Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Continue to get re-infected with malware.


  • Please log in to reply
13 replies to this topic

#1 johndepere

johndepere

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Local time:05:43 PM

Posted 02 December 2014 - 03:19 PM

Hello, I am running Windows XP professional and have recently not been able to keep my system clean. Once a week I run scans with Malware bytes,Avast and Super anti spyware and they continue to find infections after each scan. Can anyone help me with this? Thanks in advance for any help given.



BC AdBot (Login to Remove)

 


#2 silumor

silumor

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:06:43 PM

Posted 02 December 2014 - 03:30 PM

be more specific on what type of infections. names of infections.



#3 johndepere

johndepere
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Local time:05:43 PM

Posted 02 December 2014 - 03:55 PM

Ok, I will keep scan log on next run and post the results. Thanks for your reply.



#4 johndepere

johndepere
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Local time:05:43 PM

Posted 02 December 2014 - 04:18 PM

The threats in Avast state: Win32 Malware-gen and the ones from Malewarebytes list: PUP.optional. safersurf. Hope this is of some useful information. 



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:43 PM

Posted 02 December 2014 - 04:32 PM

Hello, I moved this to the Am I Infected forum...
 
Please post a full MBAM log you have  and
 
Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
     
    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner
    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).

    .
    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 johndepere

johndepere
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Local time:05:43 PM

Posted 02 December 2014 - 10:51 PM

         
Boopme, Thank you very much for your reply and I apologize for posting in the wrong forum. I have posted logs for tdsskiller, malware bytes and mini toolbox. I will get the rest of the info as time permits. thanks again, hope this is the info you were looking for..
 
 
 
 
 
 
MiniToolBox by Farbar  Version: 30-11-2014
Ran by John McMorrow (administrator) on 02-12-2014 at 21:23:57
Running from "C:\Documents and Settings\John McMorrow\My Documents\Downloads"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
 
Windows IP Configuration
 
 
 
Successfully flushed the DNS Resolver Cache.
 
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
Hosts file not detected in the default directory
========================= IP Configuration: ================================
 
Realtek RTL8139 Family PCI Fast Ethernet NIC = Local Area Connection (Disconnected)
1394 Net Adapter = 1394 Connection (Disconnected)
NETGEAR WNDA3100v2 N600 Wireless Dual Band USB Adapter = Wireless Network Connection (Connected)
 
 
# ---------------------------------- 
# Interface IP Configuration         
# ---------------------------------- 
pushd interface ip
 
 
# Interface IP Configuration for "Wireless Network Connection"
 
set address name="Wireless Network Connection" source=dhcp 
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp
 
 
popd
# End of interface IP configuration
 
 
 
 
Windows IP Configuration
 
 
 
        Host Name . . . . . . . . . . . . : self-0596411dbc
 
        Primary Dns Suffix  . . . . . . . : 
 
        Node Type . . . . . . . . . . . . : Unknown
 
        IP Routing Enabled. . . . . . . . : No
 
        WINS Proxy Enabled. . . . . . . . : No
 
        DNS Suffix Search List. . . . . . : new.rr.com
 
 
 
Ethernet adapter Wireless Network Connection:
 
 
 
        Connection-specific DNS Suffix  . : new.rr.com
 
        Description . . . . . . . . . . . : NETGEAR WNDA3100v2 N600 Wireless Dual Band USB Adapter
 
        Physical Address. . . . . . . . . : 44-94-FC-24-91-B6
 
        Dhcp Enabled. . . . . . . . . . . : Yes
 
        Autoconfiguration Enabled . . . . : Yes
 
        IP Address. . . . . . . . . . . . : 192.168.1.142
 
        Subnet Mask . . . . . . . . . . . : 255.255.255.0
 
        Default Gateway . . . . . . . . . : 192.168.1.1
 
        DHCP Server . . . . . . . . . . . : 192.168.1.1
 
        DNS Servers . . . . . . . . . . . : 209.18.47.61
 
                                            209.18.47.62
 
                                            192.168.1.1
 
        Lease Obtained. . . . . . . . . . : Tuesday, December 02, 2014 3:25:53 PM
 
        Lease Expires . . . . . . . . . . : Wednesday, December 03, 2014 3:25:53 PM
 
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61
 
Name:    google.com
Addresses:  74.125.225.96, 74.125.225.103, 74.125.225.102, 74.125.225.99
 74.125.225.104, 74.125.225.100, 74.125.225.98, 74.125.225.101, 74.125.225.105
 74.125.225.110, 74.125.225.97
 
 
 
Pinging google.com [173.194.46.97] with 32 bytes of data:
 
 
 
Reply from 173.194.46.97: bytes=32 time=33ms TTL=54
 
Reply from 173.194.46.97: bytes=32 time=26ms TTL=54
 
 
 
Ping statistics for 173.194.46.97:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 26ms, Maximum = 33ms, Average = 29ms
 
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61
 
Name:    yahoo.com
Addresses:  98.138.253.109, 98.139.183.24, 206.190.36.45
 
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
 
 
 
Reply from 98.138.253.109: bytes=32 time=39ms TTL=51
 
Reply from 98.138.253.109: bytes=32 time=40ms TTL=51
 
 
 
Ping statistics for 98.138.253.109:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 39ms, Maximum = 40ms, Average = 39ms
 
 
 
Pinging 127.0.0.1 with 32 bytes of data:
 
 
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
 
 
Ping statistics for 127.0.0.1:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
 
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10003 ...44 94 fc 24 91 b6 ...... NETGEAR WNDA3100v2 N600 Wireless Dual Band USB Adapter - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1   192.168.1.142  20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1  1
      169.254.0.0      255.255.0.0    192.168.1.142   192.168.1.142  20
      192.168.1.0    255.255.255.0    192.168.1.142   192.168.1.142  20
    192.168.1.142  255.255.255.255        127.0.0.1       127.0.0.1  20
    192.168.1.255  255.255.255.255    192.168.1.142   192.168.1.142  20
        224.0.0.0        240.0.0.0    192.168.1.142   192.168.1.142  20
  255.255.255.255  255.255.255.255    192.168.1.142   192.168.1.142  1
Default Gateway:       192.168.1.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (12/02/2014 08:35:07 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:35:07.765]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:34:33 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:34:33.250]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:33:58 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:33:58.734]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:33:24 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:33:24.203]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:32:49 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:32:49.687]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:32:15 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:32:15.171]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:31:40 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:31:40.656]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:31:06 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:31:06.140]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:30:31 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:30:31.625]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:29:57 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:29:57.015]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
 
System errors:
=============
Error: (12/02/2014 03:25:48 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (12/02/2014 07:37:01 AM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (12/01/2014 09:22:13 PM) (Source: Print) (User: NT AUTHORITY)
Description: Document Printable Version was corrupted and has been deleted.  The associated driver is: Fax Lexmark 5000 Series Printer.
 
Error: (12/01/2014 09:21:43 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (12/01/2014 08:28:02 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (12/01/2014 05:53:56 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (12/01/2014 01:57:23 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (11/30/2014 09:39:11 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (11/30/2014 05:26:45 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (11/29/2014 07:30:10 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
 
Microsoft Office Sessions:
=========================
Error: (12/02/2014 08:35:07 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:35:07.765]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:34:33 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:34:33.250]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:33:58 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:33:58.734]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:33:24 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:33:24.203]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:32:49 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:32:49.687]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:32:15 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:32:15.171]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:31:40 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:31:40.656]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:31:06 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:31:06.140]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:30:31 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:30:31.625]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:29:57 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:29:57.015]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
 
 
=========================== Installed Programs ============================
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.7.0.2090 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.7.0.2090 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.239 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Amazon MP3 Downloader 1.0.17 (HKLM\...\Amazon MP3 Downloader) (Version: 1.0.17 - Amazon Services LLC)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI Control Panel (HKLM\...\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}) (Version: 6.14.10.5166 - )
ATI Display Driver (HKLM\...\ATI Display Driver) (Version: 8.17-050813a1-027023C-HP - )
Avast Free Antivirus (HKLM\...\avast) (Version: 10.0.2208 - AVAST Software)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite HL-2280DW (HKLM\...\{3ACCCFB3-7B17-4E9F-ACB0-46868FCD4487}) (Version: 1.0.7.0 - Brother Industries, Ltd.)
Catalina Savings Printer (HKLM\...\{37331C16-3E97-4A20-80D8-BFB43AB0E2FB}) (Version: 1.0.0 - Catalina Marketing Corp)
CCleaner (remove only) (HKLM\...\CCleaner) (Version:  - Piriform)
Cisco Connect (HKLM\...\Cisco Connect) (Version: 1.4.11299.0 - Cisco Consumer Products LLC)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Coupon Printer for Windows (HKLM\...\Coupon Printer for Windows5.0.0.4) (Version: 5.0.0.4 - Coupons.com Incorporated)
Coupon Printer for Windows (HKLM\...\Coupon Printer for Windows5.0.1.2) (Version: 5.0.1.2 - Coupons.com Incorporated)
Coupon Printer for Windows (HKLM\...\Coupon Printer for Windows5.0.1.3) (Version: 5.0.1.3 - Coupons.com Incorporated)
CouponBar (HKLM\...\TTB000001.TTB000001Toolbar) (Version:  - )
CouponPrinterPlugin (HKLM\...\{8AC6566B-131F-4987-82DF-932CED9FCA23}) (Version: 2.0.2.0 - Hopster)
Definition Update for Microsoft Office 2010 (KB2899521) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{E48DACEA-5789-4CC5-8584-2E268C560131}) (Version:  - Microsoft)
Enhanced Multimedia Keyboard Solution (HKLM\...\KBD) (Version:  - )
Google Chrome (HKLM\...\Google Chrome) (Version: 39.0.2171.71 - Google Inc.)
Google Drive (HKLM\...\{C60F3836-333A-4AE2-B526-CFDBA143A9BA}) (Version: 1.18.7821.2489 - Google, Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Graph 4.4.2 (HKLM\...\Graph_is1) (Version:  - Ivan Johansen)
ImageMixer3 (HKLM\...\{751910E3-ECF1-44D0-BF3F-2936A4424514}) (Version: 3.00.006 - PIXELA)
Indeo® Software (HKLM\...\Indeo® Software) (Version:  - )
InterActual Player (HKLM\...\InterActual Player) (Version:  - )
Internet Transporter - NCP Link (HKLM\...\{92BF38A8-5616-4209-87A3-D910B45A1D98}) (Version: 3.2.1 - National Consumer Panel)
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 71 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Java Auto Updater (Version: 2.1.71.14 - Oracle, Inc.) Hidden
Java DB 10.6.2.1 (HKLM\...\{73EC658D-A1C6-40CA-8E86-E05821BAACE7}) (Version: 10.6.2.1 - Oracle)
Java™ SE Development Kit 6 Update 25 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0160250}) (Version: 1.6.0.250 - Oracle)
Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Master of the Skies - The Red Ace (HKLM\...\{F9B41170-7E44-480A-AD4A-CCD8FFFB3754}) (Version:  - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 (Version:  - Microsoft Corporation) Hidden
Microsoft Office  (HKLM\...\MSOffice) (Version:  - )
Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Software Update for Web Folders  (English) 14 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft User-Mode Driver Framework Feature Pack 1.9 (HKLM\...\Wudf01009) (Version:  - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Windows XP Video Decoder Checkup Utility (HKLM\...\DECCHECK) (Version:  - )
Microsoft WinUsb 1.0 (HKLM\...\winusb0100) (Version:  - Microsoft Corporation)
Mozilla Firefox 33.1 (x86 en-US) (HKLM\...\Mozilla Firefox 33.1 (x86 en-US)) (Version: 33.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NCP Internet Transporter (HKLM\...\{7CEB5AC4-B6F8-414C-845D-4295C125D17B}) (Version: 3.2.1 - National Consumer Panel)
neroxml (Version: 1.0.0 - Nero AG) Hidden
NETGEAR WNDA3100v2 wireless USB 2.0 adapter (HKLM\...\{3C7839E7-21F4-49E0-B4D5-AC8ED818CCB0}) (Version: 1.03.000 - NETGEAR)
Nuance PaperPort 12 (HKLM\...\{6C0A559F-8583-4B5A-8B50-20BEE15D8E64}) (Version: 12.1.0000 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
OverDrive Media Console (HKLM\...\{D07205E7-F6D3-4333-AFCC-782A07685B72}) (Version: 3.2.20 - OverDrive, Inc.)
PaperPort Image Printer (HKLM\...\{6EF2FDAB-7FBF-4AB9-92CD-594BDDB6A56B}) (Version: 1.00.0001 - Nuance Communications, Inc.)
QuickTime (HKLM\...\{57752979-A1C9-4C02-856B-FBB27AC4E02C}) (Version: 7.69.80.9 - Apple Inc.)
Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: 5.36 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version:  - Piriform)
Revo Uninstaller 1.92 (HKLM\...\Revo Uninstaller) (Version: 1.92 - VS Revo Group)
Scansoft PDF Professional (Version:  - ) Hidden
ScanTool.net for Windows v1.20 (HKLM\...\ScanTool.net for Windows) (Version: v1.20 - ScanTool.net, LLC)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (Version:  - Microsoft) Hidden
StartVADIS (HKLM\...\StartVADIS) (Version:  - )
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1164 - SUPERAntiSpyware.com)
SyncBack (HKLM\...\SyncBack_is1) (Version:  - 2BrightSparks)
TouchScan (HKLM\...\{AB008526-FDE0-47F0-BCC3-554274019708}) (Version: 2.10.1 - OCTech, LLC)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2889935) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{153CD843-3EDC-412C-95B1-F36237DF8415}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{A4F91D60-654C-4892-BFD3-0D41ADA649B6}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{0B7744D2-1FDD-4843-9987-7CE11B79F370}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837602) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{8158D96B-083A-4FE4-8587-B5D0F49FE4B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUSR_{794A0574-4E2F-4D58-B2A0-D7460ACDC85C}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition (HKLM\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{C1954E2B-1672-4E5C-B564-F8CB2D08345B}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2878251) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{521F54B6-E2E5-462D-946E-8161830DDF18}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Update for Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2141007) (HKLM\...\KB2141007) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2541763) (HKLM\...\KB2541763) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2607712) (HKLM\...\KB2607712) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2616676-v2) (HKLM\...\KB2616676-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB951978) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB976749) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows XP (KB978207) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows XP (KB980182) (Version: 1 - Microsoft Corporation) Hidden
VC 9.0 Runtime (Version: 1.0.0 - Check Point Software Technologies Ltd) Hidden
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
VLC media player 2.1.2 (HKLM\...\VLC media player) (Version: 2.1.2 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Driver Package - FTDI CDM Driver Package (02/17/2009 2.04.16) (HKLM\...\2DC0AA065FA83047D7ECD51C7000C1620D79A4C5) (Version: 02/17/2009 2.04.16 - FTDI)
Windows Driver Package - FTDI CDM Driver Package (02/17/2009 2.04.16) (HKLM\...\51A4D522DD31538335EF5736F0E7F588C70BCB12) (Version: 02/17/2009 2.04.16 - FTDI)
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version:  - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Format 11 runtime (Version:  - Microsoft Corporation) Hidden
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
Windows Media Player 11 (Version:  - Microsoft Corporation) Hidden
Windows PowerShell™ 1.0 (HKLM\...\KB926139-v2) (Version: 2 - Microsoft Corporation)
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 49%
Total physical RAM: 1470.48 MB
Available physical RAM: 735.53 MB
Total Pagefile: 1570.67 MB
Available Pagefile: 1043.09 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.02 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:186.3 GB) (Free:62.88 GB) NTFS
3 Drive e: (Pictures) (Fixed) (Total:232.83 GB) (Free:97.47 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\SELF-0596411DBC
 
Administrator            Guest                    HelpAssistant            
John McMorrow            SUPPORT_388945a0         
 
 
**** End of log ****
 
 
21:29:05.0000 0x51e8  ============================================================
21:29:05.0000 0x51e8  Current date / time: 2014/12/02 21:29:05.0000
21:29:05.0000 0x51e8  SystemInfo:
21:29:05.0000 0x51e8  
21:29:05.0000 0x51e8  OS Version: 5.1.2600 ServicePack: 3.0
21:29:05.0000 0x51e8  Product type: Workstation
21:29:05.0000 0x51e8  ComputerName: SELF-0596411DBC
21:29:05.0000 0x51e8  UserName: John McMorrow
21:29:05.0000 0x51e8  Windows directory: C:\WINDOWS
21:29:05.0000 0x51e8  System windows directory: C:\WINDOWS
21:29:05.0000 0x51e8  Processor architecture: Intel x86
21:29:05.0000 0x51e8  Number of processors: 1
21:29:05.0000 0x51e8  Page size: 0x1000
21:29:05.0000 0x51e8  Boot type: Normal boot
21:29:05.0000 0x51e8  ============================================================
21:29:08.0515 0x51e8  KLMD registered as C:\WINDOWS\system32\drivers\96331403.sys
21:29:08.0656 0x51e8  System UUID: {93FCF039-0C1D-141C-B1C9-7AD92F620F9B}
21:29:09.0375 0x51e8  Drive \Device\Harddisk0\DR0 - Size: 0x2E93E36000 ( 186.31 Gb ), SectorSize: 0x200, Cylinders: 0x64F1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
21:29:09.0390 0x51e8  Drive \Device\Harddisk1\DR1 - Size: 0x3A35294400 ( 232.83 Gb ), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
21:29:09.0484 0x51e8  ============================================================
21:29:09.0484 0x51e8  \Device\Harddisk0\DR0:
21:29:09.0484 0x51e8  MBR partitions:
21:29:09.0484 0x51e8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x17499EC1
21:29:09.0484 0x51e8  \Device\Harddisk1\DR1:
21:29:09.0500 0x51e8  MBR partitions:
21:29:09.0500 0x51e8  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1A8800
21:29:09.0500 0x51e8  ============================================================
21:29:09.0531 0x51e8  C: <-> \Device\Harddisk0\DR0\Partition1
21:29:09.0593 0x51e8  E: <-> \Device\Harddisk1\DR1\Partition1
21:29:09.0593 0x51e8  ============================================================
21:29:09.0593 0x51e8  Initialize success
21:29:09.0593 0x51e8  ============================================================
21:29:19.0187 0x5124  ============================================================
21:29:19.0187 0x5124  Scan started
21:29:19.0187 0x5124  Mode: Manual; 
21:29:19.0187 0x5124  ============================================================
21:29:19.0187 0x5124  KSN ping started
21:29:21.0734 0x5124  KSN ping finished: true
21:29:22.0953 0x5124  ================ Scan system memory ========================
21:29:22.0953 0x5124  System memory - ok
21:29:22.0953 0x5124  ================ Scan services =============================
21:29:23.0078 0x5124  [ 72D6D8E2D4F82C6E829125C7EC2A88F9, F357CFC3D04EB3F8E1A504D531D099698C6E2B29EB6CEDF75C08BF8917C46573 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
21:29:23.0093 0x5124  !SASCORE - ok
21:29:23.0312 0x5124  Abiosdsk - ok
21:29:23.0328 0x5124  abp480n5 - ok
21:29:23.0390 0x5124  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:29:23.0406 0x5124  ACPI - ok
21:29:23.0484 0x5124  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
21:29:23.0484 0x5124  ACPIEC - ok
21:29:23.0578 0x5124  [ F79623288F2A357AB20288B5DC4F452A, AA6F70A4C12E390E08074D6FD0EA0D1856D8274DA833E56A8811BF820A2D41D4 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:29:23.0593 0x5124  AdobeFlashPlayerUpdateSvc - ok
21:29:23.0609 0x5124  adpu160m - ok
21:29:23.0687 0x5124  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
21:29:23.0734 0x5124  aec - ok
21:29:23.0781 0x5124  [ 023867B6606FBABCDD52E089C4A507DA, 30BE26F63B7EC6C9607AB46A97ACE83DD8140191D28BAB9E6292DA835A922289 ] AegisP          C:\WINDOWS\system32\DRIVERS\AegisP.sys
21:29:23.0781 0x5124  AegisP - ok
21:29:23.0828 0x5124  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
21:29:23.0843 0x5124  AFD - ok
21:29:23.0875 0x5124  Aha154x - ok
21:29:23.0890 0x5124  aic78u2 - ok
21:29:23.0906 0x5124  aic78xx - ok
21:29:24.0187 0x5124  [ DD8520280304B6145A6BE31008748C7C, 4007EAA97E501492E450241338759337EF05E4F5C61AA05FF4BA3CFAD036B0D9 ] ALCXWDM         C:\WINDOWS\system32\drivers\ALCXWDM.SYS
21:29:24.0406 0x5124  ALCXWDM - ok
21:29:24.0468 0x5124  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
21:29:24.0468 0x5124  Alerter - ok
21:29:24.0515 0x5124  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             C:\WINDOWS\System32\alg.exe
21:29:24.0515 0x5124  ALG - ok
21:29:24.0531 0x5124  AliIde - ok
21:29:24.0546 0x5124  amsint - ok
21:29:24.0656 0x5124  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:29:24.0671 0x5124  Apple Mobile Device - ok
21:29:24.0750 0x5124  [ D8849F77C0B66226335A59D26CB4EDC6, 4990031453204C57E36E850252A39B05D6ECDAB9E71A8136FB4900F17E59C9CA ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
21:29:24.0765 0x5124  AppMgmt - ok
21:29:24.0796 0x5124  [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:29:24.0796 0x5124  Arp1394 - ok
21:29:24.0812 0x5124  asc - ok
21:29:24.0828 0x5124  asc3350p - ok
21:29:24.0843 0x5124  asc3550 - ok
21:29:24.0906 0x5124  [ B979979AB8027F7F53FB16EC4229B7DB, 3D50396B13B494D0082266C29C40715981CA105F6E407288C71410D4B833BB10 ] ASPI32          C:\WINDOWS\system32\drivers\ASPI32.sys
21:29:24.0906 0x5124  ASPI32 - ok
21:29:24.0968 0x5124  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:29:25.0015 0x5124  aspnet_state - ok
21:29:25.0078 0x5124  [ 9D23DE88C3B18BA87CD4587177CA6CEA, 46DBB867FC73E30320852F744F38B66906DD5B96C4EBB03F504CF33E867A8470 ] aswHwid         C:\WINDOWS\system32\drivers\aswHwid.sys
21:29:25.0078 0x5124  aswHwid - ok
21:29:25.0140 0x5124  [ 73A9014A9C4B19AA093DA05ED4246E27, F03C8433EB00229490BCD293CC97EF72452E156212D56C24BBA95C8E1B207D1A ] aswMonFlt       C:\WINDOWS\system32\drivers\aswMonFlt.sys
21:29:25.0140 0x5124  aswMonFlt - ok
21:29:25.0218 0x5124  [ 0926775B8C3B32EE99921CCB0F85378E, 21A46B124B3E9F2569030E2DF591858B85AA640DDBB5C994B5C00A1E78C9EF67 ] aswRdr          C:\WINDOWS\system32\drivers\aswRdr.sys
21:29:25.0250 0x5124  aswRdr - ok
21:29:25.0328 0x5124  [ 6544697080421E62E97AAFBD0A8AA391, BB3F492BF828A147B82FDD1FC9EB9867D96DE0481554A59745D41C6BAB551700 ] aswRvrt         C:\WINDOWS\system32\drivers\aswRvrt.sys
21:29:25.0343 0x5124  aswRvrt - ok
21:29:25.0437 0x5124  [ E73CBE3420ECFA8FF7D0467E170E335D, B994342C92AE9167908B8CA3D03DC278E919C7073512461AFFD4C25E8D2D8D66 ] aswSnx          C:\WINDOWS\system32\drivers\aswSnx.sys
21:29:25.0500 0x5124  aswSnx - ok
21:29:25.0578 0x5124  [ 1624D5AD126B8AFE2B2E85E5B8364EB6, AB97A74C1CA9921F7753D98516D7E11750D5D3ACD143C83273B0B295625440A0 ] aswSP           C:\WINDOWS\system32\drivers\aswSP.sys
21:29:25.0609 0x5124  aswSP - ok
21:29:25.0656 0x5124  [ 4C0ECF1AFA6992904814C74B99DD36F9, AA0D9BA7FE829888C636EC9D72E8E2D987A1C3FF092F95A38EC607CEE25A91F8 ] aswTdi          C:\WINDOWS\system32\drivers\aswTdi.sys
21:29:25.0671 0x5124  aswTdi - ok
21:29:25.0765 0x5124  [ 0EFBC2962B156E8AC267F96D4D93EF06, 8A69672CE8B68A0A683D583287473BFAB7CF8B9771C22E398607CF2A151C7124 ] aswVmm          C:\WINDOWS\system32\drivers\aswVmm.sys
21:29:25.0781 0x5124  aswVmm - ok
21:29:25.0843 0x5124  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:29:25.0843 0x5124  AsyncMac - ok
21:29:25.0875 0x5124  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
21:29:25.0890 0x5124  atapi - ok
21:29:25.0906 0x5124  Atdisk - ok
21:29:25.0968 0x5124  [ D21352BCAAB174948EB9672BC203BB0F, A9E74B29C6E7CAB539E9E869FB65BAFFEF5775832445579BEC7C5E6E70A93C5A ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
21:29:26.0000 0x5124  Ati HotKey Poller - ok
21:29:26.0109 0x5124  [ 7A6CF9F411A9C5BD5C442A1CD46AF401, A2074D8E3C49730ABBD64B69A752E7C8E851C6BFE3F0717A61A3C3ACF3FFDBE7 ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:29:26.0171 0x5124  ati2mtag - ok
21:29:26.0250 0x5124  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:29:26.0250 0x5124  Atmarpc - ok
21:29:26.0296 0x5124  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
21:29:26.0296 0x5124  AudioSrv - ok
21:29:26.0359 0x5124  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
21:29:26.0359 0x5124  audstub - ok
21:29:26.0437 0x5124  [ E3F7EC811923F3F1A77B185F22638E5E, 324041256314C1471B5F123FA8DECC8F374A6B497A6419D4CAF61E68E1733265 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
21:29:26.0453 0x5124  avast! Antivirus - ok
21:29:26.0562 0x5124  [ BCDF72DCE41874B3AD9143D537B493B2, C048C773137DD94C980179E90FAE7D90A6902DA0153342B33E784DB04C16385A ] BCMH43XX        C:\WINDOWS\system32\DRIVERS\bcmwlhigh5.sys
21:29:26.0625 0x5124  BCMH43XX - ok
21:29:26.0687 0x5124  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
21:29:26.0687 0x5124  Beep - ok
21:29:26.0765 0x5124  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            C:\WINDOWS\system32\qmgr.dll
21:29:26.0953 0x5124  BITS - ok
21:29:27.0078 0x5124  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:29:27.0093 0x5124  Bonjour Service - ok
21:29:27.0156 0x5124  [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser         C:\WINDOWS\System32\browser.dll
21:29:27.0156 0x5124  Browser - ok
21:29:27.0218 0x5124  [ 92A964547B96D697E5E9ED43B4297F5A, 01A84802B68253FF093EAFED5B85DE716BB85EBD080D92D4814B6FB39286CD24 ] BrScnUsb        C:\WINDOWS\system32\DRIVERS\BrScnUsb.sys
21:29:27.0218 0x5124  BrScnUsb - ok
21:29:27.0281 0x5124  [ EA7E57F87D6FEE5FD6C5F813C04E8CD2, 1EB84F4DEE3034FAFBEA2A3F84EECE036E803872DA94D54E958E9F2F09519E88 ] BrYNSvc         C:\Program Files\Browny02\BrYNSvc.exe
21:29:27.0296 0x5124  BrYNSvc - ok
21:29:27.0343 0x5124  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
21:29:27.0343 0x5124  cbidf2k - ok
21:29:27.0375 0x5124  cd20xrnt - ok
21:29:27.0406 0x5124  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
21:29:27.0406 0x5124  Cdaudio - ok
21:29:27.0453 0x5124  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
21:29:27.0500 0x5124  Cdfs - ok
21:29:27.0546 0x5124  [ BF79E659C506674C0497CC9C61F1A165, 43B3B64B01660DB447F45E1FFD9AF1BFAEEAB14F00BF87E0D256615E4FBDB78E ] Cdr4_xp         C:\WINDOWS\system32\drivers\Cdr4_xp.sys
21:29:27.0546 0x5124  Cdr4_xp - ok
21:29:27.0562 0x5124  [ 2C41CD49D82D5FD85C72D57B6CA25471, 6A16D47272740B1216A7211DA19EEB598512F2479085BFF1C0410DBD7EC5C659 ] Cdralw2k        C:\WINDOWS\system32\drivers\Cdralw2k.sys
21:29:27.0562 0x5124  Cdralw2k - ok
21:29:27.0593 0x5124  [ 4B0A100EAF5C49EF3CCA8C641431EACC, 88D9C066FFB863910EE1863CE63D38846ACA2DF72D6B5FDFCE0F3379A6DA5EF9 ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:29:27.0609 0x5124  Cdrom - ok
21:29:27.0625 0x5124  Changer - ok
21:29:27.0671 0x5124  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
21:29:27.0671 0x5124  CiSvc - ok
21:29:27.0703 0x5124  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
21:29:27.0703 0x5124  ClipSrv - ok
21:29:27.0781 0x5124  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:29:27.0812 0x5124  clr_optimization_v2.0.50727_32 - ok
21:29:27.0828 0x5124  CmdIde - ok
21:29:27.0843 0x5124  COMSysApp - ok
21:29:27.0875 0x5124  Cpqarray - ok
21:29:27.0921 0x5124  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
21:29:27.0921 0x5124  CryptSvc - ok
21:29:27.0937 0x5124  dac2w2k - ok
21:29:27.0968 0x5124  dac960nt - ok
21:29:28.0031 0x5124  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
21:29:28.0062 0x5124  DcomLaunch - ok
21:29:28.0125 0x5124  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
21:29:28.0125 0x5124  Dhcp - ok
21:29:28.0156 0x5124  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
21:29:28.0156 0x5124  Disk - ok
21:29:28.0171 0x5124  dmadmin - ok
21:29:28.0265 0x5124  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
21:29:28.0312 0x5124  dmboot - ok
21:29:28.0343 0x5124  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
21:29:28.0343 0x5124  dmio - ok
21:29:28.0390 0x5124  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
21:29:28.0390 0x5124  dmload - ok
21:29:28.0437 0x5124  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        C:\WINDOWS\System32\dmserver.dll
21:29:28.0437 0x5124  dmserver - ok
21:29:28.0484 0x5124  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
21:29:28.0500 0x5124  DMusic - ok
21:29:28.0562 0x5124  [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
21:29:28.0578 0x5124  Dnscache - ok
21:29:28.0625 0x5124  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
21:29:28.0640 0x5124  Dot3svc - ok
21:29:28.0656 0x5124  dpti2o - ok
21:29:28.0687 0x5124  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
21:29:28.0687 0x5124  drmkaud - ok
21:29:28.0765 0x5124  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         C:\WINDOWS\System32\eapsvc.dll
21:29:28.0781 0x5124  EapHost - ok
21:29:28.0828 0x5124  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
21:29:28.0828 0x5124  ERSvc - ok
21:29:28.0890 0x5124  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog        C:\WINDOWS\system32\services.exe
21:29:28.0906 0x5124  Eventlog - ok
21:29:28.0968 0x5124  [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem     C:\WINDOWS\system32\es.dll
21:29:29.0000 0x5124  EventSystem - ok
21:29:29.0046 0x5124  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
21:29:29.0062 0x5124  Fastfat - ok
21:29:29.0125 0x5124  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:29:29.0156 0x5124  FastUserSwitchingCompatibility - ok
21:29:29.0171 0x5124  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
21:29:29.0171 0x5124  Fdc - ok
21:29:29.0250 0x5124  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
21:29:29.0250 0x5124  Fips - ok
21:29:29.0281 0x5124  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:29:29.0281 0x5124  Flpydisk - ok
21:29:29.0312 0x5124  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
21:29:29.0328 0x5124  FltMgr - ok
21:29:29.0421 0x5124  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:29:29.0421 0x5124  FontCache3.0.0.0 - ok
21:29:29.0437 0x5124  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:29:29.0453 0x5124  Fs_Rec - ok
21:29:29.0484 0x5124  [ 7C17235845D5AE3FB33EAD47B5881521, ED490A72561507E7C6CAC8C218B62EF4CEC1EBA9D4728FC12EF22FD6695A380E ] FTDIBUS         C:\WINDOWS\system32\drivers\ftdibus.sys
21:29:29.0484 0x5124  FTDIBUS - ok
21:29:29.0546 0x5124  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:29:29.0546 0x5124  Ftdisk - ok
21:29:29.0609 0x5124  [ 23220A4709CC5785F9633BA71416145C, 8E9E314EFDDDB511AAE612B5494C09E6A5EA2559B4682C7413AEE02DFBDE3161 ] FTSER2K         C:\WINDOWS\system32\drivers\ftser2k.sys
21:29:29.0609 0x5124  FTSER2K - ok
21:29:29.0656 0x5124  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
21:29:29.0656 0x5124  GEARAspiWDM - ok
21:29:29.0687 0x5124  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:29:29.0687 0x5124  Gpc - ok
21:29:29.0796 0x5124  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
21:29:29.0796 0x5124  gupdate - ok
21:29:29.0828 0x5124  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
21:29:29.0828 0x5124  gupdatem - ok
21:29:29.0921 0x5124  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:29:29.0937 0x5124  helpsvc - ok
21:29:29.0953 0x5124  HidServ - ok
21:29:29.0984 0x5124  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:29:29.0984 0x5124  HidUsb - ok
21:29:30.0031 0x5124  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
21:29:30.0046 0x5124  hkmsvc - ok
21:29:30.0062 0x5124  hpn - ok
21:29:30.0125 0x5124  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
21:29:30.0140 0x5124  HTTP - ok
21:29:30.0187 0x5124  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
21:29:30.0187 0x5124  HTTPFilter - ok
21:29:30.0203 0x5124  i2omgmt - ok
21:29:30.0218 0x5124  i2omp - ok
21:29:30.0265 0x5124  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:29:30.0281 0x5124  i8042prt - ok
21:29:30.0406 0x5124  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:29:30.0468 0x5124  idsvc - ok
21:29:30.0500 0x5124  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
21:29:30.0500 0x5124  Imapi - ok
21:29:30.0593 0x5124  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    C:\WINDOWS\system32\imapi.exe
21:29:30.0609 0x5124  ImapiService - ok
21:29:30.0625 0x5124  ini910u - ok
21:29:30.0656 0x5124  IntelIde - ok
21:29:30.0703 0x5124  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
21:29:30.0718 0x5124  Ip6Fw - ok
21:29:30.0765 0x5124  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:29:30.0765 0x5124  IpFilterDriver - ok
21:29:30.0812 0x5124  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:29:30.0812 0x5124  IpInIp - ok
21:29:30.0875 0x5124  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:29:30.0890 0x5124  IpNat - ok
21:29:30.0968 0x5124  [ 463790AEF94D8EAB674631257F53252E, A02972457F45AD6816CB5F60DE4CD15D68256695FA0F3E4EAD6F9E36CBE54576 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:29:31.0000 0x5124  iPod Service - ok
21:29:31.0031 0x5124  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:29:31.0046 0x5124  IPSec - ok
21:29:31.0078 0x5124  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
21:29:31.0078 0x5124  IRENUM - ok
21:29:31.0125 0x5124  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:29:31.0125 0x5124  isapnp - ok
21:29:31.0359 0x5124  [ DBDB1A25291B2D18C614F5CA963156A8, C8EA730A6A5BCBE7952AAA22F212C244014F206D2F4A274E29384C09F1F10A66 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
21:29:31.0375 0x5124  JavaQuickStarterService - ok
21:29:31.0437 0x5124  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:29:31.0437 0x5124  Kbdclass - ok
21:29:31.0468 0x5124  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
21:29:31.0484 0x5124  kmixer - ok
21:29:31.0515 0x5124  kqemu - ok
21:29:31.0546 0x5124  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
21:29:31.0593 0x5124  KSecDD - ok
21:29:31.0640 0x5124  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
21:29:31.0656 0x5124  lanmanserver - ok
21:29:31.0718 0x5124  [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:29:31.0765 0x5124  lanmanworkstation - ok
21:29:31.0781 0x5124  Lavasoft Kernexplorer - ok
21:29:31.0796 0x5124  lbrtfdc - ok
21:29:31.0875 0x5124  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
21:29:31.0875 0x5124  LmHosts - ok
21:29:31.0984 0x5124  [ D1D8CFBEF7C608B2D40D0E0E9FBC8E52, 6D58C8D02EE91FDB4CBEDA8876C4A919E4FEDDAAD70D48B9F71812E044980AC8 ] lxdmCATSCustConnectService C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdmserv.exe
21:29:32.0031 0x5124  lxdmCATSCustConnectService - ok
21:29:32.0062 0x5124  lxdm_device - ok
21:29:32.0109 0x5124  [ D2DED3C333A5D9CB3F4C244B0F0DD877, 5C1D6C2520C24B12AC99B4B1AB8A0C41052B78CEC2E8B52807057B09A03AD81F ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
21:29:32.0109 0x5124  MBAMProtector - ok
21:29:32.0359 0x5124  [ 6D8A2EE4244630B290A837E79C0F37A1, 6783BBC0BDC93E4D6D43531A1AD0DF5CD26C3BBFA6384927C5CF65AD97FB04AD ] MBAMScheduler   C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
21:29:32.0468 0x5124  MBAMScheduler - ok
21:29:32.0546 0x5124  [ 09D4503CBB6ADB3A54E7C7A75090B728, 6139EA3338FD64205481EDEC813A44F8D395FDA7B67AA431DA61F3631C3EDAE6 ] MBAMService     C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
21:29:32.0625 0x5124  MBAMService - ok
21:29:32.0671 0x5124  [ 8E2E9CCD873ABF180F48BCAEEEBE347D, 35DBBB8E63B480151EA5701D9DB7C90642FA2391D044DB400D3644F3E21BB0C1 ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
21:29:32.0687 0x5124  MBAMSwissArmy - ok
21:29:32.0703 0x5124  mcdbus - ok
21:29:32.0781 0x5124  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
21:29:32.0781 0x5124  Messenger - ok
21:29:32.0890 0x5124  Microsoft SharePoint Workspace Audit Service - ok
21:29:32.0937 0x5124  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
21:29:32.0953 0x5124  mnmdd - ok
21:29:33.0000 0x5124  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
21:29:33.0015 0x5124  mnmsrvc - ok
21:29:33.0046 0x5124  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
21:29:33.0046 0x5124  Modem - ok
21:29:33.0078 0x5124  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:29:33.0078 0x5124  Mouclass - ok
21:29:33.0125 0x5124  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:29:33.0125 0x5124  mouhid - ok
21:29:33.0156 0x5124  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
21:29:33.0156 0x5124  MountMgr - ok
21:29:33.0234 0x5124  [ DEA022193DF8C88F6E2B3E33D148A5DB, 97DFC47DB83E04A975A1969AA120385463FCAF4E1A9984FD3220442D7026B45A ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:29:33.0234 0x5124  MozillaMaintenance - ok
21:29:33.0265 0x5124  mraid35x - ok
21:29:33.0281 0x5124  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:29:33.0296 0x5124  MRxDAV - ok
21:29:33.0343 0x5124  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:29:33.0390 0x5124  MRxSmb - ok
21:29:33.0437 0x5124  [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
21:29:33.0437 0x5124  MSDTC - ok
21:29:33.0468 0x5124  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
21:29:33.0468 0x5124  Msfs - ok
21:29:33.0500 0x5124  MSIServer - ok
21:29:33.0531 0x5124  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:29:33.0531 0x5124  MSKSSRV - ok
21:29:33.0578 0x5124  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:29:33.0578 0x5124  MSPCLOCK - ok
21:29:33.0593 0x5124  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
21:29:33.0593 0x5124  MSPQM - ok
21:29:33.0625 0x5124  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:29:33.0625 0x5124  mssmbios - ok
21:29:33.0671 0x5124  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
21:29:33.0687 0x5124  Mup - ok
21:29:33.0781 0x5124  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        C:\WINDOWS\System32\qagentrt.dll
21:29:33.0812 0x5124  napagent - ok
21:29:33.0859 0x5124  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
21:29:33.0875 0x5124  NDIS - ok
21:29:33.0937 0x5124  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:29:33.0937 0x5124  NdisTapi - ok
21:29:33.0953 0x5124  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:29:33.0968 0x5124  Ndisuio - ok
21:29:34.0000 0x5124  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:29:34.0000 0x5124  NdisWan - ok
21:29:34.0031 0x5124  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
21:29:34.0046 0x5124  NDProxy - ok
21:29:34.0062 0x5124  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
21:29:34.0062 0x5124  NetBIOS - ok
21:29:34.0109 0x5124  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
21:29:34.0125 0x5124  NetBT - ok
21:29:34.0187 0x5124  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          C:\WINDOWS\system32\netdde.exe
21:29:34.0203 0x5124  NetDDE - ok
21:29:34.0218 0x5124  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
21:29:34.0218 0x5124  NetDDEdsdm - ok
21:29:34.0296 0x5124  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        C:\WINDOWS\system32\lsass.exe
21:29:34.0296 0x5124  Netlogon - ok
21:29:34.0343 0x5124  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          C:\WINDOWS\System32\netman.dll
21:29:34.0359 0x5124  Netman - ok
21:29:34.0437 0x5124  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:29:34.0453 0x5124  NetTcpPortSharing - ok
21:29:34.0484 0x5124  [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:29:34.0484 0x5124  NIC1394 - ok
21:29:34.0546 0x5124  [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla             C:\WINDOWS\System32\mswsock.dll
21:29:34.0562 0x5124  Nla - ok
21:29:34.0562 0x5124  NMIndexingService - ok
21:29:34.0625 0x5124  [ B9730495E0CF674680121E34BD95A73B, 1A3DD943B0EEA19A676175825CB135825ECF41404B59349AC9B1E6D137FA9B46 ] NPF             C:\WINDOWS\system32\DRIVERS\npf.sys
21:29:34.0625 0x5124  NPF - ok
21:29:34.0687 0x5124  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
21:29:34.0687 0x5124  Npfs - ok
21:29:34.0703 0x5124  ntcdrdrv - ok
21:29:34.0750 0x5124  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
21:29:34.0781 0x5124  Ntfs - ok
21:29:34.0812 0x5124  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
21:29:34.0828 0x5124  NtLmSsp - ok
21:29:34.0890 0x5124  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
21:29:34.0906 0x5124  NtmsSvc - ok
21:29:34.0953 0x5124  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
21:29:34.0953 0x5124  Null - ok
21:29:35.0000 0x5124  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:29:35.0015 0x5124  NwlnkFlt - ok
21:29:35.0031 0x5124  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:29:35.0031 0x5124  NwlnkFwd - ok
21:29:35.0093 0x5124  [ CA33832DF41AFB202EE7AEB05145922F, 9DD0089C2E13C7F81214C3B5A4A61276292052F9BBFEA7FCD0F6AA27815D5F95 ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:29:35.0093 0x5124  ohci1394 - ok
21:29:35.0171 0x5124  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:29:35.0187 0x5124  ose - ok
21:29:35.0562 0x5124  [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:29:35.0828 0x5124  osppsvc - ok
21:29:35.0890 0x5124  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
21:29:35.0906 0x5124  Parport - ok
21:29:35.0921 0x5124  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
21:29:35.0921 0x5124  PartMgr - ok
21:29:35.0968 0x5124  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
21:29:35.0984 0x5124  ParVdm - ok
21:29:36.0015 0x5124  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
21:29:36.0031 0x5124  PCI - ok
21:29:36.0062 0x5124  PCIDump - ok
21:29:36.0109 0x5124  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
21:29:36.0109 0x5124  PCIIde - ok
21:29:36.0156 0x5124  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
21:29:36.0156 0x5124  Pcmcia - ok
21:29:36.0218 0x5124  [ 5B6C11DE7E839C05248CED8825470FEF, DB57DFD02C18461B1B383DF759730FFEE9C7FA8577E1679FD4740A590303EE79 ] pcouffin        C:\WINDOWS\system32\Drivers\pcouffin.sys
21:29:36.0218 0x5124  pcouffin - ok
21:29:36.0359 0x5124  [ 1B7464E530D6FB7A9F94613B33662EB1, EC343440BC97E4C3320868B8EE22C3983C8B5F17E4545D233E2274888FB960FC ] pcregservice    C:\Program Files\pcreg\pcreg.exe
21:29:36.0375 0x5124  pcregservice - ok
21:29:36.0390 0x5124  PDCOMP - ok
21:29:36.0500 0x5124  [ C1C3BAF078BE5A14384A4BA2D730817D, 6E4D2F73A1CB250B3EE270CCE806A37EB2140E34EAF9F48C45CC12D2A451AA16 ] PDFProFiltSrvPP C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe
21:29:36.0546 0x5124  PDFProFiltSrvPP - ok
21:29:36.0578 0x5124  PDFRAME - ok
21:29:36.0593 0x5124  PDRELI - ok
21:29:36.0609 0x5124  PDRFRAME - ok
21:29:36.0625 0x5124  perc2 - ok
21:29:36.0656 0x5124  perc2hib - ok
21:29:36.0750 0x5124  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay        C:\WINDOWS\system32\services.exe
21:29:36.0750 0x5124  PlugPlay - ok
21:29:36.0781 0x5124  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
21:29:36.0781 0x5124  PolicyAgent - ok
21:29:36.0843 0x5124  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:29:36.0843 0x5124  PptpMiniport - ok
21:29:36.0859 0x5124  [ A32BEBAF723557681BFC6BD93E98BD26, 35039BA72A29F87B2CA37DCDE4EFDAABBDEAD8CE3EB8652ACC665994118145A6 ] Processor       C:\WINDOWS\system32\DRIVERS\processr.sys
21:29:36.0859 0x5124  Processor - ok
21:29:36.0890 0x5124  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:29:36.0890 0x5124  ProtectedStorage - ok
21:29:36.0921 0x5124  [ 390C204CED3785609AB24E9C52054A84, D997A9EAAE4A7FED9C2FEBD1AA7D1171431B9C9D56F8BFB587DCAE26203FF4D2 ] Ps2             C:\WINDOWS\system32\DRIVERS\PS2.sys
21:29:36.0921 0x5124  Ps2 - ok
21:29:36.0953 0x5124  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
21:29:36.0953 0x5124  PSched - ok
21:29:36.0984 0x5124  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:29:36.0984 0x5124  Ptilink - ok
21:29:37.0031 0x5124  [ 1962166E0CEB740704F30FA55AD3D509, 22C21907D7FDCA2CBBE1EC0479D83DDD4C4FCBC07C8791A2F62414EC5E85E488 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:29:37.0031 0x5124  PxHelp20 - ok
21:29:37.0046 0x5124  ql1080 - ok
21:29:37.0078 0x5124  Ql10wnt - ok
21:29:37.0093 0x5124  ql12160 - ok
21:29:37.0109 0x5124  ql1240 - ok
21:29:37.0125 0x5124  ql1280 - ok
21:29:37.0140 0x5124  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:29:37.0140 0x5124  RasAcd - ok
21:29:37.0187 0x5124  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         C:\WINDOWS\System32\rasauto.dll
21:29:37.0203 0x5124  RasAuto - ok
21:29:37.0265 0x5124  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:29:37.0265 0x5124  Rasl2tp - ok
21:29:37.0328 0x5124  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          C:\WINDOWS\System32\rasmans.dll
21:29:37.0343 0x5124  RasMan - ok
21:29:37.0359 0x5124  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:29:37.0359 0x5124  RasPppoe - ok
21:29:37.0390 0x5124  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
21:29:37.0390 0x5124  Raspti - ok
21:29:37.0421 0x5124  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:29:37.0437 0x5124  Rdbss - ok
21:29:37.0453 0x5124  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:29:37.0453 0x5124  RDPCDD - ok
21:29:37.0484 0x5124  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:29:37.0500 0x5124  rdpdr - ok
21:29:37.0562 0x5124  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
21:29:37.0578 0x5124  RDPWD - ok
21:29:37.0625 0x5124  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
21:29:37.0640 0x5124  RDSessMgr - ok
21:29:37.0671 0x5124  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
21:29:37.0671 0x5124  redbook - ok
21:29:37.0718 0x5124  [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
21:29:37.0734 0x5124  RemoteAccess - ok
21:29:37.0796 0x5124  [ 5B19B557B0C188210A56A6B699D90B8F, 0FA880B81AE615206FD1738B83428AAA491D54B24168339DE6E87FDE8C6C14B0 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
21:29:37.0796 0x5124  RemoteRegistry - ok
21:29:37.0843 0x5124  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      C:\WINDOWS\system32\locator.exe
21:29:37.0843 0x5124  RpcLocator - ok
21:29:37.0890 0x5124  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs           C:\WINDOWS\System32\rpcss.dll
21:29:37.0906 0x5124  RpcSs - ok
21:29:37.0968 0x5124  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe
21:29:37.0984 0x5124  RSVP - ok
21:29:38.0031 0x5124  [ D507C1400284176573224903819FFDA3, DD0BDB2AB39A8A0A300B6D60FB6A7F5BA08C4DB8F59E0A784FB763EA8AD72AB2 ] rtl8139         C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
21:29:38.0046 0x5124  rtl8139 - ok
21:29:38.0062 0x5124  RTL8192cu - ok
21:29:38.0093 0x5124  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           C:\WINDOWS\system32\lsass.exe
21:29:38.0093 0x5124  SamSs - ok
21:29:38.0156 0x5124  [ 39763504067962108505BFF25F024345, 73C9710B61EDC7FBEDE1D7A767AA3D3A169E7AD012494D05CB5EE7E5C5752BB9 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
21:29:38.0156 0x5124  SASDIFSV - ok
21:29:38.0171 0x5124  [ 77B9FC20084B48408AD3E87570EB4A85, B5BC5FEC1356DECB66A7A671DB67112BDAC8F942BF1C4B986B1805B41EF362B1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
21:29:38.0171 0x5124  SASKUTIL - ok
21:29:38.0281 0x5124  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
21:29:38.0281 0x5124  SCardSvr - ok
21:29:38.0359 0x5124  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
21:29:38.0375 0x5124  Schedule - ok
21:29:38.0421 0x5124  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:29:38.0421 0x5124  Secdrv - ok
21:29:38.0453 0x5124  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        C:\WINDOWS\System32\seclogon.dll
21:29:38.0453 0x5124  seclogon - ok
21:29:38.0484 0x5124  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            C:\WINDOWS\system32\sens.dll
21:29:38.0500 0x5124  SENS - ok
21:29:38.0531 0x5124  [ 86B90382EAB05D92F15950FFFA808F60, 8537E523A4FE36A1E624D2BFA787D96C02ACB03C3FADD4E72C8610B0556C3876 ] Ser2pl          C:\WINDOWS\system32\DRIVERS\ser2pl.sys
21:29:38.0531 0x5124  Ser2pl - ok
21:29:38.0562 0x5124  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] Serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
21:29:38.0578 0x5124  Serenum - ok
21:29:38.0625 0x5124  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
21:29:38.0625 0x5124  Serial - ok
21:29:38.0671 0x5124  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
21:29:38.0671 0x5124  Sfloppy - ok
21:29:38.0781 0x5124  [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
21:29:38.0812 0x5124  SharedAccess - ok
21:29:38.0843 0x5124  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:29:38.0859 0x5124  ShellHWDetection - ok
21:29:38.0875 0x5124  Simbad - ok
21:29:38.0906 0x5124  Sparrow - ok
21:29:38.0953 0x5124  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
21:29:38.0953 0x5124  splitter - ok
21:29:39.0015 0x5124  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
21:29:39.0031 0x5124  Spooler - ok
21:29:39.0125 0x5124  [ CDDDEC541BC3C96F91ECB48759673505, B030FFA02832317AC5626BF1BF8A4A95A5992C9A6E81BC1C002D5F4D667C27FB ] sptd            C:\WINDOWS\system32\Drivers\sptd.sys
21:29:39.0125 0x5124  Suspicious file ( NoAccess ): C:\WINDOWS\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505, sha256: B030FFA02832317AC5626BF1BF8A4A95A5992C9A6E81BC1C002D5F4D667C27FB
21:29:39.0125 0x5124  sptd - detected LockedFile.Multi.Generic ( 1 )
21:29:41.0578 0x5124  Detect skipped due to KSN trusted
21:29:41.0578 0x5124  sptd - ok
21:29:41.0625 0x5124  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
21:29:41.0625 0x5124  sr - ok
21:29:41.0671 0x5124  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       C:\WINDOWS\system32\srsvc.dll
21:29:41.0687 0x5124  srservice - ok
21:29:41.0765 0x5124  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
21:29:41.0812 0x5124  Srv - ok
21:29:41.0843 0x5124  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
21:29:41.0859 0x5124  SSDPSRV - ok
21:29:41.0906 0x5124  [ A9573045BAA16EAB9B1085205B82F1ED, 6A4D68BCD4968C17451EB1C4AB420FFA844D089845520D222BC4A2BD14583C56 ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
21:29:41.0906 0x5124  StillCam - ok
21:29:41.0953 0x5124  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
21:29:41.0984 0x5124  stisvc - ok
21:29:42.0015 0x5124  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
21:29:42.0015 0x5124  swenum - ok
21:29:42.0062 0x5124  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
21:29:42.0062 0x5124  swmidi - ok
21:29:42.0093 0x5124  SwPrv - ok
21:29:42.0125 0x5124  symc810 - ok
21:29:42.0140 0x5124  symc8xx - ok
21:29:42.0156 0x5124  sym_hi - ok
21:29:42.0171 0x5124  sym_u3 - ok
21:29:42.0218 0x5124  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
21:29:42.0218 0x5124  sysaudio - ok
21:29:42.0265 0x5124  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
21:29:42.0265 0x5124  SysmonLog - ok
21:29:42.0328 0x5124  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
21:29:42.0375 0x5124  TapiSrv - ok
21:29:42.0437 0x5124  [ 4D46F63F7DDC2442941D63327C360B90, A6E98E483915EC7849527C3056DD4D04541040A73305CF3900602D22397D50B2 ] tbhsd           C:\WINDOWS\system32\drivers\tbhsd.sys
21:29:42.0437 0x5124  tbhsd - ok
21:29:42.0515 0x5124  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:29:42.0546 0x5124  Tcpip - ok
21:29:42.0609 0x5124  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
21:29:42.0609 0x5124  TDPIPE - ok
21:29:42.0640 0x5124  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
21:29:42.0656 0x5124  TDTCP - ok
21:29:42.0687 0x5124  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
21:29:42.0687 0x5124  TermDD - ok
21:29:42.0796 0x5124  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     C:\WINDOWS\System32\termsrv.dll
21:29:42.0812 0x5124  TermService - ok
21:29:42.0859 0x5124  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes          C:\WINDOWS\System32\shsvcs.dll
21:29:42.0859 0x5124  Themes - ok
21:29:42.0921 0x5124  [ DB7205804759FF62C34E3EFD8A4CC76A, 13A4248F528CE98ACA66898E56822E4FC49B11F491FF1F61A687BA601BF0A802 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
21:29:42.0937 0x5124  TlntSvr - ok
21:29:42.0953 0x5124  TosIde - ok
21:29:42.0984 0x5124  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
21:29:42.0984 0x5124  TrkWks - ok
21:29:43.0062 0x5124  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
21:29:43.0062 0x5124  Udfs - ok
21:29:43.0093 0x5124  ultra - ok
21:29:43.0171 0x5124  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
21:29:43.0203 0x5124  Update - ok
21:29:43.0234 0x5124  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        C:\WINDOWS\System32\upnphost.dll
21:29:43.0296 0x5124  upnphost - ok
21:29:43.0312 0x5124  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             C:\WINDOWS\System32\ups.exe
21:29:43.0328 0x5124  UPS - ok
21:29:43.0390 0x5124  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
21:29:43.0390 0x5124  USBAAPL - ok
21:29:43.0453 0x5124  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:29:43.0453 0x5124  usbccgp - ok
21:29:43.0484 0x5124  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:29:43.0484 0x5124  usbehci - ok
21:29:43.0546 0x5124  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:29:43.0562 0x5124  usbhub - ok
21:29:43.0625 0x5124  [ 0DAECCE65366EA32B162F85F07C6753B, 3C33AC2FC95E876933F2016CF0CDA2745491679728684DA8DF95A515CE4804BD ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys
21:29:43.0625 0x5124  usbohci - ok
21:29:43.0656 0x5124  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:29:43.0656 0x5124  usbprint - ok
21:29:43.0703 0x5124  [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:29:43.0703 0x5124  usbscan - ok
21:29:43.0796 0x5124  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:29:43.0796 0x5124  usbstor - ok
21:29:43.0812 0x5124  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
21:29:43.0812 0x5124  VgaSave - ok
21:29:43.0843 0x5124  ViaIde - ok
21:29:43.0859 0x5124  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
21:29:43.0875 0x5124  VolSnap - ok
21:29:43.0937 0x5124  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             C:\WINDOWS\System32\vssvc.exe
21:29:43.0968 0x5124  VSS - ok
21:29:44.0000 0x5124  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time         C:\WINDOWS\system32\w32time.dll
21:29:44.0015 0x5124  W32Time - ok
21:29:44.0093 0x5124  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:29:44.0093 0x5124  Wanarp - ok
21:29:44.0187 0x5124  [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
21:29:44.0359 0x5124  Wdf01000 - ok
21:29:44.0375 0x5124  WDICA - ok
21:29:44.0437 0x5124  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
21:29:44.0437 0x5124  wdmaud - ok
21:29:44.0500 0x5124  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       C:\WINDOWS\System32\webclnt.dll
21:29:44.0500 0x5124  WebClient - ok
21:29:44.0609 0x5124  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
21:29:44.0625 0x5124  winmgmt - ok
21:29:44.0718 0x5124  [ FD600B032E741EB6AAB509FC630F7C42, 2AF671D0648A5C2D2C4A7D0FDE803F07CC079CF1FA4E237DB912A8C77D9EC1F6 ] WinUSB          C:\WINDOWS\system32\DRIVERS\WinUSB.sys
21:29:44.0718 0x5124  WinUSB - ok
21:29:44.0796 0x5124  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
21:29:44.0796 0x5124  WmdmPmSN - ok
21:29:44.0875 0x5124  [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] Wmi             C:\WINDOWS\System32\advapi32.dll
21:29:44.0906 0x5124  Wmi - ok
21:29:44.0968 0x5124  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:29:44.0984 0x5124  WmiApSrv - ok
21:29:45.0093 0x5124  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B, C71FAAC752F6D58BF8556661252DBF8C5DDD090CAE002A2C7E09C9A014526066 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
21:29:45.0156 0x5124  WMPNetworkSvc - ok
21:29:45.0218 0x5124  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
21:29:45.0218 0x5124  WpdUsb - ok
21:29:45.0296 0x5124  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
21:29:45.0312 0x5124  wscsvc - ok
21:29:45.0421 0x5124  [ D161D62AE8D3F3EC1197B012D5E47431, 9D89B5C4B74231F41C039E142E69F4E8060259F1897E7077FE0EE94D58D4A1BA ] WSWNDA3100v2    C:\Program Files\NETGEAR\WNDA3100v2\WifiSvc.exe
21:29:45.0453 0x5124  WSWNDA3100v2 - ok
21:29:45.0484 0x5124  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
21:29:45.0515 0x5124  wuauserv - ok
21:29:45.0562 0x5124  [ EAA6324F51214D2F6718977EC9CE0DEF, B9DE1521395E09233FE519873702979C3EAF65FEC4B94B12A46CECB16C488543 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:29:45.0562 0x5124  WudfPf - ok
21:29:45.0609 0x5124  [ F91FF1E51FCA30B3C3981DB7D5924252, D7052B58F22638CA8B59C6FD7408D6D6DD1C33910912CACC05C133472CE0DDCE ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:29:45.0625 0x5124  WudfRd - ok
21:29:45.0656 0x5124  [ DDEE3682FE97037C45F4D7AB467CB8B6, D5A8F07AF4EDD9D7E17FEC6222D187E2981C177A479511E407756E0E5CB8D387 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
21:29:45.0671 0x5124  WudfSvc - ok
21:29:45.0750 0x5124  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
21:29:45.0796 0x5124  WZCSVC - ok
21:29:45.0843 0x5124  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
21:29:45.0906 0x5124  xmlprov - ok
21:29:45.0937 0x5124  zumbus - ok
21:29:45.0968 0x5124  ================ Scan global ===============================
21:29:46.0015 0x5124  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
21:29:46.0078 0x5124  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
21:29:46.0140 0x5124  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
21:29:46.0171 0x5124  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
21:29:46.0171 0x5124  [ Global ] - ok
21:29:46.0187 0x5124  ================ Scan MBR ==================================
21:29:46.0218 0x5124  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
21:29:46.0453 0x5124  \Device\Harddisk0\DR0 - ok
21:29:46.0484 0x5124  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
21:29:46.0500 0x5124  \Device\Harddisk1\DR1 - ok
21:29:46.0500 0x5124  ================ Scan VBR ==================================
21:29:46.0531 0x5124  [ AC0847207101307787B72D15B2C0802B ] \Device\Harddisk0\DR0\Partition1
21:29:46.0562 0x5124  \Device\Harddisk0\DR0\Partition1 - ok
21:29:46.0578 0x5124  [ 093B3D8E8BD37B1287A1CCCFA54F1B53 ] \Device\Harddisk1\DR1\Partition1
21:29:46.0593 0x5124  \Device\Harddisk1\DR1\Partition1 - ok
21:29:46.0609 0x5124  ================ Scan generic autorun ======================
21:29:46.0640 0x5124  [ 5F1D5F88303D4A4DBC8E5F97BA967CC3, 5FB24FC7916A6E6B3BE7D84CB1684215B266CD1495575C2E5672B8447932E5B1 ] C:\WINDOWS\system32\ctfmon.exe
21:29:46.0640 0x5124  ctfmon.exe - ok
21:29:46.0640 0x5124  Waiting for KSN requests completion. In queue: 55
21:29:47.0640 0x5124  Waiting for KSN requests completion. In queue: 55
21:29:48.0640 0x5124  Waiting for KSN requests completion. In queue: 55
21:29:49.0671 0x5124  AV detected via SS1: avast! Antivirus, 5.0.167774368, disabled, updated
21:29:49.0671 0x5124  Win FW state via NFM: enabled
21:29:52.0218 0x5124  ============================================================
21:29:52.0218 0x5124  Scan finished
21:29:52.0218 0x5124  ============================================================
21:29:52.0234 0x5274  Detected object count: 0
21:29:52.0234 0x5274  Actual detected object count: 0
 
<?xml version="1.0" encoding="UTF-16" ?> 
- <mbam-log>
- <header>
  <date>2014/12/02 07:45:19 -0600</date> 
  <logfile>mbam-log-2014-12-02 (07-45-10).xml</logfile> 
  <isadmin>yes</isadmin> 
  </header>
- <engine>
  <version>2.00.3.1025</version> 
  <malware-database>v2014.11.27.05</malware-database> 
  <rootkit-database>v2014.11.22.01</rootkit-database> 
  <license>free</license> 
  <file-protection>disabled</file-protection> 
  <web-protection>disabled</web-protection> 
  <self-protection>disabled</self-protection> 
  </engine>
- <system>
  <osversion>Windows XP Service Pack 3</osversion> 
  <arch>x86</arch> 
  <username>John McMorrow</username> 
  <filesys>NTFS</filesys> 
  </system>
- <summary>
  <type>threat</type> 
  <result>completed</result> 
  <objects>342399</objects> 
  <time>1383</time> 
  <processes>0</processes> 
  <modules>0</modules> 
  <keys>0</keys> 
  <values>0</values> 
  <datas>0</datas> 
  <folders>0</folders> 
  <files>2</files> 
  <sectors>0</sectors> 
  </summary>
- <options>
  <memory>enabled</memory> 
  <startup>enabled</startup> 
  <filesystem>enabled</filesystem> 
  <archives>enabled</archives> 
  <rootkits>enabled</rootkits> 
  <deeprootkit>enabled</deeprootkit> 
  <heuristics>enabled</heuristics> 
  <pup>warn</pup> 
  <pum>enabled</pum> 
  </options>
- <items>
- <file>
  <path>C:\Program Files\pcreg\service.exe</path> 
  <vendor>PUP.Optional.SearchSafer</vendor> 
  <action>none</action> 
  <hash>27ae55e9a8d4a78f084be74561a41de3</hash> 
  </file>
- <file>
  <path>C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\4LUNOPEN\service[1].exe</path> 
  <vendor>PUP.Optional.SearchSafer</vendor> 
  <action>none</action> 
  <hash>874e72cc37451125d77c6dbf7d88639d</hash> 
  </file>
  </items>
  </mbam-log>


#7 johndepere

johndepere
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Local time:05:43 PM

Posted 02 December 2014 - 10:51 PM

         
Boopme, Thank you very much for your reply and I apologize for posting in the wrong forum. I have posted logs for tdsskiller, malware bytes and mini toolbox. I will get the rest of the info as time permits. thanks again, hope this is the info you were looking for..
 
 
 
 
 
 
MiniToolBox by Farbar  Version: 30-11-2014
Ran by John McMorrow (administrator) on 02-12-2014 at 21:23:57
Running from "C:\Documents and Settings\John McMorrow\My Documents\Downloads"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
 
Windows IP Configuration
 
 
 
Successfully flushed the DNS Resolver Cache.
 
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
Hosts file not detected in the default directory
========================= IP Configuration: ================================
 
Realtek RTL8139 Family PCI Fast Ethernet NIC = Local Area Connection (Disconnected)
1394 Net Adapter = 1394 Connection (Disconnected)
NETGEAR WNDA3100v2 N600 Wireless Dual Band USB Adapter = Wireless Network Connection (Connected)
 
 
# ---------------------------------- 
# Interface IP Configuration         
# ---------------------------------- 
pushd interface ip
 
 
# Interface IP Configuration for "Wireless Network Connection"
 
set address name="Wireless Network Connection" source=dhcp 
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp
 
 
popd
# End of interface IP configuration
 
 
 
 
Windows IP Configuration
 
 
 
        Host Name . . . . . . . . . . . . : self-0596411dbc
 
        Primary Dns Suffix  . . . . . . . : 
 
        Node Type . . . . . . . . . . . . : Unknown
 
        IP Routing Enabled. . . . . . . . : No
 
        WINS Proxy Enabled. . . . . . . . : No
 
        DNS Suffix Search List. . . . . . : new.rr.com
 
 
 
Ethernet adapter Wireless Network Connection:
 
 
 
        Connection-specific DNS Suffix  . : new.rr.com
 
        Description . . . . . . . . . . . : NETGEAR WNDA3100v2 N600 Wireless Dual Band USB Adapter
 
        Physical Address. . . . . . . . . : 44-94-FC-24-91-B6
 
        Dhcp Enabled. . . . . . . . . . . : Yes
 
        Autoconfiguration Enabled . . . . : Yes
 
        IP Address. . . . . . . . . . . . : 192.168.1.142
 
        Subnet Mask . . . . . . . . . . . : 255.255.255.0
 
        Default Gateway . . . . . . . . . : 192.168.1.1
 
        DHCP Server . . . . . . . . . . . : 192.168.1.1
 
        DNS Servers . . . . . . . . . . . : 209.18.47.61
 
                                            209.18.47.62
 
                                            192.168.1.1
 
        Lease Obtained. . . . . . . . . . : Tuesday, December 02, 2014 3:25:53 PM
 
        Lease Expires . . . . . . . . . . : Wednesday, December 03, 2014 3:25:53 PM
 
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61
 
Name:    google.com
Addresses:  74.125.225.96, 74.125.225.103, 74.125.225.102, 74.125.225.99
 74.125.225.104, 74.125.225.100, 74.125.225.98, 74.125.225.101, 74.125.225.105
 74.125.225.110, 74.125.225.97
 
 
 
Pinging google.com [173.194.46.97] with 32 bytes of data:
 
 
 
Reply from 173.194.46.97: bytes=32 time=33ms TTL=54
 
Reply from 173.194.46.97: bytes=32 time=26ms TTL=54
 
 
 
Ping statistics for 173.194.46.97:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 26ms, Maximum = 33ms, Average = 29ms
 
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61
 
Name:    yahoo.com
Addresses:  98.138.253.109, 98.139.183.24, 206.190.36.45
 
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
 
 
 
Reply from 98.138.253.109: bytes=32 time=39ms TTL=51
 
Reply from 98.138.253.109: bytes=32 time=40ms TTL=51
 
 
 
Ping statistics for 98.138.253.109:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 39ms, Maximum = 40ms, Average = 39ms
 
 
 
Pinging 127.0.0.1 with 32 bytes of data:
 
 
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
 
 
Ping statistics for 127.0.0.1:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
 
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10003 ...44 94 fc 24 91 b6 ...... NETGEAR WNDA3100v2 N600 Wireless Dual Band USB Adapter - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1   192.168.1.142  20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1  1
      169.254.0.0      255.255.0.0    192.168.1.142   192.168.1.142  20
      192.168.1.0    255.255.255.0    192.168.1.142   192.168.1.142  20
    192.168.1.142  255.255.255.255        127.0.0.1       127.0.0.1  20
    192.168.1.255  255.255.255.255    192.168.1.142   192.168.1.142  20
        224.0.0.0        240.0.0.0    192.168.1.142   192.168.1.142  20
  255.255.255.255  255.255.255.255    192.168.1.142   192.168.1.142  1
Default Gateway:       192.168.1.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (12/02/2014 08:35:07 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:35:07.765]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:34:33 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:34:33.250]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:33:58 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:33:58.734]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:33:24 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:33:24.203]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:32:49 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:32:49.687]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:32:15 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:32:15.171]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:31:40 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:31:40.656]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:31:06 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:31:06.140]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:30:31 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:30:31.625]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:29:57 PM) (Source: Brother BrLog) (User: )
Description: STI BrtSTI: [2014/12/02 20:29:57.015]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
 
System errors:
=============
Error: (12/02/2014 03:25:48 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (12/02/2014 07:37:01 AM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (12/01/2014 09:22:13 PM) (Source: Print) (User: NT AUTHORITY)
Description: Document Printable Version was corrupted and has been deleted.  The associated driver is: Fax Lexmark 5000 Series Printer.
 
Error: (12/01/2014 09:21:43 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (12/01/2014 08:28:02 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (12/01/2014 05:53:56 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (12/01/2014 01:57:23 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (11/30/2014 09:39:11 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (11/30/2014 05:26:45 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
Error: (11/29/2014 07:30:10 PM) (Source: Service Control Manager) (User: )
Description: The Zune Bus Enumerator Driver service failed to start due to the following error: 
%%2
 
 
Microsoft Office Sessions:
=========================
Error: (12/02/2014 08:35:07 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:35:07.765]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:34:33 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:34:33.250]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:33:58 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:33:58.734]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:33:24 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:33:24.203]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:32:49 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:32:49.687]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:32:15 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:32:15.171]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:31:40 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:31:40.656]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:31:06 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:31:06.140]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:30:31 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:30:31.625]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
Error: (12/02/2014 08:29:57 PM) (Source: Brother BrLog)(User: )
Description: STIBrtSTI: [2014/12/02 20:29:57.015]: [00000844]: GetDeviceIpAddress: GetAddressByName [BRW0080929444AD] Error
 
 
 
=========================== Installed Programs ============================
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.7.0.2090 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.7.0.2090 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.239 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Amazon MP3 Downloader 1.0.17 (HKLM\...\Amazon MP3 Downloader) (Version: 1.0.17 - Amazon Services LLC)
Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI Control Panel (HKLM\...\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}) (Version: 6.14.10.5166 - )
ATI Display Driver (HKLM\...\ATI Display Driver) (Version: 8.17-050813a1-027023C-HP - )
Avast Free Antivirus (HKLM\...\avast) (Version: 10.0.2208 - AVAST Software)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite HL-2280DW (HKLM\...\{3ACCCFB3-7B17-4E9F-ACB0-46868FCD4487}) (Version: 1.0.7.0 - Brother Industries, Ltd.)
Catalina Savings Printer (HKLM\...\{37331C16-3E97-4A20-80D8-BFB43AB0E2FB}) (Version: 1.0.0 - Catalina Marketing Corp)
CCleaner (remove only) (HKLM\...\CCleaner) (Version:  - Piriform)
Cisco Connect (HKLM\...\Cisco Connect) (Version: 1.4.11299.0 - Cisco Consumer Products LLC)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Coupon Printer for Windows (HKLM\...\Coupon Printer for Windows5.0.0.4) (Version: 5.0.0.4 - Coupons.com Incorporated)
Coupon Printer for Windows (HKLM\...\Coupon Printer for Windows5.0.1.2) (Version: 5.0.1.2 - Coupons.com Incorporated)
Coupon Printer for Windows (HKLM\...\Coupon Printer for Windows5.0.1.3) (Version: 5.0.1.3 - Coupons.com Incorporated)
CouponBar (HKLM\...\TTB000001.TTB000001Toolbar) (Version:  - )
CouponPrinterPlugin (HKLM\...\{8AC6566B-131F-4987-82DF-932CED9FCA23}) (Version: 2.0.2.0 - Hopster)
Definition Update for Microsoft Office 2010 (KB2899521) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{E48DACEA-5789-4CC5-8584-2E268C560131}) (Version:  - Microsoft)
Enhanced Multimedia Keyboard Solution (HKLM\...\KBD) (Version:  - )
Google Chrome (HKLM\...\Google Chrome) (Version: 39.0.2171.71 - Google Inc.)
Google Drive (HKLM\...\{C60F3836-333A-4AE2-B526-CFDBA143A9BA}) (Version: 1.18.7821.2489 - Google, Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Graph 4.4.2 (HKLM\...\Graph_is1) (Version:  - Ivan Johansen)
ImageMixer3 (HKLM\...\{751910E3-ECF1-44D0-BF3F-2936A4424514}) (Version: 3.00.006 - PIXELA)
Indeo® Software (HKLM\...\Indeo® Software) (Version:  - )
InterActual Player (HKLM\...\InterActual Player) (Version:  - )
Internet Transporter - NCP Link (HKLM\...\{92BF38A8-5616-4209-87A3-D910B45A1D98}) (Version: 3.2.1 - National Consumer Panel)
iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 71 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Java Auto Updater (Version: 2.1.71.14 - Oracle, Inc.) Hidden
Java DB 10.6.2.1 (HKLM\...\{73EC658D-A1C6-40CA-8E86-E05821BAACE7}) (Version: 10.6.2.1 - Oracle)
Java™ SE Development Kit 6 Update 25 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0160250}) (Version: 1.6.0.250 - Oracle)
Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Master of the Skies - The Red Ace (HKLM\...\{F9B41170-7E44-480A-AD4A-CCD8FFFB3754}) (Version:  - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9 (Version:  - Microsoft Corporation) Hidden
Microsoft Office  (HKLM\...\MSOffice) (Version:  - )
Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Software Update for Web Folders  (English) 14 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft User-Mode Driver Framework Feature Pack 1.9 (HKLM\...\Wudf01009) (Version:  - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Windows XP Video Decoder Checkup Utility (HKLM\...\DECCHECK) (Version:  - )
Microsoft WinUsb 1.0 (HKLM\...\winusb0100) (Version:  - Microsoft Corporation)
Mozilla Firefox 33.1 (x86 en-US) (HKLM\...\Mozilla Firefox 33.1 (x86 en-US)) (Version: 33.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NCP Internet Transporter (HKLM\...\{7CEB5AC4-B6F8-414C-845D-4295C125D17B}) (Version: 3.2.1 - National Consumer Panel)
neroxml (Version: 1.0.0 - Nero AG) Hidden
NETGEAR WNDA3100v2 wireless USB 2.0 adapter (HKLM\...\{3C7839E7-21F4-49E0-B4D5-AC8ED818CCB0}) (Version: 1.03.000 - NETGEAR)
Nuance PaperPort 12 (HKLM\...\{6C0A559F-8583-4B5A-8B50-20BEE15D8E64}) (Version: 12.1.0000 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
OverDrive Media Console (HKLM\...\{D07205E7-F6D3-4333-AFCC-782A07685B72}) (Version: 3.2.20 - OverDrive, Inc.)
PaperPort Image Printer (HKLM\...\{6EF2FDAB-7FBF-4AB9-92CD-594BDDB6A56B}) (Version: 1.00.0001 - Nuance Communications, Inc.)
QuickTime (HKLM\...\{57752979-A1C9-4C02-856B-FBB27AC4E02C}) (Version: 7.69.80.9 - Apple Inc.)
Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: 5.36 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version:  - Piriform)
Revo Uninstaller 1.92 (HKLM\...\Revo Uninstaller) (Version: 1.92 - VS Revo Group)
Scansoft PDF Professional (Version:  - ) Hidden
ScanTool.net for Windows v1.20 (HKLM\...\ScanTool.net for Windows) (Version: v1.20 - ScanTool.net, LLC)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (Version:  - Microsoft) Hidden
StartVADIS (HKLM\...\StartVADIS) (Version:  - )
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1164 - SUPERAntiSpyware.com)
SyncBack (HKLM\...\SyncBack_is1) (Version:  - 2BrightSparks)
TouchScan (HKLM\...\{AB008526-FDE0-47F0-BCC3-554274019708}) (Version: 2.10.1 - OCTech, LLC)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2889935) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{153CD843-3EDC-412C-95B1-F36237DF8415}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{A4F91D60-654C-4892-BFD3-0D41ADA649B6}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{0B7744D2-1FDD-4843-9987-7CE11B79F370}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837602) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{8158D96B-083A-4FE4-8587-B5D0F49FE4B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUSR_{794A0574-4E2F-4D58-B2A0-D7460ACDC85C}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition (HKLM\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{C1954E2B-1672-4E5C-B564-F8CB2D08345B}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2878251) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{521F54B6-E2E5-462D-946E-8161830DDF18}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Update for Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2141007) (HKLM\...\KB2141007) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2541763) (HKLM\...\KB2541763) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2607712) (HKLM\...\KB2607712) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2616676-v2) (HKLM\...\KB2616676-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB951978) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB976749) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows XP (KB978207) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows XP (KB980182) (Version: 1 - Microsoft Corporation) Hidden
VC 9.0 Runtime (Version: 1.0.0 - Check Point Software Technologies Ltd) Hidden
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
VLC media player 2.1.2 (HKLM\...\VLC media player) (Version: 2.1.2 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Driver Package - FTDI CDM Driver Package (02/17/2009 2.04.16) (HKLM\...\2DC0AA065FA83047D7ECD51C7000C1620D79A4C5) (Version: 02/17/2009 2.04.16 - FTDI)
Windows Driver Package - FTDI CDM Driver Package (02/17/2009 2.04.16) (HKLM\...\51A4D522DD31538335EF5736F0E7F588C70BCB12) (Version: 02/17/2009 2.04.16 - FTDI)
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version:  - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Format 11 runtime (Version:  - Microsoft Corporation) Hidden
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
Windows Media Player 11 (Version:  - Microsoft Corporation) Hidden
Windows PowerShell™ 1.0 (HKLM\...\KB926139-v2) (Version: 2 - Microsoft Corporation)
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 49%
Total physical RAM: 1470.48 MB
Available physical RAM: 735.53 MB
Total Pagefile: 1570.67 MB
Available Pagefile: 1043.09 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.02 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:186.3 GB) (Free:62.88 GB) NTFS
3 Drive e: (Pictures) (Fixed) (Total:232.83 GB) (Free:97.47 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\SELF-0596411DBC
 
Administrator            Guest                    HelpAssistant            
John McMorrow            SUPPORT_388945a0         
 
 
**** End of log ****
 
 
21:29:05.0000 0x51e8  ============================================================
21:29:05.0000 0x51e8  Current date / time: 2014/12/02 21:29:05.0000
21:29:05.0000 0x51e8  SystemInfo:
21:29:05.0000 0x51e8  
21:29:05.0000 0x51e8  OS Version: 5.1.2600 ServicePack: 3.0
21:29:05.0000 0x51e8  Product type: Workstation
21:29:05.0000 0x51e8  ComputerName: SELF-0596411DBC
21:29:05.0000 0x51e8  UserName: John McMorrow
21:29:05.0000 0x51e8  Windows directory: C:\WINDOWS
21:29:05.0000 0x51e8  System windows directory: C:\WINDOWS
21:29:05.0000 0x51e8  Processor architecture: Intel x86
21:29:05.0000 0x51e8  Number of processors: 1
21:29:05.0000 0x51e8  Page size: 0x1000
21:29:05.0000 0x51e8  Boot type: Normal boot
21:29:05.0000 0x51e8  ============================================================
21:29:08.0515 0x51e8  KLMD registered as C:\WINDOWS\system32\drivers\96331403.sys
21:29:08.0656 0x51e8  System UUID: {93FCF039-0C1D-141C-B1C9-7AD92F620F9B}
21:29:09.0375 0x51e8  Drive \Device\Harddisk0\DR0 - Size: 0x2E93E36000 ( 186.31 Gb ), SectorSize: 0x200, Cylinders: 0x64F1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
21:29:09.0390 0x51e8  Drive \Device\Harddisk1\DR1 - Size: 0x3A35294400 ( 232.83 Gb ), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
21:29:09.0484 0x51e8  ============================================================
21:29:09.0484 0x51e8  \Device\Harddisk0\DR0:
21:29:09.0484 0x51e8  MBR partitions:
21:29:09.0484 0x51e8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x17499EC1
21:29:09.0484 0x51e8  \Device\Harddisk1\DR1:
21:29:09.0500 0x51e8  MBR partitions:
21:29:09.0500 0x51e8  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1A8800
21:29:09.0500 0x51e8  ============================================================
21:29:09.0531 0x51e8  C: <-> \Device\Harddisk0\DR0\Partition1
21:29:09.0593 0x51e8  E: <-> \Device\Harddisk1\DR1\Partition1
21:29:09.0593 0x51e8  ============================================================
21:29:09.0593 0x51e8  Initialize success
21:29:09.0593 0x51e8  ============================================================
21:29:19.0187 0x5124  ============================================================
21:29:19.0187 0x5124  Scan started
21:29:19.0187 0x5124  Mode: Manual; 
21:29:19.0187 0x5124  ============================================================
21:29:19.0187 0x5124  KSN ping started
21:29:21.0734 0x5124  KSN ping finished: true
21:29:22.0953 0x5124  ================ Scan system memory ========================
21:29:22.0953 0x5124  System memory - ok
21:29:22.0953 0x5124  ================ Scan services =============================
21:29:23.0078 0x5124  [ 72D6D8E2D4F82C6E829125C7EC2A88F9, F357CFC3D04EB3F8E1A504D531D099698C6E2B29EB6CEDF75C08BF8917C46573 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
21:29:23.0093 0x5124  !SASCORE - ok
21:29:23.0312 0x5124  Abiosdsk - ok
21:29:23.0328 0x5124  abp480n5 - ok
21:29:23.0390 0x5124  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:29:23.0406 0x5124  ACPI - ok
21:29:23.0484 0x5124  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
21:29:23.0484 0x5124  ACPIEC - ok
21:29:23.0578 0x5124  [ F79623288F2A357AB20288B5DC4F452A, AA6F70A4C12E390E08074D6FD0EA0D1856D8274DA833E56A8811BF820A2D41D4 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:29:23.0593 0x5124  AdobeFlashPlayerUpdateSvc - ok
21:29:23.0609 0x5124  adpu160m - ok
21:29:23.0687 0x5124  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
21:29:23.0734 0x5124  aec - ok
21:29:23.0781 0x5124  [ 023867B6606FBABCDD52E089C4A507DA, 30BE26F63B7EC6C9607AB46A97ACE83DD8140191D28BAB9E6292DA835A922289 ] AegisP          C:\WINDOWS\system32\DRIVERS\AegisP.sys
21:29:23.0781 0x5124  AegisP - ok
21:29:23.0828 0x5124  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
21:29:23.0843 0x5124  AFD - ok
21:29:23.0875 0x5124  Aha154x - ok
21:29:23.0890 0x5124  aic78u2 - ok
21:29:23.0906 0x5124  aic78xx - ok
21:29:24.0187 0x5124  [ DD8520280304B6145A6BE31008748C7C, 4007EAA97E501492E450241338759337EF05E4F5C61AA05FF4BA3CFAD036B0D9 ] ALCXWDM         C:\WINDOWS\system32\drivers\ALCXWDM.SYS
21:29:24.0406 0x5124  ALCXWDM - ok
21:29:24.0468 0x5124  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
21:29:24.0468 0x5124  Alerter - ok
21:29:24.0515 0x5124  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             C:\WINDOWS\System32\alg.exe
21:29:24.0515 0x5124  ALG - ok
21:29:24.0531 0x5124  AliIde - ok
21:29:24.0546 0x5124  amsint - ok
21:29:24.0656 0x5124  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:29:24.0671 0x5124  Apple Mobile Device - ok
21:29:24.0750 0x5124  [ D8849F77C0B66226335A59D26CB4EDC6, 4990031453204C57E36E850252A39B05D6ECDAB9E71A8136FB4900F17E59C9CA ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
21:29:24.0765 0x5124  AppMgmt - ok
21:29:24.0796 0x5124  [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:29:24.0796 0x5124  Arp1394 - ok
21:29:24.0812 0x5124  asc - ok
21:29:24.0828 0x5124  asc3350p - ok
21:29:24.0843 0x5124  asc3550 - ok
21:29:24.0906 0x5124  [ B979979AB8027F7F53FB16EC4229B7DB, 3D50396B13B494D0082266C29C40715981CA105F6E407288C71410D4B833BB10 ] ASPI32          C:\WINDOWS\system32\drivers\ASPI32.sys
21:29:24.0906 0x5124  ASPI32 - ok
21:29:24.0968 0x5124  [ 0E5E4957549056E2BF2C49F4F6B601AD, F7F19FDC906B719A3516D30A9B4A2262C8CC5B36B94E3D4195C345EC4610FF2B ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:29:25.0015 0x5124  aspnet_state - ok
21:29:25.0078 0x5124  [ 9D23DE88C3B18BA87CD4587177CA6CEA, 46DBB867FC73E30320852F744F38B66906DD5B96C4EBB03F504CF33E867A8470 ] aswHwid         C:\WINDOWS\system32\drivers\aswHwid.sys
21:29:25.0078 0x5124  aswHwid - ok
21:29:25.0140 0x5124  [ 73A9014A9C4B19AA093DA05ED4246E27, F03C8433EB00229490BCD293CC97EF72452E156212D56C24BBA95C8E1B207D1A ] aswMonFlt       C:\WINDOWS\system32\drivers\aswMonFlt.sys
21:29:25.0140 0x5124  aswMonFlt - ok
21:29:25.0218 0x5124  [ 0926775B8C3B32EE99921CCB0F85378E, 21A46B124B3E9F2569030E2DF591858B85AA640DDBB5C994B5C00A1E78C9EF67 ] aswRdr          C:\WINDOWS\system32\drivers\aswRdr.sys
21:29:25.0250 0x5124  aswRdr - ok
21:29:25.0328 0x5124  [ 6544697080421E62E97AAFBD0A8AA391, BB3F492BF828A147B82FDD1FC9EB9867D96DE0481554A59745D41C6BAB551700 ] aswRvrt         C:\WINDOWS\system32\drivers\aswRvrt.sys
21:29:25.0343 0x5124  aswRvrt - ok
21:29:25.0437 0x5124  [ E73CBE3420ECFA8FF7D0467E170E335D, B994342C92AE9167908B8CA3D03DC278E919C7073512461AFFD4C25E8D2D8D66 ] aswSnx          C:\WINDOWS\system32\drivers\aswSnx.sys
21:29:25.0500 0x5124  aswSnx - ok
21:29:25.0578 0x5124  [ 1624D5AD126B8AFE2B2E85E5B8364EB6, AB97A74C1CA9921F7753D98516D7E11750D5D3ACD143C83273B0B295625440A0 ] aswSP           C:\WINDOWS\system32\drivers\aswSP.sys
21:29:25.0609 0x5124  aswSP - ok
21:29:25.0656 0x5124  [ 4C0ECF1AFA6992904814C74B99DD36F9, AA0D9BA7FE829888C636EC9D72E8E2D987A1C3FF092F95A38EC607CEE25A91F8 ] aswTdi          C:\WINDOWS\system32\drivers\aswTdi.sys
21:29:25.0671 0x5124  aswTdi - ok
21:29:25.0765 0x5124  [ 0EFBC2962B156E8AC267F96D4D93EF06, 8A69672CE8B68A0A683D583287473BFAB7CF8B9771C22E398607CF2A151C7124 ] aswVmm          C:\WINDOWS\system32\drivers\aswVmm.sys
21:29:25.0781 0x5124  aswVmm - ok
21:29:25.0843 0x5124  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:29:25.0843 0x5124  AsyncMac - ok
21:29:25.0875 0x5124  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
21:29:25.0890 0x5124  atapi - ok
21:29:25.0906 0x5124  Atdisk - ok
21:29:25.0968 0x5124  [ D21352BCAAB174948EB9672BC203BB0F, A9E74B29C6E7CAB539E9E869FB65BAFFEF5775832445579BEC7C5E6E70A93C5A ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
21:29:26.0000 0x5124  Ati HotKey Poller - ok
21:29:26.0109 0x5124  [ 7A6CF9F411A9C5BD5C442A1CD46AF401, A2074D8E3C49730ABBD64B69A752E7C8E851C6BFE3F0717A61A3C3ACF3FFDBE7 ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:29:26.0171 0x5124  ati2mtag - ok
21:29:26.0250 0x5124  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:29:26.0250 0x5124  Atmarpc - ok
21:29:26.0296 0x5124  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
21:29:26.0296 0x5124  AudioSrv - ok
21:29:26.0359 0x5124  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
21:29:26.0359 0x5124  audstub - ok
21:29:26.0437 0x5124  [ E3F7EC811923F3F1A77B185F22638E5E, 324041256314C1471B5F123FA8DECC8F374A6B497A6419D4CAF61E68E1733265 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
21:29:26.0453 0x5124  avast! Antivirus - ok
21:29:26.0562 0x5124  [ BCDF72DCE41874B3AD9143D537B493B2, C048C773137DD94C980179E90FAE7D90A6902DA0153342B33E784DB04C16385A ] BCMH43XX        C:\WINDOWS\system32\DRIVERS\bcmwlhigh5.sys
21:29:26.0625 0x5124  BCMH43XX - ok
21:29:26.0687 0x5124  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
21:29:26.0687 0x5124  Beep - ok
21:29:26.0765 0x5124  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            C:\WINDOWS\system32\qmgr.dll
21:29:26.0953 0x5124  BITS - ok
21:29:27.0078 0x5124  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:29:27.0093 0x5124  Bonjour Service - ok
21:29:27.0156 0x5124  [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser         C:\WINDOWS\System32\browser.dll
21:29:27.0156 0x5124  Browser - ok
21:29:27.0218 0x5124  [ 92A964547B96D697E5E9ED43B4297F5A, 01A84802B68253FF093EAFED5B85DE716BB85EBD080D92D4814B6FB39286CD24 ] BrScnUsb        C:\WINDOWS\system32\DRIVERS\BrScnUsb.sys
21:29:27.0218 0x5124  BrScnUsb - ok
21:29:27.0281 0x5124  [ EA7E57F87D6FEE5FD6C5F813C04E8CD2, 1EB84F4DEE3034FAFBEA2A3F84EECE036E803872DA94D54E958E9F2F09519E88 ] BrYNSvc         C:\Program Files\Browny02\BrYNSvc.exe
21:29:27.0296 0x5124  BrYNSvc - ok
21:29:27.0343 0x5124  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
21:29:27.0343 0x5124  cbidf2k - ok
21:29:27.0375 0x5124  cd20xrnt - ok
21:29:27.0406 0x5124  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
21:29:27.0406 0x5124  Cdaudio - ok
21:29:27.0453 0x5124  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
21:29:27.0500 0x5124  Cdfs - ok
21:29:27.0546 0x5124  [ BF79E659C506674C0497CC9C61F1A165, 43B3B64B01660DB447F45E1FFD9AF1BFAEEAB14F00BF87E0D256615E4FBDB78E ] Cdr4_xp         C:\WINDOWS\system32\drivers\Cdr4_xp.sys
21:29:27.0546 0x5124  Cdr4_xp - ok
21:29:27.0562 0x5124  [ 2C41CD49D82D5FD85C72D57B6CA25471, 6A16D47272740B1216A7211DA19EEB598512F2479085BFF1C0410DBD7EC5C659 ] Cdralw2k        C:\WINDOWS\system32\drivers\Cdralw2k.sys
21:29:27.0562 0x5124  Cdralw2k - ok
21:29:27.0593 0x5124  [ 4B0A100EAF5C49EF3CCA8C641431EACC, 88D9C066FFB863910EE1863CE63D38846ACA2DF72D6B5FDFCE0F3379A6DA5EF9 ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:29:27.0609 0x5124  Cdrom - ok
21:29:27.0625 0x5124  Changer - ok
21:29:27.0671 0x5124  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
21:29:27.0671 0x5124  CiSvc - ok
21:29:27.0703 0x5124  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
21:29:27.0703 0x5124  ClipSrv - ok
21:29:27.0781 0x5124  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:29:27.0812 0x5124  clr_optimization_v2.0.50727_32 - ok
21:29:27.0828 0x5124  CmdIde - ok
21:29:27.0843 0x5124  COMSysApp - ok
21:29:27.0875 0x5124  Cpqarray - ok
21:29:27.0921 0x5124  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
21:29:27.0921 0x5124  CryptSvc - ok
21:29:27.0937 0x5124  dac2w2k - ok
21:29:27.0968 0x5124  dac960nt - ok
21:29:28.0031 0x5124  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
21:29:28.0062 0x5124  DcomLaunch - ok
21:29:28.0125 0x5124  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
21:29:28.0125 0x5124  Dhcp - ok
21:29:28.0156 0x5124  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
21:29:28.0156 0x5124  Disk - ok
21:29:28.0171 0x5124  dmadmin - ok
21:29:28.0265 0x5124  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
21:29:28.0312 0x5124  dmboot - ok
21:29:28.0343 0x5124  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
21:29:28.0343 0x5124  dmio - ok
21:29:28.0390 0x5124  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
21:29:28.0390 0x5124  dmload - ok
21:29:28.0437 0x5124  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        C:\WINDOWS\System32\dmserver.dll
21:29:28.0437 0x5124  dmserver - ok
21:29:28.0484 0x5124  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
21:29:28.0500 0x5124  DMusic - ok
21:29:28.0562 0x5124  [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
21:29:28.0578 0x5124  Dnscache - ok
21:29:28.0625 0x5124  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
21:29:28.0640 0x5124  Dot3svc - ok
21:29:28.0656 0x5124  dpti2o - ok
21:29:28.0687 0x5124  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
21:29:28.0687 0x5124  drmkaud - ok
21:29:28.0765 0x5124  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         C:\WINDOWS\System32\eapsvc.dll
21:29:28.0781 0x5124  EapHost - ok
21:29:28.0828 0x5124  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
21:29:28.0828 0x5124  ERSvc - ok
21:29:28.0890 0x5124  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog        C:\WINDOWS\system32\services.exe
21:29:28.0906 0x5124  Eventlog - ok
21:29:28.0968 0x5124  [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem     C:\WINDOWS\system32\es.dll
21:29:29.0000 0x5124  EventSystem - ok
21:29:29.0046 0x5124  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
21:29:29.0062 0x5124  Fastfat - ok
21:29:29.0125 0x5124  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:29:29.0156 0x5124  FastUserSwitchingCompatibility - ok
21:29:29.0171 0x5124  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys
21:29:29.0171 0x5124  Fdc - ok
21:29:29.0250 0x5124  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
21:29:29.0250 0x5124  Fips - ok
21:29:29.0281 0x5124  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:29:29.0281 0x5124  Flpydisk - ok
21:29:29.0312 0x5124  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
21:29:29.0328 0x5124  FltMgr - ok
21:29:29.0421 0x5124  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
21:29:29.0421 0x5124  FontCache3.0.0.0 - ok
21:29:29.0437 0x5124  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:29:29.0453 0x5124  Fs_Rec - ok
21:29:29.0484 0x5124  [ 7C17235845D5AE3FB33EAD47B5881521, ED490A72561507E7C6CAC8C218B62EF4CEC1EBA9D4728FC12EF22FD6695A380E ] FTDIBUS         C:\WINDOWS\system32\drivers\ftdibus.sys
21:29:29.0484 0x5124  FTDIBUS - ok
21:29:29.0546 0x5124  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:29:29.0546 0x5124  Ftdisk - ok
21:29:29.0609 0x5124  [ 23220A4709CC5785F9633BA71416145C, 8E9E314EFDDDB511AAE612B5494C09E6A5EA2559B4682C7413AEE02DFBDE3161 ] FTSER2K         C:\WINDOWS\system32\drivers\ftser2k.sys
21:29:29.0609 0x5124  FTSER2K - ok
21:29:29.0656 0x5124  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
21:29:29.0656 0x5124  GEARAspiWDM - ok
21:29:29.0687 0x5124  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:29:29.0687 0x5124  Gpc - ok
21:29:29.0796 0x5124  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
21:29:29.0796 0x5124  gupdate - ok
21:29:29.0828 0x5124  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
21:29:29.0828 0x5124  gupdatem - ok
21:29:29.0921 0x5124  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:29:29.0937 0x5124  helpsvc - ok
21:29:29.0953 0x5124  HidServ - ok
21:29:29.0984 0x5124  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:29:29.0984 0x5124  HidUsb - ok
21:29:30.0031 0x5124  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
21:29:30.0046 0x5124  hkmsvc - ok
21:29:30.0062 0x5124  hpn - ok
21:29:30.0125 0x5124  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
21:29:30.0140 0x5124  HTTP - ok
21:29:30.0187 0x5124  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
21:29:30.0187 0x5124  HTTPFilter - ok
21:29:30.0203 0x5124  i2omgmt - ok
21:29:30.0218 0x5124  i2omp - ok
21:29:30.0265 0x5124  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:29:30.0281 0x5124  i8042prt - ok
21:29:30.0406 0x5124  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:29:30.0468 0x5124  idsvc - ok
21:29:30.0500 0x5124  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
21:29:30.0500 0x5124  Imapi - ok
21:29:30.0593 0x5124  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    C:\WINDOWS\system32\imapi.exe
21:29:30.0609 0x5124  ImapiService - ok
21:29:30.0625 0x5124  ini910u - ok
21:29:30.0656 0x5124  IntelIde - ok
21:29:30.0703 0x5124  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
21:29:30.0718 0x5124  Ip6Fw - ok
21:29:30.0765 0x5124  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:29:30.0765 0x5124  IpFilterDriver - ok
21:29:30.0812 0x5124  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:29:30.0812 0x5124  IpInIp - ok
21:29:30.0875 0x5124  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:29:30.0890 0x5124  IpNat - ok
21:29:30.0968 0x5124  [ 463790AEF94D8EAB674631257F53252E, A02972457F45AD6816CB5F60DE4CD15D68256695FA0F3E4EAD6F9E36CBE54576 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:29:31.0000 0x5124  iPod Service - ok
21:29:31.0031 0x5124  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:29:31.0046 0x5124  IPSec - ok
21:29:31.0078 0x5124  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
21:29:31.0078 0x5124  IRENUM - ok
21:29:31.0125 0x5124  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:29:31.0125 0x5124  isapnp - ok
21:29:31.0359 0x5124  [ DBDB1A25291B2D18C614F5CA963156A8, C8EA730A6A5BCBE7952AAA22F212C244014F206D2F4A274E29384C09F1F10A66 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
21:29:31.0375 0x5124  JavaQuickStarterService - ok
21:29:31.0437 0x5124  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:29:31.0437 0x5124  Kbdclass - ok
21:29:31.0468 0x5124  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
21:29:31.0484 0x5124  kmixer - ok
21:29:31.0515 0x5124  kqemu - ok
21:29:31.0546 0x5124  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
21:29:31.0593 0x5124  KSecDD - ok
21:29:31.0640 0x5124  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
21:29:31.0656 0x5124  lanmanserver - ok
21:29:31.0718 0x5124  [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:29:31.0765 0x5124  lanmanworkstation - ok
21:29:31.0781 0x5124  Lavasoft Kernexplorer - ok
21:29:31.0796 0x5124  lbrtfdc - ok
21:29:31.0875 0x5124  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
21:29:31.0875 0x5124  LmHosts - ok
21:29:31.0984 0x5124  [ D1D8CFBEF7C608B2D40D0E0E9FBC8E52, 6D58C8D02EE91FDB4CBEDA8876C4A919E4FEDDAAD70D48B9F71812E044980AC8 ] lxdmCATSCustConnectService C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdmserv.exe
21:29:32.0031 0x5124  lxdmCATSCustConnectService - ok
21:29:32.0062 0x5124  lxdm_device - ok
21:29:32.0109 0x5124  [ D2DED3C333A5D9CB3F4C244B0F0DD877, 5C1D6C2520C24B12AC99B4B1AB8A0C41052B78CEC2E8B52807057B09A03AD81F ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
21:29:32.0109 0x5124  MBAMProtector - ok
21:29:32.0359 0x5124  [ 6D8A2EE4244630B290A837E79C0F37A1, 6783BBC0BDC93E4D6D43531A1AD0DF5CD26C3BBFA6384927C5CF65AD97FB04AD ] MBAMScheduler   C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
21:29:32.0468 0x5124  MBAMScheduler - ok
21:29:32.0546 0x5124  [ 09D4503CBB6ADB3A54E7C7A75090B728, 6139EA3338FD64205481EDEC813A44F8D395FDA7B67AA431DA61F3631C3EDAE6 ] MBAMService     C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
21:29:32.0625 0x5124  MBAMService - ok
21:29:32.0671 0x5124  [ 8E2E9CCD873ABF180F48BCAEEEBE347D, 35DBBB8E63B480151EA5701D9DB7C90642FA2391D044DB400D3644F3E21BB0C1 ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
21:29:32.0687 0x5124  MBAMSwissArmy - ok
21:29:32.0703 0x5124  mcdbus - ok
21:29:32.0781 0x5124  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
21:29:32.0781 0x5124  Messenger - ok
21:29:32.0890 0x5124  Microsoft SharePoint Workspace Audit Service - ok
21:29:32.0937 0x5124  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
21:29:32.0953 0x5124  mnmdd - ok
21:29:33.0000 0x5124  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
21:29:33.0015 0x5124  mnmsrvc - ok
21:29:33.0046 0x5124  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
21:29:33.0046 0x5124  Modem - ok
21:29:33.0078 0x5124  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:29:33.0078 0x5124  Mouclass - ok
21:29:33.0125 0x5124  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:29:33.0125 0x5124  mouhid - ok
21:29:33.0156 0x5124  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
21:29:33.0156 0x5124  MountMgr - ok
21:29:33.0234 0x5124  [ DEA022193DF8C88F6E2B3E33D148A5DB, 97DFC47DB83E04A975A1969AA120385463FCAF4E1A9984FD3220442D7026B45A ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:29:33.0234 0x5124  MozillaMaintenance - ok
21:29:33.0265 0x5124  mraid35x - ok
21:29:33.0281 0x5124  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:29:33.0296 0x5124  MRxDAV - ok
21:29:33.0343 0x5124  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:29:33.0390 0x5124  MRxSmb - ok
21:29:33.0437 0x5124  [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
21:29:33.0437 0x5124  MSDTC - ok
21:29:33.0468 0x5124  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
21:29:33.0468 0x5124  Msfs - ok
21:29:33.0500 0x5124  MSIServer - ok
21:29:33.0531 0x5124  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:29:33.0531 0x5124  MSKSSRV - ok
21:29:33.0578 0x5124  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:29:33.0578 0x5124  MSPCLOCK - ok
21:29:33.0593 0x5124  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
21:29:33.0593 0x5124  MSPQM - ok
21:29:33.0625 0x5124  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:29:33.0625 0x5124  mssmbios - ok
21:29:33.0671 0x5124  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
21:29:33.0687 0x5124  Mup - ok
21:29:33.0781 0x5124  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        C:\WINDOWS\System32\qagentrt.dll
21:29:33.0812 0x5124  napagent - ok
21:29:33.0859 0x5124  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
21:29:33.0875 0x5124  NDIS - ok
21:29:33.0937 0x5124  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:29:33.0937 0x5124  NdisTapi - ok
21:29:33.0953 0x5124  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:29:33.0968 0x5124  Ndisuio - ok
21:29:34.0000 0x5124  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:29:34.0000 0x5124  NdisWan - ok
21:29:34.0031 0x5124  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
21:29:34.0046 0x5124  NDProxy - ok
21:29:34.0062 0x5124  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
21:29:34.0062 0x5124  NetBIOS - ok
21:29:34.0109 0x5124  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
21:29:34.0125 0x5124  NetBT - ok
21:29:34.0187 0x5124  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          C:\WINDOWS\system32\netdde.exe
21:29:34.0203 0x5124  NetDDE - ok
21:29:34.0218 0x5124  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
21:29:34.0218 0x5124  NetDDEdsdm - ok
21:29:34.0296 0x5124  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        C:\WINDOWS\system32\lsass.exe
21:29:34.0296 0x5124  Netlogon - ok
21:29:34.0343 0x5124  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          C:\WINDOWS\System32\netman.dll
21:29:34.0359 0x5124  Netman - ok
21:29:34.0437 0x5124  [ D34612C5D02D026535B3095D620626AE, 1BBCCCBF49EB8807240A77DCB43C25C21682073CC5356594E2C4F53EF36BF657 ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:29:34.0453 0x5124  NetTcpPortSharing - ok
21:29:34.0484 0x5124  [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:29:34.0484 0x5124  NIC1394 - ok
21:29:34.0546 0x5124  [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla             C:\WINDOWS\System32\mswsock.dll
21:29:34.0562 0x5124  Nla - ok
21:29:34.0562 0x5124  NMIndexingService - ok
21:29:34.0625 0x5124  [ B9730495E0CF674680121E34BD95A73B, 1A3DD943B0EEA19A676175825CB135825ECF41404B59349AC9B1E6D137FA9B46 ] NPF             C:\WINDOWS\system32\DRIVERS\npf.sys
21:29:34.0625 0x5124  NPF - ok
21:29:34.0687 0x5124  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
21:29:34.0687 0x5124  Npfs - ok
21:29:34.0703 0x5124  ntcdrdrv - ok
21:29:34.0750 0x5124  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
21:29:34.0781 0x5124  Ntfs - ok
21:29:34.0812 0x5124  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
21:29:34.0828 0x5124  NtLmSsp - ok
21:29:34.0890 0x5124  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
21:29:34.0906 0x5124  NtmsSvc - ok
21:29:34.0953 0x5124  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
21:29:34.0953 0x5124  Null - ok
21:29:35.0000 0x5124  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:29:35.0015 0x5124  NwlnkFlt - ok
21:29:35.0031 0x5124  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:29:35.0031 0x5124  NwlnkFwd - ok
21:29:35.0093 0x5124  [ CA33832DF41AFB202EE7AEB05145922F, 9DD0089C2E13C7F81214C3B5A4A61276292052F9BBFEA7FCD0F6AA27815D5F95 ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:29:35.0093 0x5124  ohci1394 - ok
21:29:35.0171 0x5124  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:29:35.0187 0x5124  ose - ok
21:29:35.0562 0x5124  [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:29:35.0828 0x5124  osppsvc - ok
21:29:35.0890 0x5124  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
21:29:35.0906 0x5124  Parport - ok
21:29:35.0921 0x5124  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
21:29:35.0921 0x5124  PartMgr - ok
21:29:35.0968 0x5124  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
21:29:35.0984 0x5124  ParVdm - ok
21:29:36.0015 0x5124  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
21:29:36.0031 0x5124  PCI - ok
21:29:36.0062 0x5124  PCIDump - ok
21:29:36.0109 0x5124  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
21:29:36.0109 0x5124  PCIIde - ok
21:29:36.0156 0x5124  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
21:29:36.0156 0x5124  Pcmcia - ok
21:29:36.0218 0x5124  [ 5B6C11DE7E839C05248CED8825470FEF, DB57DFD02C18461B1B383DF759730FFEE9C7FA8577E1679FD4740A590303EE79 ] pcouffin        C:\WINDOWS\system32\Drivers\pcouffin.sys
21:29:36.0218 0x5124  pcouffin - ok
21:29:36.0359 0x5124  [ 1B7464E530D6FB7A9F94613B33662EB1, EC343440BC97E4C3320868B8EE22C3983C8B5F17E4545D233E2274888FB960FC ] pcregservice    C:\Program Files\pcreg\pcreg.exe
21:29:36.0375 0x5124  pcregservice - ok
21:29:36.0390 0x5124  PDCOMP - ok
21:29:36.0500 0x5124  [ C1C3BAF078BE5A14384A4BA2D730817D, 6E4D2F73A1CB250B3EE270CCE806A37EB2140E34EAF9F48C45CC12D2A451AA16 ] PDFProFiltSrvPP C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe
21:29:36.0546 0x5124  PDFProFiltSrvPP - ok
21:29:36.0578 0x5124  PDFRAME - ok
21:29:36.0593 0x5124  PDRELI - ok
21:29:36.0609 0x5124  PDRFRAME - ok
21:29:36.0625 0x5124  perc2 - ok
21:29:36.0656 0x5124  perc2hib - ok
21:29:36.0750 0x5124  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay        C:\WINDOWS\system32\services.exe
21:29:36.0750 0x5124  PlugPlay - ok
21:29:36.0781 0x5124  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
21:29:36.0781 0x5124  PolicyAgent - ok
21:29:36.0843 0x5124  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:29:36.0843 0x5124  PptpMiniport - ok
21:29:36.0859 0x5124  [ A32BEBAF723557681BFC6BD93E98BD26, 35039BA72A29F87B2CA37DCDE4EFDAABBDEAD8CE3EB8652ACC665994118145A6 ] Processor       C:\WINDOWS\system32\DRIVERS\processr.sys
21:29:36.0859 0x5124  Processor - ok
21:29:36.0890 0x5124  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:29:36.0890 0x5124  ProtectedStorage - ok
21:29:36.0921 0x5124  [ 390C204CED3785609AB24E9C52054A84, D997A9EAAE4A7FED9C2FEBD1AA7D1171431B9C9D56F8BFB587DCAE26203FF4D2 ] Ps2             C:\WINDOWS\system32\DRIVERS\PS2.sys
21:29:36.0921 0x5124  Ps2 - ok
21:29:36.0953 0x5124  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
21:29:36.0953 0x5124  PSched - ok
21:29:36.0984 0x5124  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:29:36.0984 0x5124  Ptilink - ok
21:29:37.0031 0x5124  [ 1962166E0CEB740704F30FA55AD3D509, 22C21907D7FDCA2CBBE1EC0479D83DDD4C4FCBC07C8791A2F62414EC5E85E488 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:29:37.0031 0x5124  PxHelp20 - ok
21:29:37.0046 0x5124  ql1080 - ok
21:29:37.0078 0x5124  Ql10wnt - ok
21:29:37.0093 0x5124  ql12160 - ok
21:29:37.0109 0x5124  ql1240 - ok
21:29:37.0125 0x5124  ql1280 - ok
21:29:37.0140 0x5124  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:29:37.0140 0x5124  RasAcd - ok
21:29:37.0187 0x5124  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         C:\WINDOWS\System32\rasauto.dll
21:29:37.0203 0x5124  RasAuto - ok
21:29:37.0265 0x5124  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:29:37.0265 0x5124  Rasl2tp - ok
21:29:37.0328 0x5124  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          C:\WINDOWS\System32\rasmans.dll
21:29:37.0343 0x5124  RasMan - ok
21:29:37.0359 0x5124  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:29:37.0359 0x5124  RasPppoe - ok
21:29:37.0390 0x5124  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
21:29:37.0390 0x5124  Raspti - ok
21:29:37.0421 0x5124  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:29:37.0437 0x5124  Rdbss - ok
21:29:37.0453 0x5124  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:29:37.0453 0x5124  RDPCDD - ok
21:29:37.0484 0x5124  [ 15CABD0F7C00C47C70124907916AF3F1, 66B5C978B7FB6359AD8BAC9F568FE9D469E358FEAB07B1F129BA9E85F1DF723E ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:29:37.0500 0x5124  rdpdr - ok
21:29:37.0562 0x5124  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
21:29:37.0578 0x5124  RDPWD - ok
21:29:37.0625 0x5124  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
21:29:37.0640 0x5124  RDSessMgr - ok
21:29:37.0671 0x5124  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
21:29:37.0671 0x5124  redbook - ok
21:29:37.0718 0x5124  [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
21:29:37.0734 0x5124  RemoteAccess - ok
21:29:37.0796 0x5124  [ 5B19B557B0C188210A56A6B699D90B8F, 0FA880B81AE615206FD1738B83428AAA491D54B24168339DE6E87FDE8C6C14B0 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
21:29:37.0796 0x5124  RemoteRegistry - ok
21:29:37.0843 0x5124  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      C:\WINDOWS\system32\locator.exe
21:29:37.0843 0x5124  RpcLocator - ok
21:29:37.0890 0x5124  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs           C:\WINDOWS\System32\rpcss.dll
21:29:37.0906 0x5124  RpcSs - ok
21:29:37.0968 0x5124  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe
21:29:37.0984 0x5124  RSVP - ok
21:29:38.0031 0x5124  [ D507C1400284176573224903819FFDA3, DD0BDB2AB39A8A0A300B6D60FB6A7F5BA08C4DB8F59E0A784FB763EA8AD72AB2 ] rtl8139         C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
21:29:38.0046 0x5124  rtl8139 - ok
21:29:38.0062 0x5124  RTL8192cu - ok
21:29:38.0093 0x5124  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           C:\WINDOWS\system32\lsass.exe
21:29:38.0093 0x5124  SamSs - ok
21:29:38.0156 0x5124  [ 39763504067962108505BFF25F024345, 73C9710B61EDC7FBEDE1D7A767AA3D3A169E7AD012494D05CB5EE7E5C5752BB9 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
21:29:38.0156 0x5124  SASDIFSV - ok
21:29:38.0171 0x5124  [ 77B9FC20084B48408AD3E87570EB4A85, B5BC5FEC1356DECB66A7A671DB67112BDAC8F942BF1C4B986B1805B41EF362B1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
21:29:38.0171 0x5124  SASKUTIL - ok
21:29:38.0281 0x5124  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
21:29:38.0281 0x5124  SCardSvr - ok
21:29:38.0359 0x5124  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
21:29:38.0375 0x5124  Schedule - ok
21:29:38.0421 0x5124  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:29:38.0421 0x5124  Secdrv - ok
21:29:38.0453 0x5124  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        C:\WINDOWS\System32\seclogon.dll
21:29:38.0453 0x5124  seclogon - ok
21:29:38.0484 0x5124  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            C:\WINDOWS\system32\sens.dll
21:29:38.0500 0x5124  SENS - ok
21:29:38.0531 0x5124  [ 86B90382EAB05D92F15950FFFA808F60, 8537E523A4FE36A1E624D2BFA787D96C02ACB03C3FADD4E72C8610B0556C3876 ] Ser2pl          C:\WINDOWS\system32\DRIVERS\ser2pl.sys
21:29:38.0531 0x5124  Ser2pl - ok
21:29:38.0562 0x5124  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] Serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
21:29:38.0578 0x5124  Serenum - ok
21:29:38.0625 0x5124  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
21:29:38.0625 0x5124  Serial - ok
21:29:38.0671 0x5124  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
21:29:38.0671 0x5124  Sfloppy - ok
21:29:38.0781 0x5124  [ 83F41D0D89645D7235C051AB1D9523AC, B681F33EEAA511D6A2DCB9FBAA407B739184C9FF6067C6B7E51F1FC37E9D4DD7 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
21:29:38.0812 0x5124  SharedAccess - ok
21:29:38.0843 0x5124  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:29:38.0859 0x5124  ShellHWDetection - ok
21:29:38.0875 0x5124  Simbad - ok
21:29:38.0906 0x5124  Sparrow - ok
21:29:38.0953 0x5124  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
21:29:38.0953 0x5124  splitter - ok
21:29:39.0015 0x5124  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
21:29:39.0031 0x5124  Spooler - ok
21:29:39.0125 0x5124  [ CDDDEC541BC3C96F91ECB48759673505, B030FFA02832317AC5626BF1BF8A4A95A5992C9A6E81BC1C002D5F4D667C27FB ] sptd            C:\WINDOWS\system32\Drivers\sptd.sys
21:29:39.0125 0x5124  Suspicious file ( NoAccess ): C:\WINDOWS\system32\Drivers\sptd.sys. md5: CDDDEC541BC3C96F91ECB48759673505, sha256: B030FFA02832317AC5626BF1BF8A4A95A5992C9A6E81BC1C002D5F4D667C27FB
21:29:39.0125 0x5124  sptd - detected LockedFile.Multi.Generic ( 1 )
21:29:41.0578 0x5124  Detect skipped due to KSN trusted
21:29:41.0578 0x5124  sptd - ok
21:29:41.0625 0x5124  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
21:29:41.0625 0x5124  sr - ok
21:29:41.0671 0x5124  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       C:\WINDOWS\system32\srsvc.dll
21:29:41.0687 0x5124  srservice - ok
21:29:41.0765 0x5124  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
21:29:41.0812 0x5124  Srv - ok
21:29:41.0843 0x5124  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
21:29:41.0859 0x5124  SSDPSRV - ok
21:29:41.0906 0x5124  [ A9573045BAA16EAB9B1085205B82F1ED, 6A4D68BCD4968C17451EB1C4AB420FFA844D089845520D222BC4A2BD14583C56 ] StillCam        C:\WINDOWS\system32\DRIVERS\serscan.sys
21:29:41.0906 0x5124  StillCam - ok
21:29:41.0953 0x5124  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
21:29:41.0984 0x5124  stisvc - ok
21:29:42.0015 0x5124  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
21:29:42.0015 0x5124  swenum - ok
21:29:42.0062 0x5124  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
21:29:42.0062 0x5124  swmidi - ok
21:29:42.0093 0x5124  SwPrv - ok
21:29:42.0125 0x5124  symc810 - ok
21:29:42.0140 0x5124  symc8xx - ok
21:29:42.0156 0x5124  sym_hi - ok
21:29:42.0171 0x5124  sym_u3 - ok
21:29:42.0218 0x5124  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
21:29:42.0218 0x5124  sysaudio - ok
21:29:42.0265 0x5124  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
21:29:42.0265 0x5124  SysmonLog - ok
21:29:42.0328 0x5124  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
21:29:42.0375 0x5124  TapiSrv - ok
21:29:42.0437 0x5124  [ 4D46F63F7DDC2442941D63327C360B90, A6E98E483915EC7849527C3056DD4D04541040A73305CF3900602D22397D50B2 ] tbhsd           C:\WINDOWS\system32\drivers\tbhsd.sys
21:29:42.0437 0x5124  tbhsd - ok
21:29:42.0515 0x5124  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:29:42.0546 0x5124  Tcpip - ok
21:29:42.0609 0x5124  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
21:29:42.0609 0x5124  TDPIPE - ok
21:29:42.0640 0x5124  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
21:29:42.0656 0x5124  TDTCP - ok
21:29:42.0687 0x5124  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
21:29:42.0687 0x5124  TermDD - ok
21:29:42.0796 0x5124  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     C:\WINDOWS\System32\termsrv.dll
21:29:42.0812 0x5124  TermService - ok
21:29:42.0859 0x5124  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes          C:\WINDOWS\System32\shsvcs.dll
21:29:42.0859 0x5124  Themes - ok
21:29:42.0921 0x5124  [ DB7205804759FF62C34E3EFD8A4CC76A, 13A4248F528CE98ACA66898E56822E4FC49B11F491FF1F61A687BA601BF0A802 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
21:29:42.0937 0x5124  TlntSvr - ok
21:29:42.0953 0x5124  TosIde - ok
21:29:42.0984 0x5124  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
21:29:42.0984 0x5124  TrkWks - ok
21:29:43.0062 0x5124  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
21:29:43.0062 0x5124  Udfs - ok
21:29:43.0093 0x5124  ultra - ok
21:29:43.0171 0x5124  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
21:29:43.0203 0x5124  Update - ok
21:29:43.0234 0x5124  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        C:\WINDOWS\System32\upnphost.dll
21:29:43.0296 0x5124  upnphost - ok
21:29:43.0312 0x5124  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             C:\WINDOWS\System32\ups.exe
21:29:43.0328 0x5124  UPS - ok
21:29:43.0390 0x5124  [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
21:29:43.0390 0x5124  USBAAPL - ok
21:29:43.0453 0x5124  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:29:43.0453 0x5124  usbccgp - ok
21:29:43.0484 0x5124  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:29:43.0484 0x5124  usbehci - ok
21:29:43.0546 0x5124  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:29:43.0562 0x5124  usbhub - ok
21:29:43.0625 0x5124  [ 0DAECCE65366EA32B162F85F07C6753B, 3C33AC2FC95E876933F2016CF0CDA2745491679728684DA8DF95A515CE4804BD ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys
21:29:43.0625 0x5124  usbohci - ok
21:29:43.0656 0x5124  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:29:43.0656 0x5124  usbprint - ok
21:29:43.0703 0x5124  [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:29:43.0703 0x5124  usbscan - ok
21:29:43.0796 0x5124  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:29:43.0796 0x5124  usbstor - ok
21:29:43.0812 0x5124  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
21:29:43.0812 0x5124  VgaSave - ok
21:29:43.0843 0x5124  ViaIde - ok
21:29:43.0859 0x5124  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
21:29:43.0875 0x5124  VolSnap - ok
21:29:43.0937 0x5124  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             C:\WINDOWS\System32\vssvc.exe
21:29:43.0968 0x5124  VSS - ok
21:29:44.0000 0x5124  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time         C:\WINDOWS\system32\w32time.dll
21:29:44.0015 0x5124  W32Time - ok
21:29:44.0093 0x5124  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:29:44.0093 0x5124  Wanarp - ok
21:29:44.0187 0x5124  [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
21:29:44.0359 0x5124  Wdf01000 - ok
21:29:44.0375 0x5124  WDICA - ok
21:29:44.0437 0x5124  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
21:29:44.0437 0x5124  wdmaud - ok
21:29:44.0500 0x5124  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       C:\WINDOWS\System32\webclnt.dll
21:29:44.0500 0x5124  WebClient - ok
21:29:44.0609 0x5124  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
21:29:44.0625 0x5124  winmgmt - ok
21:29:44.0718 0x5124  [ FD600B032E741EB6AAB509FC630F7C42, 2AF671D0648A5C2D2C4A7D0FDE803F07CC079CF1FA4E237DB912A8C77D9EC1F6 ] WinUSB          C:\WINDOWS\system32\DRIVERS\WinUSB.sys
21:29:44.0718 0x5124  WinUSB - ok
21:29:44.0796 0x5124  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
21:29:44.0796 0x5124  WmdmPmSN - ok
21:29:44.0875 0x5124  [ E76F8807070ED04E7408A86D6D3A6137, BFCF5361B7335760A7AE4B6958DE516A27AC60AA09135A46F0B49F588FAFE3A0 ] Wmi             C:\WINDOWS\System32\advapi32.dll
21:29:44.0906 0x5124  Wmi - ok
21:29:44.0968 0x5124  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:29:44.0984 0x5124  WmiApSrv - ok
21:29:45.0093 0x5124  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B, C71FAAC752F6D58BF8556661252DBF8C5DDD090CAE002A2C7E09C9A014526066 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
21:29:45.0156 0x5124  WMPNetworkSvc - ok
21:29:45.0218 0x5124  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          C:\WINDOWS\system32\DRIVERS\wpdusb.sys
21:29:45.0218 0x5124  WpdUsb - ok
21:29:45.0296 0x5124  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
21:29:45.0312 0x5124  wscsvc - ok
21:29:45.0421 0x5124  [ D161D62AE8D3F3EC1197B012D5E47431, 9D89B5C4B74231F41C039E142E69F4E8060259F1897E7077FE0EE94D58D4A1BA ] WSWNDA3100v2    C:\Program Files\NETGEAR\WNDA3100v2\WifiSvc.exe
21:29:45.0453 0x5124  WSWNDA3100v2 - ok
21:29:45.0484 0x5124  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
21:29:45.0515 0x5124  wuauserv - ok
21:29:45.0562 0x5124  [ EAA6324F51214D2F6718977EC9CE0DEF, B9DE1521395E09233FE519873702979C3EAF65FEC4B94B12A46CECB16C488543 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:29:45.0562 0x5124  WudfPf - ok
21:29:45.0609 0x5124  [ F91FF1E51FCA30B3C3981DB7D5924252, D7052B58F22638CA8B59C6FD7408D6D6DD1C33910912CACC05C133472CE0DDCE ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:29:45.0625 0x5124  WudfRd - ok
21:29:45.0656 0x5124  [ DDEE3682FE97037C45F4D7AB467CB8B6, D5A8F07AF4EDD9D7E17FEC6222D187E2981C177A479511E407756E0E5CB8D387 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
21:29:45.0671 0x5124  WudfSvc - ok
21:29:45.0750 0x5124  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
21:29:45.0796 0x5124  WZCSVC - ok
21:29:45.0843 0x5124  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
21:29:45.0906 0x5124  xmlprov - ok
21:29:45.0937 0x5124  zumbus - ok
21:29:45.0968 0x5124  ================ Scan global ===============================
21:29:46.0015 0x5124  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] C:\WINDOWS\system32\basesrv.dll
21:29:46.0078 0x5124  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
21:29:46.0140 0x5124  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] C:\WINDOWS\system32\winsrv.dll
21:29:46.0171 0x5124  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] C:\WINDOWS\system32\services.exe
21:29:46.0171 0x5124  [ Global ] - ok
21:29:46.0187 0x5124  ================ Scan MBR ==================================
21:29:46.0218 0x5124  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
21:29:46.0453 0x5124  \Device\Harddisk0\DR0 - ok
21:29:46.0484 0x5124  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
21:29:46.0500 0x5124  \Device\Harddisk1\DR1 - ok
21:29:46.0500 0x5124  ================ Scan VBR ==================================
21:29:46.0531 0x5124  [ AC0847207101307787B72D15B2C0802B ] \Device\Harddisk0\DR0\Partition1
21:29:46.0562 0x5124  \Device\Harddisk0\DR0\Partition1 - ok
21:29:46.0578 0x5124  [ 093B3D8E8BD37B1287A1CCCFA54F1B53 ] \Device\Harddisk1\DR1\Partition1
21:29:46.0593 0x5124  \Device\Harddisk1\DR1\Partition1 - ok
21:29:46.0609 0x5124  ================ Scan generic autorun ======================
21:29:46.0640 0x5124  [ 5F1D5F88303D4A4DBC8E5F97BA967CC3, 5FB24FC7916A6E6B3BE7D84CB1684215B266CD1495575C2E5672B8447932E5B1 ] C:\WINDOWS\system32\ctfmon.exe
21:29:46.0640 0x5124  ctfmon.exe - ok
21:29:46.0640 0x5124  Waiting for KSN requests completion. In queue: 55
21:29:47.0640 0x5124  Waiting for KSN requests completion. In queue: 55
21:29:48.0640 0x5124  Waiting for KSN requests completion. In queue: 55
21:29:49.0671 0x5124  AV detected via SS1: avast! Antivirus, 5.0.167774368, disabled, updated
21:29:49.0671 0x5124  Win FW state via NFM: enabled
21:29:52.0218 0x5124  ============================================================
21:29:52.0218 0x5124  Scan finished
21:29:52.0218 0x5124  ============================================================
21:29:52.0234 0x5274  Detected object count: 0
21:29:52.0234 0x5274  Actual detected object count: 0
 
<?xml version="1.0" encoding="UTF-16" ?> 
- <mbam-log>
- <header>
  <date>2014/12/02 07:45:19 -0600</date> 
  <logfile>mbam-log-2014-12-02 (07-45-10).xml</logfile> 
  <isadmin>yes</isadmin> 
  </header>
- <engine>
  <version>2.00.3.1025</version> 
  <malware-database>v2014.11.27.05</malware-database> 
  <rootkit-database>v2014.11.22.01</rootkit-database> 
  <license>free</license> 
  <file-protection>disabled</file-protection> 
  <web-protection>disabled</web-protection> 
  <self-protection>disabled</self-protection> 
  </engine>
- <system>
  <osversion>Windows XP Service Pack 3</osversion> 
  <arch>x86</arch> 
  <username>John McMorrow</username> 
  <filesys>NTFS</filesys> 
  </system>
- <summary>
  <type>threat</type> 
  <result>completed</result> 
  <objects>342399</objects> 
  <time>1383</time> 
  <processes>0</processes> 
  <modules>0</modules> 
  <keys>0</keys> 
  <values>0</values> 
  <datas>0</datas> 
  <folders>0</folders> 
  <files>2</files> 
  <sectors>0</sectors> 
  </summary>
- <options>
  <memory>enabled</memory> 
  <startup>enabled</startup> 
  <filesystem>enabled</filesystem> 
  <archives>enabled</archives> 
  <rootkits>enabled</rootkits> 
  <deeprootkit>enabled</deeprootkit> 
  <heuristics>enabled</heuristics> 
  <pup>warn</pup> 
  <pum>enabled</pum> 
  </options>
- <items>
- <file>
  <path>C:\Program Files\pcreg\service.exe</path> 
  <vendor>PUP.Optional.SearchSafer</vendor> 
  <action>none</action> 
  <hash>27ae55e9a8d4a78f084be74561a41de3</hash> 
  </file>
- <file>
  <path>C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\4LUNOPEN\service[1].exe</path> 
  <vendor>PUP.Optional.SearchSafer</vendor> 
  <action>none</action> 
  <hash>874e72cc37451125d77c6dbf7d88639d</hash> 
  </file>
  </items>
  </mbam-log>


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:43 PM

Posted 02 December 2014 - 11:13 PM

Ok, I'll look back again when the others are complete.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 johndepere

johndepere
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Local time:05:43 PM

Posted 02 December 2014 - 11:25 PM

ADW scan found no threats and Jrt results are below,

 

 

 

will try to get eset tomorrow.

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.0 (11.29.2014:1)
OS: Microsoft Windows XP x86
Ran by John McMorrow on Tue 12/02/2014 at 22:06:51.18
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
Successfully stopped: [Service] pcregservice 
Successfully deleted: [Service] pcregservice 
 
 
 
~~~ Registry Values
 
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Toolbar.CT2645238
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Toolbar.CT2786678
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Toolbar.CT3061355
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT2645238
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT2786678
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Toolbar.CT3061355
Successfully deleted: [Registry Key] "hkey_current_user\software\apn pip"
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{81AFF145-FFEE-4CAE-B053-FC16283647AA}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{551A852F-39A6-44A7-9C13-AFBEC9185A9D}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{551A852F-39A6-44A7-9C13-AFBEC9185A9D}
 
 
 
~~~ Files
 
Successfully deleted: [File] "C:\WINDOWS\couponprinter.ocx"
Successfully deleted: [File] "C:\WINDOWS\wininit.ini"
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\Documents and Settings\John McMorrow\Local Settings\Application Data\conduit"
Successfully deleted: [Folder] "C:\Program Files\conduit"
Successfully deleted: [Folder] "C:\Program Files\coupons"
Successfully deleted: [Folder] "C:\Program Files\pcreg"
Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\ask"
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 12/02/2014 at 22:13:19.10
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:43 PM

Posted 03 December 2014 - 11:14 AM

No problem, getting those off was good.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 johndepere

johndepere
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Local time:05:43 PM

Posted 04 December 2014 - 02:54 PM

Boopme, Thanks again for your help. I ran the Eset scanner late last night but I had a slight "snafu", at about  the 18% mark the scanner listed 1 infected file however due to how long the scan was taking I fell asleep and after I woke up this morning I noticed that the program must have re-booted my computer. I have run another complete scan today and the scanner found no infected files. I am not sure if "we" fixed anything but as of now my system seems to be running "ok". Let me know if there is anything else you would like me to do!!  Thanks again.  John



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:43 PM

Posted 04 December 2014 - 03:01 PM

Hi.. I think we got it and ESET took out the last.. Just dump the TEMP folder to be sure.

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
EDIT Are using any of these..
Java 7 Update 71 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)

Java Auto Updater (Version: 2.1.71.14 - Oracle, Inc.) Hidden

Java DB 10.6.2.1 (HKLM\...\{73EC658D-A1C6-40CA-8E86-E05821BAACE7}) (Version: 10.6.2.1 - Oracle)

Java SE Development Kit 6 Update 25 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0160250}) (Version: 1.6.0.250 - Oracle)

If not Un install them from the Control Panel

Edited by boopme, 04 December 2014 - 03:04 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 johndepere

johndepere
  • Topic Starter

  • Members
  • 78 posts
  • OFFLINE
  •  
  • Local time:05:43 PM

Posted 15 December 2014 - 05:04 AM

Ok boobme, I ran TFC and my system has been clean for a good week now!! Thank you very much for your assistance and your patience with this issue.  John.



#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:43 PM

Posted 15 December 2014 - 02:00 PM

Glad to hear it, you're welcome and have a good day!
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users