Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

IE browser hi-jacked by demdex


  • Please log in to reply
12 replies to this topic

#1 BigLou99

BigLou99

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:02:52 PM

Posted 17 June 2014 - 09:02 AM

my home page for IE is foxnews.com - however when IE is started, the address bar shows www.foxnews.com but it is immediately redirected by demdex to a page on the Adobe website.  This does not happen when I use Firefox.

I have already run: Malwarebytes, rkill, avast and hitman - with no luck on fixing this.  I checked the hosts file and it has only the 1 line of localhost that is expected.  Which other tool may find the source of this problem?  Thanks.



BC AdBot (Login to Remove)

 


m

#2 kaz20

kaz20

  • Members
  • 165 posts
  • OFFLINE
  •  
  • Local time:04:52 PM

Posted 17 June 2014 - 09:12 AM

Did you run the scans in safemode? Usually after running the scans you have reset IE if it picked up the redirect virus.



#3 BigLou99

BigLou99
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:02:52 PM

Posted 17 June 2014 - 09:26 AM

I did not run the scans in safe mode or test to see if IE has this problem with the system (Vista) in safe mode. 



#4 wpgwpg

wpgwpg

  • Members
  • 1,149 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:US of A
  • Local time:04:52 PM

Posted 17 June 2014 - 09:32 AM

 As Kaz20 says, run the scans in Safe Mode since some viruses can hide in normal mode.  Also purge the IE cache, and check for add-ons.  Also run MSCONFIG and click the Startup tab (Note: avoid the other tabs!) and see what's being started.  You can uncheck anything there except your antivirus.  Something there might be related to your problem.  Finally you could try doing a System Restore to a date prior to the start of the problem.

 

Good luck.


Everyone with a computer should back his system up to an external hard drive regularly.  :thumbsup:

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:52 PM

Posted 17 June 2014 - 09:57 AM

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 BigLou99

BigLou99
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:02:52 PM

Posted 17 June 2014 - 11:14 AM

here is the result.txt from the MiniToolbox:

 

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by louis (administrator) on 17-06-2014 at 11:04:13
Running from "C:\Users\louis\Downloads"
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1       localhost

========================= IP Configuration: ================================

Intel® 82566DC Gigabit Network Connection = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : louis-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : hsd1.tx.comcast.net.

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : hsd1.tx.comcast.net.
   Description . . . . . . . . . . . : Intel® 82566DC Gigabit Network Connection
   Physical Address. . . . . . . . . : 00-19-D1-5F-62-11
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::4c11:dd66:9c8:8c39%13(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.100(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, June 17, 2014 9:42:04 AM
   Lease Expires . . . . . . . . . . : Wednesday, June 18, 2014 9:42:04 AM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 268442065
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0D-E9-F2-35-00-19-D1-5F-62-11
   DNS Servers . . . . . . . . . . . : 192.168.1.1
                                       75.75.76.76
                                       75.75.75.75
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 02-00-54-55-4E-01
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 10:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.{B661D33D-B3EF-4688-815C-FF7D0B4B134D}
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 14:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : hsd1.tx.comcast.net.
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.1.1

Name:    google.com
Addresses:  2607:f8b0:4000:804::1003
      173.194.115.70
      173.194.115.67
      173.194.115.72
      173.194.115.71
      173.194.115.65
      173.194.115.68
      173.194.115.66
      173.194.115.78
      173.194.115.69
      173.194.115.64
      173.194.115.73



Pinging google.com [173.194.115.73] with 32 bytes of data:

General failure.

Reply from 173.194.115.73: bytes=32 time=18ms TTL=55



Ping statistics for 173.194.115.73:

    Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),

Approximate round trip times in milli-seconds:

    Minimum = 18ms, Maximum = 18ms, Average = 18ms

Server:  UnKnown
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  206.190.36.45
      98.139.183.24
      98.138.253.109



Pinging yahoo.com [98.138.253.109] with 32 bytes of data:

General failure.

Reply from 98.138.253.109: bytes=32 time=64ms TTL=48



Ping statistics for 98.138.253.109:

    Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),

Approximate round trip times in milli-seconds:

    Minimum = 64ms, Maximum = 64ms, Average = 64ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
 13 ...00 19 d1 5f 62 11 ...... Intel® 82566DC Gigabit Network Connection
  1 ........................... Software Loopback Interface 1
  8 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
 14 ...00 00 00 00 00 00 00 e0  isatap.{B661D33D-B3EF-4688-815C-FF7D0B4B134D}
 20 ...00 00 00 00 00 00 00 e0  Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.100     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.100    276
    192.168.1.100  255.255.255.255         On-link     192.168.1.100    276
    192.168.1.255  255.255.255.255         On-link     192.168.1.100    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.100    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.100    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 13    276 fe80::/64                On-link
 13    276 fe80::4c11:dd66:9c8:8c39/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/17/2014 09:47:20 AM) (Source: Automatic LiveUpdate Scheduler) (User: NT AUTHORITY)
Description: Information Level: error

Initialization of the COM subsystem failed. Error code: 0x80004005

Error: (06/17/2014 08:47:01 AM) (Source: Automatic LiveUpdate Scheduler) (User: NT AUTHORITY)
Description: Information Level: error

Initialization of the COM subsystem failed. Error code: 0x80004005

Error: (06/17/2014 07:51:01 AM) (Source: Automatic LiveUpdate Scheduler) (User: NT AUTHORITY)
Description: Information Level: error

Initialization of the COM subsystem failed. Error code: 0x80004005

Error: (06/17/2014 04:07:18 AM) (Source: APC UPS Service) (User: NT AUTHORITY)
Description: PowerChute not communicating with the battery backup.

Error: (06/17/2014 04:06:23 AM) (Source: Automatic LiveUpdate Scheduler) (User: NT AUTHORITY)
Description: Information Level: error

Initialization of the COM subsystem failed. Error code: 0x80004005

Error: (06/17/2014 02:34:15 AM) (Source: Automatic LiveUpdate Scheduler) (User: NT AUTHORITY)
Description: Information Level: error

Initialization of the COM subsystem failed. Error code: 0x80004005

Error: (06/17/2014 02:29:12 AM) (Source: Automatic LiveUpdate Scheduler) (User: NT AUTHORITY)
Description: Information Level: error

Initialization of the COM subsystem failed. Error code: 0x80004005

Error: (06/17/2014 02:24:12 AM) (Source: Automatic LiveUpdate Scheduler) (User: NT AUTHORITY)
Description: Information Level: error

Initialization of the COM subsystem failed. Error code: 0x80004005

Error: (06/17/2014 02:19:11 AM) (Source: Automatic LiveUpdate Scheduler) (User: NT AUTHORITY)
Description: Information Level: error

Initialization of the COM subsystem failed. Error code: 0x80004005

Error: (06/17/2014 02:14:10 AM) (Source: Automatic LiveUpdate Scheduler) (User: NT AUTHORITY)
Description: Information Level: error

Initialization of the COM subsystem failed. Error code: 0x80004005


System errors:
=============
Error: (06/17/2014 09:42:40 AM) (Source: Service Control Manager) (User: )
Description: NVIDIA Display Driver Servicenvlddmkm%%1058

Error: (06/17/2014 08:34:48 AM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.1.101 for the Network Card with network address 0019D15F6211 has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).

Error: (06/17/2014 00:30:38 AM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (06/16/2014 11:22:44 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (06/16/2014 11:20:13 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (06/16/2014 05:21:33 PM) (Source: Service Control Manager) (User: )
Description: HitmanPro 3.7 Crusader (Boot)0 (0x0)

Error: (06/16/2014 05:21:04 PM) (Source: Service Control Manager) (User: )
Description: NVIDIA Display Driver Servicenvlddmkm%%1058

Error: (06/16/2014 05:20:51 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (06/16/2014 05:16:30 PM) (Source: Service Control Manager) (User: )
Description: ScRegSetValueExWDeleteFlag%%5

Error: (06/16/2014 03:29:10 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)


Microsoft Office Sessions:
=========================
Error: (04/03/2013 10:53:59 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 29 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (01/12/2011 07:27:40 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6541.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 30 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (09/07/2010 05:47:52 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 2, Application Name: Microsoft Office Access, Application Version: 12.0.6535.5005, Microsoft Office Version: 12.0.6425.1000. This session lasted 9988 seconds with 4140 seconds of active time.  This session ended with a crash.

Error: (09/07/2010 03:00:59 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 2, Application Name: Microsoft Office Access, Application Version: 12.0.6535.5005, Microsoft Office Version: 12.0.6425.1000. This session lasted 4253 seconds with 2940 seconds of active time.  This session ended with a crash.

Error: (09/07/2010 11:26:12 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 2, Application Name: Microsoft Office Access, Application Version: 12.0.6535.5005, Microsoft Office Version: 12.0.6425.1000. This session lasted 1594 seconds with 1020 seconds of active time.  This session ended with a crash.

Error: (09/07/2010 10:59:31 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 2, Application Name: Microsoft Office Access, Application Version: 12.0.6535.5005, Microsoft Office Version: 12.0.6425.1000. This session lasted 9624 seconds with 5280 seconds of active time.  This session ended with a crash.

Error: (08/26/2010 10:30:31 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 2, Application Name: Microsoft Office Access, Application Version: 12.0.6535.5005, Microsoft Office Version: 12.0.6425.1000. This session lasted 2143 seconds with 1620 seconds of active time.  This session ended with a crash.


CodeIntegrity Errors:
===================================
  Date: 2014-06-17 09:43:27.689
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\mwac.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-06-17 09:23:27.929
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\louis\AppData\Local\Temp\tmp4ECC.tmp because the set of per-page image hashes could not be found on the system.

  Date: 2014-06-17 09:23:27.365
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\louis\AppData\Local\Temp\tmp4ECC.tmp because the set of per-page image hashes could not be found on the system.

  Date: 2014-06-17 09:23:26.784
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\louis\AppData\Local\Temp\tmp4ECC.tmp because the set of per-page image hashes could not be found on the system.

  Date: 2014-06-17 09:23:26.203
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\louis\AppData\Local\Temp\tmp4ECC.tmp because the set of per-page image hashes could not be found on the system.

  Date: 2014-06-17 09:23:08.999
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\louis\AppData\Local\Temp\tmp4C2.tmp because the set of per-page image hashes could not be found on the system.

  Date: 2014-06-17 09:23:08.433
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\louis\AppData\Local\Temp\tmp4C2.tmp because the set of per-page image hashes could not be found on the system.

  Date: 2014-06-17 09:23:07.872
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\louis\AppData\Local\Temp\tmp4C2.tmp because the set of per-page image hashes could not be found on the system.

  Date: 2014-06-17 09:23:07.285
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Users\louis\AppData\Local\Temp\tmp4C2.tmp because the set of per-page image hashes could not be found on the system.

  Date: 2014-06-16 18:00:50.479
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\SYMEVENT.SYS because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
3ivx MPEG-4 5.0.3 (remove only) (Version: 5.0.3)
AbsoluteTelnet Version 9.53 (Version: 9.53)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 13 Plugin (Version: 13.0.0.214)
Adobe Flash Player 14 ActiveX (Version: 14.0.0.125)
Adobe Media Player (Version: 1.5)
Adobe Reader X (10.1.10) (Version: 10.1.10)
Amyuni PDF Creator
Apache Tomcat 7.0.27
APC PowerChute Personal Edition (Version: 2.1)
Apple Application Support (Version: 3.0.3)
Apple Mobile Device Support (Version: 7.1.1.3)
Apple Software Update (Version: 2.1.3.127)
AutoIt v3.2.10.0
BitTorrent (Version: 7.9.1.31141)
BlueGriffon version 1.6.1 (Version: 1.6.1)
Bonjour (Version: 3.0.0.10)
Btrieve Classes for .NET 2.0 (Version: 2.0.0)
BufferChm (Version: 130.0.331.000)
Bytescout PDF SDK (Version: 1.16.0.88)
CanoScan Toolbox Ver4.1
Carbonite (Version: 5.5.0 build 3621  (Oct-10-2013))
Cascade
Chilkat Mail ActiveX (Version: 7.6.1)
Chilkat.NET-v2.0-Framework (Version: 8.3.0)
Cisco WebEx Meetings
Code Advisor for Visual Basic 6 - 1.1 (Version: 1.1.0)
Color Rendering Table Demo Application
com4j WebStart demo
Comcast Universal Installer v1.2 (Version: 30)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Critical Update for Microsoft Visual Studio 2008 Professional Edition - ENU (KB2938806) (Version: 1)
Critical Update for Microsoft Visual Studio 2010 Ultimate - ENU (KB2938807) (Version: 1)
Crystal Reports Basic for Visual Studio 2008 (Version: 10.5.0.0)
Crystal Reports for Visual Studio (Version: 12.51.0.240)
ddoc Print and Preview 1.9e
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell System Customization Wizard (Version: 1.00.0000)
DellSupport (Version: 6.0.3030)
Destinations (Version: 130.0.0.0)
DocProc (Version: 13.0.0.0)
ESET Online Scanner v3
FlipShare (Version: 5.12.3.0)
Free AVI Video Converter version 5.0.28.827 (Version: 5.0.28.827)
FreeKapture 2.00 - Freeware
Games, Music, & Photos Launcher (Version: 1.00.0000)
GDR 1617 for SQL Server 2008 R2 (KB2494088) (Version: 10.50.1617.0)
GlassFish Server Open Source Edition 3.1.2.2
GlassPaneDemo
Google Chrome (Version: 35.0.1916.153)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.5111.1712)
Google Update Helper (Version: 1.3.24.7)
GoToMeeting 4.8.0.723 (Version: 4.8.0.723)
HiJackThis (Version: 1.0.0)
HijackThis 1.99.1 (Version: 1.99.1)
HitmanPro 3.7 (Version: 3.7.9.216)
HP Imaging Device Functions 13.0 (Version: 13.0)
hp LaserJet 1000
HP Photosmart Essential 3.5 (Version: 3.5)
HP Scanjet G4000 Series (Version: 13.0)
HP Update (Version: 4.000.011.006)
hpg4000 (Version: 13.0.0.0)
HPPhotosmartEssential (Version: 2.04.0000)
Intel® Matrix Storage Manager
Intel® Viiv™ Software (Version: 1.6.429.0)
ISO Recorder (Version: 3.0.0)
iTunes (Version: 11.2.2.3)
Java 7 Update 51 (Version: 7.0.510)
Java Auto Updater (Version: 2.1.9.8)
Java DB 10.4.1.3 (Version: 10.4.1.3)
Java™ SE Development Kit 6 Update 11 (Version: 1.6.0.110)
jetMailMonitor (Version: 6.0)
join.me (Version: 1.14.0.138)
Klik! Windows Forms Library v1 (Version: 1.0.1)
LiveUpdate 3.2 (Symantec Corporation) (Version: 3.2.0.68)
LiveUpdate Notice (Symantec Corporation) (Version: 1.4.5)
Magic DVD Copier V7.1.2
Malwarebytes Anti-Malware version 2.0.2.1012 (Version: 2.0.2.1012)
Microsoft .NET Compact Framework 1.0 SP3 Developer (Version: 1.0.4292)
Microsoft .NET Compact Framework 2.0 SP2 (Version: 2.0.7045)
Microsoft .NET Compact Framework 3.5 (Version: 3.5.7283)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Access 2000 SR-1 (Version: 9.00.3821)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft ASP.NET 2.0 AJAX Extensions 1.0 (Version: 1.0.61025)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (Version: 2.0.50217.0)
Microsoft ASP.NET MVC 2 (Version: 2.0.50217.0)
Microsoft Device Emulator version 3.0 - ENU (Version: 9.0.21022)
Microsoft Document Explorer 2005
Microsoft Document Explorer 2005 (Version: 8.0.50727.42)
Microsoft Document Explorer 2008
Microsoft Document Explorer 2008 (Version: 9.0.21022)
Microsoft F# Runtime for Silverlight 4 (Version: 2.0.0.0)
Microsoft Help Viewer 1.0 (Version: 1.0.30319)
Microsoft IntelliPoint 6.3 (Version: 6.30.191.0)
Microsoft Office 2003 Web Components (Version: 12.0.6213.1000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Office Project MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Project Professional 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3)
Microsoft Office Visual Web Developer 2007 (Version: 12.0.4518.1066)
Microsoft Office Visual Web Developer MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word Viewer 2003 (Version: 11.0.8173.0)
Microsoft PrintForm Component 1.0 (Version: 1.0.0)
Microsoft Project Professional 2010 (Version: 14.0.7015.1000)
Microsoft Report Viewer Redistributable 2008 (KB971119) (Version: 9.0.30731)
Microsoft Report Viewer Redistributable 2008 SP1
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs (Version: 12.0.4518.1014)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft Silverlight 4 SDK (Version: 4.0.50826.0)
Microsoft Silverlight Tools for Visual Studio 2010 (Version: 10.0.30319.400)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (SQLEXPRESS) (Version: 9.3.4035.00)
Microsoft SQL Server 2005 Tools Express Edition (Version: 9.4.5000.00)
Microsoft SQL Server 2008 R2
Microsoft SQL Server 2008 R2 Data-Tier Application Framework (Version: 10.50.1447.4)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (Version: 10.50.1447.4)
Microsoft SQL Server 2008 R2 Native Client (Version: 10.50.1617.0)
Microsoft SQL Server 2008 R2 Policies (Version: 10.50.1600.1)
Microsoft SQL Server 2008 R2 RsFx Driver (Version: 10.50.1600.1)
Microsoft SQL Server 2008 R2 Setup (English) (Version: 10.50.1617.0)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (Version: 10.50.1447.4)
Microsoft SQL Server 2008 Setup Support Files  (Version: 10.1.2731.0)
Microsoft SQL Server 2008R2 Product (no databases) RTM Samples (x86) (Version: 1.0.0)
Microsoft SQL Server Browser (Version: 10.50.1600.1)
Microsoft SQL Server Compact 3.5 for Devices ENU (Version: 3.5.5386.0)
Microsoft SQL Server Compact 3.5 SP1 Design Tools English (Version: 3.5.5692.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 Query Tools ENU (Version: 3.5.8080.0)
Microsoft SQL Server Database Publishing Wizard 1.3 (Version: 10.0.1600.22)
Microsoft SQL Server Database Publishing Wizard 1.4 (Version: 10.1.2512.8)
Microsoft SQL Server Migration Assistant 2008 for Access (Version: 1.0)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 10.50.1600.1)
Microsoft Sync Framework SDK v1.0 SP1 (Version: 1.0.3010.0)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x86) (Version: 2.0.3010.0)
Microsoft Team Foundation Server 2010 Object Model - ENU (Version: 10.0.40219)
Microsoft Visual Basic 6.0 Professional Edition
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (Version: 9.0.30729.4974)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual J# 2.0 Redistributable Package
Microsoft Visual J# 2.0 Redistributable Package (Version: 2.0.50727)
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60940.0)
Microsoft Visual Studio 2008 Professional Edition - ENU
Microsoft Visual Studio 2008 Professional Edition - ENU (Version: 9.0.30729)
Microsoft Visual Studio 2008 Professional Edition - ENU Service Pack 1 (KB945140) (Version: 1)
Microsoft Visual Studio 2008 Shell (integrated mode) - ENU (Version: 9.0.30729)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (Version: 10.0.30319)
Microsoft Visual Studio 2010 Performance Collection Tools SP1 - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Service Pack 1 (Version: 10.0.40219)
Microsoft Visual Studio 2010 SharePoint Developer Tools (Version: 10.0.30319)
Microsoft Visual Studio 2010 Ultimate - ENU (Version: 10.0.30319)
Microsoft Visual Studio 2010 Ultimate - ENU (Version: 10.0.40219)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (Version: 9.0.35191)
Microsoft Visual Studio Web Authoring Component (Version: 12.0.4518.1066)
Microsoft Web Publishing Wizard 1.53
Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools - enu (Version: 3.5.21022)
Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense (Version: 6.1.5288.17011)
Microsoft Windows SDK for Visual Studio 2008 SP1 Tools (Version: 6.1.5294.17011)
MilitaryGame App
Mirth Connect 2.0.1.5164.b404 (Version: 2.0.1.5164.b404)
Mirth Connect Administrator 2.0.1.5164
Mozilla Firefox 30.0 (x86 en-US) (Version: 30.0)
Mozilla Maintenance Service (Version: 29.0.1)
MSDN Library for Visual Studio 2005 (Version: 8.0.50727.42)
MSDN Library for Visual Studio 2008 - ENU (Version: 9.0)
MSDN Library for Visual Studio 2008 - ENU (Version: 9.0.21022)
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyDefrag v4.3.1 (Version: 4.0.0.0)
MySQL Connector J (Version: 5.1.21.0)
MySQL Connector Net 6.2.2 (Version: 6.2.2)
MySQL Server 5.0 (Version: 5.0.51b)
Nav Tools 2.0 (Version: 2.0)
NetBeans IDE 7.2.1 (Version: 7.2.1)
Norton Internet Security (Version: 21.3.0.12)
Notepad++ (Version: 5.9.3)
NVIDIA Drivers (Version: 1.3)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
OpenOffice.org Connector
PDFCreator (Version: 0.9.6)
PDFill PDF Editor with FREE Writer and FREE Tools (Version: 8.0)
PDFViewer OCX
Pervasive System Analyzer
Pervasive.SQL 9 SP2 Workgroup for Windows (9.5) (Version: 9.50.077.002)
PSQL Provider for ADO.NET 2.2
Quest Software Toad for MySQL Freeware 3.1 (Version: 3.1.0)
Quest Software Toad for MySQL Freeware 4.1 (Version: 4.1.0.220)
Quest Software Toad for MySQL Freeware 7.0 (Version: 7.0.0.2038)
Quest Software Toad for SQL Server Freeware 4.6 (Version: 4.6.0.303)
Quest Software Toad for SQL Server Freeware 5.0 (Version: 5.0.2.612)
QuickBooks SDK 8.0 (Version: 8.0.1.104)
QuickTime 7 (Version: 7.75.80.95)
ReSize .NET 4.1 (Version: ReSize .NET 4.1.0.1)
Retrospect 7.5 (Version: 7.50.387)
SAMSUNG USB Driver for Mobile Phones (Version: 1.4.8.0)
Scan (Version: 13.0.0.0)
Seagate Manager Installer (Version: 2.01.0600)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
SigmaTel Audio (Version: 5.10.5102.0)
SnagIt 8 (Version: 8.0.2)
Softgroup .Net Forms Resize 4.0
Sonic Activation Module (Version: 1.0)
SQL Server 2008 R2 BI Development Studio (Version: 10.50.1600.1)
SQL Server 2008 R2 Common Files (Version: 10.50.1600.1)
SQL Server 2008 R2 Database Engine Services (Version: 10.50.1600.1)
SQL Server 2008 R2 Database Engine Shared (Version: 10.50.1600.1)
SQL Server 2008 R2 Full text search (Version: 10.50.1600.1)
SQL Server 2008 R2 Management Studio (Version: 10.50.1600.1)
SQL Server 2008 R2 Reporting Services (Version: 10.50.1600.1)
Sql Server Customer Experience Improvement Program (Version: 10.50.1600.1)
SQL Server System CLR Types (Version: 10.0.1600.22)
SwingSet2 App
Symantec Technical Support Web Controls (Version: 3.5.3)
TX Text Control 10.1
Uniblue DriverScanner 2009
Uniblue DriverScanner 2009 (Version: 2.0.0.1)
Uniblue RegistryBooster 2009
Uniblue RegistryBooster 2009 (Version: 3.0)
Uniblue System Tweaker
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office 2007 System (KB2539530)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Microsoft Visual Studio Web Authoring Component (KB945140)
User's Guides
VC Runtimes MSI (Version: 9.0.21022)
ViewSonic Monitor Drivers
ViewSonic Windows Vista Signed Files
Visual C++ 2008 IA64 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 IA64 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual C++ 2008 x64 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x64 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual Color Picker 2.6
Visual Studio 2005 Tools for Office Second Edition Runtime
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (Version: 4.0.8080.0)
Visual Studio Tools for the Office system 3.0 Runtime
Visual Studio Tools for the Office system 3.0 Runtime (Version: 9.0.30729)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (Version: 1)
VLButtonBar 3.1 (Build 037) (Version: 3.1.037)
VLC media player 1.0.3 (Version: 1.0.3)
WCF RIA Services V1.0 SP1 (Version: 4.1.60114.0)
Web Deployment Tool (Version: 1.1.0618)
WebEx Support Manager for Internet Explorer (Version: 6.5.4917)
WebReg (Version: 130.0.132.017)
Windows Mobile 5.0 SDK R2 for Smartphone (Version: 5.00.1700.5.14343.06)
WinZip 14.5 (Version: 14.5.9095)
WinZip System Utilities Suite (Version: 2.0.648.13214)
Wireless-G Internet Home Monitoring Camera (Version: 1.00.0001)
Xvid Video Codec (Version: 1.3.2)
Yahoo! SiteBuilder (Version: 2.4.0)
Yugma (Version: 4.1.3.2)

========================= Memory info: ===================================

Percentage of memory in use: 53%
Total physical RAM: 3069.03 MB
Available physical RAM: 1442.31 MB
Total Pagefile: 7608.29 MB
Available Pagefile: 6091.13 MB
Total Virtual: 2047.88 MB
Available Virtual: 1948.72 MB

========================= Partitions: =====================================

2 Drive c: (OS) (Fixed) (Total:288.04 GB) (Free:65.89 GB) NTFS
3 Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:5.02 GB) NTFS

========================= Users: ========================================

User accounts for \\LOUIS-PC

Administrator            Guest                    IUSR_NMPR                
louis                    


**** End of log ****
 



#7 BigLou99

BigLou99
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:02:52 PM

Posted 17 June 2014 - 11:22 AM

here is tdss report:

 

11:14:50.0430 0x0200  TDSS rootkit removing tool 3.0.0.39 Jun  5 2014 20:35:54
11:14:58.0495 0x0200  ============================================================
11:14:58.0495 0x0200  Current date / time: 2014/06/17 11:14:58.0495
11:14:58.0495 0x0200  SystemInfo:
11:14:58.0495 0x0200  
11:14:58.0495 0x0200  OS Version: 6.0.6002 ServicePack: 2.0
11:14:58.0495 0x0200  Product type: Workstation
11:14:58.0495 0x0200  ComputerName: LOUIS-PC
11:14:58.0495 0x0200  UserName: louis
11:14:58.0495 0x0200  Windows directory: C:\Windows
11:14:58.0495 0x0200  System windows directory: C:\Windows
11:14:58.0495 0x0200  Processor architecture: Intel x86
11:14:58.0495 0x0200  Number of processors: 2
11:14:58.0495 0x0200  Page size: 0x1000
11:14:58.0495 0x0200  Boot type: Normal boot
11:14:58.0495 0x0200  ============================================================
11:14:58.0932 0x0200  KLMD registered as C:\Windows\system32\drivers\49603406.sys
11:14:59.0603 0x0200  System UUID: {DE59F7E8-E04E-17E9-AB0F-31361BE2E8EB}
11:15:01.0413 0x0200  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
11:15:01.0413 0x0200  ============================================================
11:15:01.0413 0x0200  \Device\Harddisk0\DR0:
11:15:01.0413 0x0200  MBR partitions:
11:15:01.0413 0x0200  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x18000, BlocksNum 0x1400000
11:15:01.0413 0x0200  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1418000, BlocksNum 0x24016000
11:15:01.0413 0x0200  ============================================================
11:15:01.0459 0x0200  C: <-> \Device\Harddisk0\DR0\Partition2
11:15:01.0506 0x0200  D: <-> \Device\Harddisk0\DR0\Partition1
11:15:01.0506 0x0200  ============================================================
11:15:01.0506 0x0200  Initialize success
11:15:01.0506 0x0200  ============================================================
11:15:18.0510 0x14f8  ============================================================
11:15:18.0510 0x14f8  Scan started
11:15:18.0510 0x14f8  Mode: Manual;
11:15:18.0510 0x14f8  ============================================================
11:15:18.0510 0x14f8  KSN ping started
11:15:24.0033 0x14f8  KSN ping finished: true
11:15:24.0469 0x14f8  ================ Scan system memory ========================
11:15:24.0469 0x14f8  System memory - ok
11:15:24.0469 0x14f8  ================ Scan services =============================
11:15:24.0781 0x14f8  [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI            C:\Windows\system32\drivers\acpi.sys
11:15:24.0781 0x14f8  ACPI - ok
11:15:24.0984 0x14f8  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
11:15:24.0984 0x14f8  AdobeARMservice - ok
11:15:25.0093 0x14f8  [ B5D8DE922237CEDDC7992297654A4BE4, 88EF0B5EBFB383C9069A29AEA8D76EDBE1E70DD6F7C18970EE01ECAE9F408B38 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:15:25.0109 0x14f8  AdobeFlashPlayerUpdateSvc - ok
11:15:25.0187 0x14f8  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
11:15:25.0218 0x14f8  adp94xx - ok
11:15:25.0249 0x14f8  [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
11:15:25.0265 0x14f8  adpahci - ok
11:15:25.0312 0x14f8  [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
11:15:25.0312 0x14f8  adpu160m - ok
11:15:25.0343 0x14f8  [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
11:15:25.0359 0x14f8  adpu320 - ok
11:15:25.0421 0x14f8  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
11:15:25.0421 0x14f8  AeLookupSvc - ok
11:15:25.0499 0x14f8  [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD             C:\Windows\system32\drivers\afd.sys
11:15:25.0515 0x14f8  AFD - ok
11:15:25.0546 0x14f8  [ 8B10CE1C1F9F1D47E4DEB1A547A00CD4, 2E89838BD068314F4BE59753486E5D666FE2A3DD0A616E00EED4E0F83DB87401 ] agp440          C:\Windows\system32\drivers\agp440.sys
11:15:25.0546 0x14f8  agp440 - ok
11:15:25.0577 0x14f8  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
11:15:25.0593 0x14f8  aic78xx - ok
11:15:25.0702 0x14f8  [ 80F4A5260FC8F95185313A1D229239CE, 61C0EAE63C3D200C98D961E97DE4446FB96E5FE2D2686198B8B856B2698B2364 ] AlertService    C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
11:15:25.0702 0x14f8  AlertService - ok
11:15:25.0749 0x14f8  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe
11:15:25.0749 0x14f8  ALG - ok
11:15:25.0780 0x14f8  [ 5C42A992E68724D2CD3DDB4FC3B0409F, A0E91958C2BC89B70D28FF8A978DF867CD1491205A0E8AFA03B8DA04F84B9C30 ] aliide          C:\Windows\system32\drivers\aliide.sys
11:15:25.0780 0x14f8  aliide - ok
11:15:25.0858 0x14f8  [ AEFEEE2E852F2774A4491C8EFA6C3B6E, D8EFAD041588689B083447507CA5F36ADCB13B78110667AF5308E44EFE76CA5D ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:15:25.0873 0x14f8  AMD External Events Utility - ok
11:15:25.0889 0x14f8  [ 848F27E5B27C1C253F6CEFDC1A5D8F21, 0FE955D82CE68A1FC5DCA33626179005B90803821005A370EB36352817433089 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
11:15:25.0889 0x14f8  amdagp - ok
11:15:25.0920 0x14f8  [ 849DFACDDE533DA5D1810F0CAF84EB19, 65A74E500B610207CE5F4056A234B40982273E6A93808DCDB5069559F6C4236B ] amdide          C:\Windows\system32\drivers\amdide.sys
11:15:25.0920 0x14f8  amdide - ok
11:15:25.0951 0x14f8  [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
11:15:25.0967 0x14f8  AmdK7 - ok
11:15:25.0998 0x14f8  [ 0CA0071DA4315B00FC1328CA86B425DA, 4F816FA2197166A83A266084F9D5ED68876D0521D378F90F1314DD53C6FB8814 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
11:15:25.0998 0x14f8  AmdK8 - ok
11:15:26.0404 0x14f8  [ D05CF4523E0C04EF82454ABFD84FDC1D, 49716B95D6CD973ADBC02470BEB52DA93DFF43BBA9FCDAC8939A7AB567F0813F ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
11:15:26.0669 0x14f8  amdkmdag - ok
11:15:26.0747 0x14f8  [ 92DC2E0AE49148F83B24D89C737B0C97, 6251D002ADF0EC964C63F0E1481CCD4A9DA9CD1E1928907D5D5D21AAAF7DA701 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
11:15:26.0763 0x14f8  amdkmdap - ok
11:15:26.0872 0x14f8  [ CDEC27ACF70863F2E19D9D93B66A1FEB, D2A62E5AA91996DCCD3B2D3C8224FF5E847E697AAE8278611716E4E6DB56C004 ] APC UPS Service C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
11:15:26.0887 0x14f8  APC UPS Service - ok
11:15:26.0950 0x14f8  [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo         C:\Windows\System32\appinfo.dll
11:15:26.0965 0x14f8  Appinfo - ok
11:15:27.0059 0x14f8  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:15:27.0059 0x14f8  Apple Mobile Device - ok
11:15:27.0106 0x14f8  [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc             C:\Windows\system32\drivers\arc.sys
11:15:27.0106 0x14f8  arc - ok
11:15:27.0168 0x14f8  [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
11:15:27.0184 0x14f8  arcsas - ok
11:15:27.0340 0x14f8  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
11:15:27.0340 0x14f8  aspnet_state - ok
11:15:27.0387 0x14f8  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
11:15:27.0402 0x14f8  AsyncMac - ok
11:15:27.0418 0x14f8  [ 9E7E85EC61D1C9C3171CC08427108863, 7B5531E7DC30129171813237196F7F74978734C7D4617F137F737272FDADCFA1 ] atapi           C:\Windows\system32\drivers\atapi.sys
11:15:27.0418 0x14f8  atapi - ok
11:15:27.0480 0x14f8  [ 40767B965A8D575D794F1F95E2E017E9, 3B050B16A1ADE3FF93E0882012A2A9171010F52BC2CCFC1E254F8CD5DF5122F2 ] atashost        C:\Windows\system32\atashost.exe
11:15:27.0480 0x14f8  atashost - ok
11:15:27.0574 0x14f8  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:15:27.0589 0x14f8  AudioEndpointBuilder - ok
11:15:27.0605 0x14f8  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
11:15:27.0621 0x14f8  Audiosrv - ok
11:15:27.0761 0x14f8  [ B5D974C1FD078A68C7536C561B031D39, A8B14474BC346E869DB8C29772CAED833596B9D4BCDDE9A9D4881FD5F78F8F1E ] Automatic LiveUpdate Scheduler C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
11:15:27.0777 0x14f8  Automatic LiveUpdate Scheduler - ok
11:15:27.0855 0x14f8  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys
11:15:27.0855 0x14f8  Beep - ok
11:15:27.0917 0x14f8  [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE             C:\Windows\System32\bfe.dll
11:15:27.0933 0x14f8  BFE - ok
11:15:28.0182 0x14f8  [ 5A55D8D9340A00B3BD2CC3413B4CB0C0, 438BB95072EC14AD597CFEF040CA7FDE8D46E4AAEE9145AC1014522F1842F713 ] BHDrvx86        C:\Program Files\Norton Internet Security\NortonData\21.1.0.18\Definitions\BASHDefs\20140606.001\BHDrvx86.sys
11:15:28.0229 0x14f8  BHDrvx86 - ok
11:15:28.0323 0x14f8  [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS            C:\Windows\System32\qmgr.dll
11:15:28.0354 0x14f8  BITS - ok
11:15:28.0354 0x14f8  blbdrive - ok
11:15:28.0463 0x14f8  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:15:28.0479 0x14f8  Bonjour Service - ok
11:15:28.0525 0x14f8  [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:15:28.0525 0x14f8  bowser - ok
11:15:28.0588 0x14f8  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
11:15:28.0588 0x14f8  BrFiltLo - ok
11:15:28.0603 0x14f8  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
11:15:28.0603 0x14f8  BrFiltUp - ok
11:15:28.0666 0x14f8  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll
11:15:28.0666 0x14f8  Browser - ok
11:15:28.0681 0x14f8  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
11:15:28.0697 0x14f8  Brserid - ok
11:15:28.0713 0x14f8  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
11:15:28.0713 0x14f8  BrSerWdm - ok
11:15:28.0728 0x14f8  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
11:15:28.0728 0x14f8  BrUsbMdm - ok
11:15:28.0744 0x14f8  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
11:15:28.0744 0x14f8  BrUsbSer - ok
11:15:28.0775 0x14f8  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
11:15:28.0775 0x14f8  BTHMODEM - ok
11:15:29.0118 0x14f8  [ EB9FA4E1EAB23D8CC0753CFED4FFDDC3, F11BCAE20534FDD606CD7A28E09A940A6FFAF6B11290469D88D9CB897A51F896 ] CarboniteService C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
11:15:29.0305 0x14f8  CarboniteService - ok
11:15:29.0415 0x14f8  [ 56C2811FD0D7B727808A69407B5BFAE0, 5F84A29A9E6D8F566F95399F3B41A82DD128EA69678BBBCF75AD914DE70D9A74 ] ccSet_NIS       C:\Windows\system32\drivers\NIS\1503000.00C\ccSetx86.sys
11:15:29.0430 0x14f8  ccSet_NIS - ok
11:15:29.0493 0x14f8  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:15:29.0493 0x14f8  cdfs - ok
11:15:29.0539 0x14f8  [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
11:15:29.0539 0x14f8  cdrom - ok
11:15:29.0617 0x14f8  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc     C:\Windows\System32\certprop.dll
11:15:29.0617 0x14f8  CertPropSvc - ok
11:15:29.0664 0x14f8  [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass        C:\Windows\system32\drivers\circlass.sys
11:15:29.0680 0x14f8  circlass - ok
11:15:29.0727 0x14f8  [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS            C:\Windows\system32\CLFS.sys
11:15:29.0742 0x14f8  CLFS - ok
11:15:29.0820 0x14f8  [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:15:29.0898 0x14f8  clr_optimization_v2.0.50727_32 - ok
11:15:29.0929 0x14f8  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:15:29.0976 0x14f8  clr_optimization_v4.0.30319_32 - ok
11:15:30.0023 0x14f8  [ DE11A06E187756ECB86CFA82DAC40FF7, 7CED3CDF399BA9254E513D78B3ADE32C64119EB12504A7966D5F8713A8ABE2C2 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
11:15:30.0023 0x14f8  cmdide - ok
11:15:30.0070 0x14f8  [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
11:15:30.0085 0x14f8  Compbatt - ok
11:15:30.0101 0x14f8  COMSysApp - ok
11:15:30.0163 0x14f8  [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
11:15:30.0179 0x14f8  crcdisk - ok
11:15:30.0210 0x14f8  [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
11:15:30.0210 0x14f8  Crusoe - ok
11:15:30.0288 0x14f8  [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:15:30.0304 0x14f8  CryptSvc - ok
11:15:30.0553 0x14f8  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:15:30.0616 0x14f8  DcomLaunch - ok
11:15:30.0663 0x14f8  [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
11:15:30.0678 0x14f8  DfsC - ok
11:15:31.0099 0x14f8  [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR            C:\Windows\system32\DFSR.exe
11:15:31.0177 0x14f8  DFSR - ok
11:15:31.0209 0x14f8  dgderdrv - ok
11:15:31.0255 0x14f8  [ D8522960163FA593694E441194A9A574, 719627E23858E0A73A5E9C03561A95C2004BD2351B1393AD37596CAEFD62BE30 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
11:15:31.0271 0x14f8  dg_ssudbus - ok
11:15:31.0365 0x14f8  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
11:15:31.0380 0x14f8  Dhcp - ok
11:15:31.0443 0x14f8  [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk            C:\Windows\system32\drivers\disk.sys
11:15:31.0443 0x14f8  disk - ok
11:15:31.0505 0x14f8  [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:15:31.0521 0x14f8  Dnscache - ok
11:15:31.0599 0x14f8  [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc         C:\Windows\System32\dot3svc.dll
11:15:31.0614 0x14f8  dot3svc - ok
11:15:31.0661 0x14f8  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll
11:15:31.0661 0x14f8  DPS - ok
11:15:31.0911 0x14f8  [ A0B584C33F55545D56F9E71FB4E203AC, 7EB4FA1B152BAB9968268E98B1977DE06412B92730B00AC41F73C70EBCBC27AD ] DQLWinService   C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
11:15:31.0911 0x14f8  DQLWinService - ok
11:15:31.0989 0x14f8  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
11:15:31.0989 0x14f8  drmkaud - ok
11:15:32.0098 0x14f8  [ 01D5B95D0A12A916BBDC258629113258, 240E635CE48629729CF43F298C89DB959EB507436FE9B8D3EA5BC79E8CB99264 ] DSBrokerService C:\Program Files\DellSupport\brkrsvc.exe
11:15:32.0113 0x14f8  DSBrokerService - ok
11:15:32.0191 0x14f8  [ 413F2D5F9D802688242C23B38F767ECB, 6D5B6B8FC6E8E45555C444D3E881D3E44DE4C6F2602ADBB4D0E8E9F834089827 ] DSproct         C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
11:15:32.0191 0x14f8  DSproct - ok
11:15:32.0207 0x14f8  [ 64FA28C15DD71A80BEF3527E1EF07DF6, 0E165303E7D6D2391E150910EBF5ABD83D171ABB463FE5FACB1081FA6D9A47B8 ] dsunidrv        C:\Program Files\DellSupport\Drivers\dsunidrv.sys
11:15:32.0207 0x14f8  dsunidrv - ok
11:15:32.0285 0x14f8  [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
11:15:32.0316 0x14f8  DXGKrnl - ok
11:15:32.0394 0x14f8  [ 908ED85B7806E8AF3AF5E9B74F7809D4, 9A763D247035578A946094D2C1CE8204E6EDFFD7237C7BF2058B5F4ECC0306E0 ] e1express       C:\Windows\system32\DRIVERS\e1e6032.sys
11:15:32.0394 0x14f8  e1express - ok
11:15:32.0457 0x14f8  [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
11:15:32.0472 0x14f8  E1G60 - ok
11:15:32.0519 0x14f8  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll
11:15:32.0535 0x14f8  EapHost - ok
11:15:32.0597 0x14f8  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache          C:\Windows\system32\drivers\ecache.sys
11:15:32.0597 0x14f8  Ecache - ok
11:15:32.0722 0x14f8  [ 10D14FAEF105DF2432D0E03860895284, 200662CD73537A8152FA0C276F20CE9B558FB2EB1AD0C171E5CCF4DC8C02F8B3 ] eeCtrl          C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
11:15:32.0722 0x14f8  eeCtrl - ok
11:15:32.0831 0x14f8  [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
11:15:32.0862 0x14f8  ehRecvr - ok
11:15:32.0909 0x14f8  [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched         C:\Windows\ehome\ehsched.exe
11:15:32.0909 0x14f8  ehSched - ok
11:15:32.0940 0x14f8  [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart         C:\Windows\ehome\ehstart.dll
11:15:32.0940 0x14f8  ehstart - ok
11:15:33.0003 0x14f8  [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
11:15:33.0034 0x14f8  elxstor - ok
11:15:33.0112 0x14f8  [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
11:15:33.0159 0x14f8  EMDMgmt - ok
11:15:33.0221 0x14f8  [ 0424EAB7549926FB864BD41E7F0639CC, 04E349F311B24239E1B4DAD073360A0D91391B69E74B43D705A1C00FDF113F45 ] EraserUtilRebootDrv C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
11:15:33.0221 0x14f8  EraserUtilRebootDrv - ok
11:15:33.0299 0x14f8  [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem     C:\Windows\system32\es.dll
11:15:33.0330 0x14f8  EventSystem - ok
11:15:33.0393 0x14f8  [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat           C:\Windows\system32\drivers\exfat.sys
11:15:33.0408 0x14f8  exfat - ok
11:15:33.0424 0x14f8  [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
11:15:33.0439 0x14f8  fastfat - ok
11:15:33.0486 0x14f8  [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
11:15:33.0486 0x14f8  fdc - ok
11:15:33.0533 0x14f8  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll
11:15:33.0549 0x14f8  fdPHost - ok
11:15:33.0595 0x14f8  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
11:15:33.0595 0x14f8  FDResPub - ok
11:15:33.0642 0x14f8  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:15:33.0658 0x14f8  FileInfo - ok
11:15:33.0705 0x14f8  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
11:15:33.0705 0x14f8  Filetrace - ok
11:15:33.0939 0x14f8  [ 46DEEC7FC4529DAE96A85B3726BA167E, 59FC304EA6CB65C38BE2A66E963F5B3099BC392AF8482EB180DC83138219140F ] FileWatchWsvc   C:\vbnetstuff\filewatchwindowssvc\filewatchwsvc\filewatchwsvc\bin\release\filewatchwsvc.exe
11:15:33.0939 0x14f8  FileWatchWsvc - ok
11:15:34.0063 0x14f8  [ B8602C90D3C427D8A86CE60437615CF5, E8058E71FD60D21884CBCF398338A65A92926BAC406F96713A262BDFDD04C80A ] FlipShare Service C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
11:15:34.0079 0x14f8  FlipShare Service - ok
11:15:34.0235 0x14f8  [ AC5FB7094F31534594CAE48306972CBD, DB5A0F63EF6ABF68B1A952A05646A163A5C075E3571682FC1C4B32918E1569FC ] FlipShareServer C:\Program Files\Flip Video\FlipShareServer\FlipShareServer.exe
11:15:34.0297 0x14f8  FlipShareServer - ok
11:15:34.0344 0x14f8  [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
11:15:34.0344 0x14f8  flpydisk - ok
11:15:34.0407 0x14f8  [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:15:34.0422 0x14f8  FltMgr - ok
11:15:34.0563 0x14f8  [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache       C:\Windows\system32\FntCache.dll
11:15:34.0594 0x14f8  FontCache - ok
11:15:34.0687 0x14f8  [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:15:34.0687 0x14f8  FontCache3.0.0.0 - ok
11:15:34.0843 0x14f8  [ 9513B437B7ADB1E6065B7F0D83D11ECF, 3CC583C10D177635AD7BBB308AD90232651244EC66D8E93258316C35956C3D50 ] FreeAgentGoNext Service C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
11:15:34.0859 0x14f8  FreeAgentGoNext Service - ok
11:15:34.0890 0x14f8  [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:15:34.0906 0x14f8  Fs_Rec - ok
11:15:34.0953 0x14f8  [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
11:15:34.0953 0x14f8  gagp30kx - ok
11:15:34.0999 0x14f8  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:15:34.0999 0x14f8  GEARAspiWDM - ok
11:15:35.0077 0x14f8  [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc           C:\Windows\System32\gpsvc.dll
11:15:35.0093 0x14f8  gpsvc - ok
11:15:35.0202 0x14f8  [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdate1c997b2dafacc20 C:\Program Files\Google\Update\GoogleUpdate.exe
11:15:35.0218 0x14f8  gupdate1c997b2dafacc20 - ok
11:15:35.0218 0x14f8  [ 626A24ED1228580B9518C01930936DF9, CBD94AB1E5477D7288799D17528CC43D572E711DA0F2B0C784A0B9FE105BF0F4 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
11:15:35.0233 0x14f8  gupdatem - ok
11:15:35.0327 0x14f8  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
11:15:35.0327 0x14f8  gusvc - ok
11:15:35.0405 0x14f8  [ 3F90E001369A07243763BD5A523D8722, 25907F85787D879E75C3FE74C93567382AFB2D528BEEC61D71E3A6BE2D71DFBE ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:15:35.0421 0x14f8  HdAudAddService - ok
11:15:35.0499 0x14f8  [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
11:15:35.0530 0x14f8  HDAudBus - ok
11:15:35.0577 0x14f8  [ F81597498B73CABA59E2F0A26BA375AE, CCB7EBED50EF34408AF0F0812A8366F8F3D0BD6A633ECF7C1A1AA78473C0D7BF ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
11:15:35.0592 0x14f8  HidBatt - ok
11:15:35.0639 0x14f8  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
11:15:35.0639 0x14f8  HidBth - ok
11:15:35.0655 0x14f8  [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr           C:\Windows\system32\drivers\hidir.sys
11:15:35.0670 0x14f8  HidIr - ok
11:15:35.0733 0x14f8  [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv         C:\Windows\System32\hidserv.dll
11:15:35.0733 0x14f8  hidserv - ok
11:15:35.0748 0x14f8  [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
11:15:35.0748 0x14f8  HidUsb - ok
11:15:35.0826 0x14f8  [ F81BD23FE5169C8DCF37201908F42212, BC4743893053708DD75156BC35555AA55F674A7C0390D2E789BC24203EF385EC ] HitmanProScheduler C:\Program Files\HitmanPro\hmpsched.exe
11:15:35.0826 0x14f8  HitmanProScheduler - ok
11:15:35.0889 0x14f8  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll
11:15:35.0889 0x14f8  hkmsvc - ok
11:15:35.0904 0x14f8  [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
11:15:35.0920 0x14f8  HpCISSs - ok
11:15:35.0982 0x14f8  [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:15:35.0998 0x14f8  HTTP - ok
11:15:36.0060 0x14f8  [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp           C:\Windows\system32\drivers\i2omp.sys
11:15:36.0060 0x14f8  i2omp - ok
11:15:36.0169 0x14f8  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
11:15:36.0169 0x14f8  i8042prt - ok
11:15:36.0232 0x14f8  [ 0BCEE844A02747DD7F1E30352E619F2E, C863C5027804D8CE8542B14778B4FCB2E2D91AD3F09C765BF6F614E954E8F550 ] IAANTMON        C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
11:15:36.0232 0x14f8  IAANTMON - ok
11:15:36.0310 0x14f8  [ E9F704CA833BD24BFAA3B4A59707633A, 31D474C13A78673357C94A21B222B310F46CCF07ADB6FA6DF3C26EB5F3551AE4 ] iaStor          C:\Windows\system32\drivers\iastor.sys
11:15:36.0310 0x14f8  iaStor - ok
11:15:36.0341 0x14f8  [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
11:15:36.0357 0x14f8  iaStorV - ok
11:15:36.0435 0x14f8  [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
11:15:36.0435 0x14f8  IDriverT - ok
11:15:36.0544 0x14f8  [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:15:36.0591 0x14f8  idsvc - ok
11:15:36.0747 0x14f8  [ 373C0F67CC49772028D311FD147F4E85, D88613EB4DCB6F0A77D947D3DAB853689FFD71331484723C7CDCBADC7F01CB34 ] IDSVix86        C:\Program Files\Norton Internet Security\NortonData\21.1.0.18\Definitions\IPSDefs\20140616.001\IDSvix86.sys
11:15:36.0762 0x14f8  IDSVix86 - ok
11:15:36.0778 0x14f8  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
11:15:36.0793 0x14f8  iirsp - ok
11:15:36.0856 0x14f8  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT          C:\Windows\System32\ikeext.dll
11:15:36.0887 0x14f8  IKEEXT - ok
11:15:36.0934 0x14f8  [ B7A420E4B137176234272D5CA9D51A49, B8BC52EDED83C915F763D76BA31FA90DD9C7CE40D9ECCBD2A83D401C3B6E0302 ] IntelDH         C:\Windows\system32\Drivers\IntelDH.sys
11:15:36.0934 0x14f8  IntelDH - ok
11:15:36.0996 0x14f8  [ 1B16626BEAE3A52E611FC681CD796F86, A402F1898A99815A8D70A7AE420222CA34511EA72D05ED681955B00C0CBC9E5E ] intelide        C:\Windows\system32\drivers\intelide.sys
11:15:36.0996 0x14f8  intelide - ok
11:15:37.0059 0x14f8  [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
11:15:37.0074 0x14f8  intelppm - ok
11:15:37.0137 0x14f8  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
11:15:37.0137 0x14f8  IPBusEnum - ok
11:15:37.0183 0x14f8  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:15:37.0199 0x14f8  IpFilterDriver - ok
11:15:37.0246 0x14f8  [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:15:37.0261 0x14f8  iphlpsvc - ok
11:15:37.0277 0x14f8  IpInIp - ok
11:15:37.0308 0x14f8  [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
11:15:37.0308 0x14f8  IPMIDRV - ok
11:15:37.0355 0x14f8  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
11:15:37.0355 0x14f8  IPNAT - ok
11:15:37.0433 0x14f8  [ 10F97E4666133FF3E66EE7F31551536E, 9BB1BE505EC0195A4740C214FD9DA744A5D98B9114E7517ABB575F752ED59EEE ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
11:15:37.0464 0x14f8  iPod Service - ok
11:15:37.0511 0x14f8  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:15:37.0511 0x14f8  IRENUM - ok
11:15:37.0527 0x14f8  [ 2F8ECE2699E7E2070545E9B0960A8ED2, 40214A9220C6EC232C245939E4F40A9FF6D30497E180EDC809B87938A922E52D ] isapnp          C:\Windows\system32\drivers\isapnp.sys
11:15:37.0527 0x14f8  isapnp - ok
11:15:37.0589 0x14f8  [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
11:15:37.0589 0x14f8  iScsiPrt - ok
11:15:37.0714 0x14f8  [ B8B728563E3DF6F8A66E1A02B402903B, CF586546E1502A7B812F509A902251803DBCE7687187A03423EF55E227995886 ] ISSM            C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
11:15:37.0729 0x14f8  ISSM - ok
11:15:37.0745 0x14f8  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
11:15:37.0745 0x14f8  iteatapi - ok
11:15:37.0776 0x14f8  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
11:15:37.0776 0x14f8  iteraid - ok
11:15:37.0839 0x14f8  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
11:15:37.0854 0x14f8  kbdclass - ok
11:15:37.0901 0x14f8  [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
11:15:37.0901 0x14f8  kbdhid - ok
11:15:37.0932 0x14f8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso          C:\Windows\system32\lsass.exe
11:15:37.0932 0x14f8  KeyIso - ok
11:15:37.0995 0x14f8  [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:15:38.0010 0x14f8  KSecDD - ok
11:15:38.0088 0x14f8  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll
11:15:38.0104 0x14f8  KtmRm - ok
11:15:38.0151 0x14f8  [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer    C:\Windows\System32\srvsvc.dll
11:15:38.0166 0x14f8  LanmanServer - ok
11:15:38.0213 0x14f8  [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:15:38.0229 0x14f8  LanmanWorkstation - ok
11:15:38.0494 0x14f8  [ A97EEB81F05BCE3D7AA6C81F04EF39A4, 5FE994FD8CA68BD9182C058F2A3C97AADF529BD10BE6E14E4825DB1F934D7F77 ] LiveUpdate      C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
11:15:38.0603 0x14f8  LiveUpdate - ok
11:15:38.0743 0x14f8  [ DEB2A99C1AD9B9190C78E895AE60A745, D003BEA585EAC0110BFC69E127D8C1C0BA1E76E51EC7C7B844EAD7B6DACCBAF6 ] LiveUpdate Notice Service C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
11:15:38.0775 0x14f8  LiveUpdate Notice Service - ok
11:15:38.0837 0x14f8  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
11:15:38.0837 0x14f8  lltdio - ok
11:15:38.0899 0x14f8  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
11:15:38.0915 0x14f8  lltdsvc - ok
11:15:38.0962 0x14f8  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
11:15:38.0962 0x14f8  lmhosts - ok
11:15:39.0024 0x14f8  [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
11:15:39.0024 0x14f8  LSI_FC - ok
11:15:39.0055 0x14f8  [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
11:15:39.0055 0x14f8  LSI_SAS - ok
11:15:39.0102 0x14f8  [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
11:15:39.0102 0x14f8  LSI_SCSI - ok
11:15:39.0149 0x14f8  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys
11:15:39.0149 0x14f8  luafv - ok
11:15:39.0211 0x14f8  [ 8E5AA8C4D15D06F1C2EC1C79E7207DD7, F420D20D59FCD53B22AE9C249B081D2FFC924E16C71DB2803DA57C2F0EEF6C7A ] M1 Server       C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
11:15:39.0211 0x14f8  M1 Server - ok
11:15:39.0274 0x14f8  [ 8683C1B450F4B3872839308D836E0F92, C6CEEEA780D2191AEAC2537FD96324FF5501D92CE46313FB95ABB51765D919ED ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
11:15:39.0289 0x14f8  MBAMProtector - ok
11:15:39.0430 0x14f8  [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler   C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
11:15:39.0523 0x14f8  MBAMScheduler - ok
11:15:39.0601 0x14f8  [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService     C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
11:15:39.0633 0x14f8  MBAMService - ok
11:15:39.0726 0x14f8  [ 12E71DA845D76665B56753AD149E32B3, 0E403710CCBACD5AB85FD4C32AAB6CB2C27BC1F043E8008EE49EE96ECA944146 ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
11:15:39.0726 0x14f8  MBAMSwissArmy - ok
11:15:39.0773 0x14f8  [ 799613BA73D25641402AA81B6403EFF8, 55FFF9248C0798346888071A60BF42C809C5D4C7BBA92C97B617F7B6681E00F3 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
11:15:39.0773 0x14f8  MBAMWebAccessControl - ok
11:15:39.0835 0x14f8  [ BB32D71031687CEEBC24B9E160ABCBA9, 519DF352B0B4B124B77560E9EF60363299D214A26D0243CF2C4F8FF589D971BC ] MCLServiceATL   C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
11:15:39.0851 0x14f8  MCLServiceATL - ok
11:15:39.0898 0x14f8  [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
11:15:39.0913 0x14f8  Mcx2Svc - ok
11:15:39.0960 0x14f8  [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas         C:\Windows\system32\drivers\megasas.sys
11:15:39.0960 0x14f8  megasas - ok
11:15:40.0069 0x14f8  [ 09A93725CD3CB82C32E239DE547CB28A, 4ED69D38166DF35A1C08E52762AE64B5BFD4ADA37DF86823940F8F679A460D24 ] Mirth Connect Service C:\Program Files\Mirth Connect\mirthconnect_service.exe
11:15:40.0085 0x14f8  Mirth Connect Service - ok
11:15:40.0132 0x14f8  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll
11:15:40.0132 0x14f8  MMCSS - ok
11:15:40.0194 0x14f8  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys
11:15:40.0194 0x14f8  Modem - ok
11:15:40.0257 0x14f8  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
11:15:40.0257 0x14f8  monitor - ok
11:15:40.0303 0x14f8  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
11:15:40.0303 0x14f8  mouclass - ok
11:15:40.0319 0x14f8  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
11:15:40.0319 0x14f8  mouhid - ok
11:15:40.0350 0x14f8  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
11:15:40.0350 0x14f8  MountMgr - ok
11:15:40.0428 0x14f8  [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
11:15:40.0444 0x14f8  MozillaMaintenance - ok
11:15:40.0491 0x14f8  [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio            C:\Windows\system32\drivers\mpio.sys
11:15:40.0506 0x14f8  mpio - ok
11:15:40.0553 0x14f8  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:15:40.0553 0x14f8  mpsdrv - ok
11:15:40.0631 0x14f8  [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:15:40.0647 0x14f8  MpsSvc - ok
11:15:40.0693 0x14f8  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
11:15:40.0693 0x14f8  Mraid35x - ok
11:15:40.0740 0x14f8  [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:15:40.0756 0x14f8  MRxDAV - ok
11:15:40.0803 0x14f8  [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:15:40.0818 0x14f8  mrxsmb - ok
11:15:40.0849 0x14f8  [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:15:40.0865 0x14f8  mrxsmb10 - ok
11:15:40.0881 0x14f8  [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:15:40.0881 0x14f8  mrxsmb20 - ok
11:15:40.0912 0x14f8  [ 0D1C042188FFE61A702A9DF5944DE5BA, 3EB1B2A70BEF3AAB332B091E4C7DC1C28E1213A6121E8343668F263C09FC82FE ] msahci          C:\Windows\system32\drivers\msahci.sys
11:15:40.0912 0x14f8  msahci - ok
11:15:40.0943 0x14f8  [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm           C:\Windows\system32\drivers\msdsm.sys
11:15:40.0943 0x14f8  msdsm - ok
11:15:40.0990 0x14f8  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe
11:15:41.0005 0x14f8  MSDTC - ok
11:15:41.0068 0x14f8  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:15:41.0068 0x14f8  Msfs - ok
11:15:41.0146 0x14f8  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
11:15:41.0146 0x14f8  msisadrv - ok
11:15:41.0208 0x14f8  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
11:15:41.0224 0x14f8  MSiSCSI - ok
11:15:41.0224 0x14f8  msiserver - ok
11:15:41.0286 0x14f8  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
11:15:41.0286 0x14f8  MSKSSRV - ok
11:15:41.0317 0x14f8  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
11:15:41.0317 0x14f8  MSPCLOCK - ok
11:15:41.0349 0x14f8  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
11:15:41.0349 0x14f8  MSPQM - ok
11:15:41.0411 0x14f8  [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
11:15:41.0427 0x14f8  MsRPC - ok
11:15:41.0489 0x14f8  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
11:15:41.0489 0x14f8  mssmbios - ok
11:15:41.0614 0x14f8  MSSQL$SQLEXPRESS - ok
11:15:41.0723 0x14f8  [ AE0277B34DC0F8E0F8257690BECFC4BA, 964E4627AE0DE4B0F9302B2678E5F3AA27E0F056827140A093931C91145B2A74 ] MSSQLFDLauncher C:\Program Files\Microsoft SQL Server\MSSQL10_50.MSSQLSERVER\MSSQL\Binn\fdlauncher.exe
11:15:41.0723 0x14f8  MSSQLFDLauncher - ok
11:15:41.0754 0x14f8  MSSQLSERVER - ok
11:15:41.0801 0x14f8  [ C06EA83F6FC2959E897C117255B6B1D5, 012C6E5AA61BAAED47CB0E59E2F3E6E87941F555C5581ECAC7DF1051795AF681 ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
11:15:41.0801 0x14f8  MSSQLServerADHelper - ok
11:15:41.0863 0x14f8  [ 8E8E74C953EB0C4F8828D99D6F27FD6F, 94AFB1B09A6E92302D29B3C563B1744CECC5F5487418962BE537B7C57717CA42 ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
11:15:41.0863 0x14f8  MSSQLServerADHelper100 - ok
11:15:41.0926 0x14f8  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
11:15:41.0926 0x14f8  MSTEE - ok
11:15:42.0222 0x14f8  [ 70E994D23895DF6B1EE1E70145299FCF, 7B3B92D1048B41BD7779C7212FE6672418975B100ED0C0375121F33CE14E421C ] msvsmon90       C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe
11:15:42.0363 0x14f8  msvsmon90 - ok
11:15:42.0456 0x14f8  [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup             C:\Windows\system32\Drivers\mup.sys
11:15:42.0456 0x14f8  Mup - ok
11:15:42.0612 0x14f8  MySQL - ok
11:15:42.0659 0x14f8  [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent        C:\Windows\system32\qagentRT.dll
11:15:42.0675 0x14f8  napagent - ok
11:15:42.0784 0x14f8  [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
11:15:42.0815 0x14f8  NativeWifiP - ok
11:15:42.0971 0x14f8  [ 81E928EE3751FAF725C87CC17726C05D, 8AB84270DCB35F239B00FA4B9AC90E9520967B8188085D897F28E994CBF911FB ] NAVENG          C:\Program Files\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140616.024\NAVENG.SYS
11:15:42.0987 0x14f8  NAVENG - ok
11:15:43.0143 0x14f8  [ E0C39FA6C76AE8ED53ABF043F35ECDFF, CD2F87D3CB64F3362508D1855B24F40F1C44CF4132E3626971CCF4E7C49E61D6 ] NAVEX15         C:\Program Files\Norton Internet Security\NortonData\21.1.0.18\Definitions\VirusDefs\20140616.024\NAVEX15.SYS
11:15:43.0236 0x14f8  NAVEX15 - ok
11:15:43.0392 0x14f8  [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:15:43.0423 0x14f8  NDIS - ok
11:15:43.0486 0x14f8  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:15:43.0486 0x14f8  NdisTapi - ok
11:15:43.0548 0x14f8  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
11:15:43.0548 0x14f8  Ndisuio - ok
11:15:43.0595 0x14f8  [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
11:15:43.0611 0x14f8  NdisWan - ok
11:15:43.0657 0x14f8  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
11:15:43.0673 0x14f8  NDProxy - ok
11:15:43.0704 0x14f8  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
11:15:43.0704 0x14f8  NetBIOS - ok
11:15:43.0767 0x14f8  [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
11:15:43.0782 0x14f8  netbt - ok
11:15:43.0798 0x14f8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon        C:\Windows\system32\lsass.exe
11:15:43.0813 0x14f8  Netlogon - ok
11:15:43.0876 0x14f8  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll
11:15:43.0891 0x14f8  Netman - ok
11:15:44.0063 0x14f8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:15:44.0110 0x14f8  NetMsmqActivator - ok
11:15:44.0125 0x14f8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:15:44.0125 0x14f8  NetPipeActivator - ok
11:15:44.0188 0x14f8  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll
11:15:44.0203 0x14f8  netprofm - ok
11:15:44.0250 0x14f8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:15:44.0250 0x14f8  NetTcpActivator - ok
11:15:44.0266 0x14f8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
11:15:44.0281 0x14f8  NetTcpPortSharing - ok
11:15:44.0328 0x14f8  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
11:15:44.0328 0x14f8  nfrd960 - ok
11:15:44.0437 0x14f8  [ 1305F77D8B17AA4C516263D6F8013836, B45EE4A72C5C93068DF7DEBC3C914C613556D4642E84A34630535E840AA77998 ] NIS             C:\Program Files\Norton Internet Security\Engine\21.3.0.12\NIS.exe
11:15:44.0453 0x14f8  NIS - ok
11:15:44.0500 0x14f8  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:15:44.0531 0x14f8  NlaSvc - ok
11:15:44.0578 0x14f8  [ ACC8D7FC0DA793450F5F257D9CE4FF75, EA1821B398A5D418133FB044C508E652BBCB4E74133A8E8679A8162932AC91C0 ] nmsgopro        C:\Windows\system32\DRIVERS\nmsgopro.sys
11:15:44.0578 0x14f8  nmsgopro - ok
11:15:44.0593 0x14f8  [ 64FA28C15DD71A80BEF3527E1EF07DF6, 0E165303E7D6D2391E150910EBF5ABD83D171ABB463FE5FACB1081FA6D9A47B8 ] nmsunidr        C:\Windows\system32\DRIVERS\nmsunidr.sys
11:15:44.0593 0x14f8  nmsunidr - ok
11:15:44.0656 0x14f8  [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:15:44.0656 0x14f8  Npfs - ok
11:15:44.0718 0x14f8  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll
11:15:44.0718 0x14f8  nsi - ok
11:15:44.0781 0x14f8  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:15:44.0781 0x14f8  nsiproxy - ok
11:15:44.0890 0x14f8  [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
11:15:44.0952 0x14f8  Ntfs - ok
11:15:45.0030 0x14f8  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
11:15:45.0030 0x14f8  ntrigdigi - ok
11:15:45.0077 0x14f8  [ CF7E041663119E09D2E118521ADA9300, 0BDDEDA787CCBE34D515945717AF972143A3684F6D37F87B639D6A5371F381CC ] NuidFltr        C:\Windows\system32\DRIVERS\NuidFltr.sys
11:15:45.0077 0x14f8  NuidFltr - ok
11:15:45.0108 0x14f8  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys
11:15:45.0124 0x14f8  Null - ok
11:15:45.0607 0x14f8  [ 204A01F718EA2349204AC353F525E7CC, C5907CE312A4F3B6C04448F0E0363715BD2A739323F479FBC2AF57151E00CFB2 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:15:45.0997 0x14f8  nvlddmkm - ok
11:15:46.0107 0x14f8  [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:15:46.0122 0x14f8  nvraid - ok
11:15:46.0169 0x14f8  [ 9E0BA19A28C498A6D323D065DB76DFFC, EA9E33ED2820ED39932FAE114A9CF1D87780ED6605D0260A6F22F920B48F34E9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:15:46.0169 0x14f8  nvstor - ok
11:15:46.0231 0x14f8  [ D4F13A2A83C7FFDE44C939208408D3C4, 643CD794CC1322B21BEBF7C896978EE2EA439F9D01EB32EB598DEC64BFDD59BB ] nvsvc           C:\Windows\system32\nvvsvc.exe
11:15:46.0247 0x14f8  nvsvc - ok
11:15:46.0278 0x14f8  [ 055081FD5076401C1EE1BCAB08D81911, E6621F2D24E7E2544AFD249660F2D1026B94698CA841E79B3F1199ACB2203995 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
11:15:46.0294 0x14f8  nv_agp - ok
11:15:46.0294 0x14f8  NwlnkFlt - ok
11:15:46.0309 0x14f8  NwlnkFwd - ok
11:15:46.0434 0x14f8  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:15:46.0450 0x14f8  odserv - ok
11:15:46.0497 0x14f8  [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
11:15:46.0497 0x14f8  ohci1394 - ok
11:15:46.0559 0x14f8  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:15:46.0559 0x14f8  ose - ok
11:15:46.0887 0x14f8  [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:15:47.0058 0x14f8  osppsvc - ok
11:15:47.0167 0x14f8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
11:15:47.0199 0x14f8  p2pimsvc - ok
11:15:47.0245 0x14f8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc          C:\Windows\system32\p2psvc.dll
11:15:47.0277 0x14f8  p2psvc - ok
11:15:47.0323 0x14f8  [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport         C:\Windows\system32\drivers\parport.sys
11:15:47.0323 0x14f8  Parport - ok
11:15:47.0370 0x14f8  [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
11:15:47.0386 0x14f8  partmgr - ok
11:15:47.0401 0x14f8  [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
11:15:47.0401 0x14f8  Parvdm - ok
11:15:47.0448 0x14f8  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:15:47.0464 0x14f8  PcaSvc - ok
11:15:47.0511 0x14f8  [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci             C:\Windows\system32\drivers\pci.sys
11:15:47.0526 0x14f8  pci - ok
11:15:47.0542 0x14f8  [ 54D23DC5B5072311116826FDB7F6E83E, 65A4DC13C5358B68B1DA3026D5166E15964033800E80E5EC77C03E6E145759A8 ] pciide          C:\Windows\system32\drivers\pciide.sys
11:15:47.0542 0x14f8  pciide - ok
11:15:47.0573 0x14f8  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
11:15:47.0573 0x14f8  pcmcia - ok
11:15:47.0635 0x14f8  [ 5B6C11DE7E839C05248CED8825470FEF, DB57DFD02C18461B1B383DF759730FFEE9C7FA8577E1679FD4740A590303EE79 ] pcouffin        C:\Windows\system32\Drivers\pcouffin.sys
11:15:47.0651 0x14f8  pcouffin - ok
11:15:47.0729 0x14f8  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:15:47.0776 0x14f8  PEAUTH - ok
11:15:47.0916 0x14f8  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll
11:15:48.0010 0x14f8  pla - ok
11:15:48.0072 0x14f8  [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:15:48.0088 0x14f8  PlugPlay - ok
11:15:48.0135 0x14f8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
11:15:48.0166 0x14f8  PNRPAutoReg - ok
11:15:48.0213 0x14f8  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
11:15:48.0244 0x14f8  PNRPsvc - ok
11:15:48.0291 0x14f8  [ 5B6F99087CC1342B3D193E8155F26B6F, 20BE9AD7F8454ABAE83BDF593BE0B0DC7FAEA64FA9B582ECC33EA4E7AFF61745 ] Point32         C:\Windows\system32\DRIVERS\point32k.sys
11:15:48.0291 0x14f8  Point32 - ok
11:15:48.0322 0x14f8  [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
11:15:48.0353 0x14f8  PolicyAgent - ok
11:15:48.0400 0x14f8  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
11:15:48.0415 0x14f8  PptpMiniport - ok
11:15:48.0462 0x14f8  [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor       C:\Windows\system32\drivers\processr.sys
11:15:48.0462 0x14f8  Processor - ok
11:15:48.0525 0x14f8  [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc         C:\Windows\system32\profsvc.dll
11:15:48.0525 0x14f8  ProfSvc - ok
11:15:48.0540 0x14f8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
11:15:48.0540 0x14f8  ProtectedStorage - ok
11:15:48.0603 0x14f8  [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
11:15:48.0603 0x14f8  PSched - ok
11:15:48.0681 0x14f8  [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300          C:\Windows\system32\drivers\ql2300.sys
11:15:48.0727 0x14f8  ql2300 - ok
11:15:48.0774 0x14f8  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
11:15:48.0790 0x14f8  ql40xx - ok
11:15:48.0837 0x14f8  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll
11:15:48.0852 0x14f8  QWAVE - ok
11:15:48.0915 0x14f8  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:15:48.0915 0x14f8  QWAVEdrv - ok
11:15:49.0351 0x14f8  [ D05CF4523E0C04EF82454ABFD84FDC1D, 49716B95D6CD973ADBC02470BEB52DA93DFF43BBA9FCDAC8939A7AB567F0813F ] R300            C:\Windows\system32\DRIVERS\atikmdag.sys
11:15:49.0632 0x14f8  R300 - ok
11:15:49.0710 0x14f8  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:15:49.0710 0x14f8  RasAcd - ok
11:15:49.0757 0x14f8  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll
11:15:49.0773 0x14f8  RasAuto - ok
11:15:49.0819 0x14f8  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
11:15:49.0835 0x14f8  Rasl2tp - ok
11:15:49.0882 0x14f8  [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan          C:\Windows\System32\rasmans.dll
11:15:49.0897 0x14f8  RasMan - ok
11:15:49.0944 0x14f8  [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:15:49.0944 0x14f8  RasPppoe - ok
11:15:50.0007 0x14f8  [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
11:15:50.0007 0x14f8  RasSstp - ok
11:15:50.0069 0x14f8  [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
11:15:50.0085 0x14f8  rdbss - ok
11:15:50.0131 0x14f8  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
11:15:50.0131 0x14f8  RDPCDD - ok
11:15:50.0194 0x14f8  [ 0245418224CFA77BF4B41C2FE0622258, 532A8ABB476A1723FDD25A12EA07C97F2588F24D0AE6F86C0105112A9AECCDB9 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
11:15:50.0209 0x14f8  rdpdr - ok
11:15:50.0241 0x14f8  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
11:15:50.0241 0x14f8  RDPENCDD - ok
11:15:50.0303 0x14f8  [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
11:15:50.0319 0x14f8  RDPWD - ok
11:15:50.0412 0x14f8  [ 42D5AB26FC5FCDB3C1BDAAC4AC153849, F787D5A7C424CFBFEA565AA804DFC462A6E89483EBCD5976A82D4D5EE851D746 ] Remote UI Service C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
11:15:50.0443 0x14f8  Remote UI Service - ok
11:15:50.0490 0x14f8  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:15:50.0506 0x14f8  RemoteAccess - ok
11:15:50.0553 0x14f8  [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:15:50.0568 0x14f8  RemoteRegistry - ok
11:15:50.0771 0x14f8  [ 3C1BC535FEBF70793A74A5FBF3096132, 90376CA98D24AB00B32B41A5F6EC0DE8A568E46D4FFB832A76A9D980C0E30E99 ] ReportServer    C:\Program Files\Microsoft SQL Server\MSRS10_50.MSSQLSERVER\Reporting Services\ReportServer\bin\ReportingServicesService.exe
11:15:50.0849 0x14f8  ReportServer - ok
11:15:50.0927 0x14f8  [ ADAACC89440EB9E92F1CDF2E40383AF3, D3AA842AE95ECAB6B1E8800BC7AD4133A961565EA15AAE45184A8DF1DD873C56 ] RetroLauncher   C:\Program Files\Retrospect\Retrospect 7.5\retrorun.exe
11:15:50.0943 0x14f8  RetroLauncher - ok
11:15:50.0958 0x14f8  [ 708A7A410159191797F19868EF9AEE4C, 808F9EA0563AD640C2594DCC07BEEC6E55E686CAB3236BC9BF32717B1E36188D ] Retrospect Helper C:\Program Files\Retrospect\Retrospect 7.5\rthlpsvc.exe
11:15:50.0958 0x14f8  Retrospect Helper - ok
11:15:51.0036 0x14f8  [ F17713D108ACA124A139FDE877EEF68A, AB254B8B4BDB10685280A8595CA69FEA2F1E68923E676C8CAF3F5468AE4C566E ] RimUsb          C:\Windows\system32\Drivers\RimUsb.sys
11:15:51.0036 0x14f8  RimUsb - ok
11:15:51.0083 0x14f8  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
11:15:51.0083 0x14f8  RpcLocator - ok
11:15:51.0161 0x14f8  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs           C:\Windows\system32\rpcss.dll
11:15:51.0192 0x14f8  RpcSs - ok
11:15:51.0255 0x14f8  [ A95840A95A9FF74B0009E5D848CDDB39, 11A0EDAC60F231AEA5692623F26F6441FA2D5D8FA6291955743AA3A067E52BD1 ] RsFx0150        C:\Windows\system32\DRIVERS\RsFx0150.sys
11:15:51.0270 0x14f8  RsFx0150 - ok
11:15:51.0317 0x14f8  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
11:15:51.0317 0x14f8  rspndr - ok
11:15:51.0364 0x14f8  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs           C:\Windows\system32\lsass.exe
11:15:51.0364 0x14f8  SamSs - ok
11:15:51.0411 0x14f8  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
11:15:51.0411 0x14f8  sbp2port - ok
11:15:51.0489 0x14f8  [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:15:51.0489 0x14f8  SCardSvr - ok
11:15:51.0582 0x14f8  [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule        C:\Windows\system32\schedsvc.dll
11:15:51.0613 0x14f8  Schedule - ok
11:15:51.0660 0x14f8  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc     C:\Windows\System32\certprop.dll
11:15:51.0660 0x14f8  SCPolicySvc - ok
11:15:51.0676 0x14f8  SDDMI2 - ok
11:15:51.0738 0x14f8  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:15:51.0738 0x14f8  SDRSVC - ok
11:15:51.0754 0x14f8  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
11:15:51.0754 0x14f8  secdrv - ok
11:15:51.0816 0x14f8  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll
11:15:51.0816 0x14f8  seclogon - ok
11:15:51.0863 0x14f8  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\System32\sens.dll
11:15:51.0879 0x14f8  SENS - ok
11:15:51.0925 0x14f8  [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum         C:\Windows\system32\drivers\serenum.sys
11:15:51.0925 0x14f8  Serenum - ok
11:15:51.0941 0x14f8  [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial          C:\Windows\system32\drivers\serial.sys
11:15:51.0941 0x14f8  Serial - ok
11:15:51.0988 0x14f8  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
11:15:52.0003 0x14f8  sermouse - ok
11:15:52.0066 0x14f8  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll
11:15:52.0081 0x14f8  SessionEnv - ok
11:15:52.0097 0x14f8  [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
11:15:52.0097 0x14f8  sffdisk - ok
11:15:52.0113 0x14f8  [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
11:15:52.0128 0x14f8  sffp_mmc - ok
11:15:52.0159 0x14f8  [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
11:15:52.0159 0x14f8  sffp_sd - ok
11:15:52.0175 0x14f8  [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
11:15:52.0191 0x14f8  sfloppy - ok
11:15:52.0222 0x14f8  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:15:52.0222 0x14f8  SharedAccess - ok
11:15:52.0284 0x14f8  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:15:52.0300 0x14f8  ShellHWDetection - ok
11:15:52.0315 0x14f8  [ 08072B2FB92477FC813271A84B3A8698, A97ABDEB5E37F7B50DD6168FAAD524BE82418FC7818BB667C10951408FB6EB70 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
11:15:52.0331 0x14f8  sisagp - ok
11:15:52.0347 0x14f8  [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
11:15:52.0362 0x14f8  SiSRaid2 - ok
11:15:52.0378 0x14f8  [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
11:15:52.0378 0x14f8  SiSRaid4 - ok
11:15:52.0596 0x14f8  [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc           C:\Windows\system32\SLsvc.exe
11:15:52.0768 0x14f8  slsvc - ok
11:15:52.0830 0x14f8  [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify      C:\Windows\system32\SLUINotify.dll
11:15:52.0830 0x14f8  SLUINotify - ok
11:15:52.0893 0x14f8  [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb             C:\Windows\system32\DRIVERS\smb.sys
11:15:52.0893 0x14f8  Smb - ok
11:15:52.0939 0x14f8  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:15:52.0955 0x14f8  SNMPTRAP - ok
11:15:53.0002 0x14f8  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys
11:15:53.0002 0x14f8  spldr - ok
11:15:53.0064 0x14f8  [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler         C:\Windows\System32\spoolsv.exe
11:15:53.0064 0x14f8  Spooler - ok
11:15:53.0142 0x14f8  [ 7D67C07C63796775CC5492BCFEAFF125, BAEFF806F656FA252D1DBC1E21603CF5F7D54C5AFB3FC91F2723729A7740DF8A ] SQLBrowser      c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
11:15:53.0158 0x14f8  SQLBrowser - ok
11:15:53.0220 0x14f8  [ 37761F6BE2EBAED72CC0D43BD4C8C2A6, 2743C87917472306648AA4E0241C766898DB8843A81F384F915C76D2B041B300 ] SQLSERVERAGENT  C:\Program Files\Microsoft SQL Server\MSSQL10_50.MSSQLSERVER\MSSQL\Binn\SQLAGENT.EXE
11:15:53.0251 0x14f8  SQLSERVERAGENT - ok
11:15:53.0298 0x14f8  [ 8E6E5CFA06769A417B03FD6FAA29E010, CFF4FF34C2E0D9DFB502FCDB99DF4A21D0DBC335B6AD46805DAB069E789ECF9E ] SQLWriter       c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
11:15:53.0298 0x14f8  SQLWriter - ok
11:15:53.0439 0x14f8  [ 91C966DE2058116525748050A22C8170, EE64D29ED2C5EDE035E6BE56AE28403B42C10815A89AC08A5395DE72375AF550 ] SRTSP           C:\Windows\System32\Drivers\NIS\1503000.00C\SRTSP.SYS
11:15:53.0470 0x14f8  SRTSP - ok
11:15:53.0501 0x14f8  [ 1B6D68043F488F70E889276E1585B7AA, 574925053F0EB2DED6DA03D0720A8E1588590948DFF1E2C6DE84EA5B6856E3DB ] SRTSPX          C:\Windows\system32\drivers\NIS\1503000.00C\SRTSPX.SYS
11:15:53.0501 0x14f8  SRTSPX - ok
11:15:53.0579 0x14f8  [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv             C:\Windows\system32\DRIVERS\srv.sys
11:15:53.0595 0x14f8  srv - ok
11:15:53.0657 0x14f8  [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:15:53.0657 0x14f8  srv2 - ok
11:15:53.0719 0x14f8  [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:15:53.0719 0x14f8  srvnet - ok
11:15:53.0782 0x14f8  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
11:15:53.0797 0x14f8  SSDPSRV - ok
11:15:53.0875 0x14f8  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll
11:15:53.0875 0x14f8  SstpSvc - ok
11:15:53.0938 0x14f8  [ 1B4052F016BA5E087689ABA536A0A927, DD6C65840E411126A9CEB1DE2DA8E74A57E42C1B90C91B5DDE6AC57E366C70E0 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
11:15:53.0953 0x14f8  ssudmdm - ok
11:15:54.0016 0x14f8  [ B218068EBA6F46F102B4218BDB81BE0B, 1E9732AF444B3A3B511B100AC2DB0CDFE1600AA5DB0B13FE3E7A2B70BB704856 ] STacSV          C:\Windows\system32\STacSV.exe
11:15:54.0031 0x14f8  STacSV - ok
11:15:54.0094 0x14f8  [ 167909A1C36AA3E8F2582962F0CCC748, 8E6AAA22BAB77C08F4189A407E8E332C33C31EF5691630F7A8176D6848A77105 ] STHDA           C:\Windows\system32\drivers\stwrt.sys
11:15:54.0125 0x14f8  STHDA - ok
11:15:54.0187 0x14f8  [ EF70B3D22B4BFFDA6EA851ECB063EFAA, 1666572F8F988805C3A2E949FA6B060B35B72DBB115B86F4CFC710FB6A86C3E3 ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
11:15:54.0187 0x14f8  StillCam - ok
11:15:54.0265 0x14f8  [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc          C:\Windows\System32\wiaservc.dll
11:15:54.0297 0x14f8  stisvc - ok
11:15:54.0312 0x14f8  stllssvr - ok
11:15:54.0359 0x14f8  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
11:15:54.0375 0x14f8  swenum - ok
11:15:54.0437 0x14f8  [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv           C:\Windows\System32\swprv.dll
11:15:54.0453 0x14f8  swprv - ok
11:15:54.0577 0x14f8  [ 267C914667C94E5F47D342311C1C577F, E4FE7A8E41680E6845AD4D0FEEF4EDA6DACAE7728D2401520175AAD8ED16ABAD ] Symantec RemoteAssist C:\Program Files\Common Files\Symantec Shared\Support Controls\ssrc.exe
11:15:54.0593 0x14f8  Symantec RemoteAssist - ok
11:15:54.0655 0x14f8  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
11:15:54.0655 0x14f8  Symc8xx - ok
11:15:54.0733 0x14f8  [ 4C3DEF736D3857570166DE5C858600F5, 45613D3F1935AFDDB1DFE3A427222A0B38430ABF15F9110A35E7C55CDADF1D43 ] SymDS           C:\Windows\system32\drivers\NIS\1503000.00C\SYMDS.SYS
11:15:54.0765 0x14f8  SymDS - ok
11:15:54.0827 0x14f8  [ B70A98F20B4180F2751CFD7656116342, F4BB1904DC4818CE012AA264A7714AA9977F06255CF857FDB3E55B0DBA3D8A9C ] SymEFA          C:\Windows\system32\drivers\NIS\1503000.00C\SYMEFA.SYS
11:15:54.0874 0x14f8  SymEFA - ok
11:15:54.0936 0x14f8  [ E987A9CB539147527F56943BB34B7375, 4627C3E237549587B53CBD0D89AC2CEFF03C04F7624E2868936BCE5D70496AFD ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT.SYS
11:15:54.0952 0x14f8  SymEvent - ok
11:15:54.0999 0x14f8  [ E3A3CA230C7547364BB3D9DA0C301A36, 8F173DE08BAF81A7BE7F2D306DC595D60E6537D95AFE32A39E521E43C35AB629 ] SymIRON         C:\Windows\system32\drivers\NIS\1503000.00C\Ironx86.SYS
11:15:55.0014 0x14f8  SymIRON - ok
11:15:55.0061 0x14f8  [ D3F7FB40012382F7B206200AE794FBD7, B58C1969C766D5BF0BCFE9642D4F2B221E62240A9FCE18738B21DB457F57C22C ] SYMTDIv         C:\Windows\System32\Drivers\NIS\1503000.00C\SYMTDIV.SYS
11:15:55.0077 0x14f8  SYMTDIv - ok
11:15:55.0108 0x14f8  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
11:15:55.0108 0x14f8  Sym_hi - ok
11:15:55.0155 0x14f8  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
11:15:55.0155 0x14f8  Sym_u3 - ok
11:15:55.0233 0x14f8  [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain         C:\Windows\system32\sysmain.dll
11:15:55.0264 0x14f8  SysMain - ok
11:15:55.0326 0x14f8  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:15:55.0326 0x14f8  TabletInputService - ok
11:15:55.0389 0x14f8  [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv         C:\Windows\System32\tapisrv.dll
11:15:55.0420 0x14f8  TapiSrv - ok
11:15:55.0467 0x14f8  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll
11:15:55.0467 0x14f8  TBS - ok
11:15:55.0576 0x14f8  [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
11:15:55.0623 0x14f8  Tcpip - ok
11:15:55.0701 0x14f8  [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
11:15:55.0732 0x14f8  Tcpip6 - ok
11:15:55.0779 0x14f8  [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:15:55.0779 0x14f8  tcpipreg - ok
11:15:55.0841 0x14f8  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
11:15:55.0841 0x14f8  TDPIPE - ok
11:15:55.0888 0x14f8  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
11:15:55.0888 0x14f8  TDTCP - ok
11:15:55.0903 0x14f8  [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
11:15:55.0903 0x14f8  tdx - ok
11:15:55.0950 0x14f8  [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
11:15:55.0966 0x14f8  TermDD - ok
11:15:55.0997 0x14f8  [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService     C:\Windows\System32\termsrv.dll
11:15:56.0044 0x14f8  TermService - ok
11:15:56.0059 0x14f8  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes          C:\Windows\system32\shsvcs.dll
11:15:56.0091 0x14f8  Themes - ok
11:15:56.0137 0x14f8  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll
11:15:56.0137 0x14f8  THREADORDER - ok
11:15:56.0200 0x14f8  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll
11:15:56.0200 0x14f8  TrkWks - ok
11:15:56.0293 0x14f8  [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:15:56.0293 0x14f8  TrustedInstaller - ok
11:15:56.0371 0x14f8  [ 3F6DC449398B21C213DCDD18F460DF72, 9FF1A095D772F4C0A7E7327C1CAE6C14F0A375B2D409E8AC8A57EC1F2CA1E0A0 ] TSHWMDTCP       C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.sys
11:15:56.0371 0x14f8  TSHWMDTCP - ok
11:15:56.0434 0x14f8  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
11:15:56.0434 0x14f8  tssecsrv - ok
11:15:56.0512 0x14f8  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
11:15:56.0512 0x14f8  tunmp - ok
11:15:56.0559 0x14f8  [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
11:15:56.0574 0x14f8  tunnel - ok
11:15:56.0605 0x14f8  [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35          C:\Windows\system32\drivers\uagp35.sys
11:15:56.0621 0x14f8  uagp35 - ok
11:15:56.0668 0x14f8  [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:15:56.0683 0x14f8  udfs - ok
11:15:56.0746 0x14f8  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
11:15:56.0746 0x14f8  UI0Detect - ok
11:15:56.0761 0x14f8  [ 6D72EF05921ABDF59FC45C7EBFE7E8DD, 9102CB4B5E8B858B61DE1508C6A00D75584741891899966258E510173DBF7BB9 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
11:15:56.0777 0x14f8  uliagpkx - ok
11:15:56.0808 0x14f8  [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
11:15:56.0824 0x14f8  uliahci - ok
11:15:56.0839 0x14f8  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
11:15:56.0839 0x14f8  UlSata - ok
11:15:56.0871 0x14f8  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
11:15:56.0871 0x14f8  ulsata2 - ok
11:15:56.0917 0x14f8  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
11:15:56.0917 0x14f8  umbus - ok
11:15:56.0995 0x14f8  [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost        C:\Windows\System32\upnphost.dll
11:15:57.0011 0x14f8  upnphost - ok
11:15:57.0073 0x14f8  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
11:15:57.0089 0x14f8  USBAAPL - ok
11:15:57.0151 0x14f8  [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
11:15:57.0151 0x14f8  usbccgp - ok
11:15:57.0214 0x14f8  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
11:15:57.0214 0x14f8  usbcir - ok
11:15:57.0261 0x14f8  [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
11:15:57.0261 0x14f8  usbehci - ok
11:15:57.0292 0x14f8  [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
11:15:57.0307 0x14f8  usbhub - ok
11:15:57.0339 0x14f8  [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci         C:\Windows\system32\drivers\usbohci.sys
11:15:57.0339 0x14f8  usbohci - ok
11:15:57.0401 0x14f8  [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
11:15:57.0401 0x14f8  usbprint - ok
11:15:57.0463 0x14f8  [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
11:15:57.0463 0x14f8  usbscan - ok
11:15:57.0495 0x14f8  [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:15:57.0495 0x14f8  USBSTOR - ok
11:15:57.0526 0x14f8  [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
11:15:57.0526 0x14f8  usbuhci - ok
11:15:57.0588 0x14f8  [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms           C:\Windows\System32\uxsms.dll
11:15:57.0588 0x14f8  UxSms - ok
11:15:57.0651 0x14f8  [ 1CDAA48CB2F7744B8D25650E050766A5, 97C7BDEAFFDAD337F4101860061BCCE6C519343B7EEEB72C3AD450B59DACCA66 ] VClone          C:\Windows\system32\DRIVERS\VClone.sys
11:15:57.0651 0x14f8  VClone - ok
11:15:57.0729 0x14f8  [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds             C:\Windows\System32\vds.exe
11:15:57.0744 0x14f8  vds - ok
11:15:57.0807 0x14f8  [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
11:15:57.0822 0x14f8  vga - ok
11:15:57.0869 0x14f8  [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave         C:\Windows\System32\drivers\vga.sys
11:15:57.0869 0x14f8  VgaSave - ok
11:15:57.0916 0x14f8  [ D5929A28BDFF4367A12CAF06AF901971, DE2A60A9EE1ABACEE6221E4AD5D4AA4CBA12FED448EB36CA3B7A9A5F09A8DC8C ] viaagp          C:\Windows\system32\drivers\viaagp.sys
11:15:57.0916 0x14f8  viaagp - ok
11:15:57.0947 0x14f8  [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7           C:\Windows\system32\drivers\viac7.sys
11:15:57.0947 0x14f8  ViaC7 - ok
11:15:57.0963 0x14f8  [ C0ACE9D0F5A5EE0B00F58345947A57FC, C551FF22FC447FAAC64DF94973FA0601DF153ED05BDA7D404EED4BA49B1094CA ] viaide          C:\Windows\system32\drivers\viaide.sys
11:15:57.0978 0x14f8  viaide - ok
11:15:58.0009 0x14f8  [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
11:15:58.0009 0x14f8  volmgr - ok
11:15:58.0072 0x14f8  [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
11:15:58.0087 0x14f8  volmgrx - ok
11:15:58.0150 0x14f8  [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
11:15:58.0165 0x14f8  volsnap - ok
11:15:58.0212 0x14f8  [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
11:15:58.0228 0x14f8  vsmraid - ok
11:15:58.0368 0x14f8  [ 143C873A90E834F38733BB05D686A9E7, EBBC2A11B751E4C869D08CD35FFB1B54A3BC1EDDDD436CFD6026892460BC842E ] VSPerfDrv100    C:\Program Files\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys
11:15:58.0368 0x14f8  VSPerfDrv100 - ok
11:15:58.0493 0x14f8  [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS             C:\Windows\system32\vssvc.exe
11:15:58.0540 0x14f8  VSS - ok
11:15:58.0602 0x14f8  [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time         C:\Windows\system32\w32time.dll
11:15:58.0633 0x14f8  W32Time - ok
11:15:58.0665 0x14f8  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
11:15:58.0665 0x14f8  WacomPen - ok
11:15:58.0711 0x14f8  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
11:15:58.0711 0x14f8  Wanarp - ok
11:15:58.0727 0x14f8  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:15:58.0727 0x14f8  Wanarpv6 - ok
11:15:58.0758 0x14f8  [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
11:15:58.0789 0x14f8  wcncsvc - ok
11:15:58.0852 0x14f8  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:15:58.0852 0x14f8  WcsPlugInService - ok
11:15:58.0867 0x14f8  [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd              C:\Windows\system32\drivers\wd.sys
11:15:58.0867 0x14f8  Wd - ok
11:15:58.0945 0x14f8  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:15:58.0977 0x14f8  Wdf01000 - ok
11:15:59.0039 0x14f8  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:15:59.0055 0x14f8  WdiServiceHost - ok
11:15:59.0055 0x14f8  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost   C:\Windows\system32\wdi.dll
11:15:59.0070 0x14f8  WdiSystemHost - ok
11:15:59.0117 0x14f8  [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient       C:\Windows\System32\webclnt.dll
11:15:59.0133 0x14f8  WebClient - ok
11:15:59.0195 0x14f8  [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:15:59.0211 0x14f8  Wecsvc - ok
11:15:59.0257 0x14f8  [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport   C:\Windows\System32\wercplsupport.dll
11:15:59.0273 0x14f8  wercplsupport - ok
11:15:59.0320 0x14f8  [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc          C:\Windows\System32\WerSvc.dll
11:15:59.0335 0x14f8  WerSvc - ok
11:15:59.0429 0x14f8  [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
11:15:59.0445 0x14f8  WinDefend - ok
11:15:59.0460 0x14f8  WinHttpAutoProxySvc - ok
11:15:59.0569 0x14f8  [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
11:15:59.0585 0x14f8  Winmgmt - ok
11:15:59.0694 0x14f8  [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM           C:\Windows\system32\WsmSvc.dll
11:15:59.0741 0x14f8  WinRM - ok
11:15:59.0819 0x14f8  [ 30FC6E5448D0CBAAA95280EEEF7FEDAE, 04374450882504D9031951F4E9317E5A128EBA5A22A3555ACD28BC742861AF9C ] WinUsb          C:\Windows\system32\DRIVERS\WinUSB.sys
11:15:59.0819 0x14f8  WinUsb - ok
11:15:59.0928 0x14f8  [ C828FE0F3E6996B53EADBC42C36BB04D, 04AFB2C655C0532C40D577CEAE587E63D98E9A049D8A4D3F75314C4EC4AA7810 ] WINZIPSSDiskOptimizer C:\Program Files\WinZip System Utilities Suite\WINZIPSSDefragSrv.exe
11:15:59.0944 0x14f8  WINZIPSSDiskOptimizer - ok
11:16:00.0022 0x14f8  [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc         C:\Windows\System32\wlansvc.dll
11:16:00.0053 0x14f8  Wlansvc - ok
11:16:00.0100 0x14f8  [ 701A9F884A294327E9141D73746EE279, C8A46B8C32F9EAC7848D385473F6B5C4B6DA719A941A75AD5F081757FC07A09D ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
11:16:00.0100 0x14f8  WmiAcpi - ok
11:16:00.0162 0x14f8  [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:16:00.0178 0x14f8  wmiApSrv - ok
11:16:00.0303 0x14f8  [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
11:16:00.0349 0x14f8  WMPNetworkSvc - ok
11:16:00.0427 0x14f8  [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
11:16:00.0459 0x14f8  WPCSvc - ok
11:16:00.0521 0x14f8  [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:16:00.0537 0x14f8  WPDBusEnum - ok
11:16:00.0615 0x14f8  [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
11:16:00.0630 0x14f8  WpdUsb - ok
11:16:00.0864 0x14f8  [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
11:16:00.0895 0x14f8  WPFFontCache_v0400 - ok
11:16:00.0958 0x14f8  [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
11:16:00.0958 0x14f8  ws2ifsl - ok
11:16:01.0020 0x14f8  [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc          C:\Windows\system32\wscsvc.dll
11:16:01.0020 0x14f8  wscsvc - ok
11:16:01.0098 0x14f8  [ 4422AC5ED8D4C2F0DB63E71D4C069DD7, B010DCC7B802C26A701A7DE1CA1B21D6B43D99FE88524D015C9228376B0BDA6E ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
11:16:01.0098 0x14f8  WSDPrintDevice - ok
11:16:01.0129 0x14f8  WSearch - ok
11:16:01.0441 0x14f8  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
11:16:01.0816 0x14f8  wuauserv - ok
11:16:01.0894 0x14f8  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:16:01.0909 0x14f8  WudfPf - ok
11:16:01.0941 0x14f8  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:16:01.0956 0x14f8  WUDFRd - ok
11:16:02.0003 0x14f8  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
11:16:02.0019 0x14f8  wudfsvc - ok
11:16:02.0034 0x14f8  ================ Scan global ===============================
11:16:02.0097 0x14f8  [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
11:16:02.0159 0x14f8  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
11:16:02.0221 0x14f8  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
11:16:02.0284 0x14f8  [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
11:16:02.0299 0x14f8  [ Global ] - ok
11:16:02.0299 0x14f8  ================ Scan MBR ==================================
11:16:02.0315 0x14f8  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
11:16:02.0939 0x14f8  \Device\Harddisk0\DR0 - ok
11:16:02.0939 0x14f8  ================ Scan VBR ==================================
11:16:02.0955 0x14f8  [ 2DC3FC17149E7FBB3443C10D646D14B8 ] \Device\Harddisk0\DR0\Partition1
11:16:03.0033 0x14f8  \Device\Harddisk0\DR0\Partition1 - ok
11:16:03.0111 0x14f8  [ 88508FB05EBA0A05F8F890E0F43BB4B3 ] \Device\Harddisk0\DR0\Partition2
11:16:03.0173 0x14f8  \Device\Harddisk0\DR0\Partition2 - ok
11:16:03.0173 0x14f8  ================ Scan generic autorun ======================
11:16:03.0376 0x14f8  [ DEB2A99C1AD9B9190C78E895AE60A745, D003BEA585EAC0110BFC69E127D8C1C0BA1E76E51EC7C7B844EAD7B6DACCBAF6 ] C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
11:16:03.0423 0x14f8  Symantec PIF AlertEng - ok
11:16:03.0688 0x14f8  [ 127E7DD016305FF87B9B59189672C497, E7996D057E0EEE39770D980ABC8F20FEFC73CA7716E8A83B7C6A8ABB0EC4CD65 ] C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
11:16:03.0703 0x14f8  SigmatelSysTrayApp - ok
11:16:03.0703 0x14f8  NvCplDaemon - ok
11:16:03.0875 0x14f8  [ F93EBA19E9D096C481A5D8AAA1B3D2FB, E1F3D4D44BE37D60212FEBA7A8C0E7E0535B137AA42E3EFD27BB5FFA29907B7E ] C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
11:16:03.0906 0x14f8  NMSSupport - ok
11:16:04.0031 0x14f8  [ 473E323057CF9893D7E8C1E2D0CCED23, 30181735805B6F61DE0BD004DB53235F560FC21C7BEE7913B6AA56D2AA2ECBB6 ] C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe
11:16:04.0047 0x14f8  MaxMenuMgr - ok
11:16:04.0421 0x14f8  [ 7CEB241A5A11F4B49C7C3F3B68E31228, 4B5E95C8E343B3E8BA5891BFF6EDD35BD5AFEABF3287CAFB94847B38F5CFC363 ] C:\Program Files\Microsoft IntelliPoint\ipoint.exe
11:16:04.0483 0x14f8  IntelliPoint - ok
11:16:04.0655 0x14f8  [ FF473648E7B1B37C7F3249A6549FAC72, 632825038F5975415D129CCB84682243360821857D250D7827E21A08DE855BCC ] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
11:16:04.0655 0x14f8  hpqSRMon - ok
11:16:04.0671 0x14f8  CCUTRAYICON - ok
11:16:04.0795 0x14f8  [ 6620C14AFE1F8E7C268D06EC7D7427A9, E0AA0EE48E21641A2300CF1679D23471D52D908B27217238E6FE0AE8970D2A42 ] C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe
11:16:04.0842 0x14f8  Carbonite Backup - ok
11:16:04.0920 0x14f8  [ E616A6A6E91B0A86F2F6217CDE835FFE, 411671C4B2BB4DB3F02A21C199A5479F31394165704736A549B53245B94577F7 ] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
11:16:04.0920 0x14f8  swg - ok
11:16:04.0920 0x14f8  Waiting for KSN requests completion. In queue: 70
11:16:05.0934 0x14f8  Waiting for KSN requests completion. In queue: 70
11:16:06.0948 0x14f8  Waiting for KSN requests completion. In queue: 70
11:16:08.0009 0x14f8  AV detected via SS2: Norton Internet Security, C:\Program Files\Norton Internet Security\Engine\21.3.0.12\WSCStub.exe ( 21.3.0.0 ), 0x51000 ( enabled : updated )
11:16:08.0009 0x14f8  FW detected via SS2: Norton Internet Security, C:\Program Files\Norton Internet Security\Engine\21.3.0.12\WSCStub.exe ( 21.3.0.0 ), 0x51010 ( enabled )
11:16:10.0567 0x14f8  ============================================================
11:16:10.0567 0x14f8  Scan finished
11:16:10.0567 0x14f8  ============================================================
11:16:10.0567 0x164c  Detected object count: 0
11:16:10.0567 0x164c  Actual detected object count: 0
 



#8 BigLou99

BigLou99
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:02:52 PM

Posted 17 June 2014 - 11:39 AM

AdwCleaner:

 

# AdwCleaner v3.212 - Report created 17/06/2014 at 11:26:58
# Updated 05/06/2014 by Xplode
# Operating System : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# Username : louis - LOUIS-PC
# Running from : C:\Users\louis\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

[x] Not Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Uniblue
[x] Not Deleted : C:\Program Files\Uniblue
[x] Not Deleted : C:\Program Files\Uniblue\DriverScanner
[x] Not Deleted : C:\Users\louis\AppData\Roaming\Uniblue

***** [ Shortcuts ] *****


***** [ Registry ] *****

[x] Not Deleted : HKCU\Software\Uniblue
[x] Not Deleted : HKCU\Software\Uniblue\DriverScanner
[x] Not Deleted : HKLM\Software\Uniblue
[x] Not Deleted : HKLM\Software\Uniblue\DriverScanner

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16555


-\\ Mozilla Firefox v30.0 (en-US)

[ File : C:\Users\louis\AppData\Roaming\Mozilla\Firefox\Profiles\dl4vpi4u.default-1395773349825\prefs.js ]


-\\ Google Chrome v35.0.1916.153

[ File : C:\Users\louis\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3710 octets] - [16/06/2014 13:36:26]
AdwCleaner[R1].txt - [1438 octets] - [17/06/2014 11:23:31]
AdwCleaner[S0].txt - [3821 octets] - [16/06/2014 13:46:46]
AdwCleaner[S1].txt - [1395 octets] - [17/06/2014 11:26:58]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1455 octets] ##########
 



#9 BigLou99

BigLou99
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:02:52 PM

Posted 17 June 2014 - 12:26 PM

Junkware removal tool:

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows Vista ™ Home Premium x86
Ran by louis on Tue 06/17/2014 at 11:44:01.54
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files

Successfully deleted: [File] "C:\Users\louis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\driverscanner.lnk"



~~~ Folders

Successfully deleted: [Folder] "C:\Users\louis\AppData\Roaming\software"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uniblue"



~~~ FireFox

Successfully deleted: [File] C:\user.js
Emptied folder: C:\Users\louis\AppData\Roaming\mozilla\firefox\profiles\dl4vpi4u.default-1395773349825\minidumps [75 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 06/17/2014 at 11:52:55.05
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#10 BigLou99

BigLou99
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:02:52 PM

Posted 17 June 2014 - 05:06 PM

the ESET scanner gets stuck on a 2gb ISO file - it was 23% done and did not find anything.



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:52 PM

Posted 17 June 2014 - 08:20 PM

Are you still hijacked?

If so turn off ADD Ons in IE and see

 

Turning off and removing add-ons


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 BigLou99

BigLou99
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:02:52 PM

Posted 18 June 2014 - 08:10 AM

boopme -

I found that if I changed the home page to the full address http://www.foxnews.com that the problem did not occur.  I did not realize the home page was set to http://foxnews.com  (no "www") . After running all the scans you suggested (not sure what got changed or deleted), I tried it both ways and there is no problem now.  I have also adjusted some of the security sliders in IE settings as the page would not display all the graphics.

In summary - it seems to be working fine now, not sure what step/action may have been the fix.

Many thanks for your help.



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,109 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:52 PM

Posted 18 June 2014 - 03:03 PM

That's good news...


Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users