WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. Join 93084 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!

Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Virus/Spyware continue to check my proxy [Solved]

Started by Sbabalola , Sep 23 2014 02:01 PM

LAN Proxy Automatically check

This topic is locked

15 replies to this topic

#1 Sbabalola

New Member

Authentic Member
9 posts

Posted 23 September 2014 - 02:01 PM

This is my first post, so bear with me! I have been having issues with my internet connection, I finally found that the proxy server box was checked, unchecking it solved the issue but it would get checked again on its own randomly, I always delete the Deafult Connections in the regitry before i can use it but always coming back after some minutes. Ran various scans to no avail, I have ran CCleaner, DDS and several antivirus software but problem still persist. this is affecting my connectivity, please kindly assist me. I am using Windows 7 32 Bits.

I have attached the Logs from DDS when i ran it.

Attached Files

attach.txt 24.27KB 729 downloads
dds.txt 29.09KB 335 downloads

Advertisements

Register to Remove

#2 ----------------

SuperMember

Authentic Member
1,095 posts

Posted 24 September 2014 - 06:18 AM

Hi there,
my name is Marius and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
Perform everything in the correct order. Sometimes one step requires the previous one.
If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

Important: To help me reviewing your logs, please post them in code boxes. You can create them by clicking on the <>-symbol on top of the reply window.

Scan with Gmer rootkit scanner

Please download Gmer from here by clicking on the "Download EXE" Button.

Double click on the randomly named GMER.exe. If asked to allow gmer.sys driver to load, please consent.
If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO.
In the right panel, you will see several boxes that have been checked. Uncheck the following ...
- Sections
- IAT/EAT
- Show All ( should be unchecked by default )
Leave everything else as it is.
Close all other running programs as well as your Browser.
Click the Scan button & wait for it to finish.
Once done click on the Save.. button, and in the File name area, type in "ark.txt" or it will save as a .log file which cannot be uploaded to your post.
Save it where you can easily find it, such as your desktop.
Please post the content of the ark.txt here.

**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries

Scan with TDSS-Killer

Please read and follow these instructions carefully. We do not want it to fix anything yet (if found), we need to see a report first.

Download TDSSKiller.zip and extract to your desktop

Execute TDSSKiller.exe by doubleclicking on it.
Press Start Scan
If Malicious objects are found, do NOT select Copy to quarantine. Change the action to Skip, and save the log.
Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt

Please attach this file to your next reply.

Proud Member of UNITE & TB

#3 Sbabalola

New Member

Authentic Member
9 posts

Posted 24 September 2014 - 11:37 AM

Thank you for your response. below is the log after scanning my computer.

GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2014-09-24 18:14:43
Windows 6.1.7601 Service Pack 1 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 ST950042 rev.D005 465.76GB
Running: vsgjzjdj.exe; Driver: C:\Users\SBABAL~1\AppData\Local\Temp\uxldrfod.sys

---- Registry - GMER 2.1 ----

Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\d0df9a3eb33b
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@e0cb1da32e43                         0xAF 0xB7 0x68 0xEB ...
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@cc55ada1740d                         0x28 0x53 0x68 0x01 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@406f2a70d19f                         0x77 0x34 0x72 0xF6 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@2ca8355164a4                         0xAF 0xB5 0x37 0x05 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@406f2af53f01                         0x90 0x94 0x92 0x08 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@78521ac6db4c                         0x35 0x3C 0x87 0xCB ...
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@50c971f1236a                         0xB2 0xB3 0xAB 0x38 ...
Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@c488e546ad42                         0x78 0xB4 0xF4 0xB8 ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\d0df9a3eb33b (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@e0cb1da32e43                             0xAF 0xB7 0x68 0xEB ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@cc55ada1740d                             0x28 0x53 0x68 0x01 ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@406f2a70d19f                             0x77 0x34 0x72 0xF6 ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@2ca8355164a4                             0xAF 0xB5 0x37 0x05 ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@406f2af53f01                             0x90 0x94 0x92 0x08 ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@78521ac6db4c                             0x35 0x3C 0x87 0xCB ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@50c971f1236a                             0xB2 0xB3 0xAB 0x38 ...
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\d0df9a3eb33b@c488e546ad42                             0x78 0xB4 0xF4 0xB8 ...
Reg HKLM\SOFTWARE\Microsoft\Windows Search\Gather\Windows\SystemIndex@LazyCheckPointUpdateInterval                   86400
Reg HKCU\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{CCF7A822-4F04-D35C-3967-42F45735C449}

---- EOF - GMER 2.1 ----

TDSSKILLER LOG

#4 Sbabalola

New Member

Authentic Member
9 posts

Posted 24 September 2014 - 11:37 AM

18:29:18.0439 0x1c08 TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
18:29:26.0476 0x1c08 ============================================================
18:29:26.0476 0x1c08 Current date / time: 2014/09/24 18:29:26.0476
18:29:26.0476 0x1c08 SystemInfo:
18:29:26.0476 0x1c08
18:29:26.0476 0x1c08 OS Version: 6.1.7601 ServicePack: 1.0
18:29:26.0476 0x1c08 Product type: Workstation
18:29:26.0476 0x1c08 ComputerName: LOSLAP08268
18:29:26.0477 0x1c08 UserName: sbabalola
18:29:26.0477 0x1c08 Windows directory: C:\Windows
18:29:26.0477 0x1c08 System windows directory: C:\Windows
18:29:26.0477 0x1c08 Processor architecture: Intel x86
18:29:26.0477 0x1c08 Number of processors: 4
18:29:26.0477 0x1c08 Page size: 0x1000
18:29:26.0477 0x1c08 Boot type: Normal boot
18:29:26.0477 0x1c08 ============================================================
18:29:29.0035 0x1c08 KLMD registered as C:\Windows\system32\drivers\96300444.sys
18:29:29.0901 0x1c08 System UUID: {1E4A0719-E09D-0D78-794D-1025931C1E4A}
18:29:30.0331 0x1c08 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
18:29:30.0341 0x1c08 ============================================================
18:29:30.0341 0x1c08 \Device\Harddisk0\DR0:
18:29:30.0342 0x1c08 MBR partitions:
18:29:30.0342 0x1c08 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
18:29:30.0342 0x1c08 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
18:29:30.0342 0x1c08 ============================================================
18:29:30.0370 0x1c08 C: <-> \Device\Harddisk0\DR0\Partition2
18:29:30.0372 0x1c08 ============================================================
18:29:30.0372 0x1c08 Initialize success
18:29:30.0372 0x1c08 ============================================================
18:29:34.0230 0x186c ============================================================
18:29:34.0230 0x186c Scan started
18:29:34.0230 0x186c Mode: Manual;
18:29:34.0230 0x186c ============================================================
18:29:34.0230 0x186c KSN ping started
18:29:37.0135 0x186c KSN ping finished: true
18:29:38.0565 0x186c ================ Scan system memory ========================
18:29:38.0566 0x186c System memory - ok
18:29:38.0568 0x186c ================ Scan services =============================
18:29:38.0737 0x186c [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
18:29:38.0759 0x186c 1394ohci - ok
18:29:38.0838 0x186c [ EDC50031D6AB9180B3B3BD1C547C7D0A, E9AB4DDF6CF64974C5DE217BCABD232A9612621527B484E1FC7B4317A49FBB05 ] Acceler         C:\Windows\system32\DRIVERS\accelern.sys
18:29:38.0844 0x186c Acceler - ok
18:29:38.0877 0x186c [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
18:29:38.0901 0x186c ACPI - ok
18:29:38.0936 0x186c [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
18:29:38.0939 0x186c AcpiPmi - ok
18:29:39.0115 0x186c [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
18:29:39.0121 0x186c AdobeARMservice - ok
18:29:39.0200 0x186c [ FBB312C9DA3863673EC18F4AE4101778, 4E9AAE7C700E485C17FDFCC9100A79784673B006D00D4D4CE8F1DB617D25C864 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:29:39.0223 0x186c AdobeFlashPlayerUpdateSvc - ok
18:29:39.0282 0x186c [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
18:29:39.0315 0x186c adp94xx - ok
18:29:39.0352 0x186c [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\drivers\adpahci.sys
18:29:39.0375 0x186c adpahci - ok
18:29:39.0396 0x186c [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\drivers\adpu320.sys
18:29:39.0406 0x186c adpu320 - ok
18:29:39.0434 0x186c [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
18:29:39.0439 0x186c AeLookupSvc - ok
18:29:39.0495 0x186c [ 827DBC22C96EECF6D36A13162FABAFD3, EBBC04A6AD3BC83E3791569C1120BBBB59AF70512FA2CEB6A8BA2A257F3F6C32 ] AESTFilters     C:\Program Files\IDT\WDM\aestsrv.exe
18:29:39.0501 0x186c AESTFilters - ok
18:29:39.0575 0x186c [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] AFD             C:\Windows\system32\drivers\afd.sys
18:29:39.0608 0x186c AFD - ok
18:29:39.0724 0x186c [ B29BC445561F1AC7B1DAF67AF954C36B, F7014CD522CCEB2A87AF4CF08970B29F261D32E8E0FFD19206405976E6DEC40D ] AffinegyService C:\Program Files\Belkin\Router Setup and Monitor\BelkinService.exe
18:29:39.0776 0x186c AffinegyService - ok
18:29:39.0789 0x186c [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
18:29:39.0794 0x186c agp440 - ok
18:29:39.0834 0x186c [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
18:29:39.0841 0x186c aic78xx - ok
18:29:39.0873 0x186c [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
18:29:39.0880 0x186c ALG - ok
18:29:39.0934 0x186c [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
18:29:39.0937 0x186c aliide - ok
18:29:39.0954 0x186c [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
18:29:39.0960 0x186c amdagp - ok
18:29:39.0973 0x186c [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
18:29:39.0976 0x186c amdide - ok
18:29:40.0000 0x186c [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
18:29:40.0006 0x186c AmdK8 - ok
18:29:40.0056 0x186c [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
18:29:40.0062 0x186c AmdPPM - ok
18:29:40.0112 0x186c [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
18:29:40.0119 0x186c amdsata - ok
18:29:40.0145 0x186c [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
18:29:40.0167 0x186c amdsbs - ok
18:29:40.0180 0x186c [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
18:29:40.0184 0x186c amdxata - ok
18:29:40.0210 0x186c [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID           C:\Windows\system32\drivers\appid.sys
18:29:40.0216 0x186c AppID - ok
18:29:40.0232 0x186c [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc        C:\Windows\System32\appidsvc.dll
18:29:40.0237 0x186c AppIDSvc - ok
18:29:40.0292 0x186c [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo         C:\Windows\System32\appinfo.dll
18:29:40.0297 0x186c Appinfo - ok
18:29:40.0400 0x186c [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:29:40.0405 0x186c Apple Mobile Device - ok
18:29:40.0441 0x186c [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
18:29:40.0458 0x186c AppMgmt - ok
18:29:40.0484 0x186c [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\drivers\arc.sys
18:29:40.0491 0x186c arc - ok
18:29:40.0510 0x186c [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
18:29:40.0518 0x186c arcsas - ok
18:29:40.0545 0x186c [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
18:29:40.0548 0x186c AsyncMac - ok
18:29:40.0601 0x186c [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
18:29:40.0605 0x186c atapi - ok
18:29:40.0657 0x186c [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:29:40.0699 0x186c AudioEndpointBuilder - ok
18:29:40.0747 0x186c [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv        C:\Windows\System32\Audiosrv.dll
18:29:40.0767 0x186c Audiosrv - ok
18:29:40.0777 0x186c [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
18:29:40.0782 0x186c AxInstSV - ok
18:29:40.0824 0x186c [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\drivers\bxvbdx.sys
18:29:40.0850 0x186c b06bdrv - ok
18:29:40.0876 0x186c [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
18:29:40.0893 0x186c b57nd60x - ok
18:29:41.0251 0x186c [ 9E209171C51B1D750F53777253B80E81, 8DC30F96A4334EFDA5A4567D4AC2AF7ACD686D3C2967335B66AEC429398B1AB6 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl6.sys
18:29:41.0427 0x186c BCM43XX - ok
18:29:41.0460 0x186c [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
18:29:41.0463 0x186c BDESVC - ok
18:29:41.0490 0x186c [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
18:29:41.0492 0x186c Beep - ok
18:29:41.0531 0x186c [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
18:29:41.0556 0x186c BFE - ok
18:29:41.0593 0x186c [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\System32\qmgr.dll
18:29:41.0627 0x186c BITS - ok
18:29:41.0758 0x186c [ 64B487DF3BBBE47DBBCE4B8CAA8937CC, 4209898876D27E2B3B1ECB40628E68346B2CC7375D4985D39E4B1C51E3B0ED20 ] BlackBerry Device Manager C:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
18:29:41.0786 0x186c BlackBerry Device Manager - ok
18:29:41.0809 0x186c [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
18:29:41.0811 0x186c blbdrive - ok
18:29:41.0910 0x186c [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:29:41.0944 0x186c Bonjour Service - ok
18:29:41.0993 0x186c [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:29:42.0000 0x186c bowser - ok
18:29:42.0011 0x186c [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
18:29:42.0014 0x186c BrFiltLo - ok
18:29:42.0036 0x186c [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
18:29:42.0038 0x186c BrFiltUp - ok
18:29:42.0089 0x186c [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser         C:\Windows\System32\browser.dll
18:29:42.0100 0x186c Browser - ok
18:29:42.0150 0x186c [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
18:29:42.0178 0x186c Brserid - ok
18:29:42.0202 0x186c [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
18:29:42.0208 0x186c BrSerWdm - ok
18:29:42.0230 0x186c [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
18:29:42.0233 0x186c BrUsbMdm - ok
18:29:42.0244 0x186c [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
18:29:42.0247 0x186c BrUsbSer - ok
18:29:42.0304 0x186c [ 2865A5C8E98C70C605F417908CEBB3A4, B1C5AC228BD7072AF8668C009C6CDC13EE9FCB9481F57524300F37C40BF1E935 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
18:29:42.0309 0x186c BthEnum - ok
18:29:42.0327 0x186c [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
18:29:42.0333 0x186c BTHMODEM - ok
18:29:42.0370 0x186c [ AD1872E5829E8A2C3B5B4B641C3EAB0E, 8C2DBCAC08DDB41E2B44E257C55FA2D0272959B308EFF9EAF5FF9AE1E4A0AA39 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
18:29:42.0379 0x186c BthPan - ok
18:29:42.0457 0x186c [ 1153DE2E4F5941E10C399CB5592F78A1, 2B88AF246D62F72FA9F5B921B0375AE59A0F263672472D5EC9FDB5CA5EF51C31 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
18:29:42.0491 0x186c BTHPORT - ok
18:29:42.0514 0x186c [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
18:29:42.0518 0x186c bthserv - ok
18:29:42.0536 0x186c [ C81E9413A25A439F436B1D4B6A0CF9E9, A4C290163207AED22C70C7F90B28F6FC24892889643D60D915059405AC5A4A72 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
18:29:42.0540 0x186c BTHUSB - ok
18:29:42.0599 0x186c [ E4F2FF5B6BEFE0872B5A4098EB5CACA9, 370C2775A4E11C0C226BA571F7D0F804032FC310A01D721B2CDE0DDA98FB9AE3 ] BTWAMPFL        C:\Windows\system32\DRIVERS\btwampfl.sys
18:29:42.0625 0x186c BTWAMPFL - ok
18:29:42.0672 0x186c [ C30935C27EB451586143B79B7DAD590F, 4FFF58D1A05C5C0D97CF988341F8674A6F62EF1DA88216AA78B2DD3623ABF451 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
18:29:42.0679 0x186c btwaudio - ok
18:29:42.0705 0x186c [ 9ABEA4DC976E3F47DA2D4B169719CBAA, E7A45EBD4EF1E963CD4306AD56885F5C854B33F708141B920077D3B49291E9E3 ] btwavdt         C:\Windows\system32\DRIVERS\btwavdt.sys
18:29:42.0713 0x186c btwavdt - ok
18:29:42.0767 0x186c [ 7CAD1FF07B6AED945A34375FB1EF01F8, 66B8B6213651738E67F6AB62763D397172092AD52B144555ED9531F1394DD779 ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
18:29:42.0800 0x186c btwdins - ok
18:29:42.0813 0x186c [ DE53089F0678CB5F0AFEB867ACB0FB05, 62AE8B22A96B8D22A5A843C855956423BF2281339C2D921A4650F318D6AEA783 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
18:29:42.0816 0x186c btwl2cap - ok
18:29:42.0824 0x186c [ 1E5468447E4D18FBEA5F01267D6495A5, 2ED322C528291D54410D2AAAC693938EEFCE1C33F6923F14902B61C6D038C48A ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
18:29:42.0826 0x186c btwrchid - ok
18:29:43.0108 0x186c [ 1F79342D9EB530A48742F651E570983A, 99E0B613C23FA8591E248DFA6FF2D3EE19E262BE6E070A0E43E256B69687017F ] c2cautoupdatesvc C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
18:29:43.0165 0x186c c2cautoupdatesvc - ok
18:29:43.0277 0x186c [ E4938E0A376CF0B9D989EE5C0A146891, 9DF6AB5781CD60862D9664CA9A8AF0696A1FB6D09D804CD8DE9630F40DE59E90 ] c2cpnrsvc       C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
18:29:43.0351 0x186c c2cpnrsvc - ok
18:29:43.0445 0x186c [ ED5411A69C5BAC78D245C893AF64352A, B7AA6DAE8AE4A6C541C36AD2B90DF3F6AC8F0160E9EE5BA8AD0D776BD5962680 ] cbVSCService    C:\Program Files\Cobian Backup 10\cbVSCService.exe
18:29:43.0451 0x186c cbVSCService - ok
18:29:43.0475 0x186c [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:29:43.0482 0x186c cdfs - ok
18:29:43.0525 0x186c [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
18:29:43.0532 0x186c cdrom - ok
18:29:43.0564 0x186c [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
18:29:43.0570 0x186c CertPropSvc - ok
18:29:43.0623 0x186c [ EBC0F54CCB09CBB94752826D84B69FC4, 49EFEA7E045BE0645575FA45E8A5519190D71384AEAD7D70C268D72995AFCD1E ] CipcCdp         C:\Windows\system32\DRIVERS\CipcCdp.sys
18:29:43.0627 0x186c CipcCdp - ok
18:29:43.0636 0x186c [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\drivers\circlass.sys
18:29:43.0640 0x186c circlass - ok
18:29:43.0665 0x186c [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS            C:\Windows\system32\CLFS.sys
18:29:43.0687 0x186c CLFS - ok
18:29:43.0756 0x186c [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:29:43.0763 0x186c clr_optimization_v2.0.50727_32 - ok
18:29:43.0870 0x186c [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:29:43.0920 0x186c clr_optimization_v4.0.30319_32 - ok
18:29:43.0945 0x186c [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
18:29:43.0948 0x186c CmBatt - ok
18:29:43.0993 0x186c [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
18:29:43.0996 0x186c cmdide - ok
18:29:44.0070 0x186c [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG             C:\Windows\system32\Drivers\cng.sys
18:29:44.0096 0x186c CNG - ok
18:29:44.0123 0x186c [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
18:29:44.0125 0x186c Compbatt - ok
18:29:44.0152 0x186c [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
18:29:44.0155 0x186c CompositeBus - ok
18:29:44.0160 0x186c COMSysApp - ok
18:29:44.0176 0x186c [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
18:29:44.0178 0x186c crcdisk - ok
18:29:44.0262 0x186c [ 45162D4BBBB000A28B8AEDE8DE1B70E0, 4C21A2BCB928C09EB7F71854C1A57001A0BA5B7871EE9A845D3C184B3DD4014A ] Credential Vault Host Control Service C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
18:29:44.0354 0x186c Credential Vault Host Control Service - ok
18:29:44.0362 0x186c [ 19B34EB0510CD0A24C5B7DC6ABBE544E, 9D7E2DCACCF55860D4DCFA7272FB0B503976CEF9CB5D3CB265EA3331616C413D ] Credential Vault Host Storage C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
18:29:44.0365 0x186c Credential Vault Host Storage - ok
18:29:44.0444 0x186c [ 3897DFF247D9ED0006190349DE264E14, AFD45853FE1025714BFF6E3287DE181F77C72A88570F92E996962FA0378FE88A ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:29:44.0460 0x186c CryptSvc - ok
18:29:44.0508 0x186c [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC             C:\Windows\system32\drivers\csc.sys
18:29:44.0530 0x186c CSC - ok
18:29:44.0589 0x186c [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService      C:\Windows\System32\cscsvc.dll
18:29:44.0631 0x186c CscService - ok
18:29:44.0697 0x186c [ CB6FF7012BB5D59D7C12350DB795CE1F, D0C614B206B69EBE735CFB158703730B42A72A46F6808D0D1C7385E3C1434AC5 ] ctxusbm         C:\Windows\system32\DRIVERS\ctxusbm.sys
18:29:44.0704 0x186c ctxusbm - ok
18:29:44.0721 0x186c [ 82C12127C6AA5FF896DFFF8F78BBFD9B, 97144C6BD88BE3D2871011087E6998BE0BD0D9B04998BC84F308C5FE0345B981 ] cvusbdrv        C:\Windows\system32\Drivers\cvusbdrv.sys
18:29:44.0726 0x186c cvusbdrv - ok
18:29:44.0781 0x186c [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:29:44.0815 0x186c DcomLaunch - ok
18:29:44.0850 0x186c [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
18:29:44.0873 0x186c defragsvc - ok
18:29:44.0895 0x186c [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
18:29:44.0901 0x186c DfsC - ok
18:29:44.0928 0x186c DgiVecp - ok
18:29:44.0997 0x186c [ 7A5FB3E4E0D77740D56E516EE6B2DC2B, 5B4636EC04903D2E512AC8FB98A484F7CEBE4EE0A081CF897CD13E8491C0D8CC ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
18:29:45.0005 0x186c dg_ssudbus - ok
18:29:45.0049 0x186c [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
18:29:45.0073 0x186c Dhcp - ok
18:29:45.0096 0x186c [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
18:29:45.0099 0x186c discache - ok
18:29:45.0130 0x186c [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk            C:\Windows\system32\drivers\disk.sys
18:29:45.0135 0x186c Disk - ok
18:29:45.0147 0x186c [ 2A958EF85DB1B61FFCA65044FA4BCE9E, C83511685EE1CE85A5ADF9B5BE96C375A521601F66024BDC3EE044C0B6E85D69 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
18:29:45.0152 0x186c dmvsc - ok
18:29:45.0199 0x186c [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:29:45.0209 0x186c Dnscache - ok
18:29:45.0240 0x186c [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
18:29:45.0262 0x186c dot3svc - ok
18:29:45.0287 0x186c [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
18:29:45.0304 0x186c DPS - ok
18:29:45.0358 0x186c [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
18:29:45.0382 0x186c drmkaud - ok
18:29:45.0438 0x186c [ 51514A1A5FA3C45864E197122FFE4E9F, 4C2923EC318D754F547035DBA56D279F32C3A45DBE678D27B7703623D924E27E ] dsiasrv         C:\Program Files\Dell\SysMgt\dsia\bin\DsiaSrv32.exe
18:29:45.0454 0x186c dsiasrv - ok
18:29:45.0551 0x186c [ 16498EBC04AE9DD07049A8884B205C05, 134EA1C7A2DB984B8EBADF6C25B28DBADF02215AA2ED298FA124556FC4992084 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:29:45.0593 0x186c DXGKrnl - ok
18:29:45.0629 0x186c [ 27DE93085F73B385AC26E6C63441B5DC, B0F5A27E888C21E25BABC5AA2001028B4BE1471807F48B692D5EE4CD331E5F29 ] e1cexpress      C:\Windows\system32\DRIVERS\e1c6232.sys
18:29:45.0652 0x186c e1cexpress - ok
18:29:45.0678 0x186c [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
18:29:45.0685 0x186c EapHost - ok
18:29:45.0836 0x186c [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\drivers\evbdx.sys
18:29:45.0976 0x186c ebdrv - ok
18:29:46.0023 0x186c [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] EFS             C:\Windows\System32\lsass.exe
18:29:46.0029 0x186c EFS - ok
18:29:46.0129 0x186c [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
18:29:46.0213 0x186c ehRecvr - ok
18:29:46.0233 0x186c [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
18:29:46.0241 0x186c ehSched - ok
18:29:46.0291 0x186c [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
18:29:46.0333 0x186c elxstor - ok
18:29:46.0402 0x186c [ 093CEE3B45F0954DCE6CB891F6A920F7, 8C614CF476F871274AA06153224E8F7354BF5E23E6853358591BF35A381FB75B ] epmntdrv        C:\Windows\system32\epmntdrv.sys
18:29:46.0407 0x186c epmntdrv - ok
18:29:46.0424 0x186c [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
18:29:46.0427 0x186c ErrDev - ok
18:29:46.0454 0x186c [ F1DE3EEF501DDA7DDF99F2EDF0C5540E, 8D604553A3F5DB03BFFD50473ECB6F05EBCFCC6B5E1F149322830DBD6C806866 ] EuGdiDrv        C:\Windows\system32\EuGdiDrv.sys
18:29:46.0458 0x186c EuGdiDrv - ok
18:29:46.0498 0x186c [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
18:29:46.0522 0x186c EventSystem - ok
18:29:46.0603 0x186c [ 026F6D48CC5293C7B8A696376618B9D2, 850B95FB6A8C8FD7B7F0B5BCE20DDD737CAC31E2A69D8CE7CBA287494492505D ] ewusbmbb        C:\Windows\system32\DRIVERS\ewusbwwan.sys
18:29:46.0637 0x186c ewusbmbb - ok
18:29:46.0685 0x186c [ 57C171EA22F0A7F068FCB0CAEDD1E8E7, 9AAF39AA22372FB8582C1422581C08E61444BF843E1CE2E199EB00FBEA6F9C06 ] ew_hwusbdev     C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
18:29:46.0692 0x186c ew_hwusbdev - ok
18:29:46.0721 0x186c [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat           C:\Windows\system32\drivers\exfat.sys
18:29:46.0731 0x186c exfat - ok
18:29:46.0757 0x186c [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:29:46.0767 0x186c fastfat - ok
18:29:46.0830 0x186c [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
18:29:46.0872 0x186c Fax - ok
18:29:46.0896 0x186c [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\drivers\fdc.sys
18:29:46.0899 0x186c fdc - ok
18:29:46.0911 0x186c [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
18:29:46.0914 0x186c fdPHost - ok
18:29:46.0929 0x186c [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:29:46.0932 0x186c FDResPub - ok
18:29:46.0945 0x186c [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:29:46.0948 0x186c FileInfo - ok
18:29:46.0958 0x186c [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:29:46.0960 0x186c Filetrace - ok
18:29:46.0970 0x186c [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
18:29:46.0972 0x186c flpydisk - ok
18:29:46.0993 0x186c [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:29:47.0001 0x186c FltMgr - ok
18:29:47.0097 0x186c [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache       C:\Windows\system32\FntCache.dll
18:29:47.0143 0x186c FontCache - ok
18:29:47.0216 0x186c [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:29:47.0221 0x186c FontCache3.0.0.0 - ok
18:29:47.0238 0x186c [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
18:29:47.0242 0x186c FsDepends - ok
18:29:47.0279 0x186c [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:29:47.0281 0x186c Fs_Rec - ok
18:29:47.0346 0x186c [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
18:29:47.0365 0x186c fvevol - ok
18:29:47.0396 0x186c [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
18:29:47.0401 0x186c gagp30kx - ok
18:29:47.0460 0x186c [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:29:47.0464 0x186c GEARAspiWDM - ok
18:29:47.0528 0x186c [ DE15D92F8FFB0A95C53C41C7D999BBDC, BBB2F7E238623FBF67DC4871B4142DC26EF7FF5FAF182DCF8D087F12651FB839 ] GManager        C:\Windows\system32\GManager.exe
18:29:47.0552 0x186c GManager - ok
18:29:47.0619 0x186c [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc           C:\Windows\System32\gpsvc.dll
18:29:47.0663 0x186c gpsvc - ok
18:29:47.0752 0x186c [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
18:29:47.0759 0x186c gupdate - ok
18:29:47.0771 0x186c [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
18:29:47.0777 0x186c gupdatem - ok
18:29:47.0829 0x186c [ 7929A161F9951D173CA9900FE7067391, 35F329B3476D34E02C31B8050E1AB8C74BA0F3114A6B48AFED8F98751EFF44AB ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
18:29:47.0833 0x186c hamachi - ok
18:29:47.0845 0x186c [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
18:29:47.0848 0x186c hcw85cir - ok
18:29:47.0899 0x186c [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:29:47.0924 0x186c HdAudAddService - ok
18:29:47.0952 0x186c [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
18:29:47.0959 0x186c HDAudBus - ok
18:29:47.0966 0x186c [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
18:29:47.0970 0x186c HidBatt - ok
18:29:47.0997 0x186c [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
18:29:48.0005 0x186c HidBth - ok
18:29:48.0027 0x186c [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\drivers\hidir.sys
18:29:48.0031 0x186c HidIr - ok
18:29:48.0053 0x186c [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\system32\hidserv.dll
18:29:48.0059 0x186c hidserv - ok
18:29:48.0103 0x186c [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
18:29:48.0106 0x186c HidUsb - ok
18:29:48.0135 0x186c [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
18:29:48.0145 0x186c hkmsvc - ok
18:29:48.0189 0x186c [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:29:48.0213 0x186c HomeGroupListener - ok
18:29:48.0251 0x186c [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:29:48.0276 0x186c HomeGroupProvider - ok
18:29:48.0400 0x186c [ 5DA42D24712E00728CEA2342A65009B2, 73EC5250DCFD556525B24B3CA66C64AC7747E77652A2AD6119936A59A9E8562A ] hpqcxs08        C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
18:29:48.0426 0x186c hpqcxs08 - ok
18:29:48.0454 0x186c [ D86A39BF100069444D026D22D9A6E555, 7B24D48D5BA67704C88697FADB64364E0E64D26259408E3C219820C5404C5EEC ] hpqddsvc        C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
18:29:48.0475 0x186c hpqddsvc - ok
18:29:48.0505 0x186c [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
18:29:48.0512 0x186c HpSAMD - ok
18:29:48.0578 0x186c [ A04F4AC48895774A2CF9D1C9EAAACEF0, 012F10DE086C3551D75716EF1F6DCC477C8C1E776267D9FC4073BEADAFD37C9C ] HPSLPSVC        C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
18:29:48.0657 0x186c HPSLPSVC - ok
18:29:48.0701 0x186c [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:29:48.0732 0x186c HTTP - ok
18:29:48.0786 0x186c [ F44461E66F1B7DD267957FE9BAA63ED0, 5B51692F1670A43A8C1B9E2EECB4042AB04BA92AAA347405A61D3EA8C478BC5A ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
18:29:48.0793 0x186c huawei_enumerator - ok
18:29:48.0847 0x186c [ F547F862B8907F1BCBD9B72A72A6449E, 18045A85AF0060E599A386D2F50E333D0ADEBECD2987CB4EE6377D1537197285 ] hwdatacard      C:\Windows\system32\DRIVERS\ewusbmdm.sys
18:29:48.0870 0x186c hwdatacard - ok
18:29:48.0956 0x186c HWDeviceService.exe - ok
18:29:48.0982 0x186c [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
18:29:48.0984 0x186c hwpolicy - ok
18:29:49.0052 0x186c [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
18:29:49.0056 0x186c i8042prt - ok
18:29:49.0109 0x186c [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
18:29:49.0114 0x186c iaStorV - ok
18:29:49.0185 0x186c [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:29:49.0226 0x186c idsvc - ok
18:29:49.0263 0x186c IEEtwCollectorService - ok
18:29:49.0606 0x186c [ 721A8D48B2DC8C1C58C61CB948491EA8, 2E13D8922EE7E636DB9174FCFB5C4EB4DEA0771C9B6C8954D4FE6EFD5F5BCDA8 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
18:29:49.0950 0x186c igfx - ok
18:29:49.0981 0x186c [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\drivers\iirsp.sys
18:29:49.0983 0x186c iirsp - ok
18:29:50.0034 0x186c [ FC9735B66850CF8AEBBC1E207ECB2AD8, A2546FFB6E49784F052EFA036776E246CADA34D7146B3AA2D19AC1463D20B480 ] IISADMIN        C:\Windows\system32\inetsrv\inetinfo.exe
18:29:50.0036 0x186c IISADMIN - ok
18:29:50.0144 0x186c [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT          C:\Windows\System32\ikeext.dll
18:29:50.0214 0x186c IKEEXT - ok
18:29:50.0288 0x186c [ 5576AD2F0039D2BCCCA3567FC0BF981C, 4C782738B211B236DBDD0066BA0EDBA04E6BC5A97EF3227F2C7DAD7EBABF4C73 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
18:29:50.0308 0x186c IntcDAud - ok
18:29:50.0377 0x186c [ 1A97E12E4037492CBF22F94D3A0CEBE9, E494DB5D625D560F74666EA4674C91A684AF47CA88FAF4A0B9B40BB769282552 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
18:29:50.0384 0x186c Intel® PROSet Monitoring Service - ok
18:29:50.0436 0x186c [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
18:29:50.0440 0x186c intelide - ok
18:29:50.0476 0x186c [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
18:29:50.0481 0x186c intelppm - ok
18:29:50.0510 0x186c [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
18:29:50.0518 0x186c IPBusEnum - ok
18:29:50.0546 0x186c [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:29:50.0552 0x186c IpFilterDriver - ok
18:29:50.0628 0x186c [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:29:50.0660 0x186c iphlpsvc - ok
18:29:50.0677 0x186c [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
18:29:50.0682 0x186c IPMIDRV - ok
18:29:50.0698 0x186c [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
18:29:50.0704 0x186c IPNAT - ok
18:29:50.0796 0x186c [ 463790AEF94D8EAB674631257F53252E, A02972457F45AD6816CB5F60DE4CD15D68256695FA0F3E4EAD6F9E36CBE54576 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
18:29:50.0842 0x186c iPod Service - ok
18:29:50.0859 0x186c [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:29:50.0861 0x186c IRENUM - ok
18:29:50.0879 0x186c [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:29:50.0884 0x186c isapnp - ok
18:29:50.0909 0x186c [ CB7A9ABB12B8415BCE5D74994C7BA3AE, 464BFF3F5EEE985BE075E23E1813F5CB82A9A0771A92C6D889B13B867BCDF647 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
18:29:50.0931 0x186c iScsiPrt - ok
18:29:50.0952 0x186c [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
18:29:50.0956 0x186c kbdclass - ok
18:29:50.0976 0x186c [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
18:29:50.0979 0x186c kbdhid - ok
18:29:50.0993 0x186c [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] KeyIso          C:\Windows\system32\lsass.exe
18:29:50.0997 0x186c KeyIso - ok
18:29:51.0042 0x186c [ F286830298323272260332D6ABC905C1, FF4CD182A95CA53119B228690D682EE9214BE131A0DBCB09B6189FBEBBFF902C ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:29:51.0046 0x186c KSecDD - ok
18:29:51.0069 0x186c [ D7C760D57B1656DD748B9E4AB6CB5A51, F8AE4185A6A9F7005DEFF1FDC03F395C6189825B482B8C650637FD29DE93AB68 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
18:29:51.0083 0x186c KSecPkg - ok
18:29:51.0125 0x186c [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:29:51.0150 0x186c KtmRm - ok
18:29:51.0189 0x186c [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\Windows\system32\srvsvc.dll
18:29:51.0213 0x186c LanmanServer - ok
18:29:51.0246 0x186c [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:29:51.0256 0x186c LanmanWorkstation - ok
18:29:51.0404 0x186c [ 7AC2D769C4C29D0C8D58C0FB8528FD82, BE53BCC29DE44412E7796E1BD91AC21B686F36EC3193F100ACC7A849CE3CB243 ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
18:29:51.0435 0x186c LBTServ - ok
18:29:51.0488 0x186c [ 069C12D174323218E820E5043BA3764A, 5E47394CDAA4645F061786D1C5AB5C7B160573FD3AAA8943920DE707A55CC563 ] LEqdUsb         C:\Windows\system32\Drivers\LEqdUsb.Sys
18:29:51.0494 0x186c LEqdUsb - ok
18:29:51.0510 0x186c [ 1441298D98E2E19027024998745E49F8, 28DE6DA551FA36D6CFCC3C4092D0EF79DE08FE4194B2505C805B3BAC1000EACF ] LHidEqd         C:\Windows\system32\Drivers\LHidEqd.Sys
18:29:51.0514 0x186c LHidEqd - ok
18:29:51.0565 0x186c [ 006540C9CDC7E72ADD1435CF778EC674, 3DBF0968C7EC730AC395A33F71FD135968580F7B8C2E07A7B427A7BB0AD34DA3 ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
18:29:51.0570 0x186c LHidFilt - ok
18:29:51.0616 0x186c [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
18:29:51.0622 0x186c lltdio - ok
18:29:51.0662 0x186c [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:29:51.0687 0x186c lltdsvc - ok
18:29:51.0709 0x186c [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:29:51.0716 0x186c lmhosts - ok
18:29:51.0739 0x186c [ 3C5BA4B2E4D1180BF9810963A494799A, CDC5B4D1BC859637166DB47AA1C2AFE8AB0255FA49CBA9298B5B79CD48358588 ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
18:29:51.0744 0x186c LMouFilt - ok
18:29:51.0810 0x186c [ 519D66259DF1672AABCE9D2E0ACC5552, 953EAEC04D45574ED9260726383438AA18A5EBEB2E0C93869DF4C57B9998BB27 ] LMS             C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:29:51.0844 0x186c LMS - ok
18:29:51.0885 0x186c [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
18:29:51.0894 0x186c LSI_FC - ok
18:29:51.0916 0x186c [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
18:29:51.0925 0x186c LSI_SAS - ok
18:29:51.0942 0x186c [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
18:29:51.0948 0x186c LSI_SAS2 - ok
18:29:51.0973 0x186c [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
18:29:51.0981 0x186c LSI_SCSI - ok
18:29:52.0004 0x186c [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv           C:\Windows\system32\drivers\luafv.sys
18:29:52.0013 0x186c luafv - ok
18:29:52.0066 0x186c [ 79EC6C0033776F89DD5131241F0170E1, EA958F114DAC06D184735FF8308F0DAA953CA7C0077AF1BBEDC440AAEC2D07A6 ] massfilter      C:\Windows\system32\drivers\massfilter.sys
18:29:52.0069 0x186c massfilter - ok
18:29:52.0127 0x186c [ 8FD868E32459ECE2A1BB0169F513D31E, F28E47FBEC8EC8424FFFB359668E0FEEA66A69E9D737D75472934FAC39770390 ] mcdbus          C:\Windows\system32\DRIVERS\mcdbus.sys
18:29:52.0137 0x186c mcdbus - ok
18:29:52.0211 0x186c [ 3E23A0792D5EE0A072961E9E9F347368, 3887351DF52AF974B6C48097A032521C7122D8C23054C8F9024AA876CED14E81 ] MCTDesktopSvr   C:\Program Files\Common Files\DesktopUtil\MCTDesktopSvr.exe
18:29:52.0236 0x186c MCTDesktopSvr - ok
18:29:52.0314 0x186c [ 93D2F710F8CE14E2160881E0C32E96E7, C2C787E8B4DCD02F05179A41072123035AD09CEE008BBF560DC0F8DCF1C9A4AE ] mctkmd          C:\Windows\system32\drivers\mctkmd.sys
18:29:52.0324 0x186c mctkmd - ok
18:29:52.0371 0x186c [ 68D01AA988589FA5907A39AC2A085C65, EBC56F8B26FA532855F8091083299F584127F5446CAC3418542ACD464AEB59A8 ] mctkmdldr       C:\Windows\system32\drivers\mctkmdldr.sys
18:29:52.0375 0x186c mctkmdldr - ok
18:29:52.0410 0x186c [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
18:29:52.0420 0x186c Mcx2Svc - ok
18:29:52.0435 0x186c [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\drivers\megasas.sys
18:29:52.0440 0x186c megasas - ok
18:29:52.0472 0x186c [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
18:29:52.0497 0x186c MegaSR - ok
18:29:52.0542 0x186c [ D86AC00883B9C98B570E7643AAF8E554, 4B4BDC01DC20F820A9D1E1B8E875B6445F9B920F0AB1E115ADD9651A368911C4 ] MEI             C:\Windows\system32\DRIVERS\HECI.sys
18:29:52.0547 0x186c MEI - ok
18:29:52.0655 0x186c Microsoft SharePoint Workspace Audit Service - ok
18:29:52.0717 0x186c [ D96EA49AB9A9174331BC023FD0CADC18, E9A46BE19DB6BBF2CC7D049F275434242A58E77EEB55DEE6A0E25F39258CEFBD ] mirrorv3        C:\Windows\system32\DRIVERS\rminiv3.sys
18:29:52.0720 0x186c mirrorv3 - ok
18:29:52.0734 0x186c [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
18:29:52.0743 0x186c MMCSS - ok
18:29:52.0760 0x186c [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
18:29:52.0766 0x186c Modem - ok
18:29:52.0788 0x186c [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
18:29:52.0793 0x186c monitor - ok
18:29:52.0820 0x186c [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
18:29:52.0826 0x186c mouclass - ok
18:29:52.0851 0x186c [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
18:29:52.0856 0x186c mouhid - ok
18:29:52.0895 0x186c [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
18:29:52.0902 0x186c mountmgr - ok
18:29:52.0969 0x186c [ FD5E45969B82B83E33CB05B5C9B0E3F2, A6C21F7A0A97683DA50FC102131618CC1BE5CA0C3625D2FDAF5861B9B6523E45 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:29:52.0979 0x186c MozillaMaintenance - ok
18:29:53.0007 0x186c [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\Windows\system32\drivers\mpio.sys
18:29:53.0024 0x186c mpio - ok
18:29:53.0050 0x186c [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:29:53.0057 0x186c mpsdrv - ok
18:29:53.0121 0x186c [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\Windows\system32\mpssvc.dll
18:29:53.0157 0x186c MpsSvc - ok
18:29:53.0234 0x186c [ A5888C609EFCC07B060DD823FA3D474A, 47BB2A40FD1D67F7F6FDAF420E67F769A015F07138908179EEFAC7ED051C2FF0 ] MQAC            C:\Windows\system32\drivers\mqac.sys
18:29:53.0255 0x186c MQAC - ok
18:29:53.0309 0x186c [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:29:53.0319 0x186c MRxDAV - ok
18:29:53.0371 0x186c [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:29:53.0379 0x186c mrxsmb - ok
18:29:53.0402 0x186c [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:29:53.0425 0x186c mrxsmb10 - ok
18:29:53.0444 0x186c [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:29:53.0451 0x186c mrxsmb20 - ok
18:29:53.0497 0x186c [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\Windows\system32\drivers\msahci.sys
18:29:53.0500 0x186c msahci - ok
18:29:53.0534 0x186c [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
18:29:53.0542 0x186c msdsm - ok
18:29:53.0578 0x186c [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe
18:29:53.0599 0x186c MSDTC - ok
18:29:53.0630 0x186c [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:29:53.0634 0x186c Msfs - ok
18:29:53.0642 0x186c [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
18:29:53.0645 0x186c mshidkmdf - ok
18:29:53.0659 0x186c [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:29:53.0662 0x186c msisadrv - ok
18:29:53.0702 0x186c [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:29:53.0712 0x186c MSiSCSI - ok
18:29:53.0719 0x186c msiserver - ok
18:29:53.0740 0x186c [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
18:29:53.0744 0x186c MSKSSRV - ok
18:29:53.0793 0x186c [ E582B9E88EF4980C3B76276620FE667B, BC0817394F5D8156ED7864DEACA2F56C3414BE5B208E02558BE8F0D5BAB8A519 ] MSMQ            C:\Windows\system32\mqsvc.exe
18:29:53.0799 0x186c MSMQ - ok
18:29:54.0017 0x186c [ E3F9EBFD64DEE48EE9E99949E312D883, F3803EC12BCD3CCE138F5D2BA9D3F00E03B4CA3672336EB5A1F9C8578FC391D6 ] msoidsvc        C:\Program Files\Common Files\Microsoft Shared\Microsoft Online Services\MSOIDSVC.EXE
18:29:54.0128 0x186c msoidsvc - ok
18:29:54.0147 0x186c [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
18:29:54.0150 0x186c MSPCLOCK - ok
18:29:54.0154 0x186c [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
18:29:54.0156 0x186c MSPQM - ok
18:29:54.0175 0x186c [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:29:54.0183 0x186c MsRPC - ok
18:29:54.0195 0x186c [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
18:29:54.0196 0x186c mssmbios - ok
18:29:54.0207 0x186c [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
18:29:54.0209 0x186c MSTEE - ok
18:29:54.0215 0x186c [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
18:29:54.0217 0x186c MTConfig - ok
18:29:54.0227 0x186c [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup             C:\Windows\system32\Drivers\mup.sys
18:29:54.0232 0x186c Mup - ok
18:29:54.0269 0x186c [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\Windows\system32\qagentRT.dll
18:29:54.0294 0x186c napagent - ok
18:29:54.0330 0x186c [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:29:54.0350 0x186c NativeWifiP - ok
18:29:54.0543 0x186c [ E0E4A1F81A7D69C595A8A9DDAD084C19, 8F55F3637AE8BFFB0ACE37AFC5122026525137E0B2923899B779C1BD08DF0E22 ] NAUpdate        C:\Program Files\Nero\Update\NASvc.exe
18:29:54.0593 0x186c NAUpdate - ok
18:29:54.0658 0x186c [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:29:54.0684 0x186c NDIS - ok
18:29:54.0701 0x186c [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
18:29:54.0705 0x186c NdisCap - ok
18:29:54.0726 0x186c [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:29:54.0729 0x186c NdisTapi - ok
18:29:54.0744 0x186c [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
18:29:54.0747 0x186c Ndisuio - ok
18:29:54.0764 0x186c [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
18:29:54.0770 0x186c NdisWan - ok
18:29:54.0788 0x186c [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
18:29:54.0792 0x186c NDProxy - ok
18:29:54.0861 0x186c [ CC53B47CEF1A81B04EA0AA503CEC2D35, E0EC2153454B9A0FE94DA1998B800F62E19FF85AF2AC3F169CF6863AC8818FD3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
18:29:54.0866 0x186c Net Driver HPZ12 - ok
18:29:54.0879 0x186c [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
18:29:54.0883 0x186c NetBIOS - ok
18:29:54.0900 0x186c [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
18:29:54.0911 0x186c NetBT - ok
18:29:54.0927 0x186c [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] Netlogon        C:\Windows\system32\lsass.exe
18:29:54.0931 0x186c Netlogon - ok
18:29:54.0971 0x186c [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll
18:29:54.0996 0x186c Netman - ok
18:29:55.0029 0x186c [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll
18:29:55.0058 0x186c netprofm - ok
18:29:55.0087 0x186c [ F476EC40033CDB91EFBE73EB99B8362D, B17535037BC070F9AE1F6B381C2DBEE27658A8FDE15FB0E061F485EA7C7CBE59 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:29:55.0095 0x186c NetTcpPortSharing - ok
18:29:55.0118 0x186c [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
18:29:55.0122 0x186c nfrd960 - ok
18:29:55.0193 0x186c [ 29FD60BF26E249DE317D8820B424EBBD, DE8715C4B9857AD4268E2779CB37265158EB1824361AB5B1DE08BDE0ADEF78C7 ] ngdbserv        C:\Program Files\Symantec\Ghost\bin\dbserv.exe
18:29:55.0198 0x186c ngdbserv - ok
18:29:55.0258 0x186c [ 0AB8F50EEC662798C61FB303B8FB9381, 1E0421F76065C17B58433A3B25D0B9EFBB21DD6D6704C487775E96EE873193BA ] NGServer        C:\Program Files\Symantec\Ghost\ngserver.exe
18:29:55.0306 0x186c NGServer - ok
18:29:55.0369 0x186c [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:29:55.0393 0x186c NlaSvc - ok
18:29:55.0470 0x186c [ B48DC6ABCD3AEFF8618350CCBDC6B09A, 824D8B03E061DDD0D33EF9F03C669B13E7B6E339684009BD44D69178C45E2DE1 ] NPF             C:\Windows\system32\drivers\npf.sys
18:29:55.0475 0x186c NPF - ok
18:29:55.0486 0x186c [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:29:55.0490 0x186c Npfs - ok
18:29:55.0520 0x186c [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi             C:\Windows\system32\nsisvc.dll
18:29:55.0528 0x186c nsi - ok
18:29:55.0537 0x186c [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:29:55.0540 0x186c nsiproxy - ok
18:29:55.0676 0x186c [ C8DFF8D07755A66C7A4A738930F0FEAC, A2CC58312CE57988ABD976155BE91F558DCEC4C23481C6FBE64B361D511A36EA ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:29:55.0734 0x186c Ntfs - ok
18:29:55.0748 0x186c [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys
18:29:55.0749 0x186c Null - ok
18:29:55.0788 0x186c [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:29:55.0792 0x186c nvraid - ok
18:29:55.0810 0x186c [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:29:55.0815 0x186c nvstor - ok
18:29:55.0827 0x186c [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
18:29:55.0831 0x186c nv_agp - ok
18:29:55.0878 0x186c [ 4E37455DB16AEC75862B1D0BC35B589E, F60FCE0C3E6C1559B0A8E0A032AFD30216E1DE2142E8E4C181C43DB6C4B5A443 ] O2FLASH         C:\Windows\system32\DRIVERS\o2flash.exe
18:29:55.0881 0x186c O2FLASH - ok
18:29:55.0927 0x186c [ 5F63917FCC257ED11E828230BE594194, 25CE216077DF06F00FB3EE996A4833868670EC4ACC66DFF1BDAF5830D83F7218 ] O2MDFRDR        C:\Windows\system32\DRIVERS\O2MDFw7.sys
18:29:55.0930 0x186c O2MDFRDR - ok
18:29:55.0952 0x186c [ D5A27C1ECD36564FED061EFB78BD0A62, FFC81A5E7657242F970CFE90F274389100D80887EA1DCB26232FF6C17D4A6637 ] O2SDJRDR        C:\Windows\system32\DRIVERS\o2sdjw7.sys
18:29:55.0955 0x186c O2SDJRDR - ok
18:29:56.0066 0x186c [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:29:56.0133 0x186c odserv - ok
18:29:56.0161 0x186c [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
18:29:56.0168 0x186c ohci1394 - ok
18:29:56.0238 0x186c [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:29:56.0254 0x186c ose - ok
18:29:56.0665 0x186c [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:29:56.0854 0x186c osppsvc - ok
18:29:56.0895 0x186c [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
18:29:56.0903 0x186c p2pimsvc - ok
18:29:56.0942 0x186c [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll
18:29:56.0968 0x186c p2psvc - ok
18:29:56.0995 0x186c [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\DRIVERS\parport.sys
18:29:57.0001 0x186c Parport - ok
18:29:57.0045 0x186c [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:29:57.0050 0x186c partmgr - ok
18:29:57.0059 0x186c [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
18:29:57.0062 0x186c Parvdm - ok
18:29:57.0085 0x186c [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:29:57.0110 0x186c PcaSvc - ok
18:29:57.0134 0x186c [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\Windows\system32\drivers\pci.sys
18:29:57.0156 0x186c pci - ok
18:29:57.0202 0x186c [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\drivers\pciide.sys
18:29:57.0206 0x186c pciide - ok
18:29:57.0235 0x186c [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
18:29:57.0257 0x186c pcmcia - ok
18:29:57.0276 0x186c [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys
18:29:57.0283 0x186c pcw - ok
18:29:57.0352 0x186c [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:29:57.0418 0x186c PEAUTH - ok
18:29:57.0514 0x186c [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
18:29:57.0569 0x186c PeerDistSvc - ok
18:29:57.0643 0x186c [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla             C:\Windows\system32\pla.dll
18:29:57.0700 0x186c pla - ok
18:29:57.0783 0x186c [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:29:57.0816 0x186c PlugPlay - ok
18:29:57.0888 0x186c [ 0C1A70B460E706D986609496BCCD9660, AE493F214D913D31B4509D606A07A0295A05A158F264DAF99DDCEBBC27481404 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
18:29:57.0895 0x186c Pml Driver HPZ12 - ok
18:29:57.0919 0x186c [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
18:29:57.0927 0x186c PNRPAutoReg - ok
18:29:57.0963 0x186c [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
18:29:57.0982 0x186c PNRPsvc - ok
18:29:58.0033 0x186c [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:29:58.0059 0x186c PolicyAgent - ok
18:29:58.0086 0x186c [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\Windows\system32\umpo.dll
18:29:58.0095 0x186c Power - ok
18:29:58.0122 0x186c [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
18:29:58.0127 0x186c PptpMiniport - ok
18:29:58.0143 0x186c [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\drivers\processr.sys
18:29:58.0147 0x186c Processor - ok
18:29:58.0202 0x186c [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc         C:\Windows\system32\profsvc.dll
18:29:58.0224 0x186c ProfSvc - ok
18:29:58.0237 0x186c [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:29:58.0240 0x186c ProtectedStorage - ok
18:29:58.0261 0x186c [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
18:29:58.0267 0x186c Psched - ok
18:29:58.0373 0x186c [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\drivers\ql2300.sys
18:29:58.0470 0x186c ql2300 - ok
18:29:58.0508 0x186c [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
18:29:58.0514 0x186c ql40xx - ok
18:29:58.0542 0x186c [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll
18:29:58.0563 0x186c QWAVE - ok
18:29:58.0580 0x186c [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:29:58.0582 0x186c QWAVEdrv - ok
18:29:58.0597 0x186c [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:29:58.0599 0x186c RasAcd - ok
18:29:58.0632 0x186c [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
18:29:58.0636 0x186c RasAgileVpn - ok
18:29:58.0651 0x186c [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll
18:29:58.0658 0x186c RasAuto - ok
18:29:58.0678 0x186c [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
18:29:58.0683 0x186c Rasl2tp - ok
18:29:58.0714 0x186c [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\Windows\System32\rasmans.dll
18:29:58.0736 0x186c RasMan - ok
18:29:58.0753 0x186c [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:29:58.0758 0x186c RasPppoe - ok
18:29:58.0770 0x186c [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
18:29:58.0774 0x186c RasSstp - ok
18:29:58.0796 0x186c [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:29:58.0815 0x186c rdbss - ok
18:29:58.0828 0x186c [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
18:29:58.0831 0x186c rdpbus - ok
18:29:58.0841 0x186c [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
18:29:58.0842 0x186c RDPCDD - ok
18:29:58.0869 0x186c [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
18:29:58.0876 0x186c RDPDR - ok
18:29:58.0895 0x186c [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
18:29:58.0896 0x186c RDPENCDD - ok
18:29:58.0911 0x186c [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
18:29:58.0912 0x186c RDPREFMP - ok
18:29:58.0952 0x186c [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:29:58.0955 0x186c RdpVideoMiniport - ok
18:29:59.0012 0x186c [ F031683E6D1FEA157ABB2FF260B51E61, 83B552819A5964152882C527E1421DBCEAACC74DEB897E3C4B53F52F1467FED3 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
18:29:59.0035 0x186c RDPWD - ok
18:29:59.0057 0x186c [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
18:29:59.0074 0x186c rdyboost - ok
18:29:59.0108 0x186c [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:29:59.0117 0x186c RemoteAccess - ok
18:29:59.0149 0x186c [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:29:59.0172 0x186c RemoteRegistry - ok
18:29:59.0213 0x186c [ CB928D9E6DAF51879DD6BA8D02F01321, DFD263B67DDF98AE09AF6D6986CBC7BE3206BCE8403AAC51BCF9459E78233D12 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
18:29:59.0222 0x186c RFCOMM - ok
18:29:59.0371 0x186c [ CC7D29C8AB66B342C14EF5EEB554A316, F56CF7303FD129866765E7427C5055E0CC6A1C2FECB675E740DD0747A5A3E399 ] RIM MDNS        C:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
18:29:59.0405 0x186c RIM MDNS - ok
18:29:59.0473 0x186c [ EA68D068A7CBACEAEAABB5B9A04AD6B2, 620DB4270E1E71770F9585C6EE7D5D665C06F5E88026311690A658B20B100F13 ] RIM Tunnel Service C:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
18:29:59.0533 0x186c RIM Tunnel Service - ok
18:29:59.0593 0x186c [ BBCE96557881586683611C561FB06269, BB0DA582B2135EC589037D61597DB79F264F579D464DCE5B7D65A3D36CADEB86 ] RimUsb          C:\Windows\system32\Drivers\RimUsb.sys
18:29:59.0601 0x186c RimUsb - ok
18:29:59.0628 0x186c [ DFA5619CE347100FDFD732321972F6B6, D165ACD571FCEEDCEF569060667BEEFAF1A68DCA0635F0C608163CD526AE77CB ] rimvndis        C:\Windows\system32\Drivers\rimvndis6.sys
18:29:59.0631 0x186c rimvndis - ok
18:29:59.0679 0x186c [ C4F4FCD5AE48BDD31648981DDF8EF993, B2C8586D5F09AB2FBCE8BBACC9B1C74D6E1A25A8264A4218E80354C4470C750F ] RimVSerPort     C:\Windows\system32\DRIVERS\RimSerial.sys
18:29:59.0682 0x186c RimVSerPort - ok
18:29:59.0717 0x186c [ 564297827D213F52C7A3A2FF749568CA, B09A78D3B3F0BF47818BBEEDEF73BD6ACB9C5E367592BB90C85FD262BE521876 ] ROOTMODEM       C:\Windows\system32\Drivers\RootMdm.sys
18:29:59.0721 0x186c ROOTMODEM - ok
18:29:59.0786 0x186c [ B60F58F175DE20A6739194E85B035178, 6E66D6041AF0B69896E4556F9FF3A3AA70CF4B09FFBE68E14E60313C5E3FFDDB ] rpcapd          C:\Program Files\WinPcap\rpcapd.exe
18:29:59.0795 0x186c rpcapd - ok
18:29:59.0817 0x186c [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
18:29:59.0824 0x186c RpcEptMapper - ok
18:29:59.0848 0x186c [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe
18:29:59.0852 0x186c RpcLocator - ok
18:29:59.0885 0x186c [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs           C:\Windows\system32\rpcss.dll
18:29:59.0900 0x186c RpcSs - ok
18:29:59.0937 0x186c [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
18:29:59.0940 0x186c rspndr - ok
18:29:59.0950 0x186c [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
18:29:59.0952 0x186c s3cap - ok
18:29:59.0959 0x186c [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] SamSs           C:\Windows\system32\lsass.exe
18:29:59.0961 0x186c SamSs - ok
18:30:00.0048 0x186c [ BD57B12FA4C21B1CE7DA3570410BF12D, 61526458EEDA91264B0750221822F4D24BF838DD1857ED7842BAB9D9A8B3345E ] SAVAdminService C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
18:30:00.0058 0x186c SAVAdminService - ok
18:30:00.0103 0x186c [ AE668D3F43FC90BC17F62E08FF82A446, 2CE4B3104A8BA7B06659E3EA00081F44AFE6DBD0938C0C9E168C51022FDE3583 ] SAVOnAccess     C:\Windows\system32\DRIVERS\savonaccess.sys
18:30:00.0111 0x186c SAVOnAccess - ok
18:30:00.0153 0x186c [ 836AEC603665F6DB83965EE57B3DCF57, 24C4A8DD607BC8C3F90D2CAAB3C04E6A269C643F6754852D1BD9F153E736C7DC ] SAVService      C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
18:30:00.0158 0x186c SAVService - ok
18:30:00.0185 0x186c [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:30:00.0190 0x186c sbp2port - ok
18:30:00.0211 0x186c [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:30:00.0220 0x186c SCardSvr - ok
18:30:00.0235 0x186c [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
18:30:00.0238 0x186c scfilter - ok
18:30:00.0294 0x186c [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule        C:\Windows\system32\schedsvc.dll
18:30:00.0336 0x186c Schedule - ok
18:30:00.0362 0x186c [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:30:00.0365 0x186c SCPolicySvc - ok
18:30:00.0397 0x186c [ 0328BE1C7F1CBA23848179F8762E391C, EA80853F04BAE6F46F658B3EFED34BFDDE20E6F2BDA349EBC17EC75DFF19855D ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
18:30:00.0402 0x186c sdbus - ok
18:30:00.0430 0x186c [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:30:00.0439 0x186c SDRSVC - ok
18:30:00.0471 0x186c [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
18:30:00.0474 0x186c secdrv - ok
18:30:00.0488 0x186c [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon        C:\Windows\system32\seclogon.dll
18:30:00.0495 0x186c seclogon - ok
18:30:00.0503 0x186c [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\System32\sens.dll
18:30:00.0508 0x186c SENS - ok
18:30:00.0527 0x186c [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
18:30:00.0532 0x186c SensrSvc - ok
18:30:00.0576 0x186c [ 08607F7E51B0571BAD9C490DC53B67E6, 6398CA4DF3CC88A580BFA29097563E281D93CEA4356D9B9B163B3D0D541A6903 ] Ser2pl          C:\Windows\system32\DRIVERS\ser2pl.sys
18:30:00.0584 0x186c Ser2pl - ok
18:30:00.0609 0x186c [ 08607F7E51B0571BAD9C490DC53B67E6, 6398CA4DF3CC88A580BFA29097563E281D93CEA4356D9B9B163B3D0D541A6903 ] Ser2plx86       C:\Windows\system32\DRIVERS\ser2pl.sys
18:30:00.0614 0x186c Ser2plx86 - ok
18:30:00.0629 0x186c [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
18:30:00.0633 0x186c Serenum - ok
18:30:00.0650 0x186c [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\DRIVERS\serial.sys
18:30:00.0654 0x186c Serial - ok
18:30:00.0669 0x186c [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
18:30:00.0672 0x186c sermouse - ok
18:30:00.0710 0x186c [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\Windows\system32\sessenv.dll
18:30:00.0719 0x186c SessionEnv - ok
18:30:00.0731 0x186c [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
18:30:00.0733 0x186c sffdisk - ok
18:30:00.0739 0x186c [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
18:30:00.0741 0x186c sffp_mmc - ok
18:30:00.0750 0x186c [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
18:30:00.0753 0x186c sffp_sd - ok
18:30:00.0767 0x186c [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
18:30:00.0769 0x186c sfloppy - ok
18:30:00.0820 0x186c [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:30:00.0846 0x186c SharedAccess - ok
18:30:00.0882 0x186c [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:30:00.0907 0x186c ShellHWDetection - ok
18:30:00.0923 0x186c [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\drivers\sisagp.sys
18:30:00.0927 0x186c sisagp - ok
18:30:00.0947 0x186c [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
18:30:00.0950 0x186c SiSRaid2 - ok
18:30:00.0968 0x186c [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
18:30:00.0973 0x186c SiSRaid4 - ok
18:30:01.0049 0x186c [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
18:30:01.0057 0x186c SkypeUpdate - ok
18:30:01.0146 0x186c [ BC688096A4D7BDAD69DA119C52568DE8, 39851B174DF54F3B8CC5CD9BCD94DF7642B1E8EE7A88C92A718C2FA2BFFFC875 ] SliceDisk5      C:\Program Files\A-FF Find and Mount\slicedisk.sys
18:30:01.0151 0x186c SliceDisk5 - ok
18:30:01.0181 0x186c [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
18:30:01.0189 0x186c Smb - ok
18:30:01.0231 0x186c [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:30:01.0238 0x186c SNMPTRAP - ok
18:30:01.0349 0x186c [ CA77BE46F14FF6423EF9FBA89AA4CAA7, 9184A36095BF3614885A47EBCA540BEF474A3C611F01966CD229C3149CE2B3D7 ] SolarWinds SFTP Server C:\Program Files\SolarWinds\SftpServer\SolarWindsSftpServer.exe
18:30:01.0355 0x186c SolarWinds SFTP Server - ok
18:30:01.0389 0x186c [ 61D053B1F8E736F03092C40229FA2F1F, 22F1ED2692774FE810A847B4AE7C0F83090FBA4D88CCD257632FF9D7F5A12CF3 ] SolarWinds TFTP Server C:\Program Files\SolarWinds\TFTP Server\SolarWinds TFTP Server.exe
18:30:01.0395 0x186c SolarWinds TFTP Server - ok
18:30:01.0533 0x186c [ 3068CF091B4334B998380E9C877F5549, 1A4BA13184FFF45D479A28C1A71E1CF5CA5C7C5FAD84DAD87BF921EFDD2EB935 ] Sophos Agent    C:\Program Files\Sophos\Remote Management System\ManagementAgentNT.exe
18:30:01.0559 0x186c Sophos Agent - ok
18:30:01.0688 0x186c [ 1ABE4E5F76932F78C64741272D1AD9AF, E3C65792505CD7CA2B091BC11AB3B8CE01CBDAF7B9E74DCD5E9E1D21BE5C65DC ] Sophos AutoUpdate Service C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
18:30:01.0722 0x186c Sophos AutoUpdate Service - ok
18:30:01.0791 0x186c [ 1C3D8A4B93A97E3C46B3D01F6F321DC4, D5B7488A57B81BD474D4D9EBC9A594E5BE952684E6DCB9416736917D6471A949 ] Sophos Message Router C:\Program Files\Sophos\Remote Management System\RouterNT.exe
18:30:01.0829 0x186c Sophos Message Router - ok
18:30:01.0854 0x186c [ F2B7BD04146B3E6A895A1919E1F5DA89, D5A46DC11C9193C1BF69464EF62A6C741F53B79A88C1795530D7246F85F92D8B ] SophosBootDriver C:\Windows\system32\DRIVERS\SophosBootDriver.sys
18:30:01.0857 0x186c SophosBootDriver - ok
18:30:01.0883 0x186c [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys
18:30:01.0885 0x186c spldr - ok
18:30:01.0935 0x186c [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler         C:\Windows\System32\spoolsv.exe
18:30:01.0957 0x186c Spooler - ok
18:30:02.0089 0x186c [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\Windows\system32\sppsvc.exe
18:30:02.0245 0x186c sppsvc - ok
18:30:02.0295 0x186c [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\Windows\system32\sppuinotify.dll
18:30:02.0299 0x186c sppuinotify - ok
18:30:02.0344 0x186c [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:30:02.0352 0x186c srv - ok
18:30:02.0371 0x186c [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:30:02.0379 0x186c srv2 - ok
18:30:02.0396 0x186c [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:30:02.0399 0x186c srvnet - ok
18:30:02.0411 0x186c [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:30:02.0417 0x186c SSDPSRV - ok
18:30:02.0462 0x186c [ EF3458337D7341A05169CEFC73709264, C9D0AE966CFA02F7B72586C2A6E2AFA9818C9F4856A4E9625B79BC5A886FC193 ] SSPORT          C:\Windows\system32\Drivers\SSPORT.sys
18:30:02.0465 0x186c SSPORT - ok
18:30:02.0494 0x186c [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:30:02.0511 0x186c SstpSvc - ok
18:30:02.0611 0x186c [ 5EE6503C932CB79B493E4B4D8E23D219, 51DC712611E21F5CF3ED2322A146E167769D082E826B82601471CF782090E8B5 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
18:30:02.0620 0x186c ssudmdm - ok
18:30:02.0685 0x186c [ A97FCA92BE4E62BC589371058CBC769E, 0C147290BC8B264969D4219B2291C357F9076E21BE8C1D9C59D6EA507D3195D5 ] STacSV          C:\Program Files\IDT\WDM\STacSV.exe
18:30:02.0702 0x186c STacSV - ok
18:30:02.0746 0x186c [ D8FC8D47FBFCB3852E40F5D5058ABC6A, C460EAC21443F73E5102E3891A06715E3E7DF82268E03786D53580F2C12CFF8E ] stdcfltn        C:\Windows\system32\DRIVERS\stdcfltn.sys
18:30:02.0749 0x186c stdcfltn - ok
18:30:02.0778 0x186c [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\drivers\stexstor.sys
18:30:02.0782 0x186c stexstor - ok
18:30:02.0831 0x186c [ D5D73B49D53FCC47E2828D6805DFA0F6, 2DD32DDDD0AEFE3C3A2B42D946849000F91C249170445305DE79CABCBAD0660B ] STHDA           C:\Windows\system32\DRIVERS\stwrt.sys
18:30:02.0889 0x186c STHDA - ok
18:30:02.0947 0x186c [ EDB05BD63148796F23EA78506404A538, 8EBF623D3DEB6CCAC75AAFCF8B23271029A28BE29D459088E40FBF109E80AA17 ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
18:30:02.0951 0x186c StillCam - ok
18:30:03.0016 0x186c [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\Windows\System32\wiaservc.dll
18:30:03.0055 0x186c StiSvc - ok
18:30:03.0074 0x186c [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
18:30:03.0078 0x186c storflt - ok
18:30:03.0104 0x186c [ 0BF669F0A910BEDA4A32258D363AF2A5, 83EEBACDE4F69A2866B69CAA633F5C8B3CB01D88CEDB01B6EA5988E0A25CEE47 ] StorSvc         C:\Windows\system32\storsvc.dll
18:30:03.0110 0x186c StorSvc - ok
18:30:03.0136 0x186c [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
18:30:03.0139 0x186c storvsc - ok
18:30:03.0259 0x186c [ 7203BD2C9CB011EA2367D1F24ADD9725, FF99AF56C8730243D290A4EEE6E132B7055508F28C174C8BA04983B0CBDCEC10 ] SWBrowserIntegration C:\Program Files\SolarWinds\Toolset\SWBrowserIntegration.exe
18:30:03.0265 0x186c SWBrowserIntegration - ok
18:30:03.0276 0x186c [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
18:30:03.0280 0x186c swenum - ok
18:30:03.0431 0x186c [ AA5CA4A5F87C1576FF550A0372B3ED84, 15C79779CD8D7F90F58F65268F05421BA53382D0B01257749A9B7302DBF5145B ] swi_service     C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
18:30:03.0545 0x186c swi_service - ok
18:30:03.0579 0x186c [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll
18:30:03.0604 0x186c swprv - ok
18:30:03.0622 0x186c [ F2AD8960812FD111E20E84659EF19D43, FAC91E940D3735738908447E58792C32E6F86427612114A624041B7213831105 ] Synth3dVsc      C:\Windows\system32\drivers\synth3dvsc.sys
18:30:03.0627 0x186c Synth3dVsc - ok
18:30:03.0690 0x186c [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain         C:\Windows\system32\sysmain.dll
18:30:03.0766 0x186c SysMain - ok
18:30:03.0849 0x186c [ 4057399E2253F8319F2D35CE7139EAAE, 2A679A1ED46CB6E18513367C743F68D346BA2237FEB99F9C2CA11CCF29E3508C ] t1pusb          C:\Windows\system32\drivers\t1pusb.sys
18:30:03.0871 0x186c t1pusb - ok
18:30:03.0909 0x186c [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
18:30:03.0924 0x186c TabletInputService - ok
18:30:03.0952 0x186c [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:30:03.0977 0x186c TapiSrv - ok
18:30:03.0994 0x186c [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS             C:\Windows\System32\tbssvc.dll
18:30:04.0003 0x186c TBS - ok
18:30:04.0123 0x186c [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:30:04.0244 0x186c Tcpip - ok
18:30:04.0340 0x186c [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
18:30:04.0364 0x186c TCPIP6 - ok
18:30:04.0413 0x186c [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:30:04.0418 0x186c tcpipreg - ok
18:30:04.0443 0x186c [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
18:30:04.0447 0x186c TDPIPE - ok
18:30:04.0486 0x186c [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
18:30:04.0490 0x186c TDTCP - ok
18:30:04.0516 0x186c [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:30:04.0523 0x186c tdx - ok
18:30:04.0871 0x186c [ 5CEF407E235885DB5421DF79C843F2DF, B85D7C8A137B15BDF14DB9588CEDB09C67B0C7965F8E79121E2BA7796B16777C ] TeamViewer9     C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
18:30:05.0070 0x186c TeamViewer9 - ok
18:30:05.0093 0x186c [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
18:30:05.0096 0x186c TermDD - ok
18:30:05.0130 0x186c [ E951866BAC5A23403F62A349EDBB6EEB, BE6FB3C09D1CF8952B4D041F45B4DEE53D78EE7D27A5135012BC92B2F7CFBEA3 ] terminpt        C:\Windows\system32\drivers\terminpt.sys
18:30:05.0134 0x186c terminpt - ok
18:30:05.0183 0x186c [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService     C:\Windows\System32\termsrv.dll
18:30:05.0221 0x186c TermService - ok
18:30:05.0236 0x186c [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
18:30:05.0243 0x186c Themes - ok
18:30:05.0268 0x186c [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
18:30:05.0273 0x186c THREADORDER - ok
18:30:05.0316 0x186c [ CE92B84ED806F1C5C340A51DFD3E49BC, A8580A631100E0A58A3136BCCF1B56290A9B95F844B0A0B6852948DB185D92AA ] TlntSvr         C:\Windows\System32\tlntsvr.exe
18:30:05.0324 0x186c TlntSvr - ok
18:30:05.0341 0x186c [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
18:30:05.0350 0x186c TrkWks - ok
18:30:05.0433 0x186c [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:30:05.0448 0x186c TrustedInstaller - ok
18:30:05.0492 0x186c [ B37B08F2E5EEB1A37E448E09BACE1101, 32CC9E06B88BAB6FAB4696B744548DFCE9199A7FD2BA8B019F269CA75895852C ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
18:30:05.0497 0x186c tssecsrv - ok
18:30:05.0538 0x186c [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
18:30:05.0544 0x186c TsUsbFlt - ok
18:30:05.0558 0x186c [ 57C527AF84748B5C2F5178C499C0B81F, 2FF1F25BA16F8984E9F2CE4DE663F261BAF267EDF10D466A52BB211C567F763C ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
18:30:05.0562 0x186c TsUsbGD - ok
18:30:05.0598 0x186c [ 045ACB987C650D8186C6B4A692223860, C1CDDF7DABAE531C53290C7C70F35DD65751B399D269711865AD65F9E4E43B0B ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
18:30:05.0606 0x186c tsusbhub - ok
18:30:05.0636 0x186c [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
18:30:05.0643 0x186c tunnel - ok
18:30:05.0779 0x186c [ AAF458CC200326BEF602B5339400BF86, DD47C58A855E4FE2D9AFD9912C0661871F0A4CA385D864267F5245480AB8F4D7 ] tvnserver       C:\Program Files\TightVNC\tvnserver.exe
18:30:05.0819 0x186c tvnserver - ok
18:30:05.0833 0x186c [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
18:30:05.0837 0x186c uagp35 - ok
18:30:05.0854 0x186c [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:30:05.0863 0x186c udfs - ok
18:30:05.0884 0x186c [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:30:05.0888 0x186c UI0Detect - ok
18:30:05.0906 0x186c [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
18:30:05.0910 0x186c uliagpkx - ok
18:30:05.0933 0x186c [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
18:30:05.0936 0x186c umbus - ok
18:30:05.0943 0x186c [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\drivers\umpass.sys
18:30:05.0945 0x186c UmPass - ok
18:30:05.0966 0x186c [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService    C:\Windows\System32\umrdp.dll
18:30:05.0975 0x186c UmRdpService - ok
18:30:06.0213 0x186c [ 1B71370AEC1115F80D9A4A209317C968, C6886F556E87C1750991C27EF818B3A2CAB5DD84A26290457A005CFDECBEF884 ] UNS             C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:30:06.0296 0x186c UNS - ok
18:30:06.0320 0x186c [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
18:30:06.0329 0x186c upnphost - ok
18:30:06.0377 0x186c [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
18:30:06.0382 0x186c USBAAPL - ok
18:30:06.0450 0x186c [ A1977C315BF5691DA99235AA4A6907AF, 34B52FBA83F0E1C6B001D0AD1808B00152F731D18AAECC3C53B9918AA89BACEC ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
18:30:06.0458 0x186c usbaudio - ok
18:30:06.0506 0x186c [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
18:30:06.0513 0x186c usbccgp - ok
18:30:06.0562 0x186c [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir          C:\Windows\system32\drivers\usbcir.sys
18:30:06.0569 0x186c usbcir - ok
18:30:06.0592 0x186c [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci         C:\Windows\system32\drivers\usbehci.sys
18:30:06.0597 0x186c usbehci - ok
18:30:06.0672 0x186c [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
18:30:06.0697 0x186c usbhub - ok
18:30:06.0746 0x186c [ 9828C8D14CC2676421778F0DE638CF97, 479A28211FFB85190A01FAB0283B927588805D2C0CDB03F85F8F814B88E4F453 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
18:30:06.0750 0x186c usbohci - ok
18:30:06.0779 0x186c [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\drivers\usbprint.sys
18:30:06.0782 0x186c usbprint - ok
18:30:06.0844 0x186c [ BE444D443F424E3146534BA98978D68A, 6EF9B6121EACE54AB7CA569549F1403A9E14DC33633D6F3A61A13B10878432AC ] usbrndis6       C:\Windows\system32\DRIVERS\usb80236.sys
18:30:06.0848 0x186c usbrndis6 - ok
18:30:06.0906 0x186c [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:30:06.0914 0x186c USBSTOR - ok
18:30:06.0965 0x186c [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
18:30:06.0969 0x186c usbuhci - ok
18:30:07.0013 0x186c [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
18:30:07.0029 0x186c usbvideo - ok
18:30:07.0059 0x186c [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
18:30:07.0068 0x186c UxSms - ok
18:30:07.0082 0x186c [ 803B370865D907EA21DC0C2B6A8936B5, E98F0BA1D94786E061A3EA2CC76041FF6BE0ADF47C6205D5572C03BF0E29CA78 ] VaultSvc        C:\Windows\system32\lsass.exe
18:30:07.0087 0x186c VaultSvc - ok
18:30:07.0121 0x186c [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
18:30:07.0126 0x186c vdrvroot - ok
18:30:07.0175 0x186c [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe
18:30:07.0224 0x186c vds - ok
18:30:07.0248 0x186c [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
18:30:07.0253 0x186c vga - ok
18:30:07.0278 0x186c [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
18:30:07.0283 0x186c VgaSave - ok
18:30:07.0291 0x186c VGPU - ok
18:30:07.0320 0x186c [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
18:30:07.0341 0x186c vhdmp - ok
18:30:07.0371 0x186c [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
18:30:07.0377 0x186c viaagp - ok
18:30:07.0407 0x186c [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
18:30:07.0414 0x186c ViaC7 - ok
18:30:07.0424 0x186c [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\drivers\viaide.sys
18:30:07.0428 0x186c viaide - ok
18:30:07.0451 0x186c [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus           C:\Windows\system32\drivers\vmbus.sys
18:30:07.0473 0x186c vmbus - ok
18:30:07.0490 0x186c [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
18:30:07.0495 0x186c VMBusHID - ok
18:30:07.0511 0x186c [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:30:07.0517 0x186c volmgr - ok
18:30:07.0549 0x186c [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:30:07.0580 0x186c volmgrx - ok
18:30:07.0609 0x186c [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:30:07.0634 0x186c volsnap - ok
18:30:07.0673 0x186c [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
18:30:07.0693 0x186c vsmraid - ok
18:30:07.0775 0x186c [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\Windows\system32\vssvc.exe
18:30:07.0831 0x186c VSS - ok
18:30:07.0852 0x186c [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
18:30:07.0855 0x186c vwifibus - ok
18:30:07.0885 0x186c [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
18:30:07.0889 0x186c vwififlt - ok
18:30:07.0908 0x186c [ A3F04CBEA6C2A10E6CB01F8B47611882, 32AFE18B07FECA30BC95831A5DC94C784E543784DF16165334A777DC84E91EF3 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
18:30:07.0909 0x186c vwifimp - ok
18:30:07.0943 0x186c [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
18:30:07.0968 0x186c W32Time - ok
18:30:07.0986 0x186c [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
18:30:07.0990 0x186c WacomPen - ok
18:30:08.0109 0x186c [ A650671AF9A670F678F29FF212B4950C, 3935356E3EA02BD2EE96F6C22E17743FEC9A73AC705A1D1FF90030B33F9EF7A3 ] wampapache      c:\wamp\bin\apache\apache2.4.4\bin\httpd.exe
18:30:08.0113 0x186c wampapache - ok
18:30:08.0160 0x186c wampmysqld - ok
18:30:08.0191 0x186c [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
18:30:08.0199 0x186c WANARP - ok
18:30:08.0208 0x186c [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:30:08.0212 0x186c Wanarpv6 - ok
18:30:08.0392 0x186c [ 353A04C273EC58475D8633E75CCD5604, FFAE53B6B53AEFC9E8A10BF27480E072D74430276BEB532FE1D473E9616D8CE0 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
18:30:08.0479 0x186c WatAdminSvc - ok
18:30:08.0551 0x186c [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\Windows\system32\wbengine.exe
18:30:08.0603 0x186c wbengine - ok
18:30:08.0631 0x186c [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
18:30:08.0643 0x186c WbioSrvc - ok
18:30:08.0662 0x186c [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:30:08.0673 0x186c wcncsvc - ok
18:30:08.0684 0x186c [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:30:08.0689 0x186c WcsPlugInService - ok
18:30:08.0708 0x186c [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\drivers\wd.sys
18:30:08.0710 0x186c Wd - ok
18:30:08.0783 0x186c [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:30:08.0809 0x186c Wdf01000 - ok
18:30:08.0829 0x186c [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:30:08.0835 0x186c WdiServiceHost - ok
18:30:08.0840 0x186c [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:30:08.0845 0x186c WdiSystemHost - ok
18:30:08.0894 0x186c [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient       C:\Windows\System32\webclnt.dll
18:30:08.0910 0x186c WebClient - ok
18:30:08.0938 0x186c [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:30:08.0947 0x186c Wecsvc - ok
18:30:08.0964 0x186c [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:30:08.0970 0x186c wercplsupport - ok
18:30:08.0993 0x186c [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
18:30:08.0999 0x186c WerSvc - ok
18:30:09.0021 0x186c [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
18:30:09.0023 0x186c WfpLwf - ok
18:30:09.0036 0x186c [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
18:30:09.0039 0x186c WIMMount - ok
18:30:09.0150 0x186c [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
18:30:09.0204 0x186c WinDefend - ok
18:30:09.0211 0x186c WinHttpAutoProxySvc - ok
18:30:09.0273 0x186c [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:30:09.0296 0x186c Winmgmt - ok
18:30:09.0385 0x186c [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM           C:\Windows\system32\WsmSvc.dll
18:30:09.0443 0x186c WinRM - ok
18:30:09.0515 0x186c [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
18:30:09.0517 0x186c WinUsb - ok
18:30:09.0551 0x186c [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc         C:\Windows\System32\wlansvc.dll
18:30:09.0585 0x186c Wlansvc - ok
18:30:09.0618 0x186c [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
18:30:09.0619 0x186c WmiAcpi - ok
18:30:09.0650 0x186c [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:30:09.0667 0x186c wmiApSrv - ok
18:30:09.0776 0x186c [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
18:30:09.0845 0x186c WMPNetworkSvc - ok
18:30:09.0865 0x186c [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
18:30:09.0871 0x186c WPCSvc - ok
18:30:09.0890 0x186c [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:30:09.0899 0x186c WPDBusEnum - ok
18:30:09.0909 0x186c [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:30:09.0913 0x186c ws2ifsl - ok
18:30:09.0925 0x186c [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
18:30:09.0933 0x186c wscsvc - ok
18:30:09.0939 0x186c WSearch - ok
18:30:10.0069 0x186c [ D9B0134913E5EF007AF82A418C503322, 7418DD28C8E968674382F8352AAFFC4DE77887E2B71B8844D615F19432B4C55A ] wuauserv        C:\Windows\system32\wuaueng.dll
18:30:10.0202 0x186c wuauserv - ok
18:30:10.0241 0x186c [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:30:10.0244 0x186c WudfPf - ok
18:30:10.0265 0x186c [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
18:30:10.0288 0x186c WUDFRd - ok
18:30:10.0338 0x186c [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:30:10.0355 0x186c wudfsvc - ok
18:30:10.0415 0x186c [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc         C:\Windows\System32\wwansvc.dll
18:30:10.0440 0x186c WwanSvc - ok
18:30:10.0611 0x186c [ DD0042F0C3B606A6A8B92D49AFB18AD6, 8D3BE4C93D02AF5F42EC46AF598D6DA40C61D467CB2FEE5E222F9C1E7A84B852 ] YahooAUService C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
18:30:10.0662 0x186c YahooAUService - ok
18:30:10.0718 0x186c [ 9417C311E7257634FE735F82035425F3, 8AB630042D3D7E6F24EB09139FFA5C893B7A748D6C8F0B849A64BA2988F8E603 ] ZTEusbmdm6k     C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
18:30:10.0728 0x186c ZTEusbmdm6k - ok
18:30:10.0753 0x186c [ 50945CD3EA196D16394699D8E811F8D7, 51D51087D28B1B1827EA673661615760F296C27C90343632FE1C0DC18121F475 ] ZTEusbnet       C:\Windows\system32\DRIVERS\ZTEusbnet.sys
18:30:10.0770 0x186c ZTEusbnet - ok
18:30:10.0796 0x186c [ 9417C311E7257634FE735F82035425F3, 8AB630042D3D7E6F24EB09139FFA5C893B7A748D6C8F0B849A64BA2988F8E603 ] ZTEusbnmea      C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
18:30:10.0804 0x186c ZTEusbnmea - ok
18:30:10.0831 0x186c [ 9417C311E7257634FE735F82035425F3, 8AB630042D3D7E6F24EB09139FFA5C893B7A748D6C8F0B849A64BA2988F8E603 ] ZTEusbser6k     C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
18:30:10.0839 0x186c ZTEusbser6k - ok
18:30:10.0937 0x186c ================ Scan global ===============================
18:30:10.0969 0x186c [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
18:30:11.0026 0x186c [ 1F5F07091D50244F17DD8D5147A628CC, 2F2B84BD1C052F44662960953C0EC91F9233D4D8DD06512E3E3BE43CE216BCB6 ] C:\Windows\system32\winsrv.dll
18:30:11.0073 0x186c [ 1F5F07091D50244F17DD8D5147A628CC, 2F2B84BD1C052F44662960953C0EC91F9233D4D8DD06512E3E3BE43CE216BCB6 ] C:\Windows\system32\winsrv.dll
18:30:11.0111 0x186c [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
18:30:11.0156 0x186c [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
18:30:11.0185 0x186c [ Global ] - ok
18:30:11.0186 0x186c ================ Scan MBR ==================================
18:30:11.0195 0x186c [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:30:11.0421 0x186c \Device\Harddisk0\DR0 - ok
18:30:11.0422 0x186c ================ Scan VBR ==================================
18:30:11.0427 0x186c [ 7955938DEEB7FD0907B1F41BD196C8AF ] \Device\Harddisk0\DR0\Partition1
18:30:11.0430 0x186c \Device\Harddisk0\DR0\Partition1 - ok
18:30:11.0444 0x186c [ 25F5C9DF209EF275BA1C266F8EB3A79B ] \Device\Harddisk0\DR0\Partition2
18:30:11.0448 0x186c \Device\Harddisk0\DR0\Partition2 - ok
18:30:11.0449 0x186c ================ Scan generic autorun ======================
18:30:11.0509 0x186c [ 12C864E55D5ED1A4061FA18BCCD80AC5, 341A3F38EE38AA38021093ACA50DD300B5EACD4D590A2E9D114B34D9B38208BD ] C:\Program Files\IDT\WDM\sttray.exe
18:30:11.0545 0x186c SysTrayApp - ok
18:30:11.0595 0x186c [ E83D6BA916FCBAE7C4DD54258D980485, 9F842D5108AE1B9B529E62356DDF046A39C0E28D798C95752CE34F5639E8CDD0 ] C:\Windows\system32\igfxtray.exe
18:30:11.0603 0x186c IgfxTray - ok
18:30:11.0624 0x186c [ 91A0008D2749539E166D3FDD30D87CA5, 83681E0FF7D4B0B2E49A293010E2194A91954981923B44FDDDDC77DA74D89FEC ] C:\Windows\system32\hkcmd.exe
18:30:11.0640 0x186c HotKeysCmds - ok
18:30:11.0662 0x186c [ 899378BD96D3993A9DBDAB04DCC6C076, 5942E6255E308685E254378AE6717CC6BFA2B2D25BE0B27782A5E348C02D0D94 ] C:\Windows\system32\igfxpers.exe
18:30:11.0672 0x186c Persistence - ok
18:30:11.0761 0x186c [ A0EDCF34A355729CD4A38648A6142FE6, 434CCFA3551DD85C439959E8D67D0BB89D505A9F8DF12B2E4AE008F7FF9D61B7 ] C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe
18:30:11.0802 0x186c FreeFallProtection - ok
18:30:11.0857 0x186c [ AAF458CC200326BEF602B5339400BF86, DD47C58A855E4FE2D9AFD9912C0661871F0A4CA385D864267F5245480AB8F4D7 ] C:\Program Files\TightVNC\tvnserver.exe
18:30:11.0882 0x186c tvncontrol - ok
18:30:11.0953 0x186c [ B5C2B8DD12E1DDA55DDA0A22B11200C4, 5FD64D505CCFB81F7AE1DD23516273930F4983D632A0DEF1ED93E2090986E7D7 ] C:\Windows\Samsung\PanelMgr\ssmmgr.exe
18:30:11.0990 0x186c Samsung PanelMgr - ok
18:30:12.0426 0x186c [ CD9AD6A3CE7F750BB974B0155C543BE3, 3AA54AA0D63487890678C7BFCB109861F89303117D697F1FEAAC5A934896056E ] C:\Program Files\Microsoft Lync\communicator.exe
18:30:12.0821 0x186c Communicator - ok
18:30:12.0967 0x186c [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
18:30:13.0016 0x186c Adobe ARM - ok
18:30:13.0067 0x186c [ C5401E664D0BD752842655033A9306D9, A02EF0560573901676595C3D4B66B42289EEBE6519CE46C90A405CDB83048554 ] C:\Program Files\Citrix\ICA Client\concentr.exe
18:30:13.0073 0x186c ConnectionCenter - ok
18:30:13.0255 0x186c [ 0A7C08BE7283B9256DFADB56BE3EBC80, ADEEF9B71EFDB526B2C32EAFAF499923E90466FCC73DACAFF39B95D903F68BAF ] C:\Program Files\Logitech\SetPointP\SetPoint.exe
18:30:13.0354 0x186c EvtMgr6 - ok
18:30:13.0434 0x186c [ 94A4D6915D4F572309DF6137E1846528, E46BDF83CAA6683AA655DBA3D2C8DC7AC06251E952466A20CFDA3A16B1840455 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
18:30:13.0439 0x186c APSDaemon - ok
18:30:13.0555 0x186c [ 187F4C75A89E3F412322C94526320074, D78FA7EF93C8C7B4326A5B6DB04A92ADD091DF00658FA8731D07C5D3BE29ED04 ] C:\Program Files\Microsoft Office\Office14\BCSSync.exe
18:30:13.0560 0x186c BCSSync - ok
18:30:13.0844 0x186c [ 4048D2148741AC367C0130FBCFB4A9A9, B3D28FB3FAB74B166FF5F519495DA880479D078D9FA76209D03B7301A465104F ] C:\Program Files\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe
18:30:13.0989 0x186c RIM PeerManager - ok
18:30:14.0119 0x186c [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
18:30:14.0123 0x186c HP Software Update - ok
18:30:14.0221 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:14.0333 0x186c Sidebar - ok
18:30:14.0369 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:14.0375 0x186c mctadmin - ok
18:30:14.0446 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:14.0469 0x186c Sidebar - ok
18:30:14.0477 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:14.0479 0x186c mctadmin - ok
18:30:14.0527 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:14.0547 0x186c Sidebar - ok
18:30:14.0553 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:14.0555 0x186c mctadmin - ok
18:30:14.0589 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:14.0607 0x186c Sidebar - ok
18:30:14.0613 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:14.0615 0x186c mctadmin - ok
18:30:14.0655 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:14.0672 0x186c Sidebar - ok
18:30:14.0680 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:14.0682 0x186c mctadmin - ok
18:30:14.0721 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:14.0739 0x186c Sidebar - ok
18:30:14.0747 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:14.0749 0x186c mctadmin - ok
18:30:14.0787 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:14.0805 0x186c Sidebar - ok
18:30:14.0811 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:14.0814 0x186c mctadmin - ok
18:30:14.0853 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:14.0871 0x186c Sidebar - ok
18:30:14.0878 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:14.0880 0x186c mctadmin - ok
18:30:14.0919 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:14.0937 0x186c Sidebar - ok
18:30:14.0943 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:14.0946 0x186c mctadmin - ok
18:30:14.0986 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:15.0004 0x186c Sidebar - ok
18:30:15.0011 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:15.0014 0x186c mctadmin - ok
18:30:15.0052 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:15.0069 0x186c Sidebar - ok
18:30:15.0076 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:15.0079 0x186c mctadmin - ok
18:30:15.0117 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:15.0135 0x186c Sidebar - ok
18:30:15.0143 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:15.0145 0x186c mctadmin - ok
18:30:15.0182 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:15.0200 0x186c Sidebar - ok
18:30:15.0207 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:15.0209 0x186c mctadmin - ok
18:30:15.0248 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:15.0266 0x186c Sidebar - ok
18:30:15.0273 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:15.0276 0x186c mctadmin - ok
18:30:15.0315 0x186c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
18:30:15.0332 0x186c Sidebar - ok
18:30:15.0338 0x186c [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
18:30:15.0341 0x186c mctadmin - ok
18:30:15.0426 0x186c [ C948AC73822CA662CF44185B909EA18B, 75895AA3AAED47D50D178CF064F939ED1EB345E9ADD12527F9F5737395A9AFB4 ] C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
18:30:15.0469 0x186c OfficeSyncProcess - ok
18:30:15.0564 0x186c [ 98B31CBC09D671DADEB7C92AEF1CBE29, F3A5B6E04F4FD4180242EE7E1632B4C179A6FE277B414F937CCAA6286605B671 ] C:\Program Files\GLO NETPRO\UpdateDog\ouc.exe
18:30:15.0581 0x186c HW_OPENEYE_OUC_GLO NETPRO - ok
18:30:15.0748 0x186c [ 06DF241CF7F34F41A0A06956E30A43AE, 3CA9C42442A97D828C3AC6AF61FAF65EEF2268AAFCDB2737FE18E20993063055 ] C:\Program Files\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe
18:30:15.0819 0x186c Adobe Acrobat Synchronizer - ok
18:30:16.0012 0x186c [ 395BCC9122E705F6586217E32CD01CC9, 0A2E3BF0E626A65B9FF1BEFB35FFBC9CCAA3C75DB395D175AAE2DD014A8E8A34 ] C:\Program Files\HP\HP Officejet 7500 E910\Bin\ScanToPCActivationApp.exe
18:30:16.0133 0x186c HP Officejet 7500 E910 (NET) - ok
18:30:16.0201 0x186c Skype - ok
18:30:16.0274 0x186c [ 0E44AE22235BCC723C96E05E82F5CB5A, 2D5FAC81729628587F3FBDF3731EE5C4F68130599422DDE64833B57C2E038AD5 ] C:\Program Files\WordWeb\wweb32.exe
18:30:16.0283 0x186c WordWeb - ok
18:30:16.0360 0x186c [ 06DF241CF7F34F41A0A06956E30A43AE, 3CA9C42442A97D828C3AC6AF61FAF65EEF2268AAFCDB2737FE18E20993063055 ] C:\Program Files\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe
18:30:16.0385 0x186c Adobe Acrobat Synchronizer - ok
18:30:16.0388 0x186c Waiting for KSN requests completion. In queue: 226
18:30:17.0389 0x186c Waiting for KSN requests completion. In queue: 226
18:30:18.0439 0x186c Win FW state via NFP2: enabled
18:30:22.0817 0x186c ============================================================
18:30:22.0817 0x186c Scan finished
18:30:22.0817 0x186c ============================================================
18:30:22.0838 0x1570 Detected object count: 0
18:30:22.0838 0x1570 Actual detected object count: 0
18:30:33.0447 0x0538 Deinitialize success

#5 ----------------

SuperMember

Authentic Member
1,095 posts

Posted 25 September 2014 - 01:33 AM

Microsoft Windows 7 Enterprise 6.1.7601.1.1252.1.1033.18.3241.1005 [GMT 1:00]

Is this an enterprise/business machine?

Proud Member of UNITE & TB

#6 Sbabalola

New Member

Authentic Member
9 posts

Posted 25 September 2014 - 04:17 AM

The OS is an Enterprise.

#7 ----------------

SuperMember

Authentic Member
1,095 posts

Posted 25 September 2014 - 04:43 AM

Scan with CKScanner

Download CKScanner by askey127 from Here & save it to your Desktop.

Right-click and Run as Administrator CKScanner.exe then click Search For Files
When the cursor hourglass disappears, click Save List To File
A message box will verify the file saved
Double-click the CKFiles.txt icon on your desktop then copy/paste the contents in your next reply

We Need to Diagnose a Possible Problem with WGA

Please download MGADiag and save it to your desktop.
Double click the icon on your desktop.
Click Continue
Click Copy
Go to Start -> Run and type in "Notepad"
Go to Edit -> Paste in notepad.
x out all of the numbers and letters in the line beginning with "Windows Product Key:"
Copy and paste that log here.

Proud Member of UNITE & TB

#8 Sbabalola

New Member

Authentic Member
9 posts

Posted 25 September 2014 - 05:28 AM

Thanks for your swift response.

After running the CKScanner tool, below is the result.

CKScanner 2.4 - Additional Security Risks - These are not necessarily bad
c:\users\sbabalola\documents\beier software\beier software\versapro2.04\_crack_\versapro.exe
c:\users\sbabalola\documents\beier thumbdrive\beier software\versapro2.04\_crack_\versapro.exe
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt.part1.rar
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt.part2.rar
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\!rapidshare - hotfile - uploading - full download.url
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\file_id.diz
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\redt.nfo
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\redt\filemaker pro.exe
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\redt\extensions\english\fmrsrc.dll
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmp_trial_fm_11.0.1.96.exe
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\autorun.inf
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\setup.exe
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\trial read me (english).pdf
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\autorun\autorn32.ico
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\autorun\autorun.exe
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\0x0404.ini
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\0x0407.ini
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\0x0409.ini
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\0x040a.ini
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\0x040c.ini
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\0x0410.ini
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\0x0411.ini
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\0x0413.ini
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\0x041d.ini
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\0x0804.ini
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\1028.mst
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\1031.mst
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\1033.mst
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\1034.mst
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\1036.mst
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\1040.mst
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\1041.mst
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\1043.mst
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\1053.mst
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\2052.mst
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\assisted install.txt
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\data1.cab
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\data2.cab
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\data3.cab
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\data4.cab
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\filemaker pro 11.msi
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\filemaker pro 11.pdf
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\iassist.exe
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\setup.exe
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\setup.ini
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\bonjour\32-bit\bonjoursetup.exe
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\bonjour\64-bit\bonjoursetup.exe
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\setup\chinesesimplifiedrsrc.dll
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\setup\chinesetraditionalrsrc.dll
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\setup\dutchrsrc.dll
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\setup\englishrsrc.dll
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\setup\frenchrsrc.dll
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\setup\germanrsrc.dll
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\setup\italianrsrc.dll
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\setup\japanesersrc.dll
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\setup\registration.exe
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\setup\spanishrsrc.dll
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\setup\swedishrsrc.dll
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\windows\redist.txt
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\windows\windows6.0-kb942288-v2-ia64.msu
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\windows\windows6.0-kb942288-v2-x64.msu
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\windows\windows6.0-kb942288-v2-x86.msu
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\windows\windowsserver2003-kb942288-v4-ia64.exe
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\windows\windowsserver2003-kb942288-v4-x64.exe
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\windows\windowsserver2003-kb942288-v4-x86.exe
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\files\windows\windowsxp-kb942288-v3-x86.exe
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\xdbc\jdbc client driver installer\fmjdbc.jar
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\xdbc\jdbc client driver installer\readme.pdf
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\xdbc\odbc client driver installer\fmodbc_installer_win32.msi
c:\users\sbabalola\documents\bourbon doc\filemaker pro\filemaker.pro.v11.0.1.96.cracked-redt\setup\fmicd\xdbc\odbc client driver installer\readme.pdf
c:\users\sbabalola\documents\downloads\terra copy\ophcrack-xp-livecd-3.6.0.iso
c:\users\sbabalola\documents\drivers\hp pavilion dv3\garminkeygenv1.5.rar
c:\users\sbabalola\documents\drivers\hp pavilion dv3\map_id_finders\map id finders\hmonitor-v4.4.3.2_www.softarchive.net\!crack\hmonitor.exe
c:\users\sbabalola\documents\my pers\sunday\atomix.virtual.dj.pro.v7.4\crack\virtualdj_home.exe
c:\users\sbabalola\documents\my pers\sunday\my program\ccnp\netsim8\netsim8\crack\boson_netsim.exe
c:\users\sbabalola\documents\my pers\sunday\my program\ccnp\netsim8\netsim8\crack\navigator.exe
c:\users\sbabalola\documents\usb1\beier software\versapro2.04\_crack_\versapro.exe
scanner sequence 3.ZZ.11.QGNARZ
----- EOF -----

FOR MGADiag Log

Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->

Validation Code: 0
Cached Online Validation Code: 0x0
Windows Product Key:
Windows Product Key Hash:
Windows Product ID:
Windows Product ID Type:
Windows License Type: KMS Client
Windows OS version: 6.1.7601.2.00010100.1.0.004
ID:
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: N/A, hr = 0x80070002
Signed By: N/A, hr = 0x80070002
Product Name: Windows 7 Enterprise
Architecture: 0x00000000
Build lab: 7601.win7sp1_gdr.130828-1532
TTS Error:
Validation Diagnostic:
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002

Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002

OGA Notifications Data-->
Cached Result: N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002
OGAExec.exe Signed By: N/A, hr = 0x80070002
OGAAddin.dll Signed By: N/A, hr = 0x80070002

OGA Data-->
Office Status: 100 Genuine
Microsoft Office Enterprise 2007 - 100 Genuine
OGA Version: N/A, 0x80070002
Signed By: N/A, hr = 0x80070002
Office Diagnostics: 025D1FF3-364-80041010_025D1FF3-229-80041010_025D1FF3-230-1_025D1FF3-517-80040154_025D1FF3-237-80040154_025D1FF3-238-2_025D1FF3-244-80070002_025D1FF3-258-3_E2AD56EA-765-d003_E2AD56EA-766-0_E2AD56EA-134-80004005_E2AD56EA-765-b01a_E2AD56EA-766-0_E2AD56EA-148-80004005_16E0B333-89-80004005_B4D0AA8B-1029-80004005

Browser Data-->
Proxy settings: http=127.0.0.1:49400;https=127.0.0.1:49400
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Win32)
Default Browser: C:\Program Files\Mozilla Firefox\firefox.exe
Download signed ActiveX controls: Prompt
Download unsigned ActiveX controls: Disabled
Run ActiveX controls and plug-ins: Allowed
Initialize and script ActiveX controls not marked as safe: Disabled
Allow scripting of Internet Explorer Webbrowser control: Disabled
Active scripting: Allowed
Script ActiveX controls marked as safe for scripting: Allowed

File Scan Data-->

Other data-->
Office Details: <GenuineResults><MachineData><UGUID>{41D9C3A2-6A78-49BA-A104-5F2124A64101}</UGUID><Version>1.9.0027.0</Version><OS>6.1.7601.2.00010100.1.0.004</OS><Architecture>x32</Architecture><PKey>*****-*****-*****-*****-HVTHH</PKey><PID>00392-918-5000002-85671</PID><PIDType>1</PIDType><SID>S-1-5-21-3952048904-1736926062-2557856200</SID><SYSTEM><Manufacturer>Dell Inc.</Manufacturer><Model>Latitude E6420</Model></SYSTEM><BIOS><Manufacturer>Dell Inc.</Manufacturer><Version>A05</Version><SMBIOSVersion major="2" minor="6"/><Date>20110524000000.000000+000</Date></BIOS><HWID>C3F43B07018400FE</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>W. Central Africa Standard Time(GMT+01:00)</TimeZone><iJoin>1</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM><OEMID>DELL </OEMID><OEMTableID>CBX3   </OEMTableID></OEM><GANotification/></MachineData><Software><Office><Result>100</Result><Products><Product GUID="{90120000-0030-0000-0000-0000000FF1CE}"><LegitResult>100</LegitResult><Name>Microsoft Office Enterprise 2007</Name><Ver>12</Ver><Val>4958EF8F385AD86</Val><Hash>KhkNhdvqGAsihvFG2k8GB+u6onQ=</Hash><Pid>89388-707-9665797-65084</Pid><PidType>14</PidType></Product></Products><Applications><App Id="15" Version="12" Result="100"/><App Id="16" Version="12" Result="100"/><App Id="18" Version="12" Result="100"/><App Id="19" Version="12" Result="100"/><App Id="1A" Version="12" Result="100"/><App Id="1B" Version="12" Result="100"/><App Id="44" Version="12" Result="100"/><App Id="A1" Version="12" Result="100"/><App Id="BA" Version="12" Result="100"/></Applications></Office></Software></GenuineResults>

Spsys.log Content: 0x80070002

Licensing Data-->
Software licensing service version: 6.1.7601.17514

Name: Windows® 7, Enterprise edition
Description: Windows Operating System - Windows® 7, VOLUME_KMSCLIENT channel
Activation ID:
Application ID:
Extended PID:
Installation ID:
Partial Product Key: HVTHH
License Status: Licensed
Volume activation expiration: 254700 minute(s) (176 day(s))
Remaining Windows rearm count: 1
Trusted time: 9/25/2014 12:20:25 PM

Key Management Service client information
    Client Machine ID (CMID):
    Registered KMS machine name:
    KMS machine extended PID:
    Activation interval: 120 minutes
    Renewal interval: 10080 minutes
    KMS host caching is enabled

Windows Activation Technologies-->
HrOffline: 0x00000000
HrOnline: N/A
HealthStatus: 0x0000000000000000
Event Time Stamp: N/A
ActiveX: Registered, Version: 7.1.7600.16395
Admin Service: Registered, Version: 7.1.7600.16395
HealthStatus Bitmask Output:

HWID Data-->
HWID Hash Current: OgAAAAIAAAABAAEABAACAAAABAABAAEA6GGITwgSFT+ctBzadHheHGRQd/Ys4vCA5MW8WRz5eBMucw==

OEM Activation 1.0 Data-->
N/A

OEM Activation 2.0 Data-->
BIOS valid for OA 2.0: yes
Windows marker version: 0x20001
OEMID and OEMTableID Consistent: yes
BIOS Information:
ACPI Table Name   OEMID Value   OEMTableID Value
APIC           DELL         CBX3
FACP           DELL         CBX3
HPET           A M I        PCHHPET
BOOT           DELL         CBX3
MCFG           DELL         SNDYBRDG
TCPA
SSDT           PmRef       Cpu0Ist
SSDT           PmRef       Cpu0Ist
DMAR           INTEL        SNB
SLIC           DELL         CBX3

#9 ----------------

SuperMember

Authentic Member
1,095 posts

Posted 25 September 2014 - 06:03 AM

Your logs show obvious signs of having cracked software on your system. This is the main reason your computer is infected. Visiting cracksites/warezsites - and other questionable/illegal sites is always a risk.

Even a single click on the site can drop multiple forms of very serious malware, many of which disable your onboard protection, and System Restore.

If you install the cracked software, you are running executable files from these dubious, unknown sources. You are in effect giving these sources access to information on your hard disk, and potential control over the operation of your computer.

Additionally, cracked programs are illegal. Referring to the Forum Rules which you should have read at the time of Registering at this forum, this forum does not support illegal activity. As such, be advised that any request for assistance in removing malware may go unanswered, or may be discontinued, if the cracked (illegal) software is still present on the machine

Having said that we can help you clean your machine this time BUT this would be a ONCE ONLY offer on the understanding that all cracks are removed. This would apply not only here but at many other Malware Support forums if you were to appear again with cracks onboard, as many of us analysts work at multiple support sites. Please remove all cracked software and illegally obtained copyrighted material you have on the system so we may continue with the clean up.

Proud Member of UNITE & TB

#10 Sbabalola

New Member

Authentic Member
9 posts

Posted 25 September 2014 - 08:31 AM

Okay Thanks.

I am on the process of removing all that i found in the scanner logs.

What shoul i do next when all has been done.

Advertisements

Register to Remove

#11 Sbabalola

New Member

Authentic Member
9 posts

Posted 25 September 2014 - 08:46 AM

This is the result of the new scan carried out.

CKScanner 2.4 - Additional Security Risks - These are not necessarily bad
scanner sequence 3.RP.11.EUCPM0
----- EOF -----

#12 ----------------

SuperMember

Authentic Member
1,095 posts

Posted 25 September 2014 - 08:47 AM

Scan with FRST in normal mode

Please download Farbar's Recovery Scan Tool to your desktop: FRST 32bit or FRST 64bit (If not sure: Start --> Computer (right click) --> properties)

Run FRST.
Don´t change one of the checkboxes and hit Scan.
Logfiles are created on your desktop.
Poste the FRST.txt and (after the first scan only!) the Addition.txt.

Proud Member of UNITE & TB

#13 Sbabalola

New Member

Authentic Member
9 posts

Posted 25 September 2014 - 09:11 AM

After the scan see the Log file as requested.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-09-2014 01
Ran by sbabalola (administrator) on LOSLAP08268 on 25-09-2014 16:03:17
Running from C:\Users\sbabalola\Documents\Drivers\HP Probook 6545B
Loaded Profile: sbabalola (Available profiles: _ONNE2 & _LAGOS & ckoko & _HARCOURT & _Ruby & _Ajax & _arethuse & _sbabalola & _AMADI & _LIBERTY216 & _LIBERTY217 & amadi-ops.west & _LIBERTY233 & _LIBERTY232 & svc.sophos & _LIBERTY244 & dbenamar & sbabalola & Install)
Platform: Microsoft Windows 7 Enterprise Service Pack 1 (X86) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv.exe
(Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
(Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AEstSrv.exe
(Affinegy, Inc.) C:\Program Files\Belkin\Router Setup and Monitor\BelkinService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(CobianSoft, Luis Cobian) C:\Program Files\Cobian Backup 10\cbVSCService.exe
() C:\Windows\System32\GManager.exe
() C:\ProgramData\DatacardService\HWDeviceService.exe
(Microsoft Corporation) C:\Windows\System32\inetsrv\inetinfo.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\Program Files\Common Files\DesktopUtil\MCTDesktopSvr.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Microsoft Online Services\MSOIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Microsoft Online Services\MSOIDSVCM.EXE
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Symantec Corporation) C:\Program Files\Symantec\Ghost\ngserver.exe
(O2Micro International) C:\Windows\System32\drivers\o2flash.exe
(Apple Inc.) C:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe
(Sophos Plc) C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
(SolarWinds) C:\Program Files\SolarWinds\TFTP Server\SolarWinds TFTP Server.exe
() C:\Program Files\RocketTab\Client.exe
(Sophos Limited) C:\Program Files\Sophos\Remote Management System\ManagementAgentNT.exe
(Sophos Limited) C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
(Sophos Limited) C:\Program Files\Sophos\Remote Management System\RouterNT.exe
(SolarWinds) C:\Program Files\SolarWinds\Toolset\SWBrowserIntegration.exe
(Sophos Plc) C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version9\TeamViewer_Service.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
(Yahoo! Inc.) C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
(Research In Motion Limited) C:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe
(GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe
() C:\Windows\Samsung\PanelMgr\SSMMgr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Lync\communicator.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\ICA Client\concentr.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Research In Motion Limited) C:\Program Files\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Luis Cobian, CobianSoft) C:\Program Files\Cobian Backup 10\Cobian.exe
(Sophos Limited) C:\Program Files\Sophos\AutoUpdate\ALMon.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Magic Control Technology Corporation) C:\Program Files\Common Files\DesktopUtil\MCTDUtil.exe
(Magic Control Technology Corporation) C:\Program Files\Common Files\DesktopUtil\FDispPos.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files\EaseUS\EaseUS Partition Master 10.0\bin\EpmNews.exe
() C:\Program Files\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\TrayTipAgentE.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(Huawei Technologies Co., Ltd.) C:\Users\sbabalola\AppData\Roaming\GLO NETPRO\ouc.exe
(Luis Cobian, CobianSoft) C:\Program Files\Cobian Backup 10\cbInterface.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 7500 E910\Bin\ScanToPCActivationApp.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Dropbox, Inc.) C:\Users\sbabalola\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
(Symantec Corporation) C:\Program Files\Symantec\Ghost\bin\dbserv.exe
(Sybase, Inc.) C:\Program Files\Symantec\Ghost\bin\rteng7.exe
(Citrix Systems, Inc.) C:\Program Files\Citrix\ICA Client\wfcrun32.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Research In Motion Limited) C:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Adobe Systems Inc.) C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Lync\UcMapi.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 7500 E910\Bin\HPNetworkCommunicator.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [536668 2011-01-25] (IDT, Inc.)
HKLM\...\Run: [FreeFallProtection] => C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe [686704 2011-07-25] ()
HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [828944 2011-08-03] (GlavSoft LLC.)
HKLM\...\Run: [Samsung PanelMgr] => C:\Windows\Samsung\PanelMgr\ssmmgr.exe [606208 2009-12-09] ()
HKLM\...\Run: [Communicator] => C:\Program Files\Microsoft Lync\communicator.exe [12117160 2013-12-10] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [ConnectionCenter] => C:\Program Files\Citrix\ICA Client\concentr.exe [103768 2009-10-26] (Citrix Systems, Inc.)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [2238704 2013-02-21] (Logitech, Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [RIM PeerManager] => C:\Program Files\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe [4206592 2013-03-12] (Research In Motion Limited)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Cobian Backup 10] => C:\Program Files\Cobian Backup 10\Cobian.exe [421376 2010-09-23] (Luis Cobian, CobianSoft)
HKLM\...\Run: [MCTDUtil] => C:\Program Files\Common Files\DesktopUtil\Util-Desktop.exe [195200 2011-05-03] ()
HKLM\...\Run: [FDispPos] => C:\Program Files\Common Files\DesktopUtil\Util-Desktop.exe [195200 2011-05-03] ()
HKLM\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41336 2014-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Sophos AutoUpdate Monitor] => C:\Program Files\Sophos\AutoUpdate\almon.exe [1617704 2014-06-16] (Sophos Limited)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [EaseUS EPM tray] => C:\Program Files\EaseUS\EaseUS Partition Master 10.0\bin\EpmNews.exe [2086568 2014-03-06] (CHENGDU YIWO Tech Development Co., Ltd)
HKLM\...\Run: [EaseUS EPM Tray Agent] => C:\Program Files\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\TrayTipAgentE.exe [254024 2014-02-13] ()
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\Run: [OfficeSyncProcess] => C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\Run: [HW_OPENEYE_OUC_GLO NETPRO] => C:\Program Files\GLO NETPRO\UpdateDog\ouc.exe [110592 2009-07-27] (Huawei Technologies Co., Ltd.)
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files\Adobe\Acrobat 10.0\Acrobat\AdobeCollabSync.exe [1104256 2014-05-08] (Adobe Systems Incorporated)
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\Run: [HP Officejet 7500 E910 (NET)] => C:\Program Files\HP\HP Officejet 7500 E910\Bin\ScanToPCActivationApp.exe [1837672 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\Policies\Explorer: [NoAddPrinter] 0
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\MountPoints2: {0323fe3b-dfc2-11e2-9467-d0df9a3eb33b} - E:\AutoRun.exe
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\MountPoints2: {0323fe47-dfc2-11e2-9467-d0df9a3eb33b} - E:\AutoRun.exe
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\MountPoints2: {0323fe61-dfc2-11e2-9467-d0df9a3eb33b} - E:\AutoRun.exe
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\MountPoints2: {058e2f7a-394f-11e2-9264-5c260a75e09f} - E:\Windows/AutoRun.exe
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\MountPoints2: {179c810e-399f-11e2-9636-d0df9a96b0a1} - G:\AutoRun.exe
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\MountPoints2: {9a5ea746-3f72-11e2-bb49-d0df9a96b0a1} - E:\AutoRun.exe
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\MountPoints2: {9a5ea74d-3f72-11e2-bb49-d0df9a96b0a1} - E:\AutoRun.exe
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\MountPoints2: {c59bf15d-f194-11e3-9fbf-d0df9a3eb33b} - E:\LaunchU3.exe -a
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\MountPoints2: {da5a7202-399b-11e4-ba06-d0df9a3eb33b} - E:\AutoRun.exe
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\MountPoints2: {df05b5a6-b70c-11e2-9c23-d0df9a3eb33b} - E:\AutoRun.exe
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\MountPoints2: {df05b5b9-b70c-11e2-9c23-d0df9a3eb33b} - E:\AutoRun.exe
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\MountPoints2: {df05b5ca-b70c-11e2-9c23-001e101f2500} - E:\AutoRun.exe
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\MountPoints2: {e8492ec0-36ca-11e2-9274-d0df9a96b0a1} - E:\AutoRun.exe
HKU\S-1-5-21-1996982328-3360563072-846100252-98808\...\MountPoints2: {e8492ec8-36ca-11e2-9274-d0df9a96b0a1} - E:\AutoRun.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Users\sbabalola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\sbabalola\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\sbabalola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk
ShortcutTarget: MagicDisc.lnk -> C:\Program Files\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
Startup: C:\Users\sbabalola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft SharePoint Workspace.lnk
ShortcutTarget: Microsoft SharePoint Workspace.lnk -> C:\Program Files\Microsoft Office\Office14\GROOVE.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:49400;https=127.0.0.1:49400
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/...=AVASDF&PC=AV01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://intranet.bour...es/Default.aspx
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?r...opt=0&ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x35D4E606D8CBCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/...=AVASDF&PC=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
URLSearchHook: HKCU - YTNavAssistPlugin Class - {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (Yahoo! Inc.)
SearchScopes: HKLM - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/...=AVASDF&PC=AV01
SearchScopes: HKCU - DefaultScope {903A660A-5C0F-4287-932D-0901188025B0} URL = https://uk.search.ya...p={searchTerms}
SearchScopes: HKCU - {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/...=AVASDF&PC=AV01
SearchScopes: HKCU - {903A660A-5C0F-4287-932D-0901188025B0} URL = https://uk.search.ya...p={searchTerms}
SearchScopes: HKCU - {D86B952E-CCD1-4798-8773-2A9AFACC03C1} URL = http://search.yahoo....petb&type=10675
BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Lync\OCHelper.dll (Microsoft Corporation)
BHO: Sophos Web Content Scanner -> {39EA7695-B3F2-4C44-A4BC-297ADA8FD235} -> C:\Program Files\Sophos\Sophos Anti-Virus\SophosBHO.dll (Sophos Plc)
BHO: CmjBrowserHelperObject Object -> {6FE6A929-59D1-4763-91AD-29B61CFFB35B} -> C:\Program Files\Mindjet\MindManager 10\Mm8InternetExplorer.dll (Mindjet)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
DPF: {26E1BEAF-C1A1-482B-8714-08844F1BCF7F} http://197.253.24.1/webviewer.cab
DPF: {3AA1C0E3-DA98-4BB4-91AE-D3BC61178240} http://197.253.24.1/GVersionMan.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {DB9DE2A8-D1BA-472A-B1F8-39697899DEF7} http://41.58.163.201:8080/HiDvrOcx.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 172.16.92.229 172.16.18.179 172.16.18.229
Tcpip\..\Interfaces\{06268BE2-447D-49C5-A5E3-3D5A3A063DC1}: [NameServer] 172.24.8.50 141.1.1.1
Tcpip\..\Interfaces\{8D6BA47C-CBA1-412E-8012-3225CE270002}: [NameServer] 172.24.8.50 141.1.1.1

FireFox:
========
FF ProfilePath: C:\Users\sbabalola\AppData\Roaming\Mozilla\Firefox\Profiles\c5h0s00i.default
FF DefaultSearchEngine: Yahoo!
FF SelectedSearchEngine: Yahoo!
FF Homepage: hxxp://intranet.bourbon-online.com/Pages/Default.aspx
FF Keyword.URL: https://uk.search.ya...&type=937811&p=
FF NetworkProxy: "autoconfig_url", "http://pac.hybrid-we...pac?p=649rm2bm"
FF NetworkProxy: "http", "proxymrs.bourbon.priv"
FF NetworkProxy: "http_port", 80
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.11.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @Nero.com/KM -> C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin: @rim.com/npappworld -> C:\Program Files\Research In Motion Limited\BlackBerry World Browser Plugin\npappworld.dll ()
FF Plugin: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\CCMSDK.dll (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\cgpcfg.dll (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\CgpCore.dll (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\confmgr.dll (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\ctxlogging.dll (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\ctxmui.dll (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\icafile.dll (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\icalogon.dll (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npicaN.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll ()
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\sslsdk_b.dll (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\TcpPServ.dll (Citrix Systems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\sbabalola\AppData\Roaming\mozilla\plugins\np-mswmp.dll (Microsoft Corporation)
FF Extension: Start Page - C:\Users\sbabalola\AppData\Roaming\Mozilla\Firefox\Profiles\c5h0s00i.default\Extensions\{32da2f20-827d-40aa-a3b4-2fc4a294352e} [2014-08-30]
FF Extension: Slick Savings - C:\Users\sbabalola\AppData\Roaming\Mozilla\Firefox\Profiles\c5h0s00i.default\Extensions\{46eddf51-a4f6-4476-8d6c-31c5187b2a2f} [2014-08-30]
FF Extension: Amazon Shopping Assistant by Spigot - C:\Users\sbabalola\AppData\Roaming\Mozilla\Firefox\Profiles\c5h0s00i.default\Extensions\{84a93d51-b7a9-431e-8ff8-d60e5d7f5df1} [2014-08-30]
FF Extension: Ebay Shopping Assistant by Spigot - C:\Users\sbabalola\AppData\Roaming\Mozilla\Firefox\Profiles\c5h0s00i.default\Extensions\{f894a29a-f065-40c3-bb19-da6057778493} [2014-08-30]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-09-19]
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012-11-20]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-11-21]
FF HKLM\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2013-03-05]
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [edaibbiobngpbmeonadpbfafbkimjbdd] - C:\ProgramData\Logitech\LogiSmoothChromeExt.crx [2013-03-05]
CHR HKLM\...\Chrome\Extension: [mjdepfkicdcciagbigfcmdhknnoaaegf] - C:\Program Files\WordWeb\wcxChrome.crx [2012-11-20]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AffinegyService; C:\Program Files\Belkin\Router Setup and Monitor\BelkinService.exe [562592 2011-05-27] (Affinegy, Inc.)
R3 BlackBerry Device Manager; C:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [585728 2013-02-06] (Research In Motion Limited) [File not signed]
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 cbVSCService; C:\Program Files\Cobian Backup 10\cbVSCService.exe [67584 2010-09-23] (CobianSoft, Luis Cobian) [File not signed]
R2 Credential Vault Host Control Service; C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe [826272 2012-04-25] (Broadcom Corporation)
R2 Credential Vault Host Storage; C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe [31648 2012-04-25] (Broadcom Corporation)
S2 dsiasrv; C:\Program Files\Dell\SysMgt\dsia\bin\DsiaSrv32.exe [149400 2011-11-02] (Dell Inc.)
R2 GManager; C:\Windows\system32\GManager.exe [222584 2011-08-31] ()
R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [264704 2010-11-16] () [File not signed]
R2 IISADMIN; C:\Windows\system32\inetsrv\inetinfo.exe [13824 2009-07-14] (Microsoft Corporation)
R2 Intel® PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [112800 2011-06-29] (Intel Corporation)
R2 MCTDesktopSvr; C:\Program Files\Common Files\DesktopUtil\MCTDesktopSvr.exe [199296 2011-05-03] ()
R2 MSMQ; C:\Windows\system32\mqsvc.exe [8704 2009-07-14] (Microsoft Corporation)
R2 msoidsvc; C:\Program Files\Common Files\Microsoft Shared\Microsoft Online Services\MSOIDSVC.EXE [1542560 2010-08-17] (Microsoft Corp.)
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [769432 2012-07-13] (Nero AG)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [45568 2012-07-31] (Hewlett-Packard) [File not signed]
R3 ngdbserv; C:\Program Files\Symantec\Ghost\bin\dbserv.exe [50328 2004-08-26] (Symantec Corporation)
R2 NGServer; C:\Program Files\Symantec\Ghost\ngserver.exe [697496 2004-08-26] (Symantec Corporation)
R2 O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [72296 2010-02-10] (O2Micro International)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [55808 2012-07-31] (Hewlett-Packard) [File not signed]
R2 RIM MDNS; C:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe [388096 2013-03-12] (Apple Inc.) [File not signed]
R2 RIM Tunnel Service; C:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe [1169920 2013-03-12] (Research In Motion Limited) [File not signed]
R2 SAVAdminService; C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe [163056 2011-10-13] (Sophos Plc)
S2 SAVService; C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe [97520 2011-10-13] (Sophos Plc)
S3 SolarWinds SFTP Server; C:\Program Files\SolarWinds\SftpServer\SolarWindsSftpServer.exe [33792 2013-07-23] (SolarWinds) [File not signed]
R2 SolarWinds TFTP Server; C:\Program Files\SolarWinds\TFTP Server\SolarWinds TFTP Server.exe [60928 2013-07-24] (SolarWinds) [File not signed]
R2 Sophos Agent; C:\Program Files\Sophos\Remote Management System\ManagementAgentNT.exe [289856 2014-06-16] (Sophos Limited)
R2 Sophos AutoUpdate Service; C:\Program Files\Sophos\AutoUpdate\ALsvc.exe [341800 2014-06-16] (Sophos Limited)
R2 Sophos Message Router; C:\Program Files\Sophos\Remote Management System\RouterNT.exe [818240 2014-06-16] (Sophos Limited)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [274514 2011-01-25] (IDT, Inc.)
R2 SWBrowserIntegration; C:\Program Files\SolarWinds\Toolset\SWBrowserIntegration.exe [46880 2013-08-01] (SolarWinds)
R2 swi_service; C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe [1543704 2012-10-12] (Sophos Plc)
R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [828944 2011-08-03] (GlavSoft LLC.)
S3 wampapache; c:\wamp\bin\apache\apache2.4.4\bin\httpd.exe [22016 2013-06-23] (Apache Software Foundation) [File not signed]
S3 wampmysqld; c:\wamp\bin\mysql\mysql5.6.12\bin\mysqld.exe [10923520 2013-06-23] () [File not signed]
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 Acceler; C:\Windows\System32\DRIVERS\accelern.sys [44144 2011-07-22] (ST Microelectronics)
R3 BTWAMPFL; C:\Windows\System32\DRIVERS\btwampfl.sys [300584 2012-11-20] (Broadcom Corporation.)
R2 CipcCdp; C:\Windows\System32\DRIVERS\CipcCdp.sys [24064 2011-01-24] (Cisco Systems)
R3 cvusbdrv; C:\Windows\System32\Drivers\cvusbdrv.sys [40296 2012-04-25] (Broadcom Corporation)
R3 e1cexpress; C:\Windows\System32\DRIVERS\e1c6232.sys [268968 2011-07-20] (Intel Corporation)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [14920 2013-03-07] () [File not signed]
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9160 2013-03-07] () [File not signed]
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [25280 2013-08-02] (LogMeIn, Inc.)
S3 LEqdUsb; C:\Windows\System32\Drivers\LEqdUsb.Sys [44296 2013-01-03] (Logitech, Inc.)
S3 LHidEqd; C:\Windows\System32\Drivers\LHidEqd.Sys [12808 2013-01-03] (Logitech, Inc.)
S3 massfilter; C:\Windows\System32\drivers\massfilter.sys [9216 2012-05-11] (MBB Incorporated)
R3 mcdbus; C:\Windows\System32\DRIVERS\mcdbus.sys [116736 2009-02-24] (MagicISO, Inc.) [File not signed]
R3 mctkmd; C:\Windows\system32\drivers\mctkmd.sys [102016 2011-09-29] (Magic Control Technology Corporation)
R0 mctkmdldr; C:\Windows\System32\drivers\mctkmdldr.sys [17024 2011-04-08] (Magic Control Technology Corporation)
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Intel Corporation)
S3 mirrorv3; C:\Windows\System32\DRIVERS\rminiv3.sys [3328 2006-11-01] (Famatech International Corp.)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [141824 2010-11-20] (Microsoft Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [35088 2010-06-25] (CACE Technologies, Inc.)
R3 O2MDFRDR; C:\Windows\System32\DRIVERS\O2MDFw7.sys [60904 2011-01-04] (O2Micro )
R3 O2SDJRDR; C:\Windows\System32\DRIVERS\o2sdjw7.sys [63976 2011-03-23] (O2Micro )
R3 rimvndis; C:\Windows\System32\Drivers\rimvndis6.sys [14848 2013-03-12] (Research in Motion Limited)
R1 SAVOnAccess; C:\Windows\System32\DRIVERS\savonaccess.sys [122360 2011-10-13] (Sophos Plc)
S3 Ser2plx86; C:\Windows\System32\DRIVERS\ser2pl.sys [139776 2013-10-17] (Prolific Technology Inc.)
S3 SliceDisk5; C:\Program Files\A-FF Find and Mount\slicedisk.sys [26192 2011-02-25] (Atola) [File not signed]
S4 SophosBootDriver; C:\Windows\System32\DRIVERS\SophosBootDriver.sys [22536 2011-10-13] (Sophos Plc)
R2 SSPORT; C:\Windows\system32\Drivers\SSPORT.sys [5120 2007-08-13] (Samsung Electronics) [File not signed]
R0 stdcfltn; C:\Windows\System32\DRIVERS\stdcfltn.sys [17904 2011-07-15] (ST Microelectronics)
R3 t1pusb; C:\Windows\System32\drivers\t1pusb.sys [146304 2011-08-04] (Magic Control Technology Corp.)
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [15872 2013-02-12] (Microsoft Corporation)
S3 ZTEusbnet; C:\Windows\System32\DRIVERS\ZTEusbnet.sys [134144 2012-05-11] (ZTE Corporation)
S2 DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-25 16:02 - 2014-09-25 16:03 - 00000000 ____D () C:\FRST
2014-09-25 12:20 - 2014-09-25 12:20 - 00000000 ____D () C:\MGADiagToolOutput
2014-09-25 12:19 - 2014-09-25 12:19 - 00000000 ____D () C:\ProgramData\Office Genuine Advantage
2014-09-25 07:11 - 2014-09-25 07:11 - 00000016 _____ () C:\ProgramData\swi77e39421-909a-437b-bc40-4b8997f0289b.txt
2014-09-24 20:57 - 2014-09-24 22:11 - 00000031 _____ () C:\ProgramData\swi3a82949d-61fb-4efd-99dc-c9986f03a90b.txt
2014-09-24 18:21 - 2014-09-24 18:21 - 00001619 _____ () C:\Users\sbabalola\Desktop\Todo.txt
2014-09-24 18:14 - 2014-09-24 18:14 - 00003108 _____ () C:\Users\sbabalola\Desktop\ark.txt
2014-09-24 17:31 - 2014-09-24 18:38 - 00000031 _____ () C:\ProgramData\swi938af37a-b4d7-4ae8-91ec-48d8a70ebcff.txt
2014-09-24 07:58 - 2014-09-24 17:16 - 00000031 _____ () C:\ProgramData\swi936a751a-5105-4d05-8056-dd633c4f5c98.txt
2014-09-24 06:11 - 2014-09-24 06:24 - 00000031 _____ () C:\ProgramData\swi8e9de4ae-625a-4869-a2e5-c03cc18cf884.txt
2014-09-23 19:48 - 2014-05-14 17:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-09-23 19:48 - 2014-05-14 17:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-09-23 19:48 - 2014-05-14 17:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-09-23 19:48 - 2014-05-14 17:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-09-23 19:48 - 2014-05-14 17:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-09-23 19:48 - 2014-05-14 17:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-09-23 19:48 - 2014-05-14 17:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-09-23 19:47 - 2014-09-23 19:47 - 00000000 ____D () C:\Users\sbabalola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices
2014-09-23 19:47 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-09-23 19:47 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-09-23 19:16 - 2014-09-24 06:24 - 00077884 _____ () C:\Windows\WindowsUpdate.log
2014-09-23 18:02 - 2014-09-23 21:12 - 00000031 _____ () C:\ProgramData\swi8cab77a1-7ae2-4807-92b9-b59c3056cd54.txt
2014-09-23 18:01 - 2014-09-23 18:01 - 00679286 _____ () C:\Windows\PFRO.log
2014-09-23 17:30 - 2014-09-25 07:14 - 00000000 ____D () C:\Users\sbabalola\AppData\Local\CrashDumps
2014-09-23 17:28 - 2014-09-23 17:28 - 00000000 _____ () C:\Windows\invcol.tmp
2014-09-23 17:27 - 2014-09-25 07:11 - 00001298 _____ () C:\Windows\setupact.log
2014-09-23 17:27 - 2014-09-23 18:01 - 00000031 _____ () C:\ProgramData\swi03bbafbc-5d47-4e35-bace-c5268499562f.txt
2014-09-23 17:27 - 2014-09-23 17:27 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-23 16:17 - 2014-09-23 18:36 - 00034808 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-09-23 16:17 - 2014-09-23 16:17 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-09-23 16:00 - 2014-09-23 16:00 - 00000000 ____D () C:\Windows\ERUNT
2014-09-23 14:47 - 2014-09-23 17:17 - 00000031 _____ () C:\ProgramData\swi7c8c61fa-acf2-4ed6-ae1a-e4974c47a7f6.txt
2014-09-23 09:56 - 2014-09-23 09:56 - 00000017 _____ () C:\Users\sbabalola\AppData\Local\resmon.resmoncfg
2014-09-23 07:51 - 2014-09-23 12:39 - 00000031 _____ () C:\ProgramData\swi87e28add-eda7-4df5-8029-2a395d4813a8.txt
2014-09-22 13:46 - 2014-09-22 17:24 - 00000031 _____ () C:\ProgramData\swi5d7acf8d-c411-47c9-a01e-ca74fec29cab.txt
2014-09-22 08:12 - 2014-09-22 13:25 - 00000031 _____ () C:\ProgramData\swi29ba27f3-70e6-4fb4-807a-c8b8ba3825b1.txt
2014-09-21 18:44 - 2014-09-21 19:29 - 00000031 _____ () C:\ProgramData\swi57c49007-8f7d-4ee6-8291-0643c46b10df.txt
2014-09-19 19:14 - 2014-09-19 22:40 - 00000031 _____ () C:\ProgramData\swidbbd1d07-5bd2-4a4f-ac10-1b66b51aa75a.txt
2014-09-19 09:05 - 2014-09-19 09:05 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-09-17 08:45 - 2014-09-19 16:38 - 00000031 _____ () C:\ProgramData\swi3b8af146-0cc5-4ae7-9ebd-6486753b101a.txt
2014-09-17 04:52 - 2014-09-17 05:01 - 00000031 _____ () C:\ProgramData\swib449e22f-1cd1-4820-885d-f8ffcde9a8cb.txt
2014-09-16 15:51 - 2014-09-16 16:58 - 00000031 _____ () C:\ProgramData\swifedbf7a5-ef40-487c-b83d-27c74ef98f25.txt
2014-09-16 14:38 - 2014-09-16 15:33 - 00000031 _____ () C:\ProgramData\swib4a72d55-c013-441a-b58e-9e16c01e0c48.txt
2014-09-16 09:49 - 2014-09-16 09:49 - 01424290 _____ () C:\Users\sbabalola\Desktop\Capture.rar
2014-09-16 09:10 - 2014-09-16 14:33 - 00000031 _____ () C:\ProgramData\swia5f40150-273c-4c8d-bfcd-43a200b569b6.txt
2014-09-15 19:54 - 2014-09-15 19:54 - 00000000 ____D () C:\Users\sbabalola\AppData\Local\RocketTab
2014-09-15 19:36 - 2014-09-15 20:45 - 00000031 _____ () C:\ProgramData\swi01f14548-56b9-46ea-9a1a-0ff27b8e665c.txt
2014-09-15 17:08 - 2014-09-15 17:08 - 00000969 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-09-15 17:08 - 2014-09-15 17:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-09-15 17:07 - 2014-09-15 17:08 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-15 16:23 - 2014-09-15 17:09 - 00000031 _____ () C:\ProgramData\swi674473b2-6bf7-449c-b8f8-b978398d555f.txt
2014-09-15 07:58 - 2014-09-15 16:22 - 00000031 _____ () C:\ProgramData\swi53f3b663-c1e2-401b-a913-bf93c2acca28.txt
2014-09-14 21:35 - 2014-09-14 22:39 - 00000031 _____ () C:\ProgramData\swicf9beca2-fea0-47fb-88d2-7183a515286d.txt
2014-09-13 10:29 - 2014-09-13 10:29 - 00000000 ____D () C:\Program Files\RocketTab
2014-09-13 09:29 - 2014-09-13 13:11 - 00000031 _____ () C:\ProgramData\swia17a59c8-3744-453f-a629-34375e4d8a01.txt
2014-09-12 15:14 - 2014-09-12 18:44 - 00000031 _____ () C:\ProgramData\swi131761c8-603d-48b1-b15c-1bc104345d08.txt
2014-09-11 11:10 - 2014-09-11 11:10 - 00000016 _____ () C:\ProgramData\swi158691ab-d231-4777-9d9d-47932fa4995e.txt
2014-09-11 03:50 - 2014-09-11 07:53 - 00000031 _____ () C:\ProgramData\swi2e054718-d5e1-4b89-987f-83410c97cf34.txt
2014-09-11 03:46 - 2014-08-16 13:49 - 01361203 _____ () C:\Users\sbabalola\Desktop\adwcleaner_3.306.exe
2014-09-10 21:19 - 2014-09-11 03:49 - 00000031 _____ () C:\ProgramData\swi1d6a06b8-74be-4fcb-b81d-c1626e950026.txt
2014-09-10 14:40 - 2014-09-10 19:15 - 00000031 _____ () C:\ProgramData\swid74d6e95-44fb-4a68-bfae-023825162754.txt
2014-09-10 08:07 - 2014-09-10 08:46 - 00000031 _____ () C:\ProgramData\swid0886160-6d0b-417b-9f17-732668e17388.txt
2014-09-09 07:25 - 2014-09-09 17:22 - 00000031 _____ () C:\ProgramData\swi012110a7-2b9f-4c1e-95cf-05f98bf0a7fa.txt
2014-09-08 08:56 - 2014-09-08 08:56 - 00000023 _____ () C:\Users\sbabalola\Desktop\Center code.txt
2014-09-08 08:09 - 2014-09-08 16:58 - 00000031 _____ () C:\ProgramData\swi30048adf-27c4-48c2-b5f9-c6a04fb6205f.txt
2014-09-05 07:05 - 2014-09-05 16:27 - 00000031 _____ () C:\ProgramData\swi22b83e83-1e77-4c59-b8c3-06ecd4e4b214.txt
2014-09-04 20:00 - 2014-09-04 20:57 - 00000031 _____ () C:\ProgramData\swibf57c24e-84b6-4d59-9f4d-bf0b631a2ed8.txt
2014-09-04 08:39 - 2014-09-04 16:15 - 00000031 _____ () C:\ProgramData\swidc30231d-8358-4b1c-86c0-5d030c708fd9.txt
2014-09-03 13:16 - 2014-09-03 18:05 - 00000031 _____ () C:\ProgramData\swi595bb490-b1f7-4c34-a444-150c15e3cdfe.txt
2014-09-03 09:30 - 2014-09-03 10:26 - 00000031 _____ () C:\ProgramData\swi8f52c099-3af4-43f0-adc6-3f7d578fddf5.txt
2014-09-02 20:40 - 2014-09-02 21:39 - 00000031 _____ () C:\ProgramData\swiaf75464d-98ec-4fc0-b2bf-c61e9f3b2a2e.txt
2014-09-02 13:22 - 2014-09-09 07:27 - 00000000 ____D () C:\Users\sbabalola\AppData\Local\Adobe
2014-09-02 13:16 - 2014-09-02 13:16 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-09-02 08:03 - 2014-09-02 17:14 - 00000031 _____ () C:\ProgramData\swie6554ebc-be09-401d-904f-b53ad12cc0c5.txt
2014-09-01 09:23 - 2014-09-01 16:55 - 00000031 _____ () C:\ProgramData\swi2a79d87c-e06e-4eba-b548-f7bd505ca120.txt
2014-08-31 21:54 - 2014-08-31 21:54 - 00000000 ____D () C:\Users\sbabalola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RecoveryMechanic
2014-08-31 21:54 - 2014-08-31 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RecoveryMechanic
2014-08-31 21:54 - 2014-08-31 21:54 - 00000000 ____D () C:\Program Files\RecoveryMechanic
2014-08-31 18:17 - 2014-08-31 18:17 - 00001186 _____ () C:\Users\Public\Desktop\EaseUS Data Recovery Wizard 8.0.lnk
2014-08-31 18:17 - 2014-08-31 18:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Data Recovery Wizard 8.0
2014-08-31 17:56 - 2014-08-31 22:03 - 00000031 _____ () C:\ProgramData\swica74a100-ebca-4693-9ed2-a264f31448ea.txt
2014-08-30 19:56 - 2014-08-30 21:25 - 00000031 _____ () C:\ProgramData\swid63f56be-0a38-4297-95af-1d726450631d.txt
2014-08-30 19:17 - 2014-08-30 19:50 - 00000031 _____ () C:\ProgramData\swi4f993999-86a5-4a04-9c5d-930789357427.txt
2014-08-30 18:13 - 2014-08-30 18:29 - 00000031 _____ () C:\ProgramData\swifdf77ccd-fb2e-47e5-b3a8-6a9fa2dbc009.txt
2014-08-29 08:38 - 2014-08-29 15:32 - 00000031 _____ () C:\ProgramData\swib0871334-fa17-4c05-a4c0-c01f1dd3ada9.txt
2014-08-28 20:28 - 2014-08-28 20:34 - 00000031 _____ () C:\ProgramData\swiab08a92c-9224-46e1-8c04-6c1441f8b65c.txt
2014-08-28 20:15 - 2014-08-28 20:23 - 00000031 _____ () C:\ProgramData\swi379337b2-0460-4b8e-b4a3-e81397f70920.txt
2014-08-28 12:41 - 2014-08-28 12:41 - 00000016 _____ () C:\ProgramData\swi1a356309-540e-4422-a985-23d3e9194e4c.txt
2014-08-28 08:50 - 2014-08-28 12:29 - 00000031 _____ () C:\ProgramData\swi0ef625b5-6139-4af7-90e6-82f90a8b4e77.txt
2014-08-28 07:43 - 2014-08-28 08:34 - 00000031 _____ () C:\ProgramData\swi24aa7aad-1cf9-480b-914a-d0cff48e67bf.txt
2014-08-27 19:44 - 2014-08-27 19:59 - 00000031 _____ () C:\ProgramData\swia1e6d9cb-2137-4f45-946b-35a4287a1bc0.txt
2014-08-27 17:38 - 2014-08-27 19:29 - 00000031 _____ () C:\ProgramData\swif90660a5-76a9-4aa0-bf75-e3a913c0702b.txt
2014-08-27 14:43 - 2014-08-27 15:03 - 00000031 _____ () C:\ProgramData\swi60161613-0120-4468-a9ac-41e6a628e8c2.txt
2014-08-27 08:34 - 2014-08-27 13:47 - 00000031 _____ () C:\ProgramData\swi66bdbc69-1aa6-47d6-9f7e-ea54b6bdd89d.txt
2014-08-26 18:36 - 2014-08-26 20:25 - 00000031 _____ () C:\ProgramData\swid76d9f23-5892-45ff-8d3b-07510a30e25e.txt
2014-08-26 07:58 - 2014-08-26 13:57 - 00000031 _____ () C:\ProgramData\swi0154c64a-74fe-4d33-a80e-200de30572ca.txt
2014-08-26 07:52 - 2014-08-26 07:57 - 00000031 _____ () C:\ProgramData\swideb12dcc-d3bc-42d7-b0a4-84ffcb39558b.txt
2014-08-26 07:47 - 2014-08-26 07:51 - 00000031 _____ () C:\ProgramData\swi7f5f3b63-e64a-4504-9dd7-691488f02e56.txt
2014-08-26 07:47 - 2014-08-26 07:47 - 00000000 _____ () C:\Users\_sbabalola\AppData\Local\{6FC5520C-A3F6-4C0B-B38A-BBBFD58485FD}

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-25 16:04 - 2012-11-20 13:59 - 00000000 ____D () C:\Users\sbabalola
2014-09-25 16:03 - 2014-09-25 16:02 - 00000000 ____D () C:\FRST
2014-09-25 16:03 - 2012-11-21 10:01 - 00000000 ____D () C:\Users\sbabalola\Documents\Outlook
2014-09-25 15:34 - 2012-11-21 09:33 - 00000000 ____D () C:\Users\sbabalola\Documents\Bourbon Doc
2014-09-25 15:18 - 2012-11-20 12:36 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-25 15:07 - 2012-12-11 21:54 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-25 15:07 - 2012-12-11 21:54 - 00000888 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-25 14:45 - 2012-11-20 13:56 - 00000736 _____ () C:\Windows\system32\config\netlogon.ftl
2014-09-25 12:25 - 2009-07-14 05:34 - 00023840 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-25 12:25 - 2009-07-14 05:34 - 00023840 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-25 12:20 - 2014-09-25 12:20 - 00000000 ____D () C:\MGADiagToolOutput
2014-09-25 12:19 - 2014-09-25 12:19 - 00000000 ____D () C:\ProgramData\Office Genuine Advantage
2014-09-25 08:42 - 2013-10-28 18:54 - 00000000 ___RD () C:\Users\sbabalola\Dropbox
2014-09-25 08:42 - 2013-10-28 14:47 - 00000000 ____D () C:\Users\sbabalola\AppData\Roaming\Dropbox
2014-09-25 07:57 - 2013-09-11 14:22 - 00002814 _____ () C:\Windows\system32\GManager.ini
2014-09-25 07:14 - 2014-09-23 17:30 - 00000000 ____D () C:\Users\sbabalola\AppData\Local\CrashDumps
2014-09-25 07:13 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\inetsrv
2014-09-25 07:11 - 2014-09-25 07:11 - 00000016 _____ () C:\ProgramData\swi77e39421-909a-437b-bc40-4b8997f0289b.txt
2014-09-25 07:11 - 2014-09-23 17:27 - 00001298 _____ () C:\Windows\setupact.log
2014-09-25 07:11 - 2013-06-19 19:20 - 00000024 _____ () C:\Windows\system32\wan.pcap
2014-09-25 07:11 - 2012-11-20 14:00 - 00000000 ____D () C:\Users\sbabalola\Tracing
2014-09-25 07:11 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-24 22:11 - 2014-09-24 20:57 - 00000031 _____ () C:\ProgramData\swi3a82949d-61fb-4efd-99dc-c9986f03a90b.txt
2014-09-24 21:04 - 2010-11-20 22:01 - 00733052 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-24 18:38 - 2014-09-24 17:31 - 00000031 _____ () C:\ProgramData\swi938af37a-b4d7-4ae8-91ec-48d8a70ebcff.txt
2014-09-24 18:21 - 2014-09-24 18:21 - 00001619 _____ () C:\Users\sbabalola\Desktop\Todo.txt
2014-09-24 18:14 - 2014-09-24 18:14 - 00003108 _____ () C:\Users\sbabalola\Desktop\ark.txt
2014-09-24 17:16 - 2014-09-24 07:58 - 00000031 _____ () C:\ProgramData\swi936a751a-5105-4d05-8056-dd633c4f5c98.txt
2014-09-24 16:49 - 2013-02-18 10:08 - 00000000 ____D () C:\Users\sbabalola\Documents\Inmarsat Training Docs
2014-09-24 09:36 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-09-24 06:24 - 2014-09-24 06:11 - 00000031 _____ () C:\ProgramData\swi8e9de4ae-625a-4869-a2e5-c03cc18cf884.txt
2014-09-24 06:24 - 2014-09-23 19:16 - 00077884 _____ () C:\Windows\WindowsUpdate.log
2014-09-23 21:12 - 2014-09-23 18:02 - 00000031 _____ () C:\ProgramData\swi8cab77a1-7ae2-4807-92b9-b59c3056cd54.txt
2014-09-23 19:47 - 2014-09-23 19:47 - 00000000 ____D () C:\Users\sbabalola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth Devices
2014-09-23 18:36 - 2014-09-23 16:17 - 00034808 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-09-23 18:01 - 2014-09-23 18:01 - 00679286 _____ () C:\Windows\PFRO.log
2014-09-23 18:01 - 2014-09-23 17:27 - 00000031 _____ () C:\ProgramData\swi03bbafbc-5d47-4e35-bace-c5268499562f.txt
2014-09-23 18:01 - 2014-08-16 19:24 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-09-23 17:28 - 2014-09-23 17:28 - 00000000 _____ () C:\Windows\invcol.tmp
2014-09-23 17:27 - 2014-09-23 17:27 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-23 17:17 - 2014-09-23 14:47 - 00000031 _____ () C:\ProgramData\swi7c8c61fa-acf2-4ed6-ae1a-e4974c47a7f6.txt
2014-09-23 16:17 - 2014-09-23 16:17 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-09-23 16:00 - 2014-09-23 16:00 - 00000000 ____D () C:\Windows\ERUNT
2014-09-23 15:52 - 2012-11-26 16:54 - 00000000 ____D () C:\Users\sbabalola\AppData\Roaming\TeamViewer
2014-09-23 12:39 - 2014-09-23 07:51 - 00000031 _____ () C:\ProgramData\swi87e28add-eda7-4df5-8029-2a395d4813a8.txt
2014-09-23 09:56 - 2014-09-23 09:56 - 00000017 _____ () C:\Users\sbabalola\AppData\Local\resmon.resmoncfg
2014-09-22 17:24 - 2014-09-22 13:46 - 00000031 _____ () C:\ProgramData\swi5d7acf8d-c411-47c9-a01e-ca74fec29cab.txt
2014-09-22 13:25 - 2014-09-22 08:12 - 00000031 _____ () C:\ProgramData\swi29ba27f3-70e6-4fb4-807a-c8b8ba3825b1.txt
2014-09-21 19:29 - 2014-09-21 18:44 - 00000031 _____ () C:\ProgramData\swi57c49007-8f7d-4ee6-8291-0643c46b10df.txt
2014-09-19 22:40 - 2014-09-19 19:14 - 00000031 _____ () C:\ProgramData\swidbbd1d07-5bd2-4a4f-ac10-1b66b51aa75a.txt
2014-09-19 19:14 - 2012-11-20 12:45 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-09-19 16:38 - 2014-09-17 08:45 - 00000031 _____ () C:\ProgramData\swi3b8af146-0cc5-4ae7-9ebd-6486753b101a.txt
2014-09-19 16:31 - 2012-11-22 14:40 - 00000000 ____D () C:\Users\sbabalola\AppData\Roaming\Skype
2014-09-19 09:05 - 2014-09-19 09:05 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-09-19 07:44 - 2013-03-01 11:25 - 00000530 _____ () C:\Windows\Tasks\Full Scan Thursday.job
2014-09-17 12:52 - 2013-08-25 22:00 - 00000176 _____ () C:\Users\sbabalola\.packettracer
2014-09-17 05:01 - 2014-09-17 04:52 - 00000031 _____ () C:\ProgramData\swib449e22f-1cd1-4820-885d-f8ffcde9a8cb.txt
2014-09-16 16:58 - 2014-09-16 15:51 - 00000031 _____ () C:\ProgramData\swifedbf7a5-ef40-487c-b83d-27c74ef98f25.txt
2014-09-16 15:33 - 2014-09-16 14:38 - 00000031 _____ () C:\ProgramData\swib4a72d55-c013-441a-b58e-9e16c01e0c48.txt
2014-09-16 14:33 - 2014-09-16 09:10 - 00000031 _____ () C:\ProgramData\swia5f40150-273c-4c8d-bfcd-43a200b569b6.txt
2014-09-16 09:49 - 2014-09-16 09:49 - 01424290 _____ () C:\Users\sbabalola\Desktop\Capture.rar
2014-09-16 09:27 - 2012-11-20 13:59 - 00007338 __RSH () C:\Users\sbabalola\ntuser.pol
2014-09-16 09:27 - 2012-11-20 13:58 - 00026355 __RSH () C:\ProgramData\ntuser.pol
2014-09-15 20:45 - 2014-09-15 19:36 - 00000031 _____ () C:\ProgramData\swi01f14548-56b9-46ea-9a1a-0ff27b8e665c.txt
2014-09-15 19:58 - 2013-04-04 13:37 - 00000000 ____D () C:\Users\sbabalola\AppData\Roaming\FileZilla
2014-09-15 19:56 - 2012-11-20 18:59 - 00000000 ____D () C:\Windows\Panther
2014-09-15 19:54 - 2014-09-15 19:54 - 00000000 ____D () C:\Users\sbabalola\AppData\Local\RocketTab
2014-09-15 17:09 - 2014-09-15 16:23 - 00000031 _____ () C:\ProgramData\swi674473b2-6bf7-449c-b8f8-b978398d555f.txt
2014-09-15 17:08 - 2014-09-15 17:08 - 00000969 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-09-15 17:08 - 2014-09-15 17:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-09-15 17:08 - 2014-09-15 17:07 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-15 16:22 - 2014-09-15 07:58 - 00000031 _____ () C:\ProgramData\swi53f3b663-c1e2-401b-a913-bf93c2acca28.txt
2014-09-15 14:57 - 2014-08-14 12:18 - 00000000 ____D () C:\AdwCleaner
2014-09-14 22:39 - 2014-09-14 21:35 - 00000031 _____ () C:\ProgramData\swicf9beca2-fea0-47fb-88d2-7183a515286d.txt
2014-09-13 13:11 - 2014-09-13 09:29 - 00000031 _____ () C:\ProgramData\swia17a59c8-3744-453f-a629-34375e4d8a01.txt
2014-09-13 10:29 - 2014-09-13 10:29 - 00000000 ____D () C:\Program Files\RocketTab
2014-09-12 18:44 - 2014-09-12 15:14 - 00000031 _____ () C:\ProgramData\swi131761c8-603d-48b1-b15c-1bc104345d08.txt
2014-09-12 18:19 - 2012-11-20 12:36 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-09-12 18:19 - 2012-11-20 12:36 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-09-11 11:10 - 2014-09-11 11:10 - 00000016 _____ () C:\ProgramData\swi158691ab-d231-4777-9d9d-47932fa4995e.txt
2014-09-11 07:53 - 2014-09-11 03:50 - 00000031 _____ () C:\ProgramData\swi2e054718-d5e1-4b89-987f-83410c97cf34.txt
2014-09-11 03:49 - 2014-09-10 21:19 - 00000031 _____ () C:\ProgramData\swi1d6a06b8-74be-4fcb-b81d-c1626e950026.txt
2014-09-10 19:15 - 2014-09-10 14:40 - 00000031 _____ () C:\ProgramData\swid74d6e95-44fb-4a68-bfae-023825162754.txt
2014-09-10 08:46 - 2014-09-10 08:07 - 00000031 _____ () C:\ProgramData\swid0886160-6d0b-417b-9f17-732668e17388.txt
2014-09-09 17:22 - 2014-09-09 07:25 - 00000031 _____ () C:\ProgramData\swi012110a7-2b9f-4c1e-95cf-05f98bf0a7fa.txt
2014-09-09 07:27 - 2014-09-02 13:22 - 00000000 ____D () C:\Users\sbabalola\AppData\Local\Adobe
2014-09-08 16:58 - 2014-09-08 08:09 - 00000031 _____ () C:\ProgramData\swi30048adf-27c4-48c2-b5f9-c6a04fb6205f.txt
2014-09-08 08:56 - 2014-09-08 08:56 - 00000023 _____ () C:\Users\sbabalola\Desktop\Center code.txt
2014-09-05 16:27 - 2014-09-05 07:05 - 00000031 _____ () C:\ProgramData\swi22b83e83-1e77-4c59-b8c3-06ecd4e4b214.txt
2014-09-04 20:57 - 2014-09-04 20:00 - 00000031 _____ () C:\ProgramData\swibf57c24e-84b6-4d59-9f4d-bf0b631a2ed8.txt
2014-09-04 16:15 - 2014-09-04 08:39 - 00000031 _____ () C:\ProgramData\swidc30231d-8358-4b1c-86c0-5d030c708fd9.txt
2014-09-03 18:05 - 2014-09-03 13:16 - 00000031 _____ () C:\ProgramData\swi595bb490-b1f7-4c34-a444-150c15e3cdfe.txt
2014-09-03 10:26 - 2014-09-03 09:30 - 00000031 _____ () C:\ProgramData\swi8f52c099-3af4-43f0-adc6-3f7d578fddf5.txt
2014-09-02 21:39 - 2014-09-02 20:40 - 00000031 _____ () C:\ProgramData\swiaf75464d-98ec-4fc0-b2bf-c61e9f3b2a2e.txt
2014-09-02 17:14 - 2014-09-02 08:03 - 00000031 _____ () C:\ProgramData\swie6554ebc-be09-401d-904f-b53ad12cc0c5.txt
2014-09-02 13:16 - 2014-09-02 13:16 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-09-02 13:16 - 2012-11-20 11:46 - 00000000 ____D () C:\ProgramData\Skype
2014-09-02 08:57 - 2014-06-14 13:28 - 00006051 _____ () C:\Users\sbabalola\AppData\Roaming\gns3.ini
2014-09-01 16:55 - 2014-09-01 09:23 - 00000031 _____ () C:\ProgramData\swi2a79d87c-e06e-4eba-b548-f7bd505ca120.txt
2014-08-31 22:03 - 2014-08-31 17:56 - 00000031 _____ () C:\ProgramData\swica74a100-ebca-4693-9ed2-a264f31448ea.txt
2014-08-31 21:54 - 2014-08-31 21:54 - 00000000 ____D () C:\Users\sbabalola\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RecoveryMechanic
2014-08-31 21:54 - 2014-08-31 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RecoveryMechanic
2014-08-31 21:54 - 2014-08-31 21:54 - 00000000 ____D () C:\Program Files\RecoveryMechanic
2014-08-31 18:17 - 2014-08-31 18:17 - 00001186 _____ () C:\Users\Public\Desktop\EaseUS Data Recovery Wizard 8.0.lnk
2014-08-31 18:17 - 2014-08-31 18:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Data Recovery Wizard 8.0
2014-08-31 18:17 - 2014-08-21 10:10 - 00000000 ____D () C:\Program Files\EaseUS
2014-08-30 21:25 - 2014-08-30 19:56 - 00000031 _____ () C:\ProgramData\swid63f56be-0a38-4297-95af-1d726450631d.txt
2014-08-30 20:01 - 2014-08-06 18:05 - 00000000 ____D () C:\Users\sbabalola\Documents\SelfMV
2014-08-30 19:50 - 2014-08-30 19:17 - 00000031 _____ () C:\ProgramData\swi4f993999-86a5-4a04-9c5d-930789357427.txt
2014-08-30 18:29 - 2014-08-30 18:13 - 00000031 _____ () C:\ProgramData\swifdf77ccd-fb2e-47e5-b3a8-6a9fa2dbc009.txt
2014-08-29 15:32 - 2014-08-29 08:38 - 00000031 _____ () C:\ProgramData\swib0871334-fa17-4c05-a4c0-c01f1dd3ada9.txt
2014-08-28 20:34 - 2014-08-28 20:28 - 00000031 _____ () C:\ProgramData\swiab08a92c-9224-46e1-8c04-6c1441f8b65c.txt
2014-08-28 20:23 - 2014-08-28 20:15 - 00000031 _____ () C:\ProgramData\swi379337b2-0460-4b8e-b4a3-e81397f70920.txt
2014-08-28 12:41 - 2014-08-28 12:41 - 00000016 _____ () C:\ProgramData\swi1a356309-540e-4422-a985-23d3e9194e4c.txt
2014-08-28 12:29 - 2014-08-28 08:50 - 00000031 _____ () C:\ProgramData\swi0ef625b5-6139-4af7-90e6-82f90a8b4e77.txt
2014-08-28 08:49 - 2009-07-14 05:53 - 00032606 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-08-28 08:34 - 2014-08-28 07:43 - 00000031 _____ () C:\ProgramData\swi24aa7aad-1cf9-480b-914a-d0cff48e67bf.txt
2014-08-27 19:59 - 2014-08-27 19:44 - 00000031 _____ () C:\ProgramData\swia1e6d9cb-2137-4f45-946b-35a4287a1bc0.txt
2014-08-27 19:29 - 2014-08-27 17:38 - 00000031 _____ () C:\ProgramData\swif90660a5-76a9-4aa0-bf75-e3a913c0702b.txt
2014-08-27 15:03 - 2014-08-27 14:43 - 00000031 _____ () C:\ProgramData\swi60161613-0120-4468-a9ac-41e6a628e8c2.txt
2014-08-27 13:47 - 2014-08-27 08:34 - 00000031 _____ () C:\ProgramData\swi66bdbc69-1aa6-47d6-9f7e-ea54b6bdd89d.txt
2014-08-26 20:25 - 2014-08-26 18:36 - 00000031 _____ () C:\ProgramData\swid76d9f23-5892-45ff-8d3b-07510a30e25e.txt
2014-08-26 19:30 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-08-26 13:57 - 2014-08-26 07:58 - 00000031 _____ () C:\ProgramData\swi0154c64a-74fe-4d33-a80e-200de30572ca.txt
2014-08-26 13:22 - 2014-08-22 19:44 - 00026663 ____N () C:\Users\sbabalola\Desktop\Tshoot assignment.pkt
2014-08-26 07:57 - 2014-08-26 07:52 - 00000031 _____ () C:\ProgramData\swideb12dcc-d3bc-42d7-b0a4-84ffcb39558b.txt
2014-08-26 07:52 - 2013-03-15 09:59 - 00000000 ____D () C:\Users\_sbabalola\Tracing
2014-08-26 07:51 - 2014-08-26 07:47 - 00000031 _____ () C:\ProgramData\swi7f5f3b63-e64a-4504-9dd7-691488f02e56.txt
2014-08-26 07:47 - 2014-08-26 07:47 - 00000000 _____ () C:\Users\_sbabalola\AppData\Local\{6FC5520C-A3F6-4C0B-B38A-BBBFD58485FD}

Some content of TEMP:
====================
C:\Users\Install\AppData\Local\Temp\ose00000.exe
C:\Users\sbabalola\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpwq1hy9.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite14526.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite19492.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite21992.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite27759.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite31849.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite41427.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite42349.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite47646.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite57475.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite70705.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite71849.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite72844.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite80912.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite90385.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite93652.dll
C:\Users\sbabalola\AppData\Local\Temp\System.Data.SQLite94642.dll
C:\Users\svc.sophos\AppData\Local\Temp\SetupENU.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-09-16 14:16

==================== End Of Log ============================

Addition.txt log.

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 25-09-2014 01
Ran by sbabalola at 2014-09-25 16:05:00
Running from C:\Users\sbabalola\Documents\Drivers\HP Probook 6545B
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

“RocketTab” (HKLM\...\RocketTab) (Version: - “RocketTab”)
32 Bit HP CIO Components Installer (Version: 13.1.2 - Hewlett-Packard) Hidden
ACER ICONIA 3G DRIVER INSTALL (HKLM\...\InstallShield_{582B87B4-BFA2-402F-88CA-986C67AA474A}) (Version: 1.00.0524 - acer)
ACER ICONIA 3G DRIVER INSTALL (Version: 1.00.0524 - acer) Hidden
Adobe Acrobat X Pro (HKLM\...\{AC76BA86-1033-0000-7760-000000000005}) (Version: 10.1.10 - Adobe Systems)
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI MUI (HKLM\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Advanced IP Address Calculator v1.1 (HKLM\...\Advanced IP Address Calculator v1.1) (Version: - )
Advanced IP Scanner (HKLM\...\{B0319FCD-559D-4335-ADB3-7B57C4D33DC2}) (Version: 2.0.88 - Famatech)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Aptus for v-Series (HKLM\...\{22FA88C6-F67B-4569-A811-A6EB6A525B61}) (Version: 1.0.0 - Intellian Technologies)
ASAP Utilities (HKLM\...\ASAP Utilities_is1) (Version: 4.8.6 - Bastien Mensink - A Must in Every Office BV)
ASDM on 172.16.211.250 (HKCU\...\ASDM on 172.16.211.250) (Version: - Cisco Systems, Inc.)
ASDM on 172.24.230.250 (HKCU\...\ASDM on 172.24.230.250) (Version: - Cisco Systems, Inc.)
Belkin Setup and Router Monitor (HKLM\...\Belkin Setup and Router Monitor_is1) (Version: - )
BlackBerry Desktop Software 7.1 (HKLM\...\BlackBerry_Desktop) (Version: 7.1.0.41 - Research In Motion Ltd.)
BlackBerry Desktop Software 7.1 (Version: 7.1.0.41 - Research In Motion Ltd.) Hidden
BlackBerry Link (HKLM\...\BlackBerry_10_Desktop) (Version: 1.0.1.17 - Research In Motion Ltd.)
BlackBerry Link (Version: 1.0.1.17 - Research In Motion Ltd.) Hidden
BlackBerry World Browser Plugin (HKLM\...\{C89184E5-DF30-4DB5-A90E-D24072B80F1F}) (Version: 4.4.1.5 - Research In Motion Limited)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Boson NetSim 8.0 (HKLM\...\InstallShield_{543AAEE7-DC34-4636-B266-54BD722A9A48}) (Version: 8.06 - Boson Software, LLC)
Boson NetSim 8.0 (Version: 8.06 - Boson Software, LLC) Hidden
Caterpillar Comm Adapter 3 (HKLM\...\CAT CA3) (Version: 2.0.0.29 - )
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
Cisco ASDM-IDM Launcher (HKLM\...\{67DBBD6B-8B80-4569-8392-F89D0575F37F}) (Version: 1.5.50 - Cisco Systems, Inc.)
Cisco IP Communicator (HKLM\...\{CF70CFC2-D207-4D87-AB6A-66D170CA6BE2}) (Version: 8.6.3.0 - Cisco Systems, Inc.)
Cisco Packet Tracer 6.0 (HKLM\...\Cisco Packet Tracer 6.0_is1) (Version: - Cisco Systems, Inc.)
Citrix online plug-in - web (HKLM\...\CitrixOnlinePluginPackWeb) (Version: 11.2.2.3 - Citrix Systems, Inc.)
Citrix online plug-in (DV) (Version: 11.2.2.3 - Citrix Systems, Inc.) Hidden
Citrix online plug-in (HDX) (Version: 11.2.2.3 - Citrix Systems, Inc.) Hidden
Citrix online plug-in (USB) (Version: 11.2.2.3 - Citrix Systems, Inc.) Hidden
Citrix online plug-in (Web) (Version: 11.2.2.3 - Citrix Systems, Inc.) Hidden
Cobian Backup 10 (HKLM\...\CobBackup10) (Version: - )
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{5971CA1F-6BDE-498F-952C-9F2BF94070A4}) (Version: - Microsoft)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{5971CA1F-6BDE-498F-952C-9F2BF94070A4}) (Version: - Microsoft)
Dropbox (HKCU\...\Dropbox) (Version: 2.10.27 - Dropbox, Inc.)
EaseUS Data Recovery Wizard 8.0 (HKLM\...\EaseUS Data Recovery Wizard 8.0_is1) (Version: - EaseUS)
EaseUS Partition Master 10.0 (HKLM\...\EaseUS Partition Master_is1) (Version: - EaseUS)
easyMail 1.15 (HKLM\...\{372F3CC7-80A8-4A69-BB2B-2F56C8B97096}) (Version: 1.15.00027 - Thrane & Thrane A/S)
eReg (Version: 1.20.138.34 - Logitech, Inc.) Hidden
etisalat Nigeria Hotspot (HKLM\...\{A9E5EDA7-2E6C-49E7-924B-A32B89C24A04}) (Version: 1.0.0.1 - ZTE Corporation)
FastStone Capture 6.5 (HKLM\...\FastStone Capture) (Version: 6.5 - FastStone Soft)
FileZilla Client 3.6.0.2 (HKLM\...\FileZilla Client) (Version: 3.6.0.2 - FileZilla Project)
Find and Mount 2.32 (HKLM\...\Find and Mount_is1) (Version: 2.32 - A-FF Data Recovery)
GLO NETPRO (HKLM\...\GLO NETPRO) (Version: 15.001.05.18.251 - Huawei Technologies Co.,Ltd)
GNS3 0.8.3.1 (HKLM\...\GNS3) (Version: 0.8.3.1 - )
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
HP Officejet 7500 E910 Basic Device Software (HKLM\...\{BBC3D43D-C097-4A93-BA61-6D30B629A661}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Officejet 7500 E910 Help (HKLM\...\{24DC9885-E759-4BD2-8A20-D4AC509A7FDE}) (Version: 140.0.93.93 - Hewlett Packard)
HP Officejet 7500 E910 Product Improvement Study (HKLM\...\{993D42B8-ED6D-449D-8759-F13482B9D204}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Update (HKLM\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
I.R.I.S. OCR (HKLM\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 11 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217011FF}) (Version: 7.0.110 - Oracle)
Java Auto Updater (Version: 2.1.9.0 - Sun Microsystems, Inc.) Hidden
LiveUpdate 2.0 (Symantec Corporation) (HKLM\...\LiveUpdate) (Version: 2.0.39.0 - Symantec Corporation)
Logitech SetPoint 6.52 (HKLM\...\sp6) (Version: 6.52.74 - Logitech)
MallforAfrica Plus (HKLM\...\{8AB9A1BD-92C6-4A07-A5C5-55E18708D6D7}) (Version: 9.0 - MallForAfrica)
MDB Repair Tool version 2.6.1 (HKLM\...\{0EE636B9-227C-4486-9EE7-554BCDBA8312}_is1) (Version: 2.6.1 - SkySof Software Inc.)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30320 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320 - Microsoft Corporation) Hidden
Microsoft Interop Forms Redistributable Package 2.0a (HKLM\...\{76D1AA2B-A434-4D63-BE2C-80286F23C223}) (Version: 2.0.0 - Microsoft Corporation)
Microsoft Lync 2010 (HKLM\...\{81BE0B17-563B-45D4-B198-5721E6C665CD}) (Version: 4.0.7577.4419 - Microsoft Corporation)
Microsoft Lync 2010, MUI (HKLM\...\{CEECF731-3F08-4210-8073-7E87F58C01D3}) (Version: - )
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Project MUI (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Project Professional 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Visio 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Visio MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Online Services Sign-in Assistant (HKLM\...\{46F2A190-3663-48FB-B11B-2AEEEB968C94}) (Version: 7.250.4122.0 - Microsoft Corporation)
Microsoft Project Professional 2010 (HKLM\...\Office14.PRJPRO) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visio Professional 2010 (HKLM\...\Office14.VISIO) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710F4C1C-CC18-4C49-8CBF-51240C89A1A2}) (Version: - )
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: - )
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mindjet MindManager 2012 (HKLM\...\{F17C58F5-2646-4743-A779-A24976F46571}) (Version: 10.2.209 - Mindjet)
Mozilla Firefox 32.0.2 (x86 en-US) (HKLM\...\Mozilla Firefox 32.0.2 (x86 en-US)) (Version: 32.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Multimedia Conference version 4.8.0.0 (HKLM\...\{AE63A04E-2898-4F46-AED1-08929F71CC9C}) (Version: 4.8.0.0 - Orange Business Services)
MyFreeCodec (HKCU\...\MyFreeCodec) (Version: - )
MySQL Workbench 6.1 CE (HKLM\...\{AD95295B-0279-43B6-A873-F12A1D1CD146}) (Version: 6.1.7 - Oracle Corporation)
Nero 12 (HKLM\...\{560FC78C-A4B2-461D-9B47-820C1EEF87B8}) (Version: 12.0.02000 - Nero AG)
Nero Audio Pack 1 (Version: 11.0.11500.110.0 - Nero AG) Hidden
Nero BackItUp (Version: 12.0.2001 - Nero AG) Hidden
Nero BackItUp Help (CHM) (Version: 12.0.3000 - Nero AG) Hidden
Nero Blu-ray Player (Version: 12.0.14300 - Nero AG) Hidden
Nero Blu-ray Player Help (CHM) (Version: 12.0.4000 - Nero AG) Hidden
Nero Burning ROM (Version: 12.0.20000 - Nero AG) Hidden
Nero Burning ROM Help (CHM) (Version: 12.0.3000 - Nero AG) Hidden
Nero ControlCenter (Version: 11.0.15200 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (Version: 12.0.5000 - Nero AG) Hidden
Nero Core Components (Version: 11.0.18100 - Nero AG) Hidden
Nero Disc Menus Basic (Version: 12.0.11500 - Nero AG) Hidden
Nero Effects Basic (Version: 12.0.11500 - Nero AG) Hidden
Nero Express (Version: 12.0.20000 - Nero AG) Hidden
Nero Express Help (CHM) (Version: 12.0.5000 - Nero AG) Hidden
Nero Kwik Media (Version: 1.18.18200 - Nero AG) Hidden
Nero Kwik Media Help (CHM) (Version: 12.0.4000 - Nero AG) Hidden
Nero Kwik Themes Basic (Version: 12.0.11500 - Nero AG) Hidden
Nero PiP Effects Basic (Version: 12.0.11500 - Nero AG) Hidden
Nero Recode (Version: 12.0.24000 - Nero AG) Hidden
Nero Recode Help (CHM) (Version: 12.0.4000 - Nero AG) Hidden
Nero RescueAgent (Version: 12.0.9000 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (Version: 12.0.3000 - Nero AG) Hidden
Nero SharedVideoCodecs (Version: 1.0.12100.2.0 - Nero AG) Hidden
Nero Update (Version: 11.0.11800.31.0 - Nero AG) Hidden
Nero Video (Version: 12.0.3000 - Nero AG) Hidden
Nero Video Help (CHM) (Version: 12.0.4000 - Nero AG) Hidden
NetViewer 2.1.715.0 (HKLM\...\NetViewer) (Version: 2.1.715.0 - )
OVH MoM (HKLM\...\OVH MoM) (Version: 4.1.15 - )
PDF-XChange 3 (HKLM\...\PDF-XChange 3_is1) (Version: - Tracker Software)
PL-2303 USB-to-Serial (HKLM\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.9.0 - Prolific Technology INC)
Prerequisite installer (Version: 12.0.0002 - Nero AG) Hidden
Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.2.14014_6 - Samsung Electronics Co., Ltd.)
Samsung Kies (Version: 2.6.2.14014_6 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.14072.12 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (Version: 3.2.14072.12 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{359ADBEC-068A-4CC9-9174-77AB8EDB867A}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (Version: - Microsoft) Hidden
Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 6.18 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
SMWLink3.0 (HKLM\...\ST5UNST #1) (Version: - )
SnapPea (HKLM\...\Wandoujia2) (Version: - Wandou Labs)
SolarWinds SCP Server (HKLM\...\{F02FC38E-AB94-4AB9-A47F-24C4F113DDAC}) (Version: 1.0.4.31 - SolarWinds)
SolarWinds TFTP Server (HKLM\...\{7EE86A3F-8107-486F-8E97-041F49578E73}) (Version: 10.9.1.30 - SolarWinds)
SolarWinds Toolset v10.9.1 (HKLM\...\{396D7E92-13FA-492F-A297-3E8AE7672336}) (Version: 10.9.1 - SolarWinds, Inc)
Sophos AutoUpdate (HKLM\...\{D924231F-D02D-4E0B-B511-CC4A0E3ED547}) (Version: 3.1.1.18 - Sophos Limited)
Sophos Remote Management System (HKLM\...\{FED1005D-CBC8-45D5-A288-FFC7BB304121}) (Version: 3.4.1 - Sophos Limited)
SwannView Link version 1.0.2.13 (HKLM\...\{992EF7D5-3D70-5A7F-AFDC-8C946676BD5D}_is1) (Version: 1.0.2.13 - )
Symantec Ghost Console and Standard Tools (HKLM\...\{C396097C-7F3F-4D36-08F2-35B237B000A1}) (Version: 82.00.01117 - Symantec)
SyncBack (HKLM\...\SyncBack_is1) (Version: - 2BrightSparks)
TeamViewer 9 (HKLM\...\TeamViewer 9) (Version: 9.0.31064 - TeamViewer)
The Weather Channel App (HKLM\...\The Weather Channel App) (Version: - )
Time Navigator (tina) (HKLM\...\tina) (Version: 4.2.8 P4982 SP8 - Atempo)
Toolset System Prerequisites (HKLM\...\{51DBB3AE-300E-4ACC-B6A1-87A89978695D}) (Version: 1.00.0000 - SolarWinds)
Trigger External Graphics Family 11.10.1014.0179 (HKLM\...\{81C5AD1D-C7C6-48AC-AC85-8F04293B1780}) (Version: 11.10.1014.0179 - MCT Corp)
TypeC3502 TWAIN Driver Ver.4 (HKLM\...\{771D414B-5641-41D1-86FB-4A21F9E2547C}) (Version: 4.41.01 - )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2836939v3) (Version: 3 - Microsoft Corporation)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{83B1B530-7D9E-4C6A-907F-E979CEE9C295}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.VISIO_{83B1B530-7D9E-4C6A-907F-E979CEE9C295}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.VISIO_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUS_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.VISIO_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUS_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUS_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2553444) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{799005D3-9B70-4219-AFE0-BC479614CC4D}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2553444) 32-Bit Edition (HKLM\...\{90140000-0054-0409-0000-0000000FF1CE}_Office14.VISIO_{51EBE89D-6C1B-4D57-8FEC-87B45DE0F39C}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2553444) 32-Bit Edition (HKLM\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{799005D3-9B70-4219-AFE0-BC479614CC4D}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{8C55AA83-54C2-4236-A622-78440A411DC5}) (Version: - Microsoft)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WampServer 2.4 (HKLM\...\WampServer 2_is1) (Version: - Hervé Leclerc (HeL))
Welcome App (Start-up experience) (Version: 12.0.14000 - Nero AG) Hidden
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinPcap 4.1.2 (HKLM\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
Wireshark 1.6.8 (32-bit) (HKLM\...\Wireshark) (Version: 1.6.8 - The Wireshark developer community, http://www.wireshark.org)
Yahoo! Messenger (HKLM\...\Yahoo! Messenger) (Version: - Yahoo! Inc.)
Yahoo! Software Update (HKLM\...\Yahoo! Software Update) (Version: - )
Yahoo! Toolbar (HKLM\...\Yahoo! Companion) (Version: - Yahoo! Inc.)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1996982328-3360563072-846100252-98808_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\sbabalola\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1996982328-3360563072-846100252-98808_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sbabalola\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1996982328-3360563072-846100252-98808_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sbabalola\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1996982328-3360563072-846100252-98808_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sbabalola\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1996982328-3360563072-846100252-98808_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sbabalola\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1996982328-3360563072-846100252-98808_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sbabalola\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1996982328-3360563072-846100252-98808_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sbabalola\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1996982328-3360563072-846100252-98808_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sbabalola\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1996982328-3360563072-846100252-98808_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\sbabalola\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)

==================== Restore Points =========================

22-09-2014 09:34:21 Scheduled Checkpoint
23-09-2014 16:57:17 avast! antivirus system restore point
23-09-2014 18:47:22 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2014-06-02 11:10 - 00000851 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {18F98199-3F11-42B7-944A-3FD0ACDFCEEC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-12-11] (Google Inc.)
Task: {33ED97CF-9CDA-4513-AD2B-FB99C80D8AEB} - System32\Tasks\HPCustParticipation HP Officejet 7500 E910 => C:\Program Files\HP\HP Officejet 7500 E910\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {37AB61DE-7AF7-47EB-9151-0C9DAD3694C5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {6D2CE39C-C21B-47C6-91EF-67AED2A44C35} - System32\Tasks\HP Officejet 7500 E910.exe_{C5FF3633-CC4A-4360-A5D3-98479D497BAA} => C:\Program Files\HP\HP Officejet 7500 E910\Bin\HP Officejet 7500 E910.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {9BC3523B-DCC0-4F30-83E1-32975961642D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-12] (Adobe Systems Incorporated)
Task: {9C30F29F-AE41-4725-A41E-E80C28036ADE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2012-12-11] (Google Inc.)
Task: {B4C67CE3-4F1D-4456-B475-43FC84B5B7BD} - System32\Tasks\Full Scan Thursday => C:\Program Files\Sophos\Sophos Anti-Virus\BackgroundScanClient.exe
Task: {BAB88562-83EC-4567-A8CB-98BF44869F08} - System32\Tasks\RocketTab => C:\Windows\system32\cmd.exe [2010-11-20] (Microsoft Corporation) <==== ATTENTION
Task: {D01EF4B0-998D-4864-BBBC-23A316763415} - System32\Tasks\Sophos_InstTask => \\masophos2k01.bourbon.priv\SophosUpdate\CIDs\S000\SAVSCFXP\setup.exe [2014-04-07] (Sophos Limited)
Task: {EB08253C-07A5-4448-90FD-7BF879D991FE} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {F342EA95-E266-4677-8530-C51C3AC0B44B} - System32\Tasks\RocketTab Update Task => C:\Program Files\RocketTab\uninstall.exe [2014-09-13] () <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Full Scan Thursday.job => C:\Program Files\Sophos\Sophos Anti-Virus\BackgroundScanClient.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Sophos_InstTask.job => ‹lêžÛ=´N¾ø·ŠŸŠéF¶<
s!Ý6RF\\masophos2k01.bourbon.priv\SophosUpdate\CIDs\S000\SAVSCFXP\setup.exeÜ-ouser "Bwhuj6RNaDrxUgIfLjiC5X42tgUnjjKFsxMXktZTpMJ9xpX9rybSeNwvct2JXbS3k5w=" -opwd "Bwi67/L0sD929s901pRilYAIRqY30rM7hdDokwtZeweYFA==" -mng yes -s -xp "\\masophos2k01.bourbon.priv\SophosUpdate\CIDs\S000\SAVSCFXP" -crt Rsvc.sophos

==================== Loaded Modules (whitelisted) =============

2012-11-28 13:09 - 2007-08-14 19:01 - 00022723 _____ () C:\Windows\System32\sst1cl3.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-09-11 14:21 - 2011-08-31 14:05 - 00222584 _____ () C:\Windows\system32\GManager.exe
2010-11-16 14:37 - 2010-11-16 14:37 - 00264704 _____ () C:\ProgramData\DatacardService\HWDeviceService.exe
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:45 - 2010-10-20 15:45 - 08801120 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2012-11-29 22:59 - 2012-11-29 22:59 - 00093696 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2010-10-15 18:14 - 2010-10-15 18:14 - 00132384 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2012-11-20 12:10 - 2009-08-16 17:06 - 00141312 _____ () C:\Program Files\WinRAR\rarext.dll
2013-09-11 14:21 - 2011-05-03 18:13 - 00199296 _____ () C:\Program Files\Common Files\DesktopUtil\MCTDesktopSvr.exe
2014-09-13 10:29 - 2014-09-13 10:29 - 01422048 _____ () C:\Program Files\RocketTab\Client.exe
2014-06-16 07:46 - 2014-06-16 07:46 - 01055808 _____ () C:\Program Files\Sophos\Remote Management System\ACE.dll
2014-06-16 07:46 - 2014-06-16 07:46 - 01539136 _____ () C:\Program Files\Sophos\Remote Management System\TAO.dll
2014-06-16 07:46 - 2014-06-16 07:46 - 00183360 _____ () C:\Program Files\Sophos\Remote Management System\TAO_DynamicAny.dll
2014-06-16 07:46 - 2014-06-16 07:46 - 00760896 _____ () C:\Program Files\Sophos\Remote Management System\LIBEAY32.dll
2014-06-16 07:47 - 2014-06-16 07:47 - 00146496 _____ () C:\Program Files\Sophos\Remote Management System\SSLEAY32.dll
2014-06-16 07:46 - 2014-06-16 07:46 - 00076864 _____ () C:\Program Files\Sophos\Remote Management System\ACE_SSL.dll
2014-06-16 07:46 - 2014-06-16 07:46 - 00535616 _____ () C:\Program Files\Sophos\Remote Management System\TAO_PortableServer.dll
2014-06-16 07:46 - 2014-06-16 07:46 - 00244800 _____ () C:\Program Files\Sophos\Remote Management System\TAO_SSLIOP.DLL
2014-06-16 07:47 - 2014-06-16 07:47 - 00740416 _____ () C:\Program Files\Sophos\Remote Management System\TAO_Security.dll
2014-06-16 07:46 - 2014-06-16 07:46 - 00039488 _____ () C:\Program Files\Sophos\Remote Management System\TAO_Valuetype.dll
2014-06-16 07:46 - 2014-06-16 07:46 - 00244800 _____ () C:\Program Files\Sophos\Remote Management System\TAO_SSLIOP.dll
2012-11-20 10:09 - 2011-06-10 17:36 - 00094208 _____ () C:\Windows\System32\IccLibDll.dll
2012-11-20 10:12 - 2011-07-25 09:43 - 00686704 _____ () C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe
2012-11-28 13:30 - 2009-12-09 15:49 - 00606208 _____ () C:\Windows\Samsung\PanelMgr\SSMMgr.exe
2014-08-21 10:10 - 2014-02-13 15:37 - 00254024 _____ () C:\Program Files\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\TrayTipAgentE.exe
2014-08-21 10:10 - 2014-02-13 15:27 - 00222792 _____ () C:\Program Files\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\traynet.dll
2014-08-21 10:10 - 2014-02-13 15:27 - 00275528 _____ () C:\Program Files\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\libcurl.dll
2014-08-21 10:10 - 2014-02-13 15:27 - 00113166 _____ () C:\Program Files\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\zlib1.dll
2014-08-21 10:10 - 2014-02-13 15:27 - 00249928 _____ () C:\Program Files\EaseUS\EaseUS Partition Master 10.0\bin\TrayPopupE\uexper.dll
2014-09-25 07:12 - 2014-09-25 07:12 - 00043008 _____ () c:\Users\sbabalola\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpwq1hy9.dll
2013-08-23 20:01 - 2013-08-23 20:01 - 25100288 _____ () C:\Users\sbabalola\AppData\Roaming\Dropbox\bin\libcef.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\office14\Cultures\office.odf
2011-01-27 15:27 - 2011-01-27 15:27 - 00552960 _____ () C:\Windows\system32\SnMinDrv.dll
2012-07-03 04:24 - 2012-07-03 04:24 - 00151408 _____ () C:\Program Files\Mindjet\MindManager 10\zlib.dll
2014-05-08 12:21 - 2014-05-08 12:21 - 02897280 _____ () C:\Program Files\Adobe\Acrobat 10.0\PDFMaker\Common\AdobePDFMakerX.dll
2013-02-14 15:46 - 2013-02-14 15:46 - 01044048 _____ () C:\Program Files\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll
2010-10-20 16:08 - 2010-10-20 16:08 - 00122720 _____ () C:\Program Files\Microsoft Office\Office14\OUTLCTL.DLL

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:63238B95
AlternateDataStreams: C:\Users\sbabalola\Documents\cv.eml:OECustomProperty

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Users^sbabalola^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^wandoujia_helper.lnk => C:\Windows\pss\wandoujia_helper.lnk.Startup
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Acrobat Speed Launcher => "C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: BlackBerryLink.exe => "C:\Program Files\Research In Motion\BlackBerry Link\BlackBerryLink.exe" /minimize
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: InstaLAN => "C:\Program Files\Belkin\Router Setup and Monitor\BelkinRouterMonitor.exe" startup
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: Messenger (Yahoo!) => "C:\PROGRA~1\Yahoo!\Messenger\YahooMessenger.exe" -quiet
MSCONFIG\startupreg: MMReminderService => C:\Program Files\Mindjet\MindManager 10\MMReminderService.exe
MSCONFIG\startupreg: NGServer => C:\Program Files\Symantec\Ghost\ngserver.exe
MSCONFIG\startupreg: RIMBBLaunchAgent.exe => C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun

========================= Accounts: ==========================

Administrator (S-1-5-21-3952048904-1736926062-2557856200-500 -> Administrator - Disabled - Status: Degraded)
Guest (S-1-5-21-3952048904-1736926062-2557856200-501 -> Limited - Disabled - Status: Degraded)
Install (S-1-5-21-3952048904-1736926062-2557856200-1000 -> Administrator - Enabled - Status: OK) => C:\Users\Install
SophosSAULOSLAP08260 (S-1-5-21-3952048904-1736926062-2557856200-1013 -> Limited - Enabled - Status: OK)

==================== Faulty Device Manager Devices =============

Name: HP Color LaserJet CP2025n
Description: HP Color LaserJet CP2025n
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP LaserJet 400 colorMFP M475dn
Description: HP LaserJet 400 colorMFP M475dn
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: hp color LaserJet 5550
Description: hp color LaserJet 5550
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CM2320nf MFP
Description: HP Color LaserJet CM2320nf MFP
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP Color LaserJet CM2320fxi MFP
Description: HP Color LaserJet CM2320fxi MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP LaserJet M5025 MFP
Description: HP LaserJet M5025 MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP LaserJet 400 colorMFP M475dn
Description: HP LaserJet 400 colorMFP M475dn
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CM2320fxi MFP
Description: HP Color LaserJet CM2320fxi MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CM2320nf MFP
Description: HP Color LaserJet CM2320nf MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CP2025n
Description: HP Color LaserJet CP2025n
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP LaserJet 400 colorMFP M475dn
Description: HP LaserJet 400 colorMFP M475dn
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP LaserJet 400 colorMFP M475dn
Description: HP LaserJet 400 colorMFP M475dn
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Deskjet 3050 J610 series
Description: Deskjet 3050 J610 series
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Officejet Pro 8600
Description: Officejet Pro 8600
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CM2320fxi MFP
Description: HP Color LaserJet CM2320fxi MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP LaserJet 400 colorMFP M475dn
Description: HP LaserJet 400 colorMFP M475dn
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: hp color LaserJet 5550
Description: hp color LaserJet 5550
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP LaserJet M5025 MFP
Description: HP LaserJet M5025 MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CM2320fxi MFP
Description: HP Color LaserJet CM2320fxi MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CP2025n
Description: HP Color LaserJet CP2025n
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CM2320fxi MFP
Description: HP Color LaserJet CM2320fxi MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CP2025n
Description: HP Color LaserJet CP2025n
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CM2320nf MFP
Description: HP Color LaserJet CM2320nf MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CM2320nf MFP
Description: HP Color LaserJet CM2320nf MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CM2320fxi MFP
Description: HP Color LaserJet CM2320fxi MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP LaserJet 400 colorMFP M475dn
Description: HP LaserJet 400 colorMFP M475dn
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP LaserJet 400 colorMFP M475dn
Description: HP LaserJet 400 colorMFP M475dn
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Deskjet 3050 J610 series
Description: Deskjet 3050 J610 series
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CM2320fxi MFP
Description: HP Color LaserJet CM2320fxi MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CM2320nf MFP
Description: HP Color LaserJet CM2320nf MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP LaserJet M5025 MFP
Description: HP LaserJet M5025 MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP LaserJet 400 colorMFP M475dn
Description: HP LaserJet 400 colorMFP M475dn
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CP2025n
Description: HP Color LaserJet CP2025n
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CM2320nf MFP
Description: HP Color LaserJet CM2320nf MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CP1515n
Description: HP Color LaserJet CP1515n
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP LaserJet M5025 MFP
Description: HP LaserJet M5025 MFP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP LaserJet 400 colorMFP M475dn
Description: HP LaserJet 400 colorMFP M475dn
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CP1515n
Description: HP Color LaserJet CP1515n
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: HP Color LaserJet CM2320fxi MFP
Description: HP Color LaserJet CM2320fxi MFP
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Application errors:
==================
Error: (09/25/2014 03:33:42 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: BOURBON)
Description: Application or service 'FileMaker Setup Resource' could not be shut down.

Error: (09/25/2014 00:49:09 PM) (Source: RIM MDNS) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   21 58.92.16.172.in-addr.arpa. PTR LOSLAP08268-2.local.

Error: (09/25/2014 00:49:09 PM) (Source: RIM MDNS) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 172.16.92.58:5353   19 58.92.16.172.in-addr.arpa. PTR LOSLAP08268.local.

Error: (09/25/2014 00:49:08 PM) (Source: RIM MDNS) (EventID: 100) (User: )
Description: Local Hostname LOSLAP08268.local already in use; will try LOSLAP08268-2.local instead

Error: (09/25/2014 00:49:08 PM) (Source: RIM MDNS) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister    4 LOSLAP08268.local. Addr 172.16.92.58

Error: (09/25/2014 00:49:08 PM) (Source: RIM MDNS) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 172.16.92.58:5353   16 LOSLAP08268.local. AAAA FE80:0000:0000:0000:31D6:405D:23AF:5F3C

Error: (09/25/2014 00:49:08 PM) (Source: RIM MDNS) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Ignoring response received before we even began probing:    4 LOSLAP08268.local. Addr 172.16.92.58

Error: (09/25/2014 00:49:07 PM) (Source: RIM MDNS) (EventID: 100) (User: )
Description: ResolveSimultaneousProbe: 020F4C88 Our Record 3 lost: 002DE5D0    4 LOSLAP08268.local. Addr 172.16.92.58

Error: (09/25/2014 00:49:07 PM) (Source: RIM MDNS) (EventID: 100) (User: )
Description: ResolveSimultaneousProbe: 020F4C88 Pkt Record:        83AA009E   16 LOSLAP08268.local. AAAA FE80:0000:0000:0000:31D6:405D:23AF:5F3C

Error: (09/25/2014 00:49:07 PM) (Source: RIM MDNS) (EventID: 100) (User: )
Description: ResolveSimultaneousProbe: 020F4C88 Our Record 3 lost: 002DE5D0    4 LOSLAP08268.local. Addr 172.16.92.58

System errors:
=============
Error: (09/25/2014 07:11:45 AM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1129) (User: BOURBON)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

Error: (09/25/2014 07:11:43 AM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1129) (User: NT AUTHORITY)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

Error: (09/25/2014 07:11:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The DgiVecp service failed to start due to the following error:
%%2

Error: (09/25/2014 07:11:13 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Sophos Anti-Virus service terminated with the following error:
%%-2147467259

Error: (09/25/2014 07:11:13 AM) (Source: NETLOGON) (EventID: 5719) (User: )
Description: This computer was not able to set up a secure session with a domain
controller in domain BOURBON due to the following:
%%1311

This may lead to authentication problems. Make sure that this
computer is connected to the network. If the problem persists,
please contact your domain administrator.

ADDITIONAL INFO

If this computer is a domain controller for the specified domain, it
sets up the secure session to the primary domain controller emulator in the specified
domain. Otherwise, this computer sets up the secure session to any domain controller
in the specified domain.

Error: (09/25/2014 07:11:12 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: machine-defaultLocalActivation{000C101C-0000-0000-C000-000000000046}{000C101C-0000-0000-C000-000000000046}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)

Error: (09/25/2014 07:11:10 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: machine-defaultLocalActivation{000C101C-0000-0000-C000-000000000046}{000C101C-0000-0000-C000-000000000046}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)

Error: (09/24/2014 08:57:33 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1129) (User: BOURBON)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

Error: (09/24/2014 08:57:24 PM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1129) (User: NT AUTHORITY)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

Error: (09/24/2014 08:57:21 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The DgiVecp service failed to start due to the following error:
%%2

Microsoft Office Sessions:
=========================
Error: (04/11/2013 10:13:57 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 59830 seconds with 2820 seconds of active time. This session ended with a crash.

Error: (03/28/2013 11:09:04 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 7810 seconds with 360 seconds of active time. This session ended with a crash.

Error: (01/23/2013 09:46:54 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 617 seconds with 180 seconds of active time. This session ended with a crash.

Error: (01/23/2013 09:36:06 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1076 seconds with 840 seconds of active time. This session ended with a crash.

Error: (01/23/2013 09:17:41 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 2907 seconds with 2340 seconds of active time. This session ended with a crash.

==================== Memory info ===========================

Processor: Intel® Core™ i7-2620M CPU @ 2.70GHz
Percentage of memory in use: 43%
Total physical RAM: 3240.9 MB
Available physical RAM: 1827.18 MB
Total Pagefile: 6480.09 MB
Available Pagefile: 4343.21 MB
Total Virtual: 2047.88 MB
Available Virtual: 1892.16 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:108.89 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: A991A991)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== End Of Log ============================

#14 Sbabalola

New Member

Authentic Member
9 posts

Posted 27 September 2014 - 02:00 AM

Problem, Solved. I Purchase Kerpersky internet security. Checked running application and found some applications that are running in the background. i checked the location and removed them from my system. Problem is now solved.

Thanks you for your assistance.

#15 ----------------

SuperMember

Authentic Member
1,095 posts

Posted 29 September 2014 - 03:44 AM

You´re welcome!

Proud Member of UNITE & TB

Body Background

skin color theme