Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Shop to Win 31


  • Please log in to reply
23 replies to this topic

#1 jimnlisastein

jimnlisastein

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 28 May 2013 - 07:12 PM

Hi,
 
My daughter was using the site girlgogames.com and her friend told her there was a virus on there.  My daughter notified me of the problem, and it looks like I have some malware.  I have limited activity, but here is what I see at this point:
 
- Norton appears to be disabled
- There is a red circle with a white $ icon in my systems tray
- In programs, there is now "Shop to Win 31"
 
I have not yet run any malware or virus removal tool, so that I can work with the team here directly.  I have Windows 7.
 
Let me know what other information I can provide before taking steps, and thanks for your help!!!
 
Best,
Jim

Edit: Moved topic from Windows 7 to the more appropriate forum. ~ Animal

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:30 PM

Posted 28 May 2013 - 07:39 PM

Hello Jim and welcome, let's run these and see how we are after.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.


Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
•Close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Delete.
•Confirm each time with Ok.
•You will be prompted to restart your computer. A text file will open after the restart.
•Please post the contents of that logfile with your next reply.
•You can find the logfile at C:\AdwCleaner[S1].txt as well.




Now I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
NOTE:Sometimes if ESET finds no infections it will not create a log.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 jimnlisastein

jimnlisastein
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 02 June 2013 - 09:11 PM

boopme...thanks for your response.  I meant to take the time to run this stuff over the weekend, but was unable.  I still plan on working on this, so please don't close down the topic.  I will start the process this week.  Thanks for your help!



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:30 PM

Posted 02 June 2013 - 09:30 PM

Whenever your ready, as a volunteer I believe in RCLF... Real Life Comes First.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 jimnlisastein

jimnlisastein
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 09 February 2014 - 08:09 PM

Long time between posts...have had the computer shut down during some surgeries and recoveries.  Ready to get it fixed now.  Here are the results from MiniToolBox:

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by Owner (administrator) on 09-02-2014 at 19:01:38
Running from "C:\Users\Owner\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Atheros 802.11 a/b/g/n Dualband Wireless Network Module = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Owner-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : sw.rr.com

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : sw.rr.com
   Description . . . . . . . . . . . : Atheros 802.11 a/b/g/n Dualband Wireless Network Module
   Physical Address. . . . . . . . . : 00-26-82-6A-A6-10
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::3503:8b46:464d:a8d7%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.107(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, February 09, 2014 5:15:24 PM
   Lease Expires . . . . . . . . . . : Monday, February 10, 2014 5:15:24 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 201336450
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-75-FF-7A-D8-D3-85-78-47-B6
   DNS Servers . . . . . . . . . . . : 209.18.47.61
                                       209.18.47.62
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : san.rr.com
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : D8-D3-85-78-47-B6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:3487:3bc9:bde6:3ab1(Preferred)
   Link-local IPv6 Address . . . . . : fe80::3487:3bc9:bde6:3ab1%14(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.sw.rr.com:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : sw.rr.com
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61

Name:    google.com
Addresses:  2607:f8b0:4000:808::1002
   74.125.227.167
   74.125.227.168
   74.125.227.169
   74.125.227.174
   74.125.227.160
   74.125.227.161
   74.125.227.162
   74.125.227.163
   74.125.227.164
   74.125.227.165
   74.125.227.166

Pinging google.com [74.125.227.163] with 32 bytes of data:
Reply from 74.125.227.163: bytes=32 time=175ms TTL=53
Reply from 74.125.227.163: bytes=32 time=176ms TTL=53

Ping statistics for 74.125.227.163:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 175ms, Maximum = 176ms, Average = 175ms
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61

Name:    yahoo.com
Addresses:  98.139.183.24
   206.190.36.45
   98.138.253.109

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=77ms TTL=45
Reply from 206.190.36.45: bytes=32 time=78ms TTL=45

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 77ms, Maximum = 78ms, Average = 77ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...00 26 82 6a a6 10 ......Atheros 802.11 a/b/g/n Dualband Wireless Network Module
 10...d8 d3 85 78 47 b6 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.107     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.107    281
    192.168.1.107  255.255.255.255         On-link     192.168.1.107    281
    192.168.1.255  255.255.255.255         On-link     192.168.1.107    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.107    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.107    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 14     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 14     58 2001::/32                On-link
 14    306 2001:0:9d38:6ab8:3487:3bc9:bde6:3ab1/128
                                    On-link
 11    281 fe80::/64                On-link
 14    306 fe80::/64                On-link
 14    306 fe80::3487:3bc9:bde6:3ab1/128
                                    On-link
 11    281 fe80::3503:8b46:464d:a8d7/128
                                    On-link
  1    306 ff00::/8                 On-link
 14    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/09/2014 05:02:44 PM) (Source: CVHSVC) (User: )
Description: Information only.
Scenario SCN_ does not exist in FFB.XML

Error: (05/28/2013 06:16:53 PM) (Source: CVHSVC) (User: )
Description: Information only.
Scenario SCN_ does not exist in FFB.XML

Error: (05/27/2013 08:42:00 PM) (Source: CVHSVC) (User: )
Description: Information only.
Error: The destination file system volume is not available. Verify that another program, such as CheckDisk, is not running, which would lock the volume. When the volume is available, Background Intelligent Transfer Service (BITS) will try again.
 ErrorCode: 14007(0x36b7).

Error: (05/27/2013 08:18:54 PM) (Source: CVHSVC) (User: )
Description: Information only.
Scenario SCN_ does not exist in FFB.XML

Error: (05/06/2013 03:58:23 PM) (Source: CVHSVC) (User: )
Description: Information only.
Scenario SCN_ does not exist in FFB.XML

Error: (04/30/2013 07:39:52 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16476, time stamp: 0x5126e7ac
Faulting module name: IEFRAME.dll, version: 9.0.8112.16476, time stamp: 0x5126ea2b
Exception code: 0xc0000005
Fault offset: 0x000f8042
Faulting process id: 0x1444
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (04/30/2013 07:28:05 PM) (Source: CVHSVC) (User: )
Description: Information only.
Scenario SCN_ does not exist in FFB.XML

Error: (04/24/2013 03:48:20 PM) (Source: Application Error) (User: )
Description: Faulting application name: PPCNVCOM.EXE, version: 12.0.6500.5000, time stamp: 0x49a68fc2
Faulting module name: ppcnv.dll, version: 12.0.6654.5000, time stamp: 0x4e8bdfdf
Exception code: 0xc0000005
Fault offset: 0x0012542f
Faulting process id: 0x15d4
Faulting application start time: 0xPPCNVCOM.EXE0
Faulting application path: PPCNVCOM.EXE1
Faulting module path: PPCNVCOM.EXE2
Report Id: PPCNVCOM.EXE3

Error: (04/24/2013 03:47:17 PM) (Source: CVHSVC) (User: )
Description: Information only.
Scenario SCN_ does not exist in FFB.XML

Error: (04/24/2013 02:41:19 PM) (Source: Application Hang) (User: )
Description: The program POWERPNT.EXE version 0.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 15f0

Start Time: 01ce412b8a3e85b7

Termination Time: 17

Application Path: Q:\140061.enu\Office14\POWERPNT.EXE

Report Id: 45a62d9c-ad1f-11e2-bd65-d8d3857847b6

System errors:
=============
Error: (02/09/2014 05:19:39 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

Error: (02/09/2014 05:15:18 PM) (Source: Service Control Manager) (User: )
Description: The HP Quick Synchronization Service service failed to start due to the following error:
%%2

Error: (02/09/2014 05:05:39 PM) (Source: Service Control Manager) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error:
%%1053

Error: (02/09/2014 05:05:39 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Google Update Service (gupdate) service to connect.

Error: (02/09/2014 05:02:22 PM) (Source: Service Control Manager) (User: )
Description: The HP Quick Synchronization Service service failed to start due to the following error:
%%2

Error: (05/28/2013 06:16:22 PM) (Source: Service Control Manager) (User: )
Description: The HP Quick Synchronization Service service failed to start due to the following error:
%%2

Error: (05/28/2013 05:51:31 PM) (Source: Service Control Manager) (User: )
Description: The HP Quick Synchronization Service service failed to start due to the following error:
%%2

Error: (05/27/2013 08:18:31 PM) (Source: Service Control Manager) (User: )
Description: The HP Quick Synchronization Service service failed to start due to the following error:
%%2

Error: (05/27/2013 08:18:29 PM) (Source: BugCheck) (User: )
Description: 0x00000116 (0xfffffa800cc204e0, 0xfffff88002e05fe0, 0x0000000000000000, 0x0000000000000002)C:\Windows\MEMORY.DMP052713-36785-01

Error: (05/27/2013 08:18:28 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 5:53:57 PM on ?5/?6/?2013 was unexpected.

Microsoft Office Sessions:
=========================
Error: (08/19/2010 10:49:36 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6535.5002, Microsoft Office Version: 12.0.6425.1000. This session lasted 120 seconds with 0 seconds of active time.  This session ended with a crash.

=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
1 Penguin 100 Cases (Version: 2.2.0.98)
64 Bit HP CIO Components Installer (Version: 7.2.8)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0.1)
Adobe AIR (Version: 2.6.0.19120)
Adobe Flash Player 12 ActiveX (Version: 12.0.0.44)
Adobe Flash Player 12 Plugin (Version: 12.0.0.44)
Adobe Reader X (10.1.9) (Version: 10.1.9)
Adobe Shockwave Player 11.5 (Version: 11.5.9.615)
AIO_Scan (Version: 130.0.365.000)
AMD USB Filter Driver (Version: 1.0.11.86)
Apple Application Support (Version: 1.4.1)
Apple Software Update (Version: 2.1.1.116)
Ask Toolbar (Version: 1.15.1.0)
Ask Toolbar Updater (Version: 1.2.1.22229)
ATI Catalyst Install Manager (Version: 3.0.765.0)
Bing Bar (Version: 7.0.609.0)
Bing Rewards Client Installer (Version: 16.0.345.0)
BufferChm (Version: 130.0.331.000)
C5200 (Version: 130.0.365.000)
C5200_Help (Version: 100.0.206.000)
CameraHelperMsi (Version: 13.10.1217.0)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2010.0310.1824.32984)
Catalyst Control Center Graphics Full Existing (Version: 2010.0310.1824.32984)
Catalyst Control Center Graphics Full New (Version: 2010.0310.1824.32984)
Catalyst Control Center Graphics Light (Version: 2010.0310.1824.32984)
Catalyst Control Center Graphics Previews Common (Version: 2010.0310.1824.32984)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0310.1824.32984)
Catalyst Control Center HydraVision Full (Version: 2010.0310.1824.32984)
Catalyst Control Center InstallProxy (Version: 2009.1201.2247.40849)
Catalyst Control Center InstallProxy (Version: 2010.0310.1824.32984)
Catalyst Control Center Localization All (Version: 2010.0310.1824.32984)
CCC Help Chinese Standard (Version: 2010.0310.1823.32984)
CCC Help Chinese Traditional (Version: 2010.0310.1823.32984)
CCC Help Czech (Version: 2010.0310.1823.32984)
CCC Help Danish (Version: 2010.0310.1823.32984)
CCC Help Dutch (Version: 2010.0310.1823.32984)
CCC Help English (Version: 2010.0310.1823.32984)
CCC Help Finnish (Version: 2010.0310.1823.32984)
CCC Help French (Version: 2010.0310.1823.32984)
CCC Help German (Version: 2010.0310.1823.32984)
CCC Help Greek (Version: 2010.0310.1823.32984)
CCC Help Hungarian (Version: 2010.0310.1823.32984)
CCC Help Italian (Version: 2010.0310.1823.32984)
CCC Help Japanese (Version: 2010.0310.1823.32984)
CCC Help Korean (Version: 2010.0310.1823.32984)
CCC Help Norwegian (Version: 2010.0310.1823.32984)
CCC Help Polish (Version: 2010.0310.1823.32984)
CCC Help Portuguese (Version: 2010.0310.1823.32984)
CCC Help Russian (Version: 2010.0310.1823.32984)
CCC Help Spanish (Version: 2010.0310.1823.32984)
CCC Help Swedish (Version: 2010.0310.1823.32984)
CCC Help Thai (Version: 2010.0310.1823.32984)
CCC Help Turkish (Version: 2010.0310.1823.32984)
ccc-core-static (Version: 2010.0310.1824.32984)
ccc-utility64 (Version: 2010.0310.1824.32984)
Chocolatier - Decadence by Design (Version: 2.2.0.97)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Copy (Version: 130.0.428.000)
Coupon Printer for Windows (Version: 5.0.0.0)
CouponBar
CyberLink DVD Suite Deluxe (Version: 7.0.2115)
Daily Fitness Center
Delicious - Emily's Wonder Wedding Premium Edition (Version: 3.0.2.48)
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 130.0.465.000)
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
DocProc (Version: 13.0.0.0)
Dreamscapes: The Sandman Collector's Edition (Version: 3.0.2.48)
DVD Menu Pack for HP MediaSmart Video (Version: 3.1.3224)
erLT (Version: 1.20.138.34)
Fax (Version: 130.0.418.000)
Google Chrome (Version: 27.0.1453.94)
Google Earth (Version: 7.0.3.8542)
Google Update Helper (Version: 1.3.22.3)
GoToMeeting 5.4.0.1082 (Version: 5.4.0.1082)
GPBaseService2 (Version: 130.0.371.000)
Hardware Diagnostic Tools (Version: 6.0.5247.34)
Hewlett-Packard ACLM.NET v1.1.2.0 (Version: 1.00.0000)
HP Advisor (Version: 3.3.9512.3162)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Games (Version: 1.0.2.5)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP MediaSmart Demo (Version: 1.00.0000)
HP MediaSmart DVD (Version: 3.1.3317)
HP MediaSmart Music/Photo/Video (Version: 3.1.3601)
HP MediaSmart SmartMenu (Version: 3.1.0.1)
HP MediaSmart/TouchSmart Netflix (Version: 1.0.2.0)
HP Odometer (Version: 2.10.0000)
HP Photosmart All-In-One Driver Software 13.0 Rel. 2 (Version: 13.0)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Remote Solution (Version: 1.1.11.0)
HP Setup (Version: 1.2.3560.3170)
HP Smart Web Printing 4.51 (Version: 4.51)
HP Solution Center 13.0 (Version: 13.0)
HP Support Assistant (Version: 6.1.12.1)
HP Support Information (Version: 10.1.0002)
HP Update (Version: 5.001.000.014)
HPDiagnosticAlert (Version: 1.00.0000)
HPPhotoGadget (Version: 130.0.282.000)
HPPhotoSmartDiscLabel_PaperLabel (Version: 2.04.0000)
HPPhotoSmartDiscLabel_PrintOnDisc (Version: 2.04.0000)
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000)
hpphotosmartdisclabelplugin (Version: 2.04.0000)
HPPhotosmartEssential (Version: 2.04.0000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
Hulu Desktop (Version: 0.9.9)
HydraVision (Version: 4.2.162.0)
Inbox Toolbar (Version: 1.0.0.135)
Interactive Calculus 3.0
Java 7 Update 11 (Version: 7.0.110)
Java Auto Updater (Version: 2.1.9.0)
Java™ SE Runtime Environment 6 Update 1 (Version: 1.6.0.10)
Junk Mail filter update (Version: 14.0.8089.726)
king.com (remove only)
LabelPrint (Version: 2.5.2017)
LeapFrog Connect (Version: 4.2.9.15649)
LeapFrog Didj Plugin (Version: 4.2.9.15649)
LeapFrog Tag Plugin (Version: 4.2.9.15649)
LightScribe System Software (Version: 1.18.8.1)
Logitech Vid HD (Version: 7.2 (7240))
Logitech Webcam Software (Version: 2.0)
LWS Facebook (Version: 13.10.1216.0)
LWS Gallery (Version: 13.10.1216.0)
LWS Help_main (Version: 13.10.1224.0)
LWS Launcher (Version: 13.10.1224.0)
LWS Motion Detection (Version: 13.10.1218.0)
LWS Pictures And Video (Version: 13.10.1218.0)
LWS Twitter (Version: 13.00.1216.0)
LWS Video Mask Maker (Version: 13.10.1216.0)
LWS VideoEffects (Version: 13.00.1774.0)
LWS Webcam Software (Version: 13.00.1774.0)
LWS WLM Plugin (Version: 1.10.1222.0)
LWS YouTube Plugin (Version: 13.10.1216.0)
MarketResearch (Version: 130.0.374.000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Default Manager (Version: 2.2.114.0)
Microsoft Live Search Toolbar (Version: 3.0.566.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2010 - English (Version: 14.0.5123.5002)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Movie Theme Pack for HP MediaSmart Video (Version: 3.1.3310)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Network64 (Version: 130.0.572.000)
Network64 (Version: 140.0.221.000)
Norton Internet Security (Version: 19.9.1.14)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
Pandora (Version: 2.0.5)
PictureMover (Version: 3.3.1.19)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Power E*TRADE Pro
Power2Go (Version: 6.0.3304)
PowerDirector (Version: 7.0.3503)
PowerPlugs: Template Finder for PowerPoint
PS_AIO_02_ProductContext (Version: 130.0.365.000)
PS_AIO_02_Software (Version: 130.0.365.000)
PS_AIO_02_Software_Min (Version: 130.0.365.000)
Puzzling Paws (Version: 2.2.0.97)
QuickTime (Version: 7.69.80.9)
RAIDXpert (Version: 3.2.1540.5)
Realtek High Definition Audio Driver (Version: 6.0.1.5938)
Recovery Manager (Version: 5.5.2216)
Scan (Version: 140.0.80.000)
Shop for HP Supplies (Version: 13.0)
Shop To Win (Version: 1.1.0.0)
Shop to Win 31
Skype Toolbars (Version: 5.0.4137)
Skype™ 5.10 (Version: 5.10.116)
SmartWebPrinting (Version: 130.0.457.000)
SolutionCenter (Version: 130.0.373.000)
Status (Version: 130.0.469.000)
Super Yum Yum: Puzzle Adventures (Version: 2.2.0.97)
Toolbox (Version: 130.0.648.000)
TrayApp (Version: 130.0.422.000)
TurboTax 2010
TurboTax 2010 wcaiper (Version: 010.000.1924)
TurboTax 2010 WinPerFedFormset (Version: 010.000.5821)
TurboTax 2010 WinPerReleaseEngine (Version: 010.000.0501)
TurboTax 2010 WinPerTaxSupport (Version: 010.000.0222)
TurboTax 2010 wrapper (Version: 010.000.0157)
TurboTax 2011
TurboTax 2011 wcaiper (Version: 011.000.1647)
TurboTax 2011 WinPerFedFormset (Version: 011.000.2999)
TurboTax 2011 WinPerReleaseEngine (Version: 011.000.0495)
TurboTax 2011 WinPerTaxSupport (Version: 011.000.0214)
TurboTax 2011 wrapper (Version: 011.000.0121)
TurboTax 2012 (Version: 2012.0)
TurboTax 2012 wcaiper (Version: 012.000.1430)
TurboTax 2012 WinPerFedFormset (Version: 012.000.2114)
TurboTax 2012 WinPerReleaseEngine (Version: 012.000.0451)
TurboTax 2012 WinPerTaxSupport (Version: 012.000.0179)
TurboTax 2012 wrapper (Version: 012.000.0127)
UB
UnloadSupport (Version: 11.0.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Installer for WildTangent Games App
Use the entry named LeapFrog Connect to uninstall (LeapFrog Didj Plugin)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Plugin) (Version: 4.2.9.15649)
WebReg (Version: 130.0.132.017)
WildTangent Games (Version: 1.0.4.0)
WildTangent Games App (HP Games) (Version: 4.0.10.5)
WildTangent Games App (Version: 4.0.10.5)
Windows Driver Package - LeapFrog (FlyUsb) USB  (11/05/2008 1.1.1.0) (Version: 11/05/2008 1.1.1.0)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net  (09/10/2009 02.03.05.012) (Version: 09/10/2009 02.03.05.012)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
Yahoo! Toolbar

========================= Memory info: ===================================

Percentage of memory in use: 30%
Total physical RAM: 8183.89 MB
Available physical RAM: 5649.21 MB
Total Pagefile: 16365.96 MB
Available Pagefile: 13304.36 MB
Total Virtual: 4095.88 MB
Available Virtual: 3974.22 MB

========================= Partitions: =====================================

1 Drive c: (HP) (Fixed) (Total:919.9 GB) (Free:846.54 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:11.32 GB) (Free:1.63 GB) NTFS

========================= Users: ========================================

User accounts for \\OWNER-PC

Administrator            Guest                    Owner                   

**** End of log ****

 

 

Here is the report from TDSSkiller:

 

19:05:40.0954 0x1234 TDSS rootkit removing tool 3.0.0.22 Feb 3 2014 16:45:35

19:05:45.0664 0x1234 ============================================================

19:05:45.0664 0x1234 Current date / time: 2014/02/09 19:05:45.0664

19:05:45.0664 0x1234 SystemInfo:

19:05:45.0665 0x1234

19:05:45.0665 0x1234 OS Version: 6.1.7601 ServicePack: 1.0

19:05:45.0665 0x1234 Product type: Workstation

19:05:45.0665 0x1234 ComputerName: OWNER-PC

19:05:45.0665 0x1234 UserName: Owner

19:05:45.0665 0x1234 Windows directory: C:\Windows

19:05:45.0665 0x1234 System windows directory: C:\Windows

19:05:45.0665 0x1234 Running under WOW64

19:05:45.0665 0x1234 Processor architecture: Intel x64

19:05:45.0665 0x1234 Number of processors: 4

19:05:45.0665 0x1234 Page size: 0x1000

19:05:45.0665 0x1234 Boot type: Normal boot

19:05:45.0665 0x1234 ============================================================

19:05:45.0970 0x1234 KLMD registered as C:\Windows\system32\drivers\91260792.sys

19:05:46.0286 0x1234 System UUID: {97BC8F11-EC4C-6E72-9B56-1EC1164F0D0A}

19:05:47.0279 0x1234 Drive \Device\Harddisk0\DR0 - Size: 0xE8D4A50000 (931.32 Gb), SectorSize: 0x200, Cylinders: 0x1DAE8, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

19:05:47.0301 0x1234 ============================================================

19:05:47.0301 0x1234 \Device\Harddisk0\DR0:

19:05:47.0301 0x1234 MBR partitions:

19:05:47.0301 0x1234 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000

19:05:47.0301 0x1234 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x72FCC800

19:05:47.0301 0x1234 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x72FFF000, BlocksNum 0x16A5800

19:05:47.0301 0x1234 ============================================================

19:05:47.0324 0x1234 C: <-> \Device\Harddisk0\DR0\Partition2

19:05:47.0377 0x1234 D: <-> \Device\Harddisk0\DR0\Partition3

19:05:47.0377 0x1234 ============================================================

19:05:47.0377 0x1234 Initialize success

19:05:47.0377 0x1234 ============================================================

19:06:19.0289 0x03f8 ============================================================

19:06:19.0289 0x03f8 Scan started

19:06:19.0289 0x03f8 Mode: Manual; TDLFS;

19:06:19.0289 0x03f8 ============================================================

19:06:19.0289 0x03f8 KSN ping started

19:06:22.0300 0x03f8 KSN ping finished: true

19:06:22.0888 0x03f8 ================ Scan system memory ========================

19:06:22.0888 0x03f8 System memory - ok

19:06:22.0889 0x03f8 ================ Scan services =============================

19:06:23.0118 0x03f8 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys

19:06:23.0134 0x03f8 1394ohci - ok

19:06:23.0227 0x03f8 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys

19:06:23.0261 0x03f8 ACPI - ok

19:06:23.0310 0x03f8 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys

19:06:23.0313 0x03f8 AcpiPmi - ok

19:06:23.0432 0x03f8 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

19:06:23.0437 0x03f8 AdobeARMservice - ok

19:06:23.0591 0x03f8 [ C8C6C0D659734FDBF63F6F421A5416BC, 11C452D77D0A8A5E430D0D0C9949797FFC03D2E3DADB8FBB9B63EDA868AFF83C ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

19:06:23.0605 0x03f8 AdobeFlashPlayerUpdateSvc - ok

19:06:23.0651 0x03f8 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys

19:06:23.0664 0x03f8 adp94xx - ok

19:06:23.0723 0x03f8 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys

19:06:23.0746 0x03f8 adpahci - ok

19:06:23.0768 0x03f8 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys

19:06:23.0775 0x03f8 adpu320 - ok

19:06:23.0803 0x03f8 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll

19:06:23.0806 0x03f8 AeLookupSvc - ok

19:06:23.0884 0x03f8 [ 1C7857B62DE5994A75B054A9FD4C3825, 83F963D7E636532B1AD30B1E727EC429317CA540F6EB3BB268FCC0B163B67767 ] AFD C:\Windows\system32\drivers\afd.sys

19:06:23.0916 0x03f8 AFD - ok

19:06:23.0971 0x03f8 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys

19:06:23.0978 0x03f8 agp440 - ok

19:06:24.0014 0x03f8 [ AA3F73CCBF498BD56800F840D75E40E4, BBC52A9DD38ADCD071ABA1A5F0C6E5E38053D7ABC473ED153DEE49D6F2A00ABA ] ahcix64s C:\Windows\system32\DRIVERS\ahcix64s.sys

19:06:24.0026 0x03f8 ahcix64s - ok

19:06:24.0040 0x03f8 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe

19:06:24.0043 0x03f8 ALG - ok

19:06:24.0053 0x03f8 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys

19:06:24.0055 0x03f8 aliide - ok

19:06:24.0092 0x03f8 [ 0DE7BF2A2E64A841F9ABF9558870D9C4, 32DF5C7EF723C99B48BBC0470CA6BE9146513C4A495998FA40EC09D858007A0F ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe

19:06:24.0098 0x03f8 AMD External Events Utility - ok

19:06:24.0117 0x03f8 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys

19:06:24.0118 0x03f8 amdide - ok

19:06:24.0149 0x03f8 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys

19:06:24.0152 0x03f8 AmdK8 - ok

19:06:24.0399 0x03f8 [ F284DA3156166B45D02ACC3C228ADE1E, 7C6DB1AE764380D4E58EE3A39B48BEBBF7B2FF7AB29D83AF8962A7C3C381E81E ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys

19:06:24.0665 0x03f8 amdkmdag - ok

19:06:24.0707 0x03f8 [ 91E1DAF0193BD2AB90B1B35C987237FE, 37E7E365BA789CDDF8373EF83D1AB4F15EA794C95CD1B170751F91A95CEDB5DB ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys

19:06:24.0711 0x03f8 amdkmdap - ok

19:06:24.0737 0x03f8 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys

19:06:24.0738 0x03f8 AmdPPM - ok

19:06:24.0768 0x03f8 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys

19:06:24.0771 0x03f8 amdsata - ok

19:06:24.0820 0x03f8 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys

19:06:24.0834 0x03f8 amdsbs - ok

19:06:24.0866 0x03f8 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys

19:06:24.0870 0x03f8 amdxata - ok

19:06:24.0921 0x03f8 [ 2B8D1C23D204C0E70EFF48A3FFA1C67B, 4765AB77069EDF0BB1BD216EBA5E99CA3B4A5AF431E9BFC042B117B80FAC9581 ] AMD_RAIDXpert C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe

19:06:24.0930 0x03f8 AMD_RAIDXpert - ok

19:06:24.0965 0x03f8 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys

19:06:24.0971 0x03f8 AppID - ok

19:06:25.0012 0x03f8 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll

19:06:25.0015 0x03f8 AppIDSvc - ok

19:06:25.0039 0x03f8 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll

19:06:25.0045 0x03f8 Appinfo - ok

19:06:25.0070 0x03f8 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys

19:06:25.0078 0x03f8 arc - ok

19:06:25.0094 0x03f8 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys

19:06:25.0103 0x03f8 arcsas - ok

19:06:25.0196 0x03f8 [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe

19:06:25.0201 0x03f8 aspnet_state - ok

19:06:25.0229 0x03f8 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys

19:06:25.0233 0x03f8 AsyncMac - ok

19:06:25.0282 0x03f8 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys

19:06:25.0286 0x03f8 atapi - ok

19:06:25.0373 0x03f8 [ E0FABC10635C670BD7D89FD214A405D7, DB1A7755F38F92D1BFCBC8EC710CB997C1AEE88E4FD7461B0E2A7C1EF3D2F5E4 ] athr C:\Windows\system32\DRIVERS\athrx.sys

19:06:25.0452 0x03f8 athr - ok

19:06:25.0476 0x03f8 [ 77C149E6D702737B2E372DEE166FAEF8, D18FEAE9D915D5F25B787B755F9C6321A9C9506D4F563DD637E3586401E36053 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys

19:06:25.0479 0x03f8 AtiHdmiService - ok

19:06:25.0714 0x03f8 [ F284DA3156166B45D02ACC3C228ADE1E, 7C6DB1AE764380D4E58EE3A39B48BEBBF7B2FF7AB29D83AF8962A7C3C381E81E ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys

19:06:25.0928 0x03f8 atikmdag - ok

19:06:25.0974 0x03f8 [ 7C5D273E29DCC5505469B299C6F29163, 206CAB85CE12A3953F0861C811575DC7FD000147436219EEE334584A33370B3A ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys

19:06:25.0978 0x03f8 AtiPcie - ok

19:06:26.0064 0x03f8 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

19:06:26.0084 0x03f8 AudioEndpointBuilder - ok

19:06:26.0121 0x03f8 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll

19:06:26.0144 0x03f8 AudioSrv - ok

19:06:26.0200 0x03f8 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll

19:06:26.0209 0x03f8 AxInstSV - ok

19:06:26.0292 0x03f8 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys

19:06:26.0322 0x03f8 b06bdrv - ok

19:06:26.0359 0x03f8 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys

19:06:26.0368 0x03f8 b57nd60a - ok

19:06:26.0472 0x03f8 [ 825F81A6F7DD073509DB101F0BA6DC59, 25555D1DDB223DD10C328E4FC4A55698607004A9FA6C55DA3317AC2400897E94 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE

19:06:26.0484 0x03f8 BBSvc - ok

19:06:26.0506 0x03f8 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll

19:06:26.0510 0x03f8 BDESVC - ok

19:06:26.0518 0x03f8 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys

19:06:26.0519 0x03f8 Beep - ok

19:06:26.0583 0x03f8 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll

19:06:26.0603 0x03f8 BFE - ok

19:06:26.0926 0x03f8 [ F14F048B4D05FBCE536250EA74BF9FDC, 63E25E916209B6AF7AAC98B665E0128842F1EFDDEF95D50095514A9FDDC522A9 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\BASHDefs\20140121.001\BHDrvx64.sys

19:06:26.0953 0x03f8 BHDrvx64 - ok

19:06:27.0057 0x03f8 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll

19:06:27.0086 0x03f8 BITS - ok

19:06:27.0116 0x03f8 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys

19:06:27.0120 0x03f8 blbdrive - ok

19:06:27.0157 0x03f8 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys

19:06:27.0164 0x03f8 bowser - ok

19:06:27.0198 0x03f8 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys

19:06:27.0202 0x03f8 BrFiltLo - ok

19:06:27.0216 0x03f8 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys

19:06:27.0219 0x03f8 BrFiltUp - ok

19:06:27.0259 0x03f8 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll

19:06:27.0263 0x03f8 Browser - ok

19:06:27.0305 0x03f8 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys

19:06:27.0315 0x03f8 Brserid - ok

19:06:27.0329 0x03f8 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys

19:06:27.0331 0x03f8 BrSerWdm - ok

19:06:27.0339 0x03f8 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys

19:06:27.0340 0x03f8 BrUsbMdm - ok

19:06:27.0350 0x03f8 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys

19:06:27.0351 0x03f8 BrUsbSer - ok

19:06:27.0377 0x03f8 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys

19:06:27.0380 0x03f8 BTHMODEM - ok

19:06:27.0407 0x03f8 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll

19:06:27.0409 0x03f8 bthserv - ok

19:06:27.0498 0x03f8 [ 2C6FFCCA37B002AAB3C7C31A6D780A76, C28B4B8CE8D42D4F3EECB2F47DC0DADE560E0725E7D41CD42F39F179D3C8F6B0 ] ccSet_NIS C:\Windows\system32\drivers\NISx64\1309010.00E\ccSetx64.sys

19:06:27.0511 0x03f8 ccSet_NIS - ok

19:06:27.0552 0x03f8 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys

19:06:27.0560 0x03f8 cdfs - ok

19:06:27.0600 0x03f8 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\drivers\cdrom.sys

19:06:27.0611 0x03f8 cdrom - ok

19:06:27.0651 0x03f8 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll

19:06:27.0654 0x03f8 CertPropSvc - ok

19:06:27.0674 0x03f8 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys

19:06:27.0677 0x03f8 circlass - ok

19:06:27.0707 0x03f8 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys

19:06:27.0719 0x03f8 CLFS - ok

19:06:27.0794 0x03f8 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

19:06:27.0802 0x03f8 clr_optimization_v2.0.50727_32 - ok

19:06:27.0852 0x03f8 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

19:06:27.0860 0x03f8 clr_optimization_v2.0.50727_64 - ok

19:06:27.0936 0x03f8 [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

19:06:27.0940 0x03f8 clr_optimization_v4.0.30319_32 - ok

19:06:27.0958 0x03f8 [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

19:06:27.0962 0x03f8 clr_optimization_v4.0.30319_64 - ok

19:06:27.0987 0x03f8 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys

19:06:27.0989 0x03f8 CmBatt - ok

19:06:28.0027 0x03f8 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys

19:06:28.0029 0x03f8 cmdide - ok

19:06:28.0074 0x03f8 [ 9AC4F97C2D3E93367E2148EA940CD2CD, 530E089E5CF868AECDB2B5548EBE76E0CA98FC74A72897292AB2485734402E3B ] CNG C:\Windows\system32\Drivers\cng.sys

19:06:28.0085 0x03f8 CNG - ok

19:06:28.0090 0x03f8 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys

19:06:28.0091 0x03f8 Compbatt - ok

19:06:28.0140 0x03f8 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys

19:06:28.0144 0x03f8 CompositeBus - ok

19:06:28.0155 0x03f8 COMSysApp - ok

19:06:28.0185 0x03f8 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys

19:06:28.0187 0x03f8 crcdisk - ok

19:06:28.0238 0x03f8 [ 9C01375BE382E834CC26D1B7EAF2C4FE, B1D1E36B91A3C3CD09428EE3403896F71390A2798323BB406B484D9DB064A219 ] CryptSvc C:\Windows\system32\cryptsvc.dll

19:06:28.0243 0x03f8 CryptSvc - ok

19:06:28.0376 0x03f8 [ 72794D112CBAFF3BC0C29BF7350D4741, 060C207F27306A3464FBCD8B08BDC97E34923ECA349933ECB059848BD08F41ED ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE

19:06:28.0395 0x03f8 cvhsvc - ok

19:06:28.0441 0x03f8 [ 622FCF264119F7DF127BE353F796B319, 6689D8F62F860178685496EF45520967AFAEFF94CFBCC64CF77074F21577E0A2 ] DailyFitnessCenter_53Service C:\PROGRA~2\DAILYF~2\bar\1.bin\53barsvc.exe

19:06:28.0445 0x03f8 DailyFitnessCenter_53Service - ok

19:06:28.0522 0x03f8 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll

19:06:28.0547 0x03f8 DcomLaunch - ok

19:06:28.0575 0x03f8 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll

19:06:28.0583 0x03f8 defragsvc - ok

19:06:28.0615 0x03f8 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys

19:06:28.0618 0x03f8 DfsC - ok

19:06:28.0661 0x03f8 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll

19:06:28.0669 0x03f8 Dhcp - ok

19:06:28.0692 0x03f8 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys

19:06:28.0693 0x03f8 discache - ok

19:06:28.0729 0x03f8 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys

19:06:28.0736 0x03f8 Disk - ok

19:06:28.0779 0x03f8 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll

19:06:28.0793 0x03f8 Dnscache - ok

19:06:28.0833 0x03f8 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll

19:06:28.0842 0x03f8 dot3svc - ok

19:06:28.0893 0x03f8 [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys

19:06:28.0899 0x03f8 Dot4 - ok

19:06:28.0937 0x03f8 [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys

19:06:28.0939 0x03f8 Dot4Print - ok

19:06:28.0947 0x03f8 [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys

19:06:28.0950 0x03f8 dot4usb - ok

19:06:28.0990 0x03f8 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll

19:06:28.0996 0x03f8 DPS - ok

19:06:29.0016 0x03f8 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys

19:06:29.0018 0x03f8 drmkaud - ok

19:06:29.0100 0x03f8 [ AF2E16242AA723F68F461B6EAE2EAD3D, 3973633C6D231DB8D92DE310D3A0836C64639B9A20C6C56385FB218A707C1BC3 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys

19:06:29.0122 0x03f8 DXGKrnl - ok

19:06:29.0157 0x03f8 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll

19:06:29.0165 0x03f8 EapHost - ok

19:06:29.0329 0x03f8 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys

19:06:29.0455 0x03f8 ebdrv - ok

19:06:29.0512 0x03f8 [ 1B7AA375F711F66D5FF2B855F9EC987F, 151E3897A31F0E828D08EBBB9C10A60047B48534BB38349EF1C8D9245524CA58 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys

19:06:29.0520 0x03f8 eeCtrl - ok

19:06:29.0549 0x03f8 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] EFS C:\Windows\System32\lsass.exe

19:06:29.0551 0x03f8 EFS - ok

19:06:29.0641 0x03f8 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe

19:06:29.0669 0x03f8 ehRecvr - ok

19:06:29.0695 0x03f8 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe

19:06:29.0698 0x03f8 ehSched - ok

19:06:29.0778 0x03f8 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys

19:06:29.0806 0x03f8 elxstor - ok

19:06:29.0854 0x03f8 [ 7230C8B80DDE1F0524C353240B78CC0E, 15F73EBFB9152010E7736AFE518A47C209E17DDB347A40C4CDA0D9BBD26D1176 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys

19:06:29.0865 0x03f8 EraserUtilRebootDrv - ok

19:06:29.0902 0x03f8 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys

19:06:29.0903 0x03f8 ErrDev - ok

19:06:29.0968 0x03f8 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll

19:06:29.0981 0x03f8 EventSystem - ok

19:06:30.0010 0x03f8 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys

19:06:30.0014 0x03f8 exfat - ok

19:06:30.0047 0x03f8 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys

19:06:30.0052 0x03f8 fastfat - ok

19:06:30.0122 0x03f8 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe

19:06:30.0149 0x03f8 Fax - ok

19:06:30.0160 0x03f8 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys

19:06:30.0162 0x03f8 fdc - ok

19:06:30.0179 0x03f8 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll

19:06:30.0180 0x03f8 fdPHost - ok

19:06:30.0185 0x03f8 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll

19:06:30.0186 0x03f8 FDResPub - ok

19:06:30.0198 0x03f8 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys

19:06:30.0199 0x03f8 FileInfo - ok

19:06:30.0209 0x03f8 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys

19:06:30.0210 0x03f8 Filetrace - ok

19:06:30.0231 0x03f8 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys

19:06:30.0233 0x03f8 flpydisk - ok

19:06:30.0278 0x03f8 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys

19:06:30.0297 0x03f8 FltMgr - ok

19:06:30.0338 0x03f8 [ 6CD6BB45BD3E0EEF6CE496BF52854FF1, 939630A1EEAB79DD5AA3D9272B9EDC0550BC06D40C9B398815FCFF4AC12A7F2C ] FlyUsb C:\Windows\system32\DRIVERS\FlyUsb.sys

19:06:30.0340 0x03f8 FlyUsb - ok

19:06:30.0431 0x03f8 [ 5C4CB4086FB83115B153E47ADD961A0C, 0C3AB7D04BEB3A8FDE00B0C86E6FE064B1CEBB3E4DE1A29CD27830806FA300B3 ] FontCache C:\Windows\system32\FntCache.dll

19:06:30.0456 0x03f8 FontCache - ok

19:06:30.0521 0x03f8 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

19:06:30.0526 0x03f8 FontCache3.0.0.0 - ok

19:06:30.0551 0x03f8 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys

19:06:30.0556 0x03f8 FsDepends - ok

19:06:30.0583 0x03f8 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys

19:06:30.0585 0x03f8 Fs_Rec - ok

19:06:30.0627 0x03f8 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys

19:06:30.0642 0x03f8 fvevol - ok

19:06:30.0665 0x03f8 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys

19:06:30.0668 0x03f8 gagp30kx - ok

19:06:30.0749 0x03f8 [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe

19:06:30.0762 0x03f8 GamesAppService - ok

19:06:30.0842 0x03f8 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll

19:06:30.0898 0x03f8 gpsvc - ok

19:06:30.0998 0x03f8 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

19:06:31.0008 0x03f8 gupdate - ok

19:06:31.0049 0x03f8 [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

19:06:31.0053 0x03f8 gupdatem - ok

19:06:31.0084 0x03f8 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys

19:06:31.0087 0x03f8 hcw85cir - ok

19:06:31.0127 0x03f8 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys

19:06:31.0136 0x03f8 HDAudBus - ok

19:06:31.0162 0x03f8 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys

19:06:31.0166 0x03f8 HidBatt - ok

19:06:31.0198 0x03f8 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys

19:06:31.0207 0x03f8 HidBth - ok

19:06:31.0231 0x03f8 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys

19:06:31.0236 0x03f8 HidIr - ok

19:06:31.0259 0x03f8 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll

19:06:31.0263 0x03f8 hidserv - ok

19:06:31.0285 0x03f8 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys

19:06:31.0288 0x03f8 HidUsb - ok

19:06:31.0329 0x03f8 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll

19:06:31.0338 0x03f8 hkmsvc - ok

19:06:31.0395 0x03f8 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll

19:06:31.0412 0x03f8 HomeGroupListener - ok

19:06:31.0465 0x03f8 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

19:06:31.0481 0x03f8 HomeGroupProvider - ok

19:06:31.0590 0x03f8 [ BB1FC298BE53AAB1E110F6E786BD8AC5, C2DA2C3CE96D5F8B50013063B5EF7BED7478636896C709A7AF34855B2E69B9F1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

19:06:31.0597 0x03f8 HP Support Assistant Service - ok

19:06:31.0630 0x03f8 HPDrvMntSvc.exe - ok

19:06:31.0721 0x03f8 [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll

19:06:31.0738 0x03f8 hpqcxs08 - ok

19:06:31.0766 0x03f8 [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll

19:06:31.0775 0x03f8 hpqddsvc - ok

19:06:31.0841 0x03f8 [ 9B7EDD3FE7C211C36E921D34D18A3A0A, 03A450F85A042F9668D1560FA2B8B89783568C87CDB1A8685CDA2AC9FE3761C3 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

19:06:31.0864 0x03f8 hpqwmiex - ok

19:06:31.0901 0x03f8 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys

19:06:31.0904 0x03f8 HpSAMD - ok

19:06:31.0975 0x03f8 [ F37882F128EFACEFE353E0BAE2766909, 2F9D21613500F092DFC0DB879180B549EE615D9B07408A5CC1A7F84663B2F47A ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL

19:06:32.0009 0x03f8 HPSLPSVC - ok

19:06:32.0058 0x03f8 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys

19:06:32.0074 0x03f8 HTTP - ok

19:06:32.0099 0x03f8 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys

19:06:32.0100 0x03f8 hwpolicy - ok

19:06:32.0144 0x03f8 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys

19:06:32.0153 0x03f8 i8042prt - ok

19:06:32.0209 0x03f8 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys

19:06:32.0229 0x03f8 iaStorV - ok

19:06:32.0315 0x03f8 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

19:06:32.0357 0x03f8 idsvc - ok

19:06:32.0517 0x03f8 [ 777612849691B0D9EE064F93481FEFF1, BA970CE9F13EE25AA54E7E9B3BE7DE0C271D9067A317F8AE5F60F93B3D18E912 ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\IPSDefs\20140207.001\IDSvia64.sys

19:06:32.0533 0x03f8 IDSVia64 - ok

19:06:32.0568 0x03f8 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys

19:06:32.0570 0x03f8 iirsp - ok

19:06:32.0636 0x03f8 [ FCD84C381E0140AF901E58D48882D26B, 76955FFC230C801E8ED890E32076075F04CD6E5EC79E594FDE6D23797A36B406 ] IKEEXT C:\Windows\System32\ikeext.dll

19:06:32.0655 0x03f8 IKEEXT - ok

19:06:32.0724 0x03f8 [ EF75C94792187A143871FBB87611B0B7, 63BFC9F7CD3317D4AE1027E2AB7CC382F8E16FEB52BC5939B1894F48BA81EE9A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys

19:06:32.0759 0x03f8 IntcAzAudAddService - ok

19:06:32.0773 0x03f8 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys

19:06:32.0774 0x03f8 intelide - ok

19:06:32.0799 0x03f8 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys

19:06:32.0801 0x03f8 intelppm - ok

19:06:32.0891 0x03f8 [ 3DC635B66DD7412E1C9C3A77B8D78F25, D3894065DA2D08744863ECC5EE9027A0E39711A6A56AAB599F1CAF4BB996F42A ] IntuitUpdateService C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe

19:06:32.0892 0x03f8 IntuitUpdateService - ok

19:06:32.0938 0x03f8 [ D9DA7B3117BF5EFF921C0CDED4D58050, D51A2AFC0E310C5A0EE1540A9E6353F5F7C9E76711187FAD91EEB0B3254EE935 ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe

19:06:32.0940 0x03f8 IntuitUpdateServiceV4 - ok

19:06:32.0974 0x03f8 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll

19:06:32.0983 0x03f8 IPBusEnum - ok

19:06:33.0041 0x03f8 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys

19:06:33.0049 0x03f8 IpFilterDriver - ok

19:06:33.0118 0x03f8 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll

19:06:33.0149 0x03f8 iphlpsvc - ok

19:06:33.0179 0x03f8 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys

19:06:33.0183 0x03f8 IPMIDRV - ok

19:06:33.0212 0x03f8 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys

19:06:33.0217 0x03f8 IPNAT - ok

19:06:33.0241 0x03f8 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys

19:06:33.0242 0x03f8 IRENUM - ok

19:06:33.0273 0x03f8 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys

19:06:33.0274 0x03f8 isapnp - ok

19:06:33.0305 0x03f8 [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys

19:06:33.0315 0x03f8 iScsiPrt - ok

19:06:33.0332 0x03f8 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys

19:06:33.0334 0x03f8 kbdclass - ok

19:06:33.0353 0x03f8 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys

19:06:33.0357 0x03f8 kbdhid - ok

19:06:33.0373 0x03f8 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] KeyIso C:\Windows\system32\lsass.exe

19:06:33.0377 0x03f8 KeyIso - ok

19:06:33.0414 0x03f8 [ 97A7070AEA4C058B6418519E869A63B4, 15345C2D6CA159BD498002974A0BD21CAB611124D85E3320248B47652AEF23C8 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys

19:06:33.0418 0x03f8 KSecDD - ok

19:06:33.0432 0x03f8 [ 26C43A7C2862447EC59DEDA188D1DA07, 5363BF87E650FE2010ACA9417D6920FF4ED752256FF47732882E9B2BA1ED154B ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys

19:06:33.0438 0x03f8 KSecPkg - ok

19:06:33.0450 0x03f8 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys

19:06:33.0451 0x03f8 ksthunk - ok

19:06:33.0491 0x03f8 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll

19:06:33.0505 0x03f8 KtmRm - ok

19:06:33.0579 0x03f8 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll

19:06:33.0596 0x03f8 LanmanServer - ok

19:06:33.0620 0x03f8 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

19:06:33.0625 0x03f8 LanmanWorkstation - ok

19:06:33.0908 0x03f8 [ 32F1B95C60042F3D95FC8AB43559B3B1, 52652B1CE93C6B9DC12E56B5D4C44F45042901D89D21974BFE1D7116BFADEE74 ] LeapFrog Connect Device Service C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe

19:06:34.0135 0x03f8 LeapFrog Connect Device Service - ok

19:06:34.0199 0x03f8 [ 797289607A5EBF31353AA5EAD141F872, 4E3F8635F61DBFEEA3737EEB013F3B0A07B044A6F0D49901EB476B3904E98D2A ] Leapfrog-USBLAN C:\Windows\system32\DRIVERS\btblan.sys

19:06:34.0204 0x03f8 Leapfrog-USBLAN - ok

19:06:34.0248 0x03f8 [ 2238B91AC1A12CC6CC4C4FED41258B2A, 11DEBFAC8D6B23415928C635981E3378DE7C1F361F2B7A1390D86B0D782C22C6 ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

19:06:34.0254 0x03f8 LightScribeService - ok

19:06:34.0292 0x03f8 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys

19:06:34.0298 0x03f8 lltdio - ok

19:06:34.0355 0x03f8 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll

19:06:34.0381 0x03f8 lltdsvc - ok

19:06:34.0402 0x03f8 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll

19:06:34.0404 0x03f8 lmhosts - ok

19:06:34.0441 0x03f8 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys

19:06:34.0446 0x03f8 LSI_FC - ok

19:06:34.0467 0x03f8 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys

19:06:34.0472 0x03f8 LSI_SAS - ok

19:06:34.0497 0x03f8 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys

19:06:34.0500 0x03f8 LSI_SAS2 - ok

19:06:34.0522 0x03f8 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys

19:06:34.0527 0x03f8 LSI_SCSI - ok

19:06:34.0576 0x03f8 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys

19:06:34.0580 0x03f8 luafv - ok

19:06:34.0617 0x03f8 [ B3944D06EB4B64D57BD7E5FE89415F58, D6A4D17A887F54EEB6138909D10CD708582B10A51F1094275F53C9FFC2447F5F ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys

19:06:34.0620 0x03f8 LVPr2M64 - ok

19:06:34.0628 0x03f8 [ B3944D06EB4B64D57BD7E5FE89415F58, D6A4D17A887F54EEB6138909D10CD708582B10A51F1094275F53C9FFC2447F5F ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys

19:06:34.0631 0x03f8 LVPr2Mon - ok

19:06:34.0714 0x03f8 [ 9CD0DC863BE5D40A762F7D84F11A8471, 5824EF34618CA613C63684DBFD7D7DB743A92D632888095B9062A52B512034D9 ] LVPrcS64 C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe

19:06:34.0727 0x03f8 LVPrcS64 - ok

19:06:34.0795 0x03f8 [ 803085F59EC92B3827CC4D90FCBFD335, 8A7F3C365A574553007ECC859BEBB887D8AAA740B27CBF8F41CCDBB871B41E79 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys

19:06:34.0822 0x03f8 LVRS64 - ok

19:06:34.0983 0x03f8 [ A8D7C97016E6B76EF472A4C7AB357EE3, D75F106A514985AB74373232DC000B30B76471426DFDC311F83E9F564BAA3684 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys

19:06:35.0096 0x03f8 LVUVC64 - ok

19:06:35.0139 0x03f8 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll

19:06:35.0143 0x03f8 Mcx2Svc - ok

19:06:35.0157 0x03f8 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys

19:06:35.0158 0x03f8 megasas - ok

19:06:35.0173 0x03f8 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys

19:06:35.0179 0x03f8 MegaSR - ok

19:06:35.0203 0x03f8 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll

19:06:35.0205 0x03f8 MMCSS - ok

19:06:35.0223 0x03f8 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys

19:06:35.0224 0x03f8 Modem - ok

19:06:35.0251 0x03f8 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys

19:06:35.0254 0x03f8 monitor - ok

19:06:35.0293 0x03f8 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\drivers\mouclass.sys

19:06:35.0297 0x03f8 mouclass - ok

19:06:35.0333 0x03f8 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys

19:06:35.0336 0x03f8 mouhid - ok

19:06:35.0381 0x03f8 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys

19:06:35.0388 0x03f8 mountmgr - ok

19:06:35.0434 0x03f8 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys

19:06:35.0445 0x03f8 mpio - ok

19:06:35.0480 0x03f8 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys

19:06:35.0483 0x03f8 mpsdrv - ok

19:06:35.0540 0x03f8 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll

19:06:35.0563 0x03f8 MpsSvc - ok

19:06:35.0608 0x03f8 [ DC722758B8261E1ABAFD31A3C0A66380, 88BBE073E2CCD1DAB4656DDC53D5161E8A91D035ADAC1465D0CEBA86F1BB6D9A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys

19:06:35.0617 0x03f8 MRxDAV - ok

19:06:35.0656 0x03f8 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys

19:06:35.0661 0x03f8 mrxsmb - ok

19:06:35.0680 0x03f8 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys

19:06:35.0690 0x03f8 mrxsmb10 - ok

19:06:35.0701 0x03f8 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys

19:06:35.0704 0x03f8 mrxsmb20 - ok

19:06:35.0716 0x03f8 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys

19:06:35.0717 0x03f8 msahci - ok

19:06:35.0750 0x03f8 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys

19:06:35.0754 0x03f8 msdsm - ok

19:06:35.0776 0x03f8 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe

19:06:35.0781 0x03f8 MSDTC - ok

19:06:35.0793 0x03f8 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys

19:06:35.0794 0x03f8 Msfs - ok

19:06:35.0808 0x03f8 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys

19:06:35.0809 0x03f8 mshidkmdf - ok

19:06:35.0837 0x03f8 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

19:06:35.0838 0x03f8 msisadrv - ok

19:06:35.0887 0x03f8 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll

19:06:35.0903 0x03f8 MSiSCSI - ok

19:06:35.0911 0x03f8 msiserver - ok

19:06:35.0970 0x03f8 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

19:06:35.0971 0x03f8 MSKSSRV - ok

19:06:36.0002 0x03f8 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

19:06:36.0005 0x03f8 MSPCLOCK - ok

19:06:36.0013 0x03f8 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

19:06:36.0016 0x03f8 MSPQM - ok

19:06:36.0075 0x03f8 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

19:06:36.0097 0x03f8 MsRPC - ok

19:06:36.0129 0x03f8 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys

19:06:36.0131 0x03f8 mssmbios - ok

19:06:36.0148 0x03f8 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

19:06:36.0150 0x03f8 MSTEE - ok

19:06:36.0169 0x03f8 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys

19:06:36.0171 0x03f8 MTConfig - ok

19:06:36.0203 0x03f8 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys

19:06:36.0207 0x03f8 Mup - ok

19:06:36.0243 0x03f8 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll

19:06:36.0272 0x03f8 napagent - ok

19:06:36.0305 0x03f8 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

19:06:36.0316 0x03f8 NativeWifiP - ok

19:06:36.0393 0x03f8 [ 702E07EC32F96ACDB873E9A5465D4401, 2C6B1C8BA0BF4791AEA064062DCA3678AE4443DF19DB37D6CB55BA6297D8A238 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\VirusDefs\20140209.004\ENG64.SYS

19:06:36.0403 0x03f8 NAVENG - ok

19:06:36.0524 0x03f8 [ 302EA314A1AF0D7CEF0A3D0195F79561, 046DBC2D9D028F2D2E8BAE745CA2ADEF42741689BFF743A13B81EA4228DDCDC6 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.1.3\Definitions\VirusDefs\20140209.004\EX64.SYS

19:06:36.0564 0x03f8 NAVEX15 - ok

19:06:36.0670 0x03f8 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys

19:06:36.0723 0x03f8 NDIS - ok

19:06:36.0740 0x03f8 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys

19:06:36.0742 0x03f8 NdisCap - ok

19:06:36.0769 0x03f8 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

19:06:36.0770 0x03f8 NdisTapi - ok

19:06:36.0807 0x03f8 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

19:06:36.0812 0x03f8 Ndisuio - ok

19:06:36.0848 0x03f8 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

19:06:36.0854 0x03f8 NdisWan - ok

19:06:36.0891 0x03f8 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

19:06:36.0893 0x03f8 NDProxy - ok

19:06:36.0916 0x03f8 [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll

19:06:36.0918 0x03f8 Net Driver HPZ12 - ok

19:06:36.0929 0x03f8 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

19:06:36.0931 0x03f8 NetBIOS - ok

19:06:36.0980 0x03f8 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys

19:06:36.0999 0x03f8 NetBT - ok

19:06:37.0027 0x03f8 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] Netlogon C:\Windows\system32\lsass.exe

19:06:37.0029 0x03f8 Netlogon - ok

19:06:37.0060 0x03f8 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll

19:06:37.0072 0x03f8 Netman - ok

19:06:37.0101 0x03f8 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

19:06:37.0104 0x03f8 NetMsmqActivator - ok

19:06:37.0109 0x03f8 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

19:06:37.0112 0x03f8 NetPipeActivator - ok

19:06:37.0133 0x03f8 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll

19:06:37.0142 0x03f8 netprofm - ok

19:06:37.0148 0x03f8 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

19:06:37.0151 0x03f8 NetTcpActivator - ok

19:06:37.0155 0x03f8 [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

19:06:37.0158 0x03f8 NetTcpPortSharing - ok

19:06:37.0186 0x03f8 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys

19:06:37.0188 0x03f8 nfrd960 - ok

19:06:37.0271 0x03f8 [ F2840DBFE9322F35557219AE82CC4597, 51AADE48DB7F61DFB3AF7CADF46250211B210DF35EA12E7767F1CACBA3B8F4D3 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccSvcHst.exe

19:06:37.0281 0x03f8 NIS - ok

19:06:37.0302 0x03f8 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll

19:06:37.0313 0x03f8 NlaSvc - ok

19:06:37.0323 0x03f8 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys

19:06:37.0325 0x03f8 Npfs - ok

19:06:37.0353 0x03f8 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll

19:06:37.0355 0x03f8 nsi - ok

19:06:37.0362 0x03f8 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

19:06:37.0363 0x03f8 nsiproxy - ok

19:06:37.0466 0x03f8 [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

19:06:37.0515 0x03f8 Ntfs - ok

19:06:37.0531 0x03f8 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys

19:06:37.0531 0x03f8 Null - ok

19:06:37.0553 0x03f8 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys

19:06:37.0565 0x03f8 nvraid - ok

19:06:37.0607 0x03f8 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys

19:06:37.0620 0x03f8 nvstor - ok

19:06:37.0674 0x03f8 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

19:06:37.0685 0x03f8 nv_agp - ok

19:06:37.0763 0x03f8 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

19:06:37.0782 0x03f8 odserv - ok

19:06:37.0820 0x03f8 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys

19:06:37.0824 0x03f8 ohci1394 - ok

19:06:37.0872 0x03f8 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

19:06:37.0878 0x03f8 ose - ok

19:06:38.0067 0x03f8 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

19:06:38.0233 0x03f8 osppsvc - ok

19:06:38.0283 0x03f8 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll

19:06:38.0305 0x03f8 p2pimsvc - ok

19:06:38.0330 0x03f8 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll

19:06:38.0343 0x03f8 p2psvc - ok

19:06:38.0376 0x03f8 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys

19:06:38.0379 0x03f8 Parport - ok

19:06:38.0409 0x03f8 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys

19:06:38.0411 0x03f8 partmgr - ok

19:06:38.0424 0x03f8 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll

19:06:38.0430 0x03f8 PcaSvc - ok

19:06:38.0468 0x03f8 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys

19:06:38.0473 0x03f8 pci - ok

19:06:38.0498 0x03f8 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys

19:06:38.0500 0x03f8 pciide - ok

19:06:38.0544 0x03f8 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys

19:06:38.0561 0x03f8 pcmcia - ok

19:06:38.0596 0x03f8 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys

19:06:38.0598 0x03f8 pcw - ok

19:06:38.0641 0x03f8 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys

19:06:38.0673 0x03f8 PEAUTH - ok

19:06:38.0761 0x03f8 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe

19:06:38.0766 0x03f8 PerfHost - ok

19:06:38.0862 0x03f8 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll

19:06:38.0915 0x03f8 pla - ok

19:06:38.0977 0x03f8 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll

19:06:39.0004 0x03f8 PlugPlay - ok

19:06:39.0054 0x03f8 [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll

19:06:39.0056 0x03f8 Pml Driver HPZ12 - ok

19:06:39.0073 0x03f8 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll

19:06:39.0075 0x03f8 PNRPAutoReg - ok

19:06:39.0098 0x03f8 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll

19:06:39.0105 0x03f8 PNRPsvc - ok

19:06:39.0126 0x03f8 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll

19:06:39.0137 0x03f8 PolicyAgent - ok

19:06:39.0161 0x03f8 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll

19:06:39.0165 0x03f8 Power - ok

19:06:39.0203 0x03f8 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys

19:06:39.0211 0x03f8 PptpMiniport - ok

19:06:39.0248 0x03f8 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys

19:06:39.0255 0x03f8 Processor - ok

19:06:39.0309 0x03f8 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll

19:06:39.0324 0x03f8 ProfSvc - ok

19:06:39.0337 0x03f8 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] ProtectedStorage C:\Windows\system32\lsass.exe

19:06:39.0340 0x03f8 ProtectedStorage - ok

19:06:39.0375 0x03f8 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys

19:06:39.0379 0x03f8 Psched - ok

19:06:39.0474 0x03f8 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys

19:06:39.0558 0x03f8 ql2300 - ok

19:06:39.0573 0x03f8 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys

19:06:39.0577 0x03f8 ql40xx - ok

19:06:39.0608 0x03f8 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll

19:06:39.0614 0x03f8 QWAVE - ok

19:06:39.0641 0x03f8 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys

19:06:39.0643 0x03f8 QWAVEdrv - ok

19:06:39.0671 0x03f8 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

19:06:39.0674 0x03f8 RasAcd - ok

19:06:39.0700 0x03f8 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys

19:06:39.0705 0x03f8 RasAgileVpn - ok

19:06:39.0728 0x03f8 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll

19:06:39.0738 0x03f8 RasAuto - ok

19:06:39.0776 0x03f8 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys

19:06:39.0781 0x03f8 Rasl2tp - ok

19:06:39.0826 0x03f8 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll

19:06:39.0839 0x03f8 RasMan - ok

19:06:39.0858 0x03f8 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys

19:06:39.0861 0x03f8 RasPppoe - ok

19:06:39.0873 0x03f8 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys

19:06:39.0876 0x03f8 RasSstp - ok

19:06:39.0912 0x03f8 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys

19:06:39.0922 0x03f8 rdbss - ok

19:06:39.0933 0x03f8 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys

19:06:39.0936 0x03f8 rdpbus - ok

19:06:39.0940 0x03f8 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys

19:06:39.0941 0x03f8 RDPCDD - ok

19:06:39.0967 0x03f8 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys

19:06:39.0968 0x03f8 RDPENCDD - ok

19:06:39.0984 0x03f8 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys

19:06:39.0985 0x03f8 RDPREFMP - ok

19:06:40.0021 0x03f8 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys

19:06:40.0028 0x03f8 RDPWD - ok

19:06:40.0063 0x03f8 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys

19:06:40.0071 0x03f8 rdyboost - ok

19:06:40.0088 0x03f8 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll

19:06:40.0092 0x03f8 RemoteAccess - ok

19:06:40.0113 0x03f8 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll

19:06:40.0120 0x03f8 RemoteRegistry - ok

19:06:40.0138 0x03f8 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll

19:06:40.0142 0x03f8 RpcEptMapper - ok

19:06:40.0157 0x03f8 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe

19:06:40.0159 0x03f8 RpcLocator - ok

19:06:40.0219 0x03f8 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll

19:06:40.0253 0x03f8 RpcSs - ok

19:06:40.0274 0x03f8 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys

19:06:40.0276 0x03f8 rspndr - ok

19:06:40.0338 0x03f8 [ 3B01789EE4EAEE97F5EB46B711387D5E, 154D6D409E02AAEA8CC34FA70F71630D67A31F033F65EE854448112C45F164B4 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys

19:06:40.0348 0x03f8 RTL8167 - ok

19:06:40.0360 0x03f8 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] SamSs C:\Windows\system32\lsass.exe

19:06:40.0362 0x03f8 SamSs - ok

19:06:40.0392 0x03f8 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys

19:06:40.0396 0x03f8 sbp2port - ok

19:06:40.0422 0x03f8 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll

19:06:40.0430 0x03f8 SCardSvr - ok

19:06:40.0465 0x03f8 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys

19:06:40.0468 0x03f8 scfilter - ok

19:06:40.0562 0x03f8 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll

19:06:40.0606 0x03f8 Schedule - ok

19:06:40.0639 0x03f8 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll

19:06:40.0641 0x03f8 SCPolicySvc - ok

19:06:40.0660 0x03f8 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll

19:06:40.0674 0x03f8 SDRSVC - ok

19:06:40.0803 0x03f8 [ CC781378E7EDA615D2CDCA3B17829FA4, 137BF83A2A3D69335AD031B8D73473526F782CB8917A34B3CD92F923E7660F2A ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE

19:06:40.0820 0x03f8 SeaPort - ok

19:06:40.0877 0x03f8 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys

19:06:40.0878 0x03f8 secdrv - ok

19:06:40.0903 0x03f8 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll

19:06:40.0905 0x03f8 seclogon - ok

19:06:40.0918 0x03f8 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll

19:06:40.0920 0x03f8 SENS - ok

19:06:40.0934 0x03f8 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll

19:06:40.0936 0x03f8 SensrSvc - ok

19:06:40.0964 0x03f8 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys

19:06:40.0966 0x03f8 Serenum - ok

19:06:40.0989 0x03f8 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys

19:06:40.0991 0x03f8 Serial - ok

19:06:41.0023 0x03f8 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys

19:06:41.0024 0x03f8 sermouse - ok

19:06:41.0063 0x03f8 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll

19:06:41.0075 0x03f8 SessionEnv - ok

19:06:41.0113 0x03f8 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys

19:06:41.0118 0x03f8 sffdisk - ok

19:06:41.0139 0x03f8 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys

19:06:41.0142 0x03f8 sffp_mmc - ok

19:06:41.0176 0x03f8 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys

19:06:41.0177 0x03f8 sffp_sd - ok

19:06:41.0190 0x03f8 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys

19:06:41.0192 0x03f8 sfloppy - ok

19:06:41.0242 0x03f8 [ C6CC9297BD53E5229653303E556AA539, 921E21EDED244FEE15B56564B97C97785F45AB862C1012BFA0B96B121DC90076 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys

19:06:41.0256 0x03f8 Sftfs - ok

19:06:41.0352 0x03f8 [ 13693B6354DD6E72DC5131DA7D764B90, 447EFDA7CFB1F62EA316219D996406C8DC374097DB903F362D6E945227D8BB2D ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe

19:06:41.0380 0x03f8 sftlist - ok

19:06:41.0400 0x03f8 [ 390AA7BC52CEE43F6790CDEA1E776703, 0D008289E4B14EF56D5233B7C8C789A36503FBAA8896660776557D6F08808FA7 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys

19:06:41.0408 0x03f8 Sftplay - ok

19:06:41.0420 0x03f8 [ 617E29A0B0A2807466560D4C4E338D3E, 5E95D38DB9A6776EB4A15A952FA7949831D6F660EED8C3E79BD09D102BAC5D67 ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys

19:06:41.0422 0x03f8 Sftredir - ok

19:06:41.0435 0x03f8 [ 8F571F016FA1976F445147E9E6C8AE9B, 527AB960F2E08F598D1B953BDA4EA749831DD3C765DA278044B8AB22365F02B5 ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys

19:06:41.0436 0x03f8 Sftvol - ok

19:06:41.0448 0x03f8 [ C3CDDD18F43D44AB713CF8C4916F7696, 38093295825AFDD08D7E32CC4EF2A6C447F6D6E3C6F7EA5554C25E7C3F16FC92 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe

19:06:41.0452 0x03f8 sftvsa - ok

19:06:41.0505 0x03f8 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll

19:06:41.0527 0x03f8 SharedAccess - ok

19:06:41.0572 0x03f8 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

19:06:41.0584 0x03f8 ShellHWDetection - ok

19:06:41.0609 0x03f8 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys

19:06:41.0612 0x03f8 SiSRaid2 - ok

19:06:41.0636 0x03f8 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys

19:06:41.0640 0x03f8 SiSRaid4 - ok

19:06:41.0673 0x03f8 [ F07AF60B152221472FBDB2FECEC4896D, A18FDCE8462A48429E249C44F0E49F844F2E3A4B5215349DE104F34D935EF983 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe

19:06:41.0677 0x03f8 SkypeUpdate - ok

19:06:41.0733 0x03f8 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys

19:06:41.0741 0x03f8 Smb - ok

19:06:41.0791 0x03f8 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe

19:06:41.0796 0x03f8 SNMPTRAP - ok

19:06:41.0813 0x03f8 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys

19:06:41.0820 0x03f8 spldr - ok

19:06:41.0872 0x03f8 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe

19:06:41.0892 0x03f8 Spooler - ok

19:06:42.0098 0x03f8 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe

19:06:42.0195 0x03f8 sppsvc - ok

19:06:42.0215 0x03f8 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll

19:06:42.0218 0x03f8 sppuinotify - ok

19:06:42.0329 0x03f8 [ 891793E00432FA055CF040605C260E49, 3DB1251B5473CDE19CAAA6C4FAC00414120209534F45A5CE24DCCC9645C989C2 ] SRTSP C:\Windows\System32\Drivers\NISx64\1309010.00E\SRTSP64.SYS

19:06:42.0345 0x03f8 SRTSP - ok

19:06:42.0367 0x03f8 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E, E911DA0DCEE83F92DB97D933C8E35548C2D8F21850720E197DC31F75F681F32D ] SRTSPX C:\Windows\system32\drivers\NISx64\1309010.00E\SRTSPX64.SYS

19:06:42.0369 0x03f8 SRTSPX - ok

19:06:42.0428 0x03f8 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys

19:06:42.0473 0x03f8 srv - ok

19:06:42.0493 0x03f8 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys

19:06:42.0504 0x03f8 srv2 - ok

19:06:42.0524 0x03f8 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys

19:06:42.0528 0x03f8 srvnet - ok

19:06:42.0538 0x03f8 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll

19:06:42.0543 0x03f8 SSDPSRV - ok

19:06:42.0553 0x03f8 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll

19:06:42.0556 0x03f8 SstpSvc - ok

19:06:42.0580 0x03f8 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys

19:06:42.0582 0x03f8 stexstor - ok

19:06:42.0657 0x03f8 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll

19:06:42.0706 0x03f8 stisvc - ok

19:06:42.0737 0x03f8 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys

19:06:42.0737 0x03f8 swenum - ok

19:06:42.0785 0x03f8 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll

19:06:42.0831 0x03f8 swprv - ok

19:06:42.0872 0x03f8 [ 8B2430762099598DA40686F754632EFD, BEF443EB8CDB8792E8B9CF861E8D2205DEA336BC24A92417D67DD5A28DD35BE9 ] SymDS C:\Windows\system32\drivers\NISx64\1309010.00E\SYMDS64.SYS

19:06:42.0888 0x03f8 SymDS - ok

19:06:42.0936 0x03f8 [ 5CB7F2FD7E30A0F52F93574BFC3A8041, C44FC8931C6BC5F9B0EDC64796ED87A68CDCF9D88815A7CE8D73CC195DAF00DE ] SymEFA C:\Windows\system32\drivers\NISx64\1309010.00E\SYMEFA64.SYS

19:06:42.0969 0x03f8 SymEFA - ok

19:06:42.0999 0x03f8 [ 894579207E39C465737E850A252CE4F2, 9441C99E4853183E53E201FE7D3271ECFAEFD124DF77802B3DCA3728F09293DA ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS

19:06:43.0002 0x03f8 SymEvent - ok

19:06:43.0057 0x03f8 [ 5013A76CAAA1D7CF1C55214B490B4E35, B7AC28C29C4152977A6313FB47984643EC395BCDD9B417853D4E31D7AD98598B ] SymIRON C:\Windows\system32\drivers\NISx64\1309010.00E\Ironx64.SYS

19:06:43.0071 0x03f8 SymIRON - ok

19:06:43.0095 0x03f8 [ 3911BD0E68C010E5438A87706ABBE9AB, C79D2444830E4AE8A36D8686635463BF34B22913AA417A48AB0AC0A48F7D227B ] SymNetS C:\Windows\System32\Drivers\NISx64\1309010.00E\SYMNETS.SYS

19:06:43.0105 0x03f8 SymNetS - ok

19:06:43.0181 0x03f8 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll

19:06:43.0238 0x03f8 SysMain - ok

19:06:43.0263 0x03f8 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll

19:06:43.0266 0x03f8 TabletInputService - ok

19:06:43.0304 0x03f8 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll

19:06:43.0312 0x03f8 TapiSrv - ok

19:06:43.0321 0x03f8 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll

19:06:43.0324 0x03f8 TBS - ok

19:06:43.0450 0x03f8 [ B62A953F2BF3922C8764A29C34A22899, 4A117FF9D1BD58C6A1787DDA7402BAE30E4BA7A70FE3A144F41DD647AA7A3901 ] Tcpip C:\Windows\system32\drivers\tcpip.sys

19:06:43.0503 0x03f8 Tcpip - ok

19:06:43.0555 0x03f8 [ B62A953F2BF3922C8764A29C34A22899, 4A117FF9D1BD58C6A1787DDA7402BAE30E4BA7A70FE3A144F41DD647AA7A3901 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys

19:06:43.0588 0x03f8 TCPIP6 - ok

19:06:43.0623 0x03f8 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys

19:06:43.0628 0x03f8 tcpipreg - ok

19:06:43.0646 0x03f8 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys

19:06:43.0647 0x03f8 TDPIPE - ok

19:06:43.0679 0x03f8 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys

19:06:43.0682 0x03f8 TDTCP - ok

19:06:43.0726 0x03f8 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys

19:06:43.0735 0x03f8 tdx - ok

19:06:43.0787 0x03f8 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys

19:06:43.0792 0x03f8 TermDD - ok

19:06:43.0855 0x03f8 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\Windows\System32\termsrv.dll

19:06:43.0891 0x03f8 TermService - ok

19:06:43.0901 0x03f8 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll

19:06:43.0905 0x03f8 Themes - ok

19:06:43.0925 0x03f8 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll

19:06:43.0927 0x03f8 THREADORDER - ok

19:06:43.0940 0x03f8 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll

19:06:43.0943 0x03f8 TrkWks - ok

19:06:44.0016 0x03f8 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

19:06:44.0029 0x03f8 TrustedInstaller - ok

19:06:44.0058 0x03f8 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30, CA302C2ED6A6BF4670BAAA4F5C14C0238CF0C80316856AA0DB053F4D593033AC ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys

19:06:44.0059 0x03f8 tssecsrv - ok

19:06:44.0098 0x03f8 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys

19:06:44.0100 0x03f8 TsUsbFlt - ok

19:06:44.0136 0x03f8 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys

19:06:44.0139 0x03f8 tunnel - ok

19:06:44.0160 0x03f8 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys

19:06:44.0162 0x03f8 uagp35 - ok

19:06:44.0219 0x03f8 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys

19:06:44.0247 0x03f8 udfs - ok

19:06:44.0261 0x03f8 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe

19:06:44.0264 0x03f8 UI0Detect - ok

19:06:44.0287 0x03f8 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys

19:06:44.0290 0x03f8 uliagpkx - ok

19:06:44.0334 0x03f8 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys

19:06:44.0338 0x03f8 umbus - ok

19:06:44.0365 0x03f8 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys

19:06:44.0369 0x03f8 UmPass - ok

19:06:44.0411 0x03f8 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll

19:06:44.0444 0x03f8 upnphost - ok

19:06:44.0467 0x03f8 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A, DE1CDDEEF2285CC8387E88ACB13C000576DC8819DF6DC648C988068B5C83BB15 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys

19:06:44.0470 0x03f8 usbaudio - ok

19:06:44.0484 0x03f8 [ 6F1A3157A1C89435352CEB543CDB359C, 325B46220779C5FE3B6F19FF794474837FAB9675D9C98ACB68CCE47B1CFE5F12 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys

19:06:44.0488 0x03f8 usbccgp - ok

19:06:44.0512 0x03f8 [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir C:\Windows\system32\drivers\usbcir.sys

19:06:44.0516 0x03f8 usbcir - ok

19:06:44.0527 0x03f8 [ C025055FE7B87701EB042095DF1A2D7B, D7B34B6C2C5BD3C8141895AC21BB637EA5E3C4F7A85EEF4C4C36E6BB2045A3D9 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys

19:06:44.0528 0x03f8 usbehci - ok

19:06:44.0563 0x03f8 [ 6648C6D7323A2CE0C4776C36CEFBCB14, 31DB869351BF3673284721B0D37FC1FC5D858829C7B19B563E3A9C3082D14631 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys

19:06:44.0564 0x03f8 usbfilter - ok

19:06:44.0600 0x03f8 [ 287C6C9410B111B68B52CA298F7B8C24, 98900C08FE662A00DF8B37837B2BEBF9ACB7989C387AF36B2109B05A4F462D4E ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys

19:06:44.0623 0x03f8 usbhub - ok

19:06:44.0670 0x03f8 [ 9840FC418B4CBD632D3D0A667A725C31, 776D86A032DCA2842EF7AADB35473193CA80547223EFAA7F110F296C377077B0 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys

19:06:44.0673 0x03f8 usbohci - ok

19:06:44.0717 0x03f8 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys

19:06:44.0721 0x03f8 usbprint - ok

19:06:44.0765 0x03f8 [ AAA2513C8AED8B54B189FD0C6B1634C0, 02FEE0B756AA559C29477A19861AC16D5A3152DC3C897C7D466423438B6A5E42 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys

19:06:44.0767 0x03f8 usbscan - ok

19:06:44.0787 0x03f8 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS

19:06:44.0790 0x03f8 USBSTOR - ok

19:06:44.0813 0x03f8 [ 62069A34518BCF9C1FD9E74B3F6DB7CD, C58E21424718729324B285BEE1C96551540FCC3FD650B2D10895EBA48D981E25 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys

19:06:44.0819 0x03f8 usbuhci - ok

19:06:44.0854 0x03f8 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll

19:06:44.0857 0x03f8 UxSms - ok

19:06:44.0870 0x03f8 [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] VaultSvc C:\Windows\system32\lsass.exe

19:06:44.0872 0x03f8 VaultSvc - ok

19:06:44.0898 0x03f8 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys

19:06:44.0901 0x03f8 vdrvroot - ok

19:06:44.0967 0x03f8 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe

19:06:45.0010 0x03f8 vds - ok

19:06:45.0026 0x03f8 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys

19:06:45.0028 0x03f8 vga - ok

19:06:45.0043 0x03f8 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys

19:06:45.0044 0x03f8 VgaSave - ok

19:06:45.0076 0x03f8 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys

19:06:45.0082 0x03f8 vhdmp - ok

19:06:45.0110 0x03f8 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys

19:06:45.0112 0x03f8 viaide - ok

19:06:45.0141 0x03f8 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys

19:06:45.0148 0x03f8 volmgr - ok

19:06:45.0210 0x03f8 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys

19:06:45.0238 0x03f8 volmgrx - ok

19:06:45.0280 0x03f8 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys

19:06:45.0291 0x03f8 volsnap - ok

19:06:45.0353 0x03f8 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys

19:06:45.0366 0x03f8 vsmraid - ok

19:06:45.0470 0x03f8 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe

19:06:45.0514 0x03f8 VSS - ok

19:06:45.0529 0x03f8 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys

19:06:45.0530 0x03f8 vwifibus - ok

19:06:45.0562 0x03f8 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys

19:06:45.0565 0x03f8 vwififlt - ok

19:06:45.0614 0x03f8 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll

19:06:45.0671 0x03f8 W32Time - ok

19:06:45.0704 0x03f8 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys

19:06:45.0709 0x03f8 WacomPen - ok

19:06:45.0744 0x03f8 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys

19:06:45.0751 0x03f8 WANARP - ok

19:06:45.0763 0x03f8 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys

19:06:45.0769 0x03f8 Wanarpv6 - ok

19:06:45.0879 0x03f8 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe

19:06:45.0928 0x03f8 WatAdminSvc - ok

19:06:46.0006 0x03f8 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe

19:06:46.0051 0x03f8 wbengine - ok

19:06:46.0067 0x03f8 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll

19:06:46.0073 0x03f8 WbioSrvc - ok

19:06:46.0130 0x03f8 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll

19:06:46.0151 0x03f8 wcncsvc - ok

19:06:46.0164 0x03f8 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

19:06:46.0167 0x03f8 WcsPlugInService - ok

19:06:46.0190 0x03f8 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys

19:06:46.0192 0x03f8 Wd - ok

19:06:46.0259 0x03f8 [ 442783E2CB0DA19873B7A63833FF4CB4, 09254970265476214F3187CC22A4F9C7C2769D419600E83FBE302C3A103E527F ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys

19:06:46.0283 0x03f8 Wdf01000 - ok

19:06:46.0300 0x03f8 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll

19:06:46.0303 0x03f8 WdiServiceHost - ok

19:06:46.0307 0x03f8 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll

19:06:46.0310 0x03f8 WdiSystemHost - ok

19:06:46.0341 0x03f8 [ 3DB6D04E1C64272F8B14EB8BC4616280, 9138642B1C19F895D4ECFD930160C80FBF15813CE63BBF4C899842C300FD3026 ] WebClient C:\Windows\System32\webclnt.dll

19:06:46.0346 0x03f8 WebClient - ok

19:06:46.0358 0x03f8 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll

19:06:46.0365 0x03f8 Wecsvc - ok

19:06:46.0381 0x03f8 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll

19:06:46.0384 0x03f8 wercplsupport - ok

19:06:46.0406 0x03f8 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll

19:06:46.0409 0x03f8 WerSvc - ok

19:06:46.0434 0x03f8 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys

19:06:46.0434 0x03f8 WfpLwf - ok

19:06:46.0449 0x03f8 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys

19:06:46.0451 0x03f8 WIMMount - ok

19:06:46.0470 0x03f8 WinDefend - ok

19:06:46.0475 0x03f8 WinHttpAutoProxySvc - ok

19:06:46.0519 0x03f8 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll

19:06:46.0524 0x03f8 Winmgmt - ok

19:06:46.0603 0x03f8 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll

19:06:46.0660 0x03f8 WinRM - ok

19:06:46.0707 0x03f8 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys

19:06:46.0709 0x03f8 WinUsb - ok

19:06:46.0742 0x03f8 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll

19:06:46.0775 0x03f8 Wlansvc - ok

19:06:46.0796 0x03f8 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys

19:06:46.0797 0x03f8 WmiAcpi - ok

19:06:46.0818 0x03f8 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe

19:06:46.0823 0x03f8 wmiApSrv - ok

19:06:46.0835 0x03f8 WMPNetworkSvc - ok

19:06:46.0842 0x03f8 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll

19:06:46.0844 0x03f8 WPCSvc - ok

19:06:46.0864 0x03f8 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll

19:06:46.0867 0x03f8 WPDBusEnum - ok

19:06:46.0890 0x03f8 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys

19:06:46.0891 0x03f8 ws2ifsl - ok

19:06:46.0904 0x03f8 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll

19:06:46.0908 0x03f8 wscsvc - ok

19:06:46.0910 0x03f8 WSearch - ok

19:06:47.0004 0x03f8 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv C:\Windows\system32\wuaueng.dll

19:06:47.0109 0x03f8 wuauserv - ok

19:06:47.0167 0x03f8 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys

19:06:47.0174 0x03f8 WudfPf - ok

19:06:47.0226 0x03f8 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys

19:06:47.0248 0x03f8 WUDFRd - ok

19:06:47.0276 0x03f8 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll

19:06:47.0279 0x03f8 wudfsvc - ok

19:06:47.0313 0x03f8 [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc C:\Windows\System32\wwansvc.dll

19:06:47.0319 0x03f8 WwanSvc - ok

19:06:47.0397 0x03f8 [ 74983ADDCA2D9618512C088D856D6615, C4592EFC1206BD813221814FD529AD38ED26E4AE086613EB95D3D5E20448A1F0 ] {55662437-DA8C-40c0-AADA-2C816A897A49} c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl

19:06:47.0407 0x03f8 {55662437-DA8C-40c0-AADA-2C816A897A49} - ok

19:06:47.0427 0x03f8 ================ Scan global ===============================

19:06:47.0465 0x03f8 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll

19:06:47.0526 0x03f8 [ 0C27239FEA4DB8A2AAC9E502186B7264, 102AA14D7A3CCCE913D9887AF4CCE87EA649A21BEF5196DFFCAD7E8F0B6A7293 ] C:\Windows\system32\winsrv.dll

19:06:47.0553 0x03f8 [ 0C27239FEA4DB8A2AAC9E502186B7264, 102AA14D7A3CCCE913D9887AF4CCE87EA649A21BEF5196DFFCAD7E8F0B6A7293 ] C:\Windows\system32\winsrv.dll

19:06:47.0584 0x03f8 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll

19:06:47.0624 0x03f8 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe

19:06:47.0631 0x03f8 [ Global ] - ok

19:06:47.0631 0x03f8 ================ Scan MBR ==================================

19:06:47.0644 0x03f8 [ 1BB1462097F8FA16FDFCA55C20A30EF4 ] \Device\Harddisk0\DR0

19:06:47.0995 0x03f8 \Device\Harddisk0\DR0 - ok

19:06:47.0996 0x03f8 ================ Scan VBR ==================================

19:06:47.0999 0x03f8 [ 684425478DD3E7D901F57C6528F3B338 ] \Device\Harddisk0\DR0\Partition1

19:06:48.0000 0x03f8 \Device\Harddisk0\DR0\Partition1 - ok

19:06:48.0056 0x03f8 [ B60B5AE7133595E970DFD2F429DC5ABD ] \Device\Harddisk0\DR0\Partition2

19:06:48.0058 0x03f8 \Device\Harddisk0\DR0\Partition2 - ok

19:06:48.0103 0x03f8 [ 292A3E0C28AE96B043DCD263B3FB1887 ] \Device\Harddisk0\DR0\Partition3

19:06:48.0107 0x03f8 \Device\Harddisk0\DR0\Partition3 - ok

19:06:48.0108 0x03f8 Waiting for KSN requests completion. In queue: 69

19:06:49.0108 0x03f8 Waiting for KSN requests completion. In queue: 69

19:06:50.0108 0x03f8 Waiting for KSN requests completion. In queue: 69

19:06:51.0108 0x03f8 Waiting for KSN requests completion. In queue: 69

19:06:52.0135 0x03f8 AV detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\WSCStub.exe ( 19.9.0.0 ), 0x51000 ( enabled : updated )

19:06:52.0139 0x03f8 FW detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\WSCStub.exe ( 19.9.0.0 ), 0x51010 ( enabled )

19:06:55.0106 0x03f8 ============================================================

19:06:55.0106 0x03f8 Scan finished

19:06:55.0106 0x03f8 ============================================================

19:06:55.0124 0x01ac Detected object count: 0

19:06:55.0124 0x01ac Actual detected object count: 0

 

 

 

I'm posting this now, so it's not lost, and will follow the rest of the directions to post the rest...



#6 jimnlisastein

jimnlisastein
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 09 February 2014 - 08:22 PM

On AdwCleaner, it didn't quite function as you stated, but I'm assuming it's had updates since I was last on (considering the length of time it took me to run it).  I didn't get a prompt to restart, nor a log when I did restart, but I looked for the text files to paste here:

 

AdwCleaner[S0]:

 

# AdwCleaner v3.018 - Report created 09/02/2014 at 19:13:01
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Owner - OWNER-PC
# Running from : C:\Users\Owner\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar
Folder Deleted : C:\Program Files (x86)\Ask.com
Folder Deleted : C:\Program Files (x86)\Inbox Toolbar
Folder Deleted : C:\Program Files (x86)\Shop To Win
Folder Deleted : C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
Folder Deleted : C:\Users\Owner\AppData\Local\Temp\AskSearch
Folder Deleted : C:\Users\Owner\AppData\Local\Temp\boost_interprocess
Folder Deleted : C:\Users\Owner\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Owner\AppData\LocalLow\Inbox Toolbar
Folder Deleted : C:\Users\Owner\Documents\ShopToWin
File Deleted : C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar

***** [ Shortcuts ] *****

 

more to come...



#7 jimnlisastein

jimnlisastein
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 09 February 2014 - 08:25 PM

Since AdwCleaner didn't seem to run right the first time, and there was no file by the name you stated, I ran it again and it operated just as you stated.  Here is AdwCleaner[S1].txt:

 

# AdwCleaner v3.018 - Report created 09/02/2014 at 19:22:10
# Updated 28/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Owner - OWNER-PC
# Running from : C:\Users\Owner\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Shop To Win]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\FreeCauseURLSearchHook.FCToolbarURLSearchHook
Key Deleted : HKLM\SOFTWARE\Classes\FreeCauseURLSearchHook.FCToolbarURLSearchHook.1
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\inbox
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\App24x7Help_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\App24x7Help_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\HPSF_Tasks_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\HPSF_Tasks_RASMANCS
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100573.FCTB000100573Pos
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100573.FCTB000100573Pos.1
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100573.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100573.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100573.JSOptionsImpl
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100573.JSOptionsImpl.1
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Daily Fitness Center Search Scope Monitor]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [DailyFitnessCenter_53 Browser Plugin Loader]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{042DA63B-0933-403D-9395-B49307691690}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{37540F19-DD4C-478B-B2DF-C19281BCAF27}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{042DA63B-0933-403D-9395-B49307691690}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D7E97865-918F-41E4-9CD0-25AB1C574CE8}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D7E97865-918F-41E4-9CD0-25AB1C574CE8}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\Inbox Toolbar
Key Deleted : HKCU\Software\ShopToWin
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Freecause
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\Software\Inbox Toolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Key Deleted : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16483

-\\ Google Chrome v27.0.1453.94

[ File : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [11022 octets] - [09/02/2014 19:11:29]
AdwCleaner[R1].txt - [9924 octets] - [09/02/2014 19:16:40]
AdwCleaner[S0].txt - [1074 octets] - [09/02/2014 19:13:01]
AdwCleaner[S1].txt - [9689 octets] - [09/02/2014 19:22:10]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [9749 octets] ##########



#8 jimnlisastein

jimnlisastein
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 10 February 2014 - 08:22 AM

The online scanner ran past bedtime, and when I got up this morning it was no longer on the screen...I will rerun and post results today.



#9 jimnlisastein

jimnlisastein
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 10 February 2014 - 08:24 AM

One other comment...there were 19 threats when I went to bed, so I know it was finding some issues...



#10 jimnlisastein

jimnlisastein
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 10 February 2014 - 12:39 PM

Ok...on the second scan it said there were no threats found, so I don't know if it removed those original threats overnight.  I noticed that Shop to Win is not running any longer, but the program is still in the list under the start button.  I will delete the folder, and will await further instructions.

 



#11 jimnlisastein

jimnlisastein
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 10 February 2014 - 12:41 PM

Actually, I will wait to delete anything until I hear from you...thanks for your help.



#12 jimnlisastein

jimnlisastein
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 10 February 2014 - 12:57 PM

Ok...looks like ESET quarantined the threats it found overnight.  I can't tell how to export the file list, and I'm not sure how to post images on here...


 



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:30 PM

Posted 10 February 2014 - 07:51 PM

The ESET Online Scanner saves a log file after running, which can be examined or sent in to ESET for further analysis. The path to the log file is "C:\Program Files\ESET\EsetOnlineScanner\log.txt" (on 64-bit systems this directory will be "C:\Program Files (x86)\ESET\Esetonlinescanner\log.txt"). You can view this file by navigating to the directory and double-clicking it in Windows Explorer, or by copying and pasting the path specification above (including the quotation marks) into the Start > Run dialog box from the Start Menu on the desktop.


Edited by boopme, 10 February 2014 - 07:51 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 jimnlisastein

jimnlisastein
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 10 February 2014 - 09:58 PM

I'm wondering if it updated the log file when I reran the scanner.  This is all that is in that file:

 

ESETSmartInstaller@High as CAB hook log:
OnlineScanner64.ocx - registred OK
OnlineScanner.ocx - registred OK

 

I can send you screen prints of the quarantined files, if that will help...sorry!
 



#15 jimnlisastein

jimnlisastein
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 10 February 2014 - 10:14 PM

Actually, it didn't overwrite it, because the time/date stamp on the log.txt file is when I started the scan last night...






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users