Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Hidden Object Detected


  • This topic is locked This topic is locked
11 replies to this topic

#1 lpoolck

lpoolck

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:06 AM

Posted 06 April 2014 - 03:44 PM

I received a hidden object detection on my first Avira scan - I recently downloaded this as I previously used AVG but recommendations made me switch to Avira.  AVG never picked up on this detection in its scans.  Can anyone advise on how to find out more details on the detection and to remove it if its indeed harmful.  Thanks for any help.

 

 
 
Avira Free Antivirus
Report file date: 06 April 2014  11:12
 
 
The program is running as an unrestricted full version.
Online services are available.
 
Licensee        : Avira Antivirus Free
Serial number   : 0000149996-AVHOE-0000001
Platform        : Windows Vista ™ Home Premium
Windows version : (Service Pack 2)  [6.0.6002]
Boot mode       : Normally booted
 
Version information:
BUILD.DAT       : 14.0.3.350     56624 Bytes  25/02/2014 11:41:00
AVSCAN.EXE      : 14.0.3.332   1058384 Bytes  25/02/2014 10:41:34
AVSCANRC.DLL    : 14.0.2.180     52280 Bytes  25/02/2014 10:41:34
LUKE.DLL        : 14.0.3.336     65616 Bytes  25/02/2014 10:41:36
AVSCPLR.DLL     : 14.0.3.336    124496 Bytes  25/02/2014 10:41:34
AVREG.DLL       : 14.0.3.336    250448 Bytes  25/02/2014 10:41:32
avlode.dll      : 14.0.3.336    544848 Bytes  25/02/2014 10:41:29
avlode.rdf      : 14.0.3.38      58680 Bytes  05/04/2014 08:01:43
VBASE000.VDF    : 7.11.70.0   66736640 Bytes  04/04/2013 10:41:38
VBASE001.VDF    : 7.11.74.226  2201600 Bytes  30/04/2013 10:41:38
VBASE002.VDF    : 7.11.80.60   2751488 Bytes  28/05/2013 10:41:38
VBASE003.VDF    : 7.11.85.214  2162688 Bytes  21/06/2013 10:41:38
VBASE004.VDF    : 7.11.91.176  3903488 Bytes  23/07/2013 10:41:38
VBASE005.VDF    : 7.11.98.186  6822912 Bytes  29/08/2013 10:41:38
VBASE006.VDF    : 7.11.139.38 15708672 Bytes  27/03/2014 08:02:22
VBASE007.VDF    : 7.11.139.39     2048 Bytes  27/03/2014 08:02:23
VBASE008.VDF    : 7.11.139.40     2048 Bytes  27/03/2014 08:02:23
VBASE009.VDF    : 7.11.139.41     2048 Bytes  27/03/2014 08:02:23
VBASE010.VDF    : 7.11.139.42     2048 Bytes  27/03/2014 08:02:23
VBASE011.VDF    : 7.11.139.43     2048 Bytes  27/03/2014 08:02:23
VBASE012.VDF    : 7.11.139.44     2048 Bytes  27/03/2014 08:02:23
VBASE013.VDF    : 7.11.139.45     2048 Bytes  27/03/2014 08:02:23
VBASE014.VDF    : 7.11.139.171   111104 Bytes  28/03/2014 08:02:24
VBASE015.VDF    : 7.11.140.23   150016 Bytes  30/03/2014 08:02:24
VBASE016.VDF    : 7.11.140.143   222720 Bytes  01/04/2014 08:02:25
VBASE017.VDF    : 7.11.140.235   144384 Bytes  03/04/2014 08:02:25
VBASE018.VDF    : 7.11.141.81   193536 Bytes  05/04/2014 20:01:21
VBASE019.VDF    : 7.11.141.82     2048 Bytes  05/04/2014 20:01:22
VBASE020.VDF    : 7.11.141.83     2048 Bytes  05/04/2014 20:01:22
VBASE021.VDF    : 7.11.141.84     2048 Bytes  05/04/2014 20:01:22
VBASE022.VDF    : 7.11.141.85     2048 Bytes  05/04/2014 20:01:22
VBASE023.VDF    : 7.11.141.86     2048 Bytes  05/04/2014 20:01:23
VBASE024.VDF    : 7.11.141.87     2048 Bytes  05/04/2014 20:01:24
VBASE025.VDF    : 7.11.141.88     2048 Bytes  05/04/2014 20:01:24
VBASE026.VDF    : 7.11.141.89     2048 Bytes  05/04/2014 20:01:24
VBASE027.VDF    : 7.11.141.90     2048 Bytes  05/04/2014 20:01:25
VBASE028.VDF    : 7.11.141.91     2048 Bytes  05/04/2014 20:01:25
VBASE029.VDF    : 7.11.141.92     2048 Bytes  05/04/2014 20:01:26
VBASE030.VDF    : 7.11.141.93     2048 Bytes  05/04/2014 20:01:26
VBASE031.VDF    : 7.11.141.146   110080 Bytes  05/04/2014 20:01:28
Engine version  : 8.3.18.2  
AEVDF.DLL       : 8.3.0.4       118976 Bytes  05/04/2014 08:01:42
AESCRIPT.DLL    : 8.1.4.198     528584 Bytes  05/04/2014 08:01:42
AESCN.DLL       : 8.3.0.2       135360 Bytes  05/04/2014 08:01:41
AESBX.DLL       : 8.2.20.6     1331575 Bytes  25/02/2014 10:41:23
AERDL.DLL       : 8.2.0.138     704888 Bytes  25/02/2014 10:41:23
AEPACK.DLL      : 8.4.0.16      778440 Bytes  05/04/2014 08:01:41
AEOFFICE.DLL    : 8.3.0.2       201084 Bytes  05/04/2014 08:01:40
AEHEUR.DLL      : 8.1.4.1004   6643912 Bytes  05/04/2014 08:01:40
AEHELP.DLL      : 8.3.0.0       274808 Bytes  05/04/2014 08:01:33
AEGEN.DLL       : 8.1.7.24      442743 Bytes  05/04/2014 08:01:32
AEEXP.DLL       : 8.4.1.258     512376 Bytes  05/04/2014 08:01:43
AEEMU.DLL       : 8.1.3.2       393587 Bytes  25/02/2014 10:41:23
AECORE.DLL      : 8.3.0.6       241864 Bytes  05/04/2014 08:01:32
AEBB.DLL        : 8.1.1.4        53619 Bytes  25/02/2014 10:41:23
AVWINLL.DLL     : 14.0.3.252     23608 Bytes  25/02/2014 10:41:35
AVPREF.DLL      : 14.0.3.252     48696 Bytes  25/02/2014 10:41:31
AVREP.DLL       : 14.0.3.252    175672 Bytes  25/02/2014 10:41:32
AVARKT.DLL      : 14.0.3.336    256080 Bytes  25/02/2014 10:41:24
AVEVTLOG.DLL    : 14.0.3.336    165968 Bytes  25/02/2014 10:41:24
SQLITE3.DLL     : 3.7.0.1       394808 Bytes  25/02/2014 10:41:37
AVSMTP.DLL      : 14.0.3.252     60472 Bytes  25/02/2014 10:41:34
NETNT.DLL       : 14.0.3.252     13368 Bytes  25/02/2014 10:41:36
RCIMAGE.DLL     : 14.0.3.260   4980792 Bytes  25/02/2014 10:41:37
RCTEXT.DLL      : 14.0.3.282     72248 Bytes  25/02/2014 10:41:37
 
Configuration settings for the scan:
Jobname.............................: Scan for Rootkits and active malware
Configuration file..................: C:\ProgramData\Avira\AntiVir Desktop\PROFILES\rootkit.avp
Reporting...........................: default
Primary action......................: Interactive
Secondary action....................: Ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Limit recursion depth...............: 20
Smart extensions....................: on
Macrovirus heuristic................: on
File heuristic......................: Complete
 
Start of the scan: 06 April 2014  11:12
 
Starting search for hidden objects.
Hidden driver
  [NOTE]      A memory modification has been detected, which could potentially be used to hide file access attempts.
 
The scan of running processes will be started:
Scan process 'scrnsave.scr' - '15' Module(s) have been scanned
Scan process 'taskeng.exe' - '64' Module(s) have been scanned
Scan process 'chrome.exe' - '46' Module(s) have been scanned
Scan process 'chrome.exe' - '48' Module(s) have been scanned
Scan process 'svchost.exe' - '30' Module(s) have been scanned
Scan process 'vssvc.exe' - '49' Module(s) have been scanned
Scan process 'chrome.exe' - '46' Module(s) have been scanned
Scan process 'chrome.exe' - '46' Module(s) have been scanned
Scan process 'avscan.exe' - '98' Module(s) have been scanned
Scan process 'avcenter.exe' - '138' Module(s) have been scanned
Scan process 'svchost.exe' - '21' Module(s) have been scanned
Scan process 'WPFFontCache_v0400.exe' - '18' Module(s) have been scanned
Scan process 'Apntex.exe' - '21' Module(s) have been scanned
Scan process 'chrome.exe' - '46' Module(s) have been scanned
Scan process 'chrome.exe' - '46' Module(s) have been scanned
Scan process 'chrome.exe' - '46' Module(s) have been scanned
Scan process 'chrome.exe' - '46' Module(s) have been scanned
Scan process 'chrome.exe' - '46' Module(s) have been scanned
Scan process 'ApMsgFwd.exe' - '16' Module(s) have been scanned
Scan process 'svchost.exe' - '61' Module(s) have been scanned
Scan process 'VzHardwareResourceManager.exe' - '21' Module(s) have been scanned
Scan process 'VCSW.exe' - '40' Module(s) have been scanned
Scan process 'taskeng.exe' - '48' Module(s) have been scanned
Scan process 'avshadow.exe' - '33' Module(s) have been scanned
Scan process 'chrome.exe' - '83' Module(s) have been scanned
Scan process 'avgnt.exe' - '83' Module(s) have been scanned
Scan process 'Avira.OE.Systray.exe' - '129' Module(s) have been scanned
Scan process 'GrooveMonitor.exe' - '38' Module(s) have been scanned
Scan process 'Apoint.exe' - '36' Module(s) have been scanned
Scan process 'SPMgr.exe' - '47' Module(s) have been scanned
Scan process 'taskeng.exe' - '83' Module(s) have been scanned
Scan process 'Explorer.EXE' - '136' Module(s) have been scanned
Scan process 'Dwm.exe' - '33' Module(s) have been scanned
Scan process 'UPnPFramework.exe' - '51' Module(s) have been scanned
Scan process 'SV_Httpd.exe' - '34' Module(s) have been scanned
Scan process 'igfxsrvc.exe' - '25' Module(s) have been scanned
Scan process 'igfxext.exe' - '19' Module(s) have been scanned
Scan process 'WUDFHost.exe' - '32' Module(s) have been scanned
Scan process 'WLIDSvcM.exe' - '16' Module(s) have been scanned
Scan process 'Avira.OE.ServiceHost.exe' - '120' Module(s) have been scanned
Scan process 'xaudio.exe' - '14' Module(s) have been scanned
Scan process 'WLIDSVC.EXE' - '71' Module(s) have been scanned
Scan process 'svchost.exe' - '9' Module(s) have been scanned
Scan process 'VzCdbSvc.exe' - '31' Module(s) have been scanned
Scan process 'VcmIAlzMgr.exe' - '54' Module(s) have been scanned
Scan process 'igfxsrvc.exe' - '26' Module(s) have been scanned
Scan process 'VESMgrSub.exe' - '59' Module(s) have been scanned
Scan process 'VCFw.exe' - '66' Module(s) have been scanned
Scan process 'igfxext.exe' - '19' Module(s) have been scanned
Scan process 'VMISrv.exe' - '86' Module(s) have been scanned
Scan process 'VESMgr.exe' - '74' Module(s) have been scanned
Scan process 'symlcsvc.exe' - '25' Module(s) have been scanned
Scan process 'svchost.exe' - '49' Module(s) have been scanned
Scan process 'NSUService.exe' - '69' Module(s) have been scanned
Scan process 'iviRegMgr.exe' - '16' Module(s) have been scanned
Scan process 'svchost.exe' - '87' Module(s) have been scanned
Scan process 'dllhost.exe' - '25' Module(s) have been scanned
Scan process 'svchost.exe' - '30' Module(s) have been scanned
Scan process 'avguard.exe' - '96' Module(s) have been scanned
Scan process 'armsvc.exe' - '25' Module(s) have been scanned
Scan process 'svchost.exe' - '61' Module(s) have been scanned
Scan process 'sched.exe' - '52' Module(s) have been scanned
Scan process 'spoolsv.exe' - '95' Module(s) have been scanned
Scan process 'svchost.exe' - '76' Module(s) have been scanned
Scan process 'SLsvc.exe' - '23' Module(s) have been scanned
Scan process 'svchost.exe' - '37' Module(s) have been scanned
Scan process 'svchost.exe' - '146' Module(s) have been scanned
Scan process 'svchost.exe' - '102' Module(s) have been scanned
Scan process 'svchost.exe' - '67' Module(s) have been scanned
Scan process 'svchost.exe' - '35' Module(s) have been scanned
Scan process 'svchost.exe' - '40' Module(s) have been scanned
Scan process 'winlogon.exe' - '31' Module(s) have been scanned
Scan process 'lsm.exe' - '22' Module(s) have been scanned
Scan process 'lsass.exe' - '60' Module(s) have been scanned
Scan process 'services.exe' - '33' Module(s) have been scanned
Scan process 'csrss.exe' - '14' Module(s) have been scanned
Scan process 'wininit.exe' - '26' Module(s) have been scanned
Scan process 'csrss.exe' - '14' Module(s) have been scanned
Scan process 'smss.exe' - '2' Module(s) have been scanned
 
Starting to scan executable files (registry):
The registry was scanned ( '1768' files ).
 
 
 
End of the scan: 06 April 2014  12:18
Used time:  1:06:43 Hour(s)
 
The scan has been done completely.
 
      0 Scanned directories
   5689 Files were scanned
      0 Viruses and/or unwanted programs were found
      0 Files were classified as suspicious
      0 Files were deleted
      0 Viruses and unwanted programs were repaired
      0 Files were moved to quarantine
      0 Files were renamed
      0 Files cannot be scanned
   5689 Files not concerned
     22 Archives were scanned
      0 Warnings
      1 Notes
 790796 Objects were scanned with rootkit scan
      1 Hidden objects were found

Edited by lpoolck, 06 April 2014 - 03:45 PM.


BC AdBot (Login to Remove)

 


#2 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:06 AM

Posted 07 April 2014 - 06:32 AM

Hi there,
my name is Marius and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

 

 

 

Scan with TDSS-Killer

Please read and follow these instructions carefully. We do not want it to fix anything yet (if found), we need to see a report first.

Download TDSSKiller.zip and extract to your desktop

  • Execute TDSSKiller.exe by doubleclicking on it.
  • Press Start Scan
  • If Malicious objects are found, do NOT select Copy to quarantine. Change the action to Skip, and save the log.
  • Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt


Please post the contents of that log in your next reply.

 

 

 

Scan with Gmer rootkit scanner

Please download Gmer from here by clicking on the "Download EXE" Button.

  • Double click on the randomly named GMER.exe. If asked to allow gmer.sys driver to load, please consent.
  • If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO.
  • In the right panel, you will see several boxes that have been checked. Uncheck the following ...
    • Sections
    • IAT/EAT
    • Show All ( should be unchecked by default )
  • Leave everything else as it is.
  • Close all other running programs as well as your Browser.
  • Click the Scan button & wait for it to finish.
  • Once done click on the Save.. button, and in the File name area, type in "ark.txt" or it will save as a .log file which cannot be uploaded to your post.
  • Save it where you can easily find it, such as your desktop.
  • Please post the content of the ark.txt here.

**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#3 lpoolck

lpoolck
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:06 AM

Posted 07 April 2014 - 12:19 PM

Thanks for the reply TB-Psychotic, I will download and perform the above actions tomorrow as I do not have time tonight and report back with the logs.



#4 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:06 AM

Posted 08 April 2014 - 08:14 AM

OK


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#5 lpoolck

lpoolck
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:06 AM

Posted 08 April 2014 - 12:28 PM

tdss killer report:

 

 

18:22:39.0775 0x03d4  TDSS rootkit removing tool 3.0.0.30 Apr  7 2014 15:39:12
18:22:50.0412 0x03d4  ============================================================
18:22:50.0412 0x03d4  Current date / time: 2014/04/08 18:22:50.0412
18:22:50.0412 0x03d4  SystemInfo:
18:22:50.0412 0x03d4  
18:22:50.0412 0x03d4  OS Version: 6.0.6002 ServicePack: 2.0
18:22:50.0412 0x03d4  Product type: Workstation
18:22:50.0412 0x03d4  ComputerName: CHRIS-PC
18:22:50.0413 0x03d4  UserName: Chris
18:22:50.0413 0x03d4  Windows directory: C:\Windows
18:22:50.0413 0x03d4  System windows directory: C:\Windows
18:22:50.0413 0x03d4  Processor architecture: Intel x86
18:22:50.0413 0x03d4  Number of processors: 2
18:22:50.0413 0x03d4  Page size: 0x1000
18:22:50.0413 0x03d4  Boot type: Normal boot
18:22:50.0413 0x03d4  ============================================================
18:22:53.0312 0x03d4  KLMD registered as C:\Windows\system32\drivers\33724129.sys
18:22:53.0565 0x03d4  System UUID: {7071B06A-1EBB-47A2-1076-F902C1FEDBD1}
18:22:54.0800 0x03d4  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
18:22:54.0805 0x03d4  ============================================================
18:22:54.0805 0x03d4  \Device\Harddisk0\DR0:
18:22:54.0805 0x03d4  MBR partitions:
18:22:54.0805 0x03d4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xE63800, BlocksNum 0x11BB5EB0
18:22:54.0805 0x03d4  ============================================================
18:22:54.0919 0x03d4  C: <-> \Device\Harddisk0\DR0\Partition1
18:22:54.0919 0x03d4  ============================================================
18:22:54.0919 0x03d4  Initialize success
18:22:54.0919 0x03d4  ============================================================
18:23:14.0476 0x179c  ============================================================
18:23:14.0476 0x179c  Scan started
18:23:14.0476 0x179c  Mode: Manual; 
18:23:14.0476 0x179c  ============================================================
18:23:14.0476 0x179c  KSN ping started
18:23:28.0994 0x179c  KSN ping finished: true
18:23:30.0042 0x179c  ================ Scan system memory ========================
18:23:30.0042 0x179c  System memory - ok
18:23:30.0043 0x179c  ================ Scan services =============================
18:23:30.0241 0x179c  [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI            C:\Windows\system32\drivers\acpi.sys
18:23:30.0249 0x179c  ACPI - ok
18:23:30.0287 0x179c  Ad-Watch Connect Filter - ok
18:23:30.0296 0x179c  Ad-Watch Real-Time Scanner - ok
18:23:30.0307 0x179c  Ad-Watch Registry Filter - ok
18:23:30.0316 0x179c  adfs - ok
18:23:30.0431 0x179c  [ 11A52CF7B265631DEEB24C6149309EFF, CBA25D358185FD4BE261C6C1B518AD60F5D27D5FB418098AB262B10F5A11C178 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
18:23:30.0445 0x179c  AdobeARMservice - ok
18:23:30.0504 0x179c  [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:23:30.0554 0x179c  AdobeFlashPlayerUpdateSvc - ok
18:23:30.0613 0x179c  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
18:23:30.0646 0x179c  adp94xx - ok
18:23:30.0690 0x179c  [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
18:23:30.0720 0x179c  adpahci - ok
18:23:30.0751 0x179c  [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
18:23:30.0771 0x179c  adpu160m - ok
18:23:30.0803 0x179c  [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
18:23:30.0821 0x179c  adpu320 - ok
18:23:30.0867 0x179c  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
18:23:30.0868 0x179c  AeLookupSvc - ok
18:23:30.0930 0x179c  [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD             C:\Windows\system32\drivers\afd.sys
18:23:30.0963 0x179c  AFD - ok
18:23:31.0005 0x179c  [ EF23439CDD587F64C2C1B8825CEAD7D8, 762665CFC202B3E16CA2338887896FDF996331A363DC709F1EC088BF927133A3 ] agp440          C:\Windows\system32\drivers\agp440.sys
18:23:31.0018 0x179c  agp440 - ok
18:23:31.0074 0x179c  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
18:23:31.0089 0x179c  aic78xx - ok
18:23:31.0126 0x179c  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe
18:23:31.0140 0x179c  ALG - ok
18:23:31.0169 0x179c  [ 90395B64600EBB4552E26E178C94B2E4, 73095893964DC7915983B58A567184FC51949C99341E7E0D04D70CC4C4F95E37 ] aliide          C:\Windows\system32\drivers\aliide.sys
18:23:31.0179 0x179c  aliide - ok
18:23:31.0211 0x179c  [ 2B13E304C9DFDFA5EB582F6A149FA2C7, 196CCE13E0376526B79D9C43D4071990576C4DD210A48E9E922B438AA11C95E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
18:23:31.0224 0x179c  amdagp - ok
18:23:31.0248 0x179c  [ 0577DF1D323FE75A739C787893D300EA, 079EF3CA18FB847DB7E62929071BFF007FAF390E1DBF4C59F28DAAC6B9C2DE51 ] amdide          C:\Windows\system32\drivers\amdide.sys
18:23:31.0258 0x179c  amdide - ok
18:23:31.0298 0x179c  [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
18:23:31.0309 0x179c  AmdK7 - ok
18:23:31.0342 0x179c  [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
18:23:31.0355 0x179c  AmdK8 - ok
18:23:31.0446 0x179c  [ 4D282B9C5BB05DF92C9F3977DFB9F916, E6D49ED0D5FA26F2936FC97A0F1DFA38D1066AAF2EEFCE2931AF21B2CBE54CAD ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
18:23:31.0479 0x179c  AntiVirSchedulerService - ok
18:23:31.0550 0x179c  [ 65AF41A7A2C5B6693E1B4164E7632C3E, BA1DC45D7BB5307BD418D2BDFDBD1DD593439245A0A3F65FE6287F6F5198B999 ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
18:23:31.0577 0x179c  AntiVirService - ok
18:23:31.0657 0x179c  [ 3D15C6EDBF84D792ACEBD2289546DBAF, 8E9199028CF4599CE362836CAD4DEC1E033F10335377280A4268E14D0201B1EB ] AntiVirWebService C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
18:23:31.0728 0x179c  AntiVirWebService - ok
18:23:31.0775 0x179c  [ 18BFF317BDB10C64A35E1CA85F1EC051, 638E880D0D92313D665E3554EB738F9A5058BB1C45B88DEE3758C7DE436740FE ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
18:23:31.0794 0x179c  ApfiltrService - ok
18:23:31.0829 0x179c  [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo         C:\Windows\System32\appinfo.dll
18:23:31.0831 0x179c  Appinfo - ok
18:23:31.0858 0x179c  [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc             C:\Windows\system32\drivers\arc.sys
18:23:31.0871 0x179c  arc - ok
18:23:31.0936 0x179c  [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
18:23:31.0949 0x179c  arcsas - ok
18:23:32.0101 0x179c  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
18:23:32.0119 0x179c  aspnet_state - ok
18:23:32.0145 0x179c  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
18:23:32.0153 0x179c  AsyncMac - ok
18:23:32.0197 0x179c  [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi           C:\Windows\system32\drivers\atapi.sys
18:23:32.0198 0x179c  atapi - ok
18:23:32.0284 0x179c  [ 7FA516FC81DD5931F389B56279A27A3E, 8129AF036E37D532CCF0AEFB4319B0D9A27B4F636206E963B1E922E710751334 ] athr            C:\Windows\system32\DRIVERS\athr.sys
18:23:32.0343 0x179c  athr - ok
18:23:32.0405 0x179c  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:23:32.0418 0x179c  AudioEndpointBuilder - ok
18:23:32.0436 0x179c  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
18:23:32.0447 0x179c  Audiosrv - ok
18:23:32.0518 0x179c  [ B8C10FF9369394EB84993F331810CF29, 84D674EF4FB73FD9D1539DFCC52361C2FBAFD5A2DEF1FFF4F1F416721AA80F85 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
18:23:32.0536 0x179c  avgntflt - ok
18:23:32.0563 0x179c  [ 4189E5AB2CAD6F395D87DAAE73EB090F, 8A98667451F0A9E81204BC9DD34B7BDA147FB867F0969361ED6F9C0CD422E49C ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
18:23:32.0585 0x179c  avipbb - ok
18:23:32.0655 0x179c  [ 959C3406FED7B84AA9FB860765AEA533, 32F7A34AABCB0693B824F7D21F40B63153CF4CDD79F61C62EE0534FA58C263DB ] Avira.OE.ServiceHost C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
18:23:32.0678 0x179c  Avira.OE.ServiceHost - ok
18:23:32.0762 0x179c  [ D8C712305F73CD34D1B344810E522728, 49A474FF6CA44E8427D7A8290B47395125B0148AF384CF2B3B1FA495A4718CBA ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
18:23:32.0774 0x179c  avkmgr - ok
18:23:32.0810 0x179c  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys
18:23:32.0817 0x179c  Beep - ok
18:23:32.0877 0x179c  [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE             C:\Windows\System32\bfe.dll
18:23:32.0890 0x179c  BFE - ok
18:23:32.0991 0x179c  [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS            C:\Windows\System32\qmgr.dll
18:23:33.0028 0x179c  BITS - ok
18:23:33.0038 0x179c  blbdrive - ok
18:23:33.0103 0x179c  [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:23:33.0118 0x179c  bowser - ok
18:23:33.0153 0x179c  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
18:23:33.0161 0x179c  BrFiltLo - ok
18:23:33.0192 0x179c  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
18:23:33.0256 0x179c  BrFiltUp - ok
18:23:33.0292 0x179c  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll
18:23:33.0306 0x179c  Browser - ok
18:23:33.0421 0x179c  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
18:23:33.0436 0x179c  Brserid - ok
18:23:33.0464 0x179c  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
18:23:33.0476 0x179c  BrSerWdm - ok
18:23:33.0506 0x179c  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
18:23:33.0514 0x179c  BrUsbMdm - ok
18:23:33.0541 0x179c  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
18:23:33.0548 0x179c  BrUsbSer - ok
18:23:33.0597 0x179c  [ 6D39C954799B63BA866910234CF7D726, 1D807C3410C01C76E5810D626F23C1CCED3C9C5A65F39267B770C494C8D64114 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
18:23:33.0605 0x179c  BthEnum - ok
18:23:33.0660 0x179c  [ 9A966A8E86D1771911AE34A20D11BFF3, FBD5F621A47A3530B325816E71F0C4BCE5CCE731C57DEBD42ACFC8BCAA258656 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
18:23:33.0670 0x179c  BTHMODEM - ok
18:23:33.0722 0x179c  [ 5904EFA25F829BF84EA6FB045134A1D8, 66E4160CC404744576BA6E9DD606B533F42B3D4A3E2FDD457DAA016CC72A81CC ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
18:23:33.0737 0x179c  BthPan - ok
18:23:33.0792 0x179c  [ 611FF3F2F095C8D4A6D4CFD9DCC09793, 2F27A1287ABCDB9C316EB720D1855100666240959CF969D5B2679C9ABCBD6050 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
18:23:33.0834 0x179c  BTHPORT - ok
18:23:33.0890 0x179c  [ A4C8377FA4A994E07075107DBE2E3DCE, C3CDAA7B83D130100044341C23897CC6C257FA075A8D08B8551F4A28AE8CE6C4 ] BthServ         C:\Windows\System32\bthserv.dll
18:23:33.0904 0x179c  BthServ - ok
18:23:33.0950 0x179c  [ D330803EAB2A15CAEC7F011F1D4CB30E, 240FFF317C90AD8966DA9666F2748F98CEC3CB99C486F399D1C68FE0E393EE68 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
18:23:33.0959 0x179c  BTHUSB - ok
18:23:34.0005 0x179c  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:23:34.0015 0x179c  cdfs - ok
18:23:34.0068 0x179c  [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
18:23:34.0082 0x179c  cdrom - ok
18:23:34.0115 0x179c  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc     C:\Windows\System32\certprop.dll
18:23:34.0118 0x179c  CertPropSvc - ok
18:23:34.0165 0x179c  [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass        C:\Windows\system32\drivers\circlass.sys
18:23:34.0176 0x179c  circlass - ok
18:23:34.0232 0x179c  [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS            C:\Windows\system32\CLFS.sys
18:23:34.0258 0x179c  CLFS - ok
18:23:34.0309 0x179c  [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:23:34.0326 0x179c  clr_optimization_v2.0.50727_32 - ok
18:23:34.0356 0x179c  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:23:34.0435 0x179c  clr_optimization_v4.0.30319_32 - ok
18:23:34.0483 0x179c  [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
18:23:34.0490 0x179c  CmBatt - ok
18:23:34.0529 0x179c  [ 45201046C776FFDAF3FC8A0029C581C8, 68A68CF2B76598BC8610EB5B2D3FD5BDC9D51CFC6F51FB7A0B0C92A2BE910FC6 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
18:23:34.0538 0x179c  cmdide - ok
18:23:34.0588 0x179c  [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
18:23:34.0598 0x179c  Compbatt - ok
18:23:34.0606 0x179c  COMSysApp - ok
18:23:34.0629 0x179c  [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
18:23:34.0641 0x179c  crcdisk - ok
18:23:34.0680 0x179c  [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
18:23:34.0692 0x179c  Crusoe - ok
18:23:34.0746 0x179c  [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:23:34.0752 0x179c  CryptSvc - ok
18:23:34.0812 0x179c  [ 1EA279E858EC0B17C0F426009951E373, C2A4DE4293CB5E8E8B2C26B690A972E643D28991CF8561C069854E166733A91C ] csr_a2dp        C:\Windows\system32\drivers\bthav.sys
18:23:34.0826 0x179c  csr_a2dp - ok
18:23:34.0903 0x179c  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:23:34.0928 0x179c  DcomLaunch - ok
18:23:34.0986 0x179c  [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
18:23:35.0000 0x179c  DfsC - ok
18:23:35.0178 0x179c  [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR            C:\Windows\system32\DFSR.exe
18:23:35.0377 0x179c  DFSR - ok
18:23:35.0441 0x179c  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
18:23:35.0449 0x179c  Dhcp - ok
18:23:35.0498 0x179c  [ E70AC14F6ADDCC9589CF513AF725178C, AF6E4E163FCC266AA03AA6C702BF94A4063AB3BE1613A5D0B2926FA79A533B48 ] DigiNet         C:\Windows\system32\DRIVERS\diginet.sys
18:23:35.0507 0x179c  DigiNet - ok
18:23:35.0554 0x179c  [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk            C:\Windows\system32\drivers\disk.sys
18:23:35.0568 0x179c  disk - ok
18:23:35.0590 0x179c  [ F206E28ED74C491FD5D7C0A1119CE37F, DB6AA9C9278F5F62717504F3B21BC2250EC5EB324EBEEAF01D42268D5657B83D ] DMICall         C:\Windows\system32\DRIVERS\DMICall.sys
18:23:35.0598 0x179c  DMICall - ok
18:23:35.0641 0x179c  [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:23:35.0646 0x179c  Dnscache - ok
18:23:35.0719 0x179c  [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc         C:\Windows\System32\dot3svc.dll
18:23:35.0740 0x179c  dot3svc - ok
18:23:35.0789 0x179c  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll
18:23:35.0795 0x179c  DPS - ok
18:23:35.0844 0x179c  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
18:23:35.0851 0x179c  drmkaud - ok
18:23:35.0926 0x179c  [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:23:35.0953 0x179c  DXGKrnl - ok
18:23:35.0986 0x179c  [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
18:23:36.0003 0x179c  E1G60 - ok
18:23:36.0048 0x179c  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll
18:23:36.0052 0x179c  EapHost - ok
18:23:36.0118 0x179c  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache          C:\Windows\system32\drivers\ecache.sys
18:23:36.0140 0x179c  Ecache - ok
18:23:36.0222 0x179c  [ 47CE4E650D91DC095A2FDDB15631A78A, 1E0F146748C7F62A0EE5593C419929B8F09D9CC38444EA3B3CCBE2C4B8BDD303 ] eeCtrl          C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
18:23:36.0266 0x179c  eeCtrl - ok
18:23:36.0356 0x179c  [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
18:23:36.0383 0x179c  ehRecvr - ok
18:23:36.0443 0x179c  [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched         C:\Windows\ehome\ehsched.exe
18:23:36.0462 0x179c  ehSched - ok
18:23:36.0482 0x179c  [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart         C:\Windows\ehome\ehstart.dll
18:23:36.0484 0x179c  ehstart - ok
18:23:36.0534 0x179c  [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
18:23:36.0561 0x179c  elxstor - ok
18:23:36.0656 0x179c  [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
18:23:36.0679 0x179c  EMDMgmt - ok
18:23:36.0803 0x179c  [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem     C:\Windows\system32\es.dll
18:23:36.0814 0x179c  EventSystem - ok
18:23:36.0868 0x179c  [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat           C:\Windows\system32\drivers\exfat.sys
18:23:36.0885 0x179c  exfat - ok
18:23:36.0944 0x179c  [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:23:36.0961 0x179c  fastfat - ok
18:23:37.0005 0x179c  [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
18:23:37.0014 0x179c  fdc - ok
18:23:37.0064 0x179c  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll
18:23:37.0074 0x179c  fdPHost - ok
18:23:37.0091 0x179c  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:23:37.0102 0x179c  FDResPub - ok
18:23:37.0150 0x179c  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:23:37.0164 0x179c  FileInfo - ok
18:23:37.0193 0x179c  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:23:37.0203 0x179c  Filetrace - ok
18:23:37.0224 0x179c  [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
18:23:37.0234 0x179c  flpydisk - ok
18:23:37.0293 0x179c  [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:23:37.0315 0x179c  FltMgr - ok
18:23:37.0395 0x179c  [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache       C:\Windows\system32\FntCache.dll
18:23:37.0433 0x179c  FontCache - ok
18:23:37.0506 0x179c  [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:23:37.0521 0x179c  FontCache3.0.0.0 - ok
18:23:37.0570 0x179c  [ 790A4CA68F44BE35967B3DF61F3E4675, 7CBC77C620ABA75FEF4BA8AD9C38766D50CD18106EBA4693F162F2C5A7D46AA8 ] FsUsbExDisk     C:\Windows\system32\FsUsbExDisk.SYS
18:23:37.0584 0x179c  FsUsbExDisk - ok
18:23:37.0624 0x179c  [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:23:37.0631 0x179c  Fs_Rec - ok
18:23:37.0667 0x179c  [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
18:23:37.0681 0x179c  gagp30kx - ok
18:23:37.0744 0x179c  [ 8182FF89C65E4D38B2DE4BB0FB18564E, 2ACFA64D48BF7D25641EC5819C8722144284B8A8E071BF297C1881B07EEAFE88 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:23:37.0753 0x179c  GEARAspiWDM - ok
18:23:37.0833 0x179c  [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc           C:\Windows\System32\gpsvc.dll
18:23:37.0913 0x179c  gpsvc - ok
18:23:37.0948 0x179c  [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:23:37.0986 0x179c  HdAudAddService - ok
18:23:38.0085 0x179c  [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
18:23:38.0107 0x179c  HDAudBus - ok
18:23:38.0163 0x179c  [ FCB3F4BE408F72C1BD81BCABA87FC22F, F63D75904888E40889A600EF32AA77130C088014949F5A574B49F547E9F9D4AD ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
18:23:38.0172 0x179c  HidBth - ok
18:23:38.0209 0x179c  [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr           C:\Windows\system32\drivers\hidir.sys
18:23:38.0219 0x179c  HidIr - ok
18:23:38.0288 0x179c  [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv         C:\Windows\system32\hidserv.dll
18:23:38.0291 0x179c  hidserv - ok
18:23:38.0334 0x179c  [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
18:23:38.0369 0x179c  HidUsb - ok
18:23:38.0421 0x179c  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll
18:23:38.0426 0x179c  hkmsvc - ok
18:23:38.0483 0x179c  [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
18:23:38.0495 0x179c  HpCISSs - ok
18:23:38.0549 0x179c  [ 46D67209550973257601A533E2AC5785, 3C0D97781947BA8532344AA5D9F3B684761B5B3263A0A294F4593E76EE41DB0C ] HSFHWAZL        C:\Windows\system32\DRIVERS\VSTAZL3.SYS
18:23:38.0572 0x179c  HSFHWAZL - ok
18:23:38.0669 0x179c  [ 7BC42C65B5C6281777C1A7605B253BA8, 71885EB4E8625450ECA4623466FB3D5437DAABE739A5DC3B5F4CF982A65F8A86 ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys
18:23:38.0737 0x179c  HSF_DPV - ok
18:23:38.0782 0x179c  [ 9EBF2D102CCBB6BCDFBF1B7922F8BA2E, A11CE324DD8E8BDFFDF513429C32D3C16EC79DC9A7517048587759B26BF38583 ] HSXHWAZL        C:\Windows\system32\DRIVERS\HSXHWAZL.sys
18:23:38.0804 0x179c  HSXHWAZL - ok
18:23:38.0813 0x179c  HTCAND32 - ok
18:23:38.0876 0x179c  [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:23:38.0912 0x179c  HTTP - ok
18:23:38.0947 0x179c  [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp           C:\Windows\system32\drivers\i2omp.sys
18:23:38.0957 0x179c  i2omp - ok
18:23:39.0000 0x179c  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
18:23:39.0012 0x179c  i8042prt - ok
18:23:39.0076 0x179c  [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
18:23:39.0141 0x179c  iaStorV - ok
18:23:39.0335 0x179c  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
18:23:39.0365 0x179c  IDriverT - ok
18:23:39.0509 0x179c  [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:23:39.0633 0x179c  idsvc - ok
18:23:39.0883 0x179c  [ 1B954F2BCB244596DA704DC8C7729930, 9FEE8B91078E4527FA8E5CEA7358320B07A79BEA0B2021ECEFB972DB6AB9E7D3 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
18:23:40.0083 0x179c  igfx - ok
18:23:40.0122 0x179c  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
18:23:40.0135 0x179c  iirsp - ok
18:23:40.0228 0x179c  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT          C:\Windows\System32\ikeext.dll
18:23:40.0249 0x179c  IKEEXT - ok
18:23:40.0410 0x179c  [ 7BD4E0428776D11C8E8E26F9F5508690, 64108320A3AFC4F7E207B2F4A9BA52E6F4A0A71606C0FEC44F0CE1C343BC2D3E ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
18:23:40.0636 0x179c  IntcAzAudAddService - ok
18:23:40.0684 0x179c  [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide        C:\Windows\system32\drivers\intelide.sys
18:23:40.0694 0x179c  intelide - ok
18:23:40.0752 0x179c  [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
18:23:40.0756 0x179c  intelppm - ok
18:23:40.0817 0x179c  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
18:23:40.0834 0x179c  IPBusEnum - ok
18:23:40.0864 0x179c  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:23:40.0875 0x179c  IpFilterDriver - ok
18:23:40.0930 0x179c  [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:23:40.0938 0x179c  iphlpsvc - ok
18:23:40.0948 0x179c  IpInIp - ok
18:23:41.0008 0x179c  [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
18:23:41.0023 0x179c  IPMIDRV - ok
18:23:41.0078 0x179c  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
18:23:41.0094 0x179c  IPNAT - ok
18:23:41.0126 0x179c  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:23:41.0134 0x179c  IRENUM - ok
18:23:41.0175 0x179c  [ 350FCA7E73CF65BCEF43FAE1E4E91293, 68403FE3F4DC40919CD26A2CC42BE4386AE6874F47DD382348FFD79080721A13 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:23:41.0188 0x179c  isapnp - ok
18:23:41.0267 0x179c  [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
18:23:41.0275 0x179c  iScsiPrt - ok
18:23:41.0322 0x179c  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
18:23:41.0334 0x179c  iteatapi - ok
18:23:41.0373 0x179c  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
18:23:41.0385 0x179c  iteraid - ok
18:23:41.0456 0x179c  [ 213822072085B5BBAD9AF30AB577D817, 2C373B804D840933EC3A5F3ABFC43E47C2636CDB2431AB51846C565077B7C468 ] IviRegMgr       C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
18:23:41.0474 0x179c  IviRegMgr - ok
18:23:41.0522 0x179c  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
18:23:41.0534 0x179c  kbdclass - ok
18:23:41.0581 0x179c  [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
18:23:41.0589 0x179c  kbdhid - ok
18:23:41.0641 0x179c  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso          C:\Windows\system32\lsass.exe
18:23:41.0645 0x179c  KeyIso - ok
18:23:41.0784 0x179c  [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:23:41.0829 0x179c  KSecDD - ok
18:23:41.0900 0x179c  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:23:41.0917 0x179c  KtmRm - ok
18:23:41.0972 0x179c  [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer    C:\Windows\system32\srvsvc.dll
18:23:41.0983 0x179c  LanmanServer - ok
18:23:42.0061 0x179c  [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:23:42.0070 0x179c  LanmanWorkstation - ok
18:23:42.0079 0x179c  Lbd - ok
18:23:42.0127 0x179c  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
18:23:42.0139 0x179c  lltdio - ok
18:23:42.0196 0x179c  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:23:42.0219 0x179c  lltdsvc - ok
18:23:42.0260 0x179c  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:23:42.0265 0x179c  lmhosts - ok
18:23:42.0341 0x179c  [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
18:23:42.0356 0x179c  LSI_FC - ok
18:23:42.0403 0x179c  [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
18:23:42.0419 0x179c  LSI_SAS - ok
18:23:42.0479 0x179c  [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
18:23:42.0493 0x179c  LSI_SCSI - ok
18:23:42.0566 0x179c  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys
18:23:42.0581 0x179c  luafv - ok
18:23:42.0650 0x179c  [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
18:23:42.0666 0x179c  Mcx2Svc - ok
18:23:42.0753 0x179c  [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk         C:\Windows\system32\DRIVERS\mdmxsdk.sys
18:23:42.0762 0x179c  mdmxsdk - ok
18:23:42.0792 0x179c  [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas         C:\Windows\system32\drivers\megasas.sys
18:23:42.0816 0x179c  megasas - ok
18:23:42.0901 0x179c  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
18:23:42.0916 0x179c  Microsoft Office Groove Audit Service - ok
18:23:42.0955 0x179c  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll
18:23:42.0959 0x179c  MMCSS - ok
18:23:42.0994 0x179c  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys
18:23:43.0004 0x179c  Modem - ok
18:23:43.0066 0x179c  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
18:23:43.0068 0x179c  monitor - ok
18:23:43.0106 0x179c  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
18:23:43.0117 0x179c  mouclass - ok
18:23:43.0147 0x179c  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
18:23:43.0154 0x179c  mouhid - ok
18:23:43.0211 0x179c  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
18:23:43.0224 0x179c  MountMgr - ok
18:23:43.0261 0x179c  [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio            C:\Windows\system32\drivers\mpio.sys
18:23:43.0281 0x179c  mpio - ok
18:23:43.0324 0x179c  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:23:43.0337 0x179c  mpsdrv - ok
18:23:43.0408 0x179c  [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc          C:\Windows\system32\mpssvc.dll
18:23:43.0427 0x179c  MpsSvc - ok
18:23:43.0457 0x179c  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
18:23:43.0472 0x179c  Mraid35x - ok
18:23:43.0514 0x179c  [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:23:43.0531 0x179c  MRxDAV - ok
18:23:43.0585 0x179c  [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:23:43.0603 0x179c  mrxsmb - ok
18:23:43.0713 0x179c  [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:23:43.0739 0x179c  mrxsmb10 - ok
18:23:43.0772 0x179c  [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:23:43.0786 0x179c  mrxsmb20 - ok
18:23:43.0836 0x179c  [ 5457DCFA7C0DA43522F4D9D4049C1472, C8B0FD8F96E4FC5CB4B74D5968E808F44B4371F0A797B1D368E6A6080CB862FD ] msahci          C:\Windows\system32\drivers\msahci.sys
18:23:43.0847 0x179c  msahci - ok
18:23:43.0927 0x179c  [ 8E46A7BAC823DD82D4FB2A34C3DF4C1D, FEA8FB1B8752660EC6174542B24D234A61EBFF8318A5855B3E5C91DB86856CAB ] MSCSPTISRV      C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
18:23:43.0942 0x179c  MSCSPTISRV - ok
18:23:43.0993 0x179c  [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm           C:\Windows\system32\drivers\msdsm.sys
18:23:44.0010 0x179c  msdsm - ok
18:23:44.0053 0x179c  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe
18:23:44.0120 0x179c  MSDTC - ok
18:23:44.0161 0x179c  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:23:44.0170 0x179c  Msfs - ok
18:23:44.0222 0x179c  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:23:44.0232 0x179c  msisadrv - ok
18:23:44.0276 0x179c  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:23:44.0295 0x179c  MSiSCSI - ok
18:23:44.0304 0x179c  msiserver - ok
18:23:44.0330 0x179c  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
18:23:44.0337 0x179c  MSKSSRV - ok
18:23:44.0366 0x179c  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
18:23:44.0373 0x179c  MSPCLOCK - ok
18:23:44.0396 0x179c  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
18:23:44.0403 0x179c  MSPQM - ok
18:23:44.0456 0x179c  [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:23:44.0475 0x179c  MsRPC - ok
18:23:44.0510 0x179c  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
18:23:44.0512 0x179c  mssmbios - ok
18:23:44.0546 0x179c  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
18:23:44.0553 0x179c  MSTEE - ok
18:23:44.0619 0x179c  [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup             C:\Windows\system32\Drivers\mup.sys
18:23:44.0636 0x179c  Mup - ok
18:23:44.0742 0x179c  [ 766CAB542E1F424C008430ED7443B324, 19D72B7C05177544643E7BEC767B858D11989066A797141E00D06019F5D41E5A ] MusCAudio       C:\Windows\system32\drivers\MusCAudio.sys
18:23:44.0751 0x179c  MusCAudio - ok
18:23:44.0812 0x179c  [ AEEB3435BA55FBAA00EB518F29E0C246, 55A2DC3D432A843BB560D777A9D345301FAB4E5A917064980A768A0F4AABACED ] MusCVideo       C:\Windows\system32\DRIVERS\MusCVideo.sys
18:23:44.0819 0x179c  MusCVideo - ok
18:23:44.0906 0x179c  [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent        C:\Windows\system32\qagentRT.dll
18:23:44.0922 0x179c  napagent - ok
18:23:44.0973 0x179c  [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:23:44.0991 0x179c  NativeWifiP - ok
18:23:45.0088 0x179c  NAVENG - ok
18:23:45.0095 0x179c  NAVEX15 - ok
18:23:45.0201 0x179c  [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:23:45.0220 0x179c  NDIS - ok
18:23:45.0258 0x179c  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:23:45.0267 0x179c  NdisTapi - ok
18:23:45.0302 0x179c  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
18:23:45.0310 0x179c  Ndisuio - ok
18:23:45.0366 0x179c  [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
18:23:45.0383 0x179c  NdisWan - ok
18:23:45.0422 0x179c  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
18:23:45.0435 0x179c  NDProxy - ok
18:23:45.0464 0x179c  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
18:23:45.0473 0x179c  NetBIOS - ok
18:23:45.0556 0x179c  [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
18:23:45.0580 0x179c  netbt - ok
18:23:45.0608 0x179c  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon        C:\Windows\system32\lsass.exe
18:23:45.0617 0x179c  Netlogon - ok
18:23:45.0738 0x179c  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll
18:23:45.0753 0x179c  Netman - ok
18:23:45.0842 0x179c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:23:45.0893 0x179c  NetMsmqActivator - ok
18:23:45.0931 0x179c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:23:45.0936 0x179c  NetPipeActivator - ok
18:23:45.0989 0x179c  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll
18:23:46.0001 0x179c  netprofm - ok
18:23:46.0057 0x179c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:23:46.0063 0x179c  NetTcpActivator - ok
18:23:46.0078 0x179c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:23:46.0083 0x179c  NetTcpPortSharing - ok
18:23:46.0292 0x179c  [ 25ACCCFC33DD448B9D3037C5E439E830, CCC1CDF1E4A376996EF7DDCEE8E44D3E41D4507BE1585814C5A85B859CD49C7A ] NETw4v32        C:\Windows\system32\DRIVERS\NETw4v32.sys
18:23:46.0426 0x179c  NETw4v32 - ok
18:23:46.0502 0x179c  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
18:23:46.0514 0x179c  nfrd960 - ok
18:23:46.0580 0x179c  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:23:46.0591 0x179c  NlaSvc - ok
18:23:46.0708 0x179c  [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:23:46.0718 0x179c  Npfs - ok
18:23:46.0749 0x179c  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll
18:23:46.0754 0x179c  nsi - ok
18:23:46.0797 0x179c  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:23:46.0805 0x179c  nsiproxy - ok
18:23:46.0869 0x179c  [ 42CE5E77721E60F39858FF2A35450342, 6AB70BCE03FFCEB2968C0936149000F66D7FDB0F81A0E34A2568E6BFAF6B77AA ] NSUService      C:\Program Files\Sony\Network Utility\NSUService.exe
18:23:46.0896 0x179c  NSUService - ok
18:23:46.0994 0x179c  [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:23:47.0094 0x179c  Ntfs - ok
18:23:47.0138 0x179c  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
18:23:47.0146 0x179c  ntrigdigi - ok
18:23:47.0177 0x179c  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys
18:23:47.0184 0x179c  Null - ok
18:23:47.0226 0x179c  [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:23:47.0243 0x179c  nvraid - ok
18:23:47.0279 0x179c  [ 9E0BA19A28C498A6D323D065DB76DFFC, EA9E33ED2820ED39932FAE114A9CF1D87780ED6605D0260A6F22F920B48F34E9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:23:47.0291 0x179c  nvstor - ok
18:23:47.0334 0x179c  [ 07C186427EB8FCC3D8D7927187F260F7, 9AFDE1CB7B7232BD019804BFC691580B9CC2E51A5BC0E5584B23907D532600D8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
18:23:47.0352 0x179c  nv_agp - ok
18:23:47.0362 0x179c  NwlnkFlt - ok
18:23:47.0373 0x179c  NwlnkFwd - ok
18:23:47.0467 0x179c  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:23:47.0513 0x179c  odserv - ok
18:23:47.0585 0x179c  [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
18:23:47.0588 0x179c  ohci1394 - ok
18:23:47.0661 0x179c  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:23:47.0682 0x179c  ose - ok
18:23:47.0801 0x179c  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
18:23:47.0855 0x179c  p2pimsvc - ok
18:23:47.0893 0x179c  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc          C:\Windows\system32\p2psvc.dll
18:23:47.0916 0x179c  p2psvc - ok
18:23:47.0953 0x179c  [ 753A8F339F231D2B857E2CCD51A6E6CA, 59510E69D623B9DA725A8097A44FD210FCF05BB3BA27D5296EA4610359DA0831 ] PACSPTISVR      C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
18:23:47.0987 0x179c  PACSPTISVR - ok
18:23:48.0020 0x179c  [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport         C:\Windows\system32\drivers\parport.sys
18:23:48.0034 0x179c  Parport - ok
18:23:48.0068 0x179c  [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:23:48.0082 0x179c  partmgr - ok
18:23:48.0105 0x179c  [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
18:23:48.0112 0x179c  Parvdm - ok
18:23:48.0152 0x179c  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:23:48.0157 0x179c  PcaSvc - ok
18:23:48.0170 0x179c  pccsmcfd - ok
18:23:48.0232 0x179c  [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci             C:\Windows\system32\drivers\pci.sys
18:23:48.0252 0x179c  pci - ok
18:23:48.0285 0x179c  [ 3B1901E401473E03EB8C874271E50C26, 3C7931F419E29FDD0155D8D05D97289430A2852FCB3DBAD1B338FE2241458E72 ] pciide          C:\Windows\system32\drivers\pciide.sys
18:23:48.0294 0x179c  pciide - ok
18:23:48.0366 0x179c  [ 3BB2244F343B610C29C98035504C9B75, DA61EC2600199DFA32020D0484E9BBF5E0742E7C8C952370BF6FAF91C914A999 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
18:23:48.0388 0x179c  pcmcia - ok
18:23:48.0457 0x179c  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:23:48.0522 0x179c  PEAUTH - ok
18:23:48.0686 0x179c  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll
18:23:48.0752 0x179c  pla - ok
18:23:48.0827 0x179c  [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:23:48.0843 0x179c  PlugPlay - ok
18:23:48.0936 0x179c  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
18:23:48.0971 0x179c  PNRPAutoReg - ok
18:23:49.0023 0x179c  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
18:23:49.0055 0x179c  PNRPsvc - ok
18:23:49.0137 0x179c  [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:23:49.0194 0x179c  PolicyAgent - ok
18:23:49.0256 0x179c  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
18:23:49.0268 0x179c  PptpMiniport - ok
18:23:49.0321 0x179c  [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor       C:\Windows\system32\drivers\processr.sys
18:23:49.0333 0x179c  Processor - ok
18:23:49.0399 0x179c  [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc         C:\Windows\system32\profsvc.dll
18:23:49.0408 0x179c  ProfSvc - ok
18:23:49.0453 0x179c  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
18:23:49.0457 0x179c  ProtectedStorage - ok
18:23:49.0514 0x179c  [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
18:23:49.0528 0x179c  PSched - ok
18:23:49.0608 0x179c  [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300          C:\Windows\system32\drivers\ql2300.sys
18:23:49.0705 0x179c  ql2300 - ok
18:23:49.0757 0x179c  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
18:23:49.0774 0x179c  ql40xx - ok
18:23:49.0832 0x179c  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll
18:23:49.0863 0x179c  QWAVE - ok
18:23:49.0895 0x179c  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:23:49.0904 0x179c  QWAVEdrv - ok
18:23:49.0989 0x179c  [ 70DBDAB246C18B78E2200D6401D038BE, 18395D084AA9BEAF9C20736C90063CE1F862AF3A80F7752DB4FC0D1870D9996D ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
18:23:49.0997 0x179c  RapiMgr - ok
18:23:50.0224 0x179c  [ DD3E4610DE9252A957C5BD19BDF47AC4, 77FABB2BEBE4B95896C4FF7F0ADA293A914C592120EE893FD3CF6B455D9E0AF5 ] RapportIaso     c:\programdata\trusteer\rapport\store\exts\rapportms\28896\rapportiaso.sys
18:23:50.0239 0x179c  RapportIaso - ok
18:23:50.0316 0x179c  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:23:50.0323 0x179c  RasAcd - ok
18:23:50.0372 0x179c  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll
18:23:50.0389 0x179c  RasAuto - ok
18:23:50.0440 0x179c  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
18:23:50.0454 0x179c  Rasl2tp - ok
18:23:50.0509 0x179c  [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan          C:\Windows\System32\rasmans.dll
18:23:50.0522 0x179c  RasMan - ok
18:23:50.0573 0x179c  [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:23:50.0583 0x179c  RasPppoe - ok
18:23:50.0653 0x179c  [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
18:23:50.0665 0x179c  RasSstp - ok
18:23:50.0717 0x179c  [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:23:50.0741 0x179c  rdbss - ok
18:23:50.0819 0x179c  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
18:23:50.0827 0x179c  RDPCDD - ok
18:23:50.0893 0x179c  [ E8BD98D46F2ED77132BA927FCCB47D8B, 5187CF8F00AD67EDDF27DF675F3210C0D72E552578A89C58DF6953B1D5BEBCB8 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
18:23:50.0921 0x179c  rdpdr - ok
18:23:50.0933 0x179c  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
18:23:50.0941 0x179c  RDPENCDD - ok
18:23:51.0034 0x179c  [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
18:23:51.0056 0x179c  RDPWD - ok
18:23:51.0121 0x179c  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:23:51.0140 0x179c  RemoteAccess - ok
18:23:51.0196 0x179c  [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:23:51.0217 0x179c  RemoteRegistry - ok
18:23:51.0279 0x179c  [ 6482707F9F4DA0ECBAB43B2E0398A101, 7D57FC36577121D7E26A4F2D46DCA8725D55EC9F75B91DF994DB742BC4FB89C2 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
18:23:51.0297 0x179c  RFCOMM - ok
18:23:51.0330 0x179c  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
18:23:51.0339 0x179c  RpcLocator - ok
18:23:51.0420 0x179c  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs           C:\Windows\system32\rpcss.dll
18:23:51.0450 0x179c  RpcSs - ok
18:23:51.0490 0x179c  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
18:23:51.0502 0x179c  rspndr - ok
18:23:51.0561 0x179c  [ 815445F4676CC96BC9AEEC303C727E19, F7203EFF13463AB5E44B616C3D5C4B7006EB49278D6131265A92AD276F45E497 ] s116bus         C:\Windows\system32\DRIVERS\s116bus.sys
18:23:51.0577 0x179c  s116bus - ok
18:23:51.0619 0x179c  [ 333D1E0743E6DE1779C3C418AC601C3A, C135049FD85D593B9603B287D4F30C2CA542C68357779DA5BC035A1754817ABD ] s116mdfl        C:\Windows\system32\DRIVERS\s116mdfl.sys
18:23:51.0629 0x179c  s116mdfl - ok
18:23:51.0686 0x179c  [ 50D6E5B021E9EC7553AB8A3553CC1B6B, 19407FD9A723C916B666D0915F705CC0B9A80273B08EAF1C7273DE642857872D ] s116mdm         C:\Windows\system32\DRIVERS\s116mdm.sys
18:23:51.0704 0x179c  s116mdm - ok
18:23:51.0732 0x179c  [ 1589AA53E43F8D193A7D4D580D3FFA95, CCBC6831663619DEC00EFC21109CE557791324918AC31CDB2053B38311A17A41 ] s116mgmt        C:\Windows\system32\DRIVERS\s116mgmt.sys
18:23:51.0750 0x179c  s116mgmt - ok
18:23:51.0790 0x179c  [ 306F85733671FE507470F0273025E768, C0F8D34F8D093395DB28818E13EE263321011B26CCA6841C88A8A5F1417048B9 ] s116nd5         C:\Windows\system32\DRIVERS\s116nd5.sys
18:23:51.0801 0x179c  s116nd5 - ok
18:23:51.0857 0x179c  [ EC32601F04A5A5DE89315D0F55E73D66, FC2EA3660DCD9E832E1E7DF03CB3E0E0F9BAA51456E02406A36D1AF4C0F7D9A7 ] s116obex        C:\Windows\system32\DRIVERS\s116obex.sys
18:23:51.0877 0x179c  s116obex - ok
18:23:51.0925 0x179c  [ 32E3ECB4B2B5887426EAF241A8149CDE, 8E9B05646A0D395BE8B8FAE7A8877268D34AE9461CF1B5BE298111CCAEED7703 ] s116unic        C:\Windows\system32\DRIVERS\s116unic.sys
18:23:51.0943 0x179c  s116unic - ok
18:23:52.0002 0x179c  [ EF4B5A8D53F15CB269469DD4E4BB0109, ED140618735D5D331EEAEA6279D28C113322A02857D40BA443FA0610AF64600C ] s616bus         C:\Windows\system32\DRIVERS\s616bus.sys
18:23:52.0018 0x179c  s616bus - ok
18:23:52.0076 0x179c  [ 96187731EEFCF83E844BC1CE6617AAEB, 95F081A22F8AB16B9520D0F2AA18BE961CB9A9D6AACA140E24CF448921F87738 ] s616mdfl        C:\Windows\system32\DRIVERS\s616mdfl.sys
18:23:52.0085 0x179c  s616mdfl - ok
18:23:52.0153 0x179c  [ D2DD87368BFECFA099E50DC120F3F513, E21B681CE0A5F39285C645452F360436501F4A9F37ACB6414A6A0DFEF5193A06 ] s616mdm         C:\Windows\system32\DRIVERS\s616mdm.sys
18:23:52.0172 0x179c  s616mdm - ok
18:23:52.0231 0x179c  [ 5F0BE24E4D4FA134B0B2FEF35D3A9D90, 59C7E5EEF03BD31A64347229C6544172D932B8D5B3975E0E95F0527AFF6FB19A ] s616mgmt        C:\Windows\system32\DRIVERS\s616mgmt.sys
18:23:52.0249 0x179c  s616mgmt - ok
18:23:52.0299 0x179c  [ B9B507FCC67E204EF38E05FFD4176345, 0363B32EA42B200547A4352CD7F57FFABBC381E170ED00088CDE3D25C145279F ] s616nd5         C:\Windows\system32\DRIVERS\s616nd5.sys
18:23:52.0310 0x179c  s616nd5 - ok
18:23:52.0389 0x179c  [ F123A1F2A04A0E8DBA80B64F0072475A, 3D18FA48D9E05FE9FC0DB5895CBC1F7897C3493D66B70286BD780104E23DC32E ] s616obex        C:\Windows\system32\DRIVERS\s616obex.sys
18:23:52.0406 0x179c  s616obex - ok
18:23:52.0460 0x179c  [ E7E55048EBD5C17BFA791B4A6EC3D54B, EDAA39075720198A9E67B05CB8B8C255E578CC036D0D833624E2288CD0D66E16 ] s616unic        C:\Windows\system32\DRIVERS\s616unic.sys
18:23:52.0478 0x179c  s616unic - ok
18:23:52.0530 0x179c  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs           C:\Windows\system32\lsass.exe
18:23:52.0533 0x179c  SamSs - ok
18:23:52.0597 0x179c  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:23:52.0616 0x179c  sbp2port - ok
18:23:52.0673 0x179c  [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:23:52.0691 0x179c  SCardSvr - ok
18:23:52.0785 0x179c  [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule        C:\Windows\system32\schedsvc.dll
18:23:52.0845 0x179c  Schedule - ok
18:23:52.0873 0x179c  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:23:52.0876 0x179c  SCPolicySvc - ok
18:23:52.0930 0x179c  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:23:52.0951 0x179c  SDRSVC - ok
18:23:52.0995 0x179c  [ 59A9EB4073A39895AF314780D0A032FA, 40D347E6431B8B5223BB68E9B21A177A5AC94C4C9BAEC360C37EA0CC510E020A ] SE27bus         C:\Windows\system32\DRIVERS\SE27bus.sys
18:23:53.0010 0x179c  SE27bus - ok
18:23:53.0055 0x179c  [ D53E7E53107D1796825540129F8FE89F, CDA6CDC7D81DCBE8F2E0488809BBBCE746B211E98E262A55BBB27AE622471690 ] SE27mdfl        C:\Windows\system32\DRIVERS\SE27mdfl.sys
18:23:53.0063 0x179c  SE27mdfl - ok
18:23:53.0125 0x179c  [ 2AFA2F65A6E91DA5B5070E734769827E, 1EF769843DFE7140E5C524A1A091177FA2A2CDF8BAB77DB06A113DB00BBBF898 ] SE27mdm         C:\Windows\system32\DRIVERS\SE27mdm.sys
18:23:53.0143 0x179c  SE27mdm - ok
18:23:53.0204 0x179c  [ 5A33A8D7B44C7BD8ABE248B4DCD1FF3C, 17451730F612278D11FCF6DAFF226436637B206D6AC814A483ADC8D3B35DA181 ] SE27mgmt        C:\Windows\system32\DRIVERS\SE27mgmt.sys
18:23:53.0222 0x179c  SE27mgmt - ok
18:23:53.0281 0x179c  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
18:23:53.0290 0x179c  secdrv - ok
18:23:53.0367 0x179c  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll
18:23:53.0372 0x179c  seclogon - ok
18:23:53.0417 0x179c  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\System32\sens.dll
18:23:53.0425 0x179c  SENS - ok
18:23:53.0492 0x179c  [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum         C:\Windows\system32\drivers\serenum.sys
18:23:53.0501 0x179c  Serenum - ok
18:23:53.0554 0x179c  [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial          C:\Windows\system32\drivers\serial.sys
18:23:53.0570 0x179c  Serial - ok
18:23:53.0621 0x179c  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
18:23:53.0630 0x179c  sermouse - ok
18:23:53.0706 0x179c  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll
18:23:53.0717 0x179c  SessionEnv - ok
18:23:53.0772 0x179c  [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
18:23:53.0780 0x179c  sffdisk - ok
18:23:53.0818 0x179c  [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
18:23:53.0826 0x179c  sffp_mmc - ok
18:23:53.0857 0x179c  [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
18:23:53.0864 0x179c  sffp_sd - ok
18:23:53.0902 0x179c  [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
18:23:53.0910 0x179c  sfloppy - ok
18:23:53.0971 0x179c  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:23:53.0999 0x179c  SharedAccess - ok
18:23:54.0075 0x179c  [ 040D79A1F84A25909256C3F4BBAFDC6C, BB403DD3EF927DB12C6B4CB888419234D26353A37975715D6A06885D56953FFB ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:23:54.0086 0x179c  ShellHWDetection - ok
18:23:54.0129 0x179c  [ D2A595D6EEBEEAF4334F8E50EFBC9931, 851B8205C657BF806C4D815DC75356E99B4246016B6E1C1F51BAF8AD1E6D5299 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
18:23:54.0143 0x179c  sisagp - ok
18:23:54.0209 0x179c  [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
18:23:54.0221 0x179c  SiSRaid2 - ok
18:23:54.0285 0x179c  [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
18:23:54.0300 0x179c  SiSRaid4 - ok
18:23:54.0564 0x179c  [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc           C:\Windows\system32\SLsvc.exe
18:23:54.0815 0x179c  slsvc - ok
18:23:54.0885 0x179c  [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify      C:\Windows\system32\SLUINotify.dll
18:23:54.0904 0x179c  SLUINotify - ok
18:23:54.0957 0x179c  [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb             C:\Windows\system32\DRIVERS\smb.sys
18:23:54.0972 0x179c  Smb - ok
18:23:55.0059 0x179c  [ DB31D8989B3450569C29780E7FA98C48, 018EFDF37E45163D2D6753B86AC7DB51F835E6A7CF58B2AAFEF559E873264065 ] SNC             C:\Windows\system32\Drivers\SonyNC.sys
18:23:55.0068 0x179c  SNC - ok
18:23:55.0114 0x179c  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:23:55.0122 0x179c  SNMPTRAP - ok
18:23:55.0188 0x179c  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys
18:23:55.0200 0x179c  spldr - ok
18:23:55.0257 0x179c  [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler         C:\Windows\System32\spoolsv.exe
18:23:55.0285 0x179c  Spooler - ok
18:23:55.0382 0x179c  [ 71E276F6D189413266EA22171806597B, AF3DF0DEF023ADBC81D742424B57581D7680FA4FA64B761BEAEEE60C9FCD34BF ] sptd            C:\Windows\system32\Drivers\sptd.sys
18:23:55.0382 0x179c  Suspicious file ( NoAccess ): C:\Windows\system32\Drivers\sptd.sys. md5: 71E276F6D189413266EA22171806597B, sha256: AF3DF0DEF023ADBC81D742424B57581D7680FA4FA64B761BEAEEE60C9FCD34BF
18:23:55.0392 0x179c  sptd - detected LockedFile.Multi.Generic ( 1 )
18:24:05.0565 0x179c  sptd ( LockedFile.Multi.Generic ) - warning
18:24:05.0566 0x179c  Force sending object to P2P due to detect: C:\Windows\system32\Drivers\sptd.sys
18:24:20.0262 0x179c  Object send P2P result: true
18:24:41.0968 0x179c  [ E3E6C96B0EF4492C3C8FD0DEEF4E35A1, BDCCF36D760B8B92BD8DF54C6F2992D66B76EBA1999623F60F0D68CD91D3CEE1 ] SPTISRV         C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
18:24:42.0007 0x179c  SPTISRV - ok
18:24:42.0079 0x179c  [ E0E54A571D4323567E95E11FE76A5FF3, D76252AD00CAAFF79E7965454C1F11F9D5C4AD5A7E510D94CBD4C0151D50EB76 ] SRTSP           C:\Windows\system32\Drivers\SRTSP.SYS
18:24:42.0123 0x179c  SRTSP - ok
18:24:42.0188 0x179c  [ 4E44F0E22DF824D318988CAA6F321C30, 5056810D1B46112EF0CDED38FAB71C4876D3226E96D884BE9B74C8A99009DF4C ] SRTSPL          C:\Windows\system32\Drivers\SRTSPL.SYS
18:24:42.0219 0x179c  SRTSPL - ok
18:24:42.0257 0x179c  [ D3BB40427CF3D02E56BBA97FEDA0A3AA, 6FA9956522F7B4DB2B8D75281BA3F76ECFC2DE6C29B68025E8911A4FABE5F9A7 ] SRTSPX          C:\Windows\system32\Drivers\SRTSPX.SYS
18:24:42.0269 0x179c  SRTSPX - ok
18:24:42.0376 0x179c  [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:24:42.0413 0x179c  srv - ok
18:24:42.0471 0x179c  [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:24:42.0490 0x179c  srv2 - ok
18:24:42.0524 0x179c  [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:24:42.0541 0x179c  srvnet - ok
18:24:42.0607 0x179c  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:24:42.0639 0x179c  SSDPSRV - ok
18:24:42.0676 0x179c  [ A36EE93698802CD899F98BFD553D8185, 224CFED921EA230FF8025D259E34968FD2C0FD34BB3A918FB4B9B8BA42BEA5D3 ] ssmdrv          C:\Windows\system32\DRIVERS\ssmdrv.sys
18:24:42.0691 0x179c  ssmdrv - ok
18:24:42.0741 0x179c  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:24:42.0772 0x179c  SstpSvc - ok
18:24:42.0896 0x179c  [ 306521935042FC0A6988D528643619B3, 6FCC06EA71F5C83A8C3A8B7152E9FF48BCFBD35ED8C134A0879735F9135BB20C ] StarOpen        C:\Windows\system32\drivers\StarOpen.sys
18:24:42.0987 0x179c  StarOpen - ok
18:24:43.0090 0x179c  Steam Client Service - ok
18:24:43.0243 0x179c  [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc          C:\Windows\System32\wiaservc.dll
18:24:43.0289 0x179c  stisvc - ok
18:24:43.0319 0x179c  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
18:24:43.0329 0x179c  swenum - ok
18:24:43.0506 0x179c  [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv           C:\Windows\System32\swprv.dll
18:24:43.0542 0x179c  swprv - ok
18:24:43.0741 0x179c  [ 438FAFE708C93B2236FC26B6F2BD5FD0, 9A9071ACFB1CEE00A20F48492C344858BB3997B870A3DF3A5F67A46E0B2E84BE ] Symantec Core LC C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
18:24:43.0973 0x179c  Symantec Core LC - ok
18:24:44.0097 0x179c  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
18:24:44.0115 0x179c  Symc8xx - ok
18:24:44.0196 0x179c  [ C5EAFB6A8C73FB26B73EE613C1A5AEF6, C14CF39A94F96C0E06F9D6242507022BEF91A1BD50D125764568E34B5167A2DC ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT.SYS
18:24:44.0231 0x179c  SymEvent - ok
18:24:44.0275 0x179c  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
18:24:44.0299 0x179c  Sym_hi - ok
18:24:44.0329 0x179c  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
18:24:44.0371 0x179c  Sym_u3 - ok
18:24:44.0712 0x179c  [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain         C:\Windows\system32\sysmain.dll
18:24:44.0881 0x179c  SysMain - ok
18:24:44.0958 0x179c  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:24:44.0997 0x179c  TabletInputService - ok
18:24:45.0104 0x179c  [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:24:45.0139 0x179c  TapiSrv - ok
18:24:45.0208 0x179c  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll
18:24:45.0214 0x179c  TBS - ok
18:24:45.0796 0x179c  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:24:45.0889 0x179c  Tcpip - ok
18:24:46.0093 0x179c  [ D18D53974FD715D50FC76F9FFE1C830D, 50424BD5950D8FC7724A6E48AE5A39D6E727FAF326C31657C69F1DE13C1450E3 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
18:24:46.0133 0x179c  Tcpip6 - ok
18:24:46.0191 0x179c  [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:24:46.0224 0x179c  tcpipreg - ok
18:24:46.0333 0x179c  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
18:24:46.0346 0x179c  TDPIPE - ok
18:24:46.0425 0x179c  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
18:24:46.0450 0x179c  TDTCP - ok
18:24:46.0523 0x179c  [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:24:46.0538 0x179c  tdx - ok
18:24:46.0597 0x179c  [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
18:24:46.0614 0x179c  TermDD - ok
18:24:46.0692 0x179c  [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService     C:\Windows\System32\termsrv.dll
18:24:46.0731 0x179c  TermService - ok
18:24:46.0856 0x179c  [ 040D79A1F84A25909256C3F4BBAFDC6C, BB403DD3EF927DB12C6B4CB888419234D26353A37975715D6A06885D56953FFB ] Themes          C:\Windows\system32\shsvcs.dll
18:24:46.0884 0x179c  Themes - ok
18:24:46.0988 0x179c  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll
18:24:47.0009 0x179c  THREADORDER - ok
18:24:47.0102 0x179c  [ 909CD987B54A8179C9AEE874D754721A, E532791D8DC9B861E6486BC35C25F0263D2581F01181AE3964BC6A0503E678F8 ] ti21sony        C:\Windows\system32\drivers\ti21sony.sys
18:24:47.0201 0x179c  ti21sony - ok
18:24:47.0317 0x179c  [ 5F226C681049FB1DF1578AF32BB641F1, 782EC3DB59AE8CA905DC1ED937FE209AA1C6A7043F16027AC2B2D6F687CF295F ] TPkd            C:\Windows\system32\drivers\TPkd.sys
18:24:47.0339 0x179c  TPkd - ok
18:24:47.0399 0x179c  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll
18:24:47.0409 0x179c  TrkWks - ok
18:24:47.0536 0x179c  [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:24:47.0575 0x179c  TrustedInstaller - ok
18:24:47.0682 0x179c  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
18:24:47.0718 0x179c  tssecsrv - ok
18:24:47.0812 0x179c  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
18:24:47.0822 0x179c  tunmp - ok
18:24:47.0856 0x179c  [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
18:24:47.0869 0x179c  tunnel - ok
18:24:47.0918 0x179c  [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35          C:\Windows\system32\drivers\uagp35.sys
18:24:47.0957 0x179c  uagp35 - ok
18:24:48.0041 0x179c  [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:24:48.0072 0x179c  udfs - ok
18:24:48.0138 0x179c  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:24:48.0181 0x179c  UI0Detect - ok
18:24:48.0195 0x179c  UIUSys - ok
18:24:48.0241 0x179c  [ 75E6890EBFCE0841D3291B02E7A8BDB0, FDF9CDCCCCC0AA2A52623C5A67AC5F5224557EE4C8F6487CB13CAEB012575E2A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
18:24:48.0259 0x179c  uliagpkx - ok
18:24:48.0437 0x179c  [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
18:24:48.0517 0x179c  uliahci - ok
18:24:48.0570 0x179c  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
18:24:48.0599 0x179c  UlSata - ok
18:24:48.0643 0x179c  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
18:24:48.0699 0x179c  ulsata2 - ok
18:24:48.0754 0x179c  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
18:24:48.0791 0x179c  umbus - ok
18:24:48.0872 0x179c  [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost        C:\Windows\System32\upnphost.dll
18:24:48.0890 0x179c  upnphost - ok
18:24:48.0938 0x179c  USBAAPL - ok
18:24:49.0010 0x179c  [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
18:24:49.0029 0x179c  usbccgp - ok
18:24:49.0091 0x179c  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
18:24:49.0120 0x179c  usbcir - ok
18:24:49.0158 0x179c  [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
18:24:49.0176 0x179c  usbehci - ok
18:24:49.0222 0x179c  [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
18:24:49.0296 0x179c  usbhub - ok
18:24:49.0335 0x179c  [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci         C:\Windows\system32\drivers\usbohci.sys
18:24:49.0350 0x179c  usbohci - ok
18:24:49.0398 0x179c  [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
18:24:49.0416 0x179c  usbprint - ok
18:24:49.0500 0x179c  [ A508C9BD8724980512136B039BBA65E9, B39B72471C468AC997AEC528599EDC98A031F5A7EB91C4F9471402D48D2D4E3E ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
18:24:49.0514 0x179c  usbscan - ok
18:24:49.0576 0x179c  [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:24:49.0614 0x179c  USBSTOR - ok
18:24:49.0676 0x179c  [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
18:24:49.0719 0x179c  usbuhci - ok
18:24:49.0819 0x179c  [ 228F444F9AF0D3B9ECA9FC3F4FEB12F2, D29C9A0ED5602BCD529A0D7F538DFA8771B1CAC6F433AA686C3A4917DC596369 ] usb_rndisx      C:\Windows\system32\DRIVERS\usb8023x.sys
18:24:49.0840 0x179c  usb_rndisx - ok
18:24:49.0917 0x179c  [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms           C:\Windows\System32\uxsms.dll
18:24:49.0925 0x179c  UxSms - ok
18:24:50.0018 0x179c  [ 4E7135D6D0127067E4CFEE12259F895D, 2542257E3912591AC4902FF08E43C46CC91BA97D67EED9375CC5DB5DEE71797F ] VAIO Entertainment TV Device Arbitration Service C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
18:24:50.0021 0x179c  VAIO Entertainment TV Device Arbitration Service - ok
18:24:50.0106 0x179c  [ 8A9F18ADAD471402236CA931553BF79B, D6FBECC83C5A8052C3F65A6B43BC42466212D9BE3B704CC150A8BA49E37F0291 ] VAIO Event Service C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
18:24:50.0137 0x179c  VAIO Event Service - ok
18:24:50.0779 0x179c  [ 0A4CD617ED1F03C8B7310FC4871173A4, F5DE33761CDE14A0EF134C526DDAACCE09AEFCBCA1242D91D2DE3B8159BDA62B ] VAIOMediaPlatform-IntegratedServer-AppServer C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
18:24:51.0086 0x179c  VAIOMediaPlatform-IntegratedServer-AppServer - ok
18:24:51.0264 0x179c  [ 56E33AAA46CBA8431E72486196AFB3A1, 8AD1759AF582C3AF21855BEEA190FAAD297D98567130BD8FFDAF3C12168A41A7 ] VAIOMediaPlatform-IntegratedServer-HTTP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
18:24:51.0327 0x179c  VAIOMediaPlatform-IntegratedServer-HTTP - ok
18:24:51.0632 0x179c  [ ADDF0E4E19BD2FF0A0B852D324FDC281, 848E81C9986B9FB52652EB073852412BE02A7A97CA2A062A8D0A959865869726 ] VAIOMediaPlatform-IntegratedServer-UPnP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
18:24:51.0770 0x179c  VAIOMediaPlatform-IntegratedServer-UPnP - ok
18:24:52.0073 0x179c  [ 52D4F568FE7D05AE5026B8717EEB59EB, BF263043A756EFC4853C28A1F62FC56C43810A4734D16EBBCE6E9B71283CBE05 ] VAIOMediaPlatform-UCLS-AppServer C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe
18:24:52.0257 0x179c  VAIOMediaPlatform-UCLS-AppServer - ok
18:24:52.0329 0x179c  [ 56E33AAA46CBA8431E72486196AFB3A1, 8AD1759AF582C3AF21855BEEA190FAAD297D98567130BD8FFDAF3C12168A41A7 ] VAIOMediaPlatform-UCLS-HTTP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
18:24:52.0349 0x179c  VAIOMediaPlatform-UCLS-HTTP - ok
18:24:52.0446 0x179c  [ ADDF0E4E19BD2FF0A0B852D324FDC281, 848E81C9986B9FB52652EB073852412BE02A7A97CA2A062A8D0A959865869726 ] VAIOMediaPlatform-UCLS-UPnP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
18:24:52.0500 0x179c  VAIOMediaPlatform-UCLS-UPnP - ok
18:24:53.0529 0x179c  [ 721A1677FD204AB065238504D9268D92, 5F6557E69EFB5F258879871244B8E7D17498EA393C61BC815D7F6CAA7F23513D ] VCFw            C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
18:24:54.0270 0x179c  VCFw - ok
18:24:54.0499 0x179c  [ FD03AC6CD1571AA8B2FF56D3C600E26E, B92C35E7034FD4C2FD9534CE72A697A564CD99CDCC32A3B477B91931E70C64E2 ] VcmIAlzMgr      C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
18:24:54.0581 0x179c  VcmIAlzMgr - ok
18:24:54.0666 0x179c  [ B56CD01F36EEF2967EF18D8DF0E5C285, 796E5ECF7E06DEC9660BF941D874F17B658C18214F248AAD74FC549E079956B9 ] VcmXmlIfHelper  C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
18:24:54.0701 0x179c  VcmXmlIfHelper - ok
18:24:54.0714 0x179c  Vcsw - ok
18:24:54.0820 0x179c  [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds             C:\Windows\System32\vds.exe
18:24:54.0881 0x179c  vds - ok
18:24:54.0943 0x179c  [ 7D92BE0028ECDEDEC74617009084B5EF, D0749CE6FA3415BA4364299F8D6D53F133E8D2F44C6F1057996243415A540A53 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
18:24:54.0959 0x179c  vga - ok
18:24:55.0009 0x179c  [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave         C:\Windows\System32\drivers\vga.sys
18:24:55.0044 0x179c  VgaSave - ok
18:24:55.0101 0x179c  [ 045D9961E591CF0674A920B6BA3BA5CB, EBF498A0424CEA0F7ECBAAE144A8669CE6B5DD67115DE22CEC5A46AED26CD90B ] viaagp          C:\Windows\system32\drivers\viaagp.sys
18:24:55.0132 0x179c  viaagp - ok
18:24:55.0203 0x179c  [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7           C:\Windows\system32\drivers\viac7.sys
18:24:55.0246 0x179c  ViaC7 - ok
18:24:55.0293 0x179c  [ FD2E3175FCADA350C7AB4521DCA187EC, 1C914B184478611A27E0141F90EBC34FC63DFB2A83441DD36DFA43D945FB1C52 ] viaide          C:\Windows\system32\drivers\viaide.sys
18:24:55.0311 0x179c  viaide - ok
18:24:55.0410 0x179c  [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:24:55.0454 0x179c  volmgr - ok
18:24:55.0532 0x179c  [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:24:55.0618 0x179c  volmgrx - ok
18:24:55.0692 0x179c  [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:24:55.0729 0x179c  volsnap - ok
18:24:55.0819 0x179c  [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
18:24:55.0857 0x179c  vsmraid - ok
18:24:55.0973 0x179c  [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS             C:\Windows\system32\vssvc.exe
18:24:56.0071 0x179c  VSS - ok
18:24:56.0195 0x179c  [ AD137204D107A60D563030145C3BE695, 4470AD9D1D2B0302A2CAA56CD3847287D9CEC56D274405B4B8DF4448EFD45EB0 ] VUAgent         C:\Program Files\Sony\VAIO Update 5\VUAgent.exe
18:24:56.0307 0x179c  VUAgent - ok
18:24:56.0408 0x179c  [ 79EB419F4A694B4514249E0D3DB16ECF, 1D5A69183A232C22944A58C8C6D43DB68BEAE6D7AD5F6C04DB37E1B0C9F6ADCA ] VzCdbSvc        C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
18:24:56.0460 0x179c  VzCdbSvc - ok
18:24:56.0536 0x179c  [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time         C:\Windows\system32\w32time.dll
18:24:56.0557 0x179c  W32Time - ok
18:24:56.0632 0x179c  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
18:24:56.0683 0x179c  WacomPen - ok
18:24:56.0765 0x179c  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
18:24:56.0823 0x179c  Wanarp - ok
18:24:56.0858 0x179c  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:24:56.0867 0x179c  Wanarpv6 - ok
18:24:56.0956 0x179c  [ 779F9C90D3FE9C70B6FFD8EF035F3E83, 4E38026BA53139B4A10D5E8F00413FAF442A2A42FE1388FCF2155F07BE826750 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
18:24:56.0979 0x179c  WcesComm - ok
18:24:57.0199 0x179c  [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:24:57.0287 0x179c  wcncsvc - ok
18:24:57.0354 0x179c  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:24:57.0380 0x179c  WcsPlugInService - ok
18:24:57.0455 0x179c  [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd              C:\Windows\system32\drivers\wd.sys
18:24:57.0489 0x179c  Wd - ok
18:24:57.0847 0x179c  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:24:58.0058 0x179c  Wdf01000 - ok
18:24:58.0129 0x179c  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:24:58.0145 0x179c  WdiServiceHost - ok
18:24:58.0163 0x179c  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:24:58.0171 0x179c  WdiSystemHost - ok
18:24:58.0285 0x179c  [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient       C:\Windows\System32\webclnt.dll
18:24:58.0296 0x179c  WebClient - ok
18:24:58.0454 0x179c  [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:24:58.0535 0x179c  Wecsvc - ok
18:24:58.0618 0x179c  [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:24:58.0624 0x179c  wercplsupport - ok
18:24:58.0687 0x179c  [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc          C:\Windows\System32\WerSvc.dll
18:24:58.0696 0x179c  WerSvc - ok
18:24:58.0810 0x179c  [ F9AD3A5E3FD7E0BDB18B8202B0FDD4E4, A6020D41FEA0CC76D0C3CA3A88F3E9493022CD5A549E18B02D69A482B579F339 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
18:24:58.0886 0x179c  WimFltr - ok
18:24:59.0338 0x179c  [ 5A77AC34A0FFB70CE8B35B524FEDE9BA, 711DD957AF98F1B835ECE0FEBCCF8FCC7763F1DAA232F1C9E80DE6DA123C7F33 ] winachsf        C:\Windows\system32\DRIVERS\HSX_CNXT.sys
18:24:59.0565 0x179c  winachsf - ok
18:24:59.0731 0x179c  [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
18:24:59.0758 0x179c  WinDefend - ok
18:24:59.0792 0x179c  WinHttpAutoProxySvc - ok
18:24:59.0885 0x179c  [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:24:59.0911 0x179c  Winmgmt - ok
18:25:00.0035 0x179c  [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM           C:\Windows\system32\WsmSvc.dll
18:25:00.0159 0x179c  WinRM - ok
18:25:00.0253 0x179c  [ 676F4B665BDD8053EAA53AC1695B8074, 98521FCB6B6B33DD8BF38A703745053481681C7981DFE5A59116D6BDE187D6F6 ] winusb          C:\Windows\system32\DRIVERS\winusb.sys
18:25:00.0265 0x179c  winusb - ok
18:25:00.0358 0x179c  [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc         C:\Windows\System32\wlansvc.dll
18:25:00.0403 0x179c  Wlansvc - ok
18:25:00.0622 0x179c  [ 0A70F4022EC2E14C159EFC4F69AA2477, FF248136576F9803762C54DE5439D3411B52DCBC95B93176A5DAB857967D9AC4 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:25:00.0735 0x179c  wlidsvc - ok
18:25:00.0802 0x179c  [ 701A9F884A294327E9141D73746EE279, C8A46B8C32F9EAC7848D385473F6B5C4B6DA719A941A75AD5F081757FC07A09D ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
18:25:00.0832 0x179c  WmiAcpi - ok
18:25:00.0902 0x179c  [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:25:00.0920 0x179c  wmiApSrv - ok
18:25:01.0051 0x179c  [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
18:25:01.0123 0x179c  WMPNetworkSvc - ok
18:25:01.0185 0x179c  [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
18:25:01.0211 0x179c  WPCSvc - ok
18:25:01.0266 0x179c  [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:25:01.0273 0x179c  WPDBusEnum - ok
18:25:01.0322 0x179c  [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
18:25:01.0334 0x179c  WpdUsb - ok
18:25:01.0539 0x179c  [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
18:25:01.0571 0x179c  WPFFontCache_v0400 - ok
18:25:01.0624 0x179c  [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:25:01.0658 0x179c  ws2ifsl - ok
18:25:01.0731 0x179c  [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc          C:\Windows\System32\wscsvc.dll
18:25:01.0739 0x179c  wscsvc - ok
18:25:01.0757 0x179c  WSearch - ok
18:25:01.0972 0x179c  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
18:25:02.0125 0x179c  wuauserv - ok
18:25:02.0226 0x179c  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:25:02.0240 0x179c  WudfPf - ok
18:25:02.0296 0x179c  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
18:25:02.0316 0x179c  WUDFRd - ok
18:25:02.0389 0x179c  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:25:02.0407 0x179c  wudfsvc - ok
18:25:02.0447 0x179c  [ 88AF537264F2B818DA15479CEEAF5D7C, E0F95D6448FFB77351BB63ED444238F891B16748FD09F8BCCA23BEC4E341A96B ] XAudio          C:\Windows\system32\DRIVERS\xaudio.sys
18:25:02.0473 0x179c  XAudio - ok
18:25:02.0646 0x179c  [ 15A317674A08DF26BE65164D959E9203, 6EEE0D1711F37936D157651E265A65137BCBFBDA17F066C844BAA0D53558F86A ] XAudioService   C:\Windows\system32\DRIVERS\xaudio.exe
18:25:02.0690 0x179c  XAudioService - ok
18:25:02.0807 0x179c  [ 2D07E65ED0023BB10B13A912B27DFB1A, 9462F3BCA8C8C1D284DB483C9EFB1CB770225E912A3508D71084F1CA93927C47 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys
18:25:02.0831 0x179c  yukonwlh - ok
18:25:02.0955 0x179c  ================ Scan global ===============================
18:25:03.0036 0x179c  [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
18:25:03.0097 0x179c  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
18:25:03.0155 0x179c  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
18:25:03.0245 0x179c  [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
18:25:03.0284 0x179c  [ Global ] - ok
18:25:03.0286 0x179c  ================ Scan MBR ==================================
18:25:03.0335 0x179c  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
18:25:04.0236 0x179c  \Device\Harddisk0\DR0 - ok
18:25:04.0237 0x179c  ================ Scan VBR ==================================
18:25:04.0242 0x179c  [ B4FE8A99531414FD17FAAF16D673E23C ] \Device\Harddisk0\DR0\Partition1
18:25:04.0282 0x179c  \Device\Harddisk0\DR0\Partition1 - ok
18:25:04.0291 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:05.0291 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:06.0291 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:07.0291 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:08.0291 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:09.0291 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:10.0295 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:11.0296 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:12.0296 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:13.0296 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:14.0296 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:15.0296 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:16.0296 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:17.0296 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:18.0296 0x179c  Waiting for KSN requests completion. In queue: 121
18:25:19.0431 0x179c  AV detected via SS2: Avira Desktop, C:\Program Files\Avira\AntiVir Desktop\wsctool.exe ( 14.0.3.336 ), 0x40000 ( disabled : updated )
18:25:19.0461 0x179c  Win FW state via NFP2: enabled
18:25:33.0904 0x179c  ============================================================
18:25:33.0904 0x179c  Scan finished
18:25:33.0904 0x179c  ============================================================
18:25:33.0934 0x0338  Detected object count: 1
18:25:33.0934 0x0338  Actual detected object count: 1
18:26:01.0597 0x0338  sptd ( LockedFile.Multi.Generic ) - skipped by user
18:26:01.0597 0x0338  sptd ( LockedFile.Multi.Generic ) - User select action: Skip 


#6 lpoolck

lpoolck
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:06 AM

Posted 08 April 2014 - 01:03 PM

Please see attached for Gmer scan.  Couldn't find how to save other scan report so I had to copy and paste it - sorry.

Attached Files

  • Attached File  ark.txt   7.79KB   3 downloads

Edited by lpoolck, 08 April 2014 - 01:03 PM.


#7 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:06 AM

Posted 09 April 2014 - 02:54 AM

Disable CD Emulation with DeFogger

Please download DeFogger to your desktop.

Double click DeFogger to run the tool.

  • The application window will appear
  • Click the Disable button to disable your CD Emulation drivers.
  • Click Yes to continue
  • A 'Finished!' message will appear
  • Click OK
  • DeFogger will now ask to reboot the machine - click OK


IMPORTANT! If you receive an error message while running DeFogger, please post the log defogger_disable which will appear on your desktop.

Do not re-enable these drivers until otherwise instructed.

 

 

When done, rescan with avira and tell me if you still see an hidden object.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#8 lpoolck

lpoolck
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:06 AM

Posted 09 April 2014 - 01:46 PM

Completed above as requested, hidden object does now not show up on scan - see attached.

Attached Files



#9 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:06 AM

Posted 10 April 2014 - 06:16 AM

SPTD uses stealth technologies. These are often detected as hidden/rootkit. ;)

 

Everything is fine!

 

 

Uninstall our tools using delfix

Please follow these steps in order:

  • In the case we used Defogger to turn off your CD emulation software. You can start it again and use the Enable button.
  • In the case we used Combofix. Deactivate your antivirus software once more, then rename the combofix.exe to uninstall.exe and run it one last time. You shall be noted that Combofix has been removed.
  • In any case please download delfix to your desktop.
    • Close all other programms and start delfix.
    • Please check all the boxes and run the tool.
    • delfix will now delete all found traces of our removal process
  • If there is still something left please delete it manualy.

 

 

 

Recommendations: How to protect yourself

  • System Updates
    Please ensure to have automatic updates activated in your control panel.
    For further information and a tutorial, see this Microsoft Support article.
  • Protection
    What you need is one (not more) virus scanner with background protection. Additionally I recommend a special malware scanner to run on demand weekly.
    Personally I am using avast! Antivirus Free Edition and Malwarebytes Anti-Malware. They offer good protection for free.
    • To keep your browser free of advertising, you may install the Adblock Plus browser extension.
      It will filter unwanted advertising out of the website´s content.
    • To protect yourself from accidentally visiting malicious web sites, install the Web of Trust (WOT) browser extension.
      It will display a green (safe), yellow (unknown) or red (potentially dangerous) icon for a visited website within your browser.
      In addition, before accessing a dangerous classified web site, a warning screen is displayed.

  • Up to date Software
    Keep your Windows and your third party software up to date. The easiest way to get infected is an outdated windows, followed by: browser(s) (including add-ons and plug-ins), Adobe Flash Player and Adobe Reader, Java Runtime Environment, your antivirus program and so on. These links may help you to check:

  • Backup
    Hardware issues, malware, fire, lightning strike: There is a long list of different ways to loose all your data. Back up your files regularly. Use the windows internal backup function or a third party tool and save your data onto an external hard drive, cloud storage, optical media like CDs or DVDs or (if available) a professional network backup system.
  • Behaviour
    The commonest error when using a computer is "error 80" - what means that the error is located about 80cm in front of the monitor. This is a common joke between IT support technicians but it shows that all the safety mechanisms won´t help if you aren´t careful enough.
    • While surfing the internet, don´t click on anything you don´t know. In the worst case, it infects your system with malware.
    • Watch your step in social networks! Many cyber criminals use them to spread malware, mine personal pata (to be sold to advertising companies, for example) or simply do damage to other users. Even if a received hyperlink within a message seems to be coming from one of your friends, have a closer look. In addition, don´t click everything.
    • When installing software, have a look to each of the setup windows and uncheck any additional toolbars or free programs that may be offered additionally. Most of today´s setup procedures contain potentially unwanted programs so keep them off your system.
    • Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs.
      They are a security risk which can make your computer susceptible to a wide variety of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#10 lpoolck

lpoolck
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:01:06 AM

Posted 10 April 2014 - 02:56 PM

Thanks for your help, sent you a little donation for your help.

 

I have also taken your advice and downloaded Malwarebytes Anti-Malware



#11 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:06 AM

Posted 11 April 2014 - 08:11 AM

Thank you! :)


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#12 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:06 AM

Posted 11 April 2014 - 08:12 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.
Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users