Jump to content

Can't connect to internet after scan and cleanup (log incl.)


Recommended Posts

Hello there,

 

I ran a scan and cleanup a while ago but ever since I have not been able to connect to internet. There are some other problems too, such as my restore function has disappeared, I can't get into the regedit, and I can't view hidden files. I think the problem is due to missing or damaged registry files. Please see the attached longs, and thanks in advance for your help.

FRST.txt

Addition.txt

Link to post
Share on other sites

Hi there,
my name is Marius and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

 
 
 
Scan with aswMBR

Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • There will be a short delay before the next dialog box comes up. Please just wait a minute or two.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Typically this is about a 100MB download so depending on your connection speed it can take a short while to download and become ready.
  • Click the Scan button to start the scan once the update has finished downloading
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.


Note: There will also be a file on your desktop named MBR.dat do not delete this for now. It is an actual backup of the MBR (master boot record).

Link to post
Share on other sites

Hello Marius,

 

I ran the scan, please see the log below:

 

 

 

aswMBR version 1.0.1.2041 Copyright© 2014 AVAST Software
Run date: 2014-07-09 20:15:57
-----------------------------
20:15:57.796    OS Version: Windows 5.1.2600 Service Pack 2
20:15:57.796    Number of processors: 1 586 0x905
20:15:57.796    ComputerName: MATTHEW  UserName: Mehrdad
20:16:03.812    Initialize success
20:16:04.203    VM: initialized successfully
20:16:04.312    VM: Intel CPU virtualization not supported
20:17:04.156    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdePort0
20:17:04.187    Disk 0 Vendor: IC25N060ATMR04-0 MO3OAD4A Size: 57231MB BusType: 3
20:17:04.187    Device \Device\Ide\IdeDeviceP0T0L0-3 -> \??\IDE#DiskIC25N060ATMR04-0________________________MO3OAD4A#5&1717fb6e&0&0.0.0#{53f56307-b6bf-11d0-94f2-00a0c91efb8b} not found
20:17:04.234    Device \Driver\atapi -> DriverStartIo 81e42aea
20:17:04.953    Disk 0 MBR read successfully
20:17:04.968    Disk 0 MBR scan
20:17:04.968    Disk 0 unknown MBR code
20:17:05.015    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS        57231 MB offset 63
20:17:05.078    Disk 0 default boot code
20:17:05.203    Disk 0 scanning sectors +117210240
20:17:06.234    Disk 0 scanning C:\WINDOWS\system32\drivers
20:17:46.609    File: C:\WINDOWS\system32\drivers\compbatt.sys TDL3 **ROOTKIT**
20:17:59.984    Scan finished successfully
20:18:43.468    Disk 0 MBR has been saved successfully to "D:\MBR.dat"
20:18:53.687    The log file has been saved successfully to "D:\aswMBR.txt"

 

Thanks

Link to post
Share on other sites

Fix with TDSS-Killer

Please read and follow these instructions carefully.

Download TDSSKiller.exe and save it to your desktop

  • Execute TDSSKiller.exe by doubleclicking on it.
  • Press Start Scan
  • When the scan is finished, select copy to quarantine for the following entry.

    Rootkit.Win32.TDSS.tdl3
    (or similar)
  • Hit continue.
  • Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt



Please post the contents of that log in your next reply.

Link to post
Share on other sites

Hello, I was able to run the scan, please see the log below:

 

 

19:38:38.0218 0x0d20  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
19:38:56.0375 0x0d20  ============================================================
19:38:56.0375 0x0d20  Current date / time: 2014/07/14 19:38:56.0375
19:38:56.0375 0x0d20  SystemInfo:
19:38:56.0390 0x0d20 
19:38:56.0390 0x0d20  OS Version: 5.1.2600 ServicePack: 2.0
19:38:56.0390 0x0d20  Product type: Workstation
19:38:56.0390 0x0d20  ComputerName: MATTHEW
19:38:56.0390 0x0d20  UserName: Mehrdad
19:38:56.0390 0x0d20  Windows directory: C:\WINDOWS
19:38:56.0390 0x0d20  System windows directory: C:\WINDOWS
19:38:56.0390 0x0d20  Processor architecture: Intel x86
19:38:56.0390 0x0d20  Number of processors: 1
19:38:56.0390 0x0d20  Page size: 0x1000
19:38:56.0390 0x0d20  Boot type: Normal boot
19:38:56.0390 0x0d20  ============================================================
19:39:01.0375 0x0d20  KLMD registered as C:\WINDOWS\system32\drivers\93914661.sys
19:39:02.0468 0x0d20  System UUID: {DFEC0772-738B-F7C5-8711-D930F819E858}
19:39:03.0531 0x0d20  Drive \Device\Harddisk0\DR0 - Size: 0xDF8F90000 ( 55.89 Gb ), SectorSize: 0x200, Cylinders: 0x1C80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000044
19:39:03.0562 0x0d20  Drive \Device\Harddisk1\DR6 - Size: 0x3EF40000 ( 0.98 Gb ), SectorSize: 0x200, Cylinders: 0x80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:39:03.0562 0x0d20  ============================================================
19:39:03.0562 0x0d20  \Device\Harddisk0\DR0:
19:39:03.0578 0x0d20  MBR partitions:
19:39:03.0578 0x0d20  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x6FC7C41
19:39:03.0578 0x0d20  \Device\Harddisk1\DR6:
19:39:03.0578 0x0d20  MBR partitions:
19:39:03.0578 0x0d20  \Device\Harddisk1\DR6\Partition1: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x1F79E0
19:39:03.0578 0x0d20  ============================================================
19:39:03.0656 0x0d20  C: <-> \Device\Harddisk0\DR0\Partition1
19:39:03.0656 0x0d20  ============================================================
19:39:03.0656 0x0d20  Initialize success
19:39:03.0656 0x0d20  ============================================================
19:39:25.0390 0x0bfc  ============================================================
19:39:25.0390 0x0bfc  Scan started
19:39:25.0390 0x0bfc  Mode: Manual;
19:39:25.0390 0x0bfc  ============================================================
19:39:25.0390 0x0bfc  KSN ping started
19:39:25.0703 0x0bfc  KSN ping finished: false
19:39:31.0203 0x0bfc  ================ Scan system memory ========================
19:39:31.0203 0x0bfc  System memory - ok
19:39:31.0203 0x0bfc  ================ Scan services =============================
19:39:31.0562 0x0bfc  Abiosdsk - ok
19:39:31.0578 0x0bfc  abp480n5 - ok
19:39:31.0640 0x0bfc  [ A10C7534F7223F4A73A948967D00E69B, EBF46FBB4C7C04433E91D95A079354E51A40CC05EAA00A86DEE261AFA81162FC ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:39:31.0671 0x0bfc  ACPI - ok
19:39:32.0000 0x0bfc  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
19:39:32.0031 0x0bfc  ACPIEC - ok
19:39:32.0062 0x0bfc  [ 84F21F6572D0AFE02074291F6CEABBDB, CFF7D29720E5A22E841A8D9CB386A718526916B7C07BACA62B86B410D5098464 ] ACS             C:\WINDOWS\system32\ACS.exe
19:39:32.0093 0x0bfc  ACS - ok
19:39:32.0218 0x0bfc  [ 5DDC0A8D2CD60BDA593DDAF45821CE08, 5A1599702C132C71F043576F50A4115647754FA5F7A01D17B72E147958A06383 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
19:39:32.0218 0x0bfc  Adobe LM Service - ok
19:39:32.0234 0x0bfc  adpu160m - ok
19:39:32.0296 0x0bfc  [ 1EE7B434BA961EF845DE136224C30FEC, 0216D2277B6B4AB9B0E47E093CEEAC2030EFB4B87BA048EA730E40119AA06444 ] aec             C:\WINDOWS\system32\drivers\aec.sys
19:39:32.0312 0x0bfc  aec - ok
19:39:32.0406 0x0bfc  [ 55E6E1C51B6D30E54335750955453702, 49BE694FB65F195A65EC631558BA599345C6641A6A5AA2F1053611B715F4677A ] AFD             C:\WINDOWS\System32\drivers\afd.sys
19:39:32.0437 0x0bfc  AFD - ok
19:39:32.0500 0x0bfc  [ 0EBB674888CBDEFD5773341C16DD6A07, EC87828DBD4E11079C1E7296EEC568917A7B4052AA3EFFA402DD5FAA7E45741D ] AFS2K           C:\WINDOWS\system32\drivers\AFS2K.sys
19:39:32.0500 0x0bfc  AFS2K - ok
19:39:33.0218 0x0bfc  [ 052343CD49C8DA20C48958CFE73C7D44, 583FC6167A3F489A02AA917078F4C4F2C7097AD82FAB7906FDBC59B408AFB078 ] AgereSoftModem  C:\WINDOWS\system32\DRIVERS\AGRSM.sys
19:39:33.0375 0x0bfc  AgereSoftModem - ok
19:39:33.0484 0x0bfc  [ 2C428FA0C3E3A01ED93C9B2A27D8D4BB, A11AA25C0FF052578AE342717C85AED26B79CCE39040C42C69105868F6059A34 ] agp440          C:\WINDOWS\system32\DRIVERS\agp440.sys
19:39:33.0500 0x0bfc  agp440 - ok
19:39:33.0515 0x0bfc  Aha154x - ok
19:39:33.0531 0x0bfc  aic78u2 - ok
19:39:33.0546 0x0bfc  aic78xx - ok
19:39:33.0734 0x0bfc  [ BA88534A3CEB6161E7432438B9EA4F54, 223ACEB51548220155FD80594294B9AF6942757D2573E621325DBD4679DDB56C ] ALCXSENS        C:\WINDOWS\system32\drivers\ALCXSENS.SYS
19:39:33.0765 0x0bfc  ALCXSENS - ok
19:39:33.0968 0x0bfc  [ 5FF6F7E58C798F1474C0BBFFC23CB78D, FFBEC4299A652EFFA577B8FFD11EBF56B9BDCD93AE3105FE69C2CEBF5A6F1AF4 ] ALCXWDM         C:\WINDOWS\system32\drivers\ALCXWDM.SYS
19:39:34.0062 0x0bfc  ALCXWDM - ok
19:39:34.0140 0x0bfc  [ C7AE0FD3867DB0D42B03B73C18F3D671, 13AE5D3DD13BC4C0EAB234FC3F87DA918793CE317A07EE37F107C8C6104E0BA9 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
19:39:34.0156 0x0bfc  Alerter - ok
19:39:34.0187 0x0bfc  [ F1958FBF86D5C004CF19A5951A9514B7, E8DF2330D48E9BF97A7061A84E42CCB2AD197C90FECB56150FB573B4D0C62883 ] ALG             C:\WINDOWS\System32\alg.exe
19:39:34.0203 0x0bfc  ALG - ok
19:39:34.0218 0x0bfc  AliIde - ok
19:39:34.0328 0x0bfc  [ 979FEF635831C88BCFCBB2EAA250E340, 7C4D694B693AB0528273BF81EBB5348A71239661DDE95E34477C134ADFCA43F7 ] AMON            C:\WINDOWS\system32\drivers\amon.sys
19:39:34.0406 0x0bfc  AMON - ok
19:39:34.0421 0x0bfc  amsint - ok
19:39:34.0515 0x0bfc  [ 3ED81E8B4709D13E5A38DB2D8E792B28, 6F3AD36140496C5F2EC20F06F70B6C37040D0B8D2254098075B31D39C4DBCF03 ] ApfiltrService  C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
19:39:34.0531 0x0bfc  ApfiltrService - ok
19:39:34.0546 0x0bfc  AppMgmt - ok
19:39:34.0812 0x0bfc  [ 466708AE500E11CFA56483EE7FB9AD11, D45BD0B2D05184A7326873410543BC1E71DC29BEDD748CEEEB2F16CC3EAA8465 ] AR5211          C:\WINDOWS\system32\DRIVERS\ar5211.sys
19:39:34.0843 0x0bfc  AR5211 - ok
19:39:35.0125 0x0bfc  [ F0D692B0BFFB46E30EB3CEA168BBC49F, 745BE951F18C90FCD30C9A59BB861375C29FA49AF38D27EBFE4158FB7CAC86ED ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
19:39:35.0296 0x0bfc  Arp1394 - ok
19:39:35.0312 0x0bfc  asc - ok
19:39:35.0328 0x0bfc  asc3350p - ok
19:39:35.0359 0x0bfc  asc3550 - ok
19:39:35.0656 0x0bfc  [ 4EABF511B1AF176A971C3271E48FA3A8, D9F5A700BDC670CD59BFCBFC45F7F90D63F46B9B86AA129B8A18C0066F2A07A0 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:39:35.0734 0x0bfc  aspnet_state - ok
19:39:35.0796 0x0bfc  [ 02000ABF34AF4C218C35D257024807D6, FDE21F7FCB198A44A6F2BCAF5EB11C9D90A094B4A2F8C307244A7655848954DA ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:39:35.0812 0x0bfc  AsyncMac - ok
19:39:35.0859 0x0bfc  [ 3938C5FEE8704A29C98F6F9442073BF2, EF5B93EEBC177E6399DF07C8E7CAD641A3311C631368505F57C48F53430DD758 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
19:39:35.0875 0x0bfc  atapi - ok
19:39:35.0890 0x0bfc  Atdisk - ok
19:39:36.0000 0x0bfc  [ 5CCA7DF290D82D1048F217E3C6272384, 1759945BB320536CE8C562DBFF2B1F620EB155944C40E3A75850E7E13BC949F2 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
19:39:36.0062 0x0bfc  Ati HotKey Poller - ok
19:39:36.0437 0x0bfc  [ 5E3603E9FBA29E01F5FFC108276B3005, 531202BD13F8559F0E50C9D0DFA9E12A9B86FEBD724B68F3FEEC3B1875664194 ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
19:39:36.0546 0x0bfc  ati2mtag - ok
19:39:36.0609 0x0bfc  [ EC88DA854AB7D7752EC8BE11A741BB7F, 91FAF224CB4B44608C85CC25C3A82A3EC83F379D14A119A60A75505A30043255 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:39:36.0640 0x0bfc  Atmarpc - ok
19:39:36.0718 0x0bfc  [ DB66DB626E4882EBEF55F136F12C1829, E4FA63031E8FCF456D45160C29ADD0989355D5C5C8E17C949C278421D41DAB62 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
19:39:36.0734 0x0bfc  AudioSrv - ok
19:39:36.0812 0x0bfc  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
19:39:36.0890 0x0bfc  audstub - ok
19:39:37.0015 0x0bfc  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
19:39:37.0015 0x0bfc  Beep - ok
19:39:37.0187 0x0bfc  [ 2C69EC7E5A311334D10DD95F338FCCEA, 3A4335B8D723311F66FA2A30972C65EEED63161D6A2B4ABD6FCF1C374083BC0F ] BITS            C:\WINDOWS\system32\qmgr.dll
19:39:37.0234 0x0bfc  BITS - ok
19:39:37.0312 0x0bfc  [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8, DDFCCB3BC9A840ED0D6FC4B46086AD15AAF9D0D9AB8ED3A7B8860A1DA4D33970 ] Browser         C:\WINDOWS\System32\browser.dll
19:39:37.0312 0x0bfc  Browser - ok
19:39:37.0359 0x0bfc  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
19:39:37.0359 0x0bfc  cbidf2k - ok
19:39:37.0421 0x0bfc  [ 6163ED60B684BAB19D3352AB22FC48B2, 5A7ED636D8B2178EA21FA986CC9168DEF258AA4FFB9DCD792A81A1D615AC5D5E ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:39:37.0421 0x0bfc  CCDECODE - ok
19:39:37.0453 0x0bfc  cd20xrnt - ok
19:39:37.0484 0x0bfc  cdadyej - ok
19:39:37.0531 0x0bfc  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
19:39:37.0562 0x0bfc  Cdaudio - ok
19:39:37.0609 0x0bfc  [ CD7D5152DF32B47F4E36F710B35AAE02, 7382890CC1B27FC66C3E94E064562BBD87B3C75577CB0FD10860B8E2CE07D12E ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
19:39:37.0609 0x0bfc  Cdfs - ok
19:39:37.0671 0x0bfc  [ C269488C6432B58922C5A3A5FA6EE119, E1326900DD949F08104840C492A2622185E5BBDF0A06EA4E9397096B854F3366 ] Cdr4_xp         C:\WINDOWS\system32\drivers\Cdr4_xp.sys
19:39:37.0687 0x0bfc  Cdr4_xp - ok
19:39:37.0703 0x0bfc  [ BACED3E0135A880D5249B09000AEE285, E5616D61016319F6A509DC423B44DF1B0EE60AEC6BB254EE03BF947D084397DB ] Cdralw2k        C:\WINDOWS\system32\drivers\Cdralw2k.sys
19:39:37.0703 0x0bfc  Cdralw2k - ok
19:39:37.0765 0x0bfc  [ AF9C19B3100FE010496B1A27181FBF72, 64E9E4461F631EED2B2A1FC80DCC9C31DCECB5738289D322E6A6428C840DC621 ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:39:37.0781 0x0bfc  Cdrom - ok
19:39:37.0875 0x0bfc  [ 003F755C884B6C61FAFD371E01609976, 6A81DA646E50F43C08D386CCA444580E9E983C1623498385D702261727714E9F ] CeEPwrSvc       C:\Program Files\Toshiba\Power Management\CeEPwrSvc.exe
19:39:37.0875 0x0bfc  CeEPwrSvc - ok
19:39:37.0953 0x0bfc  [ 527235C8109BF5D4DBDA7D1948648C46, 1EB7CD4EC8A068CE0D3696126EF656D52B6137B39E5F12A975FEC2D04B5E1B39 ] CFSvcs          C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
19:39:37.0953 0x0bfc  CFSvcs - ok
19:39:37.0968 0x0bfc  Changer - ok
19:39:38.0000 0x0bfc  [ 3192BD04D032A9C4A85A3278C268A13A, 7844F229916A9BC8670D3CCF80AD674C626EC6DD9D741FF10986E67F6AFD8757 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
19:39:38.0015 0x0bfc  CiSvc - ok
19:39:38.0046 0x0bfc  [ C8DEC22C4137D7A90F8BDF41CA4B82AE, 92CE7B388236DBC196C92AE9929433C0F1E045EA5DB86802EF8C6041B56FE81F ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
19:39:38.0062 0x0bfc  ClipSrv - ok
19:39:38.0140 0x0bfc  [ 234B1BC2796483E1F5C3F26649FB3388, F412B31340B11418698F263A60C78CB086F3D973EDA0C15DF12331971EB3C9DC ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:39:38.0343 0x0bfc  clr_optimization_v2.0.50727_32 - ok
19:39:38.0406 0x0bfc  [ 4266BE808F85826AEDF3C64C1E240203, D1EF8B2C35C21BA122C44F8C55F57B2FA36D37B08A15CFCCE085A4810FAC1FF9 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
19:39:38.0421 0x0bfc  CmBatt - ok
19:39:38.0437 0x0bfc  CmdIde - ok
19:39:38.0453 0x0bfc  [ 428E7C7885E1C56749D85738E12E35F6, D70C82072E7DEB13BA1A30DB24AB3D46FC10D47F401E8777BEEA02FA5EB76309 ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
19:39:38.0453 0x0bfc  Suspicious file ( Forged ): C:\WINDOWS\system32\DRIVERS\compbatt.sys. Real md5: 428E7C7885E1C56749D85738E12E35F6, sha256: D70C82072E7DEB13BA1A30DB24AB3D46FC10D47F401E8777BEEA02FA5EB76309, fake md5: DF1B1A24BF52D0EBC01ED4ECE8979F50, fake sha256: 78C5E7BE2FFA6A0709F3095AB006C86E3991AFC9E9B5ABEC94C3E8DF2EA2169D
19:39:38.0453 0x0bfc  Compbatt - detected Rootkit.Win32.TDSS.tdl3 ( 0 )
19:39:38.0453 0x0bfc  Compbatt ( Rootkit.Win32.TDSS.tdl3 ) - infected
19:39:38.0453 0x0bfc  Force sending object to P2P due to detect: Compbatt
19:39:38.0500 0x0bfc  Object send P2P result: false
19:39:38.0546 0x0bfc  COMSysApp - ok
19:39:38.0593 0x0bfc  Cpqarray - ok
19:39:39.0265 0x0bfc  cpuz134 - ok
19:39:39.0328 0x0bfc  [ 10654F9DDCEA9C46CFB77554231BE73B, 4EEAF6523941228FC440E9EA758545E2F2A2DD98565F90B5351EF2C9B82139ED ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
19:39:39.0328 0x0bfc  CryptSvc - ok
19:39:39.0343 0x0bfc  dac2w2k - ok
19:39:39.0359 0x0bfc  dac960nt - ok
19:39:39.0453 0x0bfc  [ 01095FEBF33BEEA00C2A0730B9B3EC28, 563B1ECFA587C00F98C2ECDDB36A04F8FA3F2B7B6C941DBADF4AA1B1EA052C07 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
19:39:39.0484 0x0bfc  DcomLaunch - ok
19:39:39.0531 0x0bfc  [ EF545E1A4B043DA4C84E230DD471C55F, AD96922E58E8146F03E719D3A5CAAD677CAF3B7B525599F1B32F01BF72CCAFA4 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
19:39:39.0531 0x0bfc  Dhcp - ok
19:39:39.0609 0x0bfc  [ 00CA44E4534865F8A3B64F7C0984BFF0, 3FD73CCD9892F6CFEE776CB384C2E35FA15F4101D308A67E1358F85299501E3D ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
19:39:39.0609 0x0bfc  Disk - ok
19:39:39.0671 0x0bfc  [ E73B3A5337EA55C2BAE2A1A0CAF7A728, E8977A92DA89942EF0ABCD842E38A4A0A1D1D5C8A1ECCB83D47D8127102CF8AC ] DKbFltr         C:\WINDOWS\system32\Drivers\DKbFltr.sys
19:39:39.0671 0x0bfc  DKbFltr - ok
19:39:39.0687 0x0bfc  dmadmin - ok
19:39:39.0828 0x0bfc  [ C0FBB516E06E243F0CF31F597E7EBF7D, 1FC205AC5D8D6BDA176438CEBFAC92CD4DEF50A6C1EBDCBCE2B149FF08D40032 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
19:39:39.0875 0x0bfc  dmboot - ok
19:39:39.0968 0x0bfc  [ F5E7B358A732D09F4BCF2824B88B9E28, 97B8317354659EFBA076E20AF20741C9FBC0961723483514E43D7EC6D66186C3 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
19:39:39.0968 0x0bfc  dmio - ok
19:39:40.0031 0x0bfc  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
19:39:40.0046 0x0bfc  dmload - ok
19:39:40.0093 0x0bfc  [ 1639D9964C9E1B2ECCA95C8217D3E70D, A42E985697E673B89F5BD314BA9FE93A1CD8DDEBC6312AD52E196BFDFFA9E513 ] dmserver        C:\WINDOWS\System32\dmserver.dll
19:39:40.0093 0x0bfc  dmserver - ok
19:39:40.0156 0x0bfc  [ A6F881284AC1150E37D9AE47FF601267, 6C07654CF21637E527FC727EB50F4138BF0EFF0680000AC94001063B436389DB ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
19:39:40.0156 0x0bfc  DMusic - ok
19:39:40.0203 0x0bfc  [ AAC8FFBFD61E784FA3BAC851D4A0BD5F, F811288AC18DB28D9577EA9B40810DE000FC28EF234D1A790DD0578E0D565EBC ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
19:39:40.0203 0x0bfc  Dnscache - ok
19:39:40.0234 0x0bfc  dpti2o - ok
19:39:40.0250 0x0bfc  [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E, B941AB5D9D504486083E0D1539B1A96E27721C9EFD7A67CA1DB7258B0D33AB78 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
19:39:40.0281 0x0bfc  drmkaud - ok
19:39:40.0328 0x0bfc  [ AB500A0C62174F6E3DE1ED90DA5CD9E0, F998EDCDF98C6C99655AC5DD513E014DC58C354E5126F54351B47CD1F9B34EC7 ] drvmcdb         C:\WINDOWS\system32\drivers\drvmcdb.sys
19:39:40.0343 0x0bfc  drvmcdb - ok
19:39:40.0359 0x0bfc  [ B295700E684ED1984DB1D6BE40354421, 946743E300B9DBB0883F28F69B6BA2A04CA17D298E21A868B0F9DA5A5ADDF59C ] drvnddm         C:\WINDOWS\system32\drivers\drvnddm.sys
19:39:40.0390 0x0bfc  drvnddm - ok
19:39:40.0656 0x0bfc  [ 77C4901986FC7A83E853B300E80D234B, 82285FBCA1E0C5FE69A08470991413FBA0B3B0767A0722C5E6B9A2467AABB0A6 ] DVD-RAM_Service C:\WINDOWS\system32\DVDRAMSV.exe
19:39:40.0812 0x0bfc  DVD-RAM_Service - ok
19:39:40.0828 0x0bfc  DW - ok
19:39:41.0015 0x0bfc  [ 732AB6D2FC7F2AFEBC4A9D2750655B7F, 403CF489872D75E2ADF18E848ADE106BB7529B64B2A5118F243922EC7BA41F88 ] dwusbdnt        C:\WINDOWS\system32\DRIVERS\dwusbdnt.sys
19:39:41.0015 0x0bfc  dwusbdnt - ok
19:39:41.0078 0x0bfc  [ 6428A1CE5ABE3E71A97DFDDA0A19546F, 43781C819333F42170D377DC939C89A976563F6BE9FB74005553BFBCC3EE79E5 ] EMSCR           C:\WINDOWS\system32\DRIVERS\EMS7SK.sys
19:39:41.0078 0x0bfc  EMSCR - ok
19:39:41.0156 0x0bfc  [ 0B07768AE046F9ED6A75E5BC75660828, 0802407B7A1DB6493AEFD9509B95BB55142CB195A4E22FC9BD8F65A064D64320 ] EPOWER          C:\WINDOWS\system32\Drivers\hkdrv.sys
19:39:41.0156 0x0bfc  EPOWER - ok
19:39:41.0234 0x0bfc  [ 67DFF7BBBD0E80AAB7B3CF061448DB8A, 305F39E4D18DC079E48578C31AE87BA1D0D781A2613BD5DA4689AC6F2794D326 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
19:39:41.0234 0x0bfc  ERSvc - ok
19:39:41.0328 0x0bfc  [ 6CDEC6BD22234133ADE3C784373C1177, 5D3A0C92A0537B7D3FDA5ADB811EDBA010BEF86DBDA34BF268C4DB051CB5AFA9 ] ESDCR           C:\WINDOWS\system32\DRIVERS\ESD7SK.sys
19:39:41.0343 0x0bfc  ESDCR - ok
19:39:41.0546 0x0bfc  [ BB3A330C759B5833914C346019C05A0B, 9A255BFDADBB585CBEB535F21ED87944E49448DB299332DB35ABEC246CF29798 ] ESMCR           C:\WINDOWS\system32\DRIVERS\ESM7SK.sys
19:39:41.0656 0x0bfc  ESMCR - ok
19:39:41.0718 0x0bfc  [ 37561F8D4160D62DA86D24AE41FAE8DE, DDBCAB4992FDD8E75EA3AE96ABA34C20A45B4D997A901B100FDED4C5AFC790EE ] Eventlog        C:\WINDOWS\system32\services.exe
19:39:41.0750 0x0bfc  Eventlog - ok
19:39:41.0890 0x0bfc  [ 60D1A6342238378BFB7545C81EE3606C, 40186F096F2AC3E5E12D0B8713A08E449D5F23DCD1C0EEFC3FA82002CA1B030F ] EventSystem     C:\WINDOWS\system32\es.dll
19:39:41.0968 0x0bfc  EventSystem - ok
19:39:42.0062 0x0bfc  [ 3117F595E9615E04F05A54FC15A03B20, 4708E8F1CDE6E9663B5DBEBAB8C684B16E45D41AEF20E4071D0A2931B305BD76 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
19:39:42.0234 0x0bfc  Fastfat - ok
19:39:42.0406 0x0bfc  [ 6815DEF9B810AEFAC107EEAF72DA6F82, 0132004894326B54D1B8AD2C31FB8BDE45EA66DB9962C0CE1207941A13630896 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:39:42.0421 0x0bfc  FastUserSwitchingCompatibility - ok
19:39:42.0812 0x0bfc  [ FCBD571FA0EE8DC238944AE5FAB74461, D083D2FE0A526814DD5F82E673AE0847BFCBE77B54CB4BA3190B7937F288F2FD ] Fax             C:\WINDOWS\system32\fxssvc.exe
19:39:42.0843 0x0bfc  Fax - ok
19:39:42.0906 0x0bfc  [ CED2E8396A8838E59D8FD529C680E02C, 8542AE6A2D65D3F843EA70F5FFBC150B773C5CFA3FE6388FA68A95416FAD0F6E ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
19:39:42.0906 0x0bfc  Fdc - ok
19:39:42.0984 0x0bfc  [ E153AB8A11DE5452BCF5AC7652DBF3ED, AEB48687C604B0CDE5F1A13C2EC854CFFBE1CE0837C3898D6D4C6B71265D0ED0 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
19:39:42.0984 0x0bfc  Fips - ok
19:39:43.0046 0x0bfc  [ 0DD1DE43115B93F4D85E889D7A86F548, D50F7AAE5416C6D41845960BDDA24E97226F609AA726E4F88601ADC9ED50E872 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
19:39:43.0046 0x0bfc  Flpydisk - ok
19:39:43.0140 0x0bfc  [ 3D234FB6D6EE875EB009864A299BEA29, 9FEB003BDE7900AECDE9F9FFE0ECD7079B460714B582B7EB8EDB89E7F4D1FE59 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:39:43.0156 0x0bfc  FltMgr - ok
19:39:43.0203 0x0bfc  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:39:43.0218 0x0bfc  Fs_Rec - ok
19:39:43.0281 0x0bfc  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:39:43.0312 0x0bfc  Ftdisk - ok
19:39:43.0343 0x0bfc  [ C0F1D4A21DE5A415DF8170616703DEBF, 3E21AAD06CF6EB95662B568671B1DBD129CED481761BCDB67088E965E5C0BC5B ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:39:43.0359 0x0bfc  Gpc - ok
19:39:43.0609 0x0bfc  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
19:39:43.0640 0x0bfc  gupdate - ok
19:39:43.0718 0x0bfc  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
19:39:43.0718 0x0bfc  gupdatem - ok
19:39:43.0796 0x0bfc  [ 5467F1FF0AF264566740F67E8B810735, E93330A8A1C0CBBEA44D13C321BE8CBB6A409CE3477F8E77FC012795A32C52D1 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:39:43.0859 0x0bfc  gusvc - ok
19:39:44.0031 0x0bfc  [ 8827911A8C37E40C027CBFC88E69D967, ED381F089E6143896B890BD5450FFFB271FC68983412376F54869A93F9D7DA9D ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:39:44.0046 0x0bfc  helpsvc - ok
19:39:44.0125 0x0bfc  [ 9376E6893E52B368ABC6255BF54F0B28, D3E6B03145988BC80A1F62E5E312BB060E062118B12D30F27C8A432D30962E58 ] HidServ         C:\WINDOWS\System32\hidserv.dll
19:39:44.0140 0x0bfc  HidServ - ok
19:39:44.0328 0x0bfc  [ 1DE6783B918F540149AA69943BDFEBA8, 6ED28109CA0A7738857D840E369EAB91C1605F2643950762D327CCE241C135A1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:39:44.0500 0x0bfc  HidUsb - ok
19:39:44.0515 0x0bfc  hpn - ok
19:39:45.0203 0x0bfc  [ CE0FCEC4D4D860F36D972759B11EAF0F, 81F9E391A71D9FB9DD41BC35BD5136B3A851C231BE5A6E936B84E49CDAAF0B67 ] hpqcxs08        C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcxs08.dll
19:39:45.0546 0x0bfc  hpqcxs08 - ok
19:39:45.0906 0x0bfc  [ 7DA3211AC63EDD90B8ECA1CA1ABFD43B, D3D1EA40833157386E83EAC3B730E043BE0ED831106972625E285263ADB968C3 ] hpqddsvc        C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqddsvc.dll
19:39:46.0093 0x0bfc  hpqddsvc - ok
19:39:46.0421 0x0bfc  [ 14229263AA19C704E0D6D2E7404A8455, 510FEB21B9FA66AA60A2800865EF98AE80658A5965C8CEDCAE3B7B5E670F50B0 ] HPSLPSVC        C:\Program Files\Hewlett-Packard\Digital Imaging\bin\HPSLPSVC32.DLL
19:39:46.0890 0x0bfc  HPSLPSVC - ok
19:39:47.0000 0x0bfc  [ D03D10F7DED688FECF50F8FBF1EA9B8A, C19A733571BA831E24EE45EDB730FFFDBA22638F138A32A794BEAB8D8B71D8DD ] HPZid412        C:\WINDOWS\system32\DRIVERS\HPZid412.sys
19:39:47.0000 0x0bfc  HPZid412 - ok
19:39:47.0046 0x0bfc  [ 89F41658929393487B6B7D13C8528CE3, 5D06A11225A83F3F33417148BE53654080C88BFA876FEB486A7E43410AC99F23 ] HPZipr12        C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
19:39:47.0062 0x0bfc  HPZipr12 - ok
19:39:47.0125 0x0bfc  [ ABCB05CCDBF03000354B9553820E39F8, 6361B5A57CDE23AC5E987ACECF3BEE7AD51134C6E5BF4F833E512C9BC4B86877 ] HPZius12        C:\WINDOWS\system32\DRIVERS\HPZius12.sys
19:39:47.0140 0x0bfc  HPZius12 - ok
19:39:47.0250 0x0bfc  [ 9F8B0F4276F618964FD118BE4289B7CD, 5E72367D731A99D3E13004D7070494365E2DBD4D8134445F35E889D9E046BBA7 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
19:39:47.0265 0x0bfc  HTTP - ok
19:39:47.0343 0x0bfc  [ 064D8581ADF77C25133E7D751D917D83, E8623C32E48D3E7A0179C8333C14D8A051C9F7300D0F465E94184F1C75E13A0F ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
19:39:47.0375 0x0bfc  HTTPFilter - ok
19:39:47.0390 0x0bfc  i2omgmt - ok
19:39:47.0406 0x0bfc  i2omp - ok
19:39:47.0531 0x0bfc  [ 5502B58EEF7486EE6F93F3F164DCB808, 7E56E49D6444F2F48037B859B491DF95E1C90EC7ED4EF9C477CD2C49783E62E0 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:39:47.0562 0x0bfc  i8042prt - ok
19:39:47.0625 0x0bfc  [ 537EFE2F9ADCD01073F59E9D3D24164E, 24633A9549AC16250E69CE45C0E2F2EBC64D20EC5EDD0AD51756BFAD0A8B9387 ] ialm            C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
19:39:47.0640 0x0bfc  ialm - ok
19:39:47.0890 0x0bfc  [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
19:39:47.0921 0x0bfc  IDriverT - ok
19:39:48.0015 0x0bfc  [ F8AA320C6A0409C0380E5D8A99D76EC6, A848B9C489DDFBD48BDA140CB9DD43097686115042745F6444F803739168D391 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
19:39:48.0015 0x0bfc  Imapi - ok
19:39:48.0078 0x0bfc  [ FA788520BCAC0F5D9D5CDE5615C0D931, 7C70D1875B302CABC809627212E33CDD56F12B169EA548F1C94ECF2D14236514 ] ImapiService    C:\WINDOWS\system32\imapi.exe
19:39:48.0140 0x0bfc  ImapiService - ok
19:39:48.0156 0x0bfc  ini910u - ok
19:39:48.0265 0x0bfc  [ 2D722B2B54AB55B2FA475EB58D7B2AAD, 1D4BB8F3ABA0EE51EE9F398E383621882189ABCA63D7F0D8A16581AFD1A85553 ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
19:39:48.0296 0x0bfc  IntelIde - ok
19:39:48.0375 0x0bfc  [ 279FB78702454DFF2BB445F238C048D2, 51A559AD7C9CAA8BD60D4E167E850B978083FAE9C5632E47D13B1092B56FD0BA ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:39:48.0562 0x0bfc  intelppm - ok
19:39:48.0609 0x0bfc  [ 4448006B6BC60E6C027932CFC38D6855, C377235EBE475C281ACB6A3267F12D8FE623433F05134A6CE50562414F94D7B1 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:39:48.0625 0x0bfc  Ip6Fw - ok
19:39:48.0750 0x0bfc  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:39:48.0750 0x0bfc  IpFilterDriver - ok
19:39:48.0796 0x0bfc  [ E1EC7F5DA720B640CD8FB8424F1B14BB, E5CF9F43D8C8028E8F29CAF8AD1E2179E5B02DCAA430900672FCB4C4EE288EF0 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:39:48.0828 0x0bfc  IpInIp - ok
19:39:48.0968 0x0bfc  [ E2168CBC7098FFE963C6F23F472A3593, 93B60D02ACBDDCE78BD4020B9CE0C132A8DD28FC2266B2748A22717B93AFF7C9 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:39:48.0984 0x0bfc  IpNat - ok
19:39:49.0078 0x0bfc  [ 64537AA5C003A6AFEEE1DF819062D0D1, 5A6C11317DEF14B8C34A8C669EB75F7A8D46F05090C43D3DFF602CFA13CC504E ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:39:49.0156 0x0bfc  IPSec - ok
19:39:49.0218 0x0bfc  [ 86C204836FEEC22510D434982D4221B8, E4CDFB2EA0C5BE31721C0825FA53BEC202E9EAB6B6003C7937519397A9767882 ] irda            C:\WINDOWS\system32\DRIVERS\irda.sys
19:39:49.0250 0x0bfc  irda - ok
19:39:49.0328 0x0bfc  [ 50708DAA1B1CBB7D6AC1CF8F56A24410, A5657038A66B83472B456246E58884D5DF2E5B63BD176AE3DFFB6D5B6998E8B7 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
19:39:49.0328 0x0bfc  IRENUM - ok
19:39:49.0421 0x0bfc  [ A02512C315C84F475BD89F847048B27B, 28AD0069F9C367BE861A5D5DAF90AFC0EF5C20729AE9DB9964417AFAE2A79624 ] Irmon           C:\WINDOWS\System32\irmon.dll
19:39:49.0421 0x0bfc  Irmon - ok
19:39:49.0515 0x0bfc  [ E504F706CCB699C2596E9A3DA1596E87, 80675B90DEFA75A58CB83FB88ED9CB849FE5CE2522A90F4AF08D54DC5B412541 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:39:49.0531 0x0bfc  isapnp - ok
19:39:49.0593 0x0bfc  [ EBDEE8A2EE5393890A1ACEE971C4C246, ACC57A7BACAB100FB2903451D2A48BFE936E3B8F9B13882C1D2DFF9D19BD1D34 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:39:49.0609 0x0bfc  Kbdclass - ok
19:39:49.0656 0x0bfc  [ E182FA8E49E8EE41B4ADC53093F3C7E6, 2E713992C9B40F6010373A2FFF6DBCC8723BB328DE6875793C46072D8323E9BB ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:39:49.0656 0x0bfc  kbdhid - ok
19:39:49.0718 0x0bfc  [ BA5DEDA4D934E6288C2F66CAF58D2562, 2250B75EEAD92CA56A1F8BB3F6523F9A5625676E38845A4DE0BFECE5EA17DBFA ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
19:39:49.0734 0x0bfc  kmixer - ok
19:39:49.0812 0x0bfc  [ 674D3E5A593475915DC6643317192403, EDE02BB88BEFDCB3E312087AFB5D91D8E9648C0F8599BD551FDC745DBA765819 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
19:39:49.0828 0x0bfc  KSecDD - ok
19:39:49.0906 0x0bfc  [ 0CB3AF149A0BAC0836022CA307C7A0F8, FCA50F229A9A2D120A260620AF454E1808246E45EC249582298D669BCED50B3E ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
19:39:49.0906 0x0bfc  lanmanserver - ok
19:39:50.0015 0x0bfc  [ E1F27CFCD114EC9F1E1F44674B2FF9F0, 7147A1B3694200EEBC32BD66DAED6E075476371E03ED5FDD23431AB79D990957 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:39:50.0062 0x0bfc  lanmanworkstation - ok
19:39:50.0093 0x0bfc  lbrtfdc - ok
19:39:50.0171 0x0bfc  [ B3EFF6D938C572E90A07B3D87A3C7657, 8C02DEFD2F1A15740CD5421D20B3808BD27583019AF1B79D087880A71807EEE1 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
19:39:50.0187 0x0bfc  LmHosts - ok
19:39:50.0234 0x0bfc  [ 8FEE53C104223973ED9919936D9CD156, B4B87E7394BF3525273E99A2EBD85EECEB19A3A15540E73CFFCA48D4114C2C26 ] MDC8021X        C:\WINDOWS\system32\DRIVERS\mdc8021x.sys
19:39:50.0250 0x0bfc  MDC8021X - ok
19:39:50.0328 0x0bfc  [ 6A75FD0B5F008D711DC44D9693E8D632, E042B829AEFC7FEAABB406B9F6F5A4FA18009C6385AEC00FDF342A2838BB5E99 ] meiudf          C:\WINDOWS\system32\Drivers\meiudf.sys
19:39:50.0421 0x0bfc  meiudf - ok
19:39:50.0578 0x0bfc  [ 95FD808E4AC22ABA025A7B3EAC0375D2, 4A067A8B7C539A0C2BFAC55A1869EF56FED835C28F5F7DD7D7BA65A5B273CF5F ] Messenger       C:\WINDOWS\System32\msgsvc.dll
19:39:50.0765 0x0bfc  Messenger - ok
19:39:50.0890 0x0bfc  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
19:39:50.0906 0x0bfc  mnmdd - ok
19:39:51.0046 0x0bfc  [ F6415361201915B9FE3896B0E4E724FF, C99C1EE0EABF8847BD4F737D72DB3EE5A57D773F008EC6596E83DAE48474F3F2 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
19:39:51.0046 0x0bfc  mnmsrvc - ok
19:39:51.0078 0x0bfc  [ 6FC6F9D7ACC36DCA9B914565A3AEDA05, BF2C49E4D4C2D2E865B1C59FFE76BF29146ADD971D845FBD659A96AA26D72A11 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
19:39:51.0109 0x0bfc  Modem - ok
19:39:51.0203 0x0bfc  [ 34E1F0031153E491910E12551400192C, D608F77DB7035FD676773A3DF8DBC5DD52CC5198D0681A73D7EAA6C161047A90 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:39:51.0203 0x0bfc  Mouclass - ok
19:39:51.0250 0x0bfc  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:39:51.0250 0x0bfc  mouhid - ok
19:39:51.0281 0x0bfc  [ 65653F3B4477F3C63E68A9659F85EE2E, 32A34B22A4C1F50A966F321FD228C6B85F0F0315ABF3D40FC416618E786A4024 ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
19:39:51.0296 0x0bfc  MountMgr - ok
19:39:51.0312 0x0bfc  mraid35x - ok
19:39:51.0328 0x0bfc  mrtRate - ok
19:39:51.0437 0x0bfc  [ 29414447EB5BDE2F8397DC965DBB3156, 351D359CC6C1C35522BB55B7CAC6C881B25FD6A0E057A8D7F84EE5A193029A23 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:39:51.0453 0x0bfc  MRxDAV - ok
19:39:51.0640 0x0bfc  [ F9692BE777822AB3F1A91C34728786DA, BE234F9989477029AD6AAB9BF2757B4DA58828524412E59CBFDFD242639FC5A8 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:39:51.0718 0x0bfc  MRxSmb - ok
19:39:51.0968 0x0bfc  [ F1534ACA143CA86CD57672953754FAB0, DF86E663E01F261E04057574A02760EC770DA4F519C008B83F2F2A7C330BCE0A ] MSCSPTISRV      C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
19:39:52.0000 0x0bfc  MSCSPTISRV - ok
19:39:52.0046 0x0bfc  [ C7C3D89EB0A6F3DBA622EA737FA335B1, 4392887A5F312DBD0971E1D72B85B3CA5636D7FB3A409E5A99CA925BD05493E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
19:39:52.0062 0x0bfc  MSDTC - ok
19:39:52.0125 0x0bfc  [ 561B3A4333CA2DBDBA28B5B956822519, 5B53906A29B9AA55A399F880CA989F9878BD943D3E97FB10A25BFD723654AF49 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
19:39:52.0125 0x0bfc  Msfs - ok
19:39:52.0140 0x0bfc  MSIServer - ok
19:39:52.0234 0x0bfc  [ AE431A8DD3C1D0D0610CDBAC16057AD0, 8B3BCAC3DA71778DC8B863E6DEF10F02F65D1BDD3381802DDC0B2980F4F1FBB9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:39:52.0250 0x0bfc  MSKSSRV - ok
19:39:52.0281 0x0bfc  [ 13E75FEF9DFEB08EEDED9D0246E1F448, 69D4CF483753FF253431656E1CB680F6702375696F94E259729BD11C25004031 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:39:52.0281 0x0bfc  MSPCLOCK - ok
19:39:52.0312 0x0bfc  [ 1988A33FF19242576C3D0EF9CE785DA7, 9E1C07F364DA7EF0D859BB7A3A06F849A153722E27E872640120CC6855D9FC51 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
19:39:52.0312 0x0bfc  MSPQM - ok
19:39:52.0375 0x0bfc  [ 469541F8BFD2B32659D5D463A6714BCE, 46AA7D2442DCC4C51C08BA0C00136F058F9160E6D6EDE78B2FD82545AE4FD10B ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:39:52.0437 0x0bfc  mssmbios - ok
19:39:52.0625 0x0bfc  [ BF13612142995096AB084F2DB7F40F77, E23FA89B54772A33A0A92A0701F02CB9683823FCA5CC192235378E1433FB21CF ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
19:39:52.0812 0x0bfc  MSTEE - ok
19:39:52.0984 0x0bfc  [ 82035E0F41C2DD05AE41D27FE6CF7DE1, 6111D330E7ACB77E23EA6A9E001FC651DE1DC49D772DC6FDD3C4B8EDA57E1C7A ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
19:39:53.0000 0x0bfc  Mup - ok
19:39:53.0140 0x0bfc  [ 5C8DC6429C43DC6177C1FA5B76290D1A, BBD145E87D4CF25A873CAE89DF29DF297187B604D42CD36AD8D3F62A033D906E ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:39:53.0140 0x0bfc  NABTSFEC - ok
19:39:53.0218 0x0bfc  [ 558635D3AF1C7546D26067D5D9B6959E, 8C1802908DF35E442575969D29F4B22019A2B3E4C309B8E193F98F75AE81F013 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
19:39:53.0234 0x0bfc  NDIS - ok
19:39:53.0281 0x0bfc  [ 520CE427A8B298F54112857BCF6BDE15, 521BFFC460D64CD69D12F8C9D61CEBE409A63F1F1FB928450E4564DA29C0FFEA ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:39:53.0296 0x0bfc  NdisIP - ok
19:39:53.0359 0x0bfc  [ 08D43BBDACDF23F34D79E44ED35C1B4C, F72CB8FA67C361C40B4C83F08302D7B2FD9178C1C60A7C236AF08B9CB5162591 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:39:53.0359 0x0bfc  NdisTapi - ok
19:39:53.0421 0x0bfc  [ 34D6CD56409DA9A7ED573E1C90A308BF, DE2060F57C913272524AFB0D472714ABF6F7E49A01534F23D95EE67F207CC6CF ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:39:53.0437 0x0bfc  Ndisuio - ok
19:39:53.0609 0x0bfc  [ 0B90E255A9490166AB368CD55A529893, 90EB17422BF52FE6D0CC6ADA4262D605806C5B583DE04EDEC95FD47EE9697865 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:39:53.0625 0x0bfc  NdisWan - ok
19:39:53.0656 0x0bfc  [ 59FC3FB44D2669BC144FD87826BB571F, B3C8CEFB09D5C85CBF12AED8CDB1FE455679D3436337263EFDABDC5116D92453 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
19:39:53.0687 0x0bfc  NDProxy - ok
19:39:53.0750 0x0bfc  [ 2969D26EEE289BE7422AA46FC55F4E38, 0128C6C764C9BE01E9C5B272385524361C46C051D9D371D8E06B8493A49250AF ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
19:39:53.0765 0x0bfc  Net Driver HPZ12 - ok
19:39:53.0812 0x0bfc  [ 3A2ACA8FC1D7786902CA434998D7CEB4, ECE218DCDCB4D0A5CA8CBD14E931BAA3B5F381B70BBACB65B0EBBB46D2D31683 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
19:39:53.0812 0x0bfc  NetBIOS - ok
19:39:53.0890 0x0bfc  [ 0C80E410CD2F47134407EE7DD19CC86B, 2A1D0CE9797F4AB7A24873947A26DD6413B8DBB5A82C24CF28D1FC243AEFC5C8 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
19:39:53.0906 0x0bfc  NetBT - ok
19:39:53.0953 0x0bfc  [ 05AFB5AD06462257BEA7495283C86D50, 2D6584D0BFB168E48433EA702E6CABC7CB9B98675D2E99F78D9B84A63D4BD977 ] NetDDE          C:\WINDOWS\system32\netdde.exe
19:39:53.0968 0x0bfc  NetDDE - ok
19:39:53.0984 0x0bfc  [ 05AFB5AD06462257BEA7495283C86D50, 2D6584D0BFB168E48433EA702E6CABC7CB9B98675D2E99F78D9B84A63D4BD977 ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
19:39:54.0000 0x0bfc  NetDDEdsdm - ok
19:39:54.0062 0x0bfc  [ 1265EB253ED4EBE4ACB3BD5F548FF796, E54D849FF7DBA47526BDB0CC71881768DB55D6A5779C245C8A0D7B9C6409B785 ] Netdevio        C:\WINDOWS\system32\DRIVERS\netdevio.sys
19:39:54.0093 0x0bfc  Netdevio - ok
19:39:54.0171 0x0bfc  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] Netlogon        C:\WINDOWS\system32\lsass.exe
19:39:54.0187 0x0bfc  Netlogon - ok
19:39:54.0265 0x0bfc  [ 36739B39267914BA69AD0610A0299732, 04CC0D2F45D4F3A86B2E4F23E1226F182349C98C53508C1F49C8CAC2D223D5A7 ] Netman          C:\WINDOWS\System32\netman.dll
19:39:54.0296 0x0bfc  Netman - ok
19:39:54.0343 0x0bfc  [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC, AD1FD07DD9E745C29986C2A25E9EF80B93CBF0F47FCF76741DD6E9CC81C7D241 ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
19:39:54.0375 0x0bfc  NIC1394 - ok
19:39:54.0484 0x0bfc  [ 097722F235A1FB698BF9234E01B52637, 994F81F506B081FFB760BA7B95469DE9311DDB00D14F77DA9752C19A9B932289 ] Nla             C:\WINDOWS\System32\mswsock.dll
19:39:54.0500 0x0bfc  Nla - ok
19:39:55.0250 0x0bfc  [ BD71E8BAE0017C79F77FAE9E8AC2EAFA, 37869F9B0E80DFD474B82EDDC6E29DF0384688A387510D48195160101B08680F ] NOD32krn        C:\Program Files\Eset\nod32krn.exe
19:39:55.0328 0x0bfc  NOD32krn - ok
19:39:55.0468 0x0bfc  [ 4F601BCB8F64EA3AC0994F98FED03F8E, D9D6783B970CB871DE0C6EDD8BE42F30CD1DCD55D4DF006922D9CFC0CF020D27 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
19:39:55.0500 0x0bfc  Npfs - ok
19:39:55.0515 0x0bfc  ntcdrdrv - ok
19:39:55.0640 0x0bfc  [ 19A811EF5F1ED5C926A028CE107FF1AF, 97606850041DE4E568188FB28AA3D5B10A4E96DB9551A77BC3A17ED67D5D4474 ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
19:39:55.0656 0x0bfc  Ntfs - ok
19:39:55.0734 0x0bfc  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
19:39:55.0734 0x0bfc  NtLmSsp - ok
19:39:55.0890 0x0bfc  [ B62F29C00AC55A761B2E45877D85EA0F, 8B4B96BDBE26D73F89CC51876929515C1AEA18A8E9CA4E76FAEF538D9E5BDA90 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
19:39:55.0984 0x0bfc  NtmsSvc - ok
19:39:56.0031 0x0bfc  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
19:39:56.0046 0x0bfc  Null - ok
19:39:56.0093 0x0bfc  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:39:56.0093 0x0bfc  NwlnkFlt - ok
19:39:56.0125 0x0bfc  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:39:56.0156 0x0bfc  NwlnkFwd - ok
19:39:56.0203 0x0bfc  [ 0951DB8E5823EA366B0E408D71E1BA2A, EAF0E680BC476D8CEBAD0C21F2EDB958F333B731E8B131DA450D716FEC2C87B0 ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
19:39:56.0203 0x0bfc  ohci1394 - ok
19:39:56.0312 0x0bfc  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:39:56.0343 0x0bfc  ose - ok
19:39:56.0531 0x0bfc  [ FB2C5ADAF3768871D4EA64883C4A3695, 9E64C60F8FF5C46C69BF6706E89EBB7D7AF49006381BC13F290D5C045F108E85 ] P1001VID        C:\WINDOWS\system32\DRIVERS\P1001Vid.sys
19:39:56.0609 0x0bfc  P1001VID - ok
19:39:56.0671 0x0bfc  [ 17BB6B38DE8C2BDA692CA1DB0CEA7325, E62B95C070A371E9311ABE0744BFB9A5BD14BF9C327A109A1FE3125E3FBAAE36 ] PACSPTISVR      C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
19:39:56.0734 0x0bfc  PACSPTISVR - ok
19:39:56.0875 0x0bfc  [ 240C0D4049A833B16B63B636ACF01672, B357CCC9DF8A85862B87975DF774705556B4FC3EB3AEC3E763E4BB86F55B15A9 ] PalmUSBD        C:\WINDOWS\system32\drivers\PalmUSBD.sys
19:39:56.0968 0x0bfc  PalmUSBD - ok
19:39:57.0062 0x0bfc  [ 29744EB4CE659DFE3B4122DEB45BC478, 5F7B63152CDAA031ACB77E793BB7E8210472D6D1EED911F3A0BD70455FC282FC ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
19:39:57.0171 0x0bfc  Parport - ok
19:39:57.0359 0x0bfc  [ 3334430C29DC338092F79C38EF7B4CD0, B54989B46D77F124D66741A939FF2033F73854FC39AF13C8165D01203A94A94E ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
19:39:57.0468 0x0bfc  PartMgr - ok
19:39:57.0546 0x0bfc  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
19:39:57.0562 0x0bfc  ParVdm - ok
19:39:57.0625 0x0bfc  [ 8086D9979234B603AD5BC2F5D890B234, 4FCB98D3B6F95B6979B255287480943C1F87A12ECB30D446294C1E84B6DFE620 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
19:39:57.0625 0x0bfc  PCI - ok
19:39:57.0656 0x0bfc  PCIDump - ok
19:39:57.0687 0x0bfc  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
19:39:57.0703 0x0bfc  PCIIde - ok
19:39:57.0781 0x0bfc  [ 82A087207DECEC8456FBE8537947D579, 92305DC8BC1CA3BD93A8D996AAA7433E816931B17D5BDFAC06C7251F2759D023 ] Pcmcia          C:\WINDOWS\system32\DRIVERS\pcmcia.sys
19:39:57.0796 0x0bfc  Pcmcia - ok
19:39:57.0812 0x0bfc  PDCOMP - ok
19:39:57.0828 0x0bfc  PDFRAME - ok
19:39:57.0843 0x0bfc  PDRELI - ok
19:39:57.0859 0x0bfc  PDRFRAME - ok
19:39:57.0875 0x0bfc  perc2 - ok
19:39:57.0890 0x0bfc  perc2hib - ok
19:39:58.0015 0x0bfc  [ 6C1618A07B49E3873582B6449E744088, 4C56C042830E0E3A7EE15E6C074D788AE2D6EF2D0901DC1497DA8C4E5D867839 ] pfc             C:\WINDOWS\system32\drivers\pfc.sys
19:39:58.0031 0x0bfc  pfc - ok
19:39:58.0078 0x0bfc  [ 37561F8D4160D62DA86D24AE41FAE8DE, DDBCAB4992FDD8E75EA3AE96ABA34C20A45B4D997A901B100FDED4C5AFC790EE ] PlugPlay        C:\WINDOWS\system32\services.exe
19:39:58.0093 0x0bfc  PlugPlay - ok
19:39:58.0296 0x0bfc  [ BAFC9706BDF425A02B66468AB2605C59, 6F8F7982AD452F0E68D91CCAF05DF152F00FA3D885DCBBBC470199E74F17B1E0 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
19:39:58.0359 0x0bfc  Pml Driver HPZ12 - ok
19:39:58.0390 0x0bfc  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
19:39:58.0390 0x0bfc  PolicyAgent - ok
19:39:58.0421 0x0bfc  [ 1C5CC65AAC0783C344F16353E60B72AC, 7786CFE970A79B327DB57AEBADA8B0B94B4DE07CE8AF285E9835B2AADD597296 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:39:58.0437 0x0bfc  PptpMiniport - ok
19:39:58.0453 0x0bfc  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:39:58.0453 0x0bfc  ProtectedStorage - ok
19:39:58.0515 0x0bfc  [ 48671F327553DCF1D27F6197F622A668, CB34A17BC36E8F8BB5F87F9EE21311C50DE9AE156513D682581DE47C93EC155D ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
19:39:58.0515 0x0bfc  PSched - ok
19:39:58.0578 0x0bfc  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:39:58.0593 0x0bfc  Ptilink - ok
19:39:58.0640 0x0bfc  [ 86724469CD077901706854974CD13C3E, 23C6B45928E43AC2893033DFC4265C2C87B3D185CB20553B9EAB818A46FB8C18 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:39:58.0750 0x0bfc  PxHelp20 - ok
19:39:58.0765 0x0bfc  ql1080 - ok
19:39:58.0781 0x0bfc  Ql10wnt - ok
19:39:58.0796 0x0bfc  ql12160 - ok
19:39:58.0812 0x0bfc  ql1240 - ok
19:39:58.0828 0x0bfc  ql1280 - ok
19:39:58.0921 0x0bfc  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:39:58.0968 0x0bfc  RasAcd - ok
19:39:59.0031 0x0bfc  [ 44DB7A9BDD2FB58747D123FBF1D35ADB, 1546B32AE19015213236031E82BF5C44ACF4C1B5F9E379908A1B413C6CA65755 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
19:39:59.0234 0x0bfc  RasAuto - ok
19:39:59.0312 0x0bfc  [ 0207D26DDF796A193CCD9F83047BB5FC, 13613036BCB869FBD7229A0FE25D324710308385D8C35E5D990A40E52BE040DF ] Rasirda         C:\WINDOWS\system32\DRIVERS\rasirda.sys
19:39:59.0312 0x0bfc  Rasirda - ok
19:39:59.0343 0x0bfc  [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C, F59974A2A3C21071BC72CA4DAF5D2DDF93471EC16FD1A34DE9DC1A50027F6835 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:39:59.0343 0x0bfc  Rasl2tp - ok
19:39:59.0468 0x0bfc  [ D4BD2EEAB07FEF323F0A0CEECC954F51, 82C5E65D84EACF4CCB542F23AFF751657237B054862D4003E63FA1E690F5B814 ] RasMan          C:\WINDOWS\System32\rasmans.dll
19:39:59.0484 0x0bfc  RasMan - ok
19:39:59.0515 0x0bfc  [ 7306EEED8895454CBED4669BE9F79FAA, DC6874ECAD9105BC9EAB007291958911D7D4D3649124472070B3496B36C45200 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:39:59.0531 0x0bfc  RasPppoe - ok
19:39:59.0578 0x0bfc  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
19:39:59.0593 0x0bfc  Raspti - ok
19:39:59.0703 0x0bfc  [ 03B965B1CA47F6EF60EB5E51CB50E0AF, 56B0F5FC470385F2FF4E4573099C96772EDB985398859B9F7ACE0AA704BB47B7 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:39:59.0734 0x0bfc  Rdbss - ok
19:39:59.0812 0x0bfc  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:39:59.0843 0x0bfc  RDPCDD - ok
19:39:59.0984 0x0bfc  [ B54CD38A9EBFBF2B3561426E3FE26F62, 2BE75A68C598A2E162F09BCBA140909B9480A7E06A733B5D58673A172CAD8084 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
19:40:00.0046 0x0bfc  RDPWD - ok
19:40:00.0328 0x0bfc  [ 729798E0933076B8FCFCD9934698F164, 87CCF85E6C7F9AB9A5EB97BD9D2BE97429CB178B35FCA17CB1C9B58A0475D726 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
19:40:00.0375 0x0bfc  RDSessMgr - ok
19:40:00.0406 0x0bfc  [ B31B4588E4086D8D84ADBF9845C2402B, 0B45979623B0AC774A9426C428954E7FB604FAE0DB187C402AF6052906F4099A ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
19:40:00.0421 0x0bfc  redbook - ok
19:40:01.0671 0x0bfc  [ 85F12A9A202A3F7E8CB57A5EF979D8BE, 7D92D3F2AA9C2BFFD4709D51E3A6140D89225F0CD46E2BF6C67FDABB050A516E ] ReimageRealTimeProtection C:\Program Files\Reimage\Reimage Repair\ReiGuard.exe
19:40:59.0531 0x0bfc  ReimageRealTimeProtection - ok
19:40:59.0687 0x0bfc  [ 3046DB917E3CFA040632799DD9B14865, 90FE0C8C887A718BAEA77B1CFE1F6EEB2595F520A0B3DE0A50B4DE2E1D99CCF4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
19:40:59.0718 0x0bfc  RemoteAccess - ok
19:40:59.0812 0x0bfc  [ 793F04A09B15E7C6C11DBDFFAF06C0AB, D108DF4DC61300926F360E4D3B2F75DBEF3D3CB9D4C15260232047ED6FB1BFC7 ] RpcLocator      C:\WINDOWS\system32\locator.exe
19:40:59.0859 0x0bfc  RpcLocator - ok
19:41:00.0062 0x0bfc  [ 01095FEBF33BEEA00C2A0730B9B3EC28, 563B1ECFA587C00F98C2ECDDB36A04F8FA3F2B7B6C941DBADF4AA1B1EA052C07 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
19:41:00.0218 0x0bfc  RpcSs - ok
19:41:00.0328 0x0bfc  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe
19:41:00.0500 0x0bfc  RSVP - ok
19:41:00.0656 0x0bfc  [ 29F9879A1FD386F7251AE9FDADB2CBF1, 1E829277C96665692324BA79959A12F604F9426DEC30D14A068D6972266EE91C ] RTL8023         C:\WINDOWS\system32\DRIVERS\Rtlnic51.sys
19:41:00.0687 0x0bfc  RTL8023 - ok
19:41:00.0765 0x0bfc  [ D507C1400284176573224903819FFDA3, DD0BDB2AB39A8A0A300B6D60FB6A7F5BA08C4DB8F59E0A784FB763EA8AD72AB2 ] rtl8139         C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
19:41:00.0812 0x0bfc  rtl8139 - ok
19:41:00.0859 0x0bfc  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] SamSs           C:\WINDOWS\system32\lsass.exe
19:41:00.0890 0x0bfc  SamSs - ok
19:41:01.0031 0x0bfc  [ 25D8DE134DF108E3DBC8D7D23B1AA58E, BF4C48E75D696546AB69E205F5492553001C9A92127D824F7F9BFCFE0F1C1093 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
19:41:01.0250 0x0bfc  SCardSvr - ok
19:41:01.0546 0x0bfc  [ 92360854316611F6CC471612213C3D92, A45DC437FA0DEC1DB540DC889A2469E8C3C4360F2F41FE60BFA3F78462507959 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
19:41:01.0671 0x0bfc  Schedule - ok
19:41:01.0859 0x0bfc  [ 02FC71B020EC8700EE8A46C58BC6F276, 7A41A3BCD5A7784D0255F655DCE442CBE81CF4E55B95043EF20BB292C80630A5 ] sdbus           C:\WINDOWS\system32\DRIVERS\sdbus.sys
19:41:01.0953 0x0bfc  sdbus - ok
19:41:02.0218 0x0bfc  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:41:02.0281 0x0bfc  Secdrv - ok
19:41:02.0359 0x0bfc  [ B1E0CE09895376871746F36DC5773B4F, 686458ED5D4C72AAF2F45B4FCBB44BFA0D84DFE93B5E01ECCBEAD33CBAC52BD5 ] seclogon        C:\WINDOWS\System32\seclogon.dll
19:41:02.0390 0x0bfc  seclogon - ok
19:41:02.0437 0x0bfc  [ DFD9870CF39C791D86C4C209DA9FA919, 336A0525630149EF160AE8346AF6BEE2FAA0289629FA052ADAF887B5B84A918D ] SENS            C:\WINDOWS\system32\sens.dll
19:41:02.0453 0x0bfc  SENS - ok
19:41:02.0484 0x0bfc  [ CD9404D115A00D249F70A371B46D5A26, D9FC869FA9A6B9574A1FCE70E7B919D8F79E02B28967E49F6DEF83A84520ECDF ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
19:41:02.0500 0x0bfc  Serial - ok
19:41:02.0531 0x0bfc  [ 0D13B6DF6E9E101013A7AFB0CE629FE0, 2214EA0F16BB33970E299CE457EB50AEE0BEF7959BC1EBD3C06C78A46B42B808 ] Sfloppy         C:\WINDOWS\system32\DRIVERS\sfloppy.sys
19:41:02.0546 0x0bfc  Sfloppy - ok
19:41:02.0718 0x0bfc  [ 36CC8C01B5E50163037BEF56CB96DEFF, F8D3CC92E97E8C97A0F88850D6D96CFA02A69940208834F413A8FCB71241F552 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
19:41:02.0765 0x0bfc  SharedAccess - ok
19:41:02.0937 0x0bfc  [ 6815DEF9B810AEFAC107EEAF72DA6F82, 0132004894326B54D1B8AD2C31FB8BDE45EA66DB9962C0CE1207941A13630896 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:41:03.0046 0x0bfc  ShellHWDetection - ok
19:41:03.0062 0x0bfc  Simbad - ok
19:41:03.0125 0x0bfc  [ 5CAEED86821FA2C6139E32E9E05CCDC9, 63F91C95FD2914DAEC648A6EAF75EE5E18EAA7754F5A03A57D693AC49C66479E ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:41:03.0187 0x0bfc  SLIP - ok
19:41:03.0265 0x0bfc  [ A8EB0AA07632A4C936FF6F8EDA5BDEAD, 9AEEAB09D74CC77AE69DE89B082F7798F290984B3E3AD96FB590E65A1BD37F05 ] SMCIRDA         C:\WINDOWS\system32\DRIVERS\smcirda.sys
19:41:03.0296 0x0bfc  SMCIRDA - ok
19:41:03.0312 0x0bfc  Sparrow - ok
19:41:03.0359 0x0bfc  [ 0CE218578FFF5F4F7E4201539C45C78F, 2C87C8993C3B9CE3589262E178B2B12FF9F2D83E5E8C2B97648D7FA24E3BD985 ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
19:41:03.0375 0x0bfc  splitter - ok
19:41:03.0515 0x0bfc  [ DA81EC57ACD4CDC3D4C51CF3D409AF9F, 521257429493F31516EDE549869EFA4B7A262F6A69EA1E82A9C875456C10E702 ] Spooler         C:\WINDOWS\system32\spoolsv.exe
19:41:03.0546 0x0bfc  Spooler - ok
19:41:03.0796 0x0bfc  [ 3980B48DFF300A7E4139F5C64DA65F5C, 2D88B92F76650657C7CBC3C248C97F709EABE50BF48D5A13BF07EF8E0BFC7CB4 ] SPTISRV         C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
19:41:04.0250 0x0bfc  SPTISRV - ok
19:41:04.0421 0x0bfc  [ E41B6D037D6CD08461470AF04500DC24, 9556C669E69B1B290865FCAABD5D793B310C071B64FD3DF9FCFADC3716BDC926 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
19:41:04.0484 0x0bfc  sr - ok
19:41:04.0578 0x0bfc  [ 92BDF74F12D6CBEC43C94D4B7F804838, C1BFE7F498F4A9992FEA459CE7EEF7525AE51A7E04C76D676819A61615A4A92E ] srservice       C:\WINDOWS\system32\srsvc.dll
19:41:04.0593 0x0bfc  srservice - ok
19:41:04.0718 0x0bfc  [ 7A4F147CC6B133F905F6E65E2F8669FB, 82E3C4F1A92D8D8129CC1CA07F516B537EA6A3B2EEDF47A2C32BEC7828A83A32 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
19:41:04.0796 0x0bfc  Srv - ok
19:41:04.0875 0x0bfc  [ 3B01A9316255CDD17F9C8E79AA573406, 32A3AB0F825664B9BCCC340D1052C0FD1478BED0CC9E1CF98AAA4E4CA19FC522 ] SrvcEKIOMngr    C:\WINDOWS\system32\Drivers\EKIoMngr.sys
19:41:04.0875 0x0bfc  SrvcEKIOMngr - ok
19:41:04.0953 0x0bfc  [ 0A4F36C355E49D3A92D80E6B7C443BAE, D5179259D5AA77C9A176E6299B61AF6644144EAB485D0DA7A68CF08B7ACA0783 ] SrvcEPECioctl   C:\WINDOWS\system32\Drivers\ECioctl.sys
19:41:04.0953 0x0bfc  SrvcEPECioctl - ok
19:41:04.0984 0x0bfc  [ C996C839A3261CAB5409C61E5702B620, F8BABBA77F46D6B950B740B01CF6824C862A17735BA5BBB9B565EEC86C0F2886 ] SrvcEPIOMngr    C:\WINDOWS\system32\Drivers\EPIoMngr.sys
19:41:04.0984 0x0bfc  SrvcEPIOMngr - ok
19:41:05.0000 0x0bfc  [ 79B7AF340D55861DF1D69E7BAC975FCC, EC9720755DBA9710FDD3F100EB999EAEC73D370CFA32A4E81779C6BACF834FC2 ] SrvcSSIOMngr    C:\WINDOWS\system32\Drivers\SSIoMngr.sys
19:41:05.0015 0x0bfc  SrvcSSIOMngr - ok
19:41:05.0046 0x0bfc  [ CBC0BE9758BACE83FC9AC25F4CCA20E7, B06577F6EA553CA35C343E2C3E2E4B7C78A260ED505AF3127A28275ECB188C1E ] SrvcTPIOMngr    C:\WINDOWS\system32\Drivers\TPIoMngr.sys
19:41:05.0062 0x0bfc  SrvcTPIOMngr - ok
19:41:05.0093 0x0bfc  [ D7968049BE0ADBB6A57CEE3960320911, 6FB6D7BE384324211DAEDCCD80BA983E32183D08DF6C5B5B5453773DCC0F4D5B ] sscdbhk5        C:\WINDOWS\system32\drivers\sscdbhk5.sys
19:41:05.0109 0x0bfc  sscdbhk5 - ok
19:41:05.0187 0x0bfc  [ 4B8D61792F7175BED48859CC18CE4E38, 13C50FACC85828F56FF5B29D13B004933352CB581B62B218038B503561531981 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
19:41:05.0218 0x0bfc  SSDPSRV - ok
19:41:05.0281 0x0bfc  [ E4C3B3A14FB2ABF5CE1FF05418BA73C1, 4B31D894409BDB3166CD009D8D02D3EDFE408089F9F206D9BA132C3DDFBCD393 ] SSFS0509        C:\WINDOWS\system32\Drivers\SSFS0509.SYS
19:41:05.0281 0x0bfc  SSFS0509 - ok
19:41:05.0296 0x0bfc  [ 251141FD898C0EF76976F51D39EA881D, 9300E05353A2C0241A20C3A9EB63115B46AE9120BADD5BA2D9D8FA854C3D5BBE ] SSHRMD          C:\WINDOWS\system32\Drivers\SSHRMD.SYS
19:41:05.0312 0x0bfc  SSHRMD - ok
19:41:05.0359 0x0bfc  [ 339E268E1F0DF8868045977CCCA6391F, BB18926D7696211CCB2010F3EE0B4A96E90F253DADC365673F0CCE08EA087395 ] SSIDRV          C:\WINDOWS\system32\Drivers\SSIDRV.SYS
19:41:05.0406 0x0bfc  SSIDRV - ok
19:41:05.0437 0x0bfc  [ CA85B64BC98ABABDD858143933B6FD4E, AC160296C5CB584DC3F9DECC2D38190C3216982F4F9D6EC20E4F51EAA092CFCE ] SSKBFD          C:\WINDOWS\system32\Drivers\sskbfd.sys
19:41:05.0437 0x0bfc  SSKBFD - ok
19:41:05.0484 0x0bfc  [ C3FFD65ABFB6441E7606CF74F1155273, EFA481D5075A9C0490CEBA5F8223BE322EB3811465F41A1FB3386E30E8C81714 ] ssrtln          C:\WINDOWS\system32\drivers\ssrtln.sys
19:41:05.0484 0x0bfc  ssrtln - ok
19:41:05.0734 0x0bfc  [ B6763F8534AC547CF1AF98AFDFF2EDC8, 5E199091F10373451623855DD2A4ED625E062545DBAC20DDE80C0E3E3CE271DA ] stisvc          C:\WINDOWS\system32\wiaservc.dll
19:41:06.0015 0x0bfc  stisvc - ok
19:41:06.0109 0x0bfc  [ 284C57DF5DC7ABCA656BC2B96A667AFB, 7E3CAE1911E710B1CC37571AE1B92DC981FCD46E67A3AD3C258672D17781C709 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:41:06.0171 0x0bfc  streamip - ok
19:41:06.0312 0x0bfc  [ 03C1BAE4766E2450219D20B993D6E046, 0D8E5B141EAA9E2C8D1F8BFD522F57EE8074216A336CBE37FE77B8ADDB791DBE ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
19:41:06.0343 0x0bfc  swenum - ok
19:41:06.0437 0x0bfc  [ 94ABC808FC4B6D7D2BBF42B85E25BB4D, EEF6DB9EDD8C273A6595675A7A12B9D440FA4E178BA7C69FB1942D97E291F989 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
19:41:06.0437 0x0bfc  swmidi - ok
19:41:06.0453 0x0bfc  SwPrv - ok
19:41:06.0609 0x0bfc  [ 74E8543A4647A53A26788D5ED3C2172F, 4F672C2454ACF32125CEB709A7BC6493C1AAEAE30A062F156EF1E9AC349CA403 ] Swupdtmr        c:\TOSHIBA\Ivp\Swupdate\swupdtmr.exe
19:41:06.0671 0x0bfc  Swupdtmr - ok
19:41:06.0687 0x0bfc  symc810 - ok
19:41:06.0703 0x0bfc  symc8xx - ok
19:41:07.0062 0x0bfc  [ 67C5AF84809468061121FBCBECB19285, FC43A828630EE722604691443AFCC7FA32C50F44B49542F87C64B435A76E996C ] SymWSC          C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
19:41:07.0234 0x0bfc  SymWSC - ok
19:41:07.0250 0x0bfc  sym_hi - ok
19:41:07.0265 0x0bfc  sym_u3 - ok
19:41:07.0312 0x0bfc  [ 650AD082D46BAC0E64C9C0E0928492FD, 6A587A55418A3A7867602D92B99FE393152DED191F27992C4BA909BD268AC43C ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
19:41:07.0328 0x0bfc  sysaudio - ok
19:41:07.0406 0x0bfc  Sysimsuspys - ok
19:41:07.0515 0x0bfc  [ 8B54AA346D1B1B113FFAA75501B8B1B2, 0DBCAA0FEA212F2274973B1CAD8DB0AD7FC117D8483C9BB78166372907A5B398 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
19:41:07.0546 0x0bfc  SysmonLog - ok
19:41:07.0718 0x0bfc  [ FB78839B36025AA286A51289ED28B73E, DA7046522118BFFD596242CA4ADE6B88D6B6A87D30D7F1175C9E9D912162F1B5 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
19:41:07.0953 0x0bfc  TapiSrv - ok
19:41:08.0218 0x0bfc  [ EECA2B57545E7B7BE949B5E70E31444F, CAC9309948CF45159C5D6467107AC67E0C19B79FCDB3AB143A39DD0A940175F2 ] TBiosDrv        C:\WINDOWS\system32\drivers\TBiosDrv.sys
19:41:08.0218 0x0bfc  TBiosDrv - ok
19:41:08.0484 0x0bfc  [ 2A5554FC5B1E04E131230E3CE035C3F9, 97CD31598A95BAF227BD4763AE721DCBF2E7BBB951E95F33B56C94C3B1D7CF4A ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:41:08.0531 0x0bfc  Tcpip - ok
19:41:08.0562 0x0bfc  [ 38D437CF2D98965F239B0ABCD66DCB0F, CC497A25C7AC1FF1E07CEE25FB0C5A5E6C4005C1CB244601FE620884A5C26506 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
19:41:08.0578 0x0bfc  TDPIPE - ok
19:41:08.0656 0x0bfc  [ ED0580AF02502D00AD8C4C066B156BE9, 41AA6C88CF48CAF0DA8E374F37E74206E4F558332075304A28983D04E08B3154 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
19:41:08.0656 0x0bfc  TDTCP - ok
19:41:08.0718 0x0bfc  [ A540A99C281D933F3D69D55E48727F47, CC430FA0E0F1745E167877003FDCC35FE940AF8CAD05387ECBA880CC3A3F6709 ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
19:41:08.0765 0x0bfc  TermDD - ok
19:41:08.0843 0x0bfc  [ B60C877D16D9C880B952FDA04ADF16E6, 244D59A555349259D81D4643500E714A053D4A06DF892A8EDCAA0DC5EADFF050 ] TermService     C:\WINDOWS\System32\termsrv.dll
19:41:08.0890 0x0bfc  TermService - ok
19:41:08.0984 0x0bfc  [ 3FC79C570E1FC535621766C4691A7854, EBF0692335B8BA367637F1036373F5C85C0B585C8434E8C6A691FF55B21B5B28 ] tfsnboio        C:\WINDOWS\system32\dla\tfsnboio.sys
19:41:09.0015 0x0bfc  tfsnboio - ok
19:41:09.0046 0x0bfc  [ 407ECB6535897BE5CFF6221BC997B1EF, 8022E32AFA932DF05C8632DDCE7EB3DB50847E117B3E322B5090E400A8FB531B ] tfsncofs        C:\WINDOWS\system32\dla\tfsncofs.sys
19:41:09.0062 0x0bfc  tfsncofs - ok
19:41:09.0109 0x0bfc  [ C1D5B187A9BF80563157AFD8A88F09DE, 203D72A3CA7A3DBF9E0CC333D23E0F1C5960A3543241E3F934C7ADF8EC0E9E2F ] tfsndrct        C:\WINDOWS\system32\dla\tfsndrct.sys
19:41:09.0125 0x0bfc  tfsndrct - ok
19:41:09.0140 0x0bfc  [ 872AA22F21EBEAD5C6B8AC957B34C0E7, E43803A5FB8DBC74E837A4DAE82D3942F8C0149738D9089D2D903FF15F6554CD ] tfsndres        C:\WINDOWS\system32\dla\tfsndres.sys
19:41:09.0140 0x0bfc  tfsndres - ok
19:41:09.0171 0x0bfc  [ 9453020E9AAF732A298E6E89E4351B1B, FEBD898B9F2726317FC028AD42685F4F77D6504D2A412E454A2ACDD7F0AE9975 ] tfsnifs         C:\WINDOWS\system32\dla\tfsnifs.sys
19:41:09.0203 0x0bfc  tfsnifs - ok
19:41:09.0234 0x0bfc  [ 93001E00CF6D204903A95F3B303F24AC, 3E49A85B3EBEF645F04F891D8654CF8B75D27F4B0377819B759EED5F2CB78208 ] tfsnopio        C:\WINDOWS\system32\dla\tfsnopio.sys
19:41:09.0250 0x0bfc  tfsnopio - ok
19:41:09.0281 0x0bfc  [ D7BF719D284343333E3D2D6BA7E8FE79, FD246846C7702565896A75957F20CDD341B38C850BFB51D7DFE3227809C491E0 ] tfsnpool        C:\WINDOWS\system32\dla\tfsnpool.sys
19:41:09.0296 0x0bfc  tfsnpool - ok
19:41:09.0343 0x0bfc  [ 4444AFCCC70C18ADA313A9D340AF4172, BBEEF0C98F13FD1ED2FA4D03EE3CE87A23D3549D32AD5FDF57CA75030DA9A8E2 ] tfsnudf         C:\WINDOWS\system32\dla\tfsnudf.sys
19:41:09.0359 0x0bfc  tfsnudf - ok
19:41:09.0406 0x0bfc  [ E6B8244E0ED51716696B346E790E9CB6, D8BE54742ABB5481992727074E857393FC713057238E80F5DBCAC8519A1CFA8E ] tfsnudfa        C:\WINDOWS\system32\dla\tfsnudfa.sys
19:41:09.0421 0x0bfc  tfsnudfa - ok
19:41:09.0468 0x0bfc  [ 6815DEF9B810AEFAC107EEAF72DA6F82, 0132004894326B54D1B8AD2C31FB8BDE45EA66DB9962C0CE1207941A13630896 ] Themes          C:\WINDOWS\System32\shsvcs.dll
19:41:09.0484 0x0bfc  Themes - ok
19:41:09.0515 0x0bfc  TosIde - ok
19:41:09.0593 0x0bfc  [ 6D9AC544B30F96C57F8206566C1FB6A1, C39D35D169A3BCA5E458815A1B60CE92D19BC04579D62DAB9396B42760C5E47B ] TrkWks          C:\WINDOWS\system32\trkwks.dll
19:41:09.0656 0x0bfc  TrkWks - ok
19:41:09.0718 0x0bfc  [ 12F70256F140CD7D52C58C7048FDE657, F2E3E645AA713A520452F5E17513D258D3900E93F65013551FC2B542BFA15BB3 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
19:41:09.0750 0x0bfc  Udfs - ok
19:41:09.0765 0x0bfc  ultra - ok
19:41:09.0937 0x0bfc  [ CED744117E91BDC0BEB810F7D8608183, 8D429F6B4A206D82C3BB18C7675B6C3910D5A1CB892F5D07EA8E8080D729AD07 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
19:41:09.0953 0x0bfc  Update - ok
19:41:10.0265 0x0bfc  [ ACA5D98663D879C6BAAFCEA7E2F1B710, C8DA38619880E3B34A0C880BF1E9217A39B287493C7DD6E94C9565F4042913D7 ] upnphost        C:\WINDOWS\System32\upnphost.dll
19:41:10.0281 0x0bfc  upnphost - ok
19:41:10.0359 0x0bfc  [ 3F5DF65B0758675F95A2D43918A740A3, BC639259E0365C66F4C6CF2F341395942706810E4B393598429FA3B929D16D8C ] UPS             C:\WINDOWS\System32\ups.exe
19:41:10.0359 0x0bfc  UPS - ok
19:41:10.0453 0x0bfc  [ 45A0D14B26C35497AD93BCE7E15C9941, F88F51D03BE33D19E98EA0B45273E84AB77C9927669ADBE7D175354034D9610F ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
19:41:10.0468 0x0bfc  usbaudio - ok
19:41:10.0515 0x0bfc  [ BFFD9F120CC63BCBAA3D840F3EEF9F79, 0183D82E341473200FB1A05F6ABBBA3F2BD635654F49599E4CEB3E6394A33D36 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:41:10.0515 0x0bfc  usbccgp - ok
19:41:10.0562 0x0bfc  [ 15E993BA2F6946B2BFBBFCD30398621E, 10AD5B133C9C68B8E11DF702C50BDE5162693C5A9F132DFE1823D03D70D4EB89 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:41:10.0578 0x0bfc  usbehci - ok
19:41:10.0609 0x0bfc  [ C72F40947F92CEA56A8FB532EDF025F1, EBB9E235C973574B835B1FD22D813E9215029B3FC5030591D6F7971C9A23AEF7 ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:41:10.0625 0x0bfc  usbhub - ok
19:41:10.0687 0x0bfc  [ A42369B7CD8886CD7C70F33DA6FCBCF5, EEDAA16F906A2F8FF40009ED10243F66A5CCE878111F1001DA6060A42DD79047 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:41:10.0687 0x0bfc  usbprint - ok
19:41:10.0750 0x0bfc  [ A6BC71402F4F7DD5B77FD7F4A8DDBA85, E40B73D4E2417F4874D155885C86E4FB44557324616AABD84EFE6C4751DCC46B ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:41:10.0765 0x0bfc  usbscan - ok
19:41:10.0859 0x0bfc  [ 49106EE29074E6A3D3AC9E24C6D791D8, B96B19A92E720F284741F8A2DCB30A9423AD58BA8F795D4F2E30403CEEF20099 ] usbser          C:\WINDOWS\system32\DRIVERS\usbser.sys
19:41:10.0906 0x0bfc  usbser - ok
19:41:10.0968 0x0bfc  [ 6CD7B22193718F1D17A47A1CD6D37E75, CFD74FE06819DA488654F88BFCCBF29994FE7F04EC6CD5CD41552B0C95A8130F ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:41:10.0968 0x0bfc  USBSTOR - ok
19:41:11.0000 0x0bfc  [ F8FD1400092E23C8F2F31406EF06167B, AE93C83BA1966535AFA3E72D6F69156B7E56F021A6808EC8DA44C7E7D506D7E5 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:41:11.0015 0x0bfc  usbuhci - ok
19:41:11.0031 0x0bfc  [ 8A60EDD72B4EA5AEA8202DAF0E427925, ED0624B285E4F64E07E30C12490873A2090F9DFD6A91A2EDA7A1082B88A8199E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
19:41:11.0046 0x0bfc  VgaSave - ok
19:41:11.0062 0x0bfc  ViaIde - ok
19:41:11.0125 0x0bfc  [ EE4660083DEBA849FF6C485D944B379B, 4DA3CA0DEA0698D387EA370D9BBFF06FEF1C0A5B3D7F772164441B63B8A3927A ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
19:41:11.0125 0x0bfc  VolSnap - ok
19:41:11.0203 0x0bfc  [ 3EE00364AE0FD8D604F46CBAF512838A, 962168941F4E291F2B5236DA7DB84E50DC335F42595B4BC31FCB7960BD8743FC ] VSS             C:\WINDOWS\System32\vssvc.exe
19:41:11.0250 0x0bfc  VSS - ok
19:41:11.0578 0x0bfc  [ 4C009D4352849D79BF347846B6E03BFD, 3DDDF59576B604EAD6C54ED18FB1F4750A6536DEFADBABDDC67A1E052B46772F ] w22n51          C:\WINDOWS\system32\DRIVERS\w22n51.sys
19:41:11.0765 0x0bfc  w22n51 - ok
19:41:11.0875 0x0bfc  [ 2B281958F5D0CF99ED626E3EF39D5C8D, FB46398AE01CDD9CB6E1E647E4DDA86B670F93F787D69B885C7E930D4FF8F3FC ] W32Time         C:\WINDOWS\system32\w32time.dll
19:41:11.0906 0x0bfc  W32Time - ok
19:41:12.0468 0x0bfc  [ 984EF0B9788ABF89974CFED4BFBAACBC, 8178888E3A1AA3BD3BE34456118BB76AF2DD04EC575E4880F97A8EFB182C9E92 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:41:12.0468 0x0bfc  Wanarp - ok
19:41:12.0484 0x0bfc  wanatw - ok
19:41:12.0500 0x0bfc  WDICA - ok
19:41:12.0625 0x0bfc  [ EFD235CA22B57C81118C1AEB4798F1C1, 16EE95A1D51F318224152492FB1663D96E61EC1706E85AE820CD023CBA1CF1F3 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
19:41:12.0656 0x0bfc  wdmaud - ok
19:41:12.0718 0x0bfc  [ 265F534EF76832435AFBF771EC97176D, 67C1C932A20A92D2D180D6763AC9297FA0B6D4C225501C7739B0B45F52FEC6E1 ] WebClient       C:\WINDOWS\System32\webclnt.dll
19:41:12.0734 0x0bfc  WebClient - ok
19:41:13.0812 0x0bfc  [ 1277059C4F6217675E256CB3E3C08ABA, A13215BEDFF606BE4BBCF02537E357D329D9FC0F0D73A532EC91B26D0B728EE7 ] WebrootSpySweeperService C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
19:41:14.0937 0x0bfc  WebrootSpySweeperService - ok
19:41:14.0984 0x0bfc  winlog - ok
19:41:15.0390 0x0bfc  [ 60AC082B41E60906171335DFBF8C19C0, 2C96A4DE3136452582421C98B242E16322D92BE339CFEEFFA4AD78EF98E72C04 ] winlog.com      C:\WINDOWS\system32\drivers\winlog.com.sys
19:41:15.0406 0x0bfc  winlog.com - ok
19:41:15.0765 0x0bfc  [ F399242A80C4066FD155EFA4CF96658E, DC40735D288193170DAF5571A829702EDC07DDAEA87ECF59490DFB516A690F9B ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
19:41:15.0812 0x0bfc  winmgmt - ok
19:41:16.0000 0x0bfc  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
19:41:16.0015 0x0bfc  WmdmPmSN - ok
19:41:16.0093 0x0bfc  [ BA8CECC3E813E1F7C441B20393D4F86C, E60AC60B67926F61AD872412DC2E096825F97D725B66834328EC3B97F62DBFEA ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:41:16.0187 0x0bfc  WmiApSrv - ok
19:41:16.0265 0x0bfc  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:41:16.0281 0x0bfc  WS2IFSL - ok
19:41:16.0328 0x0bfc  [ 4D59DAA66C60858CDF4F67A900F42D4A, 312DC7D712F0807EBE5B3984E1BC19E7327D6357818D51AEB33058B052AEAA83 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
19:41:16.0390 0x0bfc  wscsvc - ok
19:41:16.0437 0x0bfc  [ D5842484F05E12121C511AA93F6439EC, 531888E914578172534BBC3220A86C99D1FCE423E89834B533E0A79F583436F3 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:41:16.0484 0x0bfc  WSTCODEC - ok
19:41:16.0546 0x0bfc  [ 13D72740963CBA12D9FF76A7F218BCD8, 3E4D0369F85E64FB6E4088753D7654D58900B480BEBF42F3CB6969355CEAC5A8 ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
19:41:16.0562 0x0bfc  wuauserv - ok
19:41:16.0640 0x0bfc  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:41:16.0703 0x0bfc  WudfPf - ok
19:41:16.0750 0x0bfc  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:41:16.0765 0x0bfc  WudfRd - ok
19:41:16.0781 0x0bfc  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
19:41:16.0796 0x0bfc  WudfSvc - ok
19:41:16.0953 0x0bfc  [ 5A91E6FEAB9F901302FA7FF768C0120F, 83A1A719508CB4E504D9A75BBB6FCEA1E15C1EC574B8BD18BA40B2A18EF9918E ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
19:41:17.0000 0x0bfc  WZCSVC - ok
19:41:17.0125 0x0bfc  [ EEF46DAB68229A14DA3D8E73C99E2959, C9D7083BC69E1A4672D06CBD9E4E6FD93C3CA67E28EC040D1CC6AAFBFC825813 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
19:41:17.0187 0x0bfc  xmlprov - ok
19:41:17.0296 0x0bfc  [ E6C22D34BAEF5196E1B23A4492C275B7, 6E4CBF8091DE05DBE7D85423C9AADFF7D0C9C4E1441B271CFB695ADFC3FDEB40 ] {6080A529-897E-4629-A488-ABA0C29B635E} C:\WINDOWS\system32\drivers\ialmsbw.sys
19:41:17.0437 0x0bfc  {6080A529-897E-4629-A488-ABA0C29B635E} - ok
19:41:17.0812 0x0bfc  [ 6E53BD96B0EBAD721CDD6320DBFC3F5F, C6B1060FB79034A3C79539D5879430EC21757096B49BE18E1ADCAD8A5840EC68 ] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} C:\WINDOWS\system32\drivers\ialmkchw.sys
19:41:17.0828 0x0bfc  {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
19:41:18.0000 0x0bfc  [ 1DBBC637A0B33FBD708C8DAC7A78912C, DE7DCEBA1727FC91598D6B995F07B8750991C2208C6EE3EAF59B1CD8D45413F1 ] {E2B953A6-195A-44F9-9BA3-3D5F4E32BB55} C:\WINDOWS\system32\drivers\wA301a.sys
19:41:18.0015 0x0bfc  {E2B953A6-195A-44F9-9BA3-3D5F4E32BB55} - ok
19:41:18.0015 0x0bfc  ================ Scan global ===============================
19:41:18.0093 0x0bfc  [ 00EF9C3AF83EDBAF18CA7A2837750117, 87DB68DC66EADA719411C2B3DB02768C52D61BAA94216FCE9C4EE5C710EE7171 ] C:\WINDOWS\system32\basesrv.dll
19:41:18.0171 0x0bfc  [ 3D21B3BE0C5768E76FD9780E9CF9E07C, A7EECA58ADAF0EDE772C2B404BDB9F4EE9D19CAA5384E41EBF0CCE885A1F8594 ] C:\WINDOWS\system32\winsrv.dll
19:41:18.0218 0x0bfc  [ 3D21B3BE0C5768E76FD9780E9CF9E07C, A7EECA58ADAF0EDE772C2B404BDB9F4EE9D19CAA5384E41EBF0CCE885A1F8594 ] C:\WINDOWS\system32\winsrv.dll
19:41:18.0359 0x0bfc  [ 37561F8D4160D62DA86D24AE41FAE8DE, DDBCAB4992FDD8E75EA3AE96ABA34C20A45B4D997A901B100FDED4C5AFC790EE ] C:\WINDOWS\system32\services.exe
19:41:18.0359 0x0bfc  [ Global ] - ok
19:41:18.0375 0x0bfc  ================ Scan MBR ==================================
19:41:18.0406 0x0bfc  [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk0\DR0
19:41:18.0625 0x0bfc  \Device\Harddisk0\DR0 - ok
19:41:18.0640 0x0bfc  [ E5FA06ACA0D60BA9C870D0EF3D9898C9 ] \Device\Harddisk1\DR6
19:41:18.0640 0x0bfc  \Device\Harddisk1\DR6 - ok
19:41:18.0656 0x0bfc  ================ Scan VBR ==================================
19:41:18.0656 0x0bfc  [ 9413960D7C215D01B0DF7A7716FBF64E ] \Device\Harddisk0\DR0\Partition1
19:41:18.0656 0x0bfc  \Device\Harddisk0\DR0\Partition1 - ok
19:41:18.0671 0x0bfc  [ 4F0F76834874E4FC9BBC2E710B6F14F4 ] \Device\Harddisk1\DR6\Partition1
19:41:18.0687 0x0bfc  \Device\Harddisk1\DR6\Partition1 - ok
19:41:18.0687 0x0bfc  ================ Scan generic autorun ======================
19:41:18.0765 0x0bfc  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] C:\Program Files\Common Files\Real\Update_OB\realsched.exe
19:41:18.0765 0x0bfc  TkBellExe - ok
19:41:18.0843 0x0bfc  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] c:\program files\internet explorer\wmpscfgs.exe
19:41:18.0843 0x0bfc  Adobe_Reader - ok
19:41:19.0078 0x0bfc  [ EAEB2181BFB3CC877B8FA796734D12CA, 6CC8EF3DCEE484FCDD850782921466DF57899E57E40ECF29BC507BA6057C57CD ] C:\DOCUME~1\Mehrdad\LOCALS~1\Temp\wnaemscxro.tmp
19:41:23.0562 0x0bfc  wnaemscxro.tmp - ok
19:41:23.0609 0x0bfc  [ 24232996A38C0B0CF151C2140AE29FC8, D2FED8CCAE118F06FD948A4B12445AA8C29A3E7BB5B6FE90970FBC27F426F0B0 ] C:\WINDOWS\system32\ctfmon.exe
19:41:23.0609 0x0bfc  ctfmon.exe - ok
19:41:23.0718 0x0bfc  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] c:\program files\google\googletoolbarnotifier\googletoolbarnotifier .exe
19:41:23.0734 0x0bfc  swg - ok
19:41:23.0796 0x0bfc  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe
19:41:23.0796 0x0bfc  DW6 - ok
19:41:23.0828 0x0bfc  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] c:\docume~1\mehrdad\locals~1\temp\u5c6lj9                                                                                                                                                                       .exe
19:41:23.0843 0x0bfc  uishf9wuifwuh387fh3wufinhjfdwefe - ok
19:41:23.0890 0x0bfc  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] c:\docume~1\mehrdad\locals~1\temp\rcf                                   .exe
19:41:23.0906 0x0bfc  KOO9RV9K4Z - ok
19:41:23.0937 0x0bfc  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] c:\windows\rtahua    .exe
19:41:26.0343 0x0bfc  SMH2B46TDP - ok
19:41:26.0671 0x0bfc  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] C:\DOCUME~1\Mehrdad\LOCALS~1\Temp\Rcj.exe
19:41:26.0687 0x0bfc  NtWqIVLZEWZU - ok
19:41:26.0765 0x0bfc  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] C:\DOCUME~1\Mehrdad\LOCALS~1\Temp\kdhbahpmr\xilajdfsjmo.exe
19:41:26.0765 0x0bfc  oiknmrdh - ok
19:41:26.0828 0x0bfc  [ 9FD20351EA617F13F1AF2C478F6F2C27, FD92E3F81E3D0A713C58515D28477AA81B94E487F4FCB86F9828D0639E5BEDEC ] C:\WINDOWS\system32\ckvo.exe
19:41:26.0828 0x0bfc  kamsoft - ok
19:41:26.0921 0x0bfc  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] c:\program files\netzero\exec     .exe
19:41:26.0921 0x0bfc  NetZero_uoltray - ok
19:41:27.0000 0x0bfc  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] C:\Program Files\Driver Support\Driver Support\DriverSupport.exe
19:41:27.0000 0x0bfc  Driver Support - ok
19:41:27.0093 0x0bfc  [ 383B71DCB691CCAEEA445ACB9150DDD3, F504F67C3E1921CB72A540FBAF5AE558661D00B226D317F62D0B05B8D117A80F ] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
19:41:27.0109 0x0bfc  TOSCDSPD - ok
19:41:27.0125 0x0bfc  [ 24232996A38C0B0CF151C2140AE29FC8, D2FED8CCAE118F06FD948A4B12445AA8C29A3E7BB5B6FE90970FBC27F426F0B0 ] C:\WINDOWS\system32\ctfmon.exe
19:41:27.0140 0x0bfc  ctfmon.exe - ok
19:41:27.0375 0x0bfc  [ 74E6E96C6F0E2ECA4EDBB7F7A468F259, 58D083FE62A47860DE7E4D87EC74F1E900C1B1824A3E8C2B94CE07936AF0D0D1 ] C:\Program Files\Messenger\msmsgs.exe
19:41:27.0468 0x0bfc  MSMSGS - ok
19:41:30.0218 0x0bfc  AV detected via SS1: Spy Sweeper with AntiVirus, 5.3.2.2361, disabled, outofdate
19:41:30.0218 0x0bfc  AV detected via SS1: Eset NOD32 antivirus system 2.50, 2.50, enabled, outofdate
19:41:30.0578 0x0bfc  ============================================================
19:41:30.0578 0x0bfc  Scan finished
19:41:30.0578 0x0bfc  ============================================================
19:41:30.0640 0x0b94  Detected object count: 1
19:41:30.0640 0x0b94  Actual detected object count: 1
19:42:25.0703 0x0b94  C:\WINDOWS\system32\DRIVERS\compbatt.sys - copied to quarantine
19:43:06.0046 0x0b94  \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
19:43:06.0156 0x0b94  \Device\Harddisk0\DR0\TDLFS\tdl - copied to quarantine
19:43:06.0312 0x0b94  \Device\Harddisk0\DR0\TDLFS\rsrc.dat - copied to quarantine
19:43:06.0734 0x0b94  \Device\Harddisk0\DR0\TDLFS\tdlcmd.dll - copied to quarantine
19:43:06.0781 0x0b94  \Device\Harddisk0\DR0\TDLFS\data.db - copied to quarantine
19:43:06.0796 0x0b94  \Device\Harddisk0\DR0\TDLFS\data.js - copied to quarantine
19:43:06.0796 0x0b94  Compbatt ( Rootkit.Win32.TDSS.tdl3 ) - User select action: Quarantine
 

 

 

Thanks,

Link to post
Share on other sites

Combofix

Download ComboFix from one of these locations:

Link 1
Link 2


* IMPORTANT- Save ComboFix.exe to your Desktop

====================================================


Disable your AntiVirus and AntiSpyware applications as they will interfere with our tools and the removal. If you are unsure how to do this, please refer to our sticky topic How to disable your security applications


====================================================


Double click on ComboFix.exe & follow the prompts.

  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.


**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.


RC_update.png


Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:


cfRC_screen_2.png


Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply for further review.

Link to post
Share on other sites

Hello, please see below,

 

19:44:51.0609 0x09fc  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
19:44:59.0421 0x09fc  ============================================================
19:44:59.0421 0x09fc  Current date / time: 2014/07/16 19:44:59.0421
19:44:59.0421 0x09fc  SystemInfo:
19:44:59.0421 0x09fc 
19:44:59.0421 0x09fc  OS Version: 5.1.2600 ServicePack: 2.0
19:44:59.0421 0x09fc  Product type: Workstation
19:44:59.0421 0x09fc  ComputerName: MATTHEW
19:44:59.0421 0x09fc  UserName: Mehrdad
19:44:59.0421 0x09fc  Windows directory: C:\WINDOWS
19:44:59.0421 0x09fc  System windows directory: C:\WINDOWS
19:44:59.0421 0x09fc  Processor architecture: Intel x86
19:44:59.0421 0x09fc  Number of processors: 1
19:44:59.0421 0x09fc  Page size: 0x1000
19:44:59.0421 0x09fc  Boot type: Normal boot
19:44:59.0421 0x09fc  ============================================================
19:45:05.0125 0x09fc  KLMD registered as C:\WINDOWS\system32\drivers\98322826.sys
19:45:06.0656 0x09fc  System UUID: {DFEC0772-738B-F7C5-8711-D930F819E858}
19:45:07.0718 0x09fc  Drive \Device\Harddisk0\DR0 - Size: 0xDF8F90000 ( 55.89 Gb ), SectorSize: 0x200, Cylinders: 0x1C80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000044
19:45:07.0750 0x09fc  Drive \Device\Harddisk1\DR10 - Size: 0x3EF40000 ( 0.98 Gb ), SectorSize: 0x200, Cylinders: 0x80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:45:07.0750 0x09fc  ============================================================
19:45:07.0750 0x09fc  \Device\Harddisk0\DR0:
19:45:07.0750 0x09fc  MBR partitions:
19:45:07.0750 0x09fc  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x6FC7C41
19:45:07.0750 0x09fc  \Device\Harddisk1\DR10:
19:45:07.0750 0x09fc  MBR partitions:
19:45:07.0750 0x09fc  \Device\Harddisk1\DR10\Partition1: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x1F79E0
19:45:07.0750 0x09fc  ============================================================
19:45:07.0796 0x09fc  C: <-> \Device\Harddisk0\DR0\Partition1
19:45:07.0796 0x09fc  ============================================================
19:45:07.0796 0x09fc  Initialize success
19:45:07.0796 0x09fc  ============================================================
19:45:29.0078 0x0fb8  ============================================================
19:45:29.0078 0x0fb8  Scan started
19:45:29.0078 0x0fb8  Mode: Manual;
19:45:29.0078 0x0fb8  ============================================================
19:45:29.0078 0x0fb8  KSN ping started
19:45:29.0375 0x0fb8  KSN ping finished: false
19:45:32.0328 0x0fb8  ================ Scan system memory ========================
19:45:32.0343 0x0fb8  System memory - ok
19:45:32.0343 0x0fb8  ================ Scan services =============================
19:45:32.0468 0x0fb8  Abiosdsk - ok
19:45:32.0484 0x0fb8  abp480n5 - ok
19:45:32.0562 0x0fb8  [ A10C7534F7223F4A73A948967D00E69B, EBF46FBB4C7C04433E91D95A079354E51A40CC05EAA00A86DEE261AFA81162FC ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:45:32.0578 0x0fb8  ACPI - ok
19:45:32.0734 0x0fb8  [ 9859C0F6936E723E4892D7141B1327D5, 5E8F6A2FC4DF2E5E92A1D66ECC2810E08B42B64E9CD0DF4AD3F78EA8558B90AF ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
19:45:32.0734 0x0fb8  ACPIEC - ok
19:45:32.0781 0x0fb8  [ 84F21F6572D0AFE02074291F6CEABBDB, CFF7D29720E5A22E841A8D9CB386A718526916B7C07BACA62B86B410D5098464 ] ACS             C:\WINDOWS\system32\ACS.exe
19:45:32.0781 0x0fb8  ACS - ok
19:45:32.0890 0x0fb8  [ 5DDC0A8D2CD60BDA593DDAF45821CE08, 5A1599702C132C71F043576F50A4115647754FA5F7A01D17B72E147958A06383 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
19:45:32.0906 0x0fb8  Adobe LM Service - ok
19:45:32.0921 0x0fb8  adpu160m - ok
19:45:32.0984 0x0fb8  [ 1EE7B434BA961EF845DE136224C30FEC, 0216D2277B6B4AB9B0E47E093CEEAC2030EFB4B87BA048EA730E40119AA06444 ] aec             C:\WINDOWS\system32\drivers\aec.sys
19:45:33.0000 0x0fb8  aec - ok
19:45:33.0046 0x0fb8  [ 55E6E1C51B6D30E54335750955453702, 49BE694FB65F195A65EC631558BA599345C6641A6A5AA2F1053611B715F4677A ] AFD             C:\WINDOWS\System32\drivers\afd.sys
19:45:33.0062 0x0fb8  AFD - ok
19:45:33.0109 0x0fb8  [ 0EBB674888CBDEFD5773341C16DD6A07, EC87828DBD4E11079C1E7296EEC568917A7B4052AA3EFFA402DD5FAA7E45741D ] AFS2K           C:\WINDOWS\system32\drivers\AFS2K.sys
19:45:33.0109 0x0fb8  AFS2K - ok
19:45:33.0281 0x0fb8  [ 052343CD49C8DA20C48958CFE73C7D44, 583FC6167A3F489A02AA917078F4C4F2C7097AD82FAB7906FDBC59B408AFB078 ] AgereSoftModem  C:\WINDOWS\system32\DRIVERS\AGRSM.sys
19:45:33.0359 0x0fb8  AgereSoftModem - ok
19:45:33.0453 0x0fb8  [ 2C428FA0C3E3A01ED93C9B2A27D8D4BB, A11AA25C0FF052578AE342717C85AED26B79CCE39040C42C69105868F6059A34 ] agp440          C:\WINDOWS\system32\DRIVERS\agp440.sys
19:45:33.0468 0x0fb8  agp440 - ok
19:45:33.0484 0x0fb8  Aha154x - ok
19:45:33.0500 0x0fb8  aic78u2 - ok
19:45:33.0515 0x0fb8  aic78xx - ok
19:45:33.0718 0x0fb8  [ BA88534A3CEB6161E7432438B9EA4F54, 223ACEB51548220155FD80594294B9AF6942757D2573E621325DBD4679DDB56C ] ALCXSENS        C:\WINDOWS\system32\drivers\ALCXSENS.SYS
19:45:33.0734 0x0fb8  ALCXSENS - ok
19:45:34.0031 0x0fb8  [ 5FF6F7E58C798F1474C0BBFFC23CB78D, FFBEC4299A652EFFA577B8FFD11EBF56B9BDCD93AE3105FE69C2CEBF5A6F1AF4 ] ALCXWDM         C:\WINDOWS\system32\drivers\ALCXWDM.SYS
19:45:34.0062 0x0fb8  ALCXWDM - ok
19:45:34.0203 0x0fb8  [ C7AE0FD3867DB0D42B03B73C18F3D671, 13AE5D3DD13BC4C0EAB234FC3F87DA918793CE317A07EE37F107C8C6104E0BA9 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
19:45:34.0203 0x0fb8  Alerter - ok
19:45:34.0250 0x0fb8  [ F1958FBF86D5C004CF19A5951A9514B7, E8DF2330D48E9BF97A7061A84E42CCB2AD197C90FECB56150FB573B4D0C62883 ] ALG             C:\WINDOWS\System32\alg.exe
19:45:34.0265 0x0fb8  ALG - ok
19:45:34.0281 0x0fb8  AliIde - ok
19:45:34.0375 0x0fb8  [ 979FEF635831C88BCFCBB2EAA250E340, 7C4D694B693AB0528273BF81EBB5348A71239661DDE95E34477C134ADFCA43F7 ] AMON            C:\WINDOWS\system32\drivers\amon.sys
19:45:34.0406 0x0fb8  AMON - ok
19:45:34.0468 0x0fb8  amsint - ok
19:45:34.0515 0x0fb8  [ 3ED81E8B4709D13E5A38DB2D8E792B28, 6F3AD36140496C5F2EC20F06F70B6C37040D0B8D2254098075B31D39C4DBCF03 ] ApfiltrService  C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
19:45:34.0531 0x0fb8  ApfiltrService - ok
19:45:34.0546 0x0fb8  AppMgmt - ok
19:45:34.0625 0x0fb8  [ 466708AE500E11CFA56483EE7FB9AD11, D45BD0B2D05184A7326873410543BC1E71DC29BEDD748CEEEB2F16CC3EAA8465 ] AR5211          C:\WINDOWS\system32\DRIVERS\ar5211.sys
19:45:34.0656 0x0fb8  AR5211 - ok
19:45:34.0703 0x0fb8  [ F0D692B0BFFB46E30EB3CEA168BBC49F, 745BE951F18C90FCD30C9A59BB861375C29FA49AF38D27EBFE4158FB7CAC86ED ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
19:45:34.0718 0x0fb8  Arp1394 - ok
19:45:34.0734 0x0fb8  asc - ok
19:45:34.0750 0x0fb8  asc3350p - ok
19:45:34.0765 0x0fb8  asc3550 - ok
19:45:34.0953 0x0fb8  [ 4EABF511B1AF176A971C3271E48FA3A8, D9F5A700BDC670CD59BFCBFC45F7F90D63F46B9B86AA129B8A18C0066F2A07A0 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:45:35.0031 0x0fb8  aspnet_state - ok
19:45:35.0062 0x0fb8  [ 02000ABF34AF4C218C35D257024807D6, FDE21F7FCB198A44A6F2BCAF5EB11C9D90A094B4A2F8C307244A7655848954DA ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:45:35.0062 0x0fb8  AsyncMac - ok
19:45:35.0140 0x0fb8  [ 3938C5FEE8704A29C98F6F9442073BF2, EF5B93EEBC177E6399DF07C8E7CAD641A3311C631368505F57C48F53430DD758 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
19:45:35.0140 0x0fb8  atapi - ok
19:45:35.0156 0x0fb8  Atdisk - ok
19:45:35.0250 0x0fb8  [ 5CCA7DF290D82D1048F217E3C6272384, 1759945BB320536CE8C562DBFF2B1F620EB155944C40E3A75850E7E13BC949F2 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
19:45:35.0265 0x0fb8  Ati HotKey Poller - ok
19:45:35.0390 0x0fb8  [ 5E3603E9FBA29E01F5FFC108276B3005, 531202BD13F8559F0E50C9D0DFA9E12A9B86FEBD724B68F3FEEC3B1875664194 ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
19:45:35.0437 0x0fb8  ati2mtag - ok
19:45:35.0531 0x0fb8  [ EC88DA854AB7D7752EC8BE11A741BB7F, 91FAF224CB4B44608C85CC25C3A82A3EC83F379D14A119A60A75505A30043255 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:45:35.0546 0x0fb8  Atmarpc - ok
19:45:35.0750 0x0fb8  [ DB66DB626E4882EBEF55F136F12C1829, E4FA63031E8FCF456D45160C29ADD0989355D5C5C8E17C949C278421D41DAB62 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
19:45:35.0765 0x0fb8  AudioSrv - ok
19:45:35.0890 0x0fb8  [ D9F724AA26C010A217C97606B160ED68, 329B5118F2409731D06FDAE85B6ADD64A048292801BCB3546651CEB303111695 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
19:45:35.0890 0x0fb8  audstub - ok
19:45:35.0937 0x0fb8  [ DA1F27D85E0D1525F6621372E7B685E9, 5A81A46A3BDD19DAFC6C87D277267A5D44F3A1B5302F2CC1111D84B7BAD5610D ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
19:45:35.0953 0x0fb8  Beep - ok
19:45:36.0062 0x0fb8  [ 2C69EC7E5A311334D10DD95F338FCCEA, 3A4335B8D723311F66FA2A30972C65EEED63161D6A2B4ABD6FCF1C374083BC0F ] BITS            C:\WINDOWS\system32\qmgr.dll
19:45:36.0093 0x0fb8  BITS - ok
19:45:36.0156 0x0fb8  [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8, DDFCCB3BC9A840ED0D6FC4B46086AD15AAF9D0D9AB8ED3A7B8860A1DA4D33970 ] Browser         C:\WINDOWS\System32\browser.dll
19:45:36.0156 0x0fb8  Browser - ok
19:45:36.0218 0x0fb8  [ 90A673FC8E12A79AFBED2576F6A7AAF9, BDE7858A3457DB979FEDD8577FA6321BF72848E4A7BF9F173C78A6A10CBB3EBE ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
19:45:36.0234 0x0fb8  cbidf2k - ok
19:45:36.0265 0x0fb8  [ 6163ED60B684BAB19D3352AB22FC48B2, 5A7ED636D8B2178EA21FA986CC9168DEF258AA4FFB9DCD792A81A1D615AC5D5E ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:45:36.0265 0x0fb8  CCDECODE - ok
19:45:36.0296 0x0fb8  cd20xrnt - ok
19:45:36.0312 0x0fb8  cdadyej - ok
19:45:36.0359 0x0fb8  [ C1B486A7658353D33A10CC15211A873B, AA4DD9E7AAE5AAB1146B360B17001F975D2F29A1281CF7B13E7136480410F347 ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
19:45:36.0359 0x0fb8  Cdaudio - ok
19:45:36.0390 0x0fb8  [ CD7D5152DF32B47F4E36F710B35AAE02, 7382890CC1B27FC66C3E94E064562BBD87B3C75577CB0FD10860B8E2CE07D12E ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
19:45:36.0406 0x0fb8  Cdfs - ok
19:45:36.0453 0x0fb8  [ C269488C6432B58922C5A3A5FA6EE119, E1326900DD949F08104840C492A2622185E5BBDF0A06EA4E9397096B854F3366 ] Cdr4_xp         C:\WINDOWS\system32\drivers\Cdr4_xp.sys
19:45:36.0468 0x0fb8  Cdr4_xp - ok
19:45:36.0500 0x0fb8  [ BACED3E0135A880D5249B09000AEE285, E5616D61016319F6A509DC423B44DF1B0EE60AEC6BB254EE03BF947D084397DB ] Cdralw2k        C:\WINDOWS\system32\drivers\Cdralw2k.sys
19:45:36.0515 0x0fb8  Cdralw2k - ok
19:45:36.0562 0x0fb8  [ AF9C19B3100FE010496B1A27181FBF72, 64E9E4461F631EED2B2A1FC80DCC9C31DCECB5738289D322E6A6428C840DC621 ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:45:36.0578 0x0fb8  Cdrom - ok
19:45:36.0671 0x0fb8  [ 003F755C884B6C61FAFD371E01609976, 6A81DA646E50F43C08D386CCA444580E9E983C1623498385D702261727714E9F ] CeEPwrSvc       C:\Program Files\Toshiba\Power Management\CeEPwrSvc.exe
19:45:36.0687 0x0fb8  CeEPwrSvc - ok
19:45:36.0765 0x0fb8  [ 527235C8109BF5D4DBDA7D1948648C46, 1EB7CD4EC8A068CE0D3696126EF656D52B6137B39E5F12A975FEC2D04B5E1B39 ] CFSvcs          C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
19:45:36.0765 0x0fb8  CFSvcs - ok
19:45:36.0781 0x0fb8  Changer - ok
19:45:36.0828 0x0fb8  [ 3192BD04D032A9C4A85A3278C268A13A, 7844F229916A9BC8670D3CCF80AD674C626EC6DD9D741FF10986E67F6AFD8757 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
19:45:36.0843 0x0fb8  CiSvc - ok
19:45:36.0906 0x0fb8  [ C8DEC22C4137D7A90F8BDF41CA4B82AE, 92CE7B388236DBC196C92AE9929433C0F1E045EA5DB86802EF8C6041B56FE81F ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
19:45:36.0906 0x0fb8  ClipSrv - ok
19:45:37.0000 0x0fb8  [ 234B1BC2796483E1F5C3F26649FB3388, F412B31340B11418698F263A60C78CB086F3D973EDA0C15DF12331971EB3C9DC ] clr_optimization_v2.0.50727_32 c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:45:37.0250 0x0fb8  clr_optimization_v2.0.50727_32 - ok
19:45:37.0328 0x0fb8  [ 4266BE808F85826AEDF3C64C1E240203, D1EF8B2C35C21BA122C44F8C55F57B2FA36D37B08A15CFCCE085A4810FAC1FF9 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
19:45:37.0343 0x0fb8  CmBatt - ok
19:45:37.0359 0x0fb8  CmdIde - ok
19:45:37.0375 0x0fb8  [ 428E7C7885E1C56749D85738E12E35F6, D70C82072E7DEB13BA1A30DB24AB3D46FC10D47F401E8777BEEA02FA5EB76309 ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
19:45:37.0375 0x0fb8  Suspicious file ( Forged ): C:\WINDOWS\system32\DRIVERS\compbatt.sys. Real md5: 428E7C7885E1C56749D85738E12E35F6, sha256: D70C82072E7DEB13BA1A30DB24AB3D46FC10D47F401E8777BEEA02FA5EB76309, fake md5: DF1B1A24BF52D0EBC01ED4ECE8979F50, fake sha256: 78C5E7BE2FFA6A0709F3095AB006C86E3991AFC9E9B5ABEC94C3E8DF2EA2169D
19:45:37.0375 0x0fb8  Compbatt - detected Rootkit.Win32.TDSS.tdl3 ( 0 )
19:45:37.0375 0x0fb8  Compbatt ( Rootkit.Win32.TDSS.tdl3 ) - infected
19:45:37.0375 0x0fb8  Force sending object to P2P due to detect: Compbatt
19:45:37.0390 0x0fb8  Object send P2P result: false
19:45:37.0406 0x0fb8  COMSysApp - ok
19:45:37.0531 0x0fb8  Cpqarray - ok
19:45:38.0000 0x0fb8  cpuz134 - ok
19:45:38.0078 0x0fb8  [ 10654F9DDCEA9C46CFB77554231BE73B, 4EEAF6523941228FC440E9EA758545E2F2A2DD98565F90B5351EF2C9B82139ED ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
19:45:38.0078 0x0fb8  CryptSvc - ok
19:45:38.0093 0x0fb8  dac2w2k - ok
19:45:38.0109 0x0fb8  dac960nt - ok
19:45:38.0187 0x0fb8  [ 01095FEBF33BEEA00C2A0730B9B3EC28, 563B1ECFA587C00F98C2ECDDB36A04F8FA3F2B7B6C941DBADF4AA1B1EA052C07 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
19:45:38.0218 0x0fb8  DcomLaunch - ok
19:45:38.0265 0x0fb8  [ EF545E1A4B043DA4C84E230DD471C55F, AD96922E58E8146F03E719D3A5CAAD677CAF3B7B525599F1B32F01BF72CCAFA4 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
19:45:38.0281 0x0fb8  Dhcp - ok
19:45:38.0312 0x0fb8  [ 00CA44E4534865F8A3B64F7C0984BFF0, 3FD73CCD9892F6CFEE776CB384C2E35FA15F4101D308A67E1358F85299501E3D ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
19:45:38.0328 0x0fb8  Disk - ok
19:45:38.0500 0x0fb8  [ E73B3A5337EA55C2BAE2A1A0CAF7A728, E8977A92DA89942EF0ABCD842E38A4A0A1D1D5C8A1ECCB83D47D8127102CF8AC ] DKbFltr         C:\WINDOWS\system32\Drivers\DKbFltr.sys
19:45:38.0531 0x0fb8  DKbFltr - ok
19:45:38.0562 0x0fb8  dmadmin - ok
19:45:38.0843 0x0fb8  [ C0FBB516E06E243F0CF31F597E7EBF7D, 1FC205AC5D8D6BDA176438CEBFAC92CD4DEF50A6C1EBDCBCE2B149FF08D40032 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
19:45:38.0937 0x0fb8  dmboot - ok
19:45:39.0156 0x0fb8  [ F5E7B358A732D09F4BCF2824B88B9E28, 97B8317354659EFBA076E20AF20741C9FBC0961723483514E43D7EC6D66186C3 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
19:45:39.0203 0x0fb8  dmio - ok
19:45:39.0265 0x0fb8  [ E9317282A63CA4D188C0DF5E09C6AC5F, D41E002F555FE9015EF620975255F58BB79198CA1FF0E09EC950CB450FF77CF7 ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
19:45:39.0296 0x0fb8  dmload - ok
19:45:39.0421 0x0fb8  [ 1639D9964C9E1B2ECCA95C8217D3E70D, A42E985697E673B89F5BD314BA9FE93A1CD8DDEBC6312AD52E196BFDFFA9E513 ] dmserver        C:\WINDOWS\System32\dmserver.dll
19:45:39.0453 0x0fb8  dmserver - ok
19:45:39.0593 0x0fb8  [ A6F881284AC1150E37D9AE47FF601267, 6C07654CF21637E527FC727EB50F4138BF0EFF0680000AC94001063B436389DB ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
19:45:39.0593 0x0fb8  DMusic - ok
19:45:39.0656 0x0fb8  [ AAC8FFBFD61E784FA3BAC851D4A0BD5F, F811288AC18DB28D9577EA9B40810DE000FC28EF234D1A790DD0578E0D565EBC ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
19:45:39.0703 0x0fb8  Dnscache - ok
19:45:39.0718 0x0fb8  dpti2o - ok
19:45:39.0750 0x0fb8  [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E, B941AB5D9D504486083E0D1539B1A96E27721C9EFD7A67CA1DB7258B0D33AB78 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
19:45:39.0750 0x0fb8  drmkaud - ok
19:45:39.0828 0x0fb8  [ AB500A0C62174F6E3DE1ED90DA5CD9E0, F998EDCDF98C6C99655AC5DD513E014DC58C354E5126F54351B47CD1F9B34EC7 ] drvmcdb         C:\WINDOWS\system32\drivers\drvmcdb.sys
19:45:39.0828 0x0fb8  drvmcdb - ok
19:45:39.0890 0x0fb8  [ B295700E684ED1984DB1D6BE40354421, 946743E300B9DBB0883F28F69B6BA2A04CA17D298E21A868B0F9DA5A5ADDF59C ] drvnddm         C:\WINDOWS\system32\drivers\drvnddm.sys
19:45:39.0906 0x0fb8  drvnddm - ok
19:45:39.0984 0x0fb8  [ 77C4901986FC7A83E853B300E80D234B, 82285FBCA1E0C5FE69A08470991413FBA0B3B0767A0722C5E6B9A2467AABB0A6 ] DVD-RAM_Service C:\WINDOWS\system32\DVDRAMSV.exe
19:45:40.0000 0x0fb8  DVD-RAM_Service - ok
19:45:40.0015 0x0fb8  DW - ok
19:45:40.0109 0x0fb8  [ 732AB6D2FC7F2AFEBC4A9D2750655B7F, 403CF489872D75E2ADF18E848ADE106BB7529B64B2A5118F243922EC7BA41F88 ] dwusbdnt        C:\WINDOWS\system32\DRIVERS\dwusbdnt.sys
19:45:40.0140 0x0fb8  dwusbdnt - ok
19:45:40.0218 0x0fb8  [ 6428A1CE5ABE3E71A97DFDDA0A19546F, 43781C819333F42170D377DC939C89A976563F6BE9FB74005553BFBCC3EE79E5 ] EMSCR           C:\WINDOWS\system32\DRIVERS\EMS7SK.sys
19:45:40.0234 0x0fb8  EMSCR - ok
19:45:40.0312 0x0fb8  [ 0B07768AE046F9ED6A75E5BC75660828, 0802407B7A1DB6493AEFD9509B95BB55142CB195A4E22FC9BD8F65A064D64320 ] EPOWER          C:\WINDOWS\system32\Drivers\hkdrv.sys
19:45:40.0312 0x0fb8  EPOWER - ok
19:45:40.0406 0x0fb8  [ 67DFF7BBBD0E80AAB7B3CF061448DB8A, 305F39E4D18DC079E48578C31AE87BA1D0D781A2613BD5DA4689AC6F2794D326 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
19:45:40.0406 0x0fb8  ERSvc - ok
19:45:40.0453 0x0fb8  [ 6CDEC6BD22234133ADE3C784373C1177, 5D3A0C92A0537B7D3FDA5ADB811EDBA010BEF86DBDA34BF268C4DB051CB5AFA9 ] ESDCR           C:\WINDOWS\system32\DRIVERS\ESD7SK.sys
19:45:40.0484 0x0fb8  ESDCR - ok
19:45:40.0562 0x0fb8  [ BB3A330C759B5833914C346019C05A0B, 9A255BFDADBB585CBEB535F21ED87944E49448DB299332DB35ABEC246CF29798 ] ESMCR           C:\WINDOWS\system32\DRIVERS\ESM7SK.sys
19:45:40.0609 0x0fb8  ESMCR - ok
19:45:40.0656 0x0fb8  [ 37561F8D4160D62DA86D24AE41FAE8DE, DDBCAB4992FDD8E75EA3AE96ABA34C20A45B4D997A901B100FDED4C5AFC790EE ] Eventlog        C:\WINDOWS\system32\services.exe
19:45:40.0656 0x0fb8  Eventlog - ok
19:45:40.0703 0x0fb8  [ 60D1A6342238378BFB7545C81EE3606C, 40186F096F2AC3E5E12D0B8713A08E449D5F23DCD1C0EEFC3FA82002CA1B030F ] EventSystem     C:\WINDOWS\system32\es.dll
19:45:40.0718 0x0fb8  EventSystem - ok
19:45:40.0796 0x0fb8  [ 3117F595E9615E04F05A54FC15A03B20, 4708E8F1CDE6E9663B5DBEBAB8C684B16E45D41AEF20E4071D0A2931B305BD76 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
19:45:40.0796 0x0fb8  Fastfat - ok
19:45:40.0859 0x0fb8  [ 6815DEF9B810AEFAC107EEAF72DA6F82, 0132004894326B54D1B8AD2C31FB8BDE45EA66DB9962C0CE1207941A13630896 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
19:45:40.0875 0x0fb8  FastUserSwitchingCompatibility - ok
19:45:41.0015 0x0fb8  [ FCBD571FA0EE8DC238944AE5FAB74461, D083D2FE0A526814DD5F82E673AE0847BFCBE77B54CB4BA3190B7937F288F2FD ] Fax             C:\WINDOWS\system32\fxssvc.exe
19:45:41.0078 0x0fb8  Fax - ok
19:45:41.0328 0x0fb8  [ CED2E8396A8838E59D8FD529C680E02C, 8542AE6A2D65D3F843EA70F5FFBC150B773C5CFA3FE6388FA68A95416FAD0F6E ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
19:45:41.0343 0x0fb8  Fdc - ok
19:45:41.0484 0x0fb8  [ E153AB8A11DE5452BCF5AC7652DBF3ED, AEB48687C604B0CDE5F1A13C2EC854CFFBE1CE0837C3898D6D4C6B71265D0ED0 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
19:45:41.0500 0x0fb8  Fips - ok
19:45:41.0531 0x0fb8  [ 0DD1DE43115B93F4D85E889D7A86F548, D50F7AAE5416C6D41845960BDDA24E97226F609AA726E4F88601ADC9ED50E872 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
19:45:41.0531 0x0fb8  Flpydisk - ok
19:45:41.0578 0x0fb8  [ 3D234FB6D6EE875EB009864A299BEA29, 9FEB003BDE7900AECDE9F9FFE0ECD7079B460714B582B7EB8EDB89E7F4D1FE59 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:45:41.0593 0x0fb8  FltMgr - ok
19:45:41.0656 0x0fb8  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A, EC635E071201A766845D48973772CBE0958942B4162F3F5F70660D114CC877E0 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:45:41.0687 0x0fb8  Fs_Rec - ok
19:45:41.0734 0x0fb8  [ 6AC26732762483366C3969C9E4D2259D, FF2C9A23CC17F380093F0BEA955B1925794271C2FEA16B9B7639668E6999BAE3 ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:45:41.0765 0x0fb8  Ftdisk - ok
19:45:41.0796 0x0fb8  [ C0F1D4A21DE5A415DF8170616703DEBF, 3E21AAD06CF6EB95662B568671B1DBD129CED481761BCDB67088E965E5C0BC5B ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:45:41.0812 0x0fb8  Gpc - ok
19:45:41.0984 0x0fb8  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
19:45:42.0046 0x0fb8  gupdate - ok
19:45:42.0078 0x0fb8  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
19:45:42.0078 0x0fb8  gupdatem - ok
19:45:42.0296 0x0fb8  [ 5467F1FF0AF264566740F67E8B810735, E93330A8A1C0CBBEA44D13C321BE8CBB6A409CE3477F8E77FC012795A32C52D1 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:45:42.0359 0x0fb8  gusvc - ok
19:45:42.0546 0x0fb8  [ 8827911A8C37E40C027CBFC88E69D967, ED381F089E6143896B890BD5450FFFB271FC68983412376F54869A93F9D7DA9D ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:45:42.0781 0x0fb8  helpsvc - ok
19:45:42.0890 0x0fb8  [ 9376E6893E52B368ABC6255BF54F0B28, D3E6B03145988BC80A1F62E5E312BB060E062118B12D30F27C8A432D30962E58 ] HidServ         C:\WINDOWS\System32\hidserv.dll
19:45:42.0984 0x0fb8  HidServ - ok
19:45:43.0328 0x0fb8  [ 1DE6783B918F540149AA69943BDFEBA8, 6ED28109CA0A7738857D840E369EAB91C1605F2643950762D327CCE241C135A1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:45:43.0468 0x0fb8  HidUsb - ok
19:45:43.0484 0x0fb8  hpn - ok
19:45:43.0875 0x0fb8  [ CE0FCEC4D4D860F36D972759B11EAF0F, 81F9E391A71D9FB9DD41BC35BD5136B3A851C231BE5A6E936B84E49CDAAF0B67 ] hpqcxs08        C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqcxs08.dll
19:45:43.0968 0x0fb8  hpqcxs08 - ok
19:45:44.0109 0x0fb8  [ 7DA3211AC63EDD90B8ECA1CA1ABFD43B, D3D1EA40833157386E83EAC3B730E043BE0ED831106972625E285263ADB968C3 ] hpqddsvc        C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqddsvc.dll
19:45:44.0125 0x0fb8  hpqddsvc - ok
19:45:44.0328 0x0fb8  [ 14229263AA19C704E0D6D2E7404A8455, 510FEB21B9FA66AA60A2800865EF98AE80658A5965C8CEDCAE3B7B5E670F50B0 ] HPSLPSVC        C:\Program Files\Hewlett-Packard\Digital Imaging\bin\HPSLPSVC32.DLL
19:45:44.0437 0x0fb8  HPSLPSVC - ok
19:45:44.0515 0x0fb8  [ D03D10F7DED688FECF50F8FBF1EA9B8A, C19A733571BA831E24EE45EDB730FFFDBA22638F138A32A794BEAB8D8B71D8DD ] HPZid412        C:\WINDOWS\system32\DRIVERS\HPZid412.sys
19:45:44.0531 0x0fb8  HPZid412 - ok
19:45:44.0562 0x0fb8  [ 89F41658929393487B6B7D13C8528CE3, 5D06A11225A83F3F33417148BE53654080C88BFA876FEB486A7E43410AC99F23 ] HPZipr12        C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
19:45:44.0562 0x0fb8  HPZipr12 - ok
19:45:44.0656 0x0fb8  [ ABCB05CCDBF03000354B9553820E39F8, 6361B5A57CDE23AC5E987ACECF3BEE7AD51134C6E5BF4F833E512C9BC4B86877 ] HPZius12        C:\WINDOWS\system32\DRIVERS\HPZius12.sys
19:45:44.0703 0x0fb8  HPZius12 - ok
19:45:44.0859 0x0fb8  [ 9F8B0F4276F618964FD118BE4289B7CD, 5E72367D731A99D3E13004D7070494365E2DBD4D8134445F35E889D9E046BBA7 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
19:45:44.0875 0x0fb8  HTTP - ok
19:45:44.0921 0x0fb8  [ 064D8581ADF77C25133E7D751D917D83, E8623C32E48D3E7A0179C8333C14D8A051C9F7300D0F465E94184F1C75E13A0F ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
19:45:44.0968 0x0fb8  HTTPFilter - ok
19:45:44.0984 0x0fb8  i2omgmt - ok
19:45:45.0000 0x0fb8  i2omp - ok
19:45:45.0093 0x0fb8  [ 5502B58EEF7486EE6F93F3F164DCB808, 7E56E49D6444F2F48037B859B491DF95E1C90EC7ED4EF9C477CD2C49783E62E0 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
19:45:45.0109 0x0fb8  i8042prt - ok
19:45:45.0187 0x0fb8  [ 537EFE2F9ADCD01073F59E9D3D24164E, 24633A9549AC16250E69CE45C0E2F2EBC64D20EC5EDD0AD51756BFAD0A8B9387 ] ialm            C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
19:45:45.0375 0x0fb8  ialm - ok
19:45:45.0656 0x0fb8  [ DAF66902F08796F9C694901660E5A64A, F4A4764DED05980426BAB54AAF040BC27A39C80315F5161E8D0B4C7F694BD8E6 ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
19:45:45.0687 0x0fb8  IDriverT - ok
19:45:45.0750 0x0fb8  [ F8AA320C6A0409C0380E5D8A99D76EC6, A848B9C489DDFBD48BDA140CB9DD43097686115042745F6444F803739168D391 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
19:45:45.0765 0x0fb8  Imapi - ok
19:45:45.0906 0x0fb8  [ FA788520BCAC0F5D9D5CDE5615C0D931, 7C70D1875B302CABC809627212E33CDD56F12B169EA548F1C94ECF2D14236514 ] ImapiService    C:\WINDOWS\system32\imapi.exe
19:45:45.0937 0x0fb8  ImapiService - ok
19:45:45.0953 0x0fb8  ini910u - ok
19:45:46.0015 0x0fb8  [ 2D722B2B54AB55B2FA475EB58D7B2AAD, 1D4BB8F3ABA0EE51EE9F398E383621882189ABCA63D7F0D8A16581AFD1A85553 ] IntelIde        C:\WINDOWS\system32\DRIVERS\intelide.sys
19:45:46.0031 0x0fb8  IntelIde - ok
19:45:46.0078 0x0fb8  [ 279FB78702454DFF2BB445F238C048D2, 51A559AD7C9CAA8BD60D4E167E850B978083FAE9C5632E47D13B1092B56FD0BA ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:45:46.0078 0x0fb8  intelppm - ok
19:45:46.0140 0x0fb8  [ 4448006B6BC60E6C027932CFC38D6855, C377235EBE475C281ACB6A3267F12D8FE623433F05134A6CE50562414F94D7B1 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:45:46.0156 0x0fb8  Ip6Fw - ok
19:45:46.0265 0x0fb8  [ 731F22BA402EE4B62748ADAF6363C182, 5C3BEBD008A5BE4DC2F92076FF41A10DDC01E10EC7E6552213CFA11970811848 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:45:46.0265 0x0fb8  IpFilterDriver - ok
19:45:46.0296 0x0fb8  [ E1EC7F5DA720B640CD8FB8424F1B14BB, E5CF9F43D8C8028E8F29CAF8AD1E2179E5B02DCAA430900672FCB4C4EE288EF0 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:45:46.0296 0x0fb8  IpInIp - ok
19:45:46.0390 0x0fb8  [ E2168CBC7098FFE963C6F23F472A3593, 93B60D02ACBDDCE78BD4020B9CE0C132A8DD28FC2266B2748A22717B93AFF7C9 ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:45:46.0390 0x0fb8  IpNat - ok
19:45:46.0453 0x0fb8  [ 64537AA5C003A6AFEEE1DF819062D0D1, 5A6C11317DEF14B8C34A8C669EB75F7A8D46F05090C43D3DFF602CFA13CC504E ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:45:46.0468 0x0fb8  IPSec - ok
19:45:46.0500 0x0fb8  [ 86C204836FEEC22510D434982D4221B8, E4CDFB2EA0C5BE31721C0825FA53BEC202E9EAB6B6003C7937519397A9767882 ] irda            C:\WINDOWS\system32\DRIVERS\irda.sys
19:45:46.0515 0x0fb8  irda - ok
19:45:46.0578 0x0fb8  [ 50708DAA1B1CBB7D6AC1CF8F56A24410, A5657038A66B83472B456246E58884D5DF2E5B63BD176AE3DFFB6D5B6998E8B7 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
19:45:46.0593 0x0fb8  IRENUM - ok
19:45:46.0640 0x0fb8  [ A02512C315C84F475BD89F847048B27B, 28AD0069F9C367BE861A5D5DAF90AFC0EF5C20729AE9DB9964417AFAE2A79624 ] Irmon           C:\WINDOWS\System32\irmon.dll
19:45:46.0656 0x0fb8  Irmon - ok
19:45:46.0734 0x0fb8  [ E504F706CCB699C2596E9A3DA1596E87, 80675B90DEFA75A58CB83FB88ED9CB849FE5CE2522A90F4AF08D54DC5B412541 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:45:46.0734 0x0fb8  isapnp - ok
19:45:46.0828 0x0fb8  [ EBDEE8A2EE5393890A1ACEE971C4C246, ACC57A7BACAB100FB2903451D2A48BFE936E3B8F9B13882C1D2DFF9D19BD1D34 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:45:46.0890 0x0fb8  Kbdclass - ok
19:45:47.0000 0x0fb8  [ E182FA8E49E8EE41B4ADC53093F3C7E6, 2E713992C9B40F6010373A2FFF6DBCC8723BB328DE6875793C46072D8323E9BB ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:45:47.0140 0x0fb8  kbdhid - ok
19:45:47.0406 0x0fb8  [ BA5DEDA4D934E6288C2F66CAF58D2562, 2250B75EEAD92CA56A1F8BB3F6523F9A5625676E38845A4DE0BFECE5EA17DBFA ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
19:45:47.0421 0x0fb8  kmixer - ok
19:45:47.0468 0x0fb8  [ 674D3E5A593475915DC6643317192403, EDE02BB88BEFDCB3E312087AFB5D91D8E9648C0F8599BD551FDC745DBA765819 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
19:45:47.0484 0x0fb8  KSecDD - ok
19:45:47.0593 0x0fb8  [ 0CB3AF149A0BAC0836022CA307C7A0F8, FCA50F229A9A2D120A260620AF454E1808246E45EC249582298D669BCED50B3E ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
19:45:47.0593 0x0fb8  lanmanserver - ok
19:45:47.0703 0x0fb8  [ E1F27CFCD114EC9F1E1F44674B2FF9F0, 7147A1B3694200EEBC32BD66DAED6E075476371E03ED5FDD23431AB79D990957 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
19:45:47.0718 0x0fb8  lanmanworkstation - ok
19:45:47.0734 0x0fb8  lbrtfdc - ok
19:45:47.0796 0x0fb8  [ B3EFF6D938C572E90A07B3D87A3C7657, 8C02DEFD2F1A15740CD5421D20B3808BD27583019AF1B79D087880A71807EEE1 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
19:45:47.0812 0x0fb8  LmHosts - ok
19:45:47.0890 0x0fb8  [ 8FEE53C104223973ED9919936D9CD156, B4B87E7394BF3525273E99A2EBD85EECEB19A3A15540E73CFFCA48D4114C2C26 ] MDC8021X        C:\WINDOWS\system32\DRIVERS\mdc8021x.sys
19:45:47.0890 0x0fb8  MDC8021X - ok
19:45:48.0000 0x0fb8  [ 6A75FD0B5F008D711DC44D9693E8D632, E042B829AEFC7FEAABB406B9F6F5A4FA18009C6385AEC00FDF342A2838BB5E99 ] meiudf          C:\WINDOWS\system32\Drivers\meiudf.sys
19:45:48.0031 0x0fb8  meiudf - ok
19:45:48.0109 0x0fb8  [ 95FD808E4AC22ABA025A7B3EAC0375D2, 4A067A8B7C539A0C2BFAC55A1869EF56FED835C28F5F7DD7D7BA65A5B273CF5F ] Messenger       C:\WINDOWS\System32\msgsvc.dll
19:45:48.0125 0x0fb8  Messenger - ok
19:45:48.0171 0x0fb8  [ 4AE068242760A1FB6E1A44BF4E16AFA6, 1FB771162B96AAF787AC24867B818DF8511F0780BB094FA9A38C11D8DBFE68BC ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
19:45:48.0187 0x0fb8  mnmdd - ok
19:45:48.0250 0x0fb8  [ F6415361201915B9FE3896B0E4E724FF, C99C1EE0EABF8847BD4F737D72DB3EE5A57D773F008EC6596E83DAE48474F3F2 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
19:45:48.0265 0x0fb8  mnmsrvc - ok
19:45:48.0281 0x0fb8  [ 6FC6F9D7ACC36DCA9B914565A3AEDA05, BF2C49E4D4C2D2E865B1C59FFE76BF29146ADD971D845FBD659A96AA26D72A11 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
19:45:48.0296 0x0fb8  Modem - ok
19:45:48.0328 0x0fb8  [ 34E1F0031153E491910E12551400192C, D608F77DB7035FD676773A3DF8DBC5DD52CC5198D0681A73D7EAA6C161047A90 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:45:48.0343 0x0fb8  Mouclass - ok
19:45:48.0390 0x0fb8  [ B1C303E17FB9D46E87A98E4BA6769685, 161A45488522055D0F0474ABEDA04DDD0B5DAC2411AF9154B15190BBD66E7153 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:45:48.0406 0x0fb8  mouhid - ok
19:45:48.0437 0x0fb8  [ 65653F3B4477F3C63E68A9659F85EE2E, 32A34B22A4C1F50A966F321FD228C6B85F0F0315ABF3D40FC416618E786A4024 ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
19:45:48.0453 0x0fb8  MountMgr - ok
19:45:48.0468 0x0fb8  mraid35x - ok
19:45:48.0500 0x0fb8  mrtRate - ok
19:45:48.0593 0x0fb8  [ 29414447EB5BDE2F8397DC965DBB3156, 351D359CC6C1C35522BB55B7CAC6C881B25FD6A0E057A8D7F84EE5A193029A23 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:45:48.0625 0x0fb8  MRxDAV - ok
19:45:48.0875 0x0fb8  [ F9692BE777822AB3F1A91C34728786DA, BE234F9989477029AD6AAB9BF2757B4DA58828524412E59CBFDFD242639FC5A8 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:45:49.0171 0x0fb8  MRxSmb - ok
19:45:49.0437 0x0fb8  [ F1534ACA143CA86CD57672953754FAB0, DF86E663E01F261E04057574A02760EC770DA4F519C008B83F2F2A7C330BCE0A ] MSCSPTISRV      C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
19:45:49.0500 0x0fb8  MSCSPTISRV - ok
19:45:49.0562 0x0fb8  [ C7C3D89EB0A6F3DBA622EA737FA335B1, 4392887A5F312DBD0971E1D72B85B3CA5636D7FB3A409E5A99CA925BD05493E8 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
19:45:49.0578 0x0fb8  MSDTC - ok
19:45:49.0656 0x0fb8  [ 561B3A4333CA2DBDBA28B5B956822519, 5B53906A29B9AA55A399F880CA989F9878BD943D3E97FB10A25BFD723654AF49 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
19:45:49.0671 0x0fb8  Msfs - ok
19:45:49.0703 0x0fb8  MSIServer - ok
19:45:49.0781 0x0fb8  [ AE431A8DD3C1D0D0610CDBAC16057AD0, 8B3BCAC3DA71778DC8B863E6DEF10F02F65D1BDD3381802DDC0B2980F4F1FBB9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:45:49.0843 0x0fb8  MSKSSRV - ok
19:45:49.0906 0x0fb8  [ 13E75FEF9DFEB08EEDED9D0246E1F448, 69D4CF483753FF253431656E1CB680F6702375696F94E259729BD11C25004031 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:45:49.0906 0x0fb8  MSPCLOCK - ok
19:45:49.0921 0x0fb8  [ 1988A33FF19242576C3D0EF9CE785DA7, 9E1C07F364DA7EF0D859BB7A3A06F849A153722E27E872640120CC6855D9FC51 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
19:45:49.0921 0x0fb8  MSPQM - ok
19:45:50.0000 0x0fb8  [ 469541F8BFD2B32659D5D463A6714BCE, 46AA7D2442DCC4C51C08BA0C00136F058F9160E6D6EDE78B2FD82545AE4FD10B ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:45:50.0000 0x0fb8  mssmbios - ok
19:45:50.0062 0x0fb8  [ BF13612142995096AB084F2DB7F40F77, E23FA89B54772A33A0A92A0701F02CB9683823FCA5CC192235378E1433FB21CF ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
19:45:50.0093 0x0fb8  MSTEE - ok
19:45:50.0140 0x0fb8  [ 82035E0F41C2DD05AE41D27FE6CF7DE1, 6111D330E7ACB77E23EA6A9E001FC651DE1DC49D772DC6FDD3C4B8EDA57E1C7A ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
19:45:50.0156 0x0fb8  Mup - ok
19:45:50.0203 0x0fb8  [ 5C8DC6429C43DC6177C1FA5B76290D1A, BBD145E87D4CF25A873CAE89DF29DF297187B604D42CD36AD8D3F62A033D906E ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:45:50.0234 0x0fb8  NABTSFEC - ok
19:45:50.0312 0x0fb8  [ 558635D3AF1C7546D26067D5D9B6959E, 8C1802908DF35E442575969D29F4B22019A2B3E4C309B8E193F98F75AE81F013 ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
19:45:50.0328 0x0fb8  NDIS - ok
19:45:50.0359 0x0fb8  [ 520CE427A8B298F54112857BCF6BDE15, 521BFFC460D64CD69D12F8C9D61CEBE409A63F1F1FB928450E4564DA29C0FFEA ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:45:50.0390 0x0fb8  NdisIP - ok
19:45:50.0453 0x0fb8  [ 08D43BBDACDF23F34D79E44ED35C1B4C, F72CB8FA67C361C40B4C83F08302D7B2FD9178C1C60A7C236AF08B9CB5162591 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:45:50.0453 0x0fb8  NdisTapi - ok
19:45:50.0500 0x0fb8  [ 34D6CD56409DA9A7ED573E1C90A308BF, DE2060F57C913272524AFB0D472714ABF6F7E49A01534F23D95EE67F207CC6CF ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:45:50.0531 0x0fb8  Ndisuio - ok
19:45:50.0625 0x0fb8  [ 0B90E255A9490166AB368CD55A529893, 90EB17422BF52FE6D0CC6ADA4262D605806C5B583DE04EDEC95FD47EE9697865 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:45:50.0656 0x0fb8  NdisWan - ok
19:45:50.0765 0x0fb8  [ 59FC3FB44D2669BC144FD87826BB571F, B3C8CEFB09D5C85CBF12AED8CDB1FE455679D3436337263EFDABDC5116D92453 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
19:45:50.0921 0x0fb8  NDProxy - ok
19:45:51.0109 0x0fb8  [ 2969D26EEE289BE7422AA46FC55F4E38, 0128C6C764C9BE01E9C5B272385524361C46C051D9D371D8E06B8493A49250AF ] Net Driver HPZ12 C:\WINDOWS\system32\HPZinw12.dll
19:45:51.0218 0x0fb8  Net Driver HPZ12 - ok
19:45:51.0265 0x0fb8  [ 3A2ACA8FC1D7786902CA434998D7CEB4, ECE218DCDCB4D0A5CA8CBD14E931BAA3B5F381B70BBACB65B0EBBB46D2D31683 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
19:45:51.0296 0x0fb8  NetBIOS - ok
19:45:51.0375 0x0fb8  [ 0C80E410CD2F47134407EE7DD19CC86B, 2A1D0CE9797F4AB7A24873947A26DD6413B8DBB5A82C24CF28D1FC243AEFC5C8 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
19:45:51.0390 0x0fb8  NetBT - ok
19:45:51.0453 0x0fb8  [ 05AFB5AD06462257BEA7495283C86D50, 2D6584D0BFB168E48433EA702E6CABC7CB9B98675D2E99F78D9B84A63D4BD977 ] NetDDE          C:\WINDOWS\system32\netdde.exe
19:45:51.0500 0x0fb8  NetDDE - ok
19:45:51.0515 0x0fb8  [ 05AFB5AD06462257BEA7495283C86D50, 2D6584D0BFB168E48433EA702E6CABC7CB9B98675D2E99F78D9B84A63D4BD977 ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
19:45:51.0515 0x0fb8  NetDDEdsdm - ok
19:45:51.0593 0x0fb8  [ 1265EB253ED4EBE4ACB3BD5F548FF796, E54D849FF7DBA47526BDB0CC71881768DB55D6A5779C245C8A0D7B9C6409B785 ] Netdevio        C:\WINDOWS\system32\DRIVERS\netdevio.sys
19:45:51.0609 0x0fb8  Netdevio - ok
19:45:51.0671 0x0fb8  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] Netlogon        C:\WINDOWS\system32\lsass.exe
19:45:51.0687 0x0fb8  Netlogon - ok
19:45:51.0796 0x0fb8  [ 36739B39267914BA69AD0610A0299732, 04CC0D2F45D4F3A86B2E4F23E1226F182349C98C53508C1F49C8CAC2D223D5A7 ] Netman          C:\WINDOWS\System32\netman.dll
19:45:51.0843 0x0fb8  Netman - ok
19:45:51.0890 0x0fb8  [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC, AD1FD07DD9E745C29986C2A25E9EF80B93CBF0F47FCF76741DD6E9CC81C7D241 ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
19:45:51.0906 0x0fb8  NIC1394 - ok
19:45:52.0015 0x0fb8  [ 097722F235A1FB698BF9234E01B52637, 994F81F506B081FFB760BA7B95469DE9311DDB00D14F77DA9752C19A9B932289 ] Nla             C:\WINDOWS\System32\mswsock.dll
19:45:52.0046 0x0fb8  Nla - ok
19:45:52.0328 0x0fb8  [ BD71E8BAE0017C79F77FAE9E8AC2EAFA, 37869F9B0E80DFD474B82EDDC6E29DF0384688A387510D48195160101B08680F ] NOD32krn        C:\Program Files\Eset\nod32krn.exe
19:45:52.0375 0x0fb8  NOD32krn - ok
19:45:52.0453 0x0fb8  [ 4F601BCB8F64EA3AC0994F98FED03F8E, D9D6783B970CB871DE0C6EDD8BE42F30CD1DCD55D4DF006922D9CFC0CF020D27 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
19:45:52.0515 0x0fb8  Npfs - ok
19:45:52.0609 0x0fb8  ntcdrdrv - ok
19:45:53.0109 0x0fb8  [ 19A811EF5F1ED5C926A028CE107FF1AF, 97606850041DE4E568188FB28AA3D5B10A4E96DB9551A77BC3A17ED67D5D4474 ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
19:45:53.0140 0x0fb8  Ntfs - ok
19:45:53.0171 0x0fb8  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
19:45:53.0171 0x0fb8  NtLmSsp - ok
19:45:53.0265 0x0fb8  [ B62F29C00AC55A761B2E45877D85EA0F, 8B4B96BDBE26D73F89CC51876929515C1AEA18A8E9CA4E76FAEF538D9E5BDA90 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
19:45:53.0296 0x0fb8  NtmsSvc - ok
19:45:53.0359 0x0fb8  [ 73C1E1F395918BC2C6DD67AF7591A3AD, B21133A75253EC15E2DFF66D3B480AB1A7E1A2360476C810E7AA55D0F0EB08D4 ] Null            C:\WINDOWS\system32\drivers\Null.sys
19:45:53.0359 0x0fb8  Null - ok
19:45:53.0390 0x0fb8  [ B305F3FAD35083837EF46A0BBCE2FC57, 9D0E0E666D652D0FC9EAB97280A5D67AAF61D6B21929DF7CF8ED72A367720464 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:47:00.0703 0x0fb8  NwlnkFlt - ok
19:47:01.0093 0x0fb8  [ C99B3415198D1AAB7227F2C88FD664B9, DD8DA4B5E804F134AB9233859544C025062902DFC3E8FB8A09A67337A4E73F55 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:47:01.0187 0x0fb8  NwlnkFwd - ok
19:47:01.0375 0x0fb8  [ 0951DB8E5823EA366B0E408D71E1BA2A, EAF0E680BC476D8CEBAD0C21F2EDB958F333B731E8B131DA450D716FEC2C87B0 ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
19:47:01.0484 0x0fb8  ohci1394 - ok
19:47:01.0859 0x0fb8  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:47:01.0906 0x0fb8  ose - ok
19:47:02.0218 0x0fb8  [ FB2C5ADAF3768871D4EA64883C4A3695, 9E64C60F8FF5C46C69BF6706E89EBB7D7AF49006381BC13F290D5C045F108E85 ] P1001VID        C:\WINDOWS\system32\DRIVERS\P1001Vid.sys
19:47:02.0546 0x0fb8  P1001VID - ok
19:47:02.0687 0x0fb8  [ 17BB6B38DE8C2BDA692CA1DB0CEA7325, E62B95C070A371E9311ABE0744BFB9A5BD14BF9C327A109A1FE3125E3FBAAE36 ] PACSPTISVR      C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
19:47:03.0375 0x0fb8  PACSPTISVR - ok
19:47:03.0484 0x0fb8  [ 240C0D4049A833B16B63B636ACF01672, B357CCC9DF8A85862B87975DF774705556B4FC3EB3AEC3E763E4BB86F55B15A9 ] PalmUSBD        C:\WINDOWS\system32\drivers\PalmUSBD.sys
19:47:03.0562 0x0fb8  PalmUSBD - ok
19:47:03.0656 0x0fb8  [ 29744EB4CE659DFE3B4122DEB45BC478, 5F7B63152CDAA031ACB77E793BB7E8210472D6D1EED911F3A0BD70455FC282FC ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
19:47:03.0781 0x0fb8  Parport - ok
19:47:03.0937 0x0fb8  [ 3334430C29DC338092F79C38EF7B4CD0, B54989B46D77F124D66741A939FF2033F73854FC39AF13C8165D01203A94A94E ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
19:47:04.0109 0x0fb8  PartMgr - ok
19:47:04.0203 0x0fb8  [ 70E98B3FD8E963A6A46A2E6247E0BEA1, 6771313EC41B3B5BFD398F60706E40BE71617046880CC352DD110B001AFC22A1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
19:47:04.0234 0x0fb8  ParVdm - ok
19:47:04.0328 0x0fb8  [ 8086D9979234B603AD5BC2F5D890B234, 4FCB98D3B6F95B6979B255287480943C1F87A12ECB30D446294C1E84B6DFE620 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
19:47:04.0406 0x0fb8  PCI - ok
19:47:04.0453 0x0fb8  PCIDump - ok
19:47:04.0765 0x0fb8  [ CCF5F451BB1A5A2A522A76E670000FF0, D63F7E5A39653EC9CCE94B7D84B2D3EBD4F54533BD65701020198724042C9257 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
19:47:04.0781 0x0fb8  PCIIde - ok
19:47:05.0031 0x0fb8  [ 82A087207DECEC8456FBE8537947D579, 92305DC8BC1CA3BD93A8D996AAA7433E816931B17D5BDFAC06C7251F2759D023 ] Pcmcia          C:\WINDOWS\system32\DRIVERS\pcmcia.sys
19:47:05.0281 0x0fb8  Pcmcia - ok
19:47:05.0296 0x0fb8  PDCOMP - ok
19:47:05.0312 0x0fb8  PDFRAME - ok
19:47:05.0328 0x0fb8  PDRELI - ok
19:47:05.0343 0x0fb8  PDRFRAME - ok
19:47:05.0359 0x0fb8  perc2 - ok
19:47:05.0375 0x0fb8  perc2hib - ok
19:47:05.0562 0x0fb8  [ 6C1618A07B49E3873582B6449E744088, 4C56C042830E0E3A7EE15E6C074D788AE2D6EF2D0901DC1497DA8C4E5D867839 ] pfc             C:\WINDOWS\system32\drivers\pfc.sys
19:47:05.0640 0x0fb8  pfc - ok
19:47:05.0750 0x0fb8  [ 37561F8D4160D62DA86D24AE41FAE8DE, DDBCAB4992FDD8E75EA3AE96ABA34C20A45B4D997A901B100FDED4C5AFC790EE ] PlugPlay        C:\WINDOWS\system32\services.exe
19:47:05.0843 0x0fb8  PlugPlay - ok
19:47:05.0937 0x0fb8  [ BAFC9706BDF425A02B66468AB2605C59, 6F8F7982AD452F0E68D91CCAF05DF152F00FA3D885DCBBBC470199E74F17B1E0 ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.dll
19:47:06.0000 0x0fb8  Pml Driver HPZ12 - ok
19:47:06.0062 0x0fb8  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
19:47:06.0078 0x0fb8  PolicyAgent - ok
19:47:06.0109 0x0fb8  [ 1C5CC65AAC0783C344F16353E60B72AC, 7786CFE970A79B327DB57AEBADA8B0B94B4DE07CE8AF285E9835B2AADD597296 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:47:06.0203 0x0fb8  PptpMiniport - ok
19:47:06.0218 0x0fb8  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
19:47:06.0218 0x0fb8  ProtectedStorage - ok
19:47:06.0265 0x0fb8  [ 48671F327553DCF1D27F6197F622A668, CB34A17BC36E8F8BB5F87F9EE21311C50DE9AE156513D682581DE47C93EC155D ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
19:47:06.0437 0x0fb8  PSched - ok
19:47:06.0531 0x0fb8  [ 80D317BD1C3DBC5D4FE7B1678C60CADD, DA76804B55D0CAB3DDD01EFC06673764AE4860693375C658B6063FB14AF7F12C ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:47:06.0656 0x0fb8  Ptilink - ok
19:47:06.0781 0x0fb8  [ 86724469CD077901706854974CD13C3E, 23C6B45928E43AC2893033DFC4265C2C87B3D185CB20553B9EAB818A46FB8C18 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
19:47:06.0953 0x0fb8  PxHelp20 - ok
19:47:06.0968 0x0fb8  ql1080 - ok
19:47:07.0015 0x0fb8  Ql10wnt - ok
19:47:07.0031 0x0fb8  ql12160 - ok
19:47:07.0046 0x0fb8  ql1240 - ok
19:47:07.0078 0x0fb8  ql1280 - ok
19:47:07.0328 0x0fb8  [ FE0D99D6F31E4FAD8159F690D68DED9C, 998685622ABE631984B7E4DBF91AB3594B1F574378D75EB9F6265F4650470692 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:47:07.0375 0x0fb8  RasAcd - ok
19:47:07.0593 0x0fb8  [ 44DB7A9BDD2FB58747D123FBF1D35ADB, 1546B32AE19015213236031E82BF5C44ACF4C1B5F9E379908A1B413C6CA65755 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
19:47:07.0718 0x0fb8  RasAuto - ok
19:47:07.0750 0x0fb8  [ 0207D26DDF796A193CCD9F83047BB5FC, 13613036BCB869FBD7229A0FE25D324710308385D8C35E5D990A40E52BE040DF ] Rasirda         C:\WINDOWS\system32\DRIVERS\rasirda.sys
19:47:07.0812 0x0fb8  Rasirda - ok
19:47:07.0875 0x0fb8  [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C, F59974A2A3C21071BC72CA4DAF5D2DDF93471EC16FD1A34DE9DC1A50027F6835 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:47:07.0921 0x0fb8  Rasl2tp - ok
19:47:08.0062 0x0fb8  [ D4BD2EEAB07FEF323F0A0CEECC954F51, 82C5E65D84EACF4CCB542F23AFF751657237B054862D4003E63FA1E690F5B814 ] RasMan          C:\WINDOWS\System32\rasmans.dll
19:47:08.0125 0x0fb8  RasMan - ok
19:47:08.0265 0x0fb8  [ 7306EEED8895454CBED4669BE9F79FAA, DC6874ECAD9105BC9EAB007291958911D7D4D3649124472070B3496B36C45200 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:47:08.0343 0x0fb8  RasPppoe - ok
19:47:08.0484 0x0fb8  [ FDBB1D60066FCFBB7452FD8F9829B242, 10A2DACF944BD000032EBA8C095CB3D879CC55B28C377ADF6E52E508E47444DB ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
19:47:08.0562 0x0fb8  Raspti - ok
19:47:08.0750 0x0fb8  [ 03B965B1CA47F6EF60EB5E51CB50E0AF, 56B0F5FC470385F2FF4E4573099C96772EDB985398859B9F7ACE0AA704BB47B7 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:47:08.0890 0x0fb8  Rdbss - ok
19:47:09.0000 0x0fb8  [ 4912D5B403614CE99C28420F75353332, 975341ECD660209987B5E5171B8315E032439E408CBE8A5986E67AF767F373BB ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:47:09.0125 0x0fb8  RDPCDD - ok
19:47:09.0421 0x0fb8  [ B54CD38A9EBFBF2B3561426E3FE26F62, 2BE75A68C598A2E162F09BCBA140909B9480A7E06A733B5D58673A172CAD8084 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
19:47:09.0703 0x0fb8  RDPWD - ok
19:47:10.0093 0x0fb8  [ 729798E0933076B8FCFCD9934698F164, 87CCF85E6C7F9AB9A5EB97BD9D2BE97429CB178B35FCA17CB1C9B58A0475D726 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
19:47:10.0140 0x0fb8  RDSessMgr - ok
19:47:10.0187 0x0fb8  [ B31B4588E4086D8D84ADBF9845C2402B, 0B45979623B0AC774A9426C428954E7FB604FAE0DB187C402AF6052906F4099A ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
19:47:10.0296 0x0fb8  redbook - ok
19:47:13.0187 0x0fb8  [ 85F12A9A202A3F7E8CB57A5EF979D8BE, 7D92D3F2AA9C2BFFD4709D51E3A6140D89225F0CD46E2BF6C67FDABB050A516E ] ReimageRealTimeProtection C:\Program Files\Reimage\Reimage Repair\ReiGuard.exe
19:47:15.0781 0x0fb8  ReimageRealTimeProtection - ok
19:47:15.0859 0x0fb8  [ 3046DB917E3CFA040632799DD9B14865, 90FE0C8C887A718BAEA77B1CFE1F6EEB2595F520A0B3DE0A50B4DE2E1D99CCF4 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
19:47:15.0890 0x0fb8  RemoteAccess - ok
19:47:15.0968 0x0fb8  [ 793F04A09B15E7C6C11DBDFFAF06C0AB, D108DF4DC61300926F360E4D3B2F75DBEF3D3CB9D4C15260232047ED6FB1BFC7 ] RpcLocator      C:\WINDOWS\system32\locator.exe
19:47:15.0968 0x0fb8  RpcLocator - ok
19:47:16.0125 0x0fb8  [ 01095FEBF33BEEA00C2A0730B9B3EC28, 563B1ECFA587C00F98C2ECDDB36A04F8FA3F2B7B6C941DBADF4AA1B1EA052C07 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
19:47:16.0187 0x0fb8  RpcSs - ok
19:47:16.0328 0x0fb8  [ 471B3F9741D762ABE75E9DEEA4787E47, D9ADE42965EC22AEB4B2AD21D429C3C8232A60AA9853DEFDA7AED86A13FE8623 ] RSVP            C:\WINDOWS\system32\rsvp.exe
19:47:16.0468 0x0fb8  RSVP - ok
19:47:16.0562 0x0fb8  [ 29F9879A1FD386F7251AE9FDADB2CBF1, 1E829277C96665692324BA79959A12F604F9426DEC30D14A068D6972266EE91C ] RTL8023         C:\WINDOWS\system32\DRIVERS\Rtlnic51.sys
19:47:16.0625 0x0fb8  RTL8023 - ok
19:47:16.0921 0x0fb8  [ D507C1400284176573224903819FFDA3, DD0BDB2AB39A8A0A300B6D60FB6A7F5BA08C4DB8F59E0A784FB763EA8AD72AB2 ] rtl8139         C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
19:47:16.0921 0x0fb8  rtl8139 - ok
19:47:16.0968 0x0fb8  [ 84885F9B82F4D55C6146EBF6065D75D2, 76FE1B6C432B6C74FC283DE52D14EF668F8C4AAD0D139F362635EFB30482B4ED ] SamSs           C:\WINDOWS\system32\lsass.exe
19:47:16.0984 0x0fb8  SamSs - ok
19:47:17.0046 0x0fb8  [ 25D8DE134DF108E3DBC8D7D23B1AA58E, BF4C48E75D696546AB69E205F5492553001C9A92127D824F7F9BFCFE0F1C1093 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
19:47:17.0062 0x0fb8  SCardSvr - ok
19:47:17.0140 0x0fb8  [ 92360854316611F6CC471612213C3D92, A45DC437FA0DEC1DB540DC889A2469E8C3C4360F2F41FE60BFA3F78462507959 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
19:47:17.0156 0x0fb8  Schedule - ok
19:47:17.0203 0x0fb8  [ 02FC71B020EC8700EE8A46C58BC6F276, 7A41A3BCD5A7784D0255F655DCE442CBE81CF4E55B95043EF20BB292C80630A5 ] sdbus           C:\WINDOWS\system32\DRIVERS\sdbus.sys
19:47:17.0234 0x0fb8  sdbus - ok
19:47:17.0312 0x0fb8  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:47:17.0343 0x0fb8  Secdrv - ok
19:47:17.0406 0x0fb8  [ B1E0CE09895376871746F36DC5773B4F, 686458ED5D4C72AAF2F45B4FCBB44BFA0D84DFE93B5E01ECCBEAD33CBAC52BD5 ] seclogon        C:\WINDOWS\System32\seclogon.dll
19:47:17.0421 0x0fb8  seclogon - ok
19:47:17.0515 0x0fb8  [ DFD9870CF39C791D86C4C209DA9FA919, 336A0525630149EF160AE8346AF6BEE2FAA0289629FA052ADAF887B5B84A918D ] SENS            C:\WINDOWS\system32\sens.dll
19:47:17.0640 0x0fb8  SENS - ok
19:47:17.0687 0x0fb8  [ CD9404D115A00D249F70A371B46D5A26, D9FC869FA9A6B9574A1FCE70E7B919D8F79E02B28967E49F6DEF83A84520ECDF ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
19:47:17.0703 0x0fb8  Serial - ok
19:47:17.0750 0x0fb8  [ 0D13B6DF6E9E101013A7AFB0CE629FE0, 2214EA0F16BB33970E299CE457EB50AEE0BEF7959BC1EBD3C06C78A46B42B808 ] Sfloppy         C:\WINDOWS\system32\DRIVERS\sfloppy.sys
19:47:17.0750 0x0fb8  Sfloppy - ok
19:47:17.0859 0x0fb8  [ 36CC8C01B5E50163037BEF56CB96DEFF, F8D3CC92E97E8C97A0F88850D6D96CFA02A69940208834F413A8FCB71241F552 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
19:47:17.0921 0x0fb8  SharedAccess - ok
19:47:18.0000 0x0fb8  [ 6815DEF9B810AEFAC107EEAF72DA6F82, 0132004894326B54D1B8AD2C31FB8BDE45EA66DB9962C0CE1207941A13630896 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
19:47:18.0031 0x0fb8  ShellHWDetection - ok
19:47:18.0046 0x0fb8  Simbad - ok
19:47:18.0109 0x0fb8  [ 5CAEED86821FA2C6139E32E9E05CCDC9, 63F91C95FD2914DAEC648A6EAF75EE5E18EAA7754F5A03A57D693AC49C66479E ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:47:18.0125 0x0fb8  SLIP - ok
19:47:18.0187 0x0fb8  [ A8EB0AA07632A4C936FF6F8EDA5BDEAD, 9AEEAB09D74CC77AE69DE89B082F7798F290984B3E3AD96FB590E65A1BD37F05 ] SMCIRDA         C:\WINDOWS\system32\DRIVERS\smcirda.sys
19:47:18.0187 0x0fb8  SMCIRDA - ok
19:47:18.0203 0x0fb8  Sparrow - ok
19:47:18.0250 0x0fb8  [ 0CE218578FFF5F4F7E4201539C45C78F, 2C87C8993C3B9CE3589262E178B2B12FF9F2D83E5E8C2B97648D7FA24E3BD985 ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
19:47:18.0328 0x0fb8  splitter - ok
19:47:18.0578 0x0fb8  [ DA81EC57ACD4CDC3D4C51CF3D409AF9F, 521257429493F31516EDE549869EFA4B7A262F6A69EA1E82A9C875456C10E702 ] Spooler         C:\WINDOWS\system32\spoolsv.exe
19:47:18.0593 0x0fb8  Spooler - ok
19:47:18.0765 0x0fb8  [ 3980B48DFF300A7E4139F5C64DA65F5C, 2D88B92F76650657C7CBC3C248C97F709EABE50BF48D5A13BF07EF8E0BFC7CB4 ] SPTISRV         C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
19:47:18.0796 0x0fb8  SPTISRV - ok
19:47:18.0859 0x0fb8  [ E41B6D037D6CD08461470AF04500DC24, 9556C669E69B1B290865FCAABD5D793B310C071B64FD3DF9FCFADC3716BDC926 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
19:47:18.0890 0x0fb8  sr - ok
19:47:18.0984 0x0fb8  [ 92BDF74F12D6CBEC43C94D4B7F804838, C1BFE7F498F4A9992FEA459CE7EEF7525AE51A7E04C76D676819A61615A4A92E ] srservice       C:\WINDOWS\system32\srsvc.dll
19:47:19.0031 0x0fb8  srservice - ok
19:47:19.0218 0x0fb8  [ 7A4F147CC6B133F905F6E65E2F8669FB, 82E3C4F1A92D8D8129CC1CA07F516B537EA6A3B2EEDF47A2C32BEC7828A83A32 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
19:47:19.0281 0x0fb8  Srv - ok
19:47:19.0375 0x0fb8  [ 3B01A9316255CDD17F9C8E79AA573406, 32A3AB0F825664B9BCCC340D1052C0FD1478BED0CC9E1CF98AAA4E4CA19FC522 ] SrvcEKIOMngr    C:\WINDOWS\system32\Drivers\EKIoMngr.sys
19:47:19.0390 0x0fb8  SrvcEKIOMngr - ok
19:47:19.0468 0x0fb8  [ 0A4F36C355E49D3A92D80E6B7C443BAE, D5179259D5AA77C9A176E6299B61AF6644144EAB485D0DA7A68CF08B7ACA0783 ] SrvcEPECioctl   C:\WINDOWS\system32\Drivers\ECioctl.sys
19:47:19.0484 0x0fb8  SrvcEPECioctl - ok
19:47:19.0500 0x0fb8  [ C996C839A3261CAB5409C61E5702B620, F8BABBA77F46D6B950B740B01CF6824C862A17735BA5BBB9B565EEC86C0F2886 ] SrvcEPIOMngr    C:\WINDOWS\system32\Drivers\EPIoMngr.sys
19:47:19.0500 0x0fb8  SrvcEPIOMngr - ok
19:47:19.0531 0x0fb8  [ 79B7AF340D55861DF1D69E7BAC975FCC, EC9720755DBA9710FDD3F100EB999EAEC73D370CFA32A4E81779C6BACF834FC2 ] SrvcSSIOMngr    C:\WINDOWS\system32\Drivers\SSIoMngr.sys
19:47:19.0562 0x0fb8  SrvcSSIOMngr - ok
19:47:19.0609 0x0fb8  [ CBC0BE9758BACE83FC9AC25F4CCA20E7, B06577F6EA553CA35C343E2C3E2E4B7C78A260ED505AF3127A28275ECB188C1E ] SrvcTPIOMngr    C:\WINDOWS\system32\Drivers\TPIoMngr.sys
19:47:19.0609 0x0fb8  SrvcTPIOMngr - ok
19:47:19.0656 0x0fb8  [ D7968049BE0ADBB6A57CEE3960320911, 6FB6D7BE384324211DAEDCCD80BA983E32183D08DF6C5B5B5453773DCC0F4D5B ] sscdbhk5        C:\WINDOWS\system32\drivers\sscdbhk5.sys
19:47:19.0656 0x0fb8  sscdbhk5 - ok
19:47:19.0703 0x0fb8  [ 4B8D61792F7175BED48859CC18CE4E38, 13C50FACC85828F56FF5B29D13B004933352CB581B62B218038B503561531981 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
19:47:19.0718 0x0fb8  SSDPSRV - ok
19:47:19.0781 0x0fb8  [ E4C3B3A14FB2ABF5CE1FF05418BA73C1, 4B31D894409BDB3166CD009D8D02D3EDFE408089F9F206D9BA132C3DDFBCD393 ] SSFS0509        C:\WINDOWS\system32\Drivers\SSFS0509.SYS
19:47:19.0812 0x0fb8  SSFS0509 - ok
19:47:19.0859 0x0fb8  [ 251141FD898C0EF76976F51D39EA881D, 9300E05353A2C0241A20C3A9EB63115B46AE9120BADD5BA2D9D8FA854C3D5BBE ] SSHRMD          C:\WINDOWS\system32\Drivers\SSHRMD.SYS
19:47:19.0875 0x0fb8  SSHRMD - ok
19:47:19.0953 0x0fb8  [ 339E268E1F0DF8868045977CCCA6391F, BB18926D7696211CCB2010F3EE0B4A96E90F253DADC365673F0CCE08EA087395 ] SSIDRV          C:\WINDOWS\system32\Drivers\SSIDRV.SYS
19:47:20.0093 0x0fb8  SSIDRV - ok
19:47:20.0171 0x0fb8  [ CA85B64BC98ABABDD858143933B6FD4E, AC160296C5CB584DC3F9DECC2D38190C3216982F4F9D6EC20E4F51EAA092CFCE ] SSKBFD          C:\WINDOWS\system32\Drivers\sskbfd.sys
19:47:20.0328 0x0fb8  SSKBFD - ok
19:47:20.0500 0x0fb8  [ C3FFD65ABFB6441E7606CF74F1155273, EFA481D5075A9C0490CEBA5F8223BE322EB3811465F41A1FB3386E30E8C81714 ] ssrtln          C:\WINDOWS\system32\drivers\ssrtln.sys
19:47:20.0500 0x0fb8  ssrtln - ok
19:47:20.0640 0x0fb8  [ B6763F8534AC547CF1AF98AFDFF2EDC8, 5E199091F10373451623855DD2A4ED625E062545DBAC20DDE80C0E3E3CE271DA ] stisvc          C:\WINDOWS\system32\wiaservc.dll
19:47:20.0687 0x0fb8  stisvc - ok
19:47:20.0765 0x0fb8  [ 284C57DF5DC7ABCA656BC2B96A667AFB, 7E3CAE1911E710B1CC37571AE1B92DC981FCD46E67A3AD3C258672D17781C709 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:47:20.0781 0x0fb8  streamip - ok
19:47:20.0859 0x0fb8  [ 03C1BAE4766E2450219D20B993D6E046, 0D8E5B141EAA9E2C8D1F8BFD522F57EE8074216A336CBE37FE77B8ADDB791DBE ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
19:47:20.0890 0x0fb8  swenum - ok
19:47:20.0937 0x0fb8  [ 94ABC808FC4B6D7D2BBF42B85E25BB4D, EEF6DB9EDD8C273A6595675A7A12B9D440FA4E178BA7C69FB1942D97E291F989 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
19:47:20.0968 0x0fb8  swmidi - ok
19:47:20.0984 0x0fb8  SwPrv - ok
19:47:21.0156 0x0fb8  [ 74E8543A4647A53A26788D5ED3C2172F, 4F672C2454ACF32125CEB709A7BC6493C1AAEAE30A062F156EF1E9AC349CA403 ] Swupdtmr        c:\TOSHIBA\Ivp\Swupdate\swupdtmr.exe
19:47:21.0156 0x0fb8  Swupdtmr - ok
19:47:21.0171 0x0fb8  symc810 - ok
19:47:21.0187 0x0fb8  symc8xx - ok
19:47:21.0421 0x0fb8  [ 67C5AF84809468061121FBCBECB19285, FC43A828630EE722604691443AFCC7FA32C50F44B49542F87C64B435A76E996C ] SymWSC          C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
19:47:21.0531 0x0fb8  SymWSC - ok
19:47:21.0546 0x0fb8  sym_hi - ok
19:47:21.0562 0x0fb8  sym_u3 - ok
19:47:21.0609 0x0fb8  [ 650AD082D46BAC0E64C9C0E0928492FD, 6A587A55418A3A7867602D92B99FE393152DED191F27992C4BA909BD268AC43C ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
19:47:21.0625 0x0fb8  sysaudio - ok
19:47:21.0640 0x0fb8  Sysimsuspys - ok
19:47:21.0703 0x0fb8  [ 8B54AA346D1B1B113FFAA75501B8B1B2, 0DBCAA0FEA212F2274973B1CAD8DB0AD7FC117D8483C9BB78166372907A5B398 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
19:47:21.0750 0x0fb8  SysmonLog - ok
19:47:21.0921 0x0fb8  [ FB78839B36025AA286A51289ED28B73E, DA7046522118BFFD596242CA4ADE6B88D6B6A87D30D7F1175C9E9D912162F1B5 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
19:47:22.0218 0x0fb8  TapiSrv - ok
19:47:22.0390 0x0fb8  [ EECA2B57545E7B7BE949B5E70E31444F, CAC9309948CF45159C5D6467107AC67E0C19B79FCDB3AB143A39DD0A940175F2 ] TBiosDrv        C:\WINDOWS\system32\drivers\TBiosDrv.sys
19:47:22.0390 0x0fb8  TBiosDrv - ok
19:47:22.0562 0x0fb8  [ 2A5554FC5B1E04E131230E3CE035C3F9, 97CD31598A95BAF227BD4763AE721DCBF2E7BBB951E95F33B56C94C3B1D7CF4A ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:47:22.0593 0x0fb8  Tcpip - ok
19:47:22.0640 0x0fb8  [ 38D437CF2D98965F239B0ABCD66DCB0F, CC497A25C7AC1FF1E07CEE25FB0C5A5E6C4005C1CB244601FE620884A5C26506 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
19:47:22.0671 0x0fb8  TDPIPE - ok
19:47:22.0718 0x0fb8  [ ED0580AF02502D00AD8C4C066B156BE9, 41AA6C88CF48CAF0DA8E374F37E74206E4F558332075304A28983D04E08B3154 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
19:47:22.0765 0x0fb8  TDTCP - ok
19:47:22.0796 0x0fb8  [ A540A99C281D933F3D69D55E48727F47, CC430FA0E0F1745E167877003FDCC35FE940AF8CAD05387ECBA880CC3A3F6709 ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
19:47:22.0828 0x0fb8  TermDD - ok
19:47:22.0937 0x0fb8  [ B60C877D16D9C880B952FDA04ADF16E6, 244D59A555349259D81D4643500E714A053D4A06DF892A8EDCAA0DC5EADFF050 ] TermService     C:\WINDOWS\System32\termsrv.dll
19:47:23.0031 0x0fb8  TermService - ok
19:47:23.0140 0x0fb8  [ 3FC79C570E1FC535621766C4691A7854, EBF0692335B8BA367637F1036373F5C85C0B585C8434E8C6A691FF55B21B5B28 ] tfsnboio        C:\WINDOWS\system32\dla\tfsnboio.sys
19:47:23.0171 0x0fb8  tfsnboio - ok
19:47:23.0234 0x0fb8  [ 407ECB6535897BE5CFF6221BC997B1EF, 8022E32AFA932DF05C8632DDCE7EB3DB50847E117B3E322B5090E400A8FB531B ] tfsncofs        C:\WINDOWS\system32\dla\tfsncofs.sys
19:47:23.0265 0x0fb8  tfsncofs - ok
19:47:23.0296 0x0fb8  [ C1D5B187A9BF80563157AFD8A88F09DE, 203D72A3CA7A3DBF9E0CC333D23E0F1C5960A3543241E3F934C7ADF8EC0E9E2F ] tfsndrct        C:\WINDOWS\system32\dla\tfsndrct.sys
19:47:23.0328 0x0fb8  tfsndrct - ok
19:47:23.0343 0x0fb8  [ 872AA22F21EBEAD5C6B8AC957B34C0E7, E43803A5FB8DBC74E837A4DAE82D3942F8C0149738D9089D2D903FF15F6554CD ] tfsndres        C:\WINDOWS\system32\dla\tfsndres.sys
19:47:23.0343 0x0fb8  tfsndres - ok
19:47:23.0375 0x0fb8  [ 9453020E9AAF732A298E6E89E4351B1B, FEBD898B9F2726317FC028AD42685F4F77D6504D2A412E454A2ACDD7F0AE9975 ] tfsnifs         C:\WINDOWS\system32\dla\tfsnifs.sys
19:47:23.0406 0x0fb8  tfsnifs - ok
19:47:23.0468 0x0fb8  [ 93001E00CF6D204903A95F3B303F24AC, 3E49A85B3EBEF645F04F891D8654CF8B75D27F4B0377819B759EED5F2CB78208 ] tfsnopio        C:\WINDOWS\system32\dla\tfsnopio.sys
19:47:23.0468 0x0fb8  tfsnopio - ok
19:47:23.0500 0x0fb8  [ D7BF719D284343333E3D2D6BA7E8FE79, FD246846C7702565896A75957F20CDD341B38C850BFB51D7DFE3227809C491E0 ] tfsnpool        C:\WINDOWS\system32\dla\tfsnpool.sys
19:47:23.0531 0x0fb8  tfsnpool - ok
19:47:23.0562 0x0fb8  [ 4444AFCCC70C18ADA313A9D340AF4172, BBEEF0C98F13FD1ED2FA4D03EE3CE87A23D3549D32AD5FDF57CA75030DA9A8E2 ] tfsnudf         C:\WINDOWS\system32\dla\tfsnudf.sys
19:47:23.0593 0x0fb8  tfsnudf - ok
19:47:23.0625 0x0fb8  [ E6B8244E0ED51716696B346E790E9CB6, D8BE54742ABB5481992727074E857393FC713057238E80F5DBCAC8519A1CFA8E ] tfsnudfa        C:\WINDOWS\system32\dla\tfsnudfa.sys
19:47:23.0703 0x0fb8  tfsnudfa - ok
19:47:23.0781 0x0fb8  [ 6815DEF9B810AEFAC107EEAF72DA6F82, 0132004894326B54D1B8AD2C31FB8BDE45EA66DB9962C0CE1207941A13630896 ] Themes          C:\WINDOWS\System32\shsvcs.dll
19:47:23.0781 0x0fb8  Themes - ok
19:47:23.0796 0x0fb8  TosIde - ok
19:47:24.0046 0x0fb8  [ 6D9AC544B30F96C57F8206566C1FB6A1, C39D35D169A3BCA5E458815A1B60CE92D19BC04579D62DAB9396B42760C5E47B ] TrkWks          C:\WINDOWS\system32\trkwks.dll
19:47:24.0078 0x0fb8  TrkWks - ok
19:47:24.0218 0x0fb8  [ 12F70256F140CD7D52C58C7048FDE657, F2E3E645AA713A520452F5E17513D258D3900E93F65013551FC2B542BFA15BB3 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
19:47:24.0234 0x0fb8  Udfs - ok
19:47:24.0250 0x0fb8  ultra - ok
19:47:24.0421 0x0fb8  [ CED744117E91BDC0BEB810F7D8608183, 8D429F6B4A206D82C3BB18C7675B6C3910D5A1CB892F5D07EA8E8080D729AD07 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
19:47:24.0453 0x0fb8  Update - ok
19:47:24.0562 0x0fb8  [ ACA5D98663D879C6BAAFCEA7E2F1B710, C8DA38619880E3B34A0C880BF1E9217A39B287493C7DD6E94C9565F4042913D7 ] upnphost        C:\WINDOWS\System32\upnphost.dll
19:47:24.0578 0x0fb8  upnphost - ok
19:47:24.0625 0x0fb8  [ 3F5DF65B0758675F95A2D43918A740A3, BC639259E0365C66F4C6CF2F341395942706810E4B393598429FA3B929D16D8C ] UPS             C:\WINDOWS\System32\ups.exe
19:47:24.0656 0x0fb8  UPS - ok
19:47:24.0718 0x0fb8  [ 45A0D14B26C35497AD93BCE7E15C9941, F88F51D03BE33D19E98EA0B45273E84AB77C9927669ADBE7D175354034D9610F ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
19:47:24.0750 0x0fb8  usbaudio - ok
19:47:24.0843 0x0fb8  [ BFFD9F120CC63BCBAA3D840F3EEF9F79, 0183D82E341473200FB1A05F6ABBBA3F2BD635654F49599E4CEB3E6394A33D36 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:47:24.0875 0x0fb8  usbccgp - ok
19:47:24.0937 0x0fb8  [ 15E993BA2F6946B2BFBBFCD30398621E, 10AD5B133C9C68B8E11DF702C50BDE5162693C5A9F132DFE1823D03D70D4EB89 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:47:24.0968 0x0fb8  usbehci - ok
19:47:25.0015 0x0fb8  [ C72F40947F92CEA56A8FB532EDF025F1, EBB9E235C973574B835B1FD22D813E9215029B3FC5030591D6F7971C9A23AEF7 ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:47:25.0031 0x0fb8  usbhub - ok
19:47:25.0078 0x0fb8  [ A42369B7CD8886CD7C70F33DA6FCBCF5, EEDAA16F906A2F8FF40009ED10243F66A5CCE878111F1001DA6060A42DD79047 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:47:25.0109 0x0fb8  usbprint - ok
19:47:25.0156 0x0fb8  [ A6BC71402F4F7DD5B77FD7F4A8DDBA85, E40B73D4E2417F4874D155885C86E4FB44557324616AABD84EFE6C4751DCC46B ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:47:25.0156 0x0fb8  usbscan - ok
19:47:25.0218 0x0fb8  [ 49106EE29074E6A3D3AC9E24C6D791D8, B96B19A92E720F284741F8A2DCB30A9423AD58BA8F795D4F2E30403CEEF20099 ] usbser          C:\WINDOWS\system32\DRIVERS\usbser.sys
19:47:25.0265 0x0fb8  usbser - ok
19:47:25.0328 0x0fb8  [ 6CD7B22193718F1D17A47A1CD6D37E75, CFD74FE06819DA488654F88BFCCBF29994FE7F04EC6CD5CD41552B0C95A8130F ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:47:25.0359 0x0fb8  USBSTOR - ok
19:47:25.0406 0x0fb8  [ F8FD1400092E23C8F2F31406EF06167B, AE93C83BA1966535AFA3E72D6F69156B7E56F021A6808EC8DA44C7E7D506D7E5 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:47:25.0453 0x0fb8  usbuhci - ok
19:47:25.0484 0x0fb8  [ 8A60EDD72B4EA5AEA8202DAF0E427925, ED0624B285E4F64E07E30C12490873A2090F9DFD6A91A2EDA7A1082B88A8199E ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
19:47:25.0531 0x0fb8  VgaSave - ok
19:47:25.0546 0x0fb8  ViaIde - ok
19:47:25.0640 0x0fb8  [ EE4660083DEBA849FF6C485D944B379B, 4DA3CA0DEA0698D387EA370D9BBFF06FEF1C0A5B3D7F772164441B63B8A3927A ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
19:47:25.0734 0x0fb8  VolSnap - ok
19:47:26.0187 0x0fb8  [ 3EE00364AE0FD8D604F46CBAF512838A, 962168941F4E291F2B5236DA7DB84E50DC335F42595B4BC31FCB7960BD8743FC ] VSS             C:\WINDOWS\System32\vssvc.exe
19:47:26.0234 0x0fb8  VSS - ok
19:47:26.0859 0x0fb8  [ 4C009D4352849D79BF347846B6E03BFD, 3DDDF59576B604EAD6C54ED18FB1F4750A6536DEFADBABDDC67A1E052B46772F ] w22n51          C:\WINDOWS\system32\DRIVERS\w22n51.sys
19:47:27.0156 0x0fb8  w22n51 - ok
19:47:27.0281 0x0fb8  [ 2B281958F5D0CF99ED626E3EF39D5C8D, FB46398AE01CDD9CB6E1E647E4DDA86B670F93F787D69B885C7E930D4FF8F3FC ] W32Time         C:\WINDOWS\system32\w32time.dll
19:47:27.0312 0x0fb8  W32Time - ok
19:47:27.0359 0x0fb8  [ 984EF0B9788ABF89974CFED4BFBAACBC, 8178888E3A1AA3BD3BE34456118BB76AF2DD04EC575E4880F97A8EFB182C9E92 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:47:27.0375 0x0fb8  Wanarp - ok
19:47:27.0390 0x0fb8  wanatw - ok
19:47:27.0406 0x0fb8  WDICA - ok
19:47:27.0437 0x0fb8  [ EFD235CA22B57C81118C1AEB4798F1C1, 16EE95A1D51F318224152492FB1663D96E61EC1706E85AE820CD023CBA1CF1F3 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
19:47:27.0484 0x0fb8  wdmaud - ok
19:47:27.0531 0x0fb8  [ 265F534EF76832435AFBF771EC97176D, 67C1C932A20A92D2D180D6763AC9297FA0B6D4C225501C7739B0B45F52FEC6E1 ] WebClient       C:\WINDOWS\System32\webclnt.dll
19:47:27.0593 0x0fb8  WebClient - ok
19:47:28.0843 0x0fb8  [ 1277059C4F6217675E256CB3E3C08ABA, A13215BEDFF606BE4BBCF02537E357D329D9FC0F0D73A532EC91B26D0B728EE7 ] WebrootSpySweeperService C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
19:47:31.0406 0x0fb8  WebrootSpySweeperService - ok
19:47:31.0453 0x0fb8  winlog - ok
19:47:31.0640 0x0fb8  [ 60AC082B41E60906171335DFBF8C19C0, 2C96A4DE3136452582421C98B242E16322D92BE339CFEEFFA4AD78EF98E72C04 ] winlog.com      C:\WINDOWS\system32\drivers\winlog.com.sys
19:47:31.0656 0x0fb8  winlog.com - ok
19:47:31.0828 0x0fb8  [ F399242A80C4066FD155EFA4CF96658E, DC40735D288193170DAF5571A829702EDC07DDAEA87ECF59490DFB516A690F9B ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
19:47:31.0828 0x0fb8  winmgmt - ok
19:47:32.0031 0x0fb8  [ C51B4A5C05A5475708E3C81C7765B71D, F776D2680BD3407307B7072626F78460361FC5BC38623C9E16F394D300AB25DE ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
19:47:32.0031 0x0fb8  WmdmPmSN - ok
19:47:32.0093 0x0fb8  [ BA8CECC3E813E1F7C441B20393D4F86C, E60AC60B67926F61AD872412DC2E096825F97D725B66834328EC3B97F62DBFEA ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:47:32.0093 0x0fb8  WmiApSrv - ok
19:47:32.0156 0x0fb8  [ 6ABE6E225ADB5A751622A9CC3BC19CE8, 4061C5D0F051DFF1730E2A3BFC1CCA97B29602FC50F10F6B44D93B0D28F42024 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
19:47:32.0156 0x0fb8  WS2IFSL - ok
19:47:32.0218 0x0fb8  [ 4D59DAA66C60858CDF4F67A900F42D4A, 312DC7D712F0807EBE5B3984E1BC19E7327D6357818D51AEB33058B052AEAA83 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
19:47:32.0234 0x0fb8  wscsvc - ok
19:47:32.0250 0x0fb8  [ D5842484F05E12121C511AA93F6439EC, 531888E914578172534BBC3220A86C99D1FCE423E89834B533E0A79F583436F3 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:47:32.0250 0x0fb8  WSTCODEC - ok
19:47:32.0328 0x0fb8  [ 13D72740963CBA12D9FF76A7F218BCD8, 3E4D0369F85E64FB6E4088753D7654D58900B480BEBF42F3CB6969355CEAC5A8 ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
19:47:32.0328 0x0fb8  wuauserv - ok
19:47:32.0390 0x0fb8  [ F15FEAFFFBB3644CCC80C5DA584E6311, 79B3E9AF35976CE49921E9BEA3BA3B4A8AF762FD3F284B62954038B5FFB32471 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:47:32.0406 0x0fb8  WudfPf - ok
19:47:32.0437 0x0fb8  [ 28B524262BCE6DE1F7EF9F510BA3985B, AEFF02B899801A63CBB262757C3D4369E38BFF0690BD085DE60E873DFBE3C3F4 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:47:32.0468 0x0fb8  WudfRd - ok
19:47:32.0500 0x0fb8  [ 05231C04253C5BC30B26CBAAE680ED89, 5C03C2D7E0B573646D32F4093E2FF2C3BA391C39F5BA37D67F69D38E357FCC3D ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
19:47:32.0531 0x0fb8  WudfSvc - ok
19:47:32.0750 0x0fb8  [ 5A91E6FEAB9F901302FA7FF768C0120F, 83A1A719508CB4E504D9A75BBB6FCEA1E15C1EC574B8BD18BA40B2A18EF9918E ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
19:47:32.0781 0x0fb8  WZCSVC - ok
19:47:33.0125 0x0fb8  [ EEF46DAB68229A14DA3D8E73C99E2959, C9D7083BC69E1A4672D06CBD9E4E6FD93C3CA67E28EC040D1CC6AAFBFC825813 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
19:47:33.0140 0x0fb8  xmlprov - ok
19:47:33.0218 0x0fb8  [ E6C22D34BAEF5196E1B23A4492C275B7, 6E4CBF8091DE05DBE7D85423C9AADFF7D0C9C4E1441B271CFB695ADFC3FDEB40 ] {6080A529-897E-4629-A488-ABA0C29B635E} C:\WINDOWS\system32\drivers\ialmsbw.sys
19:47:33.0234 0x0fb8  {6080A529-897E-4629-A488-ABA0C29B635E} - ok
19:47:33.0281 0x0fb8  [ 6E53BD96B0EBAD721CDD6320DBFC3F5F, C6B1060FB79034A3C79539D5879430EC21757096B49BE18E1ADCAD8A5840EC68 ] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} C:\WINDOWS\system32\drivers\ialmkchw.sys
19:47:33.0296 0x0fb8  {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
19:47:33.0359 0x0fb8  [ 1DBBC637A0B33FBD708C8DAC7A78912C, DE7DCEBA1727FC91598D6B995F07B8750991C2208C6EE3EAF59B1CD8D45413F1 ] {E2B953A6-195A-44F9-9BA3-3D5F4E32BB55} C:\WINDOWS\system32\drivers\wA301a.sys
19:47:33.0359 0x0fb8  {E2B953A6-195A-44F9-9BA3-3D5F4E32BB55} - ok
19:47:33.0359 0x0fb8  ================ Scan global ===============================
19:47:33.0406 0x0fb8  [ 00EF9C3AF83EDBAF18CA7A2837750117, 87DB68DC66EADA719411C2B3DB02768C52D61BAA94216FCE9C4EE5C710EE7171 ] C:\WINDOWS\system32\basesrv.dll
19:47:33.0484 0x0fb8  [ 3D21B3BE0C5768E76FD9780E9CF9E07C, A7EECA58ADAF0EDE772C2B404BDB9F4EE9D19CAA5384E41EBF0CCE885A1F8594 ] C:\WINDOWS\system32\winsrv.dll
19:47:33.0531 0x0fb8  [ 3D21B3BE0C5768E76FD9780E9CF9E07C, A7EECA58ADAF0EDE772C2B404BDB9F4EE9D19CAA5384E41EBF0CCE885A1F8594 ] C:\WINDOWS\system32\winsrv.dll
19:47:33.0578 0x0fb8  [ 37561F8D4160D62DA86D24AE41FAE8DE, DDBCAB4992FDD8E75EA3AE96ABA34C20A45B4D997A901B100FDED4C5AFC790EE ] C:\WINDOWS\system32\services.exe
19:47:33.0578 0x0fb8  [ Global ] - ok
19:47:33.0578 0x0fb8  ================ Scan MBR ==================================
19:47:33.0609 0x0fb8  [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk0\DR0
19:47:33.0750 0x0fb8  \Device\Harddisk0\DR0 - ok
19:47:33.0765 0x0fb8  [ E5FA06ACA0D60BA9C870D0EF3D9898C9 ] \Device\Harddisk1\DR10
19:47:33.0781 0x0fb8  \Device\Harddisk1\DR10 - ok
19:47:33.0781 0x0fb8  ================ Scan VBR ==================================
19:47:33.0796 0x0fb8  [ 9413960D7C215D01B0DF7A7716FBF64E ] \Device\Harddisk0\DR0\Partition1
19:47:33.0796 0x0fb8  \Device\Harddisk0\DR0\Partition1 - ok
19:47:33.0812 0x0fb8  [ 3F31EE1C72A8224EF88368841578653D ] \Device\Harddisk1\DR10\Partition1
19:47:33.0812 0x0fb8  \Device\Harddisk1\DR10\Partition1 - ok
19:47:33.0812 0x0fb8  ================ Scan generic autorun ======================
19:47:33.0906 0x0fb8  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] C:\Program Files\Common Files\Real\Update_OB\realsched.exe
19:47:33.0921 0x0fb8  TkBellExe - ok
19:47:34.0000 0x0fb8  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] c:\program files\internet explorer\wmpscfgs.exe
19:47:34.0015 0x0fb8  Adobe_Reader - ok
19:47:34.0250 0x0fb8  [ EAEB2181BFB3CC877B8FA796734D12CA, 6CC8EF3DCEE484FCDD850782921466DF57899E57E40ECF29BC507BA6057C57CD ] C:\DOCUME~1\Mehrdad\LOCALS~1\Temp\wnaemscxro.tmp
19:47:37.0671 0x0fb8  wnaemscxro.tmp - ok
19:47:37.0781 0x0fb8  [ 24232996A38C0B0CF151C2140AE29FC8, D2FED8CCAE118F06FD948A4B12445AA8C29A3E7BB5B6FE90970FBC27F426F0B0 ] C:\WINDOWS\system32\ctfmon.exe
19:47:37.0796 0x0fb8  ctfmon.exe - ok
19:47:38.0171 0x0fb8  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] c:\program files\google\googletoolbarnotifier\googletoolbarnotifier .exe
19:47:38.0171 0x0fb8  swg - ok
19:47:38.0265 0x0fb8  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe
19:47:38.0265 0x0fb8  DW6 - ok
19:47:38.0312 0x0fb8  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] c:\docume~1\mehrdad\locals~1\temp\u5c6lj9                                                                                                                                                                           .exe
19:47:38.0312 0x0fb8  uishf9wuifwuh387fh3wufinhjfdwefe - ok
19:47:38.0390 0x0fb8  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] c:\docume~1\mehrdad\locals~1\temp\rcf                                   .exe
19:47:38.0406 0x0fb8  KOO9RV9K4Z - ok
19:47:38.0453 0x0fb8  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] c:\windows\rtahua    .exe
19:47:40.0562 0x0fb8  SMH2B46TDP - ok
19:47:40.0640 0x0fb8  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] C:\DOCUME~1\Mehrdad\LOCALS~1\Temp\Rcj.exe
19:47:40.0656 0x0fb8  NtWqIVLZEWZU - ok
19:47:40.0718 0x0fb8  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] C:\DOCUME~1\Mehrdad\LOCALS~1\Temp\kdhbahpmr\xilajdfsjmo.exe
19:47:40.0734 0x0fb8  oiknmrdh - ok
19:47:40.0781 0x0fb8  [ 9FD20351EA617F13F1AF2C478F6F2C27, FD92E3F81E3D0A713C58515D28477AA81B94E487F4FCB86F9828D0639E5BEDEC ] C:\WINDOWS\system32\ckvo.exe
19:47:40.0781 0x0fb8  kamsoft - ok
19:47:40.0921 0x0fb8  [ EC37FF287A6C178CC38E133513924E11, 5FF5C51F55FF7333827D760581DAD9BFD013B461C770D957830F592F460D372E ] c:\program files\netzero\exec         .exe
19:47:40.0968 0x0fb8  NetZero_uoltray - ok
19:47:41.0062 0x0fb8  [ BB60C03FCB59AB2857AED49D22334FEE, 7FFAB9053BE80F13E72E96817B6D136491F35FCEAA9008FF5C1486D367191A5A ] C:\Program Files\Driver Support\Driver Support\DriverSupport.exe
19:47:41.0078 0x0fb8  Driver Support - ok
19:47:41.0171 0x0fb8  [ 383B71DCB691CCAEEA445ACB9150DDD3, F504F67C3E1921CB72A540FBAF5AE558661D00B226D317F62D0B05B8D117A80F ] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
19:47:41.0171 0x0fb8  TOSCDSPD - ok
19:47:41.0203 0x0fb8  [ 24232996A38C0B0CF151C2140AE29FC8, D2FED8CCAE118F06FD948A4B12445AA8C29A3E7BB5B6FE90970FBC27F426F0B0 ] C:\WINDOWS\system32\ctfmon.exe
19:47:41.0203 0x0fb8  ctfmon.exe - ok
19:47:41.0437 0x0fb8  [ 74E6E96C6F0E2ECA4EDBB7F7A468F259, 58D083FE62A47860DE7E4D87EC74F1E900C1B1824A3E8C2B94CE07936AF0D0D1 ] C:\Program Files\Messenger\msmsgs.exe
19:47:41.0515 0x0fb8  MSMSGS - ok
19:47:44.0031 0x0fb8  AV detected via SS1: Spy Sweeper with AntiVirus, 5.3.2.2361, disabled, outofdate
19:47:44.0031 0x0fb8  AV detected via SS1: Eset NOD32 antivirus system 2.50, 2.50, enabled, outofdate
19:47:44.0156 0x0fb8  ============================================================
19:47:44.0156 0x0fb8  Scan finished
19:47:44.0156 0x0fb8  ============================================================
19:47:44.0187 0x0640  Detected object count: 1
19:47:44.0187 0x0640  Actual detected object count: 1
19:49:02.0250 0x0640  C:\WINDOWS\system32\DRIVERS\compbatt.sys - copied to quarantine
19:49:18.0156 0x0640  \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
19:49:18.0265 0x0640  \Device\Harddisk0\DR0\TDLFS\tdl - copied to quarantine
19:49:18.0468 0x0640  \Device\Harddisk0\DR0\TDLFS\rsrc.dat - copied to quarantine
19:49:18.0937 0x0640  \Device\Harddisk0\DR0\TDLFS\tdlcmd.dll - copied to quarantine
19:49:19.0093 0x0640  \Device\Harddisk0\DR0\TDLFS\data.db - copied to quarantine
19:49:19.0156 0x0640  \Device\Harddisk0\DR0\TDLFS\data.js - copied to quarantine
19:49:19.0171 0x0640  Compbatt ( Rootkit.Win32.TDSS.tdl3 ) - User select action: Quarantine
19:53:52.0937 0x080c  Deinitialize success
 

 

Thanks,

Link to post
Share on other sites

Please download Malwarebytes Anti-Rootkit from here

  • Unzip the contents to a folder in a convenient location.
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • If any threats are found, don´t click the Cleanup button - rather save the log and post it up in your topic.

Link to post
Share on other sites

I´m afraid I have very bad news for you.

Your system is highly infected with several trojans and at least one rootkit which is very hard to remove.

 

Also, your system is very outdated and even Service Pack 3 is missing.

 

This in combination makes it almost impossible to get your computer fixed.

I strongly recommend to format and reinstall windows here.

 

I´m sorry that I have no better news for you. :(

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.