Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows Vista strange happenings and not able to do alot, think i am infected.


  • Please log in to reply
7 replies to this topic

#1 amedcalf

amedcalf

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:05:17 PM

Posted 27 March 2014 - 06:46 AM

Hi,

 

I think I may be infected with a virus.

 

Malwarebytes detected and removed a trojan.

 

My sound has stopped working (red cross next to speaker, stating No Audio Output Device is installed when i know it is).

 

I try and remove programs from Add remove and this does nothing.

 

My laptop takes ages to load (as if something is starting up that shouldn't)

 

There are quite a few other things that I cannot do that I could previously.

 

Please can I have some help.

 

Thanks

 

Allan



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,337 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:17 PM

Posted 27 March 2014 - 09:22 AM

Hi Allan

Let's get all the malware out first.


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 amedcalf

amedcalf
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:05:17 PM

Posted 27 March 2014 - 03:52 PM

Hi,

 

Thanks for responding, these are the results -

 

Minitoolbox :-

 

 

MiniToolBox by Farbar Version: 23-01-2014
Ran by Allan (administrator) on 27-03-2014 at 15:37:54
Running from "C:\Users\Allan\Desktop"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Broadcom 802.11b/g WLAN = Wireless Network Connection (Connected)
NVIDIA nForce 10/100 Mbps Ethernet = Local Area Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

Host Name . . . . . . . . . . . . : Allan-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Broadcom 802.11b/g WLAN
Physical Address. . . . . . . . . : 00-1A-73-D7-19-73
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::3533:ad8e:1d1a:704a%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.66(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : 27 March 2014 09:59:05
Lease Expires . . . . . . . . . . : 28 March 2014 09:59:05
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 184556147
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0E-DC-D5-45-00-1B-24-E2-CB-DD
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NVIDIA nForce 10/100 Mbps Ethernet
Physical Address. . . . . . . . . : 00-1B-24-E2-CB-DD
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : isatap.home
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:4c4:51b:3f57:febd(Preferred)
Link-local IPv6 Address . . . . . : fe80::4c4:51b:3f57:febd%11(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{CEA334AC-470E-4F67-9671-5D51D8CDE38D}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 10:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: BThomehub.home
Address: 192.168.1.254

Name: google.com
Addresses: 2a00:1450:4009:803::1007
173.194.34.110
173.194.34.96
173.194.34.101
173.194.34.103
173.194.34.102
173.194.34.105
173.194.34.99
173.194.34.98
173.194.34.104
173.194.34.100
173.194.34.97

 

Pinging google.com [173.194.34.105] with 32 bytes of data:

General failure.

Reply from 173.194.34.105: bytes=32 time=17ms TTL=52

 

Ping statistics for 173.194.34.105:

Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),

Approximate round trip times in milli-seconds:

Minimum = 17ms, Maximum = 17ms, Average = 17ms

Server: BThomehub.home
Address: 192.168.1.254

Name: yahoo.com
Addresses: 206.190.36.45
98.138.253.109
98.139.183.24

 

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

General failure.

Reply from 206.190.36.45: bytes=32 time=174ms TTL=44

 

Ping statistics for 206.190.36.45:

Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),

Approximate round trip times in milli-seconds:

Minimum = 174ms, Maximum = 174ms, Average = 174ms

 

Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
10 ...00 1a 73 d7 19 73 ...... Broadcom 802.11b/g WLAN
8 ...00 1b 24 e2 cb dd ...... NVIDIA nForce 10/100 Mbps Ethernet
1 ........................... Software Loopback Interface 1
15 ...00 00 00 00 00 00 00 e0 isatap.home
11 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
14 ...00 00 00 00 00 00 00 e0 isatap.{CEA334AC-470E-4F67-9671-5D51D8CDE38D}
9 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.66 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.66 281
192.168.1.66 255.255.255.255 On-link 192.168.1.66 281
192.168.1.255 255.255.255.255 On-link 192.168.1.66 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.66 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.66 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 18 ::/0 On-link
1 306 ::1/128 On-link
11 18 2001::/32 On-link
11 266 2001:0:5ef5:79fb:4c4:51b:3f57:febd/128
On-link
10 281 fe80::/64 On-link
11 266 fe80::/64 On-link
11 266 fe80::4c4:51b:3f57:febd/128
On-link
10 281 fe80::3533:ad8e:1d1a:704a/128
On-link
1 306 ff00::/8 On-link
11 266 ff00::/8 On-link
10 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\PCProtect.dll [293984] (Objectify Media Inc)
Catalog9 02 C:\Windows\system32\PCProtect.dll [293984] (Objectify Media Inc)
Catalog9 03 C:\Windows\system32\PCProtect.dll [293984] (Objectify Media Inc)
Catalog9 04 C:\Windows\system32\PCProtect.dll [293984] (Objectify Media Inc)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\PCProtect.dll [293984] (Objectify Media Inc)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/24/2014 11:32:22 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16540 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 268c
Start Time: 01cf47b928fbf320
Termination Time: 20

Error: (03/24/2014 10:45:05 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 9.0.8112.16540, time stamp 0x5309896b, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception code 0xc0000005, fault offset 0x24448b30,
process id 0x2b50, application start time 0xiexplore.exe0.

Error: (03/22/2014 11:01:08 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16540 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 1ce0
Start Time: 01cf462265152b5c
Termination Time: 16

Error: (03/22/2014 10:59:35 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16540 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: ff4
Start Time: 01cf46213e0dac4c
Termination Time: 73

Error: (03/22/2014 10:51:20 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16540 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 19ac
Start Time: 01cf4620d962f39c
Termination Time: 32

Error: (03/22/2014 10:21:59 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16540 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 1090
Start Time: 01cf461997c5f0bc
Termination Time: 59

Error: (03/21/2014 05:35:50 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16540 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 3a48
Start Time: 01cf452bd570c703
Termination Time: 26

Error: (03/21/2014 04:43:10 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16540 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 3d84
Start Time: 01cf452356fdb073
Termination Time: 27

Error: (03/21/2014 04:33:50 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16540 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 12f4
Start Time: 01cf451de87ff5e3
Termination Time: 42

Error: (03/20/2014 06:59:55 AM) (Source: Application Error) (User: )
Description: Faulting application regsvr32.exe, version 6.0.6000.16386, time stamp 0x4549b3c7, faulting module ntdll.dll, version 6.0.6002.18881, time stamp 0x51da3e27, exception code 0xc0000005, fault offset 0x00048762,
process id 0x874, application start time 0xregsvr32.exe0.

System errors:
=============
Error: (03/27/2014 10:00:46 AM) (Source: Service Control Manager) (User: )
Description: CyberLink Task Scheduler (CTS)CyberLink Background Capture Service (CBCS)%%1070

Error: (03/27/2014 10:00:45 AM) (Source: Service Control Manager) (User: )
Description: CyberLink Background Capture Service (CBCS)

Error: (03/27/2014 10:00:28 AM) (Source: Service Control Manager) (User: )
Description: Protect Monitor%%1053

Error: (03/27/2014 10:00:28 AM) (Source: Service Control Manager) (User: )
Description: 30000Protect Monitor

Error: (03/27/2014 10:00:28 AM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (03/27/2014 00:39:24 AM) (Source: PlugPlayManager) (User: )
Description: The device Root\LEGACY_SASKUTIL\0000 disappeared from the system without first being prepared for removal.

Error: (03/27/2014 00:39:24 AM) (Source: PlugPlayManager) (User: )
Description: The device Root\LEGACY_SASDIFSV\0000 disappeared from the system without first being prepared for removal.

Error: (03/26/2014 11:05:09 PM) (Source: Service Control Manager) (User: )
Description: CyberLink Task Scheduler (CTS)CyberLink Background Capture Service (CBCS)%%1070

Error: (03/26/2014 11:05:08 PM) (Source: Service Control Manager) (User: )
Description: CyberLink Background Capture Service (CBCS)

Error: (03/26/2014 11:04:50 PM) (Source: Service Control Manager) (User: )
Description: Protect Monitor%%1053

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2014-03-27 12:41:16.628
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-03-27 12:41:16.243
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-03-27 12:41:15.857
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-03-27 12:41:15.470
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-03-27 10:01:37.135
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-03-26 23:06:06.289
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-03-26 22:57:38.266
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-03-26 22:57:37.742
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-03-26 22:57:37.217
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

Date: 2014-03-26 22:57:36.688
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\WINDOWS\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.

=========================== Installed Programs ============================

Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe Flash Player 12 ActiveX (Version: 12.0.0.77)
Adobe Reader 8 (Version: 8.0.0)
Bing Desktop (Version: 1.3.347.0)
BT Cloud (Version: 2.1.2106)
BT Desktop Help
BT Toolbar (Version: 1.0.0.43)
Conexant HD Audio (Version: 4.36.7.61)
D3DX10 (Version: 15.4.2368.0902)
EPSON Scan
ESET Online Scanner v3
ESU for Microsoft Vista (Version: 2.0.5.1)
HDAUDIO Soft Data Fax Modem with SmartCP
Hewlett-Packard Active Check (Version: 1.1.7.0)
Hewlett-Packard Asset Agent (Version: 2.0.58.0)
HP Active Support Library (Version: 2.0.9.1)
HP Active Support Library 32 bit components (Version: 1.0.9)
HP Doc Viewer (Version: 1.01.0005)
HP Easy Setup - Frontend (Version: 5.1.0.2279)
HP Help and Support (Version: 1.1.0)
HP Photosmart Essential 2.0 (Version: 2.0)
HP Photosmart Essential2.5 (Version: 1.00.0000)
HP Quick Launch Buttons (Version: 6.50.14.1)
HP QuickPlay 3.2
HP Update (Version: 5.005.000.002)
HP User Guides 0057 (Version: 1.03.0000)
HP Wireless Assistant (Version: 3.00 F1)
Java 7 Update 51 (Version: 7.0.510)
Java Auto Updater (Version: 2.1.9.8)
Junk Mail filter update (Version: 15.4.3502.0922)
LightScribe 1.6.43.1 (Version: 1.6.43.1)
Malwarebytes Anti-Exploit version 0.10.0.1000 (Version: 0.10.0.1000)
Malwarebytes Anti-Malware version 2.00.0.1000 (Version: 2.00.0.1000)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Automated Troubleshooting Services Shim
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.5.0216.0)
Microsoft Security Essentials (Version: 4.5.216.0)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 08.05.0818)
MSCU for Microsoft Vista (Version: 1.0.1.3)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
muvee autoProducer 6.0 (Version: 6.00.050)
NVIDIA Drivers (Version: 1.4)
PSSWCORE (Version: 2.00.5000)
QLBCASL (Version: 6.40.17.2)
Roxio Activation Module (Version: 1.0)
Roxio Creator Audio (Version: 3.4.0)
Roxio Creator Basic v9 (Version: 3.4.0)
Roxio Creator Copy (Version: 3.4.0)
Roxio Creator Data (Version: 3.4.0)
Roxio Creator EasyArchive (Version: 3.4.0)
Roxio Creator Tools (Version: 3.4.0)
Roxio Express Labeler 3 (Version: 3.2.1)
Roxio MyDVD Basic v9 (Version: 9.0.551)
Segoe UI (Version: 15.4.2271.0615)
SmartAudio
Synaptics Pointing Device Driver (Version: 15.3.29.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Memory info: ===================================

Percentage of memory in use: 48%
Total physical RAM: 3006.18 MB
Available physical RAM: 1537.84 MB
Total Pagefile: 6250.58 MB
Available Pagefile: 4790.2 MB
Total Virtual: 2047.88 MB
Available Virtual: 1951.53 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:225.12 GB) (Free:157.46 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:7.76 GB) (Free:2.18 GB) NTFS
3 Drive e: (Papercraft) (CDROM) (Total:0.57 GB) (Free:0 GB) CDFS

========================= Users: ========================================

User accounts for \\ALLAN-PC

Administrator Allan Guest

**** End of log ****

 

 

 

TDSSKiller :-

 

15:46:35.0158 0x16e0 TDSS rootkit removing tool 3.0.0.26 Mar 24 2014 07:28:43
15:46:43.0545 0x16e0 ============================================================
15:46:43.0545 0x16e0 Current date / time: 2014/03/27 15:46:43.0545
15:46:43.0545 0x16e0 SystemInfo:
15:46:43.0545 0x16e0
15:46:43.0546 0x16e0 OS Version: 6.0.6002 ServicePack: 2.0
15:46:43.0546 0x16e0 Product type: Workstation
15:46:43.0546 0x16e0 ComputerName: ALLAN-PC
15:46:43.0547 0x16e0 UserName: Allan
15:46:43.0547 0x16e0 Windows directory: C:\Windows
15:46:43.0547 0x16e0 System windows directory: C:\Windows
15:46:43.0547 0x16e0 Processor architecture: Intel x86
15:46:43.0547 0x16e0 Number of processors: 2
15:46:43.0547 0x16e0 Page size: 0x1000
15:46:43.0547 0x16e0 Boot type: Normal boot
15:46:43.0547 0x16e0 ============================================================
15:46:45.0732 0x16e0 KLMD registered as C:\Windows\system32\drivers\01586363.sys
15:46:46.0278 0x16e0 System UUID: {8855ED5A-6B6C-61E7-E628-C655505F09FE}
15:46:47.0689 0x16e0 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:46:47.0691 0x16e0 ============================================================
15:46:47.0691 0x16e0 \Device\Harddisk0\DR0:
15:46:47.0692 0x16e0 MBR partitions:
15:46:47.0692 0x16e0 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1C23F38D
15:46:47.0692 0x16e0 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1C23F3CC, BlocksNum 0xF851B5
15:46:47.0692 0x16e0 ============================================================
15:46:47.0716 0x16e0 C: <-> \Device\Harddisk0\DR0\Partition1
15:46:47.0759 0x16e0 D: <-> \Device\Harddisk0\DR0\Partition2
15:46:47.0760 0x16e0 ============================================================
15:46:47.0760 0x16e0 Initialize success
15:46:47.0760 0x16e0 ============================================================
15:46:50.0371 0x1da4 ============================================================
15:46:50.0372 0x1da4 Scan started
15:46:50.0372 0x1da4 Mode: Manual;
15:46:50.0372 0x1da4 ============================================================
15:46:50.0372 0x1da4 KSN ping started
15:47:03.0855 0x1da4 KSN ping finished: true
15:47:05.0045 0x1da4 ================ Scan system memory ========================
15:47:05.0045 0x1da4 System memory - ok
15:47:05.0046 0x1da4 ================ Scan services =============================
15:47:05.0247 0x1da4 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
15:47:05.0267 0x1da4 ACPI - ok
15:47:05.0390 0x1da4 [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:47:05.0410 0x1da4 AdobeFlashPlayerUpdateSvc - ok
15:47:05.0488 0x1da4 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:47:05.0520 0x1da4 adp94xx - ok
15:47:05.0585 0x1da4 [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:47:05.0612 0x1da4 adpahci - ok
15:47:05.0647 0x1da4 [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
15:47:05.0651 0x1da4 adpu160m - ok
15:47:05.0672 0x1da4 [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:47:05.0678 0x1da4 adpu320 - ok
15:47:05.0728 0x1da4 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:47:05.0729 0x1da4 AeLookupSvc - ok
15:47:05.0795 0x1da4 [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD C:\Windows\system32\drivers\afd.sys
15:47:05.0808 0x1da4 AFD - ok
15:47:05.0840 0x1da4 [ EF23439CDD587F64C2C1B8825CEAD7D8, 762665CFC202B3E16CA2338887896FDF996331A363DC709F1EC088BF927133A3 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:47:05.0844 0x1da4 agp440 - ok
15:47:05.0869 0x1da4 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
15:47:05.0874 0x1da4 aic78xx - ok
15:47:05.0919 0x1da4 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
15:47:05.0922 0x1da4 ALG - ok
15:47:05.0941 0x1da4 [ 90395B64600EBB4552E26E178C94B2E4, 73095893964DC7915983B58A567184FC51949C99341E7E0D04D70CC4C4F95E37 ] aliide C:\Windows\system32\drivers\aliide.sys
15:47:05.0942 0x1da4 aliide - ok
15:47:05.0954 0x1da4 [ 2B13E304C9DFDFA5EB582F6A149FA2C7, 196CCE13E0376526B79D9C43D4071990576C4DD210A48E9E922B438AA11C95E7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
15:47:05.0957 0x1da4 amdagp - ok
15:47:05.0976 0x1da4 [ 0577DF1D323FE75A739C787893D300EA, 079EF3CA18FB847DB7E62929071BFF007FAF390E1DBF4C59F28DAAC6B9C2DE51 ] amdide C:\Windows\system32\drivers\amdide.sys
15:47:05.0978 0x1da4 amdide - ok
15:47:05.0993 0x1da4 [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
15:47:05.0995 0x1da4 AmdK7 - ok
15:47:06.0023 0x1da4 [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
15:47:06.0027 0x1da4 AmdK8 - ok
15:47:06.0091 0x1da4 [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo C:\Windows\System32\appinfo.dll
15:47:06.0093 0x1da4 Appinfo - ok
15:47:06.0119 0x1da4 [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc C:\Windows\system32\drivers\arc.sys
15:47:06.0122 0x1da4 arc - ok
15:47:06.0144 0x1da4 [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:47:06.0148 0x1da4 arcsas - ok
15:47:06.0289 0x1da4 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
15:47:06.0292 0x1da4 aspnet_state - ok
15:47:06.0348 0x1da4 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:47:06.0352 0x1da4 AsyncMac - ok
15:47:06.0389 0x1da4 [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi C:\Windows\system32\drivers\atapi.sys
15:47:06.0392 0x1da4 atapi - ok
15:47:06.0474 0x1da4 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:47:06.0486 0x1da4 AudioEndpointBuilder - ok
15:47:06.0508 0x1da4 [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv C:\Windows\System32\Audiosrv.dll
15:47:06.0520 0x1da4 Audiosrv - ok
15:47:06.0629 0x1da4 [ 34A0A6386256080F52C74076C6157026, F3B7753958C4F990DA0619EA1095C0531D996593FDBB364E915FBBC7B53B8EE1 ] BCM43XV C:\Windows\system32\DRIVERS\bcmwl6.sys
15:47:06.0674 0x1da4 BCM43XV - ok
15:47:06.0783 0x1da4 [ 34A0A6386256080F52C74076C6157026, F3B7753958C4F990DA0619EA1095C0531D996593FDBB364E915FBBC7B53B8EE1 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
15:47:06.0828 0x1da4 BCM43XX - ok
15:47:06.0856 0x1da4 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
15:47:06.0857 0x1da4 Beep - ok
15:47:06.0930 0x1da4 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
15:47:06.0944 0x1da4 BFE - ok
15:47:07.0095 0x1da4 [ D1668FA23D26CC97AEBF0EBAE1A015B7, 22215FC6F4292C1F5C24248CF8B455A488C2C63B29D35D6159423F1B5297F66F ] BingDesktopUpdate C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe
15:47:07.0102 0x1da4 BingDesktopUpdate - ok
15:47:07.0194 0x1da4 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\System32\qmgr.dll
15:47:07.0222 0x1da4 BITS - ok
15:47:07.0235 0x1da4 blbdrive - ok
15:47:07.0295 0x1da4 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:47:07.0298 0x1da4 bowser - ok
15:47:07.0341 0x1da4 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
15:47:07.0343 0x1da4 BrFiltLo - ok
15:47:07.0359 0x1da4 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
15:47:07.0360 0x1da4 BrFiltUp - ok
15:47:07.0415 0x1da4 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
15:47:07.0419 0x1da4 Browser - ok
15:47:07.0442 0x1da4 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
15:47:07.0445 0x1da4 Brserid - ok
15:47:07.0468 0x1da4 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
15:47:07.0473 0x1da4 BrSerWdm - ok
15:47:07.0497 0x1da4 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
15:47:07.0499 0x1da4 BrUsbMdm - ok
15:47:07.0523 0x1da4 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
15:47:07.0525 0x1da4 BrUsbSer - ok
15:47:07.0667 0x1da4 [ DEAC404F82D2B6391278296027506AAC, DB8E1A497BE1B9E91C5E874D125687F7C845AEBDDE91247262BDF73BDED79F5E ] BT Help Wizard C:\Program Files\BT Broadband Desktop Help\btbb\MA\8.4.0.53.bt.0.5\ma\bin\MAHostService.exe
15:47:07.0919 0x1da4 BT Help Wizard - ok
15:47:07.0950 0x1da4 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:47:07.0955 0x1da4 BTHMODEM - ok
15:47:07.0986 0x1da4 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:47:07.0989 0x1da4 cdfs - ok
15:47:08.0022 0x1da4 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:47:08.0026 0x1da4 cdrom - ok
15:47:08.0076 0x1da4 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
15:47:08.0078 0x1da4 CertPropSvc - ok
15:47:08.0102 0x1da4 [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass C:\Windows\system32\drivers\circlass.sys
15:47:08.0105 0x1da4 circlass - ok
15:47:08.0200 0x1da4 [ DBAFC6734C054FEEF9087754BD80F847, 96E72640DE42602D78CD4ECB56AFF756309A98ADFDB1A132A93E14ED73C39EB7 ] CLCapSvc C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
15:47:08.0210 0x1da4 CLCapSvc - ok
15:47:08.0244 0x1da4 [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS C:\Windows\system32\CLFS.sys
15:47:08.0254 0x1da4 CLFS - ok
15:47:08.0333 0x1da4 [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:47:08.0338 0x1da4 clr_optimization_v2.0.50727_32 - ok
15:47:08.0385 0x1da4 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:47:08.0390 0x1da4 clr_optimization_v4.0.30319_32 - ok
15:47:08.0410 0x1da4 [ E67F8F036FD882E4AB62501C0D45B536, A65E39C61E918EFEC1EBF5D8B456D6383B2B15A09A4BC98B45D793C879287898 ] CLSched C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
15:47:08.0473 0x1da4 CLSched - ok
15:47:08.0517 0x1da4 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
15:47:08.0520 0x1da4 CmBatt - ok
15:47:08.0551 0x1da4 [ 45201046C776FFDAF3FC8A0029C581C8, 68A68CF2B76598BC8610EB5B2D3FD5BDC9D51CFC6F51FB7A0B0C92A2BE910FC6 ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:47:08.0553 0x1da4 cmdide - ok
15:47:08.0594 0x1da4 [ B6E7991E3D6146C04C85CD31AF22A381, 808393C7C5E59F273D03C62745A2AF759F588C102EDB6A2B8DD94C9A6AAF3F10 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT32.sys
15:47:08.0604 0x1da4 CnxtHdAudService - ok
15:47:08.0673 0x1da4 [ C7A0E61D5714AC20DE52D4F66EC773B8, 53F0C91FD62E6787221EFB4BFDB087C2087CACD6B0C0605F58FC391F546EBA7A ] Com4QLBEx C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
15:47:08.0759 0x1da4 Com4QLBEx - ok
15:47:08.0809 0x1da4 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
15:47:08.0811 0x1da4 Compbatt - ok
15:47:08.0824 0x1da4 COMSysApp - ok
15:47:08.0834 0x1da4 [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:47:08.0836 0x1da4 crcdisk - ok
15:47:08.0863 0x1da4 [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe C:\Windows\system32\drivers\crusoe.sys
15:47:08.0866 0x1da4 Crusoe - ok
15:47:08.0937 0x1da4 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:47:08.0942 0x1da4 CryptSvc - ok
15:47:09.0017 0x1da4 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:47:09.0039 0x1da4 DcomLaunch - ok
15:47:09.0080 0x1da4 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:47:09.0084 0x1da4 DfsC - ok
15:47:09.0291 0x1da4 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
15:47:09.0370 0x1da4 DFSR - ok
15:47:09.0411 0x1da4 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
15:47:09.0419 0x1da4 Dhcp - ok
15:47:09.0450 0x1da4 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
15:47:09.0453 0x1da4 disk - ok
15:47:09.0513 0x1da4 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:47:09.0517 0x1da4 Dnscache - ok
15:47:09.0539 0x1da4 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
15:47:09.0548 0x1da4 dot3svc - ok
15:47:09.0595 0x1da4 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
15:47:09.0600 0x1da4 DPS - ok
15:47:09.0647 0x1da4 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:47:09.0649 0x1da4 drmkaud - ok
15:47:09.0734 0x1da4 [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:47:09.0763 0x1da4 DXGKrnl - ok
15:47:09.0812 0x1da4 [ C0B00E55CF82D122D25983C7A6A53DEA, 88C7A1A4907DD03F025A0E523887ADBDEB5AE0AFF7CD726FE00CDD0380BA93D7 ] E100B C:\Windows\system32\DRIVERS\e100b325.sys
15:47:09.0821 0x1da4 E100B - ok
15:47:09.0855 0x1da4 [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
15:47:09.0862 0x1da4 E1G60 - ok
15:47:09.0940 0x1da4 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
15:47:09.0944 0x1da4 EapHost - ok
15:47:10.0016 0x1da4 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
15:47:10.0023 0x1da4 Ecache - ok
15:47:10.0106 0x1da4 [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:47:10.0119 0x1da4 ehRecvr - ok
15:47:10.0154 0x1da4 [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched C:\Windows\ehome\ehsched.exe
15:47:10.0160 0x1da4 ehSched - ok
15:47:10.0178 0x1da4 [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart C:\Windows\ehome\ehstart.dll
15:47:10.0179 0x1da4 ehstart - ok
15:47:10.0224 0x1da4 [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:47:10.0235 0x1da4 elxstor - ok
15:47:10.0287 0x1da4 [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
15:47:10.0307 0x1da4 EMDMgmt - ok
15:47:10.0392 0x1da4 [ 09E959301575E8E153B1DEACCACFC99E, 764B19342305C1C2FB0160D5340D1BADBB2CA2F4EA76778CC01677575B47471D ] ESProtectionDriver C:\Program Files\Malwarebytes Anti-Exploit\mbae.sys
15:47:10.0396 0x1da4 ESProtectionDriver - ok
15:47:10.0445 0x1da4 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
15:47:10.0456 0x1da4 EventSystem - ok
15:47:10.0481 0x1da4 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
15:47:10.0489 0x1da4 exfat - ok
15:47:10.0542 0x1da4 [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:47:10.0550 0x1da4 fastfat - ok
15:47:10.0576 0x1da4 [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc C:\Windows\system32\DRIVERS\fdc.sys
15:47:10.0578 0x1da4 fdc - ok
15:47:10.0631 0x1da4 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
15:47:10.0636 0x1da4 fdPHost - ok
15:47:10.0668 0x1da4 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
15:47:10.0674 0x1da4 FDResPub - ok
15:47:10.0709 0x1da4 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:47:10.0715 0x1da4 FileInfo - ok
15:47:10.0754 0x1da4 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:47:10.0756 0x1da4 Filetrace - ok
15:47:10.0776 0x1da4 [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
15:47:10.0778 0x1da4 flpydisk - ok
15:47:10.0796 0x1da4 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:47:10.0806 0x1da4 FltMgr - ok
15:47:10.0907 0x1da4 [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache C:\Windows\system32\FntCache.dll
15:47:10.0943 0x1da4 FontCache - ok
15:47:11.0033 0x1da4 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:47:11.0035 0x1da4 FontCache3.0.0.0 - ok
15:47:11.0091 0x1da4 [ B0082808A6856A252F7CDD939892CE50, 3A069239629C4F54049A2CFC6642AC5102ECEAA74470BAA9DDB1AB108D1060EE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
15:47:11.0094 0x1da4 fssfltr - ok
15:47:11.0312 0x1da4 [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe
15:47:11.0377 0x1da4 fsssvc - ok
15:47:11.0431 0x1da4 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:47:11.0433 0x1da4 Fs_Rec - ok
15:47:11.0473 0x1da4 [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:47:11.0477 0x1da4 gagp30kx - ok
15:47:11.0553 0x1da4 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
15:47:11.0572 0x1da4 gpsvc - ok
15:47:11.0621 0x1da4 [ 93AEE3434935FC2F805FEFD8DC5ED1B4, EF4A76725B76FFB9EA14E6274A1FDE8482DA907A9B967E3D7EDD365BF132AD42 ] HBtnKey C:\Windows\system32\DRIVERS\cpqbttn.sys
15:47:11.0674 0x1da4 HBtnKey - ok
15:47:11.0728 0x1da4 [ A08F4808FB19A40792A6056848187AFE, 3988DC8A995E11531EDD32A8816E0CC215EF60111AC4C05AA087472E620D8D68 ] HdAudAddService C:\Windows\system32\drivers\CHDART.sys
15:47:11.0734 0x1da4 HdAudAddService - ok
15:47:11.0787 0x1da4 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:47:11.0813 0x1da4 HDAudBus - ok
15:47:11.0834 0x1da4 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:47:11.0836 0x1da4 HidBth - ok
15:47:11.0854 0x1da4 [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
15:47:11.0857 0x1da4 HidIr - ok
15:47:11.0875 0x1da4 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\system32\hidserv.dll
15:47:11.0878 0x1da4 hidserv - ok
15:47:11.0896 0x1da4 [ 3C64042B95E583B366BA4E5D2450235E, B431F9692D66188AFEE372F312581178B14F49D763F8D1100D264623A239002A ] HidUsb C:\Windows\system32\drivers\hidusb.sys
15:47:11.0897 0x1da4 HidUsb - ok
15:47:11.0948 0x1da4 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
15:47:11.0953 0x1da4 hkmsvc - ok
15:47:12.0009 0x1da4 [ 2CEEB349216FEBD91A907013D4ABCFF7, 91C224CD83BEC21510976563F8056F678140322DA5B738566B5AFEFAB0F6A246 ] HP Health Check Service C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
15:47:12.0012 0x1da4 HP Health Check Service - ok
15:47:12.0033 0x1da4 [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
15:47:12.0037 0x1da4 HpCISSs - ok
15:47:12.0094 0x1da4 [ 1210960FF8928950D2A786895B0C424A, 22C8785E024CFDD3A43FAEAAA96B8332C37E9B6C765AB7AFBCD3DAA2DC9EFFC7 ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
15:47:12.0097 0x1da4 HpqKbFiltr - ok
15:47:12.0175 0x1da4 [ FDF273A845F1FFCCEADF363AAF47582F, 9BB99346A977225EF77261CD3CF4219A238EB06FFE2DB91D00A0037BDCFECEF1 ] hpqwmiex C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
15:47:12.0184 0x1da4 hpqwmiex - ok
15:47:12.0244 0x1da4 [ 46D67209550973257601A533E2AC5785, 3C0D97781947BA8532344AA5D9F3B684761B5B3263A0A294F4593E76EE41DB0C ] HSFHWAZL C:\Windows\system32\DRIVERS\VSTAZL3.SYS
15:47:12.0301 0x1da4 HSFHWAZL - ok
15:47:12.0424 0x1da4 [ 1882827F41DEE51C70E24C567C35BFB5, C3508BDB045F0CB2205733D9F0CF7A2BEE03C4E4A8690B7D305EBEE887E588C6 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys
15:47:12.0458 0x1da4 HSF_DPV - ok
15:47:12.0525 0x1da4 [ A44DDF3BA83E4664BF4DE9220097578C, 1EF22D06F6954F8E46241E8D7F231DC4BC2F78D898A9515D95BDEB4A0D372194 ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys
15:47:12.0533 0x1da4 HSXHWAZL - ok
15:47:12.0612 0x1da4 [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:47:12.0637 0x1da4 HTTP - ok
15:47:12.0675 0x1da4 [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp C:\Windows\system32\drivers\i2omp.sys
15:47:12.0678 0x1da4 i2omp - ok
15:47:12.0748 0x1da4 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
15:47:12.0752 0x1da4 i8042prt - ok
15:47:12.0844 0x1da4 [ 496DB78E6A0C4C44023D9A92B4A7AC31, 2B44213C39F05090D2057E3A21C1718DFC4478E976D44255B6FA5C3B8CF20FFF ] ialm C:\Windows\system32\DRIVERS\igdkmd32.sys
15:47:12.0907 0x1da4 ialm - ok
15:47:12.0941 0x1da4 [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
15:47:12.0952 0x1da4 iaStorV - ok
15:47:13.0024 0x1da4 [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
15:47:13.0029 0x1da4 IDriverT - ok
15:47:13.0131 0x1da4 [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:47:13.0162 0x1da4 idsvc - ok
15:47:13.0194 0x1da4 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:47:13.0197 0x1da4 iirsp - ok
15:47:13.0268 0x1da4 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
15:47:13.0286 0x1da4 IKEEXT - ok
15:47:13.0313 0x1da4 [ 97469037714070E45194ED318D636401, DDB5AE39BE0BD37ECB44969A5FA740E5B1169342347D0DB3E5DF0353A6708271 ] intelide C:\Windows\system32\drivers\intelide.sys
15:47:13.0315 0x1da4 intelide - ok
15:47:13.0336 0x1da4 [ CE44CC04262F28216DD4341E9E36A16F, 2B316C4124DCFEAD7838B3D8FB8DBEC3F3B1EA8EA612AABB05B1275D0B230CCD ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:47:13.0339 0x1da4 intelppm - ok
15:47:13.0390 0x1da4 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:47:13.0394 0x1da4 IPBusEnum - ok
15:47:13.0418 0x1da4 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:47:13.0420 0x1da4 IpFilterDriver - ok
15:47:13.0479 0x1da4 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:47:13.0488 0x1da4 iphlpsvc - ok
15:47:13.0496 0x1da4 IpInIp - ok
15:47:13.0515 0x1da4 [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
15:47:13.0519 0x1da4 IPMIDRV - ok
15:47:13.0540 0x1da4 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
15:47:13.0546 0x1da4 IPNAT - ok
15:47:13.0558 0x1da4 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:47:13.0560 0x1da4 IRENUM - ok
15:47:13.0576 0x1da4 [ 350FCA7E73CF65BCEF43FAE1E4E91293, 68403FE3F4DC40919CD26A2CC42BE4386AE6874F47DD382348FFD79080721A13 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:47:13.0580 0x1da4 isapnp - ok
15:47:13.0631 0x1da4 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
15:47:13.0638 0x1da4 iScsiPrt - ok
15:47:13.0654 0x1da4 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
15:47:13.0657 0x1da4 iteatapi - ok
15:47:13.0679 0x1da4 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
15:47:13.0682 0x1da4 iteraid - ok
15:47:13.0737 0x1da4 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:47:13.0739 0x1da4 kbdclass - ok
15:47:13.0771 0x1da4 [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:47:13.0772 0x1da4 kbdhid - ok
15:47:13.0813 0x1da4 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
15:47:13.0816 0x1da4 KeyIso - ok
15:47:13.0861 0x1da4 [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:47:13.0881 0x1da4 KSecDD - ok
15:47:13.0957 0x1da4 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
15:47:13.0971 0x1da4 KtmRm - ok
15:47:14.0027 0x1da4 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\system32\srvsvc.dll
15:47:14.0035 0x1da4 LanmanServer - ok
15:47:14.0093 0x1da4 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:47:14.0102 0x1da4 LanmanWorkstation - ok
15:47:14.0170 0x1da4 [ 31D8B705DCD5F2366186E731F87C7A71, D73DC732EF74C3C0EADD650B65BC6EEB44EA2C4E86BFD5BE989971A34FBA160A ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
15:47:14.0173 0x1da4 LightScribeService - ok
15:47:14.0227 0x1da4 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:47:14.0232 0x1da4 lltdio - ok
15:47:14.0279 0x1da4 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:47:14.0298 0x1da4 lltdsvc - ok
15:47:14.0341 0x1da4 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:47:14.0343 0x1da4 lmhosts - ok
15:47:14.0381 0x1da4 [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:47:14.0386 0x1da4 LSI_FC - ok
15:47:14.0407 0x1da4 [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:47:14.0412 0x1da4 LSI_SAS - ok
15:47:14.0428 0x1da4 [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:47:14.0433 0x1da4 LSI_SCSI - ok
15:47:14.0485 0x1da4 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
15:47:14.0488 0x1da4 luafv - ok
15:47:14.0540 0x1da4 [ D8DE00217540D63BE254D74B84F2177D, 7D55322B15BB619D4863275BD926B983037FDC1D9564B54557DA86DEEE930B9A ] MbaeSvc C:\Program Files\Malwarebytes Anti-Exploit\mbae-svc.exe
15:47:14.0556 0x1da4 MbaeSvc - ok
15:47:14.0615 0x1da4 [ C846349849475B7EC8B20A825449D531, FCDA5D745BB79D52C4699AC7C618CD933C357DD55FB028B5459F569AE7FDE1EF ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
15:47:14.0617 0x1da4 MBAMProtector - ok
15:47:14.0758 0x1da4 [ 47DF4BC3D1561B6DAFA0862735FA1493, 88791A710DD71CCAE9FB772AD85BE94BA21B65D7C85937BE85D5B12885EC4CD3 ] MBAMScheduler C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
15:47:14.0820 0x1da4 MBAMScheduler - ok
15:47:14.0893 0x1da4 [ 2CFC417EED3BF5DDA255CB7EF7E09D45, C70C3AC5A2D97904F2E27669AFE5F7EED0F25B387BEFD42B68E36D44F9A3D37D ] MBAMService C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
15:47:14.0920 0x1da4 MBAMService - ok
15:47:14.0984 0x1da4 [ 661B911FA04E73FB073FF9B1C9BD2E05, C5FD4F528A59141418DA279291E88E51D406D01FAD36435569D97E95FBA66164 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
15:47:14.0990 0x1da4 MBAMSwissArmy - ok
15:47:15.0032 0x1da4 [ 26A697011026E49A51E2FADE9FF7E30F, E0ADEEF5C1D0F2A7150768EABEC3880A2C5C26574C96128C1EC77B590FE8992C ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
15:47:15.0035 0x1da4 MBAMWebAccessControl - ok
15:47:15.0075 0x1da4 [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:47:15.0079 0x1da4 Mcx2Svc - ok
15:47:15.0100 0x1da4 [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
15:47:15.0102 0x1da4 mdmxsdk - ok
15:47:15.0139 0x1da4 [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas C:\Windows\system32\drivers\megasas.sys
15:47:15.0142 0x1da4 megasas - ok
15:47:15.0210 0x1da4 [ DFA113CDCD56D09D7BDA31A8F2AA50B5, F5B36EDF8DB084BC7707E4B01B42DED852FD6A59FD4F02E8D9D16A1019FF6A50 ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
15:47:15.0216 0x1da4 mfeapfk - ok
15:47:15.0273 0x1da4 [ 0C71D79297828D479CACBA086E982C6E, F286268C61B638A0956FC6FDD7905F064501E3F3E7B7E3E6428E81E193FB3780 ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
15:47:15.0295 0x1da4 mfehidk - ok
15:47:15.0321 0x1da4 [ 19A75589D26C0D74C3361D6B2FC14858, 009AF3AEE4773A2E53C3CF25CB27A5C787FD780628D295455F9728F4F3287359 ] mfevtp C:\Windows\system32\mfevtps.exe
15:47:15.0330 0x1da4 mfevtp - ok
15:47:15.0376 0x1da4 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
15:47:15.0380 0x1da4 MMCSS - ok
15:47:15.0425 0x1da4 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
15:47:15.0427 0x1da4 Modem - ok
15:47:15.0487 0x1da4 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:47:15.0489 0x1da4 monitor - ok
15:47:15.0543 0x1da4 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:47:15.0545 0x1da4 mouclass - ok
15:47:15.0561 0x1da4 [ A3A6DFF7E9E757DB3DF51A833BC28885, 3285FD0176722B1098ECDA4098FCF55A39829C3A81462097BACB5B558883B027 ] mouhid C:\Windows\system32\drivers\mouhid.sys
15:47:15.0563 0x1da4 mouhid - ok
15:47:15.0581 0x1da4 [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
15:47:15.0584 0x1da4 MountMgr - ok
15:47:15.0649 0x1da4 [ 8072A7BB35D92CC621AC2605EEF79BC4, 68F61BE84A5032CEC24F04C90DACA1AE78F3744016389BE2345256B26E44E09A ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
15:47:15.0661 0x1da4 MpFilter - ok
15:47:15.0698 0x1da4 [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio C:\Windows\system32\drivers\mpio.sys
15:47:15.0702 0x1da4 mpio - ok
15:47:15.0727 0x1da4 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:47:15.0731 0x1da4 mpsdrv - ok
15:47:15.0793 0x1da4 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:47:15.0810 0x1da4 MpsSvc - ok
15:47:15.0840 0x1da4 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
15:47:15.0843 0x1da4 Mraid35x - ok
15:47:15.0944 0x1da4 [ 9BD4DCB5412921864A7AACDEDFBD1923, 46DEE9B9414D26203B62F0D6CAEBF37A3CEFD118556129547B2C5FC7B6FDBA05 ] MREMP50 C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
15:47:15.0949 0x1da4 MREMP50 - ok
15:47:15.0970 0x1da4 MREMPR5 - ok
15:47:15.0994 0x1da4 MRENDIS5 - ok
15:47:16.0052 0x1da4 [ 07C02C892E8E1A72D6BF35004F0E9C5E, 09ECD59AADF08E2AA0C1BAF5D3D7CBB0948153E531E1F82ECACD43F14F88106B ] MRESP50 C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
15:47:16.0054 0x1da4 MRESP50 - ok
15:47:16.0083 0x1da4 [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:47:16.0088 0x1da4 MRxDAV - ok
15:47:16.0145 0x1da4 [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:47:16.0150 0x1da4 mrxsmb - ok
15:47:16.0179 0x1da4 [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:47:16.0189 0x1da4 mrxsmb10 - ok
15:47:16.0204 0x1da4 [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:47:16.0208 0x1da4 mrxsmb20 - ok
15:47:16.0231 0x1da4 [ 742AED7939E734C36B7E8D6228CE26B7, 6F727144BBD42C9C5555087CA51DE8D501B5CBEFB9967866CC578733E3C5E681 ] msahci C:\Windows\system32\drivers\msahci.sys
15:47:16.0233 0x1da4 msahci - ok
15:47:16.0255 0x1da4 [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:47:16.0258 0x1da4 msdsm - ok
15:47:16.0312 0x1da4 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
15:47:16.0320 0x1da4 MSDTC - ok
15:47:16.0353 0x1da4 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:47:16.0355 0x1da4 Msfs - ok
15:47:16.0397 0x1da4 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:47:16.0398 0x1da4 msisadrv - ok
15:47:16.0447 0x1da4 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:47:16.0455 0x1da4 MSiSCSI - ok
15:47:16.0464 0x1da4 msiserver - ok
15:47:16.0488 0x1da4 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:47:16.0490 0x1da4 MSKSSRV - ok
15:47:16.0569 0x1da4 [ 1EE3643D1AA747222427F63353611AD7, 18465E375485DF4E980121449077D5BA87C25C5FA8D86F40DA3B7BE153306766 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
15:47:16.0570 0x1da4 MsMpSvc - ok
15:47:16.0603 0x1da4 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:47:16.0605 0x1da4 MSPCLOCK - ok
15:47:16.0616 0x1da4 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:47:16.0618 0x1da4 MSPQM - ok
15:47:16.0679 0x1da4 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:47:16.0685 0x1da4 MsRPC - ok
15:47:16.0709 0x1da4 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:47:16.0712 0x1da4 mssmbios - ok
15:47:16.0726 0x1da4 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:47:16.0728 0x1da4 MSTEE - ok
15:47:16.0775 0x1da4 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
15:47:16.0778 0x1da4 Mup - ok
15:47:16.0840 0x1da4 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
15:47:16.0853 0x1da4 napagent - ok
15:47:16.0928 0x1da4 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:47:16.0944 0x1da4 NativeWifiP - ok
15:47:17.0024 0x1da4 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:47:17.0049 0x1da4 NDIS - ok
15:47:17.0095 0x1da4 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:47:17.0097 0x1da4 NdisTapi - ok
15:47:17.0113 0x1da4 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:47:17.0116 0x1da4 Ndisuio - ok
15:47:17.0135 0x1da4 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:47:17.0141 0x1da4 NdisWan - ok
15:47:17.0154 0x1da4 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:47:17.0157 0x1da4 NDProxy - ok
15:47:17.0213 0x1da4 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:47:17.0215 0x1da4 NetBIOS - ok
15:47:17.0245 0x1da4 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
15:47:17.0254 0x1da4 netbt - ok
15:47:17.0278 0x1da4 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
15:47:17.0280 0x1da4 Netlogon - ok
15:47:17.0341 0x1da4 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
15:47:17.0353 0x1da4 Netman - ok
15:47:17.0409 0x1da4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:47:17.0417 0x1da4 NetMsmqActivator - ok
15:47:17.0430 0x1da4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:47:17.0436 0x1da4 NetPipeActivator - ok
15:47:17.0494 0x1da4 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
15:47:17.0505 0x1da4 netprofm - ok
15:47:17.0519 0x1da4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:47:17.0525 0x1da4 NetTcpActivator - ok
15:47:17.0538 0x1da4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:47:17.0544 0x1da4 NetTcpPortSharing - ok
15:47:17.0569 0x1da4 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:47:17.0573 0x1da4 nfrd960 - ok
15:47:17.0637 0x1da4 [ FCBC2F48430EB0D7150A6521C0B84ACA, EEFB975E2D1121EE9E93702F2CA2938C99C6B2273616C85816BA15E857E8D4FF ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
15:47:17.0644 0x1da4 NisDrv - ok
15:47:17.0716 0x1da4 [ E4AA07F8BCBCB66EF115C443CD45C7A2, 3B538D9E376F12FC8589BA500BB5E859337CF1856D0E4AA66E2E3B5E301DAEC5 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
15:47:17.0737 0x1da4 NisSrv - ok
15:47:17.0798 0x1da4 [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc C:\Windows\System32\nlasvc.dll
15:47:17.0815 0x1da4 NlaSvc - ok
15:47:17.0863 0x1da4 [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:47:17.0866 0x1da4 Npfs - ok
15:47:17.0917 0x1da4 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
15:47:17.0921 0x1da4 nsi - ok
15:47:17.0933 0x1da4 [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:47:17.0935 0x1da4 nsiproxy - ok
15:47:18.0034 0x1da4 [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:47:18.0082 0x1da4 Ntfs - ok
15:47:18.0121 0x1da4 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
15:47:18.0124 0x1da4 ntrigdigi - ok
15:47:18.0147 0x1da4 [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
15:47:18.0149 0x1da4 Null - ok
15:47:18.0252 0x1da4 [ D958A2B5F6AD5C3B8CCDC4D7DA62466C, 574DC2C4C1C46E3B6F53E0A14E0595493E73EEE03EA1FF9DD1D3266B414B9941 ] NVENETFD C:\Windows\system32\DRIVERS\nvmfdx32.sys
15:47:18.0300 0x1da4 NVENETFD - ok
15:47:18.0775 0x1da4 [ D65BC32C1795191B7F2B028351AB4FE2, 16A345F3A0AC24EED2E55A47C0011CD4EB793EC3C81B2B36D8EAD9C60C949353 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:47:19.0130 0x1da4 nvlddmkm - ok
15:47:19.0185 0x1da4 [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:47:19.0189 0x1da4 nvraid - ok
15:47:19.0228 0x1da4 [ 9AEBC32F9D6E02EBEE0369AB296FE7C8, 4B13E58E93856C6FFDE971593E0FAACDEEF56C9463FA6EB654312A71D10DF042 ] nvsmu C:\Windows\system32\DRIVERS\nvsmu.sys
15:47:19.0230 0x1da4 nvsmu - ok
15:47:19.0251 0x1da4 [ 9E0BA19A28C498A6D323D065DB76DFFC, EA9E33ED2820ED39932FAE114A9CF1D87780ED6605D0260A6F22F920B48F34E9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:47:19.0254 0x1da4 nvstor - ok
15:47:19.0303 0x1da4 [ A8C043670699C956D56B9F1F3DAEFC98, 1D951638546C426737872C1A64A11597DD02A736CEEE789024968437DAD2FC94 ] nvsvc C:\Windows\system32\nvvsvc.exe
15:47:19.0311 0x1da4 nvsvc - ok
15:47:19.0340 0x1da4 [ 07C186427EB8FCC3D8D7927187F260F7, 9AFDE1CB7B7232BD019804BFC691580B9CC2E51A5BC0E5584B23907D532600D8 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:47:19.0344 0x1da4 nv_agp - ok
15:47:19.0355 0x1da4 NwlnkFlt - ok
15:47:19.0367 0x1da4 NwlnkFwd - ok
15:47:19.0458 0x1da4 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:47:19.0479 0x1da4 odserv - ok
15:47:19.0515 0x1da4 [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
15:47:19.0519 0x1da4 ohci1394 - ok
15:47:19.0564 0x1da4 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:47:19.0569 0x1da4 ose - ok
15:47:19.0659 0x1da4 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
15:47:19.0681 0x1da4 p2pimsvc - ok
15:47:19.0714 0x1da4 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
15:47:19.0738 0x1da4 p2psvc - ok
15:47:19.0760 0x1da4 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
15:47:19.0765 0x1da4 Parport - ok
15:47:19.0806 0x1da4 [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:47:19.0809 0x1da4 partmgr - ok
15:47:19.0825 0x1da4 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
15:47:19.0827 0x1da4 Parvdm - ok
15:47:19.0871 0x1da4 [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
15:47:19.0875 0x1da4 PcaSvc - ok
15:47:19.0940 0x1da4 [ 422B261D5C26CED36607ABBD0BAA9DC6, 5DFF1899C10B9688573BBFB6C3EE4A7EB404FAC0EF6BB875A47868A7F71A5153 ] pcCMService C:\Program Files\Common Files\Motive\pcCMService.exe
15:47:20.0140 0x1da4 pcCMService - ok
15:47:20.0178 0x1da4 [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
15:47:20.0183 0x1da4 pci - ok
15:47:20.0218 0x1da4 [ 1636D43F10416AEB483BC6001097B26C, 36E61A993693A46538FE0F726D67BB28886F61D53384AD600D1282296A27662E ] pciide C:\Windows\system32\drivers\pciide.sys
15:47:20.0219 0x1da4 pciide - ok
15:47:20.0243 0x1da4 [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:47:20.0251 0x1da4 pcmcia - ok
15:47:20.0312 0x1da4 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:47:20.0348 0x1da4 PEAUTH - ok
15:47:20.0487 0x1da4 [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
15:47:20.0541 0x1da4 pla - ok
15:47:20.0598 0x1da4 [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:47:20.0610 0x1da4 PlugPlay - ok
15:47:20.0663 0x1da4 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
15:47:20.0687 0x1da4 PNRPAutoReg - ok
15:47:20.0723 0x1da4 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
15:47:20.0748 0x1da4 PNRPsvc - ok
15:47:20.0817 0x1da4 [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:47:20.0831 0x1da4 PolicyAgent - ok
15:47:20.0898 0x1da4 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:47:20.0902 0x1da4 PptpMiniport - ok
15:47:20.0939 0x1da4 [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor C:\Windows\system32\drivers\processr.sys
15:47:20.0942 0x1da4 Processor - ok
15:47:20.0986 0x1da4 [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc C:\Windows\system32\profsvc.dll
15:47:20.0994 0x1da4 ProfSvc - ok
15:47:21.0016 0x1da4 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
15:47:21.0019 0x1da4 ProtectedStorage - ok
15:47:21.0085 0x1da4 [ 8717FA628A749175A7EF127DF2C012FC, 0BB5A9CD3F1691F9666D779505B7483A024FB7660EE99AE95DE20085B744493A ] ProtectMonitor C:\monitorsvc.exe
15:47:21.0087 0x1da4 ProtectMonitor - ok
15:47:21.0139 0x1da4 [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
15:47:21.0142 0x1da4 PSched - ok
15:47:21.0166 0x1da4 [ D86B4A68565E444D76457F14172C875A, 06B1CF81A62B3DAA8D0C5A8B88C56A504DE8E9278C520F754AF363A6676C58B0 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
15:47:21.0169 0x1da4 PxHelp20 - ok
15:47:21.0234 0x1da4 [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:47:21.0265 0x1da4 ql2300 - ok
15:47:21.0292 0x1da4 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:47:21.0298 0x1da4 ql40xx - ok
15:47:21.0363 0x1da4 [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
15:47:21.0376 0x1da4 QWAVE - ok
15:47:21.0399 0x1da4 [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:47:21.0401 0x1da4 QWAVEdrv - ok
15:47:21.0418 0x1da4 [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:47:21.0420 0x1da4 RasAcd - ok
15:47:21.0445 0x1da4 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
15:47:21.0451 0x1da4 RasAuto - ok
15:47:21.0505 0x1da4 [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:47:21.0510 0x1da4 Rasl2tp - ok
15:47:21.0565 0x1da4 [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
15:47:21.0577 0x1da4 RasMan - ok
15:47:21.0592 0x1da4 [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:47:21.0595 0x1da4 RasPppoe - ok
15:47:21.0633 0x1da4 [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:47:21.0638 0x1da4 RasSstp - ok
15:47:21.0667 0x1da4 [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:47:21.0678 0x1da4 rdbss - ok
15:47:21.0700 0x1da4 [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:47:21.0701 0x1da4 RDPCDD - ok
15:47:21.0747 0x1da4 [ E8BD98D46F2ED77132BA927FCCB47D8B, 5187CF8F00AD67EDDF27DF675F3210C0D72E552578A89C58DF6953B1D5BEBCB8 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
15:47:21.0759 0x1da4 rdpdr - ok
15:47:21.0770 0x1da4 [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:47:21.0773 0x1da4 RDPENCDD - ok
15:47:21.0813 0x1da4 [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:47:21.0822 0x1da4 RDPWD - ok
15:47:21.0881 0x1da4 [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
15:47:21.0886 0x1da4 RemoteAccess - ok
15:47:21.0904 0x1da4 [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:47:21.0911 0x1da4 RemoteRegistry - ok
15:47:21.0950 0x1da4 [ 355AAC141B214BEF1DBC1483AFD9BD50, EB9AF96E81C1644C0190D269119BE71C63B60D50153C6EA2659B488C4456DBDF ] rimmptsk C:\Windows\system32\DRIVERS\rimmptsk.sys
15:47:21.0953 0x1da4 rimmptsk - ok
15:47:21.0970 0x1da4 [ A4216C71DD4F60B26418CCFD99CD0815, C189953DD7B3AB31167D8746E8F829D222FEF3F8866317814414EF3E0D92B9E1 ] rimsptsk C:\Windows\system32\DRIVERS\rimsptsk.sys
15:47:21.0973 0x1da4 rimsptsk - ok
15:47:21.0984 0x1da4 [ C663AF77E2F4EABF8EB08B388D2F1F36, D03FA3C1CED2BC5289DE3B922D7FB3B986E917BCF6C63744E4540DD0F174903F ] rismxdp C:\Windows\system32\DRIVERS\rixdptsk.sys
15:47:21.0988 0x1da4 rismxdp - ok
15:47:22.0094 0x1da4 [ 08FB7D968805001C7ADCBB14B0651FA2, 1339832EA9DB66678C524AE6BAD6C5C412AD2B77BA5ED45E64B85536DA9836CA ] RoxMediaDB9 C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
15:47:22.0128 0x1da4 RoxMediaDB9 - ok
15:47:22.0162 0x1da4 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
15:47:22.0164 0x1da4 RpcLocator - ok
15:47:22.0231 0x1da4 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
15:47:22.0253 0x1da4 RpcSs - ok
15:47:22.0306 0x1da4 [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:47:22.0310 0x1da4 rspndr - ok
15:47:22.0320 0x1da4 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
15:47:22.0323 0x1da4 SamSs - ok
15:47:22.0359 0x1da4 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:47:22.0365 0x1da4 sbp2port - ok
15:47:22.0390 0x1da4 [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:47:22.0397 0x1da4 SCardSvr - ok
15:47:22.0515 0x1da4 [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll
15:47:22.0539 0x1da4 Schedule - ok
15:47:22.0593 0x1da4 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
15:47:22.0595 0x1da4 SCPolicySvc - ok
15:47:22.0635 0x1da4 [ 8F36B54688C31EED4580129040C6A3D3, DC150689CBAEEC94B9DE0CA6A633FAD16CDDDC452521232E0C2A44BAE61E08D9 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
15:47:22.0641 0x1da4 sdbus - ok
15:47:22.0699 0x1da4 [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:47:22.0706 0x1da4 SDRSVC - ok
15:47:22.0725 0x1da4 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:47:22.0728 0x1da4 secdrv - ok
15:47:22.0741 0x1da4 [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
15:47:22.0745 0x1da4 seclogon - ok
15:47:22.0798 0x1da4 [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\System32\sens.dll
15:47:22.0803 0x1da4 SENS - ok
15:47:22.0824 0x1da4 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
15:47:22.0827 0x1da4 Serenum - ok
15:47:22.0851 0x1da4 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
15:47:22.0856 0x1da4 Serial - ok
15:47:22.0905 0x1da4 [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:47:22.0908 0x1da4 sermouse - ok
15:47:22.0957 0x1da4 [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
15:47:22.0963 0x1da4 SessionEnv - ok
15:47:22.0997 0x1da4 [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:47:22.0999 0x1da4 sffdisk - ok
15:47:23.0022 0x1da4 [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:47:23.0024 0x1da4 sffp_mmc - ok
15:47:23.0040 0x1da4 [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:47:23.0043 0x1da4 sffp_sd - ok
15:47:23.0063 0x1da4 [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
15:47:23.0065 0x1da4 sfloppy - ok
15:47:23.0132 0x1da4 [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:47:23.0145 0x1da4 SharedAccess - ok
15:47:23.0197 0x1da4 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:47:23.0209 0x1da4 ShellHWDetection - ok
15:47:23.0237 0x1da4 [ D2A595D6EEBEEAF4334F8E50EFBC9931, 851B8205C657BF806C4D815DC75356E99B4246016B6E1C1F51BAF8AD1E6D5299 ] sisagp C:\Windows\system32\drivers\sisagp.sys
15:47:23.0241 0x1da4 sisagp - ok
15:47:23.0258 0x1da4 [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
15:47:23.0261 0x1da4 SiSRaid2 - ok
15:47:23.0288 0x1da4 [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:47:23.0293 0x1da4 SiSRaid4 - ok
15:47:23.0518 0x1da4 [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
15:47:23.0625 0x1da4 slsvc - ok
15:47:23.0702 0x1da4 [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
15:47:23.0708 0x1da4 SLUINotify - ok
15:47:23.0768 0x1da4 [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:47:23.0773 0x1da4 Smb - ok
15:47:23.0811 0x1da4 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:47:23.0815 0x1da4 SNMPTRAP - ok
15:47:23.0862 0x1da4 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
15:47:23.0863 0x1da4 spldr - ok
15:47:23.0927 0x1da4 [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
15:47:23.0934 0x1da4 Spooler - ok
15:47:23.0998 0x1da4 [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys
15:47:24.0010 0x1da4 srv - ok
15:47:24.0037 0x1da4 [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:47:24.0043 0x1da4 srv2 - ok
15:47:24.0081 0x1da4 [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:47:24.0086 0x1da4 srvnet - ok
15:47:24.0125 0x1da4 [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:47:24.0133 0x1da4 SSDPSRV - ok
15:47:24.0174 0x1da4 [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:47:24.0181 0x1da4 SstpSvc - ok
15:47:24.0324 0x1da4 [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
15:47:24.0343 0x1da4 stisvc - ok
15:47:24.0388 0x1da4 [ A9A23C8AF361F7A93FD632E91A8C346F, A353E69B60E2A904E4079D05B2DF25354B2A590ECA843822E3FA3B7923012142 ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
15:47:24.0434 0x1da4 stllssvr - ok
15:47:24.0475 0x1da4 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:47:24.0477 0x1da4 swenum - ok
15:47:24.0538 0x1da4 [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
15:47:24.0552 0x1da4 swprv - ok
15:47:24.0583 0x1da4 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
15:47:24.0587 0x1da4 Symc8xx - ok
15:47:24.0607 0x1da4 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
15:47:24.0610 0x1da4 Sym_hi - ok
15:47:24.0634 0x1da4 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
15:47:24.0637 0x1da4 Sym_u3 - ok
15:47:24.0707 0x1da4 [ 6DD49E1A5FA0F01824652F1A0A8866FB, E8839AF50AAA06A51A24004D26562694286DF638C7F86AB8408E496A7FEE52A4 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
15:47:24.0766 0x1da4 SynTP - ok
15:47:24.0828 0x1da4 [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
15:47:24.0851 0x1da4 SysMain - ok
15:47:24.0891 0x1da4 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:47:24.0897 0x1da4 TabletInputService - ok
15:47:24.0939 0x1da4 [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:47:24.0952 0x1da4 TapiSrv - ok
15:47:24.0997 0x1da4 [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
15:47:25.0003 0x1da4 TBS - ok
15:47:25.0098 0x1da4 [ 6D0D344F643E28B31262AC2682109A3C, 276736661876CE69A30CEED117AFCF26677221F278E234B9C7D03B85869B2C92 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:47:25.0145 0x1da4 Tcpip - ok
15:47:25.0202 0x1da4 [ 6D0D344F643E28B31262AC2682109A3C, 276736661876CE69A30CEED117AFCF26677221F278E234B9C7D03B85869B2C92 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
15:47:25.0236 0x1da4 Tcpip6 - ok
15:47:25.0268 0x1da4 [ 5877A786EF27E42C4E84D1356F922302, 1CDCC7D91086DC0FE80057EE8E1AE609A38DD9D241BC17145E7811C916E662C3 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:47:25.0270 0x1da4 tcpipreg - ok
15:47:25.0322 0x1da4 [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:47:25.0323 0x1da4 TDPIPE - ok
15:47:25.0342 0x1da4 [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:47:25.0346 0x1da4 TDTCP - ok
15:47:25.0380 0x1da4 [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:47:25.0385 0x1da4 tdx - ok
15:47:25.0413 0x1da4 [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:47:25.0416 0x1da4 TermDD - ok
15:47:25.0462 0x1da4 [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService C:\Windows\System32\termsrv.dll
15:47:25.0479 0x1da4 TermService - ok
15:47:25.0535 0x1da4 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
15:47:25.0546 0x1da4 Themes - ok
15:47:25.0573 0x1da4 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
15:47:25.0577 0x1da4 THREADORDER - ok
15:47:25.0644 0x1da4 [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
15:47:25.0651 0x1da4 TrkWks - ok
15:47:25.0712 0x1da4 [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:47:25.0734 0x1da4 TrustedInstaller - ok
15:47:25.0789 0x1da4 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:47:25.0791 0x1da4 tssecsrv - ok
15:47:25.0850 0x1da4 [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
15:47:25.0852 0x1da4 tunmp - ok
15:47:25.0908 0x1da4 [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:47:25.0911 0x1da4 tunnel - ok
15:47:25.0948 0x1da4 [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:47:25.0956 0x1da4 uagp35 - ok
15:47:26.0024 0x1da4 [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:47:26.0033 0x1da4 udfs - ok
15:47:26.0090 0x1da4 [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:47:26.0095 0x1da4 UI0Detect - ok
15:47:26.0114 0x1da4 [ 75E6890EBFCE0841D3291B02E7A8BDB0, FDF9CDCCCCC0AA2A52623C5A67AC5F5224557EE4C8F6487CB13CAEB012575E2A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:47:26.0118 0x1da4 uliagpkx - ok
15:47:26.0144 0x1da4 [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci C:\Windows\system32\drivers\uliahci.sys
15:47:26.0157 0x1da4 uliahci - ok
15:47:26.0172 0x1da4 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
15:47:26.0178 0x1da4 UlSata - ok
15:47:26.0203 0x1da4 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
15:47:26.0210 0x1da4 ulsata2 - ok
15:47:26.0258 0x1da4 [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:47:26.0261 0x1da4 umbus - ok
15:47:26.0321 0x1da4 [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
15:47:26.0334 0x1da4 upnphost - ok
15:47:26.0397 0x1da4 [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:47:26.0467 0x1da4 usbccgp - ok
15:47:26.0503 0x1da4 [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:47:26.0506 0x1da4 usbcir - ok
15:47:26.0537 0x1da4 [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:47:26.0541 0x1da4 usbehci - ok
15:47:26.0597 0x1da4 [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:47:26.0607 0x1da4 usbhub - ok
15:47:26.0627 0x1da4 [ D457EBD0C3A8B3A3A144355B5EE91CBC, 6AD52BDBB1607A48F0B02E663B97C3A00E3345B1B12C259608A5AE728C1C06B2 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
15:47:26.0629 0x1da4 usbohci - ok
15:47:26.0649 0x1da4 [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:47:26.0699 0x1da4 usbprint - ok
15:47:26.0735 0x1da4 [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
15:47:26.0768 0x1da4 usbscan - ok
15:47:26.0776 0x1da4 USBSTOR - ok
15:47:26.0804 0x1da4 [ 325DBBACB8A36AF9988CCF40EAC228CC, 22FE5658A12296634FBE9D8565485BEE8CB200C47182F70DC9D2B0442E10C4AA ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
15:47:26.0805 0x1da4 usbuhci - ok
15:47:26.0838 0x1da4 [ 0A6B81F01BC86399482E27E6FDA7B33B, EDED102916634ADE83F5ACE327E2E3FF1C145A35A80320FAF03872B069DDA626 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
15:47:26.0843 0x1da4 usbvideo - ok
15:47:26.0893 0x1da4 [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
15:47:26.0898 0x1da4 UxSms - ok
15:47:26.0966 0x1da4 [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
15:47:26.0983 0x1da4 vds - ok
15:47:27.0010 0x1da4 [ 7D92BE0028ECDEDEC74617009084B5EF, D0749CE6FA3415BA4364299F8D6D53F133E8D2F44C6F1057996243415A540A53 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:47:27.0013 0x1da4 vga - ok
15:47:27.0066 0x1da4 [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
15:47:27.0068 0x1da4 VgaSave - ok
15:47:27.0090 0x1da4 [ 045D9961E591CF0674A920B6BA3BA5CB, EBF498A0424CEA0F7ECBAAE144A8669CE6B5DD67115DE22CEC5A46AED26CD90B ] viaagp C:\Windows\system32\drivers\viaagp.sys
15:47:27.0094 0x1da4 viaagp - ok
15:47:27.0115 0x1da4 [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7 C:\Windows\system32\drivers\viac7.sys
15:47:27.0119 0x1da4 ViaC7 - ok
15:47:27.0137 0x1da4 [ FD2E3175FCADA350C7AB4521DCA187EC, 1C914B184478611A27E0141F90EBC34FC63DFB2A83441DD36DFA43D945FB1C52 ] viaide C:\Windows\system32\drivers\viaide.sys
15:47:27.0139 0x1da4 viaide - ok
15:47:27.0159 0x1da4 [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:47:27.0162 0x1da4 volmgr - ok
15:47:27.0224 0x1da4 [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:47:27.0236 0x1da4 volmgrx - ok
15:47:27.0279 0x1da4 [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:47:27.0289 0x1da4 volsnap - ok
15:47:27.0324 0x1da4 [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:47:27.0330 0x1da4 vsmraid - ok
15:47:27.0409 0x1da4 [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
15:47:27.0446 0x1da4 VSS - ok
15:47:27.0480 0x1da4 [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
15:47:27.0497 0x1da4 W32Time - ok
15:47:27.0520 0x1da4 [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:47:27.0523 0x1da4 WacomPen - ok
15:47:27.0577 0x1da4 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
15:47:27.0582 0x1da4 Wanarp - ok
15:47:27.0594 0x1da4 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:47:27.0597 0x1da4 Wanarpv6 - ok
15:47:27.0638 0x1da4 [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:47:27.0658 0x1da4 wcncsvc - ok
15:47:27.0705 0x1da4 [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:47:27.0710 0x1da4 WcsPlugInService - ok
15:47:27.0744 0x1da4 [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd C:\Windows\system32\drivers\wd.sys
15:47:27.0747 0x1da4 Wd - ok
15:47:27.0822 0x1da4 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:47:27.0916 0x1da4 Wdf01000 - ok
15:47:27.0977 0x1da4 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:47:27.0983 0x1da4 WdiServiceHost - ok
15:47:28.0021 0x1da4 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:47:28.0028 0x1da4 WdiSystemHost - ok
15:47:28.0218 0x1da4 [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll
15:47:28.0229 0x1da4 WebClient - ok
15:47:28.0295 0x1da4 [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:47:28.0304 0x1da4 Wecsvc - ok
15:47:28.0365 0x1da4 [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:47:28.0370 0x1da4 wercplsupport - ok
15:47:28.0426 0x1da4 [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
15:47:28.0434 0x1da4 WerSvc - ok
15:47:28.0525 0x1da4 [ E096FFB754F1E45AE1BDDAC1275AE2C5, DB88308520805EB9EE1FC70C057C75A1928DBAB00F8DDE7908FE79B964259CB3 ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys
15:47:28.0547 0x1da4 winachsf - ok
15:47:28.0638 0x1da4 [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
15:47:28.0647 0x1da4 WinDefend - ok
15:47:28.0670 0x1da4 WinHttpAutoProxySvc - ok
15:47:28.0721 0x1da4 [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:47:28.0728 0x1da4 Winmgmt - ok
15:47:28.0829 0x1da4 [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
15:47:28.0869 0x1da4 WinRM - ok
15:47:28.0966 0x1da4 [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:47:28.0985 0x1da4 Wlansvc - ok
15:47:29.0085 0x1da4 [ 6067ACEF367E79914AF628FA1E9B5330, 491A705267B48C103E00B26BBD21FA8829DB03A88343CBC27264CEE5DE8C8DEF ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
15:47:29.0088 0x1da4 wlcrasvc - ok
15:47:29.0257 0x1da4 [ FB01D4AE207B9EFDBABFC55DC95C7E31, E0EFDBBE0BAC275230C8C1A053948C21BCF20B99B92E50939E95FFB9DC87F6BA ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:47:29.0315 0x1da4 wlidsvc - ok
15:47:29.0369 0x1da4 [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
15:47:29.0371 0x1da4 WmiAcpi - ok
15:47:29.0427 0x1da4 [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:47:29.0433 0x1da4 wmiApSrv - ok
15:47:29.0530 0x1da4 [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
15:47:29.0558 0x1da4 WMPNetworkSvc - ok
15:47:29.0617 0x1da4 [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:47:29.0626 0x1da4 WPCSvc - ok
15:47:29.0678 0x1da4 [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:47:29.0685 0x1da4 WPDBusEnum - ok
15:47:29.0735 0x1da4 [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
15:47:29.0770 0x1da4 WpdUsb - ok
15:47:29.0886 0x1da4 [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:47:29.0914 0x1da4 WPFFontCache_v0400 - ok
15:47:29.0971 0x1da4 [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:47:29.0974 0x1da4 ws2ifsl - ok
15:47:29.0993 0x1da4 [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\System32\wscsvc.dll
15:47:30.0000 0x1da4 wscsvc - ok
15:47:30.0009 0x1da4 WSearch - ok
15:47:30.0152 0x1da4 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
15:47:30.0223 0x1da4 wuauserv - ok
15:47:30.0280 0x1da4 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:47:30.0283 0x1da4 WudfPf - ok
15:47:30.0334 0x1da4 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:47:30.0342 0x1da4 WUDFRd - ok
15:47:30.0370 0x1da4 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:47:30.0376 0x1da4 wudfsvc - ok
15:47:30.0423 0x1da4 [ 19E7C173B6242AD7521E537AE54768BF, AC2D2B3BD94B8EAADC54E18110F5291FFDF0F365880C2CAF80D497BE5609AC7F ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys
15:47:30.0425 0x1da4 XAudio - ok
15:47:30.0463 0x1da4 [ CDA0BC78672B50C43649FF34E1FD0FF8, 7FDAA363E17E0EC391C014166051C952722CEA01E0552E574EF7C146BFCC856F ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe
15:47:30.0477 0x1da4 XAudioService - ok
15:47:30.0496 0x1da4 ================ Scan global ===============================
15:47:30.0547 0x1da4 [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
15:47:30.0605 0x1da4 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
15:47:30.0644 0x1da4 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
15:47:30.0713 0x1da4 [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
15:47:30.0726 0x1da4 [ Global ] - ok
15:47:30.0726 0x1da4 ================ Scan MBR ==================================
15:47:30.0739 0x1da4 [ 1A1A06F62E891045814007163C1C76C3 ] \Device\Harddisk0\DR0
15:47:31.0285 0x1da4 \Device\Harddisk0\DR0 - ok
15:47:31.0290 0x1da4 ================ Scan VBR ==================================
15:47:31.0374 0x1da4 [ 11BBE4232346D2D98150BE50D2636558 ] \Device\Harddisk0\DR0\Partition1
15:47:31.0607 0x1da4 \Device\Harddisk0\DR0\Partition1 - ok
15:47:31.0657 0x1da4 [ 9EA7DB9603F23606853734DCAA4ACC60 ] \Device\Harddisk0\DR0\Partition2
15:47:31.0660 0x1da4 \Device\Harddisk0\DR0\Partition2 - ok
15:47:31.0661 0x1da4 Waiting for KSN requests completion. In queue: 29
15:47:32.0661 0x1da4 Waiting for KSN requests completion. In queue: 29
15:47:33.0663 0x1da4 Waiting for KSN requests completion. In queue: 29
15:47:34.0747 0x1da4 AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.5.216.0 ), 0x61000 ( enabled : updated )
15:47:34.0773 0x1da4 Win FW state via NFP2: enabled
15:47:37.0220 0x1da4 ============================================================
15:47:37.0220 0x1da4 Scan finished
15:47:37.0220 0x1da4 ============================================================
15:47:37.0257 0x0ee8 Detected object count: 0
15:47:37.0257 0x0ee8 Actual detected object count: 0

 

ADW Cleaner :-

 

# AdwCleaner v3.022 - Report created 27/03/2014 at 15:53:03
# Updated 13/03/2014 by Xplode
# Operating System : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# Username : Allan - ALLAN-PC
# Running from : C:\Users\Allan\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files\Web Protect
Folder Deleted : C:\Users\Allan\AppData\Roaming\VOPackage

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKCU\Software\Nosibay
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyPC Backup
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16540

*************************

AdwCleaner[R0].txt - [1418 octets] - [27/03/2014 15:50:12]
AdwCleaner[S0].txt - [1363 octets] - [27/03/2014 15:53:03]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1423 octets] ##########

 

 

Junkware Removal Tool :-

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows Vista ™ Home Premium x86
Ran by Allan on 27/03/2014 at 16:13:13.54
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL

 

~~~ Registry Keys

 

~~~ Files

 

~~~ Folders

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 27/03/2014 at 16:19:06.76
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

ESET :-

 

 

C:\AdwCleaner\Quarantine\C\Users\Allan\AppData\Roaming\VOPackage\Setup.exe.vir Win32/VOPackage.A potentially unwanted application deleted - quarantined
C:\Program Files\bttb\bttb.dll a variant of Win32/Toolbar.Visicom.A potentially unwanted application deleted - quarantined
C:\Program Files\bttb\bttbX.dll a variant of Win32/Toolbar.Visicom.B potentially unwanted application deleted - quarantined
C:\Program Files\bttb\dtuser.exe a variant of Win32/Toolbar.Visicom.C potentially unwanted application deleted - quarantined
C:\Users\Allan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\04A0QQQC\bttb[1].exe a variant of Win32/Toolbar.Visicom.A potentially unwanted application deleted - quarantined
C:\Users\Allan\AppData\Local\Temp\installer.exe a variant of Win32/Toolbar.Visicom.A potentially unwanted application deleted - quarantined

 

 

Thanks

 

Allan



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,337 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:17 PM

Posted 27 March 2014 - 04:07 PM

You're welcome, that was good.. Now do these 2 and see how it is.

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
>>>>>

Download Windows Repair (All in One) from this site

Install the program then run it.

NOTE 1. In Windows Vista, 7 and 8 right click on the program, click "Run As Administrator".
NOTE 2. Disable your antivirus program before running Windows Repair.


Go to Step 2 and click on Check button next to 1. See If Check Disk Is Needed.
If the tool that the Check Disk is needed click on Do It button next to 2. Check Disk.
In that case make sure you restart computer.

p22004342.gif


Once the above is done go to Step 3 and allow it to run System File Check by clicking on Do It button:

p22004343.gif


Go to Step 4 and under "System Restore" click on Create button:

p22004346.gif


Go to Start Repairs tab and click Start button.

Leave all checkmarks as they're.
NOTE for Windows 8 users. Reset Registry Permissions is NOT checked by design.

Click on Start button.

p22004347.gif

Post Windows Repair log which is located in the following folder:
64-bit systems - C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs
32-bit systems - C:\Program Files\Tweaking.com\Windows Repair (All in One)\Logs



I'll be gone a few hours now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 amedcalf

amedcalf
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:05:17 PM

Posted 27 March 2014 - 05:57 PM

Hi,

 

Log as below :-

 

System Variables
--------------------------------------------------------------------------------
OS: Windows Vista ™ Home Premium
OS Architecture: 32-bit
OS Version: 6.0.6002
OS Service Pack: Service Pack 2
Computer Name: ALLAN-PC
Windows Drive: C:\
Windows Path: C:\WINDOWS
Current Profile: C:\Users\Allan
Current Profile SID: S-1-5-21-2284477196-1670467313-1906593112-1000
Current Profile Classes: S-1-5-21-2284477196-1670467313-1906593112-1000_Classes
Profiles Location: C:\Users
Profiles Location 2: C:\WINDOWS\ServiceProfiles
Local Settings AppData: C:\Users\Allan\AppData\Local
--------------------------------------------------------------------------------

System Information
--------------------------------------------------------------------------------
System Up Time: 0 Days 00:23:37

Process Count: 80
Commit Total: 1.25 GB
Commit Limit: 6.09 GB
Commit Peak: 1.34 GB
Handle Count: 19924
Kernel Total: 170.83 MB
Kernel Paged: 121.11 MB
Kernel Non Paged: 49.73 MB
System Cache: 1.92 GB
Thread Count: 890
--------------------------------------------------------------------------------

Memory Before Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 2.94 GB
Memory Used: 1.31 GB(44.4594%)
Memory Avail.: 1.63 GB
--------------------------------------------------------------------------------

Cleaning Memory Before Starting Repairs...

Memory After Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 2.94 GB
Memory Used: 998.63 MB(33.2194%)
Memory Avail.: 1.96 GB
--------------------------------------------------------------------------------

Starting Repairs...
   Start (27/03/2014 22:19:57)

01 - Reset Registry Permissions 01/03
   HKEY_CURRENT_USER & Sub Keys
   Start (27/03/2014 22:19:57)
   Running Repair Under Current User Account
   Done (27/03/2014 22:20:04)

01 - Reset Registry Permissions 02/03
   HKEY_LOCAL_MACHINE & Sub Keys
   Start (27/03/2014 22:20:04)
   Running Repair Under System Account
   Done (27/03/2014 22:26:43)

01 - Reset Registry Permissions 03/03
   HKEY_CLASSES_ROOT & Sub Keys
   Start (27/03/2014 22:26:43)
   Running Repair Under System Account
   Done (27/03/2014 22:27:46)

03 - Register System Files
   Start (27/03/2014 22:27:46)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:28:33)

04 - Repair WMI
   Start (27/03/2014 22:28:33)
   Running Repair Under Current User Account
   Done (27/03/2014 22:34:10)

05 - Repair Windows Firewall
   Start (27/03/2014 22:34:10)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:34:40)

06 - Repair Internet Explorer
   Start (27/03/2014 22:34:40)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:35:37)

07 - Repair MDAC/MS Jet
   Start (27/03/2014 22:35:37)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:36:07)

08 - Repair Hosts File
   Start (27/03/2014 22:36:07)
   Running Repair Under System Account
   Done (27/03/2014 22:36:09)

09 - Remove Policies Set By Infections
   Start (27/03/2014 22:36:09)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:36:14)

11 - Repair Icons
   Start (27/03/2014 22:36:14)
   Running Repair Under Current User Account
   Done (27/03/2014 22:36:17)

12 - Repair Winsock & DNS Cache
   Start (27/03/2014 22:36:17)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:36:41)

14 - Repair Proxy Settings
   Start (27/03/2014 22:36:41)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:36:46)

16 - Repair Windows Updates
   Start (27/03/2014 22:36:46)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:37:24)

17 - Repair CD/DVD Missing/Not Working
   Start (27/03/2014 22:37:24)
   iTunes not found, not applying UpperFilters iTunes Reg Key
   Done (27/03/2014 22:37:24)

18 - Repair Volume Shadow Copy Service
   Start (27/03/2014 22:37:24)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:37:41)

20 - Repair MSI (Windows Installer)
   Start (27/03/2014 22:37:41)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:37:55)

22.01 - Repair bat Association
   Start (27/03/2014 22:37:55)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:37:59)

22.02 - Repair cmd Association
   Start (27/03/2014 22:38:00)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:38:04)

22.03 - Repair com Association
   Start (27/03/2014 22:38:04)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:38:09)

22.04 - Repair Directory Association
   Start (27/03/2014 22:38:09)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:38:14)

22.05 - Repair Drive Association
   Start (27/03/2014 22:38:14)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:38:19)

22.06 - Repair exe Association
   Start (27/03/2014 22:38:19)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:38:24)

22.07 - Repair Folder Association
   Start (27/03/2014 22:38:24)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:38:29)

22.08 - Repair inf Association
   Start (27/03/2014 22:38:29)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:38:34)

22.09 - Repair lnk (Shortcuts) Association
   Start (27/03/2014 22:38:34)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:38:39)

22.10 - Repair msc Association
   Start (27/03/2014 22:38:39)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:38:44)

22.11 - Repair reg Association
   Start (27/03/2014 22:38:44)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:38:48)

22.12 - Repair scr Association
   Start (27/03/2014 22:38:49)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:38:53)

23 - Repair Windows Safe Mode
   Start (27/03/2014 22:38:54)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:38:58)

24 - Repair Print Spooler
   Start (27/03/2014 22:38:58)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:39:16)

25 - Restore Important Windows Services
   Start (27/03/2014 22:39:16)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:39:46)

26 - Set Windows Services To Default Startup
   Start (27/03/2014 22:39:46)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (27/03/2014 22:40:05)

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.0

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.0

Cleaning up empty logs...

All Selected Repairs Done.
   Done (27/03/2014 22:40:06)
   Total Repair Time: 00:20:12

...YOU MUST RESTART YOUR SYSTEM...
   Running Repair Under Current User Account

 

 

Thanks for all your help so far.

 

Allan



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,337 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:17 PM

Posted 28 March 2014 - 03:05 PM

Ok, So can you do what you want to now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 amedcalf

amedcalf
  • Topic Starter

  • Members
  • 52 posts
  • OFFLINE
  •  
  • Local time:05:17 PM

Posted 28 March 2014 - 03:54 PM

Thanks for all the help, Laptop seems loads better now.

 

Still can't get my sound to work :(

 

In device manager there is no sound option for the drivers.

 

I still cannot uninstall the drivers from the program features and when you hover the mouse over the speaker in the taskbar is states "No Audio Output Device is installed"

 

Strange as it was working a few days ago, now I it wont let me watch anything on youtube?

 

Thanks

 

Allan



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,337 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:17 PM

Posted 28 March 2014 - 08:12 PM

This may seem silly but I had a laptop that had a sound slider switch on the out side. I once had no sound and found I must have slid that switch putting down.
 
Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.
>>>>

You also need to update to Adobe Reader XI


I think there is a problem with Cyber link and it should be reinstalled. Be sure you have any registration keys if required/

Edit: did you uninstall Superantispyware recently?

Edited by boopme, 28 March 2014 - 08:16 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users