 [ 816FD5A6F3C2F3D600900096632FC60E, D92401C4B56663F8A12B6390562608A125713408B00266C53844129679E48E9C ] Greg_Service C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
23:41:04.0323 0x0638 Greg_Service - ok
23:41:04.0339 0x0638 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:41:04.0339 0x0638 hcw85cir - ok
23:41:04.0370 0x0638 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:41:04.0370 0x0638 HdAudAddService - ok
23:41:04.0417 0x0638 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
23:41:04.0417 0x0638 HDAudBus - ok
23:41:04.0432 0x0638 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
23:41:04.0432 0x0638 HidBatt - ok
23:41:04.0448 0x0638 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
23:41:04.0448 0x0638 HidBth - ok
23:41:04.0464 0x0638 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:41:04.0464 0x0638 HidIr - ok
23:41:04.0479 0x0638 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
23:41:04.0479 0x0638 hidserv - ok
23:41:05.0290 0x0638 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:41:05.0290 0x0638 HidUsb - ok
23:41:05.0337 0x0638 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:41:05.0337 0x0638 hkmsvc - ok
23:41:05.0384 0x0638 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:41:05.0384 0x0638 HomeGroupListener - ok
23:41:05.0431 0x0638 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:41:05.0446 0x0638 HomeGroupProvider - ok
23:41:05.0478 0x0638 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:41:05.0478 0x0638 HpSAMD - ok
23:41:05.0540 0x0638 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:41:05.0556 0x0638 HTTP - ok
23:41:05.0665 0x0638 [ E5805896A55D4166C20F216249F40FA3, F426BF60D5B916E7A778EF24C49FE1FFE1B2977C2ABD2977FD5C38C6E6CB139F ] HWiNFO32 C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS
23:41:05.0665 0x0638 HWiNFO32 - ok
23:41:05.0696 0x0638 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:41:05.0696 0x0638 hwpolicy - ok
23:41:05.0743 0x0638 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
23:41:05.0743 0x0638 i8042prt - ok
23:41:05.0805 0x0638 [ 7548066DF68A8A1A56B043359F915F37, 6225DDE554E45858374CBD284A85A00F773089A667C08492187A637232B8BD9A ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
23:41:05.0821 0x0638 IAANTMON - ok
23:41:05.0868 0x0638 [ 1D004CB1DA6323B1F55CAEF7F94B61D9, 8FFFB429BA46938724BBB87AB9B3EC77EA17C4B893BABDBDD38309F02963D405 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
23:41:05.0868 0x0638 iaStor - ok
23:41:05.0930 0x0638 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:41:05.0946 0x0638 iaStorV - ok
23:41:06.0008 0x0638 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:41:06.0024 0x0638 idsvc - ok
23:41:06.0055 0x0638 IEEtwCollectorService - ok
23:41:06.0336 0x0638 [ 8814F0B9A09C647D3D7BE735450E7B4C, E82AD0DC556AE7663C1A5CE75DA3619E1614BC88F52558496FF0D569DE04E1CA ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
23:41:06.0523 0x0638 igfx - ok
23:41:06.0554 0x0638 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
23:41:06.0554 0x0638 iirsp - ok
23:41:06.0616 0x0638 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
23:41:06.0648 0x0638 IKEEXT - ok
23:41:06.0772 0x0638 [ D2B1DA73B6E8769A1BE1A55693B7F1B3, FE26FEAD6A45E4596A7CA9689B66511C4BCB4686A1914505257648DCE048CA26 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:41:06.0835 0x0638 IntcAzAudAddService - ok
23:41:06.0866 0x0638 [ B014CE58F0A8048D3924BA8D5CCBC5F1, C2A913B7A7A0CB2B8C1EC9E51DE98B51DF55A9AA4D21804C531E30D9FACCC0F9 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
23:41:06.0866 0x0638 IntcHdmiAddService - ok
23:41:06.0897 0x0638 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
23:41:06.0897 0x0638 intelide - ok
23:41:06.0913 0x0638 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:41:06.0913 0x0638 intelppm - ok
23:41:06.0928 0x0638 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:41:06.0944 0x0638 IPBusEnum - ok
23:41:06.0975 0x0638 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:41:06.0975 0x0638 IpFilterDriver - ok
23:41:07.0022 0x0638 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:41:07.0038 0x0638 iphlpsvc - ok
23:41:07.0084 0x0638 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:41:07.0084 0x0638 IPMIDRV - ok
23:41:07.0100 0x0638 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:41:07.0100 0x0638 IPNAT - ok
23:41:07.0116 0x0638 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:41:07.0116 0x0638 IRENUM - ok
23:41:07.0131 0x0638 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:41:07.0131 0x0638 isapnp - ok
23:41:07.0178 0x0638 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:41:07.0178 0x0638 iScsiPrt - ok
23:41:07.0194 0x0638 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:41:07.0194 0x0638 kbdclass - ok
23:41:07.0240 0x0638 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:41:07.0240 0x0638 kbdhid - ok
23:41:07.0240 0x0638 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso C:\Windows\system32\lsass.exe
23:41:07.0240 0x0638 KeyIso - ok
23:41:07.0287 0x0638 [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:41:07.0287 0x0638 KSecDD - ok
23:41:08.0114 0x0638 [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:41:08.0114 0x0638 KSecPkg - ok
23:41:08.0114 0x0638 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:41:08.0114 0x0638 ksthunk - ok
23:41:08.0145 0x0638 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
23:41:08.0161 0x0638 KtmRm - ok
23:41:08.0223 0x0638 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
23:41:08.0223 0x0638 LanmanServer - ok
23:41:08.0270 0x0638 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:41:08.0270 0x0638 LanmanWorkstation - ok
23:41:08.0286 0x0638 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:41:08.0286 0x0638 lltdio - ok
23:41:08.0317 0x0638 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:41:08.0332 0x0638 lltdsvc - ok
23:41:08.0379 0x0638 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:41:08.0379 0x0638 lmhosts - ok
23:41:08.0395 0x0638 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
23:41:08.0395 0x0638 LSI_FC - ok
23:41:08.0410 0x0638 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
23:41:08.0410 0x0638 LSI_SAS - ok
23:41:08.0442 0x0638 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:41:08.0442 0x0638 LSI_SAS2 - ok
23:41:08.0457 0x0638 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:41:08.0457 0x0638 LSI_SCSI - ok
23:41:08.0473 0x0638 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
23:41:08.0473 0x0638 luafv - ok
23:41:08.0504 0x0638 [ 478CC94C937D235CB0A96AB8F2359D81, 1877AF93FD777F0D5BC02C0CD6E806A165991B6C77D424B13D2D77F8F9D1EFCC ] mbamchameleon C:\Windows\system32\drivers\mbamchameleon.sys
23:41:08.0504 0x0638 mbamchameleon - ok
23:41:08.0551 0x0638 [ CA43F8904E24BBE49982E4C0B29E6579, 2E3E6D02980706061C478C1643F8838310DDAC573C8722AE7F3290CE36B02CB2 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
23:41:08.0551 0x0638 MBAMProtector - ok
23:41:08.0660 0x0638 [ 0BB29DE40C9D9529793DCDB59A43CF5B, 251001A407D32EF22F64915EEFFAAEC229073C4549BF7D9D1D4209B7D15B4681 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
23:41:08.0691 0x0638 MBAMScheduler - ok
23:41:08.0738 0x0638 [ 5F82D8188B370B0CF185D4AE2B9B4A0E, 549B53DD989A069E1C38347C4CEF5283DF9B428CE102799B06A20D3D8F23825F ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
23:41:08.0754 0x0638 MBAMService - ok
23:41:08.0754 0x0638 [ A646C2DDB8C46E9B20A326FAF566646C, F46E3BF392CB4EB53D323BC8CC41EFBB9C5D7C935FECF255F524EB18583A2A37 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
23:41:08.0754 0x0638 MBAMWebAccessControl - ok
23:41:08.0800 0x0638 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:41:08.0800 0x0638 Mcx2Svc - ok
23:41:08.0816 0x0638 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
23:41:08.0816 0x0638 megasas - ok
23:41:08.0832 0x0638 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
23:41:08.0832 0x0638 MegaSR - ok
23:41:08.0878 0x0638 [ 9547F37D0E899FD71B52B2AFD4437C79, 1E77BAEE5647F892A5B2CA4EDDEC38EC7859ADD6EAD72A8934B3C04D02ADF5C6 ] MemeoBackgroundService C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
23:41:08.0878 0x0638 MemeoBackgroundService - ok
23:41:08.0925 0x0638 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
23:41:08.0925 0x0638 MMCSS - ok
23:41:08.0925 0x0638 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
23:41:08.0925 0x0638 Modem - ok
23:41:08.0941 0x0638 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:41:08.0941 0x0638 monitor - ok
23:41:08.0988 0x0638 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:41:08.0988 0x0638 mouclass - ok
23:41:09.0003 0x0638 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:41:09.0003 0x0638 mouhid - ok
23:41:09.0050 0x0638 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:41:09.0050 0x0638 mountmgr - ok
23:41:09.0097 0x0638 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
23:41:09.0097 0x0638 mpio - ok
23:41:09.0112 0x0638 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:41:09.0112 0x0638 mpsdrv - ok
23:41:09.0144 0x0638 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:41:09.0159 0x0638 MpsSvc - ok
23:41:09.0175 0x0638 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:41:09.0175 0x0638 MRxDAV - ok
23:41:09.0222 0x0638 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:41:09.0237 0x0638 mrxsmb - ok
23:41:09.0284 0x0638 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:41:09.0284 0x0638 mrxsmb10 - ok
23:41:09.0331 0x0638 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:41:09.0331 0x0638 mrxsmb20 - ok
23:41:09.0346 0x0638 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
23:41:09.0346 0x0638 msahci - ok
23:41:09.0362 0x0638 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:41:09.0362 0x0638 msdsm - ok
23:41:09.0378 0x0638 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
23:41:09.0393 0x0638 MSDTC - ok
23:41:09.0409 0x0638 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:41:09.0409 0x0638 Msfs - ok
23:41:09.0424 0x0638 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:41:09.0424 0x0638 mshidkmdf - ok
23:41:09.0456 0x0638 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:41:09.0456 0x0638 msisadrv - ok
23:41:09.0487 0x0638 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:41:09.0487 0x0638 MSiSCSI - ok
23:41:09.0487 0x0638 msiserver - ok
23:41:09.0502 0x0638 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:41:09.0502 0x0638 MSKSSRV - ok
23:41:09.0518 0x0638 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:41:09.0518 0x0638 MSPCLOCK - ok
23:41:09.0518 0x0638 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:41:09.0518 0x0638 MSPQM - ok
23:41:09.0565 0x0638 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:41:09.0580 0x0638 MsRPC - ok
23:41:09.0580 0x0638 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
23:41:09.0580 0x0638 mssmbios - ok
23:41:09.0612 0x0638 MSSQL$MICROSOFTBCM - ok
23:41:09.0658 0x0638 [ CB7524C21727404BD3140DCA32DEB7DE, 5B1F111FADC31CD1E6F0345E2F9F989D9E63D64C9F20EFEFAC7A86BD82B8484C ] MSSQLServerADHelper C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
23:41:09.0658 0x0638 MSSQLServerADHelper - ok
23:41:09.0674 0x0638 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:41:09.0674 0x0638 MSTEE - ok
23:41:09.0690 0x0638 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
23:41:09.0690 0x0638 MTConfig - ok
23:41:09.0705 0x0638 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
23:41:09.0705 0x0638 Mup - ok
23:41:09.0752 0x0638 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
23:41:09.0768 0x0638 napagent - ok
23:41:09.0799 0x0638 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:41:09.0799 0x0638 NativeWifiP - ok
23:41:09.0861 0x0638 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
23:41:09.0877 0x0638 NDIS - ok
23:41:09.0892 0x0638 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:41:09.0892 0x0638 NdisCap - ok
23:41:09.0908 0x0638 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:41:09.0908 0x0638 NdisTapi - ok
23:41:09.0955 0x0638 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:41:09.0955 0x0638 Ndisuio - ok
23:41:09.0986 0x0638 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:41:10.0002 0x0638 NdisWan - ok
23:41:10.0048 0x0638 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:41:10.0048 0x0638 NDProxy - ok
23:41:10.0126 0x0638 [ 7D2633295EB6FF2B938185874884059D, B3A4E52ABCB2E2720D8ADB0B68C222D4AB98E838D40B6A731D15EB1D6C9DEA15 ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
23:41:10.0158 0x0638 Nero BackItUp Scheduler 4.0 - ok
23:41:10.0173 0x0638 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:41:10.0173 0x0638 NetBIOS - ok
23:41:10.0984 0x0638 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:41:11.0000 0x0638 NetBT - ok
23:41:11.0016 0x0638 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon C:\Windows\system32\lsass.exe
23:41:11.0016 0x0638 Netlogon - ok
23:41:11.0078 0x0638 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
23:41:11.0078 0x0638 Netman - ok
23:41:11.0156 0x0638 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:41:11.0172 0x0638 NetMsmqActivator - ok
23:41:11.0172 0x0638 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:41:11.0187 0x0638 NetPipeActivator - ok
23:41:11.0203 0x0638 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
23:41:11.0218 0x0638 netprofm - ok
23:41:11.0218 0x0638 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:41:11.0234 0x0638 NetTcpActivator - ok
23:41:11.0234 0x0638 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:41:11.0234 0x0638 NetTcpPortSharing - ok
23:41:11.0250 0x0638 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
23:41:11.0250 0x0638 nfrd960 - ok
23:41:11.0281 0x0638 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
23:41:11.0281 0x0638 NlaSvc - ok
23:41:11.0296 0x0638 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:41:11.0296 0x0638 Npfs - ok
23:41:11.0312 0x0638 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
23:41:11.0312 0x0638 nsi - ok
23:41:11.0328 0x0638 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:41:11.0328 0x0638 nsiproxy - ok
23:41:11.0406 0x0638 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:41:11.0437 0x0638 Ntfs - ok
23:41:11.0484 0x0638 [ BD691091AC7D9713D8F0B07C6B099E6C, 4A69ED227CCBBCB76F78078CEE42506A875759FFB519CB9C40173EF8ACD6D6D2 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe
23:41:11.0484 0x0638 NTI IScheduleSvc - ok
23:41:11.0499 0x0638 [ 64DDD0DEE976302F4BD93E5EFCC2F013, 19F54B4549999EF96FAE1B2B97973F281304843ADE0CF5823574453AB41E3E9C ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
23:41:11.0499 0x0638 NTIDrvr - ok
23:41:11.0515 0x0638 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
23:41:11.0515 0x0638 Null - ok
23:41:11.0562 0x0638 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:41:11.0562 0x0638 nvraid - ok
23:41:11.0608 0x0638 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:41:11.0608 0x0638 nvstor - ok
23:41:11.0655 0x0638 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:41:11.0655 0x0638 nv_agp - ok
23:41:11.0671 0x0638 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:41:11.0671 0x0638 ohci1394 - ok
23:41:11.0749 0x0638 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:41:11.0749 0x0638 ose - ok
23:41:11.0811 0x0638 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:41:11.0827 0x0638 p2pimsvc - ok
23:41:11.0874 0x0638 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
23:41:11.0889 0x0638 p2psvc - ok
23:41:11.0905 0x0638 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
23:41:11.0905 0x0638 Parport - ok
23:41:11.0936 0x0638 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:41:11.0936 0x0638 partmgr - ok
23:41:11.0967 0x0638 [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] PcaSvc C:\Windows\System32\pcasvc.dll
23:41:11.0967 0x0638 PcaSvc - ok
23:41:11.0983 0x0638 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
23:41:11.0983 0x0638 pci - ok
23:41:12.0014 0x0638 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
23:41:12.0014 0x0638 pciide - ok
23:41:12.0030 0x0638 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
23:41:12.0030 0x0638 pcmcia - ok
23:41:12.0045 0x0638 [ AF7CE12C4F3DC8CB2B07685C916BBCFE, 1AF47113778D411BF3CF82ACF428676908121B1F3252133A5F98E188ED1E9C6C ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
23:41:12.0045 0x0638 pcouffin - ok
23:41:12.0061 0x0638 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
23:41:12.0061 0x0638 pcw - ok
23:41:12.0123 0x0638 [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:41:12.0139 0x0638 PEAUTH - ok
23:41:12.0217 0x0638 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:41:12.0217 0x0638 PerfHost - ok
23:41:12.0279 0x0638 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
23:41:12.0310 0x0638 pla - ok
23:41:12.0373 0x0638 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:41:12.0388 0x0638 PlugPlay - ok
23:41:12.0420 0x0638 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:41:12.0420 0x0638 PNRPAutoReg - ok
23:41:12.0451 0x0638 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:41:12.0451 0x0638 PNRPsvc - ok
23:41:12.0513 0x0638 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:41:12.0513 0x0638 PolicyAgent - ok
23:41:12.0529 0x0638 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
23:41:12.0544 0x0638 Power - ok
23:41:12.0591 0x0638 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:41:12.0591 0x0638 PptpMiniport - ok
23:41:12.0607 0x0638 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
23:41:12.0607 0x0638 Processor - ok
23:41:12.0638 0x0638 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
23:41:12.0638 0x0638 ProfSvc - ok
23:41:12.0654 0x0638 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:41:12.0654 0x0638 ProtectedStorage - ok
23:41:12.0700 0x0638 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:41:12.0700 0x0638 Psched - ok
23:41:12.0747 0x0638 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
23:41:12.0778 0x0638 ql2300 - ok
23:41:12.0810 0x0638 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
23:41:12.0810 0x0638 ql40xx - ok
23:41:12.0825 0x0638 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
23:41:12.0825 0x0638 QWAVE - ok
23:41:12.0841 0x0638 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:41:12.0856 0x0638 QWAVEdrv - ok
23:41:12.0856 0x0638 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:41:12.0856 0x0638 RasAcd - ok
23:41:12.0888 0x0638 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:41:12.0888 0x0638 RasAgileVpn - ok
23:41:12.0903 0x0638 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
23:41:12.0903 0x0638 RasAuto - ok
23:41:12.0950 0x0638 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:41:12.0950 0x0638 Rasl2tp - ok
23:41:13.0012 0x0638 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
23:41:13.0012 0x0638 RasMan - ok
23:41:13.0028 0x0638 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:41:13.0028 0x0638 RasPppoe - ok
23:41:13.0808 0x0638 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:41:13.0808 0x0638 RasSstp - ok
23:41:13.0870 0x0638 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:41:13.0870 0x0638 rdbss - ok
23:41:13.0886 0x0638 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
23:41:13.0886 0x0638 rdpbus - ok
23:41:13.0948 0x0638 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:41:13.0948 0x0638 RDPCDD - ok
23:41:13.0964 0x0638 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:41:13.0964 0x0638 RDPENCDD - ok
23:41:13.0964 0x0638 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:41:13.0964 0x0638 RDPREFMP - ok
23:41:14.0011 0x0638 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
23:41:14.0011 0x0638 RdpVideoMiniport - ok
23:41:14.0058 0x0638 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:41:14.0058 0x0638 RDPWD - ok
23:41:14.0104 0x0638 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:41:14.0120 0x0638 rdyboost - ok
23:41:14.0182 0x0638 [ D458B9F0477A02D5C1605420EBB7CB7F, E6364228D0723A565572879EA2BF5333ABA78BA13DB5DEE825C34DE07456C133 ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
23:41:14.0182 0x0638 RealNetworks Downloader Resolver Service - ok
23:41:14.0276 0x0638 [ 4C33683C0EE5EE3368D81D5F1AE0E2DD, 4DDBA566B09368FFC82B08135A8344C2687A44D92AC2B793B00DBBB713BA0961 ] RealPlayerUpdateSvc C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
23:41:14.0276 0x0638 RealPlayerUpdateSvc - ok
23:41:14.0307 0x0638 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:41:14.0307 0x0638 RemoteAccess - ok
23:41:14.0338 0x0638 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:41:14.0338 0x0638 RemoteRegistry - ok
23:41:14.0401 0x0638 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:41:14.0401 0x0638 RpcEptMapper - ok
23:41:14.0432 0x0638 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
23:41:14.0432 0x0638 RpcLocator - ok
23:41:14.0463 0x0638 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\System32\rpcss.dll
23:41:14.0479 0x0638 RpcSs - ok
23:41:14.0494 0x0638 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:41:14.0494 0x0638 rspndr - ok
23:41:14.0510 0x0638 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs C:\Windows\system32\lsass.exe
23:41:14.0510 0x0638 SamSs - ok
23:41:14.0541 0x0638 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:41:14.0541 0x0638 sbp2port - ok
23:41:14.0572 0x0638 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:41:14.0572 0x0638 SCardSvr - ok
boynsini_13
Regular Member
 
Posts: 79
Joined: January 3rd, 2015, 6:15 am

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby boynsini_13 » January 22nd, 2015, 4:01 am

TDSSKILLER Log PART TWO:


23:41:14.0619 0x0638 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:41:14.0619 0x0638 scfilter - ok
23:41:14.0666 0x0638 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
23:41:14.0682 0x0638 Schedule - ok
23:41:14.0728 0x0638 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:41:14.0728 0x0638 SCPolicySvc - ok
23:41:14.0744 0x0638 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:41:14.0760 0x0638 SDRSVC - ok
23:41:14.0806 0x0638 [ B29A858AAF869DA38E02278F91512C07, A35A58A096560963A029286835531630003CC774F76DA00EC002428376F412F7 ] SeagateDashboardService C:\Program Files (x86)\Seagate\Seagate Dashboard\SeagateDashboardService.exe
23:41:14.0806 0x0638 SeagateDashboardService - ok
23:41:14.0822 0x0638 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:41:14.0822 0x0638 secdrv - ok
23:41:14.0869 0x0638 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
23:41:14.0869 0x0638 seclogon - ok
23:41:14.0916 0x0638 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
23:41:14.0916 0x0638 SENS - ok
23:41:14.0931 0x0638 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:41:14.0931 0x0638 SensrSvc - ok
23:41:14.0931 0x0638 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:41:14.0947 0x0638 Serenum - ok
23:41:14.0947 0x0638 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:41:14.0962 0x0638 Serial - ok
23:41:14.0994 0x0638 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
23:41:14.0994 0x0638 sermouse - ok
23:41:15.0040 0x0638 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
23:41:15.0056 0x0638 SessionEnv - ok
23:41:15.0087 0x0638 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:41:15.0087 0x0638 sffdisk - ok
23:41:15.0134 0x0638 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:41:15.0134 0x0638 sffp_mmc - ok
23:41:15.0150 0x0638 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:41:15.0150 0x0638 sffp_sd - ok
23:41:15.0165 0x0638 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
23:41:15.0165 0x0638 sfloppy - ok
23:41:15.0196 0x0638 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:41:15.0196 0x0638 SharedAccess - ok
23:41:15.0228 0x0638 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:41:15.0243 0x0638 ShellHWDetection - ok
23:41:15.0259 0x0638 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:41:15.0259 0x0638 SiSRaid2 - ok
23:41:15.0274 0x0638 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
23:41:15.0274 0x0638 SiSRaid4 - ok
23:41:15.0290 0x0638 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:41:15.0290 0x0638 Smb - ok
23:41:15.0321 0x0638 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:41:15.0321 0x0638 SNMPTRAP - ok
23:41:15.0352 0x0638 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
23:41:15.0352 0x0638 spldr - ok
23:41:15.0415 0x0638 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
23:41:15.0430 0x0638 Spooler - ok
23:41:15.0524 0x0638 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
23:41:15.0586 0x0638 sppsvc - ok
23:41:15.0618 0x0638 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:41:15.0618 0x0638 sppuinotify - ok
23:41:15.0649 0x0638 SQLAgent$MICROSOFTBCM - ok
23:41:15.0696 0x0638 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:41:15.0711 0x0638 srv - ok
23:41:15.0758 0x0638 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:41:15.0774 0x0638 srv2 - ok
23:41:15.0789 0x0638 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:41:15.0789 0x0638 srvnet - ok
23:41:15.0836 0x0638 [ ED161B91FDF7EAA39469D72D463D5F4E, FC793E378FB709313D0AC44F59BF5C9488D73235AA2B1A21C50C3DED91C6BE62 ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
23:41:15.0836 0x0638 sscdbus - ok
23:41:15.0852 0x0638 [ 4CB09E77593DBD8D7AF33B37375CA715, 7B14851A8EDAA996D28335FD4DA812C6114DD5012E1E929F4813797CDC77E5BC ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
23:41:15.0852 0x0638 sscdmdfl - ok
23:41:16.0694 0x0638 [ C7B4CF53497A6E5363F3439427663882, 993278ADAAC18F12FE00CCF76681461451DA335F67BB581FC7326045048EC085 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
23:41:16.0694 0x0638 sscdmdm - ok
23:41:16.0710 0x0638 [ 05FFA552F578E27AB2D41B6828DB477F, F3292A431D656C039F4300AA584FA13F26A69B351C2F903B3E47CEF464A6233A ] sscdserd C:\Windows\system32\DRIVERS\sscdserd.sys
23:41:16.0710 0x0638 sscdserd - ok
23:41:16.0772 0x0638 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:41:16.0772 0x0638 SSDPSRV - ok
23:41:16.0803 0x0638 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:41:16.0803 0x0638 SstpSvc - ok
23:41:16.0897 0x0638 [ 7E815DDD79CC73A02A33DF11FABE4E1E, A05A85CDB0CB0AA1AAC93AA801C39242BFE59082E2BC580F04EBFA71B5B61F07 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
23:41:16.0912 0x0638 Steam Client Service - ok
23:41:16.0959 0x0638 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
23:41:16.0959 0x0638 stexstor - ok
23:41:17.0006 0x0638 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
23:41:17.0022 0x0638 stisvc - ok
23:41:17.0084 0x0638 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
23:41:17.0084 0x0638 swenum - ok
23:41:17.0115 0x0638 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
23:41:17.0115 0x0638 swprv - ok
23:41:17.0209 0x0638 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
23:41:17.0240 0x0638 SysMain - ok
23:41:17.0271 0x0638 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:41:17.0287 0x0638 TabletInputService - ok
23:41:17.0334 0x0638 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
23:41:17.0349 0x0638 TapiSrv - ok
23:41:17.0365 0x0638 [ 185C2170CFD84F9D708276FBB5ABD77D, FCA00B5CC62F2C160326DBA2F6BF31746324BBE7D5E96291C345DCF2583CE324 ] tapSF0901 C:\Windows\system32\DRIVERS\tapSF0901.sys
23:41:17.0365 0x0638 tapSF0901 - ok
23:41:17.0380 0x0638 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
23:41:17.0380 0x0638 TBS - ok
23:41:17.0474 0x0638 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:41:17.0505 0x0638 Tcpip - ok
23:41:17.0568 0x0638 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:41:17.0614 0x0638 TCPIP6 - ok
23:41:17.0661 0x0638 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:41:17.0661 0x0638 tcpipreg - ok
23:41:17.0677 0x0638 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:41:17.0677 0x0638 TDPIPE - ok
23:41:17.0724 0x0638 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:41:17.0724 0x0638 TDTCP - ok
23:41:17.0770 0x0638 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:41:17.0770 0x0638 tdx - ok
23:41:17.0786 0x0638 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
23:41:17.0786 0x0638 TermDD - ok
23:41:17.0848 0x0638 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
23:41:17.0864 0x0638 TermService - ok
23:41:17.0911 0x0638 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
23:41:17.0911 0x0638 Themes - ok
23:41:17.0958 0x0638 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
23:41:17.0958 0x0638 THREADORDER - ok
23:41:17.0973 0x0638 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
23:41:17.0989 0x0638 TrkWks - ok
23:41:18.0036 0x0638 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:41:18.0051 0x0638 TrustedInstaller - ok
23:41:18.0098 0x0638 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:41:18.0098 0x0638 tssecsrv - ok
23:41:18.0145 0x0638 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:41:18.0145 0x0638 TsUsbFlt - ok
23:41:18.0192 0x0638 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:41:18.0192 0x0638 tunnel - ok
23:41:18.0207 0x0638 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
23:41:18.0207 0x0638 uagp35 - ok
23:41:18.0223 0x0638 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00, 4646712B3F3AF6188DBCE1A95D92261E8B15E9583FE5DD538EC884F48B51759D ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
23:41:18.0223 0x0638 UBHelper - ok
23:41:18.0270 0x0638 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:41:18.0270 0x0638 udfs - ok
23:41:18.0301 0x0638 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:41:18.0301 0x0638 UI0Detect - ok
23:41:18.0348 0x0638 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:41:18.0348 0x0638 uliagpkx - ok
23:41:18.0379 0x0638 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
23:41:18.0394 0x0638 umbus - ok
23:41:18.0394 0x0638 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
23:41:18.0410 0x0638 UmPass - ok
23:41:18.0472 0x0638 [ 70DDE3A86DBEB1D6C3C30AD687B1877A, 2DAE797240DB8F521F1C9D1171524790052E186B060D58A1B102FBFFC80CE48E ] Updater Service C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
23:41:18.0472 0x0638 Updater Service - ok
23:41:18.0535 0x0638 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
23:41:18.0535 0x0638 upnphost - ok
23:41:18.0550 0x0638 [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
23:41:18.0550 0x0638 USBAAPL64 - ok
23:41:18.0597 0x0638 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:41:18.0613 0x0638 usbccgp - ok
23:41:18.0660 0x0638 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:41:18.0660 0x0638 usbcir - ok
23:41:18.0706 0x0638 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:41:18.0706 0x0638 usbehci - ok
23:41:19.0533 0x0638 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:41:19.0549 0x0638 usbhub - ok
23:41:19.0564 0x0638 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:41:19.0564 0x0638 usbohci - ok
23:41:19.0580 0x0638 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:41:19.0580 0x0638 usbprint - ok
23:41:19.0596 0x0638 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\drivers\usbscan.sys
23:41:19.0596 0x0638 usbscan - ok
23:41:19.0642 0x0638 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:41:19.0642 0x0638 USBSTOR - ok
23:41:19.0658 0x0638 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
23:41:19.0658 0x0638 usbuhci - ok
23:41:19.0674 0x0638 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
23:41:19.0689 0x0638 UxSms - ok
23:41:19.0689 0x0638 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc C:\Windows\system32\lsass.exe
23:41:19.0689 0x0638 VaultSvc - ok
23:41:19.0720 0x0638 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:41:19.0720 0x0638 vdrvroot - ok
23:41:19.0767 0x0638 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
23:41:19.0783 0x0638 vds - ok
23:41:19.0798 0x0638 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:41:19.0798 0x0638 vga - ok
23:41:19.0814 0x0638 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
23:41:19.0814 0x0638 VgaSave - ok
23:41:19.0861 0x0638 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:41:19.0876 0x0638 vhdmp - ok
23:41:19.0892 0x0638 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
23:41:19.0892 0x0638 viaide - ok
23:41:19.0908 0x0638 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:41:19.0908 0x0638 volmgr - ok
23:41:19.0954 0x0638 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:41:19.0970 0x0638 volmgrx - ok
23:41:19.0986 0x0638 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:41:20.0001 0x0638 volsnap - ok
23:41:20.0017 0x0638 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
23:41:20.0017 0x0638 vsmraid - ok
23:41:20.0095 0x0638 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
23:41:20.0126 0x0638 VSS - ok
23:41:20.0157 0x0638 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
23:41:20.0157 0x0638 vwifibus - ok
23:41:20.0188 0x0638 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
23:41:20.0188 0x0638 W32Time - ok
23:41:20.0204 0x0638 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
23:41:20.0204 0x0638 WacomPen - ok
23:41:20.0235 0x0638 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:41:20.0235 0x0638 WANARP - ok
23:41:20.0235 0x0638 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:41:20.0235 0x0638 Wanarpv6 - ok
23:41:20.0329 0x0638 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
23:41:20.0344 0x0638 WatAdminSvc - ok
23:41:20.0422 0x0638 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
23:41:20.0454 0x0638 wbengine - ok
23:41:20.0469 0x0638 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:41:20.0485 0x0638 WbioSrvc - ok
23:41:20.0532 0x0638 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:41:20.0547 0x0638 wcncsvc - ok
23:41:20.0578 0x0638 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:41:20.0594 0x0638 WcsPlugInService - ok
23:41:20.0610 0x0638 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
23:41:20.0610 0x0638 Wd - ok
23:41:20.0688 0x0638 [ 2F0339FCE51257F5930357F1DEE2D39E, 78CE40BD4FD58A3E44BAC8C41594694F0A3B8AA55619558A5B751D6623831A22 ] WDBackup C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
23:41:20.0719 0x0638 WDBackup - ok
23:41:20.0734 0x0638 [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
23:41:20.0734 0x0638 WDC_SAM - ok
23:41:20.0781 0x0638 [ 2E742EAD7E1B290CED554E30F69F5C1E, D146312C3745A5D3951F8F2F1239DB180A2E082255F2F5934DB8836FA77C50EF ] WDDriveService C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
23:41:20.0781 0x0638 WDDriveService - ok
23:41:20.0859 0x0638 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:41:20.0859 0x0638 Wdf01000 - ok
23:41:20.0890 0x0638 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:41:20.0890 0x0638 WdiServiceHost - ok
23:41:20.0906 0x0638 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:41:20.0906 0x0638 WdiSystemHost - ok
23:41:20.0953 0x0638 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
23:41:20.0953 0x0638 WebClient - ok
23:41:20.0984 0x0638 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:41:20.0984 0x0638 Wecsvc - ok
23:41:21.0000 0x0638 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:41:21.0000 0x0638 wercplsupport - ok
23:41:21.0031 0x0638 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
23:41:21.0031 0x0638 WerSvc - ok
23:41:21.0046 0x0638 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:41:21.0046 0x0638 WfpLwf - ok
23:41:21.0046 0x0638 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:41:21.0062 0x0638 WIMMount - ok
23:41:21.0078 0x0638 WinDefend - ok
23:41:21.0093 0x0638 WinHttpAutoProxySvc - ok
23:41:21.0156 0x0638 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:41:21.0171 0x0638 Winmgmt - ok
23:41:21.0187 0x0638 WinRing0_1_2_0 - ok
23:41:21.0280 0x0638 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
23:41:21.0327 0x0638 WinRM - ok
23:41:21.0374 0x0638 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
23:41:21.0390 0x0638 WinUsb - ok
23:41:21.0421 0x0638 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:41:21.0436 0x0638 Wlansvc - ok
23:41:21.0514 0x0638 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:41:21.0514 0x0638 wlcrasvc - ok
23:41:22.0450 0x0638 [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:41:22.0497 0x0638 wlidsvc - ok
23:41:22.0544 0x0638 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
23:41:22.0544 0x0638 WmiAcpi - ok
23:41:22.0606 0x0638 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:41:22.0606 0x0638 wmiApSrv - ok
23:41:22.0622 0x0638 WMPNetworkSvc - ok
23:41:22.0638 0x0638 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:41:22.0638 0x0638 WPCSvc - ok
23:41:22.0684 0x0638 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:41:22.0684 0x0638 WPDBusEnum - ok
23:41:22.0700 0x0638 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:41:22.0700 0x0638 ws2ifsl - ok
23:41:22.0747 0x0638 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll
23:41:22.0747 0x0638 wscsvc - ok
23:41:22.0762 0x0638 WSearch - ok
23:41:22.0872 0x0638 [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv C:\Windows\system32\wuaueng.dll
23:41:22.0918 0x0638 wuauserv - ok
23:41:22.0965 0x0638 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:41:22.0965 0x0638 WudfPf - ok
23:41:23.0012 0x0638 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:41:23.0012 0x0638 WUDFRd - ok
23:41:23.0043 0x0638 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:41:23.0043 0x0638 wudfsvc - ok
23:41:23.0090 0x0638 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
23:41:23.0106 0x0638 WwanSvc - ok
23:41:23.0106 0x0638 X5XSEx - ok
23:41:23.0121 0x0638 ================ Scan global ===============================
23:41:23.0168 0x0638 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
23:41:23.0215 0x0638 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
23:41:23.0230 0x0638 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
23:41:23.0262 0x0638 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
23:41:23.0308 0x0638 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
23:41:23.0324 0x0638 [ Global ] - ok
23:41:23.0324 0x0638 ================ Scan MBR ==================================
23:41:23.0324 0x0638 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:41:23.0511 0x0638 \Device\Harddisk0\DR0 - ok
23:41:23.0511 0x0638 ================ Scan VBR ==================================
23:41:23.0511 0x0638 [ B57F793D31CCF623B804A8D8D8DA0EDC ] \Device\Harddisk0\DR0\Partition1
23:41:23.0511 0x0638 \Device\Harddisk0\DR0\Partition1 - ok
23:41:23.0511 0x0638 [ 88DBB815A0FD3BC8FB90B7AEFC2DCFA2 ] \Device\Harddisk0\DR0\Partition2
23:41:23.0527 0x0638 \Device\Harddisk0\DR0\Partition2 - ok
23:41:23.0527 0x0638 ================ Scan generic autorun ======================
23:41:23.0917 0x0638 [ 6BCE148DE6670CFB44828B8497E089F6, 150899C8FCBF57BD61794638149D8C14738AB915CA4470E2B65E766BBE4CF171 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
23:41:24.0135 0x0638 RtHDVCpl - ok
23:41:24.0213 0x0638 [ 4E592C92850A9A2C0E3BF702A60C0908, E374ED24F9C67227CAA20B321032BDEA9FFD3A16E61D2D6138A8DD45DAEBECE9 ] C:\Windows\system32\igfxpers.exe
23:41:24.0213 0x0638 Persistence - ok
23:41:24.0229 0x0638 [ 3CD0E54D977C28CA50FBE3E40C6F7D0F, 45720F7B11603BBE6ADE056770C25692212503D38BA68CB0550988872E40E2F1 ] C:\Windows\system32\igfxtray.exe
23:41:24.0244 0x0638 IgfxTray - ok
23:41:24.0291 0x0638 [ 5AF1E9600E3FF841E522703A4993ED0C, 5189530793747C40B0E3548DA40058989C88A69C593C3E54E6548CFB89B9CE10 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
23:41:24.0291 0x0638 IAAnotif - ok
23:41:24.0354 0x0638 [ 4E2B2F3B7FD17CA06C74F5B54AD476A2, 221BA5FE7CFEE54882902A6AD29B5202201448F1ADC189ECD6F631A186DE34D8 ] C:\Windows\system32\hkcmd.exe
23:41:24.0354 0x0638 HotKeysCmds - ok
23:41:25.0274 0x0638 [ 48B1FF4BC51C3489129CAFB511A92E0B, C3CDEEBBDE6E6F138590B3041477B5720030E1D9E97EC7D722AADD61110869E7 ] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
23:41:25.0305 0x0638 BingDesktop - ok
23:41:25.0336 0x0638 [ E0AAE46829E5909AA87D6A323F7C81D2, F3B70007A333F5BF16F87AF9220A6622B59F3168EAD5683869693020DF67DA5C ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
23:41:25.0336 0x0638 SunJavaUpdateSched - ok
23:41:25.0492 0x0638 [ 7E713E2ED0226EA82E97A630684115BE, C99F83CF01E7926DE8D2FBCDFA9565D2BCC2D156976458367AEBDB3B327FB849 ] C:\Program Files (x86)\AVG\AVG2015\avgui.exe
23:41:25.0555 0x0638 AVG_UI - ok
23:41:25.0602 0x0638 [ 49EE6908D22348DA20EC7D96AB553419, C923B6C4B3D6E7EEA86AE3329E078DCEC312D35502DA288B0C6DEABEAC4D32B0 ] C:\Program Files (x86)\Memeo\AutoBackup\MemeoLauncher2.exe
23:41:25.0602 0x0638 Memeo Instant Backup - ok
23:41:25.0648 0x0638 [ EE35155B8FEBF5F44513C7B8CBA0EF3E, E33699170DEF0C8A60EDEE93F0B7D103B22E5188C604F8EE9F581526E425B8CC ] C:\Program Files (x86)\Memeo\AutoSync\MemeoLauncher2.exe
23:41:25.0648 0x0638 Memeo AutoSync - ok
23:41:25.0680 0x0638 [ FE8FCDF4921935D26BCB14F90D2B634E, D0BC75567092A8978CA5FF04F5227B2697DB49B8A7EF8B912BA919F610DCD168 ] C:\Program Files (x86)\Memeo\Memeo Send\MemeoLauncher.exe
23:41:25.0695 0x0638 Memeo Send - ok
23:41:25.0711 0x0638 [ B212C12BDBBD19CB9D9876B457A1CEDA, 549A4B9F54020FA330AF9A81FB55C11158B6F001444D63F3C8D97ED0CF856059 ] C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoLauncher.exe
23:41:25.0711 0x0638 Seagate Dashboard - ok
23:41:25.0773 0x0638 [ 845A4F50702714950804D6BD428083C1, 9718115B968BBCAEE35B3B0AE9817CAF1DAFAD3EE0F3927375CFF41A7E3F48EA ] C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
23:41:25.0804 0x0638 DriveUtilitiesHelper - ok
23:41:26.0007 0x0638 [ E84F189BE4353A47EBF063D8EA3C4B63, C9AD8FA3E0DE9860D3100E17F90F91C7CAD01730A98E8E12E5936B47EF23E546 ] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
23:41:26.0101 0x0638 WD Quick View - ok
23:41:26.0194 0x0638 [ F16C54B6BD5A1E71DD5D0894F14EC632, 963667110CFFAECA624A69BD133947A0B7E5C9E4DC784D73C810ADEBD9BBDDFF ] C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
23:41:26.0226 0x0638 WD Drive Unlocker - ok
23:41:26.0226 0x0638 Waiting for KSN requests completion. In queue: 47
23:41:27.0240 0x0638 Waiting for KSN requests completion. In queue: 47
23:41:28.0254 0x0638 Waiting for KSN requests completion. In queue: 47
23:41:29.0283 0x0638 AV detected via SS2: AVG AntiVirus 2015, C:\Program Files (x86)\AVG\AVG2015\avgwsc.exe ( 15.0.0.5645 ), 0x41000 ( enabled : updated )
23:41:29.0283 0x0638 AV detected via SS2: avast! Antivirus, C:\Program Files\Alwil Software\Avast5\VisthAux.exe ( 5.0.121.0 ), 0x40000 ( disabled : updated )
23:41:29.0283 0x0638 FW detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.0.2208.712 ), 0x40010 ( disabled )
23:41:29.0283 0x0638 Win FW state via NFP2: enabled
23:41:32.0185 0x0638 ============================================================
23:41:32.0185 0x0638 Scan finished
23:41:32.0185 0x0638 ============================================================
23:41:32.0185 0x096c Detected object count: 0
23:41:32.0185 0x096c Actual detected object count: 0
23:42:12.0511 0x1110 ============================================================
23:42:12.0511 0x1110 Scan started
23:42:12.0511 0x1110 Mode: Manual; SigCheck;
23:42:12.0511 0x1110 ============================================================
23:42:12.0511 0x1110 KSN ping started
23:42:15.0334 0x1110 KSN ping finished: true
23:42:16.0395 0x1110 ================ Scan system memory ========================
23:42:16.0395 0x1110 System memory - ok
23:42:16.0395 0x1110 ================ Scan services =============================
23:42:16.0551 0x1110 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
23:42:16.0629 0x1110 1394ohci - ok
23:42:16.0676 0x1110 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
23:42:16.0692 0x1110 ACPI - ok
23:42:16.0738 0x1110 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
23:42:16.0770 0x1110 AcpiPmi - ok
23:42:16.0848 0x1110 [ CB1719E3EA00A0C114A8AD2655F43754, B38D21C4A7A83904CADEBA96A56AA5D1807C412A8E0BEFC889DF20D02941E570 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:42:16.0863 0x1110 AdobeFlashPlayerUpdateSvc - ok
23:42:16.0894 0x1110 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:42:16.0926 0x1110 adp94xx - ok
23:42:16.0941 0x1110 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:42:16.0957 0x1110 adpahci - ok
23:42:16.0972 0x1110 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:42:16.0988 0x1110 adpu320 - ok
23:42:17.0035 0x1110 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:42:17.0082 0x1110 AeLookupSvc - ok
23:42:17.0128 0x1110 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys
23:42:17.0160 0x1110 AFD - ok
23:42:17.0206 0x1110 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
23:42:17.0222 0x1110 agp440 - ok
23:42:17.0238 0x1110 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
23:42:17.0253 0x1110 ALG - ok
23:42:17.0269 0x1110 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
23:42:17.0284 0x1110 aliide - ok
23:42:17.0284 0x1110 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
23:42:17.0300 0x1110 amdide - ok
23:42:17.0316 0x1110 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:42:17.0331 0x1110 AmdK8 - ok
23:42:17.0347 0x1110 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:42:17.0362 0x1110 AmdPPM - ok
23:42:17.0409 0x1110 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
23:42:17.0425 0x1110 amdsata - ok
23:42:17.0425 0x1110 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:42:17.0440 0x1110 amdsbs - ok
23:42:17.0456 0x1110 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
23:42:17.0472 0x1110 amdxata - ok
23:42:17.0518 0x1110 [ 80B9412C4DE09147581FC935FB4C97AB, 0C9661F7B5EF7F9D61981790B7AB64E3375BD117962166619D0CC546A2D014D3 ] AppID C:\Windows\system32\drivers\appid.sys
23:42:17.0534 0x1110 AppID - ok
23:42:17.0550 0x1110 [ F71CA01C24FC3798A717B5A6F682F9AD, 8CF1C209E7BBBAD02D6D087293C0B681CDA3170AF119CA2916C2708D8801E749 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:42:17.0565 0x1110 AppIDSvc - ok
23:42:17.0612 0x1110 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll
23:42:17.0628 0x1110 Appinfo - ok
23:42:17.0643 0x1110 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
23:42:17.0659 0x1110 arc - ok
23:42:17.0659 0x1110 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:42:17.0674 0x1110 arcsas - ok
23:42:17.0799 0x1110 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:42:17.0815 0x1110 aspnet_state - ok
23:42:17.0830 0x1110 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:42:17.0862 0x1110 AsyncMac - ok
23:42:17.0893 0x1110 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
23:42:17.0908 0x1110 atapi - ok
23:42:17.0940 0x1110 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:42:17.0971 0x1110 AudioEndpointBuilder - ok
23:42:17.0986 0x1110 [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:42:18.0018 0x1110 AudioSrv - ok
23:42:18.0049 0x1110 [ 54FE1CAFA3B3029B282E6A05EA672031, E972B8A22322FF06903A1E3AB20585E02A21C3A6EA9A75C172231494A08D14D1 ] Avgdiska C:\Windows\system32\DRIVERS\avgdiska.sys
23:42:18.0064 0x1110 Avgdiska - ok
23:42:18.0220 0x1110 [ 225B28E9303D375314C744AE181DF95F, 6BC8F19F6B4D901661022CD8F4EA90A8F1895B6B3BD1225B3708E2CBDCAB8D50 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
23:42:18.0314 0x1110 AVGIDSAgent - ok
23:42:19.0078 0x1110 [ A3124AC9C0AF30ABD000A7CB5779C101, 1719EE6986FC29EE4EA383B2DAF4CAF9C1E70A1F547F75F8D51EDA027D3E5236 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
23:42:19.0094 0x1110 AVGIDSDriver - ok
23:42:19.0110 0x1110 [ 68070AEEE757ACC6EC5BC291B1E8EA1A, 8A4902CE6F4696F33CD6CF98F96FDA7895B99A676916F3137CF34192AF3C25A4 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
23:42:19.0125 0x1110 AVGIDSHA - ok
23:42:19.0141 0x1110 [ 7C9E8FD2BFCE60BDF9B5944C0BE47C87, 0F51507BAECDEF7B6F553066621A03832FF070EC6837A8E304AABA1227F779BF ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
23:42:19.0172 0x1110 Avgldx64 - ok
23:42:19.0188 0x1110 [ 734DCC05A7F327FDCE43A18BA011FD4E, E5245314E60D86911A6A9FC1FE4A0C0D0284D972CE642C28B9B1A43D1553AFA5 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
23:42:19.0203 0x1110 Avgloga - ok
23:42:19.0219 0x1110 [ B4D589C734D796B5B76E0A0E5DA50397, CACAB2C0D01583CEB55C62334A4E9BB46A2E399BE9B7EDC988AEC785DF1FCC1C ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
23:42:19.0234 0x1110 Avgmfx64 - ok
23:42:19.0250 0x1110 [ 3CE824D46BA1871713ABF147E6BAD556, B4D8AFC388BE06D6E3C5CDC865F80FF101E731E1D2B221FFC6C1E28487E1B3CD ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
23:42:19.0250 0x1110 Avgrkx64 - ok
23:42:19.0266 0x1110 [ 0BB7ECAC81554D83A66A0B9F961BB9D0, BBCE86FE8980E06F5A92E8636D6D3F2FD7B6EF7DB999BBEB0E68A5FCB220EDC9 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
23:42:19.0281 0x1110 Avgtdia - ok
23:42:19.0312 0x1110 [ 2B38C7E964FA19A298D04CA177FF8B6F, B233B6AD03217AD72A8F4253FDCF182E6007B5D28178F38BDCACBC16BD69D0CB ] avgwd C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
23:42:19.0328 0x1110 avgwd - ok
23:42:19.0375 0x1110 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:42:19.0390 0x1110 AxInstSV - ok
23:42:19.0422 0x1110 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
23:42:19.0453 0x1110 b06bdrv - ok
23:42:19.0468 0x1110 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:42:19.0484 0x1110 b57nd60a - ok
23:42:19.0578 0x1110 [ 2ED050291BC1D7F9E322E328DB3AAECF, 906DB2E9A8020EDB33C9732C7BA2474D6600C9B14537AAD4EBFE924A7801794B ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
23:42:19.0593 0x1110 BBSvc - ok
23:42:19.0609 0x1110 [ 785DE7ABDA13309D6065305542829E76, 78F49A5349B66042836615EF99B4EB70FA708369D315D105513C04F33070D297 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
23:42:19.0624 0x1110 BBUpdate - ok
23:42:19.0640 0x1110 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
23:42:19.0671 0x1110 BDESVC - ok
23:42:19.0671 0x1110 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
23:42:19.0702 0x1110 Beep - ok
23:42:19.0765 0x1110 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
23:42:19.0796 0x1110 BFE - ok
23:42:19.0827 0x1110 [ 1B63F2B7CA6B5290CC124CDD07520BC9, A97E56CC3668F60C42D0C5A2F50E9519E0CA60D22542DA358364753EF6CCE91C ] BingDesktopUpdate C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
23:42:19.0843 0x1110 BingDesktopUpdate - ok
23:42:19.0905 0x1110 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll
23:42:19.0952 0x1110 BITS - ok
23:42:19.0968 0x1110 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:42:19.0983 0x1110 blbdrive - ok
23:42:20.0046 0x1110 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:42:20.0061 0x1110 bowser - ok
23:42:20.0061 0x1110 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:42:20.0092 0x1110 BrFiltLo - ok
23:42:20.0092 0x1110 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:42:20.0124 0x1110 BrFiltUp - ok
23:42:20.0139 0x1110 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
23:42:20.0170 0x1110 BridgeMP - ok
23:42:20.0186 0x1110 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
23:42:20.0217 0x1110 Browser - ok
23:42:20.0233 0x1110 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:42:20.0248 0x1110 Brserid - ok
23:42:20.0264 0x1110 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:42:20.0280 0x1110 BrSerWdm - ok
23:42:20.0295 0x1110 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:42:20.0311 0x1110 BrUsbMdm - ok
23:42:20.0311 0x1110 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:42:20.0326 0x1110 BrUsbSer - ok
23:42:20.0342 0x1110 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:42:20.0358 0x1110 BTHMODEM - ok
23:42:20.0373 0x1110 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
23:42:20.0420 0x1110 bthserv - ok
23:42:20.0482 0x1110 catchme - ok
23:42:20.0498 0x1110 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:42:20.0529 0x1110 cdfs - ok
23:42:20.0576 0x1110 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys
23:42:20.0607 0x1110 cdrom - ok
23:42:20.0638 0x1110 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
23:42:20.0670 0x1110 CertPropSvc - ok
23:42:20.0685 0x1110 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:42:20.0701 0x1110 circlass - ok
23:42:20.0716 0x1110 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
23:42:20.0748 0x1110 CLFS - ok
23:42:20.0794 0x1110 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:42:20.0810 0x1110 clr_optimization_v2.0.50727_32 - ok
23:42:20.0857 0x1110 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:42:20.0872 0x1110 clr_optimization_v2.0.50727_64 - ok
23:42:20.0950 0x1110 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:42:20.0966 0x1110 clr_optimization_v4.0.30319_32 - ok
23:42:21.0013 0x1110 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:42:21.0028 0x1110 clr_optimization_v4.0.30319_64 - ok
23:42:21.0044 0x1110 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:42:21.0060 0x1110 CmBatt - ok
23:42:21.0075 0x1110 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
23:42:21.0091 0x1110 cmdide - ok
23:42:21.0918 0x1110 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys
23:42:21.0949 0x1110 CNG - ok
23:42:21.0949 0x1110 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:42:21.0964 0x1110 Compbatt - ok
23:42:21.0996 0x1110 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
23:42:22.0011 0x1110 CompositeBus - ok
23:42:22.0011 0x1110 COMSysApp - ok
23:42:22.0027 0x1110 cpuz134 - ok
23:42:22.0027 0x1110 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:42:22.0042 0x1110 crcdisk - ok
23:42:22.0074 0x1110 [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:42:22.0089 0x1110 CryptSvc - ok
23:42:22.0152 0x1110 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:42:22.0198 0x1110 DcomLaunch - ok
23:42:22.0230 0x1110 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
23:42:22.0261 0x1110 defragsvc - ok
23:42:22.0308 0x1110 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:42:22.0354 0x1110 DfsC - ok
23:42:22.0370 0x1110 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:42:22.0401 0x1110 Dhcp - ok
23:42:22.0401 0x1110 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
23:42:22.0448 0x1110 discache - ok
23:42:22.0448 0x1110 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:42:22.0464 0x1110 Disk - ok
23:42:22.0479 0x1110 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:42:22.0510 0x1110 Dnscache - ok
23:42:22.0542 0x1110 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
23:42:22.0588 0x1110 dot3svc - ok
23:42:22.0635 0x1110 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
23:42:22.0666 0x1110 DPS - ok
23:42:22.0713 0x1110 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:42:22.0729 0x1110 drmkaud - ok
23:42:22.0791 0x1110 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:42:22.0838 0x1110 DXGKrnl - ok
23:42:22.0885 0x1110 [ 11D0ECA73AB25135F65656B93ADBCB3D, 65970D64DFB2272C36918D47B440ECDB45D99BAABB78651BF67D1BD0026A45CC ] e1yexpress C:\Windows\system32\DRIVERS\e1y62x64.sys
23:42:22.0900 0x1110 e1yexpress - ok
23:42:22.0916 0x1110 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
23:42:22.0947 0x1110 EapHost - ok
23:42:23.0041 0x1110 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
23:42:23.0134 0x1110 ebdrv - ok
23:42:23.0181 0x1110 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS C:\Windows\System32\lsass.exe
23:42:23.0197 0x1110 EFS - ok
23:42:23.0290 0x1110 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:42:23.0322 0x1110 ehRecvr - ok
23:42:23.0337 0x1110 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
23:42:23.0353 0x1110 ehSched - ok
23:42:23.0384 0x1110 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:42:23.0400 0x1110 elxstor - ok
23:42:23.0446 0x1110 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
23:42:23.0462 0x1110 ErrDev - ok
23:42:23.0540 0x1110 [ DF96C3CD6AE15F6D0A6BCB70F9C1E88D, 4D9E779684D19137D43472CA18C8A955AD29C82C5F9D7C7E248A1400EE40EE59 ] esgiguard C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys
23:42:23.0556 0x1110 esgiguard - ok
23:42:23.0602 0x1110 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
23:42:23.0649 0x1110 EventSystem - ok
23:42:23.0665 0x1110 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
23:42:23.0712 0x1110 exfat - ok
23:42:23.0727 0x1110 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:42:23.0758 0x1110 fastfat - ok
23:42:23.0821 0x1110 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
23:42:23.0852 0x1110 Fax - ok
23:42:23.0868 0x1110 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:42:23.0883 0x1110 fdc - ok
23:42:23.0930 0x1110 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
23:42:23.0961 0x1110 fdPHost - ok
23:42:24.0726 0x1110 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
23:42:24.0772 0x1110 FDResPub - ok
23:42:24.0772 0x1110 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:42:24.0788 0x1110 FileInfo - ok
23:42:24.0804 0x1110 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:42:24.0835 0x1110 Filetrace - ok
23:42:24.0850 0x1110 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
23:42:24.0866 0x1110 flpydisk - ok
23:42:24.0913 0x1110 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
23:42:24.0928 0x1110 FltMgr - ok
23:42:24.0975 0x1110 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll
23:42:25.0006 0x1110 FontCache - ok
23:42:25.0069 0x1110 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:42:25.0084 0x1110 FontCache3.0.0.0 - ok
23:42:25.0100 0x1110 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
23:42:25.0116 0x1110 FsDepends - ok
23:42:25.0116 0x1110 [ 6C06701BF1DB05405804D7EB610991CE, 75DEB2204D9AC338ED7C4742BEFAFA0AFC7E42B2C1B54A57DF8A1AD097D9EC3E ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
23:42:25.0131 0x1110 fssfltr - ok
23:42:25.0256 0x1110 [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
23:42:25.0303 0x1110 fsssvc - ok
23:42:25.0318 0x1110 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
23:42:25.0334 0x1110 Fs_Rec - ok
23:42:25.0365 0x1110 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
23:42:25.0396 0x1110 fvevol - ok
23:42:25.0412 0x1110 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
23:42:25.0428 0x1110 gagp30kx - ok
23:42:25.0428 0x1110 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:42:25.0443 0x1110 GEARAspiWDM - ok
23:42:25.0490 0x1110 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
23:42:25.0552 0x1110 gpsvc - ok
23:42:25.0630 0x1110 [ 816FD5A6F3C2F3D600900096632FC60E, D92401C4B56663F8A12B6390562608A125713408B00266C53844129679E48E9C ] Greg_Service C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
23:42:25.0677 0x1110 Greg_Service - ok
23:42:25.0677 0x1110 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
23:42:25.0708 0x1110 hcw85cir - ok
23:42:25.0724 0x1110 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
23:42:25.0755 0x1110 HdAudAddService - ok
23:42:25.0802 0x1110 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
23:42:25.0818 0x1110 HDAudBus - ok
23:42:25.0818 0x1110 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
23:42:25.0849 0x1110 HidBatt - ok
23:42:25.0864 0x1110 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
23:42:25.0880 0x1110 HidBth - ok
23:42:25.0896 0x1110 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
23:42:25.0911 0x1110 HidIr - ok
23:42:25.0927 0x1110 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
23:42:25.0958 0x1110 hidserv - ok
23:42:26.0005 0x1110 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
23:42:26.0020 0x1110 HidUsb - ok
23:42:26.0067 0x1110 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
23:42:26.0098 0x1110 hkmsvc - ok
23:42:26.0145 0x1110 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:42:26.0161 0x1110 HomeGroupListener - ok
23:42:26.0208 0x1110 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:42:26.0223 0x1110 HomeGroupProvider - ok
23:42:26.0270 0x1110 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
23:42:26.0286 0x1110 HpSAMD - ok
23:42:26.0348 0x1110 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys
23:42:26.0395 0x1110 HTTP - ok
23:42:26.0504 0x1110 [ E5805896A55D4166C20F216249F40FA3, F426BF60D5B916E7A778EF24C49FE1FFE1B2977C2ABD2977FD5C38C6E6CB139F ] HWiNFO32 C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS
23:42:26.0520 0x1110 HWiNFO32 - ok
23:42:26.0551 0x1110 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
23:42:26.0566 0x1110 hwpolicy - ok
23:42:26.0598 0x1110 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
23:42:26.0629 0x1110 i8042prt - ok
23:42:26.0691 0x1110 [ 7548066DF68A8A1A56B043359F915F37, 6225DDE554E45858374CBD284A85A00F773089A667C08492187A637232B8BD9A ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
23:42:26.0707 0x1110 IAANTMON - ok
23:42:26.0754 0x1110 [ 1D004CB1DA6323B1F55CAEF7F94B61D9, 8FFFB429BA46938724BBB87AB9B3EC77EA17C4B893BABDBDD38309F02963D405 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
23:42:26.0785 0x1110 iaStor - ok
23:42:27.0596 0x1110 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
23:42:27.0612 0x1110 iaStorV - ok
23:42:27.0690 0x1110 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:42:27.0721 0x1110 idsvc - ok
23:42:27.0721 0x1110 IEEtwCollectorService - ok
boynsini_13
Regular Member
 
Posts: 79
Joined: January 3rd, 2015, 6:15 am

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby boynsini_13 » January 22nd, 2015, 4:03 am

TDSSKILLER Log PART THREE:

23:42:28.0017 0x1110 [ 8814F0B9A09C647D3D7BE735450E7B4C, E82AD0DC556AE7663C1A5CE75DA3619E1614BC88F52558496FF0D569DE04E1CA ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
23:42:28.0267 0x1110 igfx - ok
23:42:28.0298 0x1110 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
23:42:28.0314 0x1110 iirsp - ok
23:42:28.0345 0x1110 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
23:42:28.0376 0x1110 IKEEXT - ok
23:42:28.0501 0x1110 [ D2B1DA73B6E8769A1BE1A55693B7F1B3, FE26FEAD6A45E4596A7CA9689B66511C4BCB4686A1914505257648DCE048CA26 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
23:42:28.0610 0x1110 IntcAzAudAddService - ok
23:42:28.0626 0x1110 [ B014CE58F0A8048D3924BA8D5CCBC5F1, C2A913B7A7A0CB2B8C1EC9E51DE98B51DF55A9AA4D21804C531E30D9FACCC0F9 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
23:42:28.0657 0x1110 IntcHdmiAddService - ok
23:42:28.0672 0x1110 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
23:42:28.0688 0x1110 intelide - ok
23:42:28.0688 0x1110 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
23:42:28.0704 0x1110 intelppm - ok
23:42:28.0735 0x1110 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
23:42:28.0766 0x1110 IPBusEnum - ok
23:42:28.0813 0x1110 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:42:28.0860 0x1110 IpFilterDriver - ok
23:42:28.0906 0x1110 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
23:42:28.0938 0x1110 iphlpsvc - ok
23:42:28.0984 0x1110 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
23:42:29.0000 0x1110 IPMIDRV - ok
23:42:29.0016 0x1110 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
23:42:29.0047 0x1110 IPNAT - ok
23:42:29.0062 0x1110 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
23:42:29.0078 0x1110 IRENUM - ok
23:42:29.0094 0x1110 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
23:42:29.0109 0x1110 isapnp - ok
23:42:29.0156 0x1110 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
23:42:29.0172 0x1110 iScsiPrt - ok
23:42:29.0187 0x1110 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
23:42:29.0203 0x1110 kbdclass - ok
23:42:29.0234 0x1110 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
23:42:29.0265 0x1110 kbdhid - ok
23:42:29.0265 0x1110 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso C:\Windows\system32\lsass.exe
23:42:29.0281 0x1110 KeyIso - ok
23:42:29.0328 0x1110 [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
23:42:29.0343 0x1110 KSecDD - ok
23:42:29.0390 0x1110 [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
23:42:29.0406 0x1110 KSecPkg - ok
23:42:29.0406 0x1110 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
23:42:29.0452 0x1110 ksthunk - ok
23:42:29.0484 0x1110 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
23:42:29.0515 0x1110 KtmRm - ok
23:42:29.0562 0x1110 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
23:42:29.0608 0x1110 LanmanServer - ok
23:42:30.0420 0x1110 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:42:30.0466 0x1110 LanmanWorkstation - ok
23:42:30.0482 0x1110 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
23:42:30.0513 0x1110 lltdio - ok
23:42:30.0544 0x1110 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
23:42:30.0591 0x1110 lltdsvc - ok
23:42:30.0638 0x1110 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
23:42:30.0669 0x1110 lmhosts - ok
23:42:30.0685 0x1110 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
23:42:30.0700 0x1110 LSI_FC - ok
23:42:30.0716 0x1110 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
23:42:30.0732 0x1110 LSI_SAS - ok
23:42:30.0778 0x1110 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:42:30.0794 0x1110 LSI_SAS2 - ok
23:42:30.0794 0x1110 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:42:30.0810 0x1110 LSI_SCSI - ok
23:42:30.0825 0x1110 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
23:42:30.0872 0x1110 luafv - ok
23:42:30.0888 0x1110 [ 478CC94C937D235CB0A96AB8F2359D81, 1877AF93FD777F0D5BC02C0CD6E806A165991B6C77D424B13D2D77F8F9D1EFCC ] mbamchameleon C:\Windows\system32\drivers\mbamchameleon.sys
23:42:30.0903 0x1110 mbamchameleon - ok
23:42:30.0950 0x1110 [ CA43F8904E24BBE49982E4C0B29E6579, 2E3E6D02980706061C478C1643F8838310DDAC573C8722AE7F3290CE36B02CB2 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
23:42:30.0966 0x1110 MBAMProtector - ok
23:42:31.0044 0x1110 [ 0BB29DE40C9D9529793DCDB59A43CF5B, 251001A407D32EF22F64915EEFFAAEC229073C4549BF7D9D1D4209B7D15B4681 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
23:42:31.0090 0x1110 MBAMScheduler - ok
23:42:31.0137 0x1110 [ 5F82D8188B370B0CF185D4AE2B9B4A0E, 549B53DD989A069E1C38347C4CEF5283DF9B428CE102799B06A20D3D8F23825F ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
23:42:31.0168 0x1110 MBAMService - ok
23:42:31.0184 0x1110 [ A646C2DDB8C46E9B20A326FAF566646C, F46E3BF392CB4EB53D323BC8CC41EFBB9C5D7C935FECF255F524EB18583A2A37 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
23:42:31.0200 0x1110 MBAMWebAccessControl - ok
23:42:31.0246 0x1110 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
23:42:31.0262 0x1110 Mcx2Svc - ok
23:42:31.0278 0x1110 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
23:42:31.0278 0x1110 megasas - ok
23:42:31.0309 0x1110 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
23:42:31.0324 0x1110 MegaSR - ok
23:42:31.0356 0x1110 [ 9547F37D0E899FD71B52B2AFD4437C79, 1E77BAEE5647F892A5B2CA4EDDEC38EC7859ADD6EAD72A8934B3C04D02ADF5C6 ] MemeoBackgroundService C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
23:42:31.0371 0x1110 MemeoBackgroundService - ok
23:42:31.0418 0x1110 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
23:42:31.0465 0x1110 MMCSS - ok
23:42:31.0465 0x1110 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
23:42:31.0496 0x1110 Modem - ok
23:42:31.0512 0x1110 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
23:42:31.0527 0x1110 monitor - ok
23:42:31.0558 0x1110 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
23:42:31.0574 0x1110 mouclass - ok
23:42:31.0574 0x1110 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
23:42:31.0605 0x1110 mouhid - ok
23:42:31.0636 0x1110 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
23:42:31.0652 0x1110 mountmgr - ok
23:42:31.0699 0x1110 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
23:42:31.0714 0x1110 mpio - ok
23:42:31.0730 0x1110 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
23:42:31.0777 0x1110 mpsdrv - ok
23:42:31.0808 0x1110 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
23:42:31.0855 0x1110 MpsSvc - ok
23:42:31.0886 0x1110 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
23:42:31.0917 0x1110 MRxDAV - ok
23:42:31.0964 0x1110 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
23:42:31.0980 0x1110 mrxsmb - ok
23:42:32.0026 0x1110 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:42:32.0042 0x1110 mrxsmb10 - ok
23:42:32.0089 0x1110 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:42:32.0104 0x1110 mrxsmb20 - ok
23:42:32.0136 0x1110 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
23:42:32.0151 0x1110 msahci - ok
23:42:32.0151 0x1110 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
23:42:32.0167 0x1110 msdsm - ok
23:42:32.0198 0x1110 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
23:42:32.0214 0x1110 MSDTC - ok
23:42:32.0229 0x1110 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
23:42:32.0260 0x1110 Msfs - ok
23:42:32.0276 0x1110 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
23:42:32.0323 0x1110 mshidkmdf - ok
23:42:32.0370 0x1110 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
23:42:32.0385 0x1110 msisadrv - ok
23:42:32.0401 0x1110 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
23:42:32.0448 0x1110 MSiSCSI - ok
23:42:32.0448 0x1110 msiserver - ok
23:42:32.0463 0x1110 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
23:42:32.0510 0x1110 MSKSSRV - ok
23:42:33.0259 0x1110 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
23:42:33.0306 0x1110 MSPCLOCK - ok
23:42:33.0306 0x1110 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
23:42:33.0352 0x1110 MSPQM - ok
23:42:33.0399 0x1110 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
23:42:33.0415 0x1110 MsRPC - ok
23:42:33.0462 0x1110 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
23:42:33.0477 0x1110 mssmbios - ok
23:42:33.0508 0x1110 MSSQL$MICROSOFTBCM - ok
23:42:33.0555 0x1110 [ CB7524C21727404BD3140DCA32DEB7DE, 5B1F111FADC31CD1E6F0345E2F9F989D9E63D64C9F20EFEFAC7A86BD82B8484C ] MSSQLServerADHelper C:\Program Files (x86)\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe
23:42:33.0555 0x1110 MSSQLServerADHelper - detected UnsignedFile.Multi.Generic ( 1 )
23:42:33.0571 0x1110 Detect skipped due to KSN trusted
23:42:33.0571 0x1110 MSSQLServerADHelper - ok
23:42:33.0586 0x1110 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
23:42:33.0618 0x1110 MSTEE - ok
23:42:33.0633 0x1110 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
23:42:33.0649 0x1110 MTConfig - ok
23:42:33.0664 0x1110 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
23:42:33.0680 0x1110 Mup - ok
23:42:33.0727 0x1110 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
23:42:33.0774 0x1110 napagent - ok
23:42:33.0805 0x1110 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
23:42:33.0820 0x1110 NativeWifiP - ok
23:42:33.0898 0x1110 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys
23:42:33.0930 0x1110 NDIS - ok
23:42:33.0945 0x1110 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
23:42:33.0976 0x1110 NdisCap - ok
23:42:33.0992 0x1110 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
23:42:34.0039 0x1110 NdisTapi - ok
23:42:34.0070 0x1110 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
23:42:34.0101 0x1110 Ndisuio - ok
23:42:34.0148 0x1110 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
23:42:34.0195 0x1110 NdisWan - ok
23:42:34.0242 0x1110 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
23:42:34.0273 0x1110 NDProxy - ok
23:42:34.0382 0x1110 [ 7D2633295EB6FF2B938185874884059D, B3A4E52ABCB2E2720D8ADB0B68C222D4AB98E838D40B6A731D15EB1D6C9DEA15 ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
23:42:34.0413 0x1110 Nero BackItUp Scheduler 4.0 - ok
23:42:34.0413 0x1110 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
23:42:34.0460 0x1110 NetBIOS - ok
23:42:34.0507 0x1110 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
23:42:34.0554 0x1110 NetBT - ok
23:42:34.0554 0x1110 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon C:\Windows\system32\lsass.exe
23:42:34.0585 0x1110 Netlogon - ok
23:42:34.0632 0x1110 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
23:42:34.0678 0x1110 Netman - ok
23:42:34.0756 0x1110 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:42:34.0772 0x1110 NetMsmqActivator - ok
23:42:34.0788 0x1110 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:42:34.0819 0x1110 NetPipeActivator - ok
23:42:34.0834 0x1110 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
23:42:34.0881 0x1110 netprofm - ok
23:42:34.0897 0x1110 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:42:34.0912 0x1110 NetTcpActivator - ok
23:42:34.0928 0x1110 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:42:34.0944 0x1110 NetTcpPortSharing - ok
23:42:34.0944 0x1110 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
23:42:34.0959 0x1110 nfrd960 - ok
23:42:34.0990 0x1110 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
23:42:35.0022 0x1110 NlaSvc - ok
23:42:35.0022 0x1110 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
23:42:35.0068 0x1110 Npfs - ok
23:42:35.0068 0x1110 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
23:42:35.0115 0x1110 nsi - ok
23:42:35.0115 0x1110 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
23:42:35.0162 0x1110 nsiproxy - ok
23:42:35.0240 0x1110 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
23:42:35.0302 0x1110 Ntfs - ok
23:42:36.0129 0x1110 [ BD691091AC7D9713D8F0B07C6B099E6C, 4A69ED227CCBBCB76F78078CEE42506A875759FFB519CB9C40173EF8ACD6D6D2 ] NTI IScheduleSvc C:\Program Files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe
23:42:36.0145 0x1110 NTI IScheduleSvc - ok
23:42:36.0160 0x1110 [ 64DDD0DEE976302F4BD93E5EFCC2F013, 19F54B4549999EF96FAE1B2B97973F281304843ADE0CF5823574453AB41E3E9C ] NTIDrvr C:\Windows\system32\drivers\NTIDrvr.sys
23:42:36.0160 0x1110 NTIDrvr - ok
23:42:36.0176 0x1110 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
23:42:36.0223 0x1110 Null - ok
23:42:36.0270 0x1110 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
23:42:36.0285 0x1110 nvraid - ok
23:42:36.0316 0x1110 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
23:42:36.0332 0x1110 nvstor - ok
23:42:36.0394 0x1110 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
23:42:36.0410 0x1110 nv_agp - ok
23:42:36.0441 0x1110 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
23:42:36.0457 0x1110 ohci1394 - ok
23:42:36.0550 0x1110 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:42:36.0566 0x1110 ose - ok
23:42:36.0613 0x1110 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
23:42:36.0628 0x1110 p2pimsvc - ok
23:42:36.0675 0x1110 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
23:42:36.0706 0x1110 p2psvc - ok
23:42:36.0722 0x1110 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
23:42:36.0738 0x1110 Parport - ok
23:42:36.0784 0x1110 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
23:42:36.0800 0x1110 partmgr - ok
23:42:36.0816 0x1110 [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] PcaSvc C:\Windows\System32\pcasvc.dll
23:42:36.0831 0x1110 PcaSvc - ok
23:42:36.0862 0x1110 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
23:42:36.0878 0x1110 pci - ok
23:42:36.0894 0x1110 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
23:42:36.0909 0x1110 pciide - ok
23:42:36.0956 0x1110 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
23:42:36.0972 0x1110 pcmcia - ok
23:42:37.0003 0x1110 [ AF7CE12C4F3DC8CB2B07685C916BBCFE, 1AF47113778D411BF3CF82ACF428676908121B1F3252133A5F98E188ED1E9C6C ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
23:42:37.0018 0x1110 pcouffin - ok
23:42:37.0050 0x1110 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
23:42:37.0065 0x1110 pcw - ok
23:42:37.0112 0x1110 [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
23:42:37.0143 0x1110 PEAUTH - ok
23:42:37.0252 0x1110 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
23:42:37.0268 0x1110 PerfHost - ok
23:42:37.0330 0x1110 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
23:42:37.0393 0x1110 pla - ok
23:42:37.0455 0x1110 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
23:42:37.0471 0x1110 PlugPlay - ok
23:42:37.0502 0x1110 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
23:42:37.0518 0x1110 PNRPAutoReg - ok
23:42:37.0533 0x1110 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
23:42:37.0564 0x1110 PNRPsvc - ok
23:42:37.0611 0x1110 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
23:42:37.0658 0x1110 PolicyAgent - ok
23:42:37.0674 0x1110 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
23:42:37.0720 0x1110 Power - ok
23:42:37.0767 0x1110 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
23:42:37.0798 0x1110 PptpMiniport - ok
23:42:37.0814 0x1110 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
23:42:37.0830 0x1110 Processor - ok
23:42:37.0861 0x1110 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
23:42:37.0876 0x1110 ProfSvc - ok
23:42:37.0892 0x1110 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:42:37.0908 0x1110 ProtectedStorage - ok
23:42:37.0954 0x1110 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
23:42:37.0986 0x1110 Psched - ok
23:42:38.0048 0x1110 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
23:42:38.0095 0x1110 ql2300 - ok
23:42:38.0110 0x1110 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
23:42:38.0126 0x1110 ql40xx - ok
23:42:38.0142 0x1110 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
23:42:38.0173 0x1110 QWAVE - ok
23:42:38.0188 0x1110 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
23:42:38.0204 0x1110 QWAVEdrv - ok
23:42:38.0968 0x1110 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
23:42:39.0000 0x1110 RasAcd - ok
23:42:39.0031 0x1110 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
23:42:39.0062 0x1110 RasAgileVpn - ok
23:42:39.0078 0x1110 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
23:42:39.0109 0x1110 RasAuto - ok
23:42:39.0156 0x1110 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
23:42:39.0202 0x1110 Rasl2tp - ok
23:42:39.0249 0x1110 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
23:42:39.0296 0x1110 RasMan - ok
23:42:39.0312 0x1110 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
23:42:39.0343 0x1110 RasPppoe - ok
23:42:39.0358 0x1110 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
23:42:39.0390 0x1110 RasSstp - ok
23:42:39.0452 0x1110 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
23:42:39.0483 0x1110 rdbss - ok
23:42:39.0499 0x1110 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
23:42:39.0514 0x1110 rdpbus - ok
23:42:39.0530 0x1110 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
23:42:39.0561 0x1110 RDPCDD - ok
23:42:39.0577 0x1110 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
23:42:39.0608 0x1110 RDPENCDD - ok
23:42:39.0624 0x1110 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
23:42:39.0655 0x1110 RDPREFMP - ok
23:42:39.0702 0x1110 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
23:42:39.0717 0x1110 RdpVideoMiniport - ok
23:42:39.0764 0x1110 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
23:42:39.0795 0x1110 RDPWD - ok
23:42:39.0826 0x1110 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
23:42:39.0858 0x1110 rdyboost - ok
23:42:39.0920 0x1110 [ D458B9F0477A02D5C1605420EBB7CB7F, E6364228D0723A565572879EA2BF5333ABA78BA13DB5DEE825C34DE07456C133 ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
23:42:39.0920 0x1110 RealNetworks Downloader Resolver Service - ok
23:42:39.0998 0x1110 [ 4C33683C0EE5EE3368D81D5F1AE0E2DD, 4DDBA566B09368FFC82B08135A8344C2687A44D92AC2B793B00DBBB713BA0961 ] RealPlayerUpdateSvc C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
23:42:40.0014 0x1110 RealPlayerUpdateSvc - ok
23:42:40.0029 0x1110 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
23:42:40.0076 0x1110 RemoteAccess - ok
23:42:40.0092 0x1110 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
23:42:40.0123 0x1110 RemoteRegistry - ok
23:42:40.0170 0x1110 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
23:42:40.0201 0x1110 RpcEptMapper - ok
23:42:40.0232 0x1110 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
23:42:40.0248 0x1110 RpcLocator - ok
23:42:40.0279 0x1110 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\System32\rpcss.dll
23:42:40.0326 0x1110 RpcSs - ok
23:42:40.0341 0x1110 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
23:42:40.0388 0x1110 rspndr - ok
23:42:40.0404 0x1110 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs C:\Windows\system32\lsass.exe
23:42:40.0419 0x1110 SamSs - ok
23:42:40.0466 0x1110 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
23:42:40.0482 0x1110 sbp2port - ok
23:42:40.0497 0x1110 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
23:42:40.0544 0x1110 SCardSvr - ok
23:42:40.0591 0x1110 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
23:42:40.0622 0x1110 scfilter - ok
23:42:40.0669 0x1110 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll
23:42:40.0731 0x1110 Schedule - ok
23:42:40.0778 0x1110 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
23:42:40.0809 0x1110 SCPolicySvc - ok
23:42:40.0856 0x1110 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
23:42:40.0872 0x1110 SDRSVC - ok
23:42:40.0919 0x1110 [ B29A858AAF869DA38E02278F91512C07, A35A58A096560963A029286835531630003CC774F76DA00EC002428376F412F7 ] SeagateDashboardService C:\Program Files (x86)\Seagate\Seagate Dashboard\SeagateDashboardService.exe
23:42:40.0934 0x1110 SeagateDashboardService - ok
23:42:40.0950 0x1110 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
23:42:40.0981 0x1110 secdrv - ok
23:42:41.0028 0x1110 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
23:42:41.0059 0x1110 seclogon - ok
23:42:41.0839 0x1110 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
23:42:41.0870 0x1110 SENS - ok
23:42:41.0886 0x1110 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
23:42:41.0901 0x1110 SensrSvc - ok
23:42:41.0917 0x1110 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
23:42:41.0933 0x1110 Serenum - ok
23:42:41.0948 0x1110 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
23:42:41.0964 0x1110 Serial - ok
23:42:42.0011 0x1110 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
23:42:42.0026 0x1110 sermouse - ok
23:42:42.0073 0x1110 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
23:42:42.0120 0x1110 SessionEnv - ok
23:42:42.0151 0x1110 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
23:42:42.0182 0x1110 sffdisk - ok
23:42:42.0213 0x1110 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
23:42:42.0245 0x1110 sffp_mmc - ok
23:42:42.0245 0x1110 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
23:42:42.0276 0x1110 sffp_sd - ok
23:42:42.0291 0x1110 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
23:42:42.0307 0x1110 sfloppy - ok
23:42:42.0323 0x1110 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
23:42:42.0369 0x1110 SharedAccess - ok
23:42:42.0401 0x1110 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:42:42.0432 0x1110 ShellHWDetection - ok
23:42:42.0447 0x1110 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:42:42.0463 0x1110 SiSRaid2 - ok
23:42:42.0479 0x1110 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
23:42:42.0494 0x1110 SiSRaid4 - ok
23:42:42.0510 0x1110 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
23:42:42.0541 0x1110 Smb - ok
23:42:42.0572 0x1110 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
23:42:42.0588 0x1110 SNMPTRAP - ok
23:42:42.0603 0x1110 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
23:42:42.0619 0x1110 spldr - ok
23:42:42.0666 0x1110 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
23:42:42.0697 0x1110 Spooler - ok
23:42:42.0806 0x1110 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
23:42:42.0915 0x1110 sppsvc - ok
23:42:42.0947 0x1110 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
23:42:42.0993 0x1110 sppuinotify - ok
23:42:43.0025 0x1110 SQLAgent$MICROSOFTBCM - ok
23:42:43.0071 0x1110 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
23:42:43.0087 0x1110 srv - ok
23:42:43.0149 0x1110 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
23:42:43.0165 0x1110 srv2 - ok
23:42:43.0181 0x1110 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
23:42:43.0196 0x1110 srvnet - ok
23:42:43.0243 0x1110 [ ED161B91FDF7EAA39469D72D463D5F4E, FC793E378FB709313D0AC44F59BF5C9488D73235AA2B1A21C50C3DED91C6BE62 ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys
23:42:43.0259 0x1110 sscdbus - ok
23:42:43.0274 0x1110 [ 4CB09E77593DBD8D7AF33B37375CA715, 7B14851A8EDAA996D28335FD4DA812C6114DD5012E1E929F4813797CDC77E5BC ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys
23:42:43.0290 0x1110 sscdmdfl - ok
23:42:43.0305 0x1110 [ C7B4CF53497A6E5363F3439427663882, 993278ADAAC18F12FE00CCF76681461451DA335F67BB581FC7326045048EC085 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys
23:42:43.0321 0x1110 sscdmdm - ok
23:42:43.0337 0x1110 [ 05FFA552F578E27AB2D41B6828DB477F, F3292A431D656C039F4300AA584FA13F26A69B351C2F903B3E47CEF464A6233A ] sscdserd C:\Windows\system32\DRIVERS\sscdserd.sys
23:42:43.0352 0x1110 sscdserd - ok
23:42:43.0399 0x1110 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
23:42:43.0446 0x1110 SSDPSRV - ok
23:42:43.0461 0x1110 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
23:42:43.0508 0x1110 SstpSvc - ok
23:42:43.0571 0x1110 [ 7E815DDD79CC73A02A33DF11FABE4E1E, A05A85CDB0CB0AA1AAC93AA801C39242BFE59082E2BC580F04EBFA71B5B61F07 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
23:42:43.0602 0x1110 Steam Client Service - ok
23:42:43.0633 0x1110 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
23:42:43.0649 0x1110 stexstor - ok
23:42:43.0695 0x1110 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
23:42:43.0742 0x1110 stisvc - ok
23:42:43.0773 0x1110 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
23:42:43.0789 0x1110 swenum - ok
23:42:43.0820 0x1110 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
23:42:43.0867 0x1110 swprv - ok
23:42:44.0725 0x1110 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll
23:42:44.0787 0x1110 SysMain - ok
23:42:44.0834 0x1110 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:42:44.0850 0x1110 TabletInputService - ok
23:42:44.0912 0x1110 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
23:42:44.0943 0x1110 TapiSrv - ok
23:42:44.0959 0x1110 [ 185C2170CFD84F9D708276FBB5ABD77D, FCA00B5CC62F2C160326DBA2F6BF31746324BBE7D5E96291C345DCF2583CE324 ] tapSF0901 C:\Windows\system32\DRIVERS\tapSF0901.sys
23:42:44.0975 0x1110 tapSF0901 - ok
23:42:45.0006 0x1110 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
23:42:45.0037 0x1110 TBS - ok
23:42:45.0131 0x1110 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
23:42:45.0193 0x1110 Tcpip - ok
23:42:45.0255 0x1110 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
23:42:45.0318 0x1110 TCPIP6 - ok
23:42:45.0365 0x1110 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
23:42:45.0380 0x1110 tcpipreg - ok
23:42:45.0396 0x1110 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
23:42:45.0411 0x1110 TDPIPE - ok
23:42:45.0458 0x1110 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
23:42:45.0474 0x1110 TDTCP - ok
23:42:45.0521 0x1110 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys
23:42:45.0536 0x1110 tdx - ok
23:42:45.0552 0x1110 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
23:42:45.0567 0x1110 TermDD - ok
23:42:45.0630 0x1110 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
23:42:45.0661 0x1110 TermService - ok
23:42:45.0708 0x1110 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
23:42:45.0739 0x1110 Themes - ok
23:42:45.0786 0x1110 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
23:42:45.0817 0x1110 THREADORDER - ok
23:42:45.0833 0x1110 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
23:42:45.0879 0x1110 TrkWks - ok
23:42:45.0926 0x1110 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:42:45.0973 0x1110 TrustedInstaller - ok
23:42:46.0020 0x1110 [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
23:42:46.0035 0x1110 tssecsrv - ok
23:42:46.0082 0x1110 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
23:42:46.0098 0x1110 TsUsbFlt - ok
23:42:46.0145 0x1110 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
23:42:46.0176 0x1110 tunnel - ok
23:42:46.0191 0x1110 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
23:42:46.0207 0x1110 uagp35 - ok
23:42:46.0223 0x1110 [ 2E22C1FD397A5A9FFEF55E9D1FC96C00, 4646712B3F3AF6188DBCE1A95D92261E8B15E9583FE5DD538EC884F48B51759D ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
23:42:46.0238 0x1110 UBHelper - ok
23:42:46.0285 0x1110 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
23:42:46.0332 0x1110 udfs - ok
23:42:46.0379 0x1110 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
23:42:46.0394 0x1110 UI0Detect - ok
23:42:46.0410 0x1110 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
23:42:46.0425 0x1110 uliagpkx - ok
23:42:46.0472 0x1110 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
23:42:46.0488 0x1110 umbus - ok
23:42:46.0503 0x1110 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
23:42:46.0519 0x1110 UmPass - ok
23:42:46.0597 0x1110 [ 70DDE3A86DBEB1D6C3C30AD687B1877A, 2DAE797240DB8F521F1C9D1171524790052E186B060D58A1B102FBFFC80CE48E ] Updater Service C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
23:42:46.0613 0x1110 Updater Service - ok
23:42:46.0659 0x1110 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
23:42:46.0706 0x1110 upnphost - ok
23:42:46.0722 0x1110 [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
23:42:46.0722 0x1110 USBAAPL64 - detected UnsignedFile.Multi.Generic ( 1 )
23:42:46.0722 0x1110 Detect skipped due to KSN trusted
23:42:46.0722 0x1110 USBAAPL64 - ok
23:42:47.0533 0x1110 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
23:42:47.0549 0x1110 usbccgp - ok
23:42:47.0611 0x1110 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
23:42:47.0627 0x1110 usbcir - ok
23:42:47.0658 0x1110 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
23:42:47.0673 0x1110 usbehci - ok
23:42:47.0720 0x1110 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
23:42:47.0751 0x1110 usbhub - ok
23:42:47.0767 0x1110 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
23:42:47.0783 0x1110 usbohci - ok
23:42:47.0798 0x1110 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
23:42:47.0814 0x1110 usbprint - ok
23:42:47.0829 0x1110 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\drivers\usbscan.sys
23:42:47.0845 0x1110 usbscan - ok
23:42:47.0892 0x1110 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:42:47.0907 0x1110 USBSTOR - ok
23:42:47.0923 0x1110 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
23:42:47.0939 0x1110 usbuhci - ok
23:42:47.0954 0x1110 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
23:42:47.0985 0x1110 UxSms - ok
23:42:48.0001 0x1110 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc C:\Windows\system32\lsass.exe
23:42:48.0017 0x1110 VaultSvc - ok
23:42:48.0032 0x1110 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
23:42:48.0048 0x1110 vdrvroot - ok
23:42:48.0110 0x1110 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
23:42:48.0157 0x1110 vds - ok
23:42:48.0173 0x1110 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
23:42:48.0204 0x1110 vga - ok
23:42:48.0219 0x1110 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
23:42:48.0251 0x1110 VgaSave - ok
23:42:48.0297 0x1110 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
23:42:48.0313 0x1110 vhdmp - ok
23:42:48.0344 0x1110 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
23:42:48.0344 0x1110 viaide - ok
23:42:48.0360 0x1110 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
23:42:48.0375 0x1110 volmgr - ok
23:42:48.0438 0x1110 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
23:42:48.0453 0x1110 volmgrx - ok
23:42:48.0485 0x1110 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
23:42:48.0500 0x1110 volsnap - ok
23:42:48.0516 0x1110 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
23:42:48.0531 0x1110 vsmraid - ok
23:42:48.0625 0x1110 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
23:42:48.0687 0x1110 VSS - ok
23:42:48.0703 0x1110 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
23:42:48.0734 0x1110 vwifibus - ok
23:42:48.0765 0x1110 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
23:42:48.0812 0x1110 W32Time - ok
23:42:48.0828 0x1110 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
23:42:48.0843 0x1110 WacomPen - ok
23:42:48.0859 0x1110 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
23:42:48.0890 0x1110 WANARP - ok
23:42:48.0890 0x1110 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
23:42:48.0937 0x1110 Wanarpv6 - ok
23:42:49.0015 0x1110 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
23:42:49.0062 0x1110 WatAdminSvc - ok
23:42:49.0140 0x1110 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
23:42:49.0187 0x1110 wbengine - ok
23:42:49.0202 0x1110 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
23:42:49.0233 0x1110 WbioSrvc - ok
23:42:49.0280 0x1110 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
23:42:49.0311 0x1110 wcncsvc - ok
23:42:49.0358 0x1110 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:42:49.0374 0x1110 WcsPlugInService - ok
23:42:49.0389 0x1110 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
23:42:49.0405 0x1110 Wd - ok
23:42:49.0483 0x1110 [ 2F0339FCE51257F5930357F1DEE2D39E, 78CE40BD4FD58A3E44BAC8C41594694F0A3B8AA55619558A5B751D6623831A22 ] WDBackup C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
23:42:49.0514 0x1110 WDBackup - ok
23:42:49.0530 0x1110 [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys
23:42:49.0545 0x1110 WDC_SAM - ok
23:42:49.0577 0x1110 [ 2E742EAD7E1B290CED554E30F69F5C1E, D146312C3745A5D3951F8F2F1239DB180A2E082255F2F5934DB8836FA77C50EF ] WDDriveService C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
23:42:49.0592 0x1110 WDDriveService - ok
23:42:50.0419 0x1110 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
23:42:50.0466 0x1110 Wdf01000 - ok
23:42:50.0497 0x1110 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
23:42:50.0528 0x1110 WdiServiceHost - ok
23:42:50.0528 0x1110 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
23:42:50.0559 0x1110 WdiSystemHost - ok
23:42:50.0606 0x1110 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll
23:42:50.0637 0x1110 WebClient - ok
23:42:50.0653 0x1110 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
23:42:50.0700 0x1110 Wecsvc - ok
23:42:50.0715 0x1110 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
23:42:50.0747 0x1110 wercplsupport - ok
23:42:50.0762 0x1110 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
23:42:50.0809 0x1110 WerSvc - ok
23:42:50.0825 0x1110 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
23:42:50.0856 0x1110 WfpLwf - ok
23:42:50.0856 0x1110 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
23:42:50.0871 0x1110 WIMMount - ok
23:42:50.0887 0x1110 WinDefend - ok
23:42:50.0903 0x1110 WinHttpAutoProxySvc - ok
23:42:50.0981 0x1110 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
23:42:51.0027 0x1110 Winmgmt - ok
23:42:51.0027 0x1110 WinRing0_1_2_0 - ok
23:42:51.0121 0x1110 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
23:42:51.0183 0x1110 WinRM - ok
23:42:51.0246 0x1110 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
23:42:51.0261 0x1110 WinUsb - ok
23:42:51.0308 0x1110 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
23:42:51.0339 0x1110 Wlansvc - ok
23:42:51.0417 0x1110 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:42:51.0433 0x1110 wlcrasvc - ok
23:42:51.0589 0x1110 [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:42:51.0651 0x1110 wlidsvc - ok
23:42:51.0698 0x1110 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
23:42:51.0729 0x1110 WmiAcpi - ok
23:42:51.0776 0x1110 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
23:42:51.0807 0x1110 wmiApSrv - ok
23:42:51.0807 0x1110 WMPNetworkSvc - ok
23:42:51.0823 0x1110 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
23:42:51.0839 0x1110 WPCSvc - ok
23:42:51.0885 0x1110 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
23:42:51.0917 0x1110 WPDBusEnum - ok
23:42:51.0932 0x1110 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
23:42:51.0963 0x1110 ws2ifsl - ok
23:42:52.0010 0x1110 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll
23:42:52.0026 0x1110 wscsvc - ok
23:42:52.0041 0x1110 WSearch - ok
23:42:52.0151 0x1110 [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv C:\Windows\system32\wuaueng.dll
23:42:52.0229 0x1110 wuauserv - ok
23:42:52.0275 0x1110 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
23:42:52.0291 0x1110 WudfPf - ok
23:42:52.0338 0x1110 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
23:42:52.0353 0x1110 WUDFRd - ok
23:42:52.0369 0x1110 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
23:42:52.0385 0x1110 wudfsvc - ok
23:42:52.0431 0x1110 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
23:42:52.0463 0x1110 WwanSvc - ok
23:42:52.0463 0x1110 X5XSEx - ok
23:42:52.0494 0x1110 ================ Scan global ===============================
23:42:53.0274 0x1110 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
23:42:53.0305 0x1110 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
23:42:53.0336 0x1110 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
23:42:53.0383 0x1110 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
23:42:53.0414 0x1110 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
23:42:53.0430 0x1110 [ Global ] - ok
23:42:53.0430 0x1110 ================ Scan MBR ==================================
23:42:53.0445 0x1110 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:42:53.0617 0x1110 \Device\Harddisk0\DR0 - ok
23:42:53.0617 0x1110 ================ Scan VBR ==================================
23:42:53.0617 0x1110 [ B57F793D31CCF623B804A8D8D8DA0EDC ] \Device\Harddisk0\DR0\Partition1
23:42:53.0617 0x1110 \Device\Harddisk0\DR0\Partition1 - ok
23:42:53.0633 0x1110 [ 88DBB815A0FD3BC8FB90B7AEFC2DCFA2 ] \Device\Harddisk0\DR0\Partition2
23:42:53.0633 0x1110 \Device\Harddisk0\DR0\Partition2 - ok
23:42:53.0633 0x1110 ================ Scan generic autorun ======================
23:42:54.0023 0x1110 [ 6BCE148DE6670CFB44828B8497E089F6, 150899C8FCBF57BD61794638149D8C14738AB915CA4470E2B65E766BBE4CF171 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
23:42:54.0319 0x1110 RtHDVCpl - ok
23:42:54.0397 0x1110 [ 4E592C92850A9A2C0E3BF702A60C0908, E374ED24F9C67227CAA20B321032BDEA9FFD3A16E61D2D6138A8DD45DAEBECE9 ] C:\Windows\system32\igfxpers.exe
23:42:54.0413 0x1110 Persistence - ok
23:42:54.0428 0x1110 [ 3CD0E54D977C28CA50FBE3E40C6F7D0F, 45720F7B11603BBE6ADE056770C25692212503D38BA68CB0550988872E40E2F1 ] C:\Windows\system32\igfxtray.exe
23:42:54.0444 0x1110 IgfxTray - ok
23:42:54.0506 0x1110 [ 5AF1E9600E3FF841E522703A4993ED0C, 5189530793747C40B0E3548DA40058989C88A69C593C3E54E6548CFB89B9CE10 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
23:42:54.0522 0x1110 IAAnotif - ok
23:42:54.0569 0x1110 [ 4E2B2F3B7FD17CA06C74F5B54AD476A2, 221BA5FE7CFEE54882902A6AD29B5202201448F1ADC189ECD6F631A186DE34D8 ] C:\Windows\system32\hkcmd.exe
23:42:54.0584 0x1110 HotKeysCmds - ok
23:42:54.0709 0x1110 [ 48B1FF4BC51C3489129CAFB511A92E0B, C3CDEEBBDE6E6F138590B3041477B5720030E1D9E97EC7D722AADD61110869E7 ] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
23:42:54.0756 0x1110 BingDesktop - ok
23:42:54.0803 0x1110 [ E0AAE46829E5909AA87D6A323F7C81D2, F3B70007A333F5BF16F87AF9220A6622B59F3168EAD5683869693020DF67DA5C ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
23:42:54.0818 0x1110 SunJavaUpdateSched - ok
23:42:54.0974 0x1110 [ 7E713E2ED0226EA82E97A630684115BE, C99F83CF01E7926DE8D2FBCDFA9565D2BCC2D156976458367AEBDB3B327FB849 ] C:\Program Files (x86)\AVG\AVG2015\avgui.exe
23:42:55.0068 0x1110 AVG_UI - ok
23:42:55.0130 0x1110 [ 49EE6908D22348DA20EC7D96AB553419, C923B6C4B3D6E7EEA86AE3329E078DCEC312D35502DA288B0C6DEABEAC4D32B0 ] C:\Program Files (x86)\Memeo\AutoBackup\MemeoLauncher2.exe
23:42:55.0146 0x1110 Memeo Instant Backup - ok
23:42:55.0177 0x1110 [ EE35155B8FEBF5F44513C7B8CBA0EF3E, E33699170DEF0C8A60EDEE93F0B7D103B22E5188C604F8EE9F581526E425B8CC ] C:\Program Files (x86)\Memeo\AutoSync\MemeoLauncher2.exe
23:42:55.0193 0x1110 Memeo AutoSync - ok
23:42:55.0239 0x1110 [ FE8FCDF4921935D26BCB14F90D2B634E, D0BC75567092A8978CA5FF04F5227B2697DB49B8A7EF8B912BA919F610DCD168 ] C:\Program Files (x86)\Memeo\Memeo Send\MemeoLauncher.exe
23:42:55.0255 0x1110 Memeo Send - ok
23:42:55.0271 0x1110 [ B212C12BDBBD19CB9D9876B457A1CEDA, 549A4B9F54020FA330AF9A81FB55C11158B6F001444D63F3C8D97ED0CF856059 ] C:\Program Files (x86)\Seagate\Seagate Dashboard\MemeoLauncher.exe
23:42:55.0286 0x1110 Seagate Dashboard - ok
23:42:56.0160 0x1110 [ 845A4F50702714950804D6BD428083C1, 9718115B968BBCAEE35B3B0AE9817CAF1DAFAD3EE0F3927375CFF41A7E3F48EA ] C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
23:42:56.0207 0x1110 DriveUtilitiesHelper - ok
23:42:56.0394 0x1110 [ E84F189BE4353A47EBF063D8EA3C4B63, C9AD8FA3E0DE9860D3100E17F90F91C7CAD01730A98E8E12E5936B47EF23E546 ] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
23:42:56.0519 0x1110 WD Quick View - ok
23:42:56.0628 0x1110 [ F16C54B6BD5A1E71DD5D0894F14EC632, 963667110CFFAECA624A69BD133947A0B7E5C9E4DC784D73C810ADEBD9BBDDFF ] C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
23:42:56.0675 0x1110 WD Drive Unlocker - ok
23:42:56.0675 0x1110 AV detected via SS2: AVG AntiVirus 2015, C:\Program Files (x86)\AVG\AVG2015\avgwsc.exe ( 15.0.0.5645 ), 0x41000 ( enabled : updated )
23:42:56.0675 0x1110 AV detected via SS2: avast! Antivirus, C:\Program Files\Alwil Software\Avast5\VisthAux.exe ( 5.0.121.0 ), 0x40000 ( disabled : updated )
23:42:56.0675 0x1110 FW detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.0.2208.712 ), 0x40010 ( disabled )
23:42:56.0675 0x1110 Win FW state via NFP2: enabled
23:42:59.0561 0x1110 ============================================================
23:42:59.0561 0x1110 Scan finished
23:42:59.0561 0x1110 ============================================================
23:42:59.0561 0x05f0 Detected object count: 0
23:42:59.0561 0x05f0 Actual detected object count: 0
boynsini_13
Regular Member
 
Posts: 79
Joined: January 3rd, 2015, 6:15 am

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby boynsini_13 » January 22nd, 2015, 4:04 am

Finished Loading TDSSKILLER Logs, loaded in three parts, hope you got them
boynsini_13
Regular Member
 
Posts: 79
Joined: January 3rd, 2015, 6:15 am

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby boynsini_13 » January 22nd, 2015, 4:34 am

For the Check disk files (since so big), I would have to load them in nine parts, I wanted to try to submit the attachments to make sure you got the entire thing. If you'd prefer me to post it, then I'll try to do that. But for now I've attached the first Check Disk file to this post. Let me know if this works for you.
CDiskList-H.txt
,
You do not have the required permissions to view the files attached to this post.
boynsini_13
Regular Member
 
Posts: 79
Joined: January 3rd, 2015, 6:15 am

Re: Bad Virus found on windows 7, losing hard-drive space, H

Unread postby boynsini_13 » January 22nd, 2015, 4:54 am

CDiskListAll.txt attachment times out every time I try to upload it as an attachment, so I'm going to load it in multiple posts. Here we go!
boynsini_13
Regular Member
 
Posts: 79
Joined: January 3rd, 2015, 6:15 am
Advertisement
Register to Remove

PreviousNext

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 50 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware