Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with 'seth.avazutracking' pop-up virus ??


  • Please log in to reply
10 replies to this topic

#1 SWIM_GOOD

SWIM_GOOD

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:10:03 PM

Posted 25 November 2013 - 11:46 AM

Hello, I'm assuming I've been infected to some degree by a pop-up virus.. Two or three times over the weekend whilst browsing the internet, a separate tab has opened up without me instigating it. Thankfully 'WOT' blocks whatever it may be (the address bar reads; 'seth.avazutracking.net/tracking/redirect/redirect' etc.) Like I say, it's only happened a couple of times but I'd like help in removing whatever is lurking in the background..

 

Cheers in advance,

 

Dan



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,556 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:03 PM

Posted 25 November 2013 - 01:24 PM

Hello Dan, lets see how you are after these.


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 SWIM_GOOD

SWIM_GOOD
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:10:03 PM

Posted 25 November 2013 - 05:20 PM

Hey, thanks for the reply, here are the MiniToolBox / TDSSKiller results.. (I crack on with the others now and post them shortly)

 

MiniToolBox by Farbar
Ran by Dan (administrator) on 25-11-2013 at 21:49:54
Windows Vista ™ Home Basic Service Pack 1 (X86)

***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=192.168.1.12 metric=1


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Dan-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Peer-Peer
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Intel® Wireless WiFi Link 5100
   Physical Address. . . . . . . . . : 00-21-5D-38-12-2A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::3d95:6927:5ad8:f424%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.64(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 25 November 2013 21:36:32
   Lease Expires . . . . . . . . . . : 26 November 2013 21:36:32
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
   Physical Address. . . . . . . . . : 00-1E-68-EB-DE-DF
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : 6TO4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.home
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 02-00-54-55-4E-01
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:3c0d:673:3f57:febf(Preferred)
   Link-local IPv6 Address . . . . . : fe80::3c0d:673:3f57:febf%13(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 13:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.{6D1BAFBA-2E42-4BF5-8DF9-8C3CC90677F6}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 14:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  BThomehub.home
Address:  192.168.1.254

Name:    google.com
Addresses:  2a00:1450:4009:805::1008
      173.194.34.164
      173.194.34.160
      173.194.34.162
      173.194.34.165
      173.194.34.163
      173.194.34.161
      173.194.34.166
      173.194.34.167
      173.194.34.169
      173.194.34.168
      173.194.34.174



Pinging google.com [173.194.34.165] with 32 bytes of data:

Reply from 173.194.34.165: bytes=32 time=17ms TTL=51

Reply from 173.194.34.165: bytes=32 time=18ms TTL=51



Ping statistics for 173.194.34.165:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 17ms, Maximum = 18ms, Average = 17ms

Server:  BThomehub.home
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  206.190.36.45
      98.138.253.109
      98.139.183.24



Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

Reply from 206.190.36.45: bytes=32 time=175ms TTL=41

Reply from 206.190.36.45: bytes=32 time=207ms TTL=40



Ping statistics for 206.190.36.45:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 175ms, Maximum = 207ms, Average = 191ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
 11 ...00 21 5d 38 12 2a ...... Intel® Wireless WiFi Link 5100
 10 ...00 1e 68 eb de df ...... Broadcom NetXtreme Gigabit Ethernet
  1 ........................... Software Loopback Interface 1
 12 ...00 00 00 00 00 00 00 e0  6TO4 Adapter
 16 ...00 00 00 00 00 00 00 e0  isatap.home
 13 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
 14 ...00 00 00 00 00 00 00 e0  isatap.{6D1BAFBA-2E42-4BF5-8DF9-8C3CC90677F6}
 17 ...00 00 00 00 00 00 00 e0  Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.64     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      169.254.0.0      255.255.0.0     192.168.1.12     192.168.1.64     26
      192.168.1.0    255.255.255.0         On-link      192.168.1.64    281
     192.168.1.64  255.255.255.255         On-link      192.168.1.64    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.64    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.64    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.64    281
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
      169.254.0.0      255.255.0.0     192.168.1.12       1
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13     18 ::/0                     On-link
  1    306 ::1/128                  On-link
 13     18 2001::/32                On-link
 13    266 2001:0:9d38:90d7:3c0d:673:3f57:febf/128
                                    On-link
 11    281 fe80::/64                On-link
 13    266 fe80::/64                On-link
 13    266 fe80::3c0d:673:3f57:febf/128
                                    On-link
 11    281 fe80::3d95:6927:5ad8:f424/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    266 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Windows\system32\wshbth.dll [34304] (Microsoft Corporation)
Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/25/2013 09:18:27 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/25/2013 04:00:50 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/23/2013 00:45:10 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/23/2013 00:23:41 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/22/2013 08:18:50 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/22/2013 03:31:32 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/22/2013 08:08:57 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/21/2013 00:51:39 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/20/2013 11:33:41 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\DAN\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\FD18CL6K.DEFAULT\CACHE\7\6B> in the hash map cannot be updated.

Context:  Application, SystemIndex Catalog

Details:
    A device attached to the system is not functioning.   (0x8007001f)

Error: (11/20/2013 11:33:41 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\DAN\APPDATA\LOCAL\MOZILLA\FIREFOX\PROFILES\FD18CL6K.DEFAULT\CACHE\7\6B> in the hash map cannot be updated.

Context:  Application, SystemIndex Catalog

Details:
    A device attached to the system is not functioning.   (0x8007001f)


System errors:
=============
Error: (11/25/2013 09:27:41 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

    New Signature Version:

    Previous Signature Version: 1.163.375.0

    Update Source: %NT AUTHORITY59

    Update Stage: 4.4.0304.00

    Source Path: 4.4.0304.01

    Signature Type: %NT AUTHORITY602

    Update Type: %NT AUTHORITY604

    User: NT AUTHORITY\SYSTEM

    Current Engine Version: %NT AUTHORITY605

    Previous Engine Version: %NT AUTHORITY606

    Error code: %NT AUTHORITY607

    Error description: %NT AUTHORITY608

Error: (11/25/2013 09:18:34 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (11/25/2013 09:18:27 PM) (Source: Service Control Manager) (User: )
Description: AVGIDSAgent%%2

Error: (11/25/2013 09:18:27 PM) (Source: Service Control Manager) (User: )
Description: AVG WatchDog%%2

Error: (11/25/2013 09:18:27 PM) (Source: Service Control Manager) (User: )
Description: AVG Firewall%%2

Error: (11/25/2013 09:16:56 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueueKerberos

Error: (11/25/2013 04:09:30 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.

    New Signature Version:

    Previous Signature Version: 1.163.375.0

    Update Source: %NT AUTHORITY59

    Update Stage: 4.4.0304.00

    Source Path: 4.4.0304.01

    Signature Type: %NT AUTHORITY602

    Update Type: %NT AUTHORITY604

    User: NT AUTHORITY\SYSTEM

    Current Engine Version: %NT AUTHORITY605

    Previous Engine Version: %NT AUTHORITY606

    Error code: %NT AUTHORITY607

    Error description: %NT AUTHORITY608

Error: (11/25/2013 04:00:55 PM) (Source: Service Control Manager) (User: )
Description: HP CUE DeviceDiscovery Service

Error: (11/25/2013 04:00:50 PM) (Source: Service Control Manager) (User: )
Description: AVGIDSAgent%%2

Error: (11/25/2013 04:00:50 PM) (Source: Service Control Manager) (User: )
Description: AVG WatchDog%%2


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

32 Bit HP CIO Components Installer (Version: 1.0.0)
Acer Crystal Eye Webcam 2.0.8 (Version: 2.0.8)
Acer eAudio Management (Version: 3.0.3007)
Acer eDataSecurity Management (Version: 3.0.3060)
Acer Empowering Technology (Version: 3.0.3006)
Acer ePower Management (Version: 3.0.3008)
Acer eRecovery Management (Version: 3.0.3013)
Acer eSettings Management (Version: 3.0.3007)
Acer GameZone Console 2.0.1.1
Acer GridVista (Version: 2.72.317)
Acer Mobility Center Plug-In (Version: 3.0.3000)
Acer ScreenSaver (Version: 1.12.0506)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe AIR (Version: 2.0.3.13070)
Adobe Flash Player 10 ActiveX (Version: 10.0.32.18)
Adobe Flash Player 11 Plugin (Version: 11.7.700.202)
Adobe Reader X (10.1.8) (Version: 10.1.8)
Agere Systems HDA Modem
Alice Greenfingers
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
Azada
Backspin Billiards
Big Kahuna Reef
Bonjour (Version: 3.0.0.10)
Bookworm Deluxe
Bricks of Egypt
Broadcom Gigabit Integrated Controller (Version: 11.11.03)
BT Broadband Desktop Help
BTHomeHub
BTOffer (Version: 1.00.0000)
BufferChm (Version: 100.0.170.000)
Cake Mania
Canon IJ Network Tool
Canon MP Navigator EX 4.0
Canon MP495 series MP Drivers
Canon MP495 series User Registration
Canon Solution Menu EX
CCleaner (Version: 3.23)
Chicken Invaders 3
Chuzzle
Copy (Version: 100.0.170.000)
CustomerResearchQFolder (Version: 1.00.0000)
Destination Component (Version: 100.0.0.0)
DeviceDiscovery (Version: 100.0.190.000)
DeviceManagementQFolder (Version: 1.00.0000)
Diner Dash Flo on the Go
DJ_AIO_03_F4200_ProductContext (Version: 100.0.215.000)
DJ_AIO_03_F4200_Software (Version: 100.0.206.000)
DJ_AIO_03_F4200_Software_Min (Version: 100.0.213.000)
ESET Online Scanner v3
eSobi v2 (Version: 2.0.3.000189)
eSupportQFolder (Version: 1.00.0000)
F4200 (Version: 100.0.206.000)
F4200_Help (Version: 100.0.206.000)
Flip Words 2
GearDrvs (Version: 1.00.0000)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4601.54)
Google Update Helper (Version: 1.3.21.165)
GPBaseService (Version: 100.0.187.000)
HiJackThis (Version: 1.0.0)
HP Customer Participation Program 10.0 (Version: 10.0)
HP Deskjet F4200 All-In-One Driver Software 10.0 Rel .3 (Version: 10.0)
HP Imaging Device Functions 10.0 (Version: 10.0)
HP Photosmart Essential 2.5 (Version: 1.02.0000)
HP Photosmart Essential 2.5 (Version: 2.5)
HP Smart Web Printing (Version: 3.5)
HP Solution Center 10.0 (Version: 10.0)
HPProductAssistant (Version: 100.0.170.000)
HPSSupply (Version: 100.0.170.000)
iCloud (Version: 2.1.2.8)
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
iTunes (Version: 11.1.1.11)
JavaFX 2.1.0 (Version: 2.1.0)
Jewel Quest Solitaire
JMicron JMB38X Flash Media Controller (Version: 1.00.10.04)
Junk Mail filter update (Version: 14.0.8117.416)
Kick N Rush
Launch Manager
LightScribe  1.4.142.1 (Version: 1.4.142.1)
Macromedia Shockwave Player
Mahjong Escape Ancient China
Mahjongg Artifacts
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
MarketResearch (Version: 100.0.170.000)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.4.0304.0)
Microsoft Security Essentials (Version: 4.4.304.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 08.05.0818)
Mozilla Firefox 25.0.1 (x86 en-GB) (Version: 25.0.1)
Mozilla Maintenance Service (Version: 25.0.1)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Mystery Case Files - Huntsville
Mystery Solitaire - Secret Island
NTI Backup Now 5 (Version: 5.1.2.503)
NTI Backup Now Standard (Version: 5.1.2.503)
NTI Media Maker 8 (Version: 8.0.2.6322)
Orion (Version: 2.0.1)
PhotoNow! (Version: 1.1.4619)
PowerDirector (Version: 6.5.2713)
PSSWCORE (Version: 2.02.0000)
QuickTime (Version: 7.74.80.86)
Realtek High Definition Audio Driver (Version: 6.0.1.5612)
Revo Uninstaller 1.94 (Version: 1.94)
Scan (Version: 10.0.0.0)
Shop for HP Supplies (Version: 10.0)
Skype Toolbars (Version: 1.0.4051)
Skype™ 5.10 (Version: 5.10.116)
SmartWebPrintingOC (Version: 100.0.189.000)
SolutionCenter (Version: 100.0.175.000)
Status (Version: 100.0.175.000)
SUPERAntiSpyware Free Edition (Version: 4.26.0.1002)
Synaptics Pointing Device Driver (Version: 10.2.4.0)
Toolbox (Version: 100.0.170.000)
TrayApp (Version: 100.0.170.000)
UnloadSupport (Version: 10.0.0)
VideoToolkit01 (Version: 100.0.128.000)
WebReg (Version: 100.0.170.000)
Winbond CIR Device Drivers (Version: 7.60.1012)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Movie Maker (Version: 14.0.8117.0416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sign-in Assistant (Version: 5.000.818.6)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Zuma Deluxe

========================= Memory info: ===================================

Percentage of memory in use: 41%
Total physical RAM: 2999.94 MB
Available physical RAM: 1769.74 MB
Total Pagefile: 6206.16 MB
Available Pagefile: 4775.59 MB
Total Virtual: 2047.88 MB
Available Virtual: 1961.8 MB

========================= Partitions: =====================================

1 Drive c: (ACER) (Fixed) (Total:69.52 GB) (Free:0.46 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:69.52 GB) (Free:63.95 GB) NTFS

========================= Users: ========================================

User accounts for \\DAN-PC

Administrator            Dan                      Guest                    


**** End of log ****

 

 

 

 

 

 

 

 

 

 

 

22:07:47.0019 0x0d1c  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
22:07:49.0666 0x0d1c  ============================================================
22:07:49.0666 0x0d1c  Current date / time: 2013/11/25 22:07:49.0666
22:07:49.0666 0x0d1c  SystemInfo:
22:07:49.0666 0x0d1c  
22:07:49.0666 0x0d1c  OS Version: 6.0.6001 ServicePack: 1.0
22:07:49.0666 0x0d1c  Product type: Workstation
22:07:49.0667 0x0d1c  ComputerName: DAN-PC
22:07:49.0667 0x0d1c  UserName: Dan
22:07:49.0667 0x0d1c  Windows directory: C:\Windows
22:07:49.0667 0x0d1c  System windows directory: C:\Windows
22:07:49.0667 0x0d1c  Processor architecture: Intel x86
22:07:49.0667 0x0d1c  Number of processors: 2
22:07:49.0667 0x0d1c  Page size: 0x1000
22:07:49.0667 0x0d1c  Boot type: Normal boot
22:07:49.0667 0x0d1c  ============================================================
22:07:50.0814 0x0d1c  KLMD registered as C:\Windows\system32\drivers\19066224.sys
22:07:51.0243 0x0d1c  System UUID: {AAE60A49-A216-D162-0135-F8145E4BB6D5}
22:07:53.0378 0x0d1c  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:07:53.0383 0x0d1c  ============================================================
22:07:53.0383 0x0d1c  \Device\Harddisk0\DR0:
22:07:53.0383 0x0d1c  MBR partitions:
22:07:53.0383 0x0d1c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1400800, BlocksNum 0x8B0C000
22:07:53.0383 0x0d1c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x9F0C800, BlocksNum 0x8B0C800
22:07:53.0383 0x0d1c  ============================================================
22:07:53.0385 0x0d1c  C: <-> \Device\Harddisk0\DR0\Partition1
22:07:53.0424 0x0d1c  D: <-> \Device\Harddisk0\DR0\Partition2
22:07:53.0425 0x0d1c  ============================================================
22:07:53.0425 0x0d1c  Initialize success
22:07:53.0425 0x0d1c  ============================================================
22:08:12.0047 0x0138  ============================================================
22:08:12.0047 0x0138  Scan started
22:08:12.0047 0x0138  Mode: Manual;
22:08:12.0047 0x0138  ============================================================
22:08:12.0047 0x0138  KSN ping started
22:08:23.0314 0x0138  KSN ping finished: true
22:08:23.0622 0x0138  ================ Scan system memory ========================
22:08:23.0622 0x0138  System memory - ok
22:08:23.0623 0x0138  ================ Scan services =============================
22:08:23.0745 0x0138  [ 01E81C84AD1D0ACC61CF3CFD06632210, 1140756BA2F28CA8DFCFF8FD223654E6A78BA1B770A169CC557ECE0E01381B17 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
22:08:23.0753 0x0138  !SASCORE - ok
22:08:24.0007 0x0138  [ 02E1C46C34F2D2843533C4F223867930, 70DBAA07E54B54B12F13284701E68034E7D74E17EAD73A14A30194F7E7A61FF3 ] A310            C:\Windows\system32\DRIVERS\AVerA310USB.sys
22:08:24.0010 0x0138  A310 - ok
22:08:24.0058 0x0138  [ FCB8C7210F0135E24C6580F7F649C73C, 7E5E3D0B4F4BD418E6CC551850C672E1AF347CBB2E665B6F72638786CE5079C5 ] ACPI            C:\Windows\system32\drivers\acpi.sys
22:08:24.0073 0x0138  ACPI - ok
22:08:24.0182 0x0138  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
22:08:24.0187 0x0138  AdobeARMservice - ok
22:08:24.0240 0x0138  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
22:08:24.0264 0x0138  adp94xx - ok
22:08:24.0310 0x0138  [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
22:08:24.0327 0x0138  adpahci - ok
22:08:24.0367 0x0138  [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
22:08:24.0374 0x0138  adpu160m - ok
22:08:24.0411 0x0138  [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
22:08:24.0420 0x0138  adpu320 - ok
22:08:24.0460 0x0138  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:08:24.0462 0x0138  AeLookupSvc - ok
22:08:24.0521 0x0138  [ 48EB99503533C27AC6135648E5474457, 344A83008F41AAC3CDFC52EFC4F2EFF441971C58182597D2FBED315B3FC62137 ] AFD             C:\Windows\system32\drivers\afd.sys
22:08:24.0549 0x0138  AFD - ok
22:08:24.0608 0x0138  [ EFBC44FBD75E4F80BD927AEBF6E7EADE, 0A1ACFE5D007DF8ABB97081C93111A1F18D90CB34093CD5784588971BFE86AE7 ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
22:08:24.0611 0x0138  AgereModemAudio - ok
22:08:24.0738 0x0138  [ 38325C6AA8EAE011897D61CE48EC6435, 6F96F992022692E354BB61610936F39EA89F31F58135D0F5339A3690402F74ED ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
22:08:24.0803 0x0138  AgereSoftModem - ok
22:08:24.0849 0x0138  [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440          C:\Windows\system32\drivers\agp440.sys
22:08:24.0854 0x0138  agp440 - ok
22:08:24.0890 0x0138  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
22:08:24.0896 0x0138  aic78xx - ok
22:08:24.0928 0x0138  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe
22:08:24.0933 0x0138  ALG - ok
22:08:24.0945 0x0138  [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide          C:\Windows\system32\drivers\aliide.sys
22:08:24.0948 0x0138  aliide - ok
22:08:24.0967 0x0138  [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
22:08:24.0972 0x0138  amdagp - ok
22:08:24.0993 0x0138  [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide          C:\Windows\system32\drivers\amdide.sys
22:08:24.0995 0x0138  amdide - ok
22:08:25.0011 0x0138  [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
22:08:25.0015 0x0138  AmdK7 - ok
22:08:25.0040 0x0138  [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
22:08:25.0044 0x0138  AmdK8 - ok
22:08:25.0100 0x0138  [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo         C:\Windows\System32\appinfo.dll
22:08:25.0103 0x0138  Appinfo - ok
22:08:25.0198 0x0138  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:08:25.0204 0x0138  Apple Mobile Device - ok
22:08:25.0246 0x0138  [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc             C:\Windows\system32\drivers\arc.sys
22:08:25.0252 0x0138  arc - ok
22:08:25.0281 0x0138  [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
22:08:25.0287 0x0138  arcsas - ok
22:08:25.0320 0x0138  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:08:25.0323 0x0138  AsyncMac - ok
22:08:25.0347 0x0138  [ 2D9C903DC76A66813D350A562DE40ED9, 82609F01A08C6842E4C17C077BB641C1429C0E6657964B7F2D114035E1BDCBF3 ] atapi           C:\Windows\system32\drivers\atapi.sys
22:08:25.0349 0x0138  atapi - ok
22:08:25.0414 0x0138  [ 42076E29AAFA0830A2C5D4E310F58DD1, 13BB794C09BB602AECF53DB8147677159DC154E994FFEAE89C0298BD65FA9C7B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:08:25.0432 0x0138  AudioEndpointBuilder - ok
22:08:25.0470 0x0138  [ 42076E29AAFA0830A2C5D4E310F58DD1, 13BB794C09BB602AECF53DB8147677159DC154E994FFEAE89C0298BD65FA9C7B ] Audiosrv        C:\Windows\System32\Audiosrv.dll
22:08:25.0488 0x0138  Audiosrv - ok
22:08:25.0585 0x0138  [ C46BA2C177DF0B84F9C0BFC1E4574DC7, C6BE9CC7C2D6ED778B558DAD4DA572ECAD0628F75C1D931C293B44CCCDAA521F ] Avgfwfd         C:\Windows\system32\DRIVERS\avgfwd6x.sys
22:08:25.0589 0x0138  Avgfwfd - ok
22:08:25.0655 0x0138  avgfws - ok
22:08:25.0673 0x0138  AVGIDSAgent - ok
22:08:25.0719 0x0138  [ 4CBB56FBC9C0CBC517E6E3A6889EBDDC, 606DA862025267F598F5D001A0610E88553AE217F806284E8B4EE2E7EBC96768 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
22:08:25.0728 0x0138  AVGIDSDriver - ok
22:08:25.0794 0x0138  [ 459BCE188232E2FE6152423EFEF65D76, BC4100B448146D3E8B96ECBA7FFC20BAD2C231D1617526D545F700E836F5A905 ] AVGIDSEH        C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
22:08:25.0797 0x0138  AVGIDSEH - ok
22:08:25.0819 0x0138  [ 91D9ABE7E88EAC7C167CBA4ED4D983BF, A588E1FCD491D0DBEB2008C3D773BC45F523EB5A7D0CA39169D969D5D1119932 ] AVGIDSFilter    C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
22:08:25.0822 0x0138  AVGIDSFilter - ok
22:08:25.0858 0x0138  [ 3FC2714E185C04308215D46730D41A94, ED643E6BD04D5356DE8DABB6161399F11B43F0393DC393DEFB42EF1984FB6E04 ] AVGIDSShim      C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
22:08:25.0861 0x0138  AVGIDSShim - ok
22:08:25.0928 0x0138  [ BF8118CD5E2255387B715B534D64ACD1, E8ACF2EBB1E85D2DA5A2EB00796AE93D511E825BA5DE205D0B412D59328124A4 ] Avgldx86        C:\Windows\system32\DRIVERS\avgldx86.sys
22:08:25.0942 0x0138  Avgldx86 - ok
22:08:25.0962 0x0138  [ 1C77EF67F196466ADC9924CB288AFE87, 3C2C8F1096FFD6A7301067CC5A13B763AE8EC7CB3CB7F76B2080665F186DE576 ] Avgmfx86        C:\Windows\system32\DRIVERS\avgmfx86.sys
22:08:25.0966 0x0138  Avgmfx86 - ok
22:08:26.0008 0x0138  [ F2038ED7284B79DCEF581468121192A9, 01205D3BDB67107E6ED3A06CFE006C0039723D6D6CF215AFBFB9D64E257552AA ] Avgrkx86        C:\Windows\system32\DRIVERS\avgrkx86.sys
22:08:26.0011 0x0138  Avgrkx86 - ok
22:08:26.0083 0x0138  [ A6D562B612216D8D02A35EBEB92366BD, CC9FB684EE6385D685F842D1ABEC41C03B59F483DA14A2F69FB83B44A97290B0 ] Avgtdix         C:\Windows\system32\DRIVERS\avgtdix.sys
22:08:26.0100 0x0138  Avgtdix - ok
22:08:26.0160 0x0138  [ 57D83B82117C2DDB9D7E9AEA691CEDFC, 0F1719CFE7ADE7FF34B403065A4DF1C8E12063B328CF1723C02A370D673165C2 ] avgtp           C:\Windows\system32\drivers\avgtpx86.sys
22:08:26.0163 0x0138  avgtp - ok
22:08:26.0174 0x0138  avgwd - ok
22:08:26.0212 0x0138  [ 7D0F2BFA273831124FA08526AF48AF18, 7229D1BBD58027771378FC1893C9C27D42D3246B4B46B9FBE056E14B8B752D92 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
22:08:26.0224 0x0138  b57nd60x - ok
22:08:26.0261 0x0138  [ 9347A2DDEE501C242A8E21990279D688, B73178D522E70E90ADDC5B0D0B093F51DD0DFD50C5E5CEA29C225AB3D6EABB1D ] BDASwCap        C:\Windows\system32\drivers\AVerA310Cap.sys
22:08:26.0265 0x0138  BDASwCap - ok
22:08:26.0301 0x0138  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:08:26.0303 0x0138  Beep - ok
22:08:26.0375 0x0138  [ D3E6D78285529962349A7F1617035938, B23C3AC2644FA6A8BDC17E034FB5B5657C3A5DB128A66E5EE21DE05BF879390D ] BFE             C:\Windows\System32\bfe.dll
22:08:26.0395 0x0138  BFE - ok
22:08:26.0496 0x0138  [ 02ED7B4DBC2A3232A389106DA7515C3D, 0DFCD03CB967D1A980D56124603F353DC1D800E3A5E436EEE95C65FDE17398CF ] BITS            C:\Windows\System32\qmgr.dll
22:08:26.0543 0x0138  BITS - ok
22:08:26.0574 0x0138  [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
22:08:26.0578 0x0138  blbdrive - ok
22:08:26.0662 0x0138  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:08:26.0684 0x0138  Bonjour Service - ok
22:08:26.0727 0x0138  [ 8153396D5551276227FA146900F734E6, 0AE06774162D542D9E95246B7112A40D7C463EF331B4F56C9CF8AD99A0341E38 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:08:26.0732 0x0138  bowser - ok
22:08:26.0767 0x0138  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
22:08:26.0769 0x0138  BrFiltLo - ok
22:08:26.0798 0x0138  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
22:08:26.0800 0x0138  BrFiltUp - ok
22:08:26.0837 0x0138  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll
22:08:26.0844 0x0138  Browser - ok
22:08:26.0874 0x0138  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
22:08:26.0880 0x0138  Brserid - ok
22:08:26.0904 0x0138  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
22:08:26.0909 0x0138  BrSerWdm - ok
22:08:26.0933 0x0138  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
22:08:26.0935 0x0138  BrUsbMdm - ok
22:08:26.0963 0x0138  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
22:08:26.0965 0x0138  BrUsbSer - ok
22:08:26.0985 0x0138  [ DA7B195275BDA7F8FCF79B40E0F45DDE, 1346E9221FD6A1DA27F0BC4F3CF5AFA60B3419931B32468107028BCD4232A708 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
22:08:26.0989 0x0138  BthEnum - ok
22:08:27.0029 0x0138  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
22:08:27.0032 0x0138  BTHMODEM - ok
22:08:27.0054 0x0138  [ 5904EFA25F829BF84EA6FB045134A1D8, 66E4160CC404744576BA6E9DD606B533F42B3D4A3E2FDD457DAA016CC72A81CC ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
22:08:27.0060 0x0138  BthPan - ok
22:08:27.0095 0x0138  [ 671134053D59E23704F08DB19F11E10B, 7AFE5B6646B9A38EFAF127B7C820463CC06C4B8B82BC76259DA346B51377EA0B ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
22:08:27.0108 0x0138  BTHPORT - ok
22:08:27.0136 0x0138  [ 58EE7F5E68310BC8D4E7CEBD8358C12E, 2EBA4A861E2C2AA56016DD8F5AE7C969BF515EF1B3E153F97F1E48E0983F17BB ] BthServ         C:\Windows\System32\bthserv.dll
22:08:27.0140 0x0138  BthServ - ok
22:08:27.0162 0x0138  [ 93D7007E2C660DFCCA6AE72622740B14, 3483FD5060CE7FB9208A8016D5D79EC88DA63BF6C656EFC476AAA3D912DB451F ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
22:08:27.0165 0x0138  BTHUSB - ok
22:08:27.0223 0x0138  [ 09E6AFFAE6C0E9158BF05C7D08D0107A, 05524526EBD5F42F58404A698F397CD7CBC2CBB5F7211AB6B5C2691A87983A24 ] BUNAgentSvc     C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
22:08:27.0225 0x0138  BUNAgentSvc - ok
22:08:27.0330 0x0138  catchme - ok
22:08:27.0365 0x0138  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:08:27.0371 0x0138  cdfs - ok
22:08:27.0402 0x0138  [ 1EC25CEA0DE6AC4718BF89F9E1778B57, 019E12C30E7A395259F3906EC55AFF86949CFDBB443060208C8B91B9EB7F9FB7 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:08:27.0407 0x0138  cdrom - ok
22:08:27.0450 0x0138  [ 87C2D0377B23E2D8A41093C2F5FB1A5B, 94725CD764318461A1163FCD1B507B92490C5F52CB5089E6C7245FD91F2D1D05 ] CertPropSvc     C:\Windows\System32\certprop.dll
22:08:27.0454 0x0138  CertPropSvc - ok
22:08:27.0480 0x0138  [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
22:08:27.0483 0x0138  circlass - ok
22:08:27.0538 0x0138  [ 465745561C832B29F7C48B488AAB3842, B631C61FBF6E2641FED7C4CFC1B179D19143B04CF76DCF48A9C7582E756FFD8C ] CLFS            C:\Windows\system32\CLFS.sys
22:08:27.0553 0x0138  CLFS - ok
22:08:27.0666 0x0138  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:08:27.0673 0x0138  clr_optimization_v2.0.50727_32 - ok
22:08:27.0752 0x0138  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:08:27.0761 0x0138  clr_optimization_v4.0.30319_32 - ok
22:08:27.0805 0x0138  [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
22:08:27.0808 0x0138  CmBatt - ok
22:08:27.0828 0x0138  [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:08:27.0830 0x0138  cmdide - ok
22:08:27.0851 0x0138  [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
22:08:27.0854 0x0138  Compbatt - ok
22:08:27.0872 0x0138  COMSysApp - ok
22:08:27.0890 0x0138  [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
22:08:27.0894 0x0138  crcdisk - ok
22:08:27.0914 0x0138  [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
22:08:27.0918 0x0138  Crusoe - ok
22:08:27.0983 0x0138  [ 6DE363F9F99334514C46AEC02D3E3678, FF403B8A4D7D6B3D2F23E2711D1353CFB0C748AD7D7927CF5DFBD99CD169D826 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:08:27.0992 0x0138  CryptSvc - ok
22:08:28.0083 0x0138  [ 301AE00E12408650BADDC04DBC832830, 405A392B83942A17F1EB78943C3A3046B5451EA8CB0082A53571CCC0609275A2 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:08:28.0119 0x0138  DcomLaunch - ok
22:08:28.0148 0x0138  [ A3E9FA213F443AC77C7746119D13FEEC, 479B349BFC811D20572C09C4A2228C3880F8F3B4B4BA5F4E56600C7EF583DE7B ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:08:28.0153 0x0138  DfsC - ok
22:08:28.0348 0x0138  [ FA3463F25F9CC9C3BCF1E7912FEFF099, 8CFA0F1DFD975ED877B303EB55BE52B0B1EC2B20FEC36820121A0F5E046E0032 ] DFSR            C:\Windows\system32\DFSR.exe
22:08:28.0463 0x0138  DFSR - ok
22:08:28.0555 0x0138  [ 43A988A9C10333476CB5FB667CBD629D, 7E0DD57E75A50E3671673876631A1E66A4AC16810418BEC1AC2143DFD331F389 ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
22:08:28.0568 0x0138  Dhcp - ok
22:08:28.0603 0x0138  [ 64109E623ABD6955C8FB110B592E68B7, 964F456EF44F9AE836B8CAB438FEB18303B2548A2B7D85FEBD72F4F80127B0EE ] disk            C:\Windows\system32\drivers\disk.sys
22:08:28.0607 0x0138  disk - ok
22:08:28.0637 0x0138  [ 73BAF270D24FE726B9CD7F80BB17A23D, 12ADFB26C16A7D3F623C1A6B72D4C6AB9163EBC93CF13CB2AC6897FB95E96105 ] DKbFltr         C:\Windows\system32\DRIVERS\DKbFltr.sys
22:08:28.0640 0x0138  DKbFltr - ok
22:08:28.0678 0x0138  [ 4805D9A6D281C7A7DEFD9094DEC6AF7D, 473A5F1C4E795BD6B6DDB32ECB04BA8BF238AA5FBC67FC5D8D8F749464ED0AE9 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:08:28.0685 0x0138  Dnscache - ok
22:08:28.0735 0x0138  [ 5AF620A08C614E24206B79E8153CF1A8, 5BB32FF3C9A5C51C2773F0ECF9647749667F4678EF3C75FEB4420EC6C805913E ] dot3svc         C:\Windows\System32\dot3svc.dll
22:08:28.0747 0x0138  dot3svc - ok
22:08:28.0800 0x0138  [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
22:08:28.0809 0x0138  Dot4 - ok
22:08:28.0837 0x0138  [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
22:08:28.0839 0x0138  Dot4Print - ok
22:08:28.0872 0x0138  [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
22:08:28.0875 0x0138  dot4usb - ok
22:08:28.0911 0x0138  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll
22:08:28.0921 0x0138  DPS - ok
22:08:28.0952 0x0138  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:08:28.0954 0x0138  drmkaud - ok
22:08:29.0006 0x0138  [ 6C5ABE3C6D8ADC67A988A0C3F68FAC24, DD9AD0A164E09EFE0BEEBA8162CC0EAD3930BE08B226CA4412C88123AAB095AE ] DwProt          C:\Windows\system32\drivers\dwprot.sys
22:08:29.0015 0x0138  Suspicious file ( Forged ): C:\Windows\system32\drivers\dwprot.sys. Real md5: 6C5ABE3C6D8ADC67A988A0C3F68FAC24, sha256: DD9AD0A164E09EFE0BEEBA8162CC0EAD3930BE08B226CA4412C88123AAB095AE, fake md5: 0FFBFB144C6E09BB6D354ACFEE97785D, fake sha256: 8E539C0DFC63104393A9CFFFE97B736304D7BCD3844AF9D137D7308D47EDE328
22:08:29.0016 0x0138  DwProt - detected ForgedFile.Multi.Generic ( 1 )
22:08:29.0604 0x0138  Detect skipped due to KSN trusted
22:08:29.0604 0x0138  DwProt - ok
22:08:29.0720 0x0138  [ 85F33880B8CFB554BD3D9CCDB486845A, 2D120F94800AEB886D4BA2A45FE2454EBB1FAC3E57BDE552737EBDE7EF8899CF ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:08:29.0754 0x0138  DXGKrnl - ok
22:08:29.0785 0x0138  [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
22:08:29.0793 0x0138  E1G60 - ok
22:08:29.0824 0x0138  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll
22:08:29.0830 0x0138  EapHost - ok
22:08:29.0859 0x0138  [ DD2CD259D83D8B72C02C5F2331FF9D68, 07E758A414442FEAFE55FB28842D960971553DB16C31D5791FDD0843CBF5E2B4 ] Ecache          C:\Windows\system32\drivers\ecache.sys
22:08:29.0868 0x0138  Ecache - ok
22:08:29.0984 0x0138  [ B7DC2580425225C320CEDA78DE55A3D0, 93D05D3743416442ED1378FE8A6F107F74B963781A61A36DF072E05228B2F030 ] eDataSecurity Service C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
22:08:30.0013 0x0138  eDataSecurity Service - ok
22:08:30.0063 0x0138  [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
22:08:30.0083 0x0138  elxstor - ok
22:08:30.0152 0x0138  [ 70B1A86DF0C8EAD17D2BC332EDAE2C7C, 80385AC32CE8388F06341AA4A880F68E0EB5815CCCA5CF8E799846F472DCE360 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
22:08:30.0185 0x0138  EMDMgmt - ok
22:08:30.0230 0x0138  [ 3DB974F3935483555D7148663F726C61, C288CFC04213B0340ABEC752C0A7B308B29122B5F51E68387BA1D9E9D7166FDD ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:08:30.0232 0x0138  ErrDev - ok
22:08:30.0295 0x0138  [ A51FD9DF23720485991F56741BBEFCFB, 8998926A056074963898FE5A9148FDCDA9C66607A7F534D69952E4CDDE10EDC5 ] ETService       C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
22:08:30.0298 0x0138  ETService - ok
22:08:30.0361 0x0138  [ 3CB3343D720168B575133A0A20DC2465, B356938AC3D9CE833A2C0EBFAA548CDB6B68BEDDB2CCA80222E508BD978FB26B ] EventSystem     C:\Windows\system32\es.dll
22:08:30.0378 0x0138  EventSystem - ok
22:08:30.0412 0x0138  [ 0D858EB20589A34EFB25695ACAA6AA2D, E5C891D8971173D78194176CB38C0D62C1245C71E04DD94EC742A69C2925F843 ] exfat           C:\Windows\system32\drivers\exfat.sys
22:08:30.0421 0x0138  exfat - ok
22:08:30.0457 0x0138  [ 3C489390C2E2064563727752AF8EAB9E, BF528F6D4718AC160C103FD89496C6B7BABED7A17A6BD4222D684AF22FE21A49 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:08:30.0466 0x0138  fastfat - ok
22:08:30.0490 0x0138  [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
22:08:30.0492 0x0138  fdc - ok
22:08:30.0531 0x0138  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll
22:08:30.0534 0x0138  fdPHost - ok
22:08:30.0551 0x0138  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:08:30.0556 0x0138  FDResPub - ok
22:08:30.0589 0x0138  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:08:30.0593 0x0138  FileInfo - ok
22:08:30.0614 0x0138  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:08:30.0617 0x0138  Filetrace - ok
22:08:30.0643 0x0138  [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
22:08:30.0646 0x0138  flpydisk - ok
22:08:30.0672 0x0138  [ 05EA53AFE985443011E36DAB07343B46, E033C1C218E9B0D22B63E1B927D7BBE331B59814F26952B68BEDC914EF881E55 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:08:30.0685 0x0138  FltMgr - ok
22:08:30.0736 0x0138  [ C9BE08664611DDAF98E2331E9288B00B, C645DDAB5FD588486553DF2DD5750AF5A967FEE988F4EB29E05362E3362DF4A2 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:08:30.0741 0x0138  FontCache3.0.0.0 - ok
22:08:30.0760 0x0138  [ 65EA8B77B5851854F0C55C43FA51A198, 150BE6C195094DBEAC4FD73CC1C31FF59B77A73944574E244D280EE2DE69DC2F ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:08:30.0763 0x0138  Fs_Rec - ok
22:08:30.0794 0x0138  [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
22:08:30.0799 0x0138  gagp30kx - ok
22:08:30.0844 0x0138  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\Windows\system32\Drivers\GEARAspiWDM.sys
22:08:30.0848 0x0138  GEARAspiWDM - ok
22:08:30.0925 0x0138  [ D9F1113D9401185245573350712F92FC, 7D8E96B61D7FC1FCC7D70A19DB725BCEA78FE94F3D7AFBB1202771D530A628B7 ] gpsvc           C:\Windows\System32\gpsvc.dll
22:08:30.0959 0x0138  gpsvc - ok
22:08:31.0053 0x0138  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
22:08:31.0061 0x0138  gupdate - ok
22:08:31.0086 0x0138  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
22:08:31.0095 0x0138  gupdatem - ok
22:08:31.0181 0x0138  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
22:08:31.0194 0x0138  gusvc - ok
22:08:31.0258 0x0138  [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:08:31.0272 0x0138  HdAudAddService - ok
22:08:31.0303 0x0138  [ C87B1EE051C0464491C1A7B03FA0BC99, 0EF498A7D37A454E8B6DB1BE3C0EADA648B51B34A2BB553171E766463E54EE90 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
22:08:31.0308 0x0138  HDAudBus - ok
22:08:31.0327 0x0138  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
22:08:31.0330 0x0138  HidBth - ok
22:08:31.0352 0x0138  [ D8DF3722D5E961BAA1292AA2F12827E2, 799E194B36BA08D59500A2C45ADD2FB69C7698F3F7F837CC7CFB266D57830BD6 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
22:08:31.0355 0x0138  HidIr - ok
22:08:31.0385 0x0138  [ 8FA640195279ACE21BEA91396A0054FC, 20541E5FA29B3FBD8824F3DF93C7D63AFEE56948F82FFDE20E9E87F5C0A3A789 ] hidserv         C:\Windows\System32\hidserv.dll
22:08:31.0389 0x0138  hidserv - ok
22:08:31.0406 0x0138  [ 854CA287AB7FAF949617A788306D967E, 8C0BC3727C07634FAD35C7184C72B6D48D428F35E612257A833F00CACF4AAB5D ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:08:31.0409 0x0138  HidUsb - ok
22:08:31.0446 0x0138  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:08:31.0454 0x0138  hkmsvc - ok
22:08:31.0476 0x0138  [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
22:08:31.0480 0x0138  HpCISSs - ok
22:08:31.0590 0x0138  [ F50F7984FDD151EDD8A70A8DBD9E2A44, 45E7ECA40298B233D124993D6C9D4FBBF05E9A843F4DE089317342B3D8A83696 ] hpqcxs08        C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
22:08:31.0604 0x0138  hpqcxs08 - ok
22:08:31.0664 0x0138  [ DF446BA625CC441617843E87798CE048, B45C11EEA7EA792DE82E9BB283B9DCF30F891AAB8366075856BD84D10BCBCCD3 ] hpqddsvc        C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
22:08:31.0673 0x0138  hpqddsvc - ok
22:08:31.0737 0x0138  [ 33B02459E86D0A2B86A6B9FE19139390, 71E3B9B4A3848C1AF7A19F1B91A79F97E914205C777FB966C51AA7DF5EE984CF ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:08:31.0760 0x0138  HTTP - ok
22:08:31.0784 0x0138  [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
22:08:31.0787 0x0138  i2omp - ok
22:08:31.0832 0x0138  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
22:08:31.0836 0x0138  i8042prt - ok
22:08:31.0921 0x0138  [ 3E42C4691AAD4B1E8D0466F9CBF05CBE, 8F53A86B97A25CE92D6A3EB9720F86308252C5B7A4BC62218FF8788229B132B8 ] IAANTMON        C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
22:08:31.0942 0x0138  IAANTMON - ok
22:08:32.0016 0x0138  [ 707C1692214B1C290271067197F075F6, 7D0DB754604AABC4AA09AB8BA94326B1A1C2A76F3C2C2C7D6FA14F964BE68A51 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
22:08:32.0034 0x0138  iaStor - ok
22:08:32.0071 0x0138  [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
22:08:32.0084 0x0138  iaStorV - ok
22:08:32.0182 0x0138  [ 7B630ACAED64FEF0C3E1CF255CB56686, 9DCC6953BC6EF77C3916F8AA226CEC0662513A23AB60E9F714D53746E82FB372 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:08:32.0231 0x0138  idsvc - ok
22:08:32.0436 0x0138  [ 0627FC0C422CD6E0F23E1B0D1D9F0899, E43C9C923C6D48045D79E993C9F2850700415C5631ABC0E9A48460D15D9BB65D ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
22:08:32.0565 0x0138  igfx - ok
22:08:32.0641 0x0138  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
22:08:32.0644 0x0138  iirsp - ok
22:08:32.0718 0x0138  [ 68E8C415E102E5D79FD7E4A765B8CBA4, A5EA0DC9EEEED79D5D08D66D0E7B66F07889774F8AB667AD6839EE23A44E6D16 ] IKEEXT          C:\Windows\System32\ikeext.dll
22:08:32.0746 0x0138  IKEEXT - ok
22:08:32.0793 0x0138  [ C6E5276C00EBDEB096BB5EF4B797D1B6, 2620D2F7B5242E9DD0217FB4E0CBACF1DB8AB1B92187AD2847904948E1ABFEC1 ] int15           C:\Windows\system32\drivers\int15.sys
22:08:32.0795 0x0138  int15 - ok
22:08:33.0000 0x0138  [ 3CFA12FEFEA751DAE7B8133A6EF3C0D9, CF2EC0664B0D9BCDE1D0F128D8A6026C950CDBC24E4BA4C07BB9A43AB83B7BF7 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
22:08:33.0115 0x0138  IntcAzAudAddService - ok
22:08:33.0231 0x0138  [ C7E7E43CBD34D3B0A0156B51B917DFCC, 8F40D053D1AF89E0739D798D41F92801F95AB55CA0109386C426AB57784DD540 ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
22:08:33.0239 0x0138  IntcHdmiAddService - ok
22:08:33.0267 0x0138  [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide        C:\Windows\system32\drivers\intelide.sys
22:08:33.0269 0x0138  intelide - ok
22:08:33.0295 0x0138  [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
22:08:33.0299 0x0138  intelppm - ok
22:08:33.0339 0x0138  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:08:33.0347 0x0138  IPBusEnum - ok
22:08:33.0389 0x0138  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:08:33.0393 0x0138  IpFilterDriver - ok
22:08:33.0439 0x0138  [ 6A35D233693EDC29A12742049BC5E37F, 77275407105492A11CDC232E72C8183F0DFD28F8B9AD2A24AAABDB246F14D38F ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:08:33.0452 0x0138  iphlpsvc - ok
22:08:33.0464 0x0138  IpInIp - ok
22:08:33.0501 0x0138  [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
22:08:33.0506 0x0138  IPMIDRV - ok
22:08:33.0558 0x0138  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
22:08:33.0564 0x0138  IPNAT - ok
22:08:33.0668 0x0138  [ 061614179585BE398A73B9B3AF111310, BE715790531CBF3E038C6C2083A0802FA492D1DCAB3ACFE035DF72E3D6A4B83B ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
22:08:33.0700 0x0138  iPod Service - ok
22:08:33.0720 0x0138  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:08:33.0722 0x0138  IRENUM - ok
22:08:33.0757 0x0138  [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:08:33.0761 0x0138  isapnp - ok
22:08:33.0794 0x0138  [ F247EEC28317F6C739C16DE420097301, 0F4BE16BB0630DFE2256F70C94D4363B7B71F02F7F6597E7CAE28A3EFEA7BCAD ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
22:08:33.0805 0x0138  iScsiPrt - ok
22:08:33.0826 0x0138  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
22:08:33.0830 0x0138  iteatapi - ok
22:08:33.0861 0x0138  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
22:08:33.0865 0x0138  iteraid - ok
22:08:33.0893 0x0138  [ 858C550EBBD243826A2193262C1B54A3, BAAC7BAAA678FC20C34E638D03BDA3C802FB1720390A492E346A0CD5CAA7CC70 ] JMCR            C:\Windows\system32\DRIVERS\jmcr.sys
22:08:33.0899 0x0138  JMCR - ok
22:08:33.0929 0x0138  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:08:33.0933 0x0138  kbdclass - ok
22:08:33.0950 0x0138  [ 18247836959BA67E3511B62846B9C2E0, 9623FF990A1C11A707C358CC9FDD4306C2992A8C766A50DAFC9534A283AA011D ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
22:08:33.0952 0x0138  kbdhid - ok
22:08:33.0986 0x0138  [ A911ECAC81F94ADEAFBE8E3F7873EDB0, 5FC9667F306E16722A46FABCA8FB9C8E7AC24768B9D8415B03F45567F90B8438 ] KeyIso          C:\Windows\system32\lsass.exe
22:08:33.0992 0x0138  KeyIso - ok
22:08:34.0056 0x0138  [ 7A0CF7908B6824D6A2A1D313E5AE3DCA, 903CF1169D984BBDAE114827D82D5CCC88C2BC7CAEE6BB3A299E2572B0751BB6 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:08:34.0080 0x0138  KSecDD - ok
22:08:34.0160 0x0138  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:08:34.0183 0x0138  KtmRm - ok
22:08:34.0236 0x0138  [ 1925E63C91CF1610AE41BFD539062079, C25438D19D51B76A8E4C5F3A5D41C76197321166CB37E224217993A4466EBEF9 ] LanmanServer    C:\Windows\System32\srvsvc.dll
22:08:34.0250 0x0138  LanmanServer - ok
22:08:34.0311 0x0138  [ 2AE2E1628C5D3F1C0A46A67C9FA1DF15, 7B1FAC42B9EA73A8C4E812F8F729EB882BDFD04D2E68FE354CFD6B8379A46D14 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:08:34.0327 0x0138  LanmanWorkstation - ok
22:08:34.0393 0x0138  [ 793FF718477345CD5D232C50BED1E452, 1D39CF9F10742C79FF99B9B4E0361EAEA63B4FC545C58B54B55537D18C802941 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
22:08:34.0397 0x0138  LightScribeService - ok
22:08:34.0436 0x0138  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:08:34.0440 0x0138  lltdio - ok
22:08:34.0485 0x0138  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:08:34.0500 0x0138  lltdsvc - ok
22:08:34.0527 0x0138  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:08:34.0533 0x0138  lmhosts - ok
22:08:34.0573 0x0138  [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
22:08:34.0580 0x0138  LSI_FC - ok
22:08:34.0604 0x0138  [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
22:08:34.0611 0x0138  LSI_SAS - ok
22:08:34.0649 0x0138  [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
22:08:34.0656 0x0138  LSI_SCSI - ok
22:08:34.0686 0x0138  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys
22:08:34.0692 0x0138  luafv - ok
22:08:34.0783 0x0138  [ F8B823414A22DBF3BEC10DCAA5F93CD8, 651C7521033439C0AA9006F1AC2CF376B1588CE781BEE4D10B7622FA3D055F6C ] McciCMService   C:\Program Files\Common Files\Motive\McciCMService.exe
22:08:34.0802 0x0138  McciCMService - ok
22:08:34.0841 0x0138  [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas         C:\Windows\system32\drivers\megasas.sys
22:08:34.0845 0x0138  megasas - ok
22:08:34.0893 0x0138  [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
22:08:34.0915 0x0138  MegaSR - ok
22:08:34.0947 0x0138  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll
22:08:34.0954 0x0138  MMCSS - ok
22:08:34.0999 0x0138  MobilityService - ok
22:08:35.0028 0x0138  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys
22:08:35.0031 0x0138  Modem - ok
22:08:35.0065 0x0138  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:08:35.0069 0x0138  monitor - ok
22:08:35.0090 0x0138  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:08:35.0094 0x0138  mouclass - ok
22:08:35.0118 0x0138  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:08:35.0120 0x0138  mouhid - ok
22:08:35.0143 0x0138  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
22:08:35.0148 0x0138  MountMgr - ok
22:08:35.0205 0x0138  [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:08:35.0213 0x0138  MozillaMaintenance - ok
22:08:35.0287 0x0138  [ E77DC03DD3C8E5A388BF9EED2A28F3D1, ED0DAA975D1EC35CE036F02596218E15CC6A054167628D12A0A5AD91B841F422 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
22:08:35.0300 0x0138  MpFilter - ok
22:08:35.0332 0x0138  [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:08:35.0339 0x0138  mpio - ok
22:08:35.0486 0x0138  [ 06D4F934E09C359B0EFBFB3146F1D910, 484F57CD6F8757137F3B3491B8AC8ECF6C6385A666CD1671833DDD9E962AAB4A ] MpKsl54cbec73   C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B16E4262-EE14-492E-A444-D019C5F15F0B}\MpKsl54cbec73.sys
22:08:35.0490 0x0138  MpKsl54cbec73 - ok
22:08:35.0540 0x0138  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:08:35.0545 0x0138  mpsdrv - ok
22:08:35.0610 0x0138  [ D1639BA315B0D79DEC49A4B0E1FB929B, 96420572029217FDD78CD286A022EB5F8BAB76EE30F75E48CD69AEE1A4846B53 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:08:35.0636 0x0138  MpsSvc - ok
22:08:35.0655 0x0138  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
22:08:35.0658 0x0138  Mraid35x - ok
22:08:35.0707 0x0138  [ 9BD4DCB5412921864A7AACDEDFBD1923, 46DEE9B9414D26203B62F0D6CAEBF37A3CEFD118556129547B2C5FC7B6FDBA05 ] MREMP50         C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
22:08:35.0710 0x0138  MREMP50 - ok
22:08:35.0718 0x0138  MREMPR5 - ok
22:08:35.0733 0x0138  MRENDIS5 - ok
22:08:35.0784 0x0138  [ 07C02C892E8E1A72D6BF35004F0E9C5E, 09ECD59AADF08E2AA0C1BAF5D3D7CBB0948153E531E1F82ECACD43F14F88106B ] MRESP50         C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
22:08:35.0787 0x0138  MRESP50 - ok
22:08:35.0826 0x0138  [ AE3DE84536B6799D2267443CEC8EDBB9, 787AF9D5BC6D1A1E4A55A66D62F0DF93F45C2FB7EA5BE0BF63F1270604600B40 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:08:35.0834 0x0138  MRxDAV - ok
22:08:35.0872 0x0138  [ 5734A0F2BE7E495F7D3ED6EFD4B9F5A1, 2C5F0554D5A763D6B3F1402C9BF36C6091CBBDFFD5139AEE85D69D5B210D2047 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:08:35.0879 0x0138  mrxsmb - ok
22:08:35.0939 0x0138  [ 6B5FA5ADFACAC9DBBE0991F4566D7D55, 9BAD029A6AAF4C2292C682B9F07C57051C84F7FA4F3EBEA52C25CAEF1A41121F ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:08:35.0952 0x0138  mrxsmb10 - ok
22:08:35.0975 0x0138  [ 5C80D8159181C7ABF1B14BA703B01E0B, 414085AD3C36B8E95D1D49E2958671332DECE38739544CCB70FAB30C408E89A2 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:08:35.0981 0x0138  mrxsmb20 - ok
22:08:36.0006 0x0138  [ 28023E86F17001F7CD9B15A5BC9AE07D, FC7EAA592C5F796E3BCD7F7EF261709CD899B33FC8486E594A480F143D0D6320 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:08:36.0010 0x0138  msahci - ok
22:08:36.0040 0x0138  [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:08:36.0047 0x0138  msdsm - ok
22:08:36.0078 0x0138  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe
22:08:36.0089 0x0138  MSDTC - ok
22:08:36.0127 0x0138  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:08:36.0131 0x0138  Msfs - ok
22:08:36.0152 0x0138  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:08:36.0155 0x0138  msisadrv - ok
22:08:36.0199 0x0138  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:08:36.0208 0x0138  MSiSCSI - ok
22:08:36.0220 0x0138  msiserver - ok
22:08:36.0241 0x0138  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:08:36.0244 0x0138  MSKSSRV - ok
22:08:36.0322 0x0138  [ B0F49DA36F30922F5DDC3B623B778FCE, EE025AEFA4A2095AFEABFB3A49639DA77D78068A3F5EEDA6C15D34853AFD5609 ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
22:08:36.0324 0x0138  MsMpSvc - ok
22:08:36.0355 0x0138  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:08:36.0357 0x0138  MSPCLOCK - ok
22:08:36.0378 0x0138  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:08:36.0380 0x0138  MSPQM - ok
22:08:36.0412 0x0138  [ B5614AECB05A9340AA0FB55BF561CC63, 8D1B5E958A0F721F5A81AD649CC5759B4DECB771FC4654F4EDEB29AC7DF1BD40 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:08:36.0423 0x0138  MsRPC - ok
22:08:36.0457 0x0138  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
22:08:36.0460 0x0138  mssmbios - ok
22:08:36.0475 0x0138  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:08:36.0477 0x0138  MSTEE - ok
22:08:36.0498 0x0138  [ 6DFD1D322DE55B0B7DB7D21B90BEC49C, 95149C41CC9F269C299541A97A9E2E2CCAEE34FE2362EEECD1F813EBC6D4CDC5 ] Mup             C:\Windows\system32\Drivers\mup.sys
22:08:36.0503 0x0138  Mup - ok
22:08:36.0570 0x0138  [ C43B25863FBD65B6D2A142AF3AE320CA, 88E147751CBECFF31CD65954BC978B86CEA74485EB60DBB25AABAB4601797A4E ] napagent        C:\Windows\system32\qagentRT.dll
22:08:36.0592 0x0138  napagent - ok
22:08:36.0643 0x0138  [ 3C21CE48FF529BB73DADB98770B54025, B8541E3D2B120B97947AE51B28A99E2623ACAD3790BC282B1251ACBEC7684F8D ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:08:36.0653 0x0138  NativeWifiP - ok
22:08:36.0725 0x0138  [ 9BDC71790FA08F0A0B5F10462B1BD0B1, 67605C7A0CB4D9F2C4D0A876651DEB92270B54D0231C35A994F9A739C6075BC0 ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:08:36.0756 0x0138  NDIS - ok
22:08:36.0777 0x0138  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:08:36.0780 0x0138  NdisTapi - ok
22:08:36.0809 0x0138  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:08:36.0812 0x0138  Ndisuio - ok
22:08:36.0849 0x0138  [ 3D14C3B3496F88890D431E8AA022A411, 9B31451756A35314586F93996172E1039B2CD21132CCBE772B3E61A8D9454A30 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:08:36.0857 0x0138  NdisWan - ok
22:08:36.0889 0x0138  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:08:36.0893 0x0138  NDProxy - ok
22:08:36.0932 0x0138  [ 51C6D8BFBD4EA5B62A1BA7F4469250D3, 29ACA9D8A5426333F75858D9D3960A4DCDDA4ACC986B3E9E37D255E4FAECDB7C ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
22:08:36.0938 0x0138  Net Driver HPZ12 - ok
22:08:36.0964 0x0138  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:08:36.0968 0x0138  NetBIOS - ok
22:08:37.0028 0x0138  [ 7C5FEE5B1C5728507CD96FB4A13E7A02, EDBA08442AD6AF20463A0610FF24D5929574E5EC012495A2C219F6BA84C97F57 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
22:08:37.0040 0x0138  netbt - ok
22:08:37.0066 0x0138  [ A911ECAC81F94ADEAFBE8E3F7873EDB0, 5FC9667F306E16722A46FABCA8FB9C8E7AC24768B9D8415B03F45567F90B8438 ] Netlogon        C:\Windows\system32\lsass.exe
22:08:37.0071 0x0138  Netlogon - ok
22:08:37.0113 0x0138  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll
22:08:37.0133 0x0138  Netman - ok
22:08:37.0174 0x0138  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll
22:08:37.0191 0x0138  netprofm - ok
22:08:37.0232 0x0138  [ 0AD5876EF4E9EB77C8F93EB5B2FFF386, 2F23B0979CF2E8DB013D8E58501ACC9265A860FD759E8B741F8FA64F7C2F7756 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:08:37.0241 0x0138  NetTcpPortSharing - ok
22:08:37.0539 0x0138  [ E559EA9138C77B5D1FDA8C558764A25F, F89DA7D8289B65DCD9ADCAC576C36AD62BE694F85E289A3CE59035688A3ECDF3 ] NETw5v32        C:\Windows\system32\DRIVERS\NETw5v32.sys
22:08:37.0743 0x0138  NETw5v32 - ok
22:08:37.0816 0x0138  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
22:08:37.0821 0x0138  nfrd960 - ok
22:08:37.0897 0x0138  [ 32FF06EC6D946EF791D98D6C838A3090, 319BDD491CB22D0CCCCE76A2854CF469D7AF046289F9C56CD03AE3D3CBC0275E ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
22:08:37.0904 0x0138  NisDrv - ok
22:08:37.0995 0x0138  [ 42D33042371BFB1A7D40834590CAFD30, 53DA3618EC10293B2DF686E291A4EF6ACBBD41D116EC762D54106D201A784E87 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
22:08:38.0011 0x0138  NisSrv - ok
22:08:38.0051 0x0138  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:08:38.0065 0x0138  NlaSvc - ok
22:08:38.0099 0x0138  [ ECB5003F484F9ED6C608D6D6C7886CBB, 45496B84B2FD156499E9F07FC82BC6F032B8F4D9DC194098CF9F5474D5642F9E ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:08:38.0102 0x0138  Npfs - ok
22:08:38.0136 0x0138  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll
22:08:38.0143 0x0138  nsi - ok
22:08:38.0156 0x0138  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:08:38.0159 0x0138  nsiproxy - ok
22:08:38.0268 0x0138  [ B4EFFE29EB4F15538FD8A9681108492D, 12AF3C19DD2DE7D92EE4C03AD07BAFD77EB8BFF2333E6FBD9CAAA0F654A35F46 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:08:38.0329 0x0138  Ntfs - ok
22:08:38.0451 0x0138  [ CB76F68BA0D57C5D25B538981B1C611C, D078ADEFCF1559EA86AFBD3F6766065EE12B85CF44736A87D4140FB0C480215E ] NTIBackupSvc    C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
22:08:38.0455 0x0138  NTIBackupSvc - ok
22:08:38.0480 0x0138  [ 2757D2BA59AEE155209E24942AB127C9, 60C8571D548901A68591F1C7C548B40FA1086D21D23B8CB1083A8AE50760FE87 ] NTIDrvr         C:\Windows\system32\DRIVERS\NTIDrvr.sys
22:08:38.0483 0x0138  NTIDrvr - ok
22:08:38.0539 0x0138  [ DF1C10A75DF7E50195FC417F88A33227, 1551A6243236FD46F34C6F2443A3CC78D5424D9BCECB8576227A9E0AC91EC804 ] NTISchedulerSvc C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
22:08:38.0549 0x0138  NTISchedulerSvc - ok
22:08:38.0576 0x0138  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
22:08:38.0579 0x0138  ntrigdigi - ok
22:08:38.0597 0x0138  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys
22:08:38.0599 0x0138  Null - ok
22:08:38.0634 0x0138  [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:08:38.0642 0x0138  nvraid - ok
22:08:38.0660 0x0138  [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:08:38.0664 0x0138  nvstor - ok
22:08:38.0695 0x0138  [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:08:38.0703 0x0138  nv_agp - ok
22:08:38.0714 0x0138  NwlnkFlt - ok
22:08:38.0731 0x0138  NwlnkFwd - ok
22:08:38.0842 0x0138  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:08:38.0867 0x0138  odserv - ok
22:08:38.0907 0x0138  [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:08:38.0913 0x0138  ohci1394 - ok
22:08:38.0955 0x0138  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:08:38.0964 0x0138  ose - ok
22:08:39.0040 0x0138  [ 5DE1A3972FD3112C75EB17BDCF454169, A3187A9ED867B3B1225A8C3CFB048360C1B92DA823C1B6FF5EF2C17F6BFB6602 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
22:08:39.0083 0x0138  p2pimsvc - ok
22:08:39.0152 0x0138  [ 5DE1A3972FD3112C75EB17BDCF454169, A3187A9ED867B3B1225A8C3CFB048360C1B92DA823C1B6FF5EF2C17F6BFB6602 ] p2psvc          C:\Windows\system32\p2psvc.dll
22:08:39.0193 0x0138  p2psvc - ok
22:08:39.0226 0x0138  [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport         C:\Windows\system32\drivers\parport.sys
22:08:39.0231 0x0138  Parport - ok
22:08:39.0263 0x0138  [ 3B38467E7C3DAED009DFE359E17F139F, 419BD726E511B3FEFBD8204C9E2BF6131EC05C71D15406070F834688EAFB694F ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:08:39.0268 0x0138  partmgr - ok
22:08:39.0296 0x0138  [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
22:08:39.0298 0x0138  Parvdm - ok
22:08:39.0330 0x0138  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:08:39.0338 0x0138  PcaSvc - ok
22:08:39.0370 0x0138  [ 01B94418DEB235DFF777CC80076354B4, 091C4D5954C5CA1F783748C4D7287DD160C5F3357F2CC448DC5C2935B79AC1E9 ] pci             C:\Windows\system32\drivers\pci.sys
22:08:39.0380 0x0138  pci - ok
22:08:39.0403 0x0138  [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide          C:\Windows\system32\drivers\pciide.sys
22:08:39.0406 0x0138  pciide - ok
22:08:39.0447 0x0138  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
22:08:39.0457 0x0138  pcmcia - ok
22:08:39.0552 0x0138  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:08:39.0603 0x0138  PEAUTH - ok
22:08:39.0786 0x0138  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll
22:08:39.0874 0x0138  pla - ok
22:08:39.0930 0x0138  [ 78F975CB6D18265BE6F492EDB2D7BC7B, 112C6FB0A84E605B1EA87F98C8A4C210C9DB84C811029109444AB174011A158C ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:08:39.0949 0x0138  PlugPlay - ok
22:08:39.0975 0x0138  [ 79834AA2FBF9FE81EEBB229024F6F7FC, 4E243765C11AE9B5D003C3220B8AA0C4671B2627221D2323F80189CA3A307FEF ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
22:08:39.0982 0x0138  Pml Driver HPZ12 - ok
22:08:40.0051 0x0138  [ 5DE1A3972FD3112C75EB17BDCF454169, A3187A9ED867B3B1225A8C3CFB048360C1B92DA823C1B6FF5EF2C17F6BFB6602 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
22:08:40.0093 0x0138  PNRPAutoReg - ok
22:08:40.0162 0x0138  [ 5DE1A3972FD3112C75EB17BDCF454169, A3187A9ED867B3B1225A8C3CFB048360C1B92DA823C1B6FF5EF2C17F6BFB6602 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
22:08:40.0204 0x0138  PNRPsvc - ok
22:08:40.0265 0x0138  [ 47B8F37AA18B74D8C2E1BC1A7A2C8F8A, FAE64867CE80439735F88A9988243667BDE84486B5A768B650E55E1519C85C03 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:08:40.0288 0x0138  PolicyAgent - ok
22:08:40.0338 0x0138  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:08:40.0343 0x0138  PptpMiniport - ok
22:08:40.0381 0x0138  [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor       C:\Windows\system32\drivers\processr.sys
22:08:40.0385 0x0138  Processor - ok
22:08:40.0415 0x0138  [ B627E4FC8585E8843C5905D4D3587A90, 07D7BC1BF8CDD5E34155B260B914D4A9892D3CEAEACDE334D1AF2A608E1FA2D8 ] ProfSvc         C:\Windows\system32\profsvc.dll
22:08:40.0429 0x0138  ProfSvc - ok
22:08:40.0446 0x0138  [ A911ECAC81F94ADEAFBE8E3F7873EDB0, 5FC9667F306E16722A46FABCA8FB9C8E7AC24768B9D8415B03F45567F90B8438 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:08:40.0451 0x0138  ProtectedStorage - ok
22:08:40.0494 0x0138  [ BFEF604508A0ED1EAE2A73E872555FFB, AC817FB5A6126475B4A3CA191AD49651B919FB55429B939D036BC564632E426D ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
22:08:40.0500 0x0138  PSched - ok
22:08:40.0534 0x0138  [ AB94285FF6C6BC5433407D8D182A4BB4, FEEED76008F5FFE3E55791B4EF96FF5D7A81151E406AFF0C353343CABFBA4038 ] PSDFilter       C:\Windows\system32\DRIVERS\psdfilter.sys
22:08:40.0537 0x0138  PSDFilter - ok
22:08:40.0554 0x0138  [ 2AAF9A5D7A63D26BFAEA853C5F2292BC, EF5CB105F487F3AECC83C743D77CE4CCFD8D4DFD342DE696B89250A65C654307 ] PSDNServ        C:\Windows\system32\DRIVERS\PSDNServ.sys
22:08:40.0557 0x0138  PSDNServ - ok
22:08:40.0588 0x0138  [ 0EB8CEC99855BEAE5B0D02C2302619EF, E708FCAEA004D61AA107A392F637CF564F25634BC483134FC79032D0E17F5FEF ] psdvdisk        C:\Windows\system32\DRIVERS\PSDVdisk.sys
22:08:40.0594 0x0138  psdvdisk - ok
22:08:40.0709 0x0138  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300          C:\Windows\system32\drivers\ql2300.sys
22:08:40.0773 0x0138  ql2300 - ok
22:08:40.0804 0x0138  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
22:08:40.0811 0x0138  ql40xx - ok
22:08:40.0851 0x0138  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll
22:08:40.0871 0x0138  QWAVE - ok
22:08:40.0896 0x0138  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:08:40.0899 0x0138  QWAVEdrv - ok
22:08:40.0923 0x0138  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:08:40.0925 0x0138  RasAcd - ok
22:08:40.0957 0x0138  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll
22:08:40.0969 0x0138  RasAuto - ok
22:08:40.0997 0x0138  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:08:41.0003 0x0138  Rasl2tp - ok
22:08:41.0038 0x0138  [ 6E7C284FC5C4EC07AD164D93810385A6, FDBF80C8DE53E56A3515353129C6912E8CAEC2B2DA9AB3A4B027CB73BDF1EC60 ] RasMan          C:\Windows\System32\rasmans.dll
22:08:41.0058 0x0138  RasMan - ok
22:08:41.0077 0x0138  [ 3E9D9B048107B40D87B97DF2E48E0744, F7B8DAE57B9372CEB21A912379FC7670B099A9642CF2E7EA8D335ADBD4CF86A2 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:08:41.0082 0x0138  RasPppoe - ok
22:08:41.0129 0x0138  [ A7D141684E9500AC928A772ED8E6B671, C9329ECA4190EE1F4A6F186D45EA42ACF60C04CDBAFEB19973F3C2DF04A1BCEE ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:08:41.0134 0x0138  RasSstp - ok
22:08:41.0165 0x0138  [ 6E1C5D0457622F9EE35F683110E93D14, 9C6BE049FDA5E6CBA486EE33F01AADDD6085CC5F1F08409EC439ADE9137D3F5F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:08:41.0178 0x0138  rdbss - ok
22:08:41.0191 0x0138  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:08:41.0193 0x0138  RDPCDD - ok
22:08:41.0247 0x0138  [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
22:08:41.0262 0x0138  rdpdr - ok
22:08:41.0275 0x0138  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:08:41.0278 0x0138  RDPENCDD - ok
22:08:41.0320 0x0138  [ E1C18F4097A5ABCEC941DC4B2F99DB7E, B38AC355042F18A41F83BF088FE7EB867184C7FE37820365314419BD3810BB68 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:08:41.0331 0x0138  RDPWD - ok
22:08:41.0375 0x0138  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:08:41.0383 0x0138  RemoteAccess - ok
22:08:41.0411 0x0138  [ CC4E32400F3C7253400CF8F3F3A0B676, D2A874BE3D365260AD7C10C30F2DE22F818CBFC12D65AADE2203B9ED02C9BEB5 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:08:41.0424 0x0138  RemoteRegistry - ok
22:08:41.0468 0x0138  [ 34CC78C06587718C2AD6D3AA83B1F072, 35973BBFF7C6119287B4C3C47A54C626A8623C9F18062597AD7D3ADDF0094ED8 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
22:08:41.0472 0x0138  RFCOMM - ok
22:08:41.0498 0x0138  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
22:08:41.0502 0x0138  RpcLocator - ok
22:08:41.0569 0x0138  [ 301AE00E12408650BADDC04DBC832830, 405A392B83942A17F1EB78943C3A3046B5451EA8CB0082A53571CCC0609275A2 ] RpcSs           C:\Windows\system32\rpcss.dll
22:08:41.0606 0x0138  RpcSs - ok
22:08:41.0628 0x0138  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:08:41.0633 0x0138  rspndr - ok
22:08:41.0649 0x0138  [ A911ECAC81F94ADEAFBE8E3F7873EDB0, 5FC9667F306E16722A46FABCA8FB9C8E7AC24768B9D8415B03F45567F90B8438 ] SamSs           C:\Windows\system32\lsass.exe
22:08:41.0654 0x0138  SamSs - ok
22:08:41.0707 0x0138  [ 39763504067962108505BFF25F024345, 73C9710B61EDC7FBEDE1D7A767AA3D3A169E7AD012494D05CB5EE7E5C5752BB9 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
22:08:41.0709 0x0138  SASDIFSV - ok
22:08:41.0746 0x0138  [ 7CE61C25C159F50F9EAF6D77FC83FA35, 7FC86C2B18E5854421724592E181B2F112B45F80B5A7AE4D544BFCE4A8779C76 ] SASENUM         C:\Program Files\SUPERAntiSpyware\SASENUM.SYS
22:08:41.0749 0x0138  SASENUM - ok
22:08:41.0782 0x0138  [ 77B9FC20084B48408AD3E87570EB4A85, B5BC5FEC1356DECB66A7A671DB67112BDAC8F942BF1C4B986B1805B41EF362B1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys
22:08:41.0787 0x0138  SASKUTIL - ok
22:08:41.0817 0x0138  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:08:41.0823 0x0138  sbp2port - ok
22:08:41.0874 0x0138  [ 11387E32642269C7E62E8B52C060B3C6, 6225FA14CBDC1D30F2E4CDC2059773DA49C67BE2C00A1DE582E8E07717F20425 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:08:41.0886 0x0138  SCardSvr - ok
22:08:41.0983 0x0138  [ 7B587B8A6D4A99F79D2902D0385F29BD, C29F2EE25F7B11E1821832CB7F4F8506C2AB20804D6702CC5EAF5BA1F3FCA972 ] Schedule        C:\Windows\system32\schedsvc.dll
22:08:42.0023 0x0138  Schedule - ok
22:08:42.0058 0x0138  [ 87C2D0377B23E2D8A41093C2F5FB1A5B, 94725CD764318461A1163FCD1B507B92490C5F52CB5089E6C7245FD91F2D1D05 ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:08:42.0062 0x0138  SCPolicySvc - ok
22:08:42.0089 0x0138  [ 126EA89BCC413EE45E3004FB0764888F, 367BE2B56113177AE867E00D019C707C6449E0FC4A642101B11036A0534D6901 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
22:08:42.0096 0x0138  sdbus - ok
22:08:42.0130 0x0138  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:08:42.0142 0x0138  SDRSVC - ok
22:08:42.0163 0x0138  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:08:42.0166 0x0138  secdrv - ok
22:08:42.0190 0x0138  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll
22:08:42.0198 0x0138  seclogon - ok
22:08:42.0213 0x0138  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\system32\sens.dll
22:08:42.0222 0x0138  SENS - ok
22:08:42.0242 0x0138  [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum         C:\Windows\system32\drivers\serenum.sys
22:08:42.0245 0x0138  Serenum - ok
22:08:42.0271 0x0138  [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial          C:\Windows\system32\drivers\serial.sys
22:08:42.0278 0x0138  Serial - ok
22:08:42.0295 0x0138  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
22:08:42.0298 0x0138  sermouse - ok
22:08:42.0349 0x0138  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll
22:08:42.0362 0x0138  SessionEnv - ok
22:08:42.0382 0x0138  [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:08:42.0385 0x0138  sffdisk - ok
22:08:42.0409 0x0138  [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:08:42.0412 0x0138  sffp_mmc - ok
22:08:42.0440 0x0138  [ 3D0EA348784B7AC9EA9BD9F317980979, 2500CE188C9B71C50E966FA575303AEFE50934E376C530AECEC7C7533C15EF08 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:08:42.0443 0x0138  sffp_sd - ok
22:08:42.0462 0x0138  [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
22:08:42.0465 0x0138  sfloppy - ok
22:08:42.0517 0x0138  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:08:42.0536 0x0138  SharedAccess - ok
22:08:42.0605 0x0138  [ 1E3FDB80E40A3CE645F229DFBDFB7694, C58D04CB86E314FC768F2729AC77A7097AFA9C80A35D8AB72690B7005E83D1D6 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:08:42.0626 0x0138  ShellHWDetection - ok
22:08:42.0662 0x0138  [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
22:08:42.0667 0x0138  sisagp - ok
22:08:42.0685 0x0138  [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
22:08:42.0689 0x0138  SiSRaid2 - ok
22:08:42.0722 0x0138  [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
22:08:42.0729 0x0138  SiSRaid4 - ok
22:08:42.0793 0x0138  [ F07AF60B152221472FBDB2FECEC4896D, A18FDCE8462A48429E249C44F0E49F844F2E3A4B5215349DE104F34D935EF983 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
22:08:42.0803 0x0138  SkypeUpdate - ok
22:08:43.0036 0x0138  [ 0BA91E1358AD25236863039BB2609A2E, ECB3C8E3D9C6FA77C0CF5A898FB90BB9474C6EFBE3698B56C93ECE44535EDACE ] slsvc           C:\Windows\system32\SLsvc.exe
22:08:43.0186 0x0138  slsvc - ok
22:08:43.0263 0x0138  [ 7C6DC44CA0BFA6291629AB764200D1D4, 747CDA89C6F94F8314E5E5C425387ABDF9FF8528D82422F8FF66D96307B47B13 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
22:08:43.0273 0x0138  SLUINotify - ok
22:08:43.0292 0x0138  [ 031E6BCD53C9B2B9ACE111EAFEC347B6, B934129BD77CA6A1434C59EA82B5E93FD4089608E0E41242B6E68070A0F33FB8 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:08:43.0297 0x0138  Smb - ok
22:08:43.0338 0x0138  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:08:43.0346 0x0138  SNMPTRAP - ok
22:08:43.0367 0x0138  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:08:43.0371 0x0138  spldr - ok
22:08:43.0418 0x0138  [ 3665F79026A3F91FBCA63F2C65A09B19, A9AAE9B4006B5BC6EF4A7AB4CAB131687E4055E7C56900BBD24F78BA155C458A ] Spooler         C:\Windows\System32\spoolsv.exe
22:08:43.0432 0x0138  Spooler - ok
22:08:43.0486 0x0138  [ 2252AEF839B1093D16761189F45AF885, D7B79E1B9CD73EDEA855DBE120ED470CC0F67D1AA44038E6051A4C5BCE361DE3 ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:08:43.0504 0x0138  srv - ok
22:08:43.0546 0x0138  [ B7FF59408034119476B00A81BB53D5D1, 365D8E719D729D56082F5A6EEB65B31EB5DB5D15A5346D05E7130F41F2F97D46 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:08:43.0556 0x0138  srv2 - ok
22:08:43.0596 0x0138  [ 2ACCC9B12AF02030F531E6CCA6F8B76E, D1BA17C7BFE02347824DEEB1B7362FD251769ECB92B14EB3C600C85AB7E04D1B ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:08:43.0604 0x0138  srvnet - ok
22:08:43.0647 0x0138  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:08:43.0663 0x0138  SSDPSRV - ok
22:08:43.0689 0x0138  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:08:43.0703 0x0138  SstpSvc - ok
22:08:43.0767 0x0138  [ 7DD08A597BC56051F320DA0BAF69E389, ACC59CF80765248705FFCE65DC9B5D072DC054F08C02FB4D16BA0E84D8BED0A4 ] stisvc          C:\Windows\System32\wiaservc.dll
22:08:43.0799 0x0138  stisvc - ok
22:08:43.0833 0x0138  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
22:08:43.0836 0x0138  swenum - ok
22:08:43.0882 0x0138  [ B36C7CDB86F7F7A8E884479219766950, F3EA381A84CD6950BF71A56E9ABAD5010F226C5254CB936699A38BA4C85F7367 ] swprv           C:\Windows\System32\swprv.dll
22:08:43.0906 0x0138  swprv - ok
22:08:43.0932 0x0138  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
22:08:43.0936 0x0138  Symc8xx - ok
22:08:43.0959 0x0138  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
22:08:43.0962 0x0138  Sym_hi - ok
22:08:43.0985 0x0138  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
22:08:43.0989 0x0138  Sym_u3 - ok
22:08:44.0039 0x0138  [ BF7AA84D5AF0FAA0978C840E63B17DBF, ED07F47BCD96B524F3E4EE01DB46D26FDB790167B7BA7C7097D75E10FE1144A4 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
22:08:44.0051 0x0138  SynTP - ok
22:08:44.0120 0x0138  [ 8710A92D0024B03B5FB9540DF1F71F1D, B72A968A7966DC16A1D69A8D53012A4307EEBDC4CB8E1D9C93BFB88D996E490F ] SysMain         C:\Windows\system32\sysmain.dll
22:08:44.0159 0x0138  SysMain - ok
22:08:44.0198 0x0138  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:08:44.0209 0x0138  TabletInputService - ok
22:08:44.0236 0x0138  [ 680916BB09EE0F3A6ACA7C274B0D633F, 008B6EE41FA4D371258F0A656AE96B3E3F487BE5B9E0654B920013B4F1C0DFD8 ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:08:44.0257 0x0138  TapiSrv - ok
22:08:44.0292 0x0138  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll
22:08:44.0302 0x0138  TBS - ok
22:08:44.0404 0x0138  [ 6216A954ED7045B62880A92D6C9B9FC7, 23F702BA152499A8A64B97BAB46B6A638B4479A7E5DF69EAE257D923EA742471 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:08:44.0456 0x0138  Tcpip - ok
22:08:44.0616 0x0138  [ 6216A954ED7045B62880A92D6C9B9FC7, 23F702BA152499A8A64B97BAB46B6A638B4479A7E5DF69EAE257D923EA742471 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
22:08:44.0668 0x0138  Tcpip6 - ok
22:08:44.0727 0x0138  [ D4A2E4A4B011F3A883AF77315A5AE76B, 29E18087236A592638570F76691BC5C64CCA383F43EE22DF122413860E2D882C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:08:44.0730 0x0138  tcpipreg - ok
22:08:44.0749 0x0138  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:08:44.0752 0x0138  TDPIPE - ok
22:08:44.0778 0x0138  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:08:44.0782 0x0138  TDTCP - ok
22:08:44.0804 0x0138  [ D09276B1FAB033CE1D40DCBDF303D10F, 2CB47CB522B4E1C091DE30AF0EB4E21D321C42D2A5BA9647CBD078652680D8FF ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:08:44.0809 0x0138  tdx - ok
22:08:44.0831 0x0138  [ A048056F5E1A96A9BF3071B91741A5AA, CFDE51D106A6CC4A5638BCD458505F5831636D2203F7C949273BDA446AC7C5F3 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
22:08:44.0836 0x0138  TermDD - ok
22:08:44.0898 0x0138  [ D605031E225AACCBCEB5B76A4F1603A6, 27D78644CADBC11C3AB5E0C10F854FD43BCD43B6E91C1ED1F6D35BC501147701 ] TermService     C:\Windows\System32\termsrv.dll
22:08:44.0929 0x0138  TermService - ok
22:08:44.0973 0x0138  [ 1E3FDB80E40A3CE645F229DFBDFB7694, C58D04CB86E314FC768F2729AC77A7097AFA9C80A35D8AB72690B7005E83D1D6 ] Themes          C:\Windows\system32\shsvcs.dll
22:08:44.0993 0x0138  Themes - ok
22:08:45.0020 0x0138  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll
22:08:45.0027 0x0138  THREADORDER - ok
22:08:45.0050 0x0138  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll
22:08:45.0061 0x0138  TrkWks - ok
22:08:45.0115 0x0138  [ 16613A1BAD034D4ECF957AF18B7C2FF5, 75499618187ED4385984F608D134BB298A4CCB339F70B31E4A8B2CF3E3558396 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:08:45.0119 0x0138  TrustedInstaller - ok
22:08:45.0141 0x0138  [ DCF0F056A2E4F52287264F5AB29CF206, D9F770BD65AE4320A8C130DEA1D093AA4E37FCA573BBE6A59D6D045452EA711D ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:08:45.0145 0x0138  tssecsrv - ok
22:08:45.0182 0x0138  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
22:08:45.0185 0x0138  tunmp - ok
22:08:45.0221 0x0138  [ 6042505FF6FA9AC1EF7684D0E03B6940, D09CF14A6C0C760238792DDA4ECB6FBB6CA645BB91BD62585EBD050226BDB5A7 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:08:45.0225 0x0138  tunnel - ok
22:08:45.0251 0x0138  [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
22:08:45.0256 0x0138  uagp35 - ok
22:08:45.0282 0x0138  [ F763E070843EE2803DE1395002B42938, 0060F5D7AD091D7F0CC25C98AB9DD8258A9837958AFE845971CD04E29A6A8658 ] UBHelper        C:\Windows\system32\drivers\UBHelper.sys
22:08:45.0284 0x0138  UBHelper - ok
22:08:45.0327 0x0138  [ 8B5088058FA1D1CD897A2113CCFF6C58, 1616EDB66C3E2DA7B09EA4FE46A3FC7087D6201F2195D76118A93B0B065D1623 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:08:45.0340 0x0138  udfs - ok
22:08:45.0394 0x0138  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:08:45.0403 0x0138  UI0Detect - ok
22:08:45.0439 0x0138  [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:08:45.0444 0x0138  uliagpkx - ok
22:08:45.0488 0x0138  [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
22:08:45.0503 0x0138  uliahci - ok
22:08:45.0544 0x0138  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
22:08:45.0551 0x0138  UlSata - ok
22:08:45.0581 0x0138  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
22:08:45.0590 0x0138  ulsata2 - ok
22:08:45.0612 0x0138  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:08:45.0616 0x0138  umbus - ok
22:08:45.0675 0x0138  [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost        C:\Windows\System32\upnphost.dll
22:08:45.0696 0x0138  upnphost - ok
22:08:45.0743 0x0138  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
22:08:45.0747 0x0138  USBAAPL - ok
22:08:45.0807 0x0138  [ A7CD5B4ADEA26765CAB06BDAB7B07B13, 81C45BDEC58B354C9FDF826E08EC7B725B72FE178C04A395AA447AA83300648A ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:08:45.0813 0x0138  usbccgp - ok
22:08:45.0860 0x0138  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:08:45.0865 0x0138  usbcir - ok
22:08:45.0902 0x0138  [ 686D4188AE36254C3008B71FEDACADF3, 61A45C4032C1CDADEDC624444B7815BF66EEAC16D50598C9D808C721E707295D ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
22:08:45.0906 0x0138  usbehci - ok
22:08:45.0964 0x0138  [ 4E42F665A658F08D153F7FFFE7C83806, 63D566B75AB46FA346CCA4944797068028C0D1F7854CC006642995342A90655E ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:08:45.0977 0x0138  usbhub - ok
22:08:45.0997 0x0138  [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:08:46.0000 0x0138  usbohci - ok
22:08:46.0056 0x0138  [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
22:08:46.0059 0x0138  usbprint - ok
22:08:46.0096 0x0138  [ A508C9BD8724980512136B039BBA65E9, B39B72471C468AC997AEC528599EDC98A031F5A7EB91C4F9471402D48D2D4E3E ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
22:08:46.0106 0x0138  usbscan - ok
22:08:46.0159 0x0138  [ 87BA6B83C5D19B69160968D07D6E2982, 9E039DF4BBE53CA22A0ACE486B9867F99FFFE086CCAF6A83BD78770E4631F3F8 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:08:46.0171 0x0138  USBSTOR - ok
22:08:46.0203 0x0138  [ 40F95A3D6D50D82F947F1D167C2EC39D, CC58363D5F096DDCB885599FDD82937ECC49F1087CA476B3DEF1AD70598ED238 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
22:08:46.0206 0x0138  usbuhci - ok
22:08:46.0244 0x0138  [ E67998E8F14CB0627A769F6530BCB352, 60982F168E9BF13954328C728F55F4D3ADDC572CACB65289B0E895A63DAA08C1 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
22:08:46.0254 0x0138  usbvideo - ok
22:08:46.0303 0x0138  [ 032A0ACC3909AE7215D524E29D536797, 51E36ED5953C0880BE508837181925A0F677842E8A5BA98099700E6ED691A783 ] UxSms           C:\Windows\System32\uxsms.dll
22:08:46.0312 0x0138  UxSms - ok
22:08:46.0378 0x0138  [ B13BC395B9D6116628F5AF47E0802AC4, 36E023A07E56588A8C26EF95E4F99303659E4783E0D9E8AEF193CA77A7AF91BA ] vds             C:\Windows\System32\vds.exe
22:08:46.0406 0x0138  vds - ok
22:08:46.0442 0x0138  [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:08:46.0445 0x0138  vga - ok
22:08:46.0459 0x0138  [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:08:46.0462 0x0138  VgaSave - ok
22:08:46.0492 0x0138  [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
22:08:46.0497 0x0138  viaagp - ok
22:08:46.0536 0x0138  [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
22:08:46.0540 0x0138  ViaC7 - ok
22:08:46.0577 0x0138  [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide          C:\Windows\system32\drivers\viaide.sys
22:08:46.0580 0x0138  viaide - ok
22:08:46.0606 0x0138  [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:08:46.0611 0x0138  volmgr - ok
22:08:46.0647 0x0138  [ 98F5FFE6316BD74E9E2C97206C190196, CA9FA0EE5515D26F9406FF95F728E7F2CC29A8B7C97BC69FC2E95BBC60A2D261 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:08:46.0665 0x0138  volmgrx - ok
22:08:46.0716 0x0138  [ D8B4A53DD2769F226B3EB374374987C9, 49314B3E53FBF40A60E272C5B3B79FD1EFABFE1215DA5B030571B4DDF5592896 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:08:46.0730 0x0138  volsnap - ok
22:08:46.0759 0x0138  [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
22:08:46.0768 0x0138  vsmraid - ok
22:08:46.0894 0x0138  [ D5FB73D19C46ADE183F968E13F186B23, D35432BE4FF462FCEA958CF646D5572B6D78058BC2F1F324C9F50A0B14B02259 ] VSS             C:\Windows\system32\vssvc.exe
22:08:46.0970 0x0138  VSS - ok
22:08:47.0170 0x0138  [ 7D110D645030C05A06C3CD08D1E47D0A, 37CAC059E59FBAD8BEE7829C95D5C381C4842A7F222D17AAE2DE72ED5630C761 ] vToolbarUpdater13.2.0 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
22:08:47.0211 0x0138  vToolbarUpdater13.2.0 - ok
22:08:47.0266 0x0138  [ 1CF9206966A8458CDA9A8B20DF8AB7D3, 405D5FE96DA7ED03D4124EF6C692F80E88E5982B90DF46E353E94FFF576A5570 ] W32Time         C:\Windows\system32\w32time.dll
22:08:47.0288 0x0138  W32Time - ok
22:08:47.0345 0x0138  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
22:08:47.0348 0x0138  WacomPen - ok
22:08:47.0445 0x0138  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
22:08:47.0450 0x0138  Wanarp - ok
22:08:47.0469 0x0138  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:08:47.0474 0x0138  Wanarpv6 - ok
22:08:47.0580 0x0138  [ F3A5C2E1A6533192B070D06ECF6BE796, CBA11D9E60A04A0B82C6934A53EA859513CD476FF047DD3D59727B10CE7DB2DA ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:08:47.0609 0x0138  wcncsvc - ok
22:08:47.0677 0x0138  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:08:47.0687 0x0138  WcsPlugInService - ok
22:08:47.0743 0x0138  [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd              C:\Windows\system32\drivers\wd.sys
22:08:47.0746 0x0138  Wd - ok
22:08:47.0812 0x0138  [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96, 6A6EFFDB538DE1E201058A00F3E056F1256E92EED943FBFBCE28E54BE751E33D ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:08:47.0841 0x0138  Wdf01000 - ok
22:08:47.0882 0x0138  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:08:47.0893 0x0138  WdiServiceHost - ok
22:08:47.0908 0x0138  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:08:47.0920 0x0138  WdiSystemHost - ok
22:08:47.0975 0x0138  [ CF9A5F41789B642DB967021DE06A2713, A541F9D87CBDE2A4E48C5D5363736EF603B2701741D3044232474F179884AD7B ] WebClient       C:\Windows\System32\webclnt.dll
22:08:47.0993 0x0138  WebClient - ok
22:08:48.0048 0x0138  [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:08:48.0063 0x0138  Wecsvc - ok
22:08:48.0094 0x0138  [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:08:48.0105 0x0138  wercplsupport - ok
22:08:48.0139 0x0138  [ FD1965AAA112C6818A30AB02742D0461, 6779D836934412907390DC85FA2A8C3BB1CC31FD4151830275B773FD13CFFBC2 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:08:48.0154 0x0138  WerSvc - ok
22:08:48.0199 0x0138  [ 3FA87D56769838AAC82FAFC3E78FC732, E1D942D59A7EDB1768D39D87D637C6F87C84711D0776FF2C69161350D037663B ] winbondcir      C:\Windows\system32\DRIVERS\winbondcir.sys
22:08:48.0209 0x0138  winbondcir - ok
22:08:48.0271 0x0138  [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
22:08:48.0288 0x0138  WinDefend - ok
22:08:48.0334 0x0138  WinHttpAutoProxySvc - ok
22:08:48.0415 0x0138  [ 00B79A7C984678F24CF052E5BEB3A2F5, 4D8E4394C926D2B1C71613D309F2D62A663B0ADB73A036F5E9E7D1AFF605CA2A ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:08:48.0427 0x0138  Winmgmt - ok
22:08:48.0568 0x0138  [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM           C:\Windows\system32\WsmSvc.dll
22:08:48.0641 0x0138  WinRM - ok
22:08:48.0769 0x0138  [ 275F4346E569DF56CFB95243BD6F6FF0, 9C85246BF99119DBD6E0B5D38F96B8BC00F3C87618D17BC0E0A063A0D9A03440 ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:08:48.0805 0x0138  Wlansvc - ok
22:08:48.0826 0x0138  [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
22:08:48.0829 0x0138  WmiAcpi - ok
22:08:48.0875 0x0138  [ ABA4CF9F856D9A3A25F4DDD7690A6E9D, 07C1DAF3DA3CDA84FBE4C7576372115FCAAAAFC332F252C03625E53C7F3C6EE5 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:08:48.0884 0x0138  wmiApSrv - ok
22:08:48.0998 0x0138  [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
22:08:49.0047 0x0138  WMPNetworkSvc - ok
22:08:49.0101 0x0138  [ 5D94CD167751294962BA238D82DD1BB8, 62C7A31706F1C33A2C1C68006191AEE85A98885D23EC582EF2F88AAF604AC9A7 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:08:49.0116 0x0138  WPCSvc - ok
22:08:49.0144 0x0138  [ 396D406292B0CD26E3504FFE82784702, 5F9015BB515AC13D4DFE8F4B532352CF2C5B61DEFD3D0D61BCD82C781D36E7AF ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:08:49.0156 0x0138  WPDBusEnum - ok
22:08:49.0201 0x0138  [ 0CEC23084B51B8288099EB710224E955, E1AAB1E08E1745313D0A149A645AA878148D2DBE5CCC23C4ECCFC5003945C22B ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
22:08:49.0206 0x0138  WpdUsb - ok
22:08:49.0345 0x0138  [ DCF3E3EDF5109EE8BC02FE6E1F045795, 4B8E14B1CFB095982D34DAEC336114F5039D7793080FB787DC95A63B6B945DD0 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:08:49.0387 0x0138  WPFFontCache_v0400 - ok
22:08:49.0411 0x0138  [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:08:49.0414 0x0138  ws2ifsl - ok
22:08:49.0442 0x0138  [ 683DD16B590372F2C9661D277F35E49C, 29D86389D95256EEF37BA01D403494385015D926E851A39EC7948FF6EF4E8481 ] wscsvc          C:\Windows\system32\wscsvc.dll
22:08:49.0454 0x0138  wscsvc - ok
22:08:49.0471 0x0138  WSearch - ok
22:08:49.0654 0x0138  [ 6298277B73C77FA99106B271A7525163, 9E076697F025167B57D8D66ED0862B184D70324E058BFA36E42D0C6728720B31 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:08:49.0764 0x0138  wuauserv - ok
22:08:49.0813 0x0138  [ AC13CB789D93412106B0FB6C7EB2BCB6, 8F5B0BD0CBBAB182A400F8994D4727BC0C978D749B6429A2D41B412AE97428B6 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:08:49.0819 0x0138  WUDFRd - ok
22:08:49.0842 0x0138  [ 575A4190D989F64732119E4114045A4F, 373C344B106AFDB1E6125A21DFE28CA6CFC77FA87FE904656A4F209DB2ED69C7 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:08:49.0855 0x0138  wudfsvc - ok
22:08:49.0904 0x0138  ================ Scan global ===============================
22:08:49.0934 0x0138  [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
22:08:50.0013 0x0138  [ F42F8855CB5C22E203C6672B124F17FD, 3A1BBCC916A02CFB5621FD32B336DDACCFBFB4E418B7FA48653DF2FA1CF563A5 ] C:\Windows\system32\winsrv.dll
22:08:50.0081 0x0138  [ F42F8855CB5C22E203C6672B124F17FD, 3A1BBCC916A02CFB5621FD32B336DDACCFBFB4E418B7FA48653DF2FA1CF563A5 ] C:\Windows\system32\winsrv.dll
22:08:50.0136 0x0138  [ 2B336AB6286D6C81FA02CBAB914E3C6C, C5ADF6D5BFC00375BA6D0E5D96F36D36ADFBF66325A48358C6317E387FB220EC ] C:\Windows\system32\services.exe
22:08:50.0157 0x0138  [ Global ] - ok
22:08:50.0158 0x0138  ================ Scan MBR ==================================
22:08:50.0178 0x0138  [ 7BA4C7EA1EF33A92F5F01BE63EDACB6A ] \Device\Harddisk0\DR0
22:08:56.0504 0x0138  \Device\Harddisk0\DR0 - ok
22:08:56.0505 0x0138  ================ Scan VBR ==================================
22:08:56.0518 0x0138  [ AB643BC3D6FBAD57E89989D44AC70E86 ] \Device\Harddisk0\DR0\Partition1
22:08:56.0522 0x0138  \Device\Harddisk0\DR0\Partition1 - ok
22:08:56.0578 0x0138  [ 707EC944A0B0E0D6FD2ED3F1A414FCB1 ] \Device\Harddisk0\DR0\Partition2
22:08:56.0581 0x0138  \Device\Harddisk0\DR0\Partition2 - ok
22:08:56.0626 0x0138  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.4.304.0 ), 0x61000 ( enabled : updated )
22:08:56.0641 0x0138  Win FW state via NFP2: enabled
22:08:56.0858 0x0138  ============================================================
22:08:56.0858 0x0138  Scan finished
22:08:56.0858 0x0138  ============================================================
22:08:56.0879 0x1538  Detected object count: 0
22:08:56.0879 0x1538  Actual detected object count: 0
 



#4 SWIM_GOOD

SWIM_GOOD
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:10:03 PM

Posted 25 November 2013 - 06:03 PM

Here are the ADW Cleaner and 'Junkware' logs.. (I'm just waiting on the ESET scanner to complete)

 

# AdwCleaner v3.013 - Report created 25/11/2013 at 22:21:08
# Updated 24/11/2013 by Xplode
# Operating System : Windows Vista ™ Home Basic Service Pack 1 (32 bits)
# Username : Dan - DAN-PC
# Running from : C:\Users\Dan\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files\Common Files\AVG Secure Search
Folder Deleted : C:\Users\Dan\AppData\LocalLow\AVG Security Toolbar

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Key Deleted : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
Key Deleted : HKCU\Software\AVG Security Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536

***** [ Browsers ] *****

-\\ Internet Explorer v7.0.6001.18639


-\\ Mozilla Firefox v25.0.1 (en-GB)

[ File : C:\Users\Dan\AppData\Roaming\Mozilla\Firefox\Profiles\fd18cl6k.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [3598 octets] - [25/11/2013 22:09:35]
AdwCleaner[S0].txt - [3585 octets] - [25/11/2013 22:21:08]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3645 octets] ##########
 

 

 

 

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows Vista ™ Home Basic x86
Ran by Dan on 25/11/2013 at 22:43:49.39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Dan\AppData\Roaming\big fish games"



~~~ FireFox

Emptied folder: C:\Users\Dan\AppData\Roaming\mozilla\firefox\profiles\fd18cl6k.default\minidumps [296 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 25/11/2013 at 22:51:00.93
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,556 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:03 PM

Posted 25 November 2013 - 07:54 PM

Let me know if the pop up tab is gone too..


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 SWIM_GOOD

SWIM_GOOD
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:10:03 PM

Posted 26 November 2013 - 05:16 PM

Hey, the ESET scan came back clean.. No infections found. I've been browsing the internet for about 4-5 hours today and there have been no instances of tabs popping up.. How's it looking to you ?

 

Dan



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,556 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:03 PM

Posted 26 November 2013 - 08:44 PM

Looks all good to me...

Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been backed up, renamed and saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can re-infect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state. The easiest and safest way to do this is:
  • Go to Start > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
  • Then use Disk Cleanup
  • to remove all but the most recently created Restore Point.
  • Go to Start > Run and type: Cleanmgr
  • Click "Ok". Disk Cleanup will scan your files for several minutes, then open.
  • Click the "More Options" tab, then click the "Clean up" button under System Restore.
  • Click Ok. You will be prompted with "Are you sure you want to delete all but the most recent restore point?"
  • Click Yes, then click Ok.
  • Click Yes again when prompted with "Are you sure you want to perform these actions?"
  • Disk Cleanup will remove the files and close automatically. Vista and Windows 7 users can refer to these links:
  • Create a New Restore Point in Vista
  • Create a New Restore Point in Windows 7 (alternate method)
  • Disk Cleanup in Vista
  • Disk Cleanup in Windows 7
  • ◾Reboot and see how it is.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 SWIM_GOOD

SWIM_GOOD
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:10:03 PM

Posted 27 November 2013 - 05:15 PM

Hey, I created a new restore point and cleaned up the old ones.. Things seems fine, no pop-ups since we started..

 

Dan



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,556 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:03 PM

Posted 27 November 2013 - 09:14 PM

Great ! Have a Happy Thanksgiving.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 SWIM_GOOD

SWIM_GOOD
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:10:03 PM

Posted 28 November 2013 - 02:48 PM

Before the post is closed, could you just let me know about uninstalling / removing the tools we downloaded at the start..?

 

Thanks for your help and Happy Thanksgiving :)



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,556 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:03 PM

Posted 01 December 2013 - 07:49 PM

Hi everything just needs you to delete the desktop icon as most did not install anything.

Double click on AdwCleaner.exe to run the tool again.
  • Click on the Uninstall button.
  • Click Yes when asked are you sure you want to uninstall.
  • Both AdwCleaner.exe, its folder and all logs will be removed.
ESET
Start the Add or Remove Programs (filename: appwiz.cpl) applet from Control Panel, select the ESET Online Scanner entry and click Remove. A restart may be required to complete uninstallation.

Manual Uninstall: Run the ESET Online Scanner Uninstaller (filename: OnlineScannerUninstaller.exe) program, located in the C:/WINDOWS/SYSTEM32 directory on computers running 32-bit (x86) editions of Microsoft Windows and in the C:/WINDOWS/SYSWOW64 directory on computers running 64-bit (x64) editions of Microsoft Windows.



Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been backed up, renamed and saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can re-infect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state. The easiest and safest way to do this is:
  • Go to Start > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
  • Then use Disk Cleanup
  • to remove all but the most recently created Restore Point.
  • Go to Start > Run and type: Cleanmgr
  • Click "Ok". Disk Cleanup will scan your files for several minutes, then open.
  • Click the "More Options" tab, then click the "Clean up" button under System Restore.
  • Click Ok. You will be prompted with "Are you sure you want to delete all but the most recent restore point?"
  • Click Yes, then click Ok.
  • Click Yes again when prompted with "Are you sure you want to perform these actions?"
  • Disk Cleanup will remove the files and close automatically. Vista and Windows 7 users can refer to these links:
  • Create a New Restore Point in Vista
  • Create a New Restore Point in Windows 7 (alternate method)
  • Disk Cleanup in Vista
  • Disk Cleanup in Windows 7
  • ◾Reboot and see how it is.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users