Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Can't Download Files from Email


  • This topic is locked This topic is locked
13 replies to this topic

#1 LittleGreenDots

LittleGreenDots

  • Members
  • 444 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Metro Detroit Area
  • Local time:01:40 AM

Posted 07 August 2014 - 02:27 PM

I work at home and send myself work files via my email address.  However, I am unable to download files at work.  The 'download' option is not even listed in my email.  My landlord provides free wi-fi to us.  He doesn't have an IT or special network and shares his password with us.  I use Windows 7.  At first I thought I might have an issue with my Firefox add-ons:  NoScrpt and Ad-Block Pro.  But when I disable these add-ons, I still can't download files from my email

 

What could prevent me from downloading files?  I have a laptop in the office and that option is available so I know the cause is on the problem computer.

 

Am I infected?



BC AdBot (Login to Remove)

 


#2 LittleGreenDots

LittleGreenDots
  • Topic Starter

  • Members
  • 444 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Metro Detroit Area
  • Local time:01:40 AM

Posted 08 August 2014 - 05:12 PM

BTW - I have Avast AV and it reports nothing.  I've also run Malware Bytes and nothing there, either.  I can't find my Windows disk so I can't reinstall Windows.



#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:40 AM

Posted 11 August 2014 - 09:03 PM

I don't think it is , but lets remove any first.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 LittleGreenDots

LittleGreenDots
  • Topic Starter

  • Members
  • 444 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Metro Detroit Area
  • Local time:01:40 AM

Posted 13 August 2014 - 04:38 PM

MiniToolBox by Farbar  Version: 21-07-2014
Ran by RoyalOak_Guitar (administrator) on 12-08-2014 at 15:36:23
Running from "C:\Users\RoyalOak_Guitar\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek RTL8191SE Wireless LAN 802.11n PCI-E NIC = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : GuitarTeacher
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek RTL8191SE Wireless LAN 802.11n PCI-E NIC
   Physical Address. . . . . . . . . : 00-26-B6-60-B8-2D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::d57c:f935:93fd:50fa%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.254.100(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, August 12, 2014 3:31:01 PM
   Lease Expires . . . . . . . . . . : Wednesday, August 13, 2014 3:31:01 PM
   Default Gateway . . . . . . . . . : 192.168.254.1
   DHCP Server . . . . . . . . . . . : 192.168.254.1
   DHCPv6 IAID . . . . . . . . . . . : 318777014
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-BD-3C-20-00-26-22-F7-B2-C8
   DNS Servers . . . . . . . . . . . : 10.1.10.1
                                       192.168.254.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : hsd1.mi.comcast.net.
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 00-26-22-F7-B2-C8
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{B0DE15D8-6DD2-4135-8F50-B4834539DB54}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:c88:2fe3:3f57:19b(Preferred)
   Link-local IPv6 Address . . . . . : fe80::c88:2fe3:3f57:19b%15(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  www
Address:  10.1.10.1

Name:    google.com
Addresses:  2607:f8b0:4001:c05::64
      64.233.182.101
      64.233.182.138
      64.233.182.100
      64.233.182.113
      64.233.182.102
      64.233.182.139


Pinging google.com [74.125.70.101] with 32 bytes of data:
Reply from 74.125.70.101: bytes=32 time=41ms TTL=42
Reply from 74.125.70.101: bytes=32 time=38ms TTL=42

Ping statistics for 74.125.70.101:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 38ms, Maximum = 41ms, Average = 39ms
Server:  www
Address:  10.1.10.1

Name:    yahoo.com
Addresses:  98.138.253.109
      98.139.183.24
      206.190.36.45


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=73ms TTL=47
Reply from 206.190.36.45: bytes=32 time=80ms TTL=47

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 73ms, Maximum = 80ms, Average = 76ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 12...00 26 b6 60 b8 2d ......Realtek RTL8191SE Wireless LAN 802.11n PCI-E NIC
 10...00 26 22 f7 b2 c8 ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 11...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.254.1  192.168.254.100     30
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
    192.168.254.0    255.255.255.0         On-link   192.168.254.100    286
  192.168.254.100  255.255.255.255         On-link   192.168.254.100    286
  192.168.254.255  255.255.255.255         On-link   192.168.254.100    286
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link   192.168.254.100    286
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link   192.168.254.100    286
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 15     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 15     58 2001::/32                On-link
 15    306 2001:0:9d38:6abd:c88:2fe3:3f57:19b/128
                                    On-link
 12    286 fe80::/64                On-link
 15    306 fe80::/64                On-link
 15    306 fe80::c88:2fe3:3f57:19b/128
                                    On-link
 12    286 fe80::d57c:f935:93fd:50fa/128
                                    On-link
  1    306 ff00::/8                 On-link
 15    306 ff00::/8                 On-link
 12    286 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 08 C:\windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 12 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 13 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 14 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 15 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 16 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 17 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 18 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 19 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 20 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 21 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 22 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 23 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 24 C:\windows\system32\mswsock.dll [231424] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/12/2014 03:34:20 PM) (Source: MsiInstaller) (User: GuitarTeacher)
Description: Product: Adobe Reader XI - Update '{AC76BA86-7AD7-0000-2550-7A8C40011007}' could not be installed. Error code 1625.

Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for

instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (08/12/2014 03:34:20 PM) (Source: MsiInstaller) (User: GuitarTeacher)
Description: Product: Adobe Reader XI - Update '{AC76BA86-7AD7-0000-2550-7A8C40011008}' could not be installed. Error code 1625.

Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for

instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (08/04/2014 04:38:29 PM) (Source: Application Error) (User: )
Description: Faulting application name: GoogleUpdate.exe, version: 1.2.183.9, time stamp: 0x4ad50798
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521ea91c
Exception code: 0xc0000005
Fault offset: 0x00034d60
Faulting process id: 0xb0c
Faulting application start time: 0xGoogleUpdate.exe0
Faulting application path: GoogleUpdate.exe1
Faulting module path: GoogleUpdate.exe2
Report Id: GoogleUpdate.exe3

Error: (07/15/2014 05:42:32 PM) (Source: Application Error) (User: )
Description: Faulting application name: plugin-container.exe, version: 30.0.0.5269, time stamp: 0x53914233
Faulting module name: mozalloc.dll, version: 30.0.0.5269, time stamp: 0x53911393
Exception code: 0x80000003
Fault offset: 0x0000141b
Faulting process id: 0xfd4
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3

Error: (06/16/2014 04:16:49 PM) (Source: MsiInstaller) (User: GuitarTeacher)
Description: Product: Adobe Reader XI - Update '{AC76BA86-7AD7-0000-2550-7A8C40011007}' could not be installed. Error code 1625.

Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for

instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (06/10/2014 05:03:35 PM) (Source: MsiInstaller) (User: GuitarTeacher)
Description: Product: Adobe Reader XI - Update '{AC76BA86-7AD7-0000-2550-7A8C40011007}' could not be installed. Error code 1625.

Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for

instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (06/09/2014 05:02:32 PM) (Source: MsiInstaller) (User: GuitarTeacher)
Description: Product: Adobe Reader XI - Update '{AC76BA86-7AD7-0000-2550-7A8C40011007}' could not be installed. Error code 1625.

Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for

instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (06/07/2014 08:44:25 AM) (Source: MsiInstaller) (User: GuitarTeacher)
Description: Product: Adobe Reader XI - Update '{AC76BA86-7AD7-0000-2550-7A8C40011007}' could not be installed. Error code 1625.

Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for

instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (06/05/2014 04:01:48 PM) (Source: MsiInstaller) (User: GuitarTeacher)
Description: Product: Adobe Reader XI - Update '{AC76BA86-7AD7-0000-2550-7A8C40011007}' could not be installed. Error code 1625.

Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for

instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

Error: (06/05/2014 11:48:12 AM) (Source: MsiInstaller) (User: GuitarTeacher)
Description: Product: Adobe Reader XI - Update '{AC76BA86-7AD7-0000-2550-7A8C40011007}' could not be installed. Error code 1625.

Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for

instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127


System errors:
=============
Error: (08/12/2014 03:30:46 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (08/12/2014 03:30:46 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (08/11/2014 11:44:47 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (08/11/2014 11:44:47 AM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (08/09/2014 07:56:34 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (08/09/2014 07:56:34 AM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (08/07/2014 02:04:28 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (08/07/2014 11:24:41 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (08/07/2014 11:24:41 AM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (08/07/2014 11:21:33 AM) (Source: atikmdag) (User: )
Description: Display is not active


Microsoft Office Sessions:
=========================


=========================== Installed Programs ============================
32 Bit HP CIO Components Installer (Version: 6.1.1 - Hewlett-Packard) Hidden
8000A809_BasicWeb (Version: 50.0.165.000 - Hewlett-Packard) Hidden
8000A809_Help_BasicWeb (Version: 1.00.0000 - Hewlett-Packard) Hidden
950000 ClickArt (HKLM\...\InstallShield_{8FF7AA7C-CEA8-447A-8624-3E4F12FB3BCD}) (Version: 3.21.0000 - broderbund)
950000 ClickArt (Version: 3.21.0000 - broderbund) Hidden
Acrobat.com (HKLM\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.2.443 - Adobe Systems Incorporated)
Acrobat.com (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe Acrobat 9 Pro - English, Français, Deutsch (Version: 9.5.5 - Adobe Systems) Hidden
Adobe Acrobat 9.5.5 - CPSID_83708 (HKLM\...\{AC76BA86-1033-F400-7760-000000000004}_955) (Version:  - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.8.0.870 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.8.0.870 - Adobe Systems Incorporated) Hidden
Adobe Anchor Service CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Asset Services CS4 (Version: 4 - Adobe Systems Incorporated) Hidden
Adobe Bridge CS4 (Version: 3 - Adobe Systems Incorporated) Hidden
Adobe CMaps CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color - Photoshop Specific CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color EU Extra Settings CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color JA Extra Settings CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color NA Recommended Settings CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color Video Profiles CS CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 4 Design Premium (HKLM\...\Adobe_55230b0b70661df0f212e88f0b655f7) (Version: 4.0 - Adobe Systems Incorporated)
Adobe Creative Suite 4 Design Premium (Version: 4.0 - Adobe Systems Incorporated) Hidden
Adobe CSI CS4 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Default Language CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Device Central CS4 (Version: 2 - Adobe Systems Incorporated) Hidden
Adobe Dreamweaver CS4 (Version: 10.0 - Adobe Systems Incorporated) Hidden
Adobe Drive CS4 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Dynamiclink Support (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe Extension Manager CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Fireworks CS4 (Version: 10.0 - Adobe Systems Incorporated) Hidden
Adobe Flash CS4 (Version: 10.0 - Adobe Systems Incorporated) Hidden
Adobe Flash CS4 Extension - Flash Lite STI en (Version: 3.0 - Adobe Systems Incorporated) Hidden
Adobe Flash CS4 STI-en (Version: 10.0 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Fonts All (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CS4 (Version: 14.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS4 (Version: 6.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS4 Application Feature Set Files (Roman) (Version: 6.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS4 Common Base Files (Version: 6.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS4 Icon Handler (Version: 6.0 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS4 (Version: 4.0.0 - Adobe Systems Incorporated) Hidden
Adobe Media Encoder CS4 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Media Encoder CS4 Importer (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Media Player (HKLM\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1 - Adobe Systems Incorporated)
Adobe Media Player (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe Output Module (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 (Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 Support (Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.06) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Adobe Search for Help (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Service Manager Extension (Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Setup (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe SGM CS4 (Version: 3.0 - Adobe Systems Incorporated) Hidden
Adobe SING CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Type Support CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Update Manager CS4 (Version: 6.0.0 - Adobe Systems Incorporated) Hidden
Adobe Version Cue CS4 Server (Version: 4.0 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin (Version: 1.1 - Adobe Systems Incorporated) Hidden
Adobe XMP Panels CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
AdobeColorCommonSetCMYK (Version: 2.0 - Adobe Systems Incorporated) Hidden
AdobeColorCommonSetRGB (Version: 2.0 - Adobe Systems Incorporated) Hidden
Apple Application Support (HKLM\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI Catalyst Install Manager (HKLM\...\{B4BB4CF2-F475-FB20-7AFA-F8AED032BFF8}) (Version: 3.0.732.0 - ATI Technologies, Inc.)
Audacity 2.0.5 (HKLM\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
avast! Free Antivirus (HKLM\...\avast) (Version: 9.0.2021 - AVAST Software)
Avid License Control (HKLM\...\{F187D064-F101-4E95-8D05-4027809AA0F8}) (Version: 3.0.0 - Avid Technology, Inc.)
Band-in-a-Box 2012 (Build 349) (HKLM\...\BB_is1) (Version:  - PG Music Inc.)
Band-in-a-Box Server (HKLM\...\BBServer_is1) (Version:  - PG Music Inc.)
BPDSoftware_Ini (Version: 1.00.0000 - Hewlett-Packard) Hidden
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (Version: 2009.0729.2238.38827 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2009.0729.2238.38827 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2009.0729.2238.38827 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2009.0729.2238.38827 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2009.0729.2238.38827 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2009.0729.2238.38827 - ATI) Hidden
Catalyst Control Center InstallProxy (Version: 2009.0729.2238.38827 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2009.0729.2238.38827 - ATI) Hidden
CCC Help Chinese Standard (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Czech (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Danish (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Dutch (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help English (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Finnish (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help French (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help German (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Greek (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Hungarian (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Italian (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Japanese (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Korean (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Norwegian (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Polish (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Portuguese (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Russian (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Spanish (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Swedish (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Thai (Version: 2009.0729.2237.38827 - ATI) Hidden
CCC Help Turkish (Version: 2009.0729.2237.38827 - ATI) Hidden
ccc-core-static (Version: 2009.0729.2238.38827 - ATI) Hidden
ccc-utility (Version: 2009.0729.2238.38827 - ATI) Hidden
Celtx (2.7) (HKLM\...\Celtx (2.7)) (Version: 2.7 (en-US) - Greyfirst)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft

Corporation)
Connect (Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden
CorelDRAW Graphics Suite X4 - Capture (Version: 14.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Content (Version: 14.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Draw (Version: 14.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Filters (Version: 14.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - FontNav (Version: 14.1 - Corel Corporation) Hidden
CorelDRAW Graphics SUite X4 - ICA (Version: 14.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - IPM (Version: 14.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang BR (Version: 14.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang EN (Version: 14.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang ES (Version: 14.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang FR (Version: 14.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - PP (Version: 14.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - VBA (Version: 14.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 (Version: 14.1 - Corel Corporation) Hidden
CorelDRAW® Graphics Suite X4 - Windows Shell Extension (HKLM\...\_{CE2DA11A-917F-4CF5-AB55-755EC115DD10}) (Version:  - Corel

Corporation)
CorelDRAW® Graphics Suite X4 - Windows Shell Extension (Version: 1.1 - Corel Corporation) Hidden
CorelDRAW® Graphics Suite X4 (HKLM\...\_{7F05E704-30A6-421A-97A7-8EEB1C7FF010}) (Version:  - Corel Corporation)
CoyoteWT 1.1 (HKLM\...\CoyoteWT_is1) (Version:  - Coyote Electronics Inc.)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DirectX 9 Runtime (Version: 1.00.0000 - Sonic Solutions) Hidden
Dropbox (HKCU\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
EMC 10 Content (Version: 1.0.035 - Roxo, Inc.) Hidden
Eudora OSE (1.0) (HKLM\...\Eudora OSE (1.0)) (Version: 1.0 (en-US) - Mozilla)
FileZilla Client 3.6.0.2 (HKLM\...\FileZilla Client) (Version: 3.6.0.2 - FileZilla Project)
Finale 2009 (HKLM\...\Finale 2009) (Version: 14.2.r3.0 - MakeMusic)
FindThatFont! 1.0 (HKLM\...\FindThatFont!) (Version: 1.0 - mathijs.jurresip.nl)
G7 (HKLM\...\G7) (Version:  - )
Garritan Instruments for Finale 2009 (HKLM\...\Garritan Instruments for Finale 2009_is1) (Version: v1.0.0.1 - Garritan)
Google Chrome (HKLM\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
HiJackThis (HKLM\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
HL-2240 (HKLM\...\{E2A97415-BD97-4867-B906-05E39E9EE51F}) (Version: 1.0.7.0 - Brother Industries, Ltd.)
HP Officejet Pro 8000 A809 Series (HKLM\...\{C90339A3-39AD-47FB-B39C-6D6146635B12}) (Version: 13.0 - HP)
Jasc Paint Shop Pro 8 (HKLM\...\{81A34902-9D0B-4920-A25C-4CDC5D14B328}) (Version: 8.10.0000 - Jasc Software Inc)
Java 7 Update 55 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
kuler (Version: 2.0 - Adobe Systems Incorporated) Hidden
Label@Once 1.0 (HKLM\...\{0D795777-9D60-4692-8386-F2B3F2B5E5BF}) (Version: 1.0 - Corel)
LG Burning Tool (HKLM\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.2.5218a - CyberLink Corp.)
LG Burning Tool (Version: 6.2.5218a - CyberLink Corp.) Hidden
LG CyberLink LabelPrint (HKLM\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3624 - CyberLink Corp.)
LG CyberLink LabelPrint (Version: 2.5.3624 - CyberLink Corp.) Hidden
LG CyberLink Media Suite (HKLM\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2808 - CyberLink Corp.)
LG CyberLink Media Suite (Version: 8.0.2808 - CyberLink Corp.) Hidden
LG CyberLink PowerBackup (HKLM\...\{ADD5DB49-72CF-11D8-9D75-000129760D75}) (Version: 2.5.6023 - CyberLink Corp.)
LG CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.3718 - CyberLink Corp.)
LG CyberLink YouCam (Version: 2.0.3718 - CyberLink Corp.) Hidden
LG ODD Auto Firmware Update (HKLM\...\{6179550A-3E7C-499E-BCC9-9E8113E0A285}) (Version: 8.01.1209.01 - )
LSI V92 MOH Application (HKLM\...\LTMOH) (Version:  - LSI Corporation)
Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes

Corporation)
M-Audio USB MIDI Series Driver 5.0.1 (x86) (HKLM\...\{9CEB8FDB-3F03-4B5F-A14C-33F8924CEE7E}) (Version: 5.0.1 - M-Audio)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Expression Design 3 (HKLM\...\Design_6.0.1739.0) (Version: 6.0.1739.0 - Microsoft Corporation)
Microsoft Expression Design 3 (Version: 6.0.1739.0 - Microsoft Corporation) Hidden
Microsoft Expression Encoder 3 (HKLM\...\Encoder_3.0.1332.0) (Version: 3.0.1332.0 - Microsoft Corporation)
Microsoft Expression Encoder 3 (Version: 3.0.1332.0 - Microsoft Corporation) Hidden
Microsoft Expression Web 3 (HKLM\...\Web_3.0.3813.0) (Version: 3.0.3813.0 - Microsoft Corporation)
Microsoft Expression Web 3 (Version: 3.0.3813.0 - Microsoft Corporation) Hidden
Microsoft Expression Web 3 SP1 (HKLM\...\{752E90AC-3F11-4EA3-88EA-96441047EC31}) (Version:  - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{6E107EB7-8B55-48BF-ACCB-

199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft

Corporation)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 -

Microsoft Corporation)
Microsoft Office Professional 2007 (HKLM\...\PROR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft

Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version:

8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft

Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft

Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 -

Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version:

9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version:

9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 31.0 (x86 en-US) (HKLM\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MusEdit (HKLM\...\MusEdit) (Version:  - )
MySQL Installer (HKLM\...\{3E39024D-9F83-4BF2-B87F-0768608FE0B5}) (Version: 1.1.7.0 - Oracle Corporation)
MyToshiba (HKLM\...\{01250B8F-D947-4F8A-9408-FE8E3EE2EC92}) (Version: 2.2.0.3 - Toshiba)
Native Instruments Sibelius Player G7 (HKLM\...\Native Instruments Sibelius Player G7) (Version:  - )
Network (Version: 130.0.579.000 - Hewlett-Packard) Hidden
Neuratron PhotoScore Lite (HKLM\...\Neuratron PhotoScore Lite) (Version: 3.00 - Neuratron Limited)
Notepad++ (HKLM\...\Notepad++) (Version: 6.3.2 - Notepad++ Team)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden
PDF Settings CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden
PG Music DirectX Plugins 2.0.0.0 (HKLM\...\PG_DX_Plugins_is1) (Version:  - PG Music Inc.)
Photoshop Camera Raw (Version: 5.0 - Adobe Systems Incorporated) Hidden
Pixel Bender Toolkit (Version: 1.0 - Adobe Systems Incorporated) Hidden
PlayReady PC Runtime x86 (HKLM\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
QuickTime (HKLM\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Realtek 8136 8168 8169 Ethernet Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0005 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5904 - Realtek Semiconductor

Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30101 - Realtek Semiconductor Corp.)
Realtek WLAN Driver (HKLM\...\{0FB630AB-7BD8-40AE-B223-60397D57C3C9}) (Version: 2.00.0006 - Realtek)
RiffMaster Pro 3.0 (HKLM\...\{B5F97043-363D-4410-820E-A21D9A5D2E51}_is1) (Version:  - RiffMaster)
Roxio Activation Module (Version: 1.0 - Roxio) Hidden
Roxio BackOnTrack (Version: 1.3.0 - Roxio) Hidden
Roxio Burn (Version: 1.0.0 - Roxio) Hidden
Roxio Central Audio (Version: 3.8.0 - Roxio) Hidden
Roxio Central Copy (Version: 3.8.0 - Roxio) Hidden
Roxio Central Core (Version: 3.8.0 - Roxio) Hidden
Roxio Central Data (Version: 3.8.0 - Roxio) Hidden
Roxio Central Tools (Version: 3.8.0 - Roxio) Hidden
Roxio Easy CD and DVD Burning (HKLM\...\{537BF16E-7412-448C-95D8-846E85A1D817}) (Version: 10.3 - Roxio)
Roxio Easy CD and DVD Burning (Version: 10.3.104 - Roxio) Hidden
Roxio Express Labeler 3 (Version: 3.2.1 - Roxio) Hidden
Roxio File Backup (Version: 1.3.0 - Roxio) Hidden
Roxio Update Manager (Version: 6.0.0 - Roxio) Hidden
Sibelius 7 OpenType Fonts (HKLM\...\{623C2BD8-1B28-4F98-B578-E9D139827269}) (Version: 7.1.3 - Avid)
Sibelius 7.0.0.23 (HKLM\...\Sibelius 7.0.0.23_is1) (Version: 7.0.0.23 - Avid)
Sibelius Scorch (HKLM\...\Sibelius Scorch) (Version:  - )
Sonic CinePlayer Decoder Pack (Version: 4.3.0 - Sonic Solutions) Hidden
Spelling Dictionaries Support For Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems

Incorporated)
Suite Shared Configuration CS4 (Version: 1.0 - Adobe Systems Incorporated) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.6.1 - Synaptics Incorporated)
Toolbox (Version: 130.0.648.000 - Hewlett-Packard) Hidden
Toshiba Application and Driver Installer (HKLM\...\{970472D0-F5F9-4158-A6E3-1AE49EFEF2D3}) (Version: 9.0.0.9 - Toshiba)
TOSHIBA Assist (HKLM\...\{12B3A009-A080-4619-9A2A-C6DB151D8D67}) (Version: 2.01.11 - TOSHIBA)
TOSHIBA ConfigFree (HKLM\...\{F3529665-D75E-4D6D-98F0-745C78C68E9B}) (Version: 8.0.21 - TOSHIBA Corporation)
TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.1.0.1 - TOSHIBA Corporation)
TOSHIBA DVD PLAYER (HKLM\...\{6C5F3BDC-0A1B-4436-A696-5939629D5C31}) (Version: 3.01.0.07-A - TOSHIBA Corporation)
TOSHIBA eco Utility (HKLM\...\InstallShield_{53536479-DFB0-47ED-9D10-43F3708C222D}) (Version: 1.1.7.0 - TOSHIBA Corporation)
TOSHIBA eco Utility (Version: 1.1.7.0 - TOSHIBA Corporation) Hidden
TOSHIBA Extended Tiles for Windows Mobility Center (HKLM\...\InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}) (Version: 1.01.00 -

TOSHIBA Corporation)
TOSHIBA Extended Tiles for Windows Mobility Center (Version: 1.01.00 - TOSHIBA Corporation) Hidden
TOSHIBA Face Recognition (HKLM\...\InstallShield_{C730E42C-935A-45BB-A0C5-37E5234D111B}) (Version: 3.1.0.32 - TOSHIBA Corporation)
TOSHIBA Face Recognition (Version: 3.1.0.32 - TOSHIBA Corporation) Hidden
TOSHIBA Flash Cards Support Utility (HKLM\...\InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E}) (Version: 1.63.0.4C - TOSHIBA

CORPORATION)
TOSHIBA Flash Cards Support Utility (Version: 1.63.0.4C - TOSHIBA CORPORATION) Hidden
TOSHIBA Hardware Setup (HKLM\...\InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3}) (Version: 1.63.0.11C - TOSHIBA CORPORATION)
TOSHIBA Hardware Setup (Version: 1.63.0.11C - TOSHIBA CORPORATION) Hidden
TOSHIBA HDD/SSD Alert (HKLM\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.0.2 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (Version: 3.1.0.2 - TOSHIBA Corporation) Hidden
TOSHIBA Internal Modem Region Select Utility (HKLM\...\InstallShield_{89F7D66C-777D-473B-AA11-319C0F190EAC}) (Version: 2.3.0.01 -

TOSHIBA Corporation)
TOSHIBA Internal Modem Region Select Utility (Version: 2.3.0.01 - TOSHIBA Corporation) Hidden
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.4.1.0 - TOSHIBA Corporation)
Toshiba Quality Application (HKLM\...\{E69992ED-A7F6-406C-9280-1C156417BC49}) (Version: 1.001.0000 - Toshiba)
TOSHIBA Recovery Media Creator (HKLM\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.1.0.2 - TOSHIBA Corporation)
TOSHIBA Service Station (HKLM\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 2.2.9 - TOSHIBA)
TOSHIBA Software Modem (HKLM\...\TOSHIBA Software Modem) (Version: 2.2.97 - LSI Corporation)
TOSHIBA Speech System Applications (HKLM\...\{EE033C1F-443E-41EC-A0E2-559B539A4E4D}) (Version: 1.00.2518 - )
TOSHIBA Speech System SR Engine(U.S.) Version1.0 (HKLM\...\{008D69EB-70FF-46AB-9C75-924620DF191A}) (Version:  - )
TOSHIBA Speech System TTS Engine(U.S.) Version1.0 (HKLM\...\{3FBF6F99-8EC6-41B4-8527-0A32241B5496}) (Version:  - )
TOSHIBA Supervisor Password (HKLM\...\InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}) (Version: 1.63.0.6C - TOSHIBA CORPORATION)
TOSHIBA Supervisor Password (Version: 1.63.0.6C - TOSHIBA CORPORATION) Hidden
TOSHIBA Web Camera Application (HKLM\...\{5E6F6CF3-BACC-4144-868C-E14622C658F3}) (Version: 1.1.1.4 - TOSHIBA Corporation)
ToshibaRegistration (HKLM\...\{5AF550B4-BB67-4E7E-82F1-2C4300279050}) (Version: 1.0.3 - Toshiba)
Transcribe! 8.00 (HKLM\...\Transcribe!_is1) (Version: 8.00 - Seventh String Software)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{C444285D-5E4F-48A4-91DD-

47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM\...\{90120000-006E-0409-0000-0000000FF1CE}_PROR_{AB365889-

0395-4FAD-B702-CA5985D53D42}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{A024FC7B-

77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{CB68A5B0-

3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{E9A82945-

BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (HKLM\...\{90120000-0015-0409-0000-0000000FF1CE}_PROR_{6B76A18A-AA1E-42AB-

A7AD-6C84BBB43987}) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0409-0000-0000000FF1CE}_PROR_{199DF7B6-169C-448C-B511

-1054101BE9C9}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0409-0000-0000000FF1CE}_PROR_{ED38F8A3-

4F61-494E-8BCA-E3AC7760C924}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{91120000-0014-0000-0000-0000000FF1CE}_PROR_{53DEC068-

4690-4F6B-9946-7D21EF02236B}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0409-0000-0000000FF1CE}_PROR_{0451F231-E3E3-4943-

AB9F-58EB96171784}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2883030) 32-Bit Edition (HKLM\...\{91120000-0014-0000-0000-

0000000FF1CE}_PROR_{F5DCAB53-C2FD-4E5A-8C83-0F37485E5E89}) (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0409-0000-0000000FF1CE}_PROR_{397B1D4F-ED7B-

4ACA-A637-43B670843876}) (Version:  - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (HKLM\...\{90120000-0019-0409-0000-0000000FF1CE}_PROR_{2E40DE55-B289-4C8B-

8901-5D369B16814F}) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM\...\{90120000-006E-0409-0000-0000000FF1CE}_PROR_{CD11C6A2-FFC6-4271-

8EAB-79C3582F505C}) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0409-0000-0000000FF1CE}_PROR_{80E762AA-C921-4839-9D7D-

DB62A72C0726}) (Version:  - Microsoft)
Utility Common Driver (Version: 1.0.50.26C - TOSHIBA) Hidden
Visual Basic for Applications ® Core - English (Version: 6.4.99.69 - Microsoft Corporation) Hidden
Visual Basic for Applications ® Core (Version: 6.4.99.69 - Microsoft Corporation) Hidden
WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

========================= Memory info: ===================================

Percentage of memory in use: 54%
Total physical RAM: 2814.36 MB
Available physical RAM: 1277.77 MB
Total Pagefile: 5627.01 MB
Available Pagefile: 3896.83 MB
Total Virtual: 2047.88 MB
Available Virtual: 1948.05 MB

========================= Partitions: =====================================

1 Drive c: (TI103196W0D) (Fixed) (Total:223.33 GB) (Free:111.72 GB) NTFS

========================= Users: ========================================

User accounts for \\GUITARTEACHER

Administrator            Guest                    RoyalOak_Guitar          


**** End of log ****
==========================================================================











18:03:11.0937 0x03d0  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
18:03:18.0145 0x03d0  ============================================================
18:03:18.0145 0x03d0  Current date / time: 2014/08/12 18:03:18.0145
18:03:18.0145 0x03d0  SystemInfo:
18:03:18.0145 0x03d0  
18:03:18.0145 0x03d0  OS Version: 6.1.7601 ServicePack: 1.0
18:03:18.0145 0x03d0  Product type: Workstation
18:03:18.0145 0x03d0  ComputerName: GUITARTEACHER
18:03:18.0145 0x03d0  UserName: RoyalOak_Guitar
18:03:18.0145 0x03d0  Windows directory: C:\windows
18:03:18.0145 0x03d0  System windows directory: C:\windows
18:03:18.0145 0x03d0  Processor architecture: Intel x86
18:03:18.0145 0x03d0  Number of processors: 2
18:03:18.0145 0x03d0  Page size: 0x1000
18:03:18.0145 0x03d0  Boot type: Normal boot
18:03:18.0145 0x03d0  ============================================================
18:03:20.0579 0x03d0  KLMD registered as C:\windows\system32\drivers\72810607.sys
18:03:20.0860 0x03d0  System UUID: {5101EBB7-7B6A-E7EA-0603-F7D5839A7B18}
18:03:21.0499 0x03d0  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1,

SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
18:03:21.0499 0x03d0  ============================================================
18:03:21.0499 0x03d0  \Device\Harddisk0\DR0:
18:03:21.0499 0x03d0  MBR partitions:
18:03:21.0499 0x03d0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x1BEAA800
18:03:21.0499 0x03d0  ============================================================
18:03:21.0515 0x03d0  C: <-> \Device\Harddisk0\DR0\Partition1
18:03:21.0515 0x03d0  ============================================================
18:03:21.0515 0x03d0  Initialize success
18:03:21.0515 0x03d0  ============================================================
18:03:23.0995 0x1524  ============================================================
18:03:23.0995 0x1524  Scan started
18:03:23.0995 0x1524  Mode: Manual;
18:03:23.0995 0x1524  ============================================================
18:03:23.0995 0x1524  KSN ping started
18:03:26.0725 0x1524  KSN ping finished: true
18:03:28.0114 0x1524  ================ Scan system memory ========================
18:03:28.0114 0x1524  System memory - ok
18:03:28.0114 0x1524  ================ Scan services =============================
18:03:28.0317 0x1524  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci  

      C:\windows\system32\drivers\1394ohci.sys
18:03:28.0332 0x1524  1394ohci - ok
18:03:28.0395 0x1524  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI      

      C:\windows\system32\drivers\ACPI.sys
18:03:28.0410 0x1524  ACPI - ok
18:03:28.0457 0x1524  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi   

      C:\windows\system32\drivers\acpipmi.sys
18:03:28.0457 0x1524  AcpiPmi - ok
18:03:28.0504 0x1524  [ 73685E15EF8B0BD9C30F1AF413F13D49, 618087873BB867D942272A84F7875484C7BCA8D5AEB1454FB42077C15C51B2DE ] adfs      

      C:\windows\system32\drivers\adfs.sys
18:03:28.0504 0x1524  adfs - ok
18:03:28.0660 0x1524  [ 9444A3530C2E88B7ED96A566FF9CCC13, B6372B557715279A03063FD0A30512A5938A689A950B9C6AF7BBC66C15FA87A6 ] Adobe

Version Cue CS4 C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
18:03:28.0691 0x1524  Adobe Version Cue CS4 - ok
18:03:28.0785 0x1524  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ]

AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
18:03:28.0785 0x1524  AdobeARMservice - ok
18:03:28.0909 0x1524  [ A6B6AB9502B63F43A9A56AE6AFB22078, DD1F0BA3D8F3333F52A71EAE3719A001F6EF844D647FFABF0E4C56C6C764ACA7 ]

AdobeFlashPlayerUpdateSvc C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
18:03:28.0925 0x1524  AdobeFlashPlayerUpdateSvc - ok
18:03:29.0003 0x1524  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx   

      C:\windows\system32\DRIVERS\adp94xx.sys
18:03:29.0019 0x1524  adp94xx - ok
18:03:29.0065 0x1524  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci   

      C:\windows\system32\DRIVERS\adpahci.sys
18:03:29.0097 0x1524  adpahci - ok
18:03:29.0128 0x1524  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320   

      C:\windows\system32\DRIVERS\adpu320.sys
18:03:29.0128 0x1524  adpu320 - ok
18:03:29.0175 0x1524  [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ]

AeLookupSvc     C:\windows\System32\aelupsvc.dll
18:03:29.0175 0x1524  AeLookupSvc - ok
18:03:29.0253 0x1524  [ D0B388DA1D111A34366E04EB4A5DD156, 60D226F027F4025CC032CAFF73A80FAFB5FA75445654FDCF80CA8C0419C6E938 ] AFD       

      C:\windows\system32\drivers\afd.sys
18:03:29.0284 0x1524  AFD - ok
18:03:29.0331 0x1524  [ 6416F9B6B220F0A890525C38235AFAD7, C2A643E1BA75CD00C1C7F62475A7122AA95530A835AE62CF0FD9EADFA07B7EBD ]

AgereModemAudio C:\Program Files\LSI SoftModem\agrsmsvc.exe
18:03:29.0331 0x1524  AgereModemAudio - ok
18:03:29.0393 0x1524  [ 07758C2196A62F207F77556311E7459A, E63C4BE29CA03907FC8E23D65D1D6CF517D22AA7F5C341E42777101AF1CAB2D9 ]

AgereSoftModem  C:\windows\system32\DRIVERS\AGRSM.sys
18:03:29.0440 0x1524  AgereSoftModem - ok
18:03:29.0471 0x1524  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440    

      C:\windows\system32\drivers\agp440.sys
18:03:29.0471 0x1524  agp440 - ok
18:03:29.0502 0x1524  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx   

      C:\windows\system32\DRIVERS\djsvs.sys
18:03:29.0518 0x1524  aic78xx - ok
18:03:29.0549 0x1524  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG       

      C:\windows\System32\alg.exe
18:03:29.0549 0x1524  ALG - ok
18:03:29.0611 0x1524  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide    

      C:\windows\system32\drivers\aliide.sys
18:03:29.0627 0x1524  aliide - ok
18:03:29.0845 0x1524  [ 0BC6704F6FB4C63CDCB85401E8263A1B, C9297943E6FA49EC78EB77BF98593F2EACB5E3F5DF57A34D2E60EF8BF3D10FF4 ] AMD

External Events Utility C:\windows\system32\atiesrxx.exe
18:03:29.0861 0x1524  AMD External Events Utility - ok
18:03:29.0877 0x1524  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp    

      C:\windows\system32\drivers\amdagp.sys
18:03:29.0877 0x1524  amdagp - ok
18:03:29.0923 0x1524  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide    

      C:\windows\system32\drivers\amdide.sys
18:03:29.0939 0x1524  amdide - ok
18:03:29.0970 0x1524  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8     

      C:\windows\system32\DRIVERS\amdk8.sys
18:03:29.0970 0x1524  AmdK8 - ok
18:03:30.0001 0x1524  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM    

      C:\windows\system32\DRIVERS\amdppm.sys
18:03:30.0001 0x1524  AmdPPM - ok
18:03:30.0048 0x1524  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata   

      C:\windows\system32\drivers\amdsata.sys
18:03:30.0064 0x1524  amdsata - ok
18:03:30.0079 0x1524  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs    

      C:\windows\system32\DRIVERS\amdsbs.sys
18:03:30.0095 0x1524  amdsbs - ok
18:03:30.0126 0x1524  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata   

      C:\windows\system32\drivers\amdxata.sys
18:03:30.0126 0x1524  amdxata - ok
18:03:30.0189 0x1524  [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID     

      C:\windows\system32\drivers\appid.sys
18:03:30.0189 0x1524  AppID - ok
18:03:30.0235 0x1524  [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc  

      C:\windows\System32\appidsvc.dll
18:03:30.0251 0x1524  AppIDSvc - ok
18:03:30.0282 0x1524  [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo   

      C:\windows\System32\appinfo.dll
18:03:30.0298 0x1524  Appinfo - ok
18:03:30.0329 0x1524  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc       

      C:\windows\system32\DRIVERS\arc.sys
18:03:30.0345 0x1524  arc - ok
18:03:30.0360 0x1524  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas    

      C:\windows\system32\DRIVERS\arcsas.sys
18:03:30.0376 0x1524  arcsas - ok
18:03:30.0501 0x1524  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ]

aspnet_state    C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
18:03:30.0501 0x1524  aspnet_state - ok
18:03:30.0594 0x1524  [ 3BFBB5DAE801CB893B8B46345FED6437, 2C2B71C1294585265D4871E74F17541500CA20DE34AC516F2A906DD81964C833 ] aswHwid   

      C:\windows\system32\drivers\aswHwid.sys
18:03:30.0610 0x1524  aswHwid - ok
18:03:30.0641 0x1524  [ C3014C735F450FE822C97FFBB0627113, 1CCFE845AED1757B8C1F52D310933076FF1EC197D82E499DB4592B09D66137B0 ] aswMonFlt

      C:\windows\system32\drivers\aswMonFlt.sys
18:03:30.0657 0x1524  aswMonFlt - ok
18:03:30.0703 0x1524  [ A4614218584E41C31C7D1CBFF0432ED5, C9632FDB13FB0DD73A5FA5E2DFA5EFF97A9CD719DC0D28097B765077AD0FB3E7 ] aswRdr    

      C:\windows\system32\drivers\aswRdr2.sys
18:03:30.0703 0x1524  aswRdr - ok
18:03:30.0781 0x1524  [ B7750AF7EDFD95674EB7CA92BCDD3358, A097577004F3CF71E2F9465F02B073D39926D7DEE2E2A9516D888158A5CB19E9 ] aswRvrt   

      C:\windows\system32\drivers\aswRvrt.sys
18:03:30.0781 0x1524  aswRvrt - ok
18:03:30.0891 0x1524  [ 51FDE588D860857A97E4C4B560E40C9B, 8A3AC3E55249DAE6CCD95593989F8B100D5C4712A16681A36E5D0F2F08BD57AA ] aswSnx    

      C:\windows\system32\drivers\aswSnx.sys
18:03:30.0937 0x1524  aswSnx - ok
18:03:31.0015 0x1524  [ 1AEB8CDB797666AF709A291B47AE81E0, 12AC4DBC6338BA5E5C04B449FF8362E7EC8EBFCA675C4F21BE847DFDCAE8F7C9 ] aswSP     

      C:\windows\system32\drivers\aswSP.sys
18:03:31.0031 0x1524  aswSP - ok
18:03:31.0109 0x1524  [ 83378AE48209388D0F9BD16A44D19EEC, 0BEBD1E425077D81B5439E90B2C518EA8B94F590B551F52289842012BA3BAB2C ] aswStm    

      C:\windows\system32\drivers\aswStm.sys
18:03:31.0125 0x1524  aswStm - ok
18:03:31.0187 0x1524  [ 90BEE0170D70D6744CEF2355EEAF8086, 8F9FF53F529B854934020E2F8163605DC794FF48464D3D4439BAAF70ECE8E963 ] aswVmm    

      C:\windows\system32\drivers\aswVmm.sys
18:03:31.0203 0x1524  aswVmm - ok
18:03:31.0249 0x1524  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac  

      C:\windows\system32\DRIVERS\asyncmac.sys
18:03:31.0249 0x1524  AsyncMac - ok
18:03:31.0296 0x1524  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi     

      C:\windows\system32\drivers\atapi.sys
18:03:31.0296 0x1524  atapi - ok
18:03:31.0546 0x1524  [ C97BE8350FBCB1960B22FAD2E6C2B514, A4565029BE99F94A6D076A6FB894ED18F4B7325C3FCB81BD502A78FCFE9B6A57 ] atikmdag  

      C:\windows\system32\DRIVERS\atikmdag.sys
18:03:31.0764 0x1524  atikmdag - ok
18:03:31.0811 0x1524  [ B73C832088DD54B55E04FF6F9646AD8C, 52A9F9240FAFB2F50E48579F02221CC0D6872F834104F91EF63ADC6AA82A2CD0 ] AtiPcie   

      C:\windows\system32\DRIVERS\AtiPcie.sys
18:03:31.0811 0x1524  AtiPcie - ok
18:03:31.0889 0x1524  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ]

AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
18:03:31.0936 0x1524  AudioEndpointBuilder - ok
18:03:31.0967 0x1524  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv  

      C:\windows\System32\Audiosrv.dll
18:03:31.0983 0x1524  Audiosrv - ok
18:03:32.0061 0x1524  [ 73F5C13B431915BAE35254B4E95DFB71, 393A045859382C44133C004598B1512048046BCC129FED2247A77FDBFCDB6DFF ] avast!

Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
18:03:32.0076 0x1524  avast! Antivirus - ok
18:03:32.0139 0x1524  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV  

      C:\windows\System32\AxInstSV.dll
18:03:32.0154 0x1524  AxInstSV - ok
18:03:32.0232 0x1524  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv   

      C:\windows\system32\DRIVERS\bxvbdx.sys
18:03:32.0263 0x1524  b06bdrv - ok
18:03:32.0310 0x1524  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x  

      C:\windows\system32\DRIVERS\b57nd60x.sys
18:03:32.0310 0x1524  b57nd60x - ok
18:03:32.0373 0x1524  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC    

      C:\windows\System32\bdesvc.dll
18:03:32.0373 0x1524  BDESVC - ok
18:03:32.0404 0x1524  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep      

      C:\windows\system32\drivers\Beep.sys
18:03:32.0404 0x1524  Beep - ok
18:03:32.0497 0x1524  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE       

      C:\windows\System32\bfe.dll
18:03:32.0529 0x1524  BFE - ok
18:03:32.0575 0x1524  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS      

      C:\windows\System32\qmgr.dll
18:03:32.0607 0x1524  BITS - ok
18:03:32.0638 0x1524  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive  

      C:\windows\system32\DRIVERS\blbdrive.sys
18:03:32.0653 0x1524  blbdrive - ok
18:03:32.0716 0x1524  [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser    

      C:\windows\system32\DRIVERS\bowser.sys
18:03:32.0716 0x1524  bowser - ok
18:03:32.0731 0x1524  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo  

      C:\windows\system32\DRIVERS\BrFiltLo.sys
18:03:32.0747 0x1524  BrFiltLo - ok
18:03:32.0763 0x1524  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp  

      C:\windows\system32\DRIVERS\BrFiltUp.sys
18:03:32.0763 0x1524  BrFiltUp - ok
18:03:32.0809 0x1524  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser   

      C:\windows\System32\browser.dll
18:03:32.0825 0x1524  Browser - ok
18:03:32.0872 0x1524  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid   

      C:\windows\System32\Drivers\Brserid.sys
18:03:32.0903 0x1524  Brserid - ok
18:03:32.0919 0x1524  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm  

      C:\windows\System32\Drivers\BrSerWdm.sys
18:03:32.0919 0x1524  BrSerWdm - ok
18:03:32.0934 0x1524  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm  

      C:\windows\System32\Drivers\BrUsbMdm.sys
18:03:32.0934 0x1524  BrUsbMdm - ok
18:03:32.0950 0x1524  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer  

      C:\windows\System32\Drivers\BrUsbSer.sys
18:03:32.0950 0x1524  BrUsbSer - ok
18:03:33.0043 0x1524  [ EA7E57F87D6FEE5FD6C5F813C04E8CD2, 1EB84F4DEE3034FAFBEA2A3F84EECE036E803872DA94D54E958E9F2F09519E88 ] BrYNSvc   

      C:\Program Files\Browny02\BrYNSvc.exe
18:03:33.0059 0x1524  BrYNSvc - ok
18:03:33.0075 0x1524  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM  

      C:\windows\system32\DRIVERS\bthmodem.sys
18:03:33.0090 0x1524  BTHMODEM - ok
18:03:33.0121 0x1524  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv   

      C:\windows\system32\bthserv.dll
18:03:33.0121 0x1524  bthserv - ok
18:03:33.0168 0x1524  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs      

      C:\windows\system32\DRIVERS\cdfs.sys
18:03:33.0168 0x1524  cdfs - ok
18:03:33.0215 0x1524  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom     

      C:\windows\system32\drivers\cdrom.sys
18:03:33.0215 0x1524  cdrom - ok
18:03:33.0277 0x1524  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ]

CertPropSvc     C:\windows\System32\certprop.dll
18:03:33.0277 0x1524  CertPropSvc - ok
18:03:33.0371 0x1524  [ 1F8A319D29394F9CE1B7AE020DF2EBBF, 624D2A19751D50566C4D3292CA627ADE78C2BE5807B37A0C370EF7FE4FE62048 ]

cfWiMAXService  C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe
18:03:33.0387 0x1524  cfWiMAXService - ok
18:03:33.0433 0x1524  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass  

      C:\windows\system32\DRIVERS\circlass.sys
18:03:33.0433 0x1524  circlass - ok
18:03:33.0465 0x1524  [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS      

      C:\windows\system32\CLFS.sys
18:03:33.0496 0x1524  CLFS - ok
18:03:33.0543 0x1524  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ]

clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:03:33.0543 0x1524  clr_optimization_v2.0.50727_32 - ok
18:03:33.0621 0x1524  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ]

clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:03:33.0652 0x1524  clr_optimization_v4.0.30319_32 - ok
18:03:33.0699 0x1524  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt    

      C:\windows\system32\DRIVERS\CmBatt.sys
18:03:33.0699 0x1524  CmBatt - ok
18:03:33.0745 0x1524  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide    

      C:\windows\system32\drivers\cmdide.sys
18:03:33.0761 0x1524  cmdide - ok
18:03:33.0839 0x1524  [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG       

      C:\windows\system32\Drivers\cng.sys
18:03:33.0855 0x1524  CNG - ok
18:03:33.0886 0x1524  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt  

      C:\windows\system32\DRIVERS\compbatt.sys
18:03:33.0901 0x1524  Compbatt - ok
18:03:33.0933 0x1524  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ]

CompositeBus    C:\windows\system32\drivers\CompositeBus.sys
18:03:33.0948 0x1524  CompositeBus - ok
18:03:33.0964 0x1524  COMSysApp - ok
18:03:33.0995 0x1524  [ CAB0EEAF5295FC96DDD3E19DCE27E131, 87BCAC18D920153322D325AA5B93BB0B447577D67261FDCC01C5B60643CEA792 ]

ConfigFree Service C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
18:03:33.0995 0x1524  ConfigFree Service - ok
18:03:34.0026 0x1524  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk   

      C:\windows\system32\DRIVERS\crcdisk.sys
18:03:34.0026 0x1524  crcdisk - ok
18:03:34.0089 0x1524  [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc  

      C:\windows\system32\cryptsvc.dll
18:03:34.0104 0x1524  CryptSvc - ok
18:03:34.0182 0x1524  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ]

DcomLaunch      C:\windows\system32\rpcss.dll
18:03:34.0229 0x1524  DcomLaunch - ok
18:03:34.0245 0x1524  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc

      C:\windows\System32\defragsvc.dll
18:03:34.0260 0x1524  defragsvc - ok
18:03:34.0307 0x1524  [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC      

      C:\windows\system32\Drivers\dfsc.sys
18:03:34.0307 0x1524  DfsC - ok
18:03:34.0385 0x1524  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp      

      C:\windows\system32\dhcpcore.dll
18:03:34.0401 0x1524  Dhcp - ok
18:03:34.0432 0x1524  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache  

      C:\windows\system32\drivers\discache.sys
18:03:34.0432 0x1524  discache - ok
18:03:34.0479 0x1524  [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk      

      C:\windows\system32\DRIVERS\disk.sys
18:03:34.0494 0x1524  Disk - ok
18:03:34.0557 0x1524  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache  

      C:\windows\System32\dnsrslvr.dll
18:03:34.0572 0x1524  Dnscache - ok
18:03:34.0635 0x1524  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc   

      C:\windows\System32\dot3svc.dll
18:03:34.0666 0x1524  dot3svc - ok
18:03:34.0697 0x1524  [ B5E479EB83707DD698F66953E922042C, 82891A4699F180A20EB25A0EC49A7E008B007A374BAA3279483AC1C95D125FE8 ] Dot4      

      C:\windows\system32\DRIVERS\Dot4.sys
18:03:34.0713 0x1524  Dot4 - ok
18:03:34.0759 0x1524  [ CAEFD09B6A6249C53A67D55A9A9FCABF, A76C951EA8A830E5BA22D8D393A946BBAEEDB76478539F647E58199B383F786B ] Dot4Print

      C:\windows\system32\drivers\Dot4Prt.sys
18:03:34.0759 0x1524  Dot4Print - ok
18:03:34.0791 0x1524  [ CF491FF38D62143203C065260567E2F7, 4315FD8FC88CF627EBE469A2DF0F280B17C95D3004FC7A93D6F8E47F0D91A037 ] dot4usb   

      C:\windows\system32\DRIVERS\dot4usb.sys
18:03:34.0791 0x1524  dot4usb - ok
18:03:34.0869 0x1524  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS       

      C:\windows\system32\dps.dll
18:03:34.0884 0x1524  DPS - ok
18:03:34.0931 0x1524  [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud   

      C:\windows\system32\drivers\drmkaud.sys
18:03:34.0931 0x1524  drmkaud - ok
18:03:35.0025 0x1524  [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] DXGKrnl   

      C:\windows\System32\drivers\dxgkrnl.sys
18:03:35.0071 0x1524  DXGKrnl - ok
18:03:35.0118 0x1524  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost   

      C:\windows\System32\eapsvc.dll
18:03:35.0149 0x1524  EapHost - ok
18:03:35.0337 0x1524  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv     

      C:\windows\system32\DRIVERS\evbdx.sys
18:03:35.0477 0x1524  ebdrv - ok
18:03:35.0524 0x1524  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] EFS       

      C:\windows\System32\lsass.exe
18:03:35.0539 0x1524  EFS - ok
18:03:35.0633 0x1524  [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr   

      C:\windows\ehome\ehRecvr.exe
18:03:35.0680 0x1524  ehRecvr - ok
18:03:35.0695 0x1524  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched   

      C:\windows\ehome\ehsched.exe
18:03:35.0711 0x1524  ehSched - ok
18:03:35.0758 0x1524  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor   

      C:\windows\system32\DRIVERS\elxstor.sys
18:03:35.0789 0x1524  elxstor - ok
18:03:35.0836 0x1524  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev    

      C:\windows\system32\drivers\errdev.sys
18:03:35.0836 0x1524  ErrDev - ok
18:03:35.0898 0x1524  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ]

EventSystem     C:\windows\system32\es.dll
18:03:35.0914 0x1524  EventSystem - ok
18:03:35.0945 0x1524  [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat     

      C:\windows\system32\drivers\exfat.sys
18:03:35.0945 0x1524  exfat - ok
18:03:35.0961 0x1524  [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat   

      C:\windows\system32\drivers\fastfat.sys
18:03:35.0976 0x1524  fastfat - ok
18:03:36.0054 0x1524  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax       

      C:\windows\system32\fxssvc.exe
18:03:36.0117 0x1524  Fax - ok
18:03:36.0132 0x1524  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc       

      C:\windows\system32\DRIVERS\fdc.sys
18:03:36.0148 0x1524  fdc - ok
18:03:36.0163 0x1524  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost   

      C:\windows\system32\fdPHost.dll
18:03:36.0163 0x1524  fdPHost - ok
18:03:36.0179 0x1524  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub  

      C:\windows\system32\fdrespub.dll
18:03:36.0195 0x1524  FDResPub - ok
18:03:36.0210 0x1524  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo  

      C:\windows\system32\drivers\fileinfo.sys
18:03:36.0210 0x1524  FileInfo - ok
18:03:36.0226 0x1524  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace

      C:\windows\system32\drivers\filetrace.sys
18:03:36.0226 0x1524  Filetrace - ok
18:03:36.0304 0x1524  [ 1F63900E2EB00101B9ACA2B7A870704E, 5AFE1FC852937FECE6B33147BD0110436FE97F33BFDA3F69B1F5EDAD6FFC09C6 ] FLEXnet

Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
18:03:36.0319 0x1524  FLEXnet Licensing Service - ok
18:03:36.0335 0x1524  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk  

      C:\windows\system32\DRIVERS\flpydisk.sys
18:03:36.0335 0x1524  flpydisk - ok
18:03:36.0382 0x1524  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr    

      C:\windows\system32\drivers\fltmgr.sys
18:03:36.0382 0x1524  FltMgr - ok
18:03:36.0475 0x1524  [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache

      C:\windows\system32\FntCache.dll
18:03:36.0522 0x1524  FontCache - ok
18:03:36.0585 0x1524  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ]

FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
18:03:36.0585 0x1524  FontCache3.0.0.0 - ok
18:03:36.0616 0x1524  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends

      C:\windows\system32\drivers\FsDepends.sys
18:03:36.0616 0x1524  FsDepends - ok
18:03:36.0647 0x1524  [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec    

      C:\windows\system32\drivers\Fs_Rec.sys
18:03:36.0647 0x1524  Fs_Rec - ok
18:03:36.0709 0x1524  [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol    

      C:\windows\system32\DRIVERS\fvevol.sys
18:03:36.0725 0x1524  fvevol - ok
18:03:36.0772 0x1524  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx  

      C:\windows\system32\DRIVERS\gagp30kx.sys
18:03:36.0772 0x1524  gagp30kx - ok
18:03:36.0865 0x1524  [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc     

      C:\windows\System32\gpsvc.dll
18:03:36.0897 0x1524  gpsvc - ok
18:03:36.0990 0x1524  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdate   

      C:\Program Files\Google\Update\GoogleUpdate.exe
18:03:37.0006 0x1524  gupdate - ok
18:03:37.0037 0x1524  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdatem  

      C:\Program Files\Google\Update\GoogleUpdate.exe
18:03:37.0037 0x1524  gupdatem - ok
18:03:37.0068 0x1524  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir  

      C:\windows\system32\drivers\hcw85cir.sys
18:03:37.0068 0x1524  hcw85cir - ok
18:03:37.0131 0x1524  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ]

HdAudAddService C:\windows\system32\drivers\HdAudio.sys
18:03:37.0146 0x1524  HdAudAddService - ok
18:03:37.0177 0x1524  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus  

      C:\windows\system32\drivers\HDAudBus.sys
18:03:37.0193 0x1524  HDAudBus - ok
18:03:37.0209 0x1524  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt   

      C:\windows\system32\DRIVERS\HidBatt.sys
18:03:37.0209 0x1524  HidBatt - ok
18:03:37.0240 0x1524  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth    

      C:\windows\system32\DRIVERS\hidbth.sys
18:03:37.0240 0x1524  HidBth - ok
18:03:37.0271 0x1524  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr     

      C:\windows\system32\DRIVERS\hidir.sys
18:03:37.0271 0x1524  HidIr - ok
18:03:37.0302 0x1524  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv   

      C:\windows\system32\hidserv.dll
18:03:37.0302 0x1524  hidserv - ok
18:03:37.0318 0x1524  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb    

      C:\windows\system32\drivers\hidusb.sys
18:03:37.0333 0x1524  HidUsb - ok
18:03:37.0365 0x1524  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc    

      C:\windows\system32\kmsvc.dll
18:03:37.0365 0x1524  hkmsvc - ok
18:03:37.0396 0x1524  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ]

HomeGroupListener C:\windows\system32\ListSvc.dll
18:03:37.0427 0x1524  HomeGroupListener - ok
18:03:37.0474 0x1524  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ]

HomeGroupProvider C:\windows\system32\provsvc.dll
18:03:37.0489 0x1524  HomeGroupProvider - ok
18:03:37.0536 0x1524  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD    

      C:\windows\system32\drivers\HpSAMD.sys
18:03:37.0536 0x1524  HpSAMD - ok
18:03:37.0661 0x1524  [ 83DB5DD8BE71CBA5447FBD7A48FDBEDA, D9F31BA67F96EB424AAA91C1CC23A74A74099F7AB0ABBBDE3B46A34C1481DFE6 ] HPSLPSVC  

      C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
18:03:37.0677 0x1524  HPSLPSVC - ok
18:03:37.0770 0x1524  [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP      

      C:\windows\system32\drivers\HTTP.sys
18:03:37.0801 0x1524  HTTP - ok
18:03:37.0817 0x1524  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy  

      C:\windows\system32\drivers\hwpolicy.sys
18:03:37.0817 0x1524  hwpolicy - ok
18:03:37.0848 0x1524  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt  

      C:\windows\system32\drivers\i8042prt.sys
18:03:37.0848 0x1524  i8042prt - ok
18:03:37.0895 0x1524  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV   

      C:\windows\system32\drivers\iaStorV.sys
18:03:37.0911 0x1524  iaStorV - ok
18:03:38.0035 0x1524  [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc     

      C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
18:03:38.0067 0x1524  idsvc - ok
18:03:38.0098 0x1524  IEEtwCollectorService - ok
18:03:38.0145 0x1524  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp     

      C:\windows\system32\DRIVERS\iirsp.sys
18:03:38.0145 0x1524  iirsp - ok
18:03:38.0238 0x1524  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT    

      C:\windows\System32\ikeext.dll
18:03:38.0269 0x1524  IKEEXT - ok
18:03:38.0441 0x1524  [ E4A2E810CB2607C9C159C0DFB0BD4C88, 9F84636D1096BD5EFEDC295D289241CCF3BE77C643C83F3C0F105791042D6A08 ]

IntcAzAudAddService C:\windows\system32\drivers\RTKVHDA.sys
18:03:38.0581 0x1524  IntcAzAudAddService - ok
18:03:38.0659 0x1524  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide  

      C:\windows\system32\drivers\intelide.sys
18:03:38.0659 0x1524  intelide - ok
18:03:38.0706 0x1524  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm  

      C:\windows\system32\DRIVERS\intelppm.sys
18:03:38.0722 0x1524  intelppm - ok
18:03:38.0753 0x1524  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum

      C:\windows\system32\ipbusenum.dll
18:03:38.0769 0x1524  IPBusEnum - ok
18:03:38.0784 0x1524  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ]

IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
18:03:38.0784 0x1524  IpFilterDriver - ok
18:03:38.0862 0x1524  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc  

      C:\windows\System32\iphlpsvc.dll
18:03:38.0893 0x1524  iphlpsvc - ok
18:03:38.0925 0x1524  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV   

      C:\windows\system32\drivers\IPMIDrv.sys
18:03:38.0925 0x1524  IPMIDRV - ok
18:03:38.0956 0x1524  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT     

      C:\windows\system32\drivers\ipnat.sys
18:03:38.0971 0x1524  IPNAT - ok
18:03:39.0003 0x1524  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM    

      C:\windows\system32\drivers\irenum.sys
18:03:39.0003 0x1524  IRENUM - ok
18:03:39.0018 0x1524  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp    

      C:\windows\system32\drivers\isapnp.sys
18:03:39.0018 0x1524  isapnp - ok
18:03:39.0065 0x1524  [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt  

      C:\windows\system32\drivers\msiscsi.sys
18:03:39.0081 0x1524  iScsiPrt - ok
18:03:39.0096 0x1524  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass  

      C:\windows\system32\drivers\kbdclass.sys
18:03:39.0112 0x1524  kbdclass - ok
18:03:39.0143 0x1524  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid    

      C:\windows\system32\drivers\kbdhid.sys
18:03:39.0159 0x1524  kbdhid - ok
18:03:39.0190 0x1524  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] KeyIso    

      C:\windows\system32\lsass.exe
18:03:39.0190 0x1524  KeyIso - ok
18:03:39.0237 0x1524  [ 4120DA10AA42A9996F4575DB9E3E6E6E, 1C6E790772EA327ACB885D731A030408160534997DD56FEE4D6CEE6929873BB8 ] KSecDD    

      C:\windows\system32\Drivers\ksecdd.sys
18:03:39.0252 0x1524  KSecDD - ok
18:03:39.0299 0x1524  [ D3964885F0A11ACF51DA3AAA776973B2, 417ED5A3201FC50FBC0D646F8F2114A1E8A91E7919A62508DCBC156C0BFB2FBA ] KSecPkg   

      C:\windows\system32\Drivers\ksecpkg.sys
18:03:39.0330 0x1524  KSecPkg - ok
18:03:39.0393 0x1524  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm     

      C:\windows\system32\msdtckrm.dll
18:03:39.0408 0x1524  KtmRm - ok
18:03:39.0455 0x1524  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ]

LanmanServer    C:\windows\system32\srvsvc.dll
18:03:39.0455 0x1524  LanmanServer - ok
18:03:39.0486 0x1524  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ]

LanmanWorkstation C:\windows\System32\wkssvc.dll
18:03:39.0486 0x1524  LanmanWorkstation - ok
18:03:39.0533 0x1524  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio    

      C:\windows\system32\DRIVERS\lltdio.sys
18:03:39.0533 0x1524  lltdio - ok
18:03:39.0564 0x1524  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc   

      C:\windows\System32\lltdsvc.dll
18:03:39.0595 0x1524  lltdsvc - ok
18:03:39.0611 0x1524  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts   

      C:\windows\System32\lmhsvc.dll
18:03:39.0611 0x1524  lmhosts - ok
18:03:39.0658 0x1524  [ 6E3D3816749E107883EEC5734CE44493, 73455F0195935AC591E36984BDF9A6FB49C304ED24CF1B8BDC2049826630170D ] LPCFilter

      C:\windows\system32\DRIVERS\LPCFilter.sys
18:03:39.0658 0x1524  LPCFilter - ok
18:03:39.0705 0x1524  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC    

      C:\windows\system32\DRIVERS\lsi_fc.sys
18:03:39.0705 0x1524  LSI_FC - ok
18:03:39.0736 0x1524  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS   

      C:\windows\system32\DRIVERS\lsi_sas.sys
18:03:39.0736 0x1524  LSI_SAS - ok
18:03:39.0751 0x1524  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2  

      C:\windows\system32\DRIVERS\lsi_sas2.sys
18:03:39.0751 0x1524  LSI_SAS2 - ok
18:03:39.0783 0x1524  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI  

      C:\windows\system32\DRIVERS\lsi_scsi.sys
18:03:39.0783 0x1524  LSI_SCSI - ok
18:03:39.0798 0x1524  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv     

      C:\windows\system32\drivers\luafv.sys
18:03:39.0814 0x1524  luafv - ok
18:03:39.0845 0x1524  [ 69BC2B743D723D1923FCE50EB68003CB, 7027BC0F41A8F6F31E4C072DAC7F2CA82B7BE7B6197F4B7AA63152F4F73AACC0 ] MAUSBMIDI

      C:\windows\system32\DRIVERS\MAudioUSBMIDI.sys
18:03:39.0861 0x1524  MAUSBMIDI - ok
18:03:39.0907 0x1524  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc   

      C:\windows\system32\Mcx2Svc.dll
18:03:39.0923 0x1524  Mcx2Svc - ok
18:03:39.0954 0x1524  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas   

      C:\windows\system32\DRIVERS\megasas.sys
18:03:39.0954 0x1524  megasas - ok
18:03:39.0985 0x1524  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR    

      C:\windows\system32\DRIVERS\MegaSR.sys
18:03:40.0001 0x1524  MegaSR - ok
18:03:40.0032 0x1524  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS     

      C:\windows\system32\mmcss.dll
18:03:40.0032 0x1524  MMCSS - ok
18:03:40.0048 0x1524  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem     

      C:\windows\system32\drivers\modem.sys
18:03:40.0048 0x1524  Modem - ok
18:03:40.0079 0x1524  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor   

      C:\windows\system32\DRIVERS\monitor.sys
18:03:40.0079 0x1524  monitor - ok
18:03:40.0126 0x1524  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass  

      C:\windows\system32\drivers\mouclass.sys
18:03:40.0141 0x1524  mouclass - ok
18:03:40.0173 0x1524  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid    

      C:\windows\system32\DRIVERS\mouhid.sys
18:03:40.0188 0x1524  mouhid - ok
18:03:40.0251 0x1524  [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr  

      C:\windows\system32\drivers\mountmgr.sys
18:03:40.0266 0x1524  mountmgr - ok
18:03:40.0407 0x1524  [ 4E9D8041D352A33332FD6F59A3A78B03, D4E6229B07EF9866993EEE4F6223DC7F1FF1108273FE14A3DC74E65C181DE56A ]

MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
18:03:40.0469 0x1524  MozillaMaintenance - ok
18:03:40.0516 0x1524  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio      

      C:\windows\system32\drivers\mpio.sys
18:03:40.0547 0x1524  mpio - ok
18:03:40.0578 0x1524  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv    

      C:\windows\system32\drivers\mpsdrv.sys
18:03:40.0594 0x1524  mpsdrv - ok
18:03:40.0672 0x1524  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc    

      C:\windows\system32\mpssvc.dll
18:03:40.0734 0x1524  MpsSvc - ok
18:03:40.0781 0x1524  [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV    

      C:\windows\system32\drivers\mrxdav.sys
18:03:40.0797 0x1524  MRxDAV - ok
18:03:40.0875 0x1524  [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb    

      C:\windows\system32\DRIVERS\mrxsmb.sys
18:03:40.0906 0x1524  mrxsmb - ok
18:03:40.0937 0x1524  [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10  

      C:\windows\system32\DRIVERS\mrxsmb10.sys
18:03:40.0953 0x1524  mrxsmb10 - ok
18:03:40.0968 0x1524  [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20  

      C:\windows\system32\DRIVERS\mrxsmb20.sys
18:03:40.0968 0x1524  mrxsmb20 - ok
18:03:41.0015 0x1524  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci    

      C:\windows\system32\drivers\msahci.sys
18:03:41.0015 0x1524  msahci - ok
18:03:41.0062 0x1524  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm     

      C:\windows\system32\drivers\msdsm.sys
18:03:41.0093 0x1524  msdsm - ok
18:03:41.0124 0x1524  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC     

      C:\windows\System32\msdtc.exe
18:03:41.0140 0x1524  MSDTC - ok
18:03:41.0187 0x1524  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs      

      C:\windows\system32\drivers\Msfs.sys
18:03:41.0187 0x1524  Msfs - ok
18:03:41.0202 0x1524  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf

      C:\windows\System32\drivers\mshidkmdf.sys
18:03:41.0202 0x1524  mshidkmdf - ok
18:03:41.0233 0x1524  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv  

      C:\windows\system32\drivers\msisadrv.sys
18:03:41.0233 0x1524  msisadrv - ok
18:03:41.0280 0x1524  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI   

      C:\windows\system32\iscsiexe.dll
18:03:41.0296 0x1524  MSiSCSI - ok
18:03:41.0296 0x1524  msiserver - ok
18:03:41.0343 0x1524  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV   

      C:\windows\system32\drivers\MSKSSRV.sys
18:03:41.0358 0x1524  MSKSSRV - ok
18:03:41.0374 0x1524  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK  

      C:\windows\system32\drivers\MSPCLOCK.sys
18:03:41.0374 0x1524  MSPCLOCK - ok
18:03:41.0405 0x1524  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM     

      C:\windows\system32\drivers\MSPQM.sys
18:03:41.0421 0x1524  MSPQM - ok
18:03:41.0452 0x1524  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC     

      C:\windows\system32\drivers\MsRPC.sys
18:03:41.0467 0x1524  MsRPC - ok
18:03:41.0499 0x1524  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios  

      C:\windows\system32\drivers\mssmbios.sys
18:03:41.0499 0x1524  mssmbios - ok
18:03:41.0530 0x1524  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE     

      C:\windows\system32\drivers\MSTEE.sys
18:03:41.0545 0x1524  MSTEE - ok
18:03:41.0561 0x1524  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig  

      C:\windows\system32\DRIVERS\MTConfig.sys
18:03:41.0561 0x1524  MTConfig - ok
18:03:41.0592 0x1524  [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup       

      C:\windows\system32\Drivers\mup.sys
18:03:41.0592 0x1524  Mup - ok
18:03:41.0655 0x1524  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent  

      C:\windows\system32\qagentRT.dll
18:03:41.0686 0x1524  napagent - ok
18:03:41.0748 0x1524  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ]

NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
18:03:41.0764 0x1524  NativeWifiP - ok
18:03:41.0826 0x1524  [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS      

      C:\windows\system32\drivers\ndis.sys
18:03:41.0873 0x1524  NDIS - ok
18:03:41.0920 0x1524  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap   

      C:\windows\system32\DRIVERS\ndiscap.sys
18:03:41.0920 0x1524  NdisCap - ok
18:03:41.0951 0x1524  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi  

      C:\windows\system32\DRIVERS\ndistapi.sys
18:03:41.0951 0x1524  NdisTapi - ok
18:03:41.0998 0x1524  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio   

      C:\windows\system32\DRIVERS\ndisuio.sys
18:03:42.0013 0x1524  Ndisuio - ok
18:03:42.0060 0x1524  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan   

      C:\windows\system32\DRIVERS\ndiswan.sys
18:03:42.0076 0x1524  NdisWan - ok
18:03:42.0123 0x1524  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy   

      C:\windows\system32\drivers\NDProxy.sys
18:03:42.0123 0x1524  NDProxy - ok
18:03:42.0169 0x1524  [ 510C138564486FF926A3F773205C63D1, 50FBB8555C284ED22F71D99750899321B63E3B4C255174FE9B4F31084F9A34B1 ] Net

Driver HPZ12 C:\windows\system32\HPZinw12.dll
18:03:42.0169 0x1524  Net Driver HPZ12 - ok
18:03:42.0216 0x1524  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS   

      C:\windows\system32\DRIVERS\netbios.sys
18:03:42.0216 0x1524  NetBIOS - ok
18:03:42.0279 0x1524  [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT     

      C:\windows\system32\DRIVERS\netbt.sys
18:03:42.0294 0x1524  NetBT - ok
18:03:42.0325 0x1524  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] Netlogon  

      C:\windows\system32\lsass.exe
18:03:42.0325 0x1524  Netlogon - ok
18:03:42.0357 0x1524  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman    

      C:\windows\System32\netman.dll
18:03:42.0388 0x1524  Netman - ok
18:03:42.0450 0x1524  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ]

NetMsmqActivator C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:03:42.0466 0x1524  NetMsmqActivator - ok
18:03:42.0497 0x1524  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ]

NetPipeActivator C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:03:42.0497 0x1524  NetPipeActivator - ok
18:03:42.0544 0x1524  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm  

      C:\windows\System32\netprofm.dll
18:03:42.0559 0x1524  netprofm - ok
18:03:42.0606 0x1524  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ]

NetTcpActivator C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:03:42.0606 0x1524  NetTcpActivator - ok
18:03:42.0637 0x1524  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ]

NetTcpPortSharing C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
18:03:42.0637 0x1524  NetTcpPortSharing - ok
18:03:42.0685 0x1524  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960   

      C:\windows\system32\DRIVERS\nfrd960.sys
18:03:42.0685 0x1524  nfrd960 - ok
18:03:42.0732 0x1524  [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc    

      C:\windows\System32\nlasvc.dll
18:03:42.0748 0x1524  NlaSvc - ok
18:03:42.0794 0x1524  NPF - ok
18:03:42.0826 0x1524  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs      

      C:\windows\system32\drivers\Npfs.sys
18:03:42.0826 0x1524  Npfs - ok
18:03:42.0857 0x1524  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi       

      C:\windows\system32\nsisvc.dll
18:03:42.0857 0x1524  nsi - ok
18:03:42.0888 0x1524  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy  

      C:\windows\system32\drivers\nsiproxy.sys
18:03:42.0888 0x1524  nsiproxy - ok
18:03:43.0013 0x1524  [ C8DFF8D07755A66C7A4A738930F0FEAC, A2CC58312CE57988ABD976155BE91F558DCEC4C23481C6FBE64B361D511A36EA ] Ntfs      

      C:\windows\system32\drivers\Ntfs.sys
18:03:43.0075 0x1524  Ntfs - ok
18:03:43.0106 0x1524  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null      

      C:\windows\system32\drivers\Null.sys
18:03:43.0106 0x1524  Null - ok
18:03:43.0153 0x1524  [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid    

      C:\windows\system32\drivers\nvraid.sys
18:03:43.0184 0x1524  nvraid - ok
18:03:43.0216 0x1524  [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor    

      C:\windows\system32\drivers\nvstor.sys
18:03:43.0231 0x1524  nvstor - ok
18:03:43.0278 0x1524  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp    

      C:\windows\system32\drivers\nv_agp.sys
18:03:43.0278 0x1524  nv_agp - ok
18:03:43.0418 0x1524  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv    

      C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:03:43.0450 0x1524  odserv - ok
18:03:43.0481 0x1524  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394  

      C:\windows\system32\drivers\ohci1394.sys
18:03:43.0496 0x1524  ohci1394 - ok
18:03:43.0574 0x1524  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose       

      C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:03:43.0590 0x1524  ose - ok
18:03:43.0637 0x1524  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc  

      C:\windows\system32\pnrpsvc.dll
18:03:43.0652 0x1524  p2pimsvc - ok
18:03:43.0684 0x1524  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc    

      C:\windows\system32\p2psvc.dll
18:03:43.0699 0x1524  p2psvc - ok
18:03:43.0746 0x1524  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport   

      C:\windows\system32\DRIVERS\parport.sys
18:03:43.0746 0x1524  Parport - ok
18:03:43.0793 0x1524  [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr   

      C:\windows\system32\drivers\partmgr.sys
18:03:43.0793 0x1524  partmgr - ok
18:03:43.0824 0x1524  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm    

      C:\windows\system32\DRIVERS\parvdm.sys
18:03:43.0824 0x1524  Parvdm - ok
18:03:43.0855 0x1524  [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc    

      C:\windows\System32\pcasvc.dll
18:03:43.0871 0x1524  PcaSvc - ok
18:03:43.0902 0x1524  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci       

      C:\windows\system32\drivers\pci.sys
18:03:43.0918 0x1524  pci - ok
18:03:43.0949 0x1524  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide    

      C:\windows\system32\drivers\pciide.sys
18:03:43.0949 0x1524  pciide - ok
18:03:43.0996 0x1524  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia    

      C:\windows\system32\DRIVERS\pcmcia.sys
18:03:44.0027 0x1524  pcmcia - ok
18:03:44.0042 0x1524  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw       

      C:\windows\system32\drivers\pcw.sys
18:03:44.0042 0x1524  pcw - ok
18:03:44.0089 0x1524  [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH    

      C:\windows\system32\drivers\peauth.sys
18:03:44.0120 0x1524  PEAUTH - ok
18:03:44.0167 0x1524  [ 1B5011DD8D57F53AED31FF0F7D635802, FA4D0DD592DAA27A3F7D4881B8675E3B40E2479B2D2912F2BF132E7FC13FF80A ] PGEffect  

      C:\windows\system32\DRIVERS\pgeffect.sys
18:03:44.0167 0x1524  PGEffect - ok
18:03:44.0276 0x1524  [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla       

      C:\windows\system32\pla.dll
18:03:44.0370 0x1524  pla - ok
18:03:44.0448 0x1524  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay  

      C:\windows\system32\umpnpmgr.dll
18:03:44.0495 0x1524  PlugPlay - ok
18:03:44.0542 0x1524  [ 37E5E8FFBAD35605DAEEC3224EA0E465, E3A9BE275D3C8A3E143DF3A795964E9860A1F6C18BE36F8FE552E954435AC927 ] Pml

Driver HPZ12 C:\windows\system32\HPZipm12.dll
18:03:44.0542 0x1524  Pml Driver HPZ12 - ok
18:03:44.0573 0x1524  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ]

PNRPAutoReg     C:\windows\system32\pnrpauto.dll
18:03:44.0573 0x1524  PNRPAutoReg - ok
18:03:44.0604 0x1524  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc   

      C:\windows\system32\pnrpsvc.dll
18:03:44.0604 0x1524  PNRPsvc - ok
18:03:44.0698 0x1524  [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ]

PolicyAgent     C:\windows\System32\ipsecsvc.dll
18:03:44.0729 0x1524  PolicyAgent - ok
18:03:44.0760 0x1524  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power     

      C:\windows\system32\umpo.dll
18:03:44.0760 0x1524  Power - ok
18:03:44.0807 0x1524  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ]

PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
18:03:44.0807 0x1524  PptpMiniport - ok
18:03:44.0838 0x1524  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor

      C:\windows\system32\DRIVERS\processr.sys
18:03:44.0838 0x1524  Processor - ok
18:03:44.0900 0x1524  [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc   

      C:\windows\system32\profsvc.dll
18:03:44.0916 0x1524  ProfSvc - ok
18:03:44.0932 0x1524  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ]

ProtectedStorage C:\windows\system32\lsass.exe
18:03:44.0932 0x1524  ProtectedStorage - ok
18:03:44.0978 0x1524  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched    

      C:\windows\system32\DRIVERS\pacer.sys
18:03:44.0994 0x1524  Psched - ok
18:03:45.0056 0x1524  [ 5491E4E7D93804F43ABE8CE3C39F5A86, 7DCB769421B270689551DA7D0BBC299121808BB43A934FA6BDE7B00B9FE48DAF ] PxHelp20  

      C:\windows\system32\Drivers\PxHelp20.sys
18:03:45.0072 0x1524  PxHelp20 - ok
18:03:45.0150 0x1524  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300    

      C:\windows\system32\DRIVERS\ql2300.sys
18:03:45.0212 0x1524  ql2300 - ok
18:03:45.0259 0x1524  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx    

      C:\windows\system32\DRIVERS\ql40xx.sys
18:03:45.0290 0x1524  ql40xx - ok
18:03:45.0337 0x1524  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE     

      C:\windows\system32\qwave.dll
18:03:45.0353 0x1524  QWAVE - ok
18:03:45.0384 0x1524  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv  

      C:\windows\system32\drivers\qwavedrv.sys
18:03:45.0384 0x1524  QWAVEdrv - ok
18:03:45.0400 0x1524  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd    

      C:\windows\system32\DRIVERS\rasacd.sys
18:03:45.0400 0x1524  RasAcd - ok
18:03:45.0431 0x1524  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ]

RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
18:03:45.0431 0x1524  RasAgileVpn - ok
18:03:45.0462 0x1524  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto   

      C:\windows\System32\rasauto.dll
18:03:45.0462 0x1524  RasAuto - ok
18:03:45.0478 0x1524  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp   

      C:\windows\system32\DRIVERS\rasl2tp.sys
18:03:45.0493 0x1524  Rasl2tp - ok
18:03:45.0540 0x1524  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan    

      C:\windows\System32\rasmans.dll
18:03:45.0571 0x1524  RasMan - ok
18:03:45.0587 0x1524  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe  

      C:\windows\system32\DRIVERS\raspppoe.sys
18:03:45.0587 0x1524  RasPppoe - ok
18:03:45.0602 0x1524  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp   

      C:\windows\system32\DRIVERS\rassstp.sys
18:03:45.0618 0x1524  RasSstp - ok
18:03:45.0665 0x1524  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss     

      C:\windows\system32\DRIVERS\rdbss.sys
18:03:45.0680 0x1524  rdbss - ok
18:03:45.0696 0x1524  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus    

      C:\windows\system32\DRIVERS\rdpbus.sys
18:03:45.0712 0x1524  rdpbus - ok
18:03:45.0743 0x1524  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD    

      C:\windows\system32\DRIVERS\RDPCDD.sys
18:03:45.0743 0x1524  RDPCDD - ok
18:03:45.0774 0x1524  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD  

      C:\windows\system32\drivers\rdpencdd.sys
18:03:45.0774 0x1524  RDPENCDD - ok
18:03:45.0790 0x1524  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP  

      C:\windows\system32\drivers\rdprefmp.sys
18:03:45.0790 0x1524  RDPREFMP - ok
18:03:45.0852 0x1524  [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ]

RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
18:03:45.0852 0x1524  RdpVideoMiniport - ok
18:03:45.0914 0x1524  [ F031683E6D1FEA157ABB2FF260B51E61, 83B552819A5964152882C527E1421DBCEAACC74DEB897E3C4B53F52F1467FED3 ] RDPWD     

      C:\windows\system32\drivers\RDPWD.sys
18:03:45.0930 0x1524  RDPWD - ok
18:03:46.0008 0x1524  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost  

      C:\windows\system32\drivers\rdyboost.sys
18:03:46.0039 0x1524  rdyboost - ok
18:03:46.0070 0x1524  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ]

RemoteAccess    C:\windows\System32\mprdim.dll
18:03:46.0086 0x1524  RemoteAccess - ok
18:03:46.0102 0x1524  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ]

RemoteRegistry  C:\windows\system32\regsvc.dll
18:03:46.0133 0x1524  RemoteRegistry - ok
18:03:46.0336 0x1524  [ 05FC44D32A144925EAE45570029FD6E1, 843976755AC807920C84D769D91C04AFA9CD02B71F4E8F20B0C16493AA878923 ]

RoxMediaDB10    C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
18:03:46.0398 0x1524  RoxMediaDB10 - ok
18:03:46.0445 0x1524  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ]

RpcEptMapper    C:\windows\System32\RpcEpMap.dll
18:03:46.0460 0x1524  RpcEptMapper - ok
18:03:46.0476 0x1524  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ]

RpcLocator      C:\windows\system32\locator.exe
18:03:46.0476 0x1524  RpcLocator - ok
18:03:46.0507 0x1524  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs     

      C:\windows\system32\rpcss.dll
18:03:46.0523 0x1524  RpcSs - ok
18:03:46.0554 0x1524  RSELSVC - ok
18:03:46.0585 0x1524  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr    

      C:\windows\system32\DRIVERS\rspndr.sys
18:03:46.0585 0x1524  rspndr - ok
18:03:46.0632 0x1524  [ EF8B2AFC3C0751C5E5A59983C8893260, F612ACAD35F6ECC6596003D052B240B7688016FD5D82978727DD408DF36104F3 ] RSUSBSTOR

      C:\windows\system32\Drivers\RtsUStor.sys
18:03:46.0648 0x1524  RSUSBSTOR - ok
18:03:46.0679 0x1524  [ 26A9D6227D12B9D9DA5A81BB9B55D810, 65AB233248B09619BE47A44008544FDFAA6C60C671F8659DB85B97693677B3F9 ] RTL8167   

      C:\windows\system32\DRIVERS\Rt86win7.sys
18:03:46.0694 0x1524  RTL8167 - ok
18:03:46.0788 0x1524  [ 8327C64E9A4D052339C16499D08F7D6C, AFEFF41CBC6EDE2DF244B5DAFAD3DE1D6CFB35D24D3AC6B04122244BE99EC09D ] rtl8192se

      C:\windows\system32\DRIVERS\rtl8192se.sys
18:03:46.0850 0x1524  rtl8192se - ok
18:03:46.0850 0x1524  RtsUIR - ok
18:03:46.0913 0x1524  [ AABB1D240862349181F5350DD62FAAE7, D3F0E4EA739678800C241B1EAB6DAD1C30284DFF8859DE451CDBAD67CC867D5A ] RxFilter  

      C:\windows\system32\DRIVERS\RxFilter.sys
18:03:46.0928 0x1524  RxFilter - ok
18:03:46.0944 0x1524  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] SamSs     

      C:\windows\system32\lsass.exe
18:03:46.0944 0x1524  SamSs - ok
18:03:46.0991 0x1524  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port  

      C:\windows\system32\drivers\sbp2port.sys
18:03:47.0006 0x1524  sbp2port - ok
18:03:47.0038 0x1524  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr  

      C:\windows\System32\SCardSvr.dll
18:03:47.0053 0x1524  SCardSvr - ok
18:03:47.0084 0x1524  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter  

      C:\windows\system32\DRIVERS\scfilter.sys
18:03:47.0100 0x1524  scfilter - ok
18:03:47.0178 0x1524  [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule  

      C:\windows\system32\schedsvc.dll
18:03:47.0225 0x1524  Schedule - ok
18:03:47.0272 0x1524  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ]

SCPolicySvc     C:\windows\System32\certprop.dll
18:03:47.0272 0x1524  SCPolicySvc - ok
18:03:47.0287 0x1524  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC    

      C:\windows\System32\SDRSVC.dll
18:03:47.0303 0x1524  SDRSVC - ok
18:03:47.0334 0x1524  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv    

      C:\windows\system32\drivers\secdrv.sys
18:03:47.0334 0x1524  secdrv - ok
18:03:47.0365 0x1524  [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon  

      C:\windows\system32\seclogon.dll
18:03:47.0365 0x1524  seclogon - ok
18:03:47.0381 0x1524  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS      

      C:\windows\System32\sens.dll
18:03:47.0396 0x1524  SENS - ok
18:03:47.0412 0x1524  [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc  

      C:\windows\system32\sensrsvc.dll
18:03:47.0412 0x1524  SensrSvc - ok
18:03:47.0428 0x1524  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum   

      C:\windows\system32\DRIVERS\serenum.sys
18:03:47.0443 0x1524  Serenum - ok
18:03:47.0474 0x1524  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial    

      C:\windows\system32\DRIVERS\serial.sys
18:03:47.0474 0x1524  Serial - ok
18:03:47.0506 0x1524  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse  

      C:\windows\system32\DRIVERS\sermouse.sys
18:03:47.0506 0x1524  sermouse - ok
18:03:47.0568 0x1524  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ]

SessionEnv      C:\windows\system32\sessenv.dll
18:03:47.0599 0x1524  SessionEnv - ok
18:03:47.0630 0x1524  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk   

      C:\windows\system32\drivers\sffdisk.sys
18:03:47.0630 0x1524  sffdisk - ok
18:03:47.0630 0x1524  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc  

      C:\windows\system32\drivers\sffp_mmc.sys
18:03:47.0646 0x1524  sffp_mmc - ok
18:03:47.0662 0x1524  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd   

      C:\windows\system32\drivers\sffp_sd.sys
18:03:47.0662 0x1524  sffp_sd - ok
18:03:47.0693 0x1524  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy   

      C:\windows\system32\DRIVERS\sfloppy.sys
18:03:47.0693 0x1524  sfloppy - ok
18:03:47.0740 0x1524  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ]

SharedAccess    C:\windows\System32\ipnathlp.dll
18:03:47.0771 0x1524  SharedAccess - ok
18:03:47.0802 0x1524  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ]

ShellHWDetection C:\windows\System32\shsvcs.dll
18:03:47.0818 0x1524  ShellHWDetection - ok
18:03:47.0833 0x1524  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp    

      C:\windows\system32\drivers\sisagp.sys
18:03:47.0849 0x1524  sisagp - ok
18:03:47.0880 0x1524  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2  

      C:\windows\system32\DRIVERS\SiSRaid2.sys
18:03:47.0896 0x1524  SiSRaid2 - ok
18:03:47.0911 0x1524  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4  

      C:\windows\system32\DRIVERS\sisraid4.sys
18:03:47.0911 0x1524  SiSRaid4 - ok
18:03:47.0927 0x1524  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb       

      C:\windows\system32\DRIVERS\smb.sys
18:03:47.0942 0x1524  Smb - ok
18:03:47.0974 0x1524  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP  

      C:\windows\System32\snmptrap.exe
18:03:47.0989 0x1524  SNMPTRAP - ok
18:03:48.0005 0x1524  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr     

      C:\windows\system32\drivers\spldr.sys
18:03:48.0005 0x1524  spldr - ok
18:03:48.0052 0x1524  [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler   

      C:\windows\System32\spoolsv.exe
18:03:48.0083 0x1524  Spooler - ok
18:03:48.0270 0x1524  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc    

      C:\windows\system32\sppsvc.exe
18:03:48.0426 0x1524  sppsvc - ok
18:03:48.0488 0x1524  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ]

sppuinotify     C:\windows\system32\sppuinotify.dll
18:03:48.0488 0x1524  sppuinotify - ok
18:03:48.0551 0x1524  [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv       

      C:\windows\system32\DRIVERS\srv.sys
18:03:48.0598 0x1524  srv - ok
18:03:48.0629 0x1524  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2      

      C:\windows\system32\DRIVERS\srv2.sys
18:03:48.0644 0x1524  srv2 - ok
18:03:48.0660 0x1524  [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet    

      C:\windows\system32\DRIVERS\srvnet.sys
18:03:48.0660 0x1524  srvnet - ok
18:03:48.0691 0x1524  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV   

      C:\windows\System32\ssdpsrv.dll
18:03:48.0707 0x1524  SSDPSRV - ok
18:03:48.0738 0x1524  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc   

      C:\windows\system32\sstpsvc.dll
18:03:48.0738 0x1524  SstpSvc - ok
18:03:48.0769 0x1524  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor  

      C:\windows\system32\DRIVERS\stexstor.sys
18:03:48.0769 0x1524  stexstor - ok
18:03:48.0847 0x1524  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc    

      C:\windows\System32\wiaservc.dll
18:03:48.0878 0x1524  StiSvc - ok
18:03:48.0956 0x1524  [ FF5EB78AF7DFB68C2FB363537AAF753E, BF34EBC28A18D31ADA21098FCD2F2D5FACE7AA9B49DB1AFA4AD248B2A58FE86E ] stllssvr  

      C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
18:03:48.0972 0x1524  stllssvr - ok
18:03:49.0003 0x1524  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum    

      C:\windows\system32\drivers\swenum.sys
18:03:49.0003 0x1524  swenum - ok
18:03:49.0034 0x1524  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv     

      C:\windows\System32\swprv.dll
18:03:49.0066 0x1524  swprv - ok
18:03:49.0097 0x1524  [ 8BD10DC8809DC69A1C5A795CB10ADD76, 92ED1BC580DC2BE539296D69775368C974FBB0145A5114BA250261E49E073960 ] SynTP     

      C:\windows\system32\DRIVERS\SynTP.sys
18:03:49.0112 0x1524  SynTP - ok
18:03:49.0222 0x1524  [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain   

      C:\windows\system32\sysmain.dll
18:03:49.0331 0x1524  SysMain - ok
18:03:49.0378 0x1524  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ]

TabletInputService C:\windows\System32\TabSvc.dll
18:03:49.0393 0x1524  TabletInputService - ok
18:03:49.0440 0x1524  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv   

      C:\windows\System32\tapisrv.dll
18:03:49.0456 0x1524  TapiSrv - ok
18:03:49.0487 0x1524  [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS       

      C:\windows\System32\tbssvc.dll
18:03:49.0487 0x1524  TBS - ok
18:03:49.0612 0x1524  [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] Tcpip     

      C:\windows\system32\drivers\tcpip.sys
18:03:49.0674 0x1524  Tcpip - ok
18:03:49.0752 0x1524  [ 5579DD18546999F5D0EC39D018726C6B, 82432BACEE75C34F21222D9CC1607223C2940947118A63DB239777A4B1442AD3 ] TCPIP6    

      C:\windows\system32\DRIVERS\tcpip.sys
18:03:49.0799 0x1524  TCPIP6 - ok
18:03:49.0846 0x1524  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg  

      C:\windows\system32\drivers\tcpipreg.sys
18:03:49.0846 0x1524  tcpipreg - ok
18:03:49.0877 0x1524  [ 4084EA00D50C858D6F9038F86AE2E2D0, FD7C34311B7F700C7C93B9A8A59D507C53ADF874651C6979979EDF5E21C32FD5 ] tdcmdpst  

      C:\windows\system32\DRIVERS\tdcmdpst.sys
18:03:49.0877 0x1524  tdcmdpst - ok
18:03:49.0924 0x1524  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE    

      C:\windows\system32\drivers\tdpipe.sys
18:03:49.0939 0x1524  TDPIPE - ok
18:03:49.0970 0x1524  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP     

      C:\windows\system32\drivers\tdtcp.sys
18:03:49.0970 0x1524  TDTCP - ok
18:03:50.0017 0x1524  [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx       

      C:\windows\system32\DRIVERS\tdx.sys
18:03:50.0033 0x1524  tdx - ok
18:03:50.0064 0x1524  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD    

      C:\windows\system32\drivers\termdd.sys
18:03:50.0064 0x1524  TermDD - ok
18:03:50.0158 0x1524  [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ]

TermService     C:\windows\System32\termsrv.dll
18:03:50.0220 0x1524  TermService - ok
18:03:50.0251 0x1524  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes    

      C:\windows\system32\themeservice.dll
18:03:50.0267 0x1524  Themes - ok
18:03:50.0282 0x1524  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ]

THREADORDER     C:\windows\system32\mmcss.dll
18:03:50.0298 0x1524  THREADORDER - ok
18:03:50.0329 0x1524  [ F120967184A27E927052E8DDBB727851, B54A1D2B4D52C0DF19AC81617A26CA164C5779C568DB86A6FD97D0A14D5FEEB4 ] TMachInfo

      C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
18:03:50.0329 0x1524  TMachInfo - ok
18:03:50.0360 0x1524  [ FE65D33B7D4FF07DD1D29526A48DF810, E595370FD907734BC24263661C58F9AF7BDAEAE3BABED65A6C0EF837E17A7F68 ] TODDSrv   

      C:\Windows\system32\TODDSrv.exe
18:03:50.0360 0x1524  TODDSrv - ok
18:03:50.0392 0x1524  [ 0B5FA26E0C8A8E07A6DF3DF4E5711DA8, C7B3A66FE451933F56DB397F08161CA54F47DC7FDB8A4F4E2C573BC97FF775F0 ] TOSHIBA

eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
18:03:50.0407 0x1524  TOSHIBA eco Utility Service - ok
18:03:50.0454 0x1524  [ 67C1DA40D78C92622081A3E780C926B2, 12240BF045AF00F6B801E4CEFF4C7E851B6826D263F7F93C5ABC23C03A42393E ] TOSHIBA

HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
18:03:50.0470 0x1524  TOSHIBA HDD SSD Alert Service - ok
18:03:50.0548 0x1524  [ 969377943FE7284609BABBAB4E06B93C, 401ABFF0F2157730F8188E1C02C947EB62E9E0BE87DF260C4BCE74F5E8C08A46 ] tos_sps32

      C:\windows\system32\DRIVERS\tos_sps32.sys
18:03:50.0563 0x1524  tos_sps32 - ok
18:03:50.0626 0x1524  [ 31D2881B0647F2B09B118B9B50C02888, 7F174ADE54E5866DDCFE4C896D047EE3D4AE140A33A0184F3F57E44172F2EC87 ] TPCHSrv   

      C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
18:03:50.0641 0x1524  TPCHSrv - ok
18:03:50.0688 0x1524  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks    

      C:\windows\System32\trkwks.dll
18:03:50.0719 0x1524  TrkWks - ok
18:03:50.0797 0x1524  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ]

TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
18:03:50.0813 0x1524  TrustedInstaller - ok
18:03:50.0860 0x1524  [ B37B08F2E5EEB1A37E448E09BACE1101, 32CC9E06B88BAB6FAB4696B744548DFCE9199A7FD2BA8B019F269CA75895852C ] tssecsrv  

      C:\windows\system32\DRIVERS\tssecsrv.sys
18:03:50.0875 0x1524  tssecsrv - ok
18:03:50.0938 0x1524  [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] TsUsbFlt  

      C:\windows\system32\drivers\tsusbflt.sys
18:03:50.0953 0x1524  TsUsbFlt - ok
18:03:51.0031 0x1524  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel    

      C:\windows\system32\DRIVERS\tunnel.sys
18:03:51.0062 0x1524  tunnel - ok
18:03:51.0094 0x1524  [ FC24015B4052600C324C43E3A79C0664, 908DFC8490079FB3178DEF9D3A712F22E4E39D65092401D1003925FCF65EE4DB ] TVALZ     

      C:\windows\system32\DRIVERS\TVALZ_O.SYS
18:03:51.0109 0x1524  TVALZ - ok
18:03:51.0140 0x1524  [ 866462F5AE3F375EF83EF9DCE436031C, 5433B3F3FC66C0E17ADBD98F97FD6189927B81C462859C67A22CE16E66DEB6D8 ] TVALZFL   

      C:\windows\system32\DRIVERS\TVALZFL.sys
18:03:51.0140 0x1524  TVALZFL - ok
18:03:51.0156 0x1524  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35    

      C:\windows\system32\DRIVERS\uagp35.sys
18:03:51.0156 0x1524  uagp35 - ok
18:03:51.0187 0x1524  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs      

      C:\windows\system32\DRIVERS\udfs.sys
18:03:51.0203 0x1524  udfs - ok
18:03:51.0234 0x1524  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect

      C:\windows\system32\UI0Detect.exe
18:03:51.0234 0x1524  UI0Detect - ok
18:03:51.0281 0x1524  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx  

      C:\windows\system32\drivers\uliagpkx.sys
18:03:51.0281 0x1524  uliagpkx - ok
18:03:51.0312 0x1524  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus     

      C:\windows\system32\drivers\umbus.sys
18:03:51.0312 0x1524  umbus - ok
18:03:51.0359 0x1524  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass    

      C:\windows\system32\DRIVERS\umpass.sys
18:03:51.0359 0x1524  UmPass - ok
18:03:51.0390 0x1524  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost  

      C:\windows\System32\upnphost.dll
18:03:51.0421 0x1524  upnphost - ok
18:03:51.0452 0x1524  [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp   

      C:\windows\system32\DRIVERS\usbccgp.sys
18:03:51.0468 0x1524  usbccgp - ok
18:03:51.0484 0x1524  USBCCID - ok
18:03:51.0530 0x1524  [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir    

      C:\windows\system32\drivers\usbcir.sys
18:03:51.0546 0x1524  usbcir - ok
18:03:51.0562 0x1524  [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci   

      C:\windows\system32\DRIVERS\usbehci.sys
18:03:51.0562 0x1524  usbehci - ok
18:03:51.0624 0x1524  [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub    

      C:\windows\system32\DRIVERS\usbhub.sys
18:03:51.0655 0x1524  usbhub - ok
18:03:51.0811 0x1524  [ 8D557006BB327C29CDD6A01BA49E0E4E, 456DA0B4F38A5FD22FD8B8362E1D8757ACFCB86BB20A6767682297707D4B8AD1 ]

USBMIDIAudioDevMon C:\Program Files\M-Audio\USB MIDI Series\AudioDevMon.exe
18:03:51.0936 0x1524  USBMIDIAudioDevMon - ok
18:03:51.0952 0x1524  [ 9828C8D14CC2676421778F0DE638CF97, 479A28211FFB85190A01FAB0283B927588805D2C0CDB03F85F8F814B88E4F453 ] usbohci   

      C:\windows\system32\DRIVERS\usbohci.sys
18:03:51.0952 0x1524  usbohci - ok
18:03:51.0998 0x1524  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint  

      C:\windows\system32\DRIVERS\usbprint.sys
18:03:51.0998 0x1524  usbprint - ok
18:03:52.0014 0x1524  [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR   

      C:\windows\system32\DRIVERS\USBSTOR.SYS
18:03:52.0014 0x1524  USBSTOR - ok
18:03:52.0061 0x1524  [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci   

      C:\windows\system32\drivers\usbuhci.sys
18:03:52.0061 0x1524  usbuhci - ok
18:03:52.0139 0x1524  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo  

      C:\windows\System32\Drivers\usbvideo.sys
18:03:52.0154 0x1524  usbvideo - ok
18:03:52.0186 0x1524  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms     

      C:\windows\System32\uxsms.dll
18:03:52.0201 0x1524  UxSms - ok
18:03:52.0217 0x1524  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] VaultSvc  

      C:\windows\system32\lsass.exe
18:03:52.0217 0x1524  VaultSvc - ok
18:03:52.0248 0x1524  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot  

      C:\windows\system32\drivers\vdrvroot.sys
18:03:52.0248 0x1524  vdrvroot - ok
18:03:52.0310 0x1524  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds       

      C:\windows\System32\vds.exe
18:03:52.0357 0x1524  vds - ok
18:03:52.0404 0x1524  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga       

      C:\windows\system32\DRIVERS\vgapnp.sys
18:03:52.0404 0x1524  vga - ok
18:03:52.0420 0x1524  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave   

      C:\windows\System32\drivers\vga.sys
18:03:52.0420 0x1524  VgaSave - ok
18:03:52.0451 0x1524  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp     

      C:\windows\system32\drivers\vhdmp.sys
18:03:52.0451 0x1524  vhdmp - ok
18:03:52.0482 0x1524  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp    

      C:\windows\system32\drivers\viaagp.sys
18:03:52.0482 0x1524  viaagp - ok
18:03:52.0513 0x1524  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7     

      C:\windows\system32\DRIVERS\viac7.sys
18:03:52.0513 0x1524  ViaC7 - ok
18:03:52.0560 0x1524  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide    

      C:\windows\system32\drivers\viaide.sys
18:03:52.0560 0x1524  viaide - ok
18:03:52.0591 0x1524  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr    

      C:\windows\system32\drivers\volmgr.sys
18:03:52.0607 0x1524  volmgr - ok
18:03:52.0638 0x1524  [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx   

      C:\windows\system32\drivers\volmgrx.sys
18:03:52.0669 0x1524  volmgrx - ok
18:03:52.0700 0x1524  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap   

      C:\windows\system32\drivers\volsnap.sys
18:03:52.0732 0x1524  volsnap - ok
18:03:52.0778 0x1524  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid   

      C:\windows\system32\DRIVERS\vsmraid.sys
18:03:52.0778 0x1524  vsmraid - ok
18:03:52.0888 0x1524  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS       

      C:\windows\system32\vssvc.exe
18:03:52.0934 0x1524  VSS - ok
18:03:52.0950 0x1524  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus  

      C:\windows\system32\DRIVERS\vwifibus.sys
18:03:52.0950 0x1524  vwifibus - ok
18:03:52.0966 0x1524  [ 7090D3436EEB4E7DA3373090A23448F7, 3A130B28F2BFA7DCEC8596C4CE4E187B019F5ECF1AAC8DD1BBDE9CBD2428FEC2 ] vwififlt  

      C:\windows\system32\DRIVERS\vwififlt.sys
18:03:52.0966 0x1524  vwififlt - ok
18:03:52.0997 0x1524  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time   

      C:\windows\system32\w32time.dll
18:03:53.0012 0x1524  W32Time - ok
18:03:53.0044 0x1524  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen  

      C:\windows\system32\DRIVERS\wacompen.sys
18:03:53.0044 0x1524  WacomPen - ok
18:03:53.0090 0x1524  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP    

      C:\windows\system32\DRIVERS\wanarp.sys
18:03:53.0106 0x1524  WANARP - ok
18:03:53.0122 0x1524  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6  

      C:\windows\system32\DRIVERS\wanarp.sys
18:03:53.0122 0x1524  Wanarpv6 - ok
18:03:53.0278 0x1524  [ 353A04C273EC58475D8633E75CCD5604, FFAE53B6B53AEFC9E8A10BF27480E072D74430276BEB532FE1D473E9616D8CE0 ]

WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
18:03:53.0340 0x1524  WatAdminSvc - ok
18:03:53.0449 0x1524  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine  

      C:\windows\system32\wbengine.exe
18:03:53.0527 0x1524  wbengine - ok
18:03:53.0558 0x1524  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc  

      C:\windows\System32\wbiosrvc.dll
18:03:53.0590 0x1524  WbioSrvc - ok
18:03:53.0652 0x1524  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc   

      C:\windows\System32\wcncsvc.dll
18:03:53.0683 0x1524  wcncsvc - ok
18:03:53.0714 0x1524  [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ]

WcsPlugInService C:\windows\System32\WcsPlugInService.dll
18:03:53.0714 0x1524  WcsPlugInService - ok
18:03:53.0746 0x1524  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd        

      C:\windows\system32\DRIVERS\wd.sys
18:03:53.0746 0x1524  Wd - ok
18:03:53.0792 0x1524  [ D6EFAF429FD30C5DF613D220E344CCE7, 807D4563E8AD4073688691078EB13AF240E14BA5E0C8506A48B3060A20B90082 ] WDC_SAM   

      C:\windows\system32\DRIVERS\wdcsam.sys
18:03:53.0792 0x1524  WDC_SAM - ok
18:03:53.0855 0x1524  [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000  

      C:\windows\system32\drivers\Wdf01000.sys
18:03:53.0870 0x1524  Wdf01000 - ok
18:03:53.0902 0x1524  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ]

WdiServiceHost  C:\windows\system32\wdi.dll
18:03:53.0917 0x1524  WdiServiceHost - ok
18:03:53.0933 0x1524  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ]

WdiSystemHost   C:\windows\system32\wdi.dll
18:03:53.0933 0x1524  WdiSystemHost - ok
18:03:53.0980 0x1524  [ 75E8EBD7040CE238684333F97014762A, 2CA0B267FBAEB303D1F8B639D733DC0DE17BA1276CC9096035B4F2BBBED3EF7F ] WebClient

      C:\windows\System32\webclnt.dll
18:03:54.0011 0x1524  WebClient - ok
18:03:54.0026 0x1524  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc    

      C:\windows\system32\wecsvc.dll
18:03:54.0058 0x1524  Wecsvc - ok
18:03:54.0073 0x1524  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ]

wercplsupport   C:\windows\System32\wercplsupport.dll
18:03:54.0073 0x1524  wercplsupport - ok
18:03:54.0104 0x1524  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc    

      C:\windows\System32\WerSvc.dll
18:03:54.0120 0x1524  WerSvc - ok
18:03:54.0136 0x1524  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf    

      C:\windows\system32\DRIVERS\wfplwf.sys
18:03:54.0136 0x1524  WfpLwf - ok
18:03:54.0167 0x1524  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount  

      C:\windows\system32\drivers\wimmount.sys
18:03:54.0167 0x1524  WIMMount - ok
18:03:54.0276 0x1524  [ 082CF481F659FAE0DE51AD060881EB47, BB67D2AF0BB9192D4CCF66C23D80CE5A1B38715556D94E2561DBF8F805FA30A5 ] WinDefend

      C:\Program Files\Windows Defender\mpsvc.dll
18:03:54.0307 0x1524  WinDefend - ok
18:03:54.0323 0x1524  WinHttpAutoProxySvc - ok
18:03:54.0370 0x1524  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt   

      C:\windows\system32\wbem\WMIsvc.dll
18:03:54.0385 0x1524  Winmgmt - ok
18:03:54.0494 0x1524  [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM     

      C:\windows\system32\WsmSvc.dll
18:03:54.0572 0x1524  WinRM - ok
18:03:54.0650 0x1524  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc   

      C:\windows\System32\wlansvc.dll
18:03:54.0697 0x1524  Wlansvc - ok
18:03:54.0853 0x1524  [ 0A70F4022EC2E14C159EFC4F69AA2477, FF248136576F9803762C54DE5439D3411B52DCBC95B93176A5DAB857967D9AC4 ] wlidsvc   

      C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:03:54.0916 0x1524  wlidsvc - ok
18:03:54.0962 0x1524  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi   

      C:\windows\system32\drivers\wmiacpi.sys
18:03:54.0962 0x1524  WmiAcpi - ok
18:03:54.0994 0x1524  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv  

      C:\windows\system32\wbem\WmiApSrv.exe
18:03:55.0009 0x1524  wmiApSrv - ok
18:03:55.0118 0x1524  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ]

WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
18:03:55.0165 0x1524  WMPNetworkSvc - ok
18:03:55.0196 0x1524  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc    

      C:\windows\System32\wpcsvc.dll
18:03:55.0196 0x1524  WPCSvc - ok
18:03:55.0243 0x1524  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ]

WPDBusEnum      C:\windows\system32\wpdbusenum.dll
18:03:55.0274 0x1524  WPDBusEnum - ok
18:03:55.0306 0x1524  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl   

      C:\windows\system32\drivers\ws2ifsl.sys
18:03:55.0306 0x1524  ws2ifsl - ok
18:03:55.0321 0x1524  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc    

      C:\windows\System32\wscsvc.dll
18:03:55.0337 0x1524  wscsvc - ok
18:03:55.0337 0x1524  WSearch - ok
18:03:55.0462 0x1524  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv  

      C:\windows\system32\wuaueng.dll
18:03:55.0540 0x1524  wuauserv - ok
18:03:55.0586 0x1524  [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf    

      C:\windows\system32\drivers\WudfPf.sys
18:03:55.0602 0x1524  WudfPf - ok
18:03:55.0664 0x1524  [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd    

      C:\windows\system32\DRIVERS\WUDFRd.sys
18:03:55.0680 0x1524  WUDFRd - ok
18:03:55.0727 0x1524  [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc   

      C:\windows\System32\WUDFSvc.dll
18:03:55.0742 0x1524  wudfsvc - ok
18:03:55.0789 0x1524  [ 7CC38741B8F68F1E0D5D79DA6123666A, F90D2DA1C9AFB506C381CD386E1430931B5F81813FEDFD720F87FBC54E7A00DA ] WwanSvc   

      C:\windows\System32\wwansvc.dll
18:03:55.0820 0x1524  WwanSvc - ok
18:03:55.0836 0x1524  ================ Scan global ===============================
18:03:55.0898 0x1524  [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:

\windows\system32\basesrv.dll
18:03:55.0961 0x1524  [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:

\windows\system32\winsrv.dll
18:03:56.0008 0x1524  [ 51BB04243DF6196C06E125898127E397, E1B6C83FC6E455F6806185027C5B56F8BA9ECDF1CD69E97301EC0291F0D3466E ] C:

\windows\system32\winsrv.dll
18:03:56.0054 0x1524  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:

\windows\system32\sxssrv.dll
18:03:56.0086 0x1524  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:

\windows\system32\services.exe
18:03:56.0101 0x1524  [ Global ] - ok
18:03:56.0101 0x1524  ================ Scan MBR ==================================
18:03:56.0117 0x1524  [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
18:03:56.0507 0x1524  \Device\Harddisk0\DR0 - ok
18:03:56.0507 0x1524  ================ Scan VBR ==================================
18:03:56.0507 0x1524  [ 3E2D8FF930A548FE6BFA83167EFB82C4 ] \Device\Harddisk0\DR0\Partition1
18:03:56.0507 0x1524  \Device\Harddisk0\DR0\Partition1 - ok
18:03:56.0507 0x1524  ================ Scan generic autorun ======================
18:03:56.0600 0x1524  [ 8143723D21F4FA9B7AA295A29AE9541C, 3261A2463A5E4D8068964CD9ECCA1B203B21BFA2F8AC8EAA5AF32DC08D03FE38 ] C:

\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
18:03:56.0616 0x1524  StartCCC - ok
18:03:56.0944 0x1524  [ 967DCD9F36AAEA34FE859C9B82E6A4B9, C3D5CA9E972912C014421DDC8E2D8DD9240983F0BDAF47A52FE39F28AA9553AD ] C:

\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
18:03:57.0256 0x1524  RtHDVCpl - ok
18:03:57.0302 0x1524  [ 40F593DDA448AD66D5600A799FAEDC4A, C0DA7AB655296D10E408985B62D4DBED2FDE5F5CB647F140CAAAC8D81E395857 ] C:

\Program Files\ltmoh\Ltmoh.exe
18:03:57.0365 0x1524  LtMoh - ok
18:03:57.0630 0x1524  [ 778B2333591E9D28063D491456DA18BE, B6EE1FDE2CC137C075E2AA5A588C9356F79690525B0587A97D63127768247717 ] C:

\Program Files\Synaptics\SynTP\SynTPEnh.exe
18:03:57.0692 0x1524  SynTPEnh - ok
18:03:57.0755 0x1524  [ E579644A3F6196BDD8D1B00EC12FC7E6, A63F2C90FB74518D4DB4DA0381BFFE9509624DB6D9D4573BD24542094567211C ] C:

\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe
18:03:57.0770 0x1524  SVPWUTIL - ok
18:03:57.0817 0x1524  [ 5F91764211D1517C15C9D2C4ED665A09, 56941A8571FE5935237756795B9F821235B7AED066A450905C860B08F54A248E ] C:

\Program Files\TOSHIBA\Utilities\HWSetup.exe
18:03:57.0833 0x1524  HWSetup - ok
18:03:57.0864 0x1524  [ C5B2679B0AE204FDD0415199B7AFEF20, A488839697F72F5E914DC87077F196F355E4AA85A5AC9C555D67BB47CC198750 ] C:

\Program Files\TOSHIBA\Utilities\KeNotify.exe
18:03:57.0864 0x1524  KeNotify - ok
18:03:57.0958 0x1524  [ 552B331DC253F28C6B3B0B2A2B9BA398, 7FB0DBF7551DB7DFB67BD5FFD601CE0FE6D12FDDA3B3A3DD9AA92ADD891D8854 ] C:

\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
18:03:58.0020 0x1524  ToshibaServiceStation - ok
18:03:58.0067 0x1524  [ 45DB7D89744F1DE5C0ADD0C18B043329, 440F5ED0C31A5CA0156DF19D95861101DFE399A7749195787C5524DA6ABA57C4 ] C:

\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe
18:03:58.0098 0x1524  TosWaitSrv - ok
18:03:58.0160 0x1524  [ B5F096CD1F67AD9824FB17D2B06B6157, C290C148C2A4DE924BE356B523281E57F2220A428C78E7A512CDE96CC1FB35AD ] C:

\Program Files\TOSHIBA\TECO\Teco.exe
18:03:58.0223 0x1524  Teco - ok
18:03:58.0270 0x1524  [ A9BC134691E76EB00F0739046D433447, 1D548EF0EADC92252116E2AD07E5FB17F048EADB8C06DBF4E7C524DC779169A0 ] C:

\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe
18:03:58.0332 0x1524  TosSENotify - ok
18:03:58.0410 0x1524  [ A3A9E5888143F3DAB803B007393D791F, 42435F0AF4C942F4F05EB80B36188951A8BEAB3E50F67FCDB1FF8B52A04890C0 ] C:

\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
18:03:58.0441 0x1524  AdobeCS4ServiceManager - ok
18:03:58.0519 0x1524  [ 5E5637173FDD195AD51F0C7223CA1D29, 4D2A3CFF3273F0074540F4AFD957742F76D3F01C35272A42985A825651BA17E4 ] C:

\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
18:03:58.0535 0x1524  Adobe_ID0ENQBO - ok
18:03:58.0675 0x1524  [ 263DF54E9C61C401FD7FF29A3DA1FDFB, 6F3E594EB3468B1825F510512F5BF7BC2C63CD44887AADB8F4C16600B0633641 ] C:

\Program Files\Roxio\Roxio Burn\RoxioBurnLauncher.exe
18:03:58.0706 0x1524  Desktop Disc Tool - ok
18:03:58.0816 0x1524  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:

\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
18:03:58.0862 0x1524  Adobe ARM - ok
18:03:58.0940 0x1524  [ A1ED44DABCD252B95CD09487B65F734C, 02FF4793FC4B6764C533F09A963546CC314022CE5608CE49899CEF89E269CCC4 ] C:

\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
18:03:58.0972 0x1524  Acrobat Assistant 8.0 - ok
18:03:59.0096 0x1524  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:

\Program Files\Windows Sidebar\Sidebar.exe
18:03:59.0143 0x1524  Sidebar - ok
18:03:59.0159 0x1524  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:

\Windows\System32\mctadmin.exe
18:03:59.0174 0x1524  mctadmin - ok
18:03:59.0237 0x1524  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:

\Program Files\Windows Sidebar\Sidebar.exe
18:03:59.0252 0x1524  Sidebar - ok
18:03:59.0268 0x1524  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:

\Windows\System32\mctadmin.exe
18:03:59.0268 0x1524  mctadmin - ok
18:03:59.0362 0x1524  [ C8BC9A2DC599F1A52DC6B42FDD47B01E, F32F869EFA1E8ACECC9BDE7D0C9460EF3C85482629A22C4C7BEABE644B9C7E97 ] C:

\windows\system32\Macromed\Flash\FlashUtil32_14_0_0_145_Plugin.exe
18:03:59.0408 0x1524  FlashPlayerUpdate - ok
18:03:59.0408 0x1524  Waiting for KSN requests completion. In queue: 85
18:04:00.0422 0x1524  Waiting for KSN requests completion. In queue: 85
18:04:01.0437 0x1524  Waiting for KSN requests completion. In queue: 85
18:04:02.0451 0x1524  Waiting for KSN requests completion. In queue: 85
18:04:03.0527 0x1524  AV detected via SS2: avast! Antivirus, C:\Program Files\Alwil Software\Avast5\VisthAux.exe ( 9.0.2021.515 ),

0x41000 ( enabled : updated )
18:04:03.0558 0x1524  Win FW state via NFP2: enabled
18:04:06.0444 0x1524  ============================================================
18:04:06.0444 0x1524  Scan finished
18:04:06.0444 0x1524  ============================================================
18:04:06.0460 0x17d0  Detected object count: 0
18:04:06.0460 0x17d0  Actual detected object count: 0
18:04:35.0289 0x0464  Deinitialize success

========================================================================================================================








# AdwCleaner v3.304 - Report created 12/08/2014 at 18:10:25
# Updated 08/08/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : RoyalOak_Guitar - GUITARTEACHER
# Running from : C:\Users\RoyalOak_Guitar\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Users\RoyalOak_Guitar\AppData\Local\Conduit
Folder Deleted : C:\Users\RoyalOak_Guitar\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\RoyalOak_Guitar\AppData\Local\Zoom_Downloader
Folder Deleted : C:\Users\RoyalOak_Guitar\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\RoyalOak_Guitar\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\RoyalOak_Guitar\AppData\LocalLow\WhiteSmoke_New
File Deleted : C:\END

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F5B7945C-576A-4D6E-8A93-653EFFFA1412}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9B3AC166-BE2D-4CA1-810A-A1BB3B38FBC0}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\WhiteSmoke_New
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\WhiteSmoke_New
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17207


-\\ Mozilla Firefox v31.0 (x86 en-US)

[ File : C:\Users\RoyalOak_Guitar\AppData\Roaming\Mozilla\Firefox\Profiles\a60lwkkg.default-1365880822916\prefs.js ]


-\\ Google Chrome v36.0.1985.125

[ File : C:\Users\RoyalOak_Guitar\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

*************************

AdwCleaner[R0].txt - [2862 octets] - [12/08/2014 18:07:10]
AdwCleaner[S0].txt - [2837 octets] - [12/08/2014 18:10:25]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2897 octets] ##########









~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x86
Ran by RoyalOak_Guitar on Wed 08/13/2014 at 16:09:23.89
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{539B082C-67FA-4965-AC4E-

470850CE4333}



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\RoyalOak_Guitar\AppData\Roaming\mozilla\firefox\profiles\a60lwkkg.default-1365880822916\minidumps [65 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 08/13/2014 at 16:13:15.16
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


Eset



C:\AdwCleaner\Quarantine\C\Program Files\Conduit\Community Alerts\Alert.dll.vir    Win32/Toolbar.Conduit.Y potentially unwanted

application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\RoyalOak_Guitar\AppData\LocalLow\WhiteSmoke_New\hk64tbWhit.dll.vir    a variant of

Win64/Toolbar.Conduit.B potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\RoyalOak_Guitar\AppData\LocalLow\WhiteSmoke_New\hktbWhit.dll.vir    a variant of

Win32/Toolbar.Conduit.X potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\RoyalOak_Guitar\AppData\LocalLow\WhiteSmoke_New\ldrtbWhit.dll.vir    a variant of

Win32/Toolbar.Conduit.P potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\RoyalOak_Guitar\AppData\LocalLow\WhiteSmoke_New\tbWhit.dll.vir    a variant of Win32/Toolbar.Conduit.X

potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Users\RoyalOak_Guitar\AppData\LocalLow\WhiteSmoke_New\plugins\{5E1360DC-8FA8-40df-A8CD-

FC3831B3634B}\3.6.8\bin\PriceGongIE.dll.vir    a variant of Win32/PriceGong.A potentially unwanted application    deleted - quarantined
C:\Users\RoyalOak_Guitar\AppData\Local\Temp\DownloadManager_Installer.exe    a variant of MSIL/Adware.iBryte.A application    

cleaned by deleting - quarantined
C:\Users\RoyalOak_Guitar\Downloads\isobuster_install.exe    Win32/SmartFileAdvisor.A potentially unwanted application    

deleted - quarantined











 



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:40 AM

Posted 13 August 2014 - 05:07 PM

O we removed malware that can cause your issues..

Your Malwarebytes is outdated. Update it and scan.

Download 51a46ae42d560-malwarebytes_anti_malware.MalwareBytes Anti-Malware to your desktop.
  • Double-click mbam-setup-2.0.exe to start the installation of Malwarebytes Anti-Malware.
  • Follow the instructions on your screen to complete the installation. You can find the complete installation procedure here.
  • Click the Scan Now button, a threat scan will start automatically.
  • MalwareBytes Anti-Malware will now check for the latest updates. Click Update Now if new updates are available.
  • Your computer is now being scanned, please do not use your computer during the scan.
  • If no threats were found, click View detailed log.
    • Click Export and save the log as a .txt file on your Desktop or another location.
  • If the scan detected any threats, click Apply Actions.
    • To complete any actions taken you will be prompted to restart your computer...click on Yes.
    • After reboot, start Malwarebytes Anti-Malware again and click the History Tab at the top and select Application Logs.
    • Check the box next to Scan Log. Choose the most current scan and click View.
    • Click Export and save the log as a .txt file on your Desktop or another location.
Providing the MalwareBytes' Anti-Malware log file
  • Attach the log file you just saved to your next reply for further review.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 LittleGreenDots

LittleGreenDots
  • Topic Starter

  • Members
  • 444 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Metro Detroit Area
  • Local time:01:40 AM

Posted 14 August 2014 - 10:36 AM

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 8/14/2014
Scan Time: 10:34:20 AM
Logfile:
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.08.14.07
Rootkit Database: v2014.08.04.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: RoyalOak_Guitar

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 316733
Time Elapsed: 14 min, 27 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 9
PUP.Optional.WhiteSmoke.A, C:\Users\RoyalOak_Guitar\AppData\Roaming\Mozilla\Firefox\Profiles\ecj0io5d.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}, Quarantined, [66198e38e09bbd798ac8328a719105fb],
PUP.Optional.WhiteSmoke.A, C:\Users\RoyalOak_Guitar\AppData\Roaming\Mozilla\Firefox\Profiles\ecj0io5d.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\chrome, Quarantined, [66198e38e09bbd798ac8328a719105fb],
PUP.Optional.WhiteSmoke.A, C:\Users\RoyalOak_Guitar\AppData\Roaming\Mozilla\Firefox\Profiles\ecj0io5d.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\chrome\CT3289847, Quarantined, [66198e38e09bbd798ac8328a719105fb],
PUP.Optional.WhiteSmoke.A, C:\Users\RoyalOak_Guitar\AppData\Roaming\Mozilla\Firefox\Profiles\ecj0io5d.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\chrome\CT3289847\content, Quarantined, [66198e38e09bbd798ac8328a719105fb],
PUP.Optional.WhiteSmoke.A, C:\Users\RoyalOak_Guitar\AppData\Roaming\Mozilla\Firefox\Profiles\ecj0io5d.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\chrome\CT3289847\content\tb, Quarantined, [66198e38e09bbd798ac8328a719105fb],
PUP.Optional.WhiteSmoke.A, C:\Users\RoyalOak_Guitar\AppData\Roaming\Mozilla\Firefox\Profiles\ecj0io5d.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\chrome\CT3289847\content\tb\al, Quarantined, [66198e38e09bbd798ac8328a719105fb],
PUP.Optional.WhiteSmoke.A, C:\Users\RoyalOak_Guitar\AppData\Roaming\Mozilla\Firefox\Profiles\ecj0io5d.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\chrome\CT3289847\content\tb\al\wa, Quarantined, [66198e38e09bbd798ac8328a719105fb],
PUP.Optional.WhiteSmoke.A, C:\Users\RoyalOak_Guitar\AppData\Roaming\Mozilla\Firefox\Profiles\ecj0io5d.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\chrome\CT3289847\content\tb\al\wa\PRICE_GONG, Quarantined, [66198e38e09bbd798ac8328a719105fb],
PUP.Optional.WhiteSmoke.A, C:\Users\RoyalOak_Guitar\AppData\Roaming\Mozilla\Firefox\Profiles\ecj0io5d.default\extensions\{739df940-c5ee-4bab-9d7e-270894ae687a}\chrome\CT3289847\content\tb\al\wa\PRICE_GONG\css, Quarantined, [66198e38e09bbd798ac8328a719105fb],

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

 

 

I ran MalwareBytes a second time after reboot and it was clean.  How come these problems didn't show up on my AV scans before I posted here?  Does this malware have a way of hiding?

 

Thank u.

 

I await any further instructions from you.



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:40 AM

Posted 14 August 2014 - 08:32 PM

Looks clean now.
 

The WhiteSmoke web site indicates it has worked in the field of English writing technologies since 2002 with a focus on products that enhance and correct grammar, spelling, and writing style. They also provide translation software and other other specialized English writing tools. These all appear to be legitimate programs. However, many users have reported they did not know how WhiteSmoke was downloaded or installed so its most likely being bundled with other software that is downloaded. The WhiteSmoke web site acknowledges they make their technology available through other channels, such as a browser-based text editor, and specialized OEM versions designed for integration with third party service providers. Malwarebytes' Anti-Malware added PUP.WhiteSmoke to its detection database in November 2010.

From our investigation and dealings with this software we are also finding many cases of it being reported with a TDSS rootkit infection after installation. So depending on where and how the software is downloaded such as a bundled package, the severity of system infection will determine how the disinfection process goes.

The web site says the software can be removed through Add/Remove Programs or Programs and Features if using Vista/Windows 7 so check there first, highlight anything with the name "Whitesmoke", select Remove and restart the computer normally. This appears to work in most cases with the Whitesmoke Toolbar but not with the Translator.

Quietman7

We have cleaned it though..



Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
These PUPs are usually installed with an application, such as ... PriceGong.

When installing apps.. don't use the "recommended" but rather the "custom". Here you can UN check such items as that and toolbars from being installed.

Edited by boopme, 14 August 2014 - 08:35 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 LittleGreenDots

LittleGreenDots
  • Topic Starter

  • Members
  • 444 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Metro Detroit Area
  • Local time:01:40 AM

Posted 15 August 2014 - 05:00 AM

Thanks.  I'm at home and when I get into the office I'll follow your instructions immediately as outlined in your last reply. 

 

I am cautious about any software I install and avoid potentially suspicious sites (porno, torrentz, gaming, hacking, etc.) but I guess not careful enough.  My AV software didn't pick up this infection (Avast) and I have run Malware Bytes a number of times as well.  I hope this fixes my problems as I can't find the installation disk for the computer.  I'm sure it's somehwere, but I've spent hours looking and it's hiding from me.  If I had it, I would definitely reinstall and get a fresh start.  Thanks for all your help and I'll let you know if I have any incidents after cleaning my temp fies.



#9 LittleGreenDots

LittleGreenDots
  • Topic Starter

  • Members
  • 444 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Metro Detroit Area
  • Local time:01:40 AM

Posted 18 August 2014 - 08:52 AM

Done.  I ran TFC and rebooted.  BTW, what do I do with all these programs I downloaded onto my desktop as per your instructions?

 

Done.

However, I'm still having some issues.

I have files scattered all over my hard drive and have been planning on sorting them out in the near future.  So...I created a separate folder and have been saving all new files in that folder, all types.  

Before I contacted you I noticed that many (most) of my files were duplicated, some up to eight times.  I manually deleted the extra ones.  It took a few hours.  I hadn't thought too much about it because I was starting to sort them out on an external HD and thought I might have messed up (though I thought I was being very careful not to mix up files.)

Next - I contacted you and followed all your instructions.  I needed to copy a file from that folder and went into it and noticed some new duplicated files, plus a lot of file extensions I didn't recognize.  I am familiar with desktop.ini files and the like, but these are file types I have never seen before.  I haven't downloaded anything into that folder but only saved work I created on my computer.  Two file types I deleted before contacting you were:  OS.DAT and some CAB files.

I was going to gather them all and move them into a new folder within this folder but I discovered I cannot add a folder.  I tried creating a folder and moving it into this one folder but that didn't work either.  I noticed that one was named "service.lck" and thought that could be a service LOCK?

Here is a list of the file types I don't recognize:

Suspicious Files

.ftpquota

_INST32I.EX
_ISDEL.EXE

_setup.dll

_sys1.cab
_user1.cab
data1.cab

layout.bin

deptodoc.btr
doctodep.btr
linkinfo.btr

botinfs.cnf
bots.cnf
service.cnf
services.cnf
structure.cnf
writeto.cnf

desktop.ini
setup.ini

lang.dat
os.dat (2)

setup.ins

service.lck

setup.lid

data.tag (2)

Plus an "fpdbw" icon


I really need the files that I have created in this folder.  Can I copy them individually and save them to a flash drive and or a new folder and be confident that they aren't infected?  I don't have any EXE type files.  These are all file types of work I created with various programs, music notation, graphics, and MS type documents.

Please advise.
 



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:40 AM

Posted 18 August 2014 - 11:16 AM

If you are still getting many duplicates we should get a deeper look at the system for protected malware.

 

You can also ask about those files there as it may be related.

 

Please follow this Preparation Guide, do steps 6,7 and 8 and post in a new topic.
Let me know if all went well.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 LittleGreenDots

LittleGreenDots
  • Topic Starter

  • Members
  • 444 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Metro Detroit Area
  • Local time:01:40 AM

Posted 18 August 2014 - 11:48 AM

I'm not at work right now but I have a question...can I save those files?  What if I saved my work and deleted everything other than the file extensions that I recognize?  I have a huge number of hours invested in those files and some without backup.  Is there any way I can safely salvage my work before I move on to the next step?

 

Thanks.

 

I'll get right on the next task as soon as I get to work.

 

If my computer is still infected, is it likely the EXE file that causes the infection is located in this one folder or would it be concealed somewhere else on my HD?


Edited by LittleGreenDots, 18 August 2014 - 11:50 AM.


#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:40 AM

Posted 18 August 2014 - 02:06 PM

Most likely an exe file. It woukd be safer to post the DDS log in the prep guide so you won't lose valuable items.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 LittleGreenDots

LittleGreenDots
  • Topic Starter

  • Members
  • 444 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Metro Detroit Area
  • Local time:01:40 AM

Posted 18 August 2014 - 04:25 PM

I ran DDS and got two txt files.  It ran quickly and I had no issues.  I then posted a new thread in

Virus, Trojan, Spyware, and Malware Removal Logs

 

http://www.bleepingcomputer.com/forums/t/544876/duplication-of-files-in-one-folder/

 

I attached the second txt file as an attachment.

 

Is this the correct procedure?  Hope so.  And thanks.  Let me know if I misunderstood the instructions.



#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:40 AM

Posted 18 August 2014 - 07:30 PM

Thanks....
Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.
From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.
Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.
The current wait time is 1 - 5 days and ALL logs are answered.
If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.
To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users