Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Microsoft Security Essentials found trojan:dos/alureon.j. Not sure if it's gone.


  • This topic is locked This topic is locked
9 replies to this topic

#1 celticsfan33

celticsfan33

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:07:08 AM

Posted 31 July 2014 - 12:42 PM

I tried following the directions from a different post but now I'm not sure if the Trojan is gone. I'm still getting a pop-up from malwarebytes but when I scanned it yesterday it didn't come up with anything. The computer is running at the same speed -- it's choppy at times but not terrible. Also, sometimes when I start up the computer it automatically does a complete system check instead of going to the start menu. Any help would be greatly appreciated.

Attached Files



BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 40,730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:06:08 AM

Posted 05 August 2014 - 09:02 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

--RogueKiller--
  • Download & SAVE to your Desktop For 32bit system or For 64bit system
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • Then Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • click on "delete"
  • Wait until the Status box shows "Deleting Finished"
  • Click on "Report" and copy/paste the content of the Notepad into your next reply.
  • The log should be found in RKreport[1].txt on your Desktop
  • Exit/Close RogueKiller+
=======

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Click the Report button and the report will open in Notepad.
IMPORTANT
  • If you click the Clean button all items listed in the report will be removed.
If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Check off the element(s) you wish to keep.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Sn].txt (n is a number).
===

Download the version of this tool for your operating system.
Farbar Recovery Scan Tool (64 bit)
Farbar Recovery Scan Tool (32 bit)
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

===

Please paste the logs in your next reply DO NOT ATTACH THEM unless specified.
To attach a file select the "More Reply Option" and follow the instructions.

Let me know what problem persists.

#3 celticsfan33

celticsfan33
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:07:08 AM

Posted 05 August 2014 - 12:01 PM

RogueKiller V9.2.4.0 (x64) [Jul 11 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Mike [Admin rights]
Mode : Remove -- Date : 08/05/2014  12:02:56

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 5 ¤¤¤
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> NOT SELECTED
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> NOT SELECTED
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> NOT SELECTED
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> NOT SELECTED
[RegVal.Brok] (X64) HKEY_CLASSES_ROOT\.exe\shell\open\command |  :   -> CREATED ("%1" %*)

¤¤¤ Scheduled tasks : 1 ¤¤¤
[Suspicious.Path] CoolYouUpdaterTask{ED661E57-66D6-47E0-A513-FA8714A50AA7}.job -- C:\ProgramData\CoolYou\CoolYou.exe (/schedule /profilepath "C:\ProgramData\CoolYou\profile.ini") -> DELETED

¤¤¤ Files : 1 ¤¤¤
[Suspicious.Path][File] Best Buy pc app.lnk -- C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Best Buy pc app.lnk [LNK@] C:\PROGRA~3\BESTBU~1\CLICKO~1.EXE "C:\ProgramData\Best Buy pc app\Best Buy pc app.application" -> DELETED

¤¤¤ HOSTS File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: LOADED) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: ST9500325AS +++++
--- User ---
[MBR] 36013d4f292493feb658db2daf6ce2f8
[BSP] 6a5e64a83a15c82515b2c9914bfc82e5 : Windows Vista/7/8 MBR Code
Partition table:
0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 15000 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 30926848 | Size: 461838 MB
User != LL1 ... KO!
--- LL1 ---
[MBR] e65bb6b61ee5b38470e93e40f0a43818
[BSP] 6a5e64a83a15c82515b2c9914bfc82e5 : Windows Vista/7/8 MBR Code
Partition table:
1 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
2 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 15000 MB
3 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 30926848 | Size: 461838 MB
User != LL2 ... KO!
--- LL2 ---
[MBR] e65bb6b61ee5b38470e93e40f0a43818
[BSP] 6a5e64a83a15c82515b2c9914bfc82e5 : Windows Vista/7/8 MBR Code
Partition table:
1 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
2 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 15000 MB
3 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 30926848 | Size: 461838 MB


============================================
RKreport_SCN_08052014_115608.log

 

# AdwCleaner v3.302 - Report created 05/08/2014 at 12:23:20
# Updated 30/07/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Mike - MIKE-PC
# Running from : C:\Users\Mike\Downloads\adwcleaner_3.302.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17207


-\\ Mozilla Firefox v31.0 (x86 en-US)

[ File : C:\Users\Guest\AppData\Roaming\Mozilla\Firefox\Profiles\h4cpitgj.default\prefs.js ]


[ File : C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\9476hq6r.default-1406522971324\prefs.js ]


*************************

AdwCleaner[R0].txt - [3594 octets] - [31/07/2014 00:57:08]
AdwCleaner[R1].txt - [850 octets] - [05/08/2014 12:23:20]
AdwCleaner[S0].txt - [3632 octets] - [31/07/2014 00:59:51]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [969 octets] ##########

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-08-2014
Ran by Mike (administrator) on MIKE-PC on 05-08-2014 12:44:01
Running from C:\Users\Mike\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Corporation) C:\WINDOWS\System32\wlanext.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\WINDOWS\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE
(Microsoft Corporation) C:\WINDOWS\WindowsMobile\wmdcBase.exe
(Intel Corporation) C:\WINDOWS\System32\igfxtray.exe
(Intel Corporation) C:\WINDOWS\System32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [487424 2010-06-18] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1890088 2010-03-17] (Synaptics Incorporated)
HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [3179288 2010-01-06] (Dell Inc.)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [5712896 2010-02-03] (Dell Inc.)
HKLM\...\Run: [Windows Mobile-based device management] => C:\Windows\WindowsMobile\wmdcBase.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696 2010-06-08] (Intel Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dell Registration] => C:\Program Files (x86)\System Registration\prodreg.exe [4144448 2010-11-10] (Dell, Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2011-07-05] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-05-15] (Apple Inc.)
Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_12_0_0_70_ActiveX.exe -update activex
HKU\S-1-5-21-2228261314-3807875800-4080060335-1001\...\MountPoints2: {0db158bb-cde1-11e1-8f92-dd774b709639} - F:\TL_Bootstrap.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - {0DCB7069-4C41-45DD-9806-7FE321559145} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKCU - {1EEB891A-50AA-4CE4-9648-CA4281272190} URL = http://www.weather.com/search/enhanced?where={searchTerms}
SearchScopes: HKCU - {9104C864-A1BC-41E3-B8EE-2047CEEBA7A6} URL = http://search.espn.go.com/keyword/search?searchString={searchTerms}
SearchScopes: HKCU - {A30919AD-48F3-44B0-820D-686B1C444227} URL = http://en.wikipedia.org/wiki/Special:Search?search={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Mike\AppData\Roaming\Mozilla\Firefox\Profiles\9476hq6r.default-1406522971324
FF DefaultSearchEngine: Bing
FF SearchEngineOrder.user_pref("browser.search.order.1", "");: user_pref("browser.search.order.1", "");
FF SearchEngineOrder.user_pref("browser.search.order.1,S", "");: user_pref("browser.search.order.1,S", "");
FF SelectedSearchEngine: Bing
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @bestbuy.com/npBestBuyPcAppDetector,version=1.0 -> C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll (Best Buy)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @bestbuy.com/npBestBuyPcAppDetector,version=1.0 -> C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll (Best Buy)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe [5088256 2010-02-03] (Dell Inc.) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [14456 2013-03-06] (GFI Software)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-08-05] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R1 MpKsle7cee8f8; c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{855EAA18-78B9-4DA8-A2A8-16565989BA3D}\MpKsle7cee8f8.sys [45352 2014-08-05] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
S3 vzandnetdiag; C:\Windows\System32\DRIVERS\lgvzandnetdiag64.sys [29696 2012-05-09] (LG Electronics Inc.)
S3 vzandnetmodem; C:\Windows\System32\DRIVERS\lgvzandnetmdm64.sys [36864 2012-05-09] (LG Electronics Inc.)
S3 vzandnetndis; C:\Windows\System32\DRIVERS\lgvzandnetndis64.sys [94208 2012-05-09] (LG Electronics Inc.)
S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-05 12:44 - 2014-08-05 12:45 - 00012710 _____ () C:\Users\Mike\Downloads\FRST.txt
2014-08-05 12:43 - 2014-08-05 12:44 - 00000000 ____D () C:\FRST
2014-08-05 12:43 - 2014-08-05 12:43 - 02094080 _____ (Farbar) C:\Users\Mike\Downloads\FRST64.exe
2014-08-05 12:38 - 2014-08-05 12:38 - 00001048 _____ () C:\Users\Mike\Desktop\AdwCleaner[R1].txt
2014-08-05 12:22 - 2014-08-05 12:22 - 00003273 _____ () C:\Users\Mike\Desktop\RKreport_DEL_08052014_120256.log
2014-08-05 12:21 - 2014-08-05 12:21 - 01361309 _____ () C:\Users\Mike\Downloads\adwcleaner_3.302.exe
2014-08-05 11:46 - 2014-08-05 11:46 - 00030312 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-08-05 11:46 - 2014-08-05 11:46 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-08-05 11:45 - 2014-08-05 11:46 - 05379160 _____ () C:\Users\Mike\Downloads\RogueKillerX64.exe
2014-08-05 02:29 - 2014-08-05 02:29 - 00002951 _____ () C:\Users\Mike\Desktop\Microsoft Excel 2010.lnk
2014-08-03 17:44 - 2014-05-14 12:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-03 17:44 - 2014-05-14 12:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-03 17:44 - 2014-05-14 12:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-08-03 17:44 - 2014-05-14 12:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-03 17:44 - 2014-05-14 12:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-03 17:44 - 2014-05-14 12:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-03 17:44 - 2014-05-14 12:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-08-03 17:44 - 2014-05-14 12:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-03 17:44 - 2014-05-14 12:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-03 17:44 - 2014-05-14 12:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-08-03 17:44 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-03 17:44 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-08-03 17:44 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-03 17:44 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-08-03 17:29 - 2014-08-03 17:29 - 00262144 _____ () C:\Windows\Minidump\080314-35895-01.dmp
2014-08-02 12:51 - 2014-08-02 12:51 - 00262144 _____ () C:\Windows\Minidump\080214-19000-01.dmp
2014-08-01 18:45 - 2014-08-01 18:45 - 00002119 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2014-08-01 18:45 - 2014-08-01 18:45 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-08-01 18:44 - 2014-08-01 18:45 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-08-01 18:44 - 2014-08-01 18:44 - 13829304 _____ (Microsoft Corporation) C:\Users\Mike\Downloads\mseinstall.exe
2014-07-31 13:39 - 2014-07-31 13:41 - 00021450 _____ () C:\Users\Mike\Desktop\dds.txt
2014-07-31 13:39 - 2014-07-31 13:41 - 00013665 _____ () C:\Users\Mike\Desktop\attach.txt
2014-07-31 13:36 - 2014-07-31 13:36 - 00688992 _____ (Swearware) C:\Users\Mike\Downloads\dds(1).com
2014-07-31 13:11 - 2014-07-31 13:12 - 00688992 ____R (Swearware) C:\Users\Mike\Downloads\dds.com
2014-07-31 06:02 - 2014-08-03 17:29 - 610655566 _____ () C:\Windows\MEMORY.DMP
2014-07-31 06:02 - 2014-07-31 06:02 - 00262144 _____ () C:\Windows\Minidump\073114-23368-01.dmp
2014-07-31 01:02 - 2014-08-05 12:40 - 00000672 _____ () C:\Windows\setupact.log
2014-07-31 01:02 - 2014-08-05 12:40 - 00000618 _____ () C:\Windows\PFRO.log
2014-07-31 01:02 - 2014-07-31 01:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-31 00:57 - 2014-08-05 12:39 - 00000000 ____D () C:\AdwCleaner
2014-07-31 00:56 - 2014-07-31 00:56 - 01361309 _____ () C:\Users\Mike\Downloads\AdwCleaner.exe
2014-07-31 00:50 - 2014-07-31 00:50 - 00002358 _____ () C:\Users\Mike\Downloads\FSS.txt
2014-07-31 00:49 - 2014-07-31 00:50 - 00415232 _____ (Farbar) C:\Users\Mike\Downloads\FSS.exe
2014-07-30 12:30 - 2014-07-30 12:30 - 00000000 ____D () C:\Users\Mike\AppData\Local\ESET
2014-07-30 11:11 - 2014-07-30 11:11 - 01696192 _____ (ESET) C:\Users\Mike\Downloads\eset_nod32_antivirus_live_installer.exe
2014-07-29 21:56 - 2014-07-29 21:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-29 19:24 - 2014-07-29 19:24 - 00004913 _____ () C:\Users\Mike\Desktop\aswMBR.txt
2014-07-29 19:24 - 2014-07-29 19:24 - 00000512 _____ () C:\Users\Mike\Desktop\MBR.dat
2014-07-29 15:22 - 2014-05-08 05:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-07-29 15:22 - 2014-05-08 05:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-07-29 15:22 - 2014-01-08 22:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-07-29 15:22 - 2014-01-03 18:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-07-29 14:11 - 2014-07-29 14:11 - 02347384 _____ (ESET) C:\Users\Mike\Downloads\esetsmartinstaller_enu.exe
2014-07-29 14:03 - 2014-07-29 14:33 - 00000000 ____D () C:\Windows\Microsoft Antimalware
2014-07-29 13:54 - 2014-07-29 13:55 - 05185536 _____ (AVAST Software) C:\Users\Mike\Downloads\aswMBR.exe
2014-07-29 13:53 - 2014-07-29 13:53 - 00000000 ____D () C:\TDSSKiller_Quarantine
2014-07-29 13:50 - 2014-07-29 13:51 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Mike\Downloads\tdsskiller.exe
2014-07-29 10:06 - 2014-07-29 10:06 - 00886288 _____ (Microsoft Corporation) C:\Users\Mike\Downloads\mssstool64(1).exe
2014-07-29 09:48 - 2014-07-29 09:48 - 00886288 _____ (Microsoft Corporation) C:\Users\Mike\Downloads\mssstool64.exe
2014-07-29 08:40 - 2014-07-29 08:40 - 00000000 ____D () C:\ProgramData\Intel
2014-07-28 22:20 - 2013-10-01 22:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-07-28 22:20 - 2013-10-01 22:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-07-28 22:20 - 2013-10-01 22:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-07-28 22:20 - 2013-10-01 21:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-07-28 22:20 - 2013-10-01 21:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-07-28 22:20 - 2013-10-01 21:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-07-28 22:20 - 2013-10-01 21:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-07-28 22:20 - 2013-10-01 20:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-07-28 22:20 - 2013-10-01 20:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-07-28 22:20 - 2013-10-01 20:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-07-28 22:20 - 2013-10-01 20:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-07-28 22:20 - 2013-10-01 20:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-07-28 22:20 - 2013-10-01 19:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-07-28 22:20 - 2013-10-01 19:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-07-28 22:20 - 2013-10-01 19:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-07-28 22:20 - 2013-10-01 18:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-07-28 22:12 - 2012-08-23 10:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-07-28 22:12 - 2012-08-23 10:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-07-28 22:12 - 2012-08-23 07:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-07-28 22:12 - 2012-08-23 06:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-07-28 22:03 - 2014-08-01 18:45 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-07-28 21:55 - 2013-09-24 22:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-07-28 21:55 - 2013-09-24 21:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-07-28 21:55 - 2012-05-04 07:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-07-28 21:55 - 2012-05-04 05:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-07-28 17:28 - 2014-07-28 17:28 - 00000000 __SHD () C:\found.002
2014-07-28 04:56 - 2014-07-28 04:56 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-28 04:25 - 2014-07-28 22:11 - 00774852 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-07-28 01:25 - 2014-05-30 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-07-28 01:25 - 2014-05-30 04:08 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-07-28 01:25 - 2014-05-30 04:08 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-07-28 01:25 - 2014-05-30 04:08 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-07-28 01:25 - 2014-05-30 04:08 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-07-28 01:25 - 2014-05-30 04:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-07-28 01:25 - 2014-05-30 04:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-07-28 01:25 - 2014-05-30 03:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-07-28 01:25 - 2014-05-30 03:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-07-28 01:25 - 2014-05-30 03:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-07-28 01:25 - 2014-05-30 03:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-07-28 01:25 - 2014-05-30 03:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-07-28 01:25 - 2014-05-30 03:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-07-28 01:25 - 2014-05-30 03:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-07-28 01:24 - 2014-06-29 22:09 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-07-28 01:24 - 2014-06-29 22:04 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-07-28 01:23 - 2014-06-17 22:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-28 01:23 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-28 01:23 - 2014-06-17 21:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-28 01:22 - 2014-06-20 16:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-28 01:22 - 2014-06-20 15:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-28 01:22 - 2014-06-18 21:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-28 01:22 - 2014-06-18 21:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-28 01:22 - 2014-06-18 21:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-28 01:22 - 2014-06-18 20:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-28 01:22 - 2014-06-18 20:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-28 01:22 - 2014-06-18 20:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-28 01:22 - 2014-06-18 20:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-28 01:22 - 2014-06-18 20:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-28 01:22 - 2014-06-18 20:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-28 01:22 - 2014-06-18 20:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-28 01:22 - 2014-06-18 20:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-28 01:22 - 2014-06-18 20:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-28 01:22 - 2014-06-18 20:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-28 01:22 - 2014-06-18 20:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-28 01:22 - 2014-06-18 20:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-28 01:22 - 2014-06-18 20:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-28 01:22 - 2014-06-18 20:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-28 01:22 - 2014-06-18 19:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-28 01:22 - 2014-06-18 19:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-28 01:22 - 2014-06-18 19:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-28 01:22 - 2014-06-18 19:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-28 01:22 - 2014-06-18 19:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-28 01:22 - 2014-06-18 19:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-28 01:22 - 2014-06-18 19:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-28 01:22 - 2014-06-18 19:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-28 01:22 - 2014-06-18 19:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-28 01:22 - 2014-06-18 19:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-28 01:22 - 2014-06-18 19:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-28 01:22 - 2014-06-18 19:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-28 01:22 - 2014-06-18 19:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-28 01:22 - 2014-06-18 19:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-28 01:22 - 2014-06-18 19:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-28 01:22 - 2014-06-18 19:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-28 01:22 - 2014-06-18 19:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-28 01:22 - 2014-06-18 19:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-28 01:22 - 2014-06-18 19:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-28 01:22 - 2014-06-18 19:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-07-28 01:22 - 2014-06-18 19:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-28 01:22 - 2014-06-18 19:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-28 01:22 - 2014-06-18 19:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-28 01:22 - 2014-06-18 18:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-28 01:22 - 2014-06-18 18:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-28 01:22 - 2014-06-18 18:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-28 01:22 - 2014-06-18 18:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-28 01:22 - 2014-06-18 18:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-28 01:22 - 2014-06-18 18:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-28 01:22 - 2014-06-18 18:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-28 01:22 - 2014-06-18 18:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-28 01:22 - 2014-06-18 18:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-28 01:22 - 2014-06-18 18:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-28 01:22 - 2014-06-18 18:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-28 01:22 - 2014-06-18 18:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-28 01:22 - 2014-06-18 18:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-28 01:22 - 2014-06-18 18:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-28 01:22 - 2014-06-06 06:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-28 01:22 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-28 01:22 - 2014-05-30 02:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-28 01:17 - 2014-06-05 10:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-28 01:16 - 2014-06-05 10:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-07-28 01:16 - 2014-06-05 10:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-07-28 01:16 - 2014-04-11 22:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-07-28 01:16 - 2014-04-11 22:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-07-28 01:16 - 2014-04-11 22:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-07-28 01:16 - 2014-04-11 22:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-07-28 01:16 - 2014-04-11 22:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-07-28 01:16 - 2014-04-11 22:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-07-28 00:54 - 2014-08-05 12:42 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-28 00:54 - 2014-07-28 00:54 - 00001108 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-28 00:54 - 2014-07-28 00:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-28 00:54 - 2014-07-28 00:54 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-28 00:54 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-28 00:54 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-28 00:54 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-07-28 00:51 - 2014-07-28 00:52 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Mike\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-28 00:45 - 2014-07-28 12:34 - 00000000 ____D () C:\Windows\system32\MpEngineStore

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-05 12:45 - 2014-08-05 12:44 - 00012710 _____ () C:\Users\Mike\Downloads\FRST.txt
2014-08-05 12:44 - 2014-08-05 12:43 - 00000000 ____D () C:\FRST
2014-08-05 12:44 - 2013-06-10 14:26 - 01112601 _____ () C:\Windows\WindowsUpdate.log
2014-08-05 12:43 - 2014-08-05 12:43 - 02094080 _____ (Farbar) C:\Users\Mike\Downloads\FRST64.exe
2014-08-05 12:42 - 2014-07-28 00:54 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-05 12:41 - 2011-04-20 00:29 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup
2014-08-05 12:41 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-05 12:40 - 2014-07-31 01:02 - 00000672 _____ () C:\Windows\setupact.log
2014-08-05 12:40 - 2014-07-31 01:02 - 00000618 _____ () C:\Windows\PFRO.log
2014-08-05 12:39 - 2014-07-31 00:57 - 00000000 ____D () C:\AdwCleaner
2014-08-05 12:38 - 2014-08-05 12:38 - 00001048 _____ () C:\Users\Mike\Desktop\AdwCleaner[R1].txt
2014-08-05 12:38 - 2012-09-24 10:37 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-05 12:22 - 2014-08-05 12:22 - 00003273 _____ () C:\Users\Mike\Desktop\RKreport_DEL_08052014_120256.log
2014-08-05 12:21 - 2014-08-05 12:21 - 01361309 _____ () C:\Users\Mike\Downloads\adwcleaner_3.302.exe
2014-08-05 11:46 - 2014-08-05 11:46 - 00030312 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2014-08-05 11:46 - 2014-08-05 11:46 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-08-05 11:46 - 2014-08-05 11:45 - 05379160 _____ () C:\Users\Mike\Downloads\RogueKillerX64.exe
2014-08-05 11:39 - 2009-07-14 00:45 - 00013872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-05 11:39 - 2009-07-14 00:45 - 00013872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-05 11:31 - 2011-05-21 18:21 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
2014-08-05 11:31 - 2011-05-21 18:21 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
2014-08-05 02:29 - 2014-08-05 02:29 - 00002951 _____ () C:\Users\Mike\Desktop\Microsoft Excel 2010.lnk
2014-08-05 00:50 - 2013-03-20 14:20 - 00000000 ____D () C:\Users\Mike\Desktop\Finances
2014-08-03 21:58 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
2014-08-03 17:29 - 2014-08-03 17:29 - 00262144 _____ () C:\Windows\Minidump\080314-35895-01.dmp
2014-08-03 17:29 - 2014-07-31 06:02 - 610655566 _____ () C:\Windows\MEMORY.DMP
2014-08-03 17:29 - 2011-06-29 09:10 - 00000000 ____D () C:\Windows\Minidump
2014-08-02 12:51 - 2014-08-02 12:51 - 00262144 _____ () C:\Windows\Minidump\080214-19000-01.dmp
2014-08-01 18:45 - 2014-08-01 18:45 - 00002119 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2014-08-01 18:45 - 2014-08-01 18:45 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-08-01 18:45 - 2014-08-01 18:44 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-08-01 18:45 - 2014-07-28 22:03 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-08-01 18:44 - 2014-08-01 18:44 - 13829304 _____ (Microsoft Corporation) C:\Users\Mike\Downloads\mseinstall.exe
2014-07-31 13:41 - 2014-07-31 13:39 - 00021450 _____ () C:\Users\Mike\Desktop\dds.txt
2014-07-31 13:41 - 2014-07-31 13:39 - 00013665 _____ () C:\Users\Mike\Desktop\attach.txt
2014-07-31 13:36 - 2014-07-31 13:36 - 00688992 _____ (Swearware) C:\Users\Mike\Downloads\dds(1).com
2014-07-31 13:12 - 2014-07-31 13:11 - 00688992 ____R (Swearware) C:\Users\Mike\Downloads\dds.com
2014-07-31 06:02 - 2014-07-31 06:02 - 00262144 _____ () C:\Windows\Minidump\073114-23368-01.dmp
2014-07-31 01:02 - 2014-07-31 01:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-31 00:56 - 2014-07-31 00:56 - 01361309 _____ () C:\Users\Mike\Downloads\AdwCleaner.exe
2014-07-31 00:50 - 2014-07-31 00:50 - 00002358 _____ () C:\Users\Mike\Downloads\FSS.txt
2014-07-31 00:50 - 2014-07-31 00:49 - 00415232 _____ (Farbar) C:\Users\Mike\Downloads\FSS.exe
2014-07-30 16:35 - 2011-06-07 00:30 - 00000000 ____D () C:\Users\Mike\AppData\Local\CrashDumps
2014-07-30 16:35 - 2009-04-28 12:27 - 00000000 ____D () C:\Windows\Panther
2014-07-30 14:09 - 2012-08-21 17:15 - 00000000 ____D () C:\Program Files (x86)\SProtector
2014-07-30 12:30 - 2014-07-30 12:30 - 00000000 ____D () C:\Users\Mike\AppData\Local\ESET
2014-07-30 11:11 - 2014-07-30 11:11 - 01696192 _____ (ESET) C:\Users\Mike\Downloads\eset_nod32_antivirus_live_installer.exe
2014-07-30 08:50 - 2013-05-22 12:07 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-29 21:57 - 2014-07-29 21:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-29 19:24 - 2014-07-29 19:24 - 00004913 _____ () C:\Users\Mike\Desktop\aswMBR.txt
2014-07-29 19:24 - 2014-07-29 19:24 - 00000512 _____ () C:\Users\Mike\Desktop\MBR.dat
2014-07-29 14:33 - 2014-07-29 14:03 - 00000000 ____D () C:\Windows\Microsoft Antimalware
2014-07-29 14:11 - 2014-07-29 14:11 - 02347384 _____ (ESET) C:\Users\Mike\Downloads\esetsmartinstaller_enu.exe
2014-07-29 13:55 - 2014-07-29 13:54 - 05185536 _____ (AVAST Software) C:\Users\Mike\Downloads\aswMBR.exe
2014-07-29 13:53 - 2014-07-29 13:53 - 00000000 ____D () C:\TDSSKiller_Quarantine
2014-07-29 13:51 - 2014-07-29 13:50 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Mike\Downloads\tdsskiller.exe
2014-07-29 10:11 - 2009-07-14 01:13 - 00782238 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-29 10:06 - 2014-07-29 10:06 - 00886288 _____ (Microsoft Corporation) C:\Users\Mike\Downloads\mssstool64(1).exe
2014-07-29 09:48 - 2014-07-29 09:48 - 00886288 _____ (Microsoft Corporation) C:\Users\Mike\Downloads\mssstool64.exe
2014-07-29 08:40 - 2014-07-29 08:40 - 00000000 ____D () C:\ProgramData\Intel
2014-07-29 03:25 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-07-29 03:22 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-07-28 22:15 - 2011-04-20 00:01 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-07-28 22:11 - 2014-07-28 04:25 - 00774852 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-07-28 17:28 - 2014-07-28 17:28 - 00000000 __SHD () C:\found.002
2014-07-28 15:10 - 2013-03-11 22:50 - 00000000 ____D () C:\Users\Mike\Desktop\Projects
2014-07-28 12:34 - 2014-07-28 00:45 - 00000000 ____D () C:\Windows\system32\MpEngineStore
2014-07-28 12:31 - 2013-08-25 21:03 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-28 05:01 - 2009-07-14 00:45 - 00399232 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-28 05:00 - 2013-03-13 03:01 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-28 05:00 - 2013-03-13 03:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-28 04:56 - 2014-07-28 04:56 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-28 04:56 - 2011-04-20 02:46 - 00000000 ____D () C:\Program Files\Windows Journal
2014-07-28 04:56 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-07-28 04:56 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-07-28 04:15 - 2012-05-01 03:35 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-07-28 03:18 - 2013-03-13 03:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-28 03:01 - 2012-09-24 10:37 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-28 03:01 - 2012-09-24 10:37 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-07-28 03:01 - 2011-06-08 02:07 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-28 00:54 - 2014-07-28 00:54 - 00001108 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-28 00:54 - 2014-07-28 00:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-28 00:54 - 2014-07-28 00:54 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-28 00:54 - 2013-03-06 14:54 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-28 00:52 - 2014-07-28 00:51 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Mike\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-28 00:42 - 2009-07-14 01:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD

Some content of TEMP:
====================
C:\Users\Mike\AppData\Local\Temp\InstHelper.exe
C:\Users\Mike\AppData\Local\Temp\lqawnmi8.dll
C:\Users\Mike\AppData\Local\Temp\Quarantine.exe
C:\Users\Mike\AppData\Local\Temp\{E36ED432-8CC0-42BB-B3B4-01B2759C835C}.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

TDL4: custom:26000022 <===== ATTENTION!


LastRegBack: 2014-07-28 06:19

==================== End Of Log ============================

 

Attached Files



#4 celticsfan33

celticsfan33
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:07:08 AM

Posted 05 August 2014 - 12:10 PM

Now Microsoft Security Essentials is detecting Virus:Win64/Alureon.gen!A and is telling me to download Windows Defender Offline



#5 nasdaq

nasdaq

  • Malware Response Team
  • 40,730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:06:08 AM

Posted 06 August 2014 - 07:55 AM

TDL4: custom:26000022 <===== ATTENTION!


Lets take care of this.
===

Read carefully and follow these steps.
TDSS
  • Download TDSSKiller and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application.
  • Then click on Start Scan.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.

    TDSSKillerSuspicious-1.png
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • Important: Do NOT change the default action on your own unless instructed by a malware Helper! Doing so may render your computer unbootable.
    TDSSKillerMal-1.png
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.

    TDSSKillerCompleted.png
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.
===

Download http://public.avast.com/~gmerek/aswMBR.exe (aswMBR.exe) to your desktop. Double click the aswMBR.exe to run it.
  • Click the "Scan" button to start scan.
  • Upon completion of the scan, click Save log, and save it to your desktop. (Note - do not select any Fix at this time) <- IMPORTANT
  • Please paste the contents of that log in your next reply.
There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.
===

Wait for further instructions.

#6 celticsfan33

celticsfan33
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:07:08 AM

Posted 06 August 2014 - 05:45 PM

18:24:10.0088 0x62d8  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
18:24:20.0143 0x62d8  ============================================================
18:24:20.0143 0x62d8  Current date / time: 2014/08/06 18:24:20.0143
18:24:20.0143 0x62d8  SystemInfo:
18:24:20.0143 0x62d8  
18:24:20.0144 0x62d8  OS Version: 6.1.7601 ServicePack: 1.0
18:24:20.0144 0x62d8  Product type: Workstation
18:24:20.0144 0x62d8  ComputerName: MIKE-PC
18:24:20.0144 0x62d8  UserName: Mike
18:24:20.0144 0x62d8  Windows directory: C:\Windows
18:24:20.0144 0x62d8  System windows directory: C:\Windows
18:24:20.0144 0x62d8  Running under WOW64
18:24:20.0144 0x62d8  Processor architecture: Intel x64
18:24:20.0144 0x62d8  Number of processors: 4
18:24:20.0144 0x62d8  Page size: 0x1000
18:24:20.0144 0x62d8  Boot type: Normal boot
18:24:20.0144 0x62d8  ============================================================
18:24:22.0760 0x62d8  KLMD registered as C:\Windows\system32\drivers\16139187.sys
18:24:24.0974 0x62d8  System UUID: {FC1EE0AD-F118-EED1-466F-E24B3C334013}
18:24:26.0673 0x62d8  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:24:26.0798 0x62d8  ============================================================
18:24:26.0798 0x62d8  \Device\Harddisk0\DR0:
18:24:26.0799 0x62d8  MBR partitions:
18:24:26.0799 0x62d8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
18:24:26.0799 0x62d8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
18:24:26.0799 0x62d8  ============================================================
18:24:26.0866 0x62d8  C: <-> \Device\Harddisk0\DR0\Partition2
18:24:26.0908 0x62d8  ============================================================
18:24:26.0908 0x62d8  Initialize success
18:24:26.0908 0x62d8  ============================================================
18:24:30.0621 0x71b0  ============================================================
18:24:30.0621 0x71b0  Scan started
18:24:30.0621 0x71b0  Mode: Manual;
18:24:30.0621 0x71b0  ============================================================
18:24:30.0621 0x71b0  KSN ping started
18:24:33.0810 0x71b0  KSN ping finished: true
18:24:34.0637 0x71b0  ================ Scan system memory ========================
18:24:34.0637 0x71b0  System memory - ok
18:24:34.0638 0x71b0  ================ Scan services =============================
18:24:35.0134 0x71b0  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
18:24:35.0140 0x71b0  1394ohci - ok
18:24:35.0286 0x71b0  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
18:24:35.0306 0x71b0  ACPI - ok
18:24:35.0373 0x71b0  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
18:24:35.0374 0x71b0  AcpiPmi - ok
18:24:36.0098 0x71b0  [ A6B6AB9502B63F43A9A56AE6AFB22078, DD1F0BA3D8F3333F52A71EAE3719A001F6EF844D647FFABF0E4C56C6C764ACA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:24:36.0108 0x71b0  AdobeFlashPlayerUpdateSvc - ok
18:24:36.0185 0x71b0  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
18:24:36.0206 0x71b0  adp94xx - ok
18:24:36.0308 0x71b0  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
18:24:36.0324 0x71b0  adpahci - ok
18:24:36.0353 0x71b0  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
18:24:36.0360 0x71b0  adpu320 - ok
18:24:36.0398 0x71b0  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
18:24:36.0400 0x71b0  AeLookupSvc - ok
18:24:36.0537 0x71b0  [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] AESTFilters     C:\Program Files\IDT\WDM\AESTSr64.exe
18:24:36.0542 0x71b0  AESTFilters - ok
18:24:36.0710 0x71b0  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
18:24:36.0732 0x71b0  AFD - ok
18:24:36.0833 0x71b0  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
18:24:36.0842 0x71b0  agp440 - ok
18:24:36.0891 0x71b0  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
18:24:36.0896 0x71b0  ALG - ok
18:24:36.0960 0x71b0  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
18:24:36.0975 0x71b0  aliide - ok
18:24:37.0014 0x71b0  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
18:24:37.0020 0x71b0  amdide - ok
18:24:37.0058 0x71b0  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
18:24:37.0061 0x71b0  AmdK8 - ok
18:24:37.0083 0x71b0  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
18:24:37.0085 0x71b0  AmdPPM - ok
18:24:37.0178 0x71b0  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
18:24:37.0182 0x71b0  amdsata - ok
18:24:37.0321 0x71b0  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
18:24:37.0331 0x71b0  amdsbs - ok
18:24:37.0348 0x71b0  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
18:24:37.0350 0x71b0  amdxata - ok
18:24:37.0429 0x71b0  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
18:24:37.0438 0x71b0  AppID - ok
18:24:37.0478 0x71b0  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
18:24:37.0480 0x71b0  AppIDSvc - ok
18:24:37.0546 0x71b0  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
18:24:37.0547 0x71b0  Appinfo - ok
18:24:37.0750 0x71b0  [ 4FE5C6D40664AE07BE5105874357D2ED, 70DD05EE80B77EB2F781E0919885D1BBB1119EA1A8955935AF5AECD05E30F14A ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:24:37.0791 0x71b0  Apple Mobile Device - ok
18:24:37.0853 0x71b0  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
18:24:37.0860 0x71b0  arc - ok
18:24:37.0869 0x71b0  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
18:24:37.0872 0x71b0  arcsas - ok
18:24:38.0101 0x71b0  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:24:38.0131 0x71b0  aspnet_state - ok
18:24:38.0171 0x71b0  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
18:24:38.0181 0x71b0  AsyncMac - ok
18:24:38.0247 0x71b0  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
18:24:38.0258 0x71b0  atapi - ok
18:24:38.0492 0x71b0  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:24:38.0505 0x71b0  AudioEndpointBuilder - ok
18:24:38.0591 0x71b0  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
18:24:38.0607 0x71b0  AudioSrv - ok
18:24:38.0759 0x71b0  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
18:24:38.0763 0x71b0  AxInstSV - ok
18:24:38.0902 0x71b0  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
18:24:38.0926 0x71b0  b06bdrv - ok
18:24:39.0020 0x71b0  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
18:24:39.0041 0x71b0  b57nd60a - ok
18:24:39.0080 0x71b0  [ AC4E2D84DE54CD3A013AEFF0CC56095C, E0BAB08DCD60D06426209BA7465097E9F5AA243A93B29FD0A45607574086A123 ] BCM42RLY        C:\Windows\system32\drivers\BCM42RLY.sys
18:24:39.0083 0x71b0  BCM42RLY - ok
18:24:39.0480 0x71b0  [ 8B5D16D20774FC3727F44E161BE2C0AC, 0EF2489E1ACC86403B1D6931140C5DF082127B327143ECB6EF28A4FF57D3C371 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
18:24:39.0602 0x71b0  BCM43XX - ok
18:24:39.0680 0x71b0  [ D224B2E6BB543F1D8F1177D57FEC2950, F5D4096A275E0AF24E38778EFAFFAFFAE3185BF8AD7A0547D50D8E7354EF7FCD ] BcmVWL          C:\Windows\system32\DRIVERS\bcmvwl64.sys
18:24:39.0684 0x71b0  BcmVWL - ok
18:24:39.0727 0x71b0  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
18:24:39.0729 0x71b0  BDESVC - ok
18:24:39.0798 0x71b0  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
18:24:39.0808 0x71b0  Beep - ok
18:24:39.0998 0x71b0  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
18:24:40.0048 0x71b0  BFE - ok
18:24:40.0133 0x71b0  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
18:24:40.0168 0x71b0  BITS - ok
18:24:40.0194 0x71b0  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
18:24:40.0206 0x71b0  blbdrive - ok
18:24:40.0391 0x71b0  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:24:40.0422 0x71b0  Bonjour Service - ok
18:24:40.0477 0x71b0  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:24:40.0482 0x71b0  bowser - ok
18:24:40.0521 0x71b0  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:24:40.0527 0x71b0  BrFiltLo - ok
18:24:40.0536 0x71b0  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:24:40.0538 0x71b0  BrFiltUp - ok
18:24:40.0588 0x71b0  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
18:24:40.0593 0x71b0  Browser - ok
18:24:40.0637 0x71b0  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
18:24:40.0645 0x71b0  Brserid - ok
18:24:40.0668 0x71b0  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
18:24:40.0672 0x71b0  BrSerWdm - ok
18:24:40.0708 0x71b0  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
18:24:40.0718 0x71b0  BrUsbMdm - ok
18:24:40.0723 0x71b0  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
18:24:40.0726 0x71b0  BrUsbSer - ok
18:24:40.0876 0x71b0  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
18:24:40.0881 0x71b0  BthEnum - ok
18:24:40.0925 0x71b0  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
18:24:40.0935 0x71b0  BTHMODEM - ok
18:24:40.0981 0x71b0  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
18:24:40.0987 0x71b0  BthPan - ok
18:24:41.0122 0x71b0  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
18:24:41.0147 0x71b0  BTHPORT - ok
18:24:41.0216 0x71b0  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
18:24:41.0218 0x71b0  bthserv - ok
18:24:41.0361 0x71b0  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
18:24:41.0368 0x71b0  BTHUSB - ok
18:24:41.0383 0x71b0  [ D3466F77C2C49C6E393BA5FBA963A33E, FD5E48A29E153BBAB095AB2E3B86F592B1FC1F790978911093B5F8A2CD6C5652 ] btusbflt        C:\Windows\system32\drivers\btusbflt.sys
18:24:41.0386 0x71b0  btusbflt - ok
18:24:41.0421 0x71b0  [ AF838D8029AE7C27470862D63FA54D24, 96247094D2446CEE594AD765B98DE8583762A96FE83223CB18B4CDB3A4958376 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
18:24:41.0425 0x71b0  btwaudio - ok
18:24:41.0449 0x71b0  [ 5C849BD7C78791C5CEE9F4651D7FE38D, BC93A1B911FB4A44EC4DB64AF9AFC6F2013CD76BFB6FA9E4834CFDAAAF4BCD9F ] btwavdt         C:\Windows\system32\DRIVERS\btwavdt.sys
18:24:41.0457 0x71b0  btwavdt - ok
18:24:41.0798 0x71b0  [ 10FFB5FA51D5713D872B41A59DFC2213, E0C0EA99C862E3FCE4D121BB34DEC00E74A371DF4093A44055E70E9F4CFA3DC6 ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
18:24:41.0864 0x71b0  btwdins - ok
18:24:41.0909 0x71b0  [ 6149301DC3F81D6F9667A3FBAC410975, 120E201AFB07054C7F6321461D194843C695012431DBD791E36BBF73FDD41E8A ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
18:24:41.0921 0x71b0  btwl2cap - ok
18:24:41.0947 0x71b0  [ 3E1991AFA851A36DC978B0A1B0535C8B, F55F7FDDD2A71532F163E4F14B26A09DCDB7C970E806D803418D4CE0DFF09FB6 ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
18:24:41.0950 0x71b0  btwrchid - ok
18:24:41.0975 0x71b0  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:24:41.0979 0x71b0  cdfs - ok
18:24:42.0048 0x71b0  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\drivers\cdrom.sys
18:24:42.0055 0x71b0  cdrom - ok
18:24:42.0099 0x71b0  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
18:24:42.0101 0x71b0  CertPropSvc - ok
18:24:42.0157 0x71b0  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
18:24:42.0160 0x71b0  circlass - ok
18:24:42.0278 0x71b0  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
18:24:42.0301 0x71b0  CLFS - ok
18:24:42.0376 0x71b0  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:24:42.0385 0x71b0  clr_optimization_v2.0.50727_32 - ok
18:24:42.0475 0x71b0  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:24:42.0481 0x71b0  clr_optimization_v2.0.50727_64 - ok
18:24:42.0591 0x71b0  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:24:43.0098 0x71b0  clr_optimization_v4.0.30319_32 - ok
18:24:43.0280 0x71b0  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:24:43.0544 0x71b0  clr_optimization_v4.0.30319_64 - ok
18:24:43.0627 0x71b0  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
18:24:43.0634 0x71b0  CmBatt - ok
18:24:43.0691 0x71b0  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
18:24:43.0695 0x71b0  cmdide - ok
18:24:43.0818 0x71b0  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
18:24:43.0852 0x71b0  CNG - ok
18:24:43.0916 0x71b0  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
18:24:43.0924 0x71b0  Compbatt - ok
18:24:43.0995 0x71b0  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
18:24:43.0997 0x71b0  CompositeBus - ok
18:24:44.0044 0x71b0  COMSysApp - ok
18:24:44.0077 0x71b0  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
18:24:44.0084 0x71b0  crcdisk - ok
18:24:44.0218 0x71b0  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:24:44.0222 0x71b0  CryptSvc - ok
18:24:44.0294 0x71b0  [ ED5CF92396A62F4C15110DCDB5E854D9, CD26216B8B3F558A0466843C8161E86EEDB78E6031E1AC0A00DCDE700A2B6EE2 ] CtClsFlt        C:\Windows\system32\DRIVERS\CtClsFlt.sys
18:24:44.0299 0x71b0  CtClsFlt - ok
18:24:44.0507 0x71b0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:24:44.0518 0x71b0  DcomLaunch - ok
18:24:44.0566 0x71b0  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
18:24:44.0573 0x71b0  defragsvc - ok
18:24:44.0647 0x71b0  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
18:24:44.0652 0x71b0  DfsC - ok
18:24:44.0726 0x71b0  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
18:24:44.0739 0x71b0  Dhcp - ok
18:24:44.0773 0x71b0  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
18:24:44.0775 0x71b0  discache - ok
18:24:44.0815 0x71b0  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
18:24:44.0819 0x71b0  Disk - ok
18:24:44.0880 0x71b0  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:24:44.0884 0x71b0  Dnscache - ok
18:24:44.0930 0x71b0  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
18:24:44.0936 0x71b0  dot3svc - ok
18:24:45.0025 0x71b0  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
18:24:45.0029 0x71b0  DPS - ok
18:24:45.0129 0x71b0  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
18:24:45.0132 0x71b0  drmkaud - ok
18:24:45.0210 0x71b0  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:24:45.0255 0x71b0  DXGKrnl - ok
18:24:45.0319 0x71b0  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
18:24:45.0345 0x71b0  EapHost - ok
18:24:45.0888 0x71b0  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
18:24:46.0018 0x71b0  ebdrv - ok
18:24:46.0132 0x71b0  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
18:24:46.0165 0x71b0  EFS - ok
18:24:46.0305 0x71b0  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
18:24:46.0365 0x71b0  ehRecvr - ok
18:24:46.0388 0x71b0  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
18:24:46.0395 0x71b0  ehSched - ok
18:24:46.0510 0x71b0  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
18:24:46.0536 0x71b0  elxstor - ok
18:24:46.0608 0x71b0  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
18:24:46.0611 0x71b0  ErrDev - ok
18:24:46.0748 0x71b0  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
18:24:46.0759 0x71b0  EventSystem - ok
18:24:46.0803 0x71b0  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
18:24:46.0810 0x71b0  exfat - ok
18:24:46.0952 0x71b0  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:24:46.0995 0x71b0  fastfat - ok
18:24:47.0130 0x71b0  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
18:24:47.0272 0x71b0  Fax - ok
18:24:47.0323 0x71b0  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
18:24:47.0326 0x71b0  fdc - ok
18:24:47.0373 0x71b0  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
18:24:47.0374 0x71b0  fdPHost - ok
18:24:47.0402 0x71b0  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:24:47.0404 0x71b0  FDResPub - ok
18:24:47.0454 0x71b0  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:24:47.0472 0x71b0  FileInfo - ok
18:24:47.0527 0x71b0  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:24:47.0539 0x71b0  Filetrace - ok
18:24:47.0593 0x71b0  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
18:24:47.0599 0x71b0  flpydisk - ok
18:24:47.0830 0x71b0  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:24:47.0862 0x71b0  FltMgr - ok
18:24:48.0045 0x71b0  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
18:24:48.0070 0x71b0  FontCache - ok
18:24:48.0169 0x71b0  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:24:48.0178 0x71b0  FontCache3.0.0.0 - ok
18:24:48.0258 0x71b0  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
18:24:48.0265 0x71b0  FsDepends - ok
18:24:48.0300 0x71b0  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:24:48.0302 0x71b0  Fs_Rec - ok
18:24:48.0425 0x71b0  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
18:24:48.0432 0x71b0  fvevol - ok
18:24:48.0503 0x71b0  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
18:24:48.0507 0x71b0  gagp30kx - ok
18:24:48.0605 0x71b0  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:24:48.0613 0x71b0  GEARAspiWDM - ok
18:24:48.0754 0x71b0  [ 14908F4F9005C29DE8F5587E271390EE, 43DDFA99F52467F91019DB858989F111EBE48A2BED8D43EA2C15D1FD3C104489 ] gfibto          C:\Windows\system32\drivers\gfibto.sys
18:24:48.0764 0x71b0  gfibto - ok
18:24:48.0918 0x71b0  [ D3316F6E3C011435F36E3D6E49B3196C, 941DF52BA26603A146ED6B65A696DB87153868ED0469EF9C2EB09AC7E63525B7 ] GoToAssist      C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
18:24:48.0923 0x71b0  GoToAssist - ok
18:24:49.0328 0x71b0  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
18:24:49.0345 0x71b0  gpsvc - ok
18:24:49.0448 0x71b0  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
18:24:49.0457 0x71b0  hcw85cir - ok
18:24:49.0545 0x71b0  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:24:49.0555 0x71b0  HdAudAddService - ok
18:24:49.0624 0x71b0  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
18:24:49.0631 0x71b0  HDAudBus - ok
18:24:49.0744 0x71b0  [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
18:24:49.0748 0x71b0  HECIx64 - ok
18:24:49.0780 0x71b0  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
18:24:49.0782 0x71b0  HidBatt - ok
18:24:49.0842 0x71b0  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
18:24:49.0852 0x71b0  HidBth - ok
18:24:50.0042 0x71b0  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
18:24:50.0046 0x71b0  HidIr - ok
18:24:50.0257 0x71b0  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
18:24:50.0259 0x71b0  hidserv - ok
18:24:50.0408 0x71b0  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
18:24:50.0416 0x71b0  HidUsb - ok
18:24:50.0599 0x71b0  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
18:24:50.0602 0x71b0  hkmsvc - ok
18:24:50.0673 0x71b0  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:24:50.0678 0x71b0  HomeGroupListener - ok
18:24:50.0737 0x71b0  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:24:50.0750 0x71b0  HomeGroupProvider - ok
18:24:50.0871 0x71b0  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
18:24:50.0882 0x71b0  HpSAMD - ok
18:24:50.0986 0x71b0  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:24:51.0060 0x71b0  HTTP - ok
18:24:51.0140 0x71b0  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
18:24:51.0147 0x71b0  hwpolicy - ok
18:24:51.0291 0x71b0  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
18:24:51.0302 0x71b0  i8042prt - ok
18:24:51.0395 0x71b0  [ 2064090C9FAAD92C090D77E50E735B2E, 802BF10AF2F4B5DC93926C34DB2782DA6FD7243766D583E85603879483A592D2 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
18:24:51.0435 0x71b0  iaStor - ok
18:24:51.0691 0x71b0  [ A9BE186ABF28B3D3D698CB855EDF457E, 03E1851132E1C8669CF9B3CEB1C9E6AE45BBAC2632FEEDD311F3B3FAA9B623DD ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
18:24:51.0695 0x71b0  IAStorDataMgrSvc - ok
18:24:51.0884 0x71b0  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
18:24:51.0978 0x71b0  iaStorV - ok
18:24:52.0190 0x71b0  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:24:52.0245 0x71b0  idsvc - ok
18:24:52.0354 0x71b0  IEEtwCollectorService - ok
18:24:53.0777 0x71b0  [ F4F91789C7C7A159CE8215C1F69F2A85, E60155402FB647B55EAD6B090204A1AA497294D473A7CCF850BB21C0DCCCB49C ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
18:24:54.0232 0x71b0  igfx - ok
18:24:54.0309 0x71b0  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
18:24:54.0319 0x71b0  iirsp - ok
18:24:54.0479 0x71b0  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
18:24:54.0555 0x71b0  IKEEXT - ok
18:24:54.0631 0x71b0  [ DD587A55390ED2295BCE6D36AD567DA9, AEB7DCB8EF89BEE8D9649A05FC482B1E4E3F44243D57A2577C862EB69166C48E ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
18:24:54.0637 0x71b0  Impcd - ok
18:24:54.0724 0x71b0  [ C6C1F19205DA83C801BE7C25F4E2EE07, AE28686272D0F3789751C8F73BE998026BA80D93539C81DDE148E34A34A9AD0C ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
18:24:54.0733 0x71b0  IntcDAud - ok
18:24:54.0804 0x71b0  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
18:24:54.0811 0x71b0  intelide - ok
18:24:54.0908 0x71b0  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
18:24:54.0910 0x71b0  intelppm - ok
18:24:54.0981 0x71b0  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
18:24:54.0987 0x71b0  IPBusEnum - ok
18:24:55.0029 0x71b0  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:24:55.0033 0x71b0  IpFilterDriver - ok
18:24:55.0194 0x71b0  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:24:55.0215 0x71b0  iphlpsvc - ok
18:24:55.0256 0x71b0  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
18:24:55.0263 0x71b0  IPMIDRV - ok
18:24:55.0309 0x71b0  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
18:24:55.0317 0x71b0  IPNAT - ok
18:24:55.0517 0x71b0  [ 2872B90D57C8310194A78A9787406467, 1BD326E8E59330E07D6B93E514EC3E6629A2046316BC9371AB82FE62F0DA2E94 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
18:24:55.0565 0x71b0  iPod Service - ok
18:24:55.0634 0x71b0  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:24:55.0636 0x71b0  IRENUM - ok
18:24:55.0694 0x71b0  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:24:55.0704 0x71b0  isapnp - ok
18:24:55.0758 0x71b0  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
18:24:55.0786 0x71b0  iScsiPrt - ok
18:24:55.0884 0x71b0  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
18:24:55.0888 0x71b0  kbdclass - ok
18:24:55.0942 0x71b0  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
18:24:55.0949 0x71b0  kbdhid - ok
18:24:56.0014 0x71b0  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
18:24:56.0016 0x71b0  KeyIso - ok
18:24:56.0051 0x71b0  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:24:56.0056 0x71b0  KSecDD - ok
18:24:56.0108 0x71b0  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
18:24:56.0114 0x71b0  KSecPkg - ok
18:24:56.0165 0x71b0  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
18:24:56.0167 0x71b0  ksthunk - ok
18:24:56.0255 0x71b0  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:24:56.0282 0x71b0  KtmRm - ok
18:24:56.0426 0x71b0  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
18:24:56.0436 0x71b0  LanmanServer - ok
18:24:56.0826 0x71b0  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:24:56.0840 0x71b0  LanmanWorkstation - ok
18:24:56.0931 0x71b0  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
18:24:56.0937 0x71b0  lltdio - ok
18:24:56.0987 0x71b0  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:24:57.0013 0x71b0  lltdsvc - ok
18:24:57.0048 0x71b0  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:24:57.0053 0x71b0  lmhosts - ok
18:24:57.0169 0x71b0  [ 23DE5B62B0445A6F874BE633C95B483E, 39A8E5BD057F5EE049FA48848C5881DCD2CFB16CD9E2A03CC9DDF35F116FEE0B ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:24:57.0180 0x71b0  LMS - ok
18:24:57.0223 0x71b0  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
18:24:57.0229 0x71b0  LSI_FC - ok
18:24:57.0263 0x71b0  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
18:24:57.0267 0x71b0  LSI_SAS - ok
18:24:57.0291 0x71b0  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:24:57.0298 0x71b0  LSI_SAS2 - ok
18:24:57.0326 0x71b0  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:24:57.0331 0x71b0  LSI_SCSI - ok
18:24:57.0364 0x71b0  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
18:24:57.0370 0x71b0  luafv - ok
18:24:57.0429 0x71b0  [ F92B0E478C0FAA6D6661E6E977247E60, 8B26B57C2C60C98CD6273ACA126B2CD0356ADB13A59FEC12882357A6B973123C ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
18:24:57.0432 0x71b0  MBAMProtector - ok
18:24:57.0572 0x71b0  [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
18:24:57.0645 0x71b0  MBAMScheduler - ok
18:24:57.0777 0x71b0  [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
18:24:57.0808 0x71b0  MBAMService - ok
18:24:57.0921 0x71b0  [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
18:24:57.0927 0x71b0  MBAMSwissArmy - ok
18:24:57.0958 0x71b0  [ 15E8ABC06843672955CE26A009533BAD, E7221B7DE9DB45447C68E79C6BFD064713C5974F7E79925BD7DEEF71F73F3E83 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
18:24:57.0967 0x71b0  MBAMWebAccessControl - ok
18:24:58.0016 0x71b0  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
18:24:58.0024 0x71b0  Mcx2Svc - ok
18:24:58.0053 0x71b0  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
18:24:58.0056 0x71b0  megasas - ok
18:24:58.0095 0x71b0  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
18:24:58.0106 0x71b0  MegaSR - ok
18:24:58.0135 0x71b0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
18:24:58.0139 0x71b0  MMCSS - ok
18:24:58.0157 0x71b0  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
18:24:58.0161 0x71b0  Modem - ok
18:24:58.0264 0x71b0  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
18:24:58.0271 0x71b0  monitor - ok
18:24:58.0292 0x71b0  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
18:24:58.0297 0x71b0  mouclass - ok
18:24:58.0329 0x71b0  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
18:24:58.0341 0x71b0  mouhid - ok
18:24:58.0664 0x71b0  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
18:24:58.0669 0x71b0  mountmgr - ok
18:24:58.0837 0x71b0  [ 4E9D8041D352A33332FD6F59A3A78B03, D4E6229B07EF9866993EEE4F6223DC7F1FF1108273FE14A3DC74E65C181DE56A ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:24:58.0843 0x71b0  MozillaMaintenance - ok
18:24:58.0930 0x71b0  [ 9EB89625A82AC961F25E7C865947BF9A, 91DB9530CDE883DC60BE621AC4210ACD069631D9466E37411D9D6AEE587098D9 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
18:24:59.0050 0x71b0  MpFilter - ok
18:24:59.0106 0x71b0  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
18:24:59.0122 0x71b0  mpio - ok
18:24:59.0241 0x71b0  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:24:59.0244 0x71b0  mpsdrv - ok
18:24:59.0466 0x71b0  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
18:24:59.0522 0x71b0  MpsSvc - ok
18:24:59.0575 0x71b0  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:24:59.0581 0x71b0  MRxDAV - ok
18:24:59.0614 0x71b0  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:24:59.0624 0x71b0  mrxsmb - ok
18:24:59.0675 0x71b0  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:24:59.0684 0x71b0  mrxsmb10 - ok
18:24:59.0807 0x71b0  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:24:59.0812 0x71b0  mrxsmb20 - ok
18:24:59.0854 0x71b0  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
18:24:59.0858 0x71b0  msahci - ok
18:24:59.0903 0x71b0  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
18:24:59.0908 0x71b0  msdsm - ok
18:24:59.0961 0x71b0  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
18:24:59.0970 0x71b0  MSDTC - ok
18:25:00.0017 0x71b0  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:25:00.0020 0x71b0  Msfs - ok
18:25:00.0057 0x71b0  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
18:25:00.0063 0x71b0  mshidkmdf - ok
18:25:00.0115 0x71b0  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:25:00.0118 0x71b0  msisadrv - ok
18:25:00.0237 0x71b0  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:25:00.0247 0x71b0  MSiSCSI - ok
18:25:00.0254 0x71b0  msiserver - ok
18:25:00.0324 0x71b0  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
18:25:00.0331 0x71b0  MSKSSRV - ok
18:25:00.0472 0x71b0  [ 89F2AEDC2788696702141AB82C3E7866, E166CBD8D3C708737C37172221945D8E56C25C2CC750889C3CE14AA2DE750F33 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:25:00.0474 0x71b0  MsMpSvc - ok
18:25:00.0499 0x71b0  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
18:25:00.0519 0x71b0  MSPCLOCK - ok
18:25:00.0544 0x71b0  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
18:25:00.0546 0x71b0  MSPQM - ok
18:25:00.0642 0x71b0  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:25:00.0686 0x71b0  MsRPC - ok
18:25:00.0738 0x71b0  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
18:25:00.0749 0x71b0  mssmbios - ok
18:25:00.0790 0x71b0  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
18:25:00.0792 0x71b0  MSTEE - ok
18:25:00.0805 0x71b0  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
18:25:00.0808 0x71b0  MTConfig - ok
18:25:00.0827 0x71b0  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
18:25:00.0835 0x71b0  Mup - ok
18:25:01.0020 0x71b0  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
18:25:01.0054 0x71b0  napagent - ok
18:25:01.0147 0x71b0  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:25:01.0158 0x71b0  NativeWifiP - ok
18:25:01.0301 0x71b0  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:25:01.0349 0x71b0  NDIS - ok
18:25:01.0416 0x71b0  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
18:25:01.0428 0x71b0  NdisCap - ok
18:25:01.0514 0x71b0  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:25:01.0517 0x71b0  NdisTapi - ok
18:25:01.0573 0x71b0  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
18:25:01.0577 0x71b0  Ndisuio - ok
18:25:01.0628 0x71b0  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
18:25:01.0655 0x71b0  NdisWan - ok
18:25:01.0731 0x71b0  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
18:25:01.0742 0x71b0  NDProxy - ok
18:25:01.0774 0x71b0  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
18:25:01.0782 0x71b0  NetBIOS - ok
18:25:01.0837 0x71b0  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
18:25:01.0848 0x71b0  NetBT - ok
18:25:01.0868 0x71b0  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
18:25:01.0870 0x71b0  Netlogon - ok
18:25:01.0929 0x71b0  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
18:25:01.0945 0x71b0  Netman - ok
18:25:02.0021 0x71b0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:25:02.0110 0x71b0  NetMsmqActivator - ok
18:25:02.0124 0x71b0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:25:02.0128 0x71b0  NetPipeActivator - ok
18:25:02.0211 0x71b0  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
18:25:02.0226 0x71b0  netprofm - ok
18:25:02.0264 0x71b0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:25:02.0268 0x71b0  NetTcpActivator - ok
18:25:02.0279 0x71b0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:25:02.0286 0x71b0  NetTcpPortSharing - ok
18:25:02.0329 0x71b0  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
18:25:02.0342 0x71b0  nfrd960 - ok
18:25:02.0644 0x71b0  [ C3E0696C3B42F694C5822776AA6FFFDF, 80C3DEC2C48500F96C9E677450EFC1ADA9FE9FBB70F4CC2D7D9244B1A515418B ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:25:02.0650 0x71b0  NisDrv - ok
18:25:02.0747 0x71b0  [ DCEE3592299B2229A0DB98CB415059A2, 709AAA095DF44DDCB6159CE1635AB05EC666D845445790E569F56B297DC64AC3 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
18:25:02.0780 0x71b0  NisSrv - ok
18:25:02.0825 0x71b0  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:25:02.0855 0x71b0  NlaSvc - ok
18:25:02.0925 0x71b0  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:25:02.0943 0x71b0  Npfs - ok
18:25:03.0032 0x71b0  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
18:25:03.0043 0x71b0  nsi - ok
18:25:03.0171 0x71b0  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:25:03.0176 0x71b0  nsiproxy - ok
18:25:03.0720 0x71b0  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:25:03.0856 0x71b0  Ntfs - ok
18:25:03.0919 0x71b0  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
18:25:03.0927 0x71b0  Null - ok
18:25:03.0975 0x71b0  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:25:03.0981 0x71b0  nvraid - ok
18:25:04.0036 0x71b0  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:25:04.0043 0x71b0  nvstor - ok
18:25:04.0099 0x71b0  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
18:25:04.0104 0x71b0  nv_agp - ok
18:25:04.0161 0x71b0  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
18:25:04.0165 0x71b0  ohci1394 - ok
18:25:04.0313 0x71b0  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:25:04.0320 0x71b0  ose - ok
18:25:04.0835 0x71b0  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:25:05.0048 0x71b0  osppsvc - ok
18:25:05.0101 0x71b0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
18:25:05.0131 0x71b0  p2pimsvc - ok
18:25:05.0185 0x71b0  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
18:25:05.0252 0x71b0  p2psvc - ok
18:25:05.0319 0x71b0  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
18:25:05.0332 0x71b0  Parport - ok
18:25:05.0470 0x71b0  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:25:05.0486 0x71b0  partmgr - ok
18:25:05.0619 0x71b0  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:25:05.0640 0x71b0  PcaSvc - ok
18:25:05.0761 0x71b0  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
18:25:05.0771 0x71b0  pci - ok
18:25:05.0947 0x71b0  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
18:25:05.0949 0x71b0  pciide - ok
18:25:06.0010 0x71b0  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
18:25:06.0019 0x71b0  pcmcia - ok
18:25:06.0063 0x71b0  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
18:25:06.0067 0x71b0  pcw - ok
18:25:06.0101 0x71b0  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:25:06.0135 0x71b0  PEAUTH - ok
18:25:06.0291 0x71b0  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
18:25:06.0317 0x71b0  PerfHost - ok
18:25:06.0557 0x71b0  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
18:25:06.0699 0x71b0  pla - ok
18:25:06.0849 0x71b0  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:25:06.0916 0x71b0  PlugPlay - ok
18:25:06.0951 0x71b0  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
18:25:06.0955 0x71b0  PNRPAutoReg - ok
18:25:06.0980 0x71b0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
18:25:07.0005 0x71b0  PNRPsvc - ok
18:25:07.0147 0x71b0  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:25:07.0189 0x71b0  PolicyAgent - ok
18:25:07.0231 0x71b0  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
18:25:07.0239 0x71b0  Power - ok
18:25:07.0328 0x71b0  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
18:25:07.0333 0x71b0  PptpMiniport - ok
18:25:07.0359 0x71b0  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
18:25:07.0362 0x71b0  Processor - ok
18:25:07.0406 0x71b0  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
18:25:07.0414 0x71b0  ProfSvc - ok
18:25:07.0427 0x71b0  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:25:07.0429 0x71b0  ProtectedStorage - ok
18:25:07.0484 0x71b0  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
18:25:07.0490 0x71b0  Psched - ok
18:25:07.0530 0x71b0  [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
18:25:07.0540 0x71b0  PxHlpa64 - ok
18:25:07.0727 0x71b0  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
18:25:07.0840 0x71b0  ql2300 - ok
18:25:07.0878 0x71b0  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
18:25:07.0886 0x71b0  ql40xx - ok
18:25:07.0939 0x71b0  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
18:25:07.0950 0x71b0  QWAVE - ok
18:25:07.0978 0x71b0  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:25:07.0988 0x71b0  QWAVEdrv - ok
18:25:08.0188 0x71b0  [ A55E7D0D873B2C97585B3B5926AC6ADE, 3BE3895DA7F0888E85B1941525878BA0846A8F215AD39ED8138BB39615468E32 ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
18:25:08.0211 0x71b0  RapiMgr - ok
18:25:08.0239 0x71b0  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:25:08.0241 0x71b0  RasAcd - ok
18:25:08.0322 0x71b0  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
18:25:08.0334 0x71b0  RasAgileVpn - ok
18:25:08.0380 0x71b0  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
18:25:08.0389 0x71b0  RasAuto - ok
18:25:08.0475 0x71b0  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
18:25:08.0483 0x71b0  Rasl2tp - ok
18:25:08.0536 0x71b0  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
18:25:08.0549 0x71b0  RasMan - ok
18:25:08.0580 0x71b0  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:25:08.0589 0x71b0  RasPppoe - ok
18:25:08.0612 0x71b0  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
18:25:08.0616 0x71b0  RasSstp - ok
18:25:08.0676 0x71b0  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:25:08.0688 0x71b0  rdbss - ok
18:25:08.0726 0x71b0  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
18:25:08.0732 0x71b0  rdpbus - ok
18:25:08.0820 0x71b0  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
18:25:08.0823 0x71b0  RDPCDD - ok
18:25:08.0878 0x71b0  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
18:25:08.0882 0x71b0  RDPENCDD - ok
18:25:08.0932 0x71b0  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
18:25:08.0934 0x71b0  RDPREFMP - ok
18:25:09.0000 0x71b0  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:25:09.0004 0x71b0  RdpVideoMiniport - ok
18:25:09.0054 0x71b0  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
18:25:09.0061 0x71b0  RDPWD - ok
18:25:09.0142 0x71b0  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
18:25:09.0148 0x71b0  rdyboost - ok
18:25:09.0196 0x71b0  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:25:09.0202 0x71b0  RemoteAccess - ok
18:25:09.0248 0x71b0  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:25:09.0258 0x71b0  RemoteRegistry - ok
18:25:09.0345 0x71b0  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
18:25:09.0352 0x71b0  RFCOMM - ok
18:25:09.0633 0x71b0  [ 3C957189B31C34D3AD21967B12B6AED7, 878FE6EA03F60592D6D557B905A5119E2CC836C2A6A86ED2867C3C9B0F0FDBA2 ] RoxMediaDB12OEM c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
18:25:09.0701 0x71b0  RoxMediaDB12OEM - ok
18:25:09.0789 0x71b0  [ 2B73088CC2CA757A172B425C9398E5BC, 3D296B4D6F66F7729CC48FE54456E6E6D8207DBA7E31D66653566C128E53163B ] RoxWatch12      c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
18:25:09.0822 0x71b0  RoxWatch12 - ok
18:25:10.0029 0x71b0  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
18:25:10.0034 0x71b0  RpcEptMapper - ok
18:25:10.0080 0x71b0  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
18:25:10.0083 0x71b0  RpcLocator - ok
18:25:10.0190 0x71b0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
18:25:10.0208 0x71b0  RpcSs - ok
18:25:10.0267 0x71b0  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
18:25:10.0276 0x71b0  rspndr - ok
18:25:10.0342 0x71b0  [ 135A64530D7699AD48F29D73A658DD11, 35838AE8ACFD9047C68DD0C8910557A82998E5CD778D5B98D4767AFA4BCE85BB ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
18:25:10.0360 0x71b0  RSUSBSTOR - ok
18:25:10.0436 0x71b0  [ FD978B2BF8A9B2390DCBEF435E9C1F9F, 52CFFE354006CCF087D3651D9D2AF201FD8A8FE8FB7D9CAAC8A527E91838ACE6 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
18:25:10.0454 0x71b0  RTL8167 - ok
18:25:10.0475 0x71b0  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
18:25:10.0477 0x71b0  SamSs - ok
18:25:10.0533 0x71b0  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:25:10.0539 0x71b0  sbp2port - ok
18:25:10.0550 0x71b0  SBRE - ok
18:25:10.0595 0x71b0  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:25:10.0604 0x71b0  SCardSvr - ok
18:25:10.0642 0x71b0  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
18:25:10.0645 0x71b0  scfilter - ok
18:25:10.0966 0x71b0  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
18:25:11.0067 0x71b0  Schedule - ok
18:25:11.0120 0x71b0  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:25:11.0123 0x71b0  SCPolicySvc - ok
18:25:11.0171 0x71b0  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:25:11.0178 0x71b0  SDRSVC - ok
18:25:11.0232 0x71b0  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
18:25:11.0234 0x71b0  secdrv - ok
18:25:11.0281 0x71b0  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
18:25:11.0288 0x71b0  seclogon - ok
18:25:11.0321 0x71b0  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
18:25:11.0327 0x71b0  SENS - ok
18:25:11.0340 0x71b0  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
18:25:11.0344 0x71b0  SensrSvc - ok
18:25:11.0374 0x71b0  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
18:25:11.0384 0x71b0  Serenum - ok
18:25:11.0422 0x71b0  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
18:25:11.0427 0x71b0  Serial - ok
18:25:11.0493 0x71b0  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
18:25:11.0503 0x71b0  sermouse - ok
18:25:11.0559 0x71b0  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
18:25:11.0564 0x71b0  SessionEnv - ok
18:25:11.0654 0x71b0  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
18:25:11.0664 0x71b0  sffdisk - ok
18:25:11.0669 0x71b0  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
18:25:11.0683 0x71b0  sffp_mmc - ok
18:25:11.0689 0x71b0  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
18:25:11.0691 0x71b0  sffp_sd - ok
18:25:11.0729 0x71b0  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
18:25:11.0737 0x71b0  sfloppy - ok
18:25:12.0023 0x71b0  [ 74EC60E20516AAA573BE74F31175270F, 35A68231368DEE46FEF2A4E30BFAAC38F093FC5A362A7491ED38BDE11F0FC356 ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
18:25:12.0107 0x71b0  SftService - ok
18:25:12.0171 0x71b0  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:25:12.0182 0x71b0  SharedAccess - ok
18:25:12.0238 0x71b0  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:25:12.0253 0x71b0  ShellHWDetection - ok
18:25:12.0303 0x71b0  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:25:12.0311 0x71b0  SiSRaid2 - ok
18:25:12.0328 0x71b0  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
18:25:12.0336 0x71b0  SiSRaid4 - ok
18:25:12.0435 0x71b0  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
18:25:12.0440 0x71b0  Smb - ok
18:25:12.0495 0x71b0  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:25:12.0498 0x71b0  SNMPTRAP - ok
18:25:12.0635 0x71b0  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
18:25:12.0638 0x71b0  spldr - ok
18:25:12.0701 0x71b0  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
18:25:12.0724 0x71b0  Spooler - ok
18:25:13.0068 0x71b0  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
18:25:13.0241 0x71b0  sppsvc - ok
18:25:13.0319 0x71b0  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
18:25:13.0323 0x71b0  sppuinotify - ok
18:25:13.0398 0x71b0  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:25:13.0429 0x71b0  srv - ok
18:25:13.0538 0x71b0  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:25:13.0569 0x71b0  srv2 - ok
18:25:13.0612 0x71b0  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:25:13.0618 0x71b0  srvnet - ok
18:25:13.0687 0x71b0  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:25:13.0698 0x71b0  SSDPSRV - ok
18:25:13.0739 0x71b0  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:25:13.0743 0x71b0  SstpSvc - ok
18:25:13.0859 0x71b0  [ 463E33B1EA7AF1E6EB87B66B831DB41A, E76654F8E301829C0F27775A5673A3BA929FE4FA6C1C214A98C2915C5EC189A4 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
18:25:13.0869 0x71b0  STacSV - ok
18:25:13.0923 0x71b0  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
18:25:13.0926 0x71b0  stexstor - ok
18:25:14.0037 0x71b0  [ 4304B75094E106FB5423A290C95841E5, 55670F1DBC9B25A5E31FBEB3CB3C97E2B11CCD6359DA89FF1310C1BBCEC66A80 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
18:25:14.0070 0x71b0  STHDA - ok
18:25:14.0154 0x71b0  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
18:25:14.0192 0x71b0  stisvc - ok
18:25:14.0282 0x71b0  [ 7731F46EC0D687A931CBA063E8F90EF0, 5CF996A209756B901316C4406C7D3E52ECC9C15A1BDB0D4D9C77846AB29FD040 ] stllssvr        c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
18:25:14.0284 0x71b0  stllssvr - ok
18:25:14.0340 0x71b0  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
18:25:14.0348 0x71b0  swenum - ok
18:25:14.0424 0x71b0  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
18:25:14.0454 0x71b0  swprv - ok
18:25:14.0547 0x71b0  [ 8A3FBCB3D6D4710730D27DA4392A4863, 392CCBB54FF2017EDA147283F479E8DED525F41A316EAE114596BBA02D04AF82 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
18:25:14.0569 0x71b0  SynTP - ok
18:25:14.0781 0x71b0  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
18:25:14.0900 0x71b0  SysMain - ok
18:25:14.0950 0x71b0  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:25:14.0955 0x71b0  TabletInputService - ok
18:25:15.0012 0x71b0  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:25:15.0023 0x71b0  TapiSrv - ok
18:25:15.0062 0x71b0  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
18:25:15.0073 0x71b0  TBS - ok
18:25:15.0227 0x71b0  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:25:15.0327 0x71b0  Tcpip - ok
18:25:15.0550 0x71b0  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
18:25:15.0633 0x71b0  TCPIP6 - ok
18:25:15.0715 0x71b0  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:25:15.0718 0x71b0  tcpipreg - ok
18:25:15.0754 0x71b0  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
18:25:15.0759 0x71b0  TDPIPE - ok
18:25:15.0793 0x71b0  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
18:25:15.0803 0x71b0  TDTCP - ok
18:25:15.0852 0x71b0  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:25:15.0859 0x71b0  tdx - ok
18:25:15.0896 0x71b0  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
18:25:15.0905 0x71b0  TermDD - ok
18:25:15.0956 0x71b0  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
18:25:16.0000 0x71b0  TermService - ok
18:25:16.0052 0x71b0  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
18:25:16.0057 0x71b0  Themes - ok
18:25:16.0083 0x71b0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
18:25:16.0100 0x71b0  THREADORDER - ok
18:25:16.0144 0x71b0  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
18:25:16.0153 0x71b0  TrkWks - ok
18:25:16.0266 0x71b0  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:25:16.0272 0x71b0  TrustedInstaller - ok
18:25:16.0320 0x71b0  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
18:25:16.0323 0x71b0  tssecsrv - ok
18:25:16.0358 0x71b0  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
18:25:16.0363 0x71b0  TsUsbFlt - ok
18:25:16.0441 0x71b0  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
18:25:16.0446 0x71b0  tunnel - ok
18:25:16.0518 0x71b0  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
18:25:16.0522 0x71b0  uagp35 - ok
18:25:16.0719 0x71b0  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:25:16.0752 0x71b0  udfs - ok
18:25:16.0831 0x71b0  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:25:16.0835 0x71b0  UI0Detect - ok
18:25:16.0961 0x71b0  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
18:25:16.0964 0x71b0  uliagpkx - ok
18:25:17.0030 0x71b0  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
18:25:17.0038 0x71b0  umbus - ok
18:25:17.0200 0x71b0  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
18:25:17.0208 0x71b0  UmPass - ok
18:25:17.0520 0x71b0  [ CC3775100ABA633984F73DFAE1F55CAE, 845F129289BB73FD78A6C3B497F17BA973FD691BC9242200F81993417C803FE9 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:25:17.0618 0x71b0  UNS - ok
18:25:17.0705 0x71b0  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
18:25:17.0716 0x71b0  upnphost - ok
18:25:17.0811 0x71b0  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
18:25:17.0813 0x71b0  USBAAPL64 - ok
18:25:17.0867 0x71b0  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
18:25:17.0873 0x71b0  usbccgp - ok
18:25:17.0948 0x71b0  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
18:25:17.0956 0x71b0  usbcir - ok
18:25:17.0992 0x71b0  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
18:25:17.0997 0x71b0  usbehci - ok
18:25:18.0047 0x71b0  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
18:25:18.0070 0x71b0  usbhub - ok
18:25:18.0102 0x71b0  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
18:25:18.0105 0x71b0  usbohci - ok
18:25:18.0223 0x71b0  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
18:25:18.0232 0x71b0  usbprint - ok
18:25:18.0282 0x71b0  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
18:25:18.0286 0x71b0  usbscan - ok
18:25:18.0330 0x71b0  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:25:18.0337 0x71b0  USBSTOR - ok
18:25:18.0383 0x71b0  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
18:25:18.0388 0x71b0  usbuhci - ok
18:25:18.0486 0x71b0  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
18:25:18.0503 0x71b0  usbvideo - ok
18:25:18.0540 0x71b0  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
18:25:18.0550 0x71b0  UxSms - ok
18:25:18.0563 0x71b0  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
18:25:18.0565 0x71b0  VaultSvc - ok
18:25:18.0671 0x71b0  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
18:25:18.0678 0x71b0  vdrvroot - ok
18:25:18.0777 0x71b0  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
18:25:18.0800 0x71b0  vds - ok
18:25:18.0869 0x71b0  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
18:25:18.0872 0x71b0  vga - ok
18:25:18.0891 0x71b0  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
18:25:18.0892 0x71b0  VgaSave - ok
18:25:18.0933 0x71b0  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
18:25:18.0942 0x71b0  vhdmp - ok
18:25:18.0997 0x71b0  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
18:25:19.0005 0x71b0  viaide - ok
18:25:19.0024 0x71b0  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:25:19.0029 0x71b0  volmgr - ok
18:25:19.0086 0x71b0  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:25:19.0097 0x71b0  volmgrx - ok
18:25:19.0138 0x71b0  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:25:19.0152 0x71b0  volsnap - ok
18:25:19.0184 0x71b0  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
18:25:19.0190 0x71b0  vsmraid - ok
18:25:19.0363 0x71b0  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
18:25:19.0451 0x71b0  VSS - ok
18:25:19.0499 0x71b0  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
18:25:19.0508 0x71b0  vwifibus - ok
18:25:19.0545 0x71b0  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
18:25:19.0550 0x71b0  vwififlt - ok
18:25:19.0643 0x71b0  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
18:25:19.0646 0x71b0  vwifimp - ok
18:25:19.0688 0x71b0  [ B8AAEFAC3B48CB8CD71BA0FAA4B4242B, B0721024F3FA8CA523FD3E0040274F7B4536A87518351219BE21785F655F1B7C ] vzandnetdiag    C:\Windows\system32\DRIVERS\lgvzandnetdiag64.sys
18:25:19.0692 0x71b0  vzandnetdiag - ok
18:25:19.0708 0x71b0  [ DA92AD6D6F63FC74A5E29C70B3B9763A, 04C937EFBE0C6892D7A5CCF849849148E41E4EC75F125A67A798807587FFF0A3 ] vzandnetmodem   C:\Windows\system32\DRIVERS\lgvzandnetmdm64.sys
18:25:19.0716 0x71b0  vzandnetmodem - ok
18:25:19.0779 0x71b0  [ BF386E6B742314722F86395E07A01F93, 8DA36128717DDC5CED765FCE44792388E6190EB292A95A6970ADF09BD693D65E ] vzandnetndis    C:\Windows\system32\DRIVERS\lgvzandnetndis64.sys
18:25:19.0784 0x71b0  vzandnetndis - ok
18:25:19.0882 0x71b0  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
18:25:19.0898 0x71b0  W32Time - ok
18:25:19.0942 0x71b0  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
18:25:19.0945 0x71b0  WacomPen - ok
18:25:20.0117 0x71b0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
18:25:20.0122 0x71b0  WANARP - ok
18:25:20.0128 0x71b0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:25:20.0131 0x71b0  Wanarpv6 - ok
18:25:20.0440 0x71b0  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
18:25:20.0519 0x71b0  WatAdminSvc - ok
18:25:20.0637 0x71b0  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
18:25:20.0728 0x71b0  wbengine - ok
18:25:20.0798 0x71b0  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
18:25:20.0807 0x71b0  WbioSrvc - ok
18:25:20.0911 0x71b0  [ 8BDA6DB43AA54E8BB5E0794541DDC209, 8753C507BE77B019A3403AF5252434A01DB9F9332E58AC3783ABCE3D21AD9DD4 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
18:25:20.0937 0x71b0  WcesComm - ok
18:25:20.0997 0x71b0  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:25:21.0036 0x71b0  wcncsvc - ok
18:25:21.0225 0x71b0  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:25:21.0235 0x71b0  WcsPlugInService - ok
18:25:21.0276 0x71b0  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
18:25:21.0279 0x71b0  Wd - ok
18:25:21.0357 0x71b0  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:25:21.0397 0x71b0  Wdf01000 - ok
18:25:21.0517 0x71b0  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:25:21.0525 0x71b0  WdiServiceHost - ok
18:25:21.0535 0x71b0  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:25:21.0541 0x71b0  WdiSystemHost - ok
18:25:21.0599 0x71b0  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
18:25:21.0664 0x71b0  WebClient - ok
18:25:21.0705 0x71b0  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:25:21.0718 0x71b0  Wecsvc - ok
18:25:21.0737 0x71b0  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:25:21.0743 0x71b0  wercplsupport - ok
18:25:21.0780 0x71b0  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
18:25:21.0789 0x71b0  WerSvc - ok
18:25:21.0868 0x71b0  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
18:25:21.0872 0x71b0  WfpLwf - ok
18:25:21.0914 0x71b0  [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
18:25:21.0922 0x71b0  WimFltr - ok
18:25:21.0946 0x71b0  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
18:25:21.0965 0x71b0  WIMMount - ok
18:25:21.0987 0x71b0  WinDefend - ok
18:25:22.0020 0x71b0  WinHttpAutoProxySvc - ok
18:25:22.0175 0x71b0  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:25:22.0196 0x71b0  Winmgmt - ok
18:25:22.0552 0x71b0  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
18:25:22.0640 0x71b0  WinRM - ok
18:25:22.0743 0x71b0  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WINUSB          C:\Windows\system32\DRIVERS\WinUSB.SYS
18:25:22.0749 0x71b0  WINUSB - ok
18:25:22.0862 0x71b0  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
18:25:22.0923 0x71b0  Wlansvc - ok
18:25:23.0023 0x71b0  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:25:23.0026 0x71b0  wlcrasvc - ok
18:25:23.0480 0x71b0  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:25:23.0571 0x71b0  wlidsvc - ok
18:25:23.0626 0x71b0  [ DE816A0624D54D68E1FB8A9028DCF81A, 30C718E72E98F20BE55A7B74E0C6FAB6A9F236E0D41D1E224C8A32771A440641 ] wltrysvc        C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
18:25:23.0633 0x71b0  wltrysvc - ok
18:25:23.0742 0x71b0  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
18:25:23.0745 0x71b0  WmiAcpi - ok
18:25:23.0778 0x71b0  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:25:23.0788 0x71b0  wmiApSrv - ok
18:25:23.0861 0x71b0  WMPNetworkSvc - ok
18:25:23.0899 0x71b0  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
18:25:23.0902 0x71b0  WPCSvc - ok
18:25:23.0984 0x71b0  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:25:23.0992 0x71b0  WPDBusEnum - ok
18:25:24.0033 0x71b0  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:25:24.0040 0x71b0  ws2ifsl - ok
18:25:24.0122 0x71b0  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
18:25:24.0129 0x71b0  wscsvc - ok
18:25:24.0180 0x71b0  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
18:25:24.0188 0x71b0  WSDPrintDevice - ok
18:25:24.0360 0x71b0  [ 4A2A5C50DD1A63577D3ACA94269FBC7F, F75C1906D431CF871AD954218DF32A0F206E45FF49332DEF9F13C0A36A407047 ] WSDScan         C:\Windows\system32\DRIVERS\WSDScan.sys
18:25:24.0367 0x71b0  WSDScan - ok
18:25:24.0371 0x71b0  WSearch - ok
18:25:24.0625 0x71b0  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
18:25:24.0766 0x71b0  wuauserv - ok
18:25:24.0833 0x71b0  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:25:24.0840 0x71b0  WudfPf - ok
18:25:24.0943 0x71b0  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
18:25:24.0953 0x71b0  WUDFRd - ok
18:25:24.0979 0x71b0  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:25:24.0994 0x71b0  wudfsvc - ok
18:25:25.0107 0x71b0  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
18:25:25.0135 0x71b0  WwanSvc - ok
18:25:25.0201 0x71b0  [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
18:25:25.0223 0x71b0  yukonw7 - ok
18:25:25.0334 0x71b0  ================ Scan global ===============================
18:25:25.0365 0x71b0  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
18:25:25.0414 0x71b0  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
18:25:25.0432 0x71b0  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
18:25:25.0476 0x71b0  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
18:25:25.0521 0x71b0  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
18:25:25.0534 0x71b0  [ Global ] - ok
18:25:25.0537 0x71b0  ================ Scan MBR ==================================
18:25:25.0538 0x71b0  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:25:25.0539 0x71b0  Suspicious mbr (Forged): \Device\Harddisk0\DR0
18:25:25.0714 0x71b0  \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c ( 0 )
18:25:25.0714 0x71b0  \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected
18:25:28.0184 0x71b0  ================ Scan VBR ==================================
18:25:28.0218 0x71b0  [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1
18:25:28.0221 0x71b0  \Device\Harddisk0\DR0\Partition1 - ok
18:25:28.0233 0x71b0  [ 3F8C19678E458FC3616F38C6FD992C7D ] \Device\Harddisk0\DR0\Partition2
18:25:28.0238 0x71b0  \Device\Harddisk0\DR0\Partition2 - ok
18:25:28.0238 0x71b0  ================ Scan generic autorun ======================
18:25:28.0286 0x71b0  [ 82A420C1388C76FD18018B0676933D33, B9A97A07F77B641B9FC3AEC04DD48C52DA850DB794AE757F9863B9FA166607A6 ] C:\Program Files\IDT\WDM\sttray64.exe
18:25:28.0303 0x71b0  SysTrayApp - ok
18:25:28.0304 0x71b0  SynTPEnh - ok
18:25:28.0864 0x71b0  [ 4A8C07E86AF82ED7F8677BDDDAD9A1A3, F81E8DCB6CDE0CF56487E308811943A9081EDCB8C5F13CCE26AE614C65BD1F2D ] C:\Program Files\Dell\QuickSet\QuickSet.exe
18:25:28.0989 0x71b0  QuickSet - ok
18:25:29.0653 0x71b0  [ D98EF2E62B94F243E1BAF4350BF48C61, 3B75F64F0A2C8BAFDBBB3DE13060455D0B47D09658F8A67703F149B48111DCB3 ] C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe
18:25:29.0949 0x71b0  Broadcom Wireless Manager UI - ok
18:25:30.0090 0x71b0  [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\Windows\WindowsMobile\wmdcBase.exe
18:25:30.0120 0x71b0  Windows Mobile-based device management - ok
18:25:30.0152 0x71b0  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
18:25:30.0156 0x71b0  Logitech Download Assistant - ok
18:25:30.0197 0x71b0  [ 810A5F70CEB063CEC85360394BEC2C56, FCC289B23B2347AD7C34B48E6EFB1914B5ED8D9DD397B0816D94747B168DFD64 ] C:\Windows\system32\igfxtray.exe
18:25:30.0203 0x71b0  IgfxTray - ok
18:25:30.0247 0x71b0  [ 2FE8F6A30802B69A3F501607F346DEEA, CD603DB6055861E9EAD397234120FBE0D3CACEFADB0D6001099CF0DA9DF1CC34 ] C:\Windows\system32\hkcmd.exe
18:25:30.0274 0x71b0  HotKeysCmds - ok
18:25:30.0424 0x71b0  [ CA1941B93BA45B7EA4D7D9F451B25C84, B0648762862931CB12004C92CD7A7EF8E3B1C14DD33C980A490D8AA56F7AA723 ] C:\Windows\system32\igfxpers.exe
18:25:30.0455 0x71b0  Persistence - ok
18:25:30.0741 0x71b0  [ 569AC1376B12D4083FC66CC7A304F234, DD209F09573F10A77D710E30EF3D0461D2E8F4E5F18106B18EFB587C88393460 ] c:\Program Files\Microsoft Security Client\msseces.exe
18:25:30.0797 0x71b0  MSC - ok
18:25:30.0939 0x71b0  [ CBEBF85763814AD2CA23491050B08D76, E67ECEB3B9921DF8EB4236FC811E4C40AE7EE3272ED5D1E6CBF1ACB1E205963B ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
18:25:30.0953 0x71b0  IAStorIcon - ok
18:25:31.0015 0x71b0  [ 452FA961163EF4AEE4815796A13AB2CF, 14DC422082F96F5C21C41A5E5F6E8445547CC4B02B18F0A86A34669CA2CE18A7 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
18:25:31.0026 0x71b0  Adobe Reader Speed Launcher - ok
18:25:31.0423 0x71b0  [ 216D599379984AD5E6D845178231FDBE, C929BE973B4F32CEB96559155674AB1A5774667D1B7E0876BF30DFA08C472846 ] C:\Program Files (x86)\System Registration\prodreg.exe
18:25:31.0601 0x71b0  Dell Registration - ok
18:25:31.0776 0x71b0  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
18:25:31.0838 0x71b0  Sidebar - ok
18:25:31.0930 0x71b0  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
18:25:31.0937 0x71b0  mctadmin - ok
18:25:32.0040 0x71b0  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
18:25:32.0175 0x71b0  Sidebar - ok
18:25:32.0185 0x71b0  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
18:25:32.0189 0x71b0  mctadmin - ok
18:25:32.0477 0x71b0  [ 6A9ED136D386414EA6E0C8B53641AC57, E8B200FF991F9F6247FC0F78838A86C2F00F5CEA3B4C5D784575E215B5DD0142 ] C:\Users\Guest\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Best Buy\Best Buy pc app.appref-ms
18:25:32.0477 0x71b0  Best Buy pc app - ok
18:25:32.0481 0x71b0  Waiting for KSN requests completion. In queue: 118
18:25:33.0481 0x71b0  Waiting for KSN requests completion. In queue: 118
18:25:34.0481 0x71b0  Waiting for KSN requests completion. In queue: 118
18:25:36.0577 0x71b0  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.5.216.0 ), 0x61000 ( enabled : updated )
18:25:36.0716 0x71b0  Win FW state via NFP2: enabled
18:25:39.0180 0x71b0  ============================================================
18:25:39.0180 0x71b0  Scan finished
18:25:39.0180 0x71b0  ============================================================
18:25:39.0194 0x0314  Detected object count: 1
18:25:39.0194 0x0314  Actual detected object count: 1
18:25:57.0614 0x0314  \Device\Harddisk0\DR0\# - copied to quarantine
18:26:01.0978 0x0314  \Device\Harddisk0\DR0 - copied to quarantine
18:26:04.0633 0x0314  \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
18:26:05.0010 0x0314  \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
18:26:05.0524 0x0314  \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
18:26:07.0024 0x0314  \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
18:26:08.0191 0x0314  \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
18:26:08.0504 0x0314  \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
18:26:08.0584 0x0314  \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
18:26:08.0796 0x0314  \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
18:26:09.0045 0x0314  \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
18:26:09.0144 0x0314  \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
18:26:09.0157 0x0314  \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
18:26:09.0167 0x0314  \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
18:26:09.0181 0x0314  \Device\Harddisk0\DR0\TDLFS\cmd32.dll - copied to quarantine
18:26:09.0968 0x0314  \Device\Harddisk0\DR0\TDLFS\ua - copied to quarantine
18:26:10.0216 0x0314  \Device\Harddisk0\DR0\TDLFS\x - copied to quarantine
18:26:10.0497 0x0314  \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - will be cured on reboot
18:26:10.0591 0x0314  \Device\Harddisk0\DR0 - ok
18:26:12.0531 0x0314  \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Cure
18:26:13.0086 0x0314  KLMD registered as C:\Windows\system32\drivers\13005191.sys
18:27:36.0002 0x3ac8  Deinitialize success

 

 

 

aswMBR version 1.0.1.2041 Copyright© 2014 AVAST Software
Run date: 2014-08-06 18:37:42
-----------------------------
18:37:42.309    OS Version: Windows x64 6.1.7601 Service Pack 1
18:37:42.310    Number of processors: 4 586 0x2505
18:37:42.311    ComputerName: MIKE-PC  UserName: Mike
18:37:44.118    Initialize success
18:37:44.210    VM: initialized successfully
18:37:44.248    VM: Intel CPU supported
18:37:49.187    VM: supported disk I/O iaStor.sys
18:37:57.909    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
18:37:57.913    Disk 0 Vendor: ST950032 D005 Size: 476940MB BusType: 3
18:37:58.064    VM: Disk 0 MBR read successfully
18:37:58.070    Disk 0 MBR scan
18:37:58.076    Disk 0 Windows 7 default MBR code
18:37:58.086    Disk 0 Partition 1 00     DE Dell Utility Dell 8.0      100 MB offset 2048
18:37:58.100    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS        15000 MB offset 206848
18:37:58.111    Disk 0 Boot: NTFS     code=1
18:37:58.138    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       461838 MB offset 30926848
18:37:58.259    Disk 0 scanning C:\Windows\system32\drivers
18:38:09.535    Service scanning
18:38:35.659    Modules scanning
18:38:35.678    Disk 0 trace - called modules:
18:38:35.710    ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
18:38:35.720    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006991060]
18:38:35.729    3 CLASSPNP.SYS[fffff8800120143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800497f050]
18:38:35.740    Scan finished successfully
18:39:05.641    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
18:39:05.651    Disk 0 Vendor: ST950032 D005 Size: 476940MB BusType: 3
18:39:05.779    VM: Disk 0 MBR read successfully
18:39:05.790    Disk 0 MBR scan
18:39:05.800    Disk 0 Windows 7 default MBR code
18:39:05.823    Disk 0 Partition 1 00     DE Dell Utility Dell 8.0      100 MB offset 2048
18:39:05.833    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS        15000 MB offset 206848
18:39:05.840    Disk 0 Boot: NTFS     code=1
18:39:05.863    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       461838 MB offset 30926848
18:39:05.940    Disk 0 scanning C:\Windows\system32\drivers
18:39:17.668    Service scanning
18:39:38.245    Modules scanning
18:39:38.264    Disk 0 trace - called modules:
18:39:38.274    
18:39:38.284    Scan finished successfully
18:40:10.413    Disk 0 MBR has been saved successfully to "C:\Users\Mike\Desktop\MBR.dat"
18:40:10.472    The log file has been saved successfully to "C:\Users\Mike\Desktop\aswMBR.txt"


 

Attached Files

  • Attached File  MBR.zip   571bytes   0 downloads


#7 nasdaq

nasdaq

  • Malware Response Team
  • 40,730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:06:08 AM

Posted 07 August 2014 - 10:45 AM

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.
 
start
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll [X]
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [X]
C:\Users\Mike\AppData\Local\Temp\InstHelper.exe
C:\Users\Mike\AppData\Local\Temp\lqawnmi8.dll
C:\Users\Mike\AppData\Local\Temp\{E36ED432-8CC0-42BB-B3B4-01B2759C835C}.exe

End
Save the files as fixlist.txt into the same folder as FRST

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
p.s.
If the SecurityCheck program fails to run for any reason, run it as an Administrator.

If the site is busy or not available use this mirror site:
http://www.bleepingcomputer.com/download/securitycheck/
===

How is the computer running now?

#8 celticsfan33

celticsfan33
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:07:08 AM

Posted 07 August 2014 - 06:56 PM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 02-08-2014
Ran by Mike at 2014-08-07 18:20:00 Run:1
Running from C:\Users\Mike\Desktop\FRST64
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll [X]
BHO: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
S1 SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys [X]
C:\Users\Mike\AppData\Local\Temp\InstHelper.exe
C:\Users\Mike\AppData\Local\Temp\lqawnmi8.dll
C:\Users\Mike\AppData\Local\Temp\{E36ED432-8CC0-42BB-B3B4-01B2759C835C}.exe

End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\GoToAssist" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully.
"HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
SBRE => Service deleted successfully.
C:\Users\Mike\AppData\Local\Temp\InstHelper.exe => Moved successfully.
C:\Users\Mike\AppData\Local\Temp\lqawnmi8.dll => Moved successfully.
C:\Users\Mike\AppData\Local\Temp\{E36ED432-8CC0-42BB-B3B4-01B2759C835C}.exe => Moved successfully.

==== End of Fixlog ====

 

 

 

 Results of screen317's Security Check version 0.99.86  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Security Center service is not running! This report may not be accurate!
 Windows Firewall Enabled!  
Microsoft Security Essentials   
 Antivirus up to date!  
`````````Anti-malware/Other Utilities Check:`````````
 AVG PC TuneUp Language Pack (en-US)
 Adobe Flash Player 14.0.0.145  
 Adobe Reader 9 Adobe Reader out of Date!
 Mozilla Firefox (31.0)
````````Process Check: objlist.exe by Laurent````````  
 Microsoft Security Essentials MSMpEng.exe
 Microsoft Security Essentials msseces.exe
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbam.exe  
 Malwarebytes Anti-Malware mbamscheduler.exe   
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 16% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````

 

It seems to be running better now. Do you think it's all set?



#9 nasdaq

nasdaq

  • Malware Response Team
  • 40,730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:06:08 AM

Posted 08 August 2014 - 06:59 AM

The TDSSKiller tool removed the infection.
===


Critical vulnerabilities have been identified in old version of Adobe Flash Player please get the latest version.

Flash test site:
http://www.adobe.com/software/flash/about/
Install the new version or if you have the latest close the windows.

Flash Player Help / Find version
http://helpx.adobe.com/flash-player/kb/find-version-flash-player.html#main_Find_the_Flash_Player_version_installed_on_your_machine
===

If all is well.

To learn more about how to protect yourself while on the internet read this little guide Best security practices Keep safe.
http://www.bleepingcomputer.com/forums/t/407147/answers-to-common-security-questions-best-practices/
===

Edited by nasdaq, 08 August 2014 - 06:59 AM.


#10 nasdaq

nasdaq

  • Malware Response Team
  • 40,730 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:06:08 AM

Posted 14 August 2014 - 08:50 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users