Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

windows vista unresponsive after 10 minutes

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: windows vista unresponsive after 10 minutes

Unread postby wfr37 » August 20th, 2015, 6:41 pm

Please clarify what you mean. After reboot do you mean to Copy and paste the command into the line that opens in the lower left corner of the screen when you click start -> run. Or type "cmd" into that spot and copy and paste the command into the command window that opens as we did for the chkdsk fix command.
wfr37
Regular Member
 
Posts: 20
Joined: July 26th, 2015, 8:31 pm
Advertisement
Register to Remove

Re: windows vista unresponsive after 10 minutes

Unread postby wannabeageek » August 20th, 2015, 7:05 pm

Step by step breakdown. Then Continue with step 2.

If it's present on your Desktop, please delete your original file Checkhd.txt
  1. Go To Start, Run and type cmd
  2. hit <Enter>
  3. Type this black text into the command window at the prompt:
    chkdsk c: /F <==notice the /F, with one space between c: and /F
  4. hit <Enter>
    You will get a message that the volume is locked, with a request to do the repair on Reboot.
  5. Answer Y
  6. Then type exit to close the Command window.
  7. Go to Start, Turn Off Computer and choose Reboot.
    It will scan again when it boots up and make the repairs as the first part of the reboot process.
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: windows vista unresponsive after 10 minutes

Unread postby wfr37 » August 20th, 2015, 9:50 pm

after the computer completed step 1 per the above, the message said chkdsk was successfully completed and the laptop was proceeding to restart. Once logged in again, ran step 2. copied below is the contents of the chckhd.txt file. I noticed it again says read only. Is there something I should have done before it could automatically restart? It seems like there was much more on the screen during the chkdsk process than shows up in the file.

The type of the file system is NTFS.
Volume label is SQ004816V03.

WARNING! F parameter not specified.
Running CHKDSK in read-only mode.

CHKDSK is verifying files (stage 1 of 3)...
File verification completed.
1228 large file records processed.

0 bad file records processed.

2 EA records processed.

76 reparse records processed.

CHKDSK is verifying indexes (stage 2 of 3)...
Index verification completed.
0 unindexed files processed.

CHKDSK is verifying security descriptors (stage 3 of 3)...
Security descriptor verification completed.
52568 data files processed.

CHKDSK is verifying Usn Journal...
Usn Journal verification completed.
Windows has checked the file system and found no problems.

186226687 KB total disk space.
106976228 KB in 332507 files.
wfr37
Regular Member
 
Posts: 20
Joined: July 26th, 2015, 8:31 pm

Re: windows vista unresponsive after 10 minutes

Unread postby wannabeageek » August 21st, 2015, 2:28 pm

Hi wfr37,

I would still keep an eye on the hard disk performance for repeat bad sectors, index errors and lost clusters. Your drive may be failing due to it's age. My old XP Acer gave no warning. I turned it off one day and it never rebooted. The boot sector went out on it. Fortunately for me I was able to retrieve the data.

I noticed it again says read only. Is there something I should have done before it could automatically restart? It seems like there was much more on the screen during the chkdsk process than shows up in the file.
As long as you followed instructions and copied the line of text correctly there is no concern for difference between the two.
Had there been a repeat of errors, I would had recommended a drive replacement immediately. Hence the comment above.
As I posted earlier, the BSOD implicates failing memory.

Please run the following and post the results.
Step 1.
Download/run Rkill:

Please download Rkill from one of the following links and save to your Desktop:
One, Two,or Three
  • Right-click on Rkill And select " Run as administrator " to run it.
  • A command window will open then disappear upon completion, this is normal.
  • When finished, Notepad will open with a log called, "rkill.log".
  • Please copy and paste the contents of the rkill.log in your next reply.
  • The file is automatically saved... located at C:\rkill.log.
  • Please leave Rkill on the Desktop until otherwise advised.

Note: If your security software warns about Rkill, please ignore and allow the download to continue.


Step 2.
TDSSKiller

Please goto Bleepingcomputer TDSSKiller Download.
Click on the .exe version download button.
  • Move this file to your desktop from the folder that your browser saved it in.
    Most likely here: C:\Users\???????\Downloads or %userprofile%\downloads
    Move to here: C:\Users\???????\Desktop or %userprofile%\Desktop
  • Once on your desktop, right-click TDSSKiller.exe and select "Run as administrator" to run it. If prompted by UAC, please allow it.
  • Click on Start Scan, the scan will run.
  • When the scan has finished, if it finds anything please click on the drop down arrow next to Cure and select Skip
  • Now click on Report to open the log file created by TDSSKiller in your root directory C:\
  • To find the log go to Start > Computer > C:
  • A log file should be created on your C: drive named something like TDSSKiller.2.4.0.0 24.07.2010.
  • Post the contents of that log in your next reply please.
  • DO NOT TRY TO FIX ANYTHING AT THIS POINT
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: windows vista unresponsive after 10 minutes

Unread postby wannabeageek » August 23rd, 2015, 3:20 pm

Hi wfr37.

It has been two days since my last post.

  • Do you still need help?
  • Do you need more time?
  • Are you having problems following my instructions?
  • According to Malware Removal's latest policy, topics can be closed after 3 days without a response.
  • If you do not reply within the next 24 hours, this topic will be closed.
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: windows vista unresponsive after 10 minutes

Unread postby wfr37 » August 23rd, 2015, 4:03 pm

wbg,
Please note that i am NOT using windows defender and windows firewall, etc. since i have McAfee Security Suite installed from my ISP. Step 1 results pasted below. Step 2 Found Nothing at all so no pasted results. WFR


Rkill 2.8.1 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2015 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 08/23/2015 02:47:25 PM in x86 mode.
Windows Version: Windows Vista (TM) Home Premium Service Pack 2

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

* Windows Firewall Disabled

[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = dword:00000000

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Automatic

* Windows Update (wuauserv) is not Running.
Startup Type set to: Automatic (Delayed Start)

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 08/23/2015 02:53:15 PM
Execution time: 0 hours(s), 5 minute(s), and 49 seconds(s)
wfr37
Regular Member
 
Posts: 20
Joined: July 26th, 2015, 8:31 pm

Re: windows vista unresponsive after 10 minutes

Unread postby wfr37 » August 23rd, 2015, 4:13 pm

Reference your comment from check disk. I followed the chkdsk c: /F and "Y" per initial instructions to the computer resulted in a reboot but not in read only mode so proper check could be made. and after completing the check disk, the computer restarted on its own before i could enter the step two commands "cmd /c chkdsk c: |find /v "percent" >> "%userprofile%\desktop\checkhd.txt"" to generate the results of the check disk. When it rebooted following check disk it seems it would be back in 'read only' mode and the report would not show the results of the just prior check disk. should i have done anything differently?
wfr37
Regular Member
 
Posts: 20
Joined: July 26th, 2015, 8:31 pm

Re: windows vista unresponsive after 10 minutes

Unread postby wannabeageek » August 23rd, 2015, 9:34 pm

I am not sure you did anything wrong or need to do something different. Let me review the steps for the chkdsk issue.

Please complete the Step 2 TDSSKiller of my post above.
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: windows vista unresponsive after 10 minutes

Unread postby wfr37 » August 24th, 2015, 2:53 pm

below is log txt -

14:57:36.0583 0x0140 TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
14:57:43.0868 0x0140 ============================================================
14:57:43.0868 0x0140 Current date / time: 2015/08/23 14:57:43.0868
14:57:43.0868 0x0140 SystemInfo:
14:57:43.0868 0x0140
14:57:43.0868 0x0140 OS Version: 6.0.6002 ServicePack: 2.0
14:57:43.0868 0x0140 Product type: Workstation
14:57:43.0868 0x0140 ComputerName: WNER-PC
14:57:43.0884 0x0140 UserName: wner
14:57:43.0884 0x0140 Windows directory: C:\Windows
14:57:43.0884 0x0140 System windows directory: C:\Windows
14:57:43.0884 0x0140 Processor architecture: Intel x86
14:57:43.0884 0x0140 Number of processors: 2
14:57:43.0884 0x0140 Page size: 0x1000
14:57:43.0884 0x0140 Boot type: Normal boot
14:57:43.0884 0x0140 ============================================================
14:57:45.0319 0x0140 KLMD registered as C:\Windows\system32\drivers\66468816.sys
14:57:51.0419 0x0140 System UUID: {6F13EE45-4F19-AAC4-414E-46B6EED8D894}
14:57:53.0072 0x0140 Drive \Device\Harddisk0\DR0 - Size: 0x2E93E36000 ( 186.31 Gb ), SectorSize: 0x200, Cylinders: 0x5F01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:57:53.0088 0x0140 ============================================================
14:57:53.0088 0x0140 \Device\Harddisk0\DR0:
14:57:53.0088 0x0140 MBR partitions:
14:57:53.0088 0x0140 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x16333000
14:57:53.0088 0x0140 ============================================================
14:57:53.0150 0x0140 C: <-> \Device\Harddisk0\DR0\Partition1
14:57:53.0150 0x0140 ============================================================
14:57:53.0150 0x0140 Initialize success
14:57:53.0150 0x0140 ============================================================
14:57:55.0319 0x1164 ============================================================
14:57:55.0319 0x1164 Scan started
14:57:55.0319 0x1164 Mode: Manual;
14:57:55.0319 0x1164 ============================================================
14:57:55.0319 0x1164 KSN ping started
14:58:00.0123 0x1164 KSN ping finished: true
14:58:16.0519 0x1164 ================ Scan system memory ========================
14:58:16.0519 0x1164 System memory - ok
14:58:16.0519 0x1164 ================ Scan services =============================
14:58:17.0112 0x1164 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
14:58:17.0127 0x1164 ACPI - ok
14:58:17.0471 0x1164 [ 63AB43534CBF5D7F3EB81DFDC8161490, 205A6057200D0B14DC9EED71E5D96D7558C9215138EA3D7C73FAEB16074A93A7 ] AdobeActiveFileMonitor5.0 C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
14:58:17.0767 0x1164 AdobeActiveFileMonitor5.0 - ok
14:58:18.0001 0x1164 [ 013697369EAFFA675D0671607F036020, 65611C775AC4681E46A6565E5A7A4FF3363C66EBDC98C4C58AFB365D40BE23B6 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
14:58:18.0079 0x1164 AdobeARMservice - ok
14:58:18.0375 0x1164 [ 9B3355B29942AF67F014EA90CE1EA960, FBB155F72984045BCD99CC2059B9EDAABD3A52104C3864A290D8A355991F94D3 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
14:58:18.0547 0x1164 AdobeFlashPlayerUpdateSvc - ok
14:58:18.0703 0x1164 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
14:58:18.0765 0x1164 adp94xx - ok
14:58:19.0249 0x1164 [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci C:\Windows\system32\drivers\adpahci.sys
14:58:19.0358 0x1164 adpahci - ok
14:58:19.0405 0x1164 [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
14:58:19.0452 0x1164 adpu160m - ok
14:58:19.0530 0x1164 [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
14:58:19.0561 0x1164 adpu320 - ok
14:58:19.0639 0x1164 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
14:58:19.0639 0x1164 AeLookupSvc - ok
14:58:19.0779 0x1164 [ F5272A105F59A7B3B345D9D6D87DA7AD, 9E84776994D04240BF2537330DBB555EDE16DFCFC59DEDCBA05A44ED7F70BEFA ] AFD C:\Windows\system32\drivers\afd.sys
14:58:19.0795 0x1164 AFD - ok
14:58:19.0904 0x1164 [ 39E435C90C9C4F780FA0ED05CA3C3A1B, 0006CC8CBFB775CA9C4121B4DDC80560DE35CCBB276DEE7A9F5148743529758A ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
14:58:19.0967 0x1164 AgereModemAudio - ok
14:58:20.0372 0x1164 [ CE91B158FA490CF4C4D487A4130F4660, C343AEB125B15E6FC8428499E1C48390EF5073FACB0DC9BAB9040EFB170D04A5 ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
14:58:20.0435 0x1164 AgereSoftModem - ok
14:58:20.0513 0x1164 [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440 C:\Windows\system32\drivers\agp440.sys
14:58:20.0513 0x1164 agp440 - ok
14:58:20.0575 0x1164 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
14:58:20.0622 0x1164 aic78xx - ok
14:58:20.0762 0x1164 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
14:58:20.0778 0x1164 ALG - ok
14:58:20.0809 0x1164 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide C:\Windows\system32\drivers\aliide.sys
14:58:20.0840 0x1164 aliide - ok
14:58:20.0871 0x1164 [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp C:\Windows\system32\drivers\amdagp.sys
14:58:20.0903 0x1164 amdagp - ok
14:58:20.0934 0x1164 [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide C:\Windows\system32\drivers\amdide.sys
14:58:20.0981 0x1164 amdide - ok
14:58:21.0511 0x1164 [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
14:58:21.0511 0x1164 AmdK7 - ok
14:58:21.0605 0x1164 [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
14:58:21.0651 0x1164 AmdK8 - ok
14:58:21.0854 0x1164 [ 8F7D200717A58E9800D391F4C2101577, F07CF0F5636F46D8F3D5133284943E991E8739E5A644BCA5F18BB896B374620D ] Appinfo C:\Windows\System32\appinfo.dll
14:58:21.0854 0x1164 Appinfo - ok
14:58:22.0057 0x1164 [ 6B73E94F9FE82D45781B8C8A09483082, C35EEAE7457168387A7C77A315524A3703ABDE49D9F23F59057315D9249D3473 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:58:22.0088 0x1164 Apple Mobile Device - ok
14:58:22.0275 0x1164 [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc C:\Windows\system32\drivers\arc.sys
14:58:22.0322 0x1164 arc - ok
14:58:22.0369 0x1164 [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas C:\Windows\system32\drivers\arcsas.sys
14:58:22.0416 0x1164 arcsas - ok
14:58:22.0556 0x1164 [ 537B2948976F5D9B5767B74A63EBB395, 1A14F8B582E74AD15B612EDA5B707AA3CB0B2A107ED14572B4232EAA7383B634 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
14:58:22.0603 0x1164 aspnet_state - ok
14:58:22.0634 0x1164 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
14:58:22.0650 0x1164 AsyncMac - ok
14:58:22.0775 0x1164 [ 0D83C87A801A3DFCD1BF73893FE7518C, 0EEB3DFFC73B370CEBB6C5115ADC769C38B2993F0EAC0EA19E273773390DA82F ] atapi C:\Windows\system32\drivers\atapi.sys
14:58:22.0775 0x1164 atapi - ok
14:58:22.0899 0x1164 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:58:22.0915 0x1164 AudioEndpointBuilder - ok
14:58:22.0931 0x1164 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] Audiosrv C:\Windows\System32\Audiosrv.dll
14:58:22.0946 0x1164 Audiosrv - ok
14:58:23.0071 0x1164 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
14:58:23.0071 0x1164 Beep - ok
14:58:23.0165 0x1164 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
14:58:23.0180 0x1164 BFE - ok
14:58:23.0305 0x1164 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll
14:58:23.0321 0x1164 BITS - ok
14:58:23.0367 0x1164 [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
14:58:23.0430 0x1164 blbdrive - ok
14:58:23.0539 0x1164 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:58:23.0555 0x1164 Bonjour Service - ok
14:58:23.0617 0x1164 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
14:58:23.0617 0x1164 bowser - ok
14:58:23.0648 0x1164 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
14:58:23.0695 0x1164 BrFiltLo - ok
14:58:23.0711 0x1164 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
14:58:23.0773 0x1164 BrFiltUp - ok
14:58:23.0820 0x1164 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
14:58:23.0820 0x1164 Browser - ok
14:58:23.0851 0x1164 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
14:58:23.0929 0x1164 Brserid - ok
14:58:23.0960 0x1164 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
14:58:24.0069 0x1164 BrSerWdm - ok
14:58:24.0116 0x1164 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
14:58:24.0194 0x1164 BrUsbMdm - ok
14:58:24.0257 0x1164 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
14:58:24.0319 0x1164 BrUsbSer - ok
14:58:24.0381 0x1164 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
14:58:24.0475 0x1164 BTHMODEM - ok
14:58:24.0537 0x1164 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
14:58:24.0537 0x1164 cdfs - ok
14:58:24.0600 0x1164 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
14:58:24.0600 0x1164 cdrom - ok
14:58:24.0709 0x1164 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
14:58:24.0709 0x1164 CertPropSvc - ok
14:58:24.0771 0x1164 [ A098C8C7AF46252CF9483BC948714003, 32A82C89FB216827B24D854BC8CD79D6327032311892B7EC0778E6943A81F99F ] cfwids C:\Windows\system32\drivers\cfwids.sys
14:58:24.0771 0x1164 cfwids - ok
14:58:24.0849 0x1164 [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\drivers\circlass.sys
14:58:24.0912 0x1164 circlass - ok
14:58:25.0052 0x1164 [ 5D9311526801643000D7032A83B18B12, C5A98868A41446617B3A27C6C4AAFA4E7C093E253E8C1DD5DBFE6FAE21991209 ] CLFS C:\Windows\system32\CLFS.sys
14:58:25.0099 0x1164 CLFS - ok
14:58:25.0239 0x1164 [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:58:25.0286 0x1164 clr_optimization_v2.0.50727_32 - ok
14:58:25.0349 0x1164 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:58:25.0349 0x1164 clr_optimization_v4.0.30319_32 - ok
14:58:25.0395 0x1164 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
14:58:25.0395 0x1164 CmBatt - ok
14:58:25.0427 0x1164 [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide C:\Windows\system32\drivers\cmdide.sys
14:58:25.0458 0x1164 cmdide - ok
14:58:25.0505 0x1164 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
14:58:25.0505 0x1164 Compbatt - ok
14:58:25.0520 0x1164 COMSysApp - ok
14:58:25.0645 0x1164 [ D10D01B2DFCD8D2F32A32ED29E8DA1C2, D5F89AFF51D690494A70F0E17CB5609DB81F7C9BACD2952D411C7959E90BEEE3 ] ConfigFree Service C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
14:58:25.0739 0x1164 ConfigFree Service - ok
14:58:25.0801 0x1164 [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
14:58:25.0848 0x1164 crcdisk - ok
14:58:25.0895 0x1164 [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe C:\Windows\system32\drivers\crusoe.sys
14:58:25.0895 0x1164 Crusoe - ok
14:58:25.0957 0x1164 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
14:58:25.0957 0x1164 CryptSvc - ok
14:58:26.0113 0x1164 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
14:58:26.0144 0x1164 DcomLaunch - ok
14:58:26.0160 0x1164 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
14:58:26.0175 0x1164 DfsC - ok
14:58:26.0643 0x1164 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
14:58:26.0846 0x1164 DFSR - ok
14:58:26.0940 0x1164 [ D720E872772D004E304FCE0CE54E1F8A, CEEC6D27A5DBE6522C2BC5467BA9A24D12F8119CA4EFBC42B0EB1A1939AEEC09 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
14:58:27.0111 0x1164 dg_ssudbus - ok
14:58:27.0486 0x1164 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
14:58:27.0501 0x1164 Dhcp - ok
14:58:27.0533 0x1164 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
14:58:27.0548 0x1164 disk - ok
14:58:27.0595 0x1164 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
14:58:27.0611 0x1164 Dnscache - ok
14:58:27.0735 0x1164 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
14:58:27.0735 0x1164 dot3svc - ok
14:58:27.0813 0x1164 [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
14:58:27.0860 0x1164 Dot4 - ok
14:58:27.0876 0x1164 [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
14:58:27.0954 0x1164 Dot4Print - ok
14:58:28.0047 0x1164 [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
14:58:28.0125 0x1164 dot4usb - ok
14:58:28.0188 0x1164 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
14:58:28.0188 0x1164 DPS - ok
14:58:28.0266 0x1164 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
14:58:28.0281 0x1164 drmkaud - ok
14:58:28.0391 0x1164 [ 5C2C209CDEFBC51D83D66E8A53B2BE89, 7AE68672A6BEEF601017BE28AA0BF3673318EFE97AA08E70F58A9391C54DF71F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
14:58:28.0406 0x1164 DXGKrnl - ok
14:58:28.0469 0x1164 [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
14:58:28.0531 0x1164 E1G60 - ok
14:58:28.0562 0x1164 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
14:58:28.0562 0x1164 EapHost - ok
14:58:28.0609 0x1164 [ 9BAB89DBB27891DEEF6E1F1B589A6ED4, 61BE4A6394ED5C99CB84B720F6AA6B97C7FE71A7A04D822F6EE99AB084C55606 ] Ecache C:\Windows\system32\drivers\ecache.sys
14:58:28.0640 0x1164 Ecache - ok
14:58:28.0812 0x1164 [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
14:58:28.0827 0x1164 ehRecvr - ok
14:58:28.0874 0x1164 [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe
14:58:28.0890 0x1164 ehSched - ok
14:58:28.0968 0x1164 [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll
14:58:28.0968 0x1164 ehstart - ok
14:58:29.0046 0x1164 [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor C:\Windows\system32\drivers\elxstor.sys
14:58:29.0093 0x1164 elxstor - ok
14:58:29.0217 0x1164 [ E798C0BDFA4913CCF8A646D29BB34796, 7CDB2BCCDD8A8A70C6248C327A357EA3488C7ADED32D4F89B933ED72AE12B73B ] EMDMgmt C:\Windows\system32\emdmgmt.dll
14:58:29.0233 0x1164 EMDMgmt - ok
14:58:29.0311 0x1164 [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev C:\Windows\system32\drivers\errdev.sys
14:58:29.0405 0x1164 ErrDev - ok
14:58:29.0561 0x1164 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
14:58:29.0576 0x1164 EventSystem - ok
14:58:29.0888 0x1164 [ 306AC856622864C761CBDB5E816BB9D8, 491221AD59143DC3FF96C71768E543043048CDFE0A7CC8EA306CFA4B1CC67502 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
14:58:30.0200 0x1164 EvtEng - ok
14:58:30.0341 0x1164 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
14:58:30.0372 0x1164 exfat - ok
14:58:30.0434 0x1164 [ 4E404505B3F62ECFBDBCBBCF0A72DBC5, 9F446ED06A31BFE52C4F1E8ACC400B8E3F47A3CC02FFC950DB861B2B3BA4C5B9 ] fastfat C:\Windows\system32\drivers\fastfat.sys
14:58:30.0434 0x1164 fastfat - ok
14:58:30.0512 0x1164 [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc C:\Windows\system32\DRIVERS\fdc.sys
14:58:30.0512 0x1164 fdc - ok
14:58:30.0590 0x1164 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
14:58:30.0606 0x1164 fdPHost - ok
14:58:30.0637 0x1164 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
14:58:30.0653 0x1164 FDResPub - ok
14:58:30.0684 0x1164 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
14:58:30.0731 0x1164 FileInfo - ok
14:58:30.0762 0x1164 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
14:58:30.0809 0x1164 Filetrace - ok
14:58:31.0245 0x1164 [ 8669BE94F63944E4F899C3950B520241, 9991E57B3C366D59BD186CEAA78D4590EDB2BC127250CF4D1522CBE413453E72 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
14:58:31.0604 0x1164 FLEXnet Licensing Service - ok
14:58:31.0682 0x1164 [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
14:58:31.0682 0x1164 flpydisk - ok
14:58:31.0807 0x1164 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
14:58:31.0807 0x1164 FltMgr - ok
14:58:31.0916 0x1164 [ 456E786A157692A7463B3739C9ADBBF5, 9AB00B5A7CF8CCCF4332E1901286D8832508471809D8BCE45FD75CCFF9CEAD8E ] FontCache C:\Windows\system32\FntCache.dll
14:58:31.0947 0x1164 FontCache - ok
14:58:32.0088 0x1164 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
14:58:32.0088 0x1164 FontCache3.0.0.0 - ok
14:58:32.0197 0x1164 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
14:58:32.0197 0x1164 Fs_Rec - ok
14:58:32.0259 0x1164 [ CBC22823628544735625B280665E434E, 6B5A3FE469CACE241F3332E6E6B3D0ACB3C2EB3DF0297C744F5A155992F0B411 ] FwLnk C:\Windows\system32\DRIVERS\FwLnk.sys
14:58:32.0259 0x1164 FwLnk - ok
14:58:32.0306 0x1164 [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
14:58:32.0337 0x1164 gagp30kx - ok
14:58:32.0462 0x1164 [ 9DCF7DFE5FDBB0A47F8EE01FE13C2876, 4C8433A09FFF4D54F3E8FADB66D43F90F49BA2A44400B5E8D71B11089FEF629A ] GameConsoleService C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
14:58:32.0509 0x1164 GameConsoleService - ok
14:58:32.0852 0x1164 [ F51B9E62A3B99AB8487499D2783D5A9F, 834C06B84141907F4620D631D87F7F688226C9C7B6189D1CE900055B6775B760 ] Garmin Device Interaction Service C:\Program Files\Garmin\Device Interaction Service\GarminService.exe
14:58:32.0946 0x1164 Garmin Device Interaction Service - ok
14:58:32.0992 0x1164 [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:58:32.0992 0x1164 GEARAspiWDM - ok
14:58:33.0070 0x1164 giveio - ok
14:58:33.0367 0x1164 [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F, 6D2B301E77839FFF1C74425B37D02C3F3837CE50E856C21AE4CF7ABABB04ADDC ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
14:58:33.0367 0x1164 GoogleDesktopManager-051210-111108 - ok
14:58:33.0538 0x1164 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
14:58:33.0632 0x1164 gpsvc - ok
14:58:33.0741 0x1164 [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
14:58:33.0741 0x1164 gupdate - ok
14:58:33.0757 0x1164 [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
14:58:33.0757 0x1164 gupdatem - ok
14:58:33.0850 0x1164 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
14:58:33.0897 0x1164 gusvc - ok
14:58:33.0960 0x1164 [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:58:34.0084 0x1164 HdAudAddService - ok
14:58:34.0178 0x1164 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
14:58:34.0194 0x1164 HDAudBus - ok
14:58:34.0240 0x1164 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
14:58:34.0350 0x1164 HidBth - ok
14:58:34.0396 0x1164 [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
14:58:34.0474 0x1164 HidIr - ok
14:58:34.0568 0x1164 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll
14:58:34.0568 0x1164 hidserv - ok
14:58:34.0630 0x1164 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
14:58:34.0646 0x1164 HidUsb - ok
14:58:34.0693 0x1164 [ 156765F692192EA9039A6C4A809312FD, 73400BC5E5C92A2E7834CB8EB33B3D78BF73C875C98B1AD91B0112FBB8DB19E3 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
14:58:34.0740 0x1164 HipShieldK - ok
14:58:34.0818 0x1164 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
14:58:34.0818 0x1164 hkmsvc - ok
14:58:35.0036 0x1164 [ 345083CE88205F4A0C8274CFE48844EC, 9D7DB4237E7A8C0D3EBC868E9C294D8E53D2D8983005AE03962B456DC31FE896 ] HomeNetSvc C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
14:58:35.0052 0x1164 HomeNetSvc - ok
14:58:35.0208 0x1164 [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
14:58:35.0239 0x1164 HpCISSs - ok
14:58:35.0551 0x1164 [ 5DA42D24712E00728CEA2342A65009B2, 73EC5250DCFD556525B24B3CA66C64AC7747E77652A2AD6119936A59A9E8562A ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
14:58:35.0598 0x1164 hpqcxs08 - ok
14:58:35.0613 0x1164 [ D86A39BF100069444D026D22D9A6E555, 7B24D48D5BA67704C88697FADB64364E0E64D26259408E3C219820C5404C5EEC ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
14:58:35.0644 0x1164 hpqddsvc - ok
14:58:35.0738 0x1164 [ A04F4AC48895774A2CF9D1C9EAAACEF0, 012F10DE086C3551D75716EF1F6DCC477C8C1E776267D9FC4073BEADAFD37C9C ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
14:58:35.0832 0x1164 HPSLPSVC - ok
14:58:36.0097 0x1164 [ A532D76E32CC9CC920E98C97591166E7, C18214FE05F80DAE986BE525B3D510AADBC32B8C4831B35A583B26EC8F2D942B ] hshld C:\Program Files\Hotspot Shield\bin\cmw_srv.exe
14:58:36.0284 0x1164 hshld - ok
14:58:36.0362 0x1164 [ 21E25622478BE3B4BECDF1213BA5CDC8, 452245E1B11218BC9C0ADC528FCE9B912BD16A8820F8DA46E17EBCE1B6E34A4B ] HssDRV6 C:\Windows\system32\DRIVERS\hssdrv6.sys
14:58:36.0362 0x1164 HssDRV6 - ok
14:58:36.0456 0x1164 [ 7A97848FE7C47F9390427EBDDD92F9F1, 2C053D1433585B3FA0ED839CDFC80CAB3A2D670F5B1F6E3D80BC31EB5CE0E948 ] HssTrayService C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE
14:58:36.0534 0x1164 HssTrayService - ok
14:58:36.0580 0x1164 [ 5CB01FD5AA4885BC4811433B54393AF2, 018AC4FDE8099731C3D9F77EE66B6EB902DC246D4E68DD20962CD2D7C48C2123 ] HssWd C:\Program Files\Hotspot Shield\bin\hsswd.exe
14:58:36.0736 0x1164 HssWd - ok
14:58:36.0908 0x1164 [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
14:58:36.0924 0x1164 HTTP - ok
14:58:36.0970 0x1164 [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
14:58:37.0002 0x1164 i2omp - ok
14:58:37.0048 0x1164 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
14:58:37.0048 0x1164 i8042prt - ok
14:58:37.0298 0x1164 [ CB686F44BF955EA02520710A56874FA4, D898E897171B07136FCB94726AB16738C923A170B166EB5D758E404C8A6EFD0F ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
14:58:37.0345 0x1164 IAANTMON - ok
14:58:37.0532 0x1164 [ DB0CC620B27A928D968C1A1E9CD9CB87, 62F2FAF027C217A3A035759AF47D848AEFFA7A94C54B4C424B67459D464B8AA8 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
14:58:37.0532 0x1164 iaStor - ok
14:58:37.0579 0x1164 [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
14:58:37.0610 0x1164 iaStorV - ok
14:58:37.0766 0x1164 [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
14:58:37.0875 0x1164 IDriverT - ok
14:58:38.0094 0x1164 [ DD386C45D2B5863740166783448A2E7A, 10B912BA70306644BE73A53AF4DCDFF63880C4C5860FF6DBA92B0914EB566718 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:58:38.0156 0x1164 idsvc - ok
14:58:38.0640 0x1164 [ 6FB1858D1F0923D122B0331865695041, 6DB129A3A7800CA64415B23C4E96453D89E4B06A6C3D51EBF6B6E13DCB64DDC5 ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
14:58:39.0076 0x1164 igfx - ok
14:58:39.0123 0x1164 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
14:58:39.0154 0x1164 iirsp - ok
14:58:39.0373 0x1164 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
14:58:39.0388 0x1164 IKEEXT - ok
14:58:39.0810 0x1164 [ B9CBD3DEA7CA02868621173BF7A2AF9F, FC3A84A8D3878B14F3070299B8B878C71A66CE400507FBA3FCF23FC732DFB90D ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
14:58:39.0997 0x1164 IntcAzAudAddService - ok
14:58:40.0044 0x1164 [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys
14:58:40.0044 0x1164 intelide - ok
14:58:40.0075 0x1164 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
14:58:40.0075 0x1164 intelppm - ok
14:58:40.0324 0x1164 [ 7BDB4E00E1CB174B56E5B2C31DDE68A7, C7FC4B2A3245DCD4E01B8DC9F7AA8D4FBDD5D1B4F5A00B8895B2EC5E9068D91A ] IntuitUpdateService C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
14:58:40.0356 0x1164 IntuitUpdateService - ok
14:58:40.0465 0x1164 [ D46E04D83A3E174A98DC90FE23AB08DE, 0285B4A311645D292A26B276511877B46A42526BDBFBC12E3BD876A74F074720 ] IntuitUpdateServiceV4 C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
14:58:40.0496 0x1164 IntuitUpdateServiceV4 - ok
14:58:40.0527 0x1164 IO_Memory - ok
14:58:40.0574 0x1164 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
14:58:40.0574 0x1164 IPBusEnum - ok
14:58:40.0590 0x1164 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:58:40.0590 0x1164 IpFilterDriver - ok
14:58:40.0730 0x1164 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
14:58:40.0746 0x1164 iphlpsvc - ok
14:58:40.0746 0x1164 IpInIp - ok
14:58:40.0824 0x1164 [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
14:58:40.0948 0x1164 IPMIDRV - ok
14:58:41.0073 0x1164 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
14:58:41.0073 0x1164 IPNAT - ok
14:58:41.0214 0x1164 [ 33813E4F82AEC696762EAD9EDADC9FE3, D0045D6782523B7B6FCFE4A6C864F081B522E409D9E5F031A7B8584910CEE3F5 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
14:58:41.0260 0x1164 iPod Service - ok
14:58:41.0307 0x1164 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
14:58:41.0307 0x1164 IRENUM - ok
14:58:41.0354 0x1164 [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp C:\Windows\system32\drivers\isapnp.sys
14:58:41.0354 0x1164 isapnp - ok
14:58:41.0416 0x1164 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
14:58:41.0416 0x1164 iScsiPrt - ok
14:58:41.0479 0x1164 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
14:58:41.0510 0x1164 iteatapi - ok
14:58:41.0541 0x1164 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
14:58:41.0572 0x1164 iteraid - ok
14:58:41.0604 0x1164 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
14:58:41.0604 0x1164 kbdclass - ok
14:58:41.0650 0x1164 [ 18247836959BA67E3511B62846B9C2E0, 9623FF990A1C11A707C358CC9FDD4306C2992A8C766A50DAFC9534A283AA011D ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
14:58:41.0697 0x1164 kbdhid - ok
14:58:41.0744 0x1164 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
14:58:41.0744 0x1164 KeyIso - ok
14:58:41.0791 0x1164 [ E8CA038F51F7761BD6E3A3B0B8014263, CC168838CB56776DC728869278A9F3CCEC215D5AFBE9ACD32D09D0971501EAAF ] KR10I C:\Windows\system32\drivers\kr10i.sys
14:58:41.0838 0x1164 KR10I - ok
14:58:41.0931 0x1164 [ 6A4ADB9186DD0E114E623DAF57E42B31, AECE2412890B1716F5E22ECC62EC09AF4DDD66A642D7B7DC892730D472B7FEAF ] KR10N C:\Windows\system32\drivers\kr10n.sys
14:58:41.0962 0x1164 KR10N - ok
14:58:42.0196 0x1164 [ E9648A2E6691B3BF0D17697640B8F7EB, 6832F086C3AD0BBB57A5D3B1B3DE8EAFB9F8E63906A70A77770B421670D61F8C ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
14:58:42.0212 0x1164 KSecDD - ok
14:58:42.0290 0x1164 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
14:58:42.0290 0x1164 KtmRm - ok
14:58:42.0352 0x1164 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll
14:58:42.0368 0x1164 LanmanServer - ok
14:58:42.0462 0x1164 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:58:42.0477 0x1164 LanmanWorkstation - ok
14:58:42.0493 0x1164 Lbd - ok
14:58:42.0524 0x1164 [ 24E0DDB99AECCF86BB37702611761459, 5827F83E84F0CC8C520F54AF71BB4382A98BFE379D68F6A593C2FFC28B3DB59B ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
14:58:42.0524 0x1164 LHidFilt - ok
14:58:42.0602 0x1164 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
14:58:42.0602 0x1164 lltdio - ok
14:58:42.0696 0x1164 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
14:58:42.0774 0x1164 lltdsvc - ok
14:58:42.0789 0x1164 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
14:58:42.0805 0x1164 lmhosts - ok
14:58:42.0930 0x1164 [ D58B330D318361A66A9FE60D7C9B4951, DCE08C7B3F2FE45204172564129292BB2BABED9226F368091DE2C2D315DA4D5C ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
14:58:42.0930 0x1164 LMouFilt - ok
14:58:43.0008 0x1164 [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
14:58:43.0054 0x1164 LSI_FC - ok
14:58:43.0086 0x1164 [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
14:58:43.0132 0x1164 LSI_SAS - ok
14:58:43.0164 0x1164 [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
14:58:43.0195 0x1164 LSI_SCSI - ok
14:58:43.0242 0x1164 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
14:58:43.0242 0x1164 luafv - ok
14:58:43.0335 0x1164 [ B4CD87E78A01562E3DA67FE1C2779204, 536AC01C53A18E7B43F02F345FC3088C189A2D01F5E060714C0534FE7ECA2356 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
14:58:43.0335 0x1164 MBAMProtector - ok
14:58:43.0616 0x1164 [ 83C982A395D00BAFF6515FB38424EA76, 0E1B66F84A483D47550347D4A9426B95A066DB5104C4284F606A16768A11DB0C ] MBAMService C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
14:58:43.0772 0x1164 MBAMService - ok
14:58:43.0881 0x1164 [ 739164A8B8FB2F1B50A498F20AF7B21E, 8E7A387C3726A863BF251E638D072FA472B698EF6868E9A7A00EF1272F809C64 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
14:58:43.0912 0x1164 MBAMSwissArmy - ok
14:58:43.0959 0x1164 [ EAFEB8DF3B5B2AD7848B4C367FDD6E05, 7444D9DB01D28100831CDE3208829784225A92C4CDF9ED594EA3DD8F5FEAEA98 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
14:58:43.0990 0x1164 MBAMWebAccessControl - ok
14:58:44.0240 0x1164 [ 5DCC0DEACCF2C03FD09BE0CA3FAD003D, E4094249D2468047241E995DCE212D224D6E802DCC04FDD87BE55AB91EE79F4E ] McAfee SiteAdvisor Service c:\PROGRA~1\mcafee\SITEAD~1\McSACore.exe
14:58:44.0271 0x1164 McAfee SiteAdvisor Service - ok
14:58:44.0474 0x1164 [ 742F3C370BD071D36E39F6AF5344D924, A6DEFFD46BFCB6979A5240FF10DB6D5A6AE1EC31071496C53F14EEDF69620F62 ] McAPExe C:\Program Files\McAfee\MSC\McAPExe.exe
14:58:44.0521 0x1164 McAPExe - ok
14:58:44.0614 0x1164 [ 8FD868E32459ECE2A1BB0169F513D31E, F28E47FBEC8EC8424FFFB359668E0FEEA66A69E9D737D75472934FAC39770390 ] mcdbus C:\Windows\system32\DRIVERS\mcdbus.sys
14:58:44.0614 0x1164 mcdbus - ok
14:58:44.0739 0x1164 [ 345083CE88205F4A0C8274CFE48844EC, 9D7DB4237E7A8C0D3EBC868E9C294D8E53D2D8983005AE03962B456DC31FE896 ] McMPFSvc C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
14:58:44.0739 0x1164 McMPFSvc - ok
14:58:44.0755 0x1164 [ 345083CE88205F4A0C8274CFE48844EC, 9D7DB4237E7A8C0D3EBC868E9C294D8E53D2D8983005AE03962B456DC31FE896 ] McNaiAnn C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
14:58:44.0770 0x1164 McNaiAnn - ok
14:58:44.0864 0x1164 [ D711E381BAFC1FC6DDDB43A79D66F725, F4F41FE9E76501FC5F97D74F3A1395B04E5E36A4DEC9E65DA0A43D8114D49B61 ] McODS C:\Program Files\McAfee\VirusScan\mcods.exe
14:58:44.0895 0x1164 McODS - ok
14:58:44.0911 0x1164 [ 345083CE88205F4A0C8274CFE48844EC, 9D7DB4237E7A8C0D3EBC868E9C294D8E53D2D8983005AE03962B456DC31FE896 ] mcpltsvc C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
14:58:44.0911 0x1164 mcpltsvc - ok
14:58:44.0926 0x1164 [ 345083CE88205F4A0C8274CFE48844EC, 9D7DB4237E7A8C0D3EBC868E9C294D8E53D2D8983005AE03962B456DC31FE896 ] McProxy C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
14:58:44.0926 0x1164 McProxy - ok
14:58:44.0989 0x1164 [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
14:58:45.0051 0x1164 Mcx2Svc - ok
14:58:45.0114 0x1164 [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas C:\Windows\system32\drivers\megasas.sys
14:58:45.0145 0x1164 megasas - ok
14:58:45.0270 0x1164 [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR C:\Windows\system32\drivers\megasr.sys
14:58:45.0316 0x1164 MegaSR - ok
14:58:45.0582 0x1164 [ 9A31B266E9451010FC87BE6CD364091C, BADB931FC5D46B42DF1016AB9690D58492DD4AC5E7173993370ED3BB7F070AF2 ] mfeaack C:\Windows\system32\drivers\mfeaack.sys
14:58:45.0597 0x1164 mfeaack - ok
14:58:45.0628 0x1164 [ 7661F1B93459F5CFDF9F0D492D7D9472, 4EDE6A05686509A0F261D70FC14D97A93619A3B07BF59AA9C432D8418E470AB4 ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
14:58:45.0644 0x1164 mfeavfk - ok
14:58:45.0706 0x1164 [ 09B009980C1F57D26016B75FF3B4CD21, 50F5E47147CC887AEB35C8381C557F0A26FC1E7F15E1C0F7FA1CE0DE1C948344 ] mfedisk C:\Windows\system32\DRIVERS\mfedisk.sys
14:58:45.0738 0x1164 mfedisk - ok
14:58:45.0831 0x1164 [ D6321544EF3246CF75B1E17147E4E4AD, F8A42F738DC408700A330186DF9CD4490607CE7750671E9F960442669AFD7753 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
14:58:45.0847 0x1164 mfefire - ok
14:58:46.0096 0x1164 [ 648E2F36DD6017355FE19DFBE4BF6789, 30782E9AFADC0967E3654B2530474EE73CCAA094340F32FE767213804CDCC893 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
14:58:46.0112 0x1164 mfefirek - ok
14:58:46.0174 0x1164 [ 19D2D9C507D0E7A577807303FE96501B, 0CFBAA935D50AA9939D23597D26A7D8FBAFA85A9267B7DB57E79CDDD8202509A ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
14:58:46.0252 0x1164 mfehidk - ok
14:58:46.0330 0x1164 [ 62BF92FCC2388FAB3B726E81E3AE7C4E, 8111CF2917155AAE50EBAAB035B810E088D10BEFDAB8FA113F048D7A69B9F675 ] mfemms C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe
14:58:46.0346 0x1164 mfemms - ok
14:58:46.0377 0x1164 [ BA480F8DC0688D721C2CA4560D66F6C8, E5E3A695F6862432F95D1186E4DF2C4E2E27609C8E3FB24E2D1DD3B369943163 ] mfencbdc C:\Windows\system32\DRIVERS\mfencbdc.sys
14:58:46.0393 0x1164 mfencbdc - ok
14:58:46.0455 0x1164 [ BC287C387188F158858D4BCAB7049EA1, CBF5CD17772B9772BB8A4D8305FF01BC626A181D00F58F37F8FF2DECCAF953EF ] mfencrk C:\Windows\system32\DRIVERS\mfencrk.sys
14:58:46.0502 0x1164 mfencrk - ok
14:58:46.0596 0x1164 [ 0A277C42CBF52C2AF2BAA10B89F2A9AD, 50489A7E43A1B6660074BEDDC8FC60A236658C99895571C7EB6516C873BE2155 ] mfevtp C:\Windows\system32\mfevtps.exe
14:58:46.0596 0x1164 mfevtp - ok
14:58:46.0658 0x1164 [ 271A5E078E1DC86FA911F55F655B3B01, 9C63E961079A5624BFDD8936AA8E2710830F5FB8177AF59035CD5CBBFE90F0E9 ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
14:58:46.0705 0x1164 mfewfpk - ok
14:58:46.0798 0x1164 Microsoft SharePoint Workspace Audit Service - ok
14:58:46.0830 0x1164 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
14:58:46.0830 0x1164 MMCSS - ok
14:58:46.0845 0x1164 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
14:58:46.0845 0x1164 Modem - ok
14:58:46.0892 0x1164 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
14:58:46.0892 0x1164 monitor - ok
14:58:46.0892 0x1164 motmodem - ok
14:58:46.0923 0x1164 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
14:58:46.0923 0x1164 mouclass - ok
14:58:46.0970 0x1164 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
14:58:46.0986 0x1164 mouhid - ok
14:58:47.0048 0x1164 [ 3EAE06B0D9E32A3D45DC3E07F1FBFA97, 0C56D92C5131D60AF2FCCF071976F2932A2C544C5EC4C2A5476E99CDE17FF08C ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
14:58:47.0048 0x1164 MountMgr - ok
14:58:47.0126 0x1164 [ 906DD5FE29BC912A87F66C9ACD87C720, 599CEE2D3AF0E52607C6984CE7F745C52BBBE6AE407E817AC25AD4D742098035 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
14:58:47.0173 0x1164 MozillaMaintenance - ok
14:58:47.0235 0x1164 [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio C:\Windows\system32\drivers\mpio.sys
14:58:47.0282 0x1164 mpio - ok
14:58:47.0313 0x1164 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
14:58:47.0313 0x1164 mpsdrv - ok
14:58:47.0438 0x1164 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
14:58:47.0454 0x1164 MpsSvc - ok
14:58:47.0500 0x1164 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
14:58:47.0532 0x1164 Mraid35x - ok
14:58:47.0563 0x1164 [ B0584CA7DEF55929FDB5169BD28B2484, AF6A7E404FEB29F7F3428D0AF6682195E5E8ED106996A04E6947DBD575696546 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
14:58:47.0578 0x1164 MRxDAV - ok
14:58:47.0641 0x1164 [ 1B864548B2ACEC1C0BB29B615CC42978, E1DA3E6764A2C7072D99F2F093E5F40DB6DC809701B59C155C6B4EE327AB9E41 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
14:58:47.0672 0x1164 mrxsmb - ok
14:58:47.0703 0x1164 [ 3F39B02EEDC5B8A0ED896EA1CDF7245F, 41C1DCD82F964A398B7C3D44178DBF7C8AF1C2DBC5F2D944BE6B00E909FE083B ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:58:47.0703 0x1164 mrxsmb10 - ok
14:58:47.0734 0x1164 [ D0670EC8E5AD3FA5BE372BF70AC0EABF, BD2D1BA151FD5409EAA41ECCBEB863FE52FF7C2D92349961FEE736D66970748E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:58:47.0734 0x1164 mrxsmb20 - ok
14:58:47.0766 0x1164 [ F70590424EEFBF5C27A40C67AFDB8383, 1F2AC1DA12F7E6F09D8F6622EF1366ABD4B86EBE51DD1915E803D56A568A3412 ] msahci C:\Windows\system32\drivers\msahci.sys
14:58:47.0797 0x1164 msahci - ok
14:58:47.0844 0x1164 [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm C:\Windows\system32\drivers\msdsm.sys
14:58:47.0875 0x1164 msdsm - ok
14:58:47.0922 0x1164 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
14:58:47.0968 0x1164 MSDTC - ok
14:58:48.0015 0x1164 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
14:58:48.0015 0x1164 Msfs - ok
14:58:48.0062 0x1164 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
14:58:48.0093 0x1164 msisadrv - ok
14:58:48.0156 0x1164 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
14:58:48.0202 0x1164 MSiSCSI - ok
14:58:48.0202 0x1164 msiserver - ok
14:58:48.0327 0x1164 [ 345083CE88205F4A0C8274CFE48844EC, 9D7DB4237E7A8C0D3EBC868E9C294D8E53D2D8983005AE03962B456DC31FE896 ] MSK80Service C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
14:58:48.0327 0x1164 MSK80Service - ok
14:58:48.0436 0x1164 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
14:58:48.0436 0x1164 MSKSSRV - ok
14:58:48.0452 0x1164 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
14:58:48.0452 0x1164 MSPCLOCK - ok
14:58:48.0499 0x1164 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
14:58:48.0499 0x1164 MSPQM - ok
14:58:48.0561 0x1164 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
14:58:48.0608 0x1164 MsRPC - ok
14:58:48.0639 0x1164 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
14:58:48.0639 0x1164 mssmbios - ok
14:58:48.0686 0x1164 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
14:58:48.0733 0x1164 MSTEE - ok
14:58:48.0842 0x1164 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
14:58:48.0842 0x1164 Mup - ok
14:58:48.0998 0x1164 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
14:58:49.0014 0x1164 napagent - ok
14:58:49.0060 0x1164 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
14:58:49.0060 0x1164 NativeWifiP - ok
14:58:49.0232 0x1164 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
14:58:49.0248 0x1164 NDIS - ok
14:58:49.0279 0x1164 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
14:58:49.0279 0x1164 NdisTapi - ok
14:58:49.0326 0x1164 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
14:58:49.0326 0x1164 Ndisuio - ok
14:58:49.0372 0x1164 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
14:58:49.0372 0x1164 NdisWan - ok
14:58:49.0404 0x1164 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
14:58:49.0404 0x1164 NDProxy - ok
14:58:49.0466 0x1164 [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
14:58:49.0513 0x1164 Net Driver HPZ12 - ok
14:58:49.0544 0x1164 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
14:58:49.0544 0x1164 NetBIOS - ok
14:58:49.0606 0x1164 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
14:58:49.0622 0x1164 netbt - ok
14:58:49.0669 0x1164 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
14:58:49.0669 0x1164 Netlogon - ok
14:58:49.0794 0x1164 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
14:58:49.0809 0x1164 Netman - ok
14:58:49.0996 0x1164 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:58:50.0028 0x1164 NetMsmqActivator - ok
14:58:50.0043 0x1164 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:58:50.0043 0x1164 NetPipeActivator - ok
14:58:50.0106 0x1164 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
14:58:50.0106 0x1164 netprofm - ok
14:58:50.0121 0x1164 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:58:50.0121 0x1164 NetTcpActivator - ok
14:58:50.0152 0x1164 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
14:58:50.0168 0x1164 NetTcpPortSharing - ok
14:58:50.0480 0x1164 [ E559EA9138C77B5D1FDA8C558764A25F, F89DA7D8289B65DCD9ADCAC576C36AD62BE694F85E289A3CE59035688A3ECDF3 ] NETw5v32 C:\Windows\system32\DRIVERS\NETw5v32.sys
14:58:50.0589 0x1164 NETw5v32 - ok
14:58:50.0683 0x1164 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
14:58:50.0714 0x1164 nfrd960 - ok
14:58:50.0808 0x1164 [ C96411DD46AABC0D6F3CF06D0E0E7E14, 0D36F322AF1B923D96735BFFCAC3FDB0B282E59220BADAB8B49AC178A6765380 ] NlaSvc C:\Windows\System32\nlasvc.dll
14:58:50.0808 0x1164 NlaSvc - ok
14:58:50.0854 0x1164 [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
14:58:50.0870 0x1164 Npfs - ok
14:58:50.0901 0x1164 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
14:58:50.0901 0x1164 nsi - ok
14:58:50.0948 0x1164 [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
14:58:50.0964 0x1164 nsiproxy - ok
14:58:51.0088 0x1164 [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
14:58:51.0104 0x1164 Ntfs - ok
14:58:51.0135 0x1164 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
14:58:51.0229 0x1164 ntrigdigi - ok
14:58:51.0260 0x1164 [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
14:58:51.0260 0x1164 Null - ok
14:58:51.0322 0x1164 [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid C:\Windows\system32\drivers\nvraid.sys
14:58:51.0369 0x1164 nvraid - ok
14:58:51.0400 0x1164 [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor C:\Windows\system32\drivers\nvstor.sys
14:58:51.0432 0x1164 nvstor - ok
14:58:51.0463 0x1164 [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
14:58:51.0510 0x1164 nv_agp - ok
14:58:51.0525 0x1164 NwlnkFlt - ok
14:58:51.0525 0x1164 NwlnkFwd - ok
14:58:51.0588 0x1164 [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
14:58:51.0666 0x1164 ohci1394 - ok
14:58:51.0759 0x1164 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:58:51.0806 0x1164 ose - ok
14:58:52.0290 0x1164 [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:58:53.0116 0x1164 osppsvc - ok
14:58:53.0272 0x1164 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
14:58:53.0304 0x1164 p2pimsvc - ok
14:58:53.0319 0x1164 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
14:58:53.0350 0x1164 p2psvc - ok
14:58:53.0413 0x1164 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
14:58:53.0413 0x1164 Parport - ok
14:58:53.0460 0x1164 [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
14:58:53.0460 0x1164 partmgr - ok
14:58:53.0522 0x1164 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
14:58:53.0522 0x1164 Parvdm - ok
14:58:53.0569 0x1164 [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
14:58:53.0584 0x1164 PcaSvc - ok
14:58:53.0616 0x1164 [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
14:58:53.0616 0x1164 pci - ok
14:58:53.0772 0x1164 [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide C:\Windows\system32\DRIVERS\pciide.sys
14:58:53.0803 0x1164 pciide - ok
14:58:53.0881 0x1164 [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
14:58:53.0896 0x1164 pcmcia - ok
14:58:53.0974 0x1164 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
14:58:54.0006 0x1164 PEAUTH - ok
14:58:54.0177 0x1164 [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
14:58:54.0240 0x1164 pla - ok
14:58:54.0333 0x1164 [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
14:58:54.0333 0x1164 PlugPlay - ok
14:58:54.0427 0x1164 [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
14:58:54.0489 0x1164 Pml Driver HPZ12 - ok
14:58:54.0598 0x1164 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
14:58:54.0614 0x1164 PNRPAutoReg - ok
14:58:54.0645 0x1164 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
14:58:54.0661 0x1164 PNRPsvc - ok
14:58:54.0708 0x1164 [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
14:58:54.0723 0x1164 PolicyAgent - ok
14:58:54.0786 0x1164 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
14:58:54.0801 0x1164 PptpMiniport - ok
14:58:54.0817 0x1164 [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\drivers\processr.sys
14:58:54.0817 0x1164 Processor - ok
14:58:54.0848 0x1164 [ 0D5DAD610D7EA1627581ED06FB2BAA9A, 6E27CF3A1624AE10EECB8B5F38E03D76A6AABE4E75DD66DEDD67E0773935A396 ] ProfSvc C:\Windows\system32\profsvc.dll
14:58:54.0864 0x1164 ProfSvc - ok
14:58:54.0895 0x1164 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
14:58:54.0895 0x1164 ProtectedStorage - ok
14:58:55.0004 0x1164 [ 64E413BA0C529AA40C3924BBCC4153DB, 9E0EB02078EE250AC618D4A4537D54BACDD7E2B67349162CA61F35EAF91601EE ] ProtexisLicensing C:\Windows\system32\PSIService.exe
14:58:55.0176 0x1164 ProtexisLicensing - ok
14:58:55.0316 0x1164 [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
14:58:55.0316 0x1164 PSched - ok
14:58:55.0519 0x1164 [ 40FEDD328F98245AD201CF5F9F311724, CE1582652B6A7CACE46D8B492CAA8E51EA46C3890EF640E8C5E1E053731A4D74 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
14:58:55.0550 0x1164 PxHelp20 - ok
14:58:55.0675 0x1164 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300 C:\Windows\system32\drivers\ql2300.sys
14:58:55.0753 0x1164 ql2300 - ok
14:58:55.0831 0x1164 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
14:58:55.0862 0x1164 ql40xx - ok
14:58:55.0940 0x1164 [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
14:58:55.0956 0x1164 QWAVE - ok
14:58:55.0987 0x1164 [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
14:58:55.0987 0x1164 QWAVEdrv - ok
14:58:56.0034 0x1164 [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
14:58:56.0205 0x1164 RasAcd - ok
14:58:56.0236 0x1164 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
14:58:56.0252 0x1164 RasAuto - ok
14:58:56.0268 0x1164 [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
14:58:56.0283 0x1164 Rasl2tp - ok
14:58:56.0361 0x1164 [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
14:58:56.0361 0x1164 RasMan - ok
14:58:56.0439 0x1164 [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
14:58:56.0439 0x1164 RasPppoe - ok
14:58:56.0470 0x1164 [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
14:58:56.0470 0x1164 RasSstp - ok
14:58:56.0533 0x1164 [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
14:58:56.0533 0x1164 rdbss - ok
14:58:56.0580 0x1164 [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
14:58:56.0580 0x1164 RDPCDD - ok
14:58:56.0611 0x1164 [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
14:58:56.0626 0x1164 rdpdr - ok
14:58:56.0642 0x1164 [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
14:58:56.0642 0x1164 RDPENCDD - ok
14:58:56.0782 0x1164 [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
14:58:56.0782 0x1164 RDPWD - ok
14:58:57.0001 0x1164 [ B33C88DF3588ACF250B87A004526C31A, 7D9FAE5C36CA9414F7E49C96C7799A3A1464D421AB2F023E7E9CF1371AD13E5B ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
14:58:57.0297 0x1164 RegSrvc - ok
14:58:57.0328 0x1164 [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
14:58:57.0328 0x1164 RemoteAccess - ok
14:58:57.0422 0x1164 [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
14:58:57.0422 0x1164 RemoteRegistry - ok
14:58:57.0625 0x1164 [ CC465ECBC1700B2D91E152ED9165994A, F8854BAA9B63F34C7CE06E2081DF5597D1917E56D7210DF10041F4D1C546C1EE ] RosettaStoneDaemon C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe
14:58:57.0952 0x1164 RosettaStoneDaemon - ok
14:58:58.0062 0x1164 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
14:58:58.0062 0x1164 RpcLocator - ok
14:58:58.0140 0x1164 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
14:58:58.0155 0x1164 RpcSs - ok
14:58:58.0202 0x1164 [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
14:58:58.0218 0x1164 rspndr - ok
14:58:58.0296 0x1164 [ 2D19A7469EA19993D0C12E627F4530BC, B59F0D4ACAA60ED95093FA561D4C5D87F26C9F6C646858772743038D97B2D6AB ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh86.sys
14:58:58.0296 0x1164 RTL8169 - ok
14:58:58.0342 0x1164 [ 9FF7D9CF3A5F296613588B0E8DB83AFE, 69DF889D09539CF342957A91751DAF733EE929AE5DD573E1BC0019660CA5CB83 ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS
14:58:58.0342 0x1164 RTSTOR - ok
14:58:58.0389 0x1164 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
14:58:58.0389 0x1164 SamSs - ok
14:58:58.0452 0x1164 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
14:58:58.0498 0x1164 sbp2port - ok
14:58:58.0592 0x1164 [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
14:58:58.0608 0x1164 SCardSvr - ok
14:58:58.0670 0x1164 [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll
14:58:58.0686 0x1164 Schedule - ok
14:58:58.0732 0x1164 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
14:58:58.0732 0x1164 SCPolicySvc - ok
14:58:58.0873 0x1164 [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
14:58:58.0873 0x1164 SDRSVC - ok
14:58:59.0216 0x1164 [ 98EF79CC2B07398AC525F9EA1AE0366F, D0D5D69696ED339F363024AF3271867F4C55572C67FD0F2AA27D24B37982E39A ] SDScannerService C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
14:58:59.0450 0x1164 SDScannerService - ok
14:58:59.0590 0x1164 [ 14BF6B3AB327D519ED007CDDC56F6900, 4E5DC4AF45347C885E0E87F205EE1F95BB4713A0B581CD7317FBEEE2A9628982 ] SDUpdateService C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
14:58:59.0637 0x1164 SDUpdateService - ok
14:58:59.0700 0x1164 [ 820EBE67AB99F033FDE25B2692157991, A9E86FE6EFD3CFD4EA1A26121C706335A6791CC6F81EE98AE2BE7EA566ECFEBB ] SDWSCService C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
14:58:59.0746 0x1164 SDWSCService - ok
14:58:59.0809 0x1164 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
14:58:59.0809 0x1164 secdrv - ok
14:58:59.0871 0x1164 [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
14:58:59.0871 0x1164 seclogon - ok
14:58:59.0887 0x1164 [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll
14:58:59.0902 0x1164 SENS - ok
14:58:59.0918 0x1164 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
14:58:59.0934 0x1164 Serenum - ok
14:58:59.0980 0x1164 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
14:58:59.0980 0x1164 Serial - ok
14:59:00.0043 0x1164 [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
14:59:00.0168 0x1164 sermouse - ok
14:59:00.0214 0x1164 [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
14:59:00.0230 0x1164 SessionEnv - ok
14:59:00.0261 0x1164 [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
14:59:00.0261 0x1164 sffdisk - ok
14:59:00.0339 0x1164 [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
14:59:00.0402 0x1164 sffp_mmc - ok
14:59:00.0433 0x1164 [ 3D0EA348784B7AC9EA9BD9F317980979, 2500CE188C9B71C50E966FA575303AEFE50934E376C530AECEC7C7533C15EF08 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
14:59:00.0433 0x1164 sffp_sd - ok
14:59:00.0464 0x1164 [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
14:59:00.0464 0x1164 sfloppy - ok
14:59:00.0542 0x1164 [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
14:59:00.0542 0x1164 SharedAccess - ok
14:59:00.0620 0x1164 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:59:00.0636 0x1164 ShellHWDetection - ok
14:59:00.0682 0x1164 [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp C:\Windows\system32\drivers\sisagp.sys
14:59:00.0776 0x1164 sisagp - ok
14:59:00.0823 0x1164 [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
14:59:00.0854 0x1164 SiSRaid2 - ok
14:59:00.0885 0x1164 [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
14:59:00.0916 0x1164 SiSRaid4 - ok
14:59:01.0010 0x1164 [ 704B4F81729F676BBF034529FC334D82, 1E50DAF97836807A500284385D99272780A8B69CA88761250451060B207824F8 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
14:59:01.0026 0x1164 SkypeUpdate - ok
14:59:01.0228 0x1164 [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
14:59:01.0306 0x1164 slsvc - ok
14:59:01.0369 0x1164 [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
14:59:01.0369 0x1164 SLUINotify - ok
14:59:01.0525 0x1164 [ 3566310DF25EA5C3B2E9F50F5B50EAC1, FB27E0AF4DFB2AA373C94370A1241C2D9D2CE93A52E69D8D259A023FC907ED39 ] SmartFaceVWatchSrv C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe
14:59:01.0665 0x1164 SmartFaceVWatchSrv - ok
14:59:01.0743 0x1164 [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
14:59:01.0743 0x1164 Smb - ok
14:59:01.0821 0x1164 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47
wfr37
Regular Member
 
Posts: 20
Joined: July 26th, 2015, 8:31 pm

Re: windows vista unresponsive after 10 minutes

Unread postby wfr37 » August 24th, 2015, 2:55 pm

TOO MANY CHARACTERS IN THE TXT REPORT HAD TO SPLIT. BELOW IS THE REMAINDER.

] SNMPTRAP C:\Windows\System32\snmptrap.exe
14:59:01.0821 0x1164 SNMPTRAP - ok
14:59:01.0868 0x1164 [ DC8D2952FB6FFBAEC67BD1B93A34DF11, 0BD1523A68900B80ED1BCCB967643525CCA55D4FF4622D0128913690E6BB619E ] speedfan C:\Windows\system32\speedfan.sys
14:59:01.0962 0x1164 speedfan - ok
14:59:02.0071 0x1164 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
14:59:02.0102 0x1164 spldr - ok
14:59:02.0149 0x1164 [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
14:59:02.0149 0x1164 Spooler - ok
14:59:02.0258 0x1164 [ 04FA8FDECF4C0DE1A98B67C98868964C, 3BD71DC9EE41DBA7067DC8E6FA208C277ABB24172272F11026E58EA0A5F632BF ] srv C:\Windows\system32\DRIVERS\srv.sys
14:59:02.0273 0x1164 srv - ok
14:59:02.0351 0x1164 [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
14:59:02.0351 0x1164 srv2 - ok
14:59:02.0367 0x1164 [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
14:59:02.0383 0x1164 srvnet - ok
14:59:02.0414 0x1164 [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
14:59:02.0414 0x1164 SSDPSRV - ok
14:59:02.0476 0x1164 [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
14:59:02.0492 0x1164 SstpSvc - ok
14:59:02.0539 0x1164 [ A1CC726323FB41FFD29F436A77237E41, 8D76C546EA0185F17F5058B4040DC94E0737C5C005320970E6F7F888429D94B5 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
14:59:02.0804 0x1164 ssudmdm - ok
14:59:02.0897 0x1164 [ EF70B3D22B4BFFDA6EA851ECB063EFAA, 1666572F8F988805C3A2E949FA6B060B35B72DBB115B86F4CFC710FB6A86C3E3 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
14:59:02.0929 0x1164 StillCam - ok
14:59:03.0007 0x1164 [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
14:59:03.0022 0x1164 stisvc - ok
14:59:03.0053 0x1164 [ 3E4239B92139F7174A0DA7D53FE5E1AB, B4459E839AD4735FDF013389EBBABCFA17ADE0A69CF5F530DFC1BE80CE7853BB ] SVRPEDRV C:\Windows\System32\sysprep\PEDrv.sys
14:59:03.0163 0x1164 SVRPEDRV - ok
14:59:03.0209 0x1164 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
14:59:03.0209 0x1164 swenum - ok
14:59:03.0381 0x1164 [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:59:03.0599 0x1164 SwitchBoard - ok
14:59:03.0677 0x1164 [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
14:59:03.0693 0x1164 swprv - ok
14:59:03.0740 0x1164 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
14:59:03.0771 0x1164 Symc8xx - ok
14:59:03.0802 0x1164 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
14:59:03.0833 0x1164 Sym_hi - ok
14:59:03.0927 0x1164 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
14:59:03.0958 0x1164 Sym_u3 - ok
14:59:04.0145 0x1164 [ 70534D1E4F9AC990536D5FB5B550B3DE, BD7F52FAD8FDF7F5FE37B6E6101D1386816F371894DD46D799FF4107F98134A1 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
14:59:04.0145 0x1164 SynTP - ok
14:59:04.0348 0x1164 [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
14:59:04.0364 0x1164 SysMain - ok
14:59:04.0457 0x1164 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:59:04.0457 0x1164 TabletInputService - ok
14:59:04.0504 0x1164 [ 5E5CAB2BE8F078DCD0D3BFE6AE87AA2E, 9FA1F711BB7CA3E24F20C54953450BE2F31DCB49A475D97534CF41F358066450 ] taphss6 C:\Windows\system32\DRIVERS\taphss6.sys
14:59:04.0504 0x1164 taphss6 - ok
14:59:04.0582 0x1164 [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
14:59:04.0582 0x1164 TapiSrv - ok
14:59:04.0613 0x1164 [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
14:59:04.0629 0x1164 TBS - ok
14:59:04.0707 0x1164 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
14:59:04.0738 0x1164 Tcpip - ok
14:59:04.0801 0x1164 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
14:59:04.0832 0x1164 Tcpip6 - ok
14:59:04.0894 0x1164 [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
14:59:04.0894 0x1164 tcpipreg - ok
14:59:04.0925 0x1164 [ 6FDFBA25002CE4BAC463AC866AE71405, E2952EA6E10543910931612D8AC18D340589C2AC88CF059F65866189CA03602A ] tdcmdpst C:\Windows\system32\DRIVERS\tdcmdpst.sys
14:59:04.0925 0x1164 tdcmdpst - ok
14:59:04.0972 0x1164 [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
14:59:04.0972 0x1164 TDPIPE - ok
14:59:05.0003 0x1164 [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
14:59:05.0003 0x1164 TDTCP - ok
14:59:05.0050 0x1164 [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
14:59:05.0050 0x1164 tdx - ok
14:59:05.0081 0x1164 [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
14:59:05.0081 0x1164 TermDD - ok
14:59:05.0175 0x1164 [ DBD84E59D631569EC3E756EF144E8431, 9E58629EC762584A2D294A619593620626F7CBE467045AD0F920B6CF1D4B4724 ] TermService C:\Windows\System32\termsrv.dll
14:59:05.0191 0x1164 TermService - ok
14:59:05.0409 0x1164 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
14:59:05.0409 0x1164 Themes - ok
14:59:05.0456 0x1164 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
14:59:05.0456 0x1164 THREADORDER - ok
14:59:05.0503 0x1164 [ E09CAAFB2B323A6FF120CEFB96DA0A44, E7CDC3ACA868B3F110004E0C717DA2F0EA776C29B123E68C41A381168A335640 ] TMachInfo C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
14:59:05.0549 0x1164 TMachInfo - ok
14:59:05.0705 0x1164 [ 89F74C86523F5E334628DBCE66E6D165, 81BEA43618E7EBFF0F8C417CCCBC8E39D20948F99653AC859229F8E0CB50DB54 ] TNaviSrv C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
14:59:05.0752 0x1164 TNaviSrv - ok
14:59:05.0861 0x1164 [ C5AC715B65B01788ABC22D10749DDDD8, 3237B8CBEA645F550CE588511BC7085358B3D1358D46AF5EED65F3BAC5174195 ] TODDSrv C:\Windows\system32\TODDSrv.exe
14:59:05.0924 0x1164 TODDSrv - ok
14:59:06.0095 0x1164 [ 44DBAC611B11646683B5B066A049B8E4, A15CF58CAAA9C7184DBF183851DABE744A8CA9DC848299244F18BC98C360D006 ] TosCoSrv C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
14:59:06.0158 0x1164 TosCoSrv - ok
14:59:06.0314 0x1164 [ 22690DFFC7F2A18279A7A0489AA02BAC, 703B10A17AF6871439143AF9E419D780779BD4ED54D32FA7751A5630C4CCFC0C ] TOSHIBA SMART Log Service C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
14:59:06.0454 0x1164 TOSHIBA SMART Log Service - ok
14:59:06.0563 0x1164 [ 4399A9BF7D8F49991A07FD86590A1619, D591D12EC3792B0B649944722BBBEBBB8B0D3346FCC8FC4B4B34799266AD2910 ] tos_sps32 C:\Windows\system32\DRIVERS\tos_sps32.sys
14:59:06.0610 0x1164 tos_sps32 - ok
14:59:06.0704 0x1164 [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
14:59:06.0704 0x1164 TrkWks - ok
14:59:06.0782 0x1164 [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:59:06.0782 0x1164 TrustedInstaller - ok
14:59:06.0844 0x1164 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
14:59:06.0875 0x1164 tssecsrv - ok
14:59:06.0985 0x1164 [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
14:59:06.0985 0x1164 tunmp - ok
14:59:07.0047 0x1164 [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
14:59:07.0047 0x1164 tunnel - ok
14:59:07.0109 0x1164 [ 792A8B80F8188ABA4B2BE271583F3E46, BFE96D13926F3CB7D807CEBB5E190736B742EB5C93F7FED08AA5D145F4B6A874 ] TVALZ C:\Windows\system32\DRIVERS\TVALZ_O.SYS
14:59:07.0141 0x1164 TVALZ - ok
14:59:07.0187 0x1164 [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
14:59:07.0234 0x1164 uagp35 - ok
14:59:07.0390 0x1164 [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
14:59:07.0390 0x1164 udfs - ok
14:59:07.0499 0x1164 [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
14:59:07.0515 0x1164 UI0Detect - ok
14:59:07.0702 0x1164 [ 332D341D92B933600D41953B08360DFB, 213A5C84ABB0D627C05B355084A26A5081645D4EC398FF19EF6BBCB690B10055 ] UleadBurningHelper C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
14:59:07.0811 0x1164 UleadBurningHelper - ok
14:59:07.0952 0x1164 [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
14:59:07.0999 0x1164 uliagpkx - ok
14:59:08.0045 0x1164 [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci C:\Windows\system32\drivers\uliahci.sys
14:59:08.0092 0x1164 uliahci - ok
14:59:08.0155 0x1164 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
14:59:08.0201 0x1164 UlSata - ok
14:59:08.0279 0x1164 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
14:59:08.0326 0x1164 ulsata2 - ok
14:59:08.0357 0x1164 [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
14:59:08.0357 0x1164 umbus - ok
14:59:08.0435 0x1164 [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
14:59:08.0451 0x1164 upnphost - ok
14:59:08.0545 0x1164 [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
14:59:08.0685 0x1164 usbaudio - ok
14:59:08.0841 0x1164 [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
14:59:08.0857 0x1164 usbccgp - ok
14:59:08.0903 0x1164 [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
14:59:09.0044 0x1164 usbcir - ok
14:59:09.0122 0x1164 [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
14:59:09.0122 0x1164 usbehci - ok
14:59:09.0200 0x1164 [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
14:59:09.0215 0x1164 usbhub - ok
14:59:09.0293 0x1164 [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
14:59:09.0387 0x1164 usbohci - ok
14:59:09.0449 0x1164 [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
14:59:09.0512 0x1164 usbprint - ok
14:59:09.0605 0x1164 [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
14:59:09.0746 0x1164 usbscan - ok
14:59:09.0777 0x1164 [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:59:09.0777 0x1164 USBSTOR - ok
14:59:09.0839 0x1164 [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
14:59:09.0839 0x1164 usbuhci - ok
14:59:09.0902 0x1164 [ 73FF24E21B690625A58109637DDA0DF7, 62B1F9CD82678E2110D4BB5CC86EE8A7AB0757681443916620B6AAA1EF0DECEB ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
14:59:09.0902 0x1164 usbvideo - ok
14:59:09.0949 0x1164 [ 8C5094A8AB24DE7496C7C19942F2DF04, B6F0CF09FD307793EE799221FA8BF1DC3C772748B2B6CA40EC8127A6E1462787 ] UVCFTR C:\Windows\system32\Drivers\UVCFTR_S.SYS
14:59:09.0949 0x1164 UVCFTR - ok
14:59:10.0198 0x1164 [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
14:59:10.0198 0x1164 UxSms - ok
14:59:10.0292 0x1164 [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
14:59:10.0307 0x1164 vds - ok
14:59:10.0370 0x1164 [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
14:59:10.0463 0x1164 vga - ok
14:59:10.0495 0x1164 [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
14:59:10.0495 0x1164 VgaSave - ok
14:59:10.0541 0x1164 [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp C:\Windows\system32\drivers\viaagp.sys
14:59:10.0588 0x1164 viaagp - ok
14:59:10.0697 0x1164 [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
14:59:10.0791 0x1164 ViaC7 - ok
14:59:10.0869 0x1164 [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide C:\Windows\system32\drivers\viaide.sys
14:59:10.0900 0x1164 viaide - ok
14:59:10.0931 0x1164 [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
14:59:10.0963 0x1164 volmgr - ok
14:59:11.0087 0x1164 [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
14:59:11.0134 0x1164 volmgrx - ok
14:59:11.0165 0x1164 [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
14:59:11.0181 0x1164 volsnap - ok
14:59:11.0243 0x1164 [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
14:59:11.0275 0x1164 vsmraid - ok
14:59:11.0399 0x1164 [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
14:59:11.0446 0x1164 VSS - ok
14:59:11.0540 0x1164 [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
14:59:11.0555 0x1164 W32Time - ok
14:59:11.0633 0x1164 [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
14:59:11.0711 0x1164 WacomPen - ok
14:59:11.0743 0x1164 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
14:59:11.0758 0x1164 Wanarp - ok
14:59:11.0758 0x1164 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
14:59:11.0758 0x1164 Wanarpv6 - ok
14:59:11.0836 0x1164 [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
14:59:11.0852 0x1164 wcncsvc - ok
14:59:11.0899 0x1164 [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:59:11.0899 0x1164 WcsPlugInService - ok
14:59:11.0961 0x1164 [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd C:\Windows\system32\drivers\wd.sys
14:59:11.0992 0x1164 Wd - ok
14:59:12.0133 0x1164 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
14:59:12.0164 0x1164 Wdf01000 - ok
14:59:12.0211 0x1164 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
14:59:12.0211 0x1164 WdiServiceHost - ok
14:59:12.0226 0x1164 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
14:59:12.0226 0x1164 WdiSystemHost - ok
14:59:12.0367 0x1164 [ BB77BAA3E7FD8F1A5D092A96D37B5A2D, 880C37347091224DFB7C442252FE4A29FD7002DA6A8BA994B8CEAABC5E535593 ] WebClient C:\Windows\System32\webclnt.dll
14:59:12.0367 0x1164 WebClient - ok
14:59:12.0429 0x1164 [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
14:59:12.0429 0x1164 Wecsvc - ok
14:59:12.0476 0x1164 [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
14:59:12.0491 0x1164 wercplsupport - ok
14:59:12.0538 0x1164 [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
14:59:12.0554 0x1164 WerSvc - ok
14:59:12.0694 0x1164 [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
14:59:12.0710 0x1164 WinDefend - ok
14:59:12.0757 0x1164 WinHttpAutoProxySvc - ok
14:59:13.0022 0x1164 [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
14:59:13.0022 0x1164 Winmgmt - ok
14:59:13.0318 0x1164 [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
14:59:13.0365 0x1164 WinRM - ok
14:59:13.0661 0x1164 [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
14:59:13.0677 0x1164 Wlansvc - ok
14:59:13.0739 0x1164 [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
14:59:13.0771 0x1164 WmiAcpi - ok
14:59:13.0833 0x1164 [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
14:59:13.0849 0x1164 wmiApSrv - ok
14:59:14.0956 0x1164 [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
14:59:14.0987 0x1164 WMPNetworkSvc - ok
14:59:15.0050 0x1164 [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
14:59:15.0065 0x1164 WPCSvc - ok
14:59:15.0112 0x1164 [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
14:59:15.0112 0x1164 WPDBusEnum - ok
14:59:15.0175 0x1164 [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
14:59:15.0268 0x1164 WpdUsb - ok
14:59:15.0611 0x1164 [ C108DC20ACE05072350DBB6934E277FB, 548E6ABE4C4ADE48260FFDC7BADFD1697972EA3AE94D6576498C8A183D8CE0C8 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
14:59:15.0643 0x1164 WPFFontCache_v0400 - ok
14:59:15.0705 0x1164 [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
14:59:15.0705 0x1164 ws2ifsl - ok
14:59:15.0908 0x1164 [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\System32\wscsvc.dll
14:59:15.0908 0x1164 wscsvc - ok
14:59:15.0923 0x1164 WSearch - ok
14:59:16.0267 0x1164 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
14:59:16.0516 0x1164 wuauserv - ok
14:59:16.0563 0x1164 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
14:59:16.0563 0x1164 WudfPf - ok
14:59:16.0610 0x1164 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
14:59:16.0688 0x1164 WUDFRd - ok
14:59:16.0703 0x1164 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
14:59:16.0703 0x1164 wudfsvc - ok
14:59:16.0750 0x1164 ================ Scan global ===============================
14:59:17.0047 0x1164 [ 2F2DFC846D75D680B9018823A8B5EF07, DBC823CF0C659B6D7482CB080CD042EC6BBAEDB6297DB712CADA1BCEAA8A95C8 ] C:\Windows\system32\basesrv.dll
14:59:17.0187 0x1164 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
14:59:17.0218 0x1164 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
14:59:17.0343 0x1164 [ 4F0A7910FC7D8A66433FA9961EEF8BB5, 2086EDEE8CF9CC9BDBDC03018F7C28BB56172F941CB4D6F3D857BCF82B32FB6B ] C:\Windows\system32\services.exe
14:59:17.0343 0x1164 [ Global ] - ok
14:59:17.0343 0x1164 ================ Scan MBR ==================================
14:59:17.0421 0x1164 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
14:59:18.0014 0x1164 \Device\Harddisk0\DR0 - ok
14:59:18.0014 0x1164 ================ Scan VBR ==================================
14:59:18.0045 0x1164 [ B55F979E8E8DC2A447FCFC65F4216E0D ] \Device\Harddisk0\DR0\Partition1
14:59:18.0092 0x1164 \Device\Harddisk0\DR0\Partition1 - ok
14:59:18.0092 0x1164 ================ Scan generic autorun ======================
14:59:18.0154 0x1164 [ 8A75C36EEE9BA57FBE09F6DCB8FC8D10, 920FE23BD5554A00219ACD4731333A5A2CF4D72F39993058930829047DCDE205 ] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE
14:59:18.0201 0x1164 TPwrMain - ok
14:59:18.0575 0x1164 [ 6E240D6C2F0DB74BED13AD723D3AB0A1, 99811F1EF27E0B6DDCF79DD07F49931FD55788407AB48C019C1E1B7592919614 ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
14:59:18.0607 0x1164 SynTPEnh - ok
14:59:18.0809 0x1164 [ AB0E459494069652510B63933341D6DB, ECB079C395358A7EAB6B284135A6278066BC7F11A393E7A3227DC4E591B24758 ] C:\Program Files\McAfee.com\Agent\mcagent.exe
14:59:18.0825 0x1164 mcui_exe - ok
14:59:19.0059 0x1164 [ B81C7FA7F37B46ACEE132A2A5989A4DB, EA940D72856FBBD6F09D0459D6A96A39C48C497DA8A94C0ACEE36F86BB5D3C46 ] C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
14:59:19.0075 0x1164 mcpltui_exe - ok
14:59:19.0137 0x1164 [ E6A9F68D26A094FB78B98180A40A29FC, 37B4F3622ED092B3FBCFEEFD24300AC24A3782D5D327499B98E59CDCFA211A5D ] C:\Windows\KHALMNPR.EXE
14:59:19.0168 0x1164 Kernel and Hardware Abstraction Layer - ok
14:59:19.0465 0x1164 [ 6E1AC019C8FD1997BF5A17DA93627510, 28E8C2CDF1203318C1CDE525D08236057A9B6938201ABB216B810655A51F27B4 ] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
14:59:19.0465 0x1164 IAAnotif - ok
14:59:19.0745 0x1164 [ F0CF4D72581B1E0B528086E9FB5DA23B, BBC98D06AF65ACDB59929BCC7C441A13D3C6F91EA8355EF34D802A80E844813C ] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
14:59:20.0026 0x1164 00TCrdMain - ok
14:59:20.0369 0x1164 [ 0D392EDE3B97E0B3131B2F63EF1DB94E, 3EDA280F91097293E00BF984D377E1111CFDE1FC81B30A3FDEB38F321EF82BB6 ] C:\Program Files\Windows Defender\MSASCui.exe
14:59:20.0759 0x1164 Windows Defender - ok
14:59:20.0962 0x1164 [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:59:20.0978 0x1164 SwitchBoard - ok
14:59:21.0368 0x1164 [ C8612E58FB7FCFA5EEA4E39F7B8CBC17, 91FAF64968D26992574D5078989493F5A5F24239C7CB6834B31A25ECA9AA189A ] C:\Windows\Skytel.exe
14:59:21.0680 0x1164 Skytel - ok
14:59:22.0054 0x1164 [ AF49D1C79EA49A7833017F290EE63B82, FFE98E8F6AE3BFAB324B3A7C6C6C00545C597A6861CBDD82ACE97591C6A1D287 ] C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
14:59:22.0382 0x1164 SDTray - ok
14:59:22.0772 0x1164 [ 6C887E9BA3AE7F62635F098BFC9853CD, B7644B9882F387F87140930503E1EA0E766A90ADDD963CB9D96A013716AC7B2F ] C:\Windows\RtHDVCpl.exe
14:59:22.0897 0x1164 RtHDVCpl - ok
14:59:23.0177 0x1164 [ C2CE42005E3381A95460876020518440, 562EB30DA9A1DB58DB221423177C0680E69A4C38EEE2D5FD936633B2EB8A616E ] C:\Program Files\QuickTime\QTTask.exe
14:59:23.0349 0x1164 QuickTime Task - ok
14:59:23.0443 0x1164 [ 6ED26E255607F4BA8812E62E496C35ED, 79FEA2ECE218341D122808504CA18FA0B0EA3366B99A8AD042666ECDA08AD5C9 ] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
14:59:23.0443 0x1164 KiesTrayAgent - ok
14:59:23.0521 0x1164 [ 603668084332DDB58D8C5AACE30B04FC, B6FA6BBE18D433F41F96640726444B7CB9D669BAE87A545E1408391B9469EDB9 ] C:\Program Files\iTunes\iTunesHelper.exe
14:59:23.0567 0x1164 iTunesHelper - ok
14:59:23.0973 0x1164 [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
14:59:24.0004 0x1164 HP Software Update - ok
14:59:24.0238 0x1164 [ F0CE006E1D14F45959985A05F8E81204, D9FE67DB4CEDB3B09A48C305DDE983A15695EE41C68CE222880D002C0D5D7688 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
14:59:24.0285 0x1164 APSDaemon - ok
14:59:24.0831 0x1164 MalwareProtectionLive - ok
14:59:25.0112 0x1164 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
14:59:25.0237 0x1164 Sidebar - ok
14:59:25.0237 0x1164 WindowsWelcomeCenter - ok
14:59:25.0408 0x1164 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
14:59:25.0455 0x1164 Sidebar - ok
14:59:25.0455 0x1164 WindowsWelcomeCenter - ok
14:59:25.0455 0x1164 TOSCDSPD - ok
14:59:25.0642 0x1164 [ 278A1F51C56B06436C4227A85A0914ED, 5DE184DA22CBAE212B8F3D71372CF4282C6A0C35A2DE38C6B0444520DF1009F5 ] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIEDA.EXE
14:59:25.0767 0x1164 EPSON NX100 Series - ok
14:59:25.0767 0x1164 Waiting for KSN requests completion. In queue: 91
14:59:26.0781 0x1164 Waiting for KSN requests completion. In queue: 91
14:59:27.0795 0x1164 Waiting for KSN requests completion. In queue: 91
14:59:28.0809 0x1164 Waiting for KSN requests completion. In queue: 91
14:59:29.0823 0x1164 Waiting for KSN requests completion. In queue: 91
14:59:30.0837 0x1164 Waiting for KSN requests completion. In queue: 91
14:59:31.0960 0x1164 AV detected via SS2: McAfee Anti-Virus and Anti-Spyware, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 14.0.0.0 ), 0x51000 ( enabled : updated )
14:59:31.0976 0x1164 FW detected via SS2: McAfee Firewall, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 14.0.0.0 ), 0x51010 ( enabled )
14:59:43.0098 0x1164 ============================================================
14:59:43.0098 0x1164 Scan finished
14:59:43.0098 0x1164 ============================================================
14:59:43.0098 0x16bc Detected object count: 0
14:59:43.0098 0x16bc Actual detected object count: 0
wfr37
Regular Member
 
Posts: 20
Joined: July 26th, 2015, 8:31 pm

Re: windows vista unresponsive after 10 minutes

Unread postby wannabeageek » August 25th, 2015, 10:56 pm

wfr37,

Please move FRST to your Desktop. Everything we do is supposed to be done at the Desktop as per instructions.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:12-08-2015
Ran by wner (administrator) on WNER-PC (13-08-2015 08:05:04)
Running from C:\Users\wner\Downloads


The way chkdsk runs is a mute point since we are interested in the results and not how they are obtained.


Step 1.
  • Click Start
  • Type notepad.exe in the search programs and files box and click Enter.
  • A blank Notepad page should open.
    • Copy/Paste the contents of the code box below into Notepad.
    • To make this easy, click the "select all" button then hover over the highlighted text and right mouse click to select copy.
Code: Select all
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\Everyday\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2378769042-2310627262-2564490496-1000\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyServer: [Everyday] => http=127.0.0.1:8555;https=127.0.0.1:8555
SearchScopes: HKLM -> {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL =
SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\Everyday -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=C8yGRHnF ... LwvtMkI?q= {searchTerms}
SearchScopes: HKU\S-1-5-21-2378769042-2310627262-2564490496-1000 -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=e5dTY0S0 ... BhTbgFo?q= {searchTerms}
Toolbar: HKU\Everyday -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-2378769042-2310627262-2564490496-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S0 Lbd; system32\DRIVERS\Lbd.sys [X]
S3 motmodem; system32\DRIVERS\motmodem.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
Foxit PDF Creator Toolbar Updater (HKU\Everyday\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.2.23821 - Ask.com) <==== ATTENTION
WeatherBug® (HKLM\...\WeatherBug®) (Version: 10.0.4.13 - Earth Networks, Inc.)
Task: {163842FF-30F0-4316-889C-35CAC05913ED} - \ASP -> No File <==== ATTENTION
EmptyTemp:

    • Save it to the same folder/directory that FRST.exe is in, naming it as fixlist.txt

NOTICE: This script was written specifically for this user. Running it on another machine may cause damage to your operating system

  • Start FRST in a similar manner to when you ran a scan earlier, but this time when it opens ....
    • Press the Fix button once and wait.
    • FRST will process fixlist.txt
    • When finished, it will produce a log fixlog.txt in the same folder/directory as FRST64.exe
    • Please post me the log


Try and remove these programs again. Let me know if you succeed.
Step 2.
Uninstall Programs
*/ Use for removing programs in Vista */
I need you to uninstall some program(s).
  1. Click on Start...then... Click the Start Search box on the Start Menu.
  2. Copy and paste the value below, into the open text entry box:
    control appwiz.cpl
      Depending on your current view setting ...
    • Double click on Programs and Features.
    • Under Programs, click on Uninstall a program.
  3. Locate the following program(s):
    Foxit PDF Creator Toolbar Updater (HKU\Everyday\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.2.23821 - Ask.com)
    WeatherBug® (HKLM\...\WeatherBug®) (Version: 10.0.4.13 - Earth Networks, Inc.)
  4. Select the program and click on Uninstall to uninstall it.
    Carefully read any prompts...
    Some uninstallers prompt in a way to trick you into keeping the program, sometimes, preventing them from being uninstalled again!
  5. Repeat steps 3 - 4 for each program in the list. When finished... Close the Control Panel window.



Please include in your next reply:
  1. Contents of fixlog.txt
  2. Success as to removal of the 2 programs in question.
  3. Any problem executing the instructions?
  4. How is the computer behaving?
Thanks,
wbg
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: windows vista unresponsive after 10 minutes

Unread postby wfr37 » August 26th, 2015, 3:01 pm

1. Fixlog. txt below
2. Foxit PDF Creator toolbar updater found under other user "Everyday" When attempt to uninstall, window said that the program was not found and asked if the Foxit PDF Creator toolbar updater should be removed from the program list. I responded "yes" remove from the list. This program was not found on the "wner" administrator user listing.
Unsuccessful trying to uninstall Weaterbug. Window said "setup resource not found". This program hangs up after program launch if you click on any function shown in the Weatherbug window. Perhaps not installed correctly.
3. No problems with instruction other than #2 above.
4. When if first attempted Step 1, the computer became unresponsive after i created the fixlist.txt before i could run the program. Had to force shutdown and restart normally. Then able to run fix program as well as try install and write this log reply after the log was generated and restarted. Not just today, but at other times too, it seems like if the cpu or memory can be kept active, the delay until unresponsive become longer. I expect it to become responsive any time now. Past experience indicate is will happen and not just keep running. I don't have any idea why sometimes it becomes responsive in a very very short time and other times runs for twenty minutes or longer.


Fix result of Farbar Recovery Scan Tool (x86) Version:25-08-2015 02
Ran by wner (2015-08-26 13:14:58) Run:1
Running from C:\Users\wner\Desktop
Loaded Profiles: wner (Available Profiles: wner & Everyday)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\Everyday\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2378769042-2310627262-2564490496-1000\...\Run: [] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyServer: [Everyday] => http=127.0.0.1:8555;https=127.0.0.1:8555
SearchScopes: HKLM -> {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL =
SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\Everyday -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=C8yGRHnF ... LwvtMkI?q= {searchTerms}
SearchScopes: HKU\S-1-5-21-2378769042-2310627262-2564490496-1000 -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=e5dTY0S0 ... BhTbgFo?q= {searchTerms}
Toolbar: HKU\Everyday -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKU\S-1-5-21-2378769042-2310627262-2564490496-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S0 Lbd; system32\DRIVERS\Lbd.sys [X]
S3 motmodem; system32\DRIVERS\motmodem.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
Foxit PDF Creator Toolbar Updater (HKU\Everyday\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.2.23821 - Ask.com) <==== ATTENTION
WeatherBug® (HKLM\...\WeatherBug®) (Version: 10.0.4.13 - Earth Networks, Inc.)
Task: {163842FF-30F0-4316-889C-35CAC05913ED} - \ASP -> No File <==== ATTENTION
EmptyTemp:
*****************

"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SDWinLogon" => key removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoControlPanel => value removed successfully.
HKU\Everyday\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value not found.
HKU\S-1-5-21-2378769042-2310627262-2564490496-1000\Software\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
HKU\Everyday\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value not found.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2E00D31D-D171-423D-836D-1A4D7EA7F1A9}" => key removed successfully.
HKCR\CLSID\{2E00D31D-D171-423D-836D-1A4D7EA7F1A9} => key not found.
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => key removed successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => key not found.
HKU\Everyday\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E} => key not found.
HKCR\CLSID\{70D46D94-BF1E-45ED-B567-48701376298E} => key not found.
"HKU\S-1-5-21-2378769042-2310627262-2564490496-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E}" => key removed successfully.
HKCR\CLSID\{70D46D94-BF1E-45ED-B567-48701376298E} => key not found.
HKU\Everyday\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value not found.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
HKU\S-1-5-21-2378769042-2310627262-2564490496-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value removed successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
IpInIp => service removed successfully.
Lbd => service removed successfully.
motmodem => service removed successfully.
NwlnkFlt => service removed successfully.
NwlnkFwd => service removed successfully.
Foxit PDF Creator Toolbar Updater (HKU\Everyday\...\{79A765E1-C399-405B-85AF-466F52E918B0}) (Version: 1.2.2.23821 - Ask.com) <==== ATTENTION => Error: No automatic fix found for this entry.
WeatherBug® (HKLM\...\WeatherBug®) (Version: 10.0.4.13 - Earth Networks, Inc.) => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{163842FF-30F0-4316-889C-35CAC05913ED}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{163842FF-30F0-4316-889C-35CAC05913ED}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ASP" => key removed successfully.
EmptyTemp: => 1.2 GB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 13:19:38 ====
wfr37
Regular Member
 
Posts: 20
Joined: July 26th, 2015, 8:31 pm

Re: windows vista unresponsive after 10 minutes

Unread postby wannabeageek » August 26th, 2015, 10:02 pm

wfr37,

Please run the following, post the results.

Step 1.
Listparts
  • Right mouse click on this link: ListParts... by farbar.
  • Select from the pop up box:
    "Save link as..."
  • From the left panel of the pop up box, scroll up and select desktop.
  • Click the "Save" button.
From your desktop:
  • Right Mouse click ListParts.exe, select "Run As Administrator" to run it... if UAC prompts, please allow it.
    A file Result.txt will be created on your Desktop (or in the same directory where the tool was run).
  • Please copy and paste the contents of Result.txt and post in your next reply.


Step 2.
Run a New Scan With the Farbar Scan Tool
  • Right click on FRST.exe select "Run As Administrator" to run it. If prompted by UAC, please allow it. When the tool opens click Yes to disclaimer.
  • Check the box for Addition.txt so it will produce that file again.
  • Press the Scan button.
  • When finished scanning, a new version of the logs FRST.txt and Addition.txt will be saved on your Desktop and opened in Notepad.
  • Please post the contents of both in your next replies.
Separate replies are fine.




What I need back from you:
Post each separately.
  1. Contents of Result.txt
  2. Contents of FRST.txt
  3. Contents of Addition.txt
  4. Any problem executing the instructions?
Thanks,
wbg
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: windows vista unresponsive after 10 minutes

Unread postby wfr37 » August 27th, 2015, 8:29 am

Since there were no instructions to do so, I did NOT check the BCD box in the window and just clicked scan for the results below.

ListParts by Farbar Version: 31-07-2014
Ran by wner (administrator) on 27-08-2015 at 07:18:53
Windows Vista (X86)
Running From: C:\Users\wner\Desktop
Language: English (United States)
************************************************************

========================= Memory info ======================

Percentage of memory in use: 47%
Total physical RAM: 2939.25 MB
Available physical RAM: 1544.04 MB
Total Pagefile: 6084.72 MB
Available Pagefile: 4709.25 MB
Total Virtual: 2047.88 MB
Available Virtual: 1974.45 MB

======================= Partitions =========================

1 Drive c: (SQ004816V03) (Fixed) (Total:177.6 GB) (Free:75.18 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 186 GB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 1500 MB 1024 KB
Partition 2 Primary 178 GB 1501 MB
Partition 3 Primary 7419 MB 179 GB

======================================================================================================

Disk: 0
Partition 1
Type : 27
Hidden: Yes
Active: No

There is no volume associated with this partition.

======================================================================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 C SQ004816V03 NTFS Partition 178 GB Healthy System (partition with boot components)

======================================================================================================

Disk: 0
Partition 3
Type : 17
Hidden: Yes
Active: No

There is no volume associated with this partition.

======================================================================================================
============================== MBR Partition Table ==================

==============================
Partitions of Disk 0:
===============
Disk ID: 1CF55F92
Partition 1: (Not Active) - (Size=1 GB) - (Type=27)
Partition 2: (Active) - (Size=178 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=7 GB) - (Type=17)


****** End Of Log ******
Frst text -
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:25-08-2015 02
Ran by wner (administrator) on WNER-PC (27-08-2015 07:21:10)
Running from C:\Users\wner\Desktop
Loaded Profiles: wner (Available Profiles: wner & Everyday)
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) Language: English (United States)
Internet Explorer Version 9 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\Platform\McUICnt.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Samsung) C:\Program Files\Samsung\Kies\Kies.exe
(GoPro) C:\Program Files\CineForm\Tools\GoProCineFormStatusViewer.exe
(MagicISO, Inc.) C:\Program Files\MagicDisc\MagicDisc.exe
(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\SystemCore\mfemms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [431456 2008-02-06] (TOSHIBA Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1348904 2008-08-14] (Synaptics, Inc.)
HKLM\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [582288 2015-03-03] (McAfee, Inc.)
HKLM\...\Run: [mcpltui_exe] => C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe [562688 2015-02-11] (McAfee, Inc.)
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [76304 2008-02-29] (Logitech, Inc.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [178712 2008-04-15] (Intel Corporation)
HKLM\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [716800 2008-05-09] (TOSHIBA Corporation)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-20] (Microsoft Corporation)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [Skytel] => C:\Windows\Skytel.exe [1826816 2007-11-20] (Realtek Semiconductor Corp.)
HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [6037504 2008-04-08] (Realtek Semiconductor)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2015-06-17] (Apple Inc.)
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311152 2013-11-05] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-07-08] (Apple Inc.)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-03] (Apple Inc.)
HKLM\...\Run: [MalwareProtectionLive] => C:\Users\wner\AppData\Local\MalwareProtectionLive\MalwareProtectionClient.exe
HKU\S-1-5-21-2378769042-2310627262-2564490496-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6453528 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-2378769042-2310627262-2564490496-1000\...\Run: [KiesPreload] => C:\Program Files\Samsung\Kies\Kies.exe [1564528 2013-11-05] (Samsung)
HKU\S-1-5-21-2378769042-2310627262-2564490496-1000\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1404248 2015-07-29] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1404248 2015-07-29] (Garmin Ltd. or its subsidiaries)
AppInit_DLLs: C:\PROGRA~1\GOOGLE\GOOGLE~1\GOEC62~1.DLL => C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll [123392 2010-08-31] (Google)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2013-03-03] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CineForm Status.lnk [2015-07-29]
ShortcutTarget: CineForm Status.lnk -> C:\Program Files\CineForm\Tools\GoProCineFormStatusViewer.exe (GoPro)
Startup: C:\Users\Everyday\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2013-03-03] ()
Startup: C:\Users\wner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk [2015-07-29]
ShortcutTarget: MagicDisc.lnk -> C:\Program Files\MagicDisc\MagicDisc.exe (MagicISO, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ig/redirectdomain ... &bmod=TSHB
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain ... &bmod=TSHB
HKU\S-1-5-21-2378769042-2310627262-2564490496-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain ... &bmod=TSHB
URLSearchHook: HKU\S-1-5-21-2378769042-2310627262-2564490496-1000 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
SearchScopes: HKLM -> DefaultScope {2E693E70-20FB-4ACD-93EA-BF4721FBA9BB} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSHB
SearchScopes: HKLM -> {2E693E70-20FB-4ACD-93EA-BF4721FBA9BB} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSHB
SearchScopes: HKU\S-1-5-21-2378769042-2310627262-2564490496-1000 -> DefaultScope {2E693E70-20FB-4ACD-93EA-BF4721FBA9BB} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSHB_enUS320
SearchScopes: HKU\S-1-5-21-2378769042-2310627262-2564490496-1000 -> {2E00D31D-D171-423D-836D-1A4D7EA7F1A9} URL = hxxp://search.yahoo.com/search?fr=mcafe ... 11US636&p={SearchTerms}
SearchScopes: HKU\S-1-5-21-2378769042-2310627262-2564490496-1000 -> {2E693E70-20FB-4ACD-93EA-BF4721FBA9BB} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSHB_enUS320
SearchScopes: HKU\S-1-5-21-2378769042-2310627262-2564490496-1000 -> {A3676084-AB12-4341-B69F-08468C4119BA} URL = hxxps://search.yahoo.com/search?fr=chr- ... =926458&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2378769042-2310627262-2564490496-1000 -> {C2813C05-014E-478A-B226-12614D26CCCD} URL =
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.)
BHO: ContributeBHO Class -> {074C1DC5-9320-4A9A-947D-C042949C6216} -> C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27] (Adobe Systems, Inc.)
BHO: Secure Online Account Numbers Helper -> {435EAA86-D32B-484F-869C-53745FCB1642} -> C:\Program Files\Discover\SOAN\DiscoverSOANHelper.dll [2010-03-05] (Orbiscom Ltd. All rights reserved.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Skype add-on for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08] (Skype Technologies S.A.)
BHO: McAfee SiteAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2015-08-17] (McAfee, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - Secure Online Account Numbers - {A8C7C2CA-6DFD-4E16-8458-592361564D38} - C:\Program Files\Discover\SOAN\DiscoverSOANToolbar.dll [2010-03-05] (Orbiscom Ltd. All rights reserved.)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2015-08-17] (McAfee, Inc.)
Toolbar: HKLM - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27] (Adobe Systems, Inc.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.8.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-0018-0000-0040-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.8.0/jinsta ... s-i586.cab
DPF: {D821DC4A-0814-435E-9820-661C543A4679} hxxp://drmlicense.one.microsoft.com/crl ... crlocx.ocx
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2015-08-17] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll [2015-08-17] (McAfee, Inc.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08] (Skype Technologies S.A.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\McAfee\MSC\McSnIePl.dll [2015-03-03] (McAfee, Inc.)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 68.105.28.11 68.105.29.11 68.105.28.12
Tcpip\..\Interfaces\{0A2E6BA9-3B42-4B4C-BBFB-E7D86FD7E9DB}: [DhcpNameServer] 68.105.28.11 68.105.29.11 68.105.28.12
Tcpip\..\Interfaces\{1FE2E2E9-AB11-4485-9D54-96CF4D146B30}: [DhcpNameServer] 68.105.28.11 68.105.29.11 68.105.28.12
Tcpip\..\Interfaces\{EF5BF8C2-E4B9-4F43-B872-F869DF40ECE2}: [DhcpNameServer] 8.8.8.8

FireFox:
========
FF ProfilePath: C:\Users\wner\AppData\Roaming\Mozilla\Firefox\Profiles\4dezhhjo.default-1413043397398
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-31] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] ()
FF Plugin: @canon.com/MycameraPlugin -> C:\Program Files\Canon\ZoomBrowser EX\Program\NPCIG.dll [2008-10-15] (CANON INC.)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2012-06-06] (Foxit Corporation)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-08-12] (Google, Inc.)
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2015-03-03] ()
FF Plugin: @mcafee.com/MVT -> C:\Program Files\McAfee\Supportability\MVT\NPMVTPlugin.dll [2014-03-04] (McAfee, Inc.)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\McSiteAdvisor.xml [2014-05-12]
FF Extension: Hotspot Shield Extension - C:\Program Files\Mozilla Firefox\browser\extensions\afproxy@anchorfree.com [2015-08-13]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-03-28]
FF HKLM\...\Firefox\Extensions: [discoversoan@orbiscom] - C:\Program Files\Discover\SOAN
FF Extension: Secure Online Account Numbers - C:\Program Files\Discover\SOAN [2010-12-18]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011-05-04]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files\McAfee\SiteAdvisor [2011-06-13]
FF HKLM\...\Firefox\Extensions: [{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}] - C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF Extension: Adobe Contribute Toolbar - C:\Program Files\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2011-11-24]
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2014-11-06]
FF HKU\S-1-5-21-2378769042-2310627262-2564490496-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKU\S-1-5-21-2378769042-2310627262-2564490496-1000\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-08-13]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files\McAfee\SiteAdvisor\McChPlg.crx [2011-06-13]
StartMenuInternet: Google Chrome.4BO7VIB266JSAGPMJZDAXRW5SA - C:\Users\Everyday\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 0149851440677888mcinstcleanup; C:\Windows\TEMP\014985~1.EXE [883024 2015-05-04] (McAfee, Inc.)
S4 AdobeActiveFileMonitor5.0; C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe [108712 2006-12-22] ()
S4 ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960 2008-04-17] (TOSHIBA CORPORATION) [File not signed]
S4 EvtEng; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [815104 2008-04-30] (Intel(R) Corporation) [File not signed]
S4 GameConsoleService; C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe [164600 2008-05-28] (WildTangent, Inc.)
S2 Garmin Device Interaction Service; C:\Program Files\Garmin\Device Interaction Service\GarminService.exe [754120 2015-07-29] (Garmin Ltd. or its subsidiaries)
R2 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-08-31] (Google)
S3 HomeNetSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [291816 2015-02-11] (McAfee, Inc.)
S4 hshld; C:\Program Files\Hotspot Shield\bin\cmw_srv.exe [935208 2014-09-11] (AnchorFree Inc.)
S4 HssTrayService; C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE [78512 2014-05-16] ()
S4 HssWd; C:\Program Files\Hotspot Shield\bin\hsswd.exe [430344 2014-05-16] ()
S4 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 McAfee SiteAdvisor Service; c:\Program Files\McAfee\SiteAdvisor\McSACore.exe [132160 2015-08-17] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [690408 2015-03-03] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [291816 2015-02-11] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [291816 2015-02-11] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [476680 2015-02-27] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [291816 2015-02-11] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [291816 2015-02-11] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [196600 2015-02-17] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [334576 2015-03-01] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [238288 2015-02-17] (McAfee, Inc.)
S4 MSK80Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [291816 2015-02-11] (McAfee, Inc.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
S4 ProtexisLicensing; C:\Windows\system32\PSIService.exe [174656 2006-11-02] () [File not signed]
S4 RegSrvc; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [466944 2008-04-30] (Intel(R) Corporation) [File not signed]
S3 RosettaStoneDaemon; C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe [1646608 2012-06-19] (Rosetta Stone Ltd.)
S4 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
S4 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
S4 SmartFaceVWatchSrv; C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe [73728 2008-04-24] (Toshiba) [File not signed]
S4 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S4 TMachInfo; C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [46392 2008-08-04] (TOSHIBA Corporation)
S4 TOSHIBA SMART Log Service; C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [126976 2007-12-03] (TOSHIBA Corporation) [File not signed]
S4 UleadBurningHelper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-08-23] (Ulead Systems, Inc.) [File not signed]
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-20] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [61848 2015-02-17] (McAfee, Inc.)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [147912 2013-09-23] (McAfee, Inc.)
R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [39624 2014-05-16] (AnchorFree Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [98520 2015-07-26] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
R3 mcdbus; C:\Windows\System32\DRIVERS\mcdbus.sys [116736 2009-02-24] (MagicISO, Inc.) [File not signed]
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [304928 2015-02-17] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [260248 2015-02-17] (McAfee, Inc.)
R0 mfedisk; C:\Windows\System32\DRIVERS\mfedisk.sys [82800 2015-02-17] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [371648 2015-02-17] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [648552 2015-02-17] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [380496 2015-01-16] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [80760 2015-01-16] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [217584 2015-02-17] (McAfee, Inc.)
R0 speedfan; C:\Windows\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
S3 SVRPEDRV; C:\Windows\System32\sysprep\PEDrv.sys [9216 2008-01-18] (Inventec Corporation) [File not signed]
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [37064 2014-05-16] (Anchorfree Inc.)
R3 UVCFTR; C:\Windows\System32\Drivers\UVCFTR_S.SYS [18432 2007-12-17] (Chicony Electronics Co., Ltd.)
S0 giveio; system32\giveio.sys [X]
S3 IO_Memory; \??\C:\WINDOWS\SYSTEM32\SYSPREP\Drivers\ioport.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-27 07:18 - 2015-08-27 07:19 - 00002537 _____ C:\Users\wner\Desktop\Result.txt
2015-08-27 07:17 - 2015-08-27 07:17 - 00860160 _____ (Farbar) C:\Users\wner\Desktop\ListParts.exe
2015-08-27 07:15 - 2015-08-27 07:15 - 00017780 _____ C:\Users\wner\Desktop\A1X+Zcj9.htm
2015-08-26 13:14 - 2015-08-26 13:14 - 00000000 ____D C:\Users\wner\Desktop\FRST-OlderVersion
2015-08-23 14:56 - 2015-08-23 14:56 - 04404952 _____ (Kaspersky Lab ZAO) C:\Users\wner\Desktop\tdsskiller.exe
2015-08-23 14:33 - 2015-08-23 14:53 - 00002926 _____ C:\Users\wner\Desktop\Rkill.txt
2015-08-23 14:33 - 2015-08-23 14:33 - 02019656 _____ (Bleeping Computer, LLC) C:\Users\wner\Desktop\rkill.exe
2015-08-20 20:28 - 2015-08-20 20:41 - 00001308 _____ C:\Users\wner\Desktop\checkhd.txt
2015-08-20 14:53 - 2015-08-20 14:54 - 00807424 _____ C:\Users\Everyday\Documents\outlook contacts.xls
2015-08-20 14:53 - 2015-08-20 14:53 - 00038449 _____ C:\Users\Everyday\AppData\Roaming\Comma Separated Values (DOS).ADR
2015-08-20 14:53 - 2015-08-20 14:53 - 00038436 _____ C:\Users\Everyday\AppData\Roaming\Microsoft Excel 97-2003.ADR
2015-08-20 14:52 - 2015-08-20 14:53 - 02015516 _____ C:\Users\Everyday\Documents\outlook contacts 8-20-15.CSV
2015-08-20 14:11 - 2015-08-14 18:03 - 12386816 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-08-20 14:11 - 2015-08-14 17:56 - 01804288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-08-20 14:11 - 2015-08-14 17:55 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-08-19 06:55 - 2015-08-19 06:55 - 00000000 __SHD C:\found.004
2015-08-19 06:20 - 2015-08-19 06:20 - 00000000 __SHD C:\found.003
2015-08-18 20:01 - 2015-08-18 20:08 - 00001909 _____ C:\Users\wner\Desktop\checkhd22.txt
2015-08-18 19:52 - 2015-08-18 19:52 - 00000081 _____ C:\Users\wner\Desktop\testhd.bat
2015-08-16 15:45 - 2015-08-16 17:49 - 00000000 ____D C:\Program Files\SpeedFan
2015-08-16 15:45 - 2015-08-16 15:45 - 00000815 _____ C:\Users\wner\Desktop\SpeedFan.lnk
2015-08-16 15:45 - 2015-08-16 15:45 - 00000045 _____ C:\Windows\system32\initdebug.nfo
2015-08-16 15:45 - 2015-08-16 15:45 - 00000000 ____D C:\Users\wner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2015-08-16 15:31 - 2015-08-16 15:31 - 00000000 __SHD C:\found.002
2015-08-16 15:14 - 2015-08-16 15:14 - 02218504 _____ C:\Users\wner\Downloads\instspeedfan451.exe
2015-08-16 15:14 - 2015-08-16 15:14 - 00001043 _____ C:\Users\wner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Malware Protection Live.lnk
2015-08-16 15:13 - 2015-08-16 15:13 - 00075760 _____ C:\Users\wner\Downloads\instspeedfan451-53781132.exe
2015-08-16 13:14 - 2015-08-16 13:14 - 00000000 __SHD C:\found.001
2015-08-16 08:52 - 2015-08-16 08:52 - 00139272 _____ C:\Windows\Minidump\Mini081615-01.dmp
2015-08-14 12:03 - 2015-07-31 14:27 - 00103120 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-14 12:03 - 2015-07-21 15:55 - 01206192 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-08-14 12:03 - 2015-07-21 11:07 - 03605440 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-08-14 12:03 - 2015-07-21 11:07 - 03553216 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-08-14 12:03 - 2015-07-21 11:07 - 00140224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys
2015-08-14 12:03 - 2015-07-21 11:07 - 00056256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-08-14 12:03 - 2015-07-21 11:03 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\emdmgmt.dll
2015-08-14 12:03 - 2015-07-21 11:03 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-08-14 12:03 - 2015-07-21 11:03 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2015-08-14 12:02 - 2015-07-09 09:20 - 00304640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2015-08-14 12:01 - 2015-07-10 14:37 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-08-14 12:00 - 2015-07-11 10:56 - 11587584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-08-14 11:45 - 2015-07-18 11:03 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2015-08-14 11:43 - 2015-07-10 14:37 - 01402368 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-08-14 11:43 - 2015-07-10 14:37 - 01253376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-08-14 11:40 - 2015-07-31 17:08 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-08-14 11:40 - 2015-07-31 16:46 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2015-08-14 11:40 - 2015-07-31 16:46 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2015-08-14 11:40 - 2015-07-31 16:46 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2015-08-14 11:40 - 2015-07-31 16:46 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2015-08-14 11:40 - 2015-07-31 15:41 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-08-14 11:40 - 2015-07-31 15:40 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-08-14 11:40 - 2015-07-31 15:35 - 00682496 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-08-14 11:40 - 2015-07-31 15:33 - 02066944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-08-14 11:40 - 2015-07-31 15:33 - 01072640 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-08-14 11:40 - 2015-07-31 15:33 - 00802304 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-08-14 11:40 - 2015-07-31 15:33 - 00297472 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-08-14 11:39 - 2015-07-09 09:25 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2015-08-14 11:39 - 2015-07-09 09:25 - 00151040 _____ (Microsoft Corporation) C:\Windows\notepad.exe
2015-08-14 11:39 - 2015-07-01 10:57 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-08-13 21:12 - 2015-08-27 07:19 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-08-13 20:58 - 2015-08-13 20:59 - 00010353 _____ C:\Users\wner\Desktop\MTB.txt
2015-08-13 20:56 - 2015-08-13 20:56 - 00891392 _____ (Farbar) C:\Users\wner\Desktop\MiniToolBox.exe
2015-08-13 13:17 - 2015-08-13 13:17 - 00144560 _____ C:\Windows\Minidump\Mini081315-06.dmp
2015-08-13 11:06 - 2015-07-22 15:46 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-08-13 11:06 - 2015-07-22 15:45 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-08-13 11:06 - 2015-07-22 15:45 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-08-13 11:06 - 2015-07-22 15:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-08-13 11:06 - 2015-07-22 15:44 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-08-13 11:06 - 2015-07-22 15:44 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-08-13 11:06 - 2015-07-22 15:44 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-08-13 11:06 - 2015-07-22 15:44 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-08-13 11:06 - 2015-07-22 15:43 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-08-13 11:06 - 2015-07-22 15:43 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-08-13 11:06 - 2015-07-22 15:43 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-08-13 11:06 - 2015-07-22 15:43 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-08-13 11:05 - 2015-07-22 15:54 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-08-13 11:05 - 2015-07-22 15:51 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-08-13 11:05 - 2015-07-22 15:47 - 09751040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-08-13 11:05 - 2015-07-22 15:46 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-08-13 11:05 - 2015-07-22 15:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-08-13 11:05 - 2015-07-22 15:43 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-08-13 11:05 - 2015-07-22 15:42 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-08-13 10:15 - 2015-08-13 10:15 - 00144560 _____ C:\Windows\Minidump\Mini081315-05.dmp
2015-08-13 09:49 - 2015-08-13 09:49 - 00144560 _____ C:\Windows\Minidump\Mini081315-04.dmp
2015-08-13 09:27 - 2015-08-13 09:27 - 00144560 _____ C:\Windows\Minidump\Mini081315-03.dmp
2015-08-13 08:39 - 2015-08-13 08:39 - 00144560 _____ C:\Windows\Minidump\Mini081315-02.dmp
2015-08-13 08:30 - 2015-08-13 08:30 - 00144560 _____ C:\Windows\Minidump\Mini081315-01.dmp
2015-08-13 08:13 - 2015-08-13 08:13 - 05198336 _____ (AVAST Software) C:\Users\wner\Desktop\aswMBR.exe
2015-08-13 08:09 - 2015-08-13 08:11 - 00059696 _____ C:\Users\wner\Desktop\Addition.txt
2015-08-13 08:05 - 2015-08-27 07:23 - 00024827 _____ C:\Users\wner\Desktop\FRST.txt
2015-08-13 08:04 - 2015-08-27 07:21 - 00000000 ____D C:\FRST
2015-08-13 08:03 - 2015-08-26 13:14 - 01690112 _____ (Farbar) C:\Users\wner\Desktop\FRST.exe
2015-08-11 14:37 - 2015-08-11 14:37 - 00144560 _____ C:\Windows\Minidump\Mini081115-01.dmp
2015-08-11 12:46 - 2015-08-11 12:46 - 00001778 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2015-08-11 12:46 - 2015-08-11 12:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2015-08-09 17:07 - 2015-08-09 17:08 - 00144560 _____ C:\Windows\Minidump\Mini080915-01.dmp
2015-08-06 15:52 - 2015-08-06 15:52 - 00144560 _____ C:\Windows\Minidump\Mini080615-01.dmp
2015-08-06 13:57 - 2015-08-06 13:57 - 00023520 _____ C:\Users\wner\Documents\DDS.txt
2015-08-06 13:57 - 2015-08-06 13:57 - 00014217 _____ C:\Users\wner\Documents\Attach.txt
2015-08-06 13:47 - 2015-08-06 13:47 - 00121696 _____ C:\Users\wner\AppData\Local\GDIPFONTCACHEV1.DAT
2015-08-06 13:44 - 2015-08-26 13:23 - 00004036 _____ C:\Windows\PFRO.log
2015-08-05 00:03 - 2015-08-05 00:03 - 00877152 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-08-05 00:03 - 2015-08-05 00:03 - 00538208 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2015-07-29 06:23 - 2015-07-29 06:23 - 00144560 _____ C:\Windows\Minidump\Mini072915-02.dmp
2015-07-29 06:06 - 2015-07-29 06:06 - 00144560 _____ C:\Windows\Minidump\Mini072915-01.dmp
2015-07-29 06:05 - 2015-08-16 08:51 - 404385795 _____ C:\Windows\MEMORY.DMP
2015-07-28 19:17 - 2015-08-14 12:25 - 03970536 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-28 19:14 - 2015-07-28 19:14 - 00000000 ____D C:\Users\Everyday\AppData\Roaming\FastStone
2015-07-28 19:14 - 2015-07-28 19:07 - 00000931 _____ C:\Users\Everyday\Desktop\FastStone Image Viewer.lnk
2015-07-28 19:12 - 2015-07-28 19:12 - 00010338 _____ C:\Users\wner\Documents\cc_20150728_191224.reg
2015-07-28 19:07 - 2015-07-28 19:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
2015-07-28 19:07 - 2015-07-28 19:08 - 00000000 ____D C:\Program Files\FastStone Image Viewer
2015-07-28 19:07 - 2015-07-28 19:07 - 00000913 _____ C:\Users\Public\Desktop\FastStone Image Viewer.lnk

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-08-27 07:17 - 2014-11-05 21:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2015-08-27 07:16 - 2009-03-03 22:06 - 01122423 _____ C:\Windows\WindowsUpdate.log
2015-08-27 07:12 - 2014-01-12 11:22 - 00000644 _____ C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2015-08-27 07:12 - 2011-05-15 17:40 - 00000434 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2015-08-27 07:11 - 2010-02-06 15:38 - 00000882 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-27 07:11 - 2006-11-02 08:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-27 07:11 - 2006-11-02 07:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-27 07:11 - 2006-11-02 07:47 - 00003616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-26 15:43 - 2010-02-06 15:38 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-26 15:32 - 2012-04-12 20:11 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-08-26 15:30 - 2014-11-17 13:38 - 00000886 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d00295ac05379c.job
2015-08-26 13:22 - 2006-11-02 08:01 - 00032572 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-08-23 16:18 - 2006-11-02 05:33 - 00799292 _____ C:\Windows\system32\PerfStringBackup.INI
2015-08-23 16:17 - 2011-03-05 19:27 - 00000000 ___HD C:\Users\Everyday\Documents\Outlook Files
2015-08-20 20:50 - 2006-11-02 06:18 - 00000000 ____D C:\Windows\Microsoft.NET
2015-08-20 16:52 - 2012-02-04 21:49 - 00000000 ____D C:\Users\wner\Documents\Outlook Files
2015-08-19 11:17 - 2009-03-29 20:08 - 00010752 _____ C:\Users\wner\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-16 17:48 - 2006-11-02 07:47 - 00036864 _____ C:\Windows\system32\umstartup.etl
2015-08-16 08:52 - 2011-07-23 21:02 - 00000000 ____D C:\Windows\Minidump
2015-08-14 12:21 - 2015-07-24 15:25 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-08-14 12:20 - 2006-11-02 07:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2015-08-14 12:02 - 2015-04-20 18:44 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-08-14 11:58 - 2013-08-14 20:55 - 00000000 ____D C:\Windows\system32\MRT
2015-08-14 11:47 - 2006-11-02 05:24 - 129304528 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-08-14 11:38 - 2006-11-02 05:23 - 00000254 _____ C:\Windows\win.ini
2015-08-13 08:30 - 2008-08-18 13:15 - 00000000 ____D C:\Program Files\Google
2015-08-13 07:55 - 2008-08-18 13:10 - 00000000 ____D C:\Program Files\Java
2015-08-13 07:45 - 2011-05-04 20:52 - 00000000 ____D C:\Program Files\Coupons
2015-08-13 07:45 - 2009-03-27 22:48 - 00000000 ____D C:\Users\wner\AppData\Local\Google
2015-08-13 07:45 - 2008-08-18 13:17 - 00000000 ___HD C:\ProgramData\Google
2015-08-12 17:28 - 2011-03-07 20:16 - 00000000 ___HD C:\ProgramData\McAfee
2015-08-11 12:50 - 2015-05-24 13:56 - 00000000 ____D C:\Users\Everyday\AppData\Local\Garmin_Ltd._or_its_subsid
2015-08-11 12:49 - 2011-11-17 20:57 - 00000000 ____D C:\Users\Everyday\AppData\Roaming\Garmin
2015-08-11 12:47 - 2013-05-25 08:47 - 00000000 ____D C:\ProgramData\Package Cache
2015-08-11 12:46 - 2011-11-16 22:47 - 00000000 ____D C:\Program Files\Garmin
2015-08-10 15:59 - 2013-09-15 22:00 - 00044551 _____ C:\Users\Everyday\Desktop\2013 MEDICAL EXPENSES.xlsx
2015-08-09 17:43 - 2013-09-15 13:07 - 00000000 ____D C:\Users\Everyday\Desktop\PHOTOS FOLDER
2015-08-07 17:05 - 2015-07-01 14:37 - 00000393 _____ C:\Users\wner\Desktop\BIOS Launcher.lnk
2015-08-06 13:56 - 2015-07-25 21:04 - 00014217 _____ C:\Users\wner\Desktop\attach.txt
2015-08-06 13:54 - 2015-07-25 21:04 - 00023520 _____ C:\Users\wner\Desktop\dds.txt
2015-07-31 19:06 - 2012-04-12 20:11 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-07-31 19:06 - 2011-05-15 08:19 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-07-29 06:15 - 2014-04-05 07:54 - 00000000 ____D C:\Windows\pss
2015-07-28 19:09 - 2015-03-03 15:59 - 00000815 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-07-28 19:09 - 2009-05-01 13:17 - 00000000 ____D C:\Program Files\CCleaner

==================== Files in the root of some directories =======

2002-03-11 03:45 - 2002-03-11 03:45 - 1708856 _____ (Microsoft Corporation) C:\Program Files\instmsia.exe
2002-03-11 04:06 - 2002-03-11 04:06 - 1822520 _____ (Microsoft Corporation) C:\Program Files\instmsiw.exe
2009-01-21 11:21 - 2009-01-21 11:21 - 128611035 _____ () C:\Program Files\openofficeorg1.cab
2009-01-21 11:14 - 2009-01-21 11:14 - 9780224 _____ () C:\Program Files\openofficeorg30.msi
2008-12-17 05:17 - 2008-12-17 05:17 - 0426776 _____ () C:\Program Files\setup.exe
2009-01-21 11:14 - 2009-01-21 11:14 - 0000336 _____ () C:\Program Files\setup.ini
2009-03-29 20:08 - 2015-08-19 11:17 - 0010752 _____ () C:\Users\wner\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-06-23 19:02 - 2012-06-23 19:02 - 2440206 _____ () C:\Users\wner\AppData\Local\[j0003]-[p02].bmp
2013-02-09 23:40 - 2013-02-09 23:40 - 2250054 _____ () C:\ProgramData\1.bmp
2013-02-09 23:40 - 2013-02-09 23:40 - 0350795 _____ () C:\ProgramData\1.jpg
2010-07-14 20:54 - 2010-07-14 20:54 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2011-05-04 20:24 - 2011-05-04 22:24 - 0002187 _____ () C:\ProgramData\hpzinstall.log
2012-03-18 17:17 - 2015-01-28 16:41 - 0001053 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc
2009-03-27 22:51 - 2009-03-27 22:51 - 0005115 _____ () C:\ProgramData\N360BUOptions.ini
2012-10-28 21:33 - 2012-10-28 21:33 - 0097639 _____ () C:\ProgramData\yofnqfevmbmrfkb
ZeroAccess:
C:\Users\Everyday\AppData\Local\Google\Desktop\Install

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-08-27 07:18

==================== End of FRST.txt ============================



Addition text -
Additional scan result of Farbar Recovery Scan Tool (x86) Version:25-08-2015 02
Ran by wner (2015-08-27 07:23:46)
Running from C:\Users\wner\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2378769042-2310627262-2564490496-500 - Administrator - Disabled)
Everyday (S-1-5-21-2378769042-2310627262-2564490496-1001 - Limited - Enabled) => C:\Users\Everyday
Guest (S-1-5-21-2378769042-2310627262-2564490496-501 - Limited - Disabled)
wner (S-1-5-21-2378769042-2310627262-2564490496-1000 - Administrator - Enabled) => C:\Users\wner

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Disabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}
FW: McAfee Firewall (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
7-Zip 9.20 (HKLM\...\7-Zip) (Version: - )
ABBYY FineReader 5.0 Sprint (HKLM\...\{D1696920-9794-4BBC-8A30-7A88763DE5A2}) (Version: 5.0.0.3412 - ABBYY Software House)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 17.0.0.144 - Adobe Systems Incorporated)
Adobe Color Common Settings (HKLM\...\Adobe_6c8e2cb4fd241c55406016127a6ab2e) (Version: 1.0.1 - Adobe Systems Incorporated)
Adobe Community Help (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Creative Suite 5 Master Collection (HKLM\...\{FBB02B04-C034-4382-A3F6-57416E2752C4}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe ExtendScript Toolkit 2 (HKLM\...\Adobe_3e054d2218e7aa282c2369d939e58ff) (Version: 2.0.2 - Adobe Systems Incorporated)
Adobe Flash Player 18 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 18.0.0.203 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated)
Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop 7.0 (HKLM\...\Adobe Photoshop 7.0) (Version: 7.0 - Adobe Systems, Inc.)
Adobe Photoshop Elements 5.0 (HKLM\...\Adobe Photoshop Elements 5) (Version: 5.0 - Adobe Systems Inc.)
Adobe Reader XI (11.0.10) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
ALZip (HKLM\...\ALZip_is1) (Version: 7.0 beta1 - ESTsoft Corp.)
Amazon Links (HKLM\...\{224821ED-CADA-4A8A-AC8D-3734CC0F0931}) (Version: 1.0 - TOSHIBA Corporation)
AnswerWorks 4.0 Runtime - English (HKLM\...\{7DD9A065-2C86-4A9F-A5FF-796EC1B99DCA}) (Version: 4.0.101 - Vantage Software Technologies)
ANT Drivers Installer x86 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM\...\{21ECABC3-40B2-42DF-8E21-ACF3A4D0D95A}) (Version: 3.0.5 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{941B4CE7-3F5D-443E-A8B7-56A420D2EAFD}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft PhotoImpression (HKLM\...\{6C5D7191-140A-11D6-B5A0-0050DA208A93}) (Version: - )
Audacity 2.0.6 (HKLM\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BufferChm (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Camera Assistant Software for Toshiba (HKLM\...\{37C866E4-AA67-4725-9E95-A39968DD7960}) (Version: 1.7.193.0508L - Chicony Electronics Co.,Ltd.)
Canon DIGITAL CAMERA Solution Disk Software Guide (HKLM\...\Software Guide) (Version: 1.0.1.2 - Canon Inc.)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM\...\CANON iMAGE GATEWAY Task) (Version: 1.7.0.4 - Canon Inc.)
Canon Internet Library for ZoomBrowser EX (HKLM\...\Canon Internet Library for ZoomBrowser EX) (Version: 1.6.3.9 - Canon Inc.)
Canon MOV Decoder (HKLM\...\Canon MOV Decoder) (Version: 1.3.2.15 - Canon Inc.)
Canon MOV Encoder (HKLM\...\Canon MOV Encoder) (Version: 1.1.0.18 - Canon Inc.)
Canon MovieEdit Task for ZoomBrowser EX (HKLM\...\MovieEditTask) (Version: 3.2.0.34 - Canon Inc.)
Canon Personal Printing Guide (HKLM\...\Personal Printing Guide) (Version: 1.0.0.1 - Canon Inc.)
Canon PhotoRecord (HKLM\...\PhotoRecord) (Version: - )
Canon PowerShot SX20 IS Camera User Guide (HKLM\...\CameraUserGuide-PSSX20IS) (Version: 1.0.1.2 - Canon Inc.)
Canon Utilities CameraWindow (HKLM\...\CameraWindowLauncher) (Version: 7.3.0.4 - Canon Inc.)
Canon Utilities CameraWindow DC (HKLM\...\CameraWindowDC) (Version: 7.4.1.10 - Canon Inc.)
Canon Utilities CameraWindow DC 8 (HKLM\...\CameraWindowDC8) (Version: 8.0.0.19 - Canon Inc.)
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX (HKLM\...\CameraWindowDVC6) (Version: 6.5.0.3 - Canon Inc.)
Canon Utilities MyCamera (HKLM\...\MyCamera) (Version: 7.3.0.5 - Canon Inc.)
Canon Utilities MyCamera DC (HKLM\...\MyCameraDC) (Version: 7.2.1.6 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)
Canon Utilities RAW Image Converter (HKLM\...\Canon Utilities RAW Image Converter) (Version: - )
Canon Utilities RemoteCapture 2.2 (HKLM\...\RemoteCapture) (Version: - )
Canon Utilities RemoteCapture Task for ZoomBrowser EX (HKLM\...\RemoteCaptureTask) (Version: 1.8.0.1 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM\...\ZoomBrowser EX) (Version: 6.4.0.7 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM\...\ZoomBrowser EX Memory Card Utility) (Version: 1.2.2.11 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)
CD/DVD Drive Acoustic Silencer (HKLM\...\{9FE35071-CAB2-4E79-93E7-BFC6A2DC5C5D}) (Version: 2.02.03 - TOSHIBA)
CDDRV_Installer (Version: 4.60 - Logitech) Hidden
Copy (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Corel Painter Essentials 3 (HKLM\...\_{0C180787-F8C8-42FD-A9D3-689BA44BEAAF}) (Version: - Corel Corporation)
Corel Painter Essentials 3 (Version: 3.2 - Corel Corporation) Hidden
Destinations (Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (Version: 140.0.212.000 - Hewlett-Packard) Hidden
digestIT 2004 (HKLM\...\{5B119660-1788-11D8-8EB8-0050BF643EE7}) (Version: 3.0.2004 - Kenneth Ballard)
DJ_AIO_06_F4500_SW_MIN (Version: 140.0.690.000 - Hewlett-Packard) Hidden
DVD MovieFactory for TOSHIBA (HKLM\...\{F214EAA4-A069-4BAF-9DA4-4DB8BEEDE485}) (Version: 5.51 - Ulead Systems, Inc.)
Elevated Installer (Version: 4.1.5.0 - Garmin Ltd or its subsidiaries) Hidden
EPSON Copy Utility (HKLM\...\{B69CC1A5-0404-11D6-ABCB-005004C21D30}) (Version: - )
Epson Easy Photo Print 2 (HKLM\...\{DEDB47A3-C988-4A43-A645-E2CEA571E680}) (Version: 2.0.0.0 - SEIKO EPSON CORPORATION)
EPSON NX100 Series Printer Uninstall (HKLM\...\EPSON NX100 Series) (Version: - SEIKO EPSON Corporation)
EPSON PERF 1670 Guide (HKLM\...\Silent Package Run-Time Sample) (Version: - )
EPSON Photo Print (HKLM\...\{9F9F3775-7E5B-4028-B5E5-DA1C042517A8}) (Version: - )
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - )
EPSON Smart Panel (HKLM\...\{6C11D561-620B-47DA-A693-4C597F3CDF40}) (Version: - )
EZ Vinyl/Tape Converter 10 by Ion Audio (HKLM\...\EZ Vinyl/Tape Converter by Ion Audio_is1) (Version: - Ion Audio LLC)
F4500 (Version: 140.0.690.000 - Hewlett-Packard) Hidden
FastStone Image Viewer 5.3 (HKLM\...\FastStone Image Viewer) (Version: 5.3 - FastStone Soft)
Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 5.3.1.606 - Foxit Corporation)
Garmin Express (HKLM\...\{42f02a91-da9c-48e1-8dc5-37f4449db969}) (Version: 4.1.5.0 - Garmin Ltd or its subsidiaries)
Garmin Express (Version: 4.1.5.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (Version: 4.1.5.0 - Garmin Ltd or its subsidiaries) Hidden
Geek Squad 24 Hour Computer Support (HKLM\...\{F204E2B3-225D-419D-A5DE-3F97E8ADDD1B}) (Version: 2.1.322 - LogMeIn, Inc.)
GIMP (HKLM\...\{46BBA993-5554-42E7-8042-E760D92A580A}) (Version: 2.6.11 - Spencer Kimball)
GIMP 2.6.6 (HKLM\...\WinGimp-2.0_is1) (Version: - )
Google Desktop (HKLM\...\Google Desktop) (Version: 5.9.1005.12335 - Google)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.28.1 - Google Inc.) Hidden
GoPro Studio 2.0.1 (HKLM\...\GoPro Studio) (Version: 2.0.1 - WoodmanLabs Inc. d.b.a. GoPro)
GPBaseService2 (Version: 140.0.211.000 - Hewlett-Packard) Hidden
Hotspot Shield 3.42 (HKLM\...\HotspotShield) (Version: 3.42 - AnchorFree Inc.)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet F4500 All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{0AFFEA39-60AF-4C4F-BB47-4A1F7CB12129}) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.2024 - HP Photo Creations Powered by RocketLife)
HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (Version: 1.00.0000 - Microsoft) Hidden
HPPhotoGadget (Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 140.0.212.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 140.0.211.000 - Hewlett-Packard) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{26921B2E-3E62-47F9-A514-1FC4A83BD738}) (Version: 12.00.0004 - Intel(R) Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
iTunes (HKLM\...\{0A37EE62-9A58-420D-90CC-4E52153112EE}) (Version: 11.3.0.54 - Apple Inc.)
KhalInstallWrapper (Version: 4.60.122 - Logitech) Hidden
LAME v3.99.3 (for Windows) (HKLM\...\LAME_is1) (Version: - )
Logitech SetPoint (HKLM\...\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}) (Version: 4.60 - Logitech)
Malware Protection Live (HKLM\...\MalwareProtectionLive) (Version: - )
Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MarketResearch (Version: 140.0.212.000 - Hewlett-Packard) Hidden
McAfee SecurityCenter (HKLM\...\MSC) (Version: 14.0.339 - McAfee, Inc.)
McAfee SiteAdvisor (HKLM\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.7.276 - McAfee, Inc.)
McAfee Virtual Technician (HKLM\...\McAfee Virtual Technician) (Version: 7.5.0.3093 - McAfee, Inc.)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Image Composite Editor (HKLM\...\{3D599ADA-65D9-4B51-898F-CE718DEC5DBB}) (Version: 1.4.4 - Microsoft Corporation)
Microsoft Image Composite Editor (HKLM\...\{AA0FB0B5-D853-4F87-9261-A4BC7D503E0D}) (Version: 1.3.5 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 40.0 (x86 en-US) (HKLM\...\Mozilla Firefox 40.0 (x86 en-US)) (Version: 40.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 40.0.0.5697 - Mozilla)
MSXML 4.0 SP2 (KB941833) (HKLM\...\{C523D256-313D-4866-B36A-F3DE528246EF}) (Version: 4.20.9849.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyFreeCodec (HKU\S-1-5-21-2378769042-2310627262-2564490496-1000\...\MyFreeCodec) (Version: - )
Network (Version: 140.0.215.000 - Hewlett-Packard) Hidden
NetZero Internet Access Installer (HKLM\...\{99D518AB-77F2-405B-B52A-18FC22394CF8}) (Version: 1.0.874 - TOSHIBA Corporation)
nik Color Efex Pro 2.0 GE (HKLM\...\nik Color Efex Pro 2.0 GE) (Version: - )
NTI Shadow (HKLM\...\InstallShield_{81DCEC2B-E069-4985-978B-3230292AB744}) (Version: 3.7.1.37 - NewTech Infosystems)
NTI Shadow (Version: 3.7.1.37 - NewTech Infosystems) Hidden
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden
PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Presto! BizCard 4.0 Component for Windows CE (HKLM\...\{41B20968-B2E1-49C0-9508-CC1544D568F5}) (Version: - )
Presto! BizCard 4.1 Eng (HKLM\...\Uninstall Presto! BizCard 4.1 Eng) (Version: - )
PxMergeModule (Version: 1.00.0000 - Your Company Name) Hidden
QuickBooks Financial Center (HKLM\...\{890EF3F8-742F-46BD-9E8E-084B3A1F4364}) (Version: 1.10.0000 - Intuit Inc.)
QuickTime 7 (HKLM\...\{627FFC10-CE0A-497F-BA2B-208CAC638010}) (Version: 7.77.80.95 - Apple Inc.)
Realtek 8169 8168 8101E 8102E Ethernet Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5599 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{DC24971E-1946-445D-8A82-CE685433FA7D}) (Version: - Realtek Semiconductor Corp.)
Rosetta Stone audio optimizer (HKLM\...\com.rosettastone.RosettaStoneAudioOptimizer) (Version: 1.0.5 - Rosetta Stone, Ltd)
Rosetta Stone audio optimizer (Version: 1.0.5 - Rosetta Stone, Ltd) Hidden
Rosetta Stone Ltd Services (HKLM\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
Rosetta Stone TOTALe (HKLM\...\{6B6BC189-D606-4BC7-9758-E6C364F76A55}) (Version: 4.5.5.0 - Rosetta Stone, Ltd)
Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.0.13064_2 - Samsung Electronics Co., Ltd.)
Samsung Kies (Version: 2.6.0.13064_2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.14034.12 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (Version: 3.2.14034.12 - Samsung Electronics Co., Ltd.) Hidden
Samsung Story Album Viewer (HKLM\...\InstallShield_{698BBAD8-B116-495D-B879-0F07A533E57F}) (Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.)
Samsung Story Album Viewer (Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.)
Scan (Version: 140.0.80.000 - Hewlett-Packard) Hidden
ScanToWeb (HKLM\...\{EBAE381B-60A6-4863-AA9F-FCAB755BC9E5}) (Version: - )
Secure Online Account Numbers (HKLM\...\{65980EBF-C4B5-4555-823A-94DB7F709E53}) (Version: 2.3.14.0 - Discover)
Secure Online Account Numbers (Version: 2.0.2.0 - Discover) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Shared C Run-time for x86 (Version: 10.0.0 - McAfee) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype Toolbars (HKLM\...\{981029E0-7FC9-4CF3-AB39-6F133621921A}) (Version: 1.0.4051 - Skype Technologies S.A.)
Skype™ 7.4 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
SmartWebPrinting (Version: 140.0.186.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 140.0.213.000 - Hewlett-Packard) Hidden
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - )
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
Status (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 11.2.4.0 - Synaptics)
Toolbox (Version: 140.0.428.000 - Hewlett-Packard) Hidden
TOSHIBA Assist (HKLM\...\{12B3A009-A080-4619-9A2A-C6DB151D8D67}) (Version: 2.01.08 - TOSHIBA)
TOSHIBA ConfigFree (HKLM\...\{0D5D0BEE-FBA9-4928-A50D-6CDFAB827755}) (Version: 7.2.20 - TOSHIBA Corporation)
TOSHIBA Desktop Links (HKLM\...\{E1E56B8A-1AAF-422A-91DB-625059FB9863}) (Version: 1.7 - TOSHIBA Corporation)
TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.0.1.3 - TOSHIBA Corporation)
TOSHIBA DVD PLAYER (HKLM\...\{6C5F3BDC-0A1B-4436-A696-5939629D5C31}) (Version: 1.31.14 - TOSHIBA Corporation)
TOSHIBA Extended Tiles for Windows Mobility Center (HKLM\...\InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}) (Version: 1.01.00 - TOSHIBA Corporation)
TOSHIBA Face Recognition (HKLM\...\InstallShield_{C730E42C-935A-45BB-A0C5-37E5234D111B}) (Version: 2.0.2.32 - TOSHIBA)
TOSHIBA Hardware Setup (HKLM\...\{2883F6F5-0509-43F3-868C-D50330DD9DD3}) (Version: 2.00.08 - )
TOSHIBA Recovery Disc Creator (HKLM\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.0.0.2 - TOSHIBA Corporation)
Toshiba Registration (HKLM\...\{C53D16CC-E56F-47B8-906E-70AAF8EABB4F}) (Version: 1.00.0000 - Datalode Inc.)
TOSHIBA Service Station (HKLM\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 1.1.14 - TOSHIBA)
TOSHIBA Software Modem (HKLM\...\TOSHIBA Software Modem) (Version: 2.1.77 (SM2177ALD04) - Agere Systems)
TOSHIBA Speech System Applications (HKLM\...\{EE033C1F-443E-41EC-A0E2-559B539A4E4D}) (Version: - )
TOSHIBA Speech System SR Engine(U.S.) Version1.0 (HKLM\...\{008D69EB-70FF-46AB-9C75-924620DF191A}) (Version: - )
TOSHIBA Speech System TTS Engine(U.S.) Version1.0 (HKLM\...\{3FBF6F99-8EC6-41B4-8527-0A32241B5496}) (Version: - )
TOSHIBA Supervisor Password (HKLM\...\{4B1E87C3-00DE-4898-8E39-E390AAEF2391}) (Version: 2.00.04 - )
TOSHIBA Value Added Package (HKLM\...\InstallShield_{FEDD27A0-B306-45EF-BF58-B527406B42C8}) (Version: 1.1.24 - TOSHIBA Corporation)
TrayApp (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Turbo Tax Audit Support Center 2.0 (HKLM\...\{E371C150-A9F1-49CE-ACC1-51AEFD01C1D4}_is1) (Version: - Turbo Tax)
TurboTax 2008 (HKLM\...\TurboTax 2008) (Version: - )
TurboTax 2009 (HKLM\...\TurboTax 2009) (Version: - Intuit, Inc)
TurboTax 2010 (HKLM\...\TurboTax 2010) (Version: - Intuit, Inc)
TurboTax 2011 (HKLM\...\TurboTax 2011) (Version: - Intuit, Inc)
TurboTax 2012 (HKLM\...\TurboTax 2012) (Version: 2012.0 - Intuit, Inc)
TurboTax 2013 (HKLM\...\TurboTax 2013) (Version: 2013.0 - Intuit, Inc)
TurboTax 2014 (HKLM\...\TurboTax 2014) (Version: 2014.0 - Intuit, Inc)
TurboTax Deluxe 2007 (HKLM\...\TurboTax Deluxe 2007) (Version: - )
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
WeatherBug® (HKLM\...\WeatherBug®) (Version: 10.0.4.13 - Earth Networks, Inc.)
WebReg (Version: 140.0.212.017 - Hewlett-Packard) Hidden
WildTangent Games (HKLM\...\WildTangent toshiba Master Uninstall) (Version: 1.0.0.62 - WildTangent)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/07/2012 ) (HKLM\...\0B624A43DD66DBF5CF3EDFA9741A364E688062A4) (Version: 03/07/2012 - GoPro)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Windows Media Encoder 9 Series (HKLM\...\Windows Media Encoder 9) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2378769042-2310627262-2564490496-1000_Classes\CLSID\{32C15893-74C0-4478-879B-FE14EB684AB4}\InprocServer32 -> C:\Users\wner\AppData\Local\Microsoft\Windows Sidebar\Gadgets\HPPhoto.gadget\x86\hpqgps01.dll (Hewlett-Packard Co.)
CustomCLSID: HKU\S-1-5-21-2378769042-2310627262-2564490496-1000_Classes\CLSID\{39C26CEE-9070-4B47-9261-6743499AFBF7}\InprocServer32 -> C:\Users\wner\AppData\Local\Microsoft\Windows Sidebar\Gadgets\HPPhoto.gadget\x86\hpqgutil.dll (Hewlett-Packard Co.)
CustomCLSID: HKU\S-1-5-21-2378769042-2310627262-2564490496-1000_Classes\CLSID\{4052D303-74C5-49EA-BC6B-66099C8D4007}\InprocServer32 -> C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll (Google)
CustomCLSID: HKU\S-1-5-21-2378769042-2310627262-2564490496-1000_Classes\CLSID\{9CC1FE07-02F9-49A6-A3F4-63AD8BAE9E49}\InprocServer32 -> C:\Users\wner\AppData\Local\Microsoft\Windows Sidebar\Gadgets\HPPhoto.gadget\x86\hpqgps01.dll (Hewlett-Packard Co.)

==================== Restore Points =========================

20-08-2015 14:08:10 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-07-31 10:27 - 2015-08-13 07:48 - 00000002 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {004666A6-3A68-4B21-933E-FC347F42C0FA} - System32\Tasks\Ad-Aware Update (Daily 1) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {1349FA2E-305F-489A-A842-E5EEB25AFC5B} - System32\Tasks\{29790668-AADA-4F44-A8C3-DEFF4FA45E5F} => Iexplore.exe http://ui.skype.com/ui/0/4.2.0.169.196/ ... tinstaller
Task: {1CB7B358-B0A3-4B76-A48D-074EE04A6086} - System32\Tasks\AdobeAAMUpdater-1.0-wner-PC-wner => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {2A3C9DC4-23D9-4B22-926B-2D4E7E15A694} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-21] (Google Inc.)
Task: {354D6403-6CB3-4D5D-A61F-007DB5DDE3BC} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {357E4B4D-3E42-45BC-9076-CFC8B57BC879} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-31] (Adobe Systems Incorporated)
Task: {4D44F76F-6EE3-4270-9BD7-50FB50A39AE6} - System32\Tasks\{9F127144-4A7A-47F5-9A89-EE45D798E782} => pcalua.exe -a C:\Users\wner\Desktop\OOo_3.0.1_Win32Intel_install_wJRE_en-US.exe -d C:\Users\wner\Desktop
Task: {6FD19260-AF13-4C9B-A5B3-95EEF7A1536B} - System32\Tasks\Ad-Aware Update (Daily 3) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {71693334-A2F0-406B-878C-8D0C93DF96BB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-21] (Google Inc.)
Task: {75722ADA-F24E-4794-995E-D52F8C5E5A2A} - System32\Tasks\Ad-Aware Update (Daily 4) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {7A7A748A-660E-4BBE-A040-0DC14BF08332} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {7BE6D410-2D29-4504-81CA-26BFDC136B68} - System32\Tasks\MotoHelper Initial Update => C:\Users\Everyday\AppData\Local\Motorola\MotoHelper\MotoHelperUpdate.exe [2011-08-08] ()
Task: {7DF32EEB-FE78-4943-B139-C156986B609C} - System32\Tasks\Refresh immunization (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe [2013-09-20] (Safer-Networking Ltd.)
Task: {B1957AFD-7A11-42BF-AEDD-C84180C090CA} - System32\Tasks\GarminUpdaterTask => C:\Program Files\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2015-07-29] ()
Task: {B5644447-79D1-4950-8117-F9DBA4C4C6A5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-07-17] (Piriform Ltd)
Task: {B6B8A3D8-9215-4E0A-A83C-193640CB2185} - System32\Tasks\Scan the system (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe [2013-09-20] (Safer-Networking Ltd.)
Task: {B90A70E9-A50C-46D9-859D-7C2D074A0CAC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {C4F911EE-3042-4FA1-BE7E-C58D04A3831B} - System32\Tasks\MotoHelper MUM => C:\Users\Everyday\AppData\Local\Motorola\MotoHelper\MotoHelperUpdate.exe [2011-08-08] ()
Task: {CAEEC2A5-E8DD-4944-8AA2-D4204D84CD1E} - System32\Tasks\Ad-Aware Update (Daily 2) => C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {D3DE7FD2-CE32-4F91-BA36-A6A304AD4799} - System32\Tasks\MotoHelper Update => C:\Users\Everyday\AppData\Local\Motorola\MotoHelper\MotoHelperUpdate.exe [2011-08-08] ()
Task: {D8073E49-BC86-4571-8BD0-7BBA4461BBF4} - System32\Tasks\MotoHelper Routing => C:\Users\Everyday\AppData\Local\Motorola\MotoHelper\MotoHelperUpdate.exe [2011-08-08] ()
Task: {D9E934F4-5E01-4BE1-8B64-32E1BE8EAF14} - System32\Tasks\GoogleUpdateTaskMachineUA1d00295ac05379c => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-21] (Google Inc.)
Task: {E967BB19-9509-4096-BAC3-5BD19177E2AB} - System32\Tasks\{208B22DE-A66E-465E-926D-0819144C2299} => C:\Program Files\Skype\Phone\Skype.exe [2015-04-17] (Skype Technologies S.A.)
Task: {E9874CD7-7CE3-4439-8B2E-831EEE48410F} - System32\Tasks\AdobeAAMUpdater-1.0-wner-PC-Everyday => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {EBB67B48-BCB7-4031-B1C0-2E50338686A6} - System32\Tasks\Check for updates (Spybot - Search & Destroy) => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe [2013-09-20] (Safer-Networking Ltd.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d00295ac05379c.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe

==================== Loaded Modules (Whitelisted) ==============

2008-04-30 22:13 - 2008-04-30 22:13 - 00200704 _____ () C:\Program Files\Intel\WiFi\bin\IWMSPROV.DLL
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2014-01-12 11:21 - 2013-05-16 11:55 - 00113496 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-01-12 11:21 - 2013-05-16 11:55 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2015-03-24 18:43 - 2015-03-24 18:43 - 00182784 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Commonc65c5a95#\d29bf4134c8df4833a65213d4687d6da\Kies.Common.DeviceServiceLib.Interface.ni.dll
2015-03-24 18:44 - 2015-03-24 18:44 - 14970880 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Theme\592a6a31e27bffd0adeaff6f255f3892\Kies.Theme.ni.dll
2015-05-19 17:58 - 2015-05-19 17:58 - 01811456 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.UI\a0debd24f468e6644f526707e12786b6\Kies.UI.ni.dll
2015-03-24 18:42 - 2015-03-24 18:42 - 00077824 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.MVVM\845b9379476bb91db2881ebaff45255f\Kies.MVVM.ni.dll
2015-03-24 18:44 - 2015-03-24 18:44 - 00233472 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\ASF_cSharpAPI\de6a15348040911b2e63c8dbe3c77275\ASF_cSharpAPI.ni.dll
2014-01-12 11:21 - 2013-05-16 11:55 - 00161112 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Everyday\AppData\Roaming\Tab Separated Values (Windows).EML:OECustomProperty

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7865 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2378769042-2310627262-2564490496-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 68.105.28.11 - 68.105.29.11
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 1) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [{19C0938E-1C2E-4533-9AD7-A953C3FF82AC}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{BD1B69C1-39AA-4AD8-A519-6F120F10F6E5}] => (Allow) LPort=80
FirewallRules: [{5A5D56AE-4530-4235-93D2-A93B8D9EEFDB}] => (Allow) LPort=80
FirewallRules: [{7B74408B-D57D-4772-8C92-52E00AF9BCFB}] => (Allow) LPort=80
FirewallRules: [{6B0D50B8-C952-4638-A7AA-3F9A545EFB4F}] => (Allow) C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdater.exe
FirewallRules: [{3634719C-F014-492B-9F52-40A4E5AEE83D}] => (Allow) C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
FirewallRules: [{944EF5A7-B673-4A87-820F-1DF2AFD770AB}] => (Allow) C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
FirewallRules: [{106399A7-7381-4864-970B-244CFA93831A}] => (Allow) C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
FirewallRules: [{01C8B6A0-79B8-46EE-B013-FEA9D9846466}] => (Allow) C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
FirewallRules: [{6AD54EA6-ED34-4FAE-9A06-44F7355ADE5E}] => (Allow) C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
FirewallRules: [{7666D1E0-322F-4C09-8DEA-670EC9AE154B}] => (Allow) D:\setup\hpznui01.exe
FirewallRules: [{6049D2F0-476F-4209-A08E-EF9BA21E2688}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{CC0B5946-6301-4B44-8ED3-48AD366996C8}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{53E4F203-5F09-42E4-A563-E9C99BE4A808}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{BCFE2178-29FA-46D6-82DD-9B52AED9249F}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{356B82BF-4F35-43C5-9ECD-53CB46D091ED}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe
FirewallRules: [{31AEBB6C-D545-4535-91B8-8A8D45BC91E5}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{6AEA2EE0-0DF7-4F3E-9B2F-6C3776E206D6}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{B84A3BF4-A767-40DE-A9A3-325446735E70}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{C66A8DC8-9213-40A5-8368-ECC1AB1869C5}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{537DEB08-23F4-435B-BB0B-21114FAD7124}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{373391CD-BB0B-4788-B026-54601DC2FA03}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{06EAA5FB-13D4-490C-B8EB-91E2A989DB04}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{28B73284-76C6-436C-B53D-FA9E45E4F224}] => (Allow) C:\Program Files\HP\hp software update\hpwucli.exe
FirewallRules: [{9C542061-31F7-436B-A930-F8183A33461E}] => (Allow) C:\Program Files\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{63AAA427-6977-4C58-854C-C921D1A824F7}] => (Allow) C:\Program Files\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [{5746D586-9286-4E3E-863A-A47CF9F4C9D7}] => (Allow) C:\Program Files\Adobe\Photoshop Elements 5.0\AdobePhotoshopElementsMediaServer.exe
FirewallRules: [{C94A6E40-1F0C-4E88-82A8-4BC22EC6D56F}] => (Allow) C:\Program Files\Adobe\Photoshop Elements 5.0\AdobePhotoshopElementsMediaServer.exe
FirewallRules: [{6EFAEC88-5501-49A8-B8E5-2E4E42866414}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B4FDB5B4-C99D-43B7-8C51-4B38142EE478}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{48DF9926-3D5C-43F0-BB2E-6EAA67A62B11}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{192C5BC2-5696-43B7-A603-9998FDC514E8}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{988DA991-0E8A-43FB-B325-43B4E213EAD8}] => (Allow) C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{CCA0829B-39F0-48C2-8756-410AC0C789BB}] => (Allow) C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{AC6B1AF8-E76F-42A4-B800-117C45EC6C95}] => (Allow) C:\Program Files\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
FirewallRules: [{7CBDB2FA-12CF-4A19-8AA4-AF7AE269D9A8}] => (Allow) C:\Program Files\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
FirewallRules: [{A206957C-5C5D-407B-8E5E-D421226618F8}] => (Allow) C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe
FirewallRules: [{C52F4045-F4C8-41CA-94A2-A3913025AB70}] => (Allow) C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe
FirewallRules: [{5A2AEE03-6E44-4F56-9513-C9A5E45D2964}] => (Allow) C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdater.exe
FirewallRules: [{0599D9FB-907A-43CB-A298-D5C48C6D2E7D}] => (Allow) C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{E09C37DF-9B74-4412-9ABF-5C0935B41184}] => (Allow) C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{5F4CE19D-DE31-4092-BCFE-1DB7F3DACB17}] => (Allow) C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{C7B4436B-8AFF-4C5A-8AA8-B36557E89E63}] => (Allow) C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{B5705AE8-5CA2-46DC-8CD7-F1328BFCE2C8}] => (Allow) C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
FirewallRules: [{5E4561D3-4DD8-4B9E-A853-DAC5C6FA4679}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{DC417696-B38D-4010-A94B-FA5503D60123}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C2C921CC-134C-4669-89F9-733C907D062C}] => (Allow) C:\Users\wner\AppData\Local\Temp\nsqE82.tmp\Installer-10067444.exe
FirewallRules: [{B5587607-07F5-4174-961F-A57747ADBFF2}] => (Allow) C:\Users\wner\AppData\Local\Temp\nsqE82.tmp\Installer-10067444.exe
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot-S&D 2 Tray Icon
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Faulty Device Manager Devices =============

Name: isatap.tu.ok.cox.net
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Tun Miniport Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunmp
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: HP Deskjet F4500
Description: HP Deskjet F4500
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Hewlett-Packard
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Deskjet F4500 series
Description: Deskjet F4500 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart C309a series
Description: Photosmart C309a series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart Prem C310 series
Description: Photosmart Prem C310 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
wfr37
Regular Member
 
Posts: 20
Joined: July 26th, 2015, 8:31 pm

Re: windows vista unresponsive after 10 minutes

Unread postby wfr37 » August 27th, 2015, 8:31 am

Since total characters exceeded limit - here is the balance of the Addition text document -

Name: Officejet 6500 E710n-z
Description: Officejet 6500 E710n-z
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Officejet 6700
Description: Officejet 6700
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/27/2015 07:13:07 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/26/2015 01:24:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/26/2015 01:14:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/26/2015 01:04:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/24/2015 01:47:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/23/2015 04:09:06 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/23/2015 02:46:35 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/23/2015 02:42:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/23/2015 02:42:35 PM) (Source: EventSystem) (EventID: 4609) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/23/2015 02:30:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (08/27/2015 07:13:08 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: giveio

Error: (08/27/2015 07:13:08 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Garmin Device Interaction Service%%1053

Error: (08/27/2015 07:13:08 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: 30000Garmin Device Interaction Service

Error: (08/27/2015 07:12:48 AM) (Source: ipnathlp) (EventID: 30013) (User: )
Description: The DHCP allocator has disabled itself on IP address 192.168.1.102, since the IP address is outside the 192.168.0.0/255.255.255.0 scope from which addresses are being allocated to DHCP clients. To enable the DHCP allocator on this IP address, change the scope to include the IP address, or change the IP address to fall within the scope.

Error: (08/27/2015 07:12:48 AM) (Source: ipnathlp) (EventID: 1233) (User: )
Description: The ICS_IPV6 failed to configure IPv6 stack.

Error: (08/27/2015 07:11:35 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 3:44:18 PM on 8/26/2015 was unexpected.

Error: (08/26/2015 03:30:58 PM) (Source: ipnathlp) (EventID: 30013) (User: )
Description: The DHCP allocator has disabled itself on IP address 192.168.1.102, since the IP address is outside the 192.168.0.0/255.255.255.0 scope from which addresses are being allocated to DHCP clients. To enable the DHCP allocator on this IP address, change the scope to include the IP address, or change the IP address to fall within the scope.

Error: (08/26/2015 01:53:38 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: The DNS proxy agent was unable to allocate 0 bytes of memory. This may indicate that the system is low on virtual memory, or that the memory manager has encountered an internal error.

Error: (08/26/2015 01:38:23 PM) (Source: ipnathlp) (EventID: 31004) (User: )
Description: The DNS proxy agent was unable to allocate 0 bytes of memory. This may indicate that the system is low on virtual memory, or that the memory manager has encountered an internal error.

Error: (08/26/2015 01:28:23 PM) (Source: ipnathlp) (EventID: 30013) (User: )
Description: The DHCP allocator has disabled itself on IP address 192.168.1.102, since the IP address is outside the 192.168.0.0/255.255.255.0 scope from which addresses are being allocated to DHCP clients. To enable the DHCP allocator on this IP address, change the scope to include the IP address, or change the IP address to fall within the scope.


Microsoft Office:
=========================
Error: (08/27/2015 07:13:07 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/26/2015 01:24:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/26/2015 01:14:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/26/2015 01:04:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/24/2015 01:47:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/23/2015 04:09:06 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/23/2015 02:46:35 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/23/2015 02:42:59 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/23/2015 02:42:35 PM) (Source: EventSystem) (EventID: 4609) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (08/23/2015 02:30:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity:
===================================
Date: 2015-08-27 07:22:49.441
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-27 07:22:48.879
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-27 07:22:48.349
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-27 07:22:47.772
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-17 15:01:51.778
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-17 15:01:51.279
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-17 15:01:50.780
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-17 15:01:50.280
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-17 15:01:49.719
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2015-08-17 15:01:49.235
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU T6400 @ 2.00GHz
Percentage of memory in use: 51%
Total physical RAM: 2939.25 MB
Available physical RAM: 1424.59 MB
Total Virtual: 6084.72 MB
Available Virtual: 4601.97 MB

==================== Drives ================================

Drive c: (SQ004816V03) (Fixed) (Total:177.6 GB) (Free:75.09 GB) NTFS ==>[drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 186.3 GB) (Disk ID: 1CF55F92)
Partition 1: (Not Active) - (Size=1.5 GB) - (Type=27)
Partition 2: (Active) - (Size=177.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=7.2 GB) - (Type=17)

==================== End of Addition.txt ============================
wfr37
Regular Member
 
Posts: 20
Joined: July 26th, 2015, 8:31 pm
Advertisement
Register to Remove

PreviousNext

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 295 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware