Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Blacole Exploit and MSE Error 0x80508023


  • Please log in to reply
15 replies to this topic

#1 MapleTower

MapleTower

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:15 AM

Posted 11 September 2012 - 09:14 AM

Hello and thank you in advance for the advice. The problem occured while I was using Firefox 15.0.1. My OS is Windows 7 Home Premium SP1 64 Bit

It all started after I had preformed a google search and was browsing through the results. I clicked on a link, opening a pdf, and a MSE popup appeared and said something like the computer had been protected and was clean. I looked in MSE's History, and it showed three things: Exploit:Java/Blacole.FK, Exploit:Java/Blacole.ET, and another Exploit:Java/Blacole.FK. It said that the files had been quarantined, but they didn't show up under quarantined items, only under all detected items.

It also showed the MSE had encountered an error. The same error for all three: "Security Essentials encountered the following error: Error code 0x80508023. The program could not find the malware and other potentially unwanted software on this computer."

I researched this error, and one of the possible causes, according to this, was: "It can also mean that the threat was blocked, coming via an infected web page, and then a scan was unable to remove it as it never saved to the browser cache."

I think this is what happened, but just to be sure, I cleared my Java cache and Firefox's recent history, and I scanned the computer with MSE and Malware Bytes. They didn't detect anything, and I don't believe I'm experiencing any symptoms. Still I'm kind of a little paranoid. How can I be sure my computer is clean?

PS: I have to go to work now. Please excuse me if I don't respond until the late evening.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:15 AM

Posted 11 September 2012 - 09:35 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 MapleTower

MapleTower
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:15 AM

Posted 11 September 2012 - 10:03 AM

10:46:41.0611 112600 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
10:46:41.0867 112600 ============================================================
10:46:41.0868 112600 Current date / time: 2012/09/11 10:46:41.0867
10:46:41.0868 112600 SystemInfo:
10:46:41.0868 112600
10:46:41.0868 112600 OS Version: 6.1.7601 ServicePack: 1.0
10:46:41.0868 112600 Product type: Workstation
10:46:41.0868 112600 ComputerName: BETA-1
10:46:41.0873 112600 UserName: CB
10:46:41.0873 112600 Windows directory: C:\Windows
10:46:41.0873 112600 System windows directory: C:\Windows
10:46:41.0873 112600 Running under WOW64
10:46:41.0873 112600 Processor architecture: Intel x64
10:46:41.0873 112600 Number of processors: 4
10:46:41.0873 112600 Page size: 0x1000
10:46:41.0873 112600 Boot type: Normal boot
10:46:41.0873 112600 ============================================================
10:46:42.0497 112600 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:46:42.0525 112600 ============================================================
10:46:42.0525 112600 \Device\Harddisk0\DR0:
10:46:42.0525 112600 MBR partitions:
10:46:42.0525 112600 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x279F000
10:46:42.0525 112600 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x27B3000, BlocksNum 0x37BD2800
10:46:42.0525 112600 ============================================================
10:46:42.0567 112600 C: <-> \Device\Harddisk0\DR0\Partition2
10:46:42.0567 112600 ============================================================
10:46:42.0567 112600 Initialize success
10:46:42.0567 112600 ============================================================
10:47:16.0084 107004 ============================================================
10:47:16.0084 107004 Scan started
10:47:16.0084 107004 Mode: Manual; TDLFS;
10:47:16.0084 107004 ============================================================
10:47:16.0303 107004 ================ Scan system memory ========================
10:47:16.0303 107004 System memory - ok
10:47:16.0303 107004 ================ Scan services =============================
10:47:16.0455 107004 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
10:47:16.0461 107004 1394ohci - ok
10:47:16.0494 107004 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
10:47:16.0501 107004 ACPI - ok
10:47:16.0527 107004 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
10:47:16.0529 107004 AcpiPmi - ok
10:47:16.0642 107004 [ 1474F121C3DF1232D3E7239C03691EE6 ] AdobeActiveFileMonitor9.0 c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
10:47:16.0647 107004 AdobeActiveFileMonitor9.0 - ok
10:47:16.0773 107004 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:47:16.0816 107004 AdobeARMservice - ok
10:47:16.0953 107004 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:47:16.0959 107004 AdobeFlashPlayerUpdateSvc - ok
10:47:16.0993 107004 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
10:47:17.0007 107004 adp94xx - ok
10:47:17.0043 107004 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
10:47:17.0048 107004 adpahci - ok
10:47:17.0058 107004 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
10:47:17.0080 107004 adpu320 - ok
10:47:17.0100 107004 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
10:47:17.0102 107004 AeLookupSvc - ok
10:47:17.0157 107004 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
10:47:17.0180 107004 AFD - ok
10:47:17.0214 107004 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
10:47:17.0215 107004 agp440 - ok
10:47:17.0241 107004 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
10:47:17.0243 107004 ALG - ok
10:47:17.0266 107004 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
10:47:17.0267 107004 aliide - ok
10:47:17.0278 107004 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
10:47:17.0279 107004 amdide - ok
10:47:17.0294 107004 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
10:47:17.0296 107004 AmdK8 - ok
10:47:17.0306 107004 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
10:47:17.0308 107004 AmdPPM - ok
10:47:17.0329 107004 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
10:47:17.0331 107004 amdsata - ok
10:47:17.0346 107004 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
10:47:17.0350 107004 amdsbs - ok
10:47:17.0362 107004 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
10:47:17.0363 107004 amdxata - ok
10:47:17.0398 107004 [ 157B1C973637919DCD0D0464167C86BA ] AMPPAL C:\Windows\system32\DRIVERS\AMPPAL.sys
10:47:17.0403 107004 AMPPAL - ok
10:47:17.0412 107004 [ 157B1C973637919DCD0D0464167C86BA ] AMPPALP C:\Windows\system32\DRIVERS\amppal.sys
10:47:17.0414 107004 AMPPALP - ok
10:47:17.0517 107004 [ FB70F8C1283C8CC6BFAA6F9971107E68 ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
10:47:17.0541 107004 AMPPALR3 - ok
10:47:17.0579 107004 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
10:47:17.0581 107004 AppID - ok
10:47:17.0610 107004 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
10:47:17.0613 107004 AppIDSvc - ok
10:47:17.0640 107004 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
10:47:17.0642 107004 Appinfo - ok
10:47:17.0659 107004 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
10:47:17.0662 107004 arc - ok
10:47:17.0673 107004 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
10:47:17.0676 107004 arcsas - ok
10:47:17.0769 107004 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:47:17.0771 107004 aspnet_state - ok
10:47:17.0794 107004 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
10:47:17.0796 107004 AsyncMac - ok
10:47:17.0826 107004 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
10:47:17.0828 107004 atapi - ok
10:47:17.0866 107004 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:47:17.0892 107004 AudioEndpointBuilder - ok
10:47:17.0920 107004 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
10:47:17.0923 107004 AudioSrv - ok
10:47:17.0974 107004 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
10:47:17.0978 107004 AxInstSV - ok
10:47:18.0022 107004 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
10:47:18.0031 107004 b06bdrv - ok
10:47:18.0070 107004 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
10:47:18.0076 107004 b57nd60a - ok
10:47:18.0103 107004 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
10:47:18.0106 107004 BDESVC - ok
10:47:18.0116 107004 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
10:47:18.0118 107004 Beep - ok
10:47:18.0155 107004 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
10:47:18.0181 107004 BFE - ok
10:47:18.0217 107004 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
10:47:18.0240 107004 BITS - ok
10:47:18.0273 107004 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
10:47:18.0275 107004 blbdrive - ok
10:47:18.0366 107004 [ 6D625A18DDFCD0464B914B71293AD837 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
10:47:18.0784 107004 Bluetooth Device Monitor - ok
10:47:18.0819 107004 [ 74B2BF80D966CFE8BC8005D19E40608D ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
10:47:19.0231 107004 Bluetooth Media Service - ok
10:47:19.0268 107004 [ 707BF27D30ADAB7798C69D5BF41C7131 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
10:47:19.0709 107004 Bluetooth OBEX Service - ok
10:47:19.0739 107004 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
10:47:19.0741 107004 bowser - ok
10:47:19.0766 107004 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
10:47:19.0768 107004 BrFiltLo - ok
10:47:19.0770 107004 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
10:47:19.0771 107004 BrFiltUp - ok
10:47:19.0812 107004 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
10:47:19.0816 107004 Browser - ok
10:47:19.0833 107004 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
10:47:19.0840 107004 Brserid - ok
10:47:19.0845 107004 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
10:47:19.0846 107004 BrSerWdm - ok
10:47:19.0850 107004 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
10:47:19.0851 107004 BrUsbMdm - ok
10:47:19.0854 107004 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
10:47:19.0855 107004 BrUsbSer - ok
10:47:19.0899 107004 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
10:47:19.0901 107004 BthEnum - ok
10:47:19.0905 107004 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
10:47:19.0908 107004 BTHMODEM - ok
10:47:19.0929 107004 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
10:47:19.0932 107004 BthPan - ok
10:47:19.0953 107004 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
10:47:19.0961 107004 BTHPORT - ok
10:47:19.0994 107004 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
10:47:19.0997 107004 bthserv - ok
10:47:20.0020 107004 [ FA2D081709A764F6BEE16B7FFE03E36C ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
10:47:20.0050 107004 BTHSSecurityMgr - ok
10:47:20.0066 107004 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
10:47:20.0069 107004 BTHUSB - ok
10:47:20.0100 107004 [ 3676BEAA7D842047D30E95D59B241F22 ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
10:47:20.0103 107004 btmaux - ok
10:47:20.0141 107004 [ FA0E7B5AFB8FD335234916764A2D6CF9 ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
10:47:20.0168 107004 btmhsf - ok
10:47:20.0188 107004 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
10:47:20.0190 107004 cdfs - ok
10:47:20.0226 107004 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
10:47:20.0230 107004 cdrom - ok
10:47:20.0276 107004 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
10:47:20.0278 107004 CertPropSvc - ok
10:47:20.0302 107004 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
10:47:20.0306 107004 circlass - ok
10:47:20.0324 107004 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
10:47:20.0329 107004 CLFS - ok
10:47:20.0383 107004 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:47:20.0384 107004 clr_optimization_v2.0.50727_32 - ok
10:47:20.0417 107004 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:47:20.0420 107004 clr_optimization_v2.0.50727_64 - ok
10:47:20.0475 107004 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:47:20.0479 107004 clr_optimization_v4.0.30319_32 - ok
10:47:20.0519 107004 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:47:20.0522 107004 clr_optimization_v4.0.30319_64 - ok
10:47:20.0549 107004 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
10:47:20.0550 107004 CmBatt - ok
10:47:20.0559 107004 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
10:47:20.0561 107004 cmdide - ok
10:47:20.0595 107004 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
10:47:20.0602 107004 CNG - ok
10:47:20.0670 107004 [ 97238AC8006C14EAF80E374D3B81C2B3 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
10:47:20.0704 107004 CnxtHdAudService - ok
10:47:20.0722 107004 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
10:47:20.0723 107004 Compbatt - ok
10:47:20.0742 107004 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
10:47:20.0744 107004 CompositeBus - ok
10:47:20.0757 107004 COMSysApp - ok
10:47:20.0839 107004 [ CEF81AA95945FAC20A9FC515443A95D0 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
10:47:20.0844 107004 cphs - ok
10:47:20.0859 107004 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
10:47:20.0860 107004 crcdisk - ok
10:47:20.0891 107004 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
10:47:20.0894 107004 CryptSvc - ok
10:47:20.0931 107004 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
10:47:20.0934 107004 CtClsFlt - ok
10:47:20.0995 107004 [ 9A59DF2CA690019FEA3B265D5A7EB619 ] CxUtilSvc C:\Program Files\Conexant\SA3\CxUtilSvc.exe
10:47:21.0047 107004 CxUtilSvc - ok
10:47:21.0083 107004 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
10:47:21.0090 107004 DcomLaunch - ok
10:47:21.0116 107004 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
10:47:21.0121 107004 defragsvc - ok
10:47:21.0170 107004 [ A97BD43C2628D7274C88A3B4CE785EFB ] DellDigitalDelivery c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
10:47:21.0205 107004 DellDigitalDelivery - ok
10:47:21.0230 107004 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
10:47:21.0232 107004 DfsC - ok
10:47:21.0271 107004 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
10:47:21.0276 107004 Dhcp - ok
10:47:21.0296 107004 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
10:47:21.0298 107004 discache - ok
10:47:21.0320 107004 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
10:47:21.0322 107004 Disk - ok
10:47:21.0350 107004 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
10:47:21.0355 107004 Dnscache - ok
10:47:21.0376 107004 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
10:47:21.0380 107004 dot3svc - ok
10:47:21.0400 107004 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
10:47:21.0403 107004 DPS - ok
10:47:21.0421 107004 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
10:47:21.0422 107004 drmkaud - ok
10:47:21.0471 107004 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
10:47:21.0499 107004 DXGKrnl - ok
10:47:21.0514 107004 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
10:47:21.0517 107004 EapHost - ok
10:47:21.0604 107004 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
10:47:21.0681 107004 ebdrv - ok
10:47:21.0714 107004 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
10:47:21.0716 107004 EFS - ok
10:47:21.0765 107004 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
10:47:21.0788 107004 ehRecvr - ok
10:47:21.0796 107004 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
10:47:21.0808 107004 ehSched - ok
10:47:21.0850 107004 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
10:47:21.0873 107004 elxstor - ok
10:47:21.0880 107004 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
10:47:21.0882 107004 ErrDev - ok
10:47:21.0939 107004 [ 3B1F66A4E400D7ACF90D233D47DE6C7E ] ETD C:\Windows\system32\DRIVERS\ETD.sys
10:47:21.0944 107004 ETD - ok
10:47:21.0989 107004 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
10:47:21.0998 107004 EventSystem - ok
10:47:22.0072 107004 [ 52AE29A233832E0C704FD7FC534AF9FB ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
10:47:22.0137 107004 EvtEng - ok
10:47:22.0153 107004 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
10:47:22.0158 107004 exfat - ok
10:47:22.0193 107004 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
10:47:22.0199 107004 fastfat - ok
10:47:22.0271 107004 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
10:47:22.0295 107004 Fax - ok
10:47:22.0311 107004 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
10:47:22.0314 107004 fdc - ok
10:47:22.0338 107004 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
10:47:22.0340 107004 fdPHost - ok
10:47:22.0363 107004 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
10:47:22.0365 107004 FDResPub - ok
10:47:22.0395 107004 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
10:47:22.0397 107004 FileInfo - ok
10:47:22.0412 107004 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
10:47:22.0415 107004 Filetrace - ok
10:47:22.0425 107004 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
10:47:22.0427 107004 flpydisk - ok
10:47:22.0449 107004 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
10:47:22.0454 107004 FltMgr - ok
10:47:22.0500 107004 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
10:47:22.0534 107004 FontCache - ok
10:47:22.0581 107004 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:47:22.0584 107004 FontCache3.0.0.0 - ok
10:47:22.0620 107004 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
10:47:22.0622 107004 FsDepends - ok
10:47:22.0633 107004 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
10:47:22.0634 107004 Fs_Rec - ok
10:47:22.0658 107004 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
10:47:22.0663 107004 fvevol - ok
10:47:22.0688 107004 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
10:47:22.0691 107004 gagp30kx - ok
10:47:22.0731 107004 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
10:47:22.0736 107004 GamesAppService - ok
10:47:22.0772 107004 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
10:47:22.0797 107004 gpsvc - ok
10:47:22.0830 107004 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
10:47:22.0833 107004 hcw85cir - ok
10:47:22.0847 107004 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
10:47:22.0851 107004 HDAudBus - ok
10:47:22.0868 107004 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
10:47:22.0870 107004 HidBatt - ok
10:47:22.0881 107004 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
10:47:22.0884 107004 HidBth - ok
10:47:22.0906 107004 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
10:47:22.0909 107004 HidIr - ok
10:47:22.0930 107004 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
10:47:22.0933 107004 hidserv - ok
10:47:22.0969 107004 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
10:47:22.0983 107004 HidUsb - ok
10:47:23.0005 107004 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
10:47:23.0008 107004 hkmsvc - ok
10:47:23.0021 107004 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:47:23.0026 107004 HomeGroupListener - ok
10:47:23.0048 107004 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:47:23.0053 107004 HomeGroupProvider - ok
10:47:23.0074 107004 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
10:47:23.0077 107004 HpSAMD - ok
10:47:23.0103 107004 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
10:47:23.0129 107004 HTTP - ok
10:47:23.0143 107004 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
10:47:23.0145 107004 hwpolicy - ok
10:47:23.0185 107004 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
10:47:23.0189 107004 i8042prt - ok
10:47:23.0238 107004 [ D1753C06EE17E29352B065EACF3F10D0 ] iaStor C:\Windows\system32\drivers\iaStor.sys
10:47:23.0244 107004 iaStor - ok
10:47:23.0349 107004 [ 545462D0DBE24AF379BA869B7C185CCD ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
10:47:23.0351 107004 IAStorDataMgrSvc - ok
10:47:23.0383 107004 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
10:47:23.0390 107004 iaStorV - ok
10:47:23.0422 107004 [ 653A38B868A5F20BB506AB57AC41B936 ] ibtfltcoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
10:47:23.0424 107004 ibtfltcoex - ok
10:47:23.0473 107004 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:47:23.0508 107004 idsvc - ok
10:47:23.0834 107004 [ 371D7F91C0D2314EB984A4A6CBEABC92 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
10:47:24.0118 107004 igfx - ok
10:47:24.0144 107004 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
10:47:24.0146 107004 iirsp - ok
10:47:24.0182 107004 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
10:47:24.0207 107004 IKEEXT - ok
10:47:24.0244 107004 [ CADDF0927DAC63EDAE48F5C35A61D87D ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
10:47:24.0246 107004 intaud_WaveExtensible - ok
10:47:24.0282 107004 [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
10:47:24.0289 107004 IntcDAud - ok
10:47:24.0331 107004 [ 7C76466F4E0F76CE259C6005D161E9E8 ] Intel® Capability Licensing Service Interface c:\Program Files\Intel\iCLS Client\HeciServer.exe
10:47:25.0025 107004 Intel® Capability Licensing Service Interface - ok
10:47:25.0052 107004 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
10:47:25.0055 107004 intelide - ok
10:47:25.0083 107004 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
10:47:25.0085 107004 intelppm - ok
10:47:25.0101 107004 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
10:47:25.0104 107004 IPBusEnum - ok
10:47:25.0117 107004 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:47:25.0119 107004 IpFilterDriver - ok
10:47:25.0146 107004 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
10:47:25.0154 107004 iphlpsvc - ok
10:47:25.0178 107004 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
10:47:25.0181 107004 IPMIDRV - ok
10:47:25.0198 107004 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
10:47:25.0200 107004 IPNAT - ok
10:47:25.0222 107004 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
10:47:25.0224 107004 IRENUM - ok
10:47:25.0232 107004 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
10:47:25.0234 107004 isapnp - ok
10:47:25.0253 107004 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
10:47:25.0257 107004 iScsiPrt - ok
10:47:25.0288 107004 [ 6BCEF45131C8B8E1C558BE540B190B3C ] iusb3hcs C:\Windows\system32\drivers\iusb3hcs.sys
10:47:25.0290 107004 iusb3hcs - ok
10:47:25.0312 107004 [ F080EADA8715F811B58BD35BB774F2F9 ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys
10:47:25.0319 107004 iusb3hub - ok
10:47:25.0353 107004 [ 0F1756D9396740F053221FA6260FCE66 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys
10:47:25.0380 107004 iusb3xhc - ok
10:47:25.0409 107004 [ 716F66336F10885D935B08174DC54242 ] iwdbus C:\Windows\system32\DRIVERS\iwdbus.sys
10:47:25.0412 107004 iwdbus - ok
10:47:25.0447 107004 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
10:47:25.0449 107004 kbdclass - ok
10:47:25.0474 107004 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
10:47:25.0476 107004 kbdhid - ok
10:47:25.0490 107004 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
10:47:25.0492 107004 KeyIso - ok
10:47:25.0520 107004 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
10:47:25.0522 107004 KSecDD - ok
10:47:25.0537 107004 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
10:47:25.0540 107004 KSecPkg - ok
10:47:25.0556 107004 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
10:47:25.0558 107004 ksthunk - ok
10:47:25.0587 107004 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
10:47:25.0595 107004 KtmRm - ok
10:47:25.0635 107004 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
10:47:25.0640 107004 LanmanServer - ok
10:47:25.0664 107004 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:47:25.0668 107004 LanmanWorkstation - ok
10:47:25.0700 107004 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
10:47:25.0702 107004 lltdio - ok
10:47:25.0735 107004 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
10:47:25.0743 107004 lltdsvc - ok
10:47:25.0759 107004 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
10:47:25.0761 107004 lmhosts - ok
10:47:25.0798 107004 [ 5C08357C65F658E29B5DDC2EF18D575C ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
10:47:25.0806 107004 LMS - ok
10:47:25.0848 107004 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
10:47:25.0851 107004 LSI_FC - ok
10:47:25.0864 107004 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
10:47:25.0871 107004 LSI_SAS - ok
10:47:25.0878 107004 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
10:47:25.0879 107004 LSI_SAS2 - ok
10:47:25.0883 107004 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
10:47:25.0885 107004 LSI_SCSI - ok
10:47:25.0895 107004 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
10:47:25.0898 107004 luafv - ok
10:47:25.0922 107004 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
10:47:25.0924 107004 Mcx2Svc - ok
10:47:25.0936 107004 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
10:47:25.0938 107004 megasas - ok
10:47:25.0977 107004 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
10:47:25.0982 107004 MegaSR - ok
10:47:26.0008 107004 [ 6B01B7414A105B9E51652089A03027CF ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
10:47:26.0011 107004 MEIx64 - ok
10:47:26.0036 107004 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
10:47:26.0039 107004 MMCSS - ok
10:47:26.0043 107004 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
10:47:26.0045 107004 Modem - ok
10:47:26.0062 107004 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
10:47:26.0064 107004 monitor - ok
10:47:26.0106 107004 [ 5FEC1FF5BB9A1FA5C9CF4544D19D6D5D ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
10:47:26.0137 107004 MotioninJoyXFilter - ok
10:47:26.0154 107004 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
10:47:26.0156 107004 mouclass - ok
10:47:26.0181 107004 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
10:47:26.0184 107004 mouhid - ok
10:47:26.0198 107004 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
10:47:26.0201 107004 mountmgr - ok
10:47:26.0240 107004 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
10:47:26.0243 107004 MozillaMaintenance - ok
10:47:26.0280 107004 [ 94C66EDEDCDB6A126880472F9A704D8E ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
10:47:26.0283 107004 MpFilter - ok
10:47:26.0295 107004 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
10:47:26.0299 107004 mpio - ok
10:47:26.0312 107004 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
10:47:26.0314 107004 mpsdrv - ok
10:47:26.0355 107004 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
10:47:26.0382 107004 MpsSvc - ok
10:47:26.0397 107004 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
10:47:26.0400 107004 MRxDAV - ok
10:47:26.0431 107004 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
10:47:26.0434 107004 mrxsmb - ok
10:47:26.0450 107004 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:47:26.0455 107004 mrxsmb10 - ok
10:47:26.0463 107004 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:47:26.0466 107004 mrxsmb20 - ok
10:47:26.0491 107004 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
10:47:26.0492 107004 msahci - ok
10:47:26.0510 107004 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
10:47:26.0515 107004 msdsm - ok
10:47:26.0539 107004 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
10:47:26.0543 107004 MSDTC - ok
10:47:26.0564 107004 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
10:47:26.0567 107004 Msfs - ok
10:47:26.0586 107004 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
10:47:26.0587 107004 mshidkmdf - ok
10:47:26.0601 107004 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
10:47:26.0603 107004 msisadrv - ok
10:47:26.0621 107004 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
10:47:26.0625 107004 MSiSCSI - ok
10:47:26.0629 107004 msiserver - ok
10:47:26.0661 107004 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
10:47:26.0663 107004 MSKSSRV - ok
10:47:26.0716 107004 [ 59FAAF2C83C8169EA20F9E335E418907 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
10:47:26.0716 107004 MsMpSvc - ok
10:47:26.0735 107004 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
10:47:26.0739 107004 MSPCLOCK - ok
10:47:26.0745 107004 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
10:47:26.0747 107004 MSPQM - ok
10:47:26.0763 107004 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
10:47:26.0768 107004 MsRPC - ok
10:47:26.0786 107004 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
10:47:26.0788 107004 mssmbios - ok
10:47:26.0804 107004 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
10:47:26.0806 107004 MSTEE - ok
10:47:26.0811 107004 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
10:47:26.0813 107004 MTConfig - ok
10:47:26.0827 107004 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
10:47:26.0830 107004 Mup - ok
10:47:26.0879 107004 [ 4D02A9A4AAE43280D8631F232AAD79BC ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
10:47:26.0966 107004 MyWiFiDHCPDNS - ok
10:47:27.0009 107004 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
10:47:27.0019 107004 napagent - ok
10:47:27.0056 107004 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
10:47:27.0062 107004 NativeWifiP - ok
10:47:27.0121 107004 [ C38B8AE57F78915905064A9A24DC1586 ] NDIS C:\Windows\system32\drivers\ndis.sys
10:47:27.0150 107004 NDIS - ok
10:47:27.0161 107004 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
10:47:27.0162 107004 NdisCap - ok
10:47:27.0184 107004 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
10:47:27.0186 107004 NdisTapi - ok
10:47:27.0208 107004 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
10:47:27.0210 107004 Ndisuio - ok
10:47:27.0227 107004 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
10:47:27.0231 107004 NdisWan - ok
10:47:27.0245 107004 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
10:47:27.0248 107004 NDProxy - ok
10:47:27.0261 107004 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
10:47:27.0262 107004 NetBIOS - ok
10:47:27.0276 107004 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
10:47:27.0281 107004 NetBT - ok
10:47:27.0294 107004 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
10:47:27.0296 107004 Netlogon - ok
10:47:27.0343 107004 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
10:47:27.0350 107004 Netman - ok
10:47:27.0397 107004 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:27.0400 107004 NetMsmqActivator - ok
10:47:27.0403 107004 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:27.0404 107004 NetPipeActivator - ok
10:47:27.0429 107004 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
10:47:27.0449 107004 netprofm - ok
10:47:27.0452 107004 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:27.0453 107004 NetTcpActivator - ok
10:47:27.0457 107004 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:47:27.0458 107004 NetTcpPortSharing - ok
10:47:27.0674 107004 [ 262225F08B891FD7F16B3B93A3177C1F ] NETwNs64 C:\Windows\system32\DRIVERS\Netwsw00.sys
10:47:27.0886 107004 NETwNs64 - ok
10:47:27.0923 107004 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
10:47:27.0925 107004 nfrd960 - ok
10:47:27.0942 107004 [ 91B4E0273D2F6C24EF845F2B41311289 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
10:47:27.0945 107004 NisDrv - ok
10:47:27.0975 107004 [ 10A43829A9E606AF3EEF25A1C1665923 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
10:47:27.0981 107004 NisSrv - ok
10:47:28.0017 107004 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
10:47:28.0026 107004 NlaSvc - ok
10:47:28.0127 107004 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
10:47:28.0209 107004 NOBU - ok
10:47:28.0231 107004 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
10:47:28.0233 107004 Npfs - ok
10:47:28.0250 107004 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
10:47:28.0253 107004 nsi - ok
10:47:28.0276 107004 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
10:47:28.0281 107004 nsiproxy - ok
10:47:28.0336 107004 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
10:47:28.0380 107004 Ntfs - ok
10:47:28.0404 107004 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
10:47:28.0405 107004 Null - ok
10:47:28.0417 107004 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
10:47:28.0420 107004 nvraid - ok
10:47:28.0437 107004 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
10:47:28.0440 107004 nvstor - ok
10:47:28.0453 107004 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
10:47:28.0455 107004 nv_agp - ok
10:47:28.0469 107004 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
10:47:28.0471 107004 ohci1394 - ok
10:47:28.0502 107004 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
10:47:28.0507 107004 p2pimsvc - ok
10:47:28.0529 107004 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
10:47:28.0539 107004 p2psvc - ok
10:47:28.0564 107004 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
10:47:28.0566 107004 Parport - ok
10:47:28.0594 107004 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
10:47:28.0598 107004 partmgr - ok
10:47:28.0610 107004 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
10:47:28.0614 107004 PcaSvc - ok
10:47:28.0641 107004 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
10:47:28.0646 107004 pci - ok
10:47:28.0667 107004 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
10:47:28.0669 107004 pciide - ok
10:47:28.0689 107004 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
10:47:28.0694 107004 pcmcia - ok
10:47:28.0710 107004 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
10:47:28.0712 107004 pcw - ok
10:47:28.0734 107004 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
10:47:28.0757 107004 PEAUTH - ok
10:47:28.0829 107004 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
10:47:28.0830 107004 PerfHost - ok
10:47:28.0883 107004 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
10:47:28.0928 107004 pla - ok
10:47:28.0965 107004 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
10:47:28.0973 107004 PlugPlay - ok
10:47:28.0996 107004 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
10:47:28.0998 107004 PNRPAutoReg - ok
10:47:29.0008 107004 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
10:47:29.0010 107004 PNRPsvc - ok
10:47:29.0035 107004 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
10:47:29.0042 107004 PolicyAgent - ok
10:47:29.0070 107004 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power C:\Windows\system32\umpo.dll
10:47:29.0074 107004 Power - ok
10:47:29.0106 107004 [ 610183C42EFB6A9A0E3F31DBCABB6A58 ] PPJoyBus C:\Windows\system32\DRIVERS\PPJoyBus64.sys
10:47:29.0128 107004 PPJoyBus - ok
10:47:29.0147 107004 [ FF42F471562D6ADD62B11A3E0279CDC2 ] PPortJoystick C:\Windows\system32\DRIVERS\PPortJoy64.sys
10:47:29.0157 107004 PPortJoystick - ok
10:47:29.0190 107004 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
10:47:29.0193 107004 PptpMiniport - ok
10:47:29.0204 107004 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
10:47:29.0207 107004 Processor - ok
10:47:29.0230 107004 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
10:47:29.0236 107004 ProfSvc - ok
10:47:29.0253 107004 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:47:29.0254 107004 ProtectedStorage - ok
10:47:29.0280 107004 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
10:47:29.0283 107004 Psched - ok
10:47:29.0312 107004 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
10:47:29.0314 107004 PxHlpa64 - ok
10:47:29.0361 107004 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
10:47:29.0403 107004 ql2300 - ok
10:47:29.0408 107004 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
10:47:29.0410 107004 ql40xx - ok
10:47:29.0433 107004 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
10:47:29.0438 107004 QWAVE - ok
10:47:29.0441 107004 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
10:47:29.0443 107004 QWAVEdrv - ok
10:47:29.0452 107004 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
10:47:29.0453 107004 RasAcd - ok
10:47:29.0499 107004 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
10:47:29.0501 107004 RasAgileVpn - ok
10:47:29.0513 107004 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
10:47:29.0516 107004 RasAuto - ok
10:47:29.0531 107004 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
10:47:29.0533 107004 Rasl2tp - ok
10:47:29.0555 107004 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
10:47:29.0561 107004 RasMan - ok
10:47:29.0575 107004 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
10:47:29.0577 107004 RasPppoe - ok
10:47:29.0581 107004 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
10:47:29.0582 107004 RasSstp - ok
10:47:29.0599 107004 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
10:47:29.0604 107004 rdbss - ok
10:47:29.0618 107004 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
10:47:29.0619 107004 rdpbus - ok
10:47:29.0634 107004 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
10:47:29.0636 107004 RDPCDD - ok
10:47:29.0644 107004 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
10:47:29.0645 107004 RDPENCDD - ok
10:47:29.0659 107004 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
10:47:29.0661 107004 RDPREFMP - ok
10:47:29.0690 107004 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
10:47:29.0696 107004 RDPWD - ok
10:47:29.0722 107004 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
10:47:29.0744 107004 rdyboost - ok
10:47:29.0823 107004 [ C480D028012881E0136962A49379688D ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
10:47:29.0855 107004 RegSrvc - ok
10:47:29.0888 107004 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
10:47:29.0891 107004 RemoteAccess - ok
10:47:29.0918 107004 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
10:47:29.0921 107004 RemoteRegistry - ok
10:47:29.0985 107004 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
10:47:29.0988 107004 RFCOMM - ok
10:47:29.0999 107004 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
10:47:30.0002 107004 RpcEptMapper - ok
10:47:30.0030 107004 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
10:47:30.0032 107004 RpcLocator - ok
10:47:30.0053 107004 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
10:47:30.0056 107004 RpcSs - ok
10:47:30.0081 107004 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
10:47:30.0083 107004 rspndr - ok
10:47:30.0127 107004 [ 40817D2DA49866C55781DB7601ABCEC1 ] RSUSBVSTOR C:\Windows\system32\Drivers\RTSUVSTOR.sys
10:47:30.0132 107004 RSUSBVSTOR - ok
10:47:30.0166 107004 [ 7F4F11527AF5A7E4526CB6A146B3E40C ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
10:47:30.0189 107004 RTL8167 - ok
10:47:30.0199 107004 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
10:47:30.0200 107004 SamSs - ok
10:47:30.0215 107004 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
10:47:30.0217 107004 sbp2port - ok
10:47:30.0252 107004 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
10:47:30.0256 107004 SCardSvr - ok
10:47:30.0280 107004 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
10:47:30.0282 107004 scfilter - ok
10:47:30.0315 107004 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
10:47:30.0341 107004 Schedule - ok
10:47:30.0367 107004 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
10:47:30.0368 107004 SCPolicySvc - ok
10:47:30.0390 107004 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
10:47:30.0394 107004 SDRSVC - ok
10:47:30.0417 107004 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
10:47:30.0420 107004 secdrv - ok
10:47:30.0430 107004 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
10:47:30.0432 107004 seclogon - ok
10:47:30.0451 107004 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
10:47:30.0453 107004 SENS - ok
10:47:30.0485 107004 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
10:47:30.0487 107004 SensrSvc - ok
10:47:30.0506 107004 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
10:47:30.0508 107004 Serenum - ok
10:47:30.0531 107004 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
10:47:30.0533 107004 Serial - ok
10:47:30.0536 107004 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
10:47:30.0538 107004 sermouse - ok
10:47:30.0554 107004 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
10:47:30.0557 107004 SessionEnv - ok
10:47:30.0560 107004 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
10:47:30.0561 107004 sffdisk - ok
10:47:30.0578 107004 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
10:47:30.0579 107004 sffp_mmc - ok
10:47:30.0582 107004 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
10:47:30.0584 107004 sffp_sd - ok
10:47:30.0588 107004 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
10:47:30.0590 107004 sfloppy - ok
10:47:30.0663 107004 [ 4215C271D6E6898C3F4DABAB4F387DC9 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
10:47:30.0700 107004 SftService - ok
10:47:30.0725 107004 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
10:47:30.0731 107004 SharedAccess - ok
10:47:30.0745 107004 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:47:30.0752 107004 ShellHWDetection - ok
10:47:30.0778 107004 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
10:47:30.0779 107004 SiSRaid2 - ok
10:47:30.0790 107004 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
10:47:30.0793 107004 SiSRaid4 - ok
10:47:30.0842 107004 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
10:47:30.0847 107004 SkypeUpdate - ok
10:47:30.0869 107004 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
10:47:30.0871 107004 Smb - ok
10:47:30.0904 107004 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
10:47:30.0907 107004 SNMPTRAP - ok
10:47:30.0918 107004 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
10:47:30.0920 107004 spldr - ok
10:47:30.0967 107004 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
10:47:30.0990 107004 Spooler - ok
10:47:31.0070 107004 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
10:47:31.0160 107004 sppsvc - ok
10:47:31.0176 107004 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
10:47:31.0179 107004 sppuinotify - ok
10:47:31.0214 107004 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
10:47:31.0222 107004 srv - ok
10:47:31.0244 107004 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
10:47:31.0251 107004 srv2 - ok
10:47:31.0262 107004 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
10:47:31.0265 107004 srvnet - ok
10:47:31.0293 107004 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
10:47:31.0297 107004 SSDPSRV - ok
10:47:31.0305 107004 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
10:47:31.0311 107004 SstpSvc - ok
10:47:31.0351 107004 Steam Client Service - ok
10:47:31.0366 107004 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
10:47:31.0367 107004 stexstor - ok
10:47:31.0391 107004 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
10:47:31.0402 107004 stisvc - ok
10:47:31.0418 107004 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
10:47:31.0420 107004 swenum - ok
10:47:31.0442 107004 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
10:47:31.0449 107004 swprv - ok
10:47:31.0484 107004 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
10:47:31.0518 107004 SysMain - ok
10:47:31.0526 107004 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:47:31.0528 107004 TabletInputService - ok
10:47:31.0540 107004 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
10:47:31.0545 107004 TapiSrv - ok
10:47:31.0551 107004 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
10:47:31.0553 107004 TBS - ok
10:47:31.0647 107004 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
10:47:31.0714 107004 Tcpip - ok
10:47:31.0779 107004 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
10:47:31.0790 107004 TCPIP6 - ok
10:47:31.0825 107004 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
10:47:31.0826 107004 tcpipreg - ok
10:47:31.0845 107004 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
10:47:31.0847 107004 TDPIPE - ok
10:47:31.0873 107004 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
10:47:31.0876 107004 TDTCP - ok
10:47:31.0894 107004 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
10:47:31.0897 107004 tdx - ok
10:47:31.0914 107004 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
10:47:31.0916 107004 TermDD - ok
10:47:31.0953 107004 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
10:47:31.0978 107004 TermService - ok
10:47:31.0996 107004 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
10:47:32.0000 107004 Themes - ok
10:47:32.0022 107004 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
10:47:32.0024 107004 THREADORDER - ok
10:47:32.0035 107004 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
10:47:32.0040 107004 TrkWks - ok
10:47:32.0076 107004 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:47:32.0079 107004 TrustedInstaller - ok
10:47:32.0103 107004 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
10:47:32.0105 107004 tssecsrv - ok
10:47:32.0123 107004 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
10:47:32.0125 107004 TsUsbFlt - ok
10:47:32.0132 107004 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
10:47:32.0134 107004 TsUsbGD - ok
10:47:32.0166 107004 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
10:47:32.0169 107004 tunnel - ok
10:47:32.0195 107004 [ FD24F98D2898BE093FE926604BE7DB99 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
10:47:32.0212 107004 TurboB - ok
10:47:32.0248 107004 [ 600B406A04D90F577FEA8A88D7379F08 ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
10:47:32.0280 107004 TurboBoost - ok
10:47:32.0297 107004 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
10:47:32.0300 107004 uagp35 - ok
10:47:32.0327 107004 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
10:47:32.0331 107004 udfs - ok
10:47:32.0355 107004 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
10:47:32.0357 107004 UI0Detect - ok
10:47:32.0360 107004 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
10:47:32.0361 107004 uliagpkx - ok
10:47:32.0382 107004 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
10:47:32.0385 107004 umbus - ok
10:47:32.0395 107004 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
10:47:32.0397 107004 UmPass - ok
10:47:32.0495 107004 [ 0DFC9713D117B349E41A2A477448107A ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
10:47:32.0502 107004 UNS - ok
10:47:32.0534 107004 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
10:47:32.0540 107004 upnphost - ok
10:47:32.0579 107004 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
10:47:32.0612 107004 usbaudio - ok
10:47:32.0646 107004 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
10:47:32.0668 107004 usbccgp - ok
10:47:32.0686 107004 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
10:47:32.0688 107004 usbcir - ok
10:47:32.0702 107004 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
10:47:32.0704 107004 usbehci - ok
10:47:32.0734 107004 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
10:47:32.0741 107004 usbhub - ok
10:47:32.0763 107004 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
10:47:32.0766 107004 usbohci - ok
10:47:32.0785 107004 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
10:47:32.0787 107004 usbprint - ok
10:47:32.0802 107004 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:47:32.0805 107004 USBSTOR - ok
10:47:32.0833 107004 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
10:47:32.0836 107004 usbuhci - ok
10:47:32.0887 107004 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
10:47:32.0892 107004 usbvideo - ok
10:47:32.0925 107004 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
10:47:32.0928 107004 UxSms - ok
10:47:32.0939 107004 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
10:47:32.0941 107004 VaultSvc - ok
10:47:32.0970 107004 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
10:47:32.0973 107004 vdrvroot - ok
10:47:33.0002 107004 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
10:47:33.0010 107004 vds - ok
10:47:33.0022 107004 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
10:47:33.0024 107004 vga - ok
10:47:33.0037 107004 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
10:47:33.0039 107004 VgaSave - ok
10:47:33.0061 107004 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
10:47:33.0065 107004 vhdmp - ok
10:47:33.0069 107004 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
10:47:33.0070 107004 viaide - ok
10:47:33.0081 107004 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
10:47:33.0083 107004 volmgr - ok
10:47:33.0108 107004 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
10:47:33.0115 107004 volmgrx - ok
10:47:33.0130 107004 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
10:47:33.0136 107004 volsnap - ok
10:47:33.0162 107004 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
10:47:33.0165 107004 vsmraid - ok
10:47:33.0216 107004 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
10:47:33.0283 107004 VSS - ok
10:47:33.0301 107004 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
10:47:33.0304 107004 vwifibus - ok
10:47:33.0335 107004 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
10:47:33.0338 107004 vwififlt - ok
10:47:33.0348 107004 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
10:47:33.0349 107004 vwifimp - ok
10:47:33.0382 107004 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
10:47:33.0391 107004 W32Time - ok
10:47:33.0405 107004 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
10:47:33.0407 107004 WacomPen - ok
10:47:33.0436 107004 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
10:47:33.0439 107004 WANARP - ok
10:47:33.0447 107004 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
10:47:33.0448 107004 Wanarpv6 - ok
10:47:33.0526 107004 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
10:47:33.0556 107004 WatAdminSvc - ok
10:47:33.0608 107004 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
10:47:33.0651 107004 wbengine - ok
10:47:33.0676 107004 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
10:47:33.0680 107004 WbioSrvc - ok
10:47:33.0694 107004 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
10:47:33.0699 107004 wcncsvc - ok
10:47:33.0707 107004 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:47:33.0709 107004 WcsPlugInService - ok
10:47:33.0739 107004 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
10:47:33.0741 107004 Wd - ok
10:47:33.0771 107004 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
10:47:33.0794 107004 Wdf01000 - ok
10:47:33.0809 107004 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
10:47:33.0813 107004 WdiServiceHost - ok
10:47:33.0826 107004 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
10:47:33.0828 107004 WdiSystemHost - ok
10:47:33.0842 107004 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
10:47:33.0846 107004 WebClient - ok
10:47:33.0856 107004 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
10:47:33.0860 107004 Wecsvc - ok
10:47:33.0876 107004 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
10:47:33.0878 107004 wercplsupport - ok
10:47:33.0907 107004 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
10:47:33.0912 107004 WerSvc - ok
10:47:33.0950 107004 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
10:47:33.0952 107004 WfpLwf - ok
10:47:34.0003 107004 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
10:47:34.0008 107004 WimFltr - ok
10:47:34.0023 107004 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
10:47:34.0025 107004 WIMMount - ok
10:47:34.0041 107004 WinDefend - ok
10:47:34.0045 107004 WinHttpAutoProxySvc - ok
10:47:34.0088 107004 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
10:47:34.0092 107004 Winmgmt - ok
10:47:34.0163 107004 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
10:47:34.0232 107004 WinRM - ok
10:47:34.0271 107004 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
10:47:34.0293 107004 Wlansvc - ok
10:47:34.0331 107004 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
10:47:34.0334 107004 wlcrasvc - ok
10:47:34.0432 107004 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:47:34.0513 107004 wlidsvc - ok
10:47:34.0553 107004 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
10:47:34.0555 107004 WmiAcpi - ok
10:47:34.0598 107004 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
10:47:34.0603 107004 wmiApSrv - ok
10:47:34.0620 107004 WMPNetworkSvc - ok
10:47:34.0653 107004 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
10:47:34.0655 107004 WPCSvc - ok
10:47:34.0670 107004 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
10:47:34.0673 107004 WPDBusEnum - ok
10:47:34.0684 107004 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
10:47:34.0686 107004 ws2ifsl - ok
10:47:34.0705 107004 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
10:47:34.0708 107004 wscsvc - ok
10:47:34.0710 107004 WSearch - ok
10:47:34.0792 107004 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
10:47:34.0859 107004 wuauserv - ok
10:47:34.0880 107004 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
10:47:34.0883 107004 WudfPf - ok
10:47:34.0897 107004 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
10:47:34.0900 107004 WUDFRd - ok
10:47:34.0915 107004 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
10:47:34.0918 107004 wudfsvc - ok
10:47:34.0940 107004 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
10:47:34.0949 107004 WwanSvc - ok
10:47:34.0985 107004 [ 9176C0822FAA649E45121875BE32F5D2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
10:47:34.0995 107004 xusb21 - ok
10:47:35.0102 107004 [ 118C018DF1C53B94F8C06D2CABBBDA52 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
10:47:35.0203 107004 ZeroConfigService - ok
10:47:35.0221 107004 ================ Scan global ===============================
10:47:35.0237 107004 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:47:35.0258 107004 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
10:47:35.0266 107004 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
10:47:35.0292 107004 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:47:35.0314 107004 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:47:35.0322 107004 [Global] - ok
10:47:35.0322 107004 ================ Scan MBR ==================================
10:47:35.0333 107004 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
10:47:35.0666 107004 \Device\Harddisk0\DR0 - ok
10:47:35.0667 107004 ================ Scan VBR ==================================
10:47:35.0670 107004 [ 0135651AED811B95C6B1D5958CF8D2C9 ] \Device\Harddisk0\DR0\Partition1
10:47:35.0673 107004 \Device\Harddisk0\DR0\Partition1 - ok
10:47:35.0709 107004 [ E1141CBBE41AF3C85F879C7AB3457792 ] \Device\Harddisk0\DR0\Partition2
10:47:35.0713 107004 \Device\Harddisk0\DR0\Partition2 - ok
10:47:35.0713 107004 ============================================================
10:47:35.0713 107004 Scan finished
10:47:35.0713 107004 ============================================================
10:47:35.0726 106996 Detected object count: 0
10:47:35.0726 106996 Actual detected object count: 0

#4 MapleTower

MapleTower
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:15 AM

Posted 11 September 2012 - 11:24 AM

This one took a while. Perhaps because I changed the option from quick to C:\

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-11 10:51:49
-----------------------------
10:51:49.250 OS Version: Windows x64 6.1.7601 Service Pack 1
10:51:49.250 Number of processors: 4 586 0x3A09
10:51:49.251 ComputerName: BETA-1 UserName: CB
10:51:50.854 Initialize success
10:52:37.193 AVAST engine defs: 12091100
10:53:43.769 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
10:53:43.773 Disk 0 Vendor: ST950032 D005 Size: 476940MB BusType: 3
10:53:43.795 Disk 0 MBR read successfully
10:53:43.799 Disk 0 MBR scan
10:53:43.814 Disk 0 Windows VISTA default MBR code
10:53:43.816 Disk 0 Partition 1 00 DE Dell Utility DELL 4.1 39 MB offset 63
10:53:43.827 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 20286 MB offset 81920
10:53:43.852 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 456613 MB offset 41627648
10:53:43.925 Disk 0 scanning C:\Windows\system32\drivers
10:53:57.840 Service scanning
10:54:30.841 Modules scanning
10:54:30.847 Disk 0 trace - called modules:
10:54:30.873 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
10:54:30.878 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8008ae4060]
10:54:30.880 3 CLASSPNP.SYS[fffff88001dba43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80065e1050]
10:54:32.776 AVAST engine scan C:\
12:22:41.111 Scan finished successfully
12:23:29.185 Disk 0 MBR has been saved successfully to "C:\Users\CB\Documents\MBR.dat"
12:23:29.199 The log file has been saved successfully to "C:\Users\CB\Documents\aswMBR.txt"

PS: Thank you for the assistance so far. I'll do the last one when I return from work.

#5 MapleTower

MapleTower
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:15 AM

Posted 11 September 2012 - 08:07 PM

ESET didn't detect anything.

Since five scans failed to find anything, can I be sure that my computer is clean?

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:15 AM

Posted 11 September 2012 - 08:40 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#7 MapleTower

MapleTower
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:15 AM

Posted 11 September 2012 - 08:46 PM

I already ran MBAM before I created this topic.

Here's the log:

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.16.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
CB :: BETA-1 [administrator]

8/16/2012 3:52:54 PM
mbam-log-2012-08-16 (15-52-54).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 329904
Time elapsed: 40 minute(s), 55 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Edited by MapleTower, 11 September 2012 - 08:46 PM.


#8 MapleTower

MapleTower
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:15 AM

Posted 12 September 2012 - 02:11 AM

Just in case, I ran MBAM again. Still nothing. I think I'm safe.

Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.16.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
CB :: BETA-1 [administrator]

8/16/2012 3:52:54 PM
mbam-log-2012-08-16 (15-52-54).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 329904
Time elapsed: 40 minute(s), 55 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#9 MapleTower

MapleTower
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:15 AM

Posted 12 September 2012 - 02:42 AM

Is this information safe to post?

MiniToolBox by Farbar Version: 23-07-2012
Ran by CB (administrator) on 12-09-2012 at 03:34:08
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Intel® Centrino® Wireless-N 2230 = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Beta-1
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : 68-5D-43-6F-30-6B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 68-5D-43-6F-30-6B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : 68-5D-43-6F-30-6E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 2230
Physical Address. . . . . . . . . : 68-5D-43-6F-30-6A
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::add7:dca:112b:9335%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.7(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, September 12, 2012 3:26:28 AM
Lease Expires . . . . . . . . . . : Thursday, September 13, 2012 3:26:27 AM
Default Gateway . . . . . . . . . : 192.168.1.10
DHCP Server . . . . . . . . . . . : 192.168.1.10
DHCPv6 IAID . . . . . . . . . . . : 241720643
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-78-77-E7-D4-BE-D9-3F-40-CE
DNS Servers . . . . . . . . . . . : 192.168.1.10
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : D4-BE-D9-3F-40-CE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{EF38DAC0-512B-43EB-BC54-4D47835B5697}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:1c79:2a68:3f57:fef8(Preferred)
Link-local IPv6 Address . . . . . : fe80::1c79:2a68:3f57:fef8%18(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.1.10

Name: google.com
Addresses: 2607:f8b0:4006:800::1000
74.125.226.193
74.125.226.206
74.125.226.196
74.125.226.195
74.125.226.200
74.125.226.198
74.125.226.194
74.125.226.201
74.125.226.199
74.125.226.192
74.125.226.197


Pinging google.com [74.125.226.206] with 32 bytes of data:
Reply from 74.125.226.206: bytes=32 time=9ms TTL=55
Reply from 74.125.226.206: bytes=32 time=12ms TTL=55

Ping statistics for 74.125.226.206:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 9ms, Maximum = 12ms, Average = 10ms
Server: UnKnown
Address: 192.168.1.10

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=467ms TTL=48
Reply from 72.30.38.140: bytes=32 time=567ms TTL=49

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 467ms, Maximum = 567ms, Average = 517ms
Server: UnKnown
Address: 192.168.1.10

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...68 5d 43 6f 30 6b ......Microsoft Virtual WiFi Miniport Adapter #2
16...68 5d 43 6f 30 6b ......Microsoft Virtual WiFi Miniport Adapter
14...68 5d 43 6f 30 6e ......Bluetooth Device (Personal Area Network)
13...68 5d 43 6f 30 6a ......Intel® Centrino® Wireless-N 2230
11...d4 be d9 3f 40 ce ......Realtek PCIe FE Family Controller
1...........................Software Loopback Interface 1
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.10 192.168.1.7 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.7 281
192.168.1.7 255.255.255.255 On-link 192.168.1.7 281
192.168.1.255 255.255.255.255 On-link 192.168.1.7 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.7 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.7 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
18 58 ::/0 On-link
1 306 ::1/128 On-link
18 58 2001::/32 On-link
18 306 2001:0:4137:9e76:1c79:2a68:3f57:fef8/128
On-link
13 281 fe80::/64 On-link
18 306 fe80::/64 On-link
18 306 fe80::1c79:2a68:3f57:fef8/128
On-link
13 281 fe80::add7:dca:112b:9335/128
On-link
1 306 ff00::/8 On-link
18 306 ff00::/8 On-link
13 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/12/2012 03:26:35 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/12/2012 03:21:20 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/12/2012 02:39:05 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/12/2012 00:42:42 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/12/2012 00:42:41 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/12/2012 00:41:31 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/11/2012 10:05:14 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/11/2012 08:14:48 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/11/2012 08:14:45 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/11/2012 00:34:27 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (09/12/2012 03:28:48 AM) (Source: Service Control Manager) (User: )
Description: The Dell Digital Delivery Service service terminated unexpectedly. It has done this 1 time(s).

Error: (09/12/2012 02:41:16 AM) (Source: Service Control Manager) (User: )
Description: The Dell Digital Delivery Service service terminated unexpectedly. It has done this 1 time(s).

Error: (09/11/2012 10:07:24 PM) (Source: Service Control Manager) (User: )
Description: The Dell Digital Delivery Service service terminated unexpectedly. It has done this 1 time(s).

Error: (09/11/2012 10:06:33 PM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (09/11/2012 10:06:33 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (09/07/2012 10:35:07 AM) (Source: Service Control Manager) (User: )
Description: The Dell Digital Delivery Service service terminated unexpectedly. It has done this 1 time(s).

Error: (09/07/2012 10:34:48 AM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (09/07/2012 10:34:48 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (09/04/2012 09:26:24 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.

Error: (09/04/2012 09:26:22 AM) (Source: Disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk1\DR1.


Microsoft Office Sessions:
=========================
Error: (09/12/2012 03:26:35 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/12/2012 03:21:20 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\CB\Downloads\esetsmartinstaller_enu.exe

Error: (09/12/2012 02:39:05 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/12/2012 00:42:42 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\CB\downloads\esetsmartinstaller_enu.exe

Error: (09/12/2012 00:42:41 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\CB\downloads\esetsmartinstaller_enu.exe

Error: (09/12/2012 00:41:31 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (09/11/2012 10:05:14 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/11/2012 08:14:48 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\CB\Downloads\esetsmartinstaller_enu.exe

Error: (09/11/2012 08:14:45 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\CB\Downloads\esetsmartinstaller_enu.exe

Error: (09/11/2012 00:34:27 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Program Files (x86)\Cozi Express\CoziExpress.exe


=========================== Installed Programs ============================

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Accidental Damage Services Agreement (Version: 2.0.0)
Adobe AIR (Version: 2.6.0.19120)
Adobe Community Help (Version: 3.2.1)
Adobe Community Help (Version: 3.2.1.650)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.271)
Adobe Flash Player 11 Plugin (Version: 11.4.402.265)
Adobe Photoshop Elements 9 (Version: 9.0)
Adobe Premiere Elements 9 (Version: 9.0)
Adobe Reader X (10.1.4) MUI (Version: 10.1.4)
Advanced Audio FX Engine (Version: 1.12.05)
Alien Swarm
Banctec Service Agreement (Version: 2.0.0)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Blackhawk Striker 2 (Version: 2.2.0.95)
Blio (Version: 2.3.7140)
Bounce Symphony (Version: 2.2.0.95)
Build-a-lot 2 (Version: 2.2.0.95)
Cake Mania (Version: 2.2.0.95)
Chuzzle Deluxe (Version: 2.2.0.95)
Complete Care Business Service Agreement (Version: 2.0.0)
Conexant SmartAudio HD (Version: 8.54.29.0)
Consumer In-Home Service Agreement (Version: 2.0.0)
Cozi (Version: 1.0.6505.38692)
D3DX10 (Version: 15.4.2368.0902)
Dell DataSafe Local Backup - Support Software (Version: 9.4.67)
Dell DataSafe Local Backup (Version: 9.4.67)
Dell DataSafe Online (Version: 2.1.19634)
Dell Digital Delivery (Version: 2.1.1002.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Home Systems Service Agreement (Version: 2.0.0)
Dell MusicStage (Version: 1.6.225.0)
Dell PhotoStage (Version: 1.5.0.130)
Dell Stage (Version: 1.7.209.0)
Dell Stage Remote (Version: 2.0.0.43)
Dell Support Center (Version: 3.1.5907.16)
Dell Touchpad (Version: 10.3.2.2)
Dell VideoStage (Version: 1.3.0.2513)
Dell Webcam Central (Version: 2.00.44)
Diner Dash 2 Restaurant Rescue (Version: 2.2.0.95)
Dora's World Adventure (Version: 2.2.0.95)
eBay (Version: 1.4.0)
Elements 9 Organizer (Version: 9.0)
Elements STI Installer (Version: 1.0)
Escape Whisper Valley ™ (Version: 2.2.0.95)
Europa Universalis III
Farm Frenzy (Version: 2.2.0.95)
FATE (Version: 2.2.0.95)
Final Drive Fury (Version: 2.2.0.95)
Final Drive Nitro (Version: 2.2.0.95)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 8.0.1.1399)
Intel® OpenCL CPU Runtime
Intel® Processor Graphics (Version: 8.15.10.2696)
Intel® PROSet/Wireless for Bluetooth® + High Speed (Version: 15.1.0.0096)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 2.1.1.0153)
Intel® Rapid Storage Technology (Version: 11.1.0.1006)
Intel® Turbo Boost Technology Monitor 2.0 (Version: 2.1.23.0)
Intel® USB 3.0 eXtensible Host Controller Driver (Version: 1.0.3.214)
Intel® WiDi (Version: 3.0.13.0)
Intel® Wireless Display
Intel® PROSet/Wireless WiFi Software (Version: 15.01.1000.0927)
Intel® Trusted Connect Service Client (Version: 1.23.219.2)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
JavaFX 2.1.1 (Version: 2.1.1)
Jewel Quest (Version: 2.2.0.95)
Jewel Quest Solitaire 2 (Version: 2.2.0.95)
Junk Mail filter update (Version: 15.4.3502.0922)
K-Lite Mega Codec Pack 9.2.0 (Version: 9.2.0)
Luxor (Version: 2.2.0.95)
Magicka
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (Version: 9.0.30411)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
MotioninJoy DS3 driver version 0.6.0005 (Version: 0.6.0005)
Mozilla Firefox 15.0 (x86 en-US) (Version: 15.0)
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
Namco All-Stars PAC-MAN (Version: 2.2.0.95)
OpenOffice.org 3.4 (Version: 3.4.9590)
Penguins! (Version: 2.2.0.95)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.95)
PlayReady PC Runtime x86 (Version: 1.3.0)
Poker Superstars III (Version: 2.2.0.95)
Polar Bowler (Version: 2.2.0.95)
Polar Golfer (Version: 2.2.0.95)
PPJoy Joystick Driver 0.8.4.5 (Version: 0.8.4.5)
Premium Service Agreement (Version: 2.0.0)
QualxServ Service Agreement (Version: 2.0.0)
Quickset64 (Version: 10.14.010)
ReadyDriver Plus 1.2
Realtek USB 2.0 Card Reader (Version: 6.1.7601.39019)
Samantha Swift (Version: 2.2.0.95)
Skype™ 5.10 (Version: 5.10.116)
SmartSound Quicktracks for Premiere Elements 9.0 (Version: 3.12.3090)
Steam (Version: 1.0.0.0)
System Requirements Lab CYRI (Version: 4.5.1.0)
Team Fortress 2
Trine
Trine 2
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update Installer for WildTangent Games App
Virtual Villagers 4 - The Tree of Life (Version: 2.2.0.95)
VLC media player 2.0.3 (Version: 2.0.3)
Wedding Dash - Ready, Aim, Love! (Version: 2.2.0.95)
WildTangent Games (Version: 1.0.2.5)
WildTangent Games App (Dell Games) (Version: 4.0.5.2)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Zinio Reader 4 (Version: 4.2.4164)
Zuma Deluxe (Version: 2.2.0.95)

========================= Memory info: ===================================

Percentage of memory in use: 32%
Total physical RAM: 6046.36 MB
Available physical RAM: 4080.09 MB
Total Pagefile: 12090.9 MB
Available Pagefile: 9911.94 MB
Total Virtual: 4095.88 MB
Available Virtual: 3958.6 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:445.91 GB) (Free:374.31 GB) NTFS

========================= Users: ========================================

User accounts for \\BETA-1

Administrator CB Guest


**** End of log ****


Farbar Service Scanner Version: 06-08-2012
Ran by CB (administrator) on 12-09-2012 at 03:43:20
Running from "C:\Users\CB\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

Edited by MapleTower, 12 September 2012 - 02:44 AM.


#10 MapleTower

MapleTower
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:15 AM

Posted 12 September 2012 - 02:49 AM

Did Adwcleaner Twice

# AdwCleaner v2.001 - Logfile created 09/12/2012 at 03:24:57
# Updated 09/09/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : CB - BETA-1
# Boot Mode : Normal
# Running from : C:\Users\CB\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Restored : [HKCU\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

-\\ Mozilla Firefox v15.0 (en-US)

Profile name : default
File : C:\Users\CB\AppData\Roaming\Mozilla\Firefox\Profiles\ogvptrfj.default\prefs.js

Deleted : user_pref("extensions.speeddial.thumbnail-2-url", "hxxps://mail.google.com/mail/u/0/?shva=1#inbox");

*************************

AdwCleaner[S1].txt - [1389 octets] - [12/09/2012 03:24:57]

########## EOF - C:\AdwCleaner[S1].txt - [1449 octets] ##########

# AdwCleaner v2.001 - Logfile created 09/12/2012 at 03:45:31
# Updated 09/09/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : CB - BETA-1
# Boot Mode : Normal
# Running from : C:\Users\CB\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v15.0 (en-US)

Profile name : default
File : C:\Users\CB\AppData\Roaming\Mozilla\Firefox\Profiles\ogvptrfj.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1514 octets] - [12/09/2012 03:24:57]
AdwCleaner[S2].txt - [743 octets] - [12/09/2012 03:45:31]

########## EOF - C:\AdwCleaner[S2].txt - [802 octets] ##########

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:15 AM

Posted 12 September 2012 - 02:56 AM

download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

Uninstall and reinstall microsoft security essentials

Run a quick scan and let me know if detects infections

#12 MapleTower

MapleTower
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:15 AM

Posted 12 September 2012 - 03:00 AM

Rkill 2.3.11 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/12/2012 03:59:09 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* Explorer Policy Removed: NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
C:\Users\CB\Desktop\rkill\rkill-09-12-2012-03-59-13.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Manual

Searching for Missing Digital Signatures:

* No issues found.

Program finished at: 09/12/2012 03:59:13 AM
Execution time: 0 hours(s), 0 minute(s), and 4 seconds(s)

#13 MapleTower

MapleTower
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:15 AM

Posted 12 September 2012 - 03:16 AM

MSE's Quick Scan didn't detect anything.

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:15 AM

Posted 12 September 2012 - 03:43 AM

That looks good

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

update your flash player

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#15 MapleTower

MapleTower
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:15 AM

Posted 12 September 2012 - 04:00 AM

Thank you for you assistance!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users