Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan:Win32/Sirefef.AB and Trojan:Win32/Sirefef.AN files


  • Please log in to reply
4 replies to this topic

#1 Moe Problems

Moe Problems

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:15 PM

Posted 20 October 2013 - 07:04 PM

Hi,

 

I tried the search but couldn’t find any threads about Trojan:Win32/Sirefef.AB and Trojan:Win32/Sirefef.AN. I apologise in advance if this is not the place to post this.

 

I’m running an old Hp Pavilion using Windows XP. Yesterday my computer was attacked by a virus that disabled Microsoft Security Essentials, breaking the desktop shortcut and making it unusable. I found that using a trial version of hitmanPro that the virus disables and redirects Microsoft Security Essentials’s files. However because the trial period was over I was unable to repair it.  I performed a system restore in safe mode. The restore “failed” but it partially “fixed” Microsoft Security Essentials. Immediately after, I ran a quick scan using Malwarebytes in safe mode with networking. It found a vendor called Rootkit.0Access that it was unable to remove, even after a few repeated quick scans. I downloaded and attempted to use the the Malwarebytes Anti-Rootkit tool but was unable to get it to work. I then searched the internet about the file and found that TDSS Killer could help. After running TDSS Killer and restarting in normal mode it managed to fix the issue and Microsoft Security Essentials notified that the computer was infected and gave the option to clean. After cleaning it gave the option to restart the computer. After restarting it found and two files called Trojan:Win32/Sirefef.AB and Trojan:Win32/Sirefef.AN under the "All detected items" under the History tab. Clicking the delete history button gave the message:

 

Security Essentials couldn’t remove some of the detected threats

Class not registered

Click Help for more information about this problem.

Error code: 0x80040154

 

After that I restarted the computer in safe mode with networking and ran a scan with hitmanPro and a quick scan with Malwarebytes. Nothing was found but as a precaution I ran a full scan with Malwarebytes. After the scan it found 7 items: 1 Rootkit.Zaccess, 1 Trojan.0Access, 2 Trojan.FakeApach and 3 Rootkit.0Access files. With a restart prompt Malwarebytes was able to remove them. Subsequent full scans with Malwarebytes show no results.  Another TDSS Killer scan shows only 3 suspicious files that default to skip. However hitmanPro, Malwarebytes and TDSS Killer cannot detect the Trojan:Win32/Sirefef.AB and Trojan:Win32/Sirefef.AN files that MSE has found.

 

Currently in normal mode with Microsoft Security Essentials I can scan, cancel a scan and update MSE with the latest files. However I cannot interrupt a scan, delete items under the History tab and cannot change anything under the Settings tab, including disabling real-time protection. In properties the target location states Microsoft Security Client (with the location being C:\Program Files\Microsoft Security Client\msseces.exe). I can access Windows Firewall without issues but upon start-up in normal mode the computer is slow with items slow to pop up on the notification part of the task bar. At this point I’m unsure as what to do.

 

When recommending actions please state what mode it should be done in. I’m not the most tech-savy person. Also due to the age of the computer scans may take some time. I apologise for any inconvenience this may cause. I’m using another computer to post this as I don’t want to chance something else happening and I don’t know if it would be safe to post the logs from the infected computer.

 

Thank you.



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:15 PM

Posted 20 October 2013 - 07:35 PM

Hello moe, please run these next. Try all from Normal mode unless you cannot run them, then use safe mode with networking.

Please download Rkill by Grinler and save it to your desktop.
  • Link 1
  • Link 2
    • Double-click on the Rkill desktop icon to run the tool.
    • If using Vista, right-click on it and Run As Administrator.
    • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
    • If not, delete the file, then download and use the one provided in Link 2.
    • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
    • If the tool does not run from any of the links provided, please let me know.
.
.
.

Run TDSS again
Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.

Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

Edited by boopme, 20 October 2013 - 07:40 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Moe Problems

Moe Problems
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:15 PM

Posted 21 October 2013 - 11:13 AM

Hi,

 

TDSS Killer

 

21:11:05.0390 0x0828  TDSS rootkit removing tool 3.0.0.14 Oct 15 2013 15:35:38
21:11:10.0359 0x0828  ============================================================
21:11:10.0359 0x0828  Current date / time: 2013/10/20 21:11:10.0359
21:11:10.0359 0x0828  SystemInfo:
21:11:10.0359 0x0828 
21:11:10.0359 0x0828  OS Version: 5.1.2600 ServicePack: 3.0
21:11:10.0359 0x0828  Product type: Workstation
21:11:10.0359 0x0828  ComputerName: STEVE
21:11:10.0359 0x0828  UserName: HP_Administrator
21:11:10.0375 0x0828  Windows directory: C:\WINDOWS
21:11:10.0375 0x0828  System windows directory: C:\WINDOWS
21:11:10.0375 0x0828  Processor architecture: Intel x86
21:11:10.0375 0x0828  Number of processors: 2
21:11:10.0375 0x0828  Page size: 0x1000
21:11:10.0375 0x0828  Boot type: Normal boot
21:11:10.0375 0x0828  ============================================================
21:11:14.0046 0x0828  System UUID: {903A75D6-F336-C822-22D0-AD1BD13060D5}
21:11:16.0203 0x0828  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
21:11:16.0218 0x0828  Drive \Device\Harddisk1\DR1 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
21:11:16.0437 0x0828  ============================================================
21:11:16.0437 0x0828  \Device\Harddisk0\DR0:
21:11:16.0453 0x0828  MBR partitions:
21:11:16.0453 0x0828  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1C068915
21:11:16.0453 0x0828  \Device\Harddisk0\DR0\Partition2: MBR, Type 0xC, StartLBA 0x1C06C815, BlocksNum 0x1157D6C
21:11:16.0453 0x0828  \Device\Harddisk1\DR1:
21:11:16.0468 0x0828  MBR partitions:
21:11:16.0468 0x0828  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C4542
21:11:16.0468 0x0828  ============================================================
21:11:16.0500 0x0828  C: <-> \Device\Harddisk0\DR0\Partition1
21:11:16.0515 0x0828  E: <-> \Device\Harddisk0\DR0\Partition2
21:11:16.0546 0x0828  M: <-> \Device\Harddisk1\DR1\Partition1
21:11:16.0546 0x0828  ============================================================
21:11:16.0546 0x0828  Initialize success
21:11:16.0546 0x0828  ============================================================
21:11:22.0718 0x0548  ============================================================
21:11:22.0718 0x0548  Scan started
21:11:22.0718 0x0548  Mode: Manual;
21:11:22.0718 0x0548  ============================================================
21:11:22.0718 0x0548  KSN ping started
21:11:47.0437 0x0548  KSN ping finished: true
21:11:48.0718 0x0548  ================ Scan system memory ========================
21:11:48.0718 0x0548  System memory - ok
21:11:48.0718 0x0548  ================ Scan services =============================
21:11:48.0718 0x0548  7b4ced1b-8421-4f0d-8551-e6f9c3f658d5 - ok
21:11:49.0015 0x0548  Abiosdsk - ok
21:11:49.0031 0x0548  abp480n5 - ok
21:11:49.0109 0x0548  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:11:49.0171 0x0548  ACPI - ok
21:11:49.0265 0x0548  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
21:11:49.0281 0x0548  ACPIEC - ok
21:11:49.0437 0x0548  [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:11:49.0515 0x0548  AdobeFlashPlayerUpdateSvc - ok
21:11:49.0515 0x0548  adpu160m - ok
21:11:49.0812 0x0548  [ 9243229DFCCC99B5441750EBA49F1B14, 1292D9A049F07E74F3E60068D839E9166BBC090A63972FBE5432D4818AA9DF47 ] AdvancedSystemCareService6 C:\Program Files\IObit\Advanced SystemCare 6\ASCService.exe
21:11:49.0953 0x0548  AdvancedSystemCareService6 - ok
21:11:50.0031 0x0548  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
21:11:50.0078 0x0548  aec - ok
21:11:50.0156 0x0548  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
21:11:50.0171 0x0548  AFD - ok
21:11:50.0171 0x0548  Aha154x - ok
21:11:50.0187 0x0548  aic78u2 - ok
21:11:50.0187 0x0548  aic78xx - ok
21:11:50.0234 0x0548  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
21:11:50.0296 0x0548  Alerter - ok
21:11:50.0328 0x0548  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             C:\WINDOWS\System32\alg.exe
21:11:50.0328 0x0548  ALG - ok
21:11:50.0328 0x0548  AliIde - ok
21:11:50.0359 0x0548  amsint - ok
21:11:50.0484 0x0548  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:11:50.0500 0x0548  Apple Mobile Device - ok
21:11:50.0781 0x0548  [ 72116413CF0092A6DFB4BF7775EF7E0F, A3E4B84B49C199F2784827FA3A98DBC90BB5461179F6A5BBD4E4312DEE063B11 ] Application Updater C:\Program Files\Application Updater\ApplicationUpdater.exe
21:11:51.0015 0x0548  Application Updater - ok
21:11:51.0109 0x0548  [ D8849F77C0B66226335A59D26CB4EDC6, 4990031453204C57E36E850252A39B05D6ECDAB9E71A8136FB4900F17E59C9CA ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
21:11:51.0187 0x0548  AppMgmt - ok
21:11:51.0234 0x0548  [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:11:51.0250 0x0548  Arp1394 - ok
21:11:51.0265 0x0548  asc - ok
21:11:51.0265 0x0548  asc3350p - ok
21:11:51.0265 0x0548  asc3550 - ok
21:11:51.0421 0x0548  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:11:51.0468 0x0548  aspnet_state - ok
21:11:51.0500 0x0548  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:11:51.0500 0x0548  AsyncMac - ok
21:11:51.0562 0x0548  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
21:11:51.0562 0x0548  atapi - ok
21:11:51.0578 0x0548  Atdisk - ok
21:11:51.0609 0x0548  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:11:51.0625 0x0548  Atmarpc - ok
21:11:51.0687 0x0548  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
21:11:51.0703 0x0548  AudioSrv - ok
21:11:51.0734 0x0548  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
21:11:51.0734 0x0548  audstub - ok
21:11:51.0750 0x0548  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
21:11:51.0750 0x0548  Beep - ok
21:11:51.0875 0x0548  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            C:\WINDOWS\system32\qmgr.dll
21:11:52.0031 0x0548  BITS - ok
21:11:52.0218 0x0548  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:11:52.0328 0x0548  Bonjour Service - ok
21:11:52.0390 0x0548  [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser         C:\WINDOWS\System32\browser.dll
21:11:52.0406 0x0548  Browser - ok
21:11:52.0500 0x0548  catchme - ok
21:11:52.0531 0x0548  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
21:11:52.0546 0x0548  cbidf2k - ok
21:11:52.0593 0x0548  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
21:11:52.0609 0x0548  CCDECODE - ok
21:11:52.0609 0x0548  cd20xrnt - ok
21:11:52.0640 0x0548  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
21:11:52.0640 0x0548  Cdaudio - ok
21:11:52.0671 0x0548  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
21:11:52.0687 0x0548  Cdfs - ok
21:11:52.0718 0x0548  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:11:52.0734 0x0548  Cdrom - ok
21:11:52.0734 0x0548  Changer - ok
21:11:52.0781 0x0548  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
21:11:52.0781 0x0548  CiSvc - ok
21:11:52.0796 0x0548  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
21:11:52.0812 0x0548  ClipSrv - ok
21:11:52.0859 0x0548  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:11:52.0953 0x0548  clr_optimization_v2.0.50727_32 - ok
21:11:52.0953 0x0548  CmdIde - ok
21:11:52.0968 0x0548  COMSysApp - ok
21:11:52.0968 0x0548  Cpqarray - ok
21:11:53.0031 0x0548  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
21:11:53.0031 0x0548  CryptSvc - ok
21:11:53.0046 0x0548  dac2w2k - ok
21:11:53.0046 0x0548  dac960nt - ok
21:11:53.0187 0x0548  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
21:11:53.0296 0x0548  DcomLaunch - ok
21:11:53.0390 0x0548  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
21:11:53.0406 0x0548  Dhcp - ok
21:11:53.0453 0x0548  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
21:11:53.0468 0x0548  Disk - ok
21:11:53.0468 0x0548  dmadmin - ok
21:11:53.0718 0x0548  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
21:11:53.0968 0x0548  dmboot - ok
21:11:54.0015 0x0548  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
21:11:54.0046 0x0548  dmio - ok
21:11:54.0078 0x0548  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
21:11:54.0078 0x0548  dmload - ok
21:11:54.0125 0x0548  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        C:\WINDOWS\System32\dmserver.dll
21:11:54.0140 0x0548  dmserver - ok
21:11:54.0171 0x0548  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
21:11:54.0187 0x0548  DMusic - ok
21:11:54.0234 0x0548  [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
21:11:54.0234 0x0548  Dnscache - ok
21:11:54.0312 0x0548  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
21:11:54.0390 0x0548  Dot3svc - ok
21:11:54.0406 0x0548  dpti2o - ok
21:11:54.0437 0x0548  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
21:11:54.0437 0x0548  drmkaud - ok
21:11:54.0531 0x0548  [ B0ABABBBE2E61FC916A21182AC2CEFF1, AC2DA4F64FD11AE75D2DBA0B4E2DD0BF72540089589484A5B1C62FF0A0AC18C4 ] e1express       C:\WINDOWS\system32\DRIVERS\e1e5132.sys
21:11:54.0593 0x0548  e1express - ok
21:11:54.0625 0x0548  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         C:\WINDOWS\System32\eapsvc.dll
21:11:54.0640 0x0548  EapHost - ok
21:11:54.0796 0x0548  [ 5D1347AA5AE6E2F77D7F4F8372D95AC9, F3CA10753B7D76C87A71A0FEDB5EACE77E2E10E8DD44BEE7C66BCE17BD3EFD71 ] ehRecvr         C:\WINDOWS\eHome\ehRecvr.exe
21:11:54.0859 0x0548  ehRecvr - ok
21:11:54.0921 0x0548  [ A53243709439AC2A4C216B817F8D7411, AF4624EEA9B165DE873B7D104D1EA3BE9A14BBC5B4CABE26544F90B78689EEF9 ] ehSched         C:\WINDOWS\eHome\ehSched.exe
21:11:54.0953 0x0548  ehSched - ok
21:11:55.0000 0x0548  [ 0923AEC043F5D355B4EF0C2B29A362DE, 94A4988E2E9526F5202F8043E47E1D9390D38D074E1F1228CC58816919D1BF0A ] ELacpi          C:\WINDOWS\system32\DRIVERS\ELacpi.sys
21:11:55.0000 0x0548  ELacpi - ok
21:11:55.0015 0x0548  [ CBD71E7772F92BFB85CCC302B2DEEFBA, 65E01452F2F41AF72948690E184655BB20AB40E4AC7B34F26FDE575B9F1B10E5 ] ELhid           C:\WINDOWS\System32\Drivers\Elhid.sys
21:11:55.0062 0x0548  ELhid - ok
21:11:55.0093 0x0548  [ AC75B576C45D144E146FD1F0576A1F53, F7CAE3B39A7E40A69C92CB7A0D08E60CB852785828F24A9BFD647E3A47B58A4C ] ELkbd           C:\WINDOWS\System32\Drivers\Elkbd.sys
21:11:55.0109 0x0548  ELkbd - ok
21:11:55.0125 0x0548  [ 483CCE5E40137D4E437F4DEF55C80007, 027F3B6750AE7BE80372F8610ABE1E8DDC7CC0B14F83CB274133D77A3BD503A4 ] ELmon           C:\WINDOWS\System32\Drivers\Elmon.sys
21:11:55.0187 0x0548  ELmon - ok
21:11:55.0218 0x0548  [ 8E88CAFEAC0812BF2D15BEEEDFCCE8BD, 23C80168A960946DFA09F87A4D5B5C31549F7A07F881C7C90E0B0356B021CEC2 ] ELmou           C:\WINDOWS\System32\Drivers\Elmou.sys
21:11:55.0265 0x0548  ELmou - ok
21:11:55.0406 0x0548  [ 47FCF6628E1A221C41F3F0130FBF258E, C413234CF36358F0744E89F317E7B0B79B692339A50AF6B9E19613D0CB06C2C9 ] ELService       C:\Program Files\Intel\IntelDH\Intel® Quick Resume Technology Drivers\Elservice.exe
21:11:55.0562 0x0548  ELService - ok
21:11:55.0609 0x0548  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
21:11:55.0609 0x0548  ERSvc - ok
21:11:55.0671 0x0548  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog        C:\WINDOWS\system32\services.exe
21:11:55.0734 0x0548  Eventlog - ok
21:11:55.0843 0x0548  [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem     C:\WINDOWS\system32\es.dll
21:11:55.0906 0x0548  EventSystem - ok
21:11:55.0953 0x0548  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
21:11:56.0000 0x0548  Fastfat - ok
21:11:56.0078 0x0548  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:11:56.0093 0x0548  FastUserSwitchingCompatibility - ok
21:11:56.0218 0x0548  [ E97D6A8684466DF94FF3BC24FB787A07, 89E5A6889E3C5AB9AD3E80FFC16DD608278F3ADC282048B40B60196336A5CBEB ] Fax             C:\WINDOWS\system32\fxssvc.exe
21:11:56.0296 0x0548  Fax - ok
21:11:56.0328 0x0548  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
21:11:56.0343 0x0548  Fdc - ok
21:11:56.0515 0x0548  [ 9840396B26E424046AD335C98B3F16C3, F4F7F78F509D60F2B65E9256421FA06C442A21C4E372A50E97F8935FDA9E72A5 ] FileMonitor     C:\Program Files\IObit\IObit Malware Fighter\Drivers\wxp_x86\FileMonitor.sys
21:11:56.0609 0x0548  FileMonitor - ok
21:11:56.0671 0x0548  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
21:11:56.0671 0x0548  Fips - ok
21:11:56.0687 0x0548  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
21:11:56.0687 0x0548  Flpydisk - ok
21:11:56.0781 0x0548  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
21:11:56.0812 0x0548  FltMgr - ok
21:11:56.0937 0x0548  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:11:56.0953 0x0548  FontCache3.0.0.0 - ok
21:11:57.0000 0x0548  [ C6EE3A87FE609D3E1DB9DBD072A248DE, 9C2189FA09A9E1DC39F9AB8F0C9C0B44BE0E11FC3165BCD0813DFA85EA62907C ] fssfltr         C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
21:11:57.0000 0x0548  fssfltr - ok
21:11:57.0312 0x0548  [ 45B52394F9624237F33A8A3D73C0B221, AC3E26F9D0E8A91164C54E87C9C8BFCF824A14C80D4CEF3255C6127A482F25FE ] fsssvc          C:\Program Files\Windows Live\Family Safety\fsssvc.exe
21:11:57.0531 0x0548  fsssvc - ok
21:11:57.0562 0x0548  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:11:57.0562 0x0548  Fs_Rec - ok
21:11:57.0609 0x0548  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:11:57.0640 0x0548  Ftdisk - ok
21:11:57.0640 0x0548  ftsata2 - ok
21:11:57.0703 0x0548  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
21:11:57.0703 0x0548  GEARAspiWDM - ok
21:11:57.0734 0x0548  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:11:57.0750 0x0548  Gpc - ok
21:11:57.0875 0x0548  [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdate1c9d1e96e9ae580 C:\Program Files\Google\Update\GoogleUpdate.exe
21:11:57.0906 0x0548  gupdate1c9d1e96e9ae580 - ok
21:11:57.0953 0x0548  [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
21:11:57.0953 0x0548  gupdatem - ok
21:11:58.0046 0x0548  [ CC839E8D766CC31A7710C9F38CF3E375, 327D57F18B4A2D1CB06C5682D3364097ECD3CF40C2719AA1F41D0B49A26003E4 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
21:11:58.0109 0x0548  gusvc - ok
21:11:58.0203 0x0548  [ 55E4DA7C8CBBA1F2D71720FCA7A5C086, DF062D426845C8E9C0A13A1140BF1F97A0E560B48ADE8D885D11F8D5DD2FF94B ] hcwPP2          C:\WINDOWS\system32\DRIVERS\hcwPP2.sys
21:11:58.0250 0x0548  hcwPP2 - ok
21:11:58.0328 0x0548  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:11:58.0343 0x0548  HDAudBus - ok
21:11:58.0437 0x0548  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:11:58.0453 0x0548  helpsvc - ok
21:11:58.0500 0x0548  [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] HidServ         C:\WINDOWS\System32\hidserv.dll
21:11:58.0500 0x0548  HidServ - ok
21:11:58.0515 0x0548  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:11:58.0531 0x0548  HidUsb - ok
21:11:58.0593 0x0548  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
21:11:58.0609 0x0548  hkmsvc - ok
21:11:58.0609 0x0548  hpn - ok
21:11:58.0781 0x0548  [ F50F7984FDD151EDD8A70A8DBD9E2A44, 45E7ECA40298B233D124993D6C9D4FBBF05E9A843F4DE089317342B3D8A83696 ] hpqcxs08        C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
21:11:58.0843 0x0548  hpqcxs08 - ok
21:11:58.0890 0x0548  [ DF446BA625CC441617843E87798CE048, B45C11EEA7EA792DE82E9BB283B9DCF30F891AAB8366075856BD84D10BCBCCD3 ] hpqddsvc        C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
21:11:58.0921 0x0548  hpqddsvc - ok
21:11:58.0984 0x0548  [ D03D10F7DED688FECF50F8FBF1EA9B8A, C19A733571BA831E24EE45EDB730FFFDBA22638F138A32A794BEAB8D8B71D8DD ] HPZid412        C:\WINDOWS\system32\DRIVERS\HPZid412.sys
21:11:58.0984 0x0548  HPZid412 - ok
21:11:59.0015 0x0548  [ 89F41658929393487B6B7D13C8528CE3, 5D06A11225A83F3F33417148BE53654080C88BFA876FEB486A7E43410AC99F23 ] HPZipr12        C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
21:11:59.0015 0x0548  HPZipr12 - ok
21:11:59.0031 0x0548  [ ABCB05CCDBF03000354B9553820E39F8, 6361B5A57CDE23AC5E987ACECF3BEE7AD51134C6E5BF4F833E512C9BC4B86877 ] HPZius12        C:\WINDOWS\system32\DRIVERS\HPZius12.sys
21:11:59.0046 0x0548  HPZius12 - ok
21:11:59.0156 0x0548  [ 1F5C64B0C6B2E2F48735A77AE714CCB8, 30364F2B4973A03D766C3704BDBFFC234B43A8DC85136BE67D642B528C0754A4 ] HSXHWBS2        C:\WINDOWS\system32\DRIVERS\HSXHWBS2.sys
21:11:59.0156 0x0548  HSXHWBS2 - ok
21:11:59.0437 0x0548  [ A7F8C9228898A1E871D2AE7082F50AC3, 852C1D5B8E4C0AA90DAABCF4F196A07E4ABE8F87B817CEC6D20B60C2CECA81A1 ] HSX_DP          C:\WINDOWS\system32\DRIVERS\HSX_DP.sys
21:11:59.0453 0x0548  HSX_DP - ok
21:11:59.0546 0x0548  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
21:11:59.0609 0x0548  HTTP - ok
21:11:59.0656 0x0548  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
21:11:59.0656 0x0548  HTTPFilter - ok
21:11:59.0656 0x0548  i2omgmt - ok
21:11:59.0671 0x0548  i2omp - ok
21:11:59.0703 0x0548  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:11:59.0718 0x0548  i8042prt - ok
21:11:59.0796 0x0548  [ B122BE74E283A2BC7FEBC180BFD2EFD5, 3FB9AE63AB2ECAC62C03FF19BE60E39C8C2985868FBA393039795A660A05DED3 ] IAANTMON        C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
21:11:59.0859 0x0548  IAANTMON - ok
21:11:59.0984 0x0548  [ 997E8F5939F2D12CD9F2E6B395724C16, C22F10BADE29DA6F7EB79D9F5D81D9FBEC17D4D4F8B25E0AF4E5CEAE28E8ABF6 ] iaStor          C:\WINDOWS\system32\DRIVERS\iastor.sys
21:12:00.0078 0x0548  iaStor - ok
21:12:00.0187 0x0548  [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
21:12:00.0218 0x0548  IDriverT - ok
21:12:00.0531 0x0548  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:12:00.0812 0x0548  idsvc - ok
21:12:00.0859 0x0548  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
21:12:00.0875 0x0548  Imapi - ok
21:12:00.0968 0x0548  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    C:\WINDOWS\system32\imapi.exe
21:12:01.0000 0x0548  ImapiService - ok
21:12:01.0125 0x0548  [ 24EA4E2F76E216CE70353736E3556585, 6906CAE337E4E149FD2056F787B39CA7CF0EAAEF14846B2A9C8741DAFD040468 ] IMFservice      C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe
21:12:01.0218 0x0548  IMFservice - ok
21:12:01.0218 0x0548  ini910u - ok
21:12:02.0484 0x0548  [ AB2FE0FAA519880BD16E4A0792D633D2, 3E2087BF039FE76BAB4973C856243252DDF87AED313507E9D57A96615A9A8A7D ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
21:12:02.0578 0x0548  IntcAzAudAddService - ok
21:12:02.0687 0x0548  [ B5466A9250342A7AA0CD1FBA13420678, 87E735C4E8924A883AB692D387A83BCBFAE6E165688336AE7AB488F7CA8D339E ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
21:12:02.0687 0x0548  IntelIde - ok
21:12:02.0734 0x0548  [ 8C953733D8F36EB2133F5BB58808B66B, 555868F246D73652E998B0B1296476E42FCEDED30D646CC000F31ECE4EBC25E6 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:12:02.0734 0x0548  intelppm - ok
21:12:02.0765 0x0548  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
21:12:02.0781 0x0548  Ip6Fw - ok
21:12:02.0828 0x0548  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:12:02.0843 0x0548  IpFilterDriver - ok
21:12:02.0875 0x0548  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:12:02.0875 0x0548  IpInIp - ok
21:12:02.0937 0x0548  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:12:03.0000 0x0548  IpNat - ok
21:12:03.0187 0x0548  [ 061614179585BE398A73B9B3AF111310, BE715790531CBF3E038C6C2083A0802FA492D1DCAB3ACFE035DF72E3D6A4B83B ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:12:03.0343 0x0548  iPod Service - ok
21:12:03.0375 0x0548  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:12:03.0406 0x0548  IPSec - ok
21:12:03.0437 0x0548  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
21:12:03.0453 0x0548  IRENUM - ok
21:12:03.0500 0x0548  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:12:03.0515 0x0548  isapnp - ok
21:12:03.0750 0x0548  [ 80A79264302910C7C24BA7E44267EFEF, 6080C233478350C8E07515D20D2D60C3758C4A65432B04E8C8B816248621A3EF ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
21:12:03.0828 0x0548  JavaQuickStarterService - ok
21:12:03.0859 0x0548  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:12:03.0875 0x0548  Kbdclass - ok
21:12:03.0890 0x0548  [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:12:03.0890 0x0548  kbdhid - ok
21:12:03.0953 0x0548  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
21:12:04.0000 0x0548  kmixer - ok
21:12:04.0078 0x0548  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
21:12:04.0078 0x0548  KSecDD - ok
21:12:04.0140 0x0548  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
21:12:04.0156 0x0548  lanmanserver - ok
21:12:04.0218 0x0548  [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:12:04.0250 0x0548  lanmanworkstation - ok
21:12:04.0250 0x0548  lbrtfdc - ok
21:12:04.0359 0x0548  [ 5D4B38A8D8525356798F5E560C3A3090, 74E4D2ADA6242508BDF9C12EB050BC0F13C8A70D9CC635759E6331C462A246E4 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
21:12:04.0906 0x0548  LightScribeService - ok
21:12:04.0984 0x0548  [ 06DC2FDC6282F0D68910417B1150C848, 078994CD312D3C8D7D94B173551D5AF613E947763E1515DCC568D55DEF2D35D3 ] LinksysUpdater  C:\Program Files\Linksys\Linksys Updater\bin\LinksysUpdater.exe
21:12:05.0046 0x0548  LinksysUpdater - ok
21:12:05.0093 0x0548  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
21:12:05.0093 0x0548  LmHosts - ok
21:12:05.0140 0x0548  [ 4470E3C1E0C3378E4CAB137893C12C3A, CA8E66356F0E671D5454E561E7EAD74DE25DCF53BE452369F96ECACFA8709489 ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
21:12:05.0140 0x0548  MBAMProtector - ok
21:12:05.0328 0x0548  [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler   C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
21:12:05.0453 0x0548  MBAMScheduler - ok
21:12:05.0656 0x0548  [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService     C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:12:05.0859 0x0548  MBAMService - ok
21:12:05.0937 0x0548  [ DF0A511F38F16016BF658FCA0090CB87, 6D2F6360A4E1D369607F2F394B4A8C6EE8EEE9FA46A67394769E9C0044529B6C ] McrdSvc         C:\WINDOWS\ehome\mcrdsvc.exe
21:12:05.0968 0x0548  McrdSvc - ok
21:12:05.0984 0x0548  [ E246A32C445056996074A397DA56E815, 5CD5B22840151CAC1FC990C3E468E5382DCC3F89EFD8CE422B9B10B5BEB6F990 ] mdmxsdk         C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
21:12:05.0984 0x0548  mdmxsdk - ok
21:12:06.0046 0x0548  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
21:12:06.0046 0x0548  Messenger - ok
21:12:06.0093 0x0548  [ B7521F69C0A9B29D356157229376FB21, A77C89BDC181038DD0F9A8AC0F7164B10EF9C54B0C57D8BAB8BC27932EBF890B ] MHN             C:\WINDOWS\System32\mhn.dll
21:12:06.0125 0x0548  MHN - ok
21:12:06.0156 0x0548  [ 7F2F1D2815A6449D346FCCCBC569FBD6, 1C5A321CE95CE4D9AA2CB5A00E9B7E711521A6BBB25D36F7F49A397C361585C6 ] MHNDRV          C:\WINDOWS\system32\DRIVERS\mhndrv.sys
21:12:06.0156 0x0548  MHNDRV - ok
21:12:06.0171 0x0548  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
21:12:06.0171 0x0548  mnmdd - ok
21:12:06.0218 0x0548  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
21:12:06.0234 0x0548  mnmsrvc - ok
21:12:06.0281 0x0548  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
21:12:06.0296 0x0548  Modem - ok
21:12:06.0328 0x0548  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:12:06.0343 0x0548  Mouclass - ok
21:12:06.0390 0x0548  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:12:06.0390 0x0548  mouhid - ok
21:12:06.0421 0x0548  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
21:12:06.0437 0x0548  MountMgr - ok
21:12:06.0515 0x0548  [ FEE0BADED54222E9F1DAE9541212AAB1, 436FD3BFD698576F5F947795462F9E7970F9A6F19C9F066CC63A3B97590DB5E3 ] MpFilter        C:\WINDOWS\system32\DRIVERS\MpFilter.sys
21:12:06.0515 0x0548  MpFilter - ok
21:12:06.0515 0x0548  mraid35x - ok
21:12:06.0593 0x0548  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:12:06.0656 0x0548  MRxDAV - ok
21:12:06.0828 0x0548  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:12:06.0968 0x0548  MRxSmb - ok
21:12:06.0984 0x0548  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
21:12:06.0984 0x0548  Msfs - ok
21:12:07.0000 0x0548  MSIServer - ok
21:12:07.0015 0x0548  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:12:07.0015 0x0548  MSKSSRV - ok
21:12:07.0093 0x0548  [ CFCE43B70CA0CC4DCC8ADB62B792B173, 227F64B151B502D1D67BD6FEBADA3A567CFF2219305459C70BF1B17D1CD5BE3A ] MsMpSvc         C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
21:12:07.0093 0x0548  MsMpSvc - ok
21:12:07.0109 0x0548  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:12:07.0109 0x0548  MSPCLOCK - ok
21:12:07.0156 0x0548  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
21:12:07.0156 0x0548  MSPQM - ok
21:12:07.0187 0x0548  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:12:07.0187 0x0548  mssmbios - ok
21:12:07.0187 0x0548  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
21:12:07.0203 0x0548  MSTEE - ok
21:12:07.0265 0x0548  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
21:12:07.0265 0x0548  Mup - ok
21:12:07.0296 0x0548  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
21:12:07.0328 0x0548  NABTSFEC - ok
21:12:07.0453 0x0548  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        C:\WINDOWS\System32\qagentrt.dll
21:12:07.0531 0x0548  napagent - ok
21:12:07.0625 0x0548  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
21:12:07.0671 0x0548  NDIS - ok
21:12:07.0687 0x0548  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
21:12:07.0687 0x0548  NdisIP - ok
21:12:07.0703 0x0548  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:12:07.0703 0x0548  NdisTapi - ok
21:12:07.0718 0x0548  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:12:07.0718 0x0548  Ndisuio - ok
21:12:07.0765 0x0548  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:12:07.0781 0x0548  NdisWan - ok
21:12:07.0843 0x0548  [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
21:12:07.0843 0x0548  NDProxy - ok
21:12:07.0890 0x0548  [ 51C6D8BFBD4EA5B62A1BA7F4469250D3, 29ACA9D8A5426333F75858D9D3960A4DCDDA4ACC986B3E9E37D255E4FAECDB7C ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
21:12:07.0890 0x0548  Net Driver HPZ12 - ok
21:12:07.0921 0x0548  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
21:12:07.0937 0x0548  NetBIOS - ok
21:12:08.0031 0x0548  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
21:12:08.0109 0x0548  NetBT - ok
21:12:08.0187 0x0548  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          C:\WINDOWS\system32\netdde.exe
21:12:08.0234 0x0548  NetDDE - ok
21:12:08.0281 0x0548  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
21:12:08.0281 0x0548  NetDDEdsdm - ok
21:12:08.0328 0x0548  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        C:\WINDOWS\system32\lsass.exe
21:12:08.0328 0x0548  Netlogon - ok
21:12:08.0406 0x0548  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          C:\WINDOWS\System32\netman.dll
21:12:08.0500 0x0548  Netman - ok
21:12:08.0578 0x0548  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:12:08.0609 0x0548  NetTcpPortSharing - ok
21:12:08.0671 0x0548  [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:12:08.0687 0x0548  NIC1394 - ok
21:12:08.0781 0x0548  [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla             C:\WINDOWS\System32\mswsock.dll
21:12:08.0875 0x0548  Nla - ok
21:12:09.0125 0x0548  [ CD2FE9C33CFD0FE0AF124E05907E5C3D, B7F880EB08F86B87DAE70A42389C768B539C8D70C11E98F1D7816636F6B6403C ] nmservice       C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
21:12:09.0312 0x0548  nmservice - ok
21:12:09.0328 0x0548  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
21:12:09.0343 0x0548  Npfs - ok
21:12:09.0515 0x0548  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
21:12:09.0671 0x0548  Ntfs - ok
21:12:09.0703 0x0548  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
21:12:09.0703 0x0548  NtLmSsp - ok
21:12:09.0859 0x0548  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
21:12:09.0984 0x0548  NtmsSvc - ok
21:12:10.0015 0x0548  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
21:12:10.0015 0x0548  Null - ok
21:12:11.0171 0x0548  [ EB2858F920B8135B807B5CCAA3ED73DC, E51DAE3D053E2B0563CA4BA970D6268AEFC7C92B35E1F73B8A9B54B99DFAC384 ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:12:12.0390 0x0548  nv - ok
21:12:12.0468 0x0548  [ 36032035FA55F030D55237D5C639A81D, 0D3B26489A49752479183AE21C1F9D7F1D3C107F52A193D0ABA63599B249103C ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
21:12:12.0546 0x0548  NVSvc - ok
21:12:12.0578 0x0548  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:12:12.0578 0x0548  NwlnkFlt - ok
21:12:12.0609 0x0548  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:12:12.0609 0x0548  NwlnkFwd - ok
21:12:12.0687 0x0548  [ CA33832DF41AFB202EE7AEB05145922F, 9DD0089C2E13C7F81214C3B5A4A61276292052F9BBFEA7FCD0F6AA27815D5F95 ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:12:12.0703 0x0548  ohci1394 - ok
21:12:12.0796 0x0548  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:12:12.0812 0x0548  ose - ok
21:12:12.0843 0x0548  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
21:12:12.0875 0x0548  Parport - ok
21:12:12.0890 0x0548  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
21:12:12.0890 0x0548  PartMgr - ok
21:12:12.0921 0x0548  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
21:12:12.0937 0x0548  ParVdm - ok
21:12:12.0953 0x0548  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
21:12:12.0968 0x0548  PCI - ok
21:12:12.0984 0x0548  PCIDump - ok
21:12:13.0000 0x0548  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
21:12:13.0000 0x0548  PCIIde - ok
21:12:13.0046 0x0548  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
21:12:13.0078 0x0548  Pcmcia - ok
21:12:13.0078 0x0548  PDCOMP - ok
21:12:13.0093 0x0548  PDFRAME - ok
21:12:13.0093 0x0548  PDRELI - ok
21:12:13.0093 0x0548  PDRFRAME - ok
21:12:13.0109 0x0548  perc2 - ok
21:12:13.0109 0x0548  perc2hib - ok
21:12:13.0171 0x0548  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay        C:\WINDOWS\system32\services.exe
21:12:13.0171 0x0548  PlugPlay - ok
21:12:13.0234 0x0548  [ 79834AA2FBF9FE81EEBB229024F6F7FC, 4E243765C11AE9B5D003C3220B8AA0C4671B2627221D2323F80189CA3A307FEF ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
21:12:13.0250 0x0548  Pml Driver HPZ12 - ok
21:12:13.0296 0x0548  [ CE27FC8BDC54B3AC63D53E2D5F6CC929, 3A6674365AC0F8ECD35D075926D81CA39953EEBEE8B595504BE7023AC82CC918 ] pnarp           C:\WINDOWS\system32\DRIVERS\pnarp.sys
21:12:13.0296 0x0548  pnarp - ok
21:12:13.0343 0x0548  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:12:13.0359 0x0548  PptpMiniport - ok
21:12:13.0390 0x0548  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:12:13.0390 0x0548  ProtectedStorage - ok
21:12:13.0437 0x0548  [ 390C204CED3785609AB24E9C52054A84, D997A9EAAE4A7FED9C2FEBD1AA7D1171431B9C9D56F8BFB587DCAE26203FF4D2 ] Ps2             C:\WINDOWS\system32\DRIVERS\PS2.sys
21:12:13.0437 0x0548  Ps2 - ok
21:12:13.0484 0x0548  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
21:12:13.0500 0x0548  PSched - ok
21:12:13.0531 0x0548  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:12:13.0531 0x0548  Ptilink - ok
21:12:13.0593 0x0548  [ F4FD591E86ECB6B5D000C7D6C987416B, D2A9723B68A0FB0334F19417B2620CE7E653FB5DE48F4062128528F5435381A6 ] purendis        C:\WINDOWS\system32\DRIVERS\purendis.sys
21:12:13.0593 0x0548  purendis - ok
21:12:13.0640 0x0548  [ 153D02480A0A2F45785522E814C634B6, 02B7590F2F4A8FA0B031CDA7A28BD55E7C04A080C1EA810BF3AC3212A62153A6 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:12:13.0656 0x0548  PxHelp20 - ok
21:12:13.0656 0x0548  ql1080 - ok
21:12:13.0671 0x0548  Ql10wnt - ok
21:12:13.0671 0x0548  ql12160 - ok
21:12:13.0671 0x0548  ql1240 - ok
21:12:13.0687 0x0548  ql1280 - ok
21:12:13.0718 0x0548  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\RASACD.SYS
21:12:13.0718 0x0548  RasAcd - ok
21:12:13.0781 0x0548  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         C:\WINDOWS\System32\rasauto.dll
21:12:13.0812 0x0548  RasAuto - ok
21:12:13.0843 0x0548  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:12:13.0859 0x0548  Rasl2tp - ok
21:12:13.0937 0x0548  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          C:\WINDOWS\System32\rasmans.dll
21:12:13.0953 0x0548  RasMan - ok
21:12:13.0984 0x0548  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:12:14.0000 0x0548  RasPppoe - ok
21:12:14.0031 0x0548  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
21:12:14.0031 0x0548  Raspti - ok
21:12:14.0093 0x0548  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:12:14.0156 0x0548  Rdbss - ok
21:12:14.0156 0x0548  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:12:14.0156 0x0548  RDPCDD - ok
21:12:14.0234 0x0548  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:12:14.0281 0x0548  rdpdr - ok
21:12:14.0375 0x0548  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
21:12:14.0406 0x0548  RDPWD - ok
21:12:14.0468 0x0548  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
21:12:14.0515 0x0548  RDSessMgr - ok
21:12:14.0578 0x0548  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
21:12:14.0593 0x0548  redbook - ok
21:12:14.0625 0x0548  [ BA5148E2DA9AB2B786EE239510BE819A, 8EDEA412CBFE5EEDC80EC7E8AC48B04FCBA20C8D3BA6B65006FE5FB25F4B823F ] RegFilter       C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\regfilter.sys
21:12:14.0625 0x0548  RegFilter - ok
21:12:14.0687 0x0548  [ 5B19B557B0C188210A56A6B699D90B8F, 0FA880B81AE615206FD1738B83428AAA491D54B24168339DE6E87FDE8C6C14B0 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
21:12:14.0703 0x0548  RemoteRegistry - ok
21:12:14.0734 0x0548  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      C:\WINDOWS\system32\locator.exe
21:12:14.0765 0x0548  RpcLocator - ok
21:12:14.0875 0x0548  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs           C:\WINDOWS\System32\rpcss.dll
21:12:14.0890 0x0548  RpcSs - ok
21:12:14.0906 0x0548  RPSKT - ok
21:12:14.0984 0x0548  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe
21:12:15.0015 0x0548  RSVP - ok
21:12:15.0062 0x0548  [ D507C1400284176573224903819FFDA3, DD0BDB2AB39A8A0A300B6D60FB6A7F5BA08C4DB8F59E0A784FB763EA8AD72AB2 ] rtl8139         C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
21:12:15.0078 0x0548  rtl8139 - ok
21:12:15.0093 0x0548  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           C:\WINDOWS\system32\lsass.exe
21:12:15.0109 0x0548  SamSs - ok
21:12:15.0140 0x0548  [ 30D94039A729571146EB9D736EC1AADD, BFDF554932CE1EB8FB4FCE3F249B0438CAE3B7621D85A2B3C6898E83A8A0677D ] SbcpHid         C:\WINDOWS\system32\Drivers\SbcpHid.sys
21:12:15.0234 0x0548  SbcpHid - ok
21:12:15.0312 0x0548  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
21:12:15.0343 0x0548  SCardSvr - ok
21:12:15.0453 0x0548  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
21:12:15.0500 0x0548  Schedule - ok
21:12:15.0562 0x0548  [ B7EA2F12416693D2D9BFFAAA5EFF7037, 7730061529665488D4937CD9A6CA236B4D87B03FFD4F06C71D3A451929AB69BC ] sdcplh          C:\WINDOWS\system32\drivers\sdcplh.sys
21:12:15.0703 0x0548  sdcplh - ok
21:12:15.0843 0x0548  [ 4A5809A1D796E2675AC0332BF7B0CB11, 7EEEC85A397F04A9460DC37A070D115E19114D9A3E5D9D7E8021F60A7986C8C1 ] SeaPort         C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
21:12:15.0921 0x0548  SeaPort - ok
21:12:15.0953 0x0548  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:12:15.0968 0x0548  Secdrv - ok
21:12:16.0015 0x0548  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        C:\WINDOWS\System32\seclogon.dll
21:12:16.0015 0x0548  seclogon - ok
21:12:16.0046 0x0548  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            C:\WINDOWS\system32\sens.dll
21:12:16.0046 0x0548  SENS - ok
21:12:16.0078 0x0548  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
21:12:16.0093 0x0548  Serial - ok
21:12:16.0125 0x0548  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
21:12:16.0125 0x0548  Sfloppy - ok
21:12:16.0250 0x0548  [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
21:12:16.0328 0x0548  SharedAccess - ok
21:12:16.0390 0x0548  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:12:16.0390 0x0548  ShellHWDetection - ok
21:12:16.0406 0x0548  Simbad - ok
21:12:16.0500 0x0548  [ 875B04A71869D34A415CC8B4D4673EC4, 8FDFD38B1A6302EC7FAFC23A22C332B1E7240231DBE3519AD6F51F6BD668B481 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
21:12:16.0546 0x0548  SkypeUpdate - ok
21:12:16.0593 0x0548  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
21:12:16.0593 0x0548  SLIP - ok
21:12:16.0640 0x0548  [ 14BB60A4F1C5291217A05D5728C403E6, 0F4DD318A58576DC867AB9DDD33393948DB795C187DED5D6DDD7D6A54E0F157B ] SmartDefragDriver C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
21:12:16.0656 0x0548  SmartDefragDriver - ok
21:12:16.0656 0x0548  Sparrow - ok
21:12:16.0671 0x0548  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
21:12:16.0671 0x0548  splitter - ok
21:12:16.0703 0x0548  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
21:12:16.0703 0x0548  Spooler - ok
21:12:16.0781 0x0548  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
21:12:16.0796 0x0548  sr - ok
21:12:16.0875 0x0548  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       C:\WINDOWS\system32\srsvc.dll
21:12:16.0921 0x0548  srservice - ok
21:12:17.0031 0x0548  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
21:12:17.0125 0x0548  Srv - ok
21:12:17.0156 0x0548  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
21:12:17.0171 0x0548  SSDPSRV - ok
21:12:17.0281 0x0548  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
21:12:17.0375 0x0548  stisvc - ok
21:12:17.0421 0x0548  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
21:12:17.0421 0x0548  streamip - ok
21:12:17.0437 0x0548  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
21:12:17.0437 0x0548  swenum - ok
21:12:17.0468 0x0548  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
21:12:17.0484 0x0548  swmidi - ok
21:12:17.0500 0x0548  SwPrv - ok
21:12:17.0500 0x0548  symc810 - ok
21:12:17.0515 0x0548  symc8xx - ok
21:12:17.0593 0x0548  [ 06B95820DF51502099A8A15C93E87986, 77F70B2A8B84882840DEFA89D6037EF16E8BF5EADB7D089DD2374C12290D17A5 ] SymEvent        C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
21:12:17.0609 0x0548  SymEvent - ok
21:12:17.0609 0x0548  SymIM - ok
21:12:17.0625 0x0548  SymIMMP - ok
21:12:17.0625 0x0548  sym_hi - ok
21:12:17.0625 0x0548  sym_u3 - ok
21:12:17.0671 0x0548  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
21:12:17.0687 0x0548  sysaudio - ok
21:12:17.0750 0x0548  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
21:12:17.0781 0x0548  SysmonLog - ok
21:12:17.0890 0x0548  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
21:12:17.0953 0x0548  TapiSrv - ok
21:12:18.0093 0x0548  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:12:18.0187 0x0548  Tcpip - ok
21:12:18.0218 0x0548  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
21:12:18.0218 0x0548  TDPIPE - ok
21:12:18.0234 0x0548  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
21:12:18.0250 0x0548  TDTCP - ok
21:12:18.0281 0x0548  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
21:12:18.0296 0x0548  TermDD - ok
21:12:18.0421 0x0548  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     C:\WINDOWS\System32\termsrv.dll
21:12:18.0515 0x0548  TermService - ok
21:12:18.0578 0x0548  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes          C:\WINDOWS\System32\shsvcs.dll
21:12:18.0593 0x0548  Themes - ok
21:12:18.0656 0x0548  [ DB7205804759FF62C34E3EFD8A4CC76A, 13A4248F528CE98ACA66898E56822E4FC49B11F491FF1F61A687BA601BF0A802 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
21:12:18.0687 0x0548  TlntSvr - ok
21:12:18.0687 0x0548  TosIde - ok
21:12:18.0734 0x0548  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
21:12:18.0781 0x0548  TrkWks - ok
21:12:18.0843 0x0548  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
21:12:18.0859 0x0548  Udfs - ok
21:12:18.0859 0x0548  ultra - ok
21:12:19.0031 0x0548  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
21:12:19.0140 0x0548  Update - ok
21:12:19.0218 0x0548  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        C:\WINDOWS\System32\upnphost.dll
21:12:19.0281 0x0548  upnphost - ok
21:12:19.0296 0x0548  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             C:\WINDOWS\System32\ups.exe
21:12:19.0312 0x0548  UPS - ok
21:12:19.0343 0x0548  [ CAAEF0A4B5AE343918AE6287D5A4843D, EF937FAEC84967E7A6117FBB91ACA1E7E7DE279EF49FF4F71DCA3DDB34D97375 ] UrlFilter       C:\Program Files\IObit\IObit Malware Fighter\drivers\wxp_x86\UrlFilter.sys
21:12:19.0359 0x0548  UrlFilter - ok
21:12:19.0406 0x0548  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
21:12:19.0453 0x0548  USBAAPL - ok
21:12:19.0515 0x0548  [ 173F317CE0DB8E21322E71B7E60A27E8, 7042441BA63AE38AE9D7BE0BC5CA7404FC9EE5BB3F084604A68F01E82769652A ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:12:19.0531 0x0548  usbccgp - ok
21:12:19.0578 0x0548  [ 65DCF09D0E37D4C6B11B5B0B76D470A7, 90EBA8BAF45932B453D905EDF2BDDDF3A432BFD50B9F7DF58CDEAE98D11C2E2F ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:12:19.0578 0x0548  usbehci - ok
21:12:19.0609 0x0548  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:12:19.0625 0x0548  usbhub - ok
21:12:19.0640 0x0548  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:12:19.0656 0x0548  usbprint - ok
21:12:19.0671 0x0548  [ A0B8CF9DEB1184FBDD20784A58FA75D4, D8AFD45BD9CF7B02F2554AA6085194DE82893AF794EDF479BC9B9E9C1758DC75 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:12:19.0671 0x0548  usbscan - ok
21:12:19.0687 0x0548  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:12:19.0703 0x0548  usbstor - ok
21:12:19.0718 0x0548  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:12:19.0734 0x0548  usbuhci - ok
21:12:19.0734 0x0548  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
21:12:19.0750 0x0548  VgaSave - ok
21:12:19.0765 0x0548  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
21:12:19.0765 0x0548  ViaIde - ok
21:12:19.0796 0x0548  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
21:12:19.0796 0x0548  VolSnap - ok
21:12:19.0921 0x0548  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             C:\WINDOWS\System32\vssvc.exe
21:12:20.0000 0x0548  VSS - ok
21:12:20.0015 0x0548  vzctakwv - ok
21:12:20.0078 0x0548  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time         C:\WINDOWS\system32\w32time.dll
21:12:20.0125 0x0548  W32Time - ok
21:12:20.0140 0x0548  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:12:20.0156 0x0548  Wanarp - ok
21:12:20.0203 0x0548  [ D6EFAF429FD30C5DF613D220E344CCE7, 807D4563E8AD4073688691078EB13AF240E14BA5E0C8506A48B3060A20B90082 ] WDC_SAM         C:\WINDOWS\system32\DRIVERS\wdcsam.sys
21:12:20.0203 0x0548  WDC_SAM - ok
21:12:20.0203 0x0548  WDICA - ok
21:12:20.0265 0x0548  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
21:12:20.0281 0x0548  wdmaud - ok
21:12:20.0343 0x0548  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       C:\WINDOWS\System32\webclnt.dll
21:12:20.0375 0x0548  WebClient - ok
21:12:20.0578 0x0548  [ 11EC1AFCEB5C917CE73D3C301FF4291E, 334B08EF36382F33F6102DA23A8786F1AC592127FB5AE07A0B9244F05AF871A2 ] winachsx        C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
21:12:20.0593 0x0548  winachsx - ok
21:12:20.0718 0x0548  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
21:12:20.0796 0x0548  winmgmt - ok
21:12:21.0140 0x0548  [ 18F347402DA544A780949B8FDF83351B, D1AD972D438A51A4998FEF68670395DAE3353240AD2A17F35794287AF0826FFB ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
21:12:21.0468 0x0548  WinRM - ok
21:12:21.0531 0x0548  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
21:12:21.0546 0x0548  WmdmPmSN - ok
21:12:21.0750 0x0548  [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] Wmi             C:\WINDOWS\System32\advapi32.dll
21:12:21.0921 0x0548  Wmi - ok
21:12:22.0000 0x0548  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:12:22.0031 0x0548  WmiApSrv - ok
21:12:22.0343 0x0548  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B, C71FAAC752F6D58BF8556661252DBF8C5DDD090CAE002A2C7E09C9A014526066 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
21:12:22.0609 0x0548  WMPNetworkSvc - ok
21:12:22.0781 0x0548  [ B72D232E46FF5EE2BD8F61498B748DF7, ED7E3719885BEA0F962A8DAAF84B9054772829A1909A0B6DB09C98C437BA81CF ] WN5301          C:\WINDOWS\system32\DRIVERS\wn5301.sys
21:12:22.0921 0x0548  WN5301 - ok
21:12:22.0984 0x0548  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
21:12:23.0000 0x0548  wscsvc - ok
21:12:23.0015 0x0548  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
21:12:23.0015 0x0548  WSTCODEC - ok
21:12:23.0031 0x0548  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
21:12:23.0046 0x0548  wuauserv - ok
21:12:23.0093 0x0548  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:12:23.0109 0x0548  WudfPf - ok
21:12:23.0140 0x0548  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
21:12:23.0156 0x0548  WudfSvc - ok
21:12:23.0343 0x0548  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
21:12:23.0484 0x0548  WZCSVC - ok
21:12:23.0546 0x0548  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
21:12:23.0578 0x0548  xmlprov - ok
21:12:23.0593 0x0548  ================ Scan global ===============================
21:12:23.0656 0x0548  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
21:12:23.0796 0x0548  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
21:12:23.0921 0x0548  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
21:12:23.0968 0x0548  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
21:12:23.0968 0x0548  [ Global ] - ok
21:12:23.0968 0x0548  ================ Scan MBR ==================================
21:12:24.0015 0x0548  [ ED18B096BC416BFB306882A7C2EBA877 ] \Device\Harddisk0\DR0
21:12:24.0218 0x0548  \Device\Harddisk0\DR0 - ok
21:12:24.0234 0x0548  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
21:12:24.0250 0x0548  \Device\Harddisk1\DR1 - ok
21:12:24.0265 0x0548  ================ Scan VBR ==================================
21:12:24.0265 0x0548  [ 028E917FF7212FB513BD475CC84E7D70 ] \Device\Harddisk0\DR0\Partition1
21:12:24.0265 0x0548  \Device\Harddisk0\DR0\Partition1 - ok
21:12:24.0265 0x0548  [ 21EE3DFEC0F315BCD0DD365E47E0AB85 ] \Device\Harddisk0\DR0\Partition2
21:12:24.0265 0x0548  \Device\Harddisk0\DR0\Partition2 - ok
21:12:24.0281 0x0548  [ 5A7634F37B1006E3F2EC22B547E04C97 ] \Device\Harddisk1\DR1\Partition1
21:12:24.0281 0x0548  \Device\Harddisk1\DR1\Partition1 - ok
21:12:24.0281 0x0548  Waiting for KSN requests completion. In queue: 254
21:12:25.0281 0x0548  Waiting for KSN requests completion. In queue: 254
21:12:26.0281 0x0548  Waiting for KSN requests completion. In queue: 254
21:12:27.0312 0x0548  AV detected via SS1: Norton Security Online, 15.0.0.60, enabled, outofdate
21:12:27.0312 0x0548  AV detected via SS1: Microsoft Security Essentials, 3.0.8402.0, enabled, updated
21:12:27.0312 0x0548  AV detected via SS1: Microsoft Security Essentials, 2.1.6805.0, disabled, updated
21:12:27.0312 0x0548  FW detected via SS1: Norton Security Online, 15.0.0.60, enabled
21:12:29.0859 0x0548  ============================================================
21:12:29.0859 0x0548  Scan finished
21:12:29.0859 0x0548  ============================================================
21:12:29.0859 0x0f6c  Detected object count: 0
21:12:29.0859 0x0f6c  Actual detected object count: 0

 

ESET

 

C:\Documents and Settings\HP_Administrator\Local Settings\temp\jar_cache5120865251756496181.tmp Java/Exploit.Agent.PXY trojan cleaned by deleting - quarantined
C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings64.exe a variant of Win64/Toolbar.Widgi.A application cleaned by deleting - quarantined
C:\Program Files\Common Files\Spigot\Search Settings\wth160.dll Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files\Common Files\Spigot\Search Settings\wthx160.dll Win64/Toolbar.Widgi.B application cleaned by deleting - quarantined
C:\Program Files\IObit Apps Toolbar\IE\7.6\iobitappsToolbarIE.dll a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files\IObit Toolbar\IE\7.6\iobitToolbarIE.dll a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\WINDOWS\Installer\1b8820a3.msi probably a variant of Win32/Toolbar.Widgi application deleted - quarantined
C:\WINDOWS\Installer\20af6039.msi probably a variant of Win32/Toolbar.Widgi application deleted - quarantined
 


Edited by Moe Problems, 21 October 2013 - 11:15 AM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:15 PM

Posted 21 October 2013 - 03:05 PM

Did RKill work?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Moe Problems

Moe Problems
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:15 PM

Posted 21 October 2013 - 11:17 PM

Hi,

I wasn't able to get either Rkill links to work but my internet service provider contacted me about the virus and where able to help resolve the issue. Thank you for your time and help. Much appreciated.


Edited by Moe Problems, 21 October 2013 - 11:22 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users