Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Vista Admin account acting odd (windows XP theme stuck on)


  • Please log in to reply
23 replies to this topic

#1 tombrown

tombrown

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 07 January 2014 - 12:51 PM

Sorry for the vague title, but couldnt come up with something better

 

I have a desktop PC with Vista Home Premium, and five user accounts (for the family) includign my own as admin.

 

My wife complained to me that she was having problems with sound on the PC so I went to check it out for her.

 

When I logged into my admin account I see the old Windows 2000 or XP look (rectangular windows & Start button, grey backgrounds etc). I just assumed I had accidentally changed the theme, but when I try to reset it to my own theme I get a message saying "The visual styles could not be applied. Access has been denied"

 

Now when I switch user to my Wife's account it seems she still has the regular theme and all looks OK

 

But now the odd thing - when I go to switch user back to my admin account, the screen blanks out then reloads the user login screen & doesnt let me switch to my account. I have to restart the PC to get to it.

 

Is this a virus? I have up to date McAffee on the PC, so it shoudlnt be

 

Hope you can help ....


Edited by hamluis, 07 January 2014 - 06:41 PM.
Moved from Vista to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:09:34 AM

Posted 07 January 2014 - 06:23 PM

Please download TDSSKiller exe version to your desktop. Double-click on TDSSKiller.exe to run the tool for known TDSS variants. Vista/Windows 7 users right-click and select Run As Administrator.

  •     Click on Change Parameters and click Detect TDLFS File System.
  •     Click the Start Scan button.
  •     Do not use the computer during the scan
  •     If the scan completes with nothing found, click Close to exit.
  •     If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  •     Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
  •     Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  •     A TDSSKiller text file would be saved in Local Disk C.
  •     Copy and paste the contents of that file in your next reply.
ADW Cleaner


Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Clean.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


#3 tombrown

tombrown
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 08 January 2014 - 02:37 AM

I have run TDSSKiller before I go to work. No issues found, log is below. Will run the rest this evening

 

07:32:34.0559 0x0e98  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
07:32:38.0147 0x0e98  ============================================================
07:32:38.0147 0x0e98  Current date / time: 2014/01/08 07:32:38.0147
07:32:38.0147 0x0e98  SystemInfo:
07:32:38.0147 0x0e98  
07:32:38.0147 0x0e98  OS Version: 6.0.6002 ServicePack: 2.0
07:32:38.0147 0x0e98  Product type: Workstation
07:32:38.0147 0x0e98  ComputerName: TOMJUSSIE-PC
07:32:38.0147 0x0e98  UserName: TomJussie
07:32:38.0147 0x0e98  Windows directory: C:\Windows
07:32:38.0147 0x0e98  System windows directory: C:\Windows
07:32:38.0147 0x0e98  Processor architecture: Intel x86
07:32:38.0147 0x0e98  Number of processors: 2
07:32:38.0147 0x0e98  Page size: 0x1000
07:32:38.0147 0x0e98  Boot type: Normal boot
07:32:38.0147 0x0e98  ============================================================
07:32:38.0256 0x0e98  KLMD registered as C:\Windows\system32\drivers\36222314.sys
07:32:38.0381 0x0e98  System UUID: {8616468D-B280-8AF2-C1D7-E5D4EAB62C9F}
07:32:38.0973 0x0e98  Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
07:32:38.0973 0x0e98  Drive \Device\Harddisk2\DR3 - Size: 0xFC60000 (0.25 Gb), SectorSize: 0x200, Cylinders: 0x20, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
07:32:38.0973 0x0e98  ============================================================
07:32:38.0973 0x0e98  \Device\Harddisk0\DR0:
07:32:38.0973 0x0e98  MBR partitions:
07:32:38.0973 0x0e98  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1B800, BlocksNum 0x1400000
07:32:38.0973 0x0e98  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x141B800, BlocksNum 0x115E9800
07:32:38.0973 0x0e98  \Device\Harddisk2\DR3:
07:32:38.0973 0x0e98  MBR partitions:
07:32:38.0973 0x0e98  \Device\Harddisk2\DR3\Partition1: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x7E2E0
07:32:38.0973 0x0e98  ============================================================
07:32:39.0020 0x0e98  C: <-> \Device\Harddisk0\DR0\Partition2
07:32:39.0067 0x0e98  D: <-> \Device\Harddisk0\DR0\Partition1
07:32:39.0067 0x0e98  ============================================================
07:32:39.0067 0x0e98  Initialize success
07:32:39.0067 0x0e98  ============================================================
07:32:46.0776 0x13c8  ============================================================
07:32:46.0776 0x13c8  Scan started
07:32:46.0776 0x13c8  Mode: Manual; TDLFS;
07:32:46.0776 0x13c8  ============================================================
07:32:46.0776 0x13c8  KSN ping started
07:32:49.0367 0x13c8  KSN ping finished: true
07:32:49.0523 0x13c8  ================ Scan system memory ========================
07:32:49.0523 0x13c8  System memory - ok
07:32:49.0523 0x13c8  ================ Scan services =============================
07:32:49.0726 0x13c8  [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI            C:\Windows\system32\drivers\acpi.sys
07:32:49.0741 0x13c8  ACPI - ok
07:32:49.0866 0x13c8  [ 7414A5EB9CE6AF42912A6AF1678AB628, DF0B64D099C5C6C6BB781B800B7FB10654E9A0B047E42D7BBE4A76A65C1F5E99 ] AcrSch2Svc      C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
07:32:49.0882 0x13c8  AcrSch2Svc - ok
07:32:50.0007 0x13c8  [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
07:32:50.0007 0x13c8  AdobeFlashPlayerUpdateSvc - ok
07:32:50.0069 0x13c8  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
07:32:50.0085 0x13c8  adp94xx - ok
07:32:50.0131 0x13c8  [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
07:32:50.0131 0x13c8  adpahci - ok
07:32:50.0178 0x13c8  [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
07:32:50.0178 0x13c8  adpu160m - ok
07:32:50.0256 0x13c8  [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
07:32:50.0256 0x13c8  adpu320 - ok
07:32:50.0412 0x13c8  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
07:32:50.0412 0x13c8  AeLookupSvc - ok
07:32:50.0553 0x13c8  [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD             C:\Windows\system32\drivers\afd.sys
07:32:50.0568 0x13c8  AFD - ok
07:32:50.0662 0x13c8  [ 8B10CE1C1F9F1D47E4DEB1A547A00CD4, 2E89838BD068314F4BE59753486E5D666FE2A3DD0A616E00EED4E0F83DB87401 ] agp440          C:\Windows\system32\drivers\agp440.sys
07:32:50.0662 0x13c8  agp440 - ok
07:32:50.0740 0x13c8  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
07:32:50.0740 0x13c8  aic78xx - ok
07:32:50.0787 0x13c8  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe
07:32:50.0787 0x13c8  ALG - ok
07:32:50.0818 0x13c8  [ 3A99CB23A2D326FD532618705D6E3048, AF0FBE8C89F1B231B7BD00155E1555DBCB37B6B7B58E94DA254EC7A40A473236 ] aliide          C:\Windows\system32\drivers\aliide.sys
07:32:50.0818 0x13c8  aliide - ok
07:32:50.0833 0x13c8  [ 848F27E5B27C1C253F6CEFDC1A5D8F21, 0FE955D82CE68A1FC5DCA33626179005B90803821005A370EB36352817433089 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
07:32:50.0833 0x13c8  amdagp - ok
07:32:50.0865 0x13c8  [ 4333C133DBD71C7D7FE4FB1B83F9EE3E, 3E08961741FACF0D35D1B49EE6E2A0AFF7DB3D8CCDBF823554EC83786AB925FE ] amdide          C:\Windows\system32\drivers\amdide.sys
07:32:50.0865 0x13c8  amdide - ok
07:32:50.0896 0x13c8  [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
07:32:50.0896 0x13c8  AmdK7 - ok
07:32:50.0927 0x13c8  [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
07:32:50.0927 0x13c8  AmdK8 - ok
07:32:50.0989 0x13c8  [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo         C:\Windows\System32\appinfo.dll
07:32:50.0989 0x13c8  Appinfo - ok
07:32:51.0083 0x13c8  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:32:51.0099 0x13c8  Apple Mobile Device - ok
07:32:51.0114 0x13c8  [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc             C:\Windows\system32\drivers\arc.sys
07:32:51.0114 0x13c8  arc - ok
07:32:51.0161 0x13c8  [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
07:32:51.0161 0x13c8  arcsas - ok
07:32:51.0223 0x13c8  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
07:32:51.0223 0x13c8  AsyncMac - ok
07:32:51.0239 0x13c8  [ A779CA2C76DA4FCB595E692C05E8E4EB, 4FFE51944090D8EED0350B8B00E5F2993215EE0ACEABEC4564175A70C34154E9 ] atapi           C:\Windows\system32\drivers\atapi.sys
07:32:51.0239 0x13c8  atapi - ok
07:32:51.0333 0x13c8  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
07:32:51.0333 0x13c8  AudioEndpointBuilder - ok
07:32:51.0348 0x13c8  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
07:32:51.0364 0x13c8  Audiosrv - ok
07:32:51.0442 0x13c8  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys
07:32:51.0442 0x13c8  Beep - ok
07:32:51.0473 0x13c8  [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE             C:\Windows\System32\bfe.dll
07:32:51.0473 0x13c8  BFE - ok
07:32:51.0567 0x13c8  [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS            C:\Windows\System32\qmgr.dll
07:32:51.0582 0x13c8  BITS - ok
07:32:51.0582 0x13c8  blbdrive - ok
07:32:51.0676 0x13c8  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
07:32:51.0691 0x13c8  Bonjour Service - ok
07:32:51.0723 0x13c8  [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
07:32:51.0723 0x13c8  bowser - ok
07:32:51.0769 0x13c8  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
07:32:51.0769 0x13c8  BrFiltLo - ok
07:32:51.0801 0x13c8  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
07:32:51.0801 0x13c8  BrFiltUp - ok
07:32:51.0832 0x13c8  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll
07:32:51.0847 0x13c8  Browser - ok
07:32:51.0863 0x13c8  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
07:32:51.0863 0x13c8  Brserid - ok
07:32:51.0894 0x13c8  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
07:32:51.0894 0x13c8  BrSerWdm - ok
07:32:51.0910 0x13c8  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
07:32:51.0910 0x13c8  BrUsbMdm - ok
07:32:51.0941 0x13c8  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
07:32:51.0941 0x13c8  BrUsbSer - ok
07:32:51.0972 0x13c8  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
07:32:51.0972 0x13c8  BTHMODEM - ok
07:32:52.0035 0x13c8  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
07:32:52.0035 0x13c8  cdfs - ok
07:32:52.0144 0x13c8  [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
07:32:52.0144 0x13c8  cdrom - ok
07:32:52.0237 0x13c8  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc     C:\Windows\System32\certprop.dll
07:32:52.0237 0x13c8  CertPropSvc - ok
07:32:52.0347 0x13c8  [ D787C026F15BD8F762AB5829428FAA9C, 42A82265976C1B835EA52E133F368885AE8769D58EF6A82EE14E38FEF2A9327E ] cfwids          C:\Windows\system32\drivers\cfwids.sys
07:32:52.0347 0x13c8  cfwids - ok
07:32:52.0378 0x13c8  [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass        C:\Windows\system32\drivers\circlass.sys
07:32:52.0378 0x13c8  circlass - ok
07:32:52.0425 0x13c8  [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS            C:\Windows\system32\CLFS.sys
07:32:52.0440 0x13c8  CLFS - ok
07:32:52.0487 0x13c8  [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:32:52.0487 0x13c8  clr_optimization_v2.0.50727_32 - ok
07:32:52.0659 0x13c8  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:32:52.0659 0x13c8  clr_optimization_v4.0.30319_32 - ok
07:32:52.0690 0x13c8  [ DFB94A6FC3A26972B0461AB5F1D8272B, E55F8A8661EFBD8AAC202C02E9CA970BB0297786C6FF5E4D4E3CC67706E82FAE ] cmdide          C:\Windows\system32\drivers\cmdide.sys
07:32:52.0690 0x13c8  cmdide - ok
07:32:52.0721 0x13c8  [ 82B8C91D327CFECF76CB58716F7D4997, 6F06A4BC44B170BB28BF464E9BB5216D39D11CB8D442570B575A741B032EAEE6 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
07:32:52.0737 0x13c8  Compbatt - ok
07:32:52.0737 0x13c8  COMSysApp - ok
07:32:52.0752 0x13c8  [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
07:32:52.0752 0x13c8  crcdisk - ok
07:32:52.0783 0x13c8  [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
07:32:52.0783 0x13c8  Crusoe - ok
07:32:52.0893 0x13c8  [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
07:32:52.0893 0x13c8  CryptSvc - ok
07:32:52.0971 0x13c8  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch      C:\Windows\system32\rpcss.dll
07:32:52.0986 0x13c8  DcomLaunch - ok
07:32:52.0986 0x13c8  [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
07:32:53.0002 0x13c8  DfsC - ok
07:32:53.0127 0x13c8  [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR            C:\Windows\system32\DFSR.exe
07:32:53.0173 0x13c8  DFSR - ok
07:32:53.0251 0x13c8  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
07:32:53.0251 0x13c8  Dhcp - ok
07:32:53.0298 0x13c8  [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk            C:\Windows\system32\drivers\disk.sys
07:32:53.0298 0x13c8  disk - ok
07:32:53.0345 0x13c8  [ A53723176D0002FEB486EFF8E17812F2, DE528F84C750082D43113FA2BEEE4A873CB68BEE742B45034C434E6910716606 ] DLABMFSM        C:\Windows\system32\DLA\DLABMFSM.SYS
07:32:53.0345 0x13c8  DLABMFSM - ok
07:32:53.0361 0x13c8  [ D4587063ACEA776699251E177D719586, 902D46EF1AF2BFB389CE6853C640CDBF084AD3B78C34BCE93B695A03357F9537 ] DLABOIOM        C:\Windows\system32\DLA\DLABOIOM.SYS
07:32:53.0361 0x13c8  DLABOIOM - ok
07:32:53.0376 0x13c8  [ 5230CDB7E715F3A3B4A882E254CDD35D, 0D6A88DE30A75FAD5FF535468DF56A33E4695C619BFDD7E142AC4516A7878E52 ] DLACDBHM        C:\Windows\system32\Drivers\DLACDBHM.SYS
07:32:53.0376 0x13c8  DLACDBHM - ok
07:32:53.0407 0x13c8  [ C950C2E7B9ED1A4FC4A2AC7EC044F1D6, B41A3F5FE203B188E99628AC93C2BC4E7B4188BA99D5177E10EE75503453A4B5 ] DLADResM        C:\Windows\system32\DLA\DLADResM.SYS
07:32:53.0407 0x13c8  DLADResM - ok
07:32:53.0423 0x13c8  [ 24400137E387A24410C52A591F3CFB4D, 2E9CD1D9E217238E9A38C49B64A91DE2DEEA10867BCBDFA561C3834DB3FB1F51 ] DLAIFS_M        C:\Windows\system32\DLA\DLAIFS_M.SYS
07:32:53.0423 0x13c8  DLAIFS_M - ok
07:32:53.0439 0x13c8  [ 29A303FECEB28641ECEBDAE89EB71C63, 42ABC45AC54F2F6F52D16BC8C84C86CDB0D68D371C4EDF3DA59E4426575F9374 ] DLAOPIOM        C:\Windows\system32\DLA\DLAOPIOM.SYS
07:32:53.0439 0x13c8  DLAOPIOM - ok
07:32:53.0454 0x13c8  [ C93E33A22A1AE0C5508F3FB1F6D0A50C, D37B5A80A7A5DF28790178C1F173CAF223BB4CE5BEC6D02E221D4E611978C98D ] DLAPoolM        C:\Windows\system32\DLA\DLAPoolM.SYS
07:32:53.0454 0x13c8  DLAPoolM - ok
07:32:53.0470 0x13c8  [ 77FE51F0F8D86804CB81F6EF6BFB86DD, 030F70D5703A95964087C3E9EB1E9BAC1ECE8224FFF3E131A5C1D20215C9BB43 ] DLARTL_M        C:\Windows\system32\Drivers\DLARTL_M.SYS
07:32:53.0485 0x13c8  DLARTL_M - ok
07:32:53.0517 0x13c8  [ B953498C35A31E5AC98F49ADBCF3E627, C7F009DA79F64EF8CF1CBF0B3856020C052145C45BF88822E6BF254EE41C5905 ] DLAUDFAM        C:\Windows\system32\DLA\DLAUDFAM.SYS
07:32:53.0517 0x13c8  DLAUDFAM - ok
07:32:53.0532 0x13c8  [ 4897704C093C1F59CE58FC65E1E1EF1E, 421DA304A935623DEB3EF331AD907E8629D5DEBF038E2FDE3D4ED4D5E6BEFD50 ] DLAUDF_M        C:\Windows\system32\DLA\DLAUDF_M.SYS
07:32:53.0532 0x13c8  DLAUDF_M - ok
07:32:53.0579 0x13c8  [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache        C:\Windows\System32\dnsrslvr.dll
07:32:53.0579 0x13c8  Dnscache - ok
07:32:53.0626 0x13c8  [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc         C:\Windows\System32\dot3svc.dll
07:32:53.0626 0x13c8  dot3svc - ok
07:32:53.0673 0x13c8  [ 4F59C172C094E1A1D46463A8DC061CBD, CE09A4ED1F8BA6242E152C384AFF5C3C95FBB8556DAE23765272F13BF158D8F9 ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
07:32:53.0688 0x13c8  Dot4 - ok
07:32:53.0719 0x13c8  [ 80BF3BA09F6F2523C8F6B7CC6DBF7BD5, 69BB5B07D03FA9F28591012F2AA4A583D3F086644C136D63A56D1A827121CC19 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
07:32:53.0719 0x13c8  Dot4Print - ok
07:32:53.0735 0x13c8  [ C55004CA6B419B6695970DFE849B122F, 6E0C4A9E24DD09E9389E097AF63E7F5040A0658DDCEBBE963968B7118CFE9AB8 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
07:32:53.0735 0x13c8  dot4usb - ok
07:32:53.0797 0x13c8  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll
07:32:53.0797 0x13c8  DPS - ok
07:32:53.0844 0x13c8  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
07:32:53.0844 0x13c8  drmkaud - ok
07:32:53.0875 0x13c8  [ C00440385CF9F3D142917C63F989E244, 5DD3684D3C6DE4E9C82778C4097E9017E1DB0617DDD1D04831263B1E390B2D08 ] DRVMCDB         C:\Windows\system32\Drivers\DRVMCDB.SYS
07:32:53.0875 0x13c8  DRVMCDB - ok
07:32:53.0907 0x13c8  [ FFC371525AA55D1BAE18715EBCB8797C, 4894F67772CEB0143B5DAFE10B42D90727E36A58B02F6221E83CE4CFD26E32B6 ] DRVNDDM         C:\Windows\system32\Drivers\DRVNDDM.SYS
07:32:53.0907 0x13c8  DRVNDDM - ok
07:32:53.0985 0x13c8  [ 01D5B95D0A12A916BBDC258629113258, 240E635CE48629729CF43F298C89DB959EB507436FE9B8D3EA5BC79E8CB99264 ] DSBrokerService C:\Program Files\DellSupport\brkrsvc.exe
07:32:53.0985 0x13c8  DSBrokerService - ok
07:32:54.0047 0x13c8  [ 413F2D5F9D802688242C23B38F767ECB, 6D5B6B8FC6E8E45555C444D3E881D3E44DE4C6F2602ADBB4D0E8E9F834089827 ] DSproct         C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
07:32:54.0047 0x13c8  DSproct - ok
07:32:54.0063 0x13c8  [ 64FA28C15DD71A80BEF3527E1EF07DF6, 0E165303E7D6D2391E150910EBF5ABD83D171ABB463FE5FACB1081FA6D9A47B8 ] dsunidrv        C:\Program Files\DellSupport\Drivers\dsunidrv.sys
07:32:54.0063 0x13c8  dsunidrv - ok
07:32:54.0125 0x13c8  [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
07:32:54.0141 0x13c8  DXGKrnl - ok
07:32:54.0187 0x13c8  [ 908ED85B7806E8AF3AF5E9B74F7809D4, 9A763D247035578A946094D2C1CE8204E6EDFFD7237C7BF2058B5F4ECC0306E0 ] e1express       C:\Windows\system32\DRIVERS\e1e6032.sys
07:32:54.0203 0x13c8  e1express - ok
07:32:54.0250 0x13c8  [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
07:32:54.0250 0x13c8  E1G60 - ok
07:32:54.0297 0x13c8  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll
07:32:54.0297 0x13c8  EapHost - ok
07:32:54.0359 0x13c8  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache          C:\Windows\system32\drivers\ecache.sys
07:32:54.0359 0x13c8  Ecache - ok
07:32:54.0421 0x13c8  [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
07:32:54.0421 0x13c8  ehRecvr - ok
07:32:54.0484 0x13c8  [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched         C:\Windows\ehome\ehsched.exe
07:32:54.0484 0x13c8  ehSched - ok
07:32:54.0515 0x13c8  [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart         C:\Windows\ehome\ehstart.dll
07:32:54.0515 0x13c8  ehstart - ok
07:32:54.0593 0x13c8  [ D71233D7CCC2E64F8715A20428D5A33B, ECCF5820CFFFC083EA6A5D310E2E09CA61C0DCFEE1E58AD94D2A565CA86A87F3 ] ElbyCDIO        C:\Windows\system32\Drivers\ElbyCDIO.sys
07:32:54.0593 0x13c8  ElbyCDIO - ok
07:32:54.0640 0x13c8  [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
07:32:54.0640 0x13c8  elxstor - ok
07:32:54.0749 0x13c8  [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
07:32:54.0765 0x13c8  EMDMgmt - ok
07:32:54.0923 0x13c8  [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem     C:\Windows\system32\es.dll
07:32:54.0923 0x13c8  EventSystem - ok
07:32:55.0032 0x13c8  [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat           C:\Windows\system32\drivers\exfat.sys
07:32:55.0032 0x13c8  exfat - ok
07:32:55.0079 0x13c8  [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
07:32:55.0095 0x13c8  fastfat - ok
07:32:55.0157 0x13c8  [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
07:32:55.0157 0x13c8  fdc - ok
07:32:55.0251 0x13c8  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll
07:32:55.0251 0x13c8  fdPHost - ok
07:32:55.0282 0x13c8  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
07:32:55.0282 0x13c8  FDResPub - ok
07:32:55.0360 0x13c8  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
07:32:55.0360 0x13c8  FileInfo - ok
07:32:55.0422 0x13c8  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
07:32:55.0422 0x13c8  Filetrace - ok
07:32:55.0469 0x13c8  [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
07:32:55.0485 0x13c8  flpydisk - ok
07:32:55.0516 0x13c8  [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
07:32:55.0531 0x13c8  FltMgr - ok
07:32:55.0625 0x13c8  [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache       C:\Windows\system32\FntCache.dll
07:32:55.0641 0x13c8  FontCache - ok
07:32:55.0703 0x13c8  [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
07:32:55.0719 0x13c8  FontCache3.0.0.0 - ok
07:32:55.0812 0x13c8  [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
07:32:55.0812 0x13c8  Fs_Rec - ok
07:32:55.0859 0x13c8  [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
07:32:55.0859 0x13c8  gagp30kx - ok
07:32:55.0921 0x13c8  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\Windows\system32\Drivers\GEARAspiWDM.sys
07:32:55.0921 0x13c8  GEARAspiWDM - ok
07:32:56.0031 0x13c8  [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F, 6D2B301E77839FFF1C74425B37D02C3F3837CE50E856C21AE4CF7ABABB04ADDC ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
07:32:56.0031 0x13c8  GoogleDesktopManager-051210-111108 - ok
07:32:56.0109 0x13c8  [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc           C:\Windows\System32\gpsvc.dll
07:32:56.0124 0x13c8  gpsvc - ok
07:32:56.0233 0x13c8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
07:32:56.0233 0x13c8  gupdate - ok
07:32:56.0265 0x13c8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
07:32:56.0280 0x13c8  gupdatem - ok
07:32:56.0311 0x13c8  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
07:32:56.0327 0x13c8  gusvc - ok
07:32:56.0389 0x13c8  [ 3F90E001369A07243763BD5A523D8722, 25907F85787D879E75C3FE74C93567382AFB2D528BEEC61D71E3A6BE2D71DFBE ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
07:32:56.0389 0x13c8  HdAudAddService - ok
07:32:56.0452 0x13c8  [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
07:32:56.0467 0x13c8  HDAudBus - ok
07:32:56.0514 0x13c8  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
07:32:56.0514 0x13c8  HidBth - ok
07:32:56.0639 0x13c8  [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr           C:\Windows\system32\drivers\hidir.sys
07:32:56.0639 0x13c8  HidIr - ok
07:32:56.0686 0x13c8  [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv         C:\Windows\system32\hidserv.dll
07:32:56.0686 0x13c8  hidserv - ok
07:32:56.0779 0x13c8  [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
07:32:56.0795 0x13c8  HidUsb - ok
07:32:56.0921 0x13c8  [ 156765F692192EA9039A6C4A809312FD, 73400BC5E5C92A2E7834CB8EB33B3D78BF73C875C98B1AD91B0112FBB8DB19E3 ] HipShieldK      C:\Windows\system32\drivers\HipShieldK.sys
07:32:56.0921 0x13c8  HipShieldK - ok
07:32:56.0984 0x13c8  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll
07:32:56.0984 0x13c8  hkmsvc - ok
07:32:57.0187 0x13c8  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] HomeNetSvc      C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
07:32:57.0203 0x13c8  HomeNetSvc - ok
07:32:57.0234 0x13c8  [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
07:32:57.0249 0x13c8  HpCISSs - ok
07:32:57.0343 0x13c8  [ FCB563B0A23643E5F80B6FF1E60F610F, C1FCECF406E154065BF3FD93C4853ED96F5300E0E218FF0AA20B34D614710735 ] hpqcxs08        C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
07:32:57.0359 0x13c8  hpqcxs08 - ok
07:32:57.0374 0x13c8  [ 25E443E27165C652723A92D9BDFD4649, 58528E888176D236C683F5135BE0B35F43F9F521022ED0E66D5B688F3BAF7D0F ] hpqddsvc        C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
07:32:57.0374 0x13c8  hpqddsvc - ok
07:32:57.0515 0x13c8  [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
07:32:57.0546 0x13c8  HTTP - ok
07:32:57.0608 0x13c8  [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp           C:\Windows\system32\drivers\i2omp.sys
07:32:57.0608 0x13c8  i2omp - ok
07:32:57.0733 0x13c8  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
07:32:57.0733 0x13c8  i8042prt - ok
07:32:57.0842 0x13c8  [ 0BCEE844A02747DD7F1E30352E619F2E, C863C5027804D8CE8542B14778B4FCB2E2D91AD3F09C765BF6F614E954E8F550 ] IAANTMON        C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
07:32:57.0842 0x13c8  IAANTMON - ok
07:32:57.0967 0x13c8  [ E9F704CA833BD24BFAA3B4A59707633A, 31D474C13A78673357C94A21B222B310F46CCF07ADB6FA6DF3C26EB5F3551AE4 ] iaStor          C:\Windows\system32\drivers\iastor.sys
07:32:57.0967 0x13c8  iaStor - ok
07:32:58.0014 0x13c8  [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
07:32:58.0014 0x13c8  iaStorV - ok
07:32:58.0076 0x13c8  [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
07:32:58.0076 0x13c8  IDriverT - ok
07:32:58.0154 0x13c8  [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
07:32:58.0201 0x13c8  idsvc - ok
07:32:58.0217 0x13c8  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
07:32:58.0232 0x13c8  iirsp - ok
07:32:58.0279 0x13c8  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT          C:\Windows\System32\ikeext.dll
07:32:58.0310 0x13c8  IKEEXT - ok
07:32:58.0341 0x13c8  [ 1C60617D54BC9F035671A44B75D9F7CC, 8E8E3B8FC0BD88042BA9641E5E7A4D045A41DD8378A41910A58203C044251D11 ] intelide        C:\Windows\system32\drivers\intelide.sys
07:32:58.0341 0x13c8  intelide - ok
07:32:58.0373 0x13c8  [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
07:32:58.0373 0x13c8  intelppm - ok
07:32:58.0419 0x13c8  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
07:32:58.0419 0x13c8  IPBusEnum - ok
07:32:58.0466 0x13c8  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:32:58.0466 0x13c8  IpFilterDriver - ok
07:32:58.0513 0x13c8  [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
07:32:58.0529 0x13c8  iphlpsvc - ok
07:32:58.0529 0x13c8  IpInIp - ok
07:32:58.0560 0x13c8  [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
07:32:58.0560 0x13c8  IPMIDRV - ok
07:32:58.0591 0x13c8  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
07:32:58.0591 0x13c8  IPNAT - ok
07:32:58.0669 0x13c8  [ 066F2BBE2EEC9A42B065B552BF356B4E, AE86DB5BFD4748C54C0C224E7FBEA3C032F1071A39303DF35AA04869D3950B7A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
07:32:58.0669 0x13c8  iPod Service - ok
07:32:58.0716 0x13c8  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
07:32:58.0716 0x13c8  IRENUM - ok
07:32:58.0731 0x13c8  [ 2F8ECE2699E7E2070545E9B0960A8ED2, 40214A9220C6EC232C245939E4F40A9FF6D30497E180EDC809B87938A922E52D ] isapnp          C:\Windows\system32\drivers\isapnp.sys
07:32:58.0747 0x13c8  isapnp - ok
07:32:58.0778 0x13c8  [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
07:32:58.0794 0x13c8  iScsiPrt - ok
07:32:58.0809 0x13c8  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
07:32:58.0809 0x13c8  iteatapi - ok
07:32:58.0825 0x13c8  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
07:32:58.0825 0x13c8  iteraid - ok
07:32:58.0841 0x13c8  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
07:32:58.0841 0x13c8  kbdclass - ok
07:32:58.0887 0x13c8  [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
07:32:58.0887 0x13c8  kbdhid - ok
07:32:58.0919 0x13c8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso          C:\Windows\system32\lsass.exe
07:32:58.0934 0x13c8  KeyIso - ok
07:32:58.0997 0x13c8  [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
07:32:59.0028 0x13c8  KSecDD - ok
07:32:59.0090 0x13c8  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll
07:32:59.0121 0x13c8  KtmRm - ok
07:32:59.0215 0x13c8  [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer    C:\Windows\system32\srvsvc.dll
07:32:59.0215 0x13c8  LanmanServer - ok
07:32:59.0309 0x13c8  [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
07:32:59.0324 0x13c8  LanmanWorkstation - ok
07:32:59.0402 0x13c8  [ A0F7DC0080E4F97DC97DE08B699E231B, 7220630BEFB4ADFEB19B07253953F5E09EF42E8AE0187566EFEE4F822DAC1F8A ] LBTServ         C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
07:32:59.0418 0x13c8  LBTServ - ok
07:32:59.0449 0x13c8  [ 24E0DDB99AECCF86BB37702611761459, 5827F83E84F0CC8C520F54AF71BB4382A98BFE379D68F6A593C2FFC28B3DB59B ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
07:32:59.0465 0x13c8  LHidFilt - ok
07:32:59.0496 0x13c8  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
07:32:59.0496 0x13c8  lltdio - ok
07:32:59.0558 0x13c8  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
07:32:59.0558 0x13c8  lltdsvc - ok
07:32:59.0605 0x13c8  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
07:32:59.0605 0x13c8  lmhosts - ok
07:32:59.0652 0x13c8  [ D58B330D318361A66A9FE60D7C9B4951, DCE08C7B3F2FE45204172564129292BB2BABED9226F368091DE2C2D315DA4D5C ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
07:32:59.0652 0x13c8  LMouFilt - ok
07:32:59.0699 0x13c8  [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
07:32:59.0699 0x13c8  LSI_FC - ok
07:32:59.0714 0x13c8  [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
07:32:59.0714 0x13c8  LSI_SAS - ok
07:32:59.0745 0x13c8  [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
07:32:59.0745 0x13c8  LSI_SCSI - ok
07:32:59.0792 0x13c8  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys
07:32:59.0792 0x13c8  luafv - ok
07:32:59.0901 0x13c8  [ ECAB006AC6136F1307E140B633CDB8C2, CAF7B51C0BE52A80FAEE6A2F93D5AF0D9ACD7C2255C4D711EC467755C4F8B9B6 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
07:32:59.0901 0x13c8  McAfee SiteAdvisor Service - ok
07:33:00.0026 0x13c8  [ 5467B4D77044E4FF56E8FEB9D2F6FE5A, 71B828F526A59391979A528BF4D0C705C2077C65A32100C29979E1185675176D ] McAPExe         C:\Program Files\McAfee\MSC\McAPExe.exe
07:33:00.0042 0x13c8  McAPExe - ok
07:33:00.0089 0x13c8  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] McMPFSvc        C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
07:33:00.0089 0x13c8  McMPFSvc - ok
07:33:00.0120 0x13c8  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] McNaiAnn        C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
07:33:00.0120 0x13c8  McNaiAnn - ok
07:33:00.0229 0x13c8  [ 3A01047FFF666D33EBDE3513D20DA1F5, 360A1D6C2CBDF9C25E72B872ACE36E69D43218E532248A08753490ED6C266CBE ] McODS           C:\Program Files\McAfee\VirusScan\mcods.exe
07:33:00.0245 0x13c8  McODS - ok
07:33:00.0276 0x13c8  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] mcpltsvc        C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
07:33:00.0291 0x13c8  mcpltsvc - ok
07:33:00.0323 0x13c8  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] McProxy         C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
07:33:00.0323 0x13c8  McProxy - ok
07:33:00.0369 0x13c8  [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
07:33:00.0369 0x13c8  Mcx2Svc - ok
07:33:00.0416 0x13c8  [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas         C:\Windows\system32\drivers\megasas.sys
07:33:00.0416 0x13c8  megasas - ok
07:33:00.0479 0x13c8  [ 75A2B9F70B77AA3DB15E96BDAAE484A2, AE13AB63F53CBB929B498145E0E18DEEFEB7EBC5C3BD58A7A4D60697CCBBDBFB ] mfeapfk         C:\Windows\system32\drivers\mfeapfk.sys
07:33:00.0479 0x13c8  mfeapfk - ok
07:33:00.0525 0x13c8  [ 070850EFFC731B4A22FB7DDEAD41B943, E3139F47BDBBCBA255EEBA0BA956C2F8746B91656E3EBD0FEFBA339D55EF6499 ] mfeavfk         C:\Windows\system32\drivers\mfeavfk.sys
07:33:00.0541 0x13c8  mfeavfk - ok
07:33:00.0572 0x13c8  [ FC28E41FE9D4F3283FB41717C0BF0109, 7148412F8DFBCA1A3971226F13CDD0891777EA70ECB172310913FA149C4049CB ] mfebopk         C:\Windows\system32\drivers\mfebopk.sys
07:33:00.0572 0x13c8  mfebopk - ok
07:33:00.0775 0x13c8  [ A507872B611576AF33BCF473231391F9, 10699FD70528688544187387343F9881D0D3984F8F986FABB6AAD42BD2E14E29 ] mfecore         C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
07:33:00.0806 0x13c8  mfecore - ok
07:33:01.0056 0x13c8  [ 7A9F90099CBF6FA6D4011E10F36EF0C7, C88953DE4DF7B63349350A9AE024CC6F48647D2252994DE4C00D339734BF2085 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
07:33:01.0071 0x13c8  mfefire - ok
07:33:01.0165 0x13c8  [ 768AA2C44C589EA27E80E4EC05BD5F76, 572DCA5DFBF9142348E8E15378FD96D0865B1D700EB9E4484012DE61A9735240 ] mfefirek        C:\Windows\system32\drivers\mfefirek.sys
07:33:01.0181 0x13c8  mfefirek - ok
07:33:01.0352 0x13c8  [ 24E6ABD47FD50FC187FFC3583A14F339, 4EA62F6691E020E944C6CA145D42F33AE770160D298F3CEAE19287424ADF3463 ] mfehidk         C:\Windows\system32\drivers\mfehidk.sys
07:33:01.0383 0x13c8  mfehidk - ok
07:33:01.0493 0x13c8  [ 286C46ADBF17272A479C91116FA50524, A2A47A99CE547FD1EC833177A171CAA8453491F4FC8C07C986654E536A5B76AA ] mfencbdc        C:\Windows\system32\DRIVERS\mfencbdc.sys
07:33:01.0524 0x13c8  mfencbdc - ok
07:33:01.0617 0x13c8  [ 0C9EA2919A7EB871FF9BAFB3A11C145E, 8B1E37DE44676F223F317F05526743C2D82BA011DF4422FBF2B093B3F4B15542 ] mfencrk         C:\Windows\system32\DRIVERS\mfencrk.sys
07:33:01.0617 0x13c8  mfencrk - ok
07:33:01.0820 0x13c8  [ A1262E7DC2394EA04AB97D48752F7332, E572C19113823E4B4CD4171843E9AB98CC8F02B97740D7C9CD671583DF29A9D3 ] mfevtp          C:\Windows\system32\mfevtps.exe
07:33:01.0836 0x13c8  mfevtp - ok
07:33:01.0867 0x13c8  [ 754FD1BD18DE5CCC4E61F500DC1F214F, 14D371EAA3433BDC71B99A6157080815C74E386F3246051F1F5A9740A552F9DE ] mfewfpk         C:\Windows\system32\drivers\mfewfpk.sys
07:33:01.0867 0x13c8  mfewfpk - ok
07:33:01.0914 0x13c8  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll
07:33:01.0929 0x13c8  MMCSS - ok
07:33:01.0992 0x13c8  [ 35176FA09A0FC58DB630991A81A0BA39, 190FCA6C60C8E8431BAC916D6190E7D68DCEA8ED42554A35F495143F6C7A85A6 ] MOBKbackup      C:\Program Files\McAfee Online Backup\MOBKbackup.exe
07:33:02.0007 0x13c8  MOBKbackup - ok
07:33:02.0054 0x13c8  [ E896775837A8BCE436348DF460522394, FF912F42CDF9FAB7BDF1C22B692201B707CF3A4DF7DD515AF8B9C4CCCE593CF8 ] MOBKFilter      C:\Windows\system32\DRIVERS\MOBK.sys
07:33:02.0054 0x13c8  MOBKFilter - ok
07:33:02.0085 0x13c8  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys
07:33:02.0101 0x13c8  Modem - ok
07:33:02.0148 0x13c8  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
07:33:02.0148 0x13c8  monitor - ok
07:33:02.0195 0x13c8  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
07:33:02.0195 0x13c8  mouclass - ok
07:33:02.0226 0x13c8  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
07:33:02.0226 0x13c8  mouhid - ok
07:33:02.0257 0x13c8  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
07:33:02.0273 0x13c8  MountMgr - ok
07:33:02.0319 0x13c8  [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio            C:\Windows\system32\drivers\mpio.sys
07:33:02.0319 0x13c8  mpio - ok
07:33:02.0366 0x13c8  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
07:33:02.0366 0x13c8  mpsdrv - ok
07:33:02.0429 0x13c8  [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc          C:\Windows\system32\mpssvc.dll
07:33:02.0444 0x13c8  MpsSvc - ok
07:33:02.0491 0x13c8  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
07:33:02.0491 0x13c8  Mraid35x - ok
07:33:02.0538 0x13c8  [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
07:33:02.0538 0x13c8  MRxDAV - ok
07:33:02.0569 0x13c8  [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
07:33:02.0585 0x13c8  mrxsmb - ok
07:33:02.0631 0x13c8  [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:33:02.0631 0x13c8  mrxsmb10 - ok
07:33:02.0663 0x13c8  [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:33:02.0663 0x13c8  mrxsmb20 - ok
07:33:02.0756 0x13c8  [ F0EC3A4E0693A34B148723B4DA31668C, 96D8730D94F15FB2C54DAD8298C8CA1075373CFC04FE62FA9123D28575E987FC ] msahci          C:\Windows\system32\drivers\msahci.sys
07:33:02.0756 0x13c8  msahci - ok
07:33:02.0772 0x13c8  [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm           C:\Windows\system32\drivers\msdsm.sys
07:33:02.0787 0x13c8  msdsm - ok
07:33:02.0819 0x13c8  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe
07:33:02.0819 0x13c8  MSDTC - ok
07:33:02.0865 0x13c8  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
07:33:02.0865 0x13c8  Msfs - ok
07:33:02.0912 0x13c8  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
07:33:02.0912 0x13c8  msisadrv - ok
07:33:02.0959 0x13c8  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
07:33:02.0975 0x13c8  MSiSCSI - ok
07:33:02.0990 0x13c8  msiserver - ok
07:33:03.0037 0x13c8  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] MSK80Service    C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
07:33:03.0053 0x13c8  MSK80Service - ok
07:33:03.0084 0x13c8  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
07:33:03.0084 0x13c8  MSKSSRV - ok
07:33:03.0131 0x13c8  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
07:33:03.0131 0x13c8  MSPCLOCK - ok
07:33:03.0146 0x13c8  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
07:33:03.0146 0x13c8  MSPQM - ok
07:33:03.0193 0x13c8  [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
07:33:03.0209 0x13c8  MsRPC - ok
07:33:03.0255 0x13c8  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
07:33:03.0255 0x13c8  mssmbios - ok
07:33:03.0271 0x13c8  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
07:33:03.0271 0x13c8  MSTEE - ok
07:33:03.0318 0x13c8  [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup             C:\Windows\system32\Drivers\mup.sys
07:33:03.0318 0x13c8  Mup - ok
07:33:03.0427 0x13c8  [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent        C:\Windows\system32\qagentRT.dll
07:33:03.0443 0x13c8  napagent - ok
07:33:03.0489 0x13c8  [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
07:33:03.0489 0x13c8  NativeWifiP - ok
07:33:03.0567 0x13c8  [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS            C:\Windows\system32\drivers\ndis.sys
07:33:03.0583 0x13c8  NDIS - ok
07:33:03.0770 0x13c8  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
07:33:03.0786 0x13c8  NdisTapi - ok
07:33:03.0801 0x13c8  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
07:33:03.0817 0x13c8  Ndisuio - ok
07:33:03.0864 0x13c8  [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
07:33:03.0864 0x13c8  NdisWan - ok
07:33:03.0911 0x13c8  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
07:33:03.0911 0x13c8  NDProxy - ok
07:33:03.0973 0x13c8  Nero BackItUp Scheduler 4.0 - ok
07:33:04.0004 0x13c8  [ A081CB6FB9A12668F233EB5414BE3A0E, EE2A1311B51D1FEBAF79F45E568A927D8EA7704AFC8495AED2D26927566F61E3 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
07:33:04.0004 0x13c8  Net Driver HPZ12 - ok
07:33:04.0020 0x13c8  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
07:33:04.0020 0x13c8  NetBIOS - ok
07:33:04.0068 0x13c8  [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
07:33:04.0083 0x13c8  netbt - ok
07:33:04.0083 0x13c8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon        C:\Windows\system32\lsass.exe
07:33:04.0099 0x13c8  Netlogon - ok
07:33:04.0146 0x13c8  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll
07:33:04.0161 0x13c8  Netman - ok
07:33:04.0208 0x13c8  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll
07:33:04.0224 0x13c8  netprofm - ok
07:33:04.0255 0x13c8  [ D6C4E4A39A36029AC0813D476FBD0248, A0907D98580D1CD3007365CBBB53E84BEF39001E05912776F68EB0564B54B6EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
07:33:04.0255 0x13c8  NetTcpPortSharing - ok
07:33:04.0286 0x13c8  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
07:33:04.0286 0x13c8  nfrd960 - ok
07:33:04.0333 0x13c8  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll
07:33:04.0348 0x13c8  NlaSvc - ok
07:33:04.0426 0x13c8  [ B9730495E0CF674680121E34BD95A73B, 1A3DD943B0EEA19A676175825CB135825ECF41404B59349AC9B1E6D137FA9B46 ] NPF             C:\Windows\system32\drivers\npf.sys
07:33:04.0426 0x13c8  NPF - ok
07:33:04.0473 0x13c8  [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
07:33:04.0473 0x13c8  Npfs - ok
07:33:04.0504 0x13c8  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll
07:33:04.0504 0x13c8  nsi - ok
07:33:04.0551 0x13c8  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
07:33:04.0551 0x13c8  nsiproxy - ok
07:33:04.0645 0x13c8  [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
07:33:04.0707 0x13c8  Ntfs - ok
07:33:04.0738 0x13c8  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
07:33:04.0738 0x13c8  ntrigdigi - ok
07:33:04.0785 0x13c8  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys
07:33:04.0785 0x13c8  Null - ok
07:33:05.0362 0x13c8  [ 204A01F718EA2349204AC353F525E7CC, C5907CE312A4F3B6C04448F0E0363715BD2A739323F479FBC2AF57151E00CFB2 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
07:33:05.0784 0x13c8  nvlddmkm - ok
07:33:05.0846 0x13c8  [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid          C:\Windows\system32\drivers\nvraid.sys
07:33:05.0846 0x13c8  nvraid - ok
07:33:05.0877 0x13c8  [ 9E0BA19A28C498A6D323D065DB76DFFC, EA9E33ED2820ED39932FAE114A9CF1D87780ED6605D0260A6F22F920B48F34E9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
07:33:05.0877 0x13c8  nvstor - ok
07:33:05.0940 0x13c8  [ D4F13A2A83C7FFDE44C939208408D3C4, 643CD794CC1322B21BEBF7C896978EE2EA439F9D01EB32EB598DEC64BFDD59BB ] nvsvc           C:\Windows\system32\nvvsvc.exe
07:33:05.0940 0x13c8  nvsvc - ok
07:33:05.0971 0x13c8  [ 055081FD5076401C1EE1BCAB08D81911, E6621F2D24E7E2544AFD249660F2D1026B94698CA841E79B3F1199ACB2203995 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
07:33:05.0971 0x13c8  nv_agp - ok
07:33:05.0986 0x13c8  NwlnkFlt - ok
07:33:06.0002 0x13c8  NwlnkFwd - ok
07:33:06.0033 0x13c8  [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
07:33:06.0033 0x13c8  ohci1394 - ok
07:33:06.0096 0x13c8  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
07:33:06.0096 0x13c8  ose - ok
07:33:06.0159 0x13c8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
07:33:06.0206 0x13c8  p2pimsvc - ok
07:33:06.0268 0x13c8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc          C:\Windows\system32\p2psvc.dll
07:33:06.0284 0x13c8  p2psvc - ok
07:33:06.0377 0x13c8  [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport         C:\Windows\system32\drivers\parport.sys
07:33:06.0377 0x13c8  Parport - ok
07:33:06.0424 0x13c8  [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
07:33:06.0424 0x13c8  partmgr - ok
07:33:06.0455 0x13c8  [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
07:33:06.0455 0x13c8  Parvdm - ok
07:33:06.0502 0x13c8  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll
07:33:06.0502 0x13c8  PcaSvc - ok
07:33:06.0549 0x13c8  [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci             C:\Windows\system32\drivers\pci.sys
07:33:06.0565 0x13c8  pci - ok
07:33:06.0580 0x13c8  [ 20B869152448F80AC49CF10264E91F5E, 619D0E191493B136811FFC717BBC778688D9E386E874AF5A7A6D805D0A5CD4C0 ] pciide          C:\Windows\system32\drivers\pciide.sys
07:33:06.0580 0x13c8  pciide - ok
07:33:06.0611 0x13c8  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
07:33:06.0611 0x13c8  pcmcia - ok
07:33:06.0658 0x13c8  [ 5B6C11DE7E839C05248CED8825470FEF, DB57DFD02C18461B1B383DF759730FFEE9C7FA8577E1679FD4740A590303EE79 ] pcouffin        C:\Windows\system32\Drivers\pcouffin.sys
07:33:06.0658 0x13c8  pcouffin - ok
07:33:06.0736 0x13c8  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
07:33:06.0783 0x13c8  PEAUTH - ok
07:33:06.0908 0x13c8  [ 9F2F541C52CD7A452E235E885F7D95DE, 9FFA4C13027191BE412B1F887F17427F21E75FB46A5F2D78FA65EB22D3C619FC ] Ph3xIB32        C:\Windows\system32\DRIVERS\Ph3xIB32.sys
07:33:06.0955 0x13c8  Ph3xIB32 - ok
07:33:07.0064 0x13c8  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll
07:33:07.0126 0x13c8  pla - ok
07:33:07.0189 0x13c8  [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
07:33:07.0204 0x13c8  PlugPlay - ok
07:33:07.0360 0x13c8  [ 65BC271F337637731D3C71455AE1F476, DAD32B61FE0147F8D2DA4C8F016920CD6BB2098F16E3CC2768009763E71DEFBC ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
07:33:07.0360 0x13c8  Pml Driver HPZ12 - ok
07:33:07.0438 0x13c8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
07:33:07.0469 0x13c8  PNRPAutoReg - ok
07:33:07.0532 0x13c8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
07:33:07.0547 0x13c8  PNRPsvc - ok
07:33:07.0610 0x13c8  [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
07:33:07.0625 0x13c8  PolicyAgent - ok
07:33:07.0688 0x13c8  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
07:33:07.0688 0x13c8  PptpMiniport - ok
07:33:07.0735 0x13c8  [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor       C:\Windows\system32\drivers\processr.sys
07:33:07.0735 0x13c8  Processor - ok
07:33:07.0781 0x13c8  [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc         C:\Windows\system32\profsvc.dll
07:33:07.0781 0x13c8  ProfSvc - ok
07:33:07.0797 0x13c8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
07:33:07.0813 0x13c8  ProtectedStorage - ok
07:33:07.0844 0x13c8  [ 64E413BA0C529AA40C3924BBCC4153DB, 9E0EB02078EE250AC618D4A4537D54BACDD7E2B67349162CA61F35EAF91601EE ] ProtexisLicensing C:\Windows\system32\PSIService.exe
07:33:07.0844 0x13c8  ProtexisLicensing - ok
07:33:07.0891 0x13c8  [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
07:33:07.0891 0x13c8  PSched - ok
07:33:07.0937 0x13c8  [ FEFFCFDC528764A04C8ED63D5FA6E711, BECC9174DA5860FCF011957CB6A12DE5074A770DC14076C0C94E63AD42ECF19E ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
07:33:07.0937 0x13c8  PxHelp20 - ok
07:33:07.0984 0x13c8  [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300          C:\Windows\system32\drivers\ql2300.sys
07:33:08.0078 0x13c8  ql2300 - ok
07:33:08.0171 0x13c8  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
07:33:08.0171 0x13c8  ql40xx - ok
07:33:08.0265 0x13c8  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll
07:33:08.0281 0x13c8  QWAVE - ok
07:33:08.0327 0x13c8  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
07:33:08.0327 0x13c8  QWAVEdrv - ok
07:33:08.0515 0x13c8  [ E642B131FB74CAF4BB8A014F31113142, 18A81B27FB2DA556AC51DBA8956203A6E821D75B2B09F11049250E732318F573 ] R300            C:\Windows\system32\DRIVERS\atikmdag.sys
07:33:08.0608 0x13c8  R300 - ok
07:33:08.0780 0x13c8  [ 70DBDAB246C18B78E2200D6401D038BE, 18395D084AA9BEAF9C20736C90063CE1F862AF3A80F7752DB4FC0D1870D9996D ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
07:33:08.0795 0x13c8  RapiMgr - ok
07:33:08.0842 0x13c8  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
07:33:08.0842 0x13c8  RasAcd - ok
07:33:08.0920 0x13c8  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll
07:33:08.0920 0x13c8  RasAuto - ok
07:33:08.0967 0x13c8  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
07:33:08.0967 0x13c8  Rasl2tp - ok
07:33:09.0029 0x13c8  [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan          C:\Windows\System32\rasmans.dll
07:33:09.0029 0x13c8  RasMan - ok
07:33:09.0076 0x13c8  [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
07:33:09.0076 0x13c8  RasPppoe - ok
07:33:09.0139 0x13c8  [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
07:33:09.0139 0x13c8  RasSstp - ok
07:33:09.0256 0x13c8  [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
07:33:09.0287 0x13c8  rdbss - ok
07:33:09.0365 0x13c8  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
07:33:09.0365 0x13c8  RDPCDD - ok
07:33:09.0459 0x13c8  [ 0245418224CFA77BF4B41C2FE0622258, 532A8ABB476A1723FDD25A12EA07C97F2588F24D0AE6F86C0105112A9AECCDB9 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
07:33:09.0459 0x13c8  rdpdr - ok
07:33:09.0505 0x13c8  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
07:33:09.0521 0x13c8  RDPENCDD - ok
07:33:09.0568 0x13c8  [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
07:33:09.0568 0x13c8  RDPWD - ok
07:33:09.0661 0x13c8  [ 89525CC2DBAD44F7199B9CC188B3F9C5, 09708EFA65BC1CCF92E6F2E143FCF88C645B1633AFE0DED833CDF945CB077D8C ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
07:33:09.0661 0x13c8  RealNetworks Downloader Resolver Service - ok
07:33:09.0724 0x13c8  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll
07:33:09.0724 0x13c8  RemoteAccess - ok
07:33:09.0771 0x13c8  [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
07:33:09.0771 0x13c8  RemoteRegistry - ok
07:33:09.0817 0x13c8  [ A780D3EAA74582EA1DEB6BD9C7A3D9C9, 9F66C47D49AADDC946C20945685C1B8BDFAF011D9CD840AC9F3130B5BA09946C ] rpcapd          C:\Program Files\WinPcap\rpcapd.exe
07:33:09.0817 0x13c8  rpcapd - ok
07:33:09.0849 0x13c8  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
07:33:09.0849 0x13c8  RpcLocator - ok
07:33:09.0911 0x13c8  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs           C:\Windows\system32\rpcss.dll
07:33:09.0927 0x13c8  RpcSs - ok
07:33:09.0973 0x13c8  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
07:33:09.0973 0x13c8  rspndr - ok
07:33:09.0973 0x13c8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs           C:\Windows\system32\lsass.exe
07:33:09.0989 0x13c8  SamSs - ok
07:33:10.0005 0x13c8  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
07:33:10.0020 0x13c8  sbp2port - ok
07:33:10.0067 0x13c8  [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
07:33:10.0067 0x13c8  SCardSvr - ok
07:33:10.0129 0x13c8  [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule        C:\Windows\system32\schedsvc.dll
07:33:10.0176 0x13c8  Schedule - ok
07:33:10.0192 0x13c8  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc     C:\Windows\System32\certprop.dll
07:33:10.0192 0x13c8  SCPolicySvc - ok
07:33:10.0239 0x13c8  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
07:33:10.0254 0x13c8  SDRSVC - ok
07:33:10.0270 0x13c8  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
07:33:10.0270 0x13c8  secdrv - ok
07:33:10.0301 0x13c8  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll
07:33:10.0301 0x13c8  seclogon - ok
07:33:10.0348 0x13c8  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\System32\sens.dll
07:33:10.0348 0x13c8  SENS - ok
07:33:10.0379 0x13c8  [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum         C:\Windows\system32\drivers\serenum.sys
07:33:10.0379 0x13c8  Serenum - ok
07:33:10.0410 0x13c8  [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial          C:\Windows\system32\drivers\serial.sys
07:33:10.0410 0x13c8  Serial - ok
07:33:10.0441 0x13c8  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
07:33:10.0441 0x13c8  sermouse - ok
07:33:10.0488 0x13c8  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll
07:33:10.0504 0x13c8  SessionEnv - ok
07:33:10.0519 0x13c8  [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
07:33:10.0519 0x13c8  sffdisk - ok
07:33:10.0535 0x13c8  [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
07:33:10.0551 0x13c8  sffp_mmc - ok
07:33:10.0566 0x13c8  [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
07:33:10.0566 0x13c8  sffp_sd - ok
07:33:10.0582 0x13c8  [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
07:33:10.0582 0x13c8  sfloppy - ok
07:33:10.0613 0x13c8  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
07:33:10.0629 0x13c8  SharedAccess - ok
07:33:10.0691 0x13c8  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
07:33:10.0707 0x13c8  ShellHWDetection - ok
07:33:10.0753 0x13c8  [ 08072B2FB92477FC813271A84B3A8698, A97ABDEB5E37F7B50DD6168FAAD524BE82418FC7818BB667C10951408FB6EB70 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
07:33:10.0769 0x13c8  sisagp - ok
07:33:10.0800 0x13c8  [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
07:33:10.0800 0x13c8  SiSRaid2 - ok
07:33:10.0863 0x13c8  [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
07:33:10.0863 0x13c8  SiSRaid4 - ok
07:33:11.0050 0x13c8  [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc           C:\Windows\system32\SLsvc.exe
07:33:11.0206 0x13c8  slsvc - ok
07:33:11.0299 0x13c8  [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify      C:\Windows\system32\SLUINotify.dll
07:33:11.0315 0x13c8  SLUINotify - ok
07:33:11.0362 0x13c8  [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb             C:\Windows\system32\DRIVERS\smb.sys
07:33:11.0377 0x13c8  Smb - ok
07:33:11.0455 0x13c8  [ 5CE1CF27620B144E212D407CDB14D339, 2F537E149682868D236E81DD695896682FD28EEA1E19BF94953E5BC533F1E9C7 ] snapman380      C:\Windows\system32\DRIVERS\snman380.sys
07:33:11.0455 0x13c8  snapman380 - ok
07:33:11.0487 0x13c8  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
07:33:11.0487 0x13c8  SNMPTRAP - ok
07:33:11.0533 0x13c8  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys
07:33:11.0533 0x13c8  spldr - ok
07:33:11.0596 0x13c8  [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler         C:\Windows\System32\spoolsv.exe
07:33:11.0611 0x13c8  Spooler - ok
07:33:11.0705 0x13c8  [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv             C:\Windows\system32\DRIVERS\srv.sys
07:33:11.0721 0x13c8  srv - ok
07:33:11.0814 0x13c8  [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
07:33:11.0814 0x13c8  srv2 - ok
07:33:11.0861 0x13c8  [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
07:33:11.0861 0x13c8  srvnet - ok
07:33:11.0908 0x13c8  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
07:33:11.0923 0x13c8  SSDPSRV - ok
07:33:11.0986 0x13c8  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll
07:33:12.0001 0x13c8  SstpSvc - ok
07:33:12.0064 0x13c8  [ AB2059AE6D9243C502C86824BC40439E, 20C452ED46A30D5E4E98C5E00305FCFD2AB3B359B88DF6EB07CDA51BAB42F58F ] STHDA           C:\Windows\system32\drivers\stwrt.sys
07:33:12.0111 0x13c8  STHDA - ok
07:33:12.0189 0x13c8  [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc          C:\Windows\System32\wiaservc.dll
07:33:12.0204 0x13c8  stisvc - ok
07:33:12.0220 0x13c8  stllssvr - ok
07:33:12.0251 0x13c8  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
07:33:12.0267 0x13c8  swenum - ok
07:33:12.0313 0x13c8  [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv           C:\Windows\System32\swprv.dll
07:33:12.0360 0x13c8  swprv - ok
07:33:12.0516 0x13c8  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
07:33:12.0516 0x13c8  Symc8xx - ok
07:33:12.0563 0x13c8  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
07:33:12.0579 0x13c8  Sym_hi - ok
07:33:12.0641 0x13c8  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
07:33:12.0641 0x13c8  Sym_u3 - ok
07:33:12.0735 0x13c8  [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain         C:\Windows\system32\sysmain.dll
07:33:12.0781 0x13c8  SysMain - ok
07:33:12.0828 0x13c8  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
07:33:12.0828 0x13c8  TabletInputService - ok
07:33:12.0875 0x13c8  [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv         C:\Windows\System32\tapisrv.dll
07:33:12.0891 0x13c8  TapiSrv - ok
07:33:12.0937 0x13c8  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll
07:33:12.0937 0x13c8  TBS - ok
07:33:13.0140 0x13c8  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
07:33:13.0561 0x13c8  Tcpip - ok
07:33:13.0702 0x13c8  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
07:33:13.0795 0x13c8  Tcpip6 - ok
07:33:13.0936 0x13c8  [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
07:33:13.0936 0x13c8  tcpipreg - ok
07:33:14.0107 0x13c8  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
07:33:14.0107 0x13c8  TDPIPE - ok
07:33:14.0185 0x13c8  [ BE7B1A73272648622B39BE3C610E3CA0, D1F7F02A1A12142E64D17F530BD119F70C086D62083C11DFBDDF8EB8F399C9AE ] tdrpman147      C:\Windows\system32\DRIVERS\tdrpm147.sys
07:33:14.0232 0x13c8  tdrpman147 - ok
07:33:14.0279 0x13c8  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
07:33:14.0279 0x13c8  TDTCP - ok
07:33:14.0326 0x13c8  [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
07:33:14.0326 0x13c8  tdx - ok
07:33:14.0357 0x13c8  [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
07:33:14.0357 0x13c8  TermDD - ok
07:33:14.0435 0x13c8  [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService     C:\Windows\System32\termsrv.dll
07:33:14.0466 0x13c8  TermService - ok
07:33:14.0529 0x13c8  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes          C:\Windows\system32\shsvcs.dll
07:33:14.0544 0x13c8  Themes - ok
07:33:14.0560 0x13c8  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll
07:33:14.0560 0x13c8  THREADORDER - ok
07:33:14.0591 0x13c8  [ 6DCB8DDB481CD3C40FA68593723B4D89, EE7D05C688C9FFBC1281E7152B5FC0AFC2CD21F778C6733E0F47024BF73E4A4D ] tifsfilter      C:\Windows\system32\DRIVERS\tifsfilt.sys
07:33:14.0591 0x13c8  tifsfilter - ok
07:33:14.0638 0x13c8  [ 394FC70B88B7958FA85798BBC76D140A, D8FCF01893B51FF8198A0CF2230226DBD9F66D928DA0856650D936A495EF432D ] timounter       C:\Windows\system32\DRIVERS\timntr.sys
07:33:14.0669 0x13c8  timounter - ok
07:33:14.0716 0x13c8  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll
07:33:14.0731 0x13c8  TrkWks - ok
07:33:14.0778 0x13c8  [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
07:33:14.0778 0x13c8  TrustedInstaller - ok
07:33:14.0841 0x13c8  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
07:33:14.0841 0x13c8  tssecsrv - ok
07:33:14.0903 0x13c8  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
07:33:14.0903 0x13c8  tunmp - ok
07:33:14.0934 0x13c8  [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
07:33:14.0934 0x13c8  tunnel - ok
07:33:14.0981 0x13c8  [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35          C:\Windows\system32\drivers\uagp35.sys
07:33:14.0981 0x13c8  uagp35 - ok
07:33:15.0028 0x13c8  [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
07:33:15.0043 0x13c8  udfs - ok
07:33:15.0090 0x13c8  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
07:33:15.0090 0x13c8  UI0Detect - ok
07:33:15.0137 0x13c8  [ 6D72EF05921ABDF59FC45C7EBFE7E8DD, 9102CB4B5E8B858B61DE1508C6A00D75584741891899966258E510173DBF7BB9 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
07:33:15.0137 0x13c8  uliagpkx - ok
07:33:15.0168 0x13c8  [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
07:33:15.0184 0x13c8  uliahci - ok
07:33:15.0215 0x13c8  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
07:33:15.0215 0x13c8  UlSata - ok
07:33:15.0246 0x13c8  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
07:33:15.0246 0x13c8  ulsata2 - ok
07:33:15.0293 0x13c8  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
07:33:15.0293 0x13c8  umbus - ok
07:33:15.0340 0x13c8  [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost        C:\Windows\System32\upnphost.dll
07:33:15.0355 0x13c8  upnphost - ok
07:33:15.0465 0x13c8  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
07:33:15.0465 0x13c8  USBAAPL - ok
07:33:15.0527 0x13c8  [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
07:33:15.0527 0x13c8  usbaudio - ok
07:33:15.0558 0x13c8  [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
07:33:15.0574 0x13c8  usbccgp - ok
07:33:15.0621 0x13c8  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
07:33:15.0714 0x13c8  usbcir - ok
07:33:15.0839 0x13c8  [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
07:33:15.0855 0x13c8  usbehci - ok
07:33:15.0886 0x13c8  [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
07:33:15.0886 0x13c8  usbhub - ok
07:33:15.0917 0x13c8  [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci         C:\Windows\system32\drivers\usbohci.sys
07:33:15.0933 0x13c8  usbohci - ok
07:33:15.0948 0x13c8  [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
07:33:15.0964 0x13c8  usbprint - ok
07:33:15.0995 0x13c8  [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
07:33:15.0995 0x13c8  usbscan - ok
07:33:16.0042 0x13c8  [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:33:16.0042 0x13c8  USBSTOR - ok
07:33:16.0104 0x13c8  [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
07:33:16.0104 0x13c8  usbuhci - ok
07:33:16.0151 0x13c8  [ 228F444F9AF0D3B9ECA9FC3F4FEB12F2, D29C9A0ED5602BCD529A0D7F538DFA8771B1CAC6F433AA686C3A4917DC596369 ] usb_rndisx      C:\Windows\system32\DRIVERS\usb8023x.sys
07:33:16.0151 0x13c8  usb_rndisx - ok
07:33:16.0245 0x13c8  [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms           C:\Windows\System32\uxsms.dll
07:33:16.0291 0x13c8  UxSms - ok
07:33:16.0510 0x13c8  [ FCE98C43B5C5DB8E0DA8EA0E2B45E044, 0F6F3FF106015580009776A1F91FD10371BAF229A2A773436A5783F142CC1A0C ] VClone          C:\Windows\system32\DRIVERS\VClone.sys
07:33:16.0541 0x13c8  VClone - ok
07:33:16.0713 0x13c8  [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds             C:\Windows\System32\vds.exe
07:33:16.0759 0x13c8  vds - ok
07:33:16.0853 0x13c8  [ 7D92BE0028ECDEDEC74617009084B5EF, D0749CE6FA3415BA4364299F8D6D53F133E8D2F44C6F1057996243415A540A53 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
07:33:16.0884 0x13c8  vga - ok
07:33:16.0931 0x13c8  [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave         C:\Windows\System32\drivers\vga.sys
07:33:16.0931 0x13c8  VgaSave - ok
07:33:16.0962 0x13c8  [ D5929A28BDFF4367A12CAF06AF901971, DE2A60A9EE1ABACEE6221E4AD5D4AA4CBA12FED448EB36CA3B7A9A5F09A8DC8C ] viaagp          C:\Windows\system32\drivers\viaagp.sys
07:33:16.0962 0x13c8  viaagp - ok
07:33:16.0993 0x13c8  [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7           C:\Windows\system32\drivers\viac7.sys
07:33:17.0009 0x13c8  ViaC7 - ok
07:33:17.0040 0x13c8  [ 58C8D5AC5C3EEF40E7E704A5CED7987D, 247188A1579C02656696AB46A3762E64E642CEBA1F549BB144881877F895D11D ] viaide          C:\Windows\system32\drivers\viaide.sys
07:33:17.0040 0x13c8  viaide - ok
07:33:17.0071 0x13c8  [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
07:33:17.0071 0x13c8  volmgr - ok
07:33:17.0181 0x13c8  [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
07:33:17.0196 0x13c8  volmgrx - ok
07:33:17.0274 0x13c8  [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
07:33:17.0290 0x13c8  volsnap - ok
07:33:17.0368 0x13c8  [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
07:33:17.0383 0x13c8  vsmraid - ok
07:33:17.0477 0x13c8  [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS             C:\Windows\system32\vssvc.exe
07:33:17.0508 0x13c8  VSS - ok
07:33:17.0602 0x13c8  [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time         C:\Windows\system32\w32time.dll
07:33:17.0617 0x13c8  W32Time - ok
07:33:17.0664 0x13c8  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
07:33:17.0664 0x13c8  WacomPen - ok
07:33:17.0742 0x13c8  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
07:33:17.0758 0x13c8  Wanarp - ok
07:33:17.0773 0x13c8  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
07:33:17.0773 0x13c8  Wanarpv6 - ok
07:33:17.0914 0x13c8  [ 779F9C90D3FE9C70B6FFD8EF035F3E83, 4E38026BA53139B4A10D5E8F00413FAF442A2A42FE1388FCF2155F07BE826750 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
07:33:17.0961 0x13c8  WcesComm - ok
07:33:18.0054 0x13c8  [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
07:33:18.0085 0x13c8  wcncsvc - ok
07:33:18.0117 0x13c8  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
07:33:18.0117 0x13c8  WcsPlugInService - ok
07:33:18.0163 0x13c8  [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd              C:\Windows\system32\drivers\wd.sys
07:33:18.0163 0x13c8  Wd - ok
07:33:18.0226 0x13c8  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
07:33:18.0241 0x13c8  Wdf01000 - ok
07:33:18.0304 0x13c8  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost  C:\Windows\system32\wdi.dll
07:33:18.0319 0x13c8  WdiServiceHost - ok
07:33:18.0335 0x13c8  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost   C:\Windows\system32\wdi.dll
07:33:18.0351 0x13c8  WdiSystemHost - ok
07:33:18.0398 0x13c8  [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient       C:\Windows\System32\webclnt.dll
07:33:18.0414 0x13c8  WebClient - ok
07:33:18.0476 0x13c8  [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
07:33:18.0492 0x13c8  Wecsvc - ok
07:33:18.0554 0x13c8  [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport   C:\Windows\System32\wercplsupport.dll
07:33:18.0554 0x13c8  wercplsupport - ok
07:33:18.0617 0x13c8  [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc          C:\Windows\System32\WerSvc.dll
07:33:18.0632 0x13c8  WerSvc - ok
07:33:18.0695 0x13c8  [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
07:33:18.0710 0x13c8  WinDefend - ok
07:33:18.0726 0x13c8  WinHttpAutoProxySvc - ok
07:33:18.0820 0x13c8  [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
07:33:18.0835 0x13c8  Winmgmt - ok
07:33:18.0944 0x13c8  [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM           C:\Windows\system32\WsmSvc.dll
07:33:19.0007 0x13c8  WinRM - ok
07:33:19.0054 0x13c8  [ 676F4B665BDD8053EAA53AC1695B8074, 98521FCB6B6B33DD8BF38A703745053481681C7981DFE5A59116D6BDE187D6F6 ] winusb          C:\Windows\system32\DRIVERS\winusb.sys
07:33:19.0054 0x13c8  winusb - ok
07:33:19.0116 0x13c8  [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc         C:\Windows\System32\wlansvc.dll
07:33:19.0147 0x13c8  Wlansvc - ok
07:33:19.0178 0x13c8  [ 701A9F884A294327E9141D73746EE279, C8A46B8C32F9EAC7848D385473F6B5C4B6DA719A941A75AD5F081757FC07A09D ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
07:33:19.0178 0x13c8  WmiAcpi - ok
07:33:19.0225 0x13c8  [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
07:33:19.0225 0x13c8  wmiApSrv - ok
07:33:19.0319 0x13c8  [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
07:33:19.0334 0x13c8  WMPNetworkSvc - ok
07:33:19.0397 0x13c8  [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
07:33:19.0412 0x13c8  WPCSvc - ok
07:33:19.0444 0x13c8  [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
07:33:19.0459 0x13c8  WPDBusEnum - ok
07:33:19.0506 0x13c8  [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
07:33:19.0522 0x13c8  WpdUsb - ok
07:33:19.0646 0x13c8  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
07:33:19.0693 0x13c8  WPFFontCache_v0400 - ok
07:33:19.0756 0x13c8  [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
07:33:19.0756 0x13c8  ws2ifsl - ok
07:33:19.0802 0x13c8  [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc          C:\Windows\System32\wscsvc.dll
07:33:19.0818 0x13c8  wscsvc - ok
07:33:19.0818 0x13c8  WSearch - ok
07:33:19.0990 0x13c8  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
07:33:20.0146 0x13c8  wuauserv - ok
07:33:20.0255 0x13c8  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
07:33:20.0270 0x13c8  WudfPf - ok
07:33:20.0317 0x13c8  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
07:33:20.0317 0x13c8  WUDFRd - ok
07:33:20.0364 0x13c8  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
07:33:20.0380 0x13c8  wudfsvc - ok
07:33:20.0426 0x13c8  ================ Scan global ===============================
07:33:20.0473 0x13c8  [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
07:33:20.0551 0x13c8  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
07:33:20.0629 0x13c8  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
07:33:20.0785 0x13c8  [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
07:33:20.0801 0x13c8  [ Global ] - ok
07:33:20.0801 0x13c8  ================ Scan MBR ==================================
07:33:20.0894 0x13c8  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
07:33:24.0077 0x13c8  \Device\Harddisk0\DR0 - ok
07:33:24.0092 0x13c8  [ E5FA06ACA0D60BA9C870D0EF3D9898C9 ] \Device\Harddisk2\DR3
07:33:24.0186 0x13c8  \Device\Harddisk2\DR3 - ok
07:33:24.0186 0x13c8  ================ Scan VBR ==================================
07:33:24.0186 0x13c8  [ 3AF7046AD783CDC6A49C13A2A6AA261C ] \Device\Harddisk0\DR0\Partition1
07:33:24.0202 0x13c8  \Device\Harddisk0\DR0\Partition1 - ok
07:33:24.0217 0x13c8  [ 7ADFEFF5BAA2124366B0E7BF00DB30E3 ] \Device\Harddisk0\DR0\Partition2
07:33:24.0233 0x13c8  \Device\Harddisk0\DR0\Partition2 - ok
07:33:24.0233 0x13c8  [ 4A1CDA4A0397B8F0BFFF4E6FFEB2DC4E ] \Device\Harddisk2\DR3\Partition1
07:33:24.0233 0x13c8  \Device\Harddisk2\DR3\Partition1 - ok
07:33:24.0233 0x13c8  Waiting for KSN requests completion. In queue: 50
07:33:25.0247 0x13c8  Waiting for KSN requests completion. In queue: 50
07:33:26.0261 0x13c8  Waiting for KSN requests completion. In queue: 50
07:33:27.0384 0x13c8  AV detected via SS2: McAfee Anti-Virus and Anti-Spyware, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 12.8.0.0 ), 0x51000 ( enabled : updated )
07:33:27.0384 0x13c8  FW detected via SS2: McAfee Firewall, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 12.8.0.0 ), 0x51010 ( enabled )
07:33:30.0006 0x13c8  ============================================================
07:33:30.0006 0x13c8  Scan finished
07:33:30.0006 0x13c8  ============================================================
07:33:30.0021 0x0d60  Detected object count: 0
07:33:30.0021 0x0d60  Actual detected object count: 0



#4 tombrown

tombrown
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 08 January 2014 - 12:53 PM

Now ran AdwCleaner, I had to "scan" before it would allow me to "clean". It did not create the log file you suggest. It did however create two logfiles in C:/AdwCleaner which were AdwCleaner[R0].txt and AdwCleaner[S0].txt, pasted as follows :

 

AdwCleaner[R0].txt: -

 

# AdwCleaner v3.016 - Report created 08/01/2014 at 17:36:24
# Updated 23/12/2013 by Xplode
# Operating System : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# Username : TomJussie - TOMJUSSIE-PC
# Running from : C:\Users\TomJussie\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Found C:\Program Files\iMesh Applications
Folder Found C:\Users\Jason\AppData\Roaming\Babylon
Folder Found C:\Users\Jussie\AppData\Local\iMesh
Folder Found C:\Users\Jussie\AppData\Local\PackageAware
Folder Found C:\Users\Jussie\Documents\iMesh
Folder Found C:\Users\TomJussie\AppData\Local\PackageAware

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Found : HKLM\SOFTWARE\Classes\driverscanner
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A59}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Found : HKLM\Software\systweak
Key Found : HKLM\Software\Uniblue

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16526


*************************

AdwCleaner[R0].txt - [1841 octets] - [08/01/2014 17:36:24]

########## EOF - \AdwCleaner\AdwCleaner[R0].txt - [1901 octets] ##########
 

 

AdwCleaner[s0].txt:-

 

# AdwCleaner v3.016 - Report created 08/01/2014 at 17:39:23
# Updated 23/12/2013 by Xplode
# Operating System : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# Username : TomJussie - TOMJUSSIE-PC
# Running from : C:\Users\TomJussie\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files\iMesh Applications
Folder Deleted : C:\Users\TomJussie\AppData\Local\PackageAware
Folder Deleted : C:\Users\Jason\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Jussie\AppData\Local\iMesh
Folder Deleted : C:\Users\Jussie\AppData\Local\PackageAware
Folder Deleted : C:\Users\Jussie\Documents\iMesh

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\driverscanner
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A59}
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\Software\Uniblue
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16526


*************************

AdwCleaner[R0].txt - [1979 octets] - [08/01/2014 17:36:24]
AdwCleaner[S0].txt - [1950 octets] - [08/01/2014 17:39:23]

########## EOF - \AdwCleaner\AdwCleaner[S0].txt - [2010 octets] ##########
 


Edited by tombrown, 08 January 2014 - 12:55 PM.


#5 tombrown

tombrown
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 08 January 2014 - 12:59 PM

Junkware Removal logfile :-

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows Vista ™ Home Premium x86
Ran by SYSTEM on 08/01/2014 at 17:49:32.44
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\\Software\Microsoft\Internet Explorer\Main\\Start Page



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\barbroker.bdbroker
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{35e9438f-19d4-4516-b2ac-59ba9241de4d}



~~~ Files

Successfully deleted: [File] C:\Windows\Tasks\regwork.job



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\regwork"
Successfully deleted: [Folder] "C:\Program Files\regwork"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 08/01/2014 at 17:57:38.42
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#6 tombrown

tombrown
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 08 January 2014 - 01:01 PM

FSS Log:-

 

Farbar Service Scanner Version: 05-12-2013
Ran by TomJussie (administrator) on 08-01-2014 at 17:59:42
Running from "C:\Users\TomJussie\Desktop"
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is OK.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\iphlpsvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****



#7 tombrown

tombrown
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 08 January 2014 - 01:06 PM

Rebooted the PC after running all those & problem still exists as described in the OP. I didn't expect this to fix it, but hopefully the above data will help you advise me on next steps.

 

I really appreciate your help, as I know this is all voluntary :)



#8 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:09:34 AM

Posted 08 January 2014 - 05:49 PM

Please download Malwarebytes Anti-Malware
and save it to your desktop.MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • Make sure you are connected to the Internet.
  • Double-click on mbam-setup.exe to install the application.
    For instructions with screenshots, please refer to the How to use Malwarebytes' Anti-Malware Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • When installation has finished, make sure you leave both of these checked:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
MBAM will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
On the Scanner tab:
  • Make sure the "Perform Full Scan" option is selected.
  • Then click on the Scan button.
  • If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
  • The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  • When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen:
  • Click on the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked, and click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.
  • Exit MBAM when done.
Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.

#9 tombrown

tombrown
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 09 January 2014 - 01:56 AM

When installing MBAM I get an Error message :

 

Error creating registry key:

HKEY_CURRENT_USER\Software\Malwarebytes' ANti-Malware

 

RegCreateKeyEx failed; code 5,

Access is denied.

 

I skipped this step & have kicked off a scan before I leave for work, but suspect this may be critical ,...



#10 tombrown

tombrown
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 09 January 2014 - 11:34 AM

Here is the MBAM log :-

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.09.01

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
TomJussie :: TOMJUSSIE-PC [administrator]

09/01/2014 06:56:04
mbam-log-2014-01-09 (06-56-04).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 539868
Time elapsed: 3 hour(s), 7 minute(s), 8 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKLM\SOFTWARE\MyScrapNook_12 (PUP.Optional.MyScrapNook.A) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 5
C:\ProgramData\Alwil Software\Avast5\arpot\TEMP\01CC718697CE8C10 (PUP.Optional.Inbox) -> Quarantined and deleted successfully.
C:\Users\Jason\Downloads\SoftonicDownloader_for_fifa-12.exe (PUP.Optional.Softonic.A) -> Quarantined and deleted successfully.
C:\Users\TomJussie\Documents\My Music\My Music.url (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Users\TomJussie\Documents\My Pictures\My Pictures.url (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Users\TomJussie\Documents\My Videos\My Video.url (Trojan.Zlob) -> Quarantined and deleted successfully.

(end)
 



#11 tombrown

tombrown
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 10 January 2014 - 10:33 AM

I just fixed the registry issue following steps similar to those identified here - https://forums.malwarebytes.org/index.php?showtopic=71421 and reinstalled MWB without errors

 

Running MWB scan again, will post log in a few hours


Edited by tombrown, 10 January 2014 - 10:51 AM.


#12 tombrown

tombrown
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 10 January 2014 - 01:21 PM

MBAM scan finished, this time nothing found, so the registry thign does not seem to have been an issue

 

Log :-

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.01.10.05

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
TomJussie :: TOMJUSSIE-PC [administrator]

10/01/2014 15:31:54
mbam-log-2014-01-10 (15-31-54).txt

Scan type: Full scan (C:\|D:\|E:\|F:\|H:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 540645
Time elapsed: 2 hour(s), 39 minute(s), 49 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


Edited by tombrown, 10 January 2014 - 01:24 PM.


#13 tombrown

tombrown
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 10 January 2014 - 01:28 PM

The theme issue now seems to have gone - I have reset my theme to a regular Vista one

 

However the switch user issue still persists - I cannot switch back into my session after i switch user to my wife's login. It just returns me to the login page every time. However switching between my wifes & kids login sessions is no problem at all



#14 tombrown

tombrown
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 13 January 2014 - 03:50 AM

Any further ideas?



#15 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:09:34 AM

Posted 13 January 2014 - 06:30 PM

Is quick user switching service running in Services via Administrative Tools in Control Panel?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users