Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows cannot load the user's profile - Incorrect function


  • This topic is locked This topic is locked
23 replies to this topic

#1 adaniel

adaniel

  • Members
  • 206 posts
  • OFFLINE
  •  
  • Local time:07:42 AM

Posted 09 December 2013 - 02:49 PM

System is running XP Pro SP3.  I had just cleaned this system of malware which was causing dllhost.exe  to run multiple times and slow the system down to a crawl.  This is not the same machine as this one:  http://www.bleepingcomputer.com/forums/t/515354/dllhostexe-appears-in-task-manager-multiple-times-restarts-when-killed/  which Broni helped me with recently.

 

Everything was fine for a few weeks, then I got a call saying it would not install Adobe Reader update - access denied.  I corrected that and a couple days later, I get a call that it gives the message in the topic title on startup and runs extremely slow trying to access internet.  It would eventually say the site could not be accessed.  It was so bad, I was unable to remote in.

 

I bought it in, booted in safe mode, did a system restore - no change.  I did a Malwarebytes scan - it found nothing.  I ran an ESET Online Scan - it too found nothing.

 

I tried restoring the ntuser.dat from repair, ut that made no difference.  The user logs in as administrator, so I created another admin account to process the copy.

 

I am able to get on the Internet from my location by manually setting tcp/ip settings.

 

Any help getting this resolved would be greatly appreciated.

 

adaniel



BC AdBot (Login to Remove)

 


#2 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,085 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:09:42 PM

Posted 09 December 2013 - 09:05 PM

http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/sysdm_userprofile_copy.mspx?mfr=true


Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#3 adaniel

adaniel
  • Topic Starter

  • Members
  • 206 posts
  • OFFLINE
  •  
  • Local time:07:42 AM

Posted 09 December 2013 - 10:14 PM

Condobloke,

 

I apologize for not stating in my post that I tried this step.  I created a new admin user and tried to copy the 'administrator' profile to that user.  It got into the process, then began saying it could not copy  certain files, with the option to ignore, ignore all, or cancel.  I tried ignore a few times, but it kept popping up, so I clicked cancel.  I assumed it was that it did not like copying the 'administrator' profile.

 

Thank you for your help.

 

adaniel



#4 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,085 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:09:42 PM

Posted 09 December 2013 - 10:43 PM

 
 

When you boot this PC up, I assume you are signing in as  Admin...?

 

Once you've signed in as 'Administrator':

  • Right-click on My Computer

  • Click on Manage

  • Expand Local Users and Groups

  • Click on Groups

  • Double click on Administrators

  • Click on Add

  • Enter the account name on this machine that you want to assign administrative privileges to.

  • OK your way back out.

 

 

  • Verify that permissions are set correctly on the user's local profile folder.

Maybe worth a read  ::  http://support.sas.com/rnd/itech/doc9/admin_oma/security/auth/security_winxp.html

 

 

 

have you checked Event viewer logs ?

 

 

( I am just kickin tyres here.....I have Xp sp3 myself.....and thought i had seen most errors.......apparently not ! )

 

 

 

 

 

 

 

Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#5 adaniel

adaniel
  • Topic Starter

  • Members
  • 206 posts
  • OFFLINE
  •  
  • Local time:07:42 AM

Posted 09 December 2013 - 11:20 PM

Condobloke,

 

I have added a user 'gsegebade' and made that user an admin; that isn't the problem.  The problem is when the system starts and I log in as 'administrator' I get the 'Windows cannot load user's profile...' error.  I tried logging in as gsegebade, going to the administrator user and copying the profile to 'gsegebade' user.  That is where I ran into errors.  Do I need a third admin user to accomplish this? 

 

I actually had not checked the Event Viewer - how negligent of me.  Seriously, I cannot believe I failed to do something so obvious.  It is full of Event ID 3100 dating back to 11/29/13.  That is after I had thought it clean.  

 

Event Type: Error
Event Source: Windows Search Service
Event Category: Gatherer 
Event ID: 3100
Date: 11/29/2013
Time: 10:40:00 PM
User: N/A
Computer: SEGEBADE
Description:
Unable to initialize the filter host process. Terminating.
 
Details:
This operation returned because the timeout period expired.   (0x800705b4)
 
 
For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp
 
Thanks for your help,
 
adaniel


#6 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,085 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:09:42 PM

Posted 10 December 2013 - 01:00 AM

 
 

I think we should cover the obvious before we go any further

 

Download Security Check by Screen317 from HERE
* Save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Note: If a security program requests permission to access the Internet, allow it to do so.

 

 

Download  MiniToolBox MiniToolBox, Save it to your desktop and run it.
Close any Firefox browsers you may have open
Checkmark the following boxes:
•Flush DNS
•Report IE Proxy Settings
•Reset IE Proxy Settings
•Report FF Proxy Settings
•Reset FF Proxy Settings
•List content of Hosts
•List IP configuration
•List last 10 Event Viewer log
•List Installed Programs
•List Users, Partitions and Memory size.
•List Minidump Files
 
Click Go and copy / paste the result (Result.txt).

 

 

 

 

Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#7 adaniel

adaniel
  • Topic Starter

  • Members
  • 206 posts
  • OFFLINE
  •  
  • Local time:07:42 AM

Posted 10 December 2013 - 07:52 AM

I had run those and a few other tools I have used before based on previous bleepingcomputer experience.  Here are the logs.
 
After running all the scans, on restart, I still get the 'Windows cannot load the user's profeil...' error.  Also, I have noticed that, when the system first comes up, it throws a Windows Security Alert saying the no firewall is turned on.  After a few minutes that goes away and the firewall is turned on.
 
Thank you,
adaniel
 
 
 Results of screen317's Security Check version 0.99.77  
 Windows XP Service Pack 3 x86   
 Internet Explorer 8  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
Please wait while WMIC is being installed.d 
ECHO is off.
ECHO is off.
ECHO is off.
ECHO is off.
ECHO is off.
ECHO is off.
 Antivirus up to date!  
`````````Anti-malware/Other Utilities Check:`````````
 SpywareBlaster 5.0    
 SUPERAntiSpyware     
 HostsMan 3.2.73    
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Adobe Flash Player 11.2.202.233  
 Adobe Reader XI  
 Mozilla Firefox (25.0) 
 Mozilla Thunderbird (24.1.1) 
 Google Chrome 31.0.1650.57  
 Google Chrome 31.0.1650.63  
````````Process Check: objlist.exe by Laurent````````
 AVG avgwdsvc.exe 
 AVG avgtray.exe 
 AVG avgrsx.exe 
 AVG avgnsx.exe 
 AVG avgemc.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:: 18% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````
 
 
=================================================================================================
 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Administrator (administrator) on 09-12-2013 at 16:48:15
Running from "C:\Documents and Settings\Administrator\My Documents\Downloads"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
========================= FF Proxy Settings: ============================== 
 
========================= Hosts content: =================================
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
 
WARNING: Could not obtain host information from machine: [SEGEBADE]. Some commands may not be available.
Server execution failed
 
 
 
# ---------------------------------- 
# Interface IP Configuration         
# ---------------------------------- 
pushd interface ip
 
 
# Interface IP Configuration for "Local Area Connection 2"
 
set address name="Local Area Connection 2" source=static addr=10.0.100.49 mask=255.255.255.0
set address name="Local Area Connection 2" gateway=10.0.100.225 gwmetric=0
set dns name="Local Area Connection 2" source=static addr=10.0.100.4 register=PRIMARY
add dns name="Local Area Connection 2" addr=10.0.100.225 index=2
set wins name="Local Area Connection 2" source=static addr=none
 
 
popd
# End of interface IP configuration
 
 
Windows IP Configuration        Host Name . . . . . . . . . . . . : SEGEBADE        Primary Dns Suffix  . . . . . . . :         Node Type . . . . . . . . . . . . : Unknown        IP Routing Enabled. . . . . . . . : No        WINS Proxy Enabled. . . . . . . . : NoEthernet adapter Local Area Connection 2:        Connection-specific DNS Suffix  . :         Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet        Physical Address. . . . . . . . . : 00-1A-4B-46-46-42        Dhcp Enabled. . . . . . . . . . . : No        IP Address. . . . . . . . . . . . : 10.0.100.49        Subnet Mask . . . . . . . . . . . : 255.255.255.0        Default Gateway . . . . . . . . . : 10.0.100.225        DNS Servers . . . . . . . . . . . : 10.0.100.4                                            10.0.100.225DNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  10.0.100.4
 
Name:    google.com
Addresses:  74.125.228.0, 74.125.228.14, 74.125.228.6, 74.125.228.4
 74.125.228.2, 74.125.228.8, 74.125.228.7, 74.125.228.3, 74.125.228.1
 74.125.228.5, 74.125.228.9
 
Pinging google.com [74.125.228.0] with 32 bytes of data:Reply from 74.125.228.0: bytes=32 time=28ms TTL=49Reply from 74.125.228.0: bytes=32 time=28ms TTL=49Ping statistics for 74.125.228.0:    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds:    Minimum = 28ms, Maximum = 28ms, Average = 28msDNS request timed out.
    timeout was 2 seconds.
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  10.0.100.4
 
Name:    yahoo.com
Addresses:  98.138.253.109, 98.139.183.24, 206.190.36.45
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:Reply from 98.138.253.109: bytes=32 time=94ms TTL=43Reply from 98.138.253.109: bytes=32 time=110ms TTL=43Ping statistics for 98.138.253.109:    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds:    Minimum = 94ms, Maximum = 110ms, Average = 102msPinging 127.0.0.1 with 32 bytes of data:Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Ping statistics for 127.0.0.1:    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds:    Minimum = 0ms, Maximum = 0ms, Average = 0ms===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 1a 4b 46 46 42 ...... Broadcom NetXtreme Gigabit Ethernet - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     10.0.100.225     10.0.100.49  20
       10.0.100.0    255.255.255.0      10.0.100.49     10.0.100.49  20
      10.0.100.49  255.255.255.255        127.0.0.1       127.0.0.1  20
   10.255.255.255  255.255.255.255      10.0.100.49     10.0.100.49  20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1  1
        224.0.0.0        240.0.0.0      10.0.100.49     10.0.100.49  20
  255.255.255.255  255.255.255.255      10.0.100.49     10.0.100.49  1
Default Gateway:      10.0.100.225
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (12/09/2013 04:44:52 PM) (Source: Windows Search Service) (User: )
Description: Unable to initialize the filter host process. Terminating.
 
 
Details:
This operation returned because the timeout period expired.   (0x800705b4)
 
Error: (12/09/2013 04:42:55 PM) (Source: Windows Search Service) (User: )
Description: Unable to initialize the filter host process. Terminating.
 
 
Details:
Access is denied.   (0x80070005)
 
Error: (12/09/2013 04:40:55 PM) (Source: Windows Search Service) (User: )
Description: Unable to initialize the filter host process. Terminating.
 
 
Details:
Access is denied.   (0x80070005)
 
Error: (12/09/2013 04:40:42 PM) (Source: Windows Search Service) (User: )
Description: Unable to initialize the filter host process. Terminating.
 
 
Details:
This operation returned because the timeout period expired.   (0x800705b4)
 
Error: (12/09/2013 04:38:45 PM) (Source: Windows Search Service) (User: )
Description: Unable to initialize the filter host process. Terminating.
 
 
Details:
Access is denied.   (0x80070005)
 
Error: (12/09/2013 04:36:45 PM) (Source: Windows Search Service) (User: )
Description: Unable to initialize the filter host process. Terminating.
 
 
Details:
Access is denied.   (0x80070005)
 
Error: (12/09/2013 04:36:32 PM) (Source: Windows Search Service) (User: )
Description: Unable to initialize the filter host process. Terminating.
 
 
Details:
This operation returned because the timeout period expired.   (0x800705b4)
 
Error: (12/09/2013 04:34:35 PM) (Source: Windows Search Service) (User: )
Description: Unable to initialize the filter host process. Terminating.
 
 
Details:
Access is denied.   (0x80070005)
 
Error: (12/09/2013 04:32:35 PM) (Source: Windows Search Service) (User: )
Description: Unable to initialize the filter host process. Terminating.
 
 
Details:
Access is denied.   (0x80070005)
 
Error: (12/09/2013 04:32:22 PM) (Source: Windows Search Service) (User: )
Description: Unable to initialize the filter host process. Terminating.
 
 
Details:
This operation returned because the timeout period expired.   (0x800705b4)
 
 
System errors:
=============
Error: (12/09/2013 04:56:28 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} did not register with DCOM within the required timeout.
 
Error: (12/09/2013 04:55:53 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} did not register with DCOM within the required timeout.
 
Error: (12/09/2013 04:55:18 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} did not register with DCOM within the required timeout.
 
Error: (12/09/2013 04:54:43 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} did not register with DCOM within the required timeout.
 
Error: (12/09/2013 04:54:07 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} did not register with DCOM within the required timeout.
 
Error: (12/09/2013 04:53:32 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} did not register with DCOM within the required timeout.
 
Error: (12/09/2013 04:52:57 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} did not register with DCOM within the required timeout.
 
Error: (12/09/2013 04:52:21 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} did not register with DCOM within the required timeout.
 
Error: (12/09/2013 04:51:46 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} did not register with DCOM within the required timeout.
 
Error: (12/09/2013 04:51:11 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} did not register with DCOM within the required timeout.
 
 
Microsoft Office Sessions:
=========================
 
=========================== Installed Programs ============================
 
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe AIR (Version: 1.5.1.8210)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (Version: 11.2.202.233)
Adobe Reader XI (11.0.05) (Version: 11.0.05)
Apple Application Support (Version: 2.0.1)
Apple Software Update (Version: 2.1.3.127)
AVG 2011 (Version: 10.0.1432)
AVG 2011 (Version: 10.0.3658)
Broadcom Management Programs (Version: 9.02.06)
Broadcom TPM Driver Installer (Version: 8.05.04)
Brother MFL-Pro Suite (Version: 1.00)
Business Contact Manager for Outlook 2007 SP2 (Version: 3.0.8619.1)
Citrix online plug-in - web (Version: 12.0.3.6)
Citrix online plug-in (DV) (Version: 12.0.3.6)
Citrix online plug-in (HDX) (Version: 12.0.3.6)
Citrix online plug-in (USB) (Version: 12.0.3.6)
Citrix online plug-in (Web) (Version: 12.0.3.6)
Compatibility Pack for the 2007 Office system (Version: 12.0.6514.5001)
ESET Online Scanner v3
FreePriceAlerts 2.3.5 (Version: 2.3.5)
Google Chrome (Version: 31.0.1650.63)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4601.54)
Google Update Helper (Version: 1.3.22.3)
HostsMan 3.2.73 (Version: 3.2.73)
HP Backup and Recovery Manager (Version: 2.3i)
HP Help and Support (Version: 4.2.0010)
HpSdpAppCoreApp (Version: 3.00.0000)
Intel® Graphics Media Accelerator Driver
InterVideo Register Manager (Version: 1.0.4.0)
InterVideo WinDVD
InterVideo WinDVD (Version: 5.0-B11.1145)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Maxtor Manager (Version: 4.02.0303)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Office 2000 SR-1 Professional (Version: 9.00.3821)
Microsoft Office 2003 Web Components (Version: 11.0.8173.0)
Microsoft Office 2007 Primary Interop Assemblies (Version: 12.0.4518.1014)
Microsoft Office Small Business Connectivity Components (Version: 2.0.7024.0)
Microsoft Silverlight (Version: 4.0.60531.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) (Version: 9.4.5000.00)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mozilla Firefox 25.0 (x86 en-US) (Version: 25.0)
Mozilla Maintenance Service (Version: 24.1.1)
Mozilla Thunderbird 24.1.1 (x86 en-US) (Version: 24.1.1)
MSN
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 6.0 Parser (KB933579) (Version: 6.10.1200.0)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
PaperPort Image Printer (Version: 1.00.0000)
PDF Complete
QuickTime (Version: 7.70.80.34)
RealDownloader (Version: 1.3.3)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealPlayer (Version: 16.0.3)
Realtek High Definition Audio Driver (Version: 5.10.0.5275)
RealUpgrade 1.1 (Version: 1.1.0)
Rhapsody Player Engine (Version: 1.0.604)
ScanSoft PaperPort 11 (Version: 11.1.0000)
SpywareBlaster 5.0 (Version: 5.0.0)
SUPERAntiSpyware (Version: 5.0.1118)
TestGen
TightVNC 1.2.9 (Version: 1.2.9)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Windows (KB971513)
Update for Windows Internet Explorer 8 (KB2447568) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2492386) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB2863058) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
WebFldrs XP (Version: 9.50.7523)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 11
Windows Search 4.0 (Version: 04.00.6001.503)
 
========================= Devices: ================================
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 66%
Total physical RAM: 1015.23 MB
Available physical RAM: 336.07 MB
Total Pagefile: 2442.48 MB
Available Pagefile: 1692.18 MB
Total Virtual: 2047.88 MB
Available Virtual: 1971.26 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:64.51 GB) (Free:40.23 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:10 GB) (Free:3.75 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\SEGEBADE
 
Administrator            ASPNET                   gsegebade                
Guest                    HelpAssistant            SUPPORT_388945a0         
 
 
**** End of log ****
 
 
================================================================================================
 

Malwarebytes Anti-Rootkit BETA 1.07.0.1008
www.malwarebytes.org
 
Database version: v2013.12.10.01
 
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Administrator :: SEGEBADE [administrator]
 
12/9/2013 10:21:33 PM
mbar-log-2013-12-09 (22-21-33).txt
 
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 281728
Time elapsed: 28 minute(s), 23 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
Physical Sectors Detected: 0
(No malicious items detected)
 
(end)
 
 
 
 
 
============================================================================================
 
 

# AdwCleaner v3.014 - Report created 09/12/2013 at 23:50:47
# Updated 01/12/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Administrator - SEGEBADE
# Running from : C:\Documents and Settings\Administrator\My Documents\Downloads\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Application Data\Conduit
[!] Folder Deleted : C:\Documents and Settings\gsegebade\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
[!] Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A057A204-BACC-4D26-9990-79A187E2698F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{CCC7A320-B3CA-4199-B1A6-9F516DD69829}]
Key Deleted : HKCU\Software\AVG Security Toolbar
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\Software\AVG Security Toolbar
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v8.0.6001.18702
 
 
-\\ Mozilla Firefox v25.0 (en-US)
 
[ File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\yzxi25sm.default\prefs.js ]
 
 
-\\ Google Chrome v31.0.1650.63
 
[ File : C:\Documents and Settings\gsegebade\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]
 
 
[ File : C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [3079 octets] - [09/12/2013 23:47:35]
AdwCleaner[S0].txt - [3050 octets] - [09/12/2013 23:50:47]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3110 octets] ##########
 
 
 
====================================================================================================
 
 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Microsoft Windows XP x86
Ran by Administrator on Mon 12/09/2013 at 23:56:57.89
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{528D0238-17BA-4B64-8660-3E0964AF6C87}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7C0A55C-300E-4193-8FB5-5DB8E6533D35}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{A7C0A55C-300E-4193-8FB5-5DB8E6533D35}
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ FireFox
 
Successfully deleted the following from C:\Documents and Settings\Administrator\Application Data\mozilla\firefox\profiles\yzxi25sm.default\prefs.js
 
user_pref("avg.toolbar.buttons_icon", ",,chrome://avg/skin/safesurf.png,chrome://avg/skin/safesurf.png,chrome://avg/skin/safesearch.png,chrome://avg/skin/avglinks.png,chrome:/
user_pref("keyword.URL", "hxxp://search.avg.com/route/?d=4e58687a&v=7.007.026.001&i=23&tp=ab&iy=&ychte=us&lng=en-US&q=");
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 12/10/2013 at  2:27:30.59
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
===================================================================================
 
Rkill 2.6.3 by Lawrence Abrams (Grinler)
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 12/10/2013 08:09:35 AM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * C:\WINDOWS\SMINST\Scheduler.exe (PID: 944) [WD-HEUR]
 
1 proccess terminated!
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * No issues found.
 
Checking Windows Service Integrity: 
 
 * Update [Missing ImagePath]
 
Searching for Missing Digital Signatures: 
 
 * No issues found.

Edited by adaniel, 10 December 2013 - 08:20 AM.


#8 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,085 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:09:42 PM

Posted 10 December 2013 - 05:21 PM

Well....seeing today is 11/12/13......we will take what is commonly called a 'punt'....

 

Download Windows Repair Windows Repair (All In One)

Install the program. Be SURE to allow the registry backup and system restore point

It is sufficient to start at step 4, using the default settings

If you wish to run the optional steps that is your choice

 

Let me know the outcome


Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#9 adaniel

adaniel
  • Topic Starter

  • Members
  • 206 posts
  • OFFLINE
  •  
  • Local time:07:42 AM

Posted 11 December 2013 - 12:53 AM

Here in the states it's 12/11/13.  11/12/13 happened last month. :wink:

 

I went ahead and started at the beginning.  I had tried to do an sfc /scannow previously, but when it asked for the XP CD, I aborted.  This time I decided to dig out the CD and let it do its thing.  To my dismay, I discovered the CD-ROM drive is dead.

 

I went ahead with the repair, but my 'user profile' problem still exists on startup.

 

I am going to check with the user re: replacing the CD-ROM drive.  Do you think the sfc /scannow may fix the problem?

 

Thank you,

Adaniel



#10 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,085 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:09:42 PM

Posted 11 December 2013 - 06:52 AM

Just before we proceed with scannow etc etc....lets try this ::

 

    Uninstall > HostsMan 3.2.73 (Version: 3.2.73)

 

    Uninstall  >  FreePriceAlerts 2.3.5 (Version: 2.3.5)

 

    Uninstall AVG....AVG Remover(32bit) 2014

 

     Install MSE...: Download now

 

     Reset the Hosts File. http://go.microsoft.com/?linkid=9668866  (click the Fix it button or link, click Run and then follow the steps in this M/soft Fix it.)

 

 

I will continue researching the errors in your Mini Tool Box log tomorrow morning. It is past my beauty sleep time for now

 

 

 


Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#11 adaniel

adaniel
  • Topic Starter

  • Members
  • 206 posts
  • OFFLINE
  •  
  • Local time:07:42 AM

Posted 11 December 2013 - 09:37 AM

OK, I am in a bit of a bind now.  All AV and anti-malware are uninstalled, but MSE will not install.  I get an error 0x80070656.  I tried all the steps suggested by MS to no avail, so I am left without AV.

 

The Fixit fails saying 'Error reading from c:\...MicrosoftFixit50267.msi.  Verify that the file exists and that you can access it.'    The file is there and I can access it - I ran it???

 

One thing I did notice and change:  I had saved the file in a folder called Downloads under My Documents.  With My Documents open, I checked the properties of Downloads and it had a grey Read only check.  I unchecked that.  When I navigated one folder up, the permissions on My Documents had the same check.  I left that as is.  Unchecking that permission checkbox made no difference.

 

Thank you,

adaniel


Edited by adaniel, 11 December 2013 - 11:28 AM.


#12 Condobloke

Condobloke

    Outback Aussie @ 54.2101 N, 0.2906 W


  • Members
  • 6,085 posts
  • ONLINE
  •  
  • Gender:Male
  • Local time:09:42 PM

Posted 11 December 2013 - 03:21 PM

Please ensure your firewall is turned on.

 

Download TDSSKiller and save it to your desktop.

  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.

Condobloke ...Outback Australian  fed up with Windows antics...??....LINUX IS THE ANSWER....I USE LINUX MINT 18.3  EXCLUSIVELY.

“A man travels the world in search of what he needs and returns home to find it."

It has been said that time heals all wounds. I don't agree. The wounds remain. Time - the mind, protecting its sanity - covers them with some scar tissue and the pain lessens, but it is never gone. Rose Kennedy

 GcnI1aH.jpg

 

 


#13 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:42 PM

Posted 11 December 2013 - 03:22 PM

Hello -

I was asked just to find if there is a reason for your current problem. There seems to be some old or strange Antivirus program blocking the installing of the new one.

 

Note that you can usually save 99% of downloads to Desktop first, and then "Drag and Drop" them into My Documents after I am finished installing only -

 

 

First re-run Screen317 Security Check and save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt
* Please post the contents of that document.
Note:: If any security program requests permission to access the Internet, allow it to do so.
The program is certified and is safe to use while your Antivirus is off.

We are looking for remains of any Antivirus program (that is your error number).

 

Next use the older 2011 AVG remover, as it may not be the same as the current one.

You will be asked during the removal procedure to restart your computer. Therefore, please make sure to finish your work and save all important data prior to launching AVG Remover.
Using AVG 2011 Removal tool as this was the version you installed -
1.Download AVG 2011 remover for (32-bit)
2.Save to your Computer. (desktop)
3.Run the tool,follow the instructions on the screen.

 

Double check that an earlier version of M.S.E. was not partially installed =>
Official Solution:
Microsoft has published a knowledgebase article for how to manually remove Microsoft Security Essentials version 2.x: http://support.microsoft.com/kb/2483120
Microsoft has developed a Fix-It for cleaning up/removing  Microsoft Security Essentials Version 1.x. More information here: http://support.microsoft.com/kb/2435760

 

Please post a snapshot with Speccy for more system details -
How to Publish a snapshot with Speccy <<-- Full Directions (just post the link)

 

If you can update us with any changes after these please .........

 

Thank You -


Edited by noknojon, 11 December 2013 - 03:25 PM.


#14 adaniel

adaniel
  • Topic Starter

  • Members
  • 206 posts
  • OFFLINE
  •  
  • Local time:07:42 AM

Posted 11 December 2013 - 05:10 PM

 Results of screen317's Security Check version 0.99.77 

Windows XP Service Pack 3 x86  

Internet Explorer 8 

``````````````Antivirus/Firewall Check:``````````````

Windows Firewall Enabled! 

WMI entry may not exist for antivirus; attempting automatic update.

`````````Anti-malware/Other Utilities Check:`````````

Adobe Flash Player  11.2.202.233 

Adobe Reader XI 

Mozilla Firefox (25.0)

Mozilla Thunderbird (24.1.1)

Google Chrome 31.0.1650.57 

Google Chrome 31.0.1650.63 

````````Process Check: objlist.exe by Laurent````````

`````````````````System Health check`````````````````

Total Fragmentation on Drive C:: 19% Defragment your hard drive soon! (Do NOT

defrag if SSD!)

````````````````````End of Log``````````````````````

 

 

speccy link

 

 

http://speccy.piriform.com/results/b0YAMZH3sxMzKaIvJtXcxvO

 

 

 

I searched the reqistry and could find no evidence of Microsoft Security Essentials.  There were no services related to it, started or otherwise.  I tried to run the FixIt to let MS fix it and got the same error as in my last post, but with the new fixit #.

 

I just realized I missed the post re: tdsskill.  I will run that and post back.  I will rerun everything after, in case anything changes.

 

Thank you,

adaniel


Edited by adaniel, 11 December 2013 - 05:25 PM.


#15 adaniel

adaniel
  • Topic Starter

  • Members
  • 206 posts
  • OFFLINE
  •  
  • Local time:07:42 AM

Posted 11 December 2013 - 05:37 PM

Here is the TDSSKiller log.

 

I once had, on another system, an infection of 'noaccess' or some such trojan.  The permissions problems and odd behavior remind me of that one - along with the absolute pain to resolve.

 

I have replaced the CD-ROM drive, so if we need that it is available.

 

Thank you,

adaniel

 

 

17:32:35.0375 0x0b64  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50

17:32:39.0515 0x0b64  ============================================================
17:32:39.0515 0x0b64  Current date / time: 2013/12/11 17:32:39.0515
17:32:39.0515 0x0b64  SystemInfo:
17:32:39.0515 0x0b64  
17:32:39.0515 0x0b64  OS Version: 5.1.2600 ServicePack: 3.0
17:32:39.0515 0x0b64  Product type: Workstation
17:32:39.0515 0x0b64  ComputerName: SEGEBADE
17:32:39.0515 0x0b64  UserName: Administrator
17:32:39.0515 0x0b64  Windows directory: C:\WINDOWS
17:32:39.0515 0x0b64  System windows directory: C:\WINDOWS
17:32:39.0515 0x0b64  Processor architecture: Intel x86
17:32:39.0515 0x0b64  Number of processors: 2
17:32:39.0515 0x0b64  Page size: 0x1000
17:32:39.0515 0x0b64  Boot type: Normal boot
17:32:39.0515 0x0b64  ============================================================
17:32:41.0984 0x0b64  KLMD registered as C:\WINDOWS\system32\drivers\49182104.sys
17:32:42.0078 0x0b64  System UUID: {34F806C0-BA30-ED94-179D-563EF8937974}
17:32:42.0734 0x0b64  Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
17:32:42.0750 0x0b64  ============================================================
17:32:42.0750 0x0b64  \Device\Harddisk0\DR0:
17:32:42.0750 0x0b64  MBR partitions:
17:32:42.0750 0x0b64  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x8104266
17:32:42.0750 0x0b64  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x8108166, BlocksNum 0x140249A
17:32:42.0750 0x0b64  ============================================================
17:32:42.0750 0x0b64  C: <-> \Device\Harddisk0\DR0\Partition1
17:32:42.0781 0x0b64  D: <-> \Device\Harddisk0\DR0\Partition2
17:32:42.0781 0x0b64  ============================================================
17:32:42.0781 0x0b64  Initialize success
17:32:42.0781 0x0b64  ============================================================
17:33:27.0171 0x0ad8  ============================================================
17:33:27.0171 0x0ad8  Scan started
17:33:27.0171 0x0ad8  Mode: Manual; 
17:33:27.0171 0x0ad8  ============================================================
17:33:27.0171 0x0ad8  KSN ping started
17:33:29.0687 0x0ad8  KSN ping finished: true
17:33:30.0093 0x0ad8  ================ Scan system memory ========================
17:33:31.0640 0x0ad8  System memory - ok
17:33:31.0640 0x0ad8  ================ Scan services =============================
17:33:31.0734 0x0ad8  [ C0393EB99A6C72C6BEF9BFC4A72B33A6, 72BF029C6A37DE131FFD61C2374C8920556236218613E37B5F348AA89FA12E42 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
17:33:31.0734 0x0ad8  !SASCORE - ok
17:33:31.0984 0x0ad8  Abiosdsk - ok
17:33:32.0000 0x0ad8  abp480n5 - ok
17:33:32.0046 0x0ad8  [ 0F2D66D5F08EBE2F77BB904288DCF6F0, 5969A64B6995DCAF16F9A76BD1235472F76D71DFE629B956221D2C3D73EDF98A ] ac97intc        C:\WINDOWS\system32\drivers\ac97intc.sys
17:33:32.0046 0x0ad8  ac97intc - ok
17:33:32.0093 0x0ad8  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:33:32.0093 0x0ad8  ACPI - ok
17:33:32.0140 0x0ad8  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
17:33:32.0140 0x0ad8  ACPIEC - ok
17:33:32.0203 0x0ad8  [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:33:32.0218 0x0ad8  AdobeFlashPlayerUpdateSvc - ok
17:33:32.0250 0x0ad8  [ 9A11864873DA202C996558B2106B0BBC, 4C68F1DBD1541291DD0FAB78DB42B25FA051CD9F55ED869173E3219CD31500C4 ] adpu160m        C:\WINDOWS\system32\DRIVERS\adpu160m.sys
17:33:32.0250 0x0ad8  adpu160m - ok
17:33:32.0296 0x0ad8  [ 0EA9B1F0C6C90A509C8603775366ADB7, 9B8AE3D9757319B1AD88A3FFF64AF7B6253D484977C8478EC8024778FE2EF74D ] adpu320         C:\WINDOWS\system32\DRIVERS\adpu320.sys
17:33:32.0296 0x0ad8  adpu320 - ok
17:33:32.0343 0x0ad8  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
17:33:32.0343 0x0ad8  aec - ok
17:33:32.0390 0x0ad8  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
17:33:32.0390 0x0ad8  AFD - ok
17:33:32.0390 0x0ad8  Aha154x - ok
17:33:32.0406 0x0ad8  [ 19DD0FB48B0C18892F70E2E7D61A1529, 95BA1568E8E08314508CA0E1F95555891E70399AEC312C793B46A841F56FFDCF ] aic78u2         C:\WINDOWS\system32\DRIVERS\aic78u2.sys
17:33:32.0421 0x0ad8  aic78u2 - ok
17:33:32.0437 0x0ad8  [ B7FE594A7468AA0132DEB03FB8E34326, BF0DC2B8C474DB151589BA9968264413521DDD9E7316B752B2FA40C24200FBE0 ] aic78xx         C:\WINDOWS\system32\DRIVERS\aic78xx.sys
17:33:32.0453 0x0ad8  aic78xx - ok
17:33:32.0468 0x0ad8  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
17:33:32.0484 0x0ad8  Alerter - ok
17:33:32.0500 0x0ad8  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             C:\WINDOWS\System32\alg.exe
17:33:32.0515 0x0ad8  ALG - ok
17:33:32.0515 0x0ad8  AliIde - ok
17:33:32.0515 0x0ad8  amsint - ok
17:33:32.0546 0x0ad8  [ D8849F77C0B66226335A59D26CB4EDC6, 4990031453204C57E36E850252A39B05D6ECDAB9E71A8136FB4900F17E59C9CA ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
17:33:32.0562 0x0ad8  AppMgmt - ok
17:33:32.0562 0x0ad8  asc - ok
17:33:32.0562 0x0ad8  asc3350p - ok
17:33:32.0578 0x0ad8  asc3550 - ok
17:33:32.0671 0x0ad8  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
17:33:32.0687 0x0ad8  aspnet_state - ok
17:33:32.0703 0x0ad8  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:33:32.0718 0x0ad8  AsyncMac - ok
17:33:32.0750 0x0ad8  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
17:33:32.0750 0x0ad8  atapi - ok
17:33:32.0765 0x0ad8  Atdisk - ok
17:33:32.0812 0x0ad8  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:33:32.0812 0x0ad8  Atmarpc - ok
17:33:32.0859 0x0ad8  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
17:33:32.0890 0x0ad8  AudioSrv - ok
17:33:32.0953 0x0ad8  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
17:33:32.0984 0x0ad8  audstub - ok
17:33:33.0046 0x0ad8  [ 3A3A82FFD268BCFB7AE6A48CECF00AD9, 16F076B9816E28541C58FE9695EB883211C284AA025E9F49B19E7DD4E6BDA94D ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys
17:33:33.0046 0x0ad8  b57w2k - ok
17:33:33.0156 0x0ad8  [ 6163664C7E9CD110AF70180C126C3FDC, 9A801295CDE2BDE4EE0E96C610E4C01F6915DBDA2104D0E8873AFF1BC34A0FA1 ] BcmSqlStartupSvc C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
17:33:33.0156 0x0ad8  BcmSqlStartupSvc - ok
17:33:33.0203 0x0ad8  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
17:33:33.0203 0x0ad8  Beep - ok
17:33:33.0265 0x0ad8  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            C:\WINDOWS\system32\qmgr.dll
17:33:33.0296 0x0ad8  BITS - ok
17:33:33.0343 0x0ad8  [ 07A758BFFB297819252AA72BAB0E6611, 391562B8C5589015F43941EBCE5D1BB58A38402398A34DBB8FD21EC03884301C ] Blfp            C:\WINDOWS\system32\DRIVERS\baspxp32.sys
17:33:33.0343 0x0ad8  Blfp - ok
17:33:33.0375 0x0ad8  [ 4BA311473E0D8557827E6F2FE33A8095, 5F4842802B6043119DD6C4D949559515B5FBD0B75A79FA56A8C4C70626050470 ] brfilt          C:\WINDOWS\system32\Drivers\Brfilt.sys
17:33:33.0375 0x0ad8  brfilt - ok
17:33:33.0406 0x0ad8  [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser         C:\WINDOWS\System32\browser.dll
17:33:33.0406 0x0ad8  Browser - ok
17:33:33.0453 0x0ad8  [ E05D9EDA91C1B2C4C4F6F5A6D5B14B58, 83ADA3901685C2928AF7989F829F2D9EB0FC7841A53C62189F05E7258FE7A418 ] brparimg        C:\WINDOWS\system32\DRIVERS\BrParImg.sys
17:33:33.0453 0x0ad8  brparimg - ok
17:33:33.0484 0x0ad8  [ 108D5C678411AC5B53D51756177D50A4, 269E8B1C2643C713F85A874E4E0577713351DADC381DA1177ED4F2EB4FB60A73 ] BrParWdm        C:\WINDOWS\system32\Drivers\BrParwdm.sys
17:33:33.0484 0x0ad8  BrParWdm - ok
17:33:33.0515 0x0ad8  [ 92A964547B96D697E5E9ED43B4297F5A, 01A84802B68253FF093EAFED5B85DE716BB85EBD080D92D4814B6FB39286CD24 ] BrScnUsb        C:\WINDOWS\system32\DRIVERS\BrScnUsb.sys
17:33:33.0515 0x0ad8  BrScnUsb - ok
17:33:33.0531 0x0ad8  [ 1A5FC78E41840EDF79D65EC16EFF2787, 05BC4C07C88ADDE6D7FF01B821DDB944EEEC8035AC1B6D780E39FDBD12FCA885 ] BrSerIf         C:\WINDOWS\system32\Drivers\BrSerIf.sys
17:33:33.0531 0x0ad8  BrSerIf - ok
17:33:33.0578 0x0ad8  [ 8E06CD96E00472C03770A697D04031C0, A3EBACBF6300C5C888303FE336D92C318BA17312B3B99DC0DB047F443089F413 ] BrSerWDM        C:\WINDOWS\system32\Drivers\BrSerWdm.sys
17:33:33.0578 0x0ad8  BrSerWDM - ok
17:33:33.0578 0x0ad8  [ A24C7B39602218F8DBDB2B6704325FC7, B90A1BA412A33AD041A2CE47FBB73AE296AF07A2F3DF1F56D9FEE5B3B1E0BBD5 ] BrUsbSer        C:\WINDOWS\system32\Drivers\BrUsbSer.sys
17:33:33.0593 0x0ad8  BrUsbSer - ok
17:33:33.0625 0x0ad8  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
17:33:33.0625 0x0ad8  cbidf2k - ok
17:33:33.0625 0x0ad8  cd20xrnt - ok
17:33:33.0640 0x0ad8  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
17:33:33.0640 0x0ad8  Cdaudio - ok
17:33:33.0671 0x0ad8  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
17:33:33.0671 0x0ad8  Cdfs - ok
17:33:33.0703 0x0ad8  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:33:33.0718 0x0ad8  Cdrom - ok
17:33:33.0718 0x0ad8  Changer - ok
17:33:33.0718 0x0ad8  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
17:33:33.0718 0x0ad8  CiSvc - ok
17:33:33.0765 0x0ad8  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
17:33:33.0765 0x0ad8  ClipSrv - ok
17:33:33.0796 0x0ad8  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:33:33.0953 0x0ad8  clr_optimization_v2.0.50727_32 - ok
17:33:33.0953 0x0ad8  CmdIde - ok
17:33:33.0968 0x0ad8  COMSysApp - ok
17:33:33.0968 0x0ad8  Cpqarray - ok
17:33:34.0000 0x0ad8  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
17:33:34.0062 0x0ad8  CryptSvc - ok
17:33:34.0093 0x0ad8  [ CB6FF7012BB5D59D7C12350DB795CE1F, D0C614B206B69EBE735CFB158703730B42A72A46F6808D0D1C7385E3C1434AC5 ] ctxusbm         C:\WINDOWS\system32\DRIVERS\ctxusbm.sys
17:33:34.0093 0x0ad8  ctxusbm - ok
17:33:34.0093 0x0ad8  dac2w2k - ok
17:33:34.0109 0x0ad8  dac960nt - ok
17:33:34.0156 0x0ad8  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
17:33:34.0171 0x0ad8  DcomLaunch - ok
17:33:34.0187 0x0ad8  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
17:33:34.0187 0x0ad8  Dhcp - ok
17:33:34.0203 0x0ad8  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
17:33:34.0203 0x0ad8  Disk - ok
17:33:34.0218 0x0ad8  dmadmin - ok
17:33:34.0281 0x0ad8  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
17:33:34.0296 0x0ad8  dmboot - ok
17:33:34.0312 0x0ad8  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            C:\WINDOWS\system32\DRIVERS\dmio.sys
17:33:34.0312 0x0ad8  dmio - ok
17:33:34.0328 0x0ad8  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
17:33:34.0328 0x0ad8  dmload - ok
17:33:34.0359 0x0ad8  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        C:\WINDOWS\System32\dmserver.dll
17:33:34.0359 0x0ad8  dmserver - ok
17:33:34.0406 0x0ad8  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
17:33:34.0406 0x0ad8  DMusic - ok
17:33:34.0437 0x0ad8  [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
17:33:34.0437 0x0ad8  Dnscache - ok
17:33:34.0484 0x0ad8  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
17:33:34.0484 0x0ad8  Dot3svc - ok
17:33:34.0515 0x0ad8  [ 40F3B93B4E5B0126F2F5C0A7A5E22660, 8AFFF28903037F5E36BB5352F2B236A217558FCC0146B23C787606C3F21243DB ] dpti2o          C:\WINDOWS\system32\DRIVERS\dpti2o.sys
17:33:34.0515 0x0ad8  dpti2o - ok
17:33:34.0531 0x0ad8  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
17:33:34.0531 0x0ad8  drmkaud - ok
17:33:34.0562 0x0ad8  [ 3FCA03CBCA11269F973B70FA483C88EF, 0995989B9EBE5CE1C5489139849FB2AD69DE9749650BBC262AD754E5CE457C59 ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys
17:33:34.0562 0x0ad8  E100B - ok
17:33:34.0578 0x0ad8  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         C:\WINDOWS\System32\eapsvc.dll
17:33:34.0593 0x0ad8  EapHost - ok
17:33:34.0609 0x0ad8  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
17:33:34.0609 0x0ad8  ERSvc - ok
17:33:34.0640 0x0ad8  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog        C:\WINDOWS\system32\services.exe
17:33:34.0656 0x0ad8  Eventlog - ok
17:33:34.0703 0x0ad8  [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem     C:\WINDOWS\system32\es.dll
17:33:34.0718 0x0ad8  EventSystem - ok
17:33:34.0765 0x0ad8  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
17:33:34.0781 0x0ad8  Fastfat - ok
17:33:34.0828 0x0ad8  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
17:33:34.0843 0x0ad8  FastUserSwitchingCompatibility - ok
17:33:34.0875 0x0ad8  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
17:33:34.0875 0x0ad8  Fdc - ok
17:33:34.0890 0x0ad8  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
17:33:34.0890 0x0ad8  Fips - ok
17:33:34.0937 0x0ad8  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
17:33:34.0937 0x0ad8  Flpydisk - ok
17:33:34.0984 0x0ad8  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
17:33:35.0000 0x0ad8  FltMgr - ok
17:33:35.0093 0x0ad8  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
17:33:35.0093 0x0ad8  FontCache3.0.0.0 - ok
17:33:35.0125 0x0ad8  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:33:35.0125 0x0ad8  Fs_Rec - ok
17:33:35.0156 0x0ad8  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:33:35.0156 0x0ad8  Ftdisk - ok
17:33:35.0187 0x0ad8  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:33:35.0203 0x0ad8  Gpc - ok
17:33:35.0265 0x0ad8  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
17:33:35.0281 0x0ad8  gupdate - ok
17:33:35.0281 0x0ad8  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
17:33:35.0281 0x0ad8  gupdatem - ok
17:33:35.0328 0x0ad8  [ 2A013E7530BEAB6E569FAA83F517E836, 481390EE00AF49BB54B8C885801FCAC0F87F4EF3D935ABBBA42B7C063EFDDB8F ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
17:33:35.0328 0x0ad8  HdAudAddService - ok
17:33:35.0375 0x0ad8  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:33:35.0375 0x0ad8  HDAudBus - ok
17:33:35.0437 0x0ad8  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
17:33:35.0437 0x0ad8  helpsvc - ok
17:33:35.0453 0x0ad8  [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] HidServ         C:\WINDOWS\System32\hidserv.dll
17:33:35.0453 0x0ad8  HidServ - ok
17:33:35.0453 0x0ad8  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:33:35.0453 0x0ad8  HidUsb - ok
17:33:35.0500 0x0ad8  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
17:33:35.0500 0x0ad8  hkmsvc - ok
17:33:35.0500 0x0ad8  hpn - ok
17:33:35.0531 0x0ad8  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
17:33:35.0546 0x0ad8  HTTP - ok
17:33:35.0578 0x0ad8  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
17:33:35.0578 0x0ad8  HTTPFilter - ok
17:33:35.0578 0x0ad8  i2omgmt - ok
17:33:35.0593 0x0ad8  i2omp - ok
17:33:35.0609 0x0ad8  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:33:35.0609 0x0ad8  i8042prt - ok
17:33:35.0640 0x0ad8  [ 06B7EF73BA5F302EECC294CDF7E19702, 5EF396D70D69F8E86A0FC7311E634A8360A99DDEC39054DC3018624A1497836E ] i81x            C:\WINDOWS\system32\DRIVERS\i81xnt5.sys
17:33:35.0640 0x0ad8  i81x - ok
17:33:35.0656 0x0ad8  [ 7B5B44EFE5EB9DADFB8EE29700885D23, AC01EF344206A1303E03D11420CC31228C6480CF8F2A1733BE18F2E6D44D1807 ] iAimFP0         C:\WINDOWS\system32\DRIVERS\wADV01nt.sys
17:33:35.0671 0x0ad8  iAimFP0 - ok
17:33:35.0687 0x0ad8  [ EB1F6BAB6C22EDE0BA551B527475F7E9, 5680C2B124B2222371F8F1FF934723CE06EE37072C42066547173CB3050969C4 ] iAimFP1         C:\WINDOWS\system32\DRIVERS\wADV02NT.sys
17:33:35.0687 0x0ad8  iAimFP1 - ok
17:33:35.0687 0x0ad8  [ 03CE989D846C1AA81145CB22FCB86D06, 7A63EF1016B1F70BDD5EBCEB415D59CA8D40DE256DAD2511CFBD88C82C37F0D6 ] iAimFP2         C:\WINDOWS\system32\DRIVERS\wADV05NT.sys
17:33:35.0687 0x0ad8  iAimFP2 - ok
17:33:35.0703 0x0ad8  [ 525849B4469DE021D5D61B4DB9BE3A9D, 38F57D4F6A19F909764641384054216B136BEEC4A8F703A95A32583B1BA7D862 ] iAimFP3         C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys
17:33:35.0703 0x0ad8  iAimFP3 - ok
17:33:35.0703 0x0ad8  [ 589C2BCDB5BD602BF7B63D210407EF8C, 97AAC0F6AA4DACA904CAE02341105AC4BCB5B9D7274EF54F5C1E19BD7EC0C066 ] iAimFP4         C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys
17:33:35.0703 0x0ad8  iAimFP4 - ok
17:33:35.0718 0x0ad8  [ 0308AEF61941E4AF478FA1A0F83812F5, 56B30CAC8C2B35704BE4CF13C1C1070D47D98F9AFBFDA5CB43C474B0324BB4E3 ] iAimFP5         C:\WINDOWS\system32\DRIVERS\wADV07nt.sys
17:33:35.0734 0x0ad8  iAimFP5 - ok
17:33:35.0734 0x0ad8  [ 714038A8AA5DE08E12062202CD7EAEB5, 51F732AB16D8BD05672F829D5B1F3832013280A734A71C205559C24D178C8690 ] iAimFP6         C:\WINDOWS\system32\DRIVERS\wADV08nt.sys
17:33:35.0734 0x0ad8  iAimFP6 - ok
17:33:35.0734 0x0ad8  [ 7BB3AA595E4507A788DE1CDC63F4C8C4, 299289E81BD318D764E6941E87E2FBF715F0B8B9C5F6FE64176ADE41F3853E6E ] iAimFP7         C:\WINDOWS\system32\DRIVERS\wADV09nt.sys
17:33:35.0750 0x0ad8  iAimFP7 - ok
17:33:35.0750 0x0ad8  [ D83BDD5C059667A2F647A6BE5703A4D2, 6640B923BDF345294B4D4AAE24787CA2FA5A8F31603934747292805323E46BDD ] iAimTV0         C:\WINDOWS\system32\DRIVERS\wATV01nt.sys
17:33:35.0750 0x0ad8  iAimTV0 - ok
17:33:35.0750 0x0ad8  [ ED968D23354DAA0D7C621580C012A1F6, CE6A58D1D6DD1460625C88A491CB43136416633C4F51EC3CF5209E5FAAA03098 ] iAimTV1         C:\WINDOWS\system32\DRIVERS\wATV02NT.sys
17:33:35.0765 0x0ad8  iAimTV1 - ok
17:33:35.0765 0x0ad8  [ D738273F218A224C1DDAC04203F27A84, 94F1D11949A848E7699A2FDFEB8F9D9ABCE02DC86629C3A914DEF350EDDE426B ] iAimTV3         C:\WINDOWS\system32\DRIVERS\wATV04nt.sys
17:33:35.0765 0x0ad8  iAimTV3 - ok
17:33:35.0781 0x0ad8  [ 0052D118995CBAB152DAABE6106D1442, DF656EDFE5A59550FE2C41567CCB79484EE59DCE6703156DFDC0466F52A9B398 ] iAimTV4         C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys
17:33:35.0781 0x0ad8  iAimTV4 - ok
17:33:35.0812 0x0ad8  [ 791CC45DE6E50445BE72E8AD6401FF45, D1466D6E944C508B1AB817DFC2C81584F635A0EBF9D3E582930536BA99358E6E ] iAimTV5         C:\WINDOWS\system32\DRIVERS\wATV10nt.sys
17:33:35.0843 0x0ad8  iAimTV5 - ok
17:33:35.0843 0x0ad8  [ 352FA0E98BC461CE1CE5D41F64DB558D, B08EAED6C93AB6B872153933447051425DA77A355CCB19434CAEDF3920AD8C23 ] iAimTV6         C:\WINDOWS\system32\DRIVERS\wATV06nt.sys
17:33:35.0843 0x0ad8  iAimTV6 - ok
17:33:35.0968 0x0ad8  [ 0674CE8AE167D830B871A99C677C5C59, C733E649607D538C3DB846D56876109BD719AE58180D895FA104BFACDDE4DDEC ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
17:33:36.0000 0x0ad8  ialm - ok
17:33:36.0156 0x0ad8  [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT        c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
17:33:36.0171 0x0ad8  IDriverT - ok
17:33:36.0265 0x0ad8  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:33:36.0296 0x0ad8  idsvc - ok
17:33:36.0312 0x0ad8  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
17:33:36.0312 0x0ad8  Imapi - ok
17:33:36.0359 0x0ad8  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    C:\WINDOWS\system32\imapi.exe
17:33:36.0359 0x0ad8  ImapiService - ok
17:33:36.0359 0x0ad8  ini910u - ok
17:33:36.0562 0x0ad8  [ 418FE3A08346CCCA61BC9A04457F46CF, A87BCFC96533E397254C23B04B4BDDCF66DF5026D751CD0A6EB617DF85338DCF ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
17:33:36.0656 0x0ad8  IntcAzAudAddService - ok
17:33:36.0687 0x0ad8  [ B5466A9250342A7AA0CD1FBA13420678, 87E735C4E8924A883AB692D387A83BCBFAE6E165688336AE7AB488F7CA8D339E ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
17:33:36.0687 0x0ad8  IntelIde - ok
17:33:36.0718 0x0ad8  [ 8C953733D8F36EB2133F5BB58808B66B, 555868F246D73652E998B0B1296476E42FCEDED30D646CC000F31ECE4EBC25E6 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:33:36.0718 0x0ad8  intelppm - ok
17:33:36.0734 0x0ad8  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
17:33:36.0750 0x0ad8  Ip6Fw - ok
17:33:36.0765 0x0ad8  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:33:36.0765 0x0ad8  IpFilterDriver - ok
17:33:36.0781 0x0ad8  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:33:36.0781 0x0ad8  IpInIp - ok
17:33:36.0812 0x0ad8  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:33:36.0828 0x0ad8  IpNat - ok
17:33:36.0843 0x0ad8  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:33:36.0843 0x0ad8  IPSec - ok
17:33:36.0875 0x0ad8  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
17:33:36.0875 0x0ad8  IRENUM - ok
17:33:36.0921 0x0ad8  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:33:36.0953 0x0ad8  isapnp - ok
17:33:37.0000 0x0ad8  [ 213822072085B5BBAD9AF30AB577D817, 2C373B804D840933EC3A5F3ABFC43E47C2636CDB2431AB51846C565077B7C468 ] IviRegMgr       C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
17:33:37.0000 0x0ad8  IviRegMgr - ok
17:33:37.0140 0x0ad8  [ 80A79264302910C7C24BA7E44267EFEF, 6080C233478350C8E07515D20D2D60C3758C4A65432B04E8C8B816248621A3EF ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
17:33:37.0140 0x0ad8  JavaQuickStarterService - ok
17:33:37.0171 0x0ad8  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:33:37.0171 0x0ad8  Kbdclass - ok
17:33:37.0203 0x0ad8  [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
17:33:37.0234 0x0ad8  kbdhid - ok
17:33:37.0265 0x0ad8  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
17:33:37.0281 0x0ad8  kmixer - ok
17:33:37.0328 0x0ad8  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
17:33:37.0328 0x0ad8  KSecDD - ok
17:33:37.0359 0x0ad8  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
17:33:37.0390 0x0ad8  lanmanserver - ok
17:33:37.0437 0x0ad8  [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
17:33:37.0437 0x0ad8  lanmanworkstation - ok
17:33:37.0437 0x0ad8  lbrtfdc - ok
17:33:37.0484 0x0ad8  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
17:33:37.0484 0x0ad8  LmHosts - ok
17:33:37.0546 0x0ad8  [ 1BDB34A492109198CAB0575F2743BE70, EAEC8BDC3E582774C3F1E0C7A013B912C81130A6518C83865D13DC5B6191ED3D ] Maxtor Sync Service C:\Program Files\Maxtor\Sync\SyncServices.exe
17:33:37.0562 0x0ad8  Maxtor Sync Service - ok
17:33:37.0578 0x0ad8  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
17:33:37.0578 0x0ad8  Messenger - ok
17:33:37.0593 0x0ad8  [ A7DA20AB18A1BDAE28B0F349E57DA0D1, C668F419579ADDF37558241982B0334A93644E9C05919967C494FE9853E62D5B ] mf              C:\WINDOWS\system32\DRIVERS\mf.sys
17:33:37.0593 0x0ad8  mf - ok
17:33:37.0625 0x0ad8  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
17:33:37.0625 0x0ad8  mnmdd - ok
17:33:37.0656 0x0ad8  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
17:33:37.0656 0x0ad8  mnmsrvc - ok
17:33:37.0687 0x0ad8  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
17:33:37.0687 0x0ad8  Modem - ok
17:33:37.0703 0x0ad8  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:33:37.0703 0x0ad8  Mouclass - ok
17:33:37.0734 0x0ad8  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:33:37.0734 0x0ad8  mouhid - ok
17:33:37.0750 0x0ad8  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
17:33:37.0750 0x0ad8  MountMgr - ok
17:33:37.0796 0x0ad8  [ 5D494509432897338AFC19DB78A76DCB, 873F61F45D4A96096E17F9E266B1A20CCD65E4678DDB21DDE3DB98E831E524D3 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:33:37.0796 0x0ad8  MozillaMaintenance - ok
17:33:37.0796 0x0ad8  mraid35x - ok
17:33:37.0812 0x0ad8  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:33:37.0812 0x0ad8  MRxDAV - ok
17:33:37.0875 0x0ad8  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:33:37.0875 0x0ad8  MRxSmb - ok
17:33:37.0906 0x0ad8  [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
17:33:37.0906 0x0ad8  MSDTC - ok
17:33:37.0937 0x0ad8  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
17:33:37.0937 0x0ad8  Msfs - ok
17:33:37.0937 0x0ad8  MSIServer - ok
17:33:37.0968 0x0ad8  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:33:37.0968 0x0ad8  MSKSSRV - ok
17:33:38.0000 0x0ad8  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:33:38.0000 0x0ad8  MSPCLOCK - ok
17:33:38.0000 0x0ad8  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
17:33:38.0015 0x0ad8  MSPQM - ok
17:33:38.0031 0x0ad8  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:33:38.0031 0x0ad8  mssmbios - ok
17:33:38.0109 0x0ad8  MSSQL$MSSMLBIZ - ok
17:33:38.0156 0x0ad8  [ 1D89EB4E2A99CABD4E81225F4F4C4B25, B9C4D956E3F74CB463A1A14287F4B550381FBB3E4B2DF9418E041E02A159E31E ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
17:33:38.0156 0x0ad8  MSSQLServerADHelper - ok
17:33:38.0187 0x0ad8  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
17:33:38.0187 0x0ad8  Mup - ok
17:33:38.0234 0x0ad8  [ 216AC775320F64DE28CFEB7C179C4FF9, 12A9E0056E4BA11C55490CED9739806D08040860C37AEFE1FA8D5EDF074A74FB ] MXOPSWD         C:\WINDOWS\system32\DRIVERS\mxopswd.sys
17:33:38.0234 0x0ad8  MXOPSWD - ok
17:33:38.0281 0x0ad8  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        C:\WINDOWS\System32\qagentrt.dll
17:33:38.0281 0x0ad8  napagent - ok
17:33:38.0328 0x0ad8  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
17:33:38.0328 0x0ad8  NDIS - ok
17:33:38.0359 0x0ad8  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:33:38.0359 0x0ad8  NdisTapi - ok
17:33:38.0390 0x0ad8  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:33:38.0390 0x0ad8  Ndisuio - ok
17:33:38.0421 0x0ad8  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:33:38.0421 0x0ad8  NdisWan - ok
17:33:38.0453 0x0ad8  [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
17:33:38.0453 0x0ad8  NDProxy - ok
17:33:38.0468 0x0ad8  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
17:33:38.0468 0x0ad8  NetBIOS - ok
17:33:38.0484 0x0ad8  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
17:33:38.0484 0x0ad8  NetBT - ok
17:33:38.0515 0x0ad8  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          C:\WINDOWS\system32\netdde.exe
17:33:38.0515 0x0ad8  NetDDE - ok
17:33:38.0531 0x0ad8  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
17:33:38.0531 0x0ad8  NetDDEdsdm - ok
17:33:38.0531 0x0ad8  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        C:\WINDOWS\system32\lsass.exe
17:33:38.0531 0x0ad8  Netlogon - ok
17:33:38.0562 0x0ad8  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          C:\WINDOWS\System32\netman.dll
17:33:38.0578 0x0ad8  Netman - ok
17:33:38.0593 0x0ad8  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:33:38.0609 0x0ad8  NetTcpPortSharing - ok
17:33:38.0640 0x0ad8  [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla             C:\WINDOWS\System32\mswsock.dll
17:33:38.0656 0x0ad8  Nla - ok
17:33:38.0671 0x0ad8  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
17:33:38.0671 0x0ad8  Npfs - ok
17:33:38.0718 0x0ad8  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
17:33:38.0734 0x0ad8  Ntfs - ok
17:33:38.0750 0x0ad8  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
17:33:38.0750 0x0ad8  NtLmSsp - ok
17:33:38.0796 0x0ad8  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
17:33:38.0796 0x0ad8  NtmsSvc - ok
17:33:38.0828 0x0ad8  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
17:33:38.0843 0x0ad8  Null - ok
17:33:38.0875 0x0ad8  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:33:38.0875 0x0ad8  NwlnkFlt - ok
17:33:38.0906 0x0ad8  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:33:38.0906 0x0ad8  NwlnkFwd - ok
17:33:38.0984 0x0ad8  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:33:39.0000 0x0ad8  ose - ok
17:33:39.0015 0x0ad8  [ C90018BAFDC7098619A4A95B046B30F3, 1826E46F237AD65BA189B83803A46A6C2B29089C1BA146106ADD9F2B04D4A89D ] P3              C:\WINDOWS\system32\DRIVERS\p3.sys
17:33:39.0015 0x0ad8  P3 - ok
17:33:39.0062 0x0ad8  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
17:33:39.0062 0x0ad8  Parport - ok
17:33:39.0078 0x0ad8  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
17:33:39.0078 0x0ad8  PartMgr - ok
17:33:39.0109 0x0ad8  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
17:33:39.0109 0x0ad8  ParVdm - ok
17:33:39.0187 0x0ad8  [ 2A42DDAEAAE7743C55A3FA68A7AD9538, 7A645600BADA9BA6CDD09FE0E890384DEECEB13855248BA32065FD329F69C8E0 ] PCA             C:\WINDOWS\SMINST\PCAngel.exe
17:33:39.0203 0x0ad8  PCA - ok
17:33:39.0203 0x0ad8  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
17:33:39.0218 0x0ad8  PCI - ok
17:33:39.0218 0x0ad8  PCIDump - ok
17:33:39.0234 0x0ad8  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
17:33:39.0234 0x0ad8  PCIIde - ok
17:33:39.0265 0x0ad8  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
17:33:39.0265 0x0ad8  Pcmcia - ok
17:33:39.0265 0x0ad8  PDCOMP - ok
17:33:39.0296 0x0ad8  pdfcDispatcher - ok
17:33:39.0312 0x0ad8  PDFRAME - ok
17:33:39.0312 0x0ad8  PDRELI - ok
17:33:39.0312 0x0ad8  PDRFRAME - ok
17:33:39.0328 0x0ad8  perc2 - ok
17:33:39.0328 0x0ad8  perc2hib - ok
17:33:39.0359 0x0ad8  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay        C:\WINDOWS\system32\services.exe
17:33:39.0359 0x0ad8  PlugPlay - ok
17:33:39.0375 0x0ad8  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
17:33:39.0375 0x0ad8  PolicyAgent - ok
17:33:39.0406 0x0ad8  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:33:39.0406 0x0ad8  PptpMiniport - ok
17:33:39.0421 0x0ad8  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
17:33:39.0421 0x0ad8  ProtectedStorage - ok
17:33:39.0421 0x0ad8  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
17:33:39.0437 0x0ad8  PSched - ok
17:33:39.0437 0x0ad8  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:33:39.0437 0x0ad8  Ptilink - ok
17:33:39.0437 0x0ad8  ql1080 - ok
17:33:39.0453 0x0ad8  Ql10wnt - ok
17:33:39.0453 0x0ad8  ql12160 - ok
17:33:39.0453 0x0ad8  ql1240 - ok
17:33:39.0468 0x0ad8  ql1280 - ok
17:33:39.0500 0x0ad8  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:33:39.0500 0x0ad8  RasAcd - ok
17:33:39.0531 0x0ad8  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         C:\WINDOWS\System32\rasauto.dll
17:33:39.0531 0x0ad8  RasAuto - ok
17:33:39.0562 0x0ad8  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:33:39.0562 0x0ad8  Rasl2tp - ok
17:33:39.0578 0x0ad8  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          C:\WINDOWS\System32\rasmans.dll
17:33:39.0578 0x0ad8  RasMan - ok
17:33:39.0593 0x0ad8  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:33:39.0593 0x0ad8  RasPppoe - ok
17:33:39.0593 0x0ad8  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
17:33:39.0593 0x0ad8  Raspti - ok
17:33:39.0609 0x0ad8  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:33:39.0625 0x0ad8  Rdbss - ok
17:33:39.0625 0x0ad8  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:33:39.0625 0x0ad8  RDPCDD - ok
17:33:39.0671 0x0ad8  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:33:39.0671 0x0ad8  rdpdr - ok
17:33:39.0718 0x0ad8  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
17:33:39.0718 0x0ad8  RDPWD - ok
17:33:39.0750 0x0ad8  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
17:33:39.0765 0x0ad8  RDSessMgr - ok
17:33:39.0812 0x0ad8  [ 96EFEC24346A8EB1157E80523079ADDC, 7F8FC284029856C754E400B6C954369FFE27763C81D8F4AF4E58BFDD44CBC24A ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
17:33:39.0812 0x0ad8  RealNetworks Downloader Resolver Service - ok
17:33:39.0859 0x0ad8  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
17:33:39.0859 0x0ad8  redbook - ok
17:33:39.0906 0x0ad8  [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
17:33:39.0921 0x0ad8  RemoteAccess - ok
17:33:39.0937 0x0ad8  [ 5B19B557B0C188210A56A6B699D90B8F, 0FA880B81AE615206FD1738B83428AAA491D54B24168339DE6E87FDE8C6C14B0 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
17:33:39.0953 0x0ad8  RemoteRegistry - ok
17:33:39.0984 0x0ad8  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      C:\WINDOWS\system32\locator.exe
17:33:39.0984 0x0ad8  RpcLocator - ok
17:33:40.0015 0x0ad8  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs           C:\WINDOWS\System32\rpcss.dll
17:33:40.0031 0x0ad8  RpcSs - ok
17:33:40.0062 0x0ad8  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe
17:33:40.0078 0x0ad8  RSVP - ok
17:33:40.0093 0x0ad8  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           C:\WINDOWS\system32\lsass.exe
17:33:40.0109 0x0ad8  SamSs - ok
17:33:40.0109 0x0ad8  SASKUTIL - ok
17:33:40.0140 0x0ad8  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
17:33:40.0156 0x0ad8  SCardSvr - ok
17:33:40.0218 0x0ad8  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
17:33:40.0218 0x0ad8  Schedule - ok
17:33:40.0234 0x0ad8  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:33:40.0234 0x0ad8  Secdrv - ok
17:33:40.0281 0x0ad8  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        C:\WINDOWS\System32\seclogon.dll
17:33:40.0281 0x0ad8  seclogon - ok
17:33:40.0296 0x0ad8  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            C:\WINDOWS\system32\sens.dll
17:33:40.0296 0x0ad8  SENS - ok
17:33:40.0312 0x0ad8  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
17:33:40.0312 0x0ad8  serenum - ok
17:33:40.0328 0x0ad8  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
17:33:40.0328 0x0ad8  Serial - ok
17:33:40.0343 0x0ad8  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
17:33:40.0343 0x0ad8  Sfloppy - ok
17:33:40.0390 0x0ad8  [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
17:33:40.0406 0x0ad8  SharedAccess - ok
17:33:40.0421 0x0ad8  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
17:33:40.0437 0x0ad8  ShellHWDetection - ok
17:33:40.0437 0x0ad8  Simbad - ok
17:33:40.0453 0x0ad8  [ 32933B07FC16D9F778BEE12545FA1B1A, 73CCDD4EBA90138820624FFEFC629EFA3B15FF395D9F31CC4C4678713ECB1F23 ] SimpTcp         C:\WINDOWS\system32\tcpsvcs.exe
17:33:40.0453 0x0ad8  SimpTcp - ok
17:33:40.0468 0x0ad8  Sparrow - ok
17:33:40.0484 0x0ad8  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
17:33:40.0484 0x0ad8  splitter - ok
17:33:40.0531 0x0ad8  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
17:33:40.0531 0x0ad8  Spooler - ok
17:33:40.0578 0x0ad8  [ 86EBD8B1F23E743AAD21F4D5B4D40985, 8FA4DFDAE15712266B878C364FEFDB63CB30A3DCC25F83CDFE8C8AB3AE864BE6 ] SQLBrowser      c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
17:33:40.0578 0x0ad8  SQLBrowser - ok
17:33:40.0593 0x0ad8  [ D89083C4EB02DACA8F944B0E05E57F9D, F96416B5877C280B4EE088A83956E0202F82DC5EACDEEFF06D5979FFFAA9FA74 ] SQLWriter       c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
17:33:40.0593 0x0ad8  SQLWriter - ok
17:33:40.0640 0x0ad8  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
17:33:40.0640 0x0ad8  sr - ok
17:33:40.0656 0x0ad8  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       C:\WINDOWS\system32\srsvc.dll
17:33:40.0671 0x0ad8  srservice - ok
17:33:40.0703 0x0ad8  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
17:33:40.0703 0x0ad8  Srv - ok
17:33:40.0734 0x0ad8  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
17:33:40.0734 0x0ad8  SSDPSRV - ok
17:33:40.0765 0x0ad8  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
17:33:40.0781 0x0ad8  stisvc - ok
17:33:40.0812 0x0ad8  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
17:33:40.0812 0x0ad8  swenum - ok
17:33:40.0828 0x0ad8  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
17:33:40.0828 0x0ad8  swmidi - ok
17:33:40.0828 0x0ad8  SwPrv - ok
17:33:40.0859 0x0ad8  [ 1FF3217614018630D0A6758630FC698C, 78A3075BBFF5D7ADEAC1527E65ACA8527BFC509DF124D44410BB46C4D96C96BB ] symc810         C:\WINDOWS\system32\DRIVERS\symc810.sys
17:33:40.0859 0x0ad8  symc810 - ok
17:33:40.0875 0x0ad8  [ 070E001D95CF725186EF8B20335F933C, B98B29FB01741AF3B4BB02C76A4D117EA04FE4CC4F8CDB491F9216931704A6D8 ] symc8xx         C:\WINDOWS\system32\DRIVERS\symc8xx.sys
17:33:40.0875 0x0ad8  symc8xx - ok
17:33:40.0921 0x0ad8  [ F2B7E8416F508368AC6730E2AE1C614F, 0A3FC9A2F30C56C0861EE96D0D270F221CCAE5A267DB768F68D2C56E1F3761BA ] Symmpi          C:\WINDOWS\system32\DRIVERS\symmpi.sys
17:33:40.0953 0x0ad8  Symmpi - ok
17:33:40.0953 0x0ad8  [ 80AC1C4ABBE2DF3B738BF15517A51F2C, CCF82D09C63F4FA98BCBEF3A1DC8C02D4269B78256D0B6213E815D9BBE174432 ] sym_hi          C:\WINDOWS\system32\DRIVERS\sym_hi.sys
17:33:40.0953 0x0ad8  sym_hi - ok
17:33:40.0984 0x0ad8  [ BF4FAB949A382A8E105F46EBB4937058, FE7C114A19D50E37463CDD3605C26105A779EEA79CB92BF98267C7BE809D853B ] sym_u3          C:\WINDOWS\system32\DRIVERS\sym_u3.sys
17:33:40.0984 0x0ad8  sym_u3 - ok
17:33:41.0015 0x0ad8  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
17:33:41.0015 0x0ad8  sysaudio - ok
17:33:41.0046 0x0ad8  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
17:33:41.0046 0x0ad8  SysmonLog - ok
17:33:41.0093 0x0ad8  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
17:33:41.0093 0x0ad8  TapiSrv - ok
17:33:41.0125 0x0ad8  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:33:41.0140 0x0ad8  Tcpip - ok
17:33:41.0156 0x0ad8  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
17:33:41.0156 0x0ad8  TDPIPE - ok
17:33:41.0171 0x0ad8  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
17:33:41.0171 0x0ad8  TDTCP - ok
17:33:41.0203 0x0ad8  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
17:33:41.0203 0x0ad8  TermDD - ok
17:33:41.0218 0x0ad8  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     C:\WINDOWS\System32\termsrv.dll
17:33:41.0234 0x0ad8  TermService - ok
17:33:41.0250 0x0ad8  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes          C:\WINDOWS\System32\shsvcs.dll
17:33:41.0250 0x0ad8  Themes - ok
17:33:41.0281 0x0ad8  [ DB7205804759FF62C34E3EFD8A4CC76A, 13A4248F528CE98ACA66898E56822E4FC49B11F491FF1F61A687BA601BF0A802 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
17:33:41.0281 0x0ad8  TlntSvr - ok
17:33:41.0281 0x0ad8  TosIde - ok
17:33:41.0312 0x0ad8  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
17:33:41.0312 0x0ad8  TrkWks - ok
17:33:41.0343 0x0ad8  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
17:33:41.0343 0x0ad8  Udfs - ok
17:33:41.0359 0x0ad8  ultra - ok
17:33:41.0390 0x0ad8  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\drivers\Update.sys
17:33:41.0406 0x0ad8  Update - ok
17:33:41.0437 0x0ad8  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        C:\WINDOWS\System32\upnphost.dll
17:33:41.0437 0x0ad8  upnphost - ok
17:33:41.0453 0x0ad8  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             C:\WINDOWS\System32\ups.exe
17:33:41.0453 0x0ad8  UPS - ok
17:33:41.0468 0x0ad8  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:33:41.0484 0x0ad8  usbccgp - ok
17:33:41.0515 0x0ad8  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:33:41.0515 0x0ad8  usbehci - ok
17:33:41.0546 0x0ad8  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:33:41.0546 0x0ad8  usbhub - ok
17:33:41.0578 0x0ad8  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
17:33:41.0578 0x0ad8  usbprint - ok
17:33:41.0593 0x0ad8  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:33:41.0593 0x0ad8  USBSTOR - ok
17:33:41.0593 0x0ad8  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:33:41.0593 0x0ad8  usbuhci - ok
17:33:41.0609 0x0ad8  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
17:33:41.0609 0x0ad8  VgaSave - ok
17:33:41.0640 0x0ad8  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
17:33:41.0640 0x0ad8  ViaIde - ok
17:33:41.0671 0x0ad8  [ 1B8F371423BB41426632B704A0FD466E, 2FBA599DED59871803936BA24FDCD03662630487BF176163F735DB22CF8BC53C ] VirtDisk        c:\windows\sminst\VirtDisk.sys
17:33:41.0671 0x0ad8  VirtDisk - ok
17:33:41.0703 0x0ad8  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
17:33:41.0703 0x0ad8  VolSnap - ok
17:33:41.0734 0x0ad8  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             C:\WINDOWS\System32\vssvc.exe
17:33:41.0750 0x0ad8  VSS - ok
17:33:41.0781 0x0ad8  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time         C:\WINDOWS\system32\w32time.dll
17:33:41.0796 0x0ad8  W32Time - ok
17:33:41.0828 0x0ad8  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:33:41.0828 0x0ad8  Wanarp - ok
17:33:41.0828 0x0ad8  WDICA - ok
17:33:41.0875 0x0ad8  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
17:33:41.0875 0x0ad8  wdmaud - ok
17:33:41.0906 0x0ad8  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       C:\WINDOWS\System32\webclnt.dll
17:33:41.0937 0x0ad8  WebClient - ok
17:33:42.0031 0x0ad8  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
17:33:42.0031 0x0ad8  winmgmt - ok
17:33:42.0109 0x0ad8  [ F58F2F89A111B08A26EAD3A8FD56B65C, 3431B0A61DFB90F53E465D774B310FC63892FA323CE381C06ACCCEC0D2E19041 ] winvnc          C:\Program Files\TightVNC\WinVNC.exe
17:33:42.0125 0x0ad8  winvnc - ok
17:33:42.0140 0x0ad8  [ C7E39EA41233E9F5B86C8DA3A9F1E4A8, 98C21DEEB7124426D749FACDAD06EBD7F500AE5C465A98D558919C2A51C08554 ] WmdmPmSN        C:\WINDOWS\system32\mspmsnsv.dll
17:33:42.0156 0x0ad8  WmdmPmSN - ok
17:33:42.0203 0x0ad8  [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] Wmi             C:\WINDOWS\System32\advapi32.dll
17:33:42.0218 0x0ad8  Wmi - ok
17:33:42.0250 0x0ad8  [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
17:33:42.0250 0x0ad8  WmiAcpi - ok
17:33:42.0296 0x0ad8  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
17:33:42.0296 0x0ad8  WmiApSrv - ok
17:33:42.0390 0x0ad8  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B, C71FAAC752F6D58BF8556661252DBF8C5DDD090CAE002A2C7E09C9A014526066 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
17:33:42.0421 0x0ad8  WMPNetworkSvc - ok
17:33:42.0453 0x0ad8  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
17:33:42.0468 0x0ad8  wscsvc - ok
17:33:42.0468 0x0ad8  WSearch - ok
17:33:42.0515 0x0ad8  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
17:33:42.0515 0x0ad8  wuauserv - ok
17:33:42.0546 0x0ad8  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:33:42.0546 0x0ad8  WudfPf - ok
17:33:42.0562 0x0ad8  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:33:42.0562 0x0ad8  WudfRd - ok
17:33:42.0578 0x0ad8  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
17:33:42.0578 0x0ad8  WudfSvc - ok
17:33:42.0625 0x0ad8  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
17:33:42.0640 0x0ad8  WZCSVC - ok
17:33:42.0671 0x0ad8  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
17:33:42.0671 0x0ad8  xmlprov - ok
17:33:42.0671 0x0ad8  ================ Scan global ===============================
17:33:42.0718 0x0ad8  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
17:33:42.0750 0x0ad8  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
17:33:42.0781 0x0ad8  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
17:33:42.0812 0x0ad8  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
17:33:42.0812 0x0ad8  [ Global ] - ok
17:33:42.0812 0x0ad8  ================ Scan MBR ==================================
17:33:42.0843 0x0ad8  [ 0C808E7238C810543120B2DC771ED1BA ] \Device\Harddisk0\DR0
17:33:43.0031 0x0ad8  \Device\Harddisk0\DR0 - ok
17:33:43.0031 0x0ad8  ================ Scan VBR ==================================
17:33:43.0031 0x0ad8  [ 9309811C53285C010B5A7ADC326BCFA1 ] \Device\Harddisk0\DR0\Partition1
17:33:43.0031 0x0ad8  \Device\Harddisk0\DR0\Partition1 - ok
17:33:43.0031 0x0ad8  [ 9CA8312105479DD602B2140380C0DF6C ] \Device\Harddisk0\DR0\Partition2
17:33:43.0031 0x0ad8  \Device\Harddisk0\DR0\Partition2 - ok
17:33:43.0046 0x0ad8  Waiting for KSN requests completion. In queue: 180
17:33:44.0046 0x0ad8  Waiting for KSN requests completion. In queue: 180
17:33:45.0046 0x0ad8  Waiting for KSN requests completion. In queue: 180
17:33:46.0046 0x0ad8  Waiting for KSN requests completion. In queue: 180
17:33:47.0062 0x0ad8  Win FW state via NFM: enabled
17:33:49.0609 0x0ad8  ============================================================
17:33:49.0609 0x0ad8  Scan finished
17:33:49.0609 0x0ad8  ============================================================
17:33:49.0609 0x0ac4  Detected object count: 0
17:33:49.0609 0x0ac4  Actual detected object count: 0

Edited by adaniel, 11 December 2013 - 05:47 PM.





1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users