Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I seem to have multiple problems. I'm struggling now!


  • Please log in to reply
7 replies to this topic

#1 Slime58

Slime58

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:36 PM

Posted 08 December 2015 - 06:45 PM

I'll keep it brief!

I've recently realised that I don't get the 'Run as Admin' option on any program that I right click on.

All I get is 'Run as ...', which when clicked on, opens a Run As box into which I type Administrator ......................... but that does nothing.

I've also discovered that I can't do a 'system restore'.

I opened up a thread in your Windows XP forum (http://www.bleepingcomputer.com/forums/t/596139/i-cant-run-as-admin-or-do-a-system-restore/) and have now been advised by LOUIS, one of your mods, to start a new thread here.

The reason being that, apart from my initial two problems, I am currently unable to download programmes from the web.

I was having issues with Avast, recently installed as advised, interfering with my emails. I then uninstalled Avast, only to find I couldn't install anything else due to my downloading problems.

I've just installed an AV prog after downloading it from a laptop onto a flash drive and then putting it onto this PC.

When trying to download a prog, a box appears asking me whether I'd like to save the file or cancel. As soon as I click on 'save file' the programme box disappears!

I'm sorry to be a pain, but my problems are increasing at an alarming rate!

Oh, I also get random reboots ....................... and I mean random! None for weeks, then four in one evening!

Please help me if you can.

 

Thanks in advance,

 

Slime58.

 

 

 

P.S. Windows XP SP2.

Intel Quad Core Q6600 @ 2.40GHz

4GB of RAM


Edited by Slime58, 08 December 2015 - 06:51 PM.


BC AdBot (Login to Remove)

 


#2 Slime58

Slime58
  • Topic Starter

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:36 PM

Posted 14 December 2015 - 12:06 PM

Hi all.

I've recently realised that my printer is now only printing intermittently, in fact, very rarely and I keep getting notifications of heur/qvm40.1.malware.gen.

My AV programme constantly removes it, but it keeps coming back!

Please, please, please ...................... somebody help me!

Many thanks,

 

Slime58.


Edited by Slime58, 14 December 2015 - 12:06 PM.


#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:36 PM

Posted 14 December 2015 - 02:08 PM

Welcome try downlowding these from another machine to that Flashdrive and run them.

3Al62Pm.pngMiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
SXvL3ZF.pngTDSSKiller
  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
.
Download 51a46ae42d560-malwarebytes_anti_malware.MalwareBytes Anti-Malware to your desktop.
  • Double-click mbam-setup-2.0.exe to start the installation of Malwarebytes Anti-Malware.
  • Follow the instructions on your screen to complete the installation. You can find the complete installation procedure here.
  • Click the Scan Now button, a threat scan will start automatically.
  • MalwareBytes Anti-Malware will now check for the latest updates. Click Update Now if new updates are available.
  • Your computer is now being scanned, please do not use your computer during the scan.
    • If no threats were found, click View detailed log.
      • Click Export and save the log as a .txt file on your Desktop or another location.
    • If the scan detected any threats, click Apply Actions.
      • To complete any actions taken you will be prompted to restart your computer...click on Yes.
      • After reboot, start Malwarebytes Anti-Malware again and click the History Tab at the top and select Application Logs.
      • Check the box next to Scan Log. Choose the most current scan and click View.
      • Click Export and save the log as a .txt file on your Desktop or another location.
  • Providing the MalwareBytes' Anti-Malware log file
    • Attach the log file you just saved to your next reply for further review.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 Slime58

Slime58
  • Topic Starter

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:36 PM

Posted 15 December 2015 - 03:52 PM

Thanks for taking up the baton.

You asked me to do five scans after loading progs using a Flashdrive.

As soon as I put the drive in I got warnings regarding AdwCleaner and MiniToolBox claiming they contained trojans ............................ I ignored this!

I also found that I couldn't run AdwCleaner at all, I can't run as Admin which I think was the issue, I also had to run the other progs as an ordinary user, obviously!

JRT also didn't produce a JRT.txt log, in fact it produced nothing at all!

As an aside, I use 360 Total Security, which I'm not too keen on as it thinks everything is or has a virus!!

I'm also unable to attach logs so I'll have to copy & paste them all!

Sorry.

 

MiniToolBox by Farbar  Version: 02-11-2015
Ran by Simon Hill (administrator) on 15-12-2015 at 19:01:45
Running from "I:\Documents and Settings\Simon Hill\Desktop"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Model: System Product Name Manufacturer: System manufacturer
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

Hosts file not detected in the default directory

Hosts file not detected in the default directory
========================= IP Configuration: ================================

1394 Net Adapter = 1394 Connection (Connected)
Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter = Wireless Network Connection 9 (Connected)
Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# Interface IP Configuration         
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp

# Interface IP Configuration for "Wireless Network Connection 9"

set address name="Wireless Network Connection 9" source=dhcp
set dns name="Wireless Network Connection 9" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection 9" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



        Host Name . . . . . . . . . . . . : simon

        Primary Dns Suffix  . . . . . . . :

        Node Type . . . . . . . . . . . . : Unknown

        IP Routing Enabled. . . . . . . . : No

        WINS Proxy Enabled. . . . . . . . : No

        DNS Suffix Search List. . . . . . : Home



Ethernet adapter Local Area Connection:



        Media State . . . . . . . . . . . : Media disconnected

        Description . . . . . . . . . . . : Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller

        Physical Address. . . . . . . . . : 00-22-15-F3-D1-94



Ethernet adapter Wireless Network Connection 9:



        Connection-specific DNS Suffix  . : Home

        Description . . . . . . . . . . . : Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter

        Physical Address. . . . . . . . . : 00-18-E7-67-5F-F8

        Dhcp Enabled. . . . . . . . . . . : Yes

        Autoconfiguration Enabled . . . . : Yes

        IP Address. . . . . . . . . . . . : 192.168.0.5

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

        Default Gateway . . . . . . . . . : 192.168.0.1

        DHCP Server . . . . . . . . . . . : 192.168.0.1

        DNS Servers . . . . . . . . . . . : 192.168.0.1

        Lease Obtained. . . . . . . . . . : 15 December 2015 08:06:56

        Lease Expires . . . . . . . . . . : 16 December 2015 08:06:56

Server:  SkyRouter.Home
Address:  192.168.0.1

Name:    google.com
Addresses:  2.127.237.222, 2.127.237.246, 2.127.237.236, 2.127.237.237
      2.127.237.241, 2.127.237.231, 2.127.237.216, 2.127.237.226, 2.127.237.242
      2.127.237.232, 2.127.237.247, 2.127.237.251, 2.127.237.212, 2.127.237.227
      2.127.237.217, 2.127.237.221



Pinging google.com [2.127.237.216] with 32 bytes of data:



Reply from 2.127.237.216: bytes=32 time=15ms TTL=61

Reply from 2.127.237.216: bytes=32 time=28ms TTL=61



Ping statistics for 2.127.237.216:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 15ms, Maximum = 28ms, Average = 21ms

Server:  SkyRouter.Home
Address:  192.168.0.1

Name:    yahoo.com
Addresses:  206.190.36.45, 98.139.183.24, 98.138.253.109



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:



Reply from 98.139.183.24: bytes=32 time=97ms TTL=52

Reply from 98.139.183.24: bytes=32 time=97ms TTL=52



Ping statistics for 98.139.183.24:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 97ms, Maximum = 97ms, Average = 97ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

Reply from 127.0.0.1: bytes=32 time<1ms TTL=64



Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 22 15 f3 d1 94 ...... Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller - Packet Scheduler Miniport
0x10004 ...00 18 e7 67 5f f8 ...... Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1     192.168.0.5      25
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1      1
      192.168.0.0    255.255.255.0      192.168.0.5     192.168.0.5      25
      192.168.0.5  255.255.255.255        127.0.0.1       127.0.0.1      25
    192.168.0.255  255.255.255.255      192.168.0.5     192.168.0.5      25
        224.0.0.0        240.0.0.0      192.168.0.5     192.168.0.5      25
  255.255.255.255  255.255.255.255      192.168.0.5               2      1
  255.255.255.255  255.255.255.255      192.168.0.5     192.168.0.5      1
Default Gateway:       192.168.0.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 I:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 I:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 I:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 19 I:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/15/2015 07:02:03 PM) (Source: Application Error) (User: )
Description: Fault bucket 323843312.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication.  The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (12/15/2015 07:01:53 PM) (Source: Application Error) (User: )
Description: Faulting application plugin-container.exe, version 42.0.0.5780, faulting module mozglue.dll, version 42.0.0.5780, fault address 0x0000ed50.
Processing media-specific event for [plugin-container.exe!ws!]

Error: (12/15/2015 08:10:54 AM) (Source: LoadPerf) (User: )
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The
Error code is the first DWORD in Data section.

Error: (12/15/2015 08:10:54 AM) (Source: LoadPerf) (User: )
Description: The performance strings in the Performance registry value is corrupted when
process Performance extension counter provider. BaseIndex value from Performance
registry is the first DWORD in Data section, LastCounter value is the second
DWORD in Data section, and LastHelp value is the third DWORD in Data section.

Error: (12/14/2015 08:46:46 PM) (Source: LoadPerf) (User: )
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The
Error code is the first DWORD in Data section.

Error: (12/14/2015 08:46:46 PM) (Source: LoadPerf) (User: )
Description: The performance strings in the Performance registry value is corrupted when
process Performance extension counter provider. BaseIndex value from Performance
registry is the first DWORD in Data section, LastCounter value is the second
DWORD in Data section, and LastHelp value is the third DWORD in Data section.

Error: (12/14/2015 03:24:06 PM) (Source: LoadPerf) (User: )
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The
Error code is the first DWORD in Data section.

Error: (12/14/2015 03:24:06 PM) (Source: LoadPerf) (User: )
Description: The performance strings in the Performance registry value is corrupted when
process Performance extension counter provider. BaseIndex value from Performance
registry is the first DWORD in Data section, LastCounter value is the second
DWORD in Data section, and LastHelp value is the third DWORD in Data section.

Error: (12/13/2015 01:12:50 PM) (Source: LoadPerf) (User: )
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The
Error code is the first DWORD in Data section.

Error: (12/13/2015 01:12:50 PM) (Source: LoadPerf) (User: )
Description: The performance strings in the Performance registry value is corrupted when
process Performance extension counter provider. BaseIndex value from Performance
registry is the first DWORD in Data section, LastCounter value is the second
DWORD in Data section, and LastHelp value is the third DWORD in Data section.


System errors:
=============
Error: (12/15/2015 08:06:54 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (12/15/2015 08:06:52 AM) (Source: Service Control Manager) (User: )
Description: The PnkBstrA service failed to start due to the following error:
%%1053

Error: (12/15/2015 08:06:52 AM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for the PnkBstrA service to connect.

Error: (12/14/2015 08:42:45 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (12/14/2015 08:42:44 PM) (Source: Service Control Manager) (User: )
Description: The PnkBstrA service failed to start due to the following error:
%%1053

Error: (12/14/2015 08:42:44 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for the PnkBstrA service to connect.

Error: (12/14/2015 03:20:05 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (12/13/2015 01:08:49 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
Lbd

Error: (12/13/2015 01:08:48 PM) (Source: Service Control Manager) (User: )
Description: The PnkBstrA service failed to start due to the following error:
%%1053

Error: (12/13/2015 01:08:48 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for the PnkBstrA service to connect.


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

360 Total Security (HKLM\...\360TotalSecurity) (Version: 8.0.0.1063 - 360 Security Center)
Adobe AIR (HKLM\...\{0274D240-4D1D-4FDA-9A36-09F0BECD288F}) (Version: 19.0.0.241 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 19.0.0.241 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.13) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated)
Apple Application Support (HKLM\...\{F5266D28-E0B2-4130-BFC5-EE155AD514DC}) (Version: 2.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft Software Suite (HKLM\...\{497A1721-088F-41EF-8876-B43C9DA5528B}) (Version:  - ArcSoft)
ASUSUpdate (HKLM\...\{587178E7-B1DF-494E-9838-FA4DD36E873C}) (Version:  - )
Atheros Communications Inc.® AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.19 - Atheros Communications Inc.)
ATI Catalyst Install Manager (HKLM\...\{2C584286-0AD5-FE16-3E86-ADB9650878B9}) (Version: 3.0.820.0 - ATI Technologies, Inc.)
ATITool Overclocking Utility (HKLM\...\ATITool) (Version: 0.24 - )
Call of Duty - United Offensive (HKLM\...\{A662E280-64A8-4CF5-8407-13D0808602B3}) (Version: 1.00.0000 - Activision) Hidden
Call of Duty - United Offensive (HKLM\...\InstallShield_{A662E280-64A8-4CF5-8407-13D0808602B3}) (Version: 1.00.0000 - Activision)
Call of Duty Game of the Year Edition (HKLM\...\Call of Duty Game of the Year Edition) (Version:  - )
Call of Duty® - World at War™ (HKLM\...\{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision) Hidden
Call of Duty® - World at War™ (HKLM\...\InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision)
Call of Duty® 4 - Modern Warfare™ (HKLM\...\{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision) Hidden
Call of Duty® 4 - Modern Warfare™ (HKLM\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)
Catalyst Control Center - Branding (HKLM\...\{19A492A0-888F-44A0-9B21-D91700763F62}) (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center (HKLM\...\{43575988-73DD-569C-DD34-2369683D2E59}) (Version: 2011.0405.2154.37420 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (HKLM\...\{BC33E578-2003-C1DD-5769-470E32195CF2}) (Version: 2011.0405.2154.37420 - ATI) Hidden
Catalyst Control Center InstallProxy (HKLM\...\{12B15C5C-3A7B-2A4E-7848-B9FC3F59F3FF}) (Version: 2011.0405.2154.37420 - ATI Technologies, Inc.) Hidden
CCC Help English (HKLM\...\{3F3AAD8C-73AE-1980-8606-E3A52AD97CA8}) (Version: 2011.0405.2153.37420 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.25 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.2.7.1794 - CDBurnerXP)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CPUID CPU-Z 1.54 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Creative Centrale (HKLM\...\{4442AB48-DEC4-4B39-B067-1F75BF8017E7}) (Version: 1.16.02 - Creative Technology Ltd.) Hidden
Creative Centrale (HKLM\...\Creative Centrale) (Version: 1.16.02 - Creative Technology Ltd.)
Creative Software Update (HKLM\...\{86604C06-DA30-425E-AECE-47304FE81C45}) (Version: 1.03.01 - Creative Technology Ltd.) Hidden
Creative ZEN X-Fi User's Guide (HKLM\...\ZENX-FI) (Version:  - Creative Technology Ltd.)
Creative ZEN X-Fi Video Converter (HKLM\...\{60451544-C17E-4057-9273-5F10176472BD}) (Version: 1.00.03 - Creative Technology Ltd.) Hidden
Creative ZEN X-Fi Video Converter (HKLM\...\Creative ZEN X-Fi Video Converter) (Version:  - Creative Technology Ltd.)
Debugging Tools for Windows (x86) (HKLM\...\{300A2961-B2B5-4889-9CB9-5C2A570D08AD}) (Version: 6.11.1.404 - Microsoft Corporation)
DH Driver Cleaner Professional Edition (HKLM\...\Driver Cleaner Pro) (Version: Version 1.5 - Ruud Ketelaars)
Driver Magician Lite 3.8 (HKLM\...\Driver Magician Lite_is1) (Version:  - GoldSolution Software, Inc.)
EPU-6 Engine (HKLM\...\{56B83336-FBC1-4C46-8613-90A9E3B440D6}) (Version: 1.00.16 - )
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version:  - )
Football Manager 2013 (HKLM\...\Steam App 207890) (Version:  - Sports Interactive)
Google Earth (HKLM\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.29.1 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Google Updater (HKLM\...\Google Updater) (Version: 2.4.2432.1652 - Google Inc.)
Half-Life® 2 (HKLM\...\{D45EC259-4A19-4656-B588-C2C360DD18EA}) (Version: 1.0.0.0 - Valve)
hp deskjet 990c series (Remove only) (HKLM\...\hp deskjet 990c series) (Version:  - )
Intel Processor Diagnostic Tool  (HKLM\...\{155CE000-DDE8-4EFA-B38C-71788FAE65AF}) (Version: 19.0.0 - Intel Corporation)
Intel® Processor Frequency ID Utility (HKLM\...\{B772E270-02DF-4B70-9FA8-1383BBB81FDD}) (Version: 7.20.0000 - Intel® Corporation)
Intel® Processor ID Utility (HKLM\...\{A92A4DB0-CD37-42D1-BE1D-603D53C24328}) (Version: 4.50.0000 - Intel® Corporation)
Java 8 Update 65 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Java Auto Updater (HKLM\...\{4A03706F-666A-4037-7777-5F2748764D10}) (Version: 2.8.65.17 - Oracle Corporation) Hidden
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
marvell 61xx (HKLM\...\mv61xxDriver) (Version: 1.2.0.7700 - Marvell)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft ICE (HKLM\...\{D92A40F4-7BDD-4FAB-922F-E8D6B469AD48}) (Version: 1.0.0 - Microsoft Corporation)
Microsoft Office 2000 Premium (HKLM\...\{00000409-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Standard 2007 (HKLM\...\STANDARDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Word Viewer 2003 (HKLM\...\{90850409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 42.0 (x86 en-GB) (HKLM\...\Mozilla Firefox 42.0 (x86 en-GB)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 42.0.0.5780 - Mozilla)
Mozilla Thunderbird 38.4.0 (x86 en-GB) (HKLM\...\Mozilla Thunderbird 38.4.0 (x86 en-GB)) (Version: 38.4.0 - Mozilla)
MSVC80_x86_v2 (HKLM\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (HKLM\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyFreeCodec (HKCU\...\MyFreeCodec) (Version:  - )
O2InstV3Win7UpdateV2 (HKLM\...\{74B1CEB6-B4BF-46FD-8080-CE3C1809B010}) (Version: 10 - SupportSoft) Hidden
PC Connectivity Solution (HKLM\...\{29F563F4-8807-4496-8463-441EAA0E96AB}) (Version: 10.26.0.0 - Nokia)
PC Probe II (HKLM\...\{F7338FA3-DAB5-49B2-900D-0AFB5760C166}) (Version: 1.04.51 - )
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.6449 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30122 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Runtime 8.0 Libraries (HKLM\...\{EA4FA30B-7321-4428-90E9-28B088EC8DC9}) (Version: 1.0.0.0 - Microsoft)
Scoresaver 2 version 2.2 (HKLM\...\{F7D55122-D0B2-490A-8AC1-E3CF64921204}_is1) (Version: 2.2 - RDP Software Ltd)
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.6.8442 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Spamihilator 1.6.0 (32 bit) (HKLM\...\{961B37CC-64A0-4F1C-900C-80DD57D2B788}) (Version: 1.6.0 - Michel Krämer)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version:  - )
Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 4.40.1002 - SUPERAntiSpyware.com)
The Lord of the Rings FREE Trial  (HKLM\...\{8ACC73AA-6511-7C55-B1A9-8E5D1DEAFAA3}) (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
TomTom HOME (HKLM\...\{7A2BB1C8-903D-4585-9F3B-CADD67D07D37}) (Version: 2.9.8 - TomTom)
TomTom HOME Visual Studio Merge Modules (HKLM\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Turbo Lister 2 (HKLM\...\{8927E07C-97F7-4A54-88FB-D976F50DD46E}) (Version: 2.00.0000 - eBay Inc.)
Ulead PhotoImpact 12 (HKLM\...\{11AFE21E-B193-430D-B57A-DFF7815BB962}) (Version: 12.0 - Ulead System)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0012-0000-0000-0000000FF1CE}_STANDARDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Windows Internet Explorer 8 (KB976662) (HKLM\...\KB976662-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows Internet Explorer 8 (KB982632) (HKLM\...\KB982632-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows Internet Explorer 8 (KB982664) (HKLM\...\KB982664-IE8) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2141007) (HKLM\...\KB2141007) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2541763) (HKLM\...\KB2541763) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2607712) (HKLM\...\KB2607712) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2616676) (HKLM\...\KB2616676) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2641690) (HKLM\...\KB2641690) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2661254-v2) (HKLM\...\KB2661254-v2) (Version: 2 - Microsoft Corporation)
Update for Windows XP (KB2718704) (HKLM\...\KB2718704) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2736233) (HKLM\...\KB2736233) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2863058) (HKLM\...\KB2863058) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation) Hidden
Update for Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB967715) (HKLM\...\KB967715) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB971737) (HKLM\...\KB971737) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973687) (HKLM\...\KB973687) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
Update for Windows XP (KB978207) (HKLM\...\KB978207) (Version: 1 - Microsoft Corporation) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
WebFldrs XP (HKLM\...\{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}) (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Defender (HKLM\...\{A06275F4-324B-4E85-95E6-87B2CD729401}) (Version: 1.1.1593.21 - Microsoft Corporation)
Windows Driver Package - Nokia pccsmcfd  (08/22/2008 7.0.0.0) (HKLM\...\504244733D18C8F63FF584AEB290E3904E791693) (Version: 08/22/2008 7.0.0.0 - Nokia)
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (HKLM\...\KB952011) (Version: 1.0 - Microsoft Corporation)
Windows Installer Clean Up (HKLM\...\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}) (Version: 3.00.00.0000 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows Resource Kit Tools - SubInAcl.exe (HKLM\...\{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}) (Version: 5.2.3790.1164 - Microsoft Corporation)
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)
WOT for Internet Explorer (HKLM\...\{1D10C273-3F95-42A2-8371-AB6B1F59821B}) (Version: 10.12.20.0 - WOT Services Oy)
WOT for Internet Explorer (HKLM\...\{373B90E1-A28C-434C-92B6-7281AFA6115A}) (Version: 13.9.2.0 - WOT Services Oy)

========================= Memory info: ===================================

Percentage of memory in use: 21%
Total physical RAM: 3326.98 MB
Available physical RAM: 2597.43 MB
Total Virtual: 6491.7 MB
Available Virtual: 5780.07 MB

========================= Partitions: =====================================

3 Drive h: (HD-CEU2) (Fixed) (Total:465.76 GB) (Free:453.31 GB) NTFS
4 Drive i: () (Fixed) (Total:465.75 GB) (Free:399.79 GB) NTFS

========================= Users: ========================================

User accounts for \\SIMON

Administrator            ASPNET                   Guest                    
HelpAssistant            Simon Hill               SUPPORT_388945a0         


**** End of log ****
 

 

19:07:57.0557 0x0fe0  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
19:08:09.0354 0x0fe0  ============================================================
19:08:09.0354 0x0fe0  Current date / time: 2015/12/15 19:08:09.0354
19:08:09.0354 0x0fe0  SystemInfo:
19:08:09.0354 0x0fe0  
19:08:09.0354 0x0fe0  OS Version: 5.1.2600 ServicePack: 3.0
19:08:09.0354 0x0fe0  Product type: Workstation
19:08:09.0354 0x0fe0  ComputerName: SIMON
19:08:09.0354 0x0fe0  UserName: Simon Hill
19:08:09.0354 0x0fe0  Windows directory: I:\WINDOWS
19:08:09.0354 0x0fe0  System windows directory: I:\WINDOWS
19:08:09.0354 0x0fe0  Processor architecture: Intel x86
19:08:09.0354 0x0fe0  Number of processors: 4
19:08:09.0354 0x0fe0  Page size: 0x1000
19:08:09.0354 0x0fe0  Boot type: Normal boot
19:08:09.0354 0x0fe0  ============================================================
19:08:16.0057 0x0fe0  KLMD registered as I:\WINDOWS\system32\drivers\25374580.sys
19:08:17.0041 0x0fe0  System UUID: {209F0F07-8073-3A38-73D9-A00EFF085337}
19:08:19.0479 0x0fe0  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:08:19.0666 0x0fe0  Drive \Device\Harddisk1\DR2 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:08:19.0682 0x0fe0  ============================================================
19:08:19.0682 0x0fe0  \Device\Harddisk0\DR0:
19:08:19.0682 0x0fe0  MBR partitions:
19:08:19.0682 0x0fe0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A380D41
19:08:19.0682 0x0fe0  \Device\Harddisk1\DR2:
19:08:19.0682 0x0fe0  MBR partitions:
19:08:19.0682 0x0fe0  \Device\Harddisk1\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
19:08:19.0682 0x0fe0  ============================================================
19:08:19.0713 0x0fe0  H: <-> \Device\Harddisk1\DR2\Partition1
19:08:19.0994 0x0fe0  I: <-> \Device\Harddisk0\DR0\Partition1
19:08:19.0994 0x0fe0  ============================================================
19:08:19.0994 0x0fe0  Initialize success
19:08:19.0994 0x0fe0  ============================================================
19:08:27.0369 0x0d5c  ============================================================
19:08:27.0369 0x0d5c  Scan started
19:08:27.0369 0x0d5c  Mode: Manual;
19:08:27.0369 0x0d5c  ============================================================
19:08:27.0369 0x0d5c  KSN ping started
19:08:30.0119 0x0d5c  KSN ping finished: true
19:08:34.0416 0x0d5c  ================ Scan system memory ========================
19:08:34.0432 0x0d5c  System memory - ok
19:08:34.0448 0x0d5c  ================ Scan services =============================
19:08:34.0651 0x0d5c  [ 01E81C84AD1D0ACC61CF3CFD06632210, 1140756BA2F28CA8DFCFF8FD223654E6A78BA1B770A169CC557ECE0E01381B17 ] !SASCORE        I:\Program Files\SUPERAntiSpyware\SASCORE.EXE
19:08:34.0682 0x0d5c  !SASCORE - ok
19:08:36.0229 0x0d5c  [ 9DA9AD969607625968EAF9BFA4482D16, 4CC5094476919CAB7FDC422355224A3E0D3AEAF831B5D466CA824EC710FCCE27 ] 360AntiHacker   I:\WINDOWS\system32\Drivers\360AntiHacker.sys
19:08:36.0229 0x0d5c  360AntiHacker - ok
19:08:36.0291 0x0d5c  [ 50CF5732238CEAFF392609A60A3FBEE9, 7D37F090665086DABE06C7F164FF4C69BC85A4F2B76A6D4C4A76C9D23AE9A2FC ] 360AvFlt        I:\WINDOWS\system32\DRIVERS\360AvFlt.sys
19:08:36.0307 0x0d5c  360AvFlt - ok
19:08:36.0354 0x0d5c  [ 7509B72A4367D843A931EB5DB733C7AA, 9260FDF62BE368E131E1C1DD8CC961FA71409C1793C8A881150AA1E1BDDAD59E ] 360Box          I:\WINDOWS\system32\DRIVERS\360Box.sys
19:08:36.0385 0x0d5c  360Box - ok
19:08:36.0401 0x0d5c  [ 2255330A69644F179D0438666EEF1861, 29D10CBD372001332B49CD6248F7DFEDB7A707C8281AFFFFEE6F971D679A4973 ] 360Camera       I:\WINDOWS\system32\Drivers\360Camera.sys
19:08:36.0416 0x0d5c  360Camera - ok
19:08:36.0495 0x0d5c  [ 5E9963BC093F1AA1D9C8062247CEA2EE, 5700D5D216824220DF4D67C24EE305E35488B7C7AD7D3402DB0A55078D1696BD ] 360SelfProtection I:\WINDOWS\system32\drivers\360SelfProtection.sys
19:08:36.0510 0x0d5c  360SelfProtection - ok
19:08:36.0526 0x0d5c  Abiosdsk - ok
19:08:36.0526 0x0d5c  abp480n5 - ok
19:08:36.0604 0x0d5c  [ 419C06524DC5A79BAAD9A67339C1C65C, 5310164AE5B9D71CF55FA3106873560A2F789DA90A447ABFE72900AB65FEB0CE ] ACDaemon        I:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
19:08:36.0620 0x0d5c  ACDaemon - ok
19:08:36.0713 0x0d5c  [ 8FD99680A539792A30E97944FDAECF17, 594F8E0C3695400B0C09A797AF6BDFAC6F750ECD67D0EE803914C572B1DCC43C ] ACPI            I:\WINDOWS\system32\DRIVERS\ACPI.sys
19:08:36.0729 0x0d5c  ACPI - ok
19:08:36.0776 0x0d5c  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          I:\WINDOWS\system32\drivers\ACPIEC.sys
19:08:36.0807 0x0d5c  ACPIEC - ok
19:08:36.0963 0x0d5c  [ 280A526E8111AC6A5BCC1A059E1E0340, FB92DDAE29A097D148AB23D8A0BD2B9E662EC1DBF0DA8B716374D6919B4C646F ] AdobeFlashPlayerUpdateSvc I:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:08:36.0995 0x0d5c  AdobeFlashPlayerUpdateSvc - ok
19:08:36.0995 0x0d5c  adpu160m - ok
19:08:37.0057 0x0d5c  [ 8BED39E3C35D6A489438B8141717A557, 1B5796E56B0927360CE0759641B1151828BC0A9E45620D2B2D880491F5CE33D0 ] aec             I:\WINDOWS\system32\drivers\aec.sys
19:08:37.0057 0x0d5c  aec - ok
19:08:37.0104 0x0d5c  [ 023867B6606FBABCDD52E089C4A507DA, 30BE26F63B7EC6C9607AB46A97ACE83DD8140191D28BAB9E6292DA835A922289 ] AegisP          I:\WINDOWS\system32\DRIVERS\AegisP.sys
19:08:37.0104 0x0d5c  AegisP - ok
19:08:37.0135 0x0d5c  [ A7B8A3A79D35215D798A300DF49ED23F, D441633C0F8E22F8976B95D6A3DCD552AA07C616AC5FE4379472954F7BE6075E ] Afc             I:\WINDOWS\system32\drivers\Afc.sys
19:08:37.0135 0x0d5c  Afc - ok
19:08:37.0213 0x0d5c  [ 1E44BC1E83D8FD2305F8D452DB109CF9, CF5EC07E0B589FA2A4701C6CFD69E893FC3ABF274AD57AE3C13FFE49063B02C8 ] AFD             I:\WINDOWS\System32\drivers\afd.sys
19:08:37.0229 0x0d5c  AFD - ok
19:08:37.0229 0x0d5c  Aha154x - ok
19:08:37.0245 0x0d5c  aic78u2 - ok
19:08:37.0245 0x0d5c  aic78xx - ok
19:08:37.0307 0x0d5c  [ A9A3DAA780CA6C9671A19D52456705B4, 67C959144B57AE0BBF1D82DBED197F32CDB06FECD883A80C441A0202FE83FAB4 ] Alerter         I:\WINDOWS\system32\alrsvc.dll
19:08:37.0323 0x0d5c  Alerter - ok
19:08:37.0370 0x0d5c  [ 8C515081584A38AA007909CD02020B3D, A5E13CA10F702928E0DE84C74D0EA8ACCB117FD76FBABC55220C75C4FFD596DC ] ALG             I:\WINDOWS\System32\alg.exe
19:08:37.0385 0x0d5c  ALG - ok
19:08:37.0385 0x0d5c  AliIde - ok
19:08:37.0823 0x0d5c  [ 267FC636801EDC5AB28E14036349E3BE, CFEF5DF5F9BE820283376BB86DB3CF6609C02D316A742E17459A2BFA42E724E0 ] Ambfilt         I:\WINDOWS\system32\drivers\Ambfilt.sys
19:08:37.0963 0x0d5c  Ambfilt - ok
19:08:37.0963 0x0d5c  amsint - ok
19:08:37.0963 0x0d5c  AppMgmt - ok
19:08:38.0010 0x0d5c  [ B5B8A80875C1DEDEDA8B02765642C32F, AD0C71D73B1B8225351FBF4FFB43001A32B4DAE69504C59970CD2428BB33D4EF ] Arp1394         I:\WINDOWS\system32\DRIVERS\arp1394.sys
19:08:38.0026 0x0d5c  Arp1394 - ok
19:08:38.0026 0x0d5c  asc - ok
19:08:38.0026 0x0d5c  asc3350p - ok
19:08:38.0026 0x0d5c  asc3550 - ok
19:08:38.0057 0x0d5c  [ 2B4E66FAC6503494A2C6F32BB6AB3826, 923EBBE8111E73D5B8ECC2DB10F8EA2629A3264C3A535D01C3C118A3B4C91782 ] AsIO            I:\WINDOWS\system32\drivers\AsIO.sys
19:08:38.0073 0x0d5c  AsIO - ok
19:08:38.0291 0x0d5c  [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state    I:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:08:38.0354 0x0d5c  aspnet_state - ok
19:08:38.0385 0x0d5c  [ B153AFFAC761E7F5FCFA822B9C4E97BC, 7E60F572A6B3C6219E3C86225AA37243AFFD74337DB7F108B04778042E5CC959 ] AsyncMac        I:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:08:38.0432 0x0d5c  AsyncMac - ok
19:08:38.0448 0x0d5c  [ 9F3A2F5AA6875C72BF062C712CFA2674, B4DF1D2C56A593C6B54DE57395E3B51D288F547842893B32B0F59228A0CF70B9 ] atapi           I:\WINDOWS\system32\DRIVERS\atapi.sys
19:08:38.0448 0x0d5c  atapi - ok
19:08:38.0463 0x0d5c  Atdisk - ok
19:08:38.0573 0x0d5c  [ 64DA279C055AA91403449A8FAFFA57EB, E421C82F14D77FA3EE56DC12DF421012C329B38A298957E1BC1146EDE531DA49 ] Ati HotKey Poller I:\WINDOWS\system32\Ati2evxx.exe
19:08:38.0604 0x0d5c  Ati HotKey Poller - ok
19:08:40.0385 0x0d5c  [ 6D7E913B48488BB5C73EE7AD53B017D8, 897393CBDA16AFB2649C15063F65E254BCAB92FF64947A5BA5F209B9A37A4700 ] ati2mtag        I:\WINDOWS\system32\DRIVERS\ati2mtag.sys
19:08:42.0401 0x0d5c  ati2mtag - ok
19:08:42.0495 0x0d5c  [ 41C8F0EDA10DA14378D304C20BA6E558, B3061FE75D5376409A217E9F522B53AC53DA5AEAAF5EC6254E5BC305C9681062 ] AtiHdmiService  I:\WINDOWS\system32\drivers\AtiHdmi.sys
19:08:42.0526 0x0d5c  AtiHdmiService - ok
19:08:42.0588 0x0d5c  [ 1294314049F7CC8BF8FFA11D51458D35, 5FFD0B4CFF91DF1B9E77E2775B84E04DB8BC379CCA8DBBFA6D6A34310264C351 ] ATITool         I:\WINDOWS\system32\DRIVERS\ATITool.sys
19:08:42.0604 0x0d5c  ATITool - ok
19:08:42.0635 0x0d5c  [ 9916C1225104BA14794209CFA8012159, 5D6F05F715C52A16D05CAE15C3DFE77A139A7F27F7AE710EC9A10F9EE05115A1 ] Atmarpc         I:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:08:42.0651 0x0d5c  Atmarpc - ok
19:08:42.0729 0x0d5c  [ DEF7A7882BEC100FE0B2CE2549188F9D, 462C95B63D0A1058291A2DC8CBFCB13D7D74CCD1CA43B613A7EB43D49E3276F8 ] AudioSrv        I:\WINDOWS\System32\audiosrv.dll
19:08:42.0745 0x0d5c  AudioSrv - ok
19:08:42.0791 0x0d5c  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         I:\WINDOWS\system32\DRIVERS\audstub.sys
19:08:42.0807 0x0d5c  audstub - ok
19:08:43.0135 0x0d5c  [ 14BD5F2B5A01038F8B289EC0868AA521, 725FE6A772C56C2FC853A7E7E8A59A5D03B03876FC821207F8A0848E0E90B886 ] BAPIDRV         I:\WINDOWS\system32\DRIVERS\BAPIDRV.sys
19:08:43.0198 0x0d5c  BAPIDRV - ok
19:08:43.0291 0x03c8  Object required for P2P: [ 9DA9AD969607625968EAF9BFA4482D16 ] 360AntiHacker
19:08:43.0495 0x0d5c  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            I:\WINDOWS\system32\drivers\Beep.sys
19:08:43.0510 0x0d5c  Beep - ok
19:08:43.0776 0x0d5c  BIOSCHK - ok
19:08:44.0229 0x0d5c  [ 574738F61FCA2935F5265DC4E5691314, 3C7CCF064397186C3A3863DD2370AB6414A61B330097DCA4F299CA7BBAA3D1B4 ] BITS            I:\WINDOWS\system32\qmgr.dll
19:08:44.0495 0x0d5c  BITS - ok
19:08:44.0573 0x0d5c  [ CFD4E51402DA9838B5A04AE680AF54A0, 5378F42B195B5832B00A05AD64E00473A45FFB86AC25C57241F26EA82B149FE1 ] Browser         I:\WINDOWS\System32\browser.dll
19:08:44.0620 0x0d5c  Browser - ok
19:08:44.0620 0x0d5c  catchme - ok
19:08:44.0682 0x0d5c  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         I:\WINDOWS\system32\drivers\cbidf2k.sys
19:08:44.0698 0x0d5c  cbidf2k - ok
19:08:44.0698 0x0d5c  cd20xrnt - ok
19:08:44.0745 0x0d5c  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         I:\WINDOWS\system32\drivers\Cdaudio.sys
19:08:44.0760 0x0d5c  Cdaudio - ok
19:08:44.0823 0x0d5c  [ C885B02847F5D2FD45A24E219ED93B32, B26B2F8E3A831E2B65EB0C5195B0645CD50E22615CE79C9B0B391CD563B121DB ] Cdfs            I:\WINDOWS\system32\drivers\Cdfs.sys
19:08:44.0838 0x0d5c  Cdfs - ok
19:08:44.0854 0x0d5c  [ 1F4260CC5B42272D71F79E570A27A4FE, B51C2A3ED3C309953D0EA45869C8E464C10F2533DADE9E0286AF674979098D1D ] Cdrom           I:\WINDOWS\system32\DRIVERS\cdrom.sys
19:08:44.0885 0x0d5c  Cdrom - ok
19:08:44.0885 0x0d5c  Changer - ok
19:08:45.0026 0x0d5c  [ 1CFE720EB8D93A7158A4EBC3AB178BDE, 65D2A9D9A88F38D4AF323134C151BA0F4B3CD0F6A134AF86E7AC9D07319F1726 ] CiSvc           I:\WINDOWS\system32\cisvc.exe
19:08:45.0041 0x0d5c  CiSvc - ok
19:08:45.0073 0x0d5c  [ 34CBE729F38138217F9C80212A2A0C82, A9FD7A758D12E0818A11BEEF1CE772FEFA8373E92EF6C0DA8628CD4572CC9A43 ] ClipSrv         I:\WINDOWS\system32\clipsrv.exe
19:08:45.0073 0x0d5c  ClipSrv - ok
19:08:45.0370 0x0d5c  [ D87ACAED61E417BBA546CED5E7E36D9C, 14AC6034A5BC0FB2A1AFDAD42BEF4DE641556E54AD30D0C46765660A4BE55462 ] clr_optimization_v2.0.50727_32 I:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:08:45.0573 0x0d5c  clr_optimization_v2.0.50727_32 - ok
19:08:45.0635 0x0d5c  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 I:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:08:45.0870 0x0d5c  clr_optimization_v4.0.30319_32 - ok
19:08:45.0901 0x0d5c  CmdIde - ok
19:08:45.0901 0x0d5c  COMSysApp - ok
19:08:45.0901 0x0d5c  Cpqarray - ok
19:08:45.0963 0x0d5c  [ 13A0D3F9D5F39ADACA0A8D3BB327EB31, C7F64B27CD3BE5AF1C8454680529EA493DFBB09E634EEC7E316445AD73499AE0 ] cpuz133         I:\WINDOWS\system32\drivers\cpuz133_x32.sys
19:08:45.0979 0x0d5c  cpuz133 - ok
19:08:46.0057 0x0d5c  [ 3D4E199942E29207970E04315D02AD3B, 0825960894CF9C86CC8775BDD2A262948A09CA495AA7FE9F210FAF49E7086383 ] CryptSvc        I:\WINDOWS\System32\cryptsvc.dll
19:08:46.0088 0x0d5c  CryptSvc - ok
19:08:46.0182 0x0d5c  [ A5BEA0E5C297F5F3835638A87E512FBA, D9C31AE8661CD8AC87E5F28AFE4126C62B5D4AEB96610C9A2F49CEB288AF673A ] CTDevice_Srv    I:\Program Files\Creative\Shared Files\CTDevSrv.exe
19:08:46.0198 0x0d5c  CTDevice_Srv - ok
19:08:46.0276 0x0d5c  [ 8E26D772F53B7883A651E0E4A9598F21, 69A94B643038B874C69998A8BA5C45E04E034D0FF9C21D131BCDA02125BAEE5F ] CTUPnPSv        I:\Program Files\Creative\Creative Centrale\CTUPnPSv.exe
19:08:46.0291 0x0d5c  CTUPnPSv - ok
19:08:46.0307 0x0d5c  dac2w2k - ok
19:08:46.0307 0x0d5c  dac960nt - ok
19:08:46.0401 0x0d5c  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] DcomLaunch      I:\WINDOWS\system32\rpcss.dll
19:08:46.0463 0x0d5c  DcomLaunch - ok
19:08:46.0526 0x0d5c  [ 6216FD7FD227DE454238A702B218CEC7, 5699FDD253754AE274B8624A41CBE778D74383E95D5167785A48A51AAD67FC70 ] dgderdrv        I:\WINDOWS\system32\drivers\dgderdrv.sys
19:08:46.0526 0x0d5c  dgderdrv - ok
19:08:46.0573 0x0d5c  [ 5E38D7684A49CACFB752B046357E0589, F192AD4190BCFB6939A5CBC91648FE63168AF79A5E227A111DEAD6A92E42AB8D ] Dhcp            I:\WINDOWS\System32\dhcpcsvc.dll
19:08:46.0573 0x0d5c  Dhcp - ok
19:08:46.0604 0x0d5c  [ 044452051F3E02E7963599FC8F4F3E25, 584BDDB074618BE76454CF90E74829CFF588B5B5FAEB793E2F7AAD26352DD689 ] Disk            I:\WINDOWS\system32\DRIVERS\disk.sys
19:08:46.0620 0x0d5c  Disk - ok
19:08:46.0620 0x0d5c  dmadmin - ok
19:08:46.0713 0x0d5c  [ D992FE1274BDE0F84AD826ACAE022A41, C82BD6561A14F2932A761F5883A787B99031250EE5E9B7B5714AA045545C9B99 ] dmboot          I:\WINDOWS\system32\drivers\dmboot.sys
19:08:46.0776 0x0d5c  dmboot - ok
19:08:46.0870 0x0d5c  [ 7C824CF7BBDE77D95C08005717A95F6F, A73CB323B7A6410C3D3F258BF204E716ADF8C84C9E4F6562C57AB73DAED8CCDE ] dmio            I:\WINDOWS\system32\drivers\dmio.sys
19:08:46.0916 0x0d5c  dmio - ok
19:08:46.0995 0x0d5c  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          I:\WINDOWS\system32\drivers\dmload.sys
19:08:47.0026 0x0d5c  dmload - ok
19:08:47.0073 0x0d5c  [ 57EDEC2E5F59F0335E92F35184BC8631, 61F6F0DC2D1A6C61D5EF0D5CC4BE0FFC217F1E61FDA3EA9F704709293656600F ] dmserver        I:\WINDOWS\System32\dmserver.dll
19:08:47.0088 0x0d5c  dmserver - ok
19:08:47.0104 0x0d5c  [ 8A208DFCF89792A484E76C40E5F50B45, 4E40E2EB38C6254E7CAA488200E89EE7DEBBBA773890BC6A84313CC68178D54F ] DMusic          I:\WINDOWS\system32\drivers\DMusic.sys
19:08:47.0120 0x0d5c  DMusic - ok
19:08:47.0166 0x0d5c  [ 5F7E24FA9EAB896051FFB87F840730D2, 356EEFDCD54DECAD0170B34B993E4BF80DD039E2B2922D7A8D09B84031E9FC7A ] Dnscache        I:\WINDOWS\System32\dnsrslvr.dll
19:08:47.0182 0x0d5c  Dnscache - ok
19:08:47.0323 0x0d5c  [ 0F0F6E687E5E15579EF4DA8DD6945814, 5C32D88119EB1465B2D719BEE2E05888D1A73454B5E33F2D4928DA710F8BFBA3 ] Dot3svc         I:\WINDOWS\System32\dot3svc.dll
19:08:47.0370 0x0d5c  Dot3svc - ok
19:08:47.0370 0x0d5c  dpti2o - ok
19:08:47.0416 0x0d5c  [ 8F5FCFF8E8848AFAC920905FBD9D33C8, C8C6FB97AB0871C8C88A2201525A5CF10D5131CB6980D32692ED7A8F58399AD5 ] drmkaud         I:\WINDOWS\system32\drivers\drmkaud.sys
19:08:47.0432 0x0d5c  drmkaud - ok
19:08:47.0448 0x0d5c  [ 2187855A7703ADEF0CEF9EE4285182CC, 8233CC11F637866C0074043835A785EA2B616739B6B1181B143A253CF2508CFD ] EapHost         I:\WINDOWS\System32\eapsvc.dll
19:08:47.0463 0x0d5c  EapHost - ok
19:08:47.0526 0x0d5c  eapihdrv - ok
19:08:47.0604 0x0d5c  [ 94C668C7A654EFCAB6689AA45BAF2A4F, 43103D9751109ABF113948C6613789FBBE8F6164CEB7A44185760A765814BA48 ] EfiMon          I:\WINDOWS\system32\Drivers\Efimon.sys
19:08:47.0620 0x0d5c  EfiMon - ok
19:08:47.0698 0x0d5c  [ BDD170FECB0E496A914318009D85B819, A20D24D6B9F9A52DF002D0EEB87B217016E77AF02CFDF06D1A2DBE5B5C6C6F12 ] ENTECH          I:\WINDOWS\system32\DRIVERS\ENTECH.SYS
19:08:47.0713 0x0d5c  ENTECH - ok
19:08:47.0776 0x0d5c  [ BC93B4A066477954555966D77FEC9ECB, 27F5B780175EF46DA102EE33F7F33559C8B40C077EEA4405D579D9507F4B1C23 ] ERSvc           I:\WINDOWS\System32\ersvc.dll
19:08:47.0791 0x0d5c  ERSvc - ok
19:08:47.0854 0x0d5c  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] Eventlog        I:\WINDOWS\system32\services.exe
19:08:47.0854 0x0d5c  Eventlog - ok
19:08:47.0979 0x0d5c  [ D4991D98F2DB73C60D042F1AEF79EFAE, 58AF949EAEBF4FF3E3314DFB66CE4198BF65F0836B68CD27A6ED319742CCCCD2 ] EventSystem     I:\WINDOWS\system32\es.dll
19:08:47.0995 0x0d5c  EventSystem - ok
19:08:48.0057 0x0d5c  [ 38D332A6D56AF32635675F132548343E, E6909DB836AF679B4F4D62C7396D6C82769CC7ABB8C919C2AABFE934FCE268F6 ] Fastfat         I:\WINDOWS\system32\drivers\Fastfat.sys
19:08:48.0073 0x0d5c  Fastfat - ok
19:08:48.0151 0x0d5c  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] FastUserSwitchingCompatibility I:\WINDOWS\System32\shsvcs.dll
19:08:48.0166 0x0d5c  FastUserSwitchingCompatibility - ok
19:08:48.0213 0x0d5c  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81, 8307A532AB4D05CBBCE206DC2759497708BF5AAA880BD00F0E4F281D8578A1F5 ] Fdc             I:\WINDOWS\system32\DRIVERS\fdc.sys
19:08:48.0229 0x0d5c  Fdc - ok
19:08:48.0260 0x0d5c  [ D45926117EB9FA946A6AF572FBE1CAA3, 4C94EF009D778BE0BDF8F812F026B96F91F641BE30AA2531427A5E63DBD280DA ] Fips            I:\WINDOWS\system32\drivers\Fips.sys
19:08:48.0276 0x0d5c  Fips - ok
19:08:48.0291 0x0d5c  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0, 69C271AD5BCEBFD8AE5A769BDD7EC51256DA3A8ADAD5D12E5C0D13F4E82D8805 ] Flpydisk        I:\WINDOWS\system32\DRIVERS\flpydisk.sys
19:08:48.0307 0x0d5c  Flpydisk - ok
19:08:48.0385 0x0d5c  [ B2CF4B0786F8212CB92ED2B50C6DB6B0, 280F5CF8A90F7BEDE73ADD0DD0F8952088133A7CA9A3D3B7041957E33B36845D ] FltMgr          I:\WINDOWS\system32\drivers\fltmgr.sys
19:08:48.0401 0x0d5c  FltMgr - ok
19:08:48.0541 0x0d5c  [ 8BA7C024070F2B7FDD98ED8A4BA41789, 47585006F86B2C6016EC54250A416794792D1E4024FF229C120BC25B684AF66A ] FontCache3.0.0.0 i:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:08:48.0557 0x0d5c  FontCache3.0.0.0 - ok
19:08:48.0573 0x0d5c  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          I:\WINDOWS\system32\drivers\Fs_Rec.sys
19:08:48.0604 0x0d5c  Fs_Rec - ok
19:08:48.0620 0x0d5c  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          I:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:08:48.0635 0x0d5c  Ftdisk - ok
19:08:48.0776 0x0d5c  [ 77EBF3E9386DAA51551AF429052D88D0, 94C3294BB9E14B07448734AE65B37801D3FF15BEC987D182A929A017FEF7B276 ] giveio          I:\WINDOWS\system32\giveio.sys
19:08:48.0823 0x0d5c  giveio - ok
19:08:48.0885 0x0d5c  [ 0A02C63C8B144BD8C86B103DEE7C86A2, 7A3235DD3E1995DD72B212FAEB3ECA2A974434DE9BF6D269EA11BA65A80E7E50 ] Gpc             I:\WINDOWS\system32\DRIVERS\msgpc.sys
19:08:48.0948 0x0d5c  Gpc - ok
19:08:49.0120 0x0d5c  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate1c9ac0b8a333800 I:\Program Files\Google\Update\GoogleUpdate.exe
19:08:49.0135 0x0d5c  gupdate1c9ac0b8a333800 - ok
19:08:49.0151 0x0d5c  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        I:\Program Files\Google\Update\GoogleUpdate.exe
19:08:49.0151 0x0d5c  gupdatem - ok
19:08:49.0229 0x0d5c  [ 408DDD80EEDE47175F6844817B90213E, 836822885D90DAFFD25A7D7EE363F4DACD41AA4B59095243E2798B137DC55FE3 ] gusvc           I:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:08:49.0245 0x0d5c  gusvc - ok
19:08:49.0291 0x03c8  Object send P2P result: true
19:08:49.0323 0x0d5c  [ 573C7D0A32852B48F3058CFD8026F511, BC384BBA394AFDCDA1A9ABC858C692AA84A1F0A31AF3DDF7F38D120C027927FB ] HDAudBus        I:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:08:49.0338 0x0d5c  HDAudBus - ok
19:08:49.0432 0x0d5c  [ 4FCCA060DFE0C51A09DD5C3843888BCD, D82417706B517F2610DDF7C86BE03A72EFA9A2A389DF5C8F8ADEAB8144E2C80A ] helpsvc         I:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:08:49.0448 0x0d5c  helpsvc - ok
19:08:49.0479 0x0d5c  [ DEB04DA35CC871B6D309B77E1443C796, F66A15C9528D661940F1F4CA453B3E95036D68C74C3B8AB53644211DBD3D2F32 ] HidServ         I:\WINDOWS\System32\hidserv.dll
19:08:49.0495 0x0d5c  HidServ - ok
19:08:49.0526 0x0d5c  [ CCF82C5EC8A7326C3066DE870C06DAF1, 93395FA4C26B2E82DC8B7025ED3BCF583885E5D8C5F60CD6EEAA6335D6A126EC ] HidUsb          I:\WINDOWS\system32\DRIVERS\hidusb.sys
19:08:49.0557 0x0d5c  HidUsb - ok
19:08:49.0573 0x0d5c  [ 8878BD685E490239777BFE51320B88E9, C5C3ECF6B049B6736E35B39518A8F830B45C45A88FFE8E3A6B7922AD946597E2 ] hkmsvc          I:\WINDOWS\System32\kmsvc.dll
19:08:49.0588 0x0d5c  hkmsvc - ok
19:08:49.0698 0x0d5c  [ 37062D5F82B1FB3875592E97C57C5CBC, 01EB2F184C2BF2D283F7BF1EE209E33013B0C834B11B67FBBA869A1F54E8DF4A ] HookPort        I:\WINDOWS\system32\Drivers\Hookport.sys
19:08:49.0713 0x0d5c  HookPort - ok
19:08:49.0713 0x0d5c  hpn - ok
19:08:49.0823 0x0d5c  [ F80A415EF82CD06FFAF0D971528EAD38, 524D9E9201572929522F6805011783711B7C0F76308B924C89CF75F4B7A1FDF3 ] HTTP            I:\WINDOWS\system32\Drivers\HTTP.sys
19:08:49.0901 0x0d5c  HTTP - ok
19:08:49.0995 0x0d5c  [ 6100A808600F44D999CEBDEF8841C7A3, 61A75118C327812C60622010985A2E80E79B6FD9030A5732390EE5426E4AF6C9 ] HTTPFilter      I:\WINDOWS\System32\w3ssl.dll
19:08:50.0026 0x0d5c  HTTPFilter - ok
19:08:50.0026 0x0d5c  i2omgmt - ok
19:08:50.0026 0x0d5c  i2omp - ok
19:08:50.0088 0x0d5c  [ 4A0B06AA8943C1E332520F7440C0AA30, DB2452390CCFE67E0C5FEB4FD42CA24ABE2DDD40D0B22DD5F5B8F70416863918 ] i8042prt        I:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:08:50.0104 0x0d5c  i8042prt - ok
19:08:50.0245 0x0d5c  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        I:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
19:08:50.0260 0x0d5c  IDriverT - ok
19:08:50.0463 0x0d5c  [ C01AC32DC5C03076CFB852CB5DA5229C, A4D7749220B5BC965D96A267F1E02FE8284A230BA249109207BD4B9EA8DFAC96 ] idsvc           i:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:08:50.0557 0x0d5c  idsvc - ok
19:08:50.0573 0x0d5c  [ 083A052659F5310DD8B6A6CB05EDCF8E, 48D39B03FFB6FAA1529B774443BA12618AE3982D9F65A7B9D18F2269F78B31F4 ] Imapi           I:\WINDOWS\system32\DRIVERS\imapi.sys
19:08:50.0604 0x0d5c  Imapi - ok
19:08:50.0682 0x0d5c  [ 30DEAF54A9755BB8546168CFE8A6B5E1, 3936228CD3125C763ABFCB93E86E4B43838202BCC0913A28E84AC0263B43EE0D ] ImapiService    I:\WINDOWS\system32\imapi.exe
19:08:50.0698 0x0d5c  ImapiService - ok
19:08:50.0713 0x0d5c  ini910u - ok
19:08:52.0557 0x0d5c  [ 85AB23F3E4BA6696FAE8BEB9D434EDD6, 13347479AB31F29C54AAAE6D06341637E4B2C2E1B32D26C106361E06A53D06F8 ] IntcAzAudAddService I:\WINDOWS\system32\drivers\RtkHDAud.sys
19:08:54.0479 0x0d5c  IntcAzAudAddService - ok
19:08:54.0510 0x0d5c  IntelIde - ok
19:08:54.0588 0x0d5c  [ 8C953733D8F36EB2133F5BB58808B66B, 555868F246D73652E998B0B1296476E42FCEDED30D646CC000F31ECE4EBC25E6 ] intelppm        I:\WINDOWS\system32\DRIVERS\intelppm.sys
19:08:54.0604 0x0d5c  intelppm - ok
19:08:54.0620 0x0d5c  [ 3BB22519A194418D5FEC05D800A19AD0, F6662F440950596DC1382DD1DB5D7891CCEA30A6062BEA942C18445B5F0D8B16 ] Ip6Fw           I:\WINDOWS\system32\drivers\ip6fw.sys
19:08:54.0635 0x0d5c  Ip6Fw - ok
19:08:54.0682 0x0d5c  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  I:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:08:54.0698 0x0d5c  IpFilterDriver - ok
19:08:54.0713 0x0d5c  [ B87AB476DCF76E72010632B5550955F5, E6E74D3A86A7917A8BAED44F8E97CCD2EB171E4E4B27E9907F60D1523FAF319A ] IpInIp          I:\WINDOWS\system32\DRIVERS\ipinip.sys
19:08:54.0729 0x0d5c  IpInIp - ok
19:08:54.0776 0x0d5c  [ CC748EA12C6EFFDE940EE98098BF96BB, AF523E21C25D9A1715EFEA573E4F52AF5D4FC9F28A2D613F5DB629C186C439E0 ] IpNat           I:\WINDOWS\system32\DRIVERS\ipnat.sys
19:08:54.0807 0x0d5c  IpNat - ok
19:08:54.0823 0x0d5c  [ 23C74D75E36E7158768DD63D92789A91, 394D296F38E7D8EFD91A6EEC301D9CE6AF910E35EB9819F1A9E3363863AEDFDC ] IPSec           I:\WINDOWS\system32\DRIVERS\ipsec.sys
19:08:54.0854 0x0d5c  IPSec - ok
19:08:54.0854 0x0d5c  [ C93C9FF7B04D772627A3646D89F7BF89, 805FA48E7A46D4F10240BF880A2468F53DEA36E83004399228AB70DB7D20544A ] IRENUM          I:\WINDOWS\system32\DRIVERS\irenum.sys
19:08:54.0870 0x0d5c  IRENUM - ok
19:08:54.0885 0x0d5c  [ 05A299EC56E52649B1CF2FC52D20F2D7, 2654619DB3E6D6C385B63AB02F87D4241C4F0250CC31383D1B3586917166C2DC ] isapnp          I:\WINDOWS\system32\DRIVERS\isapnp.sys
19:08:54.0917 0x0d5c  isapnp - ok
19:08:54.0979 0x0d5c  [ 463C1EC80CD17420A542B7F36A36F128, E3B11BA26AFEAFB50B0FC168EA07F6049DA6B88BCDDEEE20310602D7FC27A3A7 ] Kbdclass        I:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:08:54.0995 0x0d5c  Kbdclass - ok
19:08:55.0042 0x0d5c  [ 692BCF44383D056AED41B045A323D378, 1A99DEE83FFAF64E73067FC049C0A4CE07D94E4AE31EFA17B38CEFA9E41D67DC ] kmixer          I:\WINDOWS\system32\drivers\kmixer.sys
19:08:55.0073 0x0d5c  kmixer - ok
19:08:55.0120 0x0d5c  [ B467646C54CC746128904E1654C750C1, 3BD71BE3663EA23463D236D8A2A2E42DFA10C502BDB4B6E131FAF0FBA748219E ] KSecDD          I:\WINDOWS\system32\drivers\KSecDD.sys
19:08:55.0135 0x0d5c  KSecDD - ok
19:08:55.0182 0x0d5c  [ D0607058FA4E408B3ED3924F0D9FA2F0, 1A3237DDFBC814900901361CD532CC7130029D5F3173FE6D65567338C66AFDCB ] L1e             I:\WINDOWS\system32\DRIVERS\l1e51x86.sys
19:08:55.0213 0x0d5c  L1e - ok
19:08:55.0276 0x0d5c  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527, 0044F03132596A494448CCE5F3D6ECC12617BB4CF6BAE348F79D4DC40ACD6EE0 ] lanmanserver    I:\WINDOWS\System32\srvsvc.dll
19:08:55.0292 0x0d5c  lanmanserver - ok
19:08:55.0292 0x0b80  Object required for P2P: [ 94C668C7A654EFCAB6689AA45BAF2A4F ] EfiMon
19:08:55.0385 0x0d5c  [ A8888A5327621856C0CEC4E385F69309, B08B63300D824E35E31EEEA2C4C086DFA2C2A964CEDAE512E74D3D88AADAA2C1 ] lanmanworkstation I:\WINDOWS\System32\wkssvc.dll
19:08:55.0417 0x0d5c  lanmanworkstation - ok
19:08:55.0495 0x0d5c  Lavasoft Kernexplorer - ok
19:08:55.0510 0x0d5c  Lbd - ok
19:08:55.0510 0x0d5c  lbrtfdc - ok
19:08:55.0573 0x0d5c  [ A7DB739AE99A796D91580147E919CC59, EDF4E039BA277B0E6D66FEB0B28096E67D682C09DFC18ECECF062D9DCFB75ACF ] LmHosts         I:\WINDOWS\System32\lmhsvc.dll
19:08:55.0588 0x0d5c  LmHosts - ok
19:08:55.0651 0x0d5c  [ 40C7F4B63337414F967AC53E0520B06B, 1E42F17F17B8BF748EFB15112EDA2DBD76761A011673B654020084AEC02089F1 ] MBAMProtector   I:\WINDOWS\system32\drivers\mbam.sys
19:08:55.0667 0x0d5c  MBAMProtector - ok
19:08:56.0057 0x0d5c  [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService     I:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
19:08:56.0213 0x0d5c  MBAMService - ok
19:08:56.0260 0x0d5c  [ 986B1FF5814366D71E0AC5755C88F2D3, E6AF051174531C24B38E73987755D366ABEC595476C6D17793E8DCCC73F55340 ] Messenger       I:\WINDOWS\System32\msgsvc.dll
19:08:56.0260 0x0d5c  Messenger - ok
19:08:56.0307 0x0d5c  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           I:\WINDOWS\system32\drivers\mnmdd.sys
19:08:56.0323 0x0d5c  mnmdd - ok
19:08:56.0385 0x0d5c  [ D18F1F0C101D06A1C1ADF26EED16FCDD, BA0837C7780BD8262E143E2935AFA63BE59C3C39EF56CB8608EED0F50AF070D4 ] mnmsrvc         I:\WINDOWS\system32\mnmsrvc.exe
19:08:56.0417 0x0d5c  mnmsrvc - ok
19:08:56.0432 0x0d5c  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1, B342CC9EC3729AB1AB4B5E2E99F890C1E0CA649162DE91F6768AB857B719E97B ] Modem           I:\WINDOWS\system32\drivers\Modem.sys
19:08:56.0448 0x0d5c  Modem - ok
19:08:56.0635 0x0d5c  [ C7D9F9717916B34C1B00DD4834AF485C, A9512A03E8142C83534189963F90ADA6FA425BD606928C40C3D724177105A658 ] Monfilt         I:\WINDOWS\system32\drivers\Monfilt.sys
19:08:56.0760 0x0d5c  Monfilt - ok
19:08:56.0792 0x0d5c  [ 35C9E97194C8CFB8430125F8DBC34D04, 0C0FCE6B0A23FB0ECB92E1663E1C72D2DD5B177D82E04782957690B69530DB39 ] Mouclass        I:\WINDOWS\system32\DRIVERS\mouclass.sys
19:08:56.0807 0x0d5c  Mouclass - ok
19:08:56.0838 0x0d5c  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD, 2A5E15ED2C24C6C65EF2F7E1FD93374774076C9D8D451E4422561F4D269C012F ] MountMgr        I:\WINDOWS\system32\drivers\MountMgr.sys
19:08:56.0854 0x0d5c  MountMgr - ok
19:08:57.0245 0x0d5c  [ 0DE2474F316C515482ABAD3B697F8714, 62862AE7432F5350068E96AD466093359C6CF444EB517AE6D09134FAF78C49F5 ] MozillaMaintenance I:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
19:08:57.0260 0x0d5c  MozillaMaintenance - ok
19:08:57.0260 0x0d5c  mraid35x - ok
19:08:57.0307 0x0d5c  [ 11D42BB6206F33FBB3BA0288D3EF81BD, 76ABCFB62C5AC549F58C231F72A99882CDEB74928104B77FE52554765C2B1A22 ] MRxDAV          I:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:08:57.0338 0x0d5c  MRxDAV - ok
19:08:57.0510 0x0d5c  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0, DB9B186F7076D7B94F45041AF7B77C1AD2CAB504D683B459C6CB1C22840ED170 ] MRxSmb          I:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:08:57.0542 0x0d5c  MRxSmb - ok
19:08:57.0588 0x0d5c  [ A137F1470499A205ABBB9AAFB3B6F2B1, FB4951727543030D9E6ED74149C3FAACE2CA9DA8C1B5F616301B30B858C724E8 ] MSDTC           I:\WINDOWS\system32\msdtc.exe
19:08:57.0620 0x0d5c  MSDTC - ok
19:08:57.0635 0x0d5c  [ C941EA2454BA8350021D774DAF0F1027, C940E978C7B66A713A0FDAB54B5F995DF59D089AFCD96221DD3222948CD49BBD ] Msfs            I:\WINDOWS\system32\drivers\Msfs.sys
19:08:57.0651 0x0d5c  Msfs - ok
19:08:57.0651 0x0d5c  MSIServer - ok
19:08:57.0682 0x0d5c  [ D1575E71568F4D9E14CA56B7B0453BF1, 4ABE0E24786C0D39FA2B885447E56204CA6942FB175E534DCE675D7BCF0B176A ] MSKSSRV         I:\WINDOWS\system32\drivers\MSKSSRV.sys
19:08:57.0698 0x0d5c  MSKSSRV - ok
19:08:57.0713 0x0d5c  [ 325BB26842FC7CCC1FCCE2C457317F3E, C07BE560513B1FB91D756494F0BA4AEEB2E1998DE0E1C21EE83DB1183B0CEE91 ] MSPCLOCK        I:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:08:57.0729 0x0d5c  MSPCLOCK - ok
19:08:57.0823 0x0d5c  [ BAD59648BA099DA4A17680B39730CB3D, 9AD4C7C94C186C8815D0BC75DCAFB962158DA6935A244BA243EDDDEB33F9816C ] MSPQM           I:\WINDOWS\system32\drivers\MSPQM.sys
19:08:57.0885 0x0b80  Object send P2P result: true
19:08:57.0917 0x0d5c  MSPQM - ok
19:08:58.0057 0x0d5c  [ AF5F4F3F14A8EA2C26DE30F7A1E17136, AC93A1E4ABB0D038B772E429015567E44CC2EDB66C54DBE23A5F98176FAC1520 ] mssmbios        I:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:08:58.0073 0x0d5c  mssmbios - ok
19:08:58.0104 0x0d5c  [ D48659BB24C48345D926ECB45C1EBDF5, EDEDE58316827530C25F8085F62AD48EA6D44B0F8AC1917B940F53B02CF72EA6 ] MTsensor        I:\WINDOWS\system32\DRIVERS\ASACPI.sys
19:08:58.0120 0x0d5c  MTsensor - ok
19:08:58.0182 0x0d5c  [ DE6A75F5C270E756C5508D94B6CF68F5, FCC972DDC36C2C44D836913F10004C2C33B11C54DEFFF0C63E0FDF901D2F9261 ] Mup             I:\WINDOWS\system32\drivers\Mup.sys
19:08:58.0213 0x0d5c  Mup - ok
19:08:58.0292 0x0d5c  [ A4A61D30097C8ADAAD648EBE204D61EF, FC47E97023F58EDF0753CB2460544C0C1B5CE2D67379F8D7B7F579735FE343AC ] mv61xx          I:\WINDOWS\system32\DRIVERS\mv61xx.sys
19:08:58.0307 0x0d5c  mv61xx - ok
19:08:58.0417 0x0d5c  [ 0102140028FAD045756796E1C685D695, 5335B8278418CA200E2772124F0602C3E15A5CAF2D5CC59F6785DFAABF339B09 ] napagent        I:\WINDOWS\System32\qagentrt.dll
19:08:58.0448 0x0d5c  napagent - ok
19:08:58.0479 0x0d5c  [ 1DF7F42665C94B825322FAE71721130D, FE0DCB728471465B39A42A7511F4133021FBA5DF88F88BCB5FE2FF34CFD713F9 ] NDIS            I:\WINDOWS\system32\drivers\NDIS.sys
19:08:58.0510 0x0d5c  NDIS - ok
19:08:58.0573 0x0d5c  [ 0109C4F3850DFBAB279542515386AE22, 4F6DB1E499AC853FD36FD603FBB6D3AC9BDCEB298C7FE1FB59A9236CB46729B2 ] NdisTapi        I:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:08:58.0588 0x0d5c  NdisTapi - ok
19:08:58.0620 0x0d5c  [ F927A4434C5028758A842943EF1A3849, B1AA3AF150C05307461774925901789456B0CCCD03A5E71ADA4AB58455962BEE ] Ndisuio         I:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:08:58.0635 0x0d5c  Ndisuio - ok
19:08:58.0651 0x0d5c  [ EDC1531A49C80614B2CFDA43CA8659AB, 494042F790F33721328B4451E79842E21919681CC421A4F9633EC4D383E06097 ] NdisWan         I:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:08:58.0667 0x0d5c  NdisWan - ok
19:08:58.0698 0x0d5c  [ 2F597BB467E05B1FE3830EABD821B8E0, 141497F5A49D47CCE3C9289644F4BD838DCB238F6D8E847FC006652E21FE02AC ] NDProxy         I:\WINDOWS\system32\drivers\NDProxy.sys
19:08:58.0713 0x0d5c  NDProxy - ok
19:08:58.0729 0x0d5c  [ 5D81CF9A2F1A3A756B66CF684911CDF0, 7989C36607CAEA17AFA2C1C9904145CA0714A54B9F712D9D4C1AB140D0B2CC0C ] NetBIOS         I:\WINDOWS\system32\DRIVERS\netbios.sys
19:08:58.0745 0x0d5c  NetBIOS - ok
19:08:58.0807 0x0d5c  [ 74B2B2F5BEA5E9A3DC021D685551BD3D, 7932B71F98B4122BE88F576BF6D745A757AE378A48924B7F4358837B75640A82 ] NetBT           I:\WINDOWS\system32\DRIVERS\netbt.sys
19:08:58.0838 0x0d5c  NetBT - ok
19:08:58.0885 0x0d5c  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDE          I:\WINDOWS\system32\netdde.exe
19:08:58.0901 0x0d5c  NetDDE - ok
19:08:58.0963 0x0d5c  [ B857BA82860D7FF85AE29B095645563B, 86FF0E4CDD9C394E8BABD93A4D57E73FF9A779261717DEC6E9CDE99F1C6B0F4C ] NetDDEdsdm      I:\WINDOWS\system32\netdde.exe
19:08:58.0979 0x0d5c  NetDDEdsdm - ok
19:08:59.0026 0x0d5c  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] Netlogon        I:\WINDOWS\system32\lsass.exe
19:08:59.0042 0x0d5c  Netlogon - ok
19:08:59.0104 0x0d5c  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE, 4E0A67B3CC897E80D4B342FFE8B7B4CC4F6CA2EF2D34C136027A098B2E1C6166 ] Netman          I:\WINDOWS\System32\netman.dll
19:08:59.0120 0x0d5c  Netman - ok
19:08:59.0167 0x0d5c  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing I:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:08:59.0260 0x0d5c  NetTcpPortSharing - ok
19:08:59.0307 0x0d5c  [ E9E47CFB2D461FA0FC75B7A74C6383EA, 544136F5BFD4DC23D45E90F12FA48B82FD9EAEA9EAF3E0F5F0BD27E23D672C3E ] NIC1394         I:\WINDOWS\system32\DRIVERS\nic1394.sys
19:08:59.0323 0x0d5c  NIC1394 - ok
19:08:59.0432 0x0d5c  [ 943337D786A56729263071623BBB9DE5, B631B47C869FE4ACF46E4AA272435D9A9CA536E3349E3FFBB8602636FEE7AFD4 ] Nla             I:\WINDOWS\System32\mswsock.dll
19:08:59.0448 0x0d5c  Nla - ok
19:08:59.0573 0x0d5c  [ FD306FBCCE7ADB1077B709742E7148E9, B1D4704F27B09F8EBF2DF55EDDC003E6480643CBB1806B0487DF1535BE374CF1 ] NMSAccessU      I:\Program Files\CDBurnerXP\NMSAccessU.exe
19:08:59.0588 0x0d5c  NMSAccessU - ok
19:08:59.0604 0x0d5c  nmwcd - ok
19:08:59.0620 0x0d5c  nmwcdc - ok
19:08:59.0651 0x0d5c  [ 3182D64AE053D6FB034F44B6DEF8034A, 4ADFC76965BA2A5F488E71789A4E4EA702A74AF42725F72130D1CA919406CF19 ] Npfs            I:\WINDOWS\system32\drivers\Npfs.sys
19:08:59.0682 0x0d5c  Npfs - ok
19:09:00.0073 0x0d5c  [ 78A08DD6A8D65E697C18E1DB01C5CDCA, E0E6F3ED05068E32F1D5C2D2B38CDEF4536B8656DB6756C66CF6B40B60C8F3DA ] Ntfs            I:\WINDOWS\system32\drivers\Ntfs.sys
19:09:00.0151 0x0d5c  Ntfs - ok
19:09:00.0167 0x0d5c  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] NtLmSsp         I:\WINDOWS\system32\lsass.exe
19:09:00.0167 0x0d5c  NtLmSsp - ok
19:09:00.0338 0x0d5c  [ 156F64A3345BD23C600655FB4D10BC08, 9611BE411586E068D9297D77102DB3BE48AA67F1BAD6F61A84F83FC3043FA9CD ] NtmsSvc         I:\WINDOWS\system32\ntmssvc.dll
19:09:00.0401 0x0d5c  NtmsSvc - ok
19:09:00.0448 0x0d5c  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            I:\WINDOWS\system32\drivers\Null.sys
19:09:00.0448 0x0d5c  Null - ok
19:09:00.0495 0x0d5c  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        I:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:09:00.0510 0x0d5c  NwlnkFlt - ok
19:09:00.0526 0x0d5c  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        I:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:09:00.0542 0x0d5c  NwlnkFwd - ok
19:09:00.0776 0x0d5c  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          I:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:09:00.0917 0x0d5c  odserv - ok
19:09:01.0026 0x0d5c  [ CA33832DF41AFB202EE7AEB05145922F, 9DD0089C2E13C7F81214C3B5A4A61276292052F9BBFEA7FCD0F6AA27815D5F95 ] ohci1394        I:\WINDOWS\system32\DRIVERS\ohci1394.sys
19:09:01.0042 0x0d5c  ohci1394 - ok
19:09:01.0229 0x0d5c  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             I:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:09:01.0245 0x0d5c  ose - ok
19:09:01.0307 0x0d5c  [ 5575FAF8F97CE5E713D108C2A58D7C7C, 96D4595D19A78CCBE8B325A08780AC077AE5CC99642ACD72FB47AEAE8D344D3B ] Parport         I:\WINDOWS\system32\drivers\Parport.sys
19:09:01.0323 0x0d5c  Parport - ok
19:09:01.0338 0x0d5c  [ BEB3BA25197665D82EC7065B724171C6, 7E71C13BA30CD95CEE8A9CC85E6F48A01F30EDEAADEE69D80AE828BF97E5A5CA ] PartMgr         I:\WINDOWS\system32\drivers\PartMgr.sys
19:09:01.0354 0x0d5c  PartMgr - ok
19:09:01.0385 0x0d5c  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          I:\WINDOWS\system32\drivers\ParVdm.sys
19:09:01.0401 0x0d5c  ParVdm - ok
19:09:01.0417 0x0d5c  PCAMPR5 - ok
19:09:01.0448 0x0d5c  [ 2F9806B52CB3748B1E49222744B28E3C, F48B828BD8D2581FA97E78AF569D6444BFF2E00E915182B4B1E9998F006C5767 ] PCANDIS5        I:\WINDOWS\system32\PCANDIS5.SYS
19:09:01.0463 0x0d5c  PCANDIS5 - ok
19:09:01.0495 0x0d5c  [ FD2041E9BA03DB7764B2248F02475079, DECEED110524BF83B4097188BF24BF0DDE1CE838DF7748B0DC807ABE351EB20A ] pccsmcfd        I:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
19:09:01.0510 0x0d5c  pccsmcfd - ok
19:09:01.0557 0x0d5c  [ A219903CCF74233761D92BEF471A07B1, D4E6C360A1D2FCA4D17C991B834D68BF20F5111DD06B1FAB8B22984804CEC269 ] PCI             I:\WINDOWS\system32\DRIVERS\pci.sys
19:09:01.0573 0x0d5c  PCI - ok
19:09:01.0604 0x0d5c  PCIDump - ok
19:09:01.0635 0x0d5c  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          I:\WINDOWS\system32\DRIVERS\pciide.sys
19:09:01.0651 0x0d5c  PCIIde - ok
19:09:01.0698 0x0d5c  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1, 0BA3DB21DC7C641C181E2635B5C9B73965FDCDCD3EBBBE48FCFEC1C8C987F617 ] Pcmcia          I:\WINDOWS\system32\drivers\Pcmcia.sys
19:09:01.0713 0x0d5c  Pcmcia - ok
19:09:01.0713 0x0d5c  PDCOMP - ok
19:09:01.0713 0x0d5c  PDFRAME - ok
19:09:01.0713 0x0d5c  PDRELI - ok
19:09:01.0713 0x0d5c  PDRFRAME - ok
19:09:01.0729 0x0d5c  perc2 - ok
19:09:01.0729 0x0d5c  perc2hib - ok
19:09:01.0760 0x0d5c  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] PlugPlay        I:\WINDOWS\system32\services.exe
19:09:01.0760 0x0d5c  PlugPlay - ok
19:09:01.0792 0x0d5c  [ 831883B107684301F48ACE752C963984, EAF383C4ACC17DBB060BB8398225222175E028E1E332E2CE0548C97DAED3620E ] PnkBstrA        I:\WINDOWS\system32\PnkBstrA.exe
19:09:01.0807 0x0d5c  PnkBstrA - ok
19:09:01.0838 0x0d5c  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] PolicyAgent     I:\WINDOWS\system32\lsass.exe
19:09:01.0838 0x0d5c  PolicyAgent - ok
19:09:01.0885 0x0d5c  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99, C5F0C8C66A3AF7E7BB04CEDE4AC5306F8387AB384A2107DC5BE413AAE968EFF1 ] PptpMiniport    I:\WINDOWS\system32\DRIVERS\raspptp.sys
19:09:01.0917 0x0d5c  PptpMiniport - ok
19:09:02.0151 0x0d5c  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] ProtectedStorage I:\WINDOWS\system32\lsass.exe
19:09:02.0151 0x0d5c  ProtectedStorage - ok
19:09:02.0182 0x0d5c  [ 09298EC810B07E5D582CB3A3F9255424, 35473A1BE25AC289474090EB0806AC6B3035DC33D1F3DF97A14BF1E361AC6AC3 ] PSched          I:\WINDOWS\system32\DRIVERS\psched.sys
19:09:02.0198 0x0d5c  PSched - ok
19:09:02.0260 0x0d5c  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         I:\WINDOWS\system32\DRIVERS\ptilink.sys
19:09:02.0276 0x0d5c  Ptilink - ok
19:09:02.0432 0x0d5c  [ 183EF96BCC2EC3D5294CB2C2C0ECBCD1, 3AC8A3AD4DD23B57B1CF12CD692003B4C8F76358F26246C565DDADDD88B1D39A ] PxHelp20        I:\WINDOWS\system32\Drivers\PxHelp20.sys
19:09:02.0448 0x0d5c  PxHelp20 - ok
19:09:02.0885 0x0d5c  [ F1BE966B94FC12BFC1264F803743ADC0, F43C4437E119F74772CDC15C8F0DC87393B62F9DC80B4EC8BD0FF5277C02FFD3 ] QHActiveDefense I:\Program Files\360\Total Security\safemon\QHActiveDefense.exe
19:09:03.0120 0x0d5c  QHActiveDefense - ok
19:09:03.0182 0x0d5c  ql1080 - ok
19:09:03.0182 0x0d5c  Ql10wnt - ok
19:09:03.0182 0x0d5c  ql12160 - ok
19:09:03.0182 0x0d5c  ql1240 - ok
19:09:03.0182 0x0d5c  ql1280 - ok
19:09:03.0260 0x0d5c  [ 62EDB74B1AE5A0C28A02FCFE24E20B5F, 12D177A7E3431E101F5157963985B7406AED63A7D084F4916D95BC20ED48B959 ] qutmdserv       I:\WINDOWS\system32\DRIVERS\qutmdrv.sys
19:09:03.0276 0x0d5c  qutmdserv - ok
19:09:03.0307 0x0d5c  [ C94FD2E64D92D1CEC22604D6802CF86C, 75323FDABB997AB079182EE0FF0E1AA0F7D949416B26E24629703E0844E93789 ] qutmipc         I:\WINDOWS\system32\drivers\qutmipc.sys
19:09:03.0323 0x0d5c  qutmipc - ok
19:09:03.0370 0x0d5c  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          I:\WINDOWS\system32\DRIVERS\rasacd.sys
19:09:03.0385 0x0d5c  RasAcd - ok
19:09:03.0417 0x0d5c  [ AD188BE7BDF94E8DF4CA0A55C00A5073, C7D76CB579FAEBCCC2873499441BACDD6BD6668ACF5ED7F31862656E96E2B20C ] RasAuto         I:\WINDOWS\System32\rasauto.dll
19:09:03.0432 0x0d5c  RasAuto - ok
19:09:03.0463 0x0d5c  [ 11B4A627BC9614B885C4969BFA5FF8A6, EAE0A412A2B0F68919C32A96B3A08CC1A06585E4998819F5C9051745F63FF5AD ] Rasl2tp         I:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:09:03.0479 0x0d5c  Rasl2tp - ok
19:09:03.0557 0x0d5c  [ 76A9A3CBEADD68CC57CDA5E1D7448235, 4AFD048C5D2306AB8DE46F3AA60AC0213333DDA3B09A9E91F7585DB6EB978EC8 ] RasMan          I:\WINDOWS\System32\rasmans.dll
19:09:03.0573 0x0d5c  RasMan - ok
19:09:03.0620 0x0d5c  [ 5BC962F2654137C9909C3D4603587DEE, A5CE5653D0105240F5E86CFAAB89E7917D42D939E2F27A5A7D6979289CA651B8 ] RasPppoe        I:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:09:03.0651 0x0d5c  RasPppoe - ok
19:09:03.0682 0x0d5c  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          I:\WINDOWS\system32\DRIVERS\raspti.sys
19:09:03.0698 0x0d5c  Raspti - ok
19:09:03.0838 0x0d5c  [ 7AD224AD1A1437FE28D89CF22B17780A, 6645235CA27D671954E3557FA37082881C3D7D47492C71264CD8CB8D108EC801 ] Rdbss           I:\WINDOWS\system32\DRIVERS\rdbss.sys
19:09:03.0885 0x0d5c  Rdbss - ok
19:09:03.0901 0x0d5c  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          I:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:09:03.0917 0x0d5c  RDPCDD - ok
19:09:04.0010 0x0d5c  [ 43AF5212BD8FB5BA6EED9754358BD8F7, AF330F61CECA4AFA359CEABC5EB3227E6B56A9A2DCE50701381D665122D7356D ] RDPWD           I:\WINDOWS\system32\drivers\RDPWD.sys
19:09:04.0042 0x0d5c  RDPWD - ok
19:09:04.0213 0x0d5c  [ 3C37BF86641BDA977C3BF8A840F3B7FA, AB9A6E54DBA3F4561CD4837372BECCE0D73943D02E3288F944333039375AC08C ] RDSessMgr       I:\WINDOWS\system32\sessmgr.exe
19:09:04.0229 0x0d5c  RDSessMgr - ok
19:09:04.0323 0x0d5c  [ F828DD7E1419B6653894A8F97A0094C5, E6150E1F598BA4CFEDB8FF075BC0D576518C331B864388F1CAE8812EFF106ECF ] redbook         I:\WINDOWS\system32\DRIVERS\redbook.sys
19:09:04.0338 0x0d5c  redbook - ok
19:09:04.0370 0x0d5c  [ 7E699FF5F59B5D9DE5390E3C34C67CF5, 3FCF0442D80AB181FED4303E570378736AA1F8718C0B8B70F689A1E45200FFE4 ] RemoteAccess    I:\WINDOWS\System32\mprdim.dll
19:09:04.0385 0x0d5c  RemoteAccess - ok
19:09:04.0448 0x0d5c  [ AAED593F84AFA419BBAE8572AF87CF6A, CC0FFC5A69394C8830DC66320DA01A820BBF41AD7E57D0FC343561DC5EF9A360 ] RpcLocator      I:\WINDOWS\system32\locator.exe
19:09:04.0463 0x0d5c  RpcLocator - ok
19:09:04.0495 0x0d5c  [ 6B27A5C03DFB94B4245739065431322C, 6AEAC16AB4E0DFD25123AAF4D4181FEE1B919B7B2793117006CE8CF30E826CFD ] RpcSs           I:\WINDOWS\System32\rpcss.dll
19:09:04.0510 0x0d5c  RpcSs - ok
19:09:04.0620 0x0d5c  [ F1ED9FFA59C369E72BC53A7631346F61, 3404CFEC1614201FF9B5053547EFA08FF5EEBC4E67DD0FF37C35CA55292C0862 ] RSUSBSTOR       I:\WINDOWS\system32\Drivers\RtsUStor.sys
19:09:04.0635 0x0d5c  RSUSBSTOR - ok
19:09:04.0698 0x0d5c  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            I:\WINDOWS\system32\rsvp.exe
19:09:04.0713 0x0d5c  RSVP - ok
19:09:04.0760 0x0d5c  [ 083713CFCAC269DF626678159F684DAF, CA1711174F4DC72FD3711C961B910EECF8A7FDE2BB392E112AE5A6697DAB4CF0 ] RTL8187B        I:\WINDOWS\system32\DRIVERS\RTL8187B.sys
19:09:04.0823 0x0d5c  RTL8187B - ok
19:09:04.0854 0x0d5c  [ BF2466B3E18E970D8A976FB95FC1CA85, F7794B5D12DC5D820A162850F4388E2AA80426AD07CB221799CF941C682AB501 ] SamSs           I:\WINDOWS\system32\lsass.exe
19:09:04.0854 0x0d5c  SamSs - ok
19:09:04.0885 0x0d5c  [ 39763504067962108505BFF25F024345, 73C9710B61EDC7FBEDE1D7A767AA3D3A169E7AD012494D05CB5EE7E5C5752BB9 ] SASDIFSV        I:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
19:09:04.0901 0x0d5c  SASDIFSV - ok
19:09:04.0963 0x0d5c  [ 77B9FC20084B48408AD3E87570EB4A85, B5BC5FEC1356DECB66A7A671DB67112BDAC8F942BF1C4B986B1805B41EF362B1 ] SASKUTIL        I:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
19:09:04.0963 0x0d5c  SASKUTIL - ok
19:09:05.0026 0x0d5c  [ 86D007E7A654B9A71D1D7D856B104353, 7B1DE53D637A5FC9619D5D07C48927AFEC89D959207F6F2E2F45DD054EEA04C7 ] SCardSvr        I:\WINDOWS\System32\SCardSvr.exe
19:09:05.0057 0x0d5c  SCardSvr - ok
19:09:05.0104 0x0d5c  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA, 0B582F47BD70732BAC48B8B86E5D06CE7F299A20E8177F3F2E6F28217C3FB605 ] Schedule        I:\WINDOWS\system32\schedsvc.dll
19:09:05.0120 0x0d5c  Schedule - ok
19:09:05.0198 0x0d5c  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          I:\WINDOWS\system32\DRIVERS\secdrv.sys
19:09:05.0213 0x0d5c  Secdrv - ok
19:09:05.0245 0x0d5c  [ CBE612E2BB6A10E3563336191EDA1250, C331797DC3569F0E715766561DE2562F60B924378842246C35D2B1CF867E9D96 ] seclogon        I:\WINDOWS\System32\seclogon.dll
19:09:05.0260 0x0d5c  seclogon - ok
19:09:05.0276 0x0d5c  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0, 7105B026F966A992430F86C3698ABE15EC73E4772F1A3E362E29FD5247A5DCA6 ] SENS            I:\WINDOWS\system32\sens.dll
19:09:05.0276 0x0d5c  SENS - ok
19:09:05.0307 0x0d5c  [ 0F29512CCD6BEAD730039FB4BD2C85CE, 4F98AE390D1B14A755700DD6CEFB9CF921F0404AF2145D2D7E5F52394F87C6A5 ] serenum         I:\WINDOWS\system32\DRIVERS\serenum.sys
19:09:05.0323 0x0d5c  serenum - ok
19:09:05.0354 0x0d5c  [ CCA207A8896D4C6A0C9CE29A4AE411A7, 5999B39242283CD803319AADCA171CCCC6E2A40FB2FAFA51B1D29F3FF2DD8D6C ] Serial          I:\WINDOWS\system32\DRIVERS\serial.sys
19:09:05.0370 0x0d5c  Serial - ok
19:09:05.0463 0x0d5c  [ 2D841B7B7F6DEC32162EDFCC69D61F42, B9E49A15EA78DDCBDF2CC0EFB864BDB19ABCB73F107AEBF6CED0B13726AEB511 ] ServiceLayer    I:\Program Files\PC Connectivity Solution\ServiceLayer.exe
19:09:05.0495 0x0d5c  ServiceLayer - ok
19:09:05.0573 0x0d5c  [ 8E6B8C671615D126FDC553D1E2DE5562, CEEC0067514555D5CA489F50E3D7562FCA8DB8E952C3C878604C9277FC77959F ] Sfloppy         I:\WINDOWS\system32\drivers\Sfloppy.sys
19:09:05.0588 0x0d5c  Sfloppy - ok
19:09:05.0729 0x0d5c  [ A43F36201F68C96DA6CB7B1B0B788C60, 1A07DEC79FB981476D4A11694946DAF86B6D50A1DA2FDE855162041D5DAB38AA ] SharedAccess    I:\WINDOWS\System32\ipnathlp.dll
19:09:05.0760 0x0d5c  SharedAccess - ok
19:09:05.0823 0x0d5c  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] ShellHWDetection I:\WINDOWS\System32\shsvcs.dll
19:09:05.0838 0x0d5c  ShellHWDetection - ok
19:09:05.0838 0x0d5c  Simbad - ok
19:09:05.0979 0x0d5c  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     I:\Program Files\Skype\Updater\Updater.exe
19:09:06.0010 0x0d5c  SkypeUpdate - ok
19:09:06.0042 0x0d5c  Sparrow - ok
19:09:06.0120 0x0d5c  [ DC8D2952FB6FFBAEC67BD1B93A34DF11, 0BD1523A68900B80ED1BCCB967643525CCA55D4FF4622D0128913690E6BB619E ] speedfan        I:\WINDOWS\system32\speedfan.sys
19:09:06.0135 0x0d5c  speedfan - ok
19:09:06.0182 0x0d5c  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F, DD17733CBB370FCA08F0296704D7CBEACA3C8F76D0ABE4761C3B1FFDF7481D9E ] splitter        I:\WINDOWS\system32\drivers\splitter.sys
19:09:06.0229 0x0d5c  splitter - ok
19:09:06.0276 0x0d5c  [ 60784F891563FB1B767F70117FC2428F, E0B07F08E60FFBAD36C2E58180F4B2A16DCA47716044CBE0213DF7B74D742F1F ] Spooler         I:\WINDOWS\system32\spoolsv.exe
19:09:06.0292 0x0d5c  Spooler - ok
19:09:06.0307 0x0d5c  [ 76BB022C2FB6902FD5BDD4F78FC13A5D, 6031CB2344D7277FC703480EB43CF856A0F8F818EA98FF26A2CA532336CD2DFA ] sr              I:\WINDOWS\system32\DRIVERS\sr.sys
19:09:06.0354 0x0d5c  sr - ok
19:09:06.0432 0x0d5c  [ 3805DF0AC4296A34BA4BF93B346CC378, B57A14F1B7B0997E619DDD62B73157AA2399A9852166FB58139CBB358A88F6F3 ] srservice       I:\WINDOWS\system32\srsvc.dll
19:09:06.0448 0x0d5c  srservice - ok
19:09:06.0526 0x0d5c  [ 47DDFC2F003F7F9F0592C6874962A2E7, 17C643BD4EB09B5666FE41817DC785BE04A6E491CE79E8E5A702CDBD98E1BDD7 ] Srv             I:\WINDOWS\system32\DRIVERS\srv.sys
19:09:06.0542 0x0d5c  Srv - ok
19:09:06.0588 0x0d5c  [ 0A5679B3714EDAB99E357057EE88FCA6, 01E1A101FFF48402C77E385A78FEF27876E04533B60EB1C18558A737E57E5FA8 ] SSDPSRV         I:\WINDOWS\System32\ssdpsrv.dll
19:09:06.0604 0x0d5c  SSDPSRV - ok
19:09:06.0667 0x0d5c  [ F92254B0BCFCD10CAAC7BCCC7CB7F467, A44B569F658BED53502C9155947759EE67FABEE306DA2A9ABE87141F99B251A3 ] StarOpen        I:\WINDOWS\system32\drivers\StarOpen.sys
19:09:06.0682 0x0d5c  StarOpen - ok
19:09:06.0760 0x0d5c  [ 8BAD69CBAC032D4BBACFCE0306174C30, 2AA0DA710FCBFF38FE8DA91EE02E7A4503269347E61F8D3246FCA3384BBA2305 ] stisvc          I:\WINDOWS\system32\wiaservc.dll
19:09:06.0807 0x0d5c  stisvc - ok
19:09:06.0838 0x0d5c  [ 3941D127AEF12E93ADDF6FE6EE027E0F, EA1F0E32E1C5E90FA4AAC421DEBBE086512340758D3217A6334E886BCE638B51 ] swenum          I:\WINDOWS\system32\DRIVERS\swenum.sys
19:09:06.0838 0x0d5c  swenum - ok
19:09:06.0870 0x0d5c  [ 8CE882BCC6CF8A62F2B2323D95CB3D01, B408550A581F3DA222355964AFA4E976AD8471F0AA37573C42C4948AE5A23A3B ] swmidi          I:\WINDOWS\system32\drivers\swmidi.sys
19:09:06.0870 0x0d5c  swmidi - ok
19:09:06.0870 0x0d5c  SwPrv - ok
19:09:06.0885 0x0d5c  symc810 - ok
19:09:06.0885 0x0d5c  symc8xx - ok
19:09:06.0885 0x0d5c  sym_hi - ok
19:09:06.0885 0x0d5c  sym_u3 - ok
19:09:06.0917 0x0d5c  [ 8B83F3ED0F1688B4958F77CD6D2BF290, 546D3602183702B4F53E84413CFA2C933D64C8540378E54A8DCD148F3F36A2DA ] sysaudio        I:\WINDOWS\system32\drivers\sysaudio.sys
19:09:06.0932 0x0d5c  sysaudio - ok
19:09:06.0963 0x0d5c  [ C7ABBC59B43274B1109DF6B24D617051, 4384CA0AA6CE9B603CF7DB775A3C721E46715D5B120B94FB57DEADAADE18535B ] SysmonLog       I:\WINDOWS\system32\smlogsvc.exe
19:09:07.0010 0x0d5c  SysmonLog - ok
19:09:07.0104 0x0d5c  SysProtDrv.sys - ok
19:09:07.0167 0x0d5c  [ 3CB78C17BB664637787C9A1C98F79C38, F35C31F6B7F366CB949D1044B357C76DEC9170441C5E559802794F62B72FD255 ] TapiSrv         I:\WINDOWS\System32\tapisrv.dll
19:09:07.0167 0x0d5c  TapiSrv - ok
19:09:07.0229 0x0d5c  [ 9AEFA14BD6B182D61E3119FA5F436D3D, EA29E49434585409272E7901AF89771FE9D6E911A7DC44AB3C7020CFF8A44552 ] Tcpip           I:\WINDOWS\system32\DRIVERS\tcpip.sys
19:09:07.0307 0x0d5c  Tcpip - ok
19:09:07.0338 0x0d5c  [ 6471A66807F5E104E4885F5B67349397, F35CBFFB8BB235CCE30EF94A5273333900DD49FD506BF9D55D99A320B8A53A5A ] TDPIPE          I:\WINDOWS\system32\drivers\TDPIPE.sys
19:09:07.0338 0x0d5c  TDPIPE - ok
19:09:07.0385 0x0d5c  [ C56B6D0402371CF3700EB322EF3AAF61, 7743FA4C734BCE38EFB1CA69BC17364D8421E2CD172F856F7E38E7AE1EE93F2F ] TDTCP           I:\WINDOWS\system32\drivers\TDTCP.sys
19:09:07.0417 0x0d5c  TDTCP - ok
19:09:07.0448 0x0d5c  [ 88155247177638048422893737429D9E, B6D4E8691917946332C2208D01F8C8281978C1AD1E9951C5D99DF0D49AC34B3B ] TermDD          I:\WINDOWS\system32\DRIVERS\termdd.sys
19:09:07.0448 0x0d5c  TermDD - ok
19:09:07.0463 0x0d5c  [ FF3477C03BE7201C294C35F684B3479F, D6246521539BA4ACD022D26983182F5E323D2EF1EA7C54265A248C43A1CE5202 ] TermService     I:\WINDOWS\System32\termsrv.dll
19:09:07.0510 0x0d5c  TermService - ok
19:09:07.0557 0x0d5c  [ 99BC0B50F511924348BE19C7C7313BBF, A1006C687BD352F700B140DC741515A0CDD9E1352C0FBD1EE410D404E344444B ] Themes          I:\WINDOWS\System32\shsvcs.dll
19:09:07.0557 0x0d5c  Themes - ok
19:09:07.0635 0x0d5c  [ 0A03E85A641F2672796D34F506066594, B2AA139CC53F25DB1709844483D404A8FA1D010167BCF164B4A31A029C606F7D ] TomTomHOMEService I:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
19:09:07.0635 0x0d5c  TomTomHOMEService - ok
19:09:07.0651 0x0d5c  TosIde - ok
19:09:07.0667 0x0d5c  [ 55BCA12F7F523D35CA3CB833C725F54E, 849FB1AE31B143B14B298BBC0D91230693D41DEB95F46516878F53A7F4186C38 ] TrkWks          I:\WINDOWS\system32\trkwks.dll
19:09:07.0698 0x0d5c  TrkWks - ok
19:09:07.0729 0x0d5c  [ 5787B80C2E3C5E2F56C2A233D91FA2C9, 3774905CF77954DFCECDA5BCC7CDE3D0ED72712BFAAD85ADAE5246306447E46C ] Udfs            I:\WINDOWS\system32\drivers\Udfs.sys
19:09:07.0745 0x0d5c  Udfs - ok
19:09:07.0745 0x0d5c  ultra - ok
19:09:07.0792 0x0d5c  [ 402DDC88356B1BAC0EE3DD1580C76A31, 32A686595710336A6BFD54C03F552AE39439611662F84EF5D24193AE5665C6F3 ] Update          I:\WINDOWS\system32\DRIVERS\update.sys
19:09:07.0823 0x0d5c  Update - ok
19:09:07.0901 0x0d5c  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91, 7746916DB48E3F5B243B63C066596AD9037A494BF1AD935946DD04AC85D983DF ] upnphost        I:\WINDOWS\System32\upnphost.dll
19:09:07.0932 0x0d5c  upnphost - ok
19:09:07.0932 0x0d5c  upperdev - ok
19:09:07.0963 0x0d5c  [ 05365FB38FCA1E98F7A566AAAF5D1815, 16843048CEEC3DAA3B953A12FF1EE339E86783A08F2A56DA7F94AD9F9717D77D ] UPS             I:\WINDOWS\System32\ups.exe
19:09:07.0963 0x0d5c  UPS - ok
19:09:08.0042 0x0d5c  [ 65898A183FBF1D1F7759D5CCB364DCD4, 85E823123FDB4CA5F8255064E22A444627999055EC3419DFD001371893F36AB9 ] usbaudio        I:\WINDOWS\system32\drivers\usbaudio.sys
19:09:08.0057 0x0d5c  usbaudio - ok
19:09:08.0088 0x0d5c  [ 1B611611C28D2DF25BC057D79C6F13FC, B0D86F63E44B40413BBAE6402CC088046CFAE082D41BBC2ED5A916293356B846 ] usbccgp         I:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:09:08.0104 0x0d5c  usbccgp - ok
19:09:08.0151 0x0d5c  [ 4BAC8DF07F1D8434FC640E677A62204E, 76C1351AF6752224BF59DEEE0F8665FE699F3DFD679F5BCD01C7D9383E6402A4 ] usbehci         I:\WINDOWS\system32\DRIVERS\usbehci.sys
19:09:08.0151 0x0d5c  usbehci - ok
19:09:08.0198 0x0d5c  [ 1AB3CDDE553B6E064D2E754EFE20285C, A99C4528C4227B1E96847614745AAFACD3C5F1BDFE435214DBF78740FFB300FE ] usbhub          I:\WINDOWS\system32\DRIVERS\usbhub.sys
19:09:08.0213 0x0d5c  usbhub - ok
19:09:08.0245 0x0d5c  [ A717C8721046828520C9EDF31288FC00, 1530BBE832EDBB0974AD89D723A03FF7A0094B368992D73C2C3E62A181DF1E0A ] usbprint        I:\WINDOWS\system32\DRIVERS\usbprint.sys
19:09:08.0245 0x0d5c  usbprint - ok
19:09:08.0432 0x0d5c  [ F8EDE2B6928970DCE3D5614C27D9E7F6, 6E5EBBC8B70C1D593634DAF0C190DEADFDA18C3CBC8F552A76F156F3869EF05B ] usbscan         I:\WINDOWS\system32\DRIVERS\usbscan.sys
19:09:08.0479 0x0d5c  usbscan - ok
19:09:08.0479 0x0d5c  UsbserFilt - ok
19:09:08.0526 0x0d5c  [ A32426D9B14A089EAA1D922E0C5801A9, ED1DC52EE45F8EAD3AEC4B1F817BB25634141CF48295494C5947DCE6CF7A9817 ] usbstor         I:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:09:08.0542 0x0d5c  usbstor - ok
19:09:08.0542 0x0d5c  [ 26496F9DEE2D787FC3E61AD54821FFE6, 8BE7FF647470B9A951CBB478FAF83D657A15CC78037F42348A6B738F21D523DA ] usbuhci         I:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:09:08.0557 0x0d5c  usbuhci - ok
19:09:08.0573 0x0d5c  [ 0D3A8FAFCEACD8B7625CD549757A7DF1, B9CFDEFCD66AA139F3DC2F967B184669532922563AD5A71769BABDC4370D065E ] VgaSave         I:\WINDOWS\System32\drivers\vga.sys
19:09:08.0588 0x0d5c  VgaSave - ok
19:09:08.0588 0x0d5c  ViaIde - ok
19:09:08.0635 0x0d5c  [ 4C8FCB5CC53AAB716D810740FE59D025, 010EAC43DBED700B73E4FC908FAAF9F6A0168EBBD5D86751E49BC33AAA18BFA4 ] VolSnap         I:\WINDOWS\system32\drivers\VolSnap.sys
19:09:08.0667 0x0d5c  VolSnap - ok
19:09:08.0870 0x0d5c  [ 7A9DB3A67C333BF0BD42E42B8596854B, D31A9A3B1AAAB373EDD73B674102395212FCB616F829E938B7B2B7BE7D4752C5 ] VSS             I:\WINDOWS\System32\vssvc.exe
19:09:08.0932 0x0d5c  VSS - ok
19:09:09.0010 0x0d5c  [ 54AF4B1D5459500EF0937F6D33B1914F, FA1876888BCB9C72A92369DBED4FF1A8666784523FB41E618FA0919490FCDDB9 ] W32Time         I:\WINDOWS\system32\w32time.dll
19:09:09.0042 0x0d5c  W32Time - ok
19:09:09.0073 0x0d5c  [ E20B95BAEDB550F32DD489265C1DA1F6, 5589B2067E6C9FBA290D8C5EADDC198EBAF39C50C3CD7D2BC5CDA7CBFBC445E5 ] Wanarp          I:\WINDOWS\system32\DRIVERS\wanarp.sys
19:09:09.0088 0x0d5c  Wanarp - ok
19:09:09.0213 0x0d5c  [ D918617B46457B9AC28027722E30F647, 407284D3055DC11944D4EE7E4357E7CF9CAF8CA40CA50633AB6FD4A82CB7EEA6 ] Wdf01000        I:\WINDOWS\system32\Drivers\wdf01000.sys
19:09:09.0276 0x0d5c  Wdf01000 - ok
19:09:09.0276 0x0d5c  WDICA - ok
19:09:09.0338 0x0d5c  [ 6768ACF64B18196494413695F0C3A00F, 3A8F8586F1D997D19A8478345338D2AECD785AEABDB61531DD3F92003D3230A5 ] wdmaud          I:\WINDOWS\system32\drivers\wdmaud.sys
19:09:09.0354 0x0d5c  wdmaud - ok
19:09:09.0385 0x0d5c  [ 77A354E28153AD2D5E120A5A8687BC06, 8B2D37A4443501C0A8E70BC2079BE27F0A36FD07B561E6F68B40A72EABBC2DFE ] WebClient       I:\WINDOWS\System32\webclnt.dll
19:09:09.0385 0x0d5c  WebClient - ok
19:09:09.0463 0x0d5c  [ F45DD1E1365D857DD08BC23563370D0E, D95AEBB2095579D716C62152C8B805E119812FD2E40F14F9A5BA2EFDE133303B ] WinDefend       I:\Program Files\Windows Defender\MsMpEng.exe
19:09:09.0463 0x0d5c  WinDefend - ok
19:09:09.0698 0x0d5c  [ 2D0E4ED081963804CCC196A0929275B5, E1D75C7D7233D81DFDE13160B0C80138DF8B35230D04FB79B367A52FACF69BF8 ] winmgmt         I:\WINDOWS\system32\wbem\WMIsvc.dll
19:09:09.0713 0x0d5c  winmgmt - ok
19:09:09.0838 0x0d5c  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        I:\WINDOWS\system32\MsPMSNSv.dll
19:09:09.0854 0x0d5c  WmdmPmSN - ok
19:09:09.0979 0x0d5c  [ E0673F1106E62A68D2257E376079F821, 12992F18C9653050B10DC61D12988067933FCFDF02123D3A7EF5DE607A785DDC ] WmiApSrv        I:\WINDOWS\system32\wbem\wmiapsrv.exe
19:09:10.0010 0x0d5c  WmiApSrv - ok
19:09:10.0276 0x0d5c  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B, C71FAAC752F6D58BF8556661252DBF8C5DDD090CAE002A2C7E09C9A014526066 ] WMPNetworkSvc   I:\Program Files\Windows Media Player\WMPNetwk.exe
19:09:10.0385 0x0d5c  WMPNetworkSvc - ok
19:09:10.0432 0x0d5c  [ CF4DEF1BF66F06964DC0D91844239104, CC1D9CECE2056D29A9651D51BB57C3F4F9BF9E90A4808CF7496C683C874FBD51 ] WpdUsb          I:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:09:10.0479 0x0d5c  WpdUsb - ok
19:09:11.0088 0x0d5c  [ 15673BD0B86150CB8E27766059C72A9B, 56C23289A8BFF4945EE532CF6D62D3EC81B827CA15A359F30A327789F9FE9CAF ] WPFFontCache_v0400 I:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
19:09:11.0448 0x0d5c  WPFFontCache_v0400 - ok
19:09:11.0479 0x0d5c  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         I:\WINDOWS\System32\drivers\ws2ifsl.sys
19:09:11.0495 0x0d5c  WS2IFSL - ok
19:09:11.0542 0x0d5c  [ 7C278E6408D1DCE642230C0585A854D5, DA46079A04F6E8E3441E4AE454AEAC02B3E935DE29CE7F6D4476F57867FCC12A ] wscsvc          I:\WINDOWS\system32\wscsvc.dll
19:09:11.0573 0x0d5c  wscsvc - ok
19:09:11.0604 0x0d5c  [ 35321FB577CDC98CE3EB3A3EB9E4610A, C9A6F5CF282D8FCB3CDFCC4B306013480E78E1B664E1A60A4E27B161F9FFD4CD ] wuauserv        I:\WINDOWS\system32\wuauserv.dll
19:09:11.0635 0x0d5c  wuauserv - ok
19:09:11.0667 0x0d5c  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          I:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:09:11.0682 0x0d5c  WudfPf - ok
19:09:11.0698 0x0d5c  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          I:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:09:11.0713 0x0d5c  WudfRd - ok
19:09:11.0745 0x0d5c  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         I:\WINDOWS\System32\WUDFSvc.dll
19:09:11.0760 0x0d5c  WudfSvc - ok
19:09:12.0088 0x0d5c  [ 81DC3F549F44B1C1FFF022DEC9ECF30B, 3D14BFEA539F9CEB16555BD56C5E3C7C8F6692FC62C2789F8AAEA1C042E63940 ] WZCSVC          I:\WINDOWS\System32\wzcsvc.dll
19:09:12.0151 0x0d5c  WZCSVC - ok
19:09:12.0198 0x0d5c  [ 295D21F14C335B53CB8154E5B1F892B9, 9418477C2E3EA93E93D931A4EDD4500DA568FAD6040204B5201D1080203B0BBC ] xmlprov         I:\WINDOWS\System32\xmlprov.dll
19:09:12.0292 0x0d5c  xmlprov - ok
19:09:12.0292 0x0d5c  ================ Scan global ===============================
19:09:12.0370 0x0d5c  [ 42F1F4C0AFB08410E5F02D4B13EBB623, 924C30587C51C0D1E1F47991969AF492A644552E15F2480EA991DCB74A3E68D5 ] I:\WINDOWS\system32\basesrv.dll
19:09:12.0682 0x0d5c  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] I:\WINDOWS\system32\winsrv.dll
19:09:12.0745 0x0d5c  [ 69AE2B2E6968C316536E5B10B9702E63, D9C5DA7A20DDE69D91E72400C3F06F3CB099DEF42EA6C53FCE076258A0C22391 ] I:\WINDOWS\system32\winsrv.dll
19:09:12.0776 0x0d5c  [ 65DF52F5B8B6E9BBD183505225C37315, 59C606977DB40A3443DFF0BE2A4C761824881B22C9FDB3D23F6486DB580E92A4 ] I:\WINDOWS\system32\services.exe
19:09:12.0776 0x0d5c  [ Global ] - ok
19:09:12.0776 0x0d5c  ================ Scan MBR ==================================
19:09:12.0792 0x0d5c  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
19:09:17.0104 0x0d5c  \Device\Harddisk0\DR0 - ok
19:09:17.0120 0x0d5c  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR2
19:09:17.0120 0x0d5c  \Device\Harddisk1\DR2 - ok
19:09:17.0120 0x0d5c  ================ Scan VBR ==================================
19:09:17.0307 0x0d5c  [ A0A3E951D465FF38D5320FF2176FBF98 ] \Device\Harddisk0\DR0\Partition1
19:09:17.0370 0x0ea0  Object required for P2P: [ 62EDB74B1AE5A0C28A02FCFE24E20B5F ] qutmdserv
19:09:17.0557 0x0d5c  \Device\Harddisk0\DR0\Partition1 - ok
19:09:17.0557 0x0d5c  [ 0D323FE47B1627CB81E0B4256303CA19 ] \Device\Harddisk1\DR2\Partition1
19:09:17.0620 0x0d5c  \Device\Harddisk1\DR2\Partition1 - ok
19:09:17.0620 0x0d5c  ================ Scan generic autorun ======================
19:09:17.0635 0x0d5c  KernelFaultCheck - ok
19:09:18.0495 0x0d5c  [ 311E0138D7EE01FC7CC7FB1DC436CAEB, 688920577A4E52C6270A5698686E010E22011ABDD4DDE5732FD24D0E55B530A2 ] I:\Program Files\360\Total Security\safemon\QHSafeTray.exe
19:09:18.0651 0x0d5c  QHSafeTray - ok
19:09:18.0698 0x0d5c  [ 5F1D5F88303D4A4DBC8E5F97BA967CC3, 5FB24FC7916A6E6B3BE7D84CB1684215B266CD1495575C2E5672B8447932E5B1 ] I:\WINDOWS\system32\CTFMON.EXE
19:09:18.0714 0x0d5c  CTFMON.EXE - ok
19:09:18.0745 0x0d5c  [ 5F1D5F88303D4A4DBC8E5F97BA967CC3, 5FB24FC7916A6E6B3BE7D84CB1684215B266CD1495575C2E5672B8447932E5B1 ] I:\WINDOWS\system32\ctfmon.exe
19:09:18.0745 0x0d5c  ctfmon.exe - ok
19:09:18.0745 0x0d5c  4160684988 - ok
19:09:18.0760 0x0d5c  [ 5F1D5F88303D4A4DBC8E5F97BA967CC3, 5FB24FC7916A6E6B3BE7D84CB1684215B266CD1495575C2E5672B8447932E5B1 ] I:\WINDOWS\system32\CTFMON.EXE
19:09:18.0760 0x0d5c  CTFMON.EXE - ok
19:09:19.0167 0x0d5c  [ FF8E3E68F2FCC5F515EC1F3D0A546903, 255DF40F027B3B9A9E25090F268047B33CEAF5514832E6FEA36DB4A398A97FE5 ] I:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe
19:09:19.0182 0x0d5c  DWQueuedReporting - ok
19:09:19.0214 0x0d5c  [ 20EE93BBAFD755E7889A1B27CAC6B8D3, 53AEA217FDA82348822578113CE678DCA76F34FA49408E2B5B72464EB8642175 ] I:\WINDOWS\system32\tscupgrd.exe
19:09:19.0229 0x0d5c  tscuninstall - ok
19:09:19.0245 0x0d5c  Waiting for KSN requests completion. In queue: 93
19:09:19.0979 0x0ea0  Object send P2P result: true
19:09:20.0245 0x0d5c  Waiting for KSN requests completion. In queue: 6
19:09:21.0245 0x0d5c  Waiting for KSN requests completion. In queue: 6
19:09:23.0042 0x0d5c  AV detected via SS1: 360 Total Security, 8,0,0,1002, enabled, updated
19:09:23.0042 0x0d5c  AV detected via SS1: avast! Antivirus, 5.0.184617157, enabled, updated
19:09:23.0042 0x0d5c  Win FW state via NFM: enabled
19:09:25.0510 0x0d5c  ============================================================
19:09:25.0526 0x0d5c  Scan finished
19:09:25.0526 0x0d5c  ============================================================
19:09:25.0526 0x0a08  Detected object count: 0
19:09:25.0526 0x0a08  Actual detected object count: 0
19:13:30.0059 0x09c0  Deinitialize success
 

 

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 15/12/2015
Scan Time: 19:33:36
Logfile: Mbam.txt
Administrator: Yes

Version: 2.2.0.1024
Malware Database: v2015.12.15.05
Rootkit Database: v2015.12.07.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: Simon Hill

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 344649
Time Elapsed: 16 min, 44 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

 


Edited by Slime58, 15 December 2015 - 03:56 PM.


#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:36 PM

Posted 15 December 2015 - 04:24 PM

Looks like a lot of files are corrupt.

Back up any important files.

Tweaking.com - Windows Repair All-In-One (Portable)

- Download Windows Repair All-In-One (Portable Version) from here.

- Extract tweaking.com_windows_repair_aio.zip to your Desktop.

- Disable all your antivirus and antimalware software - see how to do that here.
- Right click on QfBzvq1.png and select Run as Administrator (XP users just double click) to start Windows Repair All-In-One.
(Windows Vista/7/8 users: Accept UAC warning if it is enabled.)

- A window will appear. Click Step 2.
2f8o60N.png

- Click the Open Pre-Scan button, then click Start Scan. Wait for Windows Repair to finish scanning.

- Depending on which error Windows Repair found, click Repair Reparse Point or Repair Environment Variable accordingly. When the button changes to "Done!", click the close button to return to Windows Repair.

- Go to Step 3, then click Check in the See If Check Disk Is Needed.

- If Windows Repair stated that errors are found, click Open Check Disk At Next Boot. Choose (/R) Fixes errors on the disk also locate bad sectors and recovers readable information, then click Add To Next Boot. Reboot the computer to let Windows check the disk.
Ymy7crZ.png

- Go to Step 4, then click Do It.
zDtdN75.png

- Go to Step 5. Under System Restore click Create.
f7lEe1N.png

- Go to Repairs and click Open Repairs. Leave all checkmarks as they are, then click Start Repairs.
PGv2vtD.png

- By default Windows Repair All-In-One will create a "Logs" folder in its folder on the Desktop. Please post the contents of the log in your next reply.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 Slime58

Slime58
  • Topic Starter

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:36 PM

Posted 16 December 2015 - 12:10 PM

Okay, that's done ...................................... but not without issues!

In my Windows Security Centre it said that I had Avast! Antivirus Security running, although I don't have Avast! on my system, so I couldn't switch monitoring to off.

I was also unable to download Tweaking.com - Windows Repair All-In-One (Portable) from this machine so I used a laptop and

put the prog on a flashdrive to download it onto this machine's desktop.

At one point, in Step 4, I was asked to insert my Windows XP disc, which I did, but was told it was the wrong CD .......................... it isn't!

The PC then locked up, forcing me to reboot it.

Apart from that everything went swimmingly!

Here are the two logs I found in the Tweaking.com - Windows Repair All-In-One folder.

 

Microsoft Windows XP [Version 5.1.2600]
© Copyright 1985-2001 Microsoft Corp.

I:\Documents and Settings\Simon Hill\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair>CD /D I:\

I:\>set path=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SystemRoot%\System32\WindowsPowerShell\v1.0

I:\>chkdsk I:
The type of the file system is NTFS.

WARNING!  F parameter not specified.
Running CHKDSK in read-only mode.

CHKDSK is verifying files (stage 1 of 3)...
100 percent completed.               
File verification completed.
CHKDSK is verifying indexes (stage 2 of 3)...
100 percent completed.               
Index verification completed.
CHKDSK is recovering lost files.
CHKDSK is verifying security descriptors (stage 3 of 3)...
100 percent completed.               
Security descriptor verification completed.
CHKDSK is verifying Usn Journal...
Usn Journal verification completed.
Correcting errors in the master file table's (MFT) BITMAP attribute.
Correcting errors in the Volume Bitmap.
Windows found problems with the file system.
Run CHKDSK with the /F (fix) option to correct these.

 488375968 KB total disk space.
  68713772 KB in 101675 files.
     50084 KB in 10733 indexes.
         0 KB in bad sectors.
295212 KB in use by the system.
     65536 KB occupied by the log file.
 419316900 KB available on disk.

      4096 bytes in each allocation unit.
 122093992 total allocation units on disk.
104829225 allocation units available on disk.

I:\>

 

 

and

 

 

Microsoft Windows XP [Version 5.1.2600]
© Copyright 1985-2001 Microsoft Corp.

I:\Documents and Settings\Simon Hill\Desktop\tweaking.com_windows_repair_aio\Tweaking.com - Windows Repair>CD /D I:\

I:\>set path=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SystemRoot%\System32\WindowsPowerShell\v1.0

I:\>chkdsk I:
The type of the file system is NTFS.

WARNING!  F parameter not specified.
Running CHKDSK in read-only mode.

CHKDSK is verifying files (stage 1 of 3)...
0 percent completed.               
1 percent completed.               
2 percent completed.               
3 percent completed.               
4 percent completed.               
5 percent completed.               
6 percent completed.               
7 percent completed.               
8 percent completed.               
9 percent completed.               
10 percent completed.               
11 percent completed.               
12 percent completed.               
13 percent completed.               
14 percent completed.               
15 percent completed.               
16 percent completed.               
17 percent completed.               
18 percent completed.               
19 percent completed.               
20 percent completed.               
21 percent completed.               
22 percent completed.               
23 percent completed.               
24 percent completed.               
25 percent completed.               
26 percent completed.               
27 percent completed.               
28 percent completed.               
29 percent completed.               
30 percent completed.               
31 percent completed.               
32 percent completed.               
33 percent completed.               
34 percent completed.               
35 percent completed.               
36 percent completed.               
37 percent completed.               
38 percent completed.               
39 percent completed.               
40 percent completed.               
41 percent completed.               
42 percent completed.               
43 percent completed.               
44 percent completed.               
45 percent completed.               
46 percent completed.               
47 percent completed.               
48 percent completed.               
49 percent completed.               
50 percent completed.               
51 percent completed.               
52 percent completed.               
53 percent completed.               
54 percent completed.               
55 percent completed.               
56 percent completed.               
57 percent completed.               
58 percent completed.               
59 percent completed.               
60 percent completed.               
61 percent completed.               
62 percent completed.               
63 percent completed.               
64 percent completed.               
65 percent completed.               
66 percent completed.               
67 percent completed.               
68 percent completed.               
69 percent completed.               
70 percent completed.               
71 percent completed.               
72 percent completed.               
73 percent completed.               
74 percent completed.               
75 percent completed.               
76 percent completed.               
77 percent completed.               
78 percent completed.               
79 percent completed.               
80 percent completed.               
81 percent completed.               
82 percent completed.               
83 percent completed.               
84 percent completed.               
85 percent completed.               
86 percent completed.               
87 percent completed.               
88 percent completed.               
89 percent completed.               
90 percent completed.               
91 percent completed.               
92 percent completed.               
93 percent completed.               
94 percent completed.               
95 percent completed.               
96 percent completed.               
97 percent completed.               
98 percent completed.               
99 percent completed.               
100 percent completed.               
File verification completed.
CHKDSK is verifying indexes (stage 2 of 3)...
0 percent completed.               
1 percent completed.               
2 percent completed.               
3 percent completed.               
4 percent completed.               
5 percent completed.               
6 percent completed.               
7 percent completed.               
8 percent completed.               
9 percent completed.               
10 percent completed.               
11 percent completed.               
12 percent completed.               
13 percent completed.               
14 percent completed.               
15 percent completed.               
16 percent completed.               
17 percent completed.               
18 percent completed.               
19 percent completed.               
20 percent completed.               
21 percent completed.               
22 percent completed.               
23 percent completed.               
24 percent completed.               
25 percent completed.               
26 percent completed.               
27 percent completed.               
28 percent completed.               
29 percent completed.               
30 percent completed.               
31 percent completed.               
32 percent completed.               
33 percent completed.               
34 percent completed.               
35 percent completed.               
36 percent completed.               
37 percent completed.               
38 percent completed.               
39 percent completed.               
40 percent completed.               
41 percent completed.               
42 percent completed.               
43 percent completed.               
44 percent completed.               
45 percent completed.               
46 percent completed.               
47 percent completed.               
48 percent completed.               
49 percent completed.               
50 percent completed.               
51 percent completed.               
52 percent completed.               
53 percent completed.               
54 percent completed.               
55 percent completed.               
56 percent completed.               
57 percent completed.               
58 percent completed.               
59 percent completed.               
60 percent completed.               
61 percent completed.               
62 percent completed.               
63 percent completed.               
64 percent completed.               
65 percent completed.               
66 percent completed.               
67 percent completed.               
68 percent completed.               
69 percent completed.               
70 percent completed.               
71 percent completed.               
72 percent completed.               
73 percent completed.               
74 percent completed.               
75 percent completed.               
76 percent completed.               
77 percent completed.               
78 percent completed.               
79 percent completed.               
80 percent completed.               
81 percent completed.               
82 percent completed.               
83 percent completed.               
84 percent completed.               
85 percent completed.               
86 percent completed.               
87 percent completed.               
88 percent completed.               
89 percent completed.               
90 percent completed.               
91 percent completed.               
92 percent completed.               
93 percent completed.               
94 percent completed.               
95 percent completed.               
96 percent completed.               
97 percent completed.               
98 percent completed.               
99 percent completed.               
100 percent completed.               
Index verification completed.
CHKDSK is recovering lost files.
CHKDSK is verifying security descriptors (stage 3 of 3)...
0 percent completed.               
1 percent completed.               
2 percent completed.               
3 percent completed.               
4 percent completed.               
5 percent completed.               
6 percent completed.               
7 percent completed.               
8 percent completed.               
9 percent completed.               
10 percent completed.               
11 percent completed.               
12 percent completed.               
13 percent completed.               
14 percent completed.               
15 percent completed.               
16 percent completed.               
17 percent completed.               
18 percent completed.               
19 percent completed.               
20 percent completed.               
21 percent completed.               
22 percent completed.               
23 percent completed.               
24 percent completed.               
25 percent completed.               
26 percent completed.               
27 percent completed.               
28 percent completed.               
29 percent completed.               
30 percent completed.               
31 percent completed.               
32 percent completed.               
33 percent completed.               
34 percent completed.               
35 percent completed.               
36 percent completed.               
37 percent completed.               
38 percent completed.               
39 percent completed.               
40 percent completed.               
41 percent completed.               
42 percent completed.               
43 percent completed.               
44 percent completed.               
45 percent completed.               
46 percent completed.               
47 percent completed.               
48 percent completed.               
49 percent completed.               
50 percent completed.               
51 percent completed.               
52 percent completed.               
53 percent completed.               
54 percent completed.               
55 percent completed.               
56 percent completed.               
57 percent completed.               
58 percent completed.               
59 percent completed.               
60 percent completed.               
61 percent completed.               
62 percent completed.               
63 percent completed.               
64 percent completed.               
65 percent completed.               
66 percent completed.               
67 percent completed.               
68 percent completed.               
69 percent completed.               
70 percent completed.               
71 percent completed.               
72 percent completed.               
73 percent completed.               
74 percent completed.               
75 percent completed.               
76 percent completed.               
77 percent completed.               
78 percent completed.               
79 percent completed.               
80 percent completed.               
81 percent completed.               
82 percent completed.               
83 percent completed.               
84 percent completed.               
85 percent completed.               
86 percent completed.               
87 percent completed.               
88 percent completed.               
89 percent completed.               
90 percent completed.               
91 percent completed.               
92 percent completed.               
93 percent completed.               
94 percent completed.               
95 percent completed.               
96 percent completed.               
97 percent completed.               
98 percent completed.               
99 percent completed.               
100 percent completed.               
Security descriptor verification completed.
CHKDSK is verifying Usn Journal...
Usn Journal verification completed.
Correcting errors in the master file table's (MFT) BITMAP attribute.
Correcting errors in the Volume Bitmap.
Windows found problems with the file system.
Run CHKDSK with the /F (fix) option to correct these.

 488375968 KB total disk space.
  68713772 KB in 101675 files.
     50084 KB in 10733 indexes.
         0 KB in bad sectors.
    295212 KB in use by the system.
     65536 KB occupied by the log file.
 419316900 KB available on disk.

      4096 bytes in each allocation unit.
 122093992 total allocation units on disk.
 104829225 allocation units available on disk.

I:\>

 

 

Thanks again boopme

 

Slime58



#7 Slime58

Slime58
  • Topic Starter

  • Members
  • 108 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:36 PM

Posted 16 December 2015 - 12:33 PM

Just a quick update, maybe relevant, maybe not.

I can't print PDF files or emails unless I copy & paste them into notepad or a word document.

This has only been the case for a couple of days.

Thanks again,

 

Slime58



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:36 PM

Posted 17 December 2015 - 01:47 PM

Hi ,sorry was unable to be on yesterday.

I think we should get a deeper look in here. Find that Avast issue and anything ls hidden.
We will start a new topic. Use same title.
Do steps 6,7 and 8...
Please follow this Preparation Guide and post in a new topic.

Include this link back to here...

http://www.bleepingcomputer.com/forums/t/598799/i-seem-to-have-multiple-problems-im-struggling-now/#entry3887519

Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users