Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Iexplorer.exe running multiple background processes w/ high CPU usage


  • This topic is locked This topic is locked
7 replies to this topic

#1 shwnstnsn

shwnstnsn

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:53 AM

Posted 30 June 2014 - 07:32 PM

Seems to only happen at night. I NEVER use IE but I'll find 3-4 iexplorer.exe processes running and using high CPU percentages. I have been unable thus far to find and remove the problem.  I will typically keep task manager open and close each process at it comes up, but once I've closed one, more will open. I attempted to follow the directions to post the logs from DDS, but it only created the attach.txt file. (Which I've attached.)A DDS file was not created.  Neither AVG or windows scans have found any problems. Any help will be greatly appreciated.

Attached Files



BC AdBot (Login to Remove)

 


#2 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:53 AM

Posted 01 July 2014 - 04:14 AM

Hi there,

please run the following scans:


Step 1

Please download TDSSKiller and save it to your Desktop.
  • Start tdsskiller.exe with administrator privileges.
  • Accept the EULA and the KSN Statement.
  • Click on Change parameters.
  • Make sure that all available options (except "Loaded modules") are checked and click OK.
  • Click on Start scan.
  • If any threats are found don't delete them but choose the Skip option for all of them.
  • Click on Report to open the log file. (It is also saved at C:\TDSSKiller.<version_date_time>_log.txt).
    Copy and paste its contents in your next reply.


Step 2

Please download Farbar Recovery Scan Tool and save it to your Desktop.
(If you are not sure which version (32-/64-bit) applies to your system, download and try to start both of them as just the right one will run.)
  • Start FRST with administator privileges.
  • Make sure the option Addition.txt is checked and press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
  • Please copy and paste these logs in your next reply.


#3 shwnstnsn

shwnstnsn
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:53 AM

Posted 03 July 2014 - 09:42 PM

21:25:19.0286 0x22f4  TDSS rootkit removing tool 3.0.0.39 Jun  5 2014 20:35:54
21:25:34.0479 0x22f4  ============================================================
21:25:34.0479 0x22f4  Current date / time: 2014/07/03 21:25:34.0479
21:25:34.0479 0x22f4  SystemInfo:
21:25:34.0479 0x22f4  
21:25:34.0479 0x22f4  OS Version: 6.0.6002 ServicePack: 2.0
21:25:34.0480 0x22f4  Product type: Workstation
21:25:34.0480 0x22f4  ComputerName: SHAWNSDESKTOP
21:25:34.0480 0x22f4  UserName: C. Shawn Stinson
21:25:34.0480 0x22f4  Windows directory: C:\Windows
21:25:34.0480 0x22f4  System windows directory: C:\Windows
21:25:34.0480 0x22f4  Processor architecture: Intel x86
21:25:34.0480 0x22f4  Number of processors: 2
21:25:34.0480 0x22f4  Page size: 0x1000
21:25:34.0480 0x22f4  Boot type: Normal boot
21:25:34.0480 0x22f4  ============================================================
21:25:34.0704 0x22f4  KLMD registered as C:\Windows\system32\drivers\53362589.sys
21:25:35.0039 0x22f4  System UUID: {8468F6F0-F509-696D-61A3-6BC1B30895B9}
21:25:35.0671 0x22f4  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:25:35.0687 0x22f4  ============================================================
21:25:35.0687 0x22f4  \Device\Harddisk0\DR0:
21:25:35.0687 0x22f4  MBR partitions:
21:25:35.0687 0x22f4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800
21:25:35.0687 0x22f4  ============================================================
21:25:35.0716 0x22f4  C: <-> \Device\Harddisk0\DR0\Partition1
21:25:35.0717 0x22f4  ============================================================
21:25:35.0717 0x22f4  Initialize success
21:25:35.0717 0x22f4  ============================================================
21:25:59.0284 0x0290  ============================================================
21:25:59.0285 0x0290  Scan started
21:25:59.0285 0x0290  Mode: Manual; SigCheck; TDLFS; 
21:25:59.0285 0x0290  ============================================================
21:25:59.0285 0x0290  KSN ping started
21:26:13.0200 0x0290  KSN ping finished: true
21:26:13.0544 0x0290  ================ Scan system memory ========================
21:26:13.0544 0x0290  System memory - ok
21:26:13.0545 0x0290  ================ Scan services =============================
21:26:13.0734 0x0290  [ 585E64BB6DFBC0A2F1F0B554DED012DF, D1AB49DA951583E8E8154D977A47F4D20911BD4F77A0D5AD1293570426F3F6FA ] 61883           C:\Windows\system32\DRIVERS\61883.sys
21:26:14.0054 0x0290  61883 - ok
21:26:14.0137 0x0290  [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI            C:\Windows\system32\drivers\acpi.sys
21:26:14.0162 0x0290  ACPI - ok
21:26:14.0239 0x0290  [ B5D8DE922237CEDDC7992297654A4BE4, 88EF0B5EBFB383C9069A29AEA8D76EDBE1E70DD6F7C18970EE01ECAE9F408B38 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:26:14.0260 0x0290  AdobeFlashPlayerUpdateSvc - ok
21:26:14.0310 0x0290  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
21:26:14.0350 0x0290  adp94xx - ok
21:26:14.0377 0x0290  [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
21:26:14.0422 0x0290  adpahci - ok
21:26:14.0439 0x0290  [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
21:26:14.0455 0x0290  adpu160m - ok
21:26:14.0478 0x0290  [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
21:26:14.0496 0x0290  adpu320 - ok
21:26:14.0537 0x0290  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:26:14.0612 0x0290  AeLookupSvc - ok
21:26:14.0678 0x0290  [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD             C:\Windows\system32\drivers\afd.sys
21:26:14.0738 0x0290  AFD - ok
21:26:14.0784 0x0290  [ EF23439CDD587F64C2C1B8825CEAD7D8, 762665CFC202B3E16CA2338887896FDF996331A363DC709F1EC088BF927133A3 ] agp440          C:\Windows\system32\drivers\agp440.sys
21:26:14.0800 0x0290  agp440 - ok
21:26:14.0830 0x0290  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
21:26:14.0846 0x0290  aic78xx - ok
21:26:14.0925 0x0290  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe
21:26:14.0975 0x0290  ALG - ok
21:26:14.0995 0x0290  [ 90395B64600EBB4552E26E178C94B2E4, 73095893964DC7915983B58A567184FC51949C99341E7E0D04D70CC4C4F95E37 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:26:15.0009 0x0290  aliide - ok
21:26:15.0033 0x0290  [ 2B13E304C9DFDFA5EB582F6A149FA2C7, 196CCE13E0376526B79D9C43D4071990576C4DD210A48E9E922B438AA11C95E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
21:26:15.0049 0x0290  amdagp - ok
21:26:15.0072 0x0290  [ 0577DF1D323FE75A739C787893D300EA, 079EF3CA18FB847DB7E62929071BFF007FAF390E1DBF4C59F28DAAC6B9C2DE51 ] amdide          C:\Windows\system32\drivers\amdide.sys
21:26:15.0085 0x0290  amdide - ok
21:26:15.0126 0x0290  [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
21:26:15.0308 0x0290  AmdK7 - ok
21:26:15.0348 0x0290  [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
21:26:15.0388 0x0290  AmdK8 - ok
21:26:15.0449 0x0290  [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo         C:\Windows\System32\appinfo.dll
21:26:15.0502 0x0290  Appinfo - ok
21:26:15.0578 0x0290  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:26:15.0592 0x0290  Apple Mobile Device - ok
21:26:15.0622 0x0290  [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc             C:\Windows\system32\drivers\arc.sys
21:26:15.0638 0x0290  arc - ok
21:26:15.0666 0x0290  [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:26:15.0683 0x0290  arcsas - ok
21:26:15.0816 0x0290  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:26:15.0849 0x0290  aspnet_state - ok
21:26:15.0908 0x0290  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:26:15.0954 0x0290  AsyncMac - ok
21:26:15.0998 0x0290  [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi           C:\Windows\system32\drivers\atapi.sys
21:26:16.0014 0x0290  atapi - ok
21:26:16.0081 0x0290  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:26:16.0162 0x0290  AudioEndpointBuilder - ok
21:26:16.0181 0x0290  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
21:26:16.0219 0x0290  Audiosrv - ok
21:26:16.0269 0x0290  [ F4B56425A00BEB32F5FA6603FF7B0EA2, E91E401053AC9363DE4675879D01B4E0D4054B7AEBBFEE656861170820F53278 ] Avc             C:\Windows\system32\DRIVERS\avc.sys
21:26:16.0309 0x0290  Avc - ok
21:26:16.0377 0x0290  [ 66005CD6AA6764265EC67AD1A3F4552F, B26BB4BA0FC5DF24F9C34CB9D5E8821216507142A222C9B51DA920F8BA7E4898 ] Avgdiskx        C:\Windows\system32\DRIVERS\avgdiskx.sys
21:26:16.0403 0x0290  Avgdiskx - ok
21:26:16.0671 0x0290  [ 20B2C28E3914C6837B30D44D31D2A294, CB10530525CD36146391ECFB8875A284B7EF71A84EBC96D078FB3D637E29A504 ] AVGIDSAgent     C:\Program Files\AVG\AVG2014\avgidsagent.exe
21:26:16.0889 0x0290  AVGIDSAgent - ok
21:26:16.0959 0x0290  [ 572AA32C47BDFD17D3F7411503215D1B, 62E2F46A4E45CE44B4DF8F898FF7CFE75B69B349F3C91959D353BBEC0F4DC83D ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdriverx.sys
21:26:16.0976 0x0290  AVGIDSDriver - ok
21:26:17.0029 0x0290  [ C0701A3C53F0A0F5E4900F26365A10A1, 2755AF8C98F4855FD467F0174D6AE7AC3E7050D95008FE521918194593684D51 ] AVGIDSHX        C:\Windows\system32\DRIVERS\avgidshx.sys
21:26:17.0043 0x0290  AVGIDSHX - ok
21:26:17.0090 0x0290  [ E7FEE532CEF01C97D7682E35D156244F, CF54B4B83E1A060FF52BDEAC4E20492ACFAABC87BC6BE784D6AB4CD64C965B92 ] AVGIDSShim      C:\Windows\system32\DRIVERS\avgidsshimx.sys
21:26:17.0112 0x0290  AVGIDSShim - ok
21:26:17.0167 0x0290  [ FA868D5784DE755DD8A1B4B1A80574E4, 9300B4ACBDA96FA4FEE9265ED0E50F750C2B6F7BE854953B8FB73904679DBCA3 ] Avgldx86        C:\Windows\system32\DRIVERS\avgldx86.sys
21:26:17.0181 0x0290  Avgldx86 - ok
21:26:17.0229 0x0290  [ 8D37558421330218C98722DF4AD85E83, 24C33B317BA605DFC9B9CE2868391A815870A61F58A172806533A16F29F92B0A ] Avglogx         C:\Windows\system32\DRIVERS\avglogx.sys
21:26:17.0246 0x0290  Avglogx - ok
21:26:17.0300 0x0290  [ 5C3A4A2F473E614C1BF807FE2ABE0D05, 71E786EA1DCBC6ECB915E887B19C86E041C8E4373DAB28548D344323FD9D6CD2 ] Avgmfx86        C:\Windows\system32\DRIVERS\avgmfx86.sys
21:26:17.0313 0x0290  Avgmfx86 - ok
21:26:17.0354 0x0290  [ 86FCB8CE3E68C4777B98F7AF06FE8519, 6B7507DA927ECDBA8B2DAA87530DDAEAC5B0983D3CF11D1F6D00D36601FBC60C ] Avgrkx86        C:\Windows\system32\DRIVERS\avgrkx86.sys
21:26:17.0365 0x0290  Avgrkx86 - ok
21:26:17.0378 0x0290  [ ACFEE559442E1FCD48EC74C7D3452608, 536E36CD59BB1E0F5732D8BF57208A07C88A51D02FA016F844648CA0B44F0073 ] Avgtdix         C:\Windows\system32\DRIVERS\avgtdix.sys
21:26:17.0410 0x0290  Avgtdix - ok
21:26:17.0449 0x0290  [ 13BB5F8819F90CE30A967FD94823E21B, 01E4AE673D0E48EAFAE6D879AE1A5D7E385848CBC0FDE45BA0AE1F96D02BC65B ] avgwd           C:\Program Files\AVG\AVG2014\avgwdsvc.exe
21:26:17.0469 0x0290  avgwd - ok
21:26:17.0536 0x0290  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:26:17.0573 0x0290  Beep - ok
21:26:17.0639 0x0290  [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE             C:\Windows\System32\bfe.dll
21:26:17.0719 0x0290  BFE - ok
21:26:17.0802 0x0290  [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS            C:\Windows\System32\qmgr.dll
21:26:17.0938 0x0290  BITS - ok
21:26:17.0949 0x0290  blbdrive - ok
21:26:18.0042 0x0290  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:26:18.0114 0x0290  Bonjour Service - ok
21:26:18.0173 0x0290  [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:26:18.0252 0x0290  bowser - ok
21:26:18.0282 0x0290  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
21:26:18.0330 0x0290  BrFiltLo - ok
21:26:18.0354 0x0290  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
21:26:18.0399 0x0290  BrFiltUp - ok
21:26:18.0457 0x0290  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll
21:26:18.0504 0x0290  Browser - ok
21:26:18.0539 0x0290  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
21:26:18.0616 0x0290  Brserid - ok
21:26:18.0658 0x0290  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
21:26:18.0718 0x0290  BrSerWdm - ok
21:26:18.0731 0x0290  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
21:26:18.0798 0x0290  BrUsbMdm - ok
21:26:18.0819 0x0290  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
21:26:18.0879 0x0290  BrUsbSer - ok
21:26:18.0905 0x0290  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
21:26:18.0966 0x0290  BTHMODEM - ok
21:26:19.0022 0x0290  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:26:19.0053 0x0290  cdfs - ok
21:26:19.0127 0x0290  [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:26:19.0149 0x0290  cdrom - ok
21:26:19.0201 0x0290  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc     C:\Windows\System32\certprop.dll
21:26:19.0227 0x0290  CertPropSvc - ok
21:26:19.0285 0x0290  [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass        C:\Windows\system32\drivers\circlass.sys
21:26:19.0345 0x0290  circlass - ok
21:26:19.0388 0x0290  [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS            C:\Windows\system32\CLFS.sys
21:26:19.0409 0x0290  CLFS - ok
21:26:19.0438 0x0290  [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:26:19.0451 0x0290  clr_optimization_v2.0.50727_32 - ok
21:26:19.0519 0x0290  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:26:19.0538 0x0290  clr_optimization_v4.0.30319_32 - ok
21:26:19.0556 0x0290  [ 45201046C776FFDAF3FC8A0029C581C8, 68A68CF2B76598BC8610EB5B2D3FD5BDC9D51CFC6F51FB7A0B0C92A2BE910FC6 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:26:19.0568 0x0290  cmdide - ok
21:26:19.0587 0x0290  [ 82B8C91D327CFECF76CB58716F7D4997, 6F06A4BC44B170BB28BF464E9BB5216D39D11CB8D442570B575A741B032EAEE6 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
21:26:19.0600 0x0290  Compbatt - ok
21:26:19.0611 0x0290  COMSysApp - ok
21:26:19.0630 0x0290  [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
21:26:19.0642 0x0290  crcdisk - ok
21:26:19.0660 0x0290  [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
21:26:19.0715 0x0290  Crusoe - ok
21:26:19.0776 0x0290  [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:26:19.0816 0x0290  CryptSvc - ok
21:26:19.0891 0x0290  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:26:19.0948 0x0290  DcomLaunch - ok
21:26:20.0010 0x0290  [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:26:20.0049 0x0290  DfsC - ok
21:26:20.0186 0x0290  [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR            C:\Windows\system32\DFSR.exe
21:26:20.0390 0x0290  DFSR - ok
21:26:20.0460 0x0290  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
21:26:20.0501 0x0290  Dhcp - ok
21:26:20.0557 0x0290  [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk            C:\Windows\system32\drivers\disk.sys
21:26:20.0572 0x0290  disk - ok
21:26:20.0632 0x0290  [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:26:20.0670 0x0290  Dnscache - ok
21:26:20.0734 0x0290  [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc         C:\Windows\System32\dot3svc.dll
21:26:20.0771 0x0290  dot3svc - ok
21:26:20.0824 0x0290  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll
21:26:20.0872 0x0290  DPS - ok
21:26:20.0900 0x0290  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:26:20.0940 0x0290  drmkaud - ok
21:26:21.0008 0x0290  [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:26:21.0107 0x0290  DXGKrnl - ok
21:26:21.0147 0x0290  [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
21:26:21.0255 0x0290  E1G60 - ok
21:26:21.0323 0x0290  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll
21:26:21.0351 0x0290  EapHost - ok
21:26:21.0388 0x0290  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache          C:\Windows\system32\drivers\ecache.sys
21:26:21.0409 0x0290  Ecache - ok
21:26:21.0473 0x0290  [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:26:21.0512 0x0290  ehRecvr - ok
21:26:21.0535 0x0290  [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched         C:\Windows\ehome\ehsched.exe
21:26:21.0578 0x0290  ehSched - ok
21:26:21.0590 0x0290  [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart         C:\Windows\ehome\ehstart.dll
21:26:21.0617 0x0290  ehstart - ok
21:26:21.0651 0x0290  [ 7EC42EC12A4BAC14BCCA99FB06F2D125, 6C4761B6727430D11D463C2E3BD0202755BE6598F3585A2B4B8E24DBA6A2EF7B ] elagopro        C:\Windows\system32\DRIVERS\elagopro.sys
21:26:21.0704 0x0290  elagopro - ok
21:26:21.0735 0x0290  [ DFEABB7CFFFADEA4A912AB95BDC3177A, 9A93956CF826F419ACB2B3CA8809917E345ACFD43B102EAB18DB46F49859D1C7 ] elaunidr        C:\Windows\system32\DRIVERS\elaunidr.sys
21:26:21.0776 0x0290  elaunidr - ok
21:26:21.0820 0x0290  [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
21:26:21.0859 0x0290  elxstor - ok
21:26:21.0940 0x0290  [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
21:26:22.0064 0x0290  EMDMgmt - ok
21:26:22.0137 0x0290  [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem     C:\Windows\system32\es.dll
21:26:22.0188 0x0290  EventSystem - ok
21:26:22.0249 0x0290  [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat           C:\Windows\system32\drivers\exfat.sys
21:26:22.0302 0x0290  exfat - ok
21:26:22.0350 0x0290  [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:26:22.0388 0x0290  fastfat - ok
21:26:22.0413 0x0290  [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
21:26:22.0486 0x0290  fdc - ok
21:26:22.0532 0x0290  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll
21:26:22.0576 0x0290  fdPHost - ok
21:26:22.0595 0x0290  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:26:22.0666 0x0290  FDResPub - ok
21:26:22.0716 0x0290  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:26:22.0734 0x0290  FileInfo - ok
21:26:22.0781 0x0290  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:26:22.0816 0x0290  Filetrace - ok
21:26:22.0838 0x0290  [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
21:26:22.0896 0x0290  flpydisk - ok
21:26:22.0953 0x0290  [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:26:22.0976 0x0290  FltMgr - ok
21:26:23.0062 0x0290  [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache       C:\Windows\system32\FntCache.dll
21:26:23.0226 0x0290  FontCache - ok
21:26:23.0331 0x0290  [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:26:23.0346 0x0290  FontCache3.0.0.0 - ok
21:26:23.0450 0x0290  [ C0504D5561D4E3872BCBA47531E2763B, 171ECD1E7796858BF499A9DD1724FF0634FC2948D92D3B0A855D901932B8F03C ] FreeAgentGoNext Service C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
21:26:23.0468 0x0290  FreeAgentGoNext Service - ok
21:26:23.0537 0x0290  [ D909075FA72C090F27AA926C32CB4612, F8610C20C4DD499D5B4ACEBD7107E52E25B6449AEED58D1A203F7D654B55C4DF ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
21:26:23.0552 0x0290  fssfltr - ok
21:26:23.0756 0x0290  [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc          C:\Program Files\Windows Live\Family Safety\fsssvc.exe
21:26:23.0895 0x0290  fsssvc - ok
21:26:23.0947 0x0290  [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:26:23.0983 0x0290  Fs_Rec - ok
21:26:24.0032 0x0290  [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:26:24.0048 0x0290  gagp30kx - ok
21:26:24.0109 0x0290  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\Windows\system32\Drivers\GEARAspiWDM.sys
21:26:24.0122 0x0290  GEARAspiWDM - ok
21:26:24.0249 0x0290  [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc           C:\Windows\System32\gpsvc.dll
21:26:24.0374 0x0290  gpsvc - ok
21:26:24.0477 0x0290  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
21:26:24.0493 0x0290  gupdate - ok
21:26:24.0502 0x0290  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
21:26:24.0517 0x0290  gupdatem - ok
21:26:24.0572 0x0290  [ 833051C6C6C42117191935F734CFBD97, 5EB5672ABC7994A4AFF855A572158B8BE4FC6E541CFD4B9BE4FF2739A9A6AFB8 ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
21:26:24.0586 0x0290  hamachi - ok
21:26:24.0738 0x0290  [ 20AAD49D221C3BD428FF6B7C89A85C97, 36E8EE135849864E60964B051C3B5C0F815170A95E9D124E14B317D8E70CE314 ] Hamachi2Svc     C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
21:26:24.0876 0x0290  Hamachi2Svc - ok
21:26:24.0928 0x0290  [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:26:25.0011 0x0290  HdAudAddService - ok
21:26:25.0074 0x0290  [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
21:26:25.0134 0x0290  HDAudBus - ok
21:26:25.0182 0x0290  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
21:26:25.0224 0x0290  HidBth - ok
21:26:25.0240 0x0290  [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr           C:\Windows\system32\drivers\hidir.sys
21:26:25.0291 0x0290  HidIr - ok
21:26:25.0342 0x0290  [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv         C:\Windows\system32\hidserv.dll
21:26:25.0363 0x0290  hidserv - ok
21:26:25.0416 0x0290  [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
21:26:25.0440 0x0290  HidUsb - ok
21:26:25.0487 0x0290  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:26:25.0516 0x0290  hkmsvc - ok
21:26:25.0533 0x0290  [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
21:26:25.0546 0x0290  HpCISSs - ok
21:26:25.0620 0x0290  [ 1882827F41DEE51C70E24C567C35BFB5, C3508BDB045F0CB2205733D9F0CF7A2BEE03C4E4A8690B7D305EBEE887E588C6 ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys
21:26:25.0833 0x0290  HSF_DPV - ok
21:26:25.0879 0x0290  [ 5F60F0AD32D43B9AB9AC9373117D8E54, 33F3E7F65AE133336887C08047C9F64AE515EB5166656FBBBD06DE0A819945FE ] HSXHWBS2        C:\Windows\system32\DRIVERS\HSXHWBS2.sys
21:26:25.0918 0x0290  HSXHWBS2 - ok
21:26:25.0964 0x0290  [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:26:26.0037 0x0290  HTTP - ok
21:26:26.0084 0x0290  [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp           C:\Windows\system32\drivers\i2omp.sys
21:26:26.0097 0x0290  i2omp - ok
21:26:26.0154 0x0290  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
21:26:26.0187 0x0290  i8042prt - ok
21:26:26.0211 0x0290  [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
21:26:26.0234 0x0290  iaStorV - ok
21:26:26.0333 0x0290  [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:26:26.0426 0x0290  idsvc - ok
21:26:26.0466 0x0290  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
21:26:26.0481 0x0290  iirsp - ok
21:26:26.0550 0x0290  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT          C:\Windows\System32\ikeext.dll
21:26:26.0621 0x0290  IKEEXT - ok
21:26:26.0814 0x0290  [ A47B2875680AD67B35C6150BD0203056, 2087CF6D1EEA7C0DB09EB3211713B2D0F36877960878A08CF6CEC99252316417 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
21:26:26.0959 0x0290  IntcAzAudAddService - ok
21:26:27.0009 0x0290  [ 97469037714070E45194ED318D636401, DDB5AE39BE0BD37ECB44969A5FA740E5B1169342347D0DB3E5DF0353A6708271 ] intelide        C:\Windows\system32\drivers\intelide.sys
21:26:27.0020 0x0290  intelide - ok
21:26:27.0075 0x0290  [ CE44CC04262F28216DD4341E9E36A16F, 2B316C4124DCFEAD7838B3D8FB8DBEC3F3B1EA8EA612AABB05B1275D0B230CCD ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:26:27.0118 0x0290  intelppm - ok
21:26:27.0230 0x0290  [ 7BDB4E00E1CB174B56E5B2C31DDE68A7, C7FC4B2A3245DCD4E01B8DC9F7AA8D4FBDD5D1B4F5A00B8895B2EC5E9068D91A ] IntuitUpdateService C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
21:26:27.0239 0x0290  IntuitUpdateService - ok
21:26:27.0337 0x0290  [ 0895CDD7F1542FFCC5BBB560EC78BC16, 383D9FFE7FB313EA201DE877F3D48B5116FFA261EDEF5D0D0FE79F14E9682D25 ] IntuitUpdateServiceV4 C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
21:26:27.0347 0x0290  IntuitUpdateServiceV4 - ok
21:26:27.0393 0x0290  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:26:27.0430 0x0290  IPBusEnum - ok
21:26:27.0471 0x0290  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:26:27.0502 0x0290  IpFilterDriver - ok
21:26:27.0536 0x0290  [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:26:27.0586 0x0290  iphlpsvc - ok
21:26:27.0594 0x0290  IpInIp - ok
21:26:27.0634 0x0290  [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
21:26:27.0695 0x0290  IPMIDRV - ok
21:26:27.0738 0x0290  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
21:26:27.0780 0x0290  IPNAT - ok
21:26:27.0849 0x0290  [ 463790AEF94D8EAB674631257F53252E, A02972457F45AD6816CB5F60DE4CD15D68256695FA0F3E4EAD6F9E36CBE54576 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:26:27.0893 0x0290  iPod Service - ok
21:26:27.0953 0x0290  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:26:27.0993 0x0290  IRENUM - ok
21:26:28.0026 0x0290  [ 350FCA7E73CF65BCEF43FAE1E4E91293, 68403FE3F4DC40919CD26A2CC42BE4386AE6874F47DD382348FFD79080721A13 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:26:28.0041 0x0290  isapnp - ok
21:26:28.0118 0x0290  [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
21:26:28.0141 0x0290  iScsiPrt - ok
21:26:28.0164 0x0290  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
21:26:28.0179 0x0290  iteatapi - ok
21:26:28.0204 0x0290  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
21:26:28.0219 0x0290  iteraid - ok
21:26:28.0237 0x0290  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:26:28.0250 0x0290  kbdclass - ok
21:26:28.0307 0x0290  [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
21:26:28.0325 0x0290  kbdhid - ok
21:26:28.0360 0x0290  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso          C:\Windows\system32\lsass.exe
21:26:28.0410 0x0290  KeyIso - ok
21:26:28.0439 0x0290  [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:26:28.0478 0x0290  KSecDD - ok
21:26:28.0575 0x0290  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:26:28.0655 0x0290  KtmRm - ok
21:26:28.0704 0x0290  [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer    C:\Windows\system32\srvsvc.dll
21:26:28.0766 0x0290  LanmanServer - ok
21:26:28.0813 0x0290  [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:26:28.0847 0x0290  LanmanWorkstation - ok
21:26:28.0901 0x0290  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:26:28.0938 0x0290  lltdio - ok
21:26:28.0985 0x0290  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:26:29.0022 0x0290  lltdsvc - ok
21:26:29.0072 0x0290  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:26:29.0129 0x0290  lmhosts - ok
21:26:29.0206 0x0290  [ FF585B29142A433EAA4C76EF4E29CCC7, 683648CFD3F00DDC991E9754FBB5F265F405D6DA0F79150314EBF7DD901524BC ] LMIGuardianSvc  C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
21:26:29.0246 0x0290  LMIGuardianSvc - ok
21:26:29.0291 0x0290  [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
21:26:29.0305 0x0290  LSI_FC - ok
21:26:29.0334 0x0290  [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
21:26:29.0348 0x0290  LSI_SAS - ok
21:26:29.0388 0x0290  [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
21:26:29.0403 0x0290  LSI_SCSI - ok
21:26:29.0452 0x0290  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys
21:26:29.0506 0x0290  luafv - ok
21:26:29.0724 0x0290  [ 8113133EC42DD6C566908008CE913EDD, 9D388AEF0A1F62E45D1F84D0429B6AD3AB3FE73ABB0C9E0564B6D91337A74E98 ] LVcKap          C:\Windows\system32\DRIVERS\LVcKap.sys
21:26:29.0920 0x0290  LVcKap - ok
21:26:29.0995 0x0290  [ 9E41266C68C11D7101A2D18CD1F7553E, ECFE65FDEA7F9A10F5B776370AE6F2DEA6BB7C249902F034BB199C0548356E5E ] LVCOMSer        C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
21:26:30.0014 0x0290  LVCOMSer - ok
21:26:30.0132 0x0290  [ 0DD5B8AF4917A2821047450195C511B3, 9F5D57CA468DCE508E5A037543A6D99F535F84C35BB49B0FF96A2C385AB8A247 ] LVMVDrv         C:\Windows\system32\DRIVERS\LVMVDrv.sys
21:26:30.0329 0x0290  LVMVDrv - ok
21:26:30.0403 0x0290  [ 406B1D186F75B4B4832D6237859E1B00, 7FB2657F98B425262F57574FEFF70ECCCEAD2238F10195D347AA95EAA632109D ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2Mon.sys
21:26:30.0416 0x0290  LVPr2Mon - ok
21:26:30.0442 0x0290  [ 85C2E84BC1224C75A20B5560D5A15DB9, C95E4FB231DF7381CC66B91FACE99BA21FF2E5A0ED8D4BD7B317A5ADBF604D51 ] LVPrcSrv        C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
21:26:30.0459 0x0290  LVPrcSrv - ok
21:26:30.0525 0x0290  [ 87ECCE893D8AEC5A9337B917742D339C, C5D5B4D0C4F206B67EF68D7D691B36A0249E7B41AE7DFD8445298A0F66A374A6 ] LVRS            C:\Windows\system32\DRIVERS\lvrs.sys
21:26:30.0555 0x0290  LVRS - ok
21:26:30.0579 0x0290  [ 656180E9C0C5199520972426C44BC2F0, AE5EDCA443A2C530247E27882DAFAECBE814C7575CF162A8C7ED5CD0B5049AEC ] LVSrvLauncher   C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
21:26:30.0597 0x0290  LVSrvLauncher - ok
21:26:30.0629 0x0290  [ BE5E104BE263921D6842C555DB6A5C23, 08B05F1134367A9CD7F57E7782528E48ACCF35896AB2A1861E57036C381E813A ] LVUSBSta        C:\Windows\system32\drivers\LVUSBSta.sys
21:26:30.0642 0x0290  LVUSBSta - ok
21:26:30.0737 0x0290  [ 2261D7CC31D0309F6ED72923FF82DF50, 92AE6D3F1AFCEDAB3720D07A14D5961CD6C3305EBAB2F3F5676644F1AD823320 ] lxdxCATSCustConnectService C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdxserv.exe
21:26:30.0756 0x0290  lxdxCATSCustConnectService - ok
21:26:30.0764 0x0290  lxdx_device - ok
21:26:30.0817 0x0290  [ A3E700D78EEC390F1208098CDCA5C6B6, 37D92D4AF24C43B4C468974CBBD55B6DF3AB92780560285039A0B078E566985A ] MarvinBus       C:\Windows\system32\DRIVERS\MarvinBus.sys
21:26:30.0879 0x0290  MarvinBus - ok
21:26:30.0929 0x0290  [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:26:30.0975 0x0290  Mcx2Svc - ok
21:26:31.0006 0x0290  [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk         C:\Windows\system32\DRIVERS\mdmxsdk.sys
21:26:31.0048 0x0290  mdmxsdk - ok
21:26:31.0090 0x0290  [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas         C:\Windows\system32\drivers\megasas.sys
21:26:31.0119 0x0290  megasas - ok
21:26:31.0228 0x0290  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
21:26:31.0255 0x0290  Microsoft Office Groove Audit Service - ok
21:26:31.0299 0x0290  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll
21:26:31.0375 0x0290  MMCSS - ok
21:26:31.0428 0x0290  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys
21:26:31.0507 0x0290  Modem - ok
21:26:31.0535 0x0290  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:26:31.0581 0x0290  monitor - ok
21:26:31.0618 0x0290  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:26:31.0630 0x0290  mouclass - ok
21:26:31.0671 0x0290  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:26:31.0711 0x0290  mouhid - ok
21:26:31.0764 0x0290  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
21:26:31.0777 0x0290  MountMgr - ok
21:26:31.0835 0x0290  [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:26:31.0849 0x0290  mpio - ok
21:26:31.0893 0x0290  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:26:31.0925 0x0290  mpsdrv - ok
21:26:31.0984 0x0290  [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:26:32.0033 0x0290  MpsSvc - ok
21:26:32.0079 0x0290  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
21:26:32.0090 0x0290  Mraid35x - ok
21:26:32.0139 0x0290  [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:26:32.0172 0x0290  MRxDAV - ok
21:26:32.0215 0x0290  [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:26:32.0251 0x0290  mrxsmb - ok
21:26:32.0304 0x0290  [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:26:32.0338 0x0290  mrxsmb10 - ok
21:26:32.0361 0x0290  [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:26:32.0379 0x0290  mrxsmb20 - ok
21:26:32.0406 0x0290  [ 742AED7939E734C36B7E8D6228CE26B7, 6F727144BBD42C9C5555087CA51DE8D501B5CBEFB9967866CC578733E3C5E681 ] msahci          C:\Windows\system32\drivers\msahci.sys
21:26:32.0418 0x0290  msahci - ok
21:26:32.0439 0x0290  [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:26:32.0456 0x0290  msdsm - ok
21:26:32.0497 0x0290  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe
21:26:32.0558 0x0290  MSDTC - ok
21:26:32.0618 0x0290  [ 343291A4DFD7C923C3F71F550830EC1C, E62DEEE0ECA76DD276FA27B02F91EA1A5314BDE1EA0F919FA89238A7662B8CA5 ] MSDV            C:\Windows\system32\DRIVERS\msdv.sys
21:26:32.0673 0x0290  MSDV - ok
21:26:32.0716 0x0290  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:26:32.0760 0x0290  Msfs - ok
21:26:32.0788 0x0290  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:26:32.0804 0x0290  msisadrv - ok
21:26:32.0840 0x0290  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:26:32.0900 0x0290  MSiSCSI - ok
21:26:32.0911 0x0290  msiserver - ok
21:26:32.0954 0x0290  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:26:33.0004 0x0290  MSKSSRV - ok
21:26:33.0062 0x0290  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:26:33.0099 0x0290  MSPCLOCK - ok
21:26:33.0138 0x0290  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:26:33.0177 0x0290  MSPQM - ok
21:26:33.0233 0x0290  [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:26:33.0255 0x0290  MsRPC - ok
21:26:33.0273 0x0290  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
21:26:33.0290 0x0290  mssmbios - ok
21:26:33.0308 0x0290  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:26:33.0355 0x0290  MSTEE - ok
21:26:33.0402 0x0290  [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup             C:\Windows\system32\Drivers\mup.sys
21:26:33.0419 0x0290  Mup - ok
21:26:33.0475 0x0290  [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent        C:\Windows\system32\qagentRT.dll
21:26:33.0538 0x0290  napagent - ok
21:26:33.0593 0x0290  [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:26:33.0639 0x0290  NativeWifiP - ok
21:26:33.0729 0x0290  [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:26:33.0779 0x0290  NDIS - ok
21:26:33.0825 0x0290  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:26:33.0862 0x0290  NdisTapi - ok
21:26:33.0905 0x0290  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:26:33.0943 0x0290  Ndisuio - ok
21:26:33.0993 0x0290  [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:26:34.0028 0x0290  NdisWan - ok
21:26:34.0072 0x0290  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:26:34.0107 0x0290  NDProxy - ok
21:26:34.0151 0x0290  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:26:34.0191 0x0290  NetBIOS - ok
21:26:34.0241 0x0290  [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
21:26:34.0289 0x0290  netbt - ok
21:26:34.0297 0x0290  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon        C:\Windows\system32\lsass.exe
21:26:34.0315 0x0290  Netlogon - ok
21:26:34.0364 0x0290  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll
21:26:34.0428 0x0290  Netman - ok
21:26:34.0508 0x0290  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:26:34.0532 0x0290  NetMsmqActivator - ok
21:26:34.0545 0x0290  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:26:34.0567 0x0290  NetPipeActivator - ok
21:26:34.0627 0x0290  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll
21:26:34.0678 0x0290  netprofm - ok
21:26:34.0693 0x0290  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:26:34.0715 0x0290  NetTcpActivator - ok
21:26:34.0729 0x0290  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:26:34.0745 0x0290  NetTcpPortSharing - ok
21:26:34.0774 0x0290  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
21:26:34.0785 0x0290  nfrd960 - ok
21:26:34.0837 0x0290  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:26:34.0878 0x0290  NlaSvc - ok
21:26:34.0916 0x0290  [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:26:34.0941 0x0290  Npfs - ok
21:26:34.0983 0x0290  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll
21:26:35.0022 0x0290  nsi - ok
21:26:35.0046 0x0290  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:26:35.0093 0x0290  nsiproxy - ok
21:26:35.0169 0x0290  [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:26:35.0240 0x0290  Ntfs - ok
21:26:35.0287 0x0290  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
21:26:35.0332 0x0290  ntrigdigi - ok
21:26:35.0382 0x0290  [ CF7E041663119E09D2E118521ADA9300, 0BDDEDA787CCBE34D515945717AF972143A3684F6D37F87B639D6A5371F381CC ] NuidFltr        C:\Windows\system32\DRIVERS\NuidFltr.sys
21:26:35.0395 0x0290  NuidFltr - ok
21:26:35.0438 0x0290  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys
21:26:35.0473 0x0290  Null - ok
21:26:35.0903 0x0290  [ B69E6F70CE1151C8D62ABC9DEF64DFBE, B7BD731D1CCF4E71EF1CF4AFA9189C1831306483B4BF57B12B89113A5230871B ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:26:36.0474 0x0290  nvlddmkm - ok
21:26:36.0537 0x0290  [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:26:36.0551 0x0290  nvraid - ok
21:26:36.0580 0x0290  [ 4A5FCAB82D9BF6AF8A023A66802FE9E9, 1901DC75B1763F49AFD4E3FE67B52FE1BF99EC083F4F878557128EADCAF58C5C ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:26:36.0626 0x0290  nvstor - ok
21:26:36.0673 0x0290  [ FA7B8ECA6E845B244B7E30A9DCD82C6C, CA1D5463C13596761B630314530AB12C7C63D6961ECCF2CD0409D58B6BE9C11E ] nvstor32        C:\Windows\system32\DRIVERS\nvstor32.sys
21:26:36.0687 0x0290  nvstor32 - ok
21:26:36.0774 0x0290  [ E4284FCF99FEA13A7E1836F87AE356F6, 541C40DD3483810632320E8F23427BB52593D156E876C6023BE7F7A8589383E8 ] nvsvc           C:\Windows\system32\nvvsvc.exe
21:26:36.0821 0x0290  nvsvc - ok
21:26:36.0955 0x0290  [ 03E60E0BFA53ED15DC984FA34B44BB0F, 50ABF2E303B9A2B6DDD0DB411C24C3CD6CC30AFA664B5682CF9189F96548CC10 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:26:37.0053 0x0290  nvUpdatusService - ok
21:26:37.0088 0x0290  [ 07C186427EB8FCC3D8D7927187F260F7, 9AFDE1CB7B7232BD019804BFC691580B9CC2E51A5BC0E5584B23907D532600D8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:26:37.0103 0x0290  nv_agp - ok
21:26:37.0146 0x0290  [ 67FB86EEB94059177642050718D57460, 66E31CB9BD51BDE1424628655B7BA9392CD7447DE034B7B0C8FCAE3369FB92A6 ] NWADI           C:\Windows\system32\DRIVERS\NWADIenum.sys
21:26:37.0212 0x0290  NWADI - ok
21:26:37.0222 0x0290  NwlnkFlt - ok
21:26:37.0230 0x0290  NwlnkFwd - ok
21:26:37.0286 0x0290  [ 4E651808B35656AC88A4DCDAF6CC1169, F27BB20A09E6C6CC515980E7E4E68F766D476B6E03940F0914846796D70E981F ] NWUSBModem      C:\Windows\system32\DRIVERS\nwusbmdm.sys
21:26:37.0326 0x0290  NWUSBModem - ok
21:26:37.0355 0x0290  [ 4E651808B35656AC88A4DCDAF6CC1169, F27BB20A09E6C6CC515980E7E4E68F766D476B6E03940F0914846796D70E981F ] NWUSBPort       C:\Windows\system32\DRIVERS\nwusbser.sys
21:26:37.0375 0x0290  NWUSBPort - ok
21:26:37.0490 0x0290  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:26:37.0531 0x0290  odserv - ok
21:26:37.0597 0x0290  [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
21:26:37.0635 0x0290  ohci1394 - ok
21:26:37.0692 0x0290  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:26:37.0710 0x0290  ose - ok
21:26:37.0791 0x0290  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
21:26:37.0894 0x0290  p2pimsvc - ok
21:26:37.0925 0x0290  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc          C:\Windows\system32\p2psvc.dll
21:26:37.0973 0x0290  p2psvc - ok
21:26:38.0036 0x0290  [ 8A79FDF04A73428597E2CAF9D0D67850, DB438FDE5510AB2F350ED1AC4CF0E99D3CC665FE46533A438A8FDA4DAF950F93 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
21:26:38.0112 0x0290  Parport - ok
21:26:38.0160 0x0290  [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:26:38.0176 0x0290  partmgr - ok
21:26:38.0193 0x0290  [ 6C580025C81CAF3AE9E3617C22CAD00E, 64F9061196462085E5DCD3ACB97A0D8FC67CA9A96DDD6E2103AFFF1593AE236A ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
21:26:38.0239 0x0290  Parvdm - ok
21:26:38.0285 0x0290  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:26:38.0326 0x0290  PcaSvc - ok
21:26:38.0387 0x0290  [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci             C:\Windows\system32\drivers\pci.sys
21:26:38.0409 0x0290  pci - ok
21:26:38.0447 0x0290  [ 1636D43F10416AEB483BC6001097B26C, 36E61A993693A46538FE0F726D67BB28886F61D53384AD600D1282296A27662E ] pciide          C:\Windows\system32\drivers\pciide.sys
21:26:38.0462 0x0290  pciide - ok
21:26:38.0509 0x0290  [ 1BEBE7DE8508A02650CDCE45C664C2A2, 67841EA7F1F6B7F19ABD38A004B23610A21AD5BD5E508EED16CC7856CBE44D9C ] PCLEPCI         C:\Windows\system32\drivers\pclepci.sys
21:26:38.0517 0x0290  PCLEPCI - detected UnsignedFile.Multi.Generic ( 1 )
21:26:41.0629 0x0290  Detect skipped due to KSN trusted
21:26:41.0630 0x0290  PCLEPCI - ok
21:26:41.0678 0x0290  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:26:41.0730 0x0290  pcmcia - ok
21:26:41.0820 0x0290  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:26:41.0938 0x0290  PEAUTH - ok
21:26:41.0994 0x0290  [ B20F958B207E6AAAC5F70D04DD2C30D8, 5572A45B0327AD72E78CFD541433BBBB54358115019FEFB324607A4F21818959 ] pepifilter      C:\Windows\system32\DRIVERS\lv302af.sys
21:26:42.0006 0x0290  pepifilter - ok
21:26:42.0188 0x0290  [ DD184D9ADFE2A8A21741DBDFE9E22F5C, 0C22966973246248FD15A6C192AA1B731D018B4FDF1BD97FE9AA67A746C9440C ] PID_PEPI        C:\Windows\system32\DRIVERS\LV302V32.SYS
21:26:42.0413 0x0290  PID_PEPI - ok
21:26:42.0569 0x0290  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll
21:26:42.0812 0x0290  pla - ok
21:26:42.0886 0x0290  [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:26:42.0957 0x0290  PlugPlay - ok
21:26:43.0021 0x0290  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
21:26:43.0116 0x0290  PNRPAutoReg - ok
21:26:43.0150 0x0290  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
21:26:43.0222 0x0290  PNRPsvc - ok
21:26:43.0270 0x0290  [ 5B6F99087CC1342B3D193E8155F26B6F, 20BE9AD7F8454ABAE83BDF593BE0B0DC7FAEA64FA9B582ECC33EA4E7AFF61745 ] Point32         C:\Windows\system32\DRIVERS\point32k.sys
21:26:43.0285 0x0290  Point32 - ok
21:26:43.0353 0x0290  [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:26:43.0435 0x0290  PolicyAgent - ok
21:26:43.0488 0x0290  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:26:43.0525 0x0290  PptpMiniport - ok
21:26:43.0551 0x0290  [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor       C:\Windows\system32\drivers\processr.sys
21:26:43.0621 0x0290  Processor - ok
21:26:43.0674 0x0290  [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc         C:\Windows\system32\profsvc.dll
21:26:43.0709 0x0290  ProfSvc - ok
21:26:43.0721 0x0290  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
21:26:43.0746 0x0290  ProtectedStorage - ok
21:26:43.0792 0x0290  [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
21:26:43.0821 0x0290  PSched - ok
21:26:43.0882 0x0290  [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300          C:\Windows\system32\drivers\ql2300.sys
21:26:43.0963 0x0290  ql2300 - ok
21:26:44.0015 0x0290  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
21:26:44.0034 0x0290  ql40xx - ok
21:26:44.0088 0x0290  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll
21:26:44.0146 0x0290  QWAVE - ok
21:26:44.0191 0x0290  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:26:44.0221 0x0290  QWAVEdrv - ok
21:26:44.0269 0x0290  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:26:44.0311 0x0290  RasAcd - ok
21:26:44.0365 0x0290  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll
21:26:44.0416 0x0290  RasAuto - ok
21:26:44.0466 0x0290  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:26:44.0503 0x0290  Rasl2tp - ok
21:26:44.0567 0x0290  [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan          C:\Windows\System32\rasmans.dll
21:26:44.0630 0x0290  RasMan - ok
21:26:44.0674 0x0290  [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:26:44.0701 0x0290  RasPppoe - ok
21:26:44.0751 0x0290  [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:26:44.0771 0x0290  RasSstp - ok
21:26:44.0825 0x0290  [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:26:44.0861 0x0290  rdbss - ok
21:26:44.0906 0x0290  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:26:44.0945 0x0290  RDPCDD - ok
21:26:44.0982 0x0290  [ E8BD98D46F2ED77132BA927FCCB47D8B, 5187CF8F00AD67EDDF27DF675F3210C0D72E552578A89C58DF6953B1D5BEBCB8 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
21:26:45.0070 0x0290  rdpdr - ok
21:26:45.0105 0x0290  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:26:45.0160 0x0290  RDPENCDD - ok
21:26:45.0218 0x0290  [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:26:45.0253 0x0290  RDPWD - ok
21:26:45.0308 0x0290  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:26:45.0365 0x0290  RemoteAccess - ok
21:26:45.0399 0x0290  [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:26:45.0441 0x0290  RemoteRegistry - ok
21:26:45.0479 0x0290  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
21:26:45.0508 0x0290  RpcLocator - ok
21:26:45.0582 0x0290  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs           C:\Windows\system32\rpcss.dll
21:26:45.0648 0x0290  RpcSs - ok
21:26:45.0698 0x0290  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:26:45.0742 0x0290  rspndr - ok
21:26:45.0761 0x0290  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs           C:\Windows\system32\lsass.exe
21:26:45.0779 0x0290  SamSs - ok
21:26:45.0809 0x0290  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:26:45.0826 0x0290  sbp2port - ok
21:26:45.0878 0x0290  [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:26:45.0916 0x0290  SCardSvr - ok
21:26:45.0992 0x0290  [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule        C:\Windows\system32\schedsvc.dll
21:26:46.0092 0x0290  Schedule - ok
21:26:46.0146 0x0290  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:26:46.0176 0x0290  SCPolicySvc - ok
21:26:46.0224 0x0290  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:26:46.0270 0x0290  SDRSVC - ok
21:26:46.0311 0x0290  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:26:46.0374 0x0290  secdrv - ok
21:26:46.0436 0x0290  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll
21:26:46.0473 0x0290  seclogon - ok
21:26:46.0512 0x0290  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\System32\sens.dll
21:26:46.0558 0x0290  SENS - ok
21:26:46.0604 0x0290  [ CE9EC966638EF0B10B864DDEDF62A099, 2DEC5A8C947D87C12B342F15B8A552A0D49B979A2AC32D2C97FC7A3A76C34524 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
21:26:46.0638 0x0290  Serenum - ok
21:26:46.0654 0x0290  [ 6D663022DB3E7058907784AE14B69898, 54263888C64A7F010D3B5E399369B0F3FF3AF0A0DE8ADB502B98277533E4D45F ] Serial          C:\Windows\system32\DRIVERS\serial.sys
21:26:46.0706 0x0290  Serial - ok
21:26:46.0733 0x0290  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
21:26:46.0766 0x0290  sermouse - ok
21:26:46.0824 0x0290  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll
21:26:46.0873 0x0290  SessionEnv - ok
21:26:46.0887 0x0290  [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
21:26:46.0951 0x0290  sffdisk - ok
21:26:46.0971 0x0290  [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:26:47.0046 0x0290  sffp_mmc - ok
21:26:47.0079 0x0290  [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
21:26:47.0144 0x0290  sffp_sd - ok
21:26:47.0176 0x0290  [ C33BFBD6E9E41FCD9FFEF9729E9FAED6, 490C29DC9E9FE8D5010E6DB18DE7DA808BCE84F014CFDEE0530735CBED788073 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
21:26:47.0217 0x0290  sfloppy - ok
21:26:47.0276 0x0290  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:26:47.0341 0x0290  SharedAccess - ok
21:26:47.0404 0x0290  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:26:47.0453 0x0290  ShellHWDetection - ok
21:26:47.0473 0x0290  [ D2A595D6EEBEEAF4334F8E50EFBC9931, 851B8205C657BF806C4D815DC75356E99B4246016B6E1C1F51BAF8AD1E6D5299 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
21:26:47.0490 0x0290  sisagp - ok
21:26:47.0503 0x0290  [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
21:26:47.0519 0x0290  SiSRaid2 - ok
21:26:47.0540 0x0290  [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:26:47.0557 0x0290  SiSRaid4 - ok
21:26:47.0764 0x0290  [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc           C:\Windows\system32\SLsvc.exe
21:26:48.0253 0x0290  slsvc - ok
21:26:48.0341 0x0290  [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify      C:\Windows\system32\SLUINotify.dll
21:26:48.0386 0x0290  SLUINotify - ok
21:26:48.0437 0x0290  [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:26:48.0482 0x0290  Smb - ok
21:26:48.0514 0x0290  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:26:48.0544 0x0290  SNMPTRAP - ok
21:26:48.0591 0x0290  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys
21:26:48.0607 0x0290  spldr - ok
21:26:48.0664 0x0290  [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler         C:\Windows\System32\spoolsv.exe
21:26:48.0703 0x0290  Spooler - ok
21:26:48.0785 0x0290  [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:26:48.0853 0x0290  srv - ok
21:26:48.0917 0x0290  [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:26:48.0962 0x0290  srv2 - ok
21:26:49.0025 0x0290  [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:26:49.0056 0x0290  srvnet - ok
21:26:49.0117 0x0290  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:26:49.0173 0x0290  SSDPSRV - ok
21:26:49.0224 0x0290  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:26:49.0271 0x0290  SstpSvc - ok
21:26:49.0295 0x0290  stdhddav - ok
21:26:49.0415 0x0290  [ 5A19667A580B1CE886EAF968B9743F45, 0A9EBE4057A0A6EF4732623794C2416A6BD8B87356DA46652BD92762505F57C7 ] Stereo Service  C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:26:49.0457 0x0290  Stereo Service - ok
21:26:49.0531 0x0290  [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc          C:\Windows\System32\wiaservc.dll
21:26:49.0680 0x0290  stisvc - ok
21:26:49.0708 0x0290  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
21:26:49.0730 0x0290  swenum - ok
21:26:49.0879 0x0290  [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv           C:\Windows\System32\swprv.dll
21:26:49.0939 0x0290  swprv - ok
21:26:49.0965 0x0290  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
21:26:49.0995 0x0290  Symc8xx - ok
21:26:50.0004 0x0290  SymIMMP - ok
21:26:50.0029 0x0290  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
21:26:50.0041 0x0290  Sym_hi - ok
21:26:50.0075 0x0290  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
21:26:50.0102 0x0290  Sym_u3 - ok
21:26:50.0152 0x0290  [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain         C:\Windows\system32\sysmain.dll
21:26:50.0221 0x0290  SysMain - ok
21:26:50.0253 0x0290  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:26:50.0276 0x0290  TabletInputService - ok
21:26:50.0329 0x0290  [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:26:50.0396 0x0290  TapiSrv - ok
21:26:50.0451 0x0290  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll
21:26:50.0509 0x0290  TBS - ok
21:26:50.0598 0x0290  [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:26:50.0690 0x0290  Tcpip - ok
21:26:50.0802 0x0290  [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
21:26:50.0860 0x0290  Tcpip6 - ok
21:26:50.0910 0x0290  [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:26:50.0977 0x0290  tcpipreg - ok
21:26:51.0034 0x0290  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:26:51.0079 0x0290  TDPIPE - ok
21:26:51.0125 0x0290  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:26:51.0176 0x0290  TDTCP - ok
21:26:51.0235 0x0290  [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:26:51.0264 0x0290  tdx - ok
21:26:51.0284 0x0290  [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
21:26:51.0301 0x0290  TermDD - ok
21:26:51.0371 0x0290  [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService     C:\Windows\System32\termsrv.dll
21:26:51.0466 0x0290  TermService - ok
21:26:51.0518 0x0290  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes          C:\Windows\system32\shsvcs.dll
21:26:51.0568 0x0290  Themes - ok
21:26:51.0596 0x0290  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll
21:26:51.0632 0x0290  THREADORDER - ok
21:26:51.0669 0x0290  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll
21:26:51.0708 0x0290  TrkWks - ok
21:26:51.0790 0x0290  [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:26:51.0826 0x0290  TrustedInstaller - ok
21:26:51.0874 0x0290  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:26:51.0942 0x0290  tssecsrv - ok
21:26:51.0988 0x0290  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
21:26:52.0024 0x0290  tunmp - ok
21:26:52.0056 0x0290  [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:26:52.0084 0x0290  tunnel - ok
21:26:52.0139 0x0290  [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:26:52.0155 0x0290  uagp35 - ok
21:26:52.0206 0x0290  [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:26:52.0241 0x0290  udfs - ok
21:26:52.0290 0x0290  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:26:52.0327 0x0290  UI0Detect - ok
21:26:52.0346 0x0290  [ 75E6890EBFCE0841D3291B02E7A8BDB0, FDF9CDCCCCC0AA2A52623C5A67AC5F5224557EE4C8F6487CB13CAEB012575E2A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:26:52.0362 0x0290  uliagpkx - ok
21:26:52.0391 0x0290  [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
21:26:52.0421 0x0290  uliahci - ok
21:26:52.0461 0x0290  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
21:26:52.0478 0x0290  UlSata - ok
21:26:52.0500 0x0290  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
21:26:52.0520 0x0290  ulsata2 - ok
21:26:52.0559 0x0290  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
21:26:52.0593 0x0290  umbus - ok
21:26:52.0653 0x0290  [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost        C:\Windows\System32\upnphost.dll
21:26:52.0724 0x0290  upnphost - ok
21:26:52.0773 0x0290  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
21:26:52.0803 0x0290  USBAAPL - ok
21:26:52.0856 0x0290  [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
21:26:52.0904 0x0290  usbaudio - ok
21:26:52.0953 0x0290  [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:26:53.0006 0x0290  usbccgp - ok
21:26:53.0046 0x0290  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:26:53.0174 0x0290  usbcir - ok
21:26:53.0242 0x0290  [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
21:26:53.0261 0x0290  usbehci - ok
21:26:53.0286 0x0290  [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:26:53.0321 0x0290  usbhub - ok
21:26:53.0366 0x0290  [ D457EBD0C3A8B3A3A144355B5EE91CBC, 6AD52BDBB1607A48F0B02E663B97C3A00E3345B1B12C259608A5AE728C1C06B2 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
21:26:53.0399 0x0290  usbohci - ok
21:26:53.0460 0x0290  [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
21:26:53.0497 0x0290  usbprint - ok
21:26:53.0550 0x0290  [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
21:26:53.0591 0x0290  usbscan - ok
21:26:53.0641 0x0290  [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:26:53.0671 0x0290  USBSTOR - ok
21:26:53.0699 0x0290  [ 325DBBACB8A36AF9988CCF40EAC228CC, 22FE5658A12296634FBE9D8565485BEE8CB200C47182F70DC9D2B0442E10C4AA ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
21:26:53.0762 0x0290  usbuhci - ok
21:26:53.0788 0x0290  [ 8D31A140B55021BBD3A608F5A7AA2E18, EBD27A50DC3C009365DB64F7E7222F3075405ECD731B82229CDF0F500617C838 ] USB_RNDIS       C:\Windows\system32\DRIVERS\usb8023.sys
21:26:53.0821 0x0290  USB_RNDIS - ok
21:26:53.0864 0x0290  [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms           C:\Windows\System32\uxsms.dll
21:26:53.0913 0x0290  UxSms - ok
21:26:53.0977 0x0290  [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds             C:\Windows\System32\vds.exe
21:26:54.0071 0x0290  vds - ok
21:26:54.0111 0x0290  [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:26:54.0172 0x0290  vga - ok
21:26:54.0226 0x0290  [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:26:54.0307 0x0290  VgaSave - ok
21:26:54.0340 0x0290  [ 045D9961E591CF0674A920B6BA3BA5CB, EBF498A0424CEA0F7ECBAAE144A8669CE6B5DD67115DE22CEC5A46AED26CD90B ] viaagp          C:\Windows\system32\drivers\viaagp.sys
21:26:54.0356 0x0290  viaagp - ok
21:26:54.0369 0x0290  [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7           C:\Windows\system32\drivers\viac7.sys
21:26:54.0434 0x0290  ViaC7 - ok
21:26:54.0446 0x0290  [ FD2E3175FCADA350C7AB4521DCA187EC, 1C914B184478611A27E0141F90EBC34FC63DFB2A83441DD36DFA43D945FB1C52 ] viaide          C:\Windows\system32\drivers\viaide.sys
21:26:54.0457 0x0290  viaide - ok
21:26:54.0465 0x0290  [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:26:54.0479 0x0290  volmgr - ok
21:26:54.0541 0x0290  [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:26:54.0562 0x0290  volmgrx - ok
21:26:54.0599 0x0290  [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:26:54.0617 0x0290  volsnap - ok
21:26:54.0646 0x0290  [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
21:26:54.0661 0x0290  vsmraid - ok
21:26:54.0723 0x0290  [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS             C:\Windows\system32\vssvc.exe
21:26:54.0860 0x0290  VSS - ok
21:26:54.0927 0x0290  [ C466021D31FF6C0A6069D12299D80C0B, E7CDC85191543CD44AB15C516FAD99A2705FD6EDB4DE29F54A2EEE22A455C100 ] VSTHWBS2        C:\Windows\system32\DRIVERS\VSTBS23.SYS
21:26:54.0968 0x0290  VSTHWBS2 - ok
21:26:55.0045 0x0290  [ EC36F1D542ED4252390D446BF6D4DFD0, DB55D73726E96D3653C37EEBE628D48466D766A9EC1219ED735D5D8FF2822BE2 ] VST_DPV         C:\Windows\system32\DRIVERS\VSTDPV3.SYS
21:26:55.0188 0x0290  VST_DPV - ok
21:26:55.0246 0x0290  [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time         C:\Windows\system32\w32time.dll
21:26:55.0286 0x0290  W32Time - ok
21:26:55.0311 0x0290  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
21:26:55.0363 0x0290  WacomPen - ok
21:26:55.0417 0x0290  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
21:26:55.0456 0x0290  Wanarp - ok
21:26:55.0464 0x0290  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:26:55.0489 0x0290  Wanarpv6 - ok
21:26:55.0529 0x0290  [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:26:55.0586 0x0290  wcncsvc - ok
21:26:55.0618 0x0290  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:26:55.0648 0x0290  WcsPlugInService - ok
21:26:55.0685 0x0290  [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd              C:\Windows\system32\drivers\wd.sys
21:26:55.0700 0x0290  Wd - ok
21:26:55.0760 0x0290  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:26:55.0804 0x0290  Wdf01000 - ok
21:26:55.0853 0x0290  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:26:55.0912 0x0290  WdiServiceHost - ok
21:26:55.0919 0x0290  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:26:55.0959 0x0290  WdiSystemHost - ok
21:26:56.0008 0x0290  [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient       C:\Windows\System32\webclnt.dll
21:26:56.0052 0x0290  WebClient - ok
21:26:56.0122 0x0290  [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:26:56.0181 0x0290  Wecsvc - ok
21:26:56.0225 0x0290  [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:26:56.0266 0x0290  wercplsupport - ok
21:26:56.0318 0x0290  [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:26:56.0371 0x0290  WerSvc - ok
21:26:56.0443 0x0290  [ E096FFB754F1E45AE1BDDAC1275AE2C5, DB88308520805EB9EE1FC70C057C75A1928DBAB00F8DDE7908FE79B964259CB3 ] winachsf        C:\Windows\system32\DRIVERS\HSX_CNXT.sys
21:26:56.0561 0x0290  winachsf - ok
21:26:56.0644 0x0290  [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
21:26:56.0685 0x0290  WinDefend - ok
21:26:56.0700 0x0290  WinHttpAutoProxySvc - ok
21:26:56.0778 0x0290  [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:26:56.0813 0x0290  Winmgmt - ok
21:26:56.0933 0x0290  [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM           C:\Windows\system32\WsmSvc.dll
21:26:57.0050 0x0290  WinRM - ok
21:26:57.0101 0x0290  [ 676F4B665BDD8053EAA53AC1695B8074, 98521FCB6B6B33DD8BF38A703745053481681C7981DFE5A59116D6BDE187D6F6 ] winusb          C:\Windows\system32\DRIVERS\WinUSB.SYS
21:26:57.0128 0x0290  winusb - ok
21:26:57.0190 0x0290  [ E14FDC8F4FABBD55CAC6F35192232371, FEC0BEA54AF06151593370A98FF1F8F910B7735082DE02967EA54A3A8EF1BDD4 ] WISTechVIDCAP   C:\Windows\system32\drivers\wisgostrm.sys
21:26:57.0232 0x0290  WISTechVIDCAP - ok
21:26:57.0302 0x0290  [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:26:57.0400 0x0290  Wlansvc - ok
21:26:57.0511 0x0290  [ 6067ACEF367E79914AF628FA1E9B5330, 491A705267B48C103E00B26BBD21FA8829DB03A88343CBC27264CEE5DE8C8DEF ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:26:57.0531 0x0290  wlcrasvc - ok
21:26:57.0673 0x0290  [ 0A70F4022EC2E14C159EFC4F69AA2477, FF248136576F9803762C54DE5439D3411B52DCBC95B93176A5DAB857967D9AC4 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:26:57.0819 0x0290  wlidsvc - ok
21:26:57.0866 0x0290  [ 701A9F884A294327E9141D73746EE279, C8A46B8C32F9EAC7848D385473F6B5C4B6DA719A941A75AD5F081757FC07A09D ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
21:26:57.0946 0x0290  WmiAcpi - ok
21:26:58.0002 0x0290  [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:26:58.0034 0x0290  wmiApSrv - ok
21:26:58.0177 0x0290  [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
21:26:58.0327 0x0290  WMPNetworkSvc - ok
21:26:58.0375 0x0290  [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:26:58.0407 0x0290  WPCSvc - ok
21:26:58.0474 0x0290  [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:26:58.0507 0x0290  WPDBusEnum - ok
21:26:58.0549 0x0290  [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
21:26:58.0585 0x0290  WpdUsb - ok
21:26:58.0702 0x0290  [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:26:58.0761 0x0290  WPFFontCache_v0400 - ok
21:26:58.0811 0x0290  [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:26:58.0859 0x0290  ws2ifsl - ok
21:26:58.0896 0x0290  [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc          C:\Windows\System32\wscsvc.dll
21:26:58.0927 0x0290  wscsvc - ok
21:26:58.0941 0x0290  WSearch - ok
21:26:59.0135 0x0290  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:26:59.0280 0x0290  wuauserv - ok
21:26:59.0364 0x0290  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:26:59.0434 0x0290  WudfPf - ok
21:26:59.0460 0x0290  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:26:59.0507 0x0290  WUDFRd - ok
21:26:59.0557 0x0290  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:26:59.0593 0x0290  wudfsvc - ok
21:26:59.0624 0x0290  [ E3FCF2870B5D7979B3BF10E98A71C847, 0B7A3CAC1C93708E8D6F2C714D70D5F515F08DD71F50957213BBA7BBC29C0F45 ] XAudio          C:\Windows\system32\DRIVERS\xaudio.sys
21:26:59.0667 0x0290  XAudio - ok
21:26:59.0711 0x0290  [ 96DB5621857E1FDDD1AA60733748BF17, 4FD6E314CFE62F447603B81C71AAD3CB7199A88F1D40B142A334903DBD515ADF ] XAudioService   C:\Windows\system32\DRIVERS\xaudio.exe
21:26:59.0750 0x0290  XAudioService - ok
21:26:59.0850 0x0290  [ 04E268ADFC81964C49DC0C082D520F7E, 7D2574E366636AB1D59A08FE3038268095D627C39636C6ED6BCE1D5ACB44A179 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys
21:26:59.0907 0x0290  yukonwlh - ok
21:26:59.0940 0x0290  ================ Scan global ===============================
21:26:59.0988 0x0290  [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
21:27:00.0075 0x0290  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
21:27:00.0123 0x0290  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
21:27:00.0246 0x0290  [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
21:27:00.0300 0x0290  [ Global ] - ok
21:27:00.0301 0x0290  ================ Scan MBR ==================================
21:27:00.0322 0x0290  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
21:27:02.0170 0x0290  \Device\Harddisk0\DR0 - ok
21:27:02.0170 0x0290  ================ Scan VBR ==================================
21:27:02.0186 0x0290  [ 7E32CDE3B9B5EB3ED62A967991AF56BB ] \Device\Harddisk0\DR0\Partition1
21:27:02.0246 0x0290  \Device\Harddisk0\DR0\Partition1 - detected Rootkit.Boot.Cidox.b ( 0 )
21:27:02.0246 0x0290  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - infected
21:27:05.0198 0x0290  ================ Scan generic autorun ======================
21:27:05.0795 0x0290  [ 0D392EDE3B97E0B3131B2F63EF1DB94E, 3EDA280F91097293E00BF984D377E1111CFDE1FC81B30A3FDEB38F321EF82BB6 ] C:\Program Files\Windows Defender\MSASCui.exe
21:27:05.0912 0x0290  Windows Defender - ok
21:27:06.0049 0x0290  [ A379B75A6FFE4DFD3184F35F0141CE91, C777B01B4361456D4D829E96723C85CCDC2E3647C4CF25894AC83100552E36AB ] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe
21:27:06.0123 0x0290  ISUSPM Startup - detected UnsignedFile.Multi.Generic ( 1 )
21:27:09.0249 0x0290  Detect skipped due to KSN trusted
21:27:09.0249 0x0290  ISUSPM Startup - ok
21:27:09.0929 0x0290  [ A503A47A5E7EA8024379A8CC6059B74A, 8DEEC50E21924D21DD6383FA7FB3714ECA5AD45C576E0FF0431EE0DB25194620 ] C:\Windows\RtHDVCpl.exe
21:27:10.0263 0x0290  RtHDVCpl - ok
21:27:10.0404 0x0290  [ AAFD4F1958F551A416E25647C37ABFF8, 356A45894A40A930CFC953CACBC1F01E7821B886215B5A92F2A283A2F52FE60A ] C:\Program Files\Pinnacle\Studio 10\LaunchList.exe
21:27:10.0433 0x0290  LaunchList - ok
21:27:10.0489 0x0290  [ 53A47A21F341FF30B75F14BF03E01643, E0A06BDEDFB3D5D8DFD875C1BF9D8E3ED3FEA6414E02BB348F88B34A0589F4B0 ] C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
21:27:10.0519 0x0290  LogitechCommunicationsManager - ok
21:27:10.0960 0x0290  [ A6E24596BB08D7C10A36FF18B39AD738, EC0DE22BD878AD17B1DB43B068D4F3EB71F07569212A72BEDEFE37F4772366D8 ] C:\Program Files\Logitech\QuickCam\Quickcam.exe
21:27:11.0149 0x0290  LogitechQuickCamRibbon - ok
21:27:11.0443 0x0290  [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
21:27:11.0466 0x0290  GrooveMonitor - ok
21:27:11.0623 0x0290  [ 0A6AB2478DB456C0F7C8A055F43BD7B5, 5D21ABBF0F6CC8FEFCA6EEA5DB9F0649BF6D49ED67D1F9F2DEB1C6505C89880E ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
21:27:11.0654 0x0290  AppleSyncNotifier - ok
21:27:11.0766 0x0290  [ F5081AECFD6B7BE1D8B94632BF91D4AB, 7D1965A994FDB6D3FC3599539A7090486E551561528F7CA7B6A33CFD48F5225B ] C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe
21:27:11.0817 0x0290  MaxMenuMgr - ok
21:27:12.0211 0x0290  [ 60F3CCC045AE48B2736D042714DF445E, 7758065F0D79690B9798AA190158C56B8A861977D3747197C9ACD506E90936A9 ] C:\Program Files\Microsoft IntelliType Pro\itype.exe
21:27:12.0315 0x0290  itype - ok
21:27:12.0489 0x0290  [ 7CEB241A5A11F4B49C7C3F3B68E31228, 4B5E95C8E343B3E8BA5891BFF6EDD35BD5AFEABF3287CAFB94847B38F5CFC363 ] C:\Program Files\Microsoft IntelliPoint\ipoint.exe
21:27:12.0589 0x0290  IntelliPoint - ok
21:27:12.0641 0x0290  [ 94A4D6915D4F572309DF6137E1846528, E46BDF83CAA6683AA655DBA3D2C8DC7AC06251E952466A20CFDA3A16B1840455 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
21:27:12.0656 0x0290  APSDaemon - ok
21:27:12.0796 0x0290  [ F4F7C86191A981C804326E2EF6F3604F, 1ECE05E643AFFB27A148A8B86615F6C167875EF29D6FF7E2FD15B8DCBE6B8A16 ] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
21:27:12.0821 0x0290  Adobe Reader Speed Launcher - ok
21:27:12.0961 0x0290  [ 48BE298F7FD1BEF4D8FBACB04D8D95C4, D375B3F6E850E4B0EC81BAA0E554C356BE2248AA77C6C56F5267CA05460FE4EB ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
21:27:13.0084 0x0290  Adobe ARM - ok
21:27:13.0272 0x0290  [ C2C910A77828A48C572F64B664D05CCD, F6B29091E2F94F939DEA6AA9DDC79545D89F606E29C0B951C586F64ED7855A1D ] C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe
21:27:13.0332 0x0290  lxdxmon.exe - ok
21:27:13.0406 0x0290  [ F3455B9139F246021B51EE91FB8C799C, BCD56906E7E71E39C35A783BFF77375AB6A34959ED1B4CCDA8C6DB1E6627599C ] C:\Program Files\Lexmark 3600-4600 Series\lxdxamon.exe
21:27:13.0418 0x0290  lxdxamon - ok
21:27:13.0498 0x0290  [ 08E7173D1B74095335052459200CB1EA, 5B6EB8A65B5F451BF6115EB7CD1355E5870E6D764F22D767D13216BF17C5668F ] C:\Program Files\QuickTime\QTTask.exe
21:27:13.0528 0x0290  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
21:27:23.0657 0x0290  QuickTime Task ( UnsignedFile.Multi.Generic ) - warning
21:27:27.0605 0x0290  [ 79C28DDF889C26FDD6162F796FD49BC4, C1E2468B4F0F52BD707D16656F33CC438AF8E18A38BB6CFB64D11F23993F72F0 ] C:\Program Files\iTunes\iTunesHelper.exe
21:27:27.0641 0x0290  iTunesHelper - ok
21:27:27.0950 0x0290  [ A8B68D4A0B815294819E2647D54A7686, 6FA0527939753D52AB259D13B515A50BBCC9248900C88F2B2582282961BD844E ] C:\Program Files\AVG\AVG2014\avgui.exe
21:27:28.0236 0x0290  AVG_UI - ok
21:27:28.0484 0x0290  [ D1A8E603EC38F299B29EA5DBF05F7AC1, 386B80157268A55F40CF9C80DF5D805EB9138883F3B5048ED2A7F796FB56EAFD ] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
21:27:28.0757 0x0290  LogMeIn Hamachi Ui - ok
21:27:28.0894 0x0290  [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
21:27:29.0039 0x0290  Sidebar - ok
21:27:29.0049 0x0290  WindowsWelcomeCenter - ok
21:27:29.0159 0x0290  [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
21:27:29.0251 0x0290  Sidebar - ok
21:27:29.0261 0x0290  WindowsWelcomeCenter - ok
21:27:29.0315 0x0290  [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\sidebar.exe
21:27:29.0406 0x0290  Sidebar - ok
21:27:29.0445 0x0290  [ A379B75A6FFE4DFD3184F35F0141CE91, C777B01B4361456D4D829E96723C85CCDC2E3647C4CF25894AC83100552E36AB ] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe
21:27:29.0463 0x0290  ISUSPM Startup - detected UnsignedFile.Multi.Generic ( 1 )
21:27:29.0463 0x0290  Detect skipped due to KSN trusted
21:27:29.0463 0x0290  ISUSPM Startup - ok
21:27:29.0529 0x0290  [ BF08674925F151BD4537B89A493E3E0C, 6A97562E998A2B90649FF7986313AD33823053FF98BBE163AD39AAA5E01FC545 ] C:\Windows\ehome\ehTray.exe
21:27:29.0552 0x0290  ehTray.exe - ok
21:27:29.0619 0x0290  [ DD0BC0832429FB02392240A68C4750FA, 5B15F9333937478852CAAE4B8A482EFD17519FA78BDBFB9284680998FFC1EA46 ] C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe
21:27:29.0686 0x0290  EasyLinkAdvisor - detected UnsignedFile.Multi.Generic ( 1 )
21:27:32.0539 0x0290  Detect skipped due to KSN trusted
21:27:32.0539 0x0290  EasyLinkAdvisor - ok
21:27:32.0594 0x0290  [ 35937EAD711207544E219C2A19A78A7D, EE6E5EAE00F577D7C3FFB8C0D8EE484552A337CEAA27FCB107174A9879FE7362 ] C:\Program Files\Windows Media Player\WMPNSCFG.exe
21:27:32.0642 0x0290  WMPNSCFG - ok
21:27:32.0730 0x0290  [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
21:27:32.0801 0x0290  Sidebar - ok
21:27:32.0812 0x0290  WindowsWelcomeCenter - ok
21:27:32.0832 0x0290  [ DD0BC0832429FB02392240A68C4750FA, 5B15F9333937478852CAAE4B8A482EFD17519FA78BDBFB9284680998FFC1EA46 ] C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe
21:27:32.0875 0x0290  EasyLinkAdvisor - detected UnsignedFile.Multi.Generic ( 1 )
21:27:32.0876 0x0290  Detect skipped due to KSN trusted
21:27:32.0876 0x0290  EasyLinkAdvisor - ok
21:27:32.0876 0x0290  Waiting for KSN requests completion. In queue: 9
21:27:33.0876 0x0290  Waiting for KSN requests completion. In queue: 9
21:27:34.0876 0x0290  Waiting for KSN requests completion. In queue: 9
21:27:35.0876 0x0290  Waiting for KSN requests completion. In queue: 1
21:27:37.0012 0x0290  AV detected via SS2: AVG AntiVirus Free Edition 2014, C:\Program Files\AVG\AVG2014\avgwsc.exe ( 14.0.0.4714 ), 0x41000 ( enabled : updated )
21:27:37.0023 0x0290  Win FW state via NFP2: enabled
21:27:39.0931 0x0290  ============================================================
21:27:39.0931 0x0290  Scan finished
21:27:39.0931 0x0290  ============================================================
21:27:39.0955 0x2220  Detected object count: 2
21:27:39.0955 0x2220  Actual detected object count: 2
21:28:17.0892 0x2220  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - skipped by user
21:28:17.0892 0x2220  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - User select action: Skip 
21:28:17.0898 0x2220  QuickTime Task ( UnsignedFile.Multi.Generic ) - skipped by user
21:28:17.0898 0x2220  QuickTime Task ( UnsignedFile.Multi.Generic ) - User select action: Skip 
 
 
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:03-07-2014
Ran by C. Shawn Stinson (administrator) on SHAWNSDESKTOP on 03-07-2014 21:33:06
Running from C:\Users\C. Shawn Stinson\Desktop
Platform: Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) OS Language: English (United States)
Internet Explorer Version 9
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Seagate Technology LLC) C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
(Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
( ) C:\Windows\System32\lxdxcoms.exe
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
() C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
() C:\Program Files\Logitech\QuickCam\Quickcam.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Seagate LLC) C:\Program Files\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliType Pro\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
() C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe
(Apple Inc.) C:\Program Files\QuickTime\QTTask.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Linksys, a Division of Cisco Systems, Inc.) C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
() C:\Program Files\Lexmark 3600-4600 Series\lxdxmsdmon.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Intuit Inc.) C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
(Intuit Inc.) C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\C. Shawn Stinson\Desktop\FRST (1).exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-19] (Microsoft Corporation)
HKLM\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2005-02-16] (InstallShield Software Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [3784704 2006-11-09] (Realtek Semiconductor)
HKLM\...\Run: [LaunchList] => C:\Program Files\Pinnacle\Studio 10\LaunchList.exe [50712 2007-01-04] (Pinnacle Systems)
HKLM\...\Run: [LogitechCommunicationsManager] => C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe [563984 2007-10-25] ()
HKLM\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\QuickCam\Quickcam.exe [2178832 2007-10-25] ()
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [AppleSyncNotifier] => C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [47408 2010-06-15] (Apple Inc.)
HKLM\...\Run: [MaxMenuMgr] => C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe [181544 2008-10-28] (Seagate LLC)
HKLM\...\Run: [itype] => C:\Program Files\Microsoft IntelliType Pro\itype.exe [1442888 2008-06-10] (Microsoft Corporation)
HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft IntelliPoint\ipoint.exe [1406024 2008-06-10] (Microsoft Corporation)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [lxdxmon.exe] => C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe [668328 2008-06-13] ()
HKLM\...\Run: [lxdxamon] => C:\Program Files\Lexmark 3600-4600 Series\lxdxamon.exe [16040 2008-06-13] ()
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2014\avgui.exe [5179408 2014-06-17] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [3816272 2014-06-23] (LogMeIn Inc.)
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-1978926973-619447027-613512027-1000\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2005-02-16] (InstallShield Software Corporation)
HKU\S-1-5-21-1978926973-619447027-613512027-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-1978926973-619447027-613512027-1000\...\Run: [EasyLinkAdvisor] => C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe [454784 2007-03-15] (Linksys, a Division of Cisco Systems, Inc.)
HKU\S-1-5-21-1978926973-619447027-613512027-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-1978926973-619447027-613512027-1002\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-1978926973-619447027-613512027-1002\...\Run: [EasyLinkAdvisor] => C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe [454784 2007-03-15] (Linksys, a Division of Cisco Systems, Inc.)
Startup: C:\Users\C. Shawn Stinson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\C. Shawn Stinson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote Table Of Contents.onetoc2 ()
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x30FDBE96C889CF01
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll (Microsoft Corporation)
DPF: {6D2EF4B4-CB62-4C0B-85F3-B79C236D702C} http://www.facebook.com/controls/contactx.dll
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} http://utilities.pcpitstop.com/Optimize3/pcpitstop2.dll
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np_gp.dll (NOS Microsystems Ltd.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-20]
FF HKLM\...\Firefox\Extensions: [{7BA52691-1876-45ce-9EE6-54BCB3B04BBC}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\coFFPlgn
 
Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR StartupUrls: "hxxp://www.google.com/ig/redirectdomain?brand=TSND&bmod=TSND"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\35.0.1916.153\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll No File
CHR Plugin: (getPlusPlus for Adobe 16248) - C:\Program Files\Mozilla Firefox\plugins\np_gp.dll (NOS Microsystems Ltd.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Java™ Platform SE 7 U17) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_6_602_180.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.170.2) - C:\Windows\system32\npDeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Users\C. Shawn Stinson\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-05-11]
CHR Extension: (Google Drive) - C:\Users\C. Shawn Stinson\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-05-11]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\C. Shawn Stinson\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-24]
CHR Extension: (YouTube) - C:\Users\C. Shawn Stinson\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-05-11]
CHR Extension: (Google Search) - C:\Users\C. Shawn Stinson\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-05-11]
CHR Extension: (Feedly - News, Blogs and Youtube) - C:\Users\C. Shawn Stinson\AppData\Local\Google\Chrome\User Data\Default\Extensions\hipbfijinpcgfogaopmgehiegacbhmob [2013-08-09]
CHR Extension: (Google Wallet) - C:\Users\C. Shawn Stinson\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-02]
CHR Extension: (Gmail) - C:\Users\C. Shawn Stinson\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-05-11]
 
========================== Services (Whitelisted) =================
 
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3241488 2014-06-27] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [289328 2014-06-17] (AVG Technologies CZ, s.r.o.)
R2 FreeAgentGoNext Service; C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe [156968 2008-10-28] (Seagate Technology LLC)
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1889616 2014-06-23] (LogMeIn Inc.)
R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [375056 2014-04-15] (LogMeIn, Inc.)
R2 LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe [186904 2007-10-19] (Logitech Inc.)
S2 LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [141848 2007-10-19] (Logitech Inc.)
S2 lxdxCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdxserv.exe [98984 2008-02-27] (Lexmark International, Inc.)
R2 lxdx_device; C:\Windows\system32\lxdxcoms.exe [594600 2008-02-27] ( )
 
==================== Drivers (Whitelisted) ====================
 
S3 61883; C:\Windows\System32\DRIVERS\61883.sys [45696 2008-01-19] (Microsoft Corporation)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [121624 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [199960 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [147736 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [21272 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [188696 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [241944 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [98584 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27416 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [197400 2014-06-17] (AVG Technologies CZ, s.r.o.)
R2 elagopro; C:\Windows\System32\DRIVERS\elagopro.sys [28672 2007-03-22] (Gteko Ltd.)
R2 elaunidr; C:\Windows\System32\DRIVERS\elaunidr.sys [5376 2007-03-22] (Gteko Ltd.)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
S3 LVcKap; C:\Windows\System32\DRIVERS\LVcKap.sys [2109976 2007-10-19] (Logitech Inc.)
S3 LVMVDrv; C:\Windows\System32\DRIVERS\LVMVDrv.sys [2142488 2007-10-11] (Logitech Inc.)
R3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2Mon.sys [25624 2007-10-11] ()
R3 LVUSBSta; C:\Windows\System32\drivers\LVUSBSta.sys [41752 2007-10-11] (Logitech Inc.)
R3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus.sys [171520 2005-09-23] (Pinnacle Systems GmbH)
R3 NuidFltr; C:\Windows\System32\DRIVERS\NuidFltr.sys [14736 2009-05-09] (Microsoft Corporation)
R1 PCLEPCI; C:\Windows\system32\drivers\pclepci.sys [14165 2005-02-09] (Pinnacle Systems GmbH) [File not signed]
R3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13976 2009-04-30] (Logitech Inc.)
R3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2687512 2009-04-30] (Logitech Inc.)
R3 USB_RNDIS; C:\Windows\System32\DRIVERS\usb8023.sys [15872 2013-02-11] (Microsoft Corporation)
S3 WISTechVIDCAP; C:\Windows\System32\drivers\wisgostrm.sys [226816 2006-11-03] (Pinnacle Systems)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S1 stdhddav; \??\C:\Windows\system32\drivers\stdhddav.sys [X]
S3 SymIMMP; system32\DRIVERS\SymIM.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-07-03 21:33 - 2014-07-03 21:33 - 00022825 _____ () C:\Users\C. Shawn Stinson\Desktop\FRST.txt
2014-07-03 21:32 - 2014-07-03 21:32 - 01073664 _____ (Farbar) C:\Users\C. Shawn Stinson\Downloads\FRST (1).exe
2014-07-03 21:32 - 2014-07-03 21:32 - 01073664 _____ (Farbar) C:\Users\C. Shawn Stinson\Desktop\FRST (1).exe
2014-07-03 21:25 - 2014-07-03 21:24 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\C. Shawn Stinson\Desktop\tdsskiller.exe
2014-07-03 21:24 - 2014-07-03 21:24 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\C. Shawn Stinson\Downloads\tdsskiller.exe
2014-07-03 13:19 - 2014-07-03 13:19 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2014-07-03 13:19 - 2014-07-03 13:19 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-06-30 19:40 - 2014-06-30 19:40 - 00159808 _____ () C:\Windows\Minidump\Mini063014-01.dmp
2014-06-30 19:24 - 2014-06-30 19:24 - 00002318 _____ () C:\Users\C. Shawn Stinson\Desktop\attach.txt
2014-06-30 18:54 - 2014-06-30 18:53 - 00688992 ____R (Swearware) C:\Users\C. Shawn Stinson\Desktop\dds.com
2014-06-30 18:53 - 2014-06-30 18:53 - 00688992 _____ (Swearware) C:\Users\C. Shawn Stinson\Downloads\dds.com
2014-06-26 22:16 - 2014-06-26 22:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-06-26 22:16 - 2014-06-26 22:16 - 00000000 ____D () C:\Program Files\LogMeIn Hamachi
2014-06-17 21:42 - 2014-06-17 21:42 - 00542208 _____ () C:\Users\C. Shawn Stinson\Downloads\gijoe_inventory.xls
2014-06-17 16:22 - 2014-06-17 16:22 - 00188696 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx86.sys
2014-06-17 16:21 - 2014-06-17 16:21 - 00197400 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgtdix.sys
2014-06-17 16:18 - 2014-06-17 16:18 - 00241944 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avglogx.sys
2014-06-17 16:17 - 2014-06-17 16:17 - 00147736 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidshx.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00199960 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdriverx.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00121624 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgdiskx.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00098584 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgmfx86.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00027416 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgrkx86.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00021272 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsshimx.sys
2014-06-16 20:25 - 2002-06-20 01:06 - 00045056 _____ (Adobe Systems Incorporated) C:\Windows\_detmp.2
2014-06-15 18:12 - 2014-06-28 09:06 - 00000000 ____D () C:\Users\C. Shawn Stinson\AppData\Local\CrashDumps
2014-06-13 17:08 - 2014-05-28 11:48 - 12356608 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-13 17:08 - 2014-05-28 11:39 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-13 17:08 - 2014-05-28 11:38 - 09711104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-13 17:08 - 2014-05-28 11:33 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-13 17:08 - 2014-05-28 11:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-13 17:08 - 2014-05-28 11:32 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-13 17:08 - 2014-05-28 11:31 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-06-13 17:08 - 2014-05-28 11:31 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-13 17:08 - 2014-05-28 11:30 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-13 17:08 - 2014-05-28 11:30 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-13 17:08 - 2014-05-28 11:30 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-13 17:08 - 2014-05-28 11:30 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-13 17:08 - 2014-05-28 11:30 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-13 17:08 - 2014-05-28 11:30 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-13 17:08 - 2014-05-28 11:30 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-06-13 17:08 - 2014-05-28 11:29 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-13 17:08 - 2014-05-28 11:29 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-13 17:08 - 2014-05-28 11:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-13 17:08 - 2014-05-28 11:29 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-06-13 17:08 - 2014-05-28 11:29 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-06-13 17:08 - 2014-05-28 11:28 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-13 17:08 - 2014-04-26 11:01 - 00502784 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-13 17:08 - 2014-04-04 21:42 - 00905664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-13 17:08 - 2014-03-09 20:22 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-13 17:08 - 2014-03-09 20:22 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-07 23:43 - 2014-06-07 23:56 - 00052224 _____ () C:\Users\C. Shawn Stinson\Downloads\gijoe_masterlist_free.xls
2014-06-07 19:44 - 2014-06-07 19:44 - 00522240 _____ (OldTimer Tools) C:\Users\C. Shawn Stinson\Desktop\OTM (1).exe
2014-06-07 17:39 - 2014-06-07 17:39 - 00000000 ____D () C:\_OTM
2014-06-07 11:01 - 2014-06-07 11:01 - 00000293 _____ () C:\Users\C. Shawn Stinson\Desktop\ESET SCAN.txt
2014-06-06 21:53 - 2014-06-06 21:53 - 00000000 ____D () C:\Users\C. Shawn Stinson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Interplay
2014-06-06 21:53 - 2014-06-06 21:53 - 00000000 ____D () C:\INTRPLAY
2014-06-06 17:50 - 2014-06-06 17:50 - 00026624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-06-06 17:50 - 2014-06-06 17:50 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-06-06 17:49 - 2014-06-06 17:49 - 04686336 _____ () C:\Users\C. Shawn Stinson\Downloads\RogueKiller.exe
2014-06-06 17:47 - 2014-06-06 17:47 - 00000000 ____D () C:\Users\C. Shawn Stinson\AppData\Roaming\Oracle
2014-06-06 17:44 - 2014-06-06 17:44 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-06 17:42 - 2014-06-06 17:42 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-06 17:41 - 2014-05-07 15:02 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-06-06 17:41 - 2014-05-07 14:59 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-06-06 17:41 - 2014-05-07 14:59 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-06-06 17:41 - 2014-05-07 14:58 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-06-06 17:40 - 2014-06-06 17:41 - 00006687 _____ () C:\Windows\system32\jupdate-1.7.0_60-b19.log
2014-06-06 17:40 - 2014-06-06 17:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-06 17:37 - 2014-06-06 17:37 - 00918952 _____ (Oracle Corporation) C:\Users\C. Shawn Stinson\Downloads\chromeinstall-7u60.exe
2014-06-06 17:10 - 2014-06-06 17:10 - 00000000 ____D () C:\Windows\ERUNT
2014-06-06 17:09 - 2014-06-06 17:09 - 01016261 _____ (Thisisu) C:\Users\C. Shawn Stinson\Downloads\JRT.exe
2014-06-06 16:59 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-06-06 16:58 - 2014-06-06 17:00 - 00000000 ____D () C:\AdwCleaner
2014-06-06 16:57 - 2014-06-06 16:57 - 01333465 _____ () C:\Users\C. Shawn Stinson\Downloads\AdwCleaner.exe
2014-06-06 16:55 - 2014-06-06 16:55 - 00000000 ____D () C:\Users\C. Shawn Stinson\Downloads\FRST-OlderVersion
2014-06-05 21:16 - 2014-06-05 21:16 - 00886288 _____ (Microsoft Corporation) C:\Users\C. Shawn Stinson\Downloads\mssstool32.exe
2014-06-05 20:55 - 2014-06-05 21:14 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-06-05 20:53 - 2014-06-05 21:14 - 00000000 ____D () C:\Users\C. Shawn Stinson\Desktop\mbar
2014-06-05 20:52 - 2014-06-05 20:52 - 12589848 _____ (Malwarebytes Corp.) C:\Users\C. Shawn Stinson\Downloads\mbar-1.07.0.1009.exe
2014-06-05 19:16 - 2014-06-05 19:18 - 00042772 _____ () C:\Users\C. Shawn Stinson\Downloads\Addition.txt
2014-06-05 19:15 - 2014-06-05 19:18 - 00045133 _____ () C:\Users\C. Shawn Stinson\Downloads\FRST.txt
2014-06-05 19:14 - 2014-07-03 21:33 - 00000000 ____D () C:\FRST
2014-06-05 19:14 - 2014-06-06 16:55 - 01063424 _____ (Farbar) C:\Users\C. Shawn Stinson\Downloads\FRST.exe
 
==================== One Month Modified Files and Folders =======
 
2014-07-03 21:33 - 2014-07-03 21:33 - 00022825 _____ () C:\Users\C. Shawn Stinson\Desktop\FRST.txt
2014-07-03 21:33 - 2014-06-05 19:14 - 00000000 ____D () C:\FRST
2014-07-03 21:32 - 2014-07-03 21:32 - 01073664 _____ (Farbar) C:\Users\C. Shawn Stinson\Downloads\FRST (1).exe
2014-07-03 21:32 - 2014-07-03 21:32 - 01073664 _____ (Farbar) C:\Users\C. Shawn Stinson\Desktop\FRST (1).exe
2014-07-03 21:24 - 2014-07-03 21:25 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\C. Shawn Stinson\Desktop\tdsskiller.exe
2014-07-03 21:24 - 2014-07-03 21:24 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\C. Shawn Stinson\Downloads\tdsskiller.exe
2014-07-03 21:11 - 2013-05-10 23:52 - 00000906 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-03 21:03 - 2013-01-11 22:36 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-03 19:40 - 2006-11-02 07:47 - 00003664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-03 19:40 - 2006-11-02 07:47 - 00003664 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-03 17:29 - 2014-05-23 19:27 - 00000000 ____D () C:\ProgramData\MFAData
2014-07-03 13:30 - 2013-01-21 19:36 - 00000000 ____D () C:\ProgramData\Lx_cats
2014-07-03 13:19 - 2014-07-03 13:19 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2014-07-03 13:19 - 2014-07-03 13:19 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2014-07-03 13:19 - 2014-05-23 19:41 - 00000842 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-07-03 13:19 - 2014-05-23 19:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-07-03 12:23 - 2006-11-02 07:52 - 01736438 _____ () C:\Windows\WindowsUpdate.log
2014-07-03 12:22 - 2006-11-02 05:33 - 00006564 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-03 10:11 - 2013-05-10 23:52 - 00000902 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-02 21:49 - 2013-06-29 18:59 - 00000000 ____D () C:\Users\C. Shawn Stinson\AppData\Local\LogMeIn Hamachi
2014-06-30 19:40 - 2014-06-30 19:40 - 00159808 _____ () C:\Windows\Minidump\Mini063014-01.dmp
2014-06-30 19:40 - 2008-06-10 21:26 - 00000000 ____D () C:\Windows\Minidump
2014-06-30 19:40 - 2008-06-10 21:25 - 262517302 _____ () C:\Windows\MEMORY.DMP
2014-06-30 19:40 - 2007-12-18 05:51 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-30 19:40 - 2006-11-02 08:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-30 19:24 - 2014-06-30 19:24 - 00002318 _____ () C:\Users\C. Shawn Stinson\Desktop\attach.txt
2014-06-30 18:53 - 2014-06-30 18:54 - 00688992 ____R (Swearware) C:\Users\C. Shawn Stinson\Desktop\dds.com
2014-06-30 18:53 - 2014-06-30 18:53 - 00688992 _____ (Swearware) C:\Users\C. Shawn Stinson\Downloads\dds.com
2014-06-30 18:36 - 2014-05-31 11:45 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-29 03:00 - 2008-01-03 23:18 - 00000568 _____ () C:\Windows\Tasks\Norton Internet Security - Run Full System Scan - C. Shawn Stinson.job
2014-06-28 09:10 - 2013-01-11 22:36 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-06-28 09:10 - 2013-01-11 22:36 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-06-28 09:06 - 2014-06-15 18:12 - 00000000 ____D () C:\Users\C. Shawn Stinson\AppData\Local\CrashDumps
2014-06-28 02:39 - 2007-12-27 01:42 - 00003384 _____ () C:\Users\C. Shawn Stinson\AppData\Local\d3d9caps.dat
2014-06-26 22:16 - 2014-06-26 22:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2014-06-26 22:16 - 2014-06-26 22:16 - 00000000 ____D () C:\Program Files\LogMeIn Hamachi
2014-06-26 22:16 - 2013-10-05 01:59 - 00000807 _____ () C:\Users\Public\Desktop\LogMeIn Hamachi.lnk
2014-06-26 22:12 - 2007-12-13 03:14 - 00591830 _____ () C:\Windows\PFRO.log
2014-06-19 21:06 - 2013-01-19 10:53 - 00000000 ____D () C:\Users\C. Shawn Stinson\AppData\Roaming\.minecraft
2014-06-18 23:08 - 2006-11-02 07:37 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-06-17 21:42 - 2014-06-17 21:42 - 00542208 _____ () C:\Users\C. Shawn Stinson\Downloads\gijoe_inventory.xls
2014-06-17 20:42 - 2007-12-14 01:37 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-06-17 20:42 - 2007-12-14 01:32 - 00000000 ____D () C:\Users\C. Shawn Stinson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2014-06-17 20:41 - 2014-02-26 18:13 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-17 20:40 - 2009-01-29 01:48 - 00000000 ____D () C:\Users\C. Shawn Stinson\AppData\Roaming\Move Networks
2014-06-17 20:38 - 2007-12-13 03:25 - 00000000 ____D () C:\Users\C. Shawn Stinson
2014-06-17 20:37 - 2008-10-03 19:46 - 00000000 ____D () C:\Program Files\City of Heroes
2014-06-17 20:37 - 2007-12-14 01:34 - 00000000 ____D () C:\Program Files\Canon
2014-06-17 16:22 - 2014-06-17 16:22 - 00188696 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx86.sys
2014-06-17 16:21 - 2014-06-17 16:21 - 00197400 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgtdix.sys
2014-06-17 16:18 - 2014-06-17 16:18 - 00241944 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avglogx.sys
2014-06-17 16:17 - 2014-06-17 16:17 - 00147736 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidshx.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00199960 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsdriverx.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00121624 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgdiskx.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00098584 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgmfx86.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00027416 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgrkx86.sys
2014-06-17 16:06 - 2014-06-17 16:06 - 00021272 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgidsshimx.sys
2014-06-16 20:39 - 2007-12-20 22:26 - 00000000 ____D () C:\Program Files\blood
2014-06-16 20:22 - 2007-12-14 01:32 - 00000000 ____D () C:\Program Files\Adobe
2014-06-15 18:50 - 2006-11-02 08:01 - 00032620 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-06-14 19:13 - 2013-05-10 23:55 - 00001971 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-13 22:19 - 2008-10-23 06:55 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-13 22:17 - 2014-05-23 17:56 - 00000000 ____D () C:\Windows\system32\MpEngineStore
2014-06-13 22:17 - 2013-07-19 03:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-13 22:14 - 2006-11-02 05:24 - 92708840 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-06-08 15:54 - 2013-01-10 23:04 - 00000000 ____D () C:\Users\C. Shawn Stinson\AppData\Local\Windows Live
2014-06-07 23:56 - 2014-06-07 23:43 - 00052224 _____ () C:\Users\C. Shawn Stinson\Downloads\gijoe_masterlist_free.xls
2014-06-07 19:44 - 2014-06-07 19:44 - 00522240 _____ (OldTimer Tools) C:\Users\C. Shawn Stinson\Desktop\OTM (1).exe
2014-06-07 17:39 - 2014-06-07 17:39 - 00000000 ____D () C:\_OTM
2014-06-07 11:01 - 2014-06-07 11:01 - 00000293 _____ () C:\Users\C. Shawn Stinson\Desktop\ESET SCAN.txt
2014-06-06 21:53 - 2014-06-06 21:53 - 00000000 ____D () C:\Users\C. Shawn Stinson\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Interplay
2014-06-06 21:53 - 2014-06-06 21:53 - 00000000 ____D () C:\INTRPLAY
2014-06-06 18:39 - 2007-12-15 23:37 - 00207360 _____ () C:\Users\C. Shawn Stinson\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-06-06 17:50 - 2014-06-06 17:50 - 00026624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-06-06 17:50 - 2014-06-06 17:50 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-06-06 17:49 - 2014-06-06 17:49 - 04686336 _____ () C:\Users\C. Shawn Stinson\Downloads\RogueKiller.exe
2014-06-06 17:48 - 2009-07-30 19:56 - 00000000 ____D () C:\Program Files\Java
2014-06-06 17:47 - 2014-06-06 17:47 - 00000000 ____D () C:\Users\C. Shawn Stinson\AppData\Roaming\Oracle
2014-06-06 17:44 - 2014-06-06 17:44 - 00000000 ____D () C:\ProgramData\Oracle
2014-06-06 17:42 - 2014-06-06 17:42 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-06-06 17:41 - 2014-06-06 17:40 - 00006687 _____ () C:\Windows\system32\jupdate-1.7.0_60-b19.log
2014-06-06 17:40 - 2014-06-06 17:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-06-06 17:37 - 2014-06-06 17:37 - 00918952 _____ (Oracle Corporation) C:\Users\C. Shawn Stinson\Downloads\chromeinstall-7u60.exe
2014-06-06 17:10 - 2014-06-06 17:10 - 00000000 ____D () C:\Windows\ERUNT
2014-06-06 17:09 - 2014-06-06 17:09 - 01016261 _____ (Thisisu) C:\Users\C. Shawn Stinson\Downloads\JRT.exe
2014-06-06 17:00 - 2014-06-06 16:58 - 00000000 ____D () C:\AdwCleaner
2014-06-06 16:57 - 2014-06-06 16:57 - 01333465 _____ () C:\Users\C. Shawn Stinson\Downloads\AdwCleaner.exe
2014-06-06 16:55 - 2014-06-06 16:55 - 00000000 ____D () C:\Users\C. Shawn Stinson\Downloads\FRST-OlderVersion
2014-06-06 16:55 - 2014-06-05 19:14 - 01063424 _____ (Farbar) C:\Users\C. Shawn Stinson\Downloads\FRST.exe
2014-06-05 21:16 - 2014-06-05 21:16 - 00886288 _____ (Microsoft Corporation) C:\Users\C. Shawn Stinson\Downloads\mssstool32.exe
2014-06-05 21:14 - 2014-06-05 20:55 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-06-05 21:14 - 2014-06-05 20:53 - 00000000 ____D () C:\Users\C. Shawn Stinson\Desktop\mbar
2014-06-05 20:53 - 2014-05-31 11:44 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-05 20:52 - 2014-06-05 20:52 - 12589848 _____ (Malwarebytes Corp.) C:\Users\C. Shawn Stinson\Downloads\mbar-1.07.0.1009.exe
2014-06-05 19:18 - 2014-06-05 19:16 - 00042772 _____ () C:\Users\C. Shawn Stinson\Downloads\Addition.txt
2014-06-05 19:18 - 2014-06-05 19:15 - 00045133 _____ () C:\Users\C. Shawn Stinson\Downloads\FRST.txt
2014-06-05 19:11 - 2013-01-10 22:40 - 00004589 _____ () C:\Windows\IE9_main.log
 
Some content of TEMP:
====================
C:\Users\C. Shawn Stinson\AppData\Local\Temp\install_flashplayer14x32axau_mssd_aaa_aih.exe
C:\Users\C. Shawn Stinson\AppData\Local\Temp\install_flashplayer14x32axau_mssd_aaa_aih_1.exe
C:\Users\C. Shawn Stinson\AppData\Local\Temp\Quarantine.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2014-07-03 20:04
 
==================== End Of Log ============================
 
 
 
 


#4 shwnstnsn

shwnstnsn
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:53 AM

Posted 03 July 2014 - 09:43 PM

Here's the rest. It wouldn;t let me put everything in one reply. Said it was too long.

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version:03-07-2014
Ran by C. Shawn Stinson at 2014-07-03 21:34:12
Running from C:\Users\C. Shawn Stinson\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
 
==================== Installed Programs ======================
 
123CopyDVDGold (HKLM\...\123CopyDVDGold 2010) (Version: 2010 - Bling Software Ltd.)
Adobe Acrobat Reader for Palm OS 2.0 (HKCU\...\Acrobat Reader for Palm OS) (Version:  - )
Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.1.0.5790 - Adobe Systems Inc.)
Adobe AIR (Version: 1.1.0.5790 - Adobe Systems Inc.) Hidden
Adobe Flash Player 13 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A95000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
Adobe Reader for Palm OS, 3.05 (HKCU\...\Adobe Reader for Palm OS) (Version:  - )
AnswerWorks 4.0 Runtime - English (HKLM\...\{7DD9A065-2C86-4A9F-A5FF-796EC1B99DCA}) (Version: 4.0.101 - Vantage Software Technologies)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audacity 2.0.5 (HKLM\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AutoUpdate (HKLM\...\{18D10072035C4515918F7E37EAFAACFC}) (Version: 1.0 - )
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4716 - AVG Technologies)
AVG 2014 (Version: 14.0.3986 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4716 - AVG Technologies) Hidden
AviSynth 2.5 (HKLM\...\AviSynth) (Version:  - )
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Compact Wireless-G USB Network Adapter with SpeedBooster Driver - WUSB54GSC (HKLM\...\{65563451-00B6-458C-9F9A-03A7757355A6}) (Version: 1.0 - Linksys, A Division of Cisco Systems, Inc.)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DivX (HKLM\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 5.2.1 - DivXNetworks, Inc.)
Drivers Install For Linksys Easylink Advisor (Version: 2.0.9 - Gteko Ltd.) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
Half-Life (HKLM\...\Half-Life) (Version:  - )
HandBrake 0.9.8 (HKLM\...\HandBrake) (Version: 0.9.8 - )
iCloud (HKLM\...\{79BD66B2-4DAE-4C3B-B08E-DC72E507C163}) (Version: 2.1.3.25 - Apple Inc.)
InterVideo MP3 XPack (HKLM\...\{99755640-9633-11D5-AB3C-0050DAB311CC}) (Version: 1.2 - InterVideo Inc.)
iPhone Configuration Utility (HKLM\...\{FA54AFB1-5745-4389-B8C1-9F7509672ED1}) (Version: 2.1.0.163 - Apple Inc.)
iPod for Windows 2006-01-10 (HKLM\...\InstallShield_{3D047C15-C859-45F7-81CE-F2681778069B}) (Version: 4.7.0 - Apple Computer, Inc.)
iPod for Windows 2006-01-10 (Version: 4.7.0 - Apple Computer, Inc.) Hidden
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 60 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (Version: 2.1.60.19 - Oracle, Inc.) Hidden
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Lexmark 3600-4600 Series (HKLM\...\Lexmark 3600-4600 Series) (Version:  - Lexmark International, Inc.)
Linksys EasyLink Advisor 1.6 (0044) (HKLM\...\EasyLinkAdvisor) (Version:  - )
Logitech Audio Echo Cancellation Component (Version: 10.51.2027 - Logitech Inc.) Hidden
Logitech Legacy USB Camera Driver Package (HKLM\...\legacyqcam_10.51) (Version:  - )
Logitech QuickCam (HKLM\...\{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}) (Version: 11.50.1169 - Logitech Inc.)
Logitech QuickCam Driver Package (HKLM\...\lvdrivers_11.50) (Version:  - )
Logitech Video Enumerator (Version: 10.51.2027 - Logitech Inc.) Hidden
LogMeIn Hamachi (HKLM\...\LogMeIn Hamachi) (Version: 2.2.0.214 - LogMeIn, Inc.)
LogMeIn Hamachi (Version: 2.2.0.214 - LogMeIn, Inc.) Hidden
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Maximized Software iCoverArt (HKLM\...\{891B4BD7-98FE-427E-BD56-D3B4BEFDF864}) (Version: 1.1 - Maximized Software)
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft IntelliPoint 6.3 (HKLM\...\{66A9D30D-1464-4C7F-B2F3-507DADAF2595}) (Version: 6.30.191.0 - Microsoft)
Microsoft IntelliType Pro 6.3 (HKLM\...\{02F6993D-B763-4F40-8F93-2A9CD97586E3}) (Version: 6.30.191.0 - Microsoft)
Microsoft Money Plus (HKLM\...\Money2008b) (Version: 17 - Microsoft)
Microsoft Money Shared Libraries (Version: 17.0.0.1414 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Access database engine 2007 (English) (HKLM\...\{90120000-00D1-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM\...\{95140000-007A-0409-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Publisher 97 (HKLM\...\MSPUB4) (Version:  - )
Microsoft Return of Arcade (HKLM\...\Return of Arcade) (Version:  - )
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Streets & Trips 2009 (HKLM\...\{C82185E8-C27B-4EF4-2009-4444BC2C2B6D}) (Version: 16.0.18.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Mobile Broadband Drivers (HKLM\...\{190D0C6E-C8A7-4019-8FB5-FD041EC1F2D2}) (Version: 2.01.07.10 - Novatel Wireless)
MobileMe Control Panel (HKLM\...\{7F815C5F-D2A4-4173-B7C0-55A9D6F87E38}) (Version: 3.1.0.14 - Apple Inc.)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB941833) (HKLM\...\{C523D256-313D-4866-B36A-F3DE528246EF}) (Version: 4.20.9849.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MVision (Version: 10.51.2027 - Logitech Inc.) Hidden
Netflix in Windows Media Center (HKLM\...\{F751C062-87DA-4D33-8A12-6E7F1D4C051C}) (Version: 2.0.0.0 - Microsoft Corporation)
Netflix Movie Viewer (HKLM\...\{BCE72AED-3332-4863-9567-C5DCB9052CA2}) (Version: 1.2.211 - Netflix)
NVIDIA 3D Vision Driver 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Control Panel 311.06 (Version: 311.06 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.108.688 - NVIDIA Corporation) Hidden
NVIDIA PhysX (HKLM\...\{DD1865F0-AD73-40FB-B23E-1822E02396FF}) (Version: 9.09.0203 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.1106 - NVIDIA Corporation) Hidden
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.11.3 - NVIDIA Corporation) Hidden
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden
PCI Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_PCI_HSF) (Version:  - )
Pinnacle Instant DVD Recorder (HKLM\...\{EF781A5C-58F5-4BFD-87F9-E4F14D382F25}) (Version:  - )
Pinnacle Systems USB-2 Device Drivers (HKLM\...\{9870C7AE-7C6A-478D-9A75-35827382220F}) (Version: 2.00.0014 - Pinnacle Systems)
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RAD Video Tools (HKLM\...\RADVideo) (Version:  - )
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5322 - Realtek Semiconductor Corp.)
Recover Files 3.29 (HKLM\...\Recover Files_is1) (Version:  - Undelete & Unerase, Inc.)
Seagate Manager Installer (HKLM\...\InstallShield_{71883667-71F2-48A1-AB72-28D518D8AC4A}) (Version: 2.01.0048 - Seagate)
Seagate Manager Installer (Version: 2.01.0048 - Seagate) Hidden
Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden
SelectionLinks (HKLM\...\sl-dlc) (Version: 1.0 - SelectionLinks) <==== ATTENTION
Sierra Utilities (HKLM\...\Sierra Utilities) (Version:  - )
SmartSound Quicktracks Plugin (HKLM\...\InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}) (Version: 3.0.2.7 - SmartSound Software Inc)
SmartSound Quicktracks Plugin (Version: 3.0.2.7 - SmartSound Software Inc) Hidden
Spelling Dictionaries Support For Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
Studio 10 (HKLM\...\{3CB05291-F546-458E-A796-B5BCF5A3CDC4}) (Version: 10.5 - Pinnacle Systems)
Studio 10.8 Patch (Version: 10.8.0.4641 - Pinnacle Systems) Hidden
TextPad 5 (HKLM\...\{B6EC7388-E277-4A5B-8C8F-71067A41BA64}) (Version: 5.3.1 - Helios)
TurboTax 2009 (HKLM\...\TurboTax 2009) (Version:  - Intuit, Inc)
TurboTax 2009 waliper (Version: 009.000.0693 - Intuit Inc.) Hidden
TurboTax 2009 WinPerFedFormset (Version: 009.000.2163 - Intuit Inc.) Hidden
TurboTax 2009 WinPerReleaseEngine (Version: 009.000.0328 - Intuit Inc.) Hidden
TurboTax 2009 WinPerTaxSupport (Version: 009.000.0238 - Intuit Inc.) Hidden
TurboTax 2009 wrapper (Version: 009.000.0145 - Intuit Inc.) Hidden
TurboTax 2012 (HKLM\...\TurboTax 2012) (Version: 2012.0 - Intuit, Inc)
TurboTax 2012 waliper (Version: 012.000.1471 - Intuit Inc.) Hidden
TurboTax 2012 WinPerFedFormset (Version: 012.000.2309 - Intuit Inc.) Hidden
TurboTax 2012 WinPerReleaseEngine (Version: 012.000.0474 - Intuit Inc.) Hidden
TurboTax 2012 WinPerTaxSupport (Version: 012.000.0186 - Intuit Inc.) Hidden
TurboTax 2012 wrapper (Version: 012.000.0127 - Intuit Inc.) Hidden
TurboTax 2013 (HKLM\...\TurboTax 2013) (Version: 2013.0 - Intuit, Inc)
TurboTax 2013 waliper (Version: 013.000.1343 - Intuit Inc.) Hidden
TurboTax 2013 WinPerFedFormset (Version: 013.000.1986 - Intuit Inc.) Hidden
TurboTax 2013 WinPerReleaseEngine (Version: 013.000.0492 - Intuit Inc.) Hidden
TurboTax 2013 WinPerTaxSupport (Version: 013.000.0168 - Intuit Inc.) Hidden
TurboTax 2013 wmsiper (Version: 013.000.1272 - Intuit Inc.) Hidden
TurboTax 2013 wrapper (Version: 013.000.0135 - Intuit Inc.) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISER_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (HKLM\...\{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISER_{6B76A18A-AA1E-42AB-A7AD-6C84BBB43987}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISER_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office Infopath 2007 Help (KB963662) (HKLM\...\{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISER_{716B81B8-B13C-41DF-8EAC-7A2F656CAB63}) (Version:  - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM\...\{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISER_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISER_{ED38F8A3-4F61-494E-8BCA-E3AC7760C924}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISER_{0451F231-E3E3-4943-AB9F-58EB96171784}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2881065) 32-Bit Edition (HKLM\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{B7EF38F7-1D58-4085-A9A4-0F6C69A5AA1E}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISER_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM\...\{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISER_{2E40DE55-B289-4C8B-8901-5D369B16814F}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM\...\{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISER_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISER_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version:  - Microsoft)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows Easy Transfer Companion (Beta) (HKLM\...\{B139DD51-C3F1-4583-98B4-D35F64EA847F}) (Version: 1.0.0.0 - Microsoft Corporation)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Encoder 9 Series (HKLM\...\Windows Media Encoder 9) (Version:  - )
Windows Media Encoder 9 Series (Version: 9.00.3374 - Microsoft Corporation) Hidden
WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Zip Motion Block Video codec (Remove Only) (HKLM\...\ZMBV) (Version:  - DOSBox Team)
 
==================== Restore Points  =========================
 
15-06-2014 05:00:01 Scheduled Checkpoint
16-06-2014 01:37:05 Scheduled Checkpoint
17-06-2014 01:17:15 Removed Acrobat.com
17-06-2014 01:28:22 Configured Canon Camera WIA Driver
17-06-2014 01:40:07 Configured Canon Camera WIA Driver
17-06-2014 01:42:02 Configured Canon Camera WIA Driver
18-06-2014 01:35:58 Configured File Viewer Utility 1.2
18-06-2014 01:36:58 Configured RemoteCapture 2.7.0
18-06-2014 01:39:14 Removed Evernote
18-06-2014 01:42:36 Removed RollerCoaster Tycoon 2
19-06-2014 06:33:06 Scheduled Checkpoint
20-06-2014 05:00:01 Scheduled Checkpoint
21-06-2014 05:00:03 Scheduled Checkpoint
22-06-2014 05:00:01 Scheduled Checkpoint
24-06-2014 19:36:20 Scheduled Checkpoint
26-06-2014 05:00:02 Scheduled Checkpoint
27-06-2014 04:09:08 Scheduled Checkpoint
28-06-2014 10:24:03 Scheduled Checkpoint
29-06-2014 05:00:03 Scheduled Checkpoint
01-07-2014 01:18:30 Scheduled Checkpoint
02-07-2014 05:00:01 Scheduled Checkpoint
03-07-2014 05:00:01 Scheduled Checkpoint
 
==================== Hosts content: ==========================
 
2006-11-02 05:23 - 2006-09-18 16:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1             localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {0948BE21-8B74-49A6-A03B-28FBDF9D7ADE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-06-28] (Adobe Systems Incorporated)
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {37C7D8A1-5B34-4A30-A9FF-C1D804F8DB5F} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => C:\Program Files\Microsoft IntelliPoint\IPoint.exe [2008-06-10] (Microsoft Corporation)
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-19] (Microsoft Corporation)
Task: {4F3A2605-41E9-4B11-92ED-DBC58E08FE7E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {5F19EBDF-0506-4813-8365-305081E9293A} - System32\Tasks\Norton Internet Security - Run Full System Scan - C. Shawn Stinson => C:\Program Files\Norton Internet Security\Norton AntiVirus\Navw32.exe
Task: {8903F489-31A7-42D8-9167-E8786B615F7A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-10] (Google Inc.)
Task: {B8FF146A-9ADF-412B-A4E0-DCB551635605} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-10] (Google Inc.)
Task: {C80E403C-CD88-4EF7-AF77-63807FADE062} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => C:\Program Files\Microsoft IntelliType Pro\IType.exe [2008-06-10] (Microsoft Corporation)
Task: {CEAAB777-9823-4135-B355-62408E015447} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {DC175BAB-B103-48E8-A3D6-0414B9B92915} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-05] ()
Task: {F2C51300-8D74-4277-A1B3-FDA1BE285104} - System32\Tasks\Installation App Launcher => C:\Program Files\Lexmark 3600-4600 Series\ezprint.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Norton Internet Security - Run Full System Scan - C. Shawn Stinson.job => C:\Program Files\Norton Internet Security\Norton AntiVirus\Navw32.exe
Task: C:\Windows\Tasks\User_Feed_Synchronization-{5F21A599-F43B-40A5-A808-F1E341DB00FF}.job => C:\Windows\system32\msfeedssync.exe
 
==================== Loaded Modules (whitelisted) =============
 
2013-01-21 19:36 - 2008-02-27 19:15 - 00115200 _____ () C:\Windows\system32\spool\PRTPROCS\W32X86\lxdxdrpp.dll
2013-01-21 19:34 - 2008-02-27 19:10 - 00811008 _____ () C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdxptpc.dll
2013-01-21 19:34 - 2008-02-27 19:15 - 00148992 _____ () C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdxdrui.dll
2013-01-21 19:34 - 2008-02-27 19:15 - 00195072 _____ () C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdxdr.dll
2008-01-28 23:40 - 2008-01-28 23:40 - 01339392 _____ () C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdxHPEC.DLL
2013-01-21 19:34 - 2008-02-27 19:02 - 00589824 _____ () C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdxdatr.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2007-10-19 13:17 - 2007-10-19 13:17 - 00068120 _____ () C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSPS.dll
2007-10-25 16:33 - 2007-10-25 16:33 - 00563984 _____ () C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
2007-10-25 16:33 - 2007-10-25 16:33 - 00344336 _____ () C:\Program Files\Common Files\LogiShrd\LComMgr\DevMngr.dll
2007-10-25 16:33 - 2007-10-25 16:33 - 00167184 _____ () C:\Program Files\Logitech\QuickCam\EFVal.dll
2007-10-25 16:34 - 2007-10-25 16:34 - 00138000 _____ () C:\Program Files\Common Files\LogiShrd\LComMgr\LogiCordless.dll
2007-10-25 16:34 - 2007-10-25 16:34 - 00165136 _____ () C:\Program Files\Common Files\LogiShrd\LComMgr\LogiCordless4001.dll
2007-10-25 16:35 - 2007-10-25 16:35 - 00149264 _____ () C:\Program Files\Common Files\LogiShrd\LComMgr\LogiVOIPDevicePlugin.dll
2007-10-25 16:37 - 2007-10-25 16:37 - 02178832 _____ () C:\Program Files\Logitech\QuickCam\Quickcam.exe
2007-10-25 16:44 - 2007-10-25 16:44 - 00103184 _____ () C:\Program Files\Logitech\QuickCam\LAppRes.dll
2013-01-21 19:33 - 2008-06-13 11:04 - 00668328 _____ () C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe
2013-01-21 19:33 - 2008-06-13 10:11 - 00380928 _____ () C:\Program Files\Lexmark 3600-4600 Series\lxdxscw.dll
2013-01-21 19:34 - 2008-02-27 19:02 - 00589824 _____ () C:\Windows\system32\spool\drivers\w32x86\3\lxdxdatr.dll
2013-01-21 19:34 - 2008-02-27 19:02 - 00073728 _____ () C:\Windows\system32\spool\drivers\w32x86\3\lxdxcats.dll
2013-01-21 19:33 - 2008-06-13 10:11 - 00782336 _____ () C:\Program Files\Lexmark 3600-4600 Series\lxdxDRS.dll
2013-01-21 19:33 - 2008-06-13 10:11 - 00081920 _____ () C:\Program Files\Lexmark 3600-4600 Series\lxdxcaps.dll
2013-01-21 19:33 - 2008-06-13 10:03 - 00069632 _____ () C:\Program Files\Lexmark 3600-4600 Series\lxdxcnv4.dll
2013-01-21 19:33 - 2008-02-27 19:11 - 00782336 _____ () C:\Windows\system32\lxdxdrs.dll
2013-01-21 19:33 - 2008-02-27 19:11 - 00081920 _____ () C:\Windows\system32\lxdxcaps.dll
2013-01-21 19:33 - 2008-02-27 19:02 - 00069632 _____ () C:\Windows\system32\lxdxcnv4.dll
2013-01-21 19:33 - 2008-06-13 11:04 - 00025256 _____ () C:\Program Files\Lexmark 3600-4600 Series\lxdxMsdMon.exe
2013-01-21 19:33 - 2008-02-27 18:40 - 00028672 _____ () C:\Program Files\Lexmark 3600-4600 Series\App4R.Monitor.Common.dll
2013-01-21 19:33 - 2008-02-27 18:40 - 00036864 _____ () C:\Program Files\Lexmark 3600-4600 Series\App4R.Monitor.Core.dll
2013-01-21 19:33 - 2008-02-27 18:40 - 00061440 _____ () C:\Program Files\Lexmark 3600-4600 Series\app4r.devmons.mcmdevmon.dll
2013-01-21 19:33 - 2007-11-22 11:55 - 00011776 _____ () C:\Program Files\Lexmark 3600-4600 Series\app4r.devmons.mcmdevmon.autoplayutil.dll
2010-03-20 21:58 - 2010-03-20 21:58 - 00854016 _____ () C:\Windows\assembly\GAC_32\System.Data.SQLite\1.0.61.0__db937bc2d44ff139\System.Data.SQLite.dll
2010-03-20 21:58 - 2010-03-20 21:58 - 00471040 _____ () C:\Windows\assembly\GAC_MSIL\Intuit.Spc.Map.Reporter\5.0.104.0__7ce6deabcb36a8ea\Intuit.Spc.Map.Reporter.dll
2014-06-14 19:13 - 2014-06-05 08:58 - 04217672 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.153\pdf.dll
2014-06-14 19:13 - 2014-06-05 08:58 - 00414536 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.153\ppGoogleNaClPluginChrome.dll
2014-06-14 19:13 - 2014-06-05 08:58 - 01732424 _____ () C:\Program Files\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll
2014-04-13 03:32 - 2014-02-10 13:44 - 04592128 _____ () C:\Users\C. Shawn Stinson\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-04-13 03:32 - 2014-02-10 13:44 - 00112128 _____ () C:\Users\C. Shawn Stinson\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
 
==================== Safe Mode (whitelisted) ===================
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
 
==================== EXE Association (whitelisted) =============
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
 
==================== Faulty Device Manager Devices =============
 
Name: Microsoft 6to4 Adapter #2
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (07/03/2014 01:18:31 PM) (Source: MsiInstaller) (EventID: 11311) (User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2014 -- Error 1311. SA_Error1311: StandardAction(0xC007051F): Source file not found(cabinet): C:\ProgramData\AVG2014\SetupBackup\lng_esx.cab. Verify that the file exists and that you can access it.
 
Error: (07/03/2014 01:18:27 PM) (Source: MsiInstaller) (EventID: 11311) (User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2014 -- Error 1311. SA_Error1311: StandardAction(0xC007051F): Source file not found(cabinet): C:\ProgramData\AVG2014\SetupBackup\lng_ztx.cab. Verify that the file exists and that you can access it.
 
Error: (07/03/2014 01:18:23 PM) (Source: MsiInstaller) (EventID: 11311) (User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2014 -- Error 1311. SA_Error1311: StandardAction(0xC007051F): Source file not found(cabinet): C:\ProgramData\AVG2014\SetupBackup\lng_zhx.cab. Verify that the file exists and that you can access it.
 
Error: (07/03/2014 01:18:16 PM) (Source: MsiInstaller) (EventID: 11311) (User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2014 -- Error 1311. SA_Error1311: StandardAction(0xC007051F): Source file not found(cabinet): C:\ProgramData\AVG2014\SetupBackup\lng_trx.cab. Verify that the file exists and that you can access it.
 
Error: (07/03/2014 01:18:12 PM) (Source: MsiInstaller) (EventID: 11311) (User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2014 -- Error 1311. SA_Error1311: StandardAction(0xC007051F): Source file not found(cabinet): C:\ProgramData\AVG2014\SetupBackup\lng_rux.cab. Verify that the file exists and that you can access it.
 
Error: (07/03/2014 01:18:05 PM) (Source: MsiInstaller) (EventID: 11311) (User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2014 -- Error 1311. SA_Error1311: StandardAction(0xC007051F): Source file not found(cabinet): C:\ProgramData\AVG2014\SetupBackup\lng_msx.cab. Verify that the file exists and that you can access it.
 
Error: (07/03/2014 01:18:02 PM) (Source: MsiInstaller) (EventID: 11311) (User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2014 -- Error 1311. SA_Error1311: StandardAction(0xC007051F): Source file not found(cabinet): C:\ProgramData\AVG2014\SetupBackup\lng_kox.cab. Verify that the file exists and that you can access it.
 
Error: (07/03/2014 01:17:56 PM) (Source: MsiInstaller) (EventID: 11311) (User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2014 -- Error 1311. SA_Error1311: StandardAction(0xC007051F): Source file not found(cabinet): C:\ProgramData\AVG2014\SetupBackup\lng_idx.cab. Verify that the file exists and that you can access it.
 
Error: (07/03/2014 01:17:52 PM) (Source: MsiInstaller) (EventID: 11311) (User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2014 -- Error 1311. SA_Error1311: StandardAction(0xC007051F): Source file not found(cabinet): C:\ProgramData\AVG2014\SetupBackup\lng_inx.cab. Verify that the file exists and that you can access it.
 
Error: (07/03/2014 01:17:49 PM) (Source: MsiInstaller) (EventID: 11311) (User: NT AUTHORITY)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2014 -- Error 1311. SA_Error1311: StandardAction(0xC007051F): Source file not found(cabinet): C:\ProgramData\AVG2014\SetupBackup\lng_spx.cab. Verify that the file exists and that you can access it.
 
 
System errors:
=============
Error: (07/03/2014 05:31:24 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: AVGIDSAgent3758213661 (0xE001CA1D)
 
Error: (07/03/2014 05:31:23 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: AVGIDSAgent3758213661 (0xE001CA1D)
 
Error: (07/03/2014 05:31:22 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: AVGIDSAgent3758213661 (0xE001CA1D)
 
Error: (07/03/2014 05:31:21 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: AVGIDSAgent3758213661 (0xE001CA1D)
 
Error: (07/03/2014 05:31:20 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: AVGIDSAgent3758213661 (0xE001CA1D)
 
Error: (07/03/2014 05:31:19 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: AVGIDSAgent3758213661 (0xE001CA1D)
 
Error: (07/03/2014 05:31:18 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: AVGIDSAgent3758213661 (0xE001CA1D)
 
Error: (07/03/2014 05:31:17 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: AVGIDSAgent3758213661 (0xE001CA1D)
 
Error: (07/03/2014 05:31:16 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: AVGIDSAgent3758213661 (0xE001CA1D)
 
Error: (07/03/2014 05:31:15 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: AVGIDSAgent3758213661 (0xE001CA1D)
 
 
Microsoft Office Sessions:
=========================
Error: (06/19/2014 00:14:18 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 6 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error: (06/19/2014 00:14:03 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 16 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error: (06/19/2014 00:13:03 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 13 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error: (06/19/2014 00:12:43 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 15 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error: (06/19/2014 00:12:23 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 4399 seconds with 1680 seconds of active time.  This session ended with a crash.
 
Error: (06/17/2014 10:16:56 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 829 seconds with 540 seconds of active time.  This session ended with a crash.
 
Error: (06/07/2014 11:55:48 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 733 seconds with 720 seconds of active time.  This session ended with a crash.
 
Error: (02/13/2014 11:54:44 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 16 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error: (06/23/2013 04:19:43 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 18 seconds with 0 seconds of active time.  This session ended with a crash.
 
Error: (06/15/2013 08:50:18 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 45008 seconds with 240 seconds of active time.  This session ended with a crash.
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-07-03 21:33:52.894
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-03 21:33:52.591
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-03 21:33:52.290
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-03 21:33:51.992
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-03 21:33:51.250
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-03 21:33:50.950
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-03 21:33:50.647
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-03 21:33:50.348
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-03 21:33:50.045
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2014-07-03 21:33:49.746
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\avgidshx.sys because the set of per-page image hashes could not be found on the system.
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 70%
Total physical RAM: 3069.76 MB
Available physical RAM: 917.24 MB
Total Pagefile: 6357.54 MB
Available Pagefile: 4193.59 MB
Total Virtual: 2047.88 MB
Available Virtual: 1901.65 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:298.09 GB) (Free:129.7 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 298 GB) (Disk ID: ED697C68)
Partition 1: (Active) - (Size=298 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================
 
Thanks for any help you can offer.


#5 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:53 AM

Posted 04 July 2014 - 01:44 AM

You're infected with a bootkit as suspected. Let's remove it now.
Are the symptoms (iexplore.exe instances running) gone after the following step?


Start TDSSKiller.exe again with administrator privileges.
  • Set the parameters like in the first scan and click on Start scan.
  • This time select for the threat Rootkit.Boot.Cidox.b (and only for that) the option Cure (or Delete).
  • Click on Continue and allow the reboot.
  • Copy and paste the log file (C:\TDSSKiller.<version_date_time>_log.txt) of this run in your next reply.


#6 shwnstnsn

shwnstnsn
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:53 AM

Posted 04 July 2014 - 07:12 AM

Thanks for the help. I'll watch for a few days and see if the problem reoccurs and let you know.

 

Here's the log.....

 

06:57:36.0650 0x0b48  TDSS rootkit removing tool 3.0.0.39 Jun  5 2014 20:35:54
06:57:41.0699 0x0b48  ============================================================
06:57:41.0700 0x0b48  Current date / time: 2014/07/04 06:57:41.0699
06:57:41.0700 0x0b48  SystemInfo:
06:57:41.0700 0x0b48  
06:57:41.0700 0x0b48  OS Version: 6.0.6002 ServicePack: 2.0
06:57:41.0700 0x0b48  Product type: Workstation
06:57:41.0700 0x0b48  ComputerName: SHAWNSDESKTOP
06:57:41.0701 0x0b48  UserName: C. Shawn Stinson
06:57:41.0701 0x0b48  Windows directory: C:\Windows
06:57:41.0701 0x0b48  System windows directory: C:\Windows
06:57:41.0701 0x0b48  Processor architecture: Intel x86
06:57:41.0701 0x0b48  Number of processors: 2
06:57:41.0701 0x0b48  Page size: 0x1000
06:57:41.0701 0x0b48  Boot type: Normal boot
06:57:41.0701 0x0b48  ============================================================
06:57:41.0913 0x0b48  KLMD registered as C:\Windows\system32\drivers\89562086.sys
06:57:42.0045 0x0b48  System UUID: {8468F6F0-F509-696D-61A3-6BC1B30895B9}
06:57:42.0470 0x0b48  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
06:57:42.0486 0x0b48  ============================================================
06:57:42.0486 0x0b48  \Device\Harddisk0\DR0:
06:57:42.0486 0x0b48  MBR partitions:
06:57:42.0486 0x0b48  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800
06:57:42.0486 0x0b48  ============================================================
06:57:42.0507 0x0b48  C: <-> \Device\Harddisk0\DR0\Partition1
06:57:42.0507 0x0b48  ============================================================
06:57:42.0507 0x0b48  Initialize success
06:57:42.0507 0x0b48  ============================================================
06:58:00.0647 0x2b00  ============================================================
06:58:00.0647 0x2b00  Scan started
06:58:00.0647 0x2b00  Mode: Manual; SigCheck; TDLFS; 
06:58:00.0647 0x2b00  ============================================================
06:58:00.0647 0x2b00  KSN ping started
06:58:14.0458 0x2b00  KSN ping finished: true
06:58:14.0796 0x2b00  ================ Scan system memory ========================
06:58:14.0796 0x2b00  System memory - ok
06:58:14.0796 0x2b00  ================ Scan services =============================
06:58:14.0994 0x2b00  [ 585E64BB6DFBC0A2F1F0B554DED012DF, D1AB49DA951583E8E8154D977A47F4D20911BD4F77A0D5AD1293570426F3F6FA ] 61883           C:\Windows\system32\DRIVERS\61883.sys
06:58:15.0153 0x2b00  61883 - ok
06:58:15.0238 0x2b00  [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI            C:\Windows\system32\drivers\acpi.sys
06:58:15.0258 0x2b00  ACPI - ok
06:58:15.0332 0x2b00  [ B5D8DE922237CEDDC7992297654A4BE4, 88EF0B5EBFB383C9069A29AEA8D76EDBE1E70DD6F7C18970EE01ECAE9F408B38 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
06:58:15.0350 0x2b00  AdobeFlashPlayerUpdateSvc - ok
06:58:15.0393 0x2b00  [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB, 0342700760874683A6DF4F149DACACEF0569D40C45FC5958C67100B3C5D9BBBC ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
06:58:15.0431 0x2b00  adp94xx - ok
06:58:15.0461 0x2b00  [ B84088CA3CDCA97DA44A984C6CE1CCAD, 87009809FB101BF51483FA32318CBCD209386582880C82417BE4FFAD1B04C8C1 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
06:58:15.0488 0x2b00  adpahci - ok
06:58:15.0507 0x2b00  [ 7880C67BCCC27C86FD05AA2AFB5EA469, C8B06E203EEA6EAD19651F212432005ABADFF21E2AA5699E34040527394F2677 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
06:58:15.0520 0x2b00  adpu160m - ok
06:58:15.0537 0x2b00  [ 9AE713F8E30EFC2ABCCD84904333DF4D, B0C7801AC6E0811C38F0474703F34283914C8873D851F59EE232834F7C0D8087 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
06:58:15.0552 0x2b00  adpu320 - ok
06:58:15.0588 0x2b00  [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
06:58:15.0609 0x2b00  AeLookupSvc - ok
06:58:15.0679 0x2b00  [ 3911B972B55FEA0478476B2E777B29FA, 62545B90C7DD3F73777E62CD8264E611A4D71B6956CABFD2D820D25F41F471FD ] AFD             C:\Windows\system32\drivers\afd.sys
06:58:15.0713 0x2b00  AFD - ok
06:58:15.0752 0x2b00  [ EF23439CDD587F64C2C1B8825CEAD7D8, 762665CFC202B3E16CA2338887896FDF996331A363DC709F1EC088BF927133A3 ] agp440          C:\Windows\system32\drivers\agp440.sys
06:58:15.0766 0x2b00  agp440 - ok
06:58:15.0790 0x2b00  [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
06:58:15.0803 0x2b00  aic78xx - ok
06:58:15.0851 0x2b00  [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG             C:\Windows\System32\alg.exe
06:58:15.0894 0x2b00  ALG - ok
06:58:15.0913 0x2b00  [ 90395B64600EBB4552E26E178C94B2E4, 73095893964DC7915983B58A567184FC51949C99341E7E0D04D70CC4C4F95E37 ] aliide          C:\Windows\system32\drivers\aliide.sys
06:58:15.0928 0x2b00  aliide - ok
06:58:15.0942 0x2b00  [ 2B13E304C9DFDFA5EB582F6A149FA2C7, 196CCE13E0376526B79D9C43D4071990576C4DD210A48E9E922B438AA11C95E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
06:58:15.0955 0x2b00  amdagp - ok
06:58:15.0973 0x2b00  [ 0577DF1D323FE75A739C787893D300EA, 079EF3CA18FB847DB7E62929071BFF007FAF390E1DBF4C59F28DAAC6B9C2DE51 ] amdide          C:\Windows\system32\drivers\amdide.sys
06:58:15.0984 0x2b00  amdide - ok
06:58:16.0003 0x2b00  [ DC487885BCEF9F28EECE6FAC0E5DDFC5, 24A62F6E628AD46273BC226F7BC3453A9C7B76F81ABB9FB801EBEFADB2AB7C9B ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
06:58:16.0055 0x2b00  AmdK7 - ok
06:58:16.0099 0x2b00  [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
06:58:16.0131 0x2b00  AmdK8 - ok
06:58:16.0192 0x2b00  [ C6D704C7F0434DC791AAC37CAC4B6E14, 35CF7D1895F97637E0C678A39F3049B871BCA9526D379C7793ED33B87D2EAC4C ] Appinfo         C:\Windows\System32\appinfo.dll
06:58:16.0228 0x2b00  Appinfo - ok
06:58:16.0304 0x2b00  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
06:58:16.0317 0x2b00  Apple Mobile Device - ok
06:58:16.0348 0x2b00  [ 5F673180268BB1FDB69C99B6619FE379, C4307A861163F96648109046A6C7D53AB1C9B10D0B841DD1A7D147D22F462649 ] arc             C:\Windows\system32\drivers\arc.sys
06:58:16.0364 0x2b00  arc - ok
06:58:16.0385 0x2b00  [ 957F7540B5E7F602E44648C7DE5A1C05, F03C7708A6C9D2579ECE5A7413AFA068E1067D7191EC653A78BA4FEDE76CFBD8 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
06:58:16.0401 0x2b00  arcsas - ok
06:58:16.0542 0x2b00  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
06:58:16.0562 0x2b00  aspnet_state - ok
06:58:16.0610 0x2b00  [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
06:58:16.0668 0x2b00  AsyncMac - ok
06:58:16.0716 0x2b00  [ 1F05B78AB91C9075565A9D8A4B880BC4, 737BE9F9376DAB0CCDFED93EA6D67F0C432367EA63CD772A453485BE769AF3BD ] atapi           C:\Windows\system32\drivers\atapi.sys
06:58:16.0731 0x2b00  atapi - ok
06:58:16.0799 0x2b00  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
06:58:16.0852 0x2b00  AudioEndpointBuilder - ok
06:58:16.0869 0x2b00  [ 68E2A1A0407A66CF50DA0300852424AB, 5FFDAE4E477C90A855081B5120582810471F67D3E9C343779A7AFB8D684D16F8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
06:58:16.0908 0x2b00  Audiosrv - ok
06:58:16.0962 0x2b00  [ F4B56425A00BEB32F5FA6603FF7B0EA2, E91E401053AC9363DE4675879D01B4E0D4054B7AEBBFEE656861170820F53278 ] Avc             C:\Windows\system32\DRIVERS\avc.sys
06:58:16.0988 0x2b00  Avc - ok
06:58:17.0070 0x2b00  [ 66005CD6AA6764265EC67AD1A3F4552F, B26BB4BA0FC5DF24F9C34CB9D5E8821216507142A222C9B51DA920F8BA7E4898 ] Avgdiskx        C:\Windows\system32\DRIVERS\avgdiskx.sys
06:58:17.0088 0x2b00  Avgdiskx - ok
06:58:17.0294 0x2b00  [ 20B2C28E3914C6837B30D44D31D2A294, CB10530525CD36146391ECFB8875A284B7EF71A84EBC96D078FB3D637E29A504 ] AVGIDSAgent     C:\Program Files\AVG\AVG2014\avgidsagent.exe
06:58:17.0442 0x2b00  AVGIDSAgent - ok
06:58:17.0503 0x2b00  [ 572AA32C47BDFD17D3F7411503215D1B, 62E2F46A4E45CE44B4DF8F898FF7CFE75B69B349F3C91959D353BBEC0F4DC83D ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdriverx.sys
06:58:17.0519 0x2b00  AVGIDSDriver - ok
06:58:17.0572 0x2b00  [ C0701A3C53F0A0F5E4900F26365A10A1, 2755AF8C98F4855FD467F0174D6AE7AC3E7050D95008FE521918194593684D51 ] AVGIDSHX        C:\Windows\system32\DRIVERS\avgidshx.sys
06:58:17.0586 0x2b00  AVGIDSHX - ok
06:58:17.0641 0x2b00  [ E7FEE532CEF01C97D7682E35D156244F, CF54B4B83E1A060FF52BDEAC4E20492ACFAABC87BC6BE784D6AB4CD64C965B92 ] AVGIDSShim      C:\Windows\system32\DRIVERS\avgidsshimx.sys
06:58:17.0652 0x2b00  AVGIDSShim - ok
06:58:17.0702 0x2b00  [ FA868D5784DE755DD8A1B4B1A80574E4, 9300B4ACBDA96FA4FEE9265ED0E50F750C2B6F7BE854953B8FB73904679DBCA3 ] Avgldx86        C:\Windows\system32\DRIVERS\avgldx86.sys
06:58:17.0717 0x2b00  Avgldx86 - ok
06:58:17.0764 0x2b00  [ 8D37558421330218C98722DF4AD85E83, 24C33B317BA605DFC9B9CE2868391A815870A61F58A172806533A16F29F92B0A ] Avglogx         C:\Windows\system32\DRIVERS\avglogx.sys
06:58:17.0780 0x2b00  Avglogx - ok
06:58:17.0835 0x2b00  [ 5C3A4A2F473E614C1BF807FE2ABE0D05, 71E786EA1DCBC6ECB915E887B19C86E041C8E4373DAB28548D344323FD9D6CD2 ] Avgmfx86        C:\Windows\system32\DRIVERS\avgmfx86.sys
06:58:17.0848 0x2b00  Avgmfx86 - ok
06:58:17.0889 0x2b00  [ 86FCB8CE3E68C4777B98F7AF06FE8519, 6B7507DA927ECDBA8B2DAA87530DDAEAC5B0983D3CF11D1F6D00D36601FBC60C ] Avgrkx86        C:\Windows\system32\DRIVERS\avgrkx86.sys
06:58:17.0900 0x2b00  Avgrkx86 - ok
06:58:17.0913 0x2b00  [ ACFEE559442E1FCD48EC74C7D3452608, 536E36CD59BB1E0F5732D8BF57208A07C88A51D02FA016F844648CA0B44F0073 ] Avgtdix         C:\Windows\system32\DRIVERS\avgtdix.sys
06:58:17.0932 0x2b00  Avgtdix - ok
06:58:17.0967 0x2b00  [ 13BB5F8819F90CE30A967FD94823E21B, 01E4AE673D0E48EAFAE6D879AE1A5D7E385848CBC0FDE45BA0AE1F96D02BC65B ] avgwd           C:\Program Files\AVG\AVG2014\avgwdsvc.exe
06:58:17.0987 0x2b00  avgwd - ok
06:58:18.0054 0x2b00  [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep            C:\Windows\system32\drivers\Beep.sys
06:58:18.0081 0x2b00  Beep - ok
06:58:18.0141 0x2b00  [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE             C:\Windows\System32\bfe.dll
06:58:18.0187 0x2b00  BFE - ok
06:58:18.0278 0x2b00  [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS            C:\Windows\System32\qmgr.dll
06:58:18.0368 0x2b00  BITS - ok
06:58:18.0378 0x2b00  blbdrive - ok
06:58:18.0460 0x2b00  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
06:58:18.0499 0x2b00  Bonjour Service - ok
06:58:18.0549 0x2b00  [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
06:58:18.0579 0x2b00  bowser - ok
06:58:18.0609 0x2b00  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
06:58:18.0639 0x2b00  BrFiltLo - ok
06:58:18.0656 0x2b00  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
06:58:18.0700 0x2b00  BrFiltUp - ok
06:58:18.0742 0x2b00  [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser         C:\Windows\System32\browser.dll
06:58:18.0778 0x2b00  Browser - ok
06:58:18.0808 0x2b00  [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid         C:\Windows\system32\drivers\brserid.sys
06:58:18.0894 0x2b00  Brserid - ok
06:58:18.0918 0x2b00  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
06:58:18.0979 0x2b00  BrSerWdm - ok
06:58:18.0999 0x2b00  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
06:58:19.0056 0x2b00  BrUsbMdm - ok
06:58:19.0071 0x2b00  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
06:58:19.0128 0x2b00  BrUsbSer - ok
06:58:19.0157 0x2b00  [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
06:58:19.0200 0x2b00  BTHMODEM - ok
06:58:19.0249 0x2b00  [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
06:58:19.0274 0x2b00  cdfs - ok
06:58:19.0345 0x2b00  [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
06:58:19.0366 0x2b00  cdrom - ok
06:58:19.0420 0x2b00  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc     C:\Windows\System32\certprop.dll
06:58:19.0440 0x2b00  CertPropSvc - ok
06:58:19.0462 0x2b00  [ DA8E0AFC7BAA226C538EF53AC2F90897, 2BBB9966671A3B8325D215DBC29FBD7D912C13ADC562A0D4521D1FF9A6F445C0 ] circlass        C:\Windows\system32\drivers\circlass.sys
06:58:19.0507 0x2b00  circlass - ok
06:58:19.0557 0x2b00  [ D7659D3B5B92C31E84E53C1431F35132, 6BFE644AD9890A8CEEDCC4B97ADD564AD57202FBC5D21599469E0C4B31BB27C6 ] CLFS            C:\Windows\system32\CLFS.sys
06:58:19.0576 0x2b00  CLFS - ok
06:58:19.0598 0x2b00  [ 8EE772032E2FE80A924F3B8DD5082194, B743DF91563A22CC15D9B44105804B5866A29D3DFC156DBE88DFAFEF903B94C0 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
06:58:19.0611 0x2b00  clr_optimization_v2.0.50727_32 - ok
06:58:19.0679 0x2b00  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
06:58:19.0696 0x2b00  clr_optimization_v4.0.30319_32 - ok
06:58:19.0717 0x2b00  [ 45201046C776FFDAF3FC8A0029C581C8, 68A68CF2B76598BC8610EB5B2D3FD5BDC9D51CFC6F51FB7A0B0C92A2BE910FC6 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
06:58:19.0728 0x2b00  cmdide - ok
06:58:19.0748 0x2b00  [ 82B8C91D327CFECF76CB58716F7D4997, 6F06A4BC44B170BB28BF464E9BB5216D39D11CB8D442570B575A741B032EAEE6 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
06:58:19.0762 0x2b00  Compbatt - ok
06:58:19.0774 0x2b00  COMSysApp - ok
06:58:19.0798 0x2b00  [ 2A213AE086BBEC5E937553C7D9A2B22C, 1F91ACC0426E0ED1717555B282F65629EF15021375B24A63C29C89ADE916EE2A ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
06:58:19.0811 0x2b00  crcdisk - ok
06:58:19.0836 0x2b00  [ 22A7F883508176489F559EE745B5BF5D, D6341E3FBC8A46D2D1F0477FA60EC4828B585D35B14609CD02868FD04ECD14DB ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
06:58:19.0879 0x2b00  Crusoe - ok
06:58:19.0936 0x2b00  [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
06:58:19.0959 0x2b00  CryptSvc - ok
06:58:20.0042 0x2b00  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch      C:\Windows\system32\rpcss.dll
06:58:20.0094 0x2b00  DcomLaunch - ok
06:58:20.0153 0x2b00  [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
06:58:20.0184 0x2b00  DfsC - ok
06:58:20.0322 0x2b00  [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR            C:\Windows\system32\DFSR.exe
06:58:20.0509 0x2b00  DFSR - ok
06:58:20.0604 0x2b00  [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
06:58:20.0637 0x2b00  Dhcp - ok
06:58:20.0676 0x2b00  [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk            C:\Windows\system32\drivers\disk.sys
06:58:20.0690 0x2b00  disk - ok
06:58:20.0751 0x2b00  [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache        C:\Windows\System32\dnsrslvr.dll
06:58:20.0789 0x2b00  Dnscache - ok
06:58:20.0853 0x2b00  [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc         C:\Windows\System32\dot3svc.dll
06:58:20.0884 0x2b00  dot3svc - ok
06:58:20.0934 0x2b00  [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS             C:\Windows\system32\dps.dll
06:58:20.0971 0x2b00  DPS - ok
06:58:21.0002 0x2b00  [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
06:58:21.0033 0x2b00  drmkaud - ok
06:58:21.0094 0x2b00  [ 988670D8343EF9835FB3659DB71B2EFA, 5F5370FDD08C4BFF0828341952E98E95F722CB779EEC08C9DD6212C4DF3CD33B ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
06:58:21.0148 0x2b00  DXGKrnl - ok
06:58:21.0182 0x2b00  [ F88FB26547FD2CE6D0A5AF2985892C48, F02E06E16830F5D3FAF61991F5A91E54BB3461F58AFE3BFB7A9066CD302B879F ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
06:58:21.0263 0x2b00  E1G60 - ok
06:58:21.0317 0x2b00  [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost         C:\Windows\System32\eapsvc.dll
06:58:21.0345 0x2b00  EapHost - ok
06:58:21.0382 0x2b00  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache          C:\Windows\system32\drivers\ecache.sys
06:58:21.0402 0x2b00  Ecache - ok
06:58:21.0467 0x2b00  [ 9BE3744D295A7701EB425332014F0797, 1A139EE9232581E466591C5EBEF41E4BF1F82D99C1959F1C68C879B240E9F46D ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
06:58:21.0502 0x2b00  ehRecvr - ok
06:58:21.0529 0x2b00  [ AD1870C8E5D6DD340C829E6074BF3C3F, 064D07106A1BBE80294F1913354832F2B67D22274BB4D36C81D2D83C96FE0B88 ] ehSched         C:\Windows\ehome\ehsched.exe
06:58:21.0550 0x2b00  ehSched - ok
06:58:21.0576 0x2b00  [ C27C4EE8926E74AA72EFCAB24C5242C3, F1EBF78CCE9BA76AFD0478BC66B67CA44DEAF3C380369BFCE91BD8F678C8608A ] ehstart         C:\Windows\ehome\ehstart.dll
06:58:21.0592 0x2b00  ehstart - ok
06:58:21.0670 0x2b00  [ 7EC42EC12A4BAC14BCCA99FB06F2D125, 6C4761B6727430D11D463C2E3BD0202755BE6598F3585A2B4B8E24DBA6A2EF7B ] elagopro        C:\Windows\system32\DRIVERS\elagopro.sys
06:58:21.0698 0x2b00  elagopro - ok
06:58:21.0729 0x2b00  [ DFEABB7CFFFADEA4A912AB95BDC3177A, 9A93956CF826F419ACB2B3CA8809917E345ACFD43B102EAB18DB46F49859D1C7 ] elaunidr        C:\Windows\system32\DRIVERS\elaunidr.sys
06:58:21.0753 0x2b00  elaunidr - ok
06:58:21.0797 0x2b00  [ E8F3F21A71720C84BCF423B80028359F, 63114E6120F634224A0E83A5047B37C7D6F26CF99FE3C01CFC0AB8B1763BB084 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
06:58:21.0836 0x2b00  elxstor - ok
06:58:21.0916 0x2b00  [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
06:58:21.0976 0x2b00  EMDMgmt - ok
06:58:22.0039 0x2b00  [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem     C:\Windows\system32\es.dll
06:58:22.0082 0x2b00  EventSystem - ok
06:58:22.0135 0x2b00  [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat           C:\Windows\system32\drivers\exfat.sys
06:58:22.0158 0x2b00  exfat - ok
06:58:22.0202 0x2b00  [ 1E9B9A70D332103C52995E957DC09EF8, 7E709D545D4025A2E9F3489CF2A231040904CB53E3E4EEAC15A22468FAB2A5B3 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
06:58:22.0236 0x2b00  fastfat - ok
06:58:22.0265 0x2b00  [ 63BDADA84951B9C03E641800E176898A, AD3EA20CAD0E0C438422D5D39AEA9E0AAD9E1DC866A696AE503C76F5FAC4BE6E ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
06:58:22.0324 0x2b00  fdc - ok
06:58:22.0368 0x2b00  [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost         C:\Windows\system32\fdPHost.dll
06:58:22.0402 0x2b00  fdPHost - ok
06:58:22.0431 0x2b00  [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub        C:\Windows\system32\fdrespub.dll
06:58:22.0490 0x2b00  FDResPub - ok
06:58:22.0542 0x2b00  [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
06:58:22.0554 0x2b00  FileInfo - ok
06:58:22.0599 0x2b00  [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
06:58:22.0626 0x2b00  Filetrace - ok
06:58:22.0639 0x2b00  [ 6603957EFF5EC62D25075EA8AC27DE68, B52D112301A6BFBD60959D7D2502AB2E1EB6BB7F5DCED46899F1F006C7F1E887 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
06:58:22.0681 0x2b00  flpydisk - ok
06:58:22.0738 0x2b00  [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
06:58:22.0754 0x2b00  FltMgr - ok
06:58:22.0833 0x2b00  [ 2AFA3A46986AE935DAECEBC7E66314CF, 747FAF9B7F8291B83EE44B91E5708395E749DC87BD42CC3BF2CD41209C298F4D ] FontCache       C:\Windows\system32\FntCache.dll
06:58:22.0917 0x2b00  FontCache - ok
06:58:22.0983 0x2b00  [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
06:58:22.0995 0x2b00  FontCache3.0.0.0 - ok
06:58:23.0051 0x2b00  [ C0504D5561D4E3872BCBA47531E2763B, 171ECD1E7796858BF499A9DD1724FF0634FC2948D92D3B0A855D901932B8F03C ] FreeAgentGoNext Service C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
06:58:23.0065 0x2b00  FreeAgentGoNext Service - ok
06:58:23.0131 0x2b00  [ D909075FA72C090F27AA926C32CB4612, F8610C20C4DD499D5B4ACEBD7107E52E25B6449AEED58D1A203F7D654B55C4DF ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
06:58:23.0143 0x2b00  fssfltr - ok
06:58:23.0301 0x2b00  [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc          C:\Program Files\Windows Live\Family Safety\fsssvc.exe
06:58:23.0411 0x2b00  fsssvc - ok
06:58:23.0457 0x2b00  [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
06:58:23.0493 0x2b00  Fs_Rec - ok
06:58:23.0526 0x2b00  [ 4E1CD0A45C50A8882616CAE5BF82F3C5, 1B909AF150F7119A5685999451A85012F4A92F15F38390A281EA507E2D247BAE ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
06:58:23.0540 0x2b00  gagp30kx - ok
06:58:23.0578 0x2b00  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\Windows\system32\Drivers\GEARAspiWDM.sys
06:58:23.0589 0x2b00  GEARAspiWDM - ok
06:58:23.0662 0x2b00  [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc           C:\Windows\System32\gpsvc.dll
06:58:23.0737 0x2b00  gpsvc - ok
06:58:23.0837 0x2b00  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
06:58:23.0853 0x2b00  gupdate - ok
06:58:23.0865 0x2b00  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
06:58:23.0879 0x2b00  gupdatem - ok
06:58:23.0942 0x2b00  [ 833051C6C6C42117191935F734CFBD97, 5EB5672ABC7994A4AFF855A572158B8BE4FC6E541CFD4B9BE4FF2739A9A6AFB8 ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
06:58:23.0958 0x2b00  hamachi - ok
06:58:24.0113 0x2b00  [ 20AAD49D221C3BD428FF6B7C89A85C97, 36E8EE135849864E60964B051C3B5C0F815170A95E9D124E14B317D8E70CE314 ] Hamachi2Svc     C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
06:58:24.0253 0x2b00  Hamachi2Svc - ok
06:58:24.0306 0x2b00  [ CB04C744BE0A61B1D648FAED182C3B59, 61DC0FF94325DAFCCB7B3980A48727EFBF1283FCF753EC16EF04C730525994C0 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
06:58:24.0373 0x2b00  HdAudAddService - ok
06:58:24.0439 0x2b00  [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
06:58:24.0498 0x2b00  HDAudBus - ok
06:58:24.0534 0x2b00  [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth          C:\Windows\system32\drivers\hidbth.sys
06:58:24.0592 0x2b00  HidBth - ok
06:58:24.0609 0x2b00  [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr           C:\Windows\system32\drivers\hidir.sys
06:58:24.0669 0x2b00  HidIr - ok
06:58:24.0719 0x2b00  [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv         C:\Windows\system32\hidserv.dll
06:58:24.0738 0x2b00  hidserv - ok
06:58:24.0785 0x2b00  [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
06:58:24.0811 0x2b00  HidUsb - ok
06:58:24.0858 0x2b00  [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc          C:\Windows\system32\kmsvc.dll
06:58:24.0921 0x2b00  hkmsvc - ok
06:58:24.0945 0x2b00  [ DF353B401001246853763C4B7AAA6F50, 05C043493BDD99DEFBB0F5C3D8C475B06C2BF5629565ACF6F3B754002519B836 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
06:58:24.0960 0x2b00  HpCISSs - ok
06:58:25.0037 0x2b00  [ 1882827F41DEE51C70E24C567C35BFB5, C3508BDB045F0CB2205733D9F0CF7A2BEE03C4E4A8690B7D305EBEE887E588C6 ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys
06:58:25.0129 0x2b00  HSF_DPV - ok
06:58:25.0191 0x2b00  [ 5F60F0AD32D43B9AB9AC9373117D8E54, 33F3E7F65AE133336887C08047C9F64AE515EB5166656FBBBD06DE0A819945FE ] HSXHWBS2        C:\Windows\system32\DRIVERS\HSXHWBS2.sys
06:58:25.0233 0x2b00  HSXHWBS2 - ok
06:58:25.0293 0x2b00  [ F870AA3E254628EBEAFE754108D664DE, B0444E7D246AA1982094030ACB991690F6A7DD3FB07B1BB6A1BC0F3AA9718A70 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
06:58:25.0357 0x2b00  HTTP - ok
06:58:25.0386 0x2b00  [ 324C2152FF2C61ABAE92D09F3CCA4D63, 2D09964C8003277F7DB1FFAA0DAEF15B205F3C4100FF601950BC9E544DC0B91F ] i2omp           C:\Windows\system32\drivers\i2omp.sys
06:58:25.0400 0x2b00  i2omp - ok
06:58:25.0465 0x2b00  [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
06:58:25.0495 0x2b00  i8042prt - ok
06:58:25.0531 0x2b00  [ C957BF4B5D80B46C5017BF0101E6C906, 6B9186335E50E7E0DBAF574A224E524EC526B57AA02F509E4A8D0F905C9CE880 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
06:58:25.0555 0x2b00  iaStorV - ok
06:58:25.0644 0x2b00  [ 98477B08E61945F974ED9FDC4CB6BDAB, C7E8F661F6FBF6AB493E950D2E70363496E155B1838CE7B490B981BD840B04FC ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
06:58:25.0695 0x2b00  idsvc - ok
06:58:25.0726 0x2b00  [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp           C:\Windows\system32\drivers\iirsp.sys
06:58:25.0738 0x2b00  iirsp - ok
06:58:25.0816 0x2b00  [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT          C:\Windows\System32\ikeext.dll
06:58:25.0860 0x2b00  IKEEXT - ok
06:58:25.0972 0x2b00  [ A47B2875680AD67B35C6150BD0203056, 2087CF6D1EEA7C0DB09EB3211713B2D0F36877960878A08CF6CEC99252316417 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
06:58:26.0093 0x2b00  IntcAzAudAddService - ok
06:58:26.0145 0x2b00  [ 97469037714070E45194ED318D636401, DDB5AE39BE0BD37ECB44969A5FA740E5B1169342347D0DB3E5DF0353A6708271 ] intelide        C:\Windows\system32\drivers\intelide.sys
06:58:26.0156 0x2b00  intelide - ok
06:58:26.0194 0x2b00  [ CE44CC04262F28216DD4341E9E36A16F, 2B316C4124DCFEAD7838B3D8FB8DBEC3F3B1EA8EA612AABB05B1275D0B230CCD ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
06:58:26.0244 0x2b00  intelppm - ok
06:58:26.0341 0x2b00  [ 7BDB4E00E1CB174B56E5B2C31DDE68A7, C7FC4B2A3245DCD4E01B8DC9F7AA8D4FBDD5D1B4F5A00B8895B2EC5E9068D91A ] IntuitUpdateService C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
06:58:26.0349 0x2b00  IntuitUpdateService - ok
06:58:26.0464 0x2b00  [ 0895CDD7F1542FFCC5BBB560EC78BC16, 383D9FFE7FB313EA201DE877F3D48B5116FFA261EDEF5D0D0FE79F14E9682D25 ] IntuitUpdateServiceV4 C:\Program Files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
06:58:26.0509 0x2b00  IntuitUpdateServiceV4 - ok
06:58:26.0554 0x2b00  [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
06:58:26.0583 0x2b00  IPBusEnum - ok
06:58:26.0624 0x2b00  [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
06:58:26.0662 0x2b00  IpFilterDriver - ok
06:58:26.0721 0x2b00  [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
06:58:26.0826 0x2b00  iphlpsvc - ok
06:58:26.0834 0x2b00  IpInIp - ok
06:58:26.0862 0x2b00  [ 40F34F8ABA2A015D780E4B09138B6C17, 22F86888C6B4F76836E863A90730D8F0DBD518305D87A399A159387E79E9D2F7 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
06:58:26.0924 0x2b00  IPMIDRV - ok
06:58:26.0966 0x2b00  [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
06:58:27.0003 0x2b00  IPNAT - ok
06:58:27.0085 0x2b00  [ 463790AEF94D8EAB674631257F53252E, A02972457F45AD6816CB5F60DE4CD15D68256695FA0F3E4EAD6F9E36CBE54576 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
06:58:27.0133 0x2b00  iPod Service - ok
06:58:27.0181 0x2b00  [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
06:58:27.0221 0x2b00  IRENUM - ok
06:58:27.0237 0x2b00  [ 350FCA7E73CF65BCEF43FAE1E4E91293, 68403FE3F4DC40919CD26A2CC42BE4386AE6874F47DD382348FFD79080721A13 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
06:58:27.0251 0x2b00  isapnp - ok
06:58:27.0345 0x2b00  [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
06:58:27.0392 0x2b00  iScsiPrt - ok
06:58:27.0416 0x2b00  [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
06:58:27.0430 0x2b00  iteatapi - ok
06:58:27.0456 0x2b00  [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
06:58:27.0471 0x2b00  iteraid - ok
06:58:27.0490 0x2b00  [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
06:58:27.0506 0x2b00  kbdclass - ok
06:58:27.0559 0x2b00  [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
06:58:27.0584 0x2b00  kbdhid - ok
06:58:27.0639 0x2b00  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso          C:\Windows\system32\lsass.exe
06:58:27.0657 0x2b00  KeyIso - ok
06:58:27.0720 0x2b00  [ 4A1445EFA932A3BAF5BDB02D7131EE20, 9DD262ED72DF268FE024063788F54124E320D0775D8DC0C5CAD099CD5F655DA2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
06:58:27.0753 0x2b00  KSecDD - ok
06:58:27.0830 0x2b00  [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm           C:\Windows\system32\msdtckrm.dll
06:58:27.0892 0x2b00  KtmRm - ok
06:58:27.0949 0x2b00  [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer    C:\Windows\system32\srvsvc.dll
06:58:27.0979 0x2b00  LanmanServer - ok
06:58:28.0025 0x2b00  [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
06:58:28.0068 0x2b00  LanmanWorkstation - ok
06:58:28.0121 0x2b00  [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
06:58:28.0155 0x2b00  lltdio - ok
06:58:28.0205 0x2b00  [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
06:58:28.0255 0x2b00  lltdsvc - ok
06:58:28.0299 0x2b00  [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts         C:\Windows\System32\lmhsvc.dll
06:58:28.0350 0x2b00  lmhosts - ok
06:58:28.0416 0x2b00  [ FF585B29142A433EAA4C76EF4E29CCC7, 683648CFD3F00DDC991E9754FBB5F265F405D6DA0F79150314EBF7DD901524BC ] LMIGuardianSvc  C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
06:58:28.0452 0x2b00  LMIGuardianSvc - ok
06:58:28.0484 0x2b00  [ A2262FB9F28935E862B4DB46438C80D2, 792684A68726BC007ACABB584682FDF4F059AE60888FB5B47ED68A97EA0BB5E6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
06:58:28.0496 0x2b00  LSI_FC - ok
06:58:28.0511 0x2b00  [ 30D73327D390F72A62F32C103DAF1D6D, 7BB5BFB0DCF33AF9907539B52DF7BA1943C1E75A17715B58DBC702ACA6D406EA ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
06:58:28.0522 0x2b00  LSI_SAS - ok
06:58:28.0540 0x2b00  [ E1E36FEFD45849A95F1AB81DE0159FE3, DA02B23A881D156A02D3874B41E6D042F84AD558B434280A6A6AC6B619668647 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
06:58:28.0552 0x2b00  LSI_SCSI - ok
06:58:28.0595 0x2b00  [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv           C:\Windows\system32\drivers\luafv.sys
06:58:28.0622 0x2b00  luafv - ok
06:58:28.0744 0x2b00  [ 8113133EC42DD6C566908008CE913EDD, 9D388AEF0A1F62E45D1F84D0429B6AD3AB3FE73ABB0C9E0564B6D91337A74E98 ] LVcKap          C:\Windows\system32\DRIVERS\LVcKap.sys
06:58:28.0845 0x2b00  LVcKap - ok
06:58:28.0920 0x2b00  [ 9E41266C68C11D7101A2D18CD1F7553E, ECFE65FDEA7F9A10F5B776370AE6F2DEA6BB7C249902F034BB199C0548356E5E ] LVCOMSer        C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
06:58:28.0935 0x2b00  LVCOMSer - ok
06:58:29.0034 0x2b00  [ 0DD5B8AF4917A2821047450195C511B3, 9F5D57CA468DCE508E5A037543A6D99F535F84C35BB49B0FF96A2C385AB8A247 ] LVMVDrv         C:\Windows\system32\DRIVERS\LVMVDrv.sys
06:58:29.0177 0x2b00  LVMVDrv - ok
06:58:29.0248 0x2b00  [ 406B1D186F75B4B4832D6237859E1B00, 7FB2657F98B425262F57574FEFF70ECCCEAD2238F10195D347AA95EAA632109D ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2Mon.sys
06:58:29.0257 0x2b00  LVPr2Mon - ok
06:58:29.0277 0x2b00  [ 85C2E84BC1224C75A20B5560D5A15DB9, C95E4FB231DF7381CC66B91FACE99BA21FF2E5A0ED8D4BD7B317A5ADBF604D51 ] LVPrcSrv        C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
06:58:29.0291 0x2b00  LVPrcSrv - ok
06:58:29.0351 0x2b00  [ 87ECCE893D8AEC5A9337B917742D339C, C5D5B4D0C4F206B67EF68D7D691B36A0249E7B41AE7DFD8445298A0F66A374A6 ] LVRS            C:\Windows\system32\DRIVERS\lvrs.sys
06:58:29.0371 0x2b00  LVRS - ok
06:58:29.0398 0x2b00  [ 656180E9C0C5199520972426C44BC2F0, AE5EDCA443A2C530247E27882DAFAECBE814C7575CF162A8C7ED5CD0B5049AEC ] LVSrvLauncher   C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
06:58:29.0412 0x2b00  LVSrvLauncher - ok
06:58:29.0448 0x2b00  [ BE5E104BE263921D6842C555DB6A5C23, 08B05F1134367A9CD7F57E7782528E48ACCF35896AB2A1861E57036C381E813A ] LVUSBSta        C:\Windows\system32\drivers\LVUSBSta.sys
06:58:29.0459 0x2b00  LVUSBSta - ok
06:58:29.0547 0x2b00  [ 2261D7CC31D0309F6ED72923FF82DF50, 92AE6D3F1AFCEDAB3720D07A14D5961CD6C3305EBAB2F3F5676644F1AD823320 ] lxdxCATSCustConnectService C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdxserv.exe
06:58:29.0560 0x2b00  lxdxCATSCustConnectService - ok
06:58:29.0568 0x2b00  lxdx_device - ok
06:58:29.0627 0x2b00  [ A3E700D78EEC390F1208098CDCA5C6B6, 37D92D4AF24C43B4C468974CBBD55B6DF3AB92780560285039A0B078E566985A ] MarvinBus       C:\Windows\system32\DRIVERS\MarvinBus.sys
06:58:29.0660 0x2b00  MarvinBus - ok
06:58:29.0705 0x2b00  [ AEF9BABB8A506BC4CE0451A64AADED46, D5608A703EA7E97F11ED4D029B4B820440B0C9317DB7D7DC0152253CD723DC07 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
06:58:29.0723 0x2b00  Mcx2Svc - ok
06:58:29.0750 0x2b00  [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk         C:\Windows\system32\DRIVERS\mdmxsdk.sys
06:58:29.0770 0x2b00  mdmxsdk - ok
06:58:29.0801 0x2b00  [ D153B14FC6598EAE8422A2037553ADCE, D5408B07B6EBA0146A605F11106497DC3DF8EC72E0DCC44BE1366A2A58ABE478 ] megasas         C:\Windows\system32\drivers\megasas.sys
06:58:29.0814 0x2b00  megasas - ok
06:58:29.0904 0x2b00  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
06:58:29.0919 0x2b00  Microsoft Office Groove Audit Service - ok
06:58:29.0959 0x2b00  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS           C:\Windows\system32\mmcss.dll
06:58:29.0995 0x2b00  MMCSS - ok
06:58:30.0046 0x2b00  [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem           C:\Windows\system32\drivers\modem.sys
06:58:30.0079 0x2b00  Modem - ok
06:58:30.0105 0x2b00  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
06:58:30.0139 0x2b00  monitor - ok
06:58:30.0180 0x2b00  [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
06:58:30.0196 0x2b00  mouclass - ok
06:58:30.0240 0x2b00  [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
06:58:30.0273 0x2b00  mouhid - ok
06:58:30.0325 0x2b00  [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
06:58:30.0342 0x2b00  MountMgr - ok
06:58:30.0372 0x2b00  [ 583A41F26278D9E0EA548163D6139397, 1F09D2FEEE1A8D4F1D9E53596158154099FD436A408F7E72E40F50778A3838A1 ] mpio            C:\Windows\system32\drivers\mpio.sys
06:58:30.0389 0x2b00  mpio - ok
06:58:30.0438 0x2b00  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
06:58:30.0466 0x2b00  mpsdrv - ok
06:58:30.0539 0x2b00  [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc          C:\Windows\system32\mpssvc.dll
06:58:30.0608 0x2b00  MpsSvc - ok
06:58:30.0640 0x2b00  [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
06:58:30.0654 0x2b00  Mraid35x - ok
06:58:30.0709 0x2b00  [ 82CEA0395524AACFEB58BA1448E8325C, 16E37990A291C848DE35F48EA7E09AE5B258AE589EB08A3FA2C60DC1278DE182 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
06:58:30.0732 0x2b00  MRxDAV - ok
06:58:30.0785 0x2b00  [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
06:58:30.0823 0x2b00  mrxsmb - ok
06:58:30.0875 0x2b00  [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
06:58:30.0901 0x2b00  mrxsmb10 - ok
06:58:30.0922 0x2b00  [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
06:58:30.0941 0x2b00  mrxsmb20 - ok
06:58:30.0959 0x2b00  [ 742AED7939E734C36B7E8D6228CE26B7, 6F727144BBD42C9C5555087CA51DE8D501B5CBEFB9967866CC578733E3C5E681 ] msahci          C:\Windows\system32\drivers\msahci.sys
06:58:30.0973 0x2b00  msahci - ok
06:58:30.0993 0x2b00  [ 3FC82A2AE4CC149165A94699183D3028, 8575BE62A209672A5D8C68D75BBBB4FF06220CA73A939B0793442DAD2272598C ] msdsm           C:\Windows\system32\drivers\msdsm.sys
06:58:31.0010 0x2b00  msdsm - ok
06:58:31.0058 0x2b00  [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC           C:\Windows\System32\msdtc.exe
06:58:31.0098 0x2b00  MSDTC - ok
06:58:31.0154 0x2b00  [ 343291A4DFD7C923C3F71F550830EC1C, E62DEEE0ECA76DD276FA27B02F91EA1A5314BDE1EA0F919FA89238A7662B8CA5 ] MSDV            C:\Windows\system32\DRIVERS\msdv.sys
06:58:31.0188 0x2b00  MSDV - ok
06:58:31.0227 0x2b00  [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
06:58:31.0260 0x2b00  Msfs - ok
06:58:31.0291 0x2b00  [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
06:58:31.0305 0x2b00  msisadrv - ok
06:58:31.0343 0x2b00  [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
06:58:31.0381 0x2b00  MSiSCSI - ok
06:58:31.0390 0x2b00  msiserver - ok
06:58:31.0440 0x2b00  [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
06:58:31.0472 0x2b00  MSKSSRV - ok
06:58:31.0524 0x2b00  [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
06:58:31.0556 0x2b00  MSPCLOCK - ok
06:58:31.0607 0x2b00  [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
06:58:31.0642 0x2b00  MSPQM - ok
06:58:31.0694 0x2b00  [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
06:58:31.0716 0x2b00  MsRPC - ok
06:58:31.0734 0x2b00  [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
06:58:31.0750 0x2b00  mssmbios - ok
06:58:31.0769 0x2b00  [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
06:58:31.0802 0x2b00  MSTEE - ok
06:58:31.0834 0x2b00  [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup             C:\Windows\system32\Drivers\mup.sys
06:58:31.0849 0x2b00  Mup - ok
06:58:31.0886 0x2b00  [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent        C:\Windows\system32\qagentRT.dll
06:58:31.0939 0x2b00  napagent - ok
06:58:31.0996 0x2b00  [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
06:58:32.0021 0x2b00  NativeWifiP - ok
06:58:32.0071 0x2b00  [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS            C:\Windows\system32\drivers\ndis.sys
06:58:32.0115 0x2b00  NDIS - ok
06:58:32.0161 0x2b00  [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
06:58:32.0186 0x2b00  NdisTapi - ok
06:58:32.0225 0x2b00  [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
06:58:32.0259 0x2b00  Ndisuio - ok
06:58:32.0313 0x2b00  [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
06:58:32.0343 0x2b00  NdisWan - ok
06:58:32.0391 0x2b00  [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
06:58:32.0419 0x2b00  NDProxy - ok
06:58:32.0462 0x2b00  [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
06:58:32.0497 0x2b00  NetBIOS - ok
06:58:32.0544 0x2b00  [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
06:58:32.0578 0x2b00  netbt - ok
06:58:32.0587 0x2b00  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon        C:\Windows\system32\lsass.exe
06:58:32.0605 0x2b00  Netlogon - ok
06:58:32.0656 0x2b00  [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman          C:\Windows\System32\netman.dll
06:58:32.0691 0x2b00  Netman - ok
06:58:32.0751 0x2b00  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
06:58:32.0769 0x2b00  NetMsmqActivator - ok
06:58:32.0778 0x2b00  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
06:58:32.0795 0x2b00  NetPipeActivator - ok
06:58:32.0853 0x2b00  [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm        C:\Windows\System32\netprofm.dll
06:58:32.0887 0x2b00  netprofm - ok
06:58:32.0897 0x2b00  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
06:58:32.0913 0x2b00  NetTcpActivator - ok
06:58:32.0922 0x2b00  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
06:58:32.0938 0x2b00  NetTcpPortSharing - ok
06:58:32.0968 0x2b00  [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
06:58:32.0980 0x2b00  nfrd960 - ok
06:58:33.0032 0x2b00  [ 2997B15415F9BBE05B5A4C1C85E0C6A2, 5455536515FE740E18E090329FDCC40288724372AD18ACDB2CB4BB9D85CF681E ] NlaSvc          C:\Windows\System32\nlasvc.dll
06:58:33.0065 0x2b00  NlaSvc - ok
06:58:33.0111 0x2b00  [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
06:58:33.0131 0x2b00  Npfs - ok
06:58:33.0169 0x2b00  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi             C:\Windows\system32\nsisvc.dll
06:58:33.0196 0x2b00  nsi - ok
06:58:33.0224 0x2b00  [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
06:58:33.0251 0x2b00  nsiproxy - ok
06:58:33.0341 0x2b00  [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
06:58:33.0414 0x2b00  Ntfs - ok
06:58:33.0448 0x2b00  [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
06:58:33.0496 0x2b00  ntrigdigi - ok
06:58:33.0552 0x2b00  [ CF7E041663119E09D2E118521ADA9300, 0BDDEDA787CCBE34D515945717AF972143A3684F6D37F87B639D6A5371F381CC ] NuidFltr        C:\Windows\system32\DRIVERS\NuidFltr.sys
06:58:33.0563 0x2b00  NuidFltr - ok
06:58:33.0608 0x2b00  [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null            C:\Windows\system32\drivers\Null.sys
06:58:33.0640 0x2b00  Null - ok
06:58:34.0086 0x2b00  [ B69E6F70CE1151C8D62ABC9DEF64DFBE, B7BD731D1CCF4E71EF1CF4AFA9189C1831306483B4BF57B12B89113A5230871B ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
06:58:34.0657 0x2b00  nvlddmkm - ok
06:58:34.0723 0x2b00  [ E69E946F80C1C31C53003BFBF50CBB7C, A0A4BC57822B2CBC75602A969E28DCEDE04B41CC084E1EF1532B1BCDAEAA43BB ] nvraid          C:\Windows\system32\drivers\nvraid.sys
06:58:34.0737 0x2b00  nvraid - ok
06:58:34.0766 0x2b00  [ 4A5FCAB82D9BF6AF8A023A66802FE9E9, 1901DC75B1763F49AFD4E3FE67B52FE1BF99EC083F4F878557128EADCAF58C5C ] nvstor          C:\Windows\system32\drivers\nvstor.sys
06:58:34.0796 0x2b00  nvstor - ok
06:58:34.0835 0x2b00  [ FA7B8ECA6E845B244B7E30A9DCD82C6C, CA1D5463C13596761B630314530AB12C7C63D6961ECCF2CD0409D58B6BE9C11E ] nvstor32        C:\Windows\system32\DRIVERS\nvstor32.sys
06:58:34.0849 0x2b00  nvstor32 - ok
06:58:34.0934 0x2b00  [ E4284FCF99FEA13A7E1836F87AE356F6, 541C40DD3483810632320E8F23427BB52593D156E876C6023BE7F7A8589383E8 ] nvsvc           C:\Windows\system32\nvvsvc.exe
06:58:34.0985 0x2b00  nvsvc - ok
06:58:35.0144 0x2b00  [ 03E60E0BFA53ED15DC984FA34B44BB0F, 50ABF2E303B9A2B6DDD0DB411C24C3CD6CC30AFA664B5682CF9189F96548CC10 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
06:58:35.0205 0x2b00  nvUpdatusService - ok
06:58:35.0241 0x2b00  [ 07C186427EB8FCC3D8D7927187F260F7, 9AFDE1CB7B7232BD019804BFC691580B9CC2E51A5BC0E5584B23907D532600D8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
06:58:35.0257 0x2b00  nv_agp - ok
06:58:35.0291 0x2b00  [ 67FB86EEB94059177642050718D57460, 66E31CB9BD51BDE1424628655B7BA9392CD7447DE034B7B0C8FCAE3369FB92A6 ] NWADI           C:\Windows\system32\DRIVERS\NWADIenum.sys
06:58:35.0323 0x2b00  NWADI - ok
06:58:35.0332 0x2b00  NwlnkFlt - ok
06:58:35.0342 0x2b00  NwlnkFwd - ok
06:58:35.0381 0x2b00  [ 4E651808B35656AC88A4DCDAF6CC1169, F27BB20A09E6C6CC515980E7E4E68F766D476B6E03940F0914846796D70E981F ] NWUSBModem      C:\Windows\system32\DRIVERS\nwusbmdm.sys
06:58:35.0413 0x2b00  NWUSBModem - ok
06:58:35.0440 0x2b00  [ 4E651808B35656AC88A4DCDAF6CC1169, F27BB20A09E6C6CC515980E7E4E68F766D476B6E03940F0914846796D70E981F ] NWUSBPort       C:\Windows\system32\DRIVERS\nwusbser.sys
06:58:35.0463 0x2b00  NWUSBPort - ok
06:58:35.0576 0x2b00  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
06:58:35.0621 0x2b00  odserv - ok
06:58:35.0667 0x2b00  [ 6F310E890D46E246E0E261A63D9B36B4, 7050B0C43CC0DF2DDAD3EB8D2FF9EEE425A627C68654CBB154D55A4B1A47AA08 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
06:58:35.0694 0x2b00  ohci1394 - ok
06:58:35.0745 0x2b00  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
06:58:35.0763 0x2b00  ose - ok
06:58:35.0844 0x2b00  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
06:58:35.0930 0x2b00  p2pimsvc - ok
06:58:35.0961 0x2b00  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc          C:\Windows\system32\p2psvc.dll
06:58:36.0026 0x2b00  p2psvc - ok
06:58:36.0089 0x2b00  [ 8A79FDF04A73428597E2CAF9D0D67850, DB438FDE5510AB2F350ED1AC4CF0E99D3CC665FE46533A438A8FDA4DAF950F93 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
06:58:36.0125 0x2b00  Parport - ok
06:58:36.0180 0x2b00  [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr         C:\Windows\system32\drivers\partmgr.sys
06:58:36.0196 0x2b00  partmgr - ok
06:58:36.0213 0x2b00  [ 6C580025C81CAF3AE9E3617C22CAD00E, 64F9061196462085E5DCD3ACB97A0D8FC67CA9A96DDD6E2103AFFF1593AE236A ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
06:58:36.0246 0x2b00  Parvdm - ok
06:58:36.0271 0x2b00  [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc          C:\Windows\System32\pcasvc.dll
06:58:36.0294 0x2b00  PcaSvc - ok
06:58:36.0340 0x2b00  [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci             C:\Windows\system32\drivers\pci.sys
06:58:36.0361 0x2b00  pci - ok
06:58:36.0375 0x2b00  [ 1636D43F10416AEB483BC6001097B26C, 36E61A993693A46538FE0F726D67BB28886F61D53384AD600D1282296A27662E ] pciide          C:\Windows\system32\drivers\pciide.sys
06:58:36.0390 0x2b00  pciide - ok
06:58:36.0437 0x2b00  [ 1BEBE7DE8508A02650CDCE45C664C2A2, 67841EA7F1F6B7F19ABD38A004B23610A21AD5BD5E508EED16CC7856CBE44D9C ] PCLEPCI         C:\Windows\system32\drivers\pclepci.sys
06:58:36.0445 0x2b00  PCLEPCI - detected UnsignedFile.Multi.Generic ( 1 )
06:58:40.0056 0x2b00  Detect skipped due to KSN trusted
06:58:40.0056 0x2b00  PCLEPCI - ok
06:58:40.0098 0x2b00  [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
06:58:40.0147 0x2b00  pcmcia - ok
06:58:40.0231 0x2b00  [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
06:58:40.0351 0x2b00  PEAUTH - ok
06:58:40.0405 0x2b00  [ B20F958B207E6AAAC5F70D04DD2C30D8, 5572A45B0327AD72E78CFD541433BBBB54358115019FEFB324607A4F21818959 ] pepifilter      C:\Windows\system32\DRIVERS\lv302af.sys
06:58:40.0416 0x2b00  pepifilter - ok
06:58:40.0601 0x2b00  [ DD184D9ADFE2A8A21741DBDFE9E22F5C, 0C22966973246248FD15A6C192AA1B731D018B4FDF1BD97FE9AA67A746C9440C ] PID_PEPI        C:\Windows\system32\DRIVERS\LV302V32.SYS
06:58:40.0824 0x2b00  PID_PEPI - ok
06:58:40.0929 0x2b00  [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla             C:\Windows\system32\pla.dll
06:58:41.0050 0x2b00  pla - ok
06:58:41.0103 0x2b00  [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
06:58:41.0134 0x2b00  PlugPlay - ok
06:58:41.0170 0x2b00  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
06:58:41.0226 0x2b00  PNRPAutoReg - ok
06:58:41.0279 0x2b00  [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
06:58:41.0323 0x2b00  PNRPsvc - ok
06:58:41.0364 0x2b00  [ 5B6F99087CC1342B3D193E8155F26B6F, 20BE9AD7F8454ABAE83BDF593BE0B0DC7FAEA64FA9B582ECC33EA4E7AFF61745 ] Point32         C:\Windows\system32\DRIVERS\point32k.sys
06:58:41.0377 0x2b00  Point32 - ok
06:58:41.0438 0x2b00  [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
06:58:41.0488 0x2b00  PolicyAgent - ok
06:58:41.0516 0x2b00  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
06:58:41.0548 0x2b00  PptpMiniport - ok
06:58:41.0579 0x2b00  [ 0E3CEF5D28B40CF273281D620C50700A, 8ADA99B4563AE2129B95136295EE92A94102B035EBBC83D4C8587ECE8B0DEE60 ] Processor       C:\Windows\system32\drivers\processr.sys
06:58:41.0634 0x2b00  Processor - ok
06:58:41.0685 0x2b00  [ 0508FAA222D28835310B7BFCA7A77346, 3AE2340C6E365F137CC00D9560069501DD2724756EA9EBF7A6CDFFC91B43709C ] ProfSvc         C:\Windows\system32\profsvc.dll
06:58:41.0717 0x2b00  ProfSvc - ok
06:58:41.0732 0x2b00  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
06:58:41.0748 0x2b00  ProtectedStorage - ok
06:58:41.0795 0x2b00  [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
06:58:41.0821 0x2b00  PSched - ok
06:58:41.0878 0x2b00  [ CCDAC889326317792480C0A67156A1EC, 3D3B561B6D4E12DE442C98993C929765F002AF5CFB5A00EFACE6ABE957F7E8AF ] ql2300          C:\Windows\system32\drivers\ql2300.sys
06:58:41.0943 0x2b00  ql2300 - ok
06:58:41.0977 0x2b00  [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
06:58:41.0994 0x2b00  ql40xx - ok
06:58:42.0066 0x2b00  [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE           C:\Windows\system32\qwave.dll
06:58:42.0102 0x2b00  QWAVE - ok
06:58:42.0152 0x2b00  [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
06:58:42.0171 0x2b00  QWAVEdrv - ok
06:58:42.0214 0x2b00  [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
06:58:42.0247 0x2b00  RasAcd - ok
06:58:42.0302 0x2b00  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto         C:\Windows\System32\rasauto.dll
06:58:42.0346 0x2b00  RasAuto - ok
06:58:42.0395 0x2b00  [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
06:58:42.0431 0x2b00  Rasl2tp - ok
06:58:42.0495 0x2b00  [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan          C:\Windows\System32\rasmans.dll
06:58:42.0540 0x2b00  RasMan - ok
06:58:42.0593 0x2b00  [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
06:58:42.0622 0x2b00  RasPppoe - ok
06:58:42.0688 0x2b00  [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
06:58:42.0708 0x2b00  RasSstp - ok
06:58:42.0761 0x2b00  [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
06:58:42.0798 0x2b00  rdbss - ok
06:58:42.0842 0x2b00  [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
06:58:42.0874 0x2b00  RDPCDD - ok
06:58:42.0909 0x2b00  [ E8BD98D46F2ED77132BA927FCCB47D8B, 5187CF8F00AD67EDDF27DF675F3210C0D72E552578A89C58DF6953B1D5BEBCB8 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
06:58:42.0984 0x2b00  rdpdr - ok
06:58:43.0008 0x2b00  [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
06:58:43.0042 0x2b00  RDPENCDD - ok
06:58:43.0088 0x2b00  [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
06:58:43.0123 0x2b00  RDPWD - ok
06:58:43.0178 0x2b00  [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess    C:\Windows\System32\mprdim.dll
06:58:43.0215 0x2b00  RemoteAccess - ok
06:58:43.0259 0x2b00  [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
06:58:43.0292 0x2b00  RemoteRegistry - ok
06:58:43.0316 0x2b00  [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator      C:\Windows\system32\locator.exe
06:58:43.0333 0x2b00  RpcLocator - ok
06:58:43.0410 0x2b00  [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs           C:\Windows\system32\rpcss.dll
06:58:43.0461 0x2b00  RpcSs - ok
06:58:43.0510 0x2b00  [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
06:58:43.0544 0x2b00  rspndr - ok
06:58:43.0556 0x2b00  [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs           C:\Windows\system32\lsass.exe
06:58:43.0574 0x2b00  SamSs - ok
06:58:43.0595 0x2b00  [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
06:58:43.0612 0x2b00  sbp2port - ok
06:58:43.0665 0x2b00  [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
06:58:43.0697 0x2b00  SCardSvr - ok
06:58:43.0770 0x2b00  [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule        C:\Windows\system32\schedsvc.dll
06:58:43.0870 0x2b00  Schedule - ok
06:58:43.0925 0x2b00  [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc     C:\Windows\System32\certprop.dll
06:58:43.0951 0x2b00  SCPolicySvc - ok
06:58:43.0986 0x2b00  [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
06:58:44.0015 0x2b00  SDRSVC - ok
06:58:44.0047 0x2b00  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
06:58:44.0106 0x2b00  secdrv - ok
06:58:44.0147 0x2b00  [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon        C:\Windows\system32\seclogon.dll
06:58:44.0184 0x2b00  seclogon - ok
06:58:44.0231 0x2b00  [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS            C:\Windows\System32\sens.dll
06:58:44.0269 0x2b00  SENS - ok
06:58:44.0307 0x2b00  [ CE9EC966638EF0B10B864DDEDF62A099, 2DEC5A8C947D87C12B342F15B8A552A0D49B979A2AC32D2C97FC7A3A76C34524 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
06:58:44.0345 0x2b00  Serenum - ok
06:58:44.0374 0x2b00  [ 6D663022DB3E7058907784AE14B69898, 54263888C64A7F010D3B5E399369B0F3FF3AF0A0DE8ADB502B98277533E4D45F ] Serial          C:\Windows\system32\DRIVERS\serial.sys
06:58:44.0410 0x2b00  Serial - ok
06:58:44.0444 0x2b00  [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
06:58:44.0477 0x2b00  sermouse - ok
06:58:44.0535 0x2b00  [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv      C:\Windows\system32\sessenv.dll
06:58:44.0575 0x2b00  SessionEnv - ok
06:58:44.0590 0x2b00  [ 103B79418DA647736EE95645F305F68A, E4D356FD8C62B616D3584FE84905995A1CEE452288E3A456CC358FF41FEAB1B7 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
06:58:44.0652 0x2b00  sffdisk - ok
06:58:44.0666 0x2b00  [ 8FD08A310645FE872EEEC6E08C6BF3EE, 702A148C9DE172E7B5E331F057487255E0729FD42F949BB0FF2D5A01775933CF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
06:58:44.0723 0x2b00  sffp_mmc - ok
06:58:44.0735 0x2b00  [ 9CFA05FCFCB7124E69CFC812B72F9614, E9CFCE695E4D1AF146781CFAA295878536E573F06AEA65438878DE29EC9959AD ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
06:58:44.0778 0x2b00  sffp_sd - ok
06:58:44.0804 0x2b00  [ C33BFBD6E9E41FCD9FFEF9729E9FAED6, 490C29DC9E9FE8D5010E6DB18DE7DA808BCE84F014CFDEE0530735CBED788073 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
06:58:44.0829 0x2b00  sfloppy - ok
06:58:44.0885 0x2b00  [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
06:58:44.0927 0x2b00  SharedAccess - ok
06:58:44.0988 0x2b00  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
06:58:45.0009 0x2b00  ShellHWDetection - ok
06:58:45.0034 0x2b00  [ D2A595D6EEBEEAF4334F8E50EFBC9931, 851B8205C657BF806C4D815DC75356E99B4246016B6E1C1F51BAF8AD1E6D5299 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
06:58:45.0046 0x2b00  sisagp - ok
06:58:45.0064 0x2b00  [ CEDD6F4E7D84E9F98B34B3FE988373AA, E102977E6FAC30B5ABEEC0B412A9F2A10C5C42F4D9C3AD69296BF9E1E88B6141 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
06:58:45.0076 0x2b00  SiSRaid2 - ok
06:58:45.0093 0x2b00  [ DF843C528C4F69D12CE41CE462E973A7, A2BEC74FCB8D8B6B9D8DD4746C013DFDF1DD662AEFE9B88CA495E5B83B4A76F9 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
06:58:45.0105 0x2b00  SiSRaid4 - ok
06:58:45.0283 0x2b00  [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc           C:\Windows\system32\SLsvc.exe
06:58:45.0526 0x2b00  slsvc - ok
06:58:45.0610 0x2b00  [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify      C:\Windows\system32\SLUINotify.dll
06:58:45.0637 0x2b00  SLUINotify - ok
06:58:45.0682 0x2b00  [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb             C:\Windows\system32\DRIVERS\smb.sys
06:58:45.0702 0x2b00  Smb - ok
06:58:45.0734 0x2b00  [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
06:58:45.0749 0x2b00  SNMPTRAP - ok
06:58:45.0794 0x2b00  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr           C:\Windows\system32\drivers\spldr.sys
06:58:45.0806 0x2b00  spldr - ok
06:58:45.0858 0x2b00  [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler         C:\Windows\System32\spoolsv.exe
06:58:45.0879 0x2b00  Spooler - ok
06:58:45.0944 0x2b00  [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv             C:\Windows\system32\DRIVERS\srv.sys
06:58:45.0988 0x2b00  srv - ok
06:58:46.0044 0x2b00  [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
06:58:46.0072 0x2b00  srv2 - ok
06:58:46.0119 0x2b00  [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
06:58:46.0137 0x2b00  srvnet - ok
06:58:46.0186 0x2b00  [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
06:58:46.0223 0x2b00  SSDPSRV - ok
06:58:46.0269 0x2b00  [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc         C:\Windows\system32\sstpsvc.dll
06:58:46.0290 0x2b00  SstpSvc - ok
06:58:46.0307 0x2b00  stdhddav - ok
06:58:46.0367 0x2b00  [ 5A19667A580B1CE886EAF968B9743F45, 0A9EBE4057A0A6EF4732623794C2416A6BD8B87356DA46652BD92762505F57C7 ] Stereo Service  C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
06:58:46.0399 0x2b00  Stereo Service - ok
06:58:46.0484 0x2b00  [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc          C:\Windows\System32\wiaservc.dll
06:58:46.0530 0x2b00  stisvc - ok
06:58:46.0561 0x2b00  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
06:58:46.0576 0x2b00  swenum - ok
06:58:46.0643 0x2b00  [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv           C:\Windows\System32\swprv.dll
06:58:46.0696 0x2b00  swprv - ok
06:58:46.0719 0x2b00  [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
06:58:46.0733 0x2b00  Symc8xx - ok
06:58:46.0741 0x2b00  SymIMMP - ok
06:58:46.0758 0x2b00  [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
06:58:46.0773 0x2b00  Sym_hi - ok
06:58:46.0795 0x2b00  [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
06:58:46.0810 0x2b00  Sym_u3 - ok
06:58:46.0872 0x2b00  [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain         C:\Windows\system32\sysmain.dll
06:58:46.0921 0x2b00  SysMain - ok
06:58:46.0956 0x2b00  [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
06:58:46.0974 0x2b00  TabletInputService - ok
06:58:47.0024 0x2b00  [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv         C:\Windows\System32\tapisrv.dll
06:58:47.0053 0x2b00  TapiSrv - ok
06:58:47.0105 0x2b00  [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS             C:\Windows\System32\tbssvc.dll
06:58:47.0133 0x2b00  TBS - ok
06:58:47.0192 0x2b00  [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
06:58:47.0270 0x2b00  Tcpip - ok
06:58:47.0327 0x2b00  [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
06:58:47.0389 0x2b00  Tcpip6 - ok
06:58:47.0430 0x2b00  [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
06:58:47.0455 0x2b00  tcpipreg - ok
06:58:47.0520 0x2b00  [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
06:58:47.0549 0x2b00  TDPIPE - ok
06:58:47.0587 0x2b00  [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
06:58:47.0619 0x2b00  TDTCP - ok
06:58:47.0672 0x2b00  [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
06:58:47.0696 0x2b00  tdx - ok
06:58:47.0712 0x2b00  [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
06:58:47.0727 0x2b00  TermDD - ok
06:58:47.0790 0x2b00  [ BB95DA09BEF6E7A131BFF3BA5032090D, BAF6997F8D944F85F0553957677866C7F22E72AA434BA45FFFB6CC41041070DC ] TermService     C:\Windows\System32\termsrv.dll
06:58:47.0845 0x2b00  TermService - ok
06:58:47.0871 0x2b00  [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes          C:\Windows\system32\shsvcs.dll
06:58:47.0897 0x2b00  Themes - ok
06:58:47.0917 0x2b00  [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER     C:\Windows\system32\mmcss.dll
06:58:47.0946 0x2b00  THREADORDER - ok
06:58:47.0989 0x2b00  [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks          C:\Windows\System32\trkwks.dll
06:58:48.0018 0x2b00  TrkWks - ok
06:58:48.0077 0x2b00  [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
06:58:48.0097 0x2b00  TrustedInstaller - ok
06:58:48.0122 0x2b00  [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
06:58:48.0152 0x2b00  tssecsrv - ok
06:58:48.0201 0x2b00  [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
06:58:48.0213 0x2b00  tunmp - ok
06:58:48.0235 0x2b00  [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
06:58:48.0248 0x2b00  tunnel - ok
06:58:48.0267 0x2b00  [ C3ADE15414120033A36C0F293D4A4121, 74A002C4B5EBD94E33EDEACB6639AF44ED72A8DDE3083C6DE71C1EE937EF1A9C ] uagp35          C:\Windows\system32\drivers\uagp35.sys
06:58:48.0280 0x2b00  uagp35 - ok
06:58:48.0333 0x2b00  [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
06:58:48.0362 0x2b00  udfs - ok
06:58:48.0410 0x2b00  [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
06:58:48.0439 0x2b00  UI0Detect - ok
06:58:48.0458 0x2b00  [ 75E6890EBFCE0841D3291B02E7A8BDB0, FDF9CDCCCCC0AA2A52623C5A67AC5F5224557EE4C8F6487CB13CAEB012575E2A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
06:58:48.0470 0x2b00  uliagpkx - ok
06:58:48.0493 0x2b00  [ 3CD4EA35A6221B85DCC25DAA46313F8D, 100A7E12B8EA395F70A00874328E87B930CE88FF442F3576FE88B105A22E04C5 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
06:58:48.0512 0x2b00  uliahci - ok
06:58:48.0531 0x2b00  [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
06:58:48.0545 0x2b00  UlSata - ok
06:58:48.0562 0x2b00  [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
06:58:48.0579 0x2b00  ulsata2 - ok
06:58:48.0629 0x2b00  [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
06:58:48.0658 0x2b00  umbus - ok
06:58:48.0713 0x2b00  [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost        C:\Windows\System32\upnphost.dll
06:58:48.0759 0x2b00  upnphost - ok
06:58:48.0802 0x2b00  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
06:58:48.0831 0x2b00  USBAAPL - ok
06:58:48.0884 0x2b00  [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
06:58:48.0917 0x2b00  usbaudio - ok
06:58:48.0957 0x2b00  [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
06:58:49.0002 0x2b00  usbccgp - ok
06:58:49.0040 0x2b00  [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
06:58:49.0095 0x2b00  usbcir - ok
06:58:49.0146 0x2b00  [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
06:58:49.0164 0x2b00  usbehci - ok
06:58:49.0182 0x2b00  [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
06:58:49.0208 0x2b00  usbhub - ok
06:58:49.0254 0x2b00  [ D457EBD0C3A8B3A3A144355B5EE91CBC, 6AD52BDBB1607A48F0B02E663B97C3A00E3345B1B12C259608A5AE728C1C06B2 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
06:58:49.0271 0x2b00  usbohci - ok
06:58:49.0314 0x2b00  [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
06:58:49.0348 0x2b00  usbprint - ok
06:58:49.0404 0x2b00  [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
06:58:49.0430 0x2b00  usbscan - ok
06:58:49.0479 0x2b00  [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
06:58:49.0507 0x2b00  USBSTOR - ok
06:58:49.0519 0x2b00  [ 325DBBACB8A36AF9988CCF40EAC228CC, 22FE5658A12296634FBE9D8565485BEE8CB200C47182F70DC9D2B0442E10C4AA ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
06:58:49.0577 0x2b00  usbuhci - ok
06:58:49.0601 0x2b00  [ 8D31A140B55021BBD3A608F5A7AA2E18, EBD27A50DC3C009365DB64F7E7222F3075405ECD731B82229CDF0F500617C838 ] USB_RNDIS       C:\Windows\system32\DRIVERS\usb8023.sys
06:58:49.0634 0x2b00  USB_RNDIS - ok
06:58:49.0659 0x2b00  [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms           C:\Windows\System32\uxsms.dll
06:58:49.0681 0x2b00  UxSms - ok
06:58:49.0728 0x2b00  [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds             C:\Windows\System32\vds.exe
06:58:49.0775 0x2b00  vds - ok
06:58:49.0798 0x2b00  [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
06:58:49.0823 0x2b00  vga - ok
06:58:49.0863 0x2b00  [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave         C:\Windows\System32\drivers\vga.sys
06:58:49.0887 0x2b00  VgaSave - ok
06:58:49.0911 0x2b00  [ 045D9961E591CF0674A920B6BA3BA5CB, EBF498A0424CEA0F7ECBAAE144A8669CE6B5DD67115DE22CEC5A46AED26CD90B ] viaagp          C:\Windows\system32\drivers\viaagp.sys
06:58:49.0922 0x2b00  viaagp - ok
06:58:49.0939 0x2b00  [ 56A4DE5F02F2E88182B0981119B4DD98, 36FC94BCFD41907838DBCB02E6EA24065FDED4224239CD19E90D14433BE9108B ] ViaC7           C:\Windows\system32\drivers\viac7.sys
06:58:49.0985 0x2b00  ViaC7 - ok
06:58:50.0001 0x2b00  [ FD2E3175FCADA350C7AB4521DCA187EC, 1C914B184478611A27E0141F90EBC34FC63DFB2A83441DD36DFA43D945FB1C52 ] viaide          C:\Windows\system32\drivers\viaide.sys
06:58:50.0012 0x2b00  viaide - ok
06:58:50.0020 0x2b00  [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
06:58:50.0034 0x2b00  volmgr - ok
06:58:50.0063 0x2b00  [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
06:58:50.0083 0x2b00  volmgrx - ok
06:58:50.0119 0x2b00  [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
06:58:50.0136 0x2b00  volsnap - ok
06:58:50.0175 0x2b00  [ D984439746D42B30FC65A4C3546C6829, B134A9890638C2B4964A9C30812A2828A3E0CC641690CBF22D9FCE65EE3C2385 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
06:58:50.0188 0x2b00  vsmraid - ok
06:58:50.0243 0x2b00  [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS             C:\Windows\system32\vssvc.exe
06:58:50.0324 0x2b00  VSS - ok
06:58:50.0364 0x2b00  [ C466021D31FF6C0A6069D12299D80C0B, E7CDC85191543CD44AB15C516FAD99A2705FD6EDB4DE29F54A2EEE22A455C100 ] VSTHWBS2        C:\Windows\system32\DRIVERS\VSTBS23.SYS
06:58:50.0399 0x2b00  VSTHWBS2 - ok
06:58:50.0464 0x2b00  [ EC36F1D542ED4252390D446BF6D4DFD0, DB55D73726E96D3653C37EEBE628D48466D766A9EC1219ED735D5D8FF2822BE2 ] VST_DPV         C:\Windows\system32\DRIVERS\VSTDPV3.SYS
06:58:50.0544 0x2b00  VST_DPV - ok
06:58:50.0600 0x2b00  [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time         C:\Windows\system32\w32time.dll
06:58:50.0644 0x2b00  W32Time - ok
06:58:50.0665 0x2b00  [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
06:58:50.0714 0x2b00  WacomPen - ok
06:58:50.0754 0x2b00  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
06:58:50.0778 0x2b00  Wanarp - ok
06:58:50.0785 0x2b00  [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
06:58:50.0809 0x2b00  Wanarpv6 - ok
06:58:50.0841 0x2b00  [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
06:58:50.0886 0x2b00  wcncsvc - ok
06:58:50.0914 0x2b00  [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
06:58:50.0939 0x2b00  WcsPlugInService - ok
06:58:50.0965 0x2b00  [ AFC5AD65B991C1E205CF25CFDBF7A6F4, 544173AE85A11B99B9221DB30B6803DAEB3EB7FCA57FE62F0D13EF70B9C69A89 ] Wd              C:\Windows\system32\drivers\wd.sys
06:58:50.0977 0x2b00  Wd - ok
06:58:51.0025 0x2b00  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
06:58:51.0071 0x2b00  Wdf01000 - ok
06:58:51.0124 0x2b00  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost  C:\Windows\system32\wdi.dll
06:58:51.0160 0x2b00  WdiServiceHost - ok
06:58:51.0167 0x2b00  [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost   C:\Windows\system32\wdi.dll
06:58:51.0202 0x2b00  WdiSystemHost - ok
06:58:51.0253 0x2b00  [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient       C:\Windows\System32\webclnt.dll
06:58:51.0286 0x2b00  WebClient - ok
06:58:51.0343 0x2b00  [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
06:58:51.0377 0x2b00  Wecsvc - ok
06:58:51.0420 0x2b00  [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport   C:\Windows\System32\wercplsupport.dll
06:58:51.0452 0x2b00  wercplsupport - ok
06:58:51.0506 0x2b00  [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc          C:\Windows\System32\WerSvc.dll
06:58:51.0540 0x2b00  WerSvc - ok
06:58:51.0598 0x2b00  [ E096FFB754F1E45AE1BDDAC1275AE2C5, DB88308520805EB9EE1FC70C057C75A1928DBAB00F8DDE7908FE79B964259CB3 ] winachsf        C:\Windows\system32\DRIVERS\HSX_CNXT.sys
06:58:51.0664 0x2b00  winachsf - ok
06:58:51.0757 0x2b00  [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
06:58:51.0797 0x2b00  WinDefend - ok
06:58:51.0812 0x2b00  WinHttpAutoProxySvc - ok
06:58:51.0883 0x2b00  [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
06:58:51.0917 0x2b00  Winmgmt - ok
06:58:52.0019 0x2b00  [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM           C:\Windows\system32\WsmSvc.dll
06:58:52.0131 0x2b00  WinRM - ok
06:58:52.0180 0x2b00  [ 676F4B665BDD8053EAA53AC1695B8074, 98521FCB6B6B33DD8BF38A703745053481681C7981DFE5A59116D6BDE187D6F6 ] winusb          C:\Windows\system32\DRIVERS\WinUSB.SYS
06:58:52.0207 0x2b00  winusb - ok
06:58:52.0252 0x2b00  [ E14FDC8F4FABBD55CAC6F35192232371, FEC0BEA54AF06151593370A98FF1F8F910B7735082DE02967EA54A3A8EF1BDD4 ] WISTechVIDCAP   C:\Windows\system32\drivers\wisgostrm.sys
06:58:52.0286 0x2b00  WISTechVIDCAP - ok
06:58:52.0355 0x2b00  [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc         C:\Windows\System32\wlansvc.dll
06:58:52.0438 0x2b00  Wlansvc - ok
06:58:52.0567 0x2b00  [ 6067ACEF367E79914AF628FA1E9B5330, 491A705267B48C103E00B26BBD21FA8829DB03A88343CBC27264CEE5DE8C8DEF ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
06:58:52.0591 0x2b00  wlcrasvc - ok
06:58:52.0774 0x2b00  [ 0A70F4022EC2E14C159EFC4F69AA2477, FF248136576F9803762C54DE5439D3411B52DCBC95B93176A5DAB857967D9AC4 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
06:58:52.0949 0x2b00  wlidsvc - ok
06:58:52.0987 0x2b00  [ 701A9F884A294327E9141D73746EE279, C8A46B8C32F9EAC7848D385473F6B5C4B6DA719A941A75AD5F081757FC07A09D ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
06:58:53.0044 0x2b00  WmiAcpi - ok
06:58:53.0097 0x2b00  [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
06:58:53.0130 0x2b00  wmiApSrv - ok
06:58:53.0229 0x2b00  [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
06:58:53.0300 0x2b00  WMPNetworkSvc - ok
06:58:53.0354 0x2b00  [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
06:58:53.0386 0x2b00  WPCSvc - ok
06:58:53.0421 0x2b00  [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
06:58:53.0453 0x2b00  WPDBusEnum - ok
06:58:53.0495 0x2b00  [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
06:58:53.0513 0x2b00  WpdUsb - ok
06:58:53.0657 0x2b00  [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
06:58:53.0746 0x2b00  WPFFontCache_v0400 - ok
06:58:53.0790 0x2b00  [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
06:58:53.0824 0x2b00  ws2ifsl - ok
06:58:53.0867 0x2b00  [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc          C:\Windows\System32\wscsvc.dll
06:58:53.0891 0x2b00  wscsvc - ok
06:58:53.0899 0x2b00  WSearch - ok
06:58:54.0027 0x2b00  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
06:58:54.0183 0x2b00  wuauserv - ok
06:58:54.0260 0x2b00  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
06:58:54.0290 0x2b00  WudfPf - ok
06:58:54.0324 0x2b00  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
06:58:54.0349 0x2b00  WUDFRd - ok
06:58:54.0403 0x2b00  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
06:58:54.0427 0x2b00  wudfsvc - ok
06:58:54.0453 0x2b00  [ E3FCF2870B5D7979B3BF10E98A71C847, 0B7A3CAC1C93708E8D6F2C714D70D5F515F08DD71F50957213BBA7BBC29C0F45 ] XAudio          C:\Windows\system32\DRIVERS\xaudio.sys
06:58:54.0468 0x2b00  XAudio - ok
06:58:54.0500 0x2b00  [ 96DB5621857E1FDDD1AA60733748BF17, 4FD6E314CFE62F447603B81C71AAD3CB7199A88F1D40B142A334903DBD515ADF ] XAudioService   C:\Windows\system32\DRIVERS\xaudio.exe
06:58:54.0545 0x2b00  XAudioService - ok
06:58:54.0605 0x2b00  [ 04E268ADFC81964C49DC0C082D520F7E, 7D2574E366636AB1D59A08FE3038268095D627C39636C6ED6BCE1D5ACB44A179 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys
06:58:54.0671 0x2b00  yukonwlh - ok
06:58:54.0710 0x2b00  ================ Scan global ===============================
06:58:54.0759 0x2b00  [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
06:58:54.0822 0x2b00  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
06:58:54.0863 0x2b00  [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
06:58:54.0931 0x2b00  [ D4E6D91C1349B7BFB3599A6ADA56851B, 8748091BF27F05D28D45688E04DD9229A4B2E159209A64F457703F66A8CECE4D ] C:\Windows\system32\services.exe
06:58:54.0956 0x2b00  [ Global ] - ok
06:58:54.0956 0x2b00  ================ Scan MBR ==================================
06:58:54.0968 0x2b00  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
06:58:55.0434 0x2b00  \Device\Harddisk0\DR0 - ok
06:58:55.0434 0x2b00  ================ Scan VBR ==================================
06:58:55.0458 0x2b00  [ 7E32CDE3B9B5EB3ED62A967991AF56BB ] \Device\Harddisk0\DR0\Partition1
06:58:55.0488 0x2b00  \Device\Harddisk0\DR0\Partition1 - detected Rootkit.Boot.Cidox.b ( 0 )
06:58:55.0488 0x2b00  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - infected
06:58:58.0452 0x2b00  ================ Scan generic autorun ======================
06:58:58.0536 0x2b00  [ 0D392EDE3B97E0B3131B2F63EF1DB94E, 3EDA280F91097293E00BF984D377E1111CFDE1FC81B30A3FDEB38F321EF82BB6 ] C:\Program Files\Windows Defender\MSASCui.exe
06:58:58.0610 0x2b00  Windows Defender - ok
06:58:58.0646 0x2b00  [ A379B75A6FFE4DFD3184F35F0141CE91, C777B01B4361456D4D829E96723C85CCDC2E3647C4CF25894AC83100552E36AB ] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe
06:58:58.0666 0x2b00  ISUSPM Startup - detected UnsignedFile.Multi.Generic ( 1 )
06:59:01.0672 0x2b00  Detect skipped due to KSN trusted
06:59:01.0672 0x2b00  ISUSPM Startup - ok
06:59:01.0868 0x2b00  [ A503A47A5E7EA8024379A8CC6059B74A, 8DEEC50E21924D21DD6383FA7FB3714ECA5AD45C576E0FF0431EE0DB25194620 ] C:\Windows\RtHDVCpl.exe
06:59:02.0117 0x2b00  RtHDVCpl - ok
06:59:02.0219 0x2b00  [ AAFD4F1958F551A416E25647C37ABFF8, 356A45894A40A930CFC953CACBC1F01E7821B886215B5A92F2A283A2F52FE60A ] C:\Program Files\Pinnacle\Studio 10\LaunchList.exe
06:59:02.0230 0x2b00  LaunchList - ok
06:59:02.0279 0x2b00  [ 53A47A21F341FF30B75F14BF03E01643, E0A06BDEDFB3D5D8DFD875C1BF9D8E3ED3FEA6414E02BB348F88B34A0589F4B0 ] C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
06:59:02.0317 0x2b00  LogitechCommunicationsManager - ok
06:59:02.0453 0x2b00  [ A6E24596BB08D7C10A36FF18B39AD738, EC0DE22BD878AD17B1DB43B068D4F3EB71F07569212A72BEDEFE37F4772366D8 ] C:\Program Files\Logitech\QuickCam\Quickcam.exe
06:59:02.0605 0x2b00  LogitechQuickCamRibbon - ok
06:59:02.0707 0x2b00  [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
06:59:02.0719 0x2b00  GrooveMonitor - ok
06:59:02.0745 0x2b00  [ 0A6AB2478DB456C0F7C8A055F43BD7B5, 5D21ABBF0F6CC8FEFCA6EEA5DB9F0649BF6D49ED67D1F9F2DEB1C6505C89880E ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
06:59:02.0759 0x2b00  AppleSyncNotifier - ok
06:59:02.0810 0x2b00  [ F5081AECFD6B7BE1D8B94632BF91D4AB, 7D1965A994FDB6D3FC3599539A7090486E551561528F7CA7B6A33CFD48F5225B ] C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe
06:59:02.0828 0x2b00  MaxMenuMgr - ok
06:59:02.0941 0x2b00  [ 60F3CCC045AE48B2736D042714DF445E, 7758065F0D79690B9798AA190158C56B8A861977D3747197C9ACD506E90936A9 ] C:\Program Files\Microsoft IntelliType Pro\itype.exe
06:59:03.0041 0x2b00  itype - ok
06:59:03.0153 0x2b00  [ 7CEB241A5A11F4B49C7C3F3B68E31228, 4B5E95C8E343B3E8BA5891BFF6EDD35BD5AFEABF3287CAFB94847B38F5CFC363 ] C:\Program Files\Microsoft IntelliPoint\ipoint.exe
06:59:03.0272 0x2b00  IntelliPoint - ok
06:59:03.0339 0x2b00  [ 94A4D6915D4F572309DF6137E1846528, E46BDF83CAA6683AA655DBA3D2C8DC7AC06251E952466A20CFDA3A16B1840455 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
06:59:03.0352 0x2b00  APSDaemon - ok
06:59:03.0436 0x2b00  [ F4F7C86191A981C804326E2EF6F3604F, 1ECE05E643AFFB27A148A8B86615F6C167875EF29D6FF7E2FD15B8DCBE6B8A16 ] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
06:59:03.0450 0x2b00  Adobe Reader Speed Launcher - ok
06:59:03.0545 0x2b00  [ 48BE298F7FD1BEF4D8FBACB04D8D95C4, D375B3F6E850E4B0EC81BAA0E554C356BE2248AA77C6C56F5267CA05460FE4EB ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
06:59:03.0617 0x2b00  Adobe ARM - ok
06:59:03.0729 0x2b00  [ C2C910A77828A48C572F64B664D05CCD, F6B29091E2F94F939DEA6AA9DDC79545D89F606E29C0B951C586F64ED7855A1D ] C:\Program Files\Lexmark 3600-4600 Series\lxdxmon.exe
06:59:03.0811 0x2b00  lxdxmon.exe - ok
06:59:03.0871 0x2b00  [ F3455B9139F246021B51EE91FB8C799C, BCD56906E7E71E39C35A783BFF77375AB6A34959ED1B4CCDA8C6DB1E6627599C ] C:\Program Files\Lexmark 3600-4600 Series\lxdxamon.exe
06:59:03.0882 0x2b00  lxdxamon - ok
06:59:03.0920 0x2b00  [ 08E7173D1B74095335052459200CB1EA, 5B6EB8A65B5F451BF6115EB7CD1355E5870E6D764F22D767D13216BF17C5668F ] C:\Program Files\QuickTime\QTTask.exe
06:59:03.0959 0x2b00  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
06:59:06.0812 0x2b00  Detect skipped due to KSN trusted
06:59:06.0812 0x2b00  QuickTime Task - ok
06:59:06.0872 0x2b00  [ 79C28DDF889C26FDD6162F796FD49BC4, C1E2468B4F0F52BD707D16656F33CC438AF8E18A38BB6CFB64D11F23993F72F0 ] C:\Program Files\iTunes\iTunesHelper.exe
06:59:06.0886 0x2b00  iTunesHelper - ok
06:59:07.0190 0x2b00  [ A8B68D4A0B815294819E2647D54A7686, 6FA0527939753D52AB259D13B515A50BBCC9248900C88F2B2582282961BD844E ] C:\Program Files\AVG\AVG2014\avgui.exe
06:59:07.0501 0x2b00  AVG_UI - ok
06:59:07.0755 0x2b00  [ D1A8E603EC38F299B29EA5DBF05F7AC1, 386B80157268A55F40CF9C80DF5D805EB9138883F3B5048ED2A7F796FB56EAFD ] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
06:59:08.0002 0x2b00  LogMeIn Hamachi Ui - ok
06:59:08.0132 0x2b00  [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
06:59:08.0254 0x2b00  Sidebar - ok
06:59:08.0263 0x2b00  WindowsWelcomeCenter - ok
06:59:08.0351 0x2b00  [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
06:59:08.0452 0x2b00  Sidebar - ok
06:59:08.0462 0x2b00  WindowsWelcomeCenter - ok
06:59:08.0546 0x2b00  [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\sidebar.exe
06:59:08.0629 0x2b00  Sidebar - ok
06:59:08.0665 0x2b00  [ A379B75A6FFE4DFD3184F35F0141CE91, C777B01B4361456D4D829E96723C85CCDC2E3647C4CF25894AC83100552E36AB ] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe
06:59:08.0681 0x2b00  ISUSPM Startup - detected UnsignedFile.Multi.Generic ( 1 )
06:59:08.0681 0x2b00  Detect skipped due to KSN trusted
06:59:08.0681 0x2b00  ISUSPM Startup - ok
06:59:08.0749 0x2b00  [ BF08674925F151BD4537B89A493E3E0C, 6A97562E998A2B90649FF7986313AD33823053FF98BBE163AD39AAA5E01FC545 ] C:\Windows\ehome\ehTray.exe
06:59:08.0768 0x2b00  ehTray.exe - ok
06:59:08.0830 0x2b00  [ DD0BC0832429FB02392240A68C4750FA, 5B15F9333937478852CAAE4B8A482EFD17519FA78BDBFB9284680998FFC1EA46 ] C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe
06:59:08.0873 0x2b00  EasyLinkAdvisor - detected UnsignedFile.Multi.Generic ( 1 )
06:59:14.0935 0x2b00  Detect skipped due to KSN trusted
06:59:14.0935 0x2b00  EasyLinkAdvisor - ok
06:59:14.0980 0x2b00  [ 35937EAD711207544E219C2A19A78A7D, EE6E5EAE00F577D7C3FFB8C0D8EE484552A337CEAA27FCB107174A9879FE7362 ] C:\Program Files\Windows Media Player\WMPNSCFG.exe
06:59:15.0025 0x2b00  WMPNSCFG - ok
06:59:15.0111 0x2b00  [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
06:59:15.0194 0x2b00  Sidebar - ok
06:59:15.0203 0x2b00  WindowsWelcomeCenter - ok
06:59:15.0228 0x2b00  [ DD0BC0832429FB02392240A68C4750FA, 5B15F9333937478852CAAE4B8A482EFD17519FA78BDBFB9284680998FFC1EA46 ] C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe
06:59:15.0256 0x2b00  EasyLinkAdvisor - detected UnsignedFile.Multi.Generic ( 1 )
06:59:15.0256 0x2b00  Detect skipped due to KSN trusted
06:59:15.0256 0x2b00  EasyLinkAdvisor - ok
06:59:15.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:16.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:17.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:18.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:19.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:20.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:21.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:22.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:23.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:24.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:25.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:26.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:27.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:28.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:29.0257 0x2b00  Waiting for KSN requests completion. In queue: 1
06:59:30.0272 0x2b00  AV detected via SS2: AVG AntiVirus Free Edition 2014, C:\Program Files\AVG\AVG2014\avgwsc.exe ( 14.0.0.4714 ), 0x41000 ( enabled : updated )
06:59:30.0289 0x2b00  Win FW state via NFP2: enabled
06:59:33.0173 0x2b00  ============================================================
06:59:33.0173 0x2b00  Scan finished
06:59:33.0173 0x2b00  ============================================================
06:59:33.0189 0x2738  Detected object count: 1
06:59:33.0189 0x2738  Actual detected object count: 1
06:59:42.0429 0x2738  \Device\Harddisk0\DR0\Partition1 - copied to quarantine
06:59:42.0457 0x2738  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - will be cured on reboot
06:59:42.0469 0x2738  \Device\Harddisk0\DR0\Partition1 - ok
06:59:42.0470 0x2738  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - User select action: Cure 
06:59:42.0584 0x2738  KLMD registered as C:\Windows\system32\drivers\21828378.sys
06:59:47.0145 0x2a10  Deinitialize success


#7 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:53 AM

Posted 04 July 2014 - 07:21 AM

Alright. Let's do a final check up:


Step 1

Please download the ESET Online Scanner and save it to your Desktop.
  • Disable the realtime-protection of your antivirus and anti-malware programs because they might interfere with the scan.
  • Start esetsmartinstaller_enu.exe with administartor privileges.
  • Select the option Yes, I accept the Terms of Use and click on Start.
  • Make sure that the option Remove found threats is NOT checked, and the option Scan archives is checked.
  • Now click on Advanced Settings and select the following:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Click on Start. The virus signature database will begin to download. This may take some time.
  • When completed the Online Scan will begin automatically.
    Note: This scan might take a long time! Please be patient.
  • When completed select Uninstall application on close if you so wish, but make sure you copy the logfile first!
  • Now click on Finish
  • A log file is created at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
    Copy and paste the content of this log file in your next reply.
Note: Do not forget to re-enable your antivirus application after running the above scan!



Step 2

Start FRST with administator privileges.
  • Press the Scan button.
  • When finished, FRST will produce a log (FRST.txt) in the same directory the tool was run from.
    Please copy and paste this log in your next reply.


#8 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:53 AM

Posted 03 September 2014 - 06:57 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users