Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Split Websteroids


  • Please log in to reply
16 replies to this topic

#1 rcrapps

rcrapps

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:11:29 PM

Posted 12 December 2013 - 10:53 AM

I have it also. Following instructions above.

EDIT split to own topic here,from
http://www.bleepingcomputer.com/forums/t/517191/websteroids/

Edited by boopme, 12 December 2013 - 01:50 PM.


BC AdBot (Login to Remove)

 


#2 rcrapps

rcrapps
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:11:29 PM

Posted 12 December 2013 - 01:42 PM

After proceding in clearing about 1/2 dozen items that were already checked, I rebooted and the websteroids tab has been removed.
I will rescan and start checking into the other (about 60) items that were not checked.
 
Thx,
 Ralph
 
 Mod Edit:
Added log found for some reason in Reports


Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org

Database version: v2013.12.12.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
rcrapps :: RC55C [administrator]

Protection: Enabled

12/12/2013 10:35:13 AM
MBAM-log-2013-12-12 (13-23-41).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 532135
Time elapsed: 2 hour(s), 15 minute(s), 6 second(s)

Memory Processes Detected: 4
C:\Documents and Settings\All Users\Application Data\RHelpers\ChromeHelper\ChromeHelper.exe (PUP.Optional.SearchDonkey.A) -> 3992 -> No action taken.
C:\Documents and Settings\All Users\Application Data\RHelpers\FirefoxHelper\FirefoxHelper.exe (PUP.Optional.SearchDonkey.A) -> 3036 -> No action taken.
C:\Documents and Settings\All Users\Application Data\RHelpers\IeHelper\IeHelper.exe (PUP.Optional.SearchDonkey.A) -> 3464 -> No action taken.
C:\Documents and Settings\All Users\Application Data\Updater\updater.exe (Trojan.Agent) -> 1016 -> No action taken.

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 2
HKCU\Software\ConduitSearchScopes (PUP.Optional.Conduit.A) -> No action taken.
HKLM\SOFTWARE\Google\Chrome\Extensions\igjjkeeamkpihpncmmbgdkhdnjpcfmfb (PUP.Optional.MultiIE) -> No action taken.

Registry Values Detected: 2
HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Updater (Trojan.Agent) -> Data: C:\Documents and Settings\All Users\Application Data\Updater\Updater.exe -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Updater (Trojan.Agent) -> Data: C:\Documents and Settings\All Users\Application Data\Updater\Updater.exe -> No action taken.

Registry Data Items Detected: 1
HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.

Folders Detected: 9
C:\Documents and Settings\rcrapps\Local Settings\Temp\ct3306061 (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\ct3306061\plugins (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\CT3319613 (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\All Users\Application Data\Conduit\IE (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\All Users\Application Data\RHelpers\ChromeHelper (PUP.Optional.Searchagent) -> No action taken.
C:\Documents and Settings\All Users\Application Data\RHelpers\FirefoxHelper (PUP.Optional.Searchagent) -> No action taken.
C:\Documents and Settings\All Users\Application Data\RHelpers\IeHelper (PUP.Optional.Searchagent) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\igjjkeeamkpihpncmmbgdkhdnjpcfmfb (PUP.Optional.MultiIE) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\igjjkeeamkpihpncmmbgdkhdnjpcfmfb\2.6.49_0 (PUP.Optional.MultiIE) -> No action taken.

Files Detected: 87
C:\Documents and Settings\All Users\Application Data\RHelpers\ChromeHelper\ChromeHelper.exe (PUP.Optional.SearchDonkey.A) -> No action taken.
C:\Documents and Settings\All Users\Application Data\RHelpers\FirefoxHelper\FirefoxHelper.exe (PUP.Optional.SearchDonkey.A) -> No action taken.
C:\Documents and Settings\All Users\Application Data\RHelpers\IeHelper\IeHelper.exe (PUP.Optional.SearchDonkey.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\nsb3DA.exe (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\nst1DA.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\nsu3D7.exe (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\nsu5D.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\nsv77.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\nsw3D0.exe (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\SPStub.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\nsm3D3.exe (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\nso3EB.exe (PUP.Optional.SearchProtect.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\nso7C.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\nsr58.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\ct3306061\chLogic.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\ct3306061\ctbe.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\ct3306061\ieLogic.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\ct3306061\spch.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\ct3306061\statisticsStub.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\ct3306061\stub.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632185.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632186.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632206.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632208.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632209.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632214.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632218.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632220.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632222.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632224.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632226.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632228.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632230.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632232.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632233.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632234.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632239.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632248.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632252.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0633296.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0633300.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1252\A0632243.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637182.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637171.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637172.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637173.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637174.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637175.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637176.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637177.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637178.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637179.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637180.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637181.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637183.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637184.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637185.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637186.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637187.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637188.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1255\A0637189.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1267\A0643310.exe (PUP.Optional.SearchDonkey.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1267\A0643311.exe (PUP.Optional.SearchDonkey.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1267\A0643312.exe (PUP.Optional.SearchDonkey.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1268\A0643596.exe (PUP.Optional.SearchDonkey.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1268\A0643597.exe (PUP.Optional.SearchDonkey.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1268\A0643598.exe (PUP.Optional.SearchDonkey.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1269\A0643664.exe (PUP.Optional.SearchDonkey.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1269\A0643665.exe (PUP.Optional.SearchDonkey.A) -> No action taken.
C:\System Volume Information\_restore{D0D4C289-1775-4E84-B8F1-E8133151EDAF}\RP1269\A0643666.exe (PUP.Optional.SearchDonkey.A) -> No action taken.
C:\Documents and Settings\All Users\Application Data\Updater\updater.exe (Trojan.Agent) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\ct3306061\chromeid.txt (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\ct3306061\CT3306061.txt (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\ct3306061\initdata.json (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\ct3306061\manifest.json (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\ct3306061\setup.ini.txt (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\ct3306061\plugins\TBVerifier.dll (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Temp\CT3319613\ddt.csf (PUP.Optional.Conduit.A) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\igjjkeeamkpihpncmmbgdkhdnjpcfmfb\2.6.49_0\announce.js (PUP.Optional.MultiIE) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\igjjkeeamkpihpncmmbgdkhdnjpcfmfb\2.6.49_0\background.html (PUP.Optional.MultiIE) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\igjjkeeamkpihpncmmbgdkhdnjpcfmfb\2.6.49_0\common.js (PUP.Optional.MultiIE) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\igjjkeeamkpihpncmmbgdkhdnjpcfmfb\2.6.49_0\contentscript.js (PUP.Optional.MultiIE) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\igjjkeeamkpihpncmmbgdkhdnjpcfmfb\2.6.49_0\icon128.png (PUP.Optional.MultiIE) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\igjjkeeamkpihpncmmbgdkhdnjpcfmfb\2.6.49_0\icon16.png (PUP.Optional.MultiIE) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\igjjkeeamkpihpncmmbgdkhdnjpcfmfb\2.6.49_0\icon48.png (PUP.Optional.MultiIE) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\igjjkeeamkpihpncmmbgdkhdnjpcfmfb\2.6.49_0\iframecontentscript.js (PUP.Optional.MultiIE) -> No action taken.
C:\Documents and Settings\rcrapps\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\igjjkeeamkpihpncmmbgdkhdnjpcfmfb\2.6.49_0\manifest.json (PUP.Optional.MultiIE) -> No action taken.

(end)

Edited by boopme, 12 December 2013 - 01:46 PM.


#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,914 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:29 AM

Posted 12 December 2013 - 01:51 PM

Hello ,also run these.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 rcrapps

rcrapps
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:11:29 PM

Posted 13 December 2013 - 08:59 PM

 Mod Edit:
Added log found for some reason in Reports


I could not copy/paste the report. Found the report button. sorry about that.



#5 rcrapps

rcrapps
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:11:29 PM

Posted 13 December 2013 - 09:00 PM

For these other test/scan products, should I un-install the last before installing the next product?



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,914 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:29 AM

Posted 13 December 2013 - 09:05 PM

Ok, I just couldn't figure why it was there..

 

No run all post the logs and we'll clean up after.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 rcrapps

rcrapps
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:11:29 PM

Posted 13 December 2013 - 10:48 PM

Webstrroids was removed by malwarebytes. moving on to mini tool box.

,rc

 

 

 

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org

Database version: v2013.12.13.04

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
rcrapps :: RC55C [administrator]

Protection: Enabled

12/13/2013 8:56:12 PM
mbam-log-2013-12-13 (20-56-12).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 520429
Time elapsed: 1 hour(s), 40 minute(s), 36 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 2
HKCU\Software\ConduitSearchScopes (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Google\Chrome\Extensions\igjjkeeamkpihpncmmbgdkhdnjpcfmfb (PUP.Optional.MultiIE) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,914 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:29 AM

Posted 13 December 2013 - 10:54 PM

Ok, good continue and post the logs.
I have to go but will check back ASAP
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 rcrapps

rcrapps
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:11:29 PM

Posted 13 December 2013 - 10:54 PM

mini tool box ran. moving on to tdsskiller.

 

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by rcrapps (administrator) on 13-12-2013 at 22:51:12
Running from "C:\temp\2"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

 

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Broadcom NetXtreme Gigabit Ethernet = Local Area Connection (Connected)

# ----------------------------------
# Interface IP Configuration        
# ----------------------------------
pushd interface ip

# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp

popd
# End of interface IP configuration

 

Windows IP Configuration

 

        Host Name . . . . . . . . . . . . : RC55c

        Primary Dns Suffix  . . . . . . . :

        Node Type . . . . . . . . . . . . : Unknown

        IP Routing Enabled. . . . . . . . : No

        WINS Proxy Enabled. . . . . . . . : No

 

Ethernet adapter Local Area Connection:

 

        Connection-specific DNS Suffix  . :

        Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet

        Physical Address. . . . . . . . . : 00-13-21-D2-D5-EC

        Dhcp Enabled. . . . . . . . . . . : Yes

        Autoconfiguration Enabled . . . . : Yes

        IP Address. . . . . . . . . . . . : 192.168.1.4

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

        Default Gateway . . . . . . . . . : 192.168.1.1

        DHCP Server . . . . . . . . . . . : 192.168.1.1

        DNS Servers . . . . . . . . . . . : 192.168.1.1

        Lease Obtained. . . . . . . . . . : Friday, December 13, 2013 6:59:40 PM

        Lease Expires . . . . . . . . . . : Saturday, December 14, 2013 6:59:40 PM

DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.1.1

Name:    google.com
Addresses:  74.125.137.101, 74.125.137.102, 74.125.137.138, 74.125.137.139
   74.125.137.100, 74.125.137.113

 

Pinging google.com [74.125.137.102] with 32 bytes of data:

 

Reply from 74.125.137.102: bytes=32 time=83ms TTL=48

Reply from 74.125.137.102: bytes=32 time=83ms TTL=48

 

Ping statistics for 74.125.137.102:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 83ms, Maximum = 83ms, Average = 83ms

DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  206.190.36.45, 98.138.253.109, 98.139.183.24

 

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:

 

Reply from 98.138.253.109: bytes=32 time=142ms TTL=51

Reply from 98.138.253.109: bytes=32 time=200ms TTL=51

 

Ping statistics for 98.138.253.109:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 142ms, Maximum = 200ms, Average = 171ms

 

Pinging 127.0.0.1 with 32 bytes of data:

 

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 13 21 d2 d5 ec ...... Broadcom NetXtreme Gigabit Ethernet - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.4   20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1   1
      192.168.1.0    255.255.255.0      192.168.1.4     192.168.1.4   20
      192.168.1.4  255.255.255.255        127.0.0.1       127.0.0.1   20
    192.168.1.255  255.255.255.255      192.168.1.4     192.168.1.4   20
        224.0.0.0        240.0.0.0      192.168.1.4     192.168.1.4   20
  255.255.255.255  255.255.255.255      192.168.1.4     192.168.1.4   1
Default Gateway:       192.168.1.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/13/2013 10:01:34 PM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 80070490, P2 remediation, P3 remediationfailuretelemetry, P4 1.1.10100.0, P5 mpengine, P6 0, P7 unspecified, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (12/13/2013 00:59:56 PM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 80070490, P2 remediation, P3 remediationfailuretelemetry, P4 1.1.10100.0, P5 mpengine, P6 0, P7 unspecified, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (12/12/2013 09:32:15 PM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 80070490, P2 remediation, P3 remediationfailuretelemetry, P4 1.1.10100.0, P5 mpengine, P6 0, P7 unspecified, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (12/12/2013 07:17:31 PM) (Source: Windows Search Service) (User: )
Description: 00x80070002

Error: (12/12/2013 06:42:53 PM) (Source: Windows Search Service) (User: )
Description: 00x80070002

Error: (12/12/2013 01:34:36 PM) (Source: Windows Search Service) (User: )
Description: 00x80070002

Error: (12/12/2013 11:27:54 AM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 80070490, P2 remediation, P3 remediationfailuretelemetry, P4 1.1.10100.0, P5 mpengine, P6 0, P7 unspecified, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (12/12/2013 05:15:36 AM) (Source: Windows Search Service) (User: )
Description: 00x80070002

Error: (12/12/2013 05:13:27 AM) (Source: EventSystem) (User: )
Description: The COM+ Event System detected a bad return code during its internal processing.  HRESULT was 800706BA from line 44 of d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp.  Please contact Microsoft Product Support Services to report this error.

Error: (12/12/2013 05:07:11 AM) (Source: Application Error) (User: )
Description: Faulting application svchost.exe, version 5.1.2600.5512, faulting module rpcss.dll, version 5.1.2600.5755, fault address 0x0001f47c.
Processing media-specific event for [svchost.exe!ws!]

System errors:
=============
Error: (12/13/2013 10:45:39 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1058" attempting to start the service gupdate with arguments "/comsvc"
in order to run the server:
{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (12/13/2013 05:45:31 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1058" attempting to start the service gupdate with arguments "/comsvc"
in order to run the server:
{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (12/13/2013 00:45:03 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1058" attempting to start the service gupdate with arguments "/comsvc"
in order to run the server:
{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (12/13/2013 07:45:51 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1058" attempting to start the service gupdate with arguments "/comsvc"
in order to run the server:
{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (12/13/2013 02:45:18 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1058" attempting to start the service gupdate with arguments "/comsvc"
in order to run the server:
{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (12/12/2013 09:45:04 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1058" attempting to start the service gupdate with arguments "/comsvc"
in order to run the server:
{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (12/12/2013 07:17:32 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated with service-specific error 2147746132 (0x80040154).

Error: (12/12/2013 06:42:54 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated with service-specific error 2147746132 (0x80040154).

Error: (12/12/2013 04:45:14 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1058" attempting to start the service gupdate with arguments "/comsvc"
in order to run the server:
{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (12/12/2013 01:34:37 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated with service-specific error 2147746132 (0x80040154).

Microsoft Office Sessions:
=========================
Error: (12/13/2013 10:01:34 PM) (Source: MPSampleSubmission)(User: )
Description: mptelemetry80070490remediationremediationfailuretelemetry1.1.10100.0mpengine0unspecifiedNILNILNIL

Error: (12/13/2013 00:59:56 PM) (Source: MPSampleSubmission)(User: )
Description: mptelemetry80070490remediationremediationfailuretelemetry1.1.10100.0mpengine0unspecifiedNILNILNIL

Error: (12/12/2013 09:32:15 PM) (Source: MPSampleSubmission)(User: )
Description: mptelemetry80070490remediationremediationfailuretelemetry1.1.10100.0mpengine0unspecifiedNILNILNIL

Error: (12/12/2013 07:17:31 PM) (Source: Windows Search Service)(User: )
Description: 00x80070002

Error: (12/12/2013 06:42:53 PM) (Source: Windows Search Service)(User: )
Description: 00x80070002

Error: (12/12/2013 01:34:36 PM) (Source: Windows Search Service)(User: )
Description: 00x80070002

Error: (12/12/2013 11:27:54 AM) (Source: MPSampleSubmission)(User: )
Description: mptelemetry80070490remediationremediationfailuretelemetry1.1.10100.0mpengine0unspecifiedNILNILNIL

Error: (12/12/2013 05:15:36 AM) (Source: Windows Search Service)(User: )
Description: 00x80070002

Error: (12/12/2013 05:13:27 AM) (Source: EventSystem)(User: )
Description: d:\comxp_sp3\com\com1x\src\events\tier1\eventsystemobj.cpp44800706BA

Error: (12/12/2013 05:07:11 AM) (Source: Application Error)(User: )
Description: svchost.exe5.1.2600.5512rpcss.dll5.1.2600.57550001f47c

=========================== Installed Programs ============================

32 Bit HP CIO Components Installer (Version: 7.1.8)
4500_G510gm_Help (Version: 000.0.439.000)
4500G510gm (Version: 000.0.423.000)
4500G510gm_Software_Min (Version: 000.0.423.000)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170)
Adobe Reader X (10.1.8) (Version: 10.1.8)
Adobe Shockwave Player 11.6 (Version: 11.6.3.633)
Apple Application Support (Version: 2.3.4)
Apple Software Update (Version: 2.1.3.127)
Broadcom Management Programs (Version: 7.58.01)
BufferChm (Version: 130.0.331.000)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.372.000)
DocMgr (Version: 130.0.000.000)
DocProc (Version: 13.0.0.0)
Fax (Version: 130.0.418.000)
Google Chrome (Version: 31.0.1650.63)
Google Earth (Version: 7.1.2.2041)
Google Update Helper (Version: 1.3.22.3)
GPBaseService2 (Version: 130.0.371.000)
Hewlett-Packard ACLM.NET v1.1.0.0 (Version: 1.00.0000)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Document Manager 2.0 (Version: 2.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Officejet 4500 G510g-m (Version: 13.0)
HP Product Detection (Version: 11.14.0001)
HP Product Detection (Version: 11.15.0008)
HP Smart Web Printing 4.5 (Version: 4.5)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 5.005.000.002)
HP USB Disk Storage Format Tool
HPDiagnosticAlert (Version: 1.00.0000)
HPProductAssistant (Version: 130.0.371.000)
ieSpell (Version: 2.6.4 (build 573))
Intel® Graphics Media Accelerator Driver (Version: 6.14.10.4396)
InterVideo WinDVD (Version: 5.0-B11.417)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
LG United Mobile Drivers (Version: 3.3.0.0)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
MarketResearch (Version: 130.0.374.000)
Media Player Codec Pack 4.2.9 (Version: 4.2.9)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Office XP Small Business (Version: 10.0.6626.0)
Microsoft PowerPoint Viewer 97
Microsoft Security Client (Version: 4.4.0304.0)
Microsoft Security Essentials (Version: 4.4.304.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Network (Version: 130.0.374.000)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
Photosmart 140,240,7200,7600,7700,7900 Series (Version: 2.0)
Quicken 2011 (Version: 20.1.2.23)
QuickTime (Version: 7.74.80.86)
Rapport (Version: 3.5.1304.15)
RealDownloader (Version: 1.3.3)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealPlayer (Version: 16.0.3)
RealUpgrade 1.1 (Version: 1.1.0)
Scan (Version: 13.0.0.0)
SmartWebPrinting (Version: 130.0.373.000)
SolutionCenter (Version: 130.0.373.000)
SoundMAX (Version: 5.12.01.4070)
Status (Version: 130.0.373.000)
swMSM (Version: 12.0.0.1)
Toolbox (Version: 130.0.648.000)
TrayApp (Version: 130.0.376.000)
Trusteer Endpoint Protection (Version: 3.5.1304.15)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows Internet Explorer 8 (KB2632503) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2492386) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB2808679) (Version: 1)
Update for Windows XP (KB2863058) (Version: 1)
Update for Windows XP (KB2904266) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
Updater (Version: 2.6.49)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 130.0.132.017)
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (Version: 1.0)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3 (Version: 20080414.031525)

========================= Memory info: ===================================

Percentage of memory in use: 33%
Total physical RAM: 3063.43 MB
Available physical RAM: 2048.01 MB
Total Pagefile: 5971.27 MB
Available Pagefile: 5148.64 MB
Total Virtual: 2047.88 MB
Available Virtual: 1969.78 MB

========================= Partitions: =====================================

2 Drive c: (HP C) (Fixed) (Total:74.5 GB) (Free:30.92 GB) NTFS

========================= Users: ========================================

User accounts for \\RC55C

Administrator            ASPNET                   Guest                   
HelpAssistant            rcrapps                  SUPPORT_388945a0        

**** End of log ****



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,914 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:29 AM

Posted 13 December 2013 - 11:14 PM

After the last scan reset the Hosts file.

See the FIX-IT button
To reset the Hosts file back to the default automatically, click the Fix it button or link, click Run in the File Download dialog box, and then follow the steps in the Fix it wizard.
http://support.microsoft.com/kb/972034
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 rcrapps

rcrapps
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:11:29 PM

Posted 13 December 2013 - 11:15 PM

adwcleaner run. Again, unable to paste results. no errors.

 

moving on to junkware removal tool.



#12 rcrapps

rcrapps
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:11:29 PM

Posted 14 December 2013 - 12:03 AM

jrt ran. now eset.

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Microsoft Windows XP x86
Ran by rcrapps on Fri 12/13/2013 at 23:41:26.06
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{8A4586EB-6CE2-4B2D-8070-520724DA99FD}

 

~~~ Files

 

~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\rcrapps\Local Settings\Application Data\cre"

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 12/14/2013 at  0:00:54.51
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#13 rcrapps

rcrapps
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:11:29 PM

Posted 14 December 2013 - 09:17 AM

eset complete.

C:\Documents and Settings\All Users\Application Data\Updater\Uninstall.exe a variant of Win32/ExFriendAlert.B application cleaned by deleting - quarantined
C:\Documents and Settings\rcrapps\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\hUfPcWo.jar-7846622c-39524fea.zip a variant of Java/Mocup.B trojan cleaned by deleting - quarantined
C:\Documents and Settings\rcrapps\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\QKjxpPw.jar-3d4c7877-29db7521.zip a variant of Java/Mocup.B trojan cleaned by deleting - quarantined
C:\Documents and Settings\rcrapps\Local Settings\Temp\aa932fa2-2b71-4f50-99ba-9b1c85cd8eb5.exe multiple threats cleaned by deleting - quarantined
C:\Documents and Settings\rcrapps\Local Settings\Temp\tbConn.dll a variant of Win32/Toolbar.Conduit.B application cleaned by deleting - quarantined
C:\Documents and Settings\rcrapps\My Documents\Downloads\cbsidlm-cbsi145-Media_Player_Codec_Pack-SEO-10749065.exe



#14 rcrapps

rcrapps
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:11:29 PM

Posted 14 December 2013 - 09:29 AM

log from tdsskiller

 

22:55:05.0218 0x2558  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
22:55:32.0328 0x2558  ============================================================
22:55:32.0328 0x2558  Current date / time: 2013/12/13 22:55:32.0328
22:55:32.0328 0x2558  SystemInfo:
22:55:32.0328 0x2558 
22:55:32.0328 0x2558  OS Version: 5.1.2600 ServicePack: 3.0
22:55:32.0328 0x2558  Product type: Workstation
22:55:32.0328 0x2558  ComputerName: RC55C
22:55:32.0328 0x2558  UserName: rcrapps
22:55:32.0328 0x2558  Windows directory: C:\WINDOWS
22:55:32.0328 0x2558  System windows directory: C:\WINDOWS
22:55:32.0328 0x2558  Processor architecture: Intel x86
22:55:32.0328 0x2558  Number of processors: 2
22:55:32.0328 0x2558  Page size: 0x1000
22:55:32.0328 0x2558  Boot type: Normal boot
22:55:32.0328 0x2558  ============================================================
22:55:34.0453 0x2558  KLMD registered as C:\WINDOWS\system32\drivers\31765947.sys
22:55:35.0125 0x2558  System UUID: {8FB39719-604B-663B-52A8-A58503C2702B}
22:55:36.0859 0x2558  Drive \Device\Harddisk0\DR0 - Size: 0x12A05F2000 (74.51 Gb), SectorSize: 0x200, Cylinders: 0x25FE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
22:55:36.0859 0x2558  ============================================================
22:55:36.0859 0x2558  \Device\Harddisk0\DR0:
22:55:36.0859 0x2558  MBR partitions:
22:55:36.0859 0x2558  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x950283F
22:55:36.0859 0x2558  ============================================================
22:55:36.0875 0x2558  C: <-> \Device\Harddisk0\DR0\Partition1
22:55:36.0875 0x2558  ============================================================
22:55:36.0875 0x2558  Initialize success
22:55:36.0875 0x2558  ============================================================
22:55:41.0031 0x0d84  ============================================================
22:55:41.0031 0x0d84  Scan started
22:55:41.0031 0x0d84  Mode: Manual;
22:55:41.0031 0x0d84  ============================================================
22:55:41.0031 0x0d84  KSN ping started
22:55:59.0859 0x0d84  KSN ping finished: true
22:56:01.0500 0x0d84  ================ Scan system memory ========================
22:56:01.0515 0x0d84  System memory - ok
22:56:01.0515 0x0d84  ================ Scan services =============================
22:56:01.0609 0x0d84  Abiosdsk - ok
22:56:01.0625 0x0d84  abp480n5 - ok
22:56:01.0656 0x0d84  [ 0F2D66D5F08EBE2F77BB904288DCF6F0, 5969A64B6995DCAF16F9A76BD1235472F76D71DFE629B956221D2C3D73EDF98A ] ac97intc        C:\WINDOWS\system32\drivers\ac97intc.sys
22:56:01.0656 0x0d84  ac97intc - ok
22:56:01.0812 0x0d84  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:56:01.0828 0x0d84  ACPI - ok
22:56:01.0859 0x0d84  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
22:56:01.0859 0x0d84  ACPIEC - ok
22:56:01.0906 0x0d84  [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:56:01.0921 0x0d84  AdobeFlashPlayerUpdateSvc - ok
22:56:01.0921 0x0d84  [ 9A11864873DA202C996558B2106B0BBC, 4C68F1DBD1541291DD0FAB78DB42B25FA051CD9F55ED869173E3219CD31500C4 ] adpu160m        C:\WINDOWS\system32\DRIVERS\adpu160m.sys
22:56:01.0937 0x0d84  adpu160m - ok
22:56:01.0953 0x0d84  [ 0EA9B1F0C6C90A509C8603775366ADB7, 9B8AE3D9757319B1AD88A3FFF64AF7B6253D484977C8478EC8024778FE2EF74D ] adpu320         C:\WINDOWS\system32\DRIVERS\adpu320.sys
22:56:01.0953 0x0d84  adpu320 - ok
22:56:01.0984 0x0d84  [ 3CB6AE5435987B1F8C83FD2730479878, 4DACBB2381717E8250F8BA6FACAFF56143EC4A13F4917C3B0B85F1A267DD6673 ] aeaudio         C:\WINDOWS\system32\drivers\aeaudio.sys
22:56:02.0000 0x0d84  aeaudio - ok
22:56:02.0015 0x0d84  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
22:56:02.0015 0x0d84  aec - ok
22:56:02.0062 0x0d84  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
22:56:02.0062 0x0d84  AFD - ok
22:56:02.0078 0x0d84  Aha154x - ok
22:56:02.0109 0x0d84  [ 19DD0FB48B0C18892F70E2E7D61A1529, 95BA1568E8E08314508CA0E1F95555891E70399AEC312C793B46A841F56FFDCF ] aic78u2         C:\WINDOWS\system32\DRIVERS\aic78u2.sys
22:56:02.0109 0x0d84  aic78u2 - ok
22:56:02.0125 0x0d84  [ B7FE594A7468AA0132DEB03FB8E34326, BF0DC2B8C474DB151589BA9968264413521DDD9E7316B752B2FA40C24200FBE0 ] aic78xx         C:\WINDOWS\system32\DRIVERS\aic78xx.sys
22:56:02.0125 0x0d84  aic78xx - ok
22:56:02.0156 0x0d84  [ 640157FF4E71110614E7B12853B50565, 3F74D809EEFD7D931932413E1ABC7C33A46C02E32DE9D48A1826010CA7EA2E4B ] AIUSBLDR        C:\WINDOWS\system32\Drivers\AIUSBLDR.SYS
22:56:02.0156 0x0d84  AIUSBLDR - ok
22:56:02.0171 0x0d84  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
22:56:02.0187 0x0d84  Alerter - ok
22:56:02.0203 0x0d84  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             C:\WINDOWS\System32\alg.exe
22:56:02.0203 0x0d84  ALG - ok
22:56:02.0218 0x0d84  AliIde - ok
22:56:02.0218 0x0d84  amsint - ok
22:56:02.0281 0x0d84  [ D8849F77C0B66226335A59D26CB4EDC6, 4990031453204C57E36E850252A39B05D6ECDAB9E71A8136FB4900F17E59C9CA ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
22:56:02.0296 0x0d84  AppMgmt - ok
22:56:02.0312 0x0d84  asc - ok
22:56:02.0312 0x0d84  asc3350p - ok
22:56:02.0328 0x0d84  asc3550 - ok
22:56:02.0406 0x0d84  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:56:02.0421 0x0d84  aspnet_state - ok
22:56:02.0437 0x0d84  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:56:02.0437 0x0d84  AsyncMac - ok
22:56:02.0453 0x0d84  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
22:56:02.0453 0x0d84  atapi - ok
22:56:02.0468 0x0d84  Atdisk - ok
22:56:02.0484 0x0d84  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:56:02.0484 0x0d84  Atmarpc - ok
22:56:02.0500 0x0d84  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
22:56:02.0500 0x0d84  AudioSrv - ok
22:56:02.0515 0x0d84  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
22:56:02.0531 0x0d84  audstub - ok
22:56:02.0562 0x0d84  [ 4826FCF97C47B361A2E2F68CD487A19E, C9DA912C3EE76D62E8ABE9FB232951CEE577CD598995C707C2152B4F6BDA6610 ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys
22:56:02.0562 0x0d84  b57w2k - ok
22:56:02.0593 0x0d84  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
22:56:02.0593 0x0d84  Beep - ok
22:56:02.0640 0x0d84  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            C:\WINDOWS\system32\qmgr.dll
22:56:02.0656 0x0d84  BITS - ok
22:56:02.0671 0x0d84  [ 9976971B7092F5BFF20073AB31BA1598, 19DAC582EF384E0A528A59342DE70EDD0D5B2871B2060AB863B4BC3B6A0E3A83 ] Blfp            C:\WINDOWS\system32\DRIVERS\baspxp32.sys
22:56:02.0671 0x0d84  Blfp - ok
22:56:02.0703 0x0d84  [ F934D1B230F84E1D19DD00AC5A7A83ED, 32CD3A7A1F06DCCE2A4D9FA6E2AE7B3E2B57FA2D5F1C74EA79D72E5E0E352E60 ] Bridge          C:\WINDOWS\system32\DRIVERS\bridge.sys
22:56:02.0703 0x0d84  Bridge - ok
22:56:02.0703 0x0d84  [ F934D1B230F84E1D19DD00AC5A7A83ED, 32CD3A7A1F06DCCE2A4D9FA6E2AE7B3E2B57FA2D5F1C74EA79D72E5E0E352E60 ] BridgeMP        C:\WINDOWS\system32\DRIVERS\bridge.sys
22:56:02.0703 0x0d84  BridgeMP - ok
22:56:02.0734 0x0d84  [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser         C:\WINDOWS\System32\browser.dll
22:56:02.0734 0x0d84  Browser - ok
22:56:02.0750 0x0d84  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
22:56:02.0765 0x0d84  cbidf2k - ok
22:56:02.0781 0x0d84  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:56:02.0781 0x0d84  CCDECODE - ok
22:56:02.0796 0x0d84  cd20xrnt - ok
22:56:02.0812 0x0d84  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
22:56:02.0812 0x0d84  Cdaudio - ok
22:56:02.0812 0x0d84  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
22:56:02.0828 0x0d84  Cdfs - ok
22:56:02.0828 0x0d84  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:56:02.0843 0x0d84  Cdrom - ok
22:56:02.0843 0x0d84  Changer - ok
22:56:02.0875 0x0d84  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] cisvc           C:\WINDOWS\system32\cisvc.exe
22:56:02.0875 0x0d84  cisvc - ok
22:56:02.0890 0x0d84  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
22:56:02.0906 0x0d84  ClipSrv - ok
22:56:02.0937 0x0d84  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:56:02.0968 0x0d84  clr_optimization_v2.0.50727_32 - ok
22:56:03.0000 0x0d84  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:56:03.0031 0x0d84  clr_optimization_v4.0.30319_32 - ok
22:56:03.0062 0x0d84  [ 48B82634FF97F0CCA8C13C3F242E790E, EB0220BFE48220917414FBE55B0B6EC8CF1ED8158ACD32F29A47BB6BE55F3389 ] CMAPLDR         C:\WINDOWS\system32\Drivers\cmapldr.sys
22:56:03.0062 0x0d84  CMAPLDR - ok
22:56:03.0078 0x0d84  [ F18D36EA12A07D631C3123F496D2E2EA, 2C254327AB972FAF54E957736FC4414B045A0C3E17BA93A5ABC421B641024C5B ] CMAP_USBCC      C:\WINDOWS\system32\Drivers\cmapusb.sys
22:56:03.0078 0x0d84  CMAP_USBCC - ok
22:56:03.0078 0x0d84  CmdIde - ok
22:56:03.0093 0x0d84  [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
22:56:03.0093 0x0d84  Compbatt - ok
22:56:03.0093 0x0d84  COMSysApp - ok
22:56:03.0109 0x0d84  Cpqarray - ok
22:56:03.0140 0x0d84  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
22:56:03.0156 0x0d84  CryptSvc - ok
22:56:03.0156 0x0d84  dac2w2k - ok
22:56:03.0171 0x0d84  dac960nt - ok
22:56:03.0218 0x0d84  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
22:56:03.0234 0x0d84  DcomLaunch - ok
22:56:03.0265 0x0d84  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
22:56:03.0265 0x0d84  Dhcp - ok
22:56:03.0281 0x0d84  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
22:56:03.0281 0x0d84  Disk - ok
22:56:03.0296 0x0d84  dmadmin - ok
22:56:03.0375 0x0d84  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
22:56:03.0406 0x0d84  dmboot - ok
22:56:03.0437 0x0d84  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
22:56:03.0437 0x0d84  dmio - ok
22:56:03.0453 0x0d84  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
22:56:03.0453 0x0d84  dmload - ok
22:56:03.0468 0x0d84  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        C:\WINDOWS\System32\dmserver.dll
22:56:03.0484 0x0d84  dmserver - ok
22:56:03.0500 0x0d84  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
22:56:03.0500 0x0d84  DMusic - ok
22:56:03.0515 0x0d84  [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
22:56:03.0515 0x0d84  Dnscache - ok
22:56:03.0546 0x0d84  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
22:56:03.0546 0x0d84  Dot3svc - ok
22:56:03.0578 0x0d84  [ 3E4B043F8BC6BE1D4820CC6C9C500306, 41F5AB9F3D65FEF3AB50562A3B91A3268B887CCF7FE5FC9D49478147700C72F4 ] Dot4            C:\WINDOWS\system32\DRIVERS\Dot4.sys
22:56:03.0593 0x0d84  Dot4 - ok
22:56:03.0609 0x0d84  [ 77CE63A8A34AE23D9FE4C7896D1DEBE7, FC17B00AEDC57AC436EACD2D576642098479E5CE10A42775D339B66A53460DC7 ] Dot4Print       C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys
22:56:03.0609 0x0d84  Dot4Print - ok
22:56:03.0625 0x0d84  [ BD05306428DA63369692477DDC0F6F5F, DE2FC729A64695AF604D2DC64DF2A0C89598EB81E6D9953732B23E509116C398 ] Dot4Scan        C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys
22:56:03.0625 0x0d84  Dot4Scan - ok
22:56:03.0640 0x0d84  [ 40F3B93B4E5B0126F2F5C0A7A5E22660, 8AFFF28903037F5E36BB5352F2B236A217558FCC0146B23C787606C3F21243DB ] dpti2o          C:\WINDOWS\system32\DRIVERS\dpti2o.sys
22:56:03.0640 0x0d84  dpti2o - ok
22:56:03.0656 0x0d84  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
22:56:03.0656 0x0d84  drmkaud - ok
22:56:03.0687 0x0d84  [ 3FCA03CBCA11269F973B70FA483C88EF, 0995989B9EBE5CE1C5489139849FB2AD69DE9749650BBC262AD754E5CE457C59 ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys
22:56:03.0687 0x0d84  E100B - ok
22:56:03.0718 0x0d84  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         C:\WINDOWS\System32\eapsvc.dll
22:56:03.0718 0x0d84  EapHost - ok
22:56:03.0718 0x0d84  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
22:56:03.0734 0x0d84  ERSvc - ok
22:56:03.0750 0x0d84  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog        C:\WINDOWS\system32\services.exe
22:56:03.0765 0x0d84  Eventlog - ok
22:56:03.0781 0x0d84  [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem     C:\WINDOWS\system32\es.dll
22:56:03.0796 0x0d84  EventSystem - ok
22:56:03.0828 0x0d84  [ E225B3F7092C4390CB8FC846855F375D, E6F6B80677442C031A179F33A83D39C9D89C2ACA4B6A25A6E685379A962DBC1B ] EZUSB           C:\WINDOWS\system32\Drivers\AIUSBDRV.SYS
22:56:03.0828 0x0d84  EZUSB - ok
22:56:03.0843 0x0d84  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
22:56:03.0843 0x0d84  Fastfat - ok
22:56:03.0875 0x0d84  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
22:56:03.0875 0x0d84  FastUserSwitchingCompatibility - ok
22:56:03.0906 0x0d84  [ E97D6A8684466DF94FF3BC24FB787A07, 89E5A6889E3C5AB9AD3E80FFC16DD608278F3ADC282048B40B60196336A5CBEB ] Fax             C:\WINDOWS\system32\fxssvc.exe
22:56:03.0921 0x0d84  Fax - ok
22:56:03.0937 0x0d84  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
22:56:03.0937 0x0d84  Fdc - ok
22:56:03.0953 0x0d84  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
22:56:03.0953 0x0d84  Fips - ok
22:56:03.0968 0x0d84  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:56:03.0968 0x0d84  Flpydisk - ok
22:56:04.0000 0x0d84  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
22:56:04.0000 0x0d84  FltMgr - ok
22:56:04.0062 0x0d84  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
22:56:04.0062 0x0d84  FontCache3.0.0.0 - ok
22:56:04.0093 0x0d84  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:56:04.0093 0x0d84  Fs_Rec - ok
22:56:04.0109 0x0d84  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:56:04.0109 0x0d84  Ftdisk - ok
22:56:04.0125 0x0d84  [ 483924F92E55A5F9423201EC635E2CED, FEDAC3616709F081A0FA48E2BF521CBCC35E11E523EBADDEACA7308AD14338B3 ] gfibto          C:\WINDOWS\system32\drivers\gfibto.sys
22:56:04.0125 0x0d84  gfibto - ok
22:56:04.0156 0x0d84  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:56:04.0156 0x0d84  Gpc - ok
22:56:04.0234 0x0d84  [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
22:56:04.0250 0x0d84  gupdate - ok
22:56:04.0250 0x0d84  gupdate1c99ac5a50b8440 - ok
22:56:04.0265 0x0d84  [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
22:56:04.0265 0x0d84  gupdatem - ok
22:56:04.0296 0x0d84  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
22:56:04.0296 0x0d84  helpsvc - ok
22:56:04.0312 0x0d84  [ 748031FF4FE45CCC47546294905FEAB8, 451E5988529997C60CC4A43B71D35BDA8596D799E86A44218B32CBEC8F8BBF27 ] HidBatt         C:\WINDOWS\system32\DRIVERS\HidBatt.sys
22:56:04.0312 0x0d84  HidBatt - ok
22:56:04.0328 0x0d84  HidServ - ok
22:56:04.0343 0x0d84  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:56:04.0343 0x0d84  HidUsb - ok
22:56:04.0375 0x0d84  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
22:56:04.0375 0x0d84  hkmsvc - ok
22:56:04.0390 0x0d84  hpn - ok
22:56:04.0453 0x0d84  [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05, 7B3F117C1D606DDA7623BEC0BFBC362C33A12213E899F049AC56A55826984134 ] hpqcxs08        C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
22:56:04.0468 0x0d84  hpqcxs08 - ok
22:56:04.0484 0x0d84  [ F3F72A2A86C22610BCA5439FA789DD52, DA5A8F09DCC512AA1558863AD4FAC12F72DD83CA8FB4D8D9831E4AFBB6B3C616 ] hpqddsvc        C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
22:56:04.0484 0x0d84  hpqddsvc - ok
22:56:04.0531 0x0d84  [ 568E44F6DCFA173F3670172B69379891, D619B908770E308BE3978DD619CA0ADC229685971FC99379AA5620BE5F7C5F1C ] HPSLPSVC        C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
22:56:04.0562 0x0d84  HPSLPSVC - ok
22:56:04.0593 0x0d84  [ D03D10F7DED688FECF50F8FBF1EA9B8A, C19A733571BA831E24EE45EDB730FFFDBA22638F138A32A794BEAB8D8B71D8DD ] HPZid412        C:\WINDOWS\system32\DRIVERS\HPZid412.sys
22:56:04.0593 0x0d84  HPZid412 - ok
22:56:04.0625 0x0d84  [ 89F41658929393487B6B7D13C8528CE3, 5D06A11225A83F3F33417148BE53654080C88BFA876FEB486A7E43410AC99F23 ] HPZipr12        C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
22:56:04.0625 0x0d84  HPZipr12 - ok
22:56:04.0640 0x0d84  [ ABCB05CCDBF03000354B9553820E39F8, 6361B5A57CDE23AC5E987ACECF3BEE7AD51134C6E5BF4F833E512C9BC4B86877 ] HPZius12        C:\WINDOWS\system32\DRIVERS\HPZius12.sys
22:56:04.0656 0x0d84  HPZius12 - ok
22:56:04.0687 0x0d84  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
22:56:04.0687 0x0d84  HTTP - ok
22:56:04.0734 0x0d84  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
22:56:04.0734 0x0d84  HTTPFilter - ok
22:56:04.0734 0x0d84  i2omgmt - ok
22:56:04.0750 0x0d84  i2omp - ok
22:56:04.0765 0x0d84  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:56:04.0765 0x0d84  i8042prt - ok
22:56:04.0796 0x0d84  [ 06B7EF73BA5F302EECC294CDF7E19702, 5EF396D70D69F8E86A0FC7311E634A8360A99DDEC39054DC3018624A1497836E ] i81x            C:\WINDOWS\system32\DRIVERS\i81xnt5.sys
22:56:04.0812 0x0d84  i81x - ok
22:56:04.0828 0x0d84  [ 7B5B44EFE5EB9DADFB8EE29700885D23, AC01EF344206A1303E03D11420CC31228C6480CF8F2A1733BE18F2E6D44D1807 ] iAimFP0         C:\WINDOWS\system32\DRIVERS\wADV01nt.sys
22:56:04.0828 0x0d84  iAimFP0 - ok
22:56:04.0843 0x0d84  [ EB1F6BAB6C22EDE0BA551B527475F7E9, 5680C2B124B2222371F8F1FF934723CE06EE37072C42066547173CB3050969C4 ] iAimFP1         C:\WINDOWS\system32\DRIVERS\wADV02NT.sys
22:56:04.0843 0x0d84  iAimFP1 - ok
22:56:04.0859 0x0d84  [ 03CE989D846C1AA81145CB22FCB86D06, 7A63EF1016B1F70BDD5EBCEB415D59CA8D40DE256DAD2511CFBD88C82C37F0D6 ] iAimFP2         C:\WINDOWS\system32\DRIVERS\wADV05NT.sys
22:56:04.0859 0x0d84  iAimFP2 - ok
22:56:04.0875 0x0d84  [ 525849B4469DE021D5D61B4DB9BE3A9D, 38F57D4F6A19F909764641384054216B136BEEC4A8F703A95A32583B1BA7D862 ] iAimFP3         C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys
22:56:04.0875 0x0d84  iAimFP3 - ok
22:56:04.0890 0x0d84  [ 589C2BCDB5BD602BF7B63D210407EF8C, 97AAC0F6AA4DACA904CAE02341105AC4BCB5B9D7274EF54F5C1E19BD7EC0C066 ] iAimFP4         C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys
22:56:04.0890 0x0d84  iAimFP4 - ok
22:56:04.0906 0x0d84  [ 0308AEF61941E4AF478FA1A0F83812F5, 56B30CAC8C2B35704BE4CF13C1C1070D47D98F9AFBFDA5CB43C474B0324BB4E3 ] iAimFP5         C:\WINDOWS\system32\DRIVERS\wADV07nt.sys
22:56:04.0906 0x0d84  iAimFP5 - ok
22:56:04.0921 0x0d84  [ 714038A8AA5DE08E12062202CD7EAEB5, 51F732AB16D8BD05672F829D5B1F3832013280A734A71C205559C24D178C8690 ] iAimFP6         C:\WINDOWS\system32\DRIVERS\wADV08nt.sys
22:56:04.0921 0x0d84  iAimFP6 - ok
22:56:04.0937 0x0d84  [ 7BB3AA595E4507A788DE1CDC63F4C8C4, 299289E81BD318D764E6941E87E2FBF715F0B8B9C5F6FE64176ADE41F3853E6E ] iAimFP7         C:\WINDOWS\system32\DRIVERS\wADV09nt.sys
22:56:04.0937 0x0d84  iAimFP7 - ok
22:56:04.0953 0x0d84  [ D83BDD5C059667A2F647A6BE5703A4D2, 6640B923BDF345294B4D4AAE24787CA2FA5A8F31603934747292805323E46BDD ] iAimTV0         C:\WINDOWS\system32\DRIVERS\wATV01nt.sys
22:56:04.0953 0x0d84  iAimTV0 - ok
22:56:04.0968 0x0d84  [ ED968D23354DAA0D7C621580C012A1F6, CE6A58D1D6DD1460625C88A491CB43136416633C4F51EC3CF5209E5FAAA03098 ] iAimTV1         C:\WINDOWS\system32\DRIVERS\wATV02NT.sys
22:56:04.0968 0x0d84  iAimTV1 - ok
22:56:04.0984 0x0d84  [ D738273F218A224C1DDAC04203F27A84, 94F1D11949A848E7699A2FDFEB8F9D9ABCE02DC86629C3A914DEF350EDDE426B ] iAimTV3         C:\WINDOWS\system32\DRIVERS\wATV04nt.sys
22:56:04.0984 0x0d84  iAimTV3 - ok
22:56:05.0000 0x0d84  [ 0052D118995CBAB152DAABE6106D1442, DF656EDFE5A59550FE2C41567CCB79484EE59DCE6703156DFDC0466F52A9B398 ] iAimTV4         C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys
22:56:05.0000 0x0d84  iAimTV4 - ok
22:56:05.0015 0x0d84  [ 791CC45DE6E50445BE72E8AD6401FF45, D1466D6E944C508B1AB817DFC2C81584F635A0EBF9D3E582930536BA99358E6E ] iAimTV5         C:\WINDOWS\system32\DRIVERS\wATV10nt.sys
22:56:05.0015 0x0d84  iAimTV5 - ok
22:56:05.0015 0x0d84  [ 352FA0E98BC461CE1CE5D41F64DB558D, B08EAED6C93AB6B872153933447051425DA77A355CCB19434CAEDF3920AD8C23 ] iAimTV6         C:\WINDOWS\system32\DRIVERS\wATV06nt.sys
22:56:05.0031 0x0d84  iAimTV6 - ok
22:56:05.0109 0x0d84  [ 9A883C3C4D91292C0D09DE7C728E781C, 34DD9E781C42FF55BF83F62DFE7B0F4FE3CAEF19B517245BA004C2C641493A98 ] ialm            C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
22:56:05.0156 0x0d84  ialm - ok
22:56:05.0218 0x0d84  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
22:56:05.0218 0x0d84  IDriverT - ok
22:56:05.0296 0x0d84  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:56:05.0328 0x0d84  idsvc - ok
22:56:05.0343 0x0d84  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
22:56:05.0343 0x0d84  Imapi - ok
22:56:05.0375 0x0d84  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    C:\WINDOWS\system32\imapi.exe
22:56:05.0390 0x0d84  ImapiService - ok
22:56:05.0390 0x0d84  ini910u - ok
22:56:05.0421 0x0d84  [ B5466A9250342A7AA0CD1FBA13420678, 87E735C4E8924A883AB692D387A83BCBFAE6E165688336AE7AB488F7CA8D339E ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
22:56:05.0421 0x0d84  IntelIde - ok
22:56:05.0437 0x0d84  [ 8C953733D8F36EB2133F5BB58808B66B, 555868F246D73652E998B0B1296476E42FCEDED30D646CC000F31ECE4EBC25E6 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:56:05.0453 0x0d84  intelppm - ok
22:56:05.0468 0x0d84  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
22:56:05.0484 0x0d84  Ip6Fw - ok
22:56:05.0500 0x0d84  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:56:05.0500 0x0d84  IpFilterDriver - ok
22:56:05.0500 0x0d84  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:56:05.0515 0x0d84  IpInIp - ok
22:56:05.0531 0x0d84  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:56:05.0546 0x0d84  IpNat - ok
22:56:05.0562 0x0d84  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:56:05.0562 0x0d84  IPSec - ok
22:56:05.0578 0x0d84  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
22:56:05.0578 0x0d84  IRENUM - ok
22:56:05.0609 0x0d84  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:56:05.0609 0x0d84  isapnp - ok
22:56:05.0687 0x0d84  [ 80A79264302910C7C24BA7E44267EFEF, 6080C233478350C8E07515D20D2D60C3758C4A65432B04E8C8B816248621A3EF ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
22:56:05.0687 0x0d84  JavaQuickStarterService - ok
22:56:05.0703 0x0d84  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:56:05.0703 0x0d84  Kbdclass - ok
22:56:05.0734 0x0d84  [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:56:05.0734 0x0d84  kbdhid - ok
22:56:05.0750 0x0d84  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
22:56:05.0765 0x0d84  kmixer - ok
22:56:05.0781 0x0d84  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
22:56:05.0781 0x0d84  KSecDD - ok
22:56:05.0812 0x0d84  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
22:56:05.0812 0x0d84  lanmanserver - ok
22:56:05.0859 0x0d84  [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
22:56:05.0859 0x0d84  lanmanworkstation - ok
22:56:05.0875 0x0d84  lbrtfdc - ok
22:56:05.0921 0x0d84  [ 590010293B7402FF1897AA2890275D50, 5BF66B83D4469C58A66DA6F35EB89ECC7E856A7F44824FCF9DADFDEF29FEFFB6 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
22:56:05.0921 0x0d84  LightScribeService - ok
22:56:05.0937 0x0d84  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
22:56:05.0937 0x0d84  LmHosts - ok
22:56:05.0968 0x0d84  [ 4470E3C1E0C3378E4CAB137893C12C3A, CA8E66356F0E671D5454E561E7EAD74DE25DCF53BE452369F96ECACFA8709489 ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
22:56:05.0968 0x0d84  MBAMProtector - ok
22:56:06.0015 0x0d84  [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler   C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
22:56:06.0031 0x0d84  MBAMScheduler - ok
22:56:06.0062 0x0d84  [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService     C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
22:56:06.0093 0x0d84  MBAMService - ok
22:56:06.0156 0x0d84  [ 11F714F85530A2BD134074DC30E99FCA, BDB5FD3B2DF4ADD19B31965B3E789768B59E872B3EA85912B1FFB32B2AF9D5D8 ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
22:56:06.0156 0x0d84  MDM - ok
22:56:06.0187 0x0d84  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
22:56:06.0187 0x0d84  Messenger - ok
22:56:06.0203 0x0d84  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
22:56:06.0203 0x0d84  mnmdd - ok
22:56:06.0234 0x0d84  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
22:56:06.0234 0x0d84  mnmsrvc - ok
22:56:06.0250 0x0d84  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
22:56:06.0250 0x0d84  Modem - ok
22:56:06.0281 0x0d84  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:56:06.0281 0x0d84  Mouclass - ok
22:56:06.0296 0x0d84  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:56:06.0296 0x0d84  mouhid - ok
22:56:06.0312 0x0d84  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
22:56:06.0328 0x0d84  MountMgr - ok
22:56:06.0343 0x0d84  [ E77DC03DD3C8E5A388BF9EED2A28F3D1, ED0DAA975D1EC35CE036F02596218E15CC6A054167628D12A0A5AD91B841F422 ] MpFilter        C:\WINDOWS\system32\DRIVERS\MpFilter.sys
22:56:06.0343 0x0d84  MpFilter - ok
22:56:06.0359 0x0d84  mraid35x - ok
22:56:06.0375 0x0d84  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:56:06.0375 0x0d84  MRxDAV - ok
22:56:06.0421 0x0d84  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:56:06.0437 0x0d84  MRxSmb - ok
22:56:06.0453 0x0d84  [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
22:56:06.0468 0x0d84  MSDTC - ok
22:56:06.0468 0x0d84  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
22:56:06.0484 0x0d84  Msfs - ok
22:56:06.0484 0x0d84  MSIServer - ok
22:56:06.0500 0x0d84  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:56:06.0515 0x0d84  MSKSSRV - ok
22:56:06.0546 0x0d84  [ B0F49DA36F30922F5DDC3B623B778FCE, EE025AEFA4A2095AFEABFB3A49639DA77D78068A3F5EEDA6C15D34853AFD5609 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
22:56:06.0546 0x0d84  MsMpSvc - ok
22:56:06.0562 0x0d84  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:56:06.0562 0x0d84  MSPCLOCK - ok
22:56:06.0578 0x0d84  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
22:56:06.0578 0x0d84  MSPQM - ok
22:56:06.0593 0x0d84  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:56:06.0593 0x0d84  mssmbios - ok
22:56:06.0625 0x0d84  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
22:56:06.0625 0x0d84  MSTEE - ok
22:56:06.0640 0x0d84  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
22:56:06.0656 0x0d84  Mup - ok
22:56:06.0671 0x0d84  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:56:06.0671 0x0d84  NABTSFEC - ok
22:56:06.0718 0x0d84  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        C:\WINDOWS\System32\qagentrt.dll
22:56:06.0718 0x0d84  napagent - ok
22:56:06.0750 0x0d84  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
22:56:06.0750 0x0d84  NDIS - ok
22:56:06.0781 0x0d84  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:56:06.0781 0x0d84  NdisIP - ok
22:56:06.0812 0x0d84  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:56:06.0812 0x0d84  NdisTapi - ok
22:56:06.0828 0x0d84  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:56:06.0828 0x0d84  Ndisuio - ok
22:56:06.0828 0x0d84  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:56:06.0843 0x0d84  NdisWan - ok
22:56:06.0859 0x0d84  [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
22:56:06.0859 0x0d84  NDProxy - ok
22:56:06.0890 0x0d84  [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
22:56:06.0890 0x0d84  Net Driver HPZ12 - ok
22:56:06.0890 0x0d84  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
22:56:06.0890 0x0d84  NetBIOS - ok
22:56:06.0921 0x0d84  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
22:56:06.0921 0x0d84  NetBT - ok
22:56:06.0953 0x0d84  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          C:\WINDOWS\system32\netdde.exe
22:56:06.0953 0x0d84  NetDDE - ok
22:56:06.0953 0x0d84  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
22:56:06.0968 0x0d84  NetDDEdsdm - ok
22:56:06.0984 0x0d84  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        C:\WINDOWS\system32\lsass.exe
22:56:06.0984 0x0d84  Netlogon - ok
22:56:07.0015 0x0d84  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          C:\WINDOWS\System32\netman.dll
22:56:07.0031 0x0d84  Netman - ok
22:56:07.0062 0x0d84  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:56:07.0062 0x0d84  NetTcpPortSharing - ok
22:56:07.0093 0x0d84  [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla             C:\WINDOWS\System32\mswsock.dll
22:56:07.0109 0x0d84  Nla - ok
22:56:07.0125 0x0d84  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
22:56:07.0125 0x0d84  Npfs - ok
22:56:07.0156 0x0d84  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
22:56:07.0171 0x0d84  Ntfs - ok
22:56:07.0187 0x0d84  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
22:56:07.0187 0x0d84  NtLmSsp - ok
22:56:07.0234 0x0d84  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
22:56:07.0250 0x0d84  NtmsSvc - ok
22:56:07.0265 0x0d84  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
22:56:07.0296 0x0d84  Null - ok
22:56:07.0484 0x0d84  [ 2B298519EDBFCF451D43E0F1E8F1006D, 67F3F2001F4C8DABD253D60AB3222793635532DC51AD977954286F8A246F5592 ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:56:07.0703 0x0d84  nv - ok
22:56:07.0734 0x0d84  [ FDE61779FC016B0E2CF2248397FE2B0F, 48B6F12F2F872549342E4161DE00FFA6D1A10DCD9018E293238865120C0DCD48 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
22:56:07.0734 0x0d84  NVSvc - ok
22:56:07.0765 0x0d84  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:56:07.0765 0x0d84  NwlnkFlt - ok
22:56:07.0781 0x0d84  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:56:07.0781 0x0d84  NwlnkFwd - ok
22:56:07.0796 0x0d84  [ C90018BAFDC7098619A4A95B046B30F3, 1826E46F237AD65BA189B83803A46A6C2B29089C1BA146106ADD9F2B04D4A89D ] P3              C:\WINDOWS\system32\DRIVERS\p3.sys
22:56:07.0796 0x0d84  P3 - ok
22:56:07.0828 0x0d84  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
22:56:07.0828 0x0d84  Parport - ok
22:56:07.0843 0x0d84  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
22:56:07.0843 0x0d84  PartMgr - ok
22:56:07.0859 0x0d84  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
22:56:07.0859 0x0d84  ParVdm - ok
22:56:07.0875 0x0d84  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
22:56:07.0875 0x0d84  PCI - ok
22:56:07.0890 0x0d84  PCIDump - ok
22:56:07.0906 0x0d84  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
22:56:07.0906 0x0d84  PCIIde - ok
22:56:07.0921 0x0d84  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
22:56:07.0921 0x0d84  Pcmcia - ok
22:56:07.0937 0x0d84  PDCOMP - ok
22:56:07.0937 0x0d84  PDFRAME - ok
22:56:07.0953 0x0d84  PDRELI - ok
22:56:07.0968 0x0d84  PDRFRAME - ok
22:56:07.0968 0x0d84  perc2 - ok
22:56:07.0984 0x0d84  perc2hib - ok
22:56:08.0015 0x0d84  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay        C:\WINDOWS\system32\services.exe
22:56:08.0015 0x0d84  PlugPlay - ok
22:56:08.0031 0x0d84  [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
22:56:08.0031 0x0d84  Pml Driver HPZ12 - ok
22:56:08.0062 0x0d84  [ 3B6973D60BDE757C53BB76842D31318E, F4D0F0075DA119F4B2719F7F4F5D9863DB64440A559DC5279992C3D6E507185F ] Point32         C:\WINDOWS\system32\DRIVERS\point32.sys
22:56:08.0062 0x0d84  Point32 - ok
22:56:08.0078 0x0d84  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
22:56:08.0078 0x0d84  PolicyAgent - ok
22:56:08.0093 0x0d84  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:56:08.0093 0x0d84  PptpMiniport - ok
22:56:08.0109 0x0d84  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
22:56:08.0109 0x0d84  ProtectedStorage - ok
22:56:08.0140 0x0d84  [ 390C204CED3785609AB24E9C52054A84, D997A9EAAE4A7FED9C2FEBD1AA7D1171431B9C9D56F8BFB587DCAE26203FF4D2 ] Ps2             C:\WINDOWS\system32\DRIVERS\PS2.sys
22:56:08.0140 0x0d84  Ps2 - ok
22:56:08.0140 0x0d84  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
22:56:08.0156 0x0d84  PSched - ok
22:56:08.0156 0x0d84  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:56:08.0171 0x0d84  Ptilink - ok
22:56:08.0187 0x0d84  [ DBF1DD3024A5E85D7458DAF3D54B85ED, 0F6308A1A74D09D46005D19F10A9E6636341ECCD7A3E6A48F5F3157003C74791 ] qcmdmxp         C:\WINDOWS\system32\DRIVERS\qcmdmxp.sys
22:56:08.0187 0x0d84  qcmdmxp - ok
22:56:08.0218 0x0d84  [ DBF1DD3024A5E85D7458DAF3D54B85ED, 0F6308A1A74D09D46005D19F10A9E6636341ECCD7A3E6A48F5F3157003C74791 ] qcserxp         C:\WINDOWS\system32\DRIVERS\qcserxp.sys
22:56:08.0218 0x0d84  qcserxp - ok
22:56:08.0218 0x0d84  ql1080 - ok
22:56:08.0234 0x0d84  Ql10wnt - ok
22:56:08.0234 0x0d84  ql12160 - ok
22:56:08.0250 0x0d84  ql1240 - ok
22:56:08.0265 0x0d84  ql1280 - ok
22:56:08.0375 0x0d84  [ AB51E1F08C8E789D6C9E8B94D15BE9A9, 35386087B0D57D181FE39E4AFBFFE4DB5B827DACA6D87F1F5563B26547993E24 ] RapportCerberus_59849 C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_59849.sys
22:56:08.0390 0x0d84  RapportCerberus_59849 - ok
22:56:08.0437 0x0d84  [ C6BBFAE263E6D8839D2590214C112416, 6B3DC0D315CAABF79D7143922E6FAB743733E2F9597607DD0EE25D79961B7C1B ] RapportEI       C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys
22:56:08.0437 0x0d84  RapportEI - ok
22:56:08.0484 0x0d84  [ 28B42054CAB43FAC3E8A0094ECF8CECF, F62DDFBE12BDE87BDD7DAE04E4F771CC32C6C79DE9A1BF109FFBB970BB5A97F9 ] RapportKELL     C:\WINDOWS\system32\Drivers\RapportKELL.sys
22:56:08.0484 0x0d84  RapportKELL - ok
22:56:08.0562 0x0d84  [ D11162F92258E1F09CFB4054941F2E24, B8522D8BCAEFE5CD9BB36BF74AE0B9ADE065D6472AD2CDB001101D211D332367 ] RapportMgmtService C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
22:56:08.0609 0x0d84  RapportMgmtService - ok
22:56:08.0640 0x0d84  [ 6DA718CC1936E804EE909C615BE5E4FD, 7BA51053DEDC483A49B6B1773188D503E0A7501105B72C55816FA22744A704A2 ] RapportPG       C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys
22:56:08.0640 0x0d84  RapportPG - ok
22:56:08.0656 0x0d84  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:56:08.0656 0x0d84  RasAcd - ok
22:56:08.0687 0x0d84  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         C:\WINDOWS\System32\rasauto.dll
22:56:08.0687 0x0d84  RasAuto - ok
22:56:08.0703 0x0d84  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:56:08.0703 0x0d84  Rasl2tp - ok
22:56:08.0734 0x0d84  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          C:\WINDOWS\System32\rasmans.dll
22:56:08.0734 0x0d84  RasMan - ok
22:56:08.0750 0x0d84  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:56:08.0750 0x0d84  RasPppoe - ok
22:56:08.0765 0x0d84  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
22:56:08.0765 0x0d84  Raspti - ok
22:56:08.0781 0x0d84  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:56:08.0796 0x0d84  Rdbss - ok
22:56:08.0796 0x0d84  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:56:08.0796 0x0d84  RDPCDD - ok
22:56:08.0812 0x0d84  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:56:08.0828 0x0d84  rdpdr - ok
22:56:08.0859 0x0d84  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
22:56:08.0859 0x0d84  RDPWD - ok
22:56:08.0890 0x0d84  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
22:56:08.0890 0x0d84  RDSessMgr - ok
22:56:08.0937 0x0d84  [ 96EFEC24346A8EB1157E80523079ADDC, 7F8FC284029856C754E400B6C954369FFE27763C81D8F4AF4E58BFDD44CBC24A ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
22:56:08.0937 0x0d84  RealNetworks Downloader Resolver Service - ok
22:56:08.0953 0x0d84  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
22:56:08.0953 0x0d84  redbook - ok
22:56:08.0984 0x0d84  [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
22:56:08.0984 0x0d84  RemoteAccess - ok
22:56:09.0015 0x0d84  [ 5B19B557B0C188210A56A6B699D90B8F, 0FA880B81AE615206FD1738B83428AAA491D54B24168339DE6E87FDE8C6C14B0 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
22:56:09.0015 0x0d84  RemoteRegistry - ok
22:56:09.0031 0x0d84  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      C:\WINDOWS\system32\locator.exe
22:56:09.0046 0x0d84  RpcLocator - ok
22:56:09.0078 0x0d84  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs           C:\WINDOWS\system32\rpcss.dll
22:56:09.0078 0x0d84  RpcSs - ok
22:56:09.0109 0x0d84  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe
22:56:09.0125 0x0d84  RSVP - ok
22:56:09.0171 0x0d84  [ 2890916EB8DED61CC2D8D057A9778E03, 02C5B659F0A1E8B875DBB6A4498A0A95320C446746F763C0656116F659C86FB0 ] RTL8187B        C:\WINDOWS\system32\DRIVERS\RTL8187B.sys
22:56:09.0171 0x0d84  RTL8187B - ok
22:56:09.0187 0x0d84  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           C:\WINDOWS\system32\lsass.exe
22:56:09.0187 0x0d84  SamSs - ok
22:56:09.0218 0x0d84  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
22:56:09.0218 0x0d84  SCardSvr - ok
22:56:09.0265 0x0d84  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
22:56:09.0265 0x0d84  Schedule - ok
22:56:09.0296 0x0d84  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:56:09.0296 0x0d84  Secdrv - ok
22:56:09.0312 0x0d84  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        C:\WINDOWS\System32\seclogon.dll
22:56:09.0312 0x0d84  seclogon - ok
22:56:09.0328 0x0d84  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            C:\WINDOWS\system32\sens.dll
22:56:09.0328 0x0d84  SENS - ok
22:56:09.0343 0x0d84  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
22:56:09.0343 0x0d84  serenum - ok
22:56:09.0359 0x0d84  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
22:56:09.0359 0x0d84  Serial - ok
22:56:09.0375 0x0d84  [ 1F16931C722C69E4A7866244796C66A0, 11C35DF2DAEBE949873B3B5534B9AB0CF293127870AF483ECE40DD8D719FC536 ] sermouse        C:\WINDOWS\system32\DRIVERS\sermouse.sys
22:56:09.0390 0x0d84  sermouse - ok
22:56:09.0437 0x0d84  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\DRIVERS\sfloppy.sys
22:56:09.0437 0x0d84  Sfloppy - ok
22:56:09.0468 0x0d84  [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
22:56:09.0484 0x0d84  SharedAccess - ok
22:56:09.0500 0x0d84  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
22:56:09.0515 0x0d84  ShellHWDetection - ok
22:56:09.0515 0x0d84  Simbad - ok
22:56:09.0531 0x0d84  [ 32933B07FC16D9F778BEE12545FA1B1A, 73CCDD4EBA90138820624FFEFC629EFA3B15FF395D9F31CC4C4678713ECB1F23 ] SimpTcp         C:\WINDOWS\system32\tcpsvcs.exe
22:56:09.0546 0x0d84  SimpTcp - ok
22:56:09.0546 0x0d84  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:56:09.0562 0x0d84  SLIP - ok
22:56:09.0562 0x0d84  SMNDIS5 - ok
22:56:09.0625 0x0d84  [ 86D17B6760DD2B09E932FF101714E0DC, 782F1777F0D992286CF31521950005D31865AA2518D5DD4E0F2CDDF23FE80EA3 ] smwdm           C:\WINDOWS\system32\drivers\smwdm.sys
22:56:09.0640 0x0d84  smwdm - ok
22:56:09.0687 0x0d84  [ A2E9CAEF31863CAB5486267A65FE322C, 524F6EBF89EBF40B1E984DBBF0A27387465F61E7148FDBD7F2F88F7A07AA44CA ] snpstd          C:\WINDOWS\system32\DRIVERS\snpstd.sys
22:56:09.0703 0x0d84  snpstd - ok
22:56:09.0718 0x0d84  [ 3978F082274F723AD5A0A8058C2417DD, B3C07E4686414BA64491C70BD6185ABE41AC2EFBC1EC9FF54A8C3760054FA0BF ] SoundMAX Agent Service (default) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
22:56:09.0718 0x0d84  SoundMAX Agent Service (default) - ok
22:56:09.0734 0x0d84  Sparrow - ok
22:56:09.0750 0x0d84  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
22:56:09.0750 0x0d84  splitter - ok
22:56:09.0781 0x0d84  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
22:56:09.0781 0x0d84  Spooler - ok
22:56:09.0796 0x0d84  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
22:56:09.0812 0x0d84  sr - ok
22:56:09.0828 0x0d84  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       C:\WINDOWS\system32\srsvc.dll
22:56:09.0843 0x0d84  srservice - ok
22:56:09.0890 0x0d84  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
22:56:09.0906 0x0d84  Srv - ok
22:56:09.0921 0x0d84  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
22:56:09.0921 0x0d84  SSDPSRV - ok
22:56:09.0953 0x0d84  [ A9573045BAA16EAB9B1085205B82F1ED, 6A4D68BCD4968C17451EB1C4AB420FFA844D089845520D222BC4A2BD14583C56 ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
22:56:09.0953 0x0d84  StillCam - ok
22:56:09.0984 0x0d84  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
22:56:09.0984 0x0d84  stisvc - ok
22:56:10.0015 0x0d84  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:56:10.0015 0x0d84  streamip - ok
22:56:10.0031 0x0d84  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
22:56:10.0031 0x0d84  swenum - ok
22:56:10.0046 0x0d84  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
22:56:10.0046 0x0d84  swmidi - ok
22:56:10.0046 0x0d84  SwPrv - ok
22:56:10.0078 0x0d84  [ 1FF3217614018630D0A6758630FC698C, 78A3075BBFF5D7ADEAC1527E65ACA8527BFC509DF124D44410BB46C4D96C96BB ] symc810         C:\WINDOWS\system32\DRIVERS\symc810.sys
22:56:10.0093 0x0d84  symc810 - ok
22:56:10.0109 0x0d84  [ 070E001D95CF725186EF8B20335F933C, B98B29FB01741AF3B4BB02C76A4D117EA04FE4CC4F8CDB491F9216931704A6D8 ] symc8xx         C:\WINDOWS\system32\DRIVERS\symc8xx.sys
22:56:10.0109 0x0d84  symc8xx - ok
22:56:10.0125 0x0d84  [ F2B7E8416F508368AC6730E2AE1C614F, 0A3FC9A2F30C56C0861EE96D0D270F221CCAE5A267DB768F68D2C56E1F3761BA ] Symmpi          C:\WINDOWS\system32\DRIVERS\symmpi.sys
22:56:10.0140 0x0d84  Symmpi - ok
22:56:10.0156 0x0d84  [ 80AC1C4ABBE2DF3B738BF15517A51F2C, CCF82D09C63F4FA98BCBEF3A1DC8C02D4269B78256D0B6213E815D9BBE174432 ] sym_hi          C:\WINDOWS\system32\DRIVERS\sym_hi.sys
22:56:10.0156 0x0d84  sym_hi - ok
22:56:10.0171 0x0d84  [ BF4FAB949A382A8E105F46EBB4937058, FE7C114A19D50E37463CDD3605C26105A779EEA79CB92BF98267C7BE809D853B ] sym_u3          C:\WINDOWS\system32\DRIVERS\sym_u3.sys
22:56:10.0171 0x0d84  sym_u3 - ok
22:56:10.0203 0x0d84  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
22:56:10.0203 0x0d84  sysaudio - ok
22:56:10.0234 0x0d84  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
22:56:10.0234 0x0d84  SysmonLog - ok
22:56:10.0250 0x0d84  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
22:56:10.0265 0x0d84  TapiSrv - ok
22:56:10.0296 0x0d84  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:56:10.0312 0x0d84  Tcpip - ok
22:56:10.0328 0x0d84  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
22:56:10.0328 0x0d84  TDPIPE - ok
22:56:10.0343 0x0d84  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
22:56:10.0343 0x0d84  TDTCP - ok
22:56:10.0359 0x0d84  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
22:56:10.0359 0x0d84  TermDD - ok
22:56:10.0390 0x0d84  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     C:\WINDOWS\System32\termsrv.dll
22:56:10.0390 0x0d84  TermService - ok
22:56:10.0421 0x0d84  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes          C:\WINDOWS\System32\shsvcs.dll
22:56:10.0421 0x0d84  Themes - ok
22:56:10.0453 0x0d84  [ DB7205804759FF62C34E3EFD8A4CC76A, 13A4248F528CE98ACA66898E56822E4FC49B11F491FF1F61A687BA601BF0A802 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
22:56:10.0453 0x0d84  TlntSvr - ok
22:56:10.0468 0x0d84  TosIde - ok
22:56:10.0484 0x0d84  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
22:56:10.0484 0x0d84  TrkWks - ok
22:56:10.0515 0x0d84  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
22:56:10.0515 0x0d84  Udfs - ok
22:56:10.0531 0x0d84  ultra - ok
22:56:10.0562 0x0d84  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
22:56:10.0578 0x0d84  Update - ok
22:56:10.0593 0x0d84  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        C:\WINDOWS\System32\upnphost.dll
22:56:10.0609 0x0d84  upnphost - ok
22:56:10.0609 0x0d84  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             C:\WINDOWS\System32\ups.exe
22:56:10.0625 0x0d84  UPS - ok
22:56:10.0640 0x0d84  [ AF9388E736AF0C325067F05EDC350010, 7B0250F2DE3E7F86BDD9C726DB80A89305F0F592D423548AE6A42E39124E647E ] usbbus          C:\WINDOWS\system32\DRIVERS\lgusbbus.sys
22:56:10.0656 0x0d84  usbbus - ok
22:56:10.0687 0x0d84  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:56:10.0687 0x0d84  usbccgp - ok
22:56:10.0703 0x0d84  [ AE30EA96E60E823C7B525DA356283AE8, 76AE31EB21ECEAB8162A8E55DB8A41A1599D257753890123E2E4294152682A43 ] UsbDiag         C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys
22:56:10.0703 0x0d84  UsbDiag - ok
22:56:10.0718 0x0d84  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:56:10.0734 0x0d84  usbehci - ok
22:56:10.0750 0x0d84  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:56:10.0750 0x0d84  usbhub - ok
22:56:10.0781 0x0d84  [ 46AC66DF3D6EFE81F69BEA823A53AAB5, 41EA067F1BA5F5041CC5D664867DA439115B1B244DC822981BACE4AD9CBBF3C8 ] USBModem        C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys
22:56:10.0781 0x0d84  USBModem - ok
22:56:10.0796 0x0d84  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
22:56:10.0796 0x0d84  usbprint - ok
22:56:10.0812 0x0d84  [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:56:10.0828 0x0d84  usbscan - ok
22:56:10.0843 0x0d84  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:56:10.0843 0x0d84  USBSTOR - ok
22:56:10.0875 0x0d84  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:56:10.0875 0x0d84  usbuhci - ok
22:56:10.0906 0x0d84  [ B4D7B7AD8A9F7C063C5CC3E2C1A0724E, CFA47A71403419CA7C94333B4F7766DFC97C5DCDBC3AD1B106044B93C979A5C5 ] usb_rndisx      C:\WINDOWS\system32\DRIVERS\usb8023x.sys
22:56:10.0906 0x0d84  usb_rndisx - ok
22:56:10.0921 0x0d84  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
22:56:10.0921 0x0d84  VgaSave - ok
22:56:10.0937 0x0d84  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
22:56:10.0937 0x0d84  ViaIde - ok
22:56:10.0953 0x0d84  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
22:56:10.0968 0x0d84  VolSnap - ok
22:56:11.0000 0x0d84  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             C:\WINDOWS\System32\vssvc.exe
22:56:11.0000 0x0d84  VSS - ok
22:56:11.0031 0x0d84  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time         C:\WINDOWS\system32\w32time.dll
22:56:11.0031 0x0d84  W32Time - ok
22:56:11.0046 0x0d84  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:56:11.0062 0x0d84  Wanarp - ok
22:56:11.0078 0x0d84  [ 46A247F6617526AFE38B6F12F5512120, 24931910E3D678829A7A6CF1140CFE428E05057A4D3A14086ED66B884E847D2D ] wceusbsh        C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
22:56:11.0093 0x0d84  wceusbsh - ok
22:56:11.0093 0x0d84  WDICA - ok
22:56:11.0125 0x0d84  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
22:56:11.0125 0x0d84  wdmaud - ok
22:56:11.0140 0x0d84  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       C:\WINDOWS\System32\webclnt.dll
22:56:11.0140 0x0d84  WebClient - ok
22:56:11.0171 0x0d84  [ F45DD1E1365D857DD08BC23563370D0E, D95AEBB2095579D716C62152C8B805E119812FD2E40F14F9A5BA2EFDE133303B ] WinDefend       C:\Program Files\Windows Defender\MsMpEng.exe
22:56:11.0171 0x0d84  WinDefend - ok
22:56:11.0234 0x0d84  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
22:56:11.0234 0x0d84  winmgmt - ok
22:56:11.0296 0x0d84  [ 18F347402DA544A780949B8FDF83351B, D1AD972D438A51A4998FEF68670395DAE3353240AD2A17F35794287AF0826FFB ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
22:56:11.0343 0x0d84  WinRM - ok
22:56:11.0390 0x0d84  [ BC3ECBCB40147BDAE3AD2FD0B4B346D8, 846CC7719331C0328058A0D2CEA1A803C47370FB67BB8EC9D4B89079F5AC67BC ] WmBEnum         C:\WINDOWS\system32\drivers\WmBEnum.sys
22:56:11.0390 0x0d84  WmBEnum - ok
22:56:11.0406 0x0d84  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
22:56:11.0421 0x0d84  WmdmPmSN - ok
22:56:11.0421 0x0d84  [ 19F9881D8B3484FEDB605D0216876898, 9A361724A78E5DE923798A0DA11CC76BDF2B365032EAA8C2179B17DD1B7FF41B ] WmFilter        C:\WINDOWS\system32\drivers\WmFilter.sys
22:56:11.0437 0x0d84  WmFilter - ok
22:56:11.0484 0x0d84  [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] Wmi             C:\WINDOWS\System32\advapi32.dll
22:56:11.0500 0x0d84  Wmi - ok
22:56:11.0531 0x0d84  [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
22:56:11.0531 0x0d84  WmiAcpi - ok
22:56:11.0562 0x0d84  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
22:56:11.0562 0x0d84  WmiApSrv - ok
22:56:11.0656 0x0d84  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B, C71FAAC752F6D58BF8556661252DBF8C5DDD090CAE002A2C7E09C9A014526066 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
22:56:11.0703 0x0d84  WMPNetworkSvc - ok
22:56:11.0718 0x0d84  [ 7A51545A6409A25EEDBDBD97D019E8CC, D74F28263B675E8C676ADDFDDBD1516320AF4EEEB9F6791AD7DD1A825B286BA0 ] WmVirHid        C:\WINDOWS\system32\drivers\WmVirHid.sys
22:56:11.0718 0x0d84  WmVirHid - ok
22:56:11.0750 0x0d84  [ 1F083B3BC73017E60C3CA85CF4A70753, B924B17860A4D2669C81A07D82349808AAEB806617330F1558BA2FCAC43729C9 ] WmXlCore        C:\WINDOWS\system32\drivers\WmXlCore.sys
22:56:11.0750 0x0d84  WmXlCore - ok
22:56:11.0765 0x0d84  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
22:56:11.0765 0x0d84  WpdUsb - ok
22:56:11.0875 0x0d84  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:56:11.0890 0x0d84  WPFFontCache_v0400 - ok
22:56:11.0937 0x0d84  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
22:56:11.0937 0x0d84  wscsvc - ok
22:56:11.0937 0x0d84  WSearch - ok
22:56:11.0984 0x0d84  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:56:11.0984 0x0d84  WSTCODEC - ok
22:56:12.0000 0x0d84  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
22:56:12.0000 0x0d84  wuauserv - ok
22:56:12.0031 0x0d84  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:56:12.0031 0x0d84  WudfPf - ok
22:56:12.0062 0x0d84  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:56:12.0062 0x0d84  WudfRd - ok
22:56:12.0078 0x0d84  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
22:56:12.0078 0x0d84  WudfSvc - ok
22:56:12.0125 0x0d84  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
22:56:12.0125 0x0d84  WZCSVC - ok
22:56:12.0156 0x0d84  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
22:56:12.0171 0x0d84  xmlprov - ok
22:56:12.0218 0x0d84  ================ Scan global ===============================
22:56:12.0234 0x0d84  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
22:56:12.0265 0x0d84  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
22:56:12.0296 0x0d84  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
22:56:12.0312 0x0d84  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
22:56:12.0312 0x0d84  [ Global ] - ok
22:56:12.0312 0x0d84  ================ Scan MBR ==================================
22:56:12.0328 0x0d84  [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk0\DR0
22:56:13.0000 0x0d84  \Device\Harddisk0\DR0 - ok
22:56:13.0000 0x0d84  ================ Scan VBR ==================================
22:56:13.0015 0x0d84  [ D22FF5B727D91A04E44B2B45626760CA ] \Device\Harddisk0\DR0\Partition1
22:56:13.0015 0x0d84  \Device\Harddisk0\DR0\Partition1 - ok
22:56:13.0015 0x0d84  Waiting for KSN requests completion. In queue: 308
22:56:14.0015 0x0d84  Waiting for KSN requests completion. In queue: 308
22:56:15.0015 0x0d84  Waiting for KSN requests completion. In queue: 308
22:56:16.0015 0x0d84  Waiting for KSN requests completion. In queue: 308
22:56:17.0015 0x0d84  Waiting for KSN requests completion. In queue: 308
22:56:18.0015 0x0d84  Waiting for KSN requests completion. In queue: 308
22:56:19.0015 0x0d84  Waiting for KSN requests completion. In queue: 308
22:56:20.0015 0x0d84  Waiting for KSN requests completion. In queue: 308
22:56:21.0015 0x0d84  Waiting for KSN requests completion. In queue: 280
22:56:22.0015 0x0d84  Waiting for KSN requests completion. In queue: 252
22:56:23.0015 0x0d84  Waiting for KSN requests completion. In queue: 221
22:56:24.0015 0x0d84  Waiting for KSN requests completion. In queue: 194
22:56:25.0015 0x0d84  Waiting for KSN requests completion. In queue: 135
22:56:26.0015 0x0d84  Waiting for KSN requests completion. In queue: 135
22:56:27.0015 0x0d84  Waiting for KSN requests completion. In queue: 107
22:56:28.0015 0x0d84  Waiting for KSN requests completion. In queue: 80
22:56:29.0015 0x0d84  Waiting for KSN requests completion. In queue: 26
22:56:30.0015 0x0d84  Waiting for KSN requests completion. In queue: 26
22:56:31.0015 0x0d84  Waiting for KSN requests completion. In queue: 26
22:56:32.0015 0x0d84  Waiting for KSN requests completion. In queue: 26
22:56:33.0015 0x0d84  Waiting for KSN requests completion. In queue: 26
22:56:34.0109 0x0d84  AV detected via SS1: Microsoft Security Essentials, 4.4.0304.0, enabled, updated
22:56:34.0109 0x0d84  Win FW state via NFM: enabled
22:56:42.0109 0x0d84  ============================================================
22:56:42.0109 0x0d84  Scan finished
22:56:42.0109 0x0d84  ============================================================
22:56:42.0109 0x2294  Detected object count: 0
22:56:42.0109 0x2294  Actual detected object count: 0
23:03:26.0953 0x0e2c  ============================================================
23:03:26.0953 0x0e2c  Scan started
23:03:26.0953 0x0e2c  Mode: Manual;
23:03:26.0953 0x0e2c  ============================================================
23:03:26.0953 0x0e2c  KSN ping started
23:03:43.0968 0x0e2c  KSN ping finished: true
23:03:44.0906 0x0e2c  ================ Scan system memory ========================
23:03:44.0921 0x0e2c  System memory - ok
23:03:44.0921 0x0e2c  ================ Scan services =============================
23:03:45.0031 0x0e2c  Abiosdsk - ok
23:03:45.0031 0x0e2c  abp480n5 - ok
23:03:45.0078 0x0e2c  [ 0F2D66D5F08EBE2F77BB904288DCF6F0, 5969A64B6995DCAF16F9A76BD1235472F76D71DFE629B956221D2C3D73EDF98A ] ac97intc        C:\WINDOWS\system32\drivers\ac97intc.sys
23:03:45.0078 0x0e2c  ac97intc - ok
23:03:45.0109 0x0e2c  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
23:03:45.0125 0x0e2c  ACPI - ok
23:03:45.0156 0x0e2c  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
23:03:45.0156 0x0e2c  ACPIEC - ok
23:03:45.0187 0x0e2c  [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
23:03:45.0187 0x0e2c  AdobeFlashPlayerUpdateSvc - ok
23:03:45.0218 0x0e2c  [ 9A11864873DA202C996558B2106B0BBC, 4C68F1DBD1541291DD0FAB78DB42B25FA051CD9F55ED869173E3219CD31500C4 ] adpu160m        C:\WINDOWS\system32\DRIVERS\adpu160m.sys
23:03:45.0218 0x0e2c  adpu160m - ok
23:03:45.0250 0x0e2c  [ 0EA9B1F0C6C90A509C8603775366ADB7, 9B8AE3D9757319B1AD88A3FFF64AF7B6253D484977C8478EC8024778FE2EF74D ] adpu320         C:\WINDOWS\system32\DRIVERS\adpu320.sys
23:03:45.0265 0x0e2c  adpu320 - ok
23:03:45.0312 0x0e2c  [ 3CB6AE5435987B1F8C83FD2730479878, 4DACBB2381717E8250F8BA6FACAFF56143EC4A13F4917C3B0B85F1A267DD6673 ] aeaudio         C:\WINDOWS\system32\drivers\aeaudio.sys
23:03:45.0312 0x0e2c  aeaudio - ok
23:03:45.0328 0x0e2c  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
23:03:45.0328 0x0e2c  aec - ok
23:03:45.0359 0x0e2c  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
23:03:45.0359 0x0e2c  AFD - ok
23:03:45.0359 0x0e2c  Aha154x - ok
23:03:45.0406 0x0e2c  [ 19DD0FB48B0C18892F70E2E7D61A1529, 95BA1568E8E08314508CA0E1F95555891E70399AEC312C793B46A841F56FFDCF ] aic78u2         C:\WINDOWS\system32\DRIVERS\aic78u2.sys
23:03:45.0406 0x0e2c  aic78u2 - ok
23:03:45.0421 0x0e2c  [ B7FE594A7468AA0132DEB03FB8E34326, BF0DC2B8C474DB151589BA9968264413521DDD9E7316B752B2FA40C24200FBE0 ] aic78xx         C:\WINDOWS\system32\DRIVERS\aic78xx.sys
23:03:45.0421 0x0e2c  aic78xx - ok
23:03:45.0453 0x0e2c  [ 640157FF4E71110614E7B12853B50565, 3F74D809EEFD7D931932413E1ABC7C33A46C02E32DE9D48A1826010CA7EA2E4B ] AIUSBLDR        C:\WINDOWS\system32\Drivers\AIUSBLDR.SYS
23:03:45.0453 0x0e2c  AIUSBLDR - ok
23:03:45.0484 0x0e2c  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
23:03:45.0484 0x0e2c  Alerter - ok
23:03:45.0515 0x0e2c  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             C:\WINDOWS\System32\alg.exe
23:03:45.0515 0x0e2c  ALG - ok
23:03:45.0515 0x0e2c  AliIde - ok
23:03:45.0531 0x0e2c  amsint - ok
23:03:45.0562 0x0e2c  [ D8849F77C0B66226335A59D26CB4EDC6, 4990031453204C57E36E850252A39B05D6ECDAB9E71A8136FB4900F17E59C9CA ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
23:03:45.0578 0x0e2c  AppMgmt - ok
23:03:45.0593 0x0e2c  asc - ok
23:03:45.0609 0x0e2c  asc3350p - ok
23:03:45.0609 0x0e2c  asc3550 - ok
23:03:45.0687 0x0e2c  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
23:03:45.0687 0x0e2c  aspnet_state - ok
23:03:45.0703 0x0e2c  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
23:03:45.0703 0x0e2c  AsyncMac - ok
23:03:45.0718 0x0e2c  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
23:03:45.0718 0x0e2c  atapi - ok
23:03:45.0734 0x0e2c  Atdisk - ok
23:03:45.0750 0x0e2c  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
23:03:45.0750 0x0e2c  Atmarpc - ok
23:03:45.0781 0x0e2c  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
23:03:45.0781 0x0e2c  AudioSrv - ok
23:03:45.0796 0x0e2c  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
23:03:45.0796 0x0e2c  audstub - ok
23:03:45.0843 0x0e2c  [ 4826FCF97C47B361A2E2F68CD487A19E, C9DA912C3EE76D62E8ABE9FB232951CEE577CD598995C707C2152B4F6BDA6610 ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys
23:03:45.0859 0x0e2c  b57w2k - ok
23:03:45.0875 0x0e2c  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
23:03:45.0875 0x0e2c  Beep - ok
23:03:45.0921 0x0e2c  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            C:\WINDOWS\system32\qmgr.dll
23:03:45.0937 0x0e2c  BITS - ok
23:03:45.0968 0x0e2c  [ 9976971B7092F5BFF20073AB31BA1598, 19DAC582EF384E0A528A59342DE70EDD0D5B2871B2060AB863B4BC3B6A0E3A83 ] Blfp            C:\WINDOWS\system32\DRIVERS\baspxp32.sys
23:03:45.0968 0x0e2c  Blfp - ok
23:03:45.0984 0x0e2c  [ F934D1B230F84E1D19DD00AC5A7A83ED, 32CD3A7A1F06DCCE2A4D9FA6E2AE7B3E2B57FA2D5F1C74EA79D72E5E0E352E60 ] Bridge          C:\WINDOWS\system32\DRIVERS\bridge.sys
23:03:45.0984 0x0e2c  Bridge - ok
23:03:46.0000 0x0e2c  [ F934D1B230F84E1D19DD00AC5A7A83ED, 32CD3A7A1F06DCCE2A4D9FA6E2AE7B3E2B57FA2D5F1C74EA79D72E5E0E352E60 ] BridgeMP        C:\WINDOWS\system32\DRIVERS\bridge.sys
23:03:46.0000 0x0e2c  BridgeMP - ok
23:03:46.0015 0x0e2c  [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser         C:\WINDOWS\System32\browser.dll
23:03:46.0015 0x0e2c  Browser - ok
23:03:46.0046 0x0e2c  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
23:03:46.0046 0x0e2c  cbidf2k - ok
23:03:46.0046 0x0e2c  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
23:03:46.0062 0x0e2c  CCDECODE - ok
23:03:46.0062 0x0e2c  cd20xrnt - ok
23:03:46.0078 0x0e2c  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
23:03:46.0078 0x0e2c  Cdaudio - ok
23:03:46.0093 0x0e2c  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
23:03:46.0093 0x0e2c  Cdfs - ok
23:03:46.0109 0x0e2c  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
23:03:46.0109 0x0e2c  Cdrom - ok
23:03:46.0109 0x0e2c  Changer - ok
23:03:46.0140 0x0e2c  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] cisvc           C:\WINDOWS\system32\cisvc.exe
23:03:46.0140 0x0e2c  cisvc - ok
23:03:46.0171 0x0e2c  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
23:03:46.0171 0x0e2c  ClipSrv - ok
23:03:46.0187 0x0e2c  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:03:46.0187 0x0e2c  clr_optimization_v2.0.50727_32 - ok
23:03:46.0250 0x0e2c  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:03:46.0250 0x0e2c  clr_optimization_v4.0.30319_32 - ok
23:03:46.0281 0x0e2c  [ 48B82634FF97F0CCA8C13C3F242E790E, EB0220BFE48220917414FBE55B0B6EC8CF1ED8158ACD32F29A47BB6BE55F3389 ] CMAPLDR         C:\WINDOWS\system32\Drivers\cmapldr.sys
23:03:46.0281 0x0e2c  CMAPLDR - ok
23:03:46.0296 0x0e2c  [ F18D36EA12A07D631C3123F496D2E2EA, 2C254327AB972FAF54E957736FC4414B045A0C3E17BA93A5ABC421B641024C5B ] CMAP_USBCC      C:\WINDOWS\system32\Drivers\cmapusb.sys
23:03:46.0296 0x0e2c  CMAP_USBCC - ok
23:03:46.0312 0x0e2c  CmdIde - ok
23:03:46.0312 0x0e2c  [ 6E4C9F21F0FAE8940661144F41B13203, 731202A0DD021FCF9287FEA631212603AAAC23F9E7F76B2882F913B18A971F1C ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
23:03:46.0312 0x0e2c  Compbatt - ok
23:03:46.0328 0x0e2c  COMSysApp - ok
23:03:46.0359 0x0e2c  Cpqarray - ok
23:03:46.0390 0x0e2c  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
23:03:46.0390 0x0e2c  CryptSvc - ok
23:03:46.0406 0x0e2c  dac2w2k - ok
23:03:46.0421 0x0e2c  dac960nt - ok
23:03:46.0468 0x0e2c  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
23:03:46.0484 0x0e2c  DcomLaunch - ok
23:03:46.0500 0x0e2c  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
23:03:46.0515 0x0e2c  Dhcp - ok
23:03:46.0531 0x0e2c  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
23:03:46.0531 0x0e2c  Disk - ok
23:03:46.0546 0x0e2c  dmadmin - ok
23:03:46.0609 0x0e2c  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
23:03:46.0656 0x0e2c  dmboot - ok
23:03:46.0671 0x0e2c  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
23:03:46.0687 0x0e2c  dmio - ok
23:03:46.0703 0x0e2c  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
23:03:46.0703 0x0e2c  dmload - ok
23:03:46.0718 0x0e2c  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        C:\WINDOWS\System32\dmserver.dll
23:03:46.0718 0x0e2c  dmserver - ok
23:03:46.0734 0x0e2c  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
23:03:46.0750 0x0e2c  DMusic - ok
23:03:46.0765 0x0e2c  [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
23:03:46.0765 0x0e2c  Dnscache - ok
23:03:46.0796 0x0e2c  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
23:03:46.0796 0x0e2c  Dot3svc - ok
23:03:46.0843 0x0e2c  [ 3E4B043F8BC6BE1D4820CC6C9C500306, 41F5AB9F3D65FEF3AB50562A3B91A3268B887CCF7FE5FC9D49478147700C72F4 ] Dot4            C:\WINDOWS\system32\DRIVERS\Dot4.sys
23:03:46.0843 0x0e2c  Dot4 - ok
23:03:46.0859 0x0e2c  [ 77CE63A8A34AE23D9FE4C7896D1DEBE7, FC17B00AEDC57AC436EACD2D576642098479E5CE10A42775D339B66A53460DC7 ] Dot4Print       C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys
23:03:46.0859 0x0e2c  Dot4Print - ok
23:03:46.0875 0x0e2c  [ BD05306428DA63369692477DDC0F6F5F, DE2FC729A64695AF604D2DC64DF2A0C89598EB81E6D9953732B23E509116C398 ] Dot4Scan        C:\WINDOWS\system32\DRIVERS\Dot4Scan.sys
23:03:46.0875 0x0e2c  Dot4Scan - ok
23:03:46.0890 0x0e2c  [ 40F3B93B4E5B0126F2F5C0A7A5E22660, 8AFFF28903037F5E36BB5352F2B236A217558FCC0146B23C787606C3F21243DB ] dpti2o          C:\WINDOWS\system32\DRIVERS\dpti2o.sys
23:03:46.0890 0x0e2c  dpti2o - ok
23:03:46.0890 0x0e2c  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
23:03:46.0906 0x0e2c  drmkaud - ok
23:03:46.0921 0x0e2c  [ 3FCA03CBCA11269F973B70FA483C88EF, 0995989B9EBE5CE1C5489139849FB2AD69DE9749650BBC262AD754E5CE457C59 ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys
23:03:46.0921 0x0e2c  E100B - ok
23:03:46.0953 0x0e2c  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         C:\WINDOWS\System32\eapsvc.dll
23:03:46.0953 0x0e2c  EapHost - ok
23:03:46.0968 0x0e2c  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
23:03:46.0968 0x0e2c  ERSvc - ok
23:03:46.0984 0x0e2c  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog        C:\WINDOWS\system32\services.exe
23:03:47.0000 0x0e2c  Eventlog - ok
23:03:47.0015 0x0e2c  [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem     C:\WINDOWS\system32\es.dll
23:03:47.0015 0x0e2c  EventSystem - ok
23:03:47.0046 0x0e2c  [ E225B3F7092C4390CB8FC846855F375D, E6F6B80677442C031A179F33A83D39C9D89C2ACA4B6A25A6E685379A962DBC1B ] EZUSB           C:\WINDOWS\system32\Drivers\AIUSBDRV.SYS
23:03:47.0046 0x0e2c  EZUSB - ok
23:03:47.0062 0x0e2c  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
23:03:47.0062 0x0e2c  Fastfat - ok
23:03:47.0093 0x0e2c  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
23:03:47.0093 0x0e2c  FastUserSwitchingCompatibility - ok
23:03:47.0125 0x0e2c  [ E97D6A8684466DF94FF3BC24FB787A07, 89E5A6889E3C5AB9AD3E80FFC16DD608278F3ADC282048B40B60196336A5CBEB ] Fax             C:\WINDOWS\system32\fxssvc.exe
23:03:47.0125 0x0e2c  Fax - ok
23:03:47.0140 0x0e2c  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
23:03:47.0140 0x0e2c  Fdc - ok
23:03:47.0156 0x0e2c  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
23:03:47.0156 0x0e2c  Fips - ok
23:03:47.0171 0x0e2c  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
23:03:47.0171 0x0e2c  Flpydisk - ok
23:03:47.0203 0x0e2c  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
23:03:47.0203 0x0e2c  FltMgr - ok
23:03:47.0265 0x0e2c  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
23:03:47.0281 0x0e2c  FontCache3.0.0.0 - ok
23:03:47.0296 0x0e2c  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
23:03:47.0296 0x0e2c  Fs_Rec - ok
23:03:47.0312 0x0e2c  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
23:03:47.0312 0x0e2c  Ftdisk - ok
23:03:47.0343 0x0e2c  [ 483924F92E55A5F9423201EC635E2CED, FEDAC3616709F081A0FA48E2BF521CBCC35E11E523EBADDEACA7308AD14338B3 ] gfibto          C:\WINDOWS\system32\drivers\gfibto.sys
23:03:47.0343 0x0e2c  gfibto - ok
23:03:47.0359 0x0e2c  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
23:03:47.0359 0x0e2c  Gpc - ok
23:03:47.0437 0x0e2c  [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
23:03:47.0437 0x0e2c  gupdate - ok
23:03:47.0453 0x0e2c  gupdate1c99ac5a50b8440 - ok
23:03:47.0453 0x0e2c  [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
23:03:47.0468 0x0e2c  gupdatem - ok
23:03:47.0500 0x0e2c  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
23:03:47.0500 0x0e2c  helpsvc - ok
23:03:47.0515 0x0e2c  [ 748031FF4FE45CCC47546294905FEAB8, 451E5988529997C60CC4A43B71D35BDA8596D799E86A44218B32CBEC8F8BBF27 ] HidBatt         C:\WINDOWS\system32\DRIVERS\HidBatt.sys
23:03:47.0515 0x0e2c  HidBatt - ok
23:03:47.0531 0x0e2c  HidServ - ok
23:03:47.0546 0x0e2c  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
23:03:47.0546 0x0e2c  HidUsb - ok
23:03:47.0562 0x0e2c  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
23:03:47.0562 0x0e2c  hkmsvc - ok
23:03:47.0578 0x0e2c  hpn - ok
23:03:47.0640 0x0e2c  [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05, 7B3F117C1D606DDA7623BEC0BFBC362C33A12213E899F049AC56A55826984134 ] hpqcxs08        C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
23:03:47.0640 0x0e2c  hpqcxs08 - ok
23:03:47.0671 0x0e2c  [ F3F72A2A86C22610BCA5439FA789DD52, DA5A8F09DCC512AA1558863AD4FAC12F72DD83CA8FB4D8D9831E4AFBB6B3C616 ] hpqddsvc        C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
23:03:47.0671 0x0e2c  hpqddsvc - ok
23:03:47.0718 0x0e2c  [ 568E44F6DCFA173F3670172B69379891, D619B908770E308BE3978DD619CA0ADC229685971FC99379AA5620BE5F7C5F1C ] HPSLPSVC        C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
23:03:47.0734 0x0e2c  HPSLPSVC - ok
23:03:47.0750 0x0e2c  [ D03D10F7DED688FECF50F8FBF1EA9B8A, C19A733571BA831E24EE45EDB730FFFDBA22638F138A32A794BEAB8D8B71D8DD ] HPZid412        C:\WINDOWS\system32\DRIVERS\HPZid412.sys
23:03:47.0750 0x0e2c  HPZid412 - ok
23:03:47.0781 0x0e2c  [ 89F41658929393487B6B7D13C8528CE3, 5D06A11225A83F3F33417148BE53654080C88BFA876FEB486A7E43410AC99F23 ] HPZipr12        C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
23:03:47.0796 0x0e2c  HPZipr12 - ok
23:03:47.0812 0x0e2c  [ ABCB05CCDBF03000354B9553820E39F8, 6361B5A57CDE23AC5E987ACECF3BEE7AD51134C6E5BF4F833E512C9BC4B86877 ] HPZius12        C:\WINDOWS\system32\DRIVERS\HPZius12.sys
23:03:47.0828 0x0e2c  HPZius12 - ok
23:03:47.0875 0x0e2c  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
23:03:47.0890 0x0e2c  HTTP - ok
23:03:47.0921 0x0e2c  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
23:03:47.0921 0x0e2c  HTTPFilter - ok
23:03:47.0937 0x0e2c  i2omgmt - ok
23:03:47.0937 0x0e2c  i2omp - ok
23:03:47.0968 0x0e2c  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
23:03:47.0968 0x0e2c  i8042prt - ok
23:03:48.0000 0x0e2c  [ 06B7EF73BA5F302EECC294CDF7E19702, 5EF396D70D69F8E86A0FC7311E634A8360A99DDEC39054DC3018624A1497836E ] i81x            C:\WINDOWS\system32\DRIVERS\i81xnt5.sys
23:03:48.0000 0x0e2c  i81x - ok
23:03:48.0015 0x0e2c  [ 7B5B44EFE5EB9DADFB8EE29700885D23, AC01EF344206A1303E03D11420CC31228C6480CF8F2A1733BE18F2E6D44D1807 ] iAimFP0         C:\WINDOWS\system32\DRIVERS\wADV01nt.sys
23:03:48.0015 0x0e2c  iAimFP0 - ok
23:03:48.0031 0x0e2c  [ EB1F6BAB6C22EDE0BA551B527475F7E9, 5680C2B124B2222371F8F1FF934723CE06EE37072C42066547173CB3050969C4 ] iAimFP1         C:\WINDOWS\system32\DRIVERS\wADV02NT.sys
23:03:48.0031 0x0e2c  iAimFP1 - ok
23:03:48.0046 0x0e2c  [ 03CE989D846C1AA81145CB22FCB86D06, 7A63EF1016B1F70BDD5EBCEB415D59CA8D40DE256DAD2511CFBD88C82C37F0D6 ] iAimFP2         C:\WINDOWS\system32\DRIVERS\wADV05NT.sys
23:03:48.0046 0x0e2c  iAimFP2 - ok
23:03:48.0062 0x0e2c  [ 525849B4469DE021D5D61B4DB9BE3A9D, 38F57D4F6A19F909764641384054216B136BEEC4A8F703A95A32583B1BA7D862 ] iAimFP3         C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys
23:03:48.0062 0x0e2c  iAimFP3 - ok
23:03:48.0078 0x0e2c  [ 589C2BCDB5BD602BF7B63D210407EF8C, 97AAC0F6AA4DACA904CAE02341105AC4BCB5B9D7274EF54F5C1E19BD7EC0C066 ] iAimFP4         C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys
23:03:48.0078 0x0e2c  iAimFP4 - ok
23:03:48.0093 0x0e2c  [ 0308AEF61941E4AF478FA1A0F83812F5, 56B30CAC8C2B35704BE4CF13C1C1070D47D98F9AFBFDA5CB43C474B0324BB4E3 ] iAimFP5         C:\WINDOWS\system32\DRIVERS\wADV07nt.sys
23:03:48.0093 0x0e2c  iAimFP5 - ok
23:03:48.0109 0x0e2c  [ 714038A8AA5DE08E12062202CD7EAEB5, 51F732AB16D8BD05672F829D5B1F3832013280A734A71C205559C24D178C8690 ] iAimFP6         C:\WINDOWS\system32\DRIVERS\wADV08nt.sys
23:03:48.0109 0x0e2c  iAimFP6 - ok
23:03:48.0125 0x0e2c  [ 7BB3AA595E4507A788DE1CDC63F4C8C4, 299289E81BD318D764E6941E87E2FBF715F0B8B9C5F6FE64176ADE41F3853E6E ] iAimFP7         C:\WINDOWS\system32\DRIVERS\wADV09nt.sys
23:03:48.0125 0x0e2c  iAimFP7 - ok
23:03:48.0140 0x0e2c  [ D83BDD5C059667A2F647A6BE5703A4D2, 6640B923BDF345294B4D4AAE24787CA2FA5A8F31603934747292805323E46BDD ] iAimTV0         C:\WINDOWS\system32\DRIVERS\wATV01nt.sys
23:03:48.0140 0x0e2c  iAimTV0 - ok
23:03:48.0156 0x0e2c  [ ED968D23354DAA0D7C621580C012A1F6, CE6A58D1D6DD1460625C88A491CB43136416633C4F51EC3CF5209E5FAAA03098 ] iAimTV1         C:\WINDOWS\system32\DRIVERS\wATV02NT.sys
23:03:48.0156 0x0e2c  iAimTV1 - ok
23:03:48.0171 0x0e2c  [ D738273F218A224C1DDAC04203F27A84, 94F1D11949A848E7699A2FDFEB8F9D9ABCE02DC86629C3A914DEF350EDDE426B ] iAimTV3         C:\WINDOWS\system32\DRIVERS\wATV04nt.sys
23:03:48.0171 0x0e2c  iAimTV3 - ok
23:03:48.0187 0x0e2c  [ 0052D118995CBAB152DAABE6106D1442, DF656EDFE5A59550FE2C41567CCB79484EE59DCE6703156DFDC0466F52A9B398 ] iAimTV4         C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys
23:03:48.0187 0x0e2c  iAimTV4 - ok
23:03:48.0203 0x0e2c  [ 791CC45DE6E50445BE72E8AD6401FF45, D1466D6E944C508B1AB817DFC2C81584F635A0EBF9D3E582930536BA99358E6E ] iAimTV5         C:\WINDOWS\system32\DRIVERS\wATV10nt.sys
23:03:48.0203 0x0e2c  iAimTV5 - ok
23:03:48.0218 0x0e2c  [ 352FA0E98BC461CE1CE5D41F64DB558D, B08EAED6C93AB6B872153933447051425DA77A355CCB19434CAEDF3920AD8C23 ] iAimTV6         C:\WINDOWS\system32\DRIVERS\wATV06nt.sys
23:03:48.0218 0x0e2c  iAimTV6 - ok
23:03:48.0296 0x0e2c  [ 9A883C3C4D91292C0D09DE7C728E781C, 34DD9E781C42FF55BF83F62DFE7B0F4FE3CAEF19B517245BA004C2C641493A98 ] ialm            C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
23:03:48.0312 0x0e2c  ialm - ok
23:03:48.0375 0x0e2c  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
23:03:48.0375 0x0e2c  IDriverT - ok
23:03:48.0453 0x0e2c  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:03:48.0468 0x0e2c  idsvc - ok
23:03:48.0500 0x0e2c  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
23:03:48.0500 0x0e2c  Imapi - ok
23:03:48.0531 0x0e2c  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    C:\WINDOWS\system32\imapi.exe
23:03:48.0531 0x0e2c  ImapiService - ok
23:03:48.0546 0x0e2c  ini910u - ok
23:03:48.0578 0x0e2c  [ B5466A9250342A7AA0CD1FBA13420678, 87E735C4E8924A883AB692D387A83BCBFAE6E165688336AE7AB488F7CA8D339E ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
23:03:48.0578 0x0e2c  IntelIde - ok
23:03:48.0609 0x0e2c  [ 8C953733D8F36EB2133F5BB58808B66B, 555868F246D73652E998B0B1296476E42FCEDED30D646CC000F31ECE4EBC25E6 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
23:03:48.0609 0x0e2c  intelppm - ok
23:03:48.0625 0x0e2c  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
23:03:48.0625 0x0e2c  Ip6Fw - ok
23:03:48.0640 0x0e2c  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
23:03:48.0640 0x0e2c  IpFilterDriver - ok
23:03:48.0640 0x0e2c  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
23:03:48.0640 0x0e2c  IpInIp - ok
23:03:48.0671 0x0e2c  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
23:03:48.0687 0x0e2c  IpNat - ok
23:03:48.0687 0x0e2c  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
23:03:48.0687 0x0e2c  IPSec - ok
23:03:48.0718 0x0e2c  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
23:03:48.0718 0x0e2c  IRENUM - ok
23:03:48.0734 0x0e2c  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
23:03:48.0734 0x0e2c  isapnp - ok
23:03:48.0812 0x0e2c  [ 80A79264302910C7C24BA7E44267EFEF, 6080C233478350C8E07515D20D2D60C3758C4A65432B04E8C8B816248621A3EF ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
23:03:48.0812 0x0e2c  JavaQuickStarterService - ok
23:03:48.0843 0x0e2c  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
23:03:48.0843 0x0e2c  Kbdclass - ok
23:03:48.0859 0x0e2c  [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
23:03:48.0859 0x0e2c  kbdhid - ok
23:03:48.0875 0x0e2c  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
23:03:48.0890 0x0e2c  kmixer - ok
23:03:48.0906 0x0e2c  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
23:03:48.0921 0x0e2c  KSecDD - ok
23:03:48.0953 0x0e2c  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
23:03:48.0968 0x0e2c  lanmanserver - ok
23:03:49.0015 0x0e2c  [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
23:03:49.0015 0x0e2c  lanmanworkstation - ok
23:03:49.0015 0x0e2c  lbrtfdc - ok
23:03:49.0062 0x0e2c  [ 590010293B7402FF1897AA2890275D50, 5BF66B83D4469C58A66DA6F35EB89ECC7E856A7F44824FCF9DADFDEF29FEFFB6 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
23:03:49.0062 0x0e2c  LightScribeService - ok
23:03:49.0093 0x0e2c  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
23:03:49.0093 0x0e2c  LmHosts - ok
23:03:49.0109 0x0e2c  [ 4470E3C1E0C3378E4CAB137893C12C3A, CA8E66356F0E671D5454E561E7EAD74DE25DCF53BE452369F96ECACFA8709489 ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
23:03:49.0109 0x0e2c  MBAMProtector - ok
23:03:49.0140 0x0e2c  [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler   C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
23:03:49.0156 0x0e2c  MBAMScheduler - ok
23:03:49.0187 0x0e2c  [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService     C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
23:03:49.0218 0x0e2c  MBAMService - ok
23:03:49.0265 0x0e2c  [ 11F714F85530A2BD134074DC30E99FCA, BDB5FD3B2DF4ADD19B31965B3E789768B59E872B3EA85912B1FFB32B2AF9D5D8 ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
23:03:49.0281 0x0e2c  MDM - ok
23:03:49.0312 0x0e2c  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
23:03:49.0312 0x0e2c  Messenger - ok
23:03:49.0328 0x0e2c  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
23:03:49.0328 0x0e2c  mnmdd - ok
23:03:49.0343 0x0e2c  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
23:03:49.0359 0x0e2c  mnmsrvc - ok
23:03:49.0375 0x0e2c  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
23:03:49.0375 0x0e2c  Modem - ok
23:03:49.0406 0x0e2c  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
23:03:49.0406 0x0e2c  Mouclass - ok
23:03:49.0421 0x0e2c  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
23:03:49.0421 0x0e2c  mouhid - ok
23:03:49.0437 0x0e2c  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
23:03:49.0437 0x0e2c  MountMgr - ok
23:03:49.0453 0x0e2c  [ E77DC03DD3C8E5A388BF9EED2A28F3D1, ED0DAA975D1EC35CE036F02596218E15CC6A054167628D12A0A5AD91B841F422 ] MpFilter        C:\WINDOWS\system32\DRIVERS\MpFilter.sys
23:03:49.0468 0x0e2c  MpFilter - ok
23:03:49.0468 0x0e2c  mraid35x - ok
23:03:49.0484 0x0e2c  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
23:03:49.0500 0x0e2c  MRxDAV - ok
23:03:49.0531 0x0e2c  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
23:03:49.0531 0x0e2c  MRxSmb - ok
23:03:49.0562 0x0e2c  [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
23:03:49.0562 0x0e2c  MSDTC - ok
23:03:49.0578 0x0e2c  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
23:03:49.0578 0x0e2c  Msfs - ok
23:03:49.0593 0x0e2c  MSIServer - ok
23:03:49.0609 0x0e2c  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
23:03:49.0609 0x0e2c  MSKSSRV - ok
23:03:49.0640 0x0e2c  [ B0F49DA36F30922F5DDC3B623B778FCE, EE025AEFA4A2095AFEABFB3A49639DA77D78068A3F5EEDA6C15D34853AFD5609 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
23:03:49.0640 0x0e2c  MsMpSvc - ok
23:03:49.0656 0x0e2c  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
23:03:49.0656 0x0e2c  MSPCLOCK - ok
23:03:49.0671 0x0e2c  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
23:03:49.0671 0x0e2c  MSPQM - ok
23:03:49.0703 0x0e2c  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
23:03:49.0703 0x0e2c  mssmbios - ok
23:03:49.0718 0x0e2c  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
23:03:49.0718 0x0e2c  MSTEE - ok
23:03:49.0734 0x0e2c  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
23:03:49.0734 0x0e2c  Mup - ok
23:03:49.0750 0x0e2c  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
23:03:49.0750 0x0e2c  NABTSFEC - ok
23:03:49.0796 0x0e2c  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        C:\WINDOWS\System32\qagentrt.dll
23:03:49.0796 0x0e2c  napagent - ok
23:03:49.0812 0x0e2c  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
23:03:49.0812 0x0e2c  NDIS - ok
23:03:49.0828 0x0e2c  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
23:03:49.0828 0x0e2c  NdisIP - ok
23:03:49.0859 0x0e2c  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
23:03:49.0859 0x0e2c  NdisTapi - ok
23:03:49.0875 0x0e2c  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
23:03:49.0875 0x0e2c  Ndisuio - ok
23:03:49.0890 0x0e2c  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
23:03:49.0890 0x0e2c  NdisWan - ok
23:03:49.0906 0x0e2c  [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
23:03:49.0906 0x0e2c  NDProxy - ok
23:03:49.0921 0x0e2c  [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
23:03:49.0937 0x0e2c  Net Driver HPZ12 - ok
23:03:49.0937 0x0e2c  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
23:03:49.0937 0x0e2c  NetBIOS - ok
23:03:49.0968 0x0e2c  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
23:03:49.0968 0x0e2c  NetBT - ok
23:03:49.0984 0x0e2c  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          C:\WINDOWS\system32\netdde.exe
23:03:49.0984 0x0e2c  NetDDE - ok
23:03:50.0000 0x0e2c  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
23:03:50.0000 0x0e2c  NetDDEdsdm - ok
23:03:50.0031 0x0e2c  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        C:\WINDOWS\system32\lsass.exe
23:03:50.0031 0x0e2c  Netlogon - ok
23:03:50.0062 0x0e2c  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          C:\WINDOWS\System32\netman.dll
23:03:50.0078 0x0e2c  Netman - ok
23:03:50.0109 0x0e2c  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:03:50.0109 0x0e2c  NetTcpPortSharing - ok
23:03:50.0140 0x0e2c  [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla             C:\WINDOWS\System32\mswsock.dll
23:03:50.0140 0x0e2c  Nla - ok
23:03:50.0156 0x0e2c  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
23:03:50.0156 0x0e2c  Npfs - ok
23:03:50.0187 0x0e2c  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
23:03:50.0203 0x0e2c  Ntfs - ok
23:03:50.0218 0x0e2c  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
23:03:50.0218 0x0e2c  NtLmSsp - ok
23:03:50.0250 0x0e2c  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
23:03:50.0265 0x0e2c  NtmsSvc - ok
23:03:50.0281 0x0e2c  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
23:03:50.0281 0x0e2c  Null - ok
23:03:50.0406 0x0e2c  [ 2B298519EDBFCF451D43E0F1E8F1006D, 67F3F2001F4C8DABD253D60AB3222793635532DC51AD977954286F8A246F5592 ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
23:03:50.0484 0x0e2c  nv - ok
23:03:50.0500 0x0e2c  [ FDE61779FC016B0E2CF2248397FE2B0F, 48B6F12F2F872549342E4161DE00FFA6D1A10DCD9018E293238865120C0DCD48 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
23:03:50.0500 0x0e2c  NVSvc - ok
23:03:50.0531 0x0e2c  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
23:03:50.0531 0x0e2c  NwlnkFlt - ok
23:03:50.0546 0x0e2c  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
23:03:50.0546 0x0e2c  NwlnkFwd - ok
23:03:50.0562 0x0e2c  [ C90018BAFDC7098619A4A95B046B30F3, 1826E46F237AD65BA189B83803A46A6C2B29089C1BA146106ADD9F2B04D4A89D ] P3              C:\WINDOWS\system32\DRIVERS\p3.sys
23:03:50.0562 0x0e2c  P3 - ok
23:03:50.0578 0x0e2c  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
23:03:50.0578 0x0e2c  Parport - ok
23:03:50.0593 0x0e2c  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
23:03:50.0593 0x0e2c  PartMgr - ok
23:03:50.0609 0x0e2c  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
23:03:50.0609 0x0e2c  ParVdm - ok
23:03:50.0625 0x0e2c  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
23:03:50.0625 0x0e2c  PCI - ok
23:03:50.0640 0x0e2c  PCIDump - ok
23:03:50.0656 0x0e2c  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
23:03:50.0656 0x0e2c  PCIIde - ok
23:03:50.0671 0x0e2c  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
23:03:50.0671 0x0e2c  Pcmcia - ok
23:03:50.0687 0x0e2c  PDCOMP - ok
23:03:50.0687 0x0e2c  PDFRAME - ok
23:03:50.0703 0x0e2c  PDRELI - ok
23:03:50.0703 0x0e2c  PDRFRAME - ok
23:03:50.0718 0x0e2c  perc2 - ok
23:03:50.0718 0x0e2c  perc2hib - ok
23:03:50.0750 0x0e2c  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay        C:\WINDOWS\system32\services.exe
23:03:50.0765 0x0e2c  PlugPlay - ok
23:03:50.0781 0x0e2c  [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
23:03:50.0781 0x0e2c  Pml Driver HPZ12 - ok
23:03:50.0796 0x0e2c  [ 3B6973D60BDE757C53BB76842D31318E, F4D0F0075DA119F4B2719F7F4F5D9863DB64440A559DC5279992C3D6E507185F ] Point32         C:\WINDOWS\system32\DRIVERS\point32.sys
23:03:50.0796 0x0e2c  Point32 - ok
23:03:50.0812 0x0e2c  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
23:03:50.0812 0x0e2c  PolicyAgent - ok
23:03:50.0812 0x0e2c  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
23:03:50.0828 0x0e2c  PptpMiniport - ok
23:03:50.0828 0x0e2c  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
23:03:50.0828 0x0e2c  ProtectedStorage - ok
23:03:50.0859 0x0e2c  [ 390C204CED3785609AB24E9C52054A84, D997A9EAAE4A7FED9C2FEBD1AA7D1171431B9C9D56F8BFB587DCAE26203FF4D2 ] Ps2             C:\WINDOWS\system32\DRIVERS\PS2.sys
23:03:50.0859 0x0e2c  Ps2 - ok
23:03:50.0875 0x0e2c  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
23:03:50.0875 0x0e2c  PSched - ok
23:03:50.0890 0x0e2c  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
23:03:50.0890 0x0e2c  Ptilink - ok
23:03:50.0906 0x0e2c  [ DBF1DD3024A5E85D7458DAF3D54B85ED, 0F6308A1A74D09D46005D19F10A9E6636341ECCD7A3E6A48F5F3157003C74791 ] qcmdmxp         C:\WINDOWS\system32\DRIVERS\qcmdmxp.sys
23:03:50.0921 0x0e2c  qcmdmxp - ok
23:03:50.0937 0x0e2c  [ DBF1DD3024A5E85D7458DAF3D54B85ED, 0F6308A1A74D09D46005D19F10A9E6636341ECCD7A3E6A48F5F3157003C74791 ] qcserxp         C:\WINDOWS\system32\DRIVERS\qcserxp.sys
23:03:50.0953 0x0e2c  qcserxp - ok
23:03:50.0953 0x0e2c  ql1080 - ok
23:03:50.0968 0x0e2c  Ql10wnt - ok
23:03:50.0968 0x0e2c  ql12160 - ok
23:03:50.0984 0x0e2c  ql1240 - ok
23:03:51.0000 0x0e2c  ql1280 - ok
23:03:51.0125 0x0e2c  [ AB51E1F08C8E789D6C9E8B94D15BE9A9, 35386087B0D57D181FE39E4AFBFFE4DB5B827DACA6D87F1F5563B26547993E24 ] RapportCerberus_59849 C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_59849.sys
23:03:51.0125 0x0e2c  RapportCerberus_59849 - ok
23:03:51.0187 0x0e2c  [ C6BBFAE263E6D8839D2590214C112416, 6B3DC0D315CAABF79D7143922E6FAB743733E2F9597607DD0EE25D79961B7C1B ] RapportEI       C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys
23:03:51.0187 0x0e2c  RapportEI - ok
23:03:51.0234 0x0e2c  [ 28B42054CAB43FAC3E8A0094ECF8CECF, F62DDFBE12BDE87BDD7DAE04E4F771CC32C6C79DE9A1BF109FFBB970BB5A97F9 ] RapportKELL     C:\WINDOWS\system32\Drivers\RapportKELL.sys
23:03:51.0234 0x0e2c  RapportKELL - ok
23:03:51.0312 0x0e2c  [ D11162F92258E1F09CFB4054941F2E24, B8522D8BCAEFE5CD9BB36BF74AE0B9ADE065D6472AD2CDB001101D211D332367 ] RapportMgmtService C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
23:03:51.0343 0x0e2c  RapportMgmtService - ok
23:03:51.0375 0x0e2c  [ 6DA718CC1936E804EE909C615BE5E4FD, 7BA51053DEDC483A49B6B1773188D503E0A7501105B72C55816FA22744A704A2 ] RapportPG       C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys
23:03:51.0390 0x0e2c  RapportPG - ok
23:03:51.0406 0x0e2c  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
23:03:51.0406 0x0e2c  RasAcd - ok
23:03:51.0437 0x0e2c  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         C:\WINDOWS\System32\rasauto.dll
23:03:51.0437 0x0e2c  RasAuto - ok
23:03:51.0468 0x0e2c  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
23:03:51.0468 0x0e2c  Rasl2tp - ok
23:03:51.0500 0x0e2c  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          C:\WINDOWS\System32\rasmans.dll
23:03:51.0515 0x0e2c  RasMan - ok
23:03:51.0531 0x0e2c  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
23:03:51.0531 0x0e2c  RasPppoe - ok
23:03:51.0546 0x0e2c  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
23:03:51.0546 0x0e2c  Raspti - ok
23:03:51.0578 0x0e2c  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
23:03:51.0578 0x0e2c  Rdbss - ok
23:03:51.0593 0x0e2c  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
23:03:51.0593 0x0e2c  RDPCDD - ok
23:03:51.0625 0x0e2c  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
23:03:51.0640 0x0e2c  rdpdr - ok
23:03:51.0671 0x0e2c  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
23:03:51.0671 0x0e2c  RDPWD - ok
23:03:51.0718 0x0e2c  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
23:03:51.0718 0x0e2c  RDSessMgr - ok
23:03:51.0781 0x0e2c  [ 96EFEC24346A8EB1157E80523079ADDC, 7F8FC284029856C754E400B6C954369FFE27763C81D8F4AF4E58BFDD44CBC24A ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
23:03:51.0781 0x0e2c  RealNetworks Downloader Resolver Service - ok
23:03:51.0796 0x0e2c  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
23:03:51.0796 0x0e2c  redbook - ok
23:03:51.0828 0x0e2c  [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
23:03:51.0828 0x0e2c  RemoteAccess - ok
23:03:51.0859 0x0e2c  [ 5B19B557B0C188210A56A6B699D90B8F, 0FA880B81AE615206FD1738B83428AAA491D54B24168339DE6E87FDE8C6C14B0 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
23:03:51.0859 0x0e2c  RemoteRegistry - ok
23:03:51.0890 0x0e2c  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      C:\WINDOWS\system32\locator.exe
23:03:51.0890 0x0e2c  RpcLocator - ok
23:03:51.0937 0x0e2c  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs           C:\WINDOWS\system32\rpcss.dll
23:03:51.0953 0x0e2c  RpcSs - ok
23:03:52.0000 0x0e2c  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe
23:03:52.0000 0x0e2c  RSVP - ok
23:03:52.0062 0x0e2c  [ 2890916EB8DED61CC2D8D057A9778E03, 02C5B659F0A1E8B875DBB6A4498A0A95320C446746F763C0656116F659C86FB0 ] RTL8187B        C:\WINDOWS\system32\DRIVERS\RTL8187B.sys
23:03:52.0078 0x0e2c  RTL8187B - ok
23:03:52.0109 0x0e2c  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           C:\WINDOWS\system32\lsass.exe
23:03:52.0109 0x0e2c  SamSs - ok
23:03:52.0125 0x0e2c  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
23:03:52.0125 0x0e2c  SCardSvr - ok
23:03:52.0171 0x0e2c  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
23:03:52.0171 0x0e2c  Schedule - ok
23:03:52.0203 0x0e2c  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
23:03:52.0203 0x0e2c  Secdrv - ok
23:03:52.0218 0x0e2c  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        C:\WINDOWS\System32\seclogon.dll
23:03:52.0218 0x0e2c  seclogon - ok
23:03:52.0234 0x0e2c  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            C:\WINDOWS\system32\sens.dll
23:03:52.0234 0x0e2c  SENS - ok
23:03:52.0250 0x0e2c  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
23:03:52.0265 0x0e2c  serenum - ok
23:03:52.0265 0x0e2c  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
23:03:52.0265 0x0e2c  Serial - ok
23:03:52.0296 0x0e2c  [ 1F16931C722C69E4A7866244796C66A0, 11C35DF2DAEBE949873B3B5534B9AB0CF293127870AF483ECE40DD8D719FC536 ] sermouse        C:\WINDOWS\system32\DRIVERS\sermouse.sys
23:03:52.0296 0x0e2c  sermouse - ok
23:03:52.0359 0x0e2c  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\DRIVERS\sfloppy.sys
23:03:52.0359 0x0e2c  Sfloppy - ok
23:03:52.0406 0x0e2c  [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
23:03:52.0421 0x0e2c  SharedAccess - ok
23:03:52.0437 0x0e2c  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
23:03:52.0453 0x0e2c  ShellHWDetection - ok
23:03:52.0484 0x0e2c  Simbad - ok
23:03:52.0500 0x0e2c  [ 32933B07FC16D9F778BEE12545FA1B1A, 73CCDD4EBA90138820624FFEFC629EFA3B15FF395D9F31CC4C4678713ECB1F23 ] SimpTcp         C:\WINDOWS\system32\tcpsvcs.exe
23:03:52.0515 0x0e2c  SimpTcp - ok
23:03:52.0531 0x0e2c  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
23:03:52.0531 0x0e2c  SLIP - ok
23:03:52.0531 0x0e2c  SMNDIS5 - ok
23:03:52.0609 0x0e2c  [ 86D17B6760DD2B09E932FF101714E0DC, 782F1777F0D992286CF31521950005D31865AA2518D5DD4E0F2CDDF23FE80EA3 ] smwdm           C:\WINDOWS\system32\drivers\smwdm.sys
23:03:52.0625 0x0e2c  smwdm - ok
23:03:52.0671 0x0e2c  [ A2E9CAEF31863CAB5486267A65FE322C, 524F6EBF89EBF40B1E984DBBF0A27387465F61E7148FDBD7F2F88F7A07AA44CA ] snpstd          C:\WINDOWS\system32\DRIVERS\snpstd.sys
23:03:52.0687 0x0e2c  snpstd - ok
23:03:52.0703 0x0e2c  [ 3978F082274F723AD5A0A8058C2417DD, B3C07E4686414BA64491C70BD6185ABE41AC2EFBC1EC9FF54A8C3760054FA0BF ] SoundMAX Agent Service (default) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
23:03:52.0703 0x0e2c  SoundMAX Agent Service (default) - ok
23:03:52.0718 0x0e2c  Sparrow - ok
23:03:52.0734 0x0e2c  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
23:03:52.0734 0x0e2c  splitter - ok
23:03:52.0781 0x0e2c  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
23:03:52.0781 0x0e2c  Spooler - ok
23:03:52.0812 0x0e2c  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
23:03:52.0812 0x0e2c  sr - ok
23:03:52.0843 0x0e2c  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       C:\WINDOWS\system32\srsvc.dll
23:03:52.0859 0x0e2c  srservice - ok
23:03:52.0906 0x0e2c  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
23:03:52.0906 0x0e2c  Srv - ok
23:03:52.0937 0x0e2c  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
23:03:52.0953 0x0e2c  SSDPSRV - ok
23:03:52.0968 0x0e2c  [ A9573045BAA16EAB9B1085205B82F1ED, 6A4D68BCD4968C17451EB1C4AB420FFA844D089845520D222BC4A2BD14583C56 ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
23:03:52.0968 0x0e2c  StillCam - ok
23:03:53.0000 0x0e2c  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
23:03:53.0015 0x0e2c  stisvc - ok
23:03:53.0031 0x0e2c  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
23:03:53.0031 0x0e2c  streamip - ok
23:03:53.0046 0x0e2c  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
23:03:53.0046 0x0e2c  swenum - ok
23:03:53.0062 0x0e2c  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
23:03:53.0062 0x0e2c  swmidi - ok
23:03:53.0062 0x0e2c  SwPrv - ok
23:03:53.0093 0x0e2c  [ 1FF3217614018630D0A6758630FC698C, 78A3075BBFF5D7ADEAC1527E65ACA8527BFC509DF124D44410BB46C4D96C96BB ] symc810         C:\WINDOWS\system32\DRIVERS\symc810.sys
23:03:53.0093 0x0e2c  symc810 - ok
23:03:53.0125 0x0e2c  [ 070E001D95CF725186EF8B20335F933C, B98B29FB01741AF3B4BB02C76A4D117EA04FE4CC4F8CDB491F9216931704A6D8 ] symc8xx         C:\WINDOWS\system32\DRIVERS\symc8xx.sys
23:03:53.0125 0x0e2c  symc8xx - ok
23:03:53.0140 0x0e2c  [ F2B7E8416F508368AC6730E2AE1C614F, 0A3FC9A2F30C56C0861EE96D0D270F221CCAE5A267DB768F68D2C56E1F3761BA ] Symmpi          C:\WINDOWS\system32\DRIVERS\symmpi.sys
23:03:53.0140 0x0e2c  Symmpi - ok
23:03:53.0171 0x0e2c  [ 80AC1C4ABBE2DF3B738BF15517A51F2C, CCF82D09C63F4FA98BCBEF3A1DC8C02D4269B78256D0B6213E815D9BBE174432 ] sym_hi          C:\WINDOWS\system32\DRIVERS\sym_hi.sys
23:03:53.0171 0x0e2c  sym_hi - ok
23:03:53.0187 0x0e2c  [ BF4FAB949A382A8E105F46EBB4937058, FE7C114A19D50E37463CDD3605C26105A779EEA79CB92BF98267C7BE809D853B ] sym_u3          C:\WINDOWS\system32\DRIVERS\sym_u3.sys
23:03:53.0187 0x0e2c  sym_u3 - ok
23:03:53.0203 0x0e2c  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
23:03:53.0218 0x0e2c  sysaudio - ok
23:03:53.0250 0x0e2c  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
23:03:53.0250 0x0e2c  SysmonLog - ok
23:03:53.0281 0x0e2c  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
23:03:53.0296 0x0e2c  TapiSrv - ok
23:03:53.0343 0x0e2c  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
23:03:53.0359 0x0e2c  Tcpip - ok
23:03:53.0375 0x0e2c  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
23:03:53.0390 0x0e2c  TDPIPE - ok
23:03:53.0390 0x0e2c  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
23:03:53.0390 0x0e2c  TDTCP - ok
23:03:53.0406 0x0e2c  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
23:03:53.0421 0x0e2c  TermDD - ok
23:03:53.0437 0x0e2c  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     C:\WINDOWS\System32\termsrv.dll
23:03:53.0453 0x0e2c  TermService - ok
23:03:53.0468 0x0e2c  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes          C:\WINDOWS\System32\shsvcs.dll
23:03:53.0484 0x0e2c  Themes - ok
23:03:53.0515 0x0e2c  [ DB7205804759FF62C34E3EFD8A4CC76A, 13A4248F528CE98ACA66898E56822E4FC49B11F491FF1F61A687BA601BF0A802 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
23:03:53.0515 0x0e2c  TlntSvr - ok
23:03:53.0546 0x0e2c  TosIde - ok
23:03:53.0578 0x0e2c  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
23:03:53.0578 0x0e2c  TrkWks - ok
23:03:53.0609 0x0e2c  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
23:03:53.0609 0x0e2c  Udfs - ok
23:03:53.0625 0x0e2c  ultra - ok
23:03:53.0656 0x0e2c  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
23:03:53.0656 0x0e2c  Update - ok
23:03:53.0687 0x0e2c  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        C:\WINDOWS\System32\upnphost.dll
23:03:53.0703 0x0e2c  upnphost - ok
23:03:53.0718 0x0e2c  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             C:\WINDOWS\System32\ups.exe
23:03:53.0718 0x0e2c  UPS - ok
23:03:53.0765 0x0e2c  [ AF9388E736AF0C325067F05EDC350010, 7B0250F2DE3E7F86BDD9C726DB80A89305F0F592D423548AE6A42E39124E647E ] usbbus          C:\WINDOWS\system32\DRIVERS\lgusbbus.sys
23:03:53.0765 0x0e2c  usbbus - ok
23:03:53.0796 0x0e2c  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
23:03:53.0796 0x0e2c  usbccgp - ok
23:03:53.0828 0x0e2c  [ AE30EA96E60E823C7B525DA356283AE8, 76AE31EB21ECEAB8162A8E55DB8A41A1599D257753890123E2E4294152682A43 ] UsbDiag         C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys
23:03:53.0843 0x0e2c  UsbDiag - ok
23:03:53.0859 0x0e2c  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
23:03:53.0859 0x0e2c  usbehci - ok
23:03:53.0890 0x0e2c  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
23:03:53.0890 0x0e2c  usbhub - ok
23:03:53.0921 0x0e2c  [ 46AC66DF3D6EFE81F69BEA823A53AAB5, 41EA067F1BA5F5041CC5D664867DA439115B1B244DC822981BACE4AD9CBBF3C8 ] USBModem        C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys
23:03:53.0921 0x0e2c  USBModem - ok
23:03:53.0937 0x0e2c  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
23:03:53.0937 0x0e2c  usbprint - ok
23:03:53.0953 0x0e2c  [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
23:03:53.0968 0x0e2c  usbscan - ok
23:03:53.0984 0x0e2c  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
23:03:53.0984 0x0e2c  USBSTOR - ok
23:03:54.0015 0x0e2c  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
23:03:54.0015 0x0e2c  usbuhci - ok
23:03:54.0031 0x0e2c  [ B4D7B7AD8A9F7C063C5CC3E2C1A0724E, CFA47A71403419CA7C94333B4F7766DFC97C5DCDBC3AD1B106044B93C979A5C5 ] usb_rndisx      C:\WINDOWS\system32\DRIVERS\usb8023x.sys
23:03:54.0031 0x0e2c  usb_rndisx - ok
23:03:54.0046 0x0e2c  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
23:03:54.0046 0x0e2c  VgaSave - ok
23:03:54.0078 0x0e2c  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
23:03:54.0078 0x0e2c  ViaIde - ok
23:03:54.0109 0x0e2c  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
23:03:54.0109 0x0e2c  VolSnap - ok
23:03:54.0140 0x0e2c  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             C:\WINDOWS\System32\vssvc.exe
23:03:54.0156 0x0e2c  VSS - ok
23:03:54.0171 0x0e2c  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time         C:\WINDOWS\system32\w32time.dll
23:03:54.0187 0x0e2c  W32Time - ok
23:03:54.0218 0x0e2c  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:03:54.0218 0x0e2c  Wanarp - ok
23:03:54.0250 0x0e2c  [ 46A247F6617526AFE38B6F12F5512120, 24931910E3D678829A7A6CF1140CFE428E05057A4D3A14086ED66B884E847D2D ] wceusbsh        C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
23:03:54.0250 0x0e2c  wceusbsh - ok
23:03:54.0265 0x0e2c  WDICA - ok
23:03:54.0281 0x0e2c  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
23:03:54.0296 0x0e2c  wdmaud - ok
23:03:54.0312 0x0e2c  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       C:\WINDOWS\System32\webclnt.dll
23:03:54.0312 0x0e2c  WebClient - ok
23:03:54.0343 0x0e2c  [ F45DD1E1365D857DD08BC23563370D0E, D95AEBB2095579D716C62152C8B805E119812FD2E40F14F9A5BA2EFDE133303B ] WinDefend       C:\Program Files\Windows Defender\MsMpEng.exe
23:03:54.0343 0x0e2c  WinDefend - ok
23:03:54.0406 0x0e2c  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
23:03:54.0406 0x0e2c  winmgmt - ok
23:03:54.0484 0x0e2c  [ 18F347402DA544A780949B8FDF83351B, D1AD972D438A51A4998FEF68670395DAE3353240AD2A17F35794287AF0826FFB ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
23:03:54.0515 0x0e2c  WinRM - ok
23:03:54.0562 0x0e2c  [ BC3ECBCB40147BDAE3AD2FD0B4B346D8, 846CC7719331C0328058A0D2CEA1A803C47370FB67BB8EC9D4B89079F5AC67BC ] WmBEnum         C:\WINDOWS\system32\drivers\WmBEnum.sys
23:03:54.0562 0x0e2c  WmBEnum - ok
23:03:54.0593 0x0e2c  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
23:03:54.0593 0x0e2c  WmdmPmSN - ok
23:03:54.0609 0x0e2c  [ 19F9881D8B3484FEDB605D0216876898, 9A361724A78E5DE923798A0DA11CC76BDF2B365032EAA8C2179B17DD1B7FF41B ] WmFilter        C:\WINDOWS\system32\drivers\WmFilter.sys
23:03:54.0625 0x0e2c  WmFilter - ok
23:03:54.0671 0x0e2c  [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] Wmi             C:\WINDOWS\System32\advapi32.dll
23:03:54.0703 0x0e2c  Wmi - ok
23:03:54.0734 0x0e2c  [ C42584FD66CE9E17403AEBCA199F7BDB, E3F2E1066F36AE5D33D4482239B2E556BE0C137923C9A120DFB36EC82F2E77B0 ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
23:03:54.0734 0x0e2c  WmiAcpi - ok
23:03:54.0765 0x0e2c  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
23:03:54.0765 0x0e2c  WmiApSrv - ok
23:03:54.0859 0x0e2c  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B, C71FAAC752F6D58BF8556661252DBF8C5DDD090CAE002A2C7E09C9A014526066 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
23:03:54.0875 0x0e2c  WMPNetworkSvc - ok
23:03:54.0906 0x0e2c  [ 7A51545A6409A25EEDBDBD97D019E8CC, D74F28263B675E8C676ADDFDDBD1516320AF4EEEB9F6791AD7DD1A825B286BA0 ] WmVirHid        C:\WINDOWS\system32\drivers\WmVirHid.sys
23:03:54.0906 0x0e2c  WmVirHid - ok
23:03:54.0921 0x0e2c  [ 1F083B3BC73017E60C3CA85CF4A70753, B924B17860A4D2669C81A07D82349808AAEB806617330F1558BA2FCAC43729C9 ] WmXlCore        C:\WINDOWS\system32\drivers\WmXlCore.sys
23:03:54.0921 0x0e2c  WmXlCore - ok
23:03:54.0937 0x0e2c  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
23:03:54.0937 0x0e2c  WpdUsb - ok
23:03:55.0046 0x0e2c  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
23:03:55.0062 0x0e2c  WPFFontCache_v0400 - ok
23:03:55.0109 0x0e2c  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
23:03:55.0125 0x0e2c  wscsvc - ok
23:03:55.0125 0x0e2c  WSearch - ok
23:03:55.0156 0x0e2c  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
23:03:55.0156 0x0e2c  WSTCODEC - ok
23:03:55.0171 0x0e2c  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
23:03:55.0171 0x0e2c  wuauserv - ok
23:03:55.0203 0x0e2c  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
23:03:55.0203 0x0e2c  WudfPf - ok
23:03:55.0234 0x0e2c  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
23:03:55.0234 0x0e2c  WudfRd - ok
23:03:55.0250 0x0e2c  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
23:03:55.0265 0x0e2c  WudfSvc - ok
23:03:55.0296 0x0e2c  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
23:03:55.0312 0x0e2c  WZCSVC - ok
23:03:55.0343 0x0e2c  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
23:03:55.0359 0x0e2c  xmlprov - ok
23:03:55.0421 0x0e2c  ================ Scan global ===============================
23:03:55.0468 0x0e2c  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
23:03:55.0500 0x0e2c  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
23:03:55.0531 0x0e2c  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
23:03:55.0562 0x0e2c  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
23:03:55.0562 0x0e2c  [ Global ] - ok
23:03:55.0562 0x0e2c  ================ Scan MBR ==================================
23:03:55.0578 0x0e2c  [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk0\DR0
23:03:56.0406 0x0e2c  \Device\Harddisk0\DR0 - ok
23:03:56.0406 0x0e2c  ================ Scan VBR ==================================
23:03:56.0421 0x0e2c  [ D22FF5B727D91A04E44B2B45626760CA ] \Device\Harddisk0\DR0\Partition1
23:03:56.0421 0x0e2c  \Device\Harddisk0\DR0\Partition1 - ok
23:03:56.0421 0x0e2c  Waiting for KSN requests completion. In queue: 26
23:03:57.0421 0x0e2c  Waiting for KSN requests completion. In queue: 26
23:03:58.0421 0x0e2c  Waiting for KSN requests completion. In queue: 26
23:03:59.0421 0x0e2c  Waiting for KSN requests completion. In queue: 26
23:04:00.0421 0x0e2c  Waiting for KSN requests completion. In queue: 26
23:04:01.0421 0x0e2c  Waiting for KSN requests completion. In queue: 26
23:04:02.0453 0x0e2c  AV detected via SS1: Microsoft Security Essentials, 4.4.0304.0, enabled, updated
23:04:02.0453 0x0e2c  Win FW state via NFM: enabled
23:04:10.0343 0x0e2c  ============================================================
23:04:10.0343 0x0e2c  Scan finished
23:04:10.0343 0x0e2c  ============================================================
23:04:10.0343 0x227c  Detected object count: 0
23:04:10.0343 0x227c  Actual detected object count: 0
23:05:20.0093 0x1c74  Deinitialize success
 



#15 rcrapps

rcrapps
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:11:29 PM

Posted 14 December 2013 - 09:34 AM

log from adwcleaner

 

# AdwCleaner v3.015 - Report created 13/12/2013 at 23:07:24
# Updated 10/12/2013 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : rcrapps - RC55C
# Running from : C:\temp\4\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\blekko toolbars
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Conduit
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Premium
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Trymedia
Folder Deleted : C:\Program Files\adawaretb
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\Toolbar Cleaner
Folder Deleted : C:\Documents and Settings\rcrapps\Local Settings\Application Data\Conduit
Folder Deleted : C:\Documents and Settings\rcrapps\Local Settings\Application Data\NativeMessaging
Folder Deleted : C:\DOCUME~1\rcrapps\LOCALS~1\Temp\NativeMessaging
Folder Deleted : C:\Documents and Settings\rcrapps\Application Data\adawaretb
[!] Folder Deleted : C:\Documents and Settings\rcrapps\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil
File Deleted : C:\END

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKCU\Software\Google\Chrome\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\lipgolpfajiadodbcbljdpmbmbdmfcil
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3306061
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6C97A91E-4524-4019-86AF-2AA2D567BF5C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{6C97A91E-4524-4019-86AF-2AA2D567BF5C}]
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DynConIE
Key Deleted : HKCU\Software\Headlight
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKLM\Software\adawaretb
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Toolbar Cleaner
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Toolbar Cleaner
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Google Chrome v31.0.1650.63

[ File : C:\Documents and Settings\rcrapps\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage
Deleted : search_url
Deleted : keyword
Deleted : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [4110 octets] - [13/12/2013 23:06:01]
AdwCleaner[S0].txt - [3993 octets] - [13/12/2013 23:07:24]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4053 octets] ##########






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users