Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Chrome redirects from google to yahoo


  • Please log in to reply
9 replies to this topic

#1 witchetty

witchetty

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:09:08 AM

Posted 27 May 2014 - 06:34 AM

Hello, 

 

I've been asked by my neighbour to help him with his computer as it redirect to uk.search.yahoo.com/?type=937811&fr=spigot-yhp-ch instead of google. He has also been getting a lot of pop up adverts. Please can you help me help him!

 

Thanks!



BC AdBot (Login to Remove)

 


m

#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,240 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:08 AM

Posted 27 May 2014 - 01:57 PM

Hello witchetty, Lets do these and see how it is..


First look in your Extensions for Google or Yahoo and any others you do not know and Disable or remove them.

How to Disable Extensions in Google Chrome - How to Uninstall Extensions in Google Chrome

Close and reopen the browser.

If still redirecting....

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 witchetty

witchetty
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:09:08 AM

Posted 27 May 2014 - 04:55 PM

Hi boopme,

Thanks for your help.

 

Here is the result of the MiniToolBox... at least I hope it is!

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by Carl (administrator) on 27-05-2014 at 21:31:45
Running from "C:\Users\Carl\Desktop"
Microsoft® Windows Vista™ Home Basic   (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
::1             localhost
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set interface luid=loopback_0 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=ethernet_2 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=ethernet_1 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=wireless_0 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=ethernet_4 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Carl-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Marvell Yukon 88E8036 PCI-E Fast Ethernet Controller
   Physical Address. . . . . . . . . : 00-1A-80-43-FD-84
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Intel® PRO/Wireless 3945ABG Network Connection
   Physical Address. . . . . . . . . : 00-1B-77-63-E0-4D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::a445:286a:59d8:9a10%8(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.65(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 27 May 2014 20:52:05
   Lease Expires . . . . . . . . . . : 28 May 2014 20:52:40
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 234887390
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter Local Area Connection* 6:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : isatap.{E086ABB6-BA8D-4B8B-8F0F-10500CDEE703}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 9:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 02-00-54-55-4E-01
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:10ac:11b1:3f57:febe(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::10ac:11b1:3f57:febe%11(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter Local Area Connection* 10:
 
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::5efe:192.168.1.65%18(Preferred) 
   Default Gateway . . . . . . . . . : 
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  api.home
Address:  192.168.1.254:53
 
Name:    google.com
Addresses:  173.194.41.135, 173.194.41.134, 173.194.41.128, 173.194.41.136
 173.194.41.131, 173.194.41.142, 173.194.41.132, 173.194.41.130, 173.194.41.129
 173.194.41.137, 173.194.41.133
 
 
 
Pinging google.com [173.194.41.131] with 32 bytes of data:
 
 
 
Reply from 173.194.41.131: bytes=32 time=37ms TTL=52
 
Reply from 173.194.41.131: bytes=32 time=39ms TTL=52
 
 
 
Ping statistics for 173.194.41.131:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 37ms, Maximum = 39ms, Average = 38ms
 
Server:  api.home
Address:  192.168.1.254:53
 
Name:    yahoo.com
Addresses:  98.138.253.109, 206.190.36.45, 98.139.183.24
 
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
 
 
 
Reply from 206.190.36.45: bytes=32 time=192ms TTL=44
 
Reply from 206.190.36.45: bytes=32 time=182ms TTL=44
 
 
 
Ping statistics for 206.190.36.45:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 182ms, Maximum = 192ms, Average = 187ms
 
 
 
Pinging 127.0.0.1 with 32 bytes of data:
 
 
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
 
 
Ping statistics for 127.0.0.1:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
 
===========================================================================
Interface List
  9 ...00 1a 80 43 fd 84 ...... Marvell Yukon 88E8036 PCI-E Fast Ethernet Controller
  8 ...00 1b 77 63 e0 4d ...... Intel® PRO/Wireless 3945ABG Network Connection
  1 ........................... Software Loopback Interface 1
 10 ...00 00 00 00 00 00 00 e0  isatap.{E086ABB6-BA8D-4B8B-8F0F-10500CDEE703}
 11 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
 18 ...00 00 00 00 00 00 00 e0  Microsoft ISATAP Adapter #2
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.65     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.65    281
     192.168.1.65  255.255.255.255         On-link      192.168.1.65    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.65    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.65    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.65    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 11     18 ::/0                     On-link
  1    306 ::1/128                  On-link
 11     18 2001::/32                On-link
 11    266 2001:0:9d38:6abd:10ac:11b1:3f57:febe/128
                                    On-link
  8    281 fe80::/64                On-link
 11    266 fe80::/64                On-link
 18    286 fe80::5efe:192.168.1.65/128
                                    On-link
 11    266 fe80::10ac:11b1:3f57:febe/128
                                    On-link
  8    281 fe80::a445:286a:59d8:9a10/128
                                    On-link
  1    306 ff00::/8                 On-link
 11    266 ff00::/8                 On-link
  8    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (05/27/2014 11:13:57 AM) (Source: Application Error) (User: )
Description: Faulting application mbam.exe, version 1.0.0.500, time stamp 0x533d8de2, faulting module MSVCR100.dll, version 10.0.40219.325, time stamp 0x4df2be1e, exception code 0x40000015, fault offset 0x0008d6fd,
process id 0xf84, application start time 0xmbam.exe0.
 
Error: (05/15/2014 09:50:32 AM) (Source: Windows Search Service) (User: )
Description: Unable to initialize the filter host process. Terminating.
 
 
Details:
This operation returned because the timeout period expired.   (0x800705b4)
 
Error: (05/14/2014 10:30:05 AM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 7.0.6000.16982, time stamp 0x4b2b56f5, faulting module optpro~2.dll, version 0.0.0.0, time stamp 0x534d03a0, exception code 0xc0000005, fault offset 0x000ffa17,
process id 0x9e4, application start time 0xiexplore.exe0.
 
Error: (05/13/2014 11:34:09 AM) (Source: EventSystem) (User: )
Description: d:\vista_gdr\com\complus\src\events\tier2\security.cpp78800706e5
 
Error: (05/10/2014 05:00:39 PM) (Source: Perflib) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4
 
Error: (05/10/2014 05:00:37 PM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4
 
Error: (05/10/2014 05:00:37 PM) (Source: Perflib) (User: )
Description: DFSRC:\Windows\System32\DfsrPerf.dll4
 
Error: (05/10/2014 04:59:55 PM) (Source: Application Error) (User: )
Description: Faulting application mbam.exe, version 1.0.0.500, time stamp 0x533d8de2, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception code 0xc0000005, fault offset 0x005c0032,
process id 0x934, application start time 0xmbam.exe0.
 
Error: (05/08/2014 10:33:08 AM) (Source: Perflib) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4
 
Error: (05/08/2014 10:32:58 AM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4
 
 
System errors:
=============
Error: (05/27/2014 08:48:14 PM) (Source: ACPI) (User: )
Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.
 
Error: (05/27/2014 08:19:37 PM) (Source: Service Control Manager) (User: )
Description: Computer Backup (MyPC Backup)%%1053
 
Error: (05/27/2014 08:19:37 PM) (Source: Service Control Manager) (User: )
Description: 30000Computer Backup (MyPC Backup)
 
Error: (05/27/2014 08:19:37 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
 
Error: (05/27/2014 00:29:30 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
 
New Signature Version: 
 
Previous Signature Version: 0.0.0.0
 
Update Source: %NT AUTHORITY51
 
Update Stage: 4.5.0216.00
 
Source Path: 4.5.0216.01
 
Signature Type: %NT AUTHORITY602
 
Update Type: %NT AUTHORITY604
 
User: NT AUTHORITY\NETWORK SERVICE
 
Current Engine Version: %NT AUTHORITY605
 
Previous Engine Version: %NT AUTHORITY606
 
Error code: %NT AUTHORITY607
 
Error description: %NT AUTHORITY608
 
Error: (05/27/2014 00:28:43 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update the engine.
 
New Engine Version: 
 
Previous Engine Version: 
 
Engine Type: %NT AUTHORITY604
 
User: NT AUTHORITY\NETWORK SERVICE
 
Error Code: %NT AUTHORITY601
 
Error description: %NT AUTHORITY602
 
Error: (05/27/2014 00:28:43 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
 
New Signature Version: 
 
Previous Signature Version: 
 
Update Source: %NT AUTHORITY15
 
Update Stage: 4.5.0216.00
 
Source Path: 4.5.0216.01
 
Signature Type: %NT AUTHORITY602
 
Update Type: %NT AUTHORITY604
 
User: NT AUTHORITY\NETWORK SERVICE
 
Current Engine Version: %NT AUTHORITY605
 
Previous Engine Version: %NT AUTHORITY606
 
Error code: %NT AUTHORITY607
 
Error description: %NT AUTHORITY608
 
Error: (05/27/2014 11:19:55 AM) (Source: netbt) (User: )
Description: The name "CARL-PC         :20" could not be registered on the interface with IP address 0.0.0.0.
The computer with the IP address 192.168.1.65 did not allow the name to be claimed by
this computer.
 
Error: (05/27/2014 11:19:55 AM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{3712CAC6-7755-4525-8119-37BA0015FE46} because another computer on the network has the same name.  The server could not start.
 
Error: (05/27/2014 11:18:50 AM) (Source: Service Control Manager) (User: )
Description: 30000MBAMScheduler
 
 
Microsoft Office Sessions:
=========================
Error: (05/27/2014 11:13:57 AM) (Source: Application Error)(User: )
Description: mbam.exe1.0.0.500533d8de2MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fdf8401cf7993cde4b94f
 
Error: (05/15/2014 09:50:32 AM) (Source: Windows Search Service)(User: )
Description: 
Details:
This operation returned because the timeout period expired.   (0x800705b4)
 
Error: (05/14/2014 10:30:05 AM) (Source: Application Error)(User: )
Description: iexplore.exe7.0.6000.169824b2b56f5optpro~2.dll0.0.0.0534d03a0c0000005000ffa179e401cf6f5711914439
 
Error: (05/13/2014 11:34:09 AM) (Source: EventSystem)(User: )
Description: d:\vista_gdr\com\complus\src\events\tier2\security.cpp78800706e5
 
Error: (05/10/2014 05:00:39 PM) (Source: Perflib)(User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4
 
Error: (05/10/2014 05:00:37 PM) (Source: Perflib)(User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4
 
Error: (05/10/2014 05:00:37 PM) (Source: Perflib)(User: )
Description: DFSRC:\Windows\System32\DfsrPerf.dll4
 
Error: (05/10/2014 04:59:55 PM) (Source: Application Error)(User: )
Description: mbam.exe1.0.0.500533d8de2unknown0.0.0.000000000c0000005005c003293401cf6c68b445d658
 
Error: (05/08/2014 10:33:08 AM) (Source: Perflib)(User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4
 
Error: (05/08/2014 10:32:58 AM) (Source: Perflib)(User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-05-27 20:17:16.539
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\PROGRA~1\OPTIMI~1\OPTPRO~2.DLL because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:52.059
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:52.023
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:51.969
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:51.921
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:51.135
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:51.099
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:51.043
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:50.970
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:37:09.081
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
Adobe Common File Installer (Version: 1.00.002)
Adobe Flash Player 9 ActiveX (Version: 9)
Adobe Help Center 2.1 (Version: 2.1)
Adobe Premiere Elements 3.0.2 (Version: 3.0.2)
Adobe Premiere Elements 3.0.2 Templates (Version: 1.0.0)
Adobe Reader 8 (Version: 8.0.0)
Alps Pointing-device for VAIO
AVG 7.5
Browser Extensions (Version: 1.5)
CCleaner (Version: 4.13)
Click to DVD 2.0.05 Menu Data (Version: 2.0.05)
Click to DVD 2.6.00 (Version: 2.6.00)
Encyclopaedia Britannica Standard Edition 2004 CD-ROM (Version: 2004.0.0.0)
FileParade bundle uninstaller (Version: 2.0.0.5)
GDR 4053 for SQL Server Database Services 2005 ENU (KB970892) (Version: 9.3.4053)
Google Chrome (Version: 34.0.1847.131)
Google Earth Plug-in (Version: 7.1.2.2041)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.5111.1712)
Google Update Helper (Version: 1.3.24.7)
HDAUDIO SoftV92 Data Fax Modem with SmartCP
Image Converter 3 (Version: 3.0)
Intel® Graphics Media Accelerator Driver
LAN-Express AS IEEE 802.11 Wireless LAN (Version: 7.1.0.116)
Malwarebytes Anti-Malware version 2.0.1.1004 (Version: 2.0.1.1004)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Security Client (Version: 4.5.0216.0)
Microsoft Security Essentials (Version: 4.5.216.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (VAIO_VEDB) (Version: 9.3.4035.00)
Microsoft SQL Server Native Client (Version: 9.00.4035.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.4035.00)
Microsoft SQL Server VSS Writer (Version: 9.00.4035.00)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyPC Backup  (Version: )
OEM (Version: 1.0.00.12060)
OpenMG Limited Patch 4.7-07-13-24-01
OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140)
Optimizer Pro v3.2
QuickTime
Realtek High Definition Audio Driver (Version: 6.0.1.5350)
Search Protection (Version: 8.9.0.2)
Setting Utility Series (Version: 2.1.00.14150)
SonicStage 4.3 (Version: 4.3)
SonicStage Mastering Studio (Version: 2.3.01)
SonicStage Mastering Studio Audio Filter (Version: 2.3.01)
SonicStage Mastering Studio Audio Filter Custom Preset (Version: 2.3)
SonicStage Mastering Studio Plugins (Version: 2.3)
Sony Utilities DLL (Version: 7.1.00.13300)
Sony Video Shared Library (Version: 3.1.03)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
VAIO Aqua Breeze Wallpaper (Version: 1.0.11.13240)
VAIO Azure Float Wallpaper (Version: 1.0.00.10100)
VAIO Control Center (Version: 2.0.00.11060)
VAIO Cozy Orange Wallpaper (Version: 1.0.11.13240)
VAIO Data Restore Tool (Version: 1.0.01.01250)
VAIO Edit Components 6.2 (Version: 6.2)
VAIO Entertainment Platform (Version: 2.0.02.13290)
VAIO Event Service (Version: 3.1.00.14130)
VAIO Floral Dusk Wallpaper (Version: 1.0.00.10100)
VAIO Hardware Diagnostics
VAIO Manual (Version: 2.1.00.10190)
VAIO Media (Version: 6.0.10)
VAIO Media 6.0 (Version: 6.0.10)
VAIO Media AC3 Decoder 1.0
VAIO Media Content Collection 6.0
VAIO Media Integrated Server 6.0
VAIO Media Redistribution 6.0 (Version: 6.0.10)
VAIO Media Registration Tool (Version: 6.0.10)
VAIO Media Registration Tool 6.0 (Version: 6.0.10)
VAIO Photo 2007 (Version: 1.0.01.01250)
VAIO Power Management (Version: 2.1.00.14090)
VAIO Teal Whisper Wallpaper (Version: 1.0.00.10100)
VAIO Tender Yellow Wallpaper (Version: 1.0.00.10100)
VAIO Update (Version: 5.1.1.04150)
VAIO Update 3 (Version: 3.0.01.02050)
VAIO Video & Photo  Suite (Version: 1.1.00.13301)
WinDVD for VAIO (Version: 8.0-B6.113)
Wireless Switch Setting Utility (Version: 3.6.00.14270)
YTD Video Downloader 4.8.1 (Version: 4.8.1)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 86%
Total physical RAM: 1013.56 MB
Available physical RAM: 135.83 MB
Total Pagefile: 2281.01 MB
Available Pagefile: 966 MB
Total Virtual: 2047.88 MB
Available Virtual: 1981.66 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:86.64 GB) (Free:53.66 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\CARL-PC
 
Administrator            Carl                      Guest                    
 
 
**** End of log ****
Intel® PRO/Wireless 3945ABG Network Connection = Wireless Network Connection (Connected)
Marvell Yukon 88E8036 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set interface luid=loopback_0 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=ethernet_2 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=ethernet_1 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=wireless_0 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
set interface luid=ethernet_4 forwarding=disabled advertise=disabled mtu=0 metric=0 metric=0 nud=disabled basereachabletime=0 retransmittime=0 routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Carl-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Marvell Yukon 88E8036 PCI-E Fast Ethernet Controller
   Physical Address. . . . . . . . . : 00-1A-80-43-FD-84
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Intel® PRO/Wireless 3945ABG Network Connection
   Physical Address. . . . . . . . . : 00-1B-77-63-E0-4D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::a445:286a:59d8:9a10%8(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.65(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 27 May 2014 20:52:05
   Lease Expires . . . . . . . . . . : 28 May 2014 20:52:40
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 234887390
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter Local Area Connection* 6:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : isatap.{E086ABB6-BA8D-4B8B-8F0F-10500CDEE703}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 9:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 02-00-54-55-4E-01
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:10ac:11b1:3f57:febe(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::10ac:11b1:3f57:febe%11(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter Local Area Connection* 10:
 
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::5efe:192.168.1.65%18(Preferred) 
   Default Gateway . . . . . . . . . : 
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  api.home
Address:  192.168.1.254:53
 
Name:    google.com
Addresses:  173.194.41.131, 173.194.41.142, 173.194.41.132, 173.194.41.130
 173.194.41.129, 173.194.41.137, 173.194.41.133, 173.194.41.135, 173.194.41.134
 173.194.41.128, 173.194.41.136
 
 
 
Pinging google.com [173.194.41.135] with 32 bytes of data:
 
 
 
Reply from 173.194.41.135: bytes=32 time=37ms TTL=52
 
Reply from 173.194.41.135: bytes=32 time=37ms TTL=52
 
 
 
Ping statistics for 173.194.41.135:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 37ms, Maximum = 37ms, Average = 37ms
 
Server:  api.home
Address:  192.168.1.254:53
 
Name:    yahoo.com
Addresses:  98.139.183.24, 98.138.253.109, 206.190.36.45
 
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
 
 
 
Reply from 206.190.36.45: bytes=32 time=189ms TTL=44
 
Reply from 206.190.36.45: bytes=32 time=191ms TTL=44
 
 
 
Ping statistics for 206.190.36.45:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 189ms, Maximum = 191ms, Average = 190ms
 
 
 
Pinging 127.0.0.1 with 32 bytes of data:
 
 
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
 
 
Ping statistics for 127.0.0.1:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
 
===========================================================================
Interface List
  9 ...00 1a 80 43 fd 84 ...... Marvell Yukon 88E8036 PCI-E Fast Ethernet Controller
  8 ...00 1b 77 63 e0 4d ...... Intel® PRO/Wireless 3945ABG Network Connection
  1 ........................... Software Loopback Interface 1
 10 ...00 00 00 00 00 00 00 e0  isatap.{E086ABB6-BA8D-4B8B-8F0F-10500CDEE703}
 11 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
 18 ...00 00 00 00 00 00 00 e0  Microsoft ISATAP Adapter #2
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.65     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.65    281
     192.168.1.65  255.255.255.255         On-link      192.168.1.65    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.65    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.65    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.65    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 11     18 ::/0                     On-link
  1    306 ::1/128                  On-link
 11     18 2001::/32                On-link
 11    266 2001:0:9d38:6abd:10ac:11b1:3f57:febe/128
                                    On-link
  8    281 fe80::/64                On-link
 11    266 fe80::/64                On-link
 18    286 fe80::5efe:192.168.1.65/128
                                    On-link
 11    266 fe80::10ac:11b1:3f57:febe/128
                                    On-link
  8    281 fe80::a445:286a:59d8:9a10/128
                                    On-link
  1    306 ff00::/8                 On-link
 11    266 ff00::/8                 On-link
  8    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [227328] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (05/27/2014 09:42:26 PM) (Source: Application Hang) (User: )
Description: The program MyPC Backup.exe version 1.0.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 918
Start Time: 01cf79e055044579
Termination Time: 9
 
Error: (05/27/2014 11:13:57 AM) (Source: Application Error) (User: )
Description: Faulting application mbam.exe, version 1.0.0.500, time stamp 0x533d8de2, faulting module MSVCR100.dll, version 10.0.40219.325, time stamp 0x4df2be1e, exception code 0x40000015, fault offset 0x0008d6fd,
process id 0xf84, application start time 0xmbam.exe0.
 
Error: (05/15/2014 09:50:32 AM) (Source: Windows Search Service) (User: )
Description: Unable to initialize the filter host process. Terminating.
 
 
Details:
This operation returned because the timeout period expired.   (0x800705b4)
 
Error: (05/14/2014 10:30:05 AM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 7.0.6000.16982, time stamp 0x4b2b56f5, faulting module optpro~2.dll, version 0.0.0.0, time stamp 0x534d03a0, exception code 0xc0000005, fault offset 0x000ffa17,
process id 0x9e4, application start time 0xiexplore.exe0.
 
Error: (05/13/2014 11:34:09 AM) (Source: EventSystem) (User: )
Description: d:\vista_gdr\com\complus\src\events\tier2\security.cpp78800706e5
 
Error: (05/10/2014 05:00:39 PM) (Source: Perflib) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4
 
Error: (05/10/2014 05:00:37 PM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4
 
Error: (05/10/2014 05:00:37 PM) (Source: Perflib) (User: )
Description: DFSRC:\Windows\System32\DfsrPerf.dll4
 
Error: (05/10/2014 04:59:55 PM) (Source: Application Error) (User: )
Description: Faulting application mbam.exe, version 1.0.0.500, time stamp 0x533d8de2, faulting module unknown, version 0.0.0.0, time stamp 0x00000000, exception code 0xc0000005, fault offset 0x005c0032,
process id 0x934, application start time 0xmbam.exe0.
 
Error: (05/08/2014 10:33:08 AM) (Source: Perflib) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4
 
 
System errors:
=============
Error: (05/27/2014 08:48:14 PM) (Source: ACPI) (User: )
Description: : The embedded controller (EC) did not respond within the specified timeout period. This may indicate that there is an error in the EC hardware or firmware or that the BIOS is accessing the EC incorrectly. You should check with your computer manufacturer for an upgraded BIOS. In some situations, this error may cause the computer to function incorrectly.
 
Error: (05/27/2014 08:19:37 PM) (Source: Service Control Manager) (User: )
Description: Computer Backup (MyPC Backup)%%1053
 
Error: (05/27/2014 08:19:37 PM) (Source: Service Control Manager) (User: )
Description: 30000Computer Backup (MyPC Backup)
 
Error: (05/27/2014 08:19:37 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058
 
Error: (05/27/2014 00:29:30 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
 
New Signature Version: 
 
Previous Signature Version: 0.0.0.0
 
Update Source: %NT AUTHORITY51
 
Update Stage: 4.5.0216.00
 
Source Path: 4.5.0216.01
 
Signature Type: %NT AUTHORITY602
 
Update Type: %NT AUTHORITY604
 
User: NT AUTHORITY\NETWORK SERVICE
 
Current Engine Version: %NT AUTHORITY605
 
Previous Engine Version: %NT AUTHORITY606
 
Error code: %NT AUTHORITY607
 
Error description: %NT AUTHORITY608
 
Error: (05/27/2014 00:28:43 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update the engine.
 
New Engine Version: 
 
Previous Engine Version: 
 
Engine Type: %NT AUTHORITY604
 
User: NT AUTHORITY\NETWORK SERVICE
 
Error Code: %NT AUTHORITY601
 
Error description: %NT AUTHORITY602
 
Error: (05/27/2014 00:28:43 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
 
New Signature Version: 
 
Previous Signature Version: 
 
Update Source: %NT AUTHORITY15
 
Update Stage: 4.5.0216.00
 
Source Path: 4.5.0216.01
 
Signature Type: %NT AUTHORITY602
 
Update Type: %NT AUTHORITY604
 
User: NT AUTHORITY\NETWORK SERVICE
 
Current Engine Version: %NT AUTHORITY605
 
Previous Engine Version: %NT AUTHORITY606
 
Error code: %NT AUTHORITY607
 
Error description: %NT AUTHORITY608
 
Error: (05/27/2014 11:19:55 AM) (Source: netbt) (User: )
Description: The name "CARL-PC         :20" could not be registered on the interface with IP address 0.0.0.0.
The computer with the IP address 192.168.1.65 did not allow the name to be claimed by
this computer.
 
Error: (05/27/2014 11:19:55 AM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{3712CAC6-7755-4525-8119-37BA0015FE46} because another computer on the network has the same name.  The server could not start.
 
Error: (05/27/2014 11:18:50 AM) (Source: Service Control Manager) (User: )
Description: 30000MBAMScheduler
 
 
Microsoft Office Sessions:
=========================
Error: (05/27/2014 09:42:26 PM) (Source: Application Hang)(User: )
Description: MyPC Backup.exe1.0.0.091801cf79e0550445799
 
Error: (05/27/2014 11:13:57 AM) (Source: Application Error)(User: )
Description: mbam.exe1.0.0.500533d8de2MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fdf8401cf7993cde4b94f
 
Error: (05/15/2014 09:50:32 AM) (Source: Windows Search Service)(User: )
Description: 
Details:
This operation returned because the timeout period expired.   (0x800705b4)
 
Error: (05/14/2014 10:30:05 AM) (Source: Application Error)(User: )
Description: iexplore.exe7.0.6000.169824b2b56f5optpro~2.dll0.0.0.0534d03a0c0000005000ffa179e401cf6f5711914439
 
Error: (05/13/2014 11:34:09 AM) (Source: EventSystem)(User: )
Description: d:\vista_gdr\com\complus\src\events\tier2\security.cpp78800706e5
 
Error: (05/10/2014 05:00:39 PM) (Source: Perflib)(User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4
 
Error: (05/10/2014 05:00:37 PM) (Source: Perflib)(User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4
 
Error: (05/10/2014 05:00:37 PM) (Source: Perflib)(User: )
Description: DFSRC:\Windows\System32\DfsrPerf.dll4
 
Error: (05/10/2014 04:59:55 PM) (Source: Application Error)(User: )
Description: mbam.exe1.0.0.500533d8de2unknown0.0.0.000000000c0000005005c003293401cf6c68b445d658
 
Error: (05/08/2014 10:33:08 AM) (Source: Perflib)(User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-05-27 20:17:16.539
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\PROGRA~1\OPTIMI~1\OPTPRO~2.DLL because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:52.059
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:52.023
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:51.969
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:51.921
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:51.135
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:51.099
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:51.043
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:51:50.970
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-05-27 11:37:09.081
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
Adobe Common File Installer (Version: 1.00.002)
Adobe Flash Player 9 ActiveX (Version: 9)
Adobe Help Center 2.1 (Version: 2.1)
Adobe Premiere Elements 3.0.2 (Version: 3.0.2)
Adobe Premiere Elements 3.0.2 Templates (Version: 1.0.0)
Adobe Reader 8 (Version: 8.0.0)
Alps Pointing-device for VAIO
AVG 7.5
Browser Extensions (Version: 1.5)
CCleaner (Version: 4.13)
Click to DVD 2.0.05 Menu Data (Version: 2.0.05)
Click to DVD 2.6.00 (Version: 2.6.00)
Encyclopaedia Britannica Standard Edition 2004 CD-ROM (Version: 2004.0.0.0)
FileParade bundle uninstaller (Version: 2.0.0.5)
GDR 4053 for SQL Server Database Services 2005 ENU (KB970892) (Version: 9.3.4053)
Google Chrome (Version: 34.0.1847.131)
Google Earth Plug-in (Version: 7.1.2.2041)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.5111.1712)
Google Update Helper (Version: 1.3.24.7)
HDAUDIO SoftV92 Data Fax Modem with SmartCP
Image Converter 3 (Version: 3.0)
Intel® Graphics Media Accelerator Driver
LAN-Express AS IEEE 802.11 Wireless LAN (Version: 7.1.0.116)
Malwarebytes Anti-Malware version 2.0.1.1004 (Version: 2.0.1.1004)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Security Client (Version: 4.5.0216.0)
Microsoft Security Essentials (Version: 4.5.216.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (VAIO_VEDB) (Version: 9.3.4035.00)
Microsoft SQL Server Native Client (Version: 9.00.4035.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.4035.00)
Microsoft SQL Server VSS Writer (Version: 9.00.4035.00)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyPC Backup  (Version: )
OEM (Version: 1.0.00.12060)
OpenMG Limited Patch 4.7-07-13-24-01
OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140)
Optimizer Pro v3.2
QuickTime
Realtek High Definition Audio Driver (Version: 6.0.1.5350)
Search Protection (Version: 8.9.0.2)
Setting Utility Series (Version: 2.1.00.14150)
SonicStage 4.3 (Version: 4.3)
SonicStage Mastering Studio (Version: 2.3.01)
SonicStage Mastering Studio Audio Filter (Version: 2.3.01)
SonicStage Mastering Studio Audio Filter Custom Preset (Version: 2.3)
SonicStage Mastering Studio Plugins (Version: 2.3)
Sony Utilities DLL (Version: 7.1.00.13300)
Sony Video Shared Library (Version: 3.1.03)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
VAIO Aqua Breeze Wallpaper (Version: 1.0.11.13240)
VAIO Azure Float Wallpaper (Version: 1.0.00.10100)
VAIO Control Center (Version: 2.0.00.11060)
VAIO Cozy Orange Wallpaper (Version: 1.0.11.13240)
VAIO Data Restore Tool (Version: 1.0.01.01250)
VAIO Edit Components 6.2 (Version: 6.2)
VAIO Entertainment Platform (Version: 2.0.02.13290)
VAIO Event Service (Version: 3.1.00.14130)
VAIO Floral Dusk Wallpaper (Version: 1.0.00.10100)
VAIO Hardware Diagnostics
VAIO Manual (Version: 2.1.00.10190)
VAIO Media (Version: 6.0.10)
VAIO Media 6.0 (Version: 6.0.10)
VAIO Media AC3 Decoder 1.0
VAIO Media Content Collection 6.0
VAIO Media Integrated Server 6.0
VAIO Media Redistribution 6.0 (Version: 6.0.10)
VAIO Media Registration Tool (Version: 6.0.10)
VAIO Media Registration Tool 6.0 (Version: 6.0.10)
VAIO Photo 2007 (Version: 1.0.01.01250)
VAIO Power Management (Version: 2.1.00.14090)
VAIO Teal Whisper Wallpaper (Version: 1.0.00.10100)
VAIO Tender Yellow Wallpaper (Version: 1.0.00.10100)
VAIO Update (Version: 5.1.1.04150)
VAIO Update 3 (Version: 3.0.01.02050)
VAIO Video & Photo  Suite (Version: 1.1.00.13301)
WinDVD for VAIO (Version: 8.0-B6.113)
Wireless Switch Setting Utility (Version: 3.6.00.14270)
YTD Video Downloader 4.8.1 (Version: 4.8.1)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 81%
Total physical RAM: 1013.56 MB
Available physical RAM: 183.54 MB
Total Pagefile: 2281.01 MB
Available Pagefile: 1074.09 MB
Total Virtual: 2047.88 MB
Available Virtual: 1981.66 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:86.64 GB) (Free:53.65 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\CARL-PC
 
Administrator            Carl                      Guest                    
 
 
**** End of log ****


#4 witchetty

witchetty
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:09:08 AM

Posted 27 May 2014 - 04:58 PM

And here, I hope, is the TDSSKiller Report:
 
 
22:05:08.0970 0x167c  TDSS rootkit removing tool 3.0.0.35 May 23 2014 07:32:03
22:05:20.0785 0x167c  ============================================================
22:05:20.0785 0x167c  Current date / time: 2014/05/27 22:05:20.0785
22:05:20.0785 0x167c  SystemInfo:
22:05:20.0785 0x167c  
22:05:20.0785 0x167c  OS Version: 6.0.6000 ServicePack: 0.0
22:05:20.0785 0x167c  Product type: Workstation
22:05:20.0785 0x167c  ComputerName: CARL-PC
22:05:20.0785 0x167c  UserName: Carl
22:05:20.0785 0x167c  Windows directory: C:\Windows
22:05:20.0785 0x167c  System windows directory: C:\Windows
22:05:20.0785 0x167c  Processor architecture: Intel x86
22:05:20.0785 0x167c  Number of processors: 2
22:05:20.0785 0x167c  Page size: 0x1000
22:05:20.0785 0x167c  Boot type: Normal boot
22:05:20.0785 0x167c  ============================================================
22:05:24.0479 0x167c  KLMD registered as C:\Windows\system32\drivers\64367528.sys
22:05:25.0764 0x167c  System UUID: {8F64309F-2314-9A03-C835-248641CD9F3A}
22:05:27.0606 0x167c  Drive \Device\Harddisk0\DR0 - Size: 0x174A446000 (93.16 Gb), SectorSize: 0x200, Cylinders: 0x2F81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:05:27.0610 0x167c  ============================================================
22:05:27.0610 0x167c  \Device\Harddisk0\DR0:
22:05:27.0611 0x167c  MBR partitions:
22:05:27.0611 0x167c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xD0A000, BlocksNum 0xAD47800
22:05:27.0611 0x167c  ============================================================
22:05:27.0655 0x167c  C: <-> \Device\Harddisk0\DR0\Partition1
22:05:27.0655 0x167c  ============================================================
22:05:27.0655 0x167c  Initialize success
22:05:27.0655 0x167c  ============================================================
22:05:38.0283 0x0e24  ============================================================
22:05:38.0283 0x0e24  Scan started
22:05:38.0283 0x0e24  Mode: Manual; 
22:05:38.0283 0x0e24  ============================================================
22:05:38.0284 0x0e24  KSN ping started
22:05:41.0044 0x0e24  KSN ping finished: true
22:05:41.0375 0x0e24  ================ Scan system memory ========================
22:05:41.0375 0x0e24  System memory - ok
22:05:41.0375 0x0e24  ================ Scan services =============================
22:05:41.0611 0x0e24  [ 84FC6DF81212D16BE5C4F441682FECCC, 73F3BE94A98225A9F276C1A6C8BCA05571FF3BB012E7FF877F6C4AB11F62CBA0 ] ACPI            C:\Windows\system32\drivers\acpi.sys
22:05:41.0628 0x0e24  ACPI - ok
22:05:41.0724 0x0e24  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
22:05:41.0749 0x0e24  adp94xx - ok
22:05:41.0803 0x0e24  [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
22:05:41.0828 0x0e24  adpahci - ok
22:05:41.0860 0x0e24  [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
22:05:41.0869 0x0e24  adpu160m - ok
22:05:41.0890 0x0e24  [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
22:05:41.0901 0x0e24  adpu320 - ok
22:05:41.0956 0x0e24  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:05:41.0958 0x0e24  AeLookupSvc - ok
22:05:42.0022 0x0e24  [ 5D24CAF8EFD924A875698FF28384DB8B, FA3DE58D8F4180E9B9FE1DED4B1BE09245F401899E614DBD6A3867CEF6E34977 ] AFD             C:\Windows\system32\drivers\afd.sys
22:05:42.0046 0x0e24  AFD - ok
22:05:42.0098 0x0e24  [ EF23439CDD587F64C2C1B8825CEAD7D8, 762665CFC202B3E16CA2338887896FDF996331A363DC709F1EC088BF927133A3 ] agp440          C:\Windows\system32\drivers\agp440.sys
22:05:42.0108 0x0e24  agp440 - ok
22:05:42.0155 0x0e24  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
22:05:42.0164 0x0e24  aic78xx - ok
22:05:42.0183 0x0e24  [ E69FB0E3112C40FDC0EF7D21A52DC951, 6FB299330EDEF77DC91FC279D90D8ADEA138EC98342116121F5879B50070963D ] ALG             C:\Windows\System32\alg.exe
22:05:42.0196 0x0e24  ALG - ok
22:05:42.0213 0x0e24  [ 90395B64600EBB4552E26E178C94B2E4, 73095893964DC7915983B58A567184FC51949C99341E7E0D04D70CC4C4F95E37 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:05:42.0219 0x0e24  aliide - ok
22:05:42.0230 0x0e24  [ 2B13E304C9DFDFA5EB582F6A149FA2C7, 196CCE13E0376526B79D9C43D4071990576C4DD210A48E9E922B438AA11C95E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
22:05:42.0239 0x0e24  amdagp - ok
22:05:42.0254 0x0e24  [ 0577DF1D323FE75A739C787893D300EA, 079EF3CA18FB847DB7E62929071BFF007FAF390E1DBF4C59F28DAAC6B9C2DE51 ] amdide          C:\Windows\system32\drivers\amdide.sys
22:05:42.0261 0x0e24  amdide - ok
22:05:42.0301 0x0e24  [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
22:05:42.0310 0x0e24  AmdK7 - ok
22:05:42.0337 0x0e24  [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
22:05:42.0346 0x0e24  AmdK8 - ok
22:05:42.0417 0x0e24  [ 7C2F57BCE81FA74933F0E1C84A97C9DB, FC84A1B09379B74CEA8AFED4F1AF5F8609DE46AB89B42E4EE70D286FB256F4D7 ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
22:05:42.0430 0x0e24  ApfiltrService - ok
22:05:42.0490 0x0e24  [ CFA455816879F06F1C4E5BBF9E8AEF7D, E10781DEE5A9CDD2D79E1696577B24095258DC261E0D303177B5D7E719F58B20 ] Appinfo         C:\Windows\System32\appinfo.dll
22:05:42.0534 0x0e24  Appinfo - ok
22:05:42.0578 0x0e24  [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc             C:\Windows\system32\drivers\arc.sys
22:05:42.0588 0x0e24  arc - ok
22:05:42.0642 0x0e24  [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
22:05:42.0651 0x0e24  arcsas - ok
22:05:42.0699 0x0e24  [ E86CF7CE67D5DE898F27EF884DC357D8, 24C86D0A6340B618E97C91066A8E639EA672112A571C4B36B0BC1EB717DDA782 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:05:42.0705 0x0e24  AsyncMac - ok
22:05:42.0739 0x0e24  [ B35CFCEF838382AB6490B321C87EDF17, A13985B87B5918D123072C7128E12DC28B0FCFD68383AFA6E1DA72A25BD781E0 ] atapi           C:\Windows\system32\drivers\atapi.sys
22:05:42.0740 0x0e24  atapi - ok
22:05:42.0800 0x0e24  [ E760FC1BD68F7F6F1B17EB4E8D9480B0, 9E76A76B3D75AA6AFA8552412C48BCB88BC8708F75EDAFEFBD97EFEE4387A4AF ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:05:42.0814 0x0e24  AudioEndpointBuilder - ok
22:05:42.0834 0x0e24  [ E760FC1BD68F7F6F1B17EB4E8D9480B0, 9E76A76B3D75AA6AFA8552412C48BCB88BC8708F75EDAFEFBD97EFEE4387A4AF ] Audiosrv        C:\Windows\System32\Audiosrv.dll
22:05:42.0842 0x0e24  Audiosrv - ok
22:05:43.0090 0x0e24  [ 3C7B93F947355E374A49564D0D017B7B, 2679990CFF158BE512BC0C8D4AB8CCFCBC750290F6C97E07CA8671F57679926B ] Avg7Alrt        C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
22:05:43.0106 0x0e24  Avg7Alrt - ok
22:05:43.0185 0x0e24  [ 30A14F65DB477DC00A64A5A24E96919C, 04C9B8B1D7E84B7D795AC8478D003DFFA347621EA588CD2E77B650844D2936AC ] Avg7UpdSvc      C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
22:05:43.0188 0x0e24  Avg7UpdSvc - ok
22:05:43.0227 0x0e24  [ C778A13986C3AB0C7A605143B91CF695, 2C5A924C53399DADD478DC7551AE3262E5AC5CE88FE03A5E1B905D0ED7AC29D4 ] AvgClean        C:\Windows\System32\Drivers\avgclean.sys
22:05:43.0231 0x0e24  AvgClean - ok
22:05:43.0301 0x0e24  [ A61C6AA3A694165EE57D3A4833060E4F, B7FE7CF5D49BBF7A097BEFFB12D4BB28448478A9C49D219DA55ECA80FAB2A3BA ] AvgCoreSvc      C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe
22:05:43.0311 0x0e24  AvgCoreSvc - ok
22:05:43.0414 0x0e24  [ 4001196405D7C2680A1B1E32E49C1D22, 66005664BBBD9F3E7571DEABB5C364EEF2107F9AD9DE1CD7178351E557EA4DDC ] AVGEMS          C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
22:05:43.0432 0x0e24  AVGEMS - ok
22:05:43.0478 0x0e24  [ EE024AB6131837B8EB4BEED53BA414B2, D5F69AA8A667F61EA696F628D429CE7F32D2FBC333BCB822BBF558D79DFE22A7 ] AvgMfx86        C:\Windows\System32\Drivers\avgmfx86.sys
22:05:43.0485 0x0e24  AvgMfx86 - ok
22:05:43.0538 0x0e24  [ 04104F0D609FF32BE332AC1DE8BFF7ED, 4109E2CB6036202636C171ECDAE79B2F46DD87E52C163EE0BB8CF9679247A9A5 ] AvgWFP          C:\Windows\System32\Drivers\avgwfp.sys
22:05:43.0622 0x0e24  AvgWFP - ok
22:05:43.0714 0x0e24  [ E465525E1CBB92780AAC5AD7D3F1CBBF, 503840AA0A15E607C95D15457F99047264B1CE7B5CCEE95E37DDF311A3D7660C ] BackupStack     C:\Program Files\MyPC Backup\BackupStack.exe
22:05:43.0722 0x0e24  BackupStack - ok
22:05:43.0794 0x0e24  [ AC3DD1708B22761EBD7CBE14DCC3B5D7, 395769C8DAA505E261033B9EA0319A7ED56A6289BAE11FDDA49002E25D9D8698 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:05:43.0799 0x0e24  Beep - ok
22:05:43.0876 0x0e24  [ 98EBDFFB824A7C265337D68DD480E45C, 81E495C7104FE9C1F996B2672ED22BE9E294D5C54B67FFCC6D2DD979DC94363C ] BFE             C:\Windows\System32\bfe.dll
22:05:43.0890 0x0e24  BFE - ok
22:05:43.0995 0x0e24  [ DA551697E34D2B9943C8B1C8EAFFE89A, 5C0D13F7AE1D58E625932B00AD53F792B58900C93A1D5F97BD1D9605FCEAD51A ] BITS            C:\Windows\System32\qmgr.dll
22:05:44.0028 0x0e24  BITS - ok
22:05:44.0039 0x0e24  blbdrive - ok
22:05:44.0067 0x0e24  [ 913CD06FBE9105CE6077E90FD4418561, EC0ECE5A0DBCD8DC1B202517902D90FF0FC0F3875557828BFA079DDE92EF6F5D ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:05:44.0082 0x0e24  bowser - ok
22:05:44.0133 0x0e24  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
22:05:44.0139 0x0e24  BrFiltLo - ok
22:05:44.0170 0x0e24  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
22:05:44.0175 0x0e24  BrFiltUp - ok
22:05:44.0205 0x0e24  [ BEB6470532B7461D7BB426E3FACB424F, 16439FD066EBBFF3F469FD5EC3A2FCAEC47DE9737A7DE93DA344EC4E2180D2F0 ] Browser         C:\Windows\System32\browser.dll
22:05:44.0216 0x0e24  Browser - ok
22:05:44.0265 0x0e24  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
22:05:44.0274 0x0e24  Brserid - ok
22:05:44.0299 0x0e24  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
22:05:44.0307 0x0e24  BrSerWdm - ok
22:05:44.0315 0x0e24  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
22:05:44.0324 0x0e24  BrUsbMdm - ok
22:05:44.0356 0x0e24  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
22:05:44.0361 0x0e24  BrUsbSer - ok
22:05:44.0373 0x0e24  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
22:05:44.0381 0x0e24  BTHMODEM - ok
22:05:44.0437 0x0e24  [ 4B555106290BD117334E9A08761C035A, 8A3808FBC197040BF0C65084514E8441E35FFFF8E31980F9CE1F41ED65E08437 ] ca82e1a5        C:\Windows\system32\rundll32.exe
22:05:44.0442 0x0e24  ca82e1a5 - ok
22:05:44.0464 0x0e24  [ 6C3A437FC873C6F6A4FC620B6888CB86, B316A1ABCDF74597C555B86A05DDED3B3F49F9D3B26D06AB312426C0A08B1AF6 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:05:44.0474 0x0e24  cdfs - ok
22:05:44.0509 0x0e24  [ 8D1866E61AF096AE8B582454F5E4D303, 4506E77C727E1B4CAD24CAFB4654CFE82872621D25BB30B730F746AA80A14B84 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:05:44.0518 0x0e24  cdrom - ok
22:05:44.0575 0x0e24  [ 0600E04315FE543802A379D5D23C8BE0, 48DD5028D9F415B9E5A949FA32051243C8F5B475EFA909FD625D940DA227E252 ] CertPropSvc     C:\Windows\System32\certprop.dll
22:05:44.0578 0x0e24  CertPropSvc - ok
22:05:44.0610 0x0e24  [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass        C:\Windows\system32\drivers\circlass.sys
22:05:44.0625 0x0e24  circlass - ok
22:05:44.0662 0x0e24  [ 1B84FD0937D3B99AF9BA38DDFF3DAF54, 2ECF54240673F4518ECD7C9FE5CAA171CE64B5F293FA8C6C66A8AA65A35A9080 ] CLFS            C:\Windows\system32\CLFS.sys
22:05:44.0679 0x0e24  CLFS - ok
22:05:44.0742 0x0e24  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:05:44.0754 0x0e24  clr_optimization_v2.0.50727_32 - ok
22:05:44.0822 0x0e24  CLTNetCnService - ok
22:05:44.0876 0x0e24  [ ED97AD3DF1B9005989EAF149BF06C821, 914F8779883A5B66AE984C0672BABA873857EF2FACC8D6F88605FACB2BBB2468 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
22:05:44.0883 0x0e24  CmBatt - ok
22:05:44.0907 0x0e24  [ 45201046C776FFDAF3FC8A0029C581C8, 68A68CF2B76598BC8610EB5B2D3FD5BDC9D51CFC6F51FB7A0B0C92A2BE910FC6 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:05:44.0913 0x0e24  cmdide - ok
22:05:44.0946 0x0e24  [ 722936AFB75A7F509662B69B5632F48A, C386EA5E933C5D3F3FE162AE91F7D81C7C0765A1F790B1FF7B396A9DBDB4AD33 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
22:05:44.0954 0x0e24  Compbatt - ok
22:05:44.0961 0x0e24  COMSysApp - ok
22:05:44.0986 0x0e24  [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
22:05:44.0997 0x0e24  crcdisk - ok
22:05:45.0012 0x0e24  [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
22:05:45.0023 0x0e24  Crusoe - ok
22:05:45.0054 0x0e24  [ 1C26FB097170A2A91066D1E3A24366E3, 277B8EBBAFA038C355B52CF32F390E057BCA5992EC0C5778F60C53CB0AA10777 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:05:45.0060 0x0e24  CryptSvc - ok
22:05:45.0159 0x0e24  [ 7B981222A257D076885BFFB66F19B7CE, 83B044B93FB30D54B9AFC991D608BF5FDBC2F31317E0AEA99E78B2B49655BCBB ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:05:45.0183 0x0e24  DcomLaunch - ok
22:05:45.0210 0x0e24  [ A7179DE59AE269AB70345527894CCD7C, 6AA67F34C7349B8B7EFA6E6C143DDA08F80D8D027E2E1AC41490E351C22BFA5B ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:05:45.0219 0x0e24  DfsC - ok
22:05:45.0455 0x0e24  [ E0D584AA76C7D845BA9F3A788260528F, 5C3C3C95DF1BA8A32EC848B695793D44E7DF8BEA0BC3B91D54751CC20317EC22 ] DFSR            C:\Windows\system32\DFSR.exe
22:05:45.0592 0x0e24  DFSR - ok
22:05:45.0719 0x0e24  [ DC45739BC22D528D2B3E50D3F6761750, A19AF7E001CF2BE0A2164435F6FDE5D9ABBBB697F1D0FE90DD7DF72AE564996F ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
22:05:45.0729 0x0e24  Dhcp - ok
22:05:45.0777 0x0e24  [ 841AF4C4D41D3E3B2F244E976B0F7963, 304920DB44B88881FE4FDC892CC8D529E16FE5E6AEA548BDFD4507DF0A1BF8C1 ] disk            C:\Windows\system32\drivers\disk.sys
22:05:45.0786 0x0e24  disk - ok
22:05:45.0837 0x0e24  [ F206E28ED74C491FD5D7C0A1119CE37F, DB6AA9C9278F5F62717504F3B21BC2250EC5EB324EBEEAF01D42268D5657B83D ] DMICall         C:\Windows\system32\DRIVERS\DMICall.sys
22:05:45.0847 0x0e24  DMICall - ok
22:05:46.0141 0x0e24  [ EECBA1DD142BF8693C476BE8F32FE253, 93241BD6F4E2D6F27BD5ED2F38C26AED7A666161F64C28A44E6608C7D1DF0D40 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:05:46.0146 0x0e24  Dnscache - ok
22:05:46.0184 0x0e24  [ 1F795D214820E496BF1124434A6DB546, FC10DEF5A4A81540B347C54D7BE5C7D11F8E407AD28FD91E7CBAC15864FCC389 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:05:46.0199 0x0e24  dot3svc - ok
22:05:46.0233 0x0e24  [ 032C90AD677BF7B7A8013D6087C7A921, 99CC6F49FCE59550E48CF86BEE91F15E9D108AA5FBCF903AC997E404ABF6AF46 ] DPS             C:\Windows\system32\dps.dll
22:05:46.0240 0x0e24  DPS - ok
22:05:46.0294 0x0e24  [ EE472CD2C01F6F8E8AA1FA06FFEF61B6, 03C6E0033C05120431FA2A02E206C458C4E1F18E511B1AA7F1867226617AB660 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:05:46.0297 0x0e24  drmkaud - ok
22:05:46.0355 0x0e24  [ 334988883DE69ADB27E2CF9F9715BBDB, ECDF29DECF577784BEE37A175BDEE8793F314E3BF35109A7D44017DC9B0E868B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:05:46.0386 0x0e24  DXGKrnl - ok
22:05:46.0433 0x0e24  [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
22:05:46.0444 0x0e24  E1G60 - ok
22:05:46.0550 0x0e24  [ 90A0A875642E18618010645311B4E89E, 499C6A29E3FEF3A1AC08DDDD00623AB93ACBB1511A0BFF004C4D4795B402412C ] EapHost         C:\Windows\System32\eapsvc.dll
22:05:46.0553 0x0e24  EapHost - ok
22:05:46.0577 0x0e24  [ 0EFC7531B936EE57FDB4E837664C509F, 47F6D5380DA44514C1C13BFAF8227FBF356B14C46C45EC66C9E1431C4CFC85E3 ] Ecache          C:\Windows\system32\drivers\ecache.sys
22:05:46.0590 0x0e24  Ecache - ok
22:05:46.0699 0x0e24  [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
22:05:46.0716 0x0e24  elxstor - ok
22:05:46.0787 0x0e24  [ 3226FDA08988526E819E364E8CCE4CEE, EFFEC5C44A7AC0B82C77E354C818BD700B4DBE69B345A81F2652BFA87D6FBE4F ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
22:05:46.0810 0x0e24  EMDMgmt - ok
22:05:46.0896 0x0e24  [ 7B4971C3D43525175A4EA0D143E0412E, D61D19F1A7CDDF1130F48255EE77B95183125E01A05DDE0F96FDE8DF697277A0 ] EventSystem     C:\Windows\system32\es.dll
22:05:46.0912 0x0e24  EventSystem - ok
22:05:46.0947 0x0e24  [ 84A317CB0B3954D3768CDCD018DBF670, 96AEFEE67D467A83BC10B72A097C8B296F7FEDFA8F4CB69C6D385713952C2AF2 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:05:46.0958 0x0e24  fastfat - ok
22:05:47.0082 0x0e24  [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
22:05:47.0089 0x0e24  fdc - ok
22:05:47.0111 0x0e24  [ E43BCE1A77D6FD4ED5F8E0482B9E7DF1, 84555C567D4E728A7250D530518BF228E596E1CDE248D587C61634CC13EAC0BC ] fdPHost         C:\Windows\system32\fdPHost.dll
22:05:47.0113 0x0e24  fdPHost - ok
22:05:47.0123 0x0e24  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:05:47.0126 0x0e24  FDResPub - ok
22:05:47.0177 0x0e24  [ 65773D6115C037FFD7EF8280AE85EB9D, 71C7DDB71C9AA859B7DDCE01430E4913E58C928B22A46662A913209F5EC68120 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:05:47.0192 0x0e24  FileInfo - ok
22:05:47.0216 0x0e24  [ C226DD0DE060745F3E042F58DCF78402, 9C67A5AC809B462EF97519DD2B0AC966915F9AF9F4DE82BEEB71B7321AAB892C ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:05:47.0223 0x0e24  Filetrace - ok
22:05:47.0240 0x0e24  [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
22:05:47.0247 0x0e24  flpydisk - ok
22:05:47.0274 0x0e24  [ A6A8DA7AE4D53394AB22AC3AB6D3F5D3, C1007CB38F97AEE4B7A5A4E83A224F53EE59AFDA61A091960F6E1EB70E33E5C8 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:05:47.0288 0x0e24  FltMgr - ok
22:05:47.0355 0x0e24  [ C9BE08664611DDAF98E2331E9288B00B, C645DDAB5FD588486553DF2DD5750AF5A967FEE988F4EB29E05362E3362DF4A2 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:05:47.0365 0x0e24  FontCache3.0.0.0 - ok
22:05:47.0397 0x0e24  [ 66A078591208BAA210C7634B11EB392C, 5C101E10CF8E576352CAC1D059D5938251185D1CCB824645AC1471D9C90EC183 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:05:47.0403 0x0e24  Fs_Rec - ok
22:05:47.0432 0x0e24  [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
22:05:47.0446 0x0e24  gagp30kx - ok
22:05:47.0514 0x0e24  [ BCF6589C42D8F6A20F33EF133FFE0524, E3F82E90BCB58489E2D77F16163B888A0D9BC5D357AA929076027965E97DB5CA ] gpsvc           C:\Windows\System32\gpsvc.dll
22:05:47.0538 0x0e24  gpsvc - ok
22:05:47.0645 0x0e24  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
22:05:47.0650 0x0e24  gupdate - ok
22:05:47.0872 0x0e24  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
22:05:47.0875 0x0e24  gupdatem - ok
22:05:47.0966 0x0e24  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
22:05:47.0984 0x0e24  gusvc - ok
22:05:48.0064 0x0e24  [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:05:48.0079 0x0e24  HdAudAddService - ok
22:05:48.0146 0x0e24  [ 0DB613A7E427B5663563677796FD5258, 82D50E0571196A8645B4F67274990BD7AA406F913534505D296AD3BAA0BBF1E8 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
22:05:48.0156 0x0e24  HDAudBus - ok
22:05:48.0280 0x0e24  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
22:05:48.0286 0x0e24  HidBth - ok
22:05:48.0333 0x0e24  [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr           C:\Windows\system32\drivers\hidir.sys
22:05:48.0340 0x0e24  HidIr - ok
22:05:48.0372 0x0e24  [ 8FA640195279ACE21BEA91396A0054FC, 20541E5FA29B3FBD8824F3DF93C7D63AFEE56948F82FFDE20E9E87F5C0A3A789 ] hidserv         C:\Windows\system32\hidserv.dll
22:05:48.0375 0x0e24  hidserv - ok
22:05:48.0389 0x0e24  [ 3C64042B95E583B366BA4E5D2450235E, B431F9692D66188AFEE372F312581178B14F49D763F8D1100D264623A239002A ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:05:48.0396 0x0e24  HidUsb - ok
22:05:48.0422 0x0e24  [ D40AA05E29BF6ED29B139F044B461E9B, 052C07B7E0B082EA8E9E35A69855436A9E1BAA1B7C1A4AB5830C246158D863C5 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:05:48.0427 0x0e24  hkmsvc - ok
22:05:48.0452 0x0e24  [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
22:05:48.0459 0x0e24  HpCISSs - ok
22:05:48.0553 0x0e24  [ 53229DCF431D76434816CD29251168A0, F27EF06B23F14C1D041275E8C1F9238151D81CFDBB6D58B2657BA3303CDEB7E1 ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys
22:05:48.0614 0x0e24  HSF_DPV - ok
22:05:48.0649 0x0e24  [ 31F949D452201F2F0AF0C88D7DB512CD, 26268129B7C6DF91F9C0FF115614308740D2921131662D8691F14F0573CBAD91 ] HSXHWAZL        C:\Windows\system32\DRIVERS\HSXHWAZL.sys
22:05:48.0662 0x0e24  HSXHWAZL - ok
22:05:48.0717 0x0e24  [ 3C3CBA3CE1A66439A960D4531A167C39, 1B086CD69FEC5A8BFAECBC3BAA368EF3FECD0B3A286B9F1519BFE18E14E5A273 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:05:48.0741 0x0e24  HTTP - ok
22:05:49.0093 0x0e24  [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp           C:\Windows\system32\drivers\i2omp.sys
22:05:49.0100 0x0e24  i2omp - ok
22:05:49.0165 0x0e24  [ 1C9EE072BAA3ABB460B91D7EE9152660, 516436E905AA00C2826CC910EFA8C13005C11B66D1E415584189616BF91C4AA5 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
22:05:49.0172 0x0e24  i8042prt - ok
22:05:49.0232 0x0e24  [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
22:05:49.0247 0x0e24  iaStorV - ok
22:05:49.0342 0x0e24  [ 4B2CD05E33D86EBD486DAA0B403743F9, 362924B65509F1CF97520845D12AC50903373EA2A1866489CB809FF215F9A0CC ] ICScsiSV        C:\Program Files\Sony\Image Converter 3\ICScsiSV.exe
22:05:49.0353 0x0e24  ICScsiSV - ok
22:05:49.0373 0x0e24  [ F3DA2B062A361C2BC9DC6E42F6D283F0, 01FEFD7B1B67CCC66D85D19BCF97462E79EA416B1710D754A8992419719578C4 ] IcVzMonLauncher C:\Program Files\Sony\Image Converter 3\IcVzMonLauncher.exe
22:05:49.0383 0x0e24  IcVzMonLauncher - ok
22:05:49.0464 0x0e24  [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
22:05:49.0476 0x0e24  IDriverT - ok
22:05:49.0578 0x0e24  [ 7B630ACAED64FEF0C3E1CF255CB56686, 9DCC6953BC6EF77C3916F8AA226CEC0662513A23AB60E9F714D53746E82FB372 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:05:49.0652 0x0e24  idsvc - ok
22:05:49.0768 0x0e24  [ A4FBA5B34E69E46315A7C5223A470A17, 225ECC88DA6B76D69DDB4277A53FED7F41A13874A81112105A8A37B804FF06C0 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
22:05:49.0850 0x0e24  igfx - ok
22:05:49.0917 0x0e24  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
22:05:49.0925 0x0e24  iirsp - ok
22:05:49.0984 0x0e24  [ 35662FE4D8622F667AA5A5568F7F1B40, 1BE7B8D5E5E4E4D9E8ECC697AACF3C6EDB390051A2C18B7DCF63B337343B76D6 ] IKEEXT          C:\Windows\System32\ikeext.dll
22:05:50.0003 0x0e24  IKEEXT - ok
22:05:50.0021 0x0e24  [ FE9BF2EF80A435BA0B5F8FD9C926D5A8, 3D5FC4CBA37497F4D9198EED5EFB5ACC952187B3686853AB50BDFD25CCAFDF59 ] Image Converter video recording monitor for VAIO Entertainment C:\Program Files\Sony\Image Converter 3\IcVzMon.exe
22:05:50.0029 0x0e24  Image Converter video recording monitor for VAIO Entertainment - ok
22:05:50.0191 0x0e24  [ C61B3B87F3856CEF0C9F204028C6860D, 74E9FE064A89ECB63AD57115E473F36E15DA1961408BF9FF4777F9D7EA104A02 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
22:05:50.0285 0x0e24  IntcAzAudAddService - ok
22:05:50.0327 0x0e24  [ 988981C840084F480BA9E3319CEBDE1B, 7D029E0E3BAACF1BCAFDF31AA31F365132C20EE5FAC0102EC967440FD0D0318F ] intelide        C:\Windows\system32\drivers\intelide.sys
22:05:50.0333 0x0e24  intelide - ok
22:05:50.0393 0x0e24  [ CE44CC04262F28216DD4341E9E36A16F, 2B316C4124DCFEAD7838B3D8FB8DBEC3F3B1EA8EA612AABB05B1275D0B230CCD ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
22:05:50.0403 0x0e24  intelppm - ok
22:05:50.0445 0x0e24  [ 88CF5281ED9880D74DC9011CF8B5262D, 8DC118BE00235A6FD490D2FD9E8FDB90E7FA25DC8A91C78839AA8A1DC42F8C37 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:05:50.0451 0x0e24  IPBusEnum - ok
22:05:50.0466 0x0e24  [ 880C6F86CC3F551B8FEA2C11141268C0, 0BB04C193BF8FCC6F5B78C6A027CD09F9BE25523974C8000936394C73059243D ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:05:50.0475 0x0e24  IpFilterDriver - ok
22:05:50.0517 0x0e24  [ ECC9AD72CFC4AB41CF6A9BCC11F9FEF6, 96AD0EBDB112082FE4310B35B4DE448182C332E7F11ADD019E926768D10B7E66 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:05:50.0525 0x0e24  iphlpsvc - ok
22:05:50.0534 0x0e24  IpInIp - ok
22:05:50.0561 0x0e24  [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
22:05:50.0574 0x0e24  IPMIDRV - ok
22:05:50.0608 0x0e24  [ 10077C35845101548037DF04FD1A420B, D45110C3D38739787E1A7E6DC70E1543BD9BA069507F684BD0791FADA18DE7D1 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
22:05:50.0618 0x0e24  IPNAT - ok
22:05:50.0631 0x0e24  [ A82F328F4792304184642D6D397BB1E3, 02ED64261ACEFAC38D1F2BE6160F92379D23EBB90CF97DB58237EA8F0510F571 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:05:50.0648 0x0e24  IRENUM - ok
22:05:50.0692 0x0e24  [ 350FCA7E73CF65BCEF43FAE1E4E91293, 68403FE3F4DC40919CD26A2CC42BE4386AE6874F47DD382348FFD79080721A13 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:05:50.0701 0x0e24  isapnp - ok
22:05:50.0727 0x0e24  [ 4DCA456D4D5723F8FA9C6760D240B0DF, 812BC60CAEB70DA93A95F360755151863AAF264C0B519BD5342D08214D012F0C ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
22:05:50.0740 0x0e24  iScsiPrt - ok
22:05:50.0757 0x0e24  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
22:05:50.0764 0x0e24  iteatapi - ok
22:05:50.0786 0x0e24  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
22:05:50.0794 0x0e24  iteraid - ok
22:05:50.0954 0x0e24  [ B076B2AB806B3F696DAB21375389101C, DBD7F6C303CD61EAB3935A702D9499D37801ED0088ED263E5EDA0C2D6DFE792C ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:05:50.0962 0x0e24  kbdclass - ok
22:05:51.0018 0x0e24  [ D2600CB17B7408B4A83F231DC9A11AC3, C3025C2ED3541F58E8C1D792B0683949286BE583AB17B0C48F7362B4FA512BC0 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
22:05:51.0025 0x0e24  kbdhid - ok
22:05:51.0046 0x0e24  [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] KeyIso          C:\Windows\system32\lsass.exe
22:05:51.0048 0x0e24  KeyIso - ok
22:05:51.0094 0x0e24  [ 0A829977B078DEA11641FC2AF87CEADE, C22CFDEAB8A75073BA965313609F0E2393692ABD4D48587382101DA785A7622D ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:05:51.0119 0x0e24  KSecDD - ok
22:05:51.0160 0x0e24  [ 45C537FE5DDE9A0146AEFF76E615737D, F4B0DCB5FD8731E34EB4BF18B509A9D7837F9D96B3F22D056A941480D341B0EC ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:05:51.0173 0x0e24  KtmRm - ok
22:05:51.0216 0x0e24  [ 53D1482FC1AA36AC015A85E6CF2146BD, AD764237410A7D1B7016D421C160644CCFFBC5F42FD53B179D30BF7E50346B4D ] LanmanServer    C:\Windows\system32\srvsvc.dll
22:05:51.0223 0x0e24  LanmanServer - ok
22:05:51.0287 0x0e24  [ 435F0F6DC87A4B5DA78F1FA309884189, 4ABCE3AA0ED9D36E3439AABFB086B05A09A567E2BEA3714F984D1400DE743516 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:05:51.0296 0x0e24  LanmanWorkstation - ok
22:05:51.0315 0x0e24  [ FD015B4F95DAA2B712F0E372A116FBAD, A73D472276FE0EF0AC273FB04EEA168C3FF5D62AEB3FB5A22B028BFDEF6F3CDF ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:05:51.0323 0x0e24  lltdio - ok
22:05:51.0371 0x0e24  [ 7450DBCF754391DD6363FFFD5EF0E789, CD571803825C23D32E43D84376B68FC2B71FDA3A89931CBB6AFE84D0FAD8C2F1 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:05:51.0390 0x0e24  lltdsvc - ok
22:05:51.0413 0x0e24  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:05:51.0417 0x0e24  lmhosts - ok
22:05:51.0457 0x0e24  [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
22:05:51.0466 0x0e24  LSI_FC - ok
22:05:51.0476 0x0e24  [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
22:05:51.0486 0x0e24  LSI_SAS - ok
22:05:51.0531 0x0e24  [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
22:05:51.0540 0x0e24  LSI_SCSI - ok
22:05:51.0567 0x0e24  [ 42885BB44B6E065B8575A8DD6C430C52, BC7013C7902C64D4B443D517F358FF264795F638EF30B664E51C2D55C80D39A3 ] luafv           C:\Windows\system32\drivers\luafv.sys
22:05:51.0577 0x0e24  luafv - ok
22:05:51.0602 0x0e24  [ 0C6EA0109CFEDF441F06D031E9A8D1A9, 61C18F1DD1DC5719252564A60F9E0CBD0AD275C065C5B95F330921C582EA532F ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
22:05:51.0610 0x0e24  MBAMProtector - ok
22:05:51.0773 0x0e24  [ 0E08BDD7326E657D59DB40BAD23D8169, 428C6CCCC0BB540DFD35847776140D60C186B9D2D14F0ACCD1A4D42A8877BD98 ] MBAMScheduler   C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
22:05:51.0897 0x0e24  MBAMScheduler - ok
22:05:51.0972 0x0e24  [ A8E7F3DB083EB0839DFC1C763CDD2594, BDF416E360A52130B23B029C89E6406A97FB0516C52C7E63B94CAECEEB431A2E ] MBAMService     C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
22:05:52.0030 0x0e24  MBAMService - ok
22:05:52.0079 0x0e24  [ 661B911FA04E73FB073FF9B1C9BD2E05, C5FD4F528A59141418DA279291E88E51D406D01FAD36435569D97E95FBA66164 ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
22:05:52.0090 0x0e24  MBAMSwissArmy - ok
22:05:52.0116 0x0e24  [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk         C:\Windows\system32\DRIVERS\mdmxsdk.sys
22:05:52.0123 0x0e24  mdmxsdk - ok
22:05:52.0157 0x0e24  [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas         C:\Windows\system32\drivers\megasas.sys
22:05:52.0164 0x0e24  megasas - ok
22:05:52.0190 0x0e24  [ 9DFA3A459AF0954AA85B4F7622AD87BB, C7BED7AAAA0DA89C0EE7219FD316DA69C027C27008C02F5028F2D3F33A06CCBF ] MMCSS           C:\Windows\system32\mmcss.dll
22:05:52.0194 0x0e24  MMCSS - ok
22:05:52.0211 0x0e24  [ 21755967298A46FB6ADFEC9DB6012211, 3F83BA0D0ED6D40CB4A62A41722F6FDB8C34DF7B0C115FFE7D0EA12E1D4B4EFD ] Modem           C:\Windows\system32\drivers\modem.sys
22:05:52.0218 0x0e24  Modem - ok
22:05:52.0283 0x0e24  [ 7446E104A5FE5987CA9E4983FBAC4F97, 61EDE5042718C12BFC8337D71C924D86FE7357E25182E1FDE25C73719FC7F3BD ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:05:52.0297 0x0e24  monitor - ok
22:05:52.0328 0x0e24  [ 5FBA13C1A1841B0885D316ED3589489D, 16CAB611D0C3C38138164A7452E826091A57E51149A4DBA8B1E7D8979A37CD9A ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:05:52.0336 0x0e24  mouclass - ok
22:05:52.0351 0x0e24  [ B569B5C5D3BDE545DF3A6AF512CCCDBA, 4B6EC4E78EDC847EFA69A358718C8466356131D6CF8472BE65E43DD871173D3C ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:05:52.0357 0x0e24  mouhid - ok
22:05:52.0380 0x0e24  [ 01F1E5A3E4877C931CBB31613FEC16A6, 7312C41A8188BAEBF6E3216B74F7698EFD1E80F77E7BB051B34AB14FB84E4130 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
22:05:52.0389 0x0e24  MountMgr - ok
22:05:52.0480 0x0e24  [ 8072A7BB35D92CC621AC2605EEF79BC4, 68F61BE84A5032CEC24F04C90DACA1AE78F3744016389BE2345256B26E44E09A ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
22:05:52.0490 0x0e24  MpFilter - ok
22:05:52.0540 0x0e24  [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:05:52.0551 0x0e24  mpio - ok
22:05:52.0655 0x0e24  [ 65C34426C83EFA32D48380A97717997B, CD7EB6BFBB0BE382BA21055460D9A72323F09AF3194A22D8EDB28D5DB3BAE8E7 ] MpKsl5758724d   c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{68E747D6-3097-4A56-AFA3-80103ED61CAB}\MpKsl5758724d.sys
22:05:52.0657 0x0e24  MpKsl5758724d - ok
22:05:52.0699 0x0e24  [ 6E7A7F0C1193EE5648443FE2D4B789EC, 56F37438B3252D5385C324A87D472D355572D339C5A27954106D51AF5AD3CE17 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:05:52.0707 0x0e24  mpsdrv - ok
22:05:52.0749 0x0e24  [ 563ED845885C6A7C09A7715D8BD0585C, 3A8B12D63AA7EBB51331DDF40077E156CCC225FE6FF0630BFAFD6D008988DC58 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:05:52.0766 0x0e24  MpsSvc - ok
22:05:52.0810 0x0e24  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
22:05:52.0818 0x0e24  Mraid35x - ok
22:05:52.0843 0x0e24  [ 1D8828B98EE309D65E006F0829E280E5, F53FB67D73788E0B38CFEA4FE9CA79B778C2AD383EA2D61A3AC935C722336E79 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:05:52.0853 0x0e24  MRxDAV - ok
22:05:52.0884 0x0e24  [ 8AF705CE1BB907932157FAB821170F27, 9C0B0E1F7E366372186BC3D40CA2F1513A9613576F024334ED5C65BCD230BC3A ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:05:52.0894 0x0e24  mrxsmb - ok
22:05:52.0915 0x0e24  [ 47E13AB23371BE3279EEF22BBFA2C1BE, EE878AD816AD9E0544E00D92CC017930C458179D0E2A396117611B7B81D4DB2C ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:05:52.0930 0x0e24  mrxsmb10 - ok
22:05:52.0940 0x0e24  [ 90B3FC7BD6B3D7EE7635DEBBA2187F66, 879255516B5BBE7C86081DAEB8EDCC8659299019E3C912FD1F7B02B2C78F22D2 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:05:52.0949 0x0e24  mrxsmb20 - ok
22:05:52.0975 0x0e24  [ 742AED7939E734C36B7E8D6228CE26B7, 6F727144BBD42C9C5555087CA51DE8D501B5CBEFB9967866CC578733E3C5E681 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:05:52.0982 0x0e24  msahci - ok
22:05:53.0035 0x0e24  [ 8E46A7BAC823DD82D4FB2A34C3DF4C1D, FEA8FB1B8752660EC6174542B24D234A61EBFF8318A5855B3E5C91DB86856CAB ] MSCSPTISRV      C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
22:05:53.0046 0x0e24  MSCSPTISRV - ok
22:05:53.0067 0x0e24  [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:05:53.0077 0x0e24  msdsm - ok
22:05:53.0104 0x0e24  [ BC64A92D821EFEA8BAB8E8CAF1B668BC, 3ADC299529AE377D4C131772C9A31E668C3F6BFADD45D01D11501F859536A4F3 ] MSDTC           C:\Windows\System32\msdtc.exe
22:05:53.0116 0x0e24  MSDTC - ok
22:05:53.0129 0x0e24  [ 729EAFEFD4E7417165F353A18DBE947D, 2C2D9A0F5075C372A63D8D3C9CAAA9D57691703506C9F508F05C01727555AC5A ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:05:53.0137 0x0e24  Msfs - ok
22:05:53.0168 0x0e24  [ 5F454A16A5146CD91A176D70F0CFA3EC, 076E61F2027CC1A24679AC506E8A04C2B10B88D9281CA00446E45991E3ECA869 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:05:53.0177 0x0e24  msisadrv - ok
22:05:53.0216 0x0e24  [ 8ACF956D9154E893E789881430C12632, 222C2F957E69A8FEC1CBBF47D43DE1A3A0EBE3E8888A12862BF1ECCBFD61021D ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:05:53.0229 0x0e24  MSiSCSI - ok
22:05:53.0238 0x0e24  msiserver - ok
22:05:53.0261 0x0e24  [ 892CEDEFA7E0FFE7BE8DA651B651D047, A5FDD8D6CC5B1FEE643BA44A4596F2F1C066240A503214B0B00F074DE76ED0D6 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:05:53.0267 0x0e24  MSKSSRV - ok
22:05:53.0318 0x0e24  [ 1EE3643D1AA747222427F63353611AD7, 18465E375485DF4E980121449077D5BA87C25C5FA8D86F40DA3B7BE153306766 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
22:05:53.0320 0x0e24  MsMpSvc - ok
22:05:53.0378 0x0e24  [ AE2CB1DA69B2676B4CEE2A501AF5871C, 576F1F5F52B5E89F0046173BEF8FC870B2DAAEFAD276D16429AC2050FE04FB8E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:05:53.0382 0x0e24  MSPCLOCK - ok
22:05:53.0398 0x0e24  [ F910DA84FA90C44A3ADDB7CD874463FD, 8CBA93EE6AB074262DC48415927B077CCE0F7790BFEFF6F3BFD653C37C36BE57 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:05:53.0403 0x0e24  MSPQM - ok
22:05:53.0425 0x0e24  [ 84571C0AE07647BA38D493F5F0015DF7, A810B28957759EBF0616567C8550FB1D5FDABA65FC6A87CF45957370E48FF0DC ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:05:53.0438 0x0e24  MsRPC - ok
22:05:53.0459 0x0e24  [ 4385C80EDE885E25492D408CAD91BD6F, E78EE11FD86D42C8E04AC778F60668B5EA65F6C9F3DFBED5CF7694F395DB3097 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
22:05:53.0467 0x0e24  mssmbios - ok
22:05:53.0535 0x0e24  MSSQL$VAIO_VEDB - ok
22:05:53.0580 0x0e24  [ C06EA83F6FC2959E897C117255B6B1D5, 012C6E5AA61BAAED47CB0E59E2F3E6E87941F555C5581ECAC7DF1051795AF681 ] MSSQLServerADHelper C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
22:05:53.0590 0x0e24  MSSQLServerADHelper - ok
22:05:53.0607 0x0e24  [ C826DD1373F38AFD9CA46EC3C436A14E, B5BC1C7760BF4CC1AFC714CA9DFD1D75C2D3804D27F17DD08D1C5CF548F93042 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:05:53.0612 0x0e24  MSTEE - ok
22:05:53.0632 0x0e24  [ FA7AA70050CF5E2D15DE00941E5665E5, 177F19C4436203E028D07300B4C77F5160835C7E02DB8863E8D01F277A678606 ] Mup             C:\Windows\system32\Drivers\mup.sys
22:05:53.0640 0x0e24  Mup - ok
22:05:53.0694 0x0e24  [ 1CDBB5D002FE2BC5300AA20550D8A52E, 86529AEE13545AADAA2F20C300059096F1663BE8A5A76740E9FEDEA26928A364 ] napagent        C:\Windows\system32\qagentRT.dll
22:05:53.0708 0x0e24  napagent - ok
22:05:53.0751 0x0e24  [ 6DA4A0FC7C0E83DF0CB3CFD0A514C3BC, 606449557E11AFD0C370EFD2D2566D58E0A6E90A590BF47779A077761E3FD682 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:05:53.0764 0x0e24  NativeWifiP - ok
22:05:53.0856 0x0e24  [ 227C11E1E7CF6EF8AFB2A238D209760C, C36E450DD54CE9DDF17C3E1240BFC9073D73B409C1E090EF65E80C1EA53A31A5 ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:05:53.0883 0x0e24  NDIS - ok
22:05:53.0917 0x0e24  [ 81659CDCBD0F9A9E07E6878AD8C78D3F, CC62555E680B52541BE4B882BE9438A300EFF0F50D0632E430AF269D4224F5E9 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:05:53.0924 0x0e24  NdisTapi - ok
22:05:53.0940 0x0e24  [ 5DE5EE546BF40838EBE0E01CB629DF64, 2617B588338AB43E98BD1DDDB4725B9D422029120415FC98C3B37E906F109152 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:05:53.0946 0x0e24  Ndisuio - ok
22:05:53.0971 0x0e24  [ 397402ADCBB8946223A1950101F6CD94, 612F6D887CB4374BB762BEF24A826D69971EC22D98FB4C0AAA4CC4B367E11AA6 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:05:53.0983 0x0e24  NdisWan - ok
22:05:54.0015 0x0e24  [ 1B24FA907AF283199A81B3BB37E5E526, 0689F688B73DD521F6B31A81415E55628995D54458F628BC14F88296638162C7 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:05:54.0023 0x0e24  NDProxy - ok
22:05:54.0052 0x0e24  [ 356DBB9F98E8DC1028DD3092FCEEB877, BCCD66AE76DD6AAB0A7A83227329E7D9D05D7D1FD30CDB66B19EB166E9BAD8E5 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:05:54.0060 0x0e24  NetBIOS - ok
22:05:54.0090 0x0e24  [ E3A168912E7EEFC3BD3B814720D68B41, 0A8B74C07E8E410CD9ACCF8A44C6198D1E89888238C820C800EC0B1B3C5F7BC2 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
22:05:54.0104 0x0e24  netbt - ok
22:05:54.0124 0x0e24  [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] Netlogon        C:\Windows\system32\lsass.exe
22:05:54.0126 0x0e24  Netlogon - ok
22:05:54.0168 0x0e24  [ 90A4DAE28B94497F83BEA0F2A3B77092, 9100B9312E92871AD634E373AC1EE8288A36F9E92A1390AF32B1C5B9419344A7 ] Netman          C:\Windows\System32\netman.dll
22:05:54.0183 0x0e24  Netman - ok
22:05:54.0215 0x0e24  [ 7C5C3D9CEEE838856B828AB6F98A2857, BDFA0F43500E5E8A96EBF539B7E72E547E3EBCCD692A6C6B9452C1F25AD31471 ] netprofm        C:\Windows\System32\netprofm.dll
22:05:54.0226 0x0e24  netprofm - ok
22:05:54.0273 0x0e24  [ 0AD5876EF4E9EB77C8F93EB5B2FFF386, 2F23B0979CF2E8DB013D8E58501ACC9265A860FD759E8B741F8FA64F7C2F7756 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:05:54.0287 0x0e24  NetTcpPortSharing - ok
22:05:54.0436 0x0e24  [ ACC6170D80C69E50145B370023B64ED3, 62F04F8F601A0A227EC14577278BAEA579483181DDB7A8B0B351C8A5A9CCE5D4 ] NETw3v32        C:\Windows\system32\DRIVERS\NETw3v32.sys
22:05:54.0525 0x0e24  NETw3v32 - ok
22:05:54.0571 0x0e24  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
22:05:54.0579 0x0e24  nfrd960 - ok
22:05:54.0615 0x0e24  [ C424117A562F2DE37A42266894C79AEB, A027AE08E37058316C004D79D038149FF9E233C1ECCE1D672AB5FE55C3B2B3AD ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:05:54.0624 0x0e24  NlaSvc - ok
22:05:54.0641 0x0e24  [ 4F9832BEB9FAFD8CEB0E541F1323B26E, FE4B9FDA83F186405C9B4A001E8496CA3DB42B4B4695E80F6DF5946E509F50F0 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:05:54.0648 0x0e24  Npfs - ok
22:05:54.0681 0x0e24  [ 23B8201A363DE0E649FC75EE9874DEE2, B6C2E40E62E9B4DA9B4E152DC406BD2338BF820CB547D65B03BC2C64D5D84EB2 ] nsi             C:\Windows\system32\nsisvc.dll
22:05:54.0684 0x0e24  nsi - ok
22:05:54.0703 0x0e24  [ B488DFEC274DE1FC9D653870EF2587BE, A1F4B1D59BA49D760E9D7925FFE1180BE436376C79AFD04119BC0E0E95C69603 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:05:54.0709 0x0e24  nsiproxy - ok
22:05:54.0810 0x0e24  [ 37430AA7A66D7A63407ADC2C0D05E9F6, EC9B117C42F2905251A6D29C1C5DF883FFEB60CFF3497C07C306500F107E2565 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:05:54.0900 0x0e24  Ntfs - ok
22:05:54.0925 0x0e24  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
22:05:54.0932 0x0e24  ntrigdigi - ok
22:05:54.0953 0x0e24  [ EC5EFB3C60F1B624648344A328BCE596, 0416128AA53D8FF79D5AAC69A8D9CE86D929A1517FAE4644AB06FA2362BB63A5 ] Null            C:\Windows\system32\drivers\Null.sys
22:05:54.0958 0x0e24  Null - ok
22:05:54.0988 0x0e24  [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:05:54.0998 0x0e24  nvraid - ok
22:05:55.0026 0x0e24  [ 9E0BA19A28C498A6D323D065DB76DFFC, EA9E33ED2820ED39932FAE114A9CF1D87780ED6605D0260A6F22F920B48F34E9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:05:55.0033 0x0e24  nvstor - ok
22:05:55.0064 0x0e24  [ 07C186427EB8FCC3D8D7927187F260F7, 9AFDE1CB7B7232BD019804BFC691580B9CC2E51A5BC0E5584B23907D532600D8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:05:55.0075 0x0e24  nv_agp - ok
22:05:55.0082 0x0e24  NwlnkFlt - ok
22:05:55.0093 0x0e24  NwlnkFwd - ok
22:05:55.0140 0x0e24  [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
22:05:55.0149 0x0e24  ohci1394 - ok
22:05:55.0224 0x0e24  [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
22:05:55.0303 0x0e24  p2pimsvc - ok
22:05:55.0432 0x0e24  [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] p2psvc          C:\Windows\system32\p2psvc.dll
22:05:55.0453 0x0e24  p2psvc - ok
22:05:55.0492 0x0e24  [ 753A8F339F231D2B857E2CCD51A6E6CA, 59510E69D623B9DA725A8097A44FD210FCF05BB3BA27D5296EA4610359DA0831 ] PACSPTISVR      C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
22:05:55.0505 0x0e24  PACSPTISVR - ok
22:05:55.0526 0x0e24  [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport         C:\Windows\system32\drivers\parport.sys
22:05:55.0534 0x0e24  Parport - ok
22:05:55.0561 0x0e24  [ 555A5B2C8022983BC7467BC925B222EE, D4E8B5FAF5F46F349B9C2554E7D8245808E3F7B86B40A547C37511E462838A89 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:05:55.0570 0x0e24  partmgr - ok
22:05:55.0585 0x0e24  [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
22:05:55.0591 0x0e24  Parvdm - ok
22:05:55.0606 0x0e24  [ D8C5C215C932233A4F1D7F368F4E4E65, E3FFEFC98FCA95E2290A30EA13793514E0C490C49E7E242C49FE3EA9FD6D651A ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:05:55.0611 0x0e24  PcaSvc - ok
22:05:55.0639 0x0e24  [ 1085D75657807E0E8B32F9E19A1647C3, 6D6C02CED7386E0D98BB136278934D5E2977BCC0BD9C487ECE7E97F472C612CD ] pci             C:\Windows\system32\drivers\pci.sys
22:05:55.0668 0x0e24  pci - ok
22:05:55.0683 0x0e24  [ 3B1901E401473E03EB8C874271E50C26, 3C7931F419E29FDD0155D8D05D97289430A2852FCB3DBAD1B338FE2241458E72 ] pciide          C:\Windows\system32\drivers\pciide.sys
22:05:55.0690 0x0e24  pciide - ok
22:05:55.0719 0x0e24  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
22:05:55.0732 0x0e24  pcmcia - ok
22:05:55.0829 0x0e24  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:05:55.0877 0x0e24  PEAUTH - ok
22:05:56.0135 0x0e24  [ CD05A38D166BEADE18030BAFC0C0A939, 4C310C4EA270FA5EDD268A5AA17713F5CD7AD526DB3AEA6C691772720BD16801 ] pla             C:\Windows\system32\pla.dll
22:05:56.0221 0x0e24  pla - ok
22:05:56.0312 0x0e24  [ 747BB4C31F3B6E8D1B5ED0AD61518CB5, 3B4075A24A46C4EE7322AF80F65C280F1A3AD0079DDFF77CC8523662225F01F5 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:05:56.0324 0x0e24  PlugPlay - ok
22:05:56.0381 0x0e24  [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
22:05:56.0401 0x0e24  PNRPAutoReg - ok
22:05:56.0438 0x0e24  [ 016D01D3B8FB976A193C7434BED8DCCF, 3C490D2536BB3D69A18F2308C92868BFFBBCDAEB0A9EFFB96E3B7A90E85E2D82 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
22:05:56.0460 0x0e24  PNRPsvc - ok
22:05:56.0514 0x0e24  [ 5EBDEC613BD377CE9A85382BE5C6B83B, 528D4DE5AAF113A6F3266EB018247EA46BD2581747DFBA1312D32AE37536E5A3 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:05:56.0532 0x0e24  PolicyAgent - ok
22:05:56.0572 0x0e24  [ C04DEC5ACE67C5247B150C4223970BB7, 3AD9E856C9B27B60DDB78FD2376DD920444C7890BD6A9F972938EDF8A7DD21C5 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:05:56.0580 0x0e24  PptpMiniport - ok
22:05:56.0597 0x0e24  [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor       C:\Windows\system32\drivers\processr.sys
22:05:56.0606 0x0e24  Processor - ok
22:05:56.0647 0x0e24  [ 213112E152E68F0E4705E36F052A2880, E5CB788E11DC01B82480FAAE8B1E122C075AA51144591189386C8EBB34197F06 ] ProfSvc         C:\Windows\system32\profsvc.dll
22:05:56.0655 0x0e24  ProfSvc - ok
22:05:56.0679 0x0e24  [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:05:56.0681 0x0e24  ProtectedStorage - ok
22:05:56.0724 0x0e24  [ 2C8BAE55247C4E09352E870292E4D1AB, 1AA43E8D62A71F4859ADEDAC90E7F3B73F6356EFA3C700E276C3F5EE58ED6804 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
22:05:56.0732 0x0e24  PSched - ok
22:05:56.0761 0x0e24  [ 59464C712C8C75E4513064F5A485582F, 1DE3C1B0F752857984C0D0ED83880FB022469D4818DFE5D06E288FB699C51220 ] PxHelp20        C:\Windows\system32\DRIVERS\PxHelp20.sys
22:05:56.0770 0x0e24  PxHelp20 - ok
22:05:56.0871 0x0e24  [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300          C:\Windows\system32\drivers\ql2300.sys
22:05:56.0921 0x0e24  ql2300 - ok
22:05:57.0013 0x0e24  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
22:05:57.0024 0x0e24  ql40xx - ok
22:05:57.0056 0x0e24  [ CA61BDFD3713A7CE75F2812AFC431594, 42CAD3B8EADE4EDCC0F12869BA1B457E2B8712B796BDF1A5D231AF38D0CCF1FF ] QWAVE           C:\Windows\system32\qwave.dll
22:05:57.0069 0x0e24  QWAVE - ok
22:05:57.0086 0x0e24  [ D2B3E2B7426DC23E185FBC73C8936C12, 543B6341AB0224E122A341068D1199715C503E840A41A852764AA400CEF6D75F ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:05:57.0093 0x0e24  QWAVEdrv - ok
22:05:57.0119 0x0e24  [ BD7B30F55B3649506DD8B3D38F571D2A, CFDED547FEE24CC0F9CD32A96D4F445D44FCA908BB99AEE890C720142EF0D68B ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:05:57.0127 0x0e24  RasAcd - ok
22:05:57.0188 0x0e24  [ F14F4AAB9F54D099FE99192BDB100AC9, 68293A5B23F4B602142442B1FA57B678BE46FA89808B76FBA7EB875FE3AAC3D8 ] RasAuto         C:\Windows\System32\rasauto.dll
22:05:57.0200 0x0e24  RasAuto - ok
22:05:57.0243 0x0e24  [ 68B0019FEE429EC49D29017AF937E482, 99D6E2B214F24F6F9B42BF3F96B914A923FF7D9CF4E97ABA51AF7891718A87E6 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:05:57.0254 0x0e24  Rasl2tp - ok
22:05:57.0312 0x0e24  [ 11D65E29BC9D1E4114D18FE68194394C, A2C6345D038E1EB954C0DFA4E5645DC1A78EDF7F0873BDFBE36E7CB047ECC33A ] RasMan          C:\Windows\System32\rasmans.dll
22:05:57.0323 0x0e24  RasMan - ok
22:05:57.0348 0x0e24  [ CCF4E9C6CBBAC81437F88CB2AE0B6C96, 20F877FAE1D4B592AEE9A20AFD32066F7DE838FEE3501C6F72C44D3F32BC6AE0 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:05:57.0356 0x0e24  RasPppoe - ok
22:05:57.0379 0x0e24  [ 54129C5D9581BBEC8BD1EBD3BA813F47, 8A19AEFF124F55A99EDE9693E5981F03343736E7924C28290DA10D3092D98675 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:05:57.0394 0x0e24  rdbss - ok
22:05:57.0416 0x0e24  [ 794585276B5D7FCA9F3FC15543F9F0B9, 71424462303DA4035301F7E66792116ED09856A1724BAACBB47060121EDCE77F ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:05:57.0423 0x0e24  RDPCDD - ok
22:05:57.0458 0x0e24  [ E8BD98D46F2ED77132BA927FCCB47D8B, 5187CF8F00AD67EDDF27DF675F3210C0D72E552578A89C58DF6953B1D5BEBCB8 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
22:05:57.0476 0x0e24  rdpdr - ok
22:05:57.0484 0x0e24  [ 980B56E2E273E19D3A9D72D5C420F008, 142CFC831C4E70494275AA483CDAB5F63997EA1977F1DD4AE25AFBD419ABFF62 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:05:57.0490 0x0e24  RDPENCDD - ok
22:05:57.0510 0x0e24  [ 8830E790A74A96605FABA74F9665BB3C, 3CD2CFE48026485A4D7F6C985BFAF716D8D4B566BE53EA67904FD18B1C8F8604 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:05:57.0523 0x0e24  RDPWD - ok
22:05:57.0573 0x0e24  [ 6C1A43C589EE8011A1EBFD51C01B77CE, 61206F6AD4BBE241DBB948D48364898118BEA6E289EDD3141FD57B61ED62BB52 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:05:57.0591 0x0e24  RemoteAccess - ok
22:05:57.0610 0x0e24  [ 9A043808667C8C1893DA7275AF373F0E, 4317B975305F2FD6696A2227FA30214406179D9BB9898390A0FA2663AD27CBCF ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:05:57.0625 0x0e24  RemoteRegistry - ok
22:05:57.0653 0x0e24  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
22:05:57.0660 0x0e24  RpcLocator - ok
22:05:57.0714 0x0e24  [ 7B981222A257D076885BFFB66F19B7CE, 83B044B93FB30D54B9AFC991D608BF5FDBC2F31317E0AEA99E78B2B49655BCBB ] RpcSs           C:\Windows\system32\rpcss.dll
22:05:57.0734 0x0e24  RpcSs - ok
22:05:57.0776 0x0e24  [ 97E939D2128FEC5D5A3E6E79B290A2F4, FB71FD62BFD02608347C44E5EC865DCFA41EDFF58011673487D25C8DD79C268E ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:05:57.0784 0x0e24  rspndr - ok
22:05:57.0801 0x0e24  [ C731B1FE449D4E9CEA358C9D55B69BE9, 192CB8408BA873F4BA1419B9DAB7BDE9A958FBC5C6FF3C595E1678D983DE84C4 ] SamSs           C:\Windows\system32\lsass.exe
22:05:57.0803 0x0e24  SamSs - ok
22:05:57.0827 0x0e24  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:05:57.0837 0x0e24  sbp2port - ok
22:05:57.0869 0x0e24  [ 565B4B9E5AD2F2F18A4F8AAFA6C06BBB, 4222182FF80A6A9DEF7239965C12F3BBE843A5219D16D5BFD167350EDA5A23CF ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:05:57.0875 0x0e24  SCardSvr - ok
22:05:57.0944 0x0e24  [ 886CEC884B5BE29AB9828B8AB46B11F7, 13901D422D3F0BD9D416865D91561C8A3B0FDC4D7593748460BA5DD45B7C5A6A ] Schedule        C:\Windows\system32\schedsvc.dll
22:05:58.0019 0x0e24  Schedule - ok
22:05:58.0041 0x0e24  [ 0600E04315FE543802A379D5D23C8BE0, 48DD5028D9F415B9E5A949FA32051243C8F5B475EFA909FD625D940DA227E252 ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:05:58.0043 0x0e24  SCPolicySvc - ok
22:05:58.0055 0x0e24  [ F7B6BF02240D0A764ADF8C8966735552, E3A21C746E8B79B4F08B0CC3C1610AE3F2BBC8FB6D237C653C7883F4EEA6F6E7 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:05:58.0070 0x0e24  SDRSVC - ok
22:05:58.0080 0x0e24  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:05:58.0087 0x0e24  secdrv - ok
22:05:58.0101 0x0e24  [ 8388C4133DDBE62AD7BC3EC9F14271ED, 38BF611174C660A0F737D97DAD4488E589CF0CC6242F7B9A8DA034F0D4E22A4F ] seclogon        C:\Windows\system32\seclogon.dll
22:05:58.0104 0x0e24  seclogon - ok
22:05:58.0134 0x0e24  [ 34350AE2C1D33D21C7305F861BD8DAD8, C2CF4DDC0B223F2CFEFC3BC4EE5B8BC0F3E1E972BE894C388FBA067D52945C2B ] SENS            C:\Windows\System32\sens.dll
22:05:58.0139 0x0e24  SENS - ok
22:05:58.0157 0x0e24  [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum         C:\Windows\system32\drivers\serenum.sys
22:05:58.0164 0x0e24  Serenum - ok
22:05:58.0185 0x0e24  [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial          C:\Windows\system32\drivers\serial.sys
22:05:58.0197 0x0e24  Serial - ok
22:05:58.0221 0x0e24  [ 450ACCD77EC5CEA720C1CDB9E26B953B, 3B053BDB8EDDC99274C46E9330AEE83851AA3AD37472BBCBE5624233CA9B1B55 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
22:05:58.0227 0x0e24  sermouse - ok
22:05:58.0259 0x0e24  [ 78878235DA4DF0D116E86837A0A21DF8, E66B050B56F9F1E902DA6A55126BD2D6AD8F9A40995942055387DC1CDE857B9F ] SessionEnv      C:\Windows\system32\sessenv.dll
22:05:58.0267 0x0e24  SessionEnv - ok
22:05:58.0302 0x0e24  [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:05:58.0308 0x0e24  sffdisk - ok
22:05:58.0328 0x0e24  [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:05:58.0334 0x0e24  sffp_mmc - ok
22:05:58.0357 0x0e24  [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:05:58.0363 0x0e24  sffp_sd - ok
22:05:58.0381 0x0e24  [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
22:05:58.0387 0x0e24  sfloppy - ok
22:05:58.0427 0x0e24  [ 9A82BF4C90B00A63150A606A1E2FD82B, 48F9B5CD950668F2F28D89F77E54C1EF02849F0E28DC104780F9D62AEE1BF247 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:05:58.0444 0x0e24  SharedAccess - ok
22:05:58.0489 0x0e24  [ B264DFA21677728613267FE63802B332, 46AB67C795C8FA36B22BC1C4DB75E0281824AC99C9BC37EB3A3B13B435F75129 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:05:58.0502 0x0e24  ShellHWDetection - ok
22:05:58.0522 0x0e24  [ D2A595D6EEBEEAF4334F8E50EFBC9931, 851B8205C657BF806C4D815DC75356E99B4246016B6E1C1F51BAF8AD1E6D5299 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
22:05:58.0531 0x0e24  sisagp - ok
22:05:58.0551 0x0e24  [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
22:05:58.0560 0x0e24  SiSRaid2 - ok
22:05:58.0581 0x0e24  [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
22:05:58.0590 0x0e24  SiSRaid4 - ok
22:05:58.0791 0x0e24  [ A1DCD30534835CB67733AD00175125A6, 04E77F80D365ED8A500B5818015739B7D3562C528CC005E63012D07767132D71 ] slsvc           C:\Windows\system32\SLsvc.exe
22:05:59.0037 0x0e24  slsvc - ok
22:05:59.0135 0x0e24  [ 56DA296E7B376A727E7BDC5AC7FBEE02, 6A01699DEADE24DCE15321F51368F41EBC6594A838953D9EF250A57D7C1216B7 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
22:05:59.0214 0x0e24  SLUINotify - ok
22:05:59.0251 0x0e24  [ AC0D90738ADB51A6FD12FF00874A2162, 81086C33F77BA32DEDE0BE51CDD130AB124DB08DE63350CAA0B974B85A59B834 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:05:59.0300 0x0e24  Smb - ok
22:05:59.0374 0x0e24  [ DB31D8989B3450569C29780E7FA98C48, 018EFDF37E45163D2D6753B86AC7DB51F835E6A7CF58B2AAFEF559E873264065 ] SNC             C:\Windows\system32\Drivers\SonyNC.sys
22:05:59.0402 0x0e24  SNC - ok
22:05:59.0465 0x0e24  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:05:59.0497 0x0e24  SNMPTRAP - ok
22:05:59.0527 0x0e24  [ 86DA2BEFB800D726FEA98A539606553C, 62ABEAC563828302871AEB91E3C297EDC7A3CA9483A17E19B3BFE7A332A07557 ] SonicStage Back-End Service C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe
22:05:59.0542 0x0e24  SonicStage Back-End Service - ok
22:05:59.0572 0x0e24  [ 426F9B029AA9162CECCF65369457D046, 36F47ABD5F16CA406036BD79AA8F89FF265B913C433BA73F115E84292D5FFD26 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:05:59.0596 0x0e24  spldr - ok
22:05:59.0679 0x0e24  [ DA612EF2556776DF2630B68BF2D48935, 770E883E3CA0CB8B63F5C09D26AD0474054F759EB692905EB37F9BC16D1FE5F4 ] Spooler         C:\Windows\System32\spoolsv.exe
22:05:59.0749 0x0e24  Spooler - ok
22:05:59.0819 0x0e24  [ E3E6C96B0EF4492C3C8FD0DEEF4E35A1, BDCCF36D760B8B92BD8DF54C6F2992D66B76EBA1999623F60F0D68CD91D3CEE1 ] SPTISRV         C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
22:05:59.0893 0x0e24  SPTISRV - ok
22:05:59.0993 0x0e24  [ B2EC3E1DEAC5F0A764BD3486D213A0AF, 77597D6AF90BF0FD50AF7271C800D84BE69E288760116B7A252FB8B068614A52 ] SQLBrowser      C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
22:06:00.0034 0x0e24  SQLBrowser - ok
22:06:00.0119 0x0e24  [ D2F4F32B59440011174B4F8137AF4E0C, 82862C39B34D1ED6ED170DAAB385B6ABE5078A6CC995E396828695F2CE2542D9 ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
22:06:00.0158 0x0e24  SQLWriter - ok
22:06:00.0212 0x0e24  [ 038579C35F7CAD4A4BBF735DBF83277D, 95B5B32D8818E89A7AE2B6DDEAE3025B9E2B4C7A99E7CAEE4D7BF3E336413377 ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:06:00.0235 0x0e24  srv - ok
22:06:00.0268 0x0e24  [ 6971A757AF8CB5E2CBCBB76CC530DB6C, E8BD4353F6EBCF3316CA6D288C402CAB72C674A94E07EB3003A8010F74BDC90C ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:06:00.0283 0x0e24  srv2 - ok
22:06:00.0298 0x0e24  [ 9E1A4603B874EEBCE0298113951ABEFB, 79C6153AF6E23F7A86642BE977E76B3D420F4D720B72418D0F3FB5A9EAFE36BB ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:06:00.0308 0x0e24  srvnet - ok
22:06:00.0341 0x0e24  [ 8D3E4BAFF8B3997138C38EB1B600519A, D40E30C86B2B5AB30B29CD211091C97876673E786D708EDDC5068656CB84E7F3 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:06:00.0365 0x0e24  SSDPSRV - ok
22:06:00.0408 0x0e24  [ 6EB13F919D22D5056B4FB66AA3BB497A, B6FBF170873BCA1C4CC10D7AB6564CBE5EF2E62306758F8FE23CB8A66A839B7E ] SSScsiSV        C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
22:06:00.0419 0x0e24  SSScsiSV - ok
22:06:00.0532 0x0e24  [ A941E099EF46E3CC12F898CBE1C39910, 03419E0FC240C51A05B432041F1747068475EF2E6E23B06D85D5AEF4F442D32D ] stisvc          C:\Windows\System32\wiaservc.dll
22:06:00.0557 0x0e24  stisvc - ok
22:06:00.0587 0x0e24  [ 1379BDB336F8158C176A465E30759F57, 704CB88D0DA019C48B30AF3CF51C6746D10C583822B21861DDE1708A835ABDFA ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
22:06:00.0611 0x0e24  swenum - ok
22:06:00.0677 0x0e24  [ 749ADA8D6C18A08ADFEDE69CBF5DB2E0, 376C3FDAB5926DDDE8BF009988D782A96AA198D9BC147C799016D558AEE6537E ] swprv           C:\Windows\System32\swprv.dll
22:06:00.0704 0x0e24  swprv - ok
22:06:00.0726 0x0e24  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
22:06:00.0734 0x0e24  Symc8xx - ok
22:06:00.0752 0x0e24  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
22:06:00.0760 0x0e24  Sym_hi - ok
22:06:00.0846 0x0e24  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
22:06:00.0854 0x0e24  Sym_u3 - ok
22:06:00.0913 0x0e24  [ 8F2B5FEDE18BD3C4C926CBF88E6F1264, A6398F4CBD27C59A1160AE7F79B651F4956F8BEFB829353A263502CEFBDEBF36 ] SysMain         C:\Windows\system32\sysmain.dll
22:06:00.0997 0x0e24  SysMain - ok
22:06:01.0086 0x0e24  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:06:01.0096 0x0e24  TabletInputService - ok
22:06:01.0237 0x0e24  [ EF3DD33C740FC2F82E7E4622F1C49289, 56CA8119E23AE7B9A6E454C7F52514D361AFFE92F46B63FBCA36AA7273624E52 ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:06:01.0256 0x0e24  TapiSrv - ok
22:06:01.0272 0x0e24  [ 68FA52794AE9ACC61BDE16FE0956B414, 3848DAF78246935134443FCEBA4E48843E98E5201DCD1B7C4C2BA46E2E106F50 ] TBS             C:\Windows\System32\tbssvc.dll
22:06:01.0286 0x0e24  TBS - ok
22:06:01.0390 0x0e24  [ 4A82FA8F0DF67AA354580C3FAAF8BDE3, 4E946A7F4236B3A815172CAB9179E2171F4D69BF18606E02E6552EC5FA317CFA ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:06:01.0429 0x0e24  Tcpip - ok
22:06:01.0492 0x0e24  [ 4A82FA8F0DF67AA354580C3FAAF8BDE3, 4E946A7F4236B3A815172CAB9179E2171F4D69BF18606E02E6552EC5FA317CFA ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
22:06:01.0520 0x0e24  Tcpip6 - ok
22:06:01.0566 0x0e24  [ 5CE0C4A7B12D0067DAD527D72B68C726, BA2B482C5A9B59721A893B11475E199808E8182A0C39DA82BF87E6BE03B61867 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:06:01.0586 0x0e24  tcpipreg - ok
22:06:01.0599 0x0e24  [ 964248AEF49C31FA6A93201A73FFAF50, 479174899E7375C29E7C0EA7715AF1FDB09D7565B0678E15DC109C32B08624AD ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:06:01.0605 0x0e24  TDPIPE - ok
22:06:01.0622 0x0e24  [ 7D2C1AE1648A60FCE4AA0F7982E419D3, E08F2A380388E3F0886B9EF440758AAE85F619A6B98C8054E55190423B7377DB ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:06:01.0628 0x0e24  TDTCP - ok
22:06:01.0671 0x0e24  [ AB4FDE8AF4A0270A46A001C08CBCE1C2, E420B59E716C09623A28A95CD20721EA3FA2804E44F0D9226C0DCBA8FB716A78 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:06:01.0680 0x0e24  tdx - ok
22:06:01.0697 0x0e24  [ 2C549BD9DD091FBFAA0A2A48E82EC2FB, A1884EE33A1EC2FD2FC5540E8848EBC2A9FB1987B5D2BAA58E4D7984F89E4BD7 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
22:06:01.0706 0x0e24  TermDD - ok
22:06:01.0859 0x0e24  [ FAD71C1E8E4047B154E899AE31EB8CAA, 44DDADAFF31B4D6D840DA48A9A435204184CF3016EA426B24249F19C4C5AF304 ] TermService     C:\Windows\System32\termsrv.dll
22:06:01.0878 0x0e24  TermService - ok
22:06:01.0935 0x0e24  [ B264DFA21677728613267FE63802B332, 46AB67C795C8FA36B22BC1C4DB75E0281824AC99C9BC37EB3A3B13B435F75129 ] Themes          C:\Windows\system32\shsvcs.dll
22:06:01.0944 0x0e24  Themes - ok
22:06:01.0988 0x0e24  [ 9DFA3A459AF0954AA85B4F7622AD87BB, C7BED7AAAA0DA89C0EE7219FD316DA69C027C27008C02F5028F2D3F33A06CCBF ] THREADORDER     C:\Windows\system32\mmcss.dll
22:06:01.0995 0x0e24  THREADORDER - ok
22:06:02.0202 0x0e24  [ DCD46A3FC856167FD985507492AE610A, 3FF780B2676455E8AC1DD9FA592DE7351128F0AE3D427A5391B7E7FD6DAC61A3 ] ti21sony        C:\Windows\system32\drivers\ti21sony.sys
22:06:02.0263 0x0e24  ti21sony - ok
22:06:02.0310 0x0e24  [ 6BBA0582C0025D43729A1112D3B57897, 052B291EBE695FB1DF40F65085CBA74624C877D57F881CE79027DEEBFE07FBA2 ] TrkWks          C:\Windows\System32\trkwks.dll
22:06:02.0316 0x0e24  TrkWks - ok
22:06:02.0370 0x0e24  [ 34E388A395FEDBA1D0511ED39BBF4074, 9A44459AC8A258380E0E46F4F9FD8D9FB34B2FB127F0A672824642886E90A1D7 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:06:02.0372 0x0e24  TrustedInstaller - ok
22:06:02.0562 0x0e24  [ 29F0ECA726F0D51F7E048BDB0B372F29, FC4D5859633DA90A14CC5026347EF95BA3309594F8485F4F8C6451F44A8A8787 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:06:02.0568 0x0e24  tssecsrv - ok
22:06:02.0630 0x0e24  [ 65E953BC0084D44498B51F59784D2A82, 64A33090CE2A9046F413C9A0D0209ABF4B3FA0E44031CB871B20CF7C6ADA7021 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
22:06:02.0636 0x0e24  tunmp - ok
22:06:02.0658 0x0e24  [ 4A39BDA5E0FD30BDF4884F9D33AE6105, C827FCA940CCB4B5305A35E02AB296AD0CB9455B401555BDB2938BAED4A2A5D0 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:06:02.0667 0x0e24  tunnel - ok
22:06:02.0705 0x0e24  [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35          C:\Windows\system32\drivers\uagp35.sys
22:06:02.0714 0x0e24  uagp35 - ok
22:06:02.0753 0x0e24  [ 6348DA98707CEDA8A0DFB05820E17732, FEADD72EBF7CE3E85463D676B45E05E5141EB80C76594DE66E2F3D27569AE90B ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:06:02.0768 0x0e24  udfs - ok
22:06:02.0802 0x0e24  [ 24A333F4F14DCFB6FF6D5A1B9E5D79DD, 8145A7668103B6768D49B5EADCA47C0D75E09C190325892DC74A29A5E959CE37 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:06:02.0814 0x0e24  UI0Detect - ok
22:06:02.0841 0x0e24  [ 75E6890EBFCE0841D3291B02E7A8BDB0, FDF9CDCCCCC0AA2A52623C5A67AC5F5224557EE4C8F6487CB13CAEB012575E2A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:06:02.0901 0x0e24  uliagpkx - ok
22:06:02.0940 0x0e24  [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
22:06:02.0955 0x0e24  uliahci - ok
22:06:03.0008 0x0e24  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
22:06:03.0018 0x0e24  UlSata - ok
22:06:03.0039 0x0e24  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
22:06:03.0055 0x0e24  ulsata2 - ok
22:06:03.0070 0x0e24  [ 3FB78F1D1DD86D87BECECD9DFFA24DD9, B6344D33D064B56311168B02315B01238964D834AA44EB6C2B3788698F2077CF ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:06:03.0086 0x0e24  umbus - ok
22:06:03.0143 0x0e24  [ 8EB871A3DEB6B3D5A85EB6DDFC390B59, 84D8A02CC4597078D868F1C31992D04B2D4B3CC4FAF4F57625A2054C13AE1513 ] upnphost        C:\Windows\System32\upnphost.dll
22:06:03.0156 0x0e24  upnphost - ok
22:06:03.0233 0x0e24  [ 8BD3AE150D97BA4E633C6C5C51B41AE1, 6B529901B0311197CB67B9D9A2DED7D79B820F66E75BEF0FA912EFE50F941217 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:06:03.0249 0x0e24  usbccgp - ok
22:06:03.0259 0x0e24  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:06:03.0270 0x0e24  usbcir - ok
22:06:03.0291 0x0e24  [ 63FE924D8A1113C3BA6750693FBEC7D3, 70F0F5C25EB89BE55728F78EDB7247C9F738736342DFB3F45F3481FB8C589980 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
22:06:03.0303 0x0e24  usbehci - ok
22:06:03.0324 0x0e24  [ 5EDEC5510592C905E91817707DCE62A2, A9799D28C4992BF3D3AEF71F6C920839FD32ADD9BEFB94CC04535EFDFF50EF62 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:06:03.0337 0x0e24  usbhub - ok
22:06:03.0354 0x0e24  [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:06:03.0360 0x0e24  usbohci - ok
22:06:03.0377 0x0e24  [ B51E52ACF758BE00EF3A58EA452FE360, 79E629EC5DE8AB7F31B0EE9AE94C71E8F703FED5C09A816228726974F7790C85 ] usbprint        C:\Windows\system32\drivers\usbprint.sys
22:06:03.0384 0x0e24  usbprint - ok
22:06:03.0449 0x0e24  [ 7887CE56934E7F104E98C975F47353C5, A77F4F36119DE0330CB39F0082130398479016C6819860E8A3873485679FFC15 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:06:03.0457 0x0e24  USBSTOR - ok
22:06:03.0476 0x0e24  [ 325DBBACB8A36AF9988CCF40EAC228CC, 22FE5658A12296634FBE9D8565485BEE8CB200C47182F70DC9D2B0442E10C4AA ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
22:06:03.0482 0x0e24  usbuhci - ok
22:06:03.0574 0x0e24  [ F79D0D7C9004474CB42746D9B2C30A2B, B693C6DEB1AB879F91BF5362ECD02C8C676A6AAB82D01CB534734CC07FA6A3D8 ] UxSms           C:\Windows\System32\uxsms.dll
22:06:03.0578 0x0e24  UxSms - ok
22:06:03.0621 0x0e24  [ 4E9C6BF8D0655BB7538088DC6F2306D9, 915029F7C1B5B03B9EB7A6AE0E052594809CABCCF20F998B9414604D09D2B8AF ] VAIO Entertainment TV Device Arbitration Service C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
22:06:03.0634 0x0e24  VAIO Entertainment TV Device Arbitration Service - ok
22:06:03.0724 0x0e24  [ 8A9F18ADAD471402236CA931553BF79B, D6FBECC83C5A8052C3F65A6B43BC42466212D9BE3B704CC150A8BA49E37F0291 ] VAIO Event Service C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
22:06:03.0732 0x0e24  VAIO Event Service - ok
22:06:03.0912 0x0e24  [ 88DC6B884824A578B0E1E9C3790C105B, E269CD0ACA3DA6FC0E0913C1FB146EC89F58B86AC2B1AA1554599C532DD88655 ] VAIOMediaPlatform-IntegratedServer-AppServer C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
22:06:04.0479 0x0e24  VAIOMediaPlatform-IntegratedServer-AppServer - ok
22:06:04.0777 0x0e24  [ 56E33AAA46CBA8431E72486196AFB3A1, 8AD1759AF582C3AF21855BEEA190FAAD297D98567130BD8FFDAF3C12168A41A7 ] VAIOMediaPlatform-IntegratedServer-HTTP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
22:06:06.0059 0x0e24  VAIOMediaPlatform-IntegratedServer-HTTP - ok
22:06:07.0442 0x0e24  [ ADDF0E4E19BD2FF0A0B852D324FDC281, 848E81C9986B9FB52652EB073852412BE02A7A97CA2A062A8D0A959865869726 ] VAIOMediaPlatform-IntegratedServer-UPnP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
22:06:07.0516 0x0e24  VAIOMediaPlatform-IntegratedServer-UPnP - ok
22:06:07.0806 0x0e24  [ 52D4F568FE7D05AE5026B8717EEB59EB, BF263043A756EFC4853C28A1F62FC56C43810A4734D16EBBCE6E9B71283CBE05 ] VAIOMediaPlatform-UCLS-AppServer C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe
22:06:07.0848 0x0e24  VAIOMediaPlatform-UCLS-AppServer - ok
22:06:07.0893 0x0e24  [ 56E33AAA46CBA8431E72486196AFB3A1, 8AD1759AF582C3AF21855BEEA190FAAD297D98567130BD8FFDAF3C12168A41A7 ] VAIOMediaPlatform-UCLS-HTTP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
22:06:07.0906 0x0e24  VAIOMediaPlatform-UCLS-HTTP - ok
22:06:07.0954 0x0e24  [ ADDF0E4E19BD2FF0A0B852D324FDC281, 848E81C9986B9FB52652EB073852412BE02A7A97CA2A062A8D0A959865869726 ] VAIOMediaPlatform-UCLS-UPnP C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
22:06:08.0002 0x0e24  VAIOMediaPlatform-UCLS-UPnP - ok
22:06:08.0029 0x0e24  Vcsw - ok
22:06:08.0083 0x0e24  [ C9D0BAFEE0D0A2681F048CA61BC0DA96, DEE8345E0F0E1984001C4305294DD0006C9C6DDA08BF8E23669D53919FB0D479 ] vds             C:\Windows\System32\vds.exe
22:06:08.0115 0x0e24  vds - ok
22:06:08.0192 0x0e24  [ 7D92BE0028ECDEDEC74617009084B5EF, D0749CE6FA3415BA4364299F8D6D53F133E8D2F44C6F1057996243415A540A53 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:06:08.0199 0x0e24  vga - ok
22:06:08.0239 0x0e24  [ 17A8F877314E4067F8C8172CC6D9101C, 86644BE36B12DBB61A14AE076EE5A3C04C1AC5328FD540BB39F80086302E30FA ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:06:08.0246 0x0e24  VgaSave - ok
22:06:08.0264 0x0e24  [ 045D9961E591CF0674A920B6BA3BA5CB, EBF498A0424CEA0F7ECBAAE144A8669CE6B5DD67115DE22CEC5A46AED26CD90B ] viaagp          C:\Windows\system32\drivers\viaagp.sys
22:06:08.0273 0x0e24  viaagp - ok
22:06:08.0297 0x0e24  [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7           C:\Windows\system32\drivers\viac7.sys
22:06:08.0306 0x0e24  ViaC7 - ok
22:06:08.0337 0x0e24  [ FD2E3175FCADA350C7AB4521DCA187EC, 1C914B184478611A27E0141F90EBC34FC63DFB2A83441DD36DFA43D945FB1C52 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:06:08.0344 0x0e24  viaide - ok
22:06:08.0369 0x0e24  [ 103E84C95832D0ED93507997CC7B54E8, DA8B0F015D9F383C1349C96A6308E2B2BF3C1C3C5D0A173B9B71B455F8A10FCB ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:06:08.0377 0x0e24  volmgr - ok
22:06:08.0404 0x0e24  [ 294DA8D3F965F6A8DB934A83C7B461FF, 6761A3B24173C76E8AAE17D131EB897F475D84CAE76C9E1CF1F450DF7AC0A9B7 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:06:08.0422 0x0e24  volmgrx - ok
22:06:08.0465 0x0e24  [ 80DC0C9BCB579ED9815001A4D37CBFD5, E80392798A10DD9354683D80FDAE182D5D34CC3945BD5A7D16B79F0B2ED0D1A5 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:06:08.0479 0x0e24  volsnap - ok
22:06:08.0507 0x0e24  [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
22:06:08.0517 0x0e24  vsmraid - ok
22:06:08.0597 0x0e24  [ E0E29D9EF2524ABD11749C7C2FD7F607, 9A463C3BC73309B2114F30E8F923FE458F7AF8A385508403B56F260F1C0D042E ] VSS             C:\Windows\system32\vssvc.exe
22:06:08.0836 0x0e24  VSS - ok
22:06:08.0911 0x0e24  [ AD137204D107A60D563030145C3BE695, 4470AD9D1D2B0302A2CAA56CD3847287D9CEC56D274405B4B8DF4448EFD45EB0 ] VUAgent         C:\Program Files\Sony\VAIO Update 5\VUAgent.exe
22:06:09.0024 0x0e24  VUAgent - ok
22:06:09.0148 0x0e24  [ 5FEB20D9ED9A2BD4F234222B0A3BB855, 8B1BD9F0FE5839F0F5E7E4ED418B79CF6305AF7BA0D4849330D0CD18156C8350 ] VzCdbSvc        C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
22:06:09.0156 0x0e24  VzCdbSvc - ok
22:06:09.0222 0x0e24  [ 3757DFD3C07896EF660D4060366E7B4E, 0FCA391810B88D684CB9344883192AFB62CE5B9E6D37185FD8EB4DD4566CE6AB ] VzFw            C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
22:06:09.0228 0x0e24  VzFw - ok
22:06:09.0337 0x0e24  [ 62B0D0F6F5580D9D0DFA5E0B466FF2ED, 6354B3D18AD753A96B38A71C4DC071944C1EFFBB695507DB3F40355203FB9A78 ] W32Time         C:\Windows\system32\w32time.dll
22:06:09.0354 0x0e24  W32Time - ok
22:06:09.0403 0x0e24  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
22:06:09.0410 0x0e24  WacomPen - ok
22:06:09.0447 0x0e24  [ 6798C1209A53B5A0DED8D437C45145FF, 502E472B9B648F11F820D8A0B49890185ADAD213601CE87B765B39CE4F6571C2 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
22:06:09.0455 0x0e24  Wanarp - ok
22:06:09.0478 0x0e24  [ 6798C1209A53B5A0DED8D437C45145FF, 502E472B9B648F11F820D8A0B49890185ADAD213601CE87B765B39CE4F6571C2 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:06:09.0481 0x0e24  Wanarpv6 - ok
22:06:09.0524 0x0e24  [ C1B19162E0509CEAB4CDF664E139D956, 24F03AD0EB901777F8DDF874A82BF32361D8313F8E79A477C42D58CD6BF12657 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:06:09.0544 0x0e24  wcncsvc - ok
22:06:09.0709 0x0e24  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:06:09.0718 0x0e24  WcsPlugInService - ok
22:06:09.0797 0x0e24  [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd              C:\Windows\system32\drivers\wd.sys
22:06:09.0804 0x0e24  Wd - ok
22:06:09.0865 0x0e24  [ 7B5F66E4A2219C7D9DAF9E738480E534, ED8D421591D693F2C0DB55B319A05E7E63241A66399CB7CE0C574B14138D8CC0 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:06:09.0891 0x0e24  Wdf01000 - ok
22:06:09.0937 0x0e24  [ 2A424B89B14EF17A3D06BCB5A8F79601, F0C51F3D5029B5E169F461536BF72D5DD811FE604B59C58902253B54FFBF510A ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:06:09.0946 0x0e24  WdiServiceHost - ok
22:06:09.0972 0x0e24  [ 2A424B89B14EF17A3D06BCB5A8F79601, F0C51F3D5029B5E169F461536BF72D5DD811FE604B59C58902253B54FFBF510A ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:06:09.0978 0x0e24  WdiSystemHost - ok
22:06:10.0018 0x0e24  [ 01E41C264EEDCB827820A1909162579F, E21E6CFE3A0F46320175A261E31DA86573F28CCD0C710E972E7888C5FB85C494 ] WebClient       C:\Windows\System32\webclnt.dll
22:06:10.0028 0x0e24  WebClient - ok
22:06:10.0060 0x0e24  [ 9CF67FF7F8D34CBF115D0C278B9F74AA, B5EE61B3345B3DE88230858FD639A90919D00D52D44C8138E3AD66F79DFBB54B ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:06:10.0091 0x0e24  Wecsvc - ok
22:06:10.0121 0x0e24  [ B68CAB45DB1DAB59D92ACADFAD6364A8, 47491F6E759CDE7C343648C41302A57B0A41EAD49B7F55AD545743AEF9E168ED ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:06:10.0133 0x0e24  wercplsupport - ok
22:06:10.0152 0x0e24  [ 36BA0707680EF4236FD752BEE982CC25, 215E20E83A13B0B680990E4557DFBA5B83B60D2FCF356C1AB5BEFEA22B134B0A ] WerSvc          C:\Windows\System32\WerSvc.dll
22:06:10.0160 0x0e24  WerSvc - ok
22:06:10.0250 0x0e24  [ 6D2350BB6E77E800FC4BE4E5B7A2E89A, 5C70AA76991B85D4EA52C70A03C932B34B51133CC55B3F4CC25F4A7044574885 ] winachsf        C:\Windows\system32\DRIVERS\HSX_CNXT.sys
22:06:10.0284 0x0e24  winachsf - ok
22:06:10.0377 0x0e24  [ 0D5AD0E71FF5DDAC5DD2F443B499ABD0, 7FE7C635B811E882AB02437FED1778A11F32F273E44E669DC445E929EF2C9B2D ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
22:06:10.0398 0x0e24  WinDefend - ok
22:06:10.0423 0x0e24  WinHttpAutoProxySvc - ok
22:06:10.0561 0x0e24  [ 38A7B89DE4E3417C122317949667FDD8, 611CFCC36EABA5752E99C1E0E3F6269C93CC5E5F53495C257929FB5492DCDE97 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:06:10.0569 0x0e24  Winmgmt - ok
22:06:10.0621 0x0e24  [ 3F6823040030C3E4DA1CF11CD40B7534, 4B1B1CE5F4E6679A96BA081F6CFC1D43FFCE3CAE58B8C3AD74B261D7F5C70E28 ] WinRM           C:\Windows\system32\WsmSvc.dll
22:06:10.0643 0x0e24  WinRM - ok
22:06:10.0782 0x0e24  [ 7640ACEA41348BFEF34B76E245501261, 9B1067197DBE0E71AD547535FF8B97E30A89521FB84008DF9F57C71408B714BA ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:06:10.0806 0x0e24  Wlansvc - ok
22:06:10.0907 0x0e24  [ 701A9F884A294327E9141D73746EE279, C8A46B8C32F9EAC7848D385473F6B5C4B6DA719A941A75AD5F081757FC07A09D ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
22:06:10.0913 0x0e24  WmiAcpi - ok
22:06:10.0948 0x0e24  [ A279323BEE5FFFAFDA222910BCE92132, 9A61FCDFBB4ECF3ADA153A62E7BF07309FC430DF43FA7A02F2F829E52D4FC65A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:06:10.0963 0x0e24  wmiApSrv - ok
22:06:11.0095 0x0e24  [ ACB2E63D50157E3EA7140F29D9E76A48, BA5F1F9EB162C7E4CE56D0582DE674803633B9BAAB9A3726DC4CB8AF9E98BC5A ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
22:06:11.0165 0x0e24  WMPNetworkSvc - ok
22:06:11.0247 0x0e24  [ 3D3B3B80C12ABE506F56930C46422C28, 9164F603B6BBE4597FDD99545715369FAE97402A2C2E89FD62F8A09629AB31F9 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:06:11.0267 0x0e24  WPCSvc - ok
22:06:11.0285 0x0e24  [ C24844A1D0D9528B19D5BC266B8CD572, 2FABE49F7B93E5B99EA13828C81BBD7202BA813ACEBB192552E2AFD1E6AD67FD ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:06:11.0291 0x0e24  WPDBusEnum - ok
22:06:11.0313 0x0e24  [ 84620AECDCFD2A7A14E6263927D8C0ED, 0FB188B40EA140DC5C7A0AD289613BC3FEF71C220F7852C57650A0889CF99A87 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:06:11.0319 0x0e24  ws2ifsl - ok
22:06:11.0342 0x0e24  [ F97CBB919AF6D0A6643D1A59C15014D1, E765BAF504DE624AE954531711AAFDD98CE9624C3806D7F25D228B53F6BDA6A0 ] wscsvc          C:\Windows\System32\wscsvc.dll
22:06:11.0348 0x0e24  wscsvc - ok
22:06:11.0356 0x0e24  WSearch - ok
22:06:11.0496 0x0e24  [ 9397D21939A25DA1BD0ED8DB5BB3C853, 966203743B4F6442B60404989CF793F4D4461C2C12250A544A8F1133FF409831 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:06:11.0581 0x0e24  wuauserv - ok
22:06:11.0638 0x0e24  [ A2AAFCC8A204736296D937C7C545B53F, AB9C42AA1917E828F84C9D0E7505664937681CEC833600953BB98307F878DB93 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:06:11.0647 0x0e24  WUDFRd - ok
22:06:11.0663 0x0e24  [ DB5BF5AAB72B1B99B5331231D09EBB26, E1E49CA488211F6CAFF00FBF7F1F044155882864069FACEA3DD397AB8EDDD72F ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:06:11.0669 0x0e24  wudfsvc - ok
22:06:11.0704 0x0e24  [ 5A7FF9A18FF6D7E0527FE3ABF9204EF8, 3660379AADB6DB56E54D9C680929CD3882CDE4E6A8BB888FC892110D6B50C627 ] XAudio          C:\Windows\system32\DRIVERS\xaudio.sys
22:06:11.0710 0x0e24  XAudio - ok
22:06:11.0773 0x0e24  [ 28DC5D626E036A75A572556F0A6EB1F6, 9AE635C08B87AD85A552ADE0AF8BA10DC258E0DEFE133A2A74EFCD43B7A38A98 ] XAudioService   C:\Windows\system32\DRIVERS\xaudio.exe
22:06:11.0788 0x0e24  XAudioService - ok
22:06:11.0823 0x0e24  [ 69222091B6285906AFF82E43681CF826, 7D3BED1B60D606B76688B5F8779A72FB4BB5735F59B48B9F69E8C2F73C1C6972 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys
22:06:11.0835 0x0e24  yukonwlh - ok
22:06:12.0012 0x0e24  ================ Scan global ===============================
22:06:12.0069 0x0e24  [ 8CD98A8EC9CADAF4E051CDCAC15C96C4, E2F18E0FFB31FDDF210798EFA0C9C30C04B41B7CAACD93BFC224DE569000C220 ] C:\Windows\system32\basesrv.dll
22:06:12.0130 0x0e24  [ E3F137ADC0A9D7F3A2E4F557272FE6B3, A0F1AD68D8749B7366F7429E3CD5524C1DE6DFAE31B3B790DAB4C71080FED84A ] C:\Windows\system32\winsrv.dll
22:06:12.0166 0x0e24  [ E3F137ADC0A9D7F3A2E4F557272FE6B3, A0F1AD68D8749B7366F7429E3CD5524C1DE6DFAE31B3B790DAB4C71080FED84A ] C:\Windows\system32\winsrv.dll
22:06:12.0216 0x0e24  [ 329CF3C97CE4C19375C8ABCABAE258B0, 193A99EB3151C8C99B05A1BA4A69C39CC95E776CF1D39D7E318254383A4C9C0D ] C:\Windows\system32\services.exe
22:06:12.0230 0x0e24  [ Global ] - ok
22:06:12.0230 0x0e24  ================ Scan MBR ==================================
22:06:12.0250 0x0e24  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
22:06:13.0575 0x0e24  \Device\Harddisk0\DR0 - ok
22:06:13.0576 0x0e24  ================ Scan VBR ==================================
22:06:13.0611 0x0e24  [ 9E16B2B62A1BBE2AB74DE5BA0C1CA934 ] \Device\Harddisk0\DR0\Partition1
22:06:13.0622 0x0e24  \Device\Harddisk0\DR0\Partition1 - ok
22:06:13.0623 0x0e24  Waiting for KSN requests completion. In queue: 322
22:06:14.0623 0x0e24  Waiting for KSN requests completion. In queue: 9
22:06:15.0623 0x0e24  Waiting for KSN requests completion. In queue: 9
22:06:16.0886 0x0e24  AV detected via SS1: AVG 7.5.503, 7.5.503, enabled, outofdate
22:06:16.0886 0x0e24  AV detected via SS1: Microsoft Security Essentials, 4.5.0216.0, enabled, updated
22:06:17.0005 0x0e24  Win FW state via NFP2: enabled
22:06:19.0683 0x0e24  ============================================================
22:06:19.0683 0x0e24  Scan finished
22:06:19.0683 0x0e24  ============================================================
22:06:19.0729 0x1314  Detected object count: 0
22:06:19.0729 0x1314  Actual detected object count: 0

Edited by witchetty, 27 May 2014 - 05:06 PM.


#5 witchetty

witchetty
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:09:08 AM

Posted 27 May 2014 - 05:03 PM

Here is the ADWCleaner logfile report:

 

# AdwCleaner v3.211 - Report created 27/05/2014 at 22:34:11
# Updated 26/05/2014 by Xplode
# Operating System : Windows Vista ™ Home Basic  (32 bits)
# Username : Carl - CARL-PC
# Running from : C:\Users\Carl\Desktop\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
[#] Service Deleted : BackupStack
Service Deleted : ca82e1a5
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\safereweb
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\optimizer pro v3.2
Folder Deleted : C:\Program Files\GreenTree Applications
Folder Deleted : C:\Program Files\MyPC Backup
Folder Deleted : C:\Program Files\Optimizer Pro
Folder Deleted : C:\Program Files\sweetpacks bundle uninstaller
Folder Deleted : C:\Users\Carl\AppData\LoCal\SearchProtect
Folder Deleted : C:\Users\Carl\AppData\Roaming\Optimizer Pro
Folder Deleted : C:\Users\Carl\AppData\Roaming\Search Protection
Folder Deleted : C:\Users\Carl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
Folder Deleted : C:\Users\Carl\Documents\Optimizer Pro
File Deleted : C:\Users\Carl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
File Deleted : C:\Users\Carl\Desktop\MyPC Backup.lnk
File Deleted : C:\Users\Carl\Desktop\Sync Folder.lnk
 
***** [ Shortcuts ] *****
 
Shortcut Disinfected : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileParade bundle uninstaller\FileParade bundle uninstaller.lnk
 
***** [ Registry ] *****
 
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Optimizer Pro]
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Optimizer Pro
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software
Key Deleted : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\Software\Description
Key Deleted : HKLM\Software\SearchProtect
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3A787631-66A2-4634-B928-A37E73B58FB6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Search Protection
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FileParade bundle uninstaller
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FileParade bundle uninstaller
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Optimizer Pro_is1
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Wajam
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~1\searchprotect\searchprotect\bin\spvc32loader.dll
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~1\optimi~1\optpro~2.dll
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v7.0.6000.16982
 
 
-\\ Google Chrome v34.0.1847.131
 
[ File : C:\Users\Carl\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted [Search Provider] : hxxp://uk.ask.com/web?q={searchTerms}
 
*************************
 
AdwCleaner[R0].txt - [4188 octets] - [27/05/2014 22:31:36]
AdwCleaner[S0].txt - [3971 octets] - [27/05/2014 22:34:11]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4031 octets] ##########


#6 witchetty

witchetty
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:09:08 AM

Posted 27 May 2014 - 05:17 PM

Here's the JRT.txt log:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows Vista ™ Home Basic x86
Ran by Carl on 27/05/2014 at 23:10:13.25
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader"
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 27/05/2014 at 23:13:34.69
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#7 witchetty

witchetty
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:09:08 AM

Posted 27 May 2014 - 06:26 PM

And finally the ESET scan:

 

 

C:\AdwCleaner\Quarantine\C\Program Files\Optimizer Pro\OptimizerPro.exe.vir a variant of Win32/SpeedingUpMyPC application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\Optimizer Pro\OptProCrash.dll.vir a variant of Win32/SProtector.D potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\Optimizer Pro\OptProCrashSvc.dll.vir a variant of Win32/SProtector.D potentially unwanted application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files\Optimizer Pro\OptProLauncher.exe.vir a variant of Win32/AdWare.SpeedingUpMyPC.D application cleaned by deleting - quarantined
C:\Users\Carl\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\00\00000003 a variant of Win32/SoftPulse.B potentially unwanted application deleted - quarantined
C:\Users\Carl\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\00\00000004 a variant of Win32/SoftPulse.B potentially unwanted application deleted - quarantined
C:\Users\Carl\AppData\Local\Google\Chrome\User Data\Default\File System\001\t\00\00000000 a variant of Win32/DomaIQ.BF potentially unwanted application deleted - quarantined
C:\Users\Carl\Downloads\Setup (1).exe a variant of Win32/SoftPulse.B potentially unwanted application deleted - quarantined
C:\Users\Carl\Downloads\Setup (2).exe a variant of Win32/SoftPulse.B potentially unwanted application deleted - quarantined
C:\Users\Carl\Downloads\Setup.exe a variant of Win32/SoftPulse.B potentially unwanted application deleted - quarantined


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,240 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:08 AM

Posted 27 May 2014 - 08:01 PM

How is it??
uninstall these in the Control Panel....

Adobe Reader 8 (Version: 8.0.0)
AVG 7.5

Reboot
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 witchetty

witchetty
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:09:08 AM

Posted 28 May 2014 - 04:14 AM

Thanks for your help.

It still redirects me to yahoo spigot thingy page and today it came up with a notice about the colour scheme changing to windows basic or something, I don't know what that's to do with.



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,240 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:08 AM

Posted 28 May 2014 - 01:20 PM

Ok, we need a new topic about a Spigot infection. We need stronger tools to get it out.

Please follow this Preparation Guide, do steps 6,7 and 8 and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users