Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

i believe my XP PC is infected


  • Please log in to reply
19 replies to this topic

#1 meketrik

meketrik

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:08:49 PM

Posted 26 January 2014 - 02:09 PM

Hello,

My WIndows XP computer runs very slow when connected to the internet and something keeps disabling my Norton 360 AV software. I have run a few scan tools but not cleaned anything. ASWMBR finds DLADResN.sys SUSPICIOUS. I have also received notices from my internet provider that I have a bot.

 

Any help appreciated.

Thanks


Edited by meketrik, 26 January 2014 - 02:26 PM.


BC AdBot (Login to Remove)

 


#2 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:01:49 AM

Posted 26 January 2014 - 02:41 PM

Please download TDSSKiller exe version to your desktop. Double-click on TDSSKiller.exe to run the tool for known TDSS variants. Vista/Windows 7 users right-click and select Run As Administrator.

  •     Click on Change Parameters and click Detect TDLFS File System.
  •     Click the Start Scan button.
  •     Do not use the computer during the scan
  •     If the scan completes with nothing found, click Close to exit.
  •     If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  •     Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
  •     Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  •     A TDSSKiller text file would be saved in Local Disk C.
  •     Copy and paste the contents of that file in your next reply.
ADW Cleaner


Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Clean.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


#3 meketrik

meketrik
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:08:49 PM

Posted 26 January 2014 - 03:45 PM

14:43:30.0921 0x12b8  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
14:43:52.0343 0x12b8  ============================================================
14:43:52.0343 0x12b8  Current date / time: 2014/01/26 14:43:52.0343
14:43:52.0343 0x12b8  SystemInfo:
14:43:52.0343 0x12b8  
14:43:52.0343 0x12b8  OS Version: 5.1.2600 ServicePack: 3.0
14:43:52.0343 0x12b8  Product type: Workstation
14:43:52.0343 0x12b8  ComputerName: MC1
14:43:52.0343 0x12b8  UserName: Administrator
14:43:52.0343 0x12b8  Windows directory: C:\WINDOWS
14:43:52.0343 0x12b8  System windows directory: C:\WINDOWS
14:43:52.0343 0x12b8  Processor architecture: Intel x86
14:43:52.0343 0x12b8  Number of processors: 2
14:43:52.0343 0x12b8  Page size: 0x1000
14:43:52.0343 0x12b8  Boot type: Normal boot
14:43:52.0343 0x12b8  ============================================================
14:43:52.0687 0x12b8  KLMD registered as C:\WINDOWS\system32\drivers\35316734.sys
14:43:52.0859 0x12b8  System UUID: {B39FA187-5A62-408A-ED25-2FDB8B96219C}
14:43:53.0671 0x12b8  Drive \Device\Harddisk0\DR0 - Size: 0x7470900000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
14:43:53.0703 0x12b8  ============================================================
14:43:53.0703 0x12b8  \Device\Harddisk0\DR0:
14:43:53.0703 0x12b8  MBR partitions:
14:43:53.0703 0x12b8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x2B14C0FF
14:43:53.0703 0x12b8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2B163985, BlocksNum 0xE8D471D
14:43:53.0703 0x12b8  ============================================================
14:43:53.0734 0x12b8  C: <-> \Device\Harddisk0\DR0\Partition1
14:43:53.0781 0x12b8  D: <-> \Device\Harddisk0\DR0\Partition2
14:43:53.0781 0x12b8  ============================================================
14:43:53.0781 0x12b8  Initialize success
14:43:53.0781 0x12b8  ============================================================
14:44:06.0984 0x1310  ============================================================
14:44:06.0984 0x1310  Scan started
14:44:06.0984 0x1310  Mode: Manual; TDLFS;
14:44:06.0984 0x1310  ============================================================
14:44:06.0984 0x1310  KSN ping started
14:44:07.0031 0x1310  KSN ping finished: false
14:44:07.0281 0x1310  ================ Scan system memory ========================
14:44:07.0296 0x1310  System memory - ok
14:44:07.0296 0x1310  ================ Scan services =============================
14:44:07.0406 0x1310  Abiosdsk - ok
14:44:07.0437 0x1310  [ 6ABB91494FE6C59089B9336452AB2EA3, FA28396820E44F991891042E051A4414485B54D456F252E03E3FFE1B4B4CF843 ] abp480n5        C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
14:44:07.0437 0x1310  abp480n5 - ok
14:44:07.0640 0x1310  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:44:07.0656 0x1310  ACPI - ok
14:44:07.0671 0x1310  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
14:44:07.0671 0x1310  ACPIEC - ok
14:44:07.0765 0x1310  [ 177FF6608B48638D4066726F3A3F8444, D0D7B7EAEFDF30210CE4D31E9C7AB349CEB862A452D5925E698B60204AAE8A49 ] AdobeActiveFileMonitor5.0 C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
14:44:07.0765 0x1310  AdobeActiveFileMonitor5.0 - ok
14:44:07.0781 0x1310  [ 9A11864873DA202C996558B2106B0BBC, 4C68F1DBD1541291DD0FAB78DB42B25FA051CD9F55ED869173E3219CD31500C4 ] adpu160m        C:\WINDOWS\system32\DRIVERS\adpu160m.sys
14:44:07.0781 0x1310  adpu160m - ok
14:44:07.0812 0x1310  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
14:44:07.0828 0x1310  aec - ok
14:44:07.0843 0x1310  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
14:44:07.0859 0x1310  AFD - ok
14:44:07.0875 0x1310  [ 08FD04AA961BDC77FB983F328334E3D7, A784EC8A9EDB579262366B5A9AB177DB7BEC0A421BDE85431D0AD4959D5AF5E7 ] agp440          C:\WINDOWS\system32\DRIVERS\agp440.sys
14:44:07.0875 0x1310  agp440 - ok
14:44:07.0890 0x1310  [ 03A7E0922ACFE1B07D5DB2EEB0773063, 93EEA872A5642C95FF19C81F8EFFB9B52742A14DBF138784F0F713AD18C413ED ] agpCPQ          C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
14:44:07.0890 0x1310  agpCPQ - ok
14:44:07.0921 0x1310  [ C23EA9B5F46C7F7910DB3EAB648FF013, 92C84E9AF278A3B55D56C4F8E6C10E3EF1F7B336A44A018AED6DC51A46671F0B ] Aha154x         C:\WINDOWS\system32\DRIVERS\aha154x.sys
14:44:07.0921 0x1310  Aha154x - ok
14:44:07.0937 0x1310  [ 19DD0FB48B0C18892F70E2E7D61A1529, 95BA1568E8E08314508CA0E1F95555891E70399AEC312C793B46A841F56FFDCF ] aic78u2         C:\WINDOWS\system32\DRIVERS\aic78u2.sys
14:44:07.0937 0x1310  aic78u2 - ok
14:44:07.0953 0x1310  [ B7FE594A7468AA0132DEB03FB8E34326, BF0DC2B8C474DB151589BA9968264413521DDD9E7316B752B2FA40C24200FBE0 ] aic78xx         C:\WINDOWS\system32\DRIVERS\aic78xx.sys
14:44:07.0953 0x1310  aic78xx - ok
14:44:07.0984 0x1310  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
14:44:07.0984 0x1310  Alerter - ok
14:44:08.0015 0x1310  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             C:\WINDOWS\System32\alg.exe
14:44:08.0015 0x1310  ALG - ok
14:44:08.0031 0x1310  [ 1140AB9938809700B46BB88E46D72A96, 369379ECC5941ACE984A7F31EAABB66A2E693EDBADA639B86D26FD681D45608E ] AliIde          C:\WINDOWS\system32\DRIVERS\aliide.sys
14:44:08.0031 0x1310  AliIde - ok
14:44:08.0062 0x1310  [ CB08AED0DE2DD889A8A820CD8082D83C, B1A9D493390AEDF6EFF8BCAA3B33EC31758452AB497C34C0728CDDA1D8DCBF2A ] alim1541        C:\WINDOWS\system32\DRIVERS\alim1541.sys
14:44:08.0062 0x1310  alim1541 - ok
14:44:08.0078 0x1310  [ 95B4FB835E28AA1336CEEB07FD5B9398, 36CD3B14EF78B01FB653B78187FAA63C4DD5F4137AC3B91D81256A350EEDCBC1 ] amdagp          C:\WINDOWS\system32\DRIVERS\amdagp.sys
14:44:08.0078 0x1310  amdagp - ok
14:44:08.0093 0x1310  [ 79F5ADD8D24BD6893F2903A3E2F3FAD6, 9B179F0B6A559639D3AE3975CEBF2718294BE5743517BEE06586F0D258164C81 ] amsint          C:\WINDOWS\system32\DRIVERS\amsint.sys
14:44:08.0093 0x1310  amsint - ok
14:44:08.0140 0x1310  [ D9B99EC3C1CE74D1A451B349255C69EF, 93795021B28DAB6E193468A68925ED061860437CD86875673C45071178A198CC ] Angel           C:\WINDOWS\system32\DRIVERS\Angel.sys
14:44:08.0187 0x1310  Angel - ok
14:44:08.0265 0x1310  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:44:08.0265 0x1310  Apple Mobile Device - ok
14:44:08.0312 0x1310  [ D8849F77C0B66226335A59D26CB4EDC6, 4990031453204C57E36E850252A39B05D6ECDAB9E71A8136FB4900F17E59C9CA ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
14:44:08.0328 0x1310  AppMgmt - ok
14:44:08.0343 0x1310  [ 62D318E9A0C8FC9B780008E724283707, 1A69806AB2BDECCEB5EB23A80700B3F98983D5D67F78839CBF269087FA460757 ] asc             C:\WINDOWS\system32\DRIVERS\asc.sys
14:44:08.0359 0x1310  asc - ok
14:44:08.0375 0x1310  [ 69EB0CC7714B32896CCBFD5EDCBEA447, 1CB506B5F71F84EFD26961010681D0A79AA7B266573378E3D2755125DF5D6BB6 ] asc3350p        C:\WINDOWS\system32\DRIVERS\asc3350p.sys
14:44:08.0375 0x1310  asc3350p - ok
14:44:08.0390 0x1310  [ 5D8DE112AA0254B907861E9E9C31D597, 557C93E82A71131D226267151C84B197503831A16263DDFE040E996B605CA9E8 ] asc3550         C:\WINDOWS\system32\DRIVERS\asc3550.sys
14:44:08.0390 0x1310  asc3550 - ok
14:44:08.0421 0x1310  [ D880831279ED91F9A4190A2DB9539EA9, EAF7D48E026C99EE9C4BC838A3004966517F948051B39DA5B5072F6DE81165AB ] ASCTRM          C:\WINDOWS\system32\drivers\ASCTRM.sys
14:44:08.0421 0x1310  ASCTRM - ok
14:44:08.0578 0x1310  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
14:44:08.0656 0x1310  aspnet_state - ok
14:44:08.0687 0x1310  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:44:08.0687 0x1310  AsyncMac - ok
14:44:08.0718 0x1310  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
14:44:08.0734 0x1310  atapi - ok
14:44:08.0734 0x1310  Atdisk - ok
14:44:08.0781 0x1310  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:44:08.0781 0x1310  Atmarpc - ok
14:44:08.0812 0x1310  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
14:44:08.0828 0x1310  AudioSrv - ok
14:44:08.0859 0x1310  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
14:44:08.0859 0x1310  audstub - ok
14:44:08.0906 0x1310  [ AE9560C298D847AEF346BDD5FAD3B0E3, 75EA520E92160C7078036C5E01613BD4FC8FAC8FEF70BBFF84410B0678696829 ] Automatic LiveUpdate Scheduler C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
14:44:08.0921 0x1310  Automatic LiveUpdate Scheduler - ok
14:44:08.0953 0x1310  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
14:44:08.0968 0x1310  Beep - ok
14:44:09.0187 0x1310  [ B7150272AADDCC6F0EFDB8BEF1CD7376, 9FA3E9AD868F48917BDDBEA7E57FED7DCA699DDC751936CD03864D6D01FB2F7A ] BHDrvx86        C:\Program Files\Norton 360\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20131218.001\BHDrvx86.sys
14:44:09.0203 0x1310  BHDrvx86 - ok
14:44:09.0265 0x1310  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            C:\WINDOWS\system32\qmgr.dll
14:44:09.0281 0x1310  BITS - ok
14:44:09.0343 0x1310  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:44:09.0359 0x1310  Bonjour Service - ok
14:44:09.0375 0x1310  [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser         C:\WINDOWS\System32\browser.dll
14:44:09.0390 0x1310  Browser - ok
14:44:09.0390 0x1310  bvrp_pci - ok
14:44:09.0437 0x1310  [ CBA8BCE5BF67A3C619D5CE540BED9CF7, FBA240B937FA00F306F50966029C31C8DDC5C865849F4BC0A9299DAF578FA2A6 ] CamDrL          C:\WINDOWS\system32\DRIVERS\Camdrl.sys
14:44:09.0453 0x1310  CamDrL - ok
14:44:09.0468 0x1310  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf           C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
14:44:09.0468 0x1310  cbidf - ok
14:44:09.0468 0x1310  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
14:44:09.0468 0x1310  cbidf2k - ok
14:44:09.0484 0x1310  [ 0BE5AEF125BE881C4F854C554F2B025C, 1770DD70B3F115A0EF460907DEDC1E4B7241C08615A98F194D61A49C3E2BAA54 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
14:44:09.0500 0x1310  CCDECODE - ok
14:44:09.0593 0x1310  [ 09FFA9C63DD0E33684D6F5CDC71CD1C0, 4FFB01944663D325D58F99B4C345A0DB22708DCC814C032A766031E23103C1B8 ] ccPwdSvc        C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
14:44:09.0593 0x1310  ccPwdSvc - ok
14:44:09.0640 0x1310  [ 2F237AAB91497AAA03AF48EAE68758FC, 0701229112148F5A902FAFE3282192CAA89F50D7DF2AD9EF2AA5FE63DE9403A5 ] ccSetMgr        C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
14:44:09.0656 0x1310  ccSetMgr - ok
14:44:09.0765 0x1310  [ 56C2811FD0D7B727808A69407B5BFAE0, 5F84A29A9E6D8F566F95399F3B41A82DD128EA69678BBBCF75AD914DE70D9A74 ] ccSet_N360      C:\WINDOWS\system32\drivers\N360\1501000.012\ccSetx86.sys
14:44:09.0765 0x1310  ccSet_N360 - ok
14:44:09.0781 0x1310  [ F3EC03299634490E97BBCE94CD2954C7, CDC85ADA27E0D501581CE6F28D7E1941E90411FA8E8F2C43A68BAA8CB78E85DD ] cd20xrnt        C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
14:44:09.0781 0x1310  cd20xrnt - ok
14:44:09.0812 0x1310  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
14:44:09.0812 0x1310  Cdaudio - ok
14:44:09.0843 0x1310  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
14:44:09.0843 0x1310  Cdfs - ok
14:44:09.0859 0x1310  [ 1479489B3C147CA0EC2687DB6E7F0B3E, C1EB24F3E2DCD0A573D1D6ED1AD0C937103905595B75D7DB0DD635E14112467F ] CdpPacket       C:\WINDOWS\system32\DRIVERS\CdpPacket.sys
14:44:09.0875 0x1310  CdpPacket - ok
14:44:09.0890 0x1310  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:44:09.0890 0x1310  Cdrom - ok
14:44:09.0890 0x1310  Changer - ok
14:44:09.0937 0x1310  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
14:44:09.0937 0x1310  CiSvc - ok
14:44:09.0953 0x1310  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
14:44:09.0953 0x1310  ClipSrv - ok
14:44:10.0000 0x1310  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:44:10.0046 0x1310  clr_optimization_v2.0.50727_32 - ok
14:44:10.0078 0x1310  [ E5DCB56C533014ECBC556A8357C929D5, B2915C0C07EDBA59C5D02680804C4C2DE099D73DE0D0DD0CDA748F34F11057E0 ] CmdIde          C:\WINDOWS\system32\DRIVERS\cmdide.sys
14:44:10.0078 0x1310  CmdIde - ok
14:44:10.0093 0x1310  COMSysApp - ok
14:44:10.0093 0x1310  [ 3EE529119EED34CD212A215E8C40D4B6, A6B71F3D4EE7358CA85F010E6271A6B72226D25DF30ED331DA830639ED3E9903 ] Cpqarray        C:\WINDOWS\system32\DRIVERS\cpqarray.sys
14:44:10.0109 0x1310  Cpqarray - ok
14:44:10.0140 0x1310  [ 3C8B6609712F4FF78E521F6DCFC4032B, DFCFD5F2D35DDA25DD91B4D732BDF84D1526AB11084E22523D51ABB2A8608402 ] Creative Service for CDROM Access C:\WINDOWS\system32\CTsvcCDA.EXE
14:44:10.0140 0x1310  Creative Service for CDROM Access - ok
14:44:10.0140 0x1310  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
14:44:10.0156 0x1310  CryptSvc - ok
14:44:10.0187 0x1310  [ 8A9C65CE4FE6E8CB24CE06BA28D951A0, 5538477F7AB416844BD86E9E0AD8E99969880C602E76FE748DEB273A15874A97 ] ctac32k         C:\WINDOWS\system32\drivers\ctac32k.sys
14:44:10.0203 0x1310  ctac32k - ok
14:44:10.0250 0x1310  [ 47236971DFB3E03690B98E41665D0924, E6871DEA9AA0BDA2BD3412F88147EC4331EF3803017EAF1A8BCA709F9C650CB7 ] ctaud2k         C:\WINDOWS\system32\drivers\ctaud2k.sys
14:44:10.0265 0x1310  ctaud2k - ok
14:44:10.0296 0x1310  [ 5A0EEB00B02FC78605AA9D3590B24978, 52B9B5686087F331436A5A20B812C511D11CC1BD82203D4F0331E20DFC1DB660 ] ctdvda2k        C:\WINDOWS\system32\drivers\ctdvda2k.sys
14:44:10.0312 0x1310  ctdvda2k - ok
14:44:10.0328 0x1310  [ 2381CF056C15271F6B8DAB50FF82CF3A, 87242447FF0BDCFD16DABA1C50C8CF27802C8DE81EE962AAE05B28DCDA9D53E4 ] ctprxy2k        C:\WINDOWS\system32\drivers\ctprxy2k.sys
14:44:10.0328 0x1310  ctprxy2k - ok
14:44:10.0328 0x1310  [ DA1C530DE86C85A701138B30FB145AF3, 52EA4269B5718B9379656785ED6F29BF4BA83E65120D7A306E4887BB7F0533EC ] ctsfm2k         C:\WINDOWS\system32\drivers\ctsfm2k.sys
14:44:10.0343 0x1310  ctsfm2k - ok
14:44:10.0375 0x1310  [ B5ECADF7708960F1818C7FA015F4C239, A58BA71B08A9D46EB79EB3DF0858F553A11DE3461E13B6D926E25D21D4CBB2D8 ] CVirtA          C:\WINDOWS\system32\DRIVERS\CVirtA.sys
14:44:10.0375 0x1310  CVirtA - ok
14:44:10.0484 0x1310  [ DAD192D12DD0B4C92F6843203852829F, 37EE52F582380406A5B02A83C7DF3D7A5677B195F26DAFC52536C02B060D4C33 ] CVPND           C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
14:44:10.0531 0x1310  CVPND - ok
14:44:10.0578 0x1310  [ 26DEEF07394624247D1F549BD94F0B15, 5D06ED1B79C22E22E5712EB7CF73DAA1856285770E2E74E3C74B0934D7E82E08 ] CVPNDRVA        C:\WINDOWS\system32\Drivers\CVPNDRVA.sys
14:44:10.0593 0x1310  CVPNDRVA - ok
14:44:10.0625 0x1310  [ E550E7418984B65A78299D248F0A7F36, 52F6BD1027E91F9A90AFAB82C7F2A0314B7E55262F5293D5F9F8F12135EDD88C ] dac2w2k         C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
14:44:10.0625 0x1310  dac2w2k - ok
14:44:10.0656 0x1310  [ 683789CAA3864EB46125AE86FF677D34, B725D026E069AD253192E21245260CBA44EF3C72781616A2CAD0BF0E2D86D510 ] dac960nt        C:\WINDOWS\system32\DRIVERS\dac960nt.sys
14:44:10.0656 0x1310  dac960nt - ok
14:44:10.0671 0x1310  [ 5D69C704A11A037F05270EE98106E12F, 13894B7334AA819B0C628B2A8F71EBB61160AE28CEA8E0EC8C7E82AF178B12E9 ] DbgMsg          C:\WINDOWS\System32\Drivers\DbgMsg.sys
14:44:10.0671 0x1310  DbgMsg - ok
14:44:10.0734 0x1310  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
14:44:10.0734 0x1310  DcomLaunch - ok
14:44:10.0750 0x1310  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
14:44:10.0765 0x1310  Dhcp - ok
14:44:10.0796 0x1310  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
14:44:10.0796 0x1310  Disk - ok
14:44:10.0843 0x1310  [ D8D58A84F3ECE3359DF95FD2E459B330, 4020D318C8A67C72E6835FCD66CCDF12D317AEB6C1D948CB4EB0B0C7480500FA ] DLABOIOM        C:\WINDOWS\system32\DLA\DLABOIOM.SYS
14:44:10.0843 0x1310  DLABOIOM - ok
14:44:10.0859 0x1310  [ EC6AE8BC9F773382D2EED49E4DFDAE2A, EB9ED376529A4142485DE637BA5F2DAA609DC25ADFF83DCCDC927ADA12DC9A93 ] DLACDBHM        C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
14:44:10.0859 0x1310  DLACDBHM - ok
14:44:10.0875 0x1310  [ 27C78078BD9C4F2DE2AD3EB04BFE101B, D4B4D652EF6A24C8C900155A4A19757AA1A2FC9DD4F13BE484675BC7FBFF0A53 ] DLADResN        C:\WINDOWS\system32\DLA\DLADResN.SYS
14:44:10.0875 0x1310  DLADResN - ok
14:44:10.0890 0x1310  [ 7F2D93E560B763EF5D11422D78DA8ED0, E982DDA33B2B5ACA11FA033A3E10EADAECA1DCA63C80D37C0D7AB08E0B520A3E ] DLAIFS_M        C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
14:44:10.0890 0x1310  DLAIFS_M - ok
14:44:10.0921 0x1310  [ F643637DE6AAC57E38D197AA63D9EA74, 0A194A46FACE0CE4AB02A9A7160C7C711D732195CD15E1D075B05C1E7D8DA1A2 ] DLAOPIOM        C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
14:44:10.0921 0x1310  DLAOPIOM - ok
14:44:10.0921 0x1310  [ 340705474807F57A46D59D18FC2959F1, C823E42FD5D0144174664ACBDEA4031EED66CD7753D58E25EEDF113C8B34407E ] DLAPoolM        C:\WINDOWS\system32\DLA\DLAPoolM.SYS
14:44:10.0921 0x1310  DLAPoolM - ok
14:44:10.0937 0x1310  [ 0605B66052F82B6F07204DBDB61C13FF, 301B0F44C3608AA3719C0D8536C542F272F4C3EB4279F86C416C3E7A7746C08A ] DLARTL_N        C:\WINDOWS\system32\Drivers\DLARTL_N.SYS
14:44:10.0937 0x1310  DLARTL_N - ok
14:44:10.0937 0x1310  [ 6984EA763907C045CE813468882BC587, 62EA300E4AB6334A4AD56121567E45C028E03FB69A36317182A146E9929FAD85 ] DLAUDFAM        C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
14:44:10.0953 0x1310  DLAUDFAM - ok
14:44:10.0953 0x1310  [ 12B30C449CFD36ADBED53EB6560933C6, 1F06EA8D3E71DE87140DA9F1DF904F98F746DE1334F153F0C5784814C9BEF2E4 ] DLAUDF_M        C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
14:44:10.0953 0x1310  DLAUDF_M - ok
14:44:10.0968 0x1310  dmadmin - ok
14:44:11.0015 0x1310  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
14:44:11.0046 0x1310  dmboot - ok
14:44:11.0046 0x1310  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
14:44:11.0062 0x1310  dmio - ok
14:44:11.0078 0x1310  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
14:44:11.0078 0x1310  dmload - ok
14:44:11.0109 0x1310  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        C:\WINDOWS\System32\dmserver.dll
14:44:11.0109 0x1310  dmserver - ok
14:44:11.0125 0x1310  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
14:44:11.0140 0x1310  DMusic - ok
14:44:11.0171 0x1310  [ 7B4FDFBE97C047175E613AA96F3DE987, 57B7089FD1C3B6B39D21174DA6A596033D113E7124F669E8AA6EAE5A3ECA6BCA ] DNE             C:\WINDOWS\system32\DRIVERS\dne2000.sys
14:44:11.0171 0x1310  DNE - ok
14:44:11.0187 0x1310  [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
14:44:11.0187 0x1310  Dnscache - ok
14:44:11.0250 0x1310  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
14:44:11.0265 0x1310  Dot3svc - ok
14:44:11.0281 0x1310  [ 40F3B93B4E5B0126F2F5C0A7A5E22660, 8AFFF28903037F5E36BB5352F2B236A217558FCC0146B23C787606C3F21243DB ] dpti2o          C:\WINDOWS\system32\DRIVERS\dpti2o.sys
14:44:11.0281 0x1310  dpti2o - ok
14:44:11.0296 0x1310  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
14:44:11.0296 0x1310  drmkaud - ok
14:44:11.0312 0x1310  [ FD0F95981FEF9073659D8EC58E40AA3C, 9EF2D538A90276DFF72BCE0E9A3AF50E607F2FD17B9EE46506156FBF3FC9E970 ] DRVMCDB         C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
14:44:11.0312 0x1310  DRVMCDB - ok
14:44:11.0312 0x1310  [ B4869D320428CDC5EC4D7F5E808E99B5, A84D1D65E84C0B17CE48188AD95DF52E1FEF785E6C6415E028CB5F7F4F31C466 ] DRVNDDM         C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
14:44:11.0328 0x1310  DRVNDDM - ok
14:44:11.0406 0x1310  [ FE80901578E7E3DA70299A5AEB2B7FBD, E68E8BAAA37AE26318BE8C084CFDD9040E97714C75EAA64B9720AB41FB1C9EF5 ] DSBrokerService C:\Program Files\DellSupport\brkrsvc.exe
14:44:11.0406 0x1310  DSBrokerService - ok
14:44:11.0421 0x1310  [ 413F2D5F9D802688242C23B38F767ECB, 6D5B6B8FC6E8E45555C444D3E881D3E44DE4C6F2602ADBB4D0E8E9F834089827 ] DSproct         C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
14:44:11.0421 0x1310  DSproct - ok
14:44:11.0468 0x1310  [ DFEABB7CFFFADEA4A912AB95BDC3177A, 9A93956CF826F419ACB2B3CA8809917E345ACFD43B102EAB18DB46F49859D1C7 ] dsunidrv        C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
14:44:11.0468 0x1310  dsunidrv - ok
14:44:11.0500 0x1310  [ 3FCA03CBCA11269F973B70FA483C88EF, 0995989B9EBE5CE1C5489139849FB2AD69DE9749650BBC262AD754E5CE457C59 ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys
14:44:11.0500 0x1310  E100B - ok
14:44:11.0562 0x1310  [ 5B75BBF89D8341F424171DF7AD9DC465, 16FEBE3116016C2B403E7F6717B224CE58A4C5DA7B4F47651E615B67A7D87D03 ] e1express       C:\WINDOWS\system32\DRIVERS\e1e5132.sys
14:44:11.0562 0x1310  e1express - ok
14:44:11.0609 0x1310  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         C:\WINDOWS\System32\eapsvc.dll
14:44:11.0609 0x1310  EapHost - ok
14:44:11.0656 0x1310  [ 08EE8892FD19A6A951F40254E97F6EF3, 76F19B49DDC7B1CD7839BF0DF6A417F2DD756C924931F39291BC1D25A3C6077D ] eeCtrl          C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
14:44:11.0656 0x1310  eeCtrl - ok
14:44:11.0703 0x1310  [ 5D1347AA5AE6E2F77D7F4F8372D95AC9, F3CA10753B7D76C87A71A0FEDB5EACE77E2E10E8DD44BEE7C66BCE17BD3EFD71 ] ehRecvr         C:\WINDOWS\eHome\ehRecvr.exe
14:44:11.0718 0x1310  ehRecvr - ok
14:44:11.0734 0x1310  [ A53243709439AC2A4C216B817F8D7411, AF4624EEA9B165DE873B7D104D1EA3BE9A14BBC5B4CABE26544F90B78689EEF9 ] ehSched         C:\WINDOWS\eHome\ehSched.exe
14:44:11.0734 0x1310  ehSched - ok
14:44:11.0750 0x1310  [ 1976FEDF6D7F87135C9B7F5CB4C8C868, 2C38699068913BA69DEBFC6485F64F9EF7B678EFF0C4E7CC820A047ADAEBBA99 ] ELacpi          C:\WINDOWS\system32\DRIVERS\ELacpi.sys
14:44:11.0750 0x1310  ELacpi - ok
14:44:11.0781 0x1310  [ AE65C02444907966378454138B9F99F0, 9AE6EAD97BD2FBAE39275FEDB944DAA2FA2BFFE1E3A2152D04EF604E088B73BE ] ELhid           C:\WINDOWS\system32\DRIVERS\ELhid.sys
14:44:11.0781 0x1310  ELhid - ok
14:44:11.0781 0x1310  [ E485C3BA1DADDEEF3E14FEA1E8FDA6E1, 8C9D81CC283955C5C04BF28E133022996D0B0F6C43AF87FD3675C099E0EC9BA6 ] ELkbd           C:\WINDOWS\system32\DRIVERS\ELkbd.sys
14:44:11.0796 0x1310  ELkbd - ok
14:44:11.0796 0x1310  [ 0D87CB825ED6CB2EBCC147A10A42F1D6, 6636B40D654A36CCE1E8F0C6B02F0091F67C0229D4688500FB1CB6472F1C9195 ] ELmon           C:\WINDOWS\system32\DRIVERS\ELmon.sys
14:44:11.0796 0x1310  ELmon - ok
14:44:11.0796 0x1310  [ A4ADD3847B67BACAB6FC851A2B60FDB3, 0535B821D53AFC2103E47834A26781D4CF42CDB76E02CCA9D06FB5FAED6F5969 ] ELmou           C:\WINDOWS\system32\DRIVERS\ELmou.sys
14:44:11.0812 0x1310  ELmou - ok
14:44:11.0843 0x1310  [ D1DE16926C682DCD3D99AE5500CA5522, B08DED88C1E4EBE17E8AC6E96F8AD0E459E87B2EBD7202C882113835A8A2C597 ] ELService       C:\Program Files\Intel\IntelDH\Intel® Quick Resume Technology\ELService.exe
14:44:11.0843 0x1310  ELService - ok
14:44:11.0859 0x1310  [ 661CF27263F3E0B553BE050A42D357DB, CFBB6D3C5E7CDABA9AF1B824A22CD22F141D0D673B5F6232F29127BED38E5766 ] emupia          C:\WINDOWS\system32\drivers\emupia2k.sys
14:44:11.0859 0x1310  emupia - ok
14:44:11.0890 0x1310  [ 050D136C61DBCF36C257206ADBBEC009, 0FD13A4B43534ABF84B637F0749AED30CAF8EB2A50C0ABE70B76608AEE925A30 ] EraserUtilRebootDrv C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
14:44:11.0890 0x1310  EraserUtilRebootDrv - ok
14:44:11.0937 0x1310  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
14:44:11.0937 0x1310  ERSvc - ok
14:44:11.0968 0x1310  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog        C:\WINDOWS\system32\services.exe
14:44:11.0968 0x1310  Eventlog - ok
14:44:12.0000 0x1310  [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem     C:\WINDOWS\system32\es.dll
14:44:12.0000 0x1310  EventSystem - ok
14:44:12.0031 0x1310  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
14:44:12.0046 0x1310  Fastfat - ok
14:44:12.0078 0x1310  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
14:44:12.0078 0x1310  FastUserSwitchingCompatibility - ok
14:44:12.0109 0x1310  [ E97D6A8684466DF94FF3BC24FB787A07, 89E5A6889E3C5AB9AD3E80FFC16DD608278F3ADC282048B40B60196336A5CBEB ] Fax             C:\WINDOWS\system32\fxssvc.exe
14:44:12.0125 0x1310  Fax - ok
14:44:12.0125 0x1310  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
14:44:12.0140 0x1310  Fdc - ok
14:44:12.0140 0x1310  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
14:44:12.0156 0x1310  Fips - ok
14:44:12.0171 0x1310  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
14:44:12.0171 0x1310  Flpydisk - ok
14:44:12.0187 0x1310  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
14:44:12.0187 0x1310  FltMgr - ok
14:44:12.0281 0x1310  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
14:44:12.0281 0x1310  FontCache3.0.0.0 - ok
14:44:12.0281 0x1310  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:44:12.0281 0x1310  Fs_Rec - ok
14:44:12.0296 0x1310  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:44:12.0296 0x1310  Ftdisk - ok
14:44:12.0328 0x1310  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GearAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
14:44:12.0328 0x1310  GearAspiWDM - ok
14:44:12.0359 0x1310  [ B6E01969246FCB67470E87E6957EE147, F9D1CE5DE004A5115298D69EE4C31ECA18281348E034594A1BB8D49208E65223 ] GEARSecurity    C:\WINDOWS\System32\GEARSec.exe
14:44:12.0359 0x1310  GEARSecurity - ok
14:44:12.0375 0x1310  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:44:12.0375 0x1310  Gpc - ok
14:44:12.0437 0x1310  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
14:44:12.0437 0x1310  gupdate - ok
14:44:12.0453 0x1310  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
14:44:12.0453 0x1310  gupdatem - ok
14:44:12.0531 0x1310  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
14:44:12.0546 0x1310  gusvc - ok
14:44:12.0609 0x1310  [ 4B1E6B601C6C8C1CCED6C945A9F6E83E, C8C85A393F2150DAE221615606CA6521A7B60403C797591292DB94FADE5F77AC ] ha20x2k         C:\WINDOWS\system32\drivers\ha20x2k.sys
14:44:12.0640 0x1310  ha20x2k - ok
14:44:12.0687 0x1310  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
14:44:12.0687 0x1310  helpsvc - ok
14:44:12.0687 0x1310  [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] HidServ         C:\WINDOWS\System32\hidserv.dll
14:44:12.0703 0x1310  HidServ - ok
14:44:12.0703 0x1310  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:44:12.0718 0x1310  HidUsb - ok
14:44:12.0765 0x1310  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
14:44:12.0765 0x1310  hkmsvc - ok
14:44:12.0796 0x1310  [ 58176988FBA04153D35D7EB92825A14F, DC07A92D04B3228DF252AAAD614482822BA93642935AE0EB42393147BD5818B0 ] HP Port Resolver C:\WINDOWS\system32\hpbpro.exe
14:44:12.0796 0x1310  HP Port Resolver - ok
14:44:12.0812 0x1310  [ B00044476F6D091922DA76A086ECC15B, DD0F1FA162DEE689DCA3D44918C324291C8BC2C26493B56F0294609A31B19367 ] HP Status Server C:\WINDOWS\system32\hpboid.exe
14:44:12.0812 0x1310  HP Status Server - ok
14:44:12.0843 0x1310  [ B028377DEA0546A5FCFBA928A8AEFAE0, FD7B34A6036AD443014B16394A5F051A298CEE4276D50525FB9F15A0D2684C8B ] hpn             C:\WINDOWS\system32\DRIVERS\hpn.sys
14:44:12.0843 0x1310  hpn - ok
14:44:12.0890 0x1310  [ 30CA91E657CEDE2F95359D6EF186F650, 6BBAFBE50E7819695A79586A086A9952B737E174BA2C63C1F180D97EC4AABA4B ] HPZid412        C:\WINDOWS\system32\DRIVERS\HPZid412.sys
14:44:12.0906 0x1310  HPZid412 - ok
14:44:12.0906 0x1310  [ EFD31AFA752AA7C7BBB57BCBE2B01C78, AC671CEE9F8DD9FE6C51069212AEB1736BB914361D4185D1E87068D244BF2B7A ] HPZipr12        C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
14:44:12.0906 0x1310  HPZipr12 - ok
14:44:12.0953 0x1310  [ 7AC43C38CA8FD7ED0B0A4466F753E06E, B4D44B366170D247E0145B9435CC678BEE2A2A42CFF7B485E077B3B582557B5A ] HPZius12        C:\WINDOWS\system32\DRIVERS\HPZius12.sys
14:44:12.0953 0x1310  HPZius12 - ok
14:44:13.0000 0x1310  [ 77E4FF0B73BC0AEAAF39BF0C8104231F, A5D35FCD9E52003D990EB97DF1634DE9B516647C8DAAD3152550CD875DBBDA82 ] HSFHWBS2        C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
14:44:13.0000 0x1310  HSFHWBS2 - ok
14:44:13.0046 0x1310  [ 60E1604729A15EF4A3B05F298427B3B1, 139DE473F645A300DD436B4AA8359A23FCE3BB9688B6B597E89F8ADBC36A71B9 ] HSF_DP          C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
14:44:13.0078 0x1310  HSF_DP - ok
14:44:13.0109 0x1310  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
14:44:13.0125 0x1310  HTTP - ok
14:44:13.0140 0x1310  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
14:44:13.0140 0x1310  HTTPFilter - ok
14:44:13.0156 0x1310  [ 9368670BD426EBEA5E8B18A62416EC28, 0ED865F8FB79F0B6309521925280E8640DB5CA6F75377434830536899734B6EE ] i2omgmt         C:\WINDOWS\system32\drivers\i2omgmt.sys
14:44:13.0156 0x1310  i2omgmt - ok
14:44:13.0187 0x1310  [ F10863BF1CCC290BABD1A09188AE49E0, BC038EAE6C8A76D56A5AD27035DC0369D6E766711E9FAA7467144370851F1615 ] i2omp           C:\WINDOWS\system32\DRIVERS\i2omp.sys
14:44:13.0203 0x1310  i2omp - ok
14:44:13.0218 0x1310  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
14:44:13.0218 0x1310  i8042prt - ok
14:44:13.0265 0x1310  [ D43E91E271C041BB86A6223462A41D28, DB95EFD219EC3F1A4308415B26DB9E1D9D288FA126BD0DFCEE6C614E0298D323 ] IAANTMon        C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
14:44:13.0265 0x1310  IAANTMon - ok
14:44:13.0328 0x1310  [ 9A65E42664D1534B68512CAAD0EFE963, 7E58ACB214CAA452A34CC776E12245BF9EF0B557C3C9B5139C202DB847187BB1 ] iastor          C:\WINDOWS\system32\drivers\iastor.sys
14:44:13.0343 0x1310  iastor - ok
14:44:13.0437 0x1310  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
14:44:13.0437 0x1310  IDriverT - ok
14:44:13.0671 0x1310  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
14:44:13.0765 0x1310  idsvc - ok
14:44:13.0921 0x1310  [ 8F7BDACD076832E8D37351C7B349A72B, 311FBB3C3C46DA03F2097DEFDC065F7C6549565CB490A218C79D1C54D022D29A ] IDSxpx86        C:\Program Files\Norton 360\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20140103.001\IDSxpx86.sys
14:44:13.0937 0x1310  IDSxpx86 - ok
14:44:13.0953 0x1310  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
14:44:13.0953 0x1310  Imapi - ok
14:44:13.0984 0x1310  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    C:\WINDOWS\system32\imapi.exe
14:44:13.0984 0x1310  ImapiService - ok
14:44:14.0015 0x1310  [ 4A40E045FAEE58631FD8D91AFC620719, 7A2FD81BD483821B3DA01B1CD7215423EDD719CBE3862C0342FF7D21A17AF437 ] ini910u         C:\WINDOWS\system32\DRIVERS\ini910u.sys
14:44:14.0015 0x1310  ini910u - ok
14:44:14.0046 0x1310  [ B5466A9250342A7AA0CD1FBA13420678, 87E735C4E8924A883AB692D387A83BCBFAE6E165688336AE7AB488F7CA8D339E ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
14:44:14.0046 0x1310  IntelIde - ok
14:44:14.0062 0x1310  [ 8C953733D8F36EB2133F5BB58808B66B, 555868F246D73652E998B0B1296476E42FCEDED30D646CC000F31ECE4EBC25E6 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:44:14.0062 0x1310  intelppm - ok
14:44:14.0093 0x1310  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
14:44:14.0093 0x1310  Ip6Fw - ok
14:44:14.0125 0x1310  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:44:14.0125 0x1310  IpFilterDriver - ok
14:44:14.0140 0x1310  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:44:14.0140 0x1310  IpInIp - ok
14:44:14.0171 0x1310  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:44:14.0171 0x1310  IpNat - ok
14:44:14.0250 0x1310  [ B8B486EF84E8587131DC36DD28E136E2, 821E1F61786219037EC0AB1D378148E0E28F7FCA20AFFB6F4A68162F8B9E489B ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
14:44:14.0265 0x1310  iPod Service - ok
14:44:14.0281 0x1310  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:44:14.0281 0x1310  IPSec - ok
14:44:14.0296 0x1310  [ ACA5E7B54409F9CB5EED97ED0C81120E, 1E22F442EA77596F58D133F1A5887CDC4F3325DD0836D24A665E1D31287ABFF7 ] irda            C:\WINDOWS\system32\DRIVERS\irda.sys
14:44:14.0296 0x1310  irda - ok
14:44:14.0312 0x1310  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
14:44:14.0312 0x1310  IRENUM - ok
14:44:14.0343 0x1310  [ 49CC4533CE897CB2E93C1E84A818FDE5, F2AC81CDB971F630699616509748DCE133874EFC79B9D6230517B5A4DFBE193D ] Irmon           C:\WINDOWS\System32\irmon.dll
14:44:14.0343 0x1310  Irmon - ok
14:44:14.0359 0x1310  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:44:14.0359 0x1310  isapnp - ok
14:44:14.0375 0x1310  ivusb - ok
14:44:14.0437 0x1310  [ 126A16F569122AE00AD3D12EF831D651, D8C109F7B47F7E09CE3D0C9CB98920DA653B364B610C11ABE911BD0EB5EF436F ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
14:44:14.0437 0x1310  JavaQuickStarterService - ok
14:44:14.0453 0x1310  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:44:14.0453 0x1310  Kbdclass - ok
14:44:14.0453 0x1310  [ 9EF487A186DEA361AA06913A75B3FA99, B94EBA4EC6D85E11C81AF9927E9EF0AF2E6FE134CFF1FDB0535B7C5A794B4261 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
14:44:14.0453 0x1310  kbdhid - ok
14:44:14.0468 0x1310  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
14:44:14.0484 0x1310  kmixer - ok
14:44:14.0515 0x1310  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
14:44:14.0515 0x1310  KSecDD - ok
14:44:14.0562 0x1310  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
14:44:14.0562 0x1310  lanmanserver - ok
14:44:14.0593 0x1310  [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
14:44:14.0609 0x1310  lanmanworkstation - ok
14:44:14.0609 0x1310  lbrtfdc - ok
14:44:14.0796 0x1310  [ 36375738DC0B3CD1F764268008E74FDF, 35993E2CD76365187042201128BC8FB445779594E824B42063E884B40399F9C6 ] LiveUpdate      C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
14:44:14.0890 0x1310  LiveUpdate - ok
14:44:14.0937 0x1310  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
14:44:14.0937 0x1310  LmHosts - ok
14:44:14.0968 0x1310  [ 90259F3A20FBAEC1A08D74EF5415B9D8, 3D096E0A83DAC48925BF7B9C5B6C04B88D79C66B34747C8B9CB721A6D493017A ] LVUSBSta        C:\WINDOWS\system32\drivers\lvusbsta.sys
14:44:14.0968 0x1310  LVUSBSta - ok
14:44:15.0000 0x1310  [ DF0A511F38F16016BF658FCA0090CB87, 6D2F6360A4E1D369607F2F394B4A8C6EE8EEE9FA46A67394769E9C0044529B6C ] McrdSvc         C:\WINDOWS\ehome\mcrdsvc.exe
14:44:15.0000 0x1310  McrdSvc - ok
14:44:15.0031 0x1310  [ 11F714F85530A2BD134074DC30E99FCA, BDB5FD3B2DF4ADD19B31965B3E789768B59E872B3EA85912B1FFB32B2AF9D5D8 ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
14:44:15.0031 0x1310  MDM - ok
14:44:15.0046 0x1310  [ EEAEA6514BA7C9D273B5E87C4E1AAB30, 3B724C6A8867B1B7A45D832150E0CFAC1004D3B972A2A7BFDD2ADDDB2488BB1E ] mdmxsdk         C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
14:44:15.0062 0x1310  mdmxsdk - ok
14:44:15.0062 0x1310  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
14:44:15.0078 0x1310  Messenger - ok
14:44:15.0109 0x1310  [ B7521F69C0A9B29D356157229376FB21, A77C89BDC181038DD0F9A8AC0F7164B10EF9C54B0C57D8BAB8BC27932EBF890B ] MHN             C:\WINDOWS\System32\mhn.dll
14:44:15.0125 0x1310  MHN - ok
14:44:15.0140 0x1310  [ 7F2F1D2815A6449D346FCCCBC569FBD6, 1C5A321CE95CE4D9AA2CB5A00E9B7E711521A6BBB25D36F7F49A397C361585C6 ] MHNDRV          C:\WINDOWS\system32\DRIVERS\mhndrv.sys
14:44:15.0140 0x1310  MHNDRV - ok
14:44:15.0156 0x1310  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
14:44:15.0156 0x1310  mnmdd - ok
14:44:15.0203 0x1310  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
14:44:15.0203 0x1310  mnmsrvc - ok
14:44:15.0234 0x1310  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
14:44:15.0234 0x1310  Modem - ok
14:44:15.0234 0x1310  [ 1992E0D143B09653AB0F9C5E04B0FD65, 1431EC53A65F561C235A08F926C5348A6B21B06A08C075DE8172A88EE0AA634E ] MODEMCSA        C:\WINDOWS\system32\drivers\MODEMCSA.sys
14:44:15.0234 0x1310  MODEMCSA - ok
14:44:15.0281 0x1310  [ F136A7A0A5695E4B6F8C4BB68AC73DF8, DF1760D105B875984C9CDF8B3C94D47A4B8F299CEB0FAF308FFDF52231BA4B0D ] MosIrUsb        C:\WINDOWS\system32\DRIVERS\MosIrUsb.sys
14:44:15.0281 0x1310  MosIrUsb - ok
14:44:15.0312 0x1310  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:44:15.0312 0x1310  Mouclass - ok
14:44:15.0343 0x1310  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:44:15.0343 0x1310  mouhid - ok
14:44:15.0359 0x1310  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
14:44:15.0359 0x1310  MountMgr - ok
14:44:15.0375 0x1310  [ 3F4BB95E5A44F3BE34824E8E7CAF0737, 9A4F9E63AA55B779AF3563C66C8E40D9C42FF3BB5F533F70905ADC7A44EA7DAD ] mraid35x        C:\WINDOWS\system32\DRIVERS\mraid35x.sys
14:44:15.0375 0x1310  mraid35x - ok
14:44:15.0390 0x1310  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:44:15.0406 0x1310  MRxDAV - ok
14:44:15.0453 0x1310  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:44:15.0468 0x1310  MRxSmb - ok
14:44:15.0484 0x1310  [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
14:44:15.0484 0x1310  MSDTC - ok
14:44:15.0500 0x1310  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
14:44:15.0500 0x1310  Msfs - ok
14:44:15.0500 0x1310  MSIServer - ok
14:44:15.0531 0x1310  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:44:15.0531 0x1310  MSKSSRV - ok
14:44:15.0546 0x1310  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:44:15.0546 0x1310  MSPCLOCK - ok
14:44:15.0562 0x1310  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
14:44:15.0562 0x1310  MSPQM - ok
14:44:15.0578 0x1310  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:44:15.0578 0x1310  mssmbios - ok
14:44:15.0640 0x1310  [ E53736A9E30C45FA9E7B5EAC55056D1D, 38602F280BF69EBA3706AD175AFC1AEB561A8302B4B61E3FECB3C27D7A9BDB41 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
14:44:15.0640 0x1310  MSTEE - ok
14:44:15.0671 0x1310  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
14:44:15.0671 0x1310  Mup - ok
14:44:15.0875 0x1310  [ 832303953D7BB2AE7F09BF5F7131C23E, 51EE9D7C3FA4D2AF5F6C8925075A66AE44802D9651F0279169366AC8C03E48C4 ] N360            C:\Program Files\Norton 360\Norton 360\Engine\21.1.0.18\N360.exe
14:44:15.0875 0x1310  N360 - ok
14:44:15.0906 0x1310  [ 5B50F1B2A2ED47D560577B221DA734DB, C16A554B6E1A7F5F98C94DFA88163E0F7426506BF2F51FD351B1A05FC0DB3BC5 ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
14:44:15.0906 0x1310  NABTSFEC - ok
14:44:15.0953 0x1310  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        C:\WINDOWS\System32\qagentrt.dll
14:44:15.0968 0x1310  napagent - ok
14:44:16.0046 0x1310  [ 81E928EE3751FAF725C87CC17726C05D, 8AB84270DCB35F239B00FA4B9AC90E9520967B8188085D897F28E994CBF911FB ] NAVENG          C:\Program Files\Norton 360\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140106.001\NAVENG.SYS
14:44:16.0062 0x1310  NAVENG - ok
14:44:16.0140 0x1310  [ E0C39FA6C76AE8ED53ABF043F35ECDFF, CD2F87D3CB64F3362508D1855B24F40F1C44CF4132E3626971CCF4E7C49E61D6 ] NAVEX15         C:\Program Files\Norton 360\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140106.001\NAVEX15.SYS
14:44:16.0171 0x1310  NAVEX15 - ok
14:44:16.0203 0x1310  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
14:44:16.0218 0x1310  NDIS - ok
14:44:16.0234 0x1310  [ 7FF1F1FD8609C149AA432F95A8163D97, 18CD1FF5AC1EF8A38D1EC53014F2BADD28D9CDF4ECE2EBC2313D08903776F323 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
14:44:16.0234 0x1310  NdisIP - ok
14:44:16.0296 0x1310  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:44:16.0296 0x1310  NdisTapi - ok
14:44:16.0328 0x1310  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:44:16.0328 0x1310  Ndisuio - ok
14:44:16.0343 0x1310  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:44:16.0343 0x1310  NdisWan - ok
14:44:16.0390 0x1310  [ 9282BD12DFB069D3889EB3FCC1000A9B, 09A46F1712BD9165068D8E153585FE3E6E5CBF4F1DDEC142115555D3A91AEC09 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
14:44:16.0390 0x1310  NDProxy - ok
14:44:16.0406 0x1310  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
14:44:16.0406 0x1310  NetBIOS - ok
14:44:16.0437 0x1310  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
14:44:16.0437 0x1310  NetBT - ok
14:44:16.0468 0x1310  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          C:\WINDOWS\system32\netdde.exe
14:44:16.0468 0x1310  NetDDE - ok
14:44:16.0484 0x1310  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
14:44:16.0484 0x1310  NetDDEdsdm - ok
14:44:16.0500 0x1310  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        C:\WINDOWS\system32\lsass.exe
14:44:16.0500 0x1310  Netlogon - ok
14:44:16.0531 0x1310  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          C:\WINDOWS\System32\netman.dll
14:44:16.0531 0x1310  Netman - ok
14:44:16.0640 0x1310  [ 9DA26B773BD04B867A8E9F427CD048FC, A8D8D92720EA31685864B834FC67CD6225D0B65DF40DCDD6A80E6D0DF677C855 ] NetSvc          C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
14:44:16.0656 0x1310  NetSvc - ok
14:44:16.0734 0x1310  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:44:16.0750 0x1310  NetTcpPortSharing - ok
14:44:16.0796 0x1310  [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla             C:\WINDOWS\System32\mswsock.dll
14:44:16.0812 0x1310  Nla - ok
14:44:16.0843 0x1310  [ 1E421A6BCF2203CC61B821ADA9DE878B, C658F1D5DCE7525CF929C65C46AB2881C99D89BF8F0F61C1D440C9D9BFB2F89F ] nm              C:\WINDOWS\system32\DRIVERS\NMnt.sys
14:44:16.0843 0x1310  nm - ok
14:44:17.0000 0x1310  [ 89573B6F88A851EBA44BABE98543C007, 242CACCB021FBD09C652BBF9488DE629F72551EC278B3BDA0BA6A9BE5A8BA917 ] Norton Ghost    C:\Program Files\Norton Ghost\Agent\VProSvc.exe
14:44:17.0046 0x1310  Norton Ghost - ok
14:44:17.0109 0x1310  [ 9865516D33BC66FDDAC9DB4087D4B6AA, 2FDB6852CB98B607DD30999E48F3AD6CF28A678C0EB92CB621C0EB65533C1EFC ] nosGetPlusHelper C:\Program Files\NOS\bin\getPlus_Helper_3004.dll
14:44:17.0109 0x1310  nosGetPlusHelper - ok
14:44:17.0156 0x1310  [ 6623E51595C0076755C29C00846C4EB2, EB661942E3C552DD33B197A9A0BF6AB56CE5CB92BAC183A02B918F0CD3D80F97 ] NPF             C:\WINDOWS\system32\drivers\npf.sys
14:44:17.0156 0x1310  NPF - ok
14:44:17.0187 0x1310  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
14:44:17.0187 0x1310  Npfs - ok
14:44:17.0203 0x1310  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
14:44:17.0234 0x1310  Ntfs - ok
14:44:17.0250 0x1310  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
14:44:17.0250 0x1310  NtLmSsp - ok
14:44:17.0281 0x1310  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
14:44:17.0296 0x1310  NtmsSvc - ok
14:44:17.0312 0x1310  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
14:44:17.0312 0x1310  Null - ok
14:44:17.0921 0x1310  [ 7C56F3FD65B2BDB315CA3605A5392D7B, 1C33B2723BBD958FE06D71B6AC5C54DF1F46491C292749FE0DB8577BF056A765 ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
14:44:18.0203 0x1310  nv - ok
14:44:18.0281 0x1310  [ 472A00D2183C9E5EDB3E076272741812, AF1CF1E7F227BD9FFD9D011A470FBBECEBABDD61215571117E90548884FFFFAB ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
14:44:18.0281 0x1310  NVSvc - ok
14:44:18.0312 0x1310  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:44:18.0328 0x1310  NwlnkFlt - ok
14:44:18.0343 0x1310  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:44:18.0343 0x1310  NwlnkFwd - ok
14:44:18.0375 0x1310  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:44:18.0375 0x1310  ose - ok
14:44:18.0406 0x1310  [ 99F877A7BB6FEB5AF1184EAFE937C208, 18DE5C6C462E5B430150BF7B6A4B0E1EE9B08ECA8790B00AE0D682877D56F543 ] ossrv           C:\WINDOWS\system32\drivers\ctoss2k.sys
14:44:18.0406 0x1310  ossrv - ok
14:44:18.0437 0x1310  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
14:44:18.0437 0x1310  Parport - ok
14:44:18.0453 0x1310  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
14:44:18.0453 0x1310  PartMgr - ok
14:44:18.0484 0x1310  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
14:44:18.0484 0x1310  ParVdm - ok
14:44:18.0500 0x1310  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
14:44:18.0500 0x1310  PCI - ok
14:44:18.0500 0x1310  PCIDump - ok
14:44:18.0546 0x1310  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
14:44:18.0546 0x1310  PCIIde - ok
14:44:18.0593 0x1310  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
14:44:18.0593 0x1310  Pcmcia - ok
14:44:18.0593 0x1310  PDCOMP - ok
14:44:18.0609 0x1310  PDFRAME - ok
14:44:18.0609 0x1310  PDRELI - ok
14:44:18.0609 0x1310  PDRFRAME - ok
14:44:18.0640 0x1310  [ 6C14B9C19BA84F73D3A86DBA11133101, 2CFB7E027E43C1B3890985DFD7987B23E4E3CC003E3FD2583E4A8AC1F8A13B26 ] perc2           C:\WINDOWS\system32\DRIVERS\perc2.sys
14:44:18.0640 0x1310  perc2 - ok
14:44:18.0656 0x1310  [ F50F7C27F131AFE7BEBA13E14A3B9416, C0498EA65B908C07A734324ED70DB27F434FAAA815DD02F1BC429A3AB6C663D5 ] perc2hib        C:\WINDOWS\system32\DRIVERS\perc2hib.sys
14:44:18.0656 0x1310  perc2hib - ok
14:44:18.0718 0x1310  [ ED2E7F396B4098608C95BC3806BDF6FC, 6F664818D30341906C9C0F297F6CE8C0E4E3FAB46A42204CAC0A821051ED9A88 ] pfc             C:\WINDOWS\system32\drivers\pfc.sys
14:44:18.0718 0x1310  pfc - ok
14:44:18.0734 0x1310  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay        C:\WINDOWS\system32\services.exe
14:44:18.0734 0x1310  PlugPlay - ok
14:44:18.0750 0x1310  [ 45E333C6B7197ED61C70736472F3703B, FB69E5EABD33343C37A597D5E95688E1C3ACC88810B2DD305CFE471E36DC6871 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
14:44:18.0765 0x1310  Pml Driver HPZ12 - ok
14:44:18.0765 0x1310  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
14:44:18.0765 0x1310  PolicyAgent - ok
14:44:18.0781 0x1310  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:44:18.0781 0x1310  PptpMiniport - ok
14:44:18.0796 0x1310  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
14:44:18.0796 0x1310  ProtectedStorage - ok
14:44:18.0812 0x1310  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
14:44:18.0812 0x1310  PSched - ok
14:44:18.0828 0x1310  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:44:18.0828 0x1310  Ptilink - ok
14:44:18.0843 0x1310  [ 1962166E0CEB740704F30FA55AD3D509, 22C21907D7FDCA2CBBE1EC0479D83DDD4C4FCBC07C8791A2F62414EC5E85E488 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
14:44:18.0843 0x1310  PxHelp20 - ok
14:44:18.0859 0x1310  [ 0A63FB54039EB5662433CABA3B26DBA7, A1FB923EB2D08D89D24E8AD7042BBED7CB1DBDA9A5B77BDD188E9913BADAB0EF ] ql1080          C:\WINDOWS\system32\DRIVERS\ql1080.sys
14:44:18.0859 0x1310  ql1080 - ok
14:44:18.0875 0x1310  [ 6503449E1D43A0FF0201AD5CB1B8C706, F1EFC2DE5998615CB182D7984366631FE956AE1ECA9AC777F26FCA2E6F2E05A6 ] Ql10wnt         C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
14:44:18.0875 0x1310  Ql10wnt - ok
14:44:18.0875 0x1310  [ 156ED0EF20C15114CA097A34A30D8A01, 7490B90D4C88B7A9BADB9473D4033535F054C797ABF6D542CB859DA5C9B2586A ] ql12160         C:\WINDOWS\system32\DRIVERS\ql12160.sys
14:44:18.0890 0x1310  ql12160 - ok
14:44:18.0890 0x1310  [ 70F016BEBDE6D29E864C1230A07CC5E6, 895BC2C888F6566086FC1399F499A401D447E57333BC9F9C6DBAFE0F117603D6 ] ql1240          C:\WINDOWS\system32\DRIVERS\ql1240.sys
14:44:18.0890 0x1310  ql1240 - ok
14:44:18.0906 0x1310  [ 907F0AEEA6BC451011611E732BD31FCF, F9E7023BD1042963110D0A613054D094437868B20779F23C316A38E4781A6152 ] ql1280          C:\WINDOWS\system32\DRIVERS\ql1280.sys
14:44:18.0906 0x1310  ql1280 - ok
14:44:18.0921 0x1310  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:44:18.0921 0x1310  RasAcd - ok
14:44:18.0968 0x1310  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         C:\WINDOWS\System32\rasauto.dll
14:44:18.0968 0x1310  RasAuto - ok
14:44:19.0000 0x1310  [ 0207D26DDF796A193CCD9F83047BB5FC, 13613036BCB869FBD7229A0FE25D324710308385D8C35E5D990A40E52BE040DF ] Rasirda         C:\WINDOWS\system32\DRIVERS\rasirda.sys
14:44:19.0000 0x1310  Rasirda - ok
14:44:19.0000 0x1310  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:44:19.0015 0x1310  Rasl2tp - ok
14:44:19.0046 0x1310  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          C:\WINDOWS\System32\rasmans.dll
14:44:19.0062 0x1310  RasMan - ok
14:44:19.0062 0x1310  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:44:19.0062 0x1310  RasPppoe - ok
14:44:19.0078 0x1310  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
14:44:19.0078 0x1310  Raspti - ok
14:44:19.0109 0x1310  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:44:19.0109 0x1310  Rdbss - ok
14:44:19.0125 0x1310  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:44:19.0125 0x1310  RDPCDD - ok
14:44:19.0140 0x1310  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
14:44:19.0140 0x1310  rdpdr - ok
14:44:19.0171 0x1310  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
14:44:19.0187 0x1310  RDPWD - ok
14:44:19.0218 0x1310  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
14:44:19.0218 0x1310  RDSessMgr - ok
14:44:19.0250 0x1310  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
14:44:19.0250 0x1310  redbook - ok
14:44:19.0265 0x1310  [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
14:44:19.0265 0x1310  RemoteAccess - ok
14:44:19.0281 0x1310  [ 5B19B557B0C188210A56A6B699D90B8F, 0FA880B81AE615206FD1738B83428AAA491D54B24168339DE6E87FDE8C6C14B0 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
14:44:19.0296 0x1310  RemoteRegistry - ok
14:44:19.0343 0x1310  [ E51A8D02B4BD33EBA1F7A5B76C3766ED, A1E5747F4034356CD3E8EDC2A847EB92CF1C9F6C0E865BDE8F46D90C005A7ED8 ] rpcapd          C:\Program Files\WinPcap\rpcapd.exe
14:44:19.0343 0x1310  rpcapd - ok
14:44:19.0375 0x1310  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      C:\WINDOWS\system32\locator.exe
14:44:19.0375 0x1310  RpcLocator - ok
14:44:19.0406 0x1310  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs           C:\WINDOWS\system32\rpcss.dll
14:44:19.0406 0x1310  RpcSs - ok
14:44:19.0453 0x1310  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe
14:44:19.0468 0x1310  RSVP - ok
14:44:19.0484 0x1310  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           C:\WINDOWS\system32\lsass.exe
14:44:19.0484 0x1310  SamSs - ok
14:44:19.0500 0x1310  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
14:44:19.0531 0x1310  SCardSvr - ok
14:44:19.0578 0x1310  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
14:44:19.0578 0x1310  Schedule - ok
14:44:19.0640 0x1310  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:44:19.0640 0x1310  Secdrv - ok
14:44:19.0671 0x1310  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        C:\WINDOWS\System32\seclogon.dll
14:44:19.0671 0x1310  seclogon - ok
14:44:19.0687 0x1310  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            C:\WINDOWS\system32\sens.dll
14:44:19.0687 0x1310  SENS - ok
14:44:19.0718 0x1310  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
14:44:19.0718 0x1310  serenum - ok
14:44:19.0734 0x1310  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
14:44:19.0734 0x1310  Serial - ok
14:44:19.0750 0x1310  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
14:44:19.0750 0x1310  Sfloppy - ok
14:44:19.0781 0x1310  [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
14:44:19.0796 0x1310  SharedAccess - ok
14:44:19.0812 0x1310  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
14:44:19.0812 0x1310  ShellHWDetection - ok
14:44:19.0828 0x1310  Simbad - ok
14:44:19.0859 0x1310  [ 6B33D0EBD30DB32E27D1D78FE946A754, CDA3D082D370B079C06D943DA124D76BAF0C5DB264FB0C893148EF6322D2FABE ] sisagp          C:\WINDOWS\system32\DRIVERS\sisagp.sys
14:44:19.0859 0x1310  sisagp - ok
14:44:19.0875 0x1310  [ F07AF60B152221472FBDB2FECEC4896D, A18FDCE8462A48429E249C44F0E49F844F2E3A4B5215349DE104F34D935EF983 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
14:44:19.0890 0x1310  SkypeUpdate - ok
14:44:19.0906 0x1310  [ 866D538EBE33709A5C9F5C62B73B7D14, BC94BEB7C17B4FCAC8B5D0D5006A203BC209E0504EECE149651D8691935696CD ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
14:44:19.0906 0x1310  SLIP - ok
14:44:19.0921 0x1310  [ 83C0F71F86D3BDAF915685F3D568B20E, 10B24723914A5A9E27A592FD58DAE2207B6E49F13A17CD2B1477C51D2D609D2E ] Sparrow         C:\WINDOWS\system32\DRIVERS\sparrow.sys
14:44:19.0937 0x1310  Sparrow - ok
14:44:19.0953 0x1310  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
14:44:19.0953 0x1310  splitter - ok
14:44:19.0984 0x1310  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
14:44:19.0984 0x1310  Spooler - ok
14:44:20.0000 0x1310  sprtsvc_dellsupportcenter - ok
14:44:20.0031 0x1310  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
14:44:20.0031 0x1310  sr - ok
14:44:20.0046 0x1310  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       C:\WINDOWS\system32\srsvc.dll
14:44:20.0046 0x1310  srservice - ok
14:44:20.0203 0x1310  [ 40714B1C586AF7E61BED7AE1D5113280, 383B555211E742359CCAECB14A5517E0DB5819043BE8D8B7F2FD4AE4500093E2 ] SRTSP           C:\WINDOWS\System32\Drivers\N360\1501000.012\SRTSP.SYS
14:44:20.0218 0x1310  SRTSP - ok
14:44:20.0265 0x1310  [ 1B6D68043F488F70E889276E1585B7AA, 574925053F0EB2DED6DA03D0720A8E1588590948DFF1E2C6DE84EA5B6856E3DB ] SRTSPX          C:\WINDOWS\system32\drivers\N360\1501000.012\SRTSPX.SYS
14:44:20.0265 0x1310  SRTSPX - ok
14:44:20.0312 0x1310  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
14:44:20.0328 0x1310  Srv - ok
14:44:20.0343 0x1310  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
14:44:20.0343 0x1310  SSDPSRV - ok
14:44:20.0359 0x1310  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
14:44:20.0375 0x1310  stisvc - ok
14:44:20.0406 0x1310  [ 77813007BA6265C4B6098187E6ED79D2, 93939120E803C46FBFD577C8FC2E6C7E71C0460E01D25CB29579490640AB50C7 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
14:44:20.0406 0x1310  streamip - ok
14:44:20.0421 0x1310  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
14:44:20.0421 0x1310  swenum - ok
14:44:20.0421 0x1310  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
14:44:20.0421 0x1310  swmidi - ok
14:44:20.0437 0x1310  SwPrv - ok
14:44:20.0515 0x1310  [ 438FAFE708C93B2236FC26B6F2BD5FD0, 9A9071ACFB1CEE00A20F48492C344858BB3997B870A3DF3A5F67A46E0B2E84BE ] Symantec Core LC C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
14:44:20.0578 0x1310  Symantec Core LC - ok
14:44:20.0609 0x1310  [ 1FF3217614018630D0A6758630FC698C, 78A3075BBFF5D7ADEAC1527E65ACA8527BFC509DF124D44410BB46C4D96C96BB ] symc810         C:\WINDOWS\system32\DRIVERS\symc810.sys
14:44:20.0625 0x1310  symc810 - ok
14:44:20.0625 0x1310  [ 070E001D95CF725186EF8B20335F933C, B98B29FB01741AF3B4BB02C76A4D117EA04FE4CC4F8CDB491F9216931704A6D8 ] symc8xx         C:\WINDOWS\system32\DRIVERS\symc8xx.sys
14:44:20.0625 0x1310  symc8xx - ok
14:44:20.0687 0x1310  [ 4C3DEF736D3857570166DE5C858600F5, 45613D3F1935AFDDB1DFE3A427222A0B38430ABF15F9110A35E7C55CDADF1D43 ] SymDS           C:\WINDOWS\system32\drivers\N360\1501000.012\SYMDS.SYS
14:44:20.0718 0x1310  SymDS - ok
14:44:20.0812 0x1310  [ 68762EF9ED8A8D4A07112B3E3590EA29, 1D07F12351F5CC0D296841D7084159BB547CB76209F10E7117E851750B66497A ] SymEFA          C:\WINDOWS\system32\drivers\N360\1501000.012\SYMEFA.SYS
14:44:20.0875 0x1310  SymEFA - ok
14:44:20.0921 0x1310  [ E987A9CB539147527F56943BB34B7375, 4627C3E237549587B53CBD0D89AC2CEFF03C04F7624E2868936BCE5D70496AFD ] SymEvent        C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
14:44:20.0921 0x1310  SymEvent - ok
14:44:20.0968 0x1310  [ E3A3CA230C7547364BB3D9DA0C301A36, 8F173DE08BAF81A7BE7F2D306DC595D60E6537D95AFE32A39E521E43C35AB629 ] SymIRON         C:\WINDOWS\system32\drivers\N360\1501000.012\Ironx86.SYS
14:44:20.0968 0x1310  SymIRON - ok
14:44:20.0984 0x1310  [ 5220576EE29BEA7C18DFF9ECABF18BBC, F772B035925D0D1006CA0621C8B40DB5CA4AEEE2CED8327D3512D391F5DA6BB9 ] symlcbrd        C:\WINDOWS\system32\drivers\symlcbrd.sys
14:44:20.0984 0x1310  symlcbrd - ok
14:44:21.0015 0x1310  [ B8FAE6B464D9A2ABEB0C80FB03EE5F96, 566E6A12A48EDB37EF8BBAD22404A84A03443E5BEBBC0B621606358F8FC31F9C ] SymSnap         C:\WINDOWS\system32\drivers\SymSnap.sys
14:44:21.0031 0x1310  SymSnap - ok
14:44:21.0109 0x1310  [ C26DD7EFDC48B426ED6AC1665202779F, B1F3027551F9F14F5225D035085B437DD3B6B46AC5749B0FED75206C41CCF98F ] SYMTDI          C:\WINDOWS\System32\Drivers\N360\1501000.012\SYMTDI.SYS
14:44:21.0109 0x1310  SYMTDI - ok
14:44:21.0140 0x1310  [ 80AC1C4ABBE2DF3B738BF15517A51F2C, CCF82D09C63F4FA98BCBEF3A1DC8C02D4269B78256D0B6213E815D9BBE174432 ] sym_hi          C:\WINDOWS\system32\DRIVERS\sym_hi.sys
14:44:21.0140 0x1310  sym_hi - ok
14:44:21.0156 0x1310  [ BF4FAB949A382A8E105F46EBB4937058, FE7C114A19D50E37463CDD3605C26105A779EEA79CB92BF98267C7BE809D853B ] sym_u3          C:\WINDOWS\system32\DRIVERS\sym_u3.sys
14:44:21.0156 0x1310  sym_u3 - ok
14:44:21.0187 0x1310  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
14:44:21.0187 0x1310  sysaudio - ok
14:44:21.0218 0x1310  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
14:44:21.0234 0x1310  SysmonLog - ok
14:44:21.0250 0x1310  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
14:44:21.0265 0x1310  TapiSrv - ok
14:44:21.0296 0x1310  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:44:21.0312 0x1310  Tcpip - ok
14:44:21.0359 0x1310  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
14:44:21.0359 0x1310  TDPIPE - ok
14:44:21.0406 0x1310  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
14:44:21.0406 0x1310  TDTCP - ok
14:44:21.0421 0x1310  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
14:44:21.0421 0x1310  TermDD - ok
14:44:21.0453 0x1310  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     C:\WINDOWS\System32\termsrv.dll
14:44:21.0468 0x1310  TermService - ok
14:44:21.0484 0x1310  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes          C:\WINDOWS\System32\shsvcs.dll
14:44:21.0484 0x1310  Themes - ok
14:44:21.0531 0x1310  [ DB7205804759FF62C34E3EFD8A4CC76A, 13A4248F528CE98ACA66898E56822E4FC49B11F491FF1F61A687BA601BF0A802 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
14:44:21.0546 0x1310  TlntSvr - ok
14:44:21.0609 0x1310  [ F2790F6AF01321B172AA62F8E1E187D9, 5644B5EFA0065C0CC9DB28E5520AAD2F4B3BCE48337F165BF9F166ECC164630C ] TosIde          C:\WINDOWS\system32\DRIVERS\toside.sys
14:44:21.0609 0x1310  TosIde - ok
14:44:21.0656 0x1310  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
14:44:21.0656 0x1310  TrkWks - ok
14:44:21.0671 0x1310  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
14:44:21.0687 0x1310  Udfs - ok
14:44:21.0703 0x1310  [ 1B698A51CD528D8DA4FFAED66DFC51B9, FC3F12D25EE0E99AFE056502FCCFC052854699C21B99D559FAF1244F206DFB4F ] ultra           C:\WINDOWS\system32\DRIVERS\ultra.sys
14:44:21.0703 0x1310  ultra - ok
14:44:21.0734 0x1310  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
14:44:21.0750 0x1310  Update - ok
14:44:21.0781 0x1310  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        C:\WINDOWS\System32\upnphost.dll
14:44:21.0781 0x1310  upnphost - ok
14:44:21.0812 0x1310  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             C:\WINDOWS\System32\ups.exe
14:44:21.0812 0x1310  UPS - ok
14:44:21.0859 0x1310  [ 83CAFCB53201BBAC04D822F32438E244, E3F6FDE4D429FB630B19417DD9752A2CE9F6C9FD58918D714B5438A3D4136853 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
14:44:21.0859 0x1310  USBAAPL - ok
14:44:21.0875 0x1310  [ 65898A183FBF1D1F7759D5CCB364DCD4, 85E823123FDB4CA5F8255064E22A444627999055EC3419DFD001371893F36AB9 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
14:44:21.0875 0x1310  usbaudio - ok
14:44:21.0906 0x1310  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:44:21.0906 0x1310  usbccgp - ok
14:44:21.0921 0x1310  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:44:21.0921 0x1310  usbehci - ok
14:44:21.0937 0x1310  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:44:21.0937 0x1310  usbhub - ok
14:44:21.0968 0x1310  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
14:44:21.0968 0x1310  usbprint - ok
14:44:22.0000 0x1310  [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
14:44:22.0015 0x1310  usbscan - ok
14:44:22.0031 0x1310  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:44:22.0031 0x1310  USBSTOR - ok
14:44:22.0046 0x1310  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:44:22.0046 0x1310  usbuhci - ok
14:44:22.0078 0x1310  [ B4D7B7AD8A9F7C063C5CC3E2C1A0724E, CFA47A71403419CA7C94333B4F7766DFC97C5DCDBC3AD1B106044B93C979A5C5 ] usb_rndisx      C:\WINDOWS\system32\DRIVERS\usb8023x.sys
14:44:22.0078 0x1310  usb_rndisx - ok
14:44:22.0171 0x1310  [ 9D19B042A4FD5C02195071EA2FE0C821, 94825411F84801FDA598E59A38FA5398D1E640AA3D704F026234FEAEBE9898BB ] usnjsvc         C:\Program Files\Windows Live\Messenger\usnsvc.exe
14:44:22.0171 0x1310  usnjsvc - ok
14:44:22.0187 0x1310  [ DEEA641CC5F87867759856A52CBC0999, ACAA1433FD79E7BB41F493F3E6125A0E3314DB822D01F771E641812E14EE0370 ] V2IMount        C:\WINDOWS\system32\drivers\V2IMount.sys
14:44:22.0203 0x1310  V2IMount - ok
14:44:22.0218 0x1310  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
14:44:22.0218 0x1310  VgaSave - ok
14:44:22.0234 0x1310  [ 754292CE5848B3738281B4F3607EAEF4, B0DCC9E9F8F78671FF878B493264C3B1DD2ED4A7167E3F5495F66ABF5FACB86C ] viaagp          C:\WINDOWS\system32\DRIVERS\viaagp.sys
14:44:22.0250 0x1310  viaagp - ok
14:44:22.0265 0x1310  [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E, FC7FFD53FCC0F81587EFF26A43C141D25C43DBC68311520CE2BCDD739CA58CA9 ] ViaIde          C:\WINDOWS\system32\DRIVERS\viaide.sys
14:44:22.0265 0x1310  ViaIde - ok
14:44:22.0281 0x1310  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
14:44:22.0296 0x1310  VolSnap - ok
14:44:22.0312 0x1310  [ 4E3FF45D846B6FFA142F53CA8784A94D, 2B6962A1B4103318618E883ACD80249E08E8143C152A052E49C4857E70ADF210 ] VPROEVENTMONITOR C:\WINDOWS\system32\drivers\VProEventMonitor.sys
14:44:22.0312 0x1310  VPROEVENTMONITOR - ok
14:44:22.0359 0x1310  [ 27B3DD12A19EEC50220DF15B64913DDA, 3585E3A6C52DF2F6FD6667228EECEEB12A2055869377F6C4A14DEA1C213C05F9 ] vsdatant        C:\WINDOWS\system32\vsdatant.sys
14:44:22.0359 0x1310  vsdatant - ok
14:44:22.0390 0x1310  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             C:\WINDOWS\System32\vssvc.exe
14:44:22.0390 0x1310  VSS - ok
14:44:22.0406 0x1310  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] w32time         C:\WINDOWS\system32\w32time.dll
14:44:22.0421 0x1310  w32time - ok
14:44:22.0453 0x1310  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:44:22.0453 0x1310  Wanarp - ok
14:44:22.0453 0x1310  wanatw - ok
14:44:22.0500 0x1310  [ 4A954A20A4C73D6DB13C0FE25F3F1B0C, 01E763616687720E16EA3FEF48769BD14E77599B4247E60392A957DC9E69E8D7 ] wceusbsh        C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
14:44:22.0500 0x1310  wceusbsh - ok
14:44:22.0546 0x1310  [ D6EFAF429FD30C5DF613D220E344CCE7, 807D4563E8AD4073688691078EB13AF240E14BA5E0C8506A48B3060A20B90082 ] WDC_SAM         C:\WINDOWS\system32\DRIVERS\wdcsam.sys
14:44:22.0546 0x1310  WDC_SAM - ok
14:44:22.0640 0x1310  [ 0220362DEB2A21551B418D61F3153347, 54DDF6EB091074626FB825D93E0245DF0F5E196DA766AF41A31DAE70A13C2C8D ] WDDMService     C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
14:44:22.0640 0x1310  WDDMService - ok
14:44:22.0656 0x1310  WDICA - ok
14:44:22.0671 0x1310  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
14:44:22.0687 0x1310  wdmaud - ok
14:44:22.0703 0x1310  [ 138AB06ADBBF300AA804D7974A5AEC82, 61A99CB8176C291E858F9D964A9B2EC36970F3BFFF3D5F933A16E9B28BF922DD ] WDSmartWareBackgroundService C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
14:44:22.0703 0x1310  WDSmartWareBackgroundService - ok
14:44:22.0734 0x1310  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       C:\WINDOWS\System32\webclnt.dll
14:44:22.0734 0x1310  WebClient - ok
14:44:22.0781 0x1310  [ F59ED5A43B988A18EF582BB07B2327A7, E870821C9C4E31D3B05049FBA5D81358F9C30E6A67F600D4EA3A5736CA344028 ] winachsf        C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
14:44:22.0796 0x1310  winachsf - ok
14:44:22.0859 0x1310  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
14:44:22.0859 0x1310  winmgmt - ok
14:44:22.0937 0x1310  [ 94A85E956A065E23E0010A6A7826243B, F70A8301D071667718F04A9F261946ED8D64EE1B08055C518186252198F8F3F1 ] WLSetupSvc      C:\Program Files\Windows Live\installer\WLSetupSvc.exe
14:44:22.0937 0x1310  WLSetupSvc - ok
14:44:22.0968 0x1310  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
14:44:22.0968 0x1310  WmdmPmSN - ok
14:44:23.0031 0x1310  [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] Wmi             C:\WINDOWS\System32\advapi32.dll
14:44:23.0046 0x1310  Wmi - ok
14:44:23.0062 0x1310  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
14:44:23.0078 0x1310  WmiApSrv - ok
14:44:23.0140 0x1310  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B, C71FAAC752F6D58BF8556661252DBF8C5DDD090CAE002A2C7E09C9A014526066 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
14:44:23.0171 0x1310  WMPNetworkSvc - ok
14:44:23.0187 0x1310  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
14:44:23.0187 0x1310  WS2IFSL - ok
14:44:23.0234 0x1310  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
14:44:23.0250 0x1310  wscsvc - ok
14:44:23.0296 0x1310  [ C98B39829C2BBD34E454150633C62C78, 71B60EA3AD0E2637917D528C6A9E7ECF2949E3E5E91036AA5BBADA95BD725511 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
14:44:23.0296 0x1310  WSTCODEC - ok
14:44:23.0312 0x1310  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
14:44:23.0312 0x1310  wuauserv - ok
14:44:23.0359 0x1310  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
14:44:23.0359 0x1310  WudfPf - ok
14:44:23.0375 0x1310  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
14:44:23.0375 0x1310  WudfRd - ok
14:44:23.0421 0x1310  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
14:44:23.0421 0x1310  WudfSvc - ok
14:44:23.0468 0x1310  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
14:44:23.0484 0x1310  WZCSVC - ok
14:44:23.0515 0x1310  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
14:44:23.0515 0x1310  xmlprov - ok
14:44:23.0546 0x1310  [ D6C0321B5CC0BD3860EF603132F0CF8E, 7457355E8A97E95FAAB5EBCF59B196EDAAB70D6E91E49F21E19712D5B85CE4E2 ] YMIDUSB         C:\WINDOWS\system32\Drivers\ymidusb.sys
14:44:23.0562 0x1310  YMIDUSB - ok
14:44:23.0578 0x1310  ================ Scan global ===============================
14:44:23.0640 0x1310  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
14:44:23.0671 0x1310  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
14:44:23.0687 0x1310  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
14:44:23.0734 0x1310  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
14:44:23.0734 0x1310  [ Global ] - ok
14:44:23.0734 0x1310  ================ Scan MBR ==================================
14:44:23.0750 0x1310  [ 5CB90281D1A59B251F6603134774EEC3 ] \Device\Harddisk0\DR0
14:44:23.0968 0x1310  \Device\Harddisk0\DR0 - ok
14:44:23.0968 0x1310  ================ Scan VBR ==================================
14:44:23.0968 0x1310  [ A0E7C34AABE93A975FFE207B14DC3F6C ] \Device\Harddisk0\DR0\Partition1
14:44:23.0984 0x1310  \Device\Harddisk0\DR0\Partition1 - ok
14:44:24.0000 0x1310  [ 99AF0D3B49F1D05C3C1AA9FF10B5473A ] \Device\Harddisk0\DR0\Partition2
14:44:24.0000 0x1310  \Device\Harddisk0\DR0\Partition2 - ok
14:44:24.0062 0x1310  AV detected via SS1: Norton 360, 21.1.0.18, disabled, outofdate
14:44:24.0062 0x1310  FW detected via SS1: Norton 360, 21.1.0.18, enabled
14:44:24.0062 0x1310  ============================================================
14:44:24.0062 0x1310  Scan finished
14:44:24.0062 0x1310  ============================================================
14:44:24.0078 0x129c  Detected object count: 0
14:44:24.0078 0x129c  Actual detected object count: 0
14:44:29.0609 0x11fc  Deinitialize success
 


# AdwCleaner v3.017 - Report created 26/01/2014 at 15:29:37
# Updated 12/01/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Administrator - MC1
# Running from : C:\Documents and Settings\Ian\Desktop\Claening Tools\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\Viewpoint
Folder Deleted : C:\Program Files\Viewpoint

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200F14F1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\Software\ImInstaller
Key Deleted : HKLM\Software\MetaStream
Key Deleted : HKLM\Software\Viewpoint
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.6001.18702


*************************

AdwCleaner[R0].txt - [2675 octets] - [26/01/2014 15:28:35]
AdwCleaner[S0].txt - [2650 octets] - [26/01/2014 15:29:37]

########## EOF - \AdwCleaner\AdwCleaner[S0].txt - [2710 octets] ##########
 



#4 meketrik

meketrik
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:08:49 PM

Posted 26 January 2014 - 03:47 PM

junkware removal tool is being blocked by our web security scanner download so i was unable to download it. I am using the only healthy computer i have to download and post... but its behind a coporate security system.


arbar Service Scanner Version: 08-01-2014
Ran by Administrator (administrator) on 26-01-2014 at 15:40:04
Running from "C:\Documents and Settings\Ian\Desktop\Claening Tools"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
There is no connection to network.
Attempt to access Google IP returned error. Google IP is unreachable
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============
Srservice Service is not running. Checking service configuration:
The start type of Srservice service is OK.
The ImagePath of Srservice service is OK.
The ServiceDll of Srservice: "C:\WINDOWS\system32\srsvc.dll".

sr Service is not running. Checking service configuration:
The start type of sr service is set to Disabled. The default start type is Boot.
The ImagePath of sr: "\SystemRoot\system32\DRIVERS\sr.sys".


System Restore Disabled Policy:
========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=DWORD:1


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Other Services:
==============


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
CdpPacket(11) DNE(9) Gpc(6) IPSec(4) irda(10) NetBT(5) PSched(7) SYMTDI(12) Tcpip(3)
0x0C000000040000000100000002000000030000000C00000008000000050000000600000007000000090000000A0000000B000000
IpSec Tag value is correct.

**** End of log ****



#5 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:01:49 AM

Posted 26 January 2014 - 03:58 PM

If its behind a company firewall and its a company asset please contact your Companies IT Department.

#6 meketrik

meketrik
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:08:49 PM

Posted 26 January 2014 - 04:00 PM

Sorry, let me clarify. the suspect computer is not behind a corporate firewall. i have disconnected it from the network. The one behind the coporate firewall is the one I am using to download your recommended tools and post from.



#7 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:01:49 AM

Posted 26 January 2014 - 05:49 PM

Is the computer that is infected or you think is infected, part of a company network?

#8 meketrik

meketrik
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:08:49 PM

Posted 26 January 2014 - 06:06 PM

no. the suspect computer is a personal home computer which i have disconnected from the net while I work on it. I am transferring tools/logs to/from it with a flash drive.



#9 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:01:49 AM

Posted 26 January 2014 - 06:11 PM

Do you have a healthy computer or device at home?

#10 meketrik

meketrik
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:08:49 PM

Posted 26 January 2014 - 06:12 PM

yes have a mac here.



#11 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:01:49 AM

Posted 26 January 2014 - 06:16 PM

You can download the tools on that and transfer them over.

#12 meketrik

meketrik
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:08:49 PM

Posted 26 January 2014 - 06:29 PM

Any idea why the web security scanner thinks http://thisisudax.org/downloads/JRT.exe is malware?



#13 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:01:49 AM

Posted 26 January 2014 - 06:29 PM

Probably due to the heuristics and characteristics of the file.

#14 meketrik

meketrik
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Local time:08:49 PM

Posted 26 January 2014 - 09:40 PM

JRT hangs at "Checking Registry". Have tried it twice and let it run the first time for a couple of hours. How long should that reg check take normally?



#15 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:01:49 AM

Posted 27 January 2014 - 07:35 AM

It would all be dependent on how full the hard drive is as it has to scan all keys.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users