Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Weird e-mail issues


  • Please log in to reply
10 replies to this topic

#1 Stu925

Stu925

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:14 AM

Posted 11 November 2012 - 07:57 PM

So a couple of weeks ago I started getting daily e-mails from users listed in my Outlook address book. The e-mails are always the same: no subject line from someone in my address book and the body of the e-mail says for Stuart followed by a link. The e-mails all appear to be originating from the same yahoo e-mail address (y774cf706dec2@yahoo.com. I've searched the web but haven't come up with anything yet regarding this issue so I figured I'd try here. I find it odd that all of these e-mails are coming from people in my address book almost like everyone I know got hit by the same thing. Also around this time I started receiving a ton of male enhancement and enlargement e-mails everyday, wondering if the 2 are related. AVG, Spybot, Adaware, and Trend Micro housecall all came back nothing found so I'm not sure what my issue is. Anyone have any ideas???

Stu

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:14 AM

Posted 11 November 2012 - 08:31 PM

Hello, it would appear you have ad and spyware and someone maybe spoofing your email/ Meaning by chance another machine (a rogue) has your email and is spamming you. Run these then change your email password. Are you using a router and is it wired or wireless?

Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.





Please Download

TDSSkiller


Launch it. Click on change parameters-Select TDLFS file system

Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.




Please download AdwCleaner by Xplode onto your desktop.


  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.




Now SAS:
Please download and scan with SUPERAntiSpyware Free
  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
    For instructions with screenshots, please refer to the How to use SUPERAntiSpyware to scan and remove malware from your computer Guide.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all other options as they are set):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the Control Center screen.
  • Back on the main screen, under "Select Scan Type" check the box for Complete Scan.
  • If your computer is badly infected, be sure to check the box next to Enable Rescue Scan (Highly Infected Systems ONLY).
  • Click the Scan your computer... button.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes" and reboot normally.

To retrieve the scan log after reboot, launch SUPERAntiSpyware again.
  • Click the View Scan Logs button at the bottom.
  • This will open the Scanner Logs Window.
  • Click on the log to highlight it and then click on View Selected Log to open it.
  • Copy and paste the scan log results in your next reply.
-- Some types of malware will disable security tools. If SUPERAntiSpyware will not install, please refer to these instructions for using the SUPERAntiSpyware Installer. If SUPERAntiSpyware is already installed but will not run, then follow the instructions for using RUNSAS.EXE to launch the program.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Dolby

Dolby

  • Members
  • 86 posts
  • OFFLINE
  •  
  • Local time:01:14 AM

Posted 11 November 2012 - 08:36 PM

...sounds like you clicked on a bad link in a email at one point - email links are bad nowadays - you've had your email account hacked - the link you clicked on was probably a phony one sent to look like it was from a contact in your address book (who was hacked) & it's spreading in this way. CHANGE YOUR PASSWORD. If you don't, it will keep going out to all of YOUR contacts. I had trouble changing mine in RR email. Every time I hit "submit" after filling out the thing, it would send me back the same blank form to fill out again. I had to call cust. ser. & they helped me "reset" as they call it, to a new "number" that they assigned me. Then I went in with the # password & was able to change that to something new. Good Luck...

#4 Stu925

Stu925
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:14 AM

Posted 12 November 2012 - 09:12 AM

Thanks for the help guys, I changed my e-mail password last night and here's the log files:

Mini Tool box
MiniToolBox by Farbar Version: 10-11-2012 02
Ran by Stu (administrator) on 11-11-2012 at 21:28:33
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================


127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 www.100888290cs.com
127.0.0.1 100888290cs.com
127.0.0.1 100sexlinks.com

There are 15253 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Intel® WiFi Link 1000 BGN = Wireless Network Connection (Connected)
Atheros AR8152 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="Wireless Network Connection 2" address=192.168.16.2 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Stu-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Wireless LAN adapter Wireless Network Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
Physical Address. . . . . . . . . : 8C-A9-82-0A-78-57
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 8C-A9-82-0A-78-57
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Intel® WiFi Link 1000 BGN
Physical Address. . . . . . . . . : 8C-A9-82-0A-78-56
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::9491:40c6:7188:fcd6%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.5(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, November 08, 2012 4:56:22 PM
Lease Expires . . . . . . . . . . : Thursday, December 19, 2148 3:58:36 AM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 244099458
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-D9-1D-3B-F0-4D-A2-6A-DA-1E
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Atheros AR8152 PCI-E Fast Ethernet Controller
Physical Address. . . . . . . . . : F0-4D-A2-6A-DA-1E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.Belkin:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:3c15:2e02:3f57:fdfa(Preferred)
Link-local IPv6 Address . . . . . : fe80::3c15:2e02:3f57:fdfa%18(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{292BC16F-C706-4CAE-AF62-C945B02412D5}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{07A1A2D7-A3B1-4702-9870-854F44CFFB63}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server:
Address: 192.168.2.1

Name: google.com
Addresses: 2607:f8b0:4004:803::1001
74.125.228.35
74.125.228.41
74.125.228.39
74.125.228.34
74.125.228.36
74.125.228.33
74.125.228.40
74.125.228.46
74.125.228.37
74.125.228.32
74.125.228.38


Pinging google.com [74.125.228.38] with 32 bytes of data:
Reply from 74.125.228.38: bytes=32 time=23ms TTL=53
Reply from 74.125.228.38: bytes=32 time=23ms TTL=53

Ping statistics for 74.125.228.38:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 23ms, Maximum = 23ms, Average = 23ms
Server:
Address: 192.168.2.1

Name: yahoo.com
Addresses: 98.139.183.24
98.138.253.109
72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=100ms TTL=51
Reply from 72.30.38.140: bytes=32 time=95ms TTL=51

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 95ms, Maximum = 100ms, Average = 97ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
16...8c a9 82 0a 78 57 ......Microsoft Virtual WiFi Miniport Adapter #2
15...8c a9 82 0a 78 57 ......Microsoft Virtual WiFi Miniport Adapter
12...8c a9 82 0a 78 56 ......Intel® WiFi Link 1000 BGN
10...f0 4d a2 6a da 1e ......Atheros AR8152 PCI-E Fast Ethernet Controller
1...........................Software Loopback Interface 1
22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.5 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.5 281
192.168.2.5 255.255.255.255 On-link 192.168.2.5 281
192.168.2.255 255.255.255.255 On-link 192.168.2.5 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.5 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.5 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
18 58 ::/0 On-link
1 306 ::1/128 On-link
18 58 2001::/32 On-link
18 306 2001:0:9d38:6ab8:3c15:2e02:3f57:fdfa/128
On-link
12 281 fe80::/64 On-link
18 306 fe80::/64 On-link
18 306 fe80::3c15:2e02:3f57:fdfa/128
On-link
12 281 fe80::9491:40c6:7188:fcd6/128
On-link
1 306 ff00::/8 On-link
18 306 ff00::/8 On-link
12 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 09 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 10 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 09 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/19/2012 01:22:13 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/19/2012 01:22:13 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/19/2012 08:51:00 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/19/2012 08:51:00 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/18/2012 00:33:45 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16447, time stamp: 0x4fc9cd53
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b8f
Exception code: 0xc0000005
Fault offset: 0x00039098
Faulting process id: 0xaf4
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (07/18/2012 00:33:11 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/18/2012 00:33:11 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/18/2012 11:32:54 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/17/2012 09:11:05 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (07/17/2012 09:11:04 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (08/29/2012 06:46:53 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (08/29/2012 06:46:23 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (08/29/2012 06:45:41 PM) (Source: Service Control Manager) (User: )
Description: The Task Scheduler service depends on the Windows Event Log service which failed to start because of the following error:
%%1058

Error: (07/18/2012 00:24:05 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (07/18/2012 00:23:35 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (07/18/2012 00:21:23 PM) (Source: DCOM) (User: )
Description: {FE9617F6-E606-42AA-BECC-0E9CDA246D63}

Error: (07/18/2012 11:22:44 AM) (Source: DCOM) (User: )
Description: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}

Error: (07/17/2012 02:21:09 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (07/17/2012 02:20:39 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (07/16/2012 02:42:31 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.


Microsoft Office Sessions:
=========================
Error: (09/04/2012 07:32:35 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: -1032

Error: (09/04/2012 07:28:43 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: -1032

Error: (07/19/2012 01:22:13 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (07/19/2012 01:22:13 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (07/19/2012 08:51:00 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (07/19/2012 08:51:00 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (07/18/2012 00:33:45 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.164474fc9cd53ntdll.dll6.1.7601.177254ec49b8fc000000500039098af401cd650b6a982f2eC:\Program Files (x86)\Internet Explorer\iexplore.exeC:\Windows\SysWOW64\ntdll.dllb9223de4-d0fe-11e1-8a49-f04da26ada1e

Error: (07/18/2012 00:33:11 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (07/18/2012 00:33:11 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe

Error: (07/18/2012 11:32:54 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\Cozi Express\CoziExpress.exe


=========================== Installed Programs ============================

Ad-Aware Antivirus (Version: 10.2.21.3698)
Ad-Aware Browsing Protection (Version: 0.9.0.2)
Adobe Bridge 1.0 (Version: 001.000.000)
Adobe Common File Installer (Version: 1.00.0000)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.110)
Adobe Help Center 1.0 (Version: 001.000.000)
Adobe Photoshop CS2 (Version: 9.0)
Adobe Reader 9.5.2 (Version: 9.5.2)
Adobe Stock Photos 1.0 (Version: 001.000.000)
Advanced Audio FX Engine (Version: 1.12.05)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
ArcSoft Print Creations - Album Page
ArcSoft Print Creations - Funhouse
ArcSoft Print Creations - Greeting Card
ArcSoft Print Creations - Photo Book
ArcSoft Print Creations - Photo Calendar
ArcSoft Print Creations - Scrapbook
ArcSoft Print Creations - Slimline Card
ArcSoft Print Creations (Version: 2.8.255.384)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.23)
AVG 2013 (Version: 13.0.2624)
AVG 2013 (Version: 13.0.2793)
AVG 2013 (Version: 2013.0.2793)
AVG Security Toolbar
Bonjour (Version: 3.0.0.10)
CCScore (Version: 8.02.0000.0001)
CloneDVD2 (Version: 2.9.3.0)
Cozi (Version: 1.0.4323.24051)
D3DX10 (Version: 15.4.2368.0902)
Dell DataSafe Local Backup - Support Software (Version: 9.4.60)
Dell DataSafe Local Backup (Version: 9.4.60)
Dell DataSafe Online (Version: 2.1.19634)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Home Systems Service Agreement (Version: 2.0.0)
Dell MusicStage (Version: 1.3.31.0)
Dell PhotoStage (Version: 1.5.0.19)
Dell Product Registration (Version: 1.0.6)
Dell Stage (Version: 1.7.209.0)
Dell Support Center (Version: 3.1.5907.39)
Dell VideoStage (Version: 1.1.0.1011)
Dell Webcam Central (Version: 2.00.35)
eBay (Version: 1.4.0)
EPSON Printer Software
ESSBrwr (Version: 8.02.0000.0001)
ESSCDBK (Version: 8.03.0000.0001)
ESScore (Version: 8.03.0000.0001)
ESSgui (Version: 8.03.0000.0001)
ESSini (Version: 8.02.0000.0001)
ESSPCD (Version: 8.02.0000.0001)
ESSPDock (Version: 6.03.0001.0004)
ESSTOOLS (Version: 5.00.0000.0004)
essvatgt (Version: 8.00.0000.0001)
Futuremark SystemInfo (Version: 3.21.2.1)
GIMP 2.8.0 (Version: 2.8.0)
Google Earth Plug-in (Version: 6.2.2.6613)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
GoToAssist 8.0.0.514
GTA San Andreas (Version: 1.00.00001)
iCloud (Version: 1.1.0.40)
Intel PROSet Wireless
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2182)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® PROSet/Wireless WiFi Software (Version: 13.02.0000)
Intel® Turbo Boost Technology Monitor (Version: 1.0.186.6)
Intel® Wireless Display (Version: 1.2.20.0)
Internet Explorer (Version: 8)
iTunes (Version: 10.7.0.21)
Java Auto Updater (Version: 2.0.7.2)
Java™ 6 Update 22 (64-bit) (Version: 6.0.220)
Java™ 6 Update 37 (Version: 6.0.370)
Junk Mail filter update (Version: 15.4.3502.0922)
Kodak EasyShare software
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office XP Professional with FrontPage (Version: 10.0.6626.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
netbrdg (Version: 7.01.0000.0001)
OfotoXMI (Version: 8.03.0000.0001)
Quickset64 (Version: 10.6.2)
QuickTime (Version: 7.72.80.56)
Realtek High Definition Audio Driver (Version: 6.0.1.6088)
Roxio Burn (Version: 1.01)
SFR (Version: 8.01.0000.0001)
SHASTA (Version: 7.01.0000.0001)
skin0001 (Version: 8.02.0000.0001)
SKINXSDK (Version: 8.02.0000.0001)
Skype Toolbars (Version: 1.0.4051)
Skype™ 5.10 (Version: 5.10.116)
Spybot - Search & Destroy (Version: 1.6.2)
staticcr (Version: 8.02.0000.0001)
Synaptics Pointing Device Driver (Version: 15.0.20.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VPRINTOL (Version: 8.02.0000.0001)
WIDCOMM Bluetooth Software (Version: 6.2.1.1100)
WildTangent Games (Version: 1.0.0.71)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.20 (32-bit) (Version: 4.20.0)
WIRELESS (Version: 8.02.0000.0001)

========================= Memory info: ===================================

Percentage of memory in use: 42%
Total physical RAM: 3892.52 MB
Available physical RAM: 2221.3 MB
Total Pagefile: 9728.71 MB
Available Pagefile: 7284.3 MB
Total Virtual: 4095.88 MB
Available Virtual: 3979.11 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:581.42 GB) (Free:432.99 GB) NTFS
3 Drive u: (RECOVERY) (Fixed) (Total:14.65 GB) (Free:6.6 GB) NTFS

========================= Users: ========================================

User accounts for \\STU-PC

Administrator Guest Stu


**** End of log ****

TDSS Killer
21:37:40.0352 7584 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
21:37:40.0722 7584 ============================================================
21:37:40.0722 7584 Current date / time: 2012/11/11 21:37:40.0722
21:37:40.0722 7584 SystemInfo:
21:37:40.0722 7584
21:37:40.0722 7584 OS Version: 6.1.7601 ServicePack: 1.0
21:37:40.0722 7584 Product type: Workstation
21:37:40.0722 7584 ComputerName: STU-PC
21:37:40.0722 7584 UserName: Stu
21:37:40.0722 7584 Windows directory: C:\Windows
21:37:40.0722 7584 System windows directory: C:\Windows
21:37:40.0722 7584 Running under WOW64
21:37:40.0722 7584 Processor architecture: Intel x64
21:37:40.0722 7584 Number of processors: 4
21:37:40.0722 7584 Page size: 0x1000
21:37:40.0722 7584 Boot type: Normal boot
21:37:40.0722 7584 ============================================================
21:37:41.0712 7584 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:37:41.0717 7584 ============================================================
21:37:41.0717 7584 \Device\Harddisk0\DR0:
21:37:41.0717 7584 MBR partitions:
21:37:41.0717 7584 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32FCD, BlocksNum 0x1D4C000
21:37:41.0717 7584 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7EFCD, BlocksNum 0x48AD8AE3
21:37:41.0717 7584 ============================================================
21:37:41.0739 7584 C: <-> \Device\Harddisk0\DR0\Partition2
21:37:41.0739 7584 ============================================================
21:37:41.0739 7584 Initialize success
21:37:41.0739 7584 ============================================================
21:38:07.0569 8392 ============================================================
21:38:07.0569 8392 Scan started
21:38:07.0569 8392 Mode: Manual; TDLFS;
21:38:07.0569 8392 ============================================================
21:38:10.0695 8392 ================ Scan system memory ========================
21:38:10.0695 8392 System memory - ok
21:38:10.0696 8392 ================ Scan services =============================
21:38:10.0885 8392 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
21:38:10.0925 8392 1394ohci - ok
21:38:11.0123 8392 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
21:38:11.0126 8392 ACDaemon - ok
21:38:11.0179 8392 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
21:38:11.0209 8392 ACPI - ok
21:38:11.0261 8392 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
21:38:11.0282 8392 AcpiPmi - ok
21:38:11.0424 8392 [ AF9658974154C3B6A333D86DC2E0AAC8 ] Ad-Aware Service C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
21:38:11.0460 8392 Ad-Aware Service - ok
21:38:11.0520 8392 [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
21:38:11.0522 8392 Adobe LM Service - ok
21:38:11.0676 8392 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:38:11.0681 8392 AdobeFlashPlayerUpdateSvc - ok
21:38:11.0736 8392 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
21:38:11.0768 8392 adp94xx - ok
21:38:11.0811 8392 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
21:38:11.0848 8392 adpahci - ok
21:38:11.0891 8392 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
21:38:11.0917 8392 adpu320 - ok
21:38:11.0954 8392 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
21:38:11.0956 8392 AeLookupSvc - ok
21:38:12.0023 8392 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
21:38:12.0025 8392 AERTFilters - ok
21:38:12.0082 8392 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
21:38:12.0091 8392 AFD - ok
21:38:12.0138 8392 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
21:38:12.0158 8392 agp440 - ok
21:38:12.0200 8392 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
21:38:12.0222 8392 ALG - ok
21:38:12.0289 8392 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
21:38:12.0316 8392 aliide - ok
21:38:12.0350 8392 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
21:38:12.0380 8392 amdide - ok
21:38:12.0429 8392 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
21:38:12.0455 8392 AmdK8 - ok
21:38:12.0463 8392 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
21:38:12.0481 8392 AmdPPM - ok
21:38:12.0539 8392 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
21:38:12.0564 8392 amdsata - ok
21:38:12.0615 8392 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
21:38:12.0641 8392 amdsbs - ok
21:38:12.0701 8392 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
21:38:12.0722 8392 amdxata - ok
21:38:12.0784 8392 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
21:38:12.0790 8392 AppID - ok
21:38:12.0816 8392 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
21:38:12.0839 8392 AppIDSvc - ok
21:38:12.0914 8392 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
21:38:12.0919 8392 Appinfo - ok
21:38:13.0126 8392 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:38:13.0128 8392 Apple Mobile Device - ok
21:38:13.0175 8392 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
21:38:13.0200 8392 arc - ok
21:38:13.0244 8392 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
21:38:13.0268 8392 arcsas - ok
21:38:13.0291 8392 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
21:38:13.0315 8392 AsyncMac - ok
21:38:13.0373 8392 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
21:38:13.0398 8392 atapi - ok
21:38:13.0466 8392 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:38:13.0476 8392 AudioEndpointBuilder - ok
21:38:13.0490 8392 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
21:38:13.0498 8392 AudioSrv - ok
21:38:13.0829 8392 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
21:38:13.0987 8392 AVGIDSAgent - ok
21:38:14.0056 8392 [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
21:38:14.0113 8392 AVGIDSDriver - ok
21:38:14.0193 8392 [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
21:38:14.0198 8392 AVGIDSHA - ok
21:38:14.0251 8392 [ 5989592A91A17587799792A81E1541D4 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
21:38:14.0281 8392 Avgldx64 - ok
21:38:14.0401 8392 [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
21:38:14.0453 8392 Avgloga - ok
21:38:14.0492 8392 [ 767B4A485FB22AA0FC0BF5EEF00572B9 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
21:38:14.0519 8392 Avgmfx64 - ok
21:38:14.0573 8392 [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
21:38:14.0585 8392 Avgrkx64 - ok
21:38:14.0606 8392 [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
21:38:14.0641 8392 Avgtdia - ok
21:38:14.0690 8392 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
21:38:14.0723 8392 avgtp - ok
21:38:14.0765 8392 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
21:38:14.0769 8392 avgwd - ok
21:38:14.0824 8392 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
21:38:14.0847 8392 AxInstSV - ok
21:38:14.0913 8392 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
21:38:14.0965 8392 b06bdrv - ok
21:38:15.0024 8392 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
21:38:15.0054 8392 b57nd60a - ok
21:38:15.0106 8392 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
21:38:15.0132 8392 BDESVC - ok
21:38:15.0191 8392 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
21:38:15.0210 8392 Beep - ok
21:38:15.0287 8392 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
21:38:15.0330 8392 BFE - ok
21:38:15.0385 8392 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
21:38:15.0431 8392 BITS - ok
21:38:15.0456 8392 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
21:38:15.0485 8392 blbdrive - ok
21:38:15.0586 8392 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:38:15.0594 8392 Bonjour Service - ok
21:38:15.0646 8392 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
21:38:15.0652 8392 bowser - ok
21:38:15.0680 8392 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:38:15.0694 8392 BrFiltLo - ok
21:38:15.0700 8392 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:38:15.0705 8392 BrFiltUp - ok
21:38:15.0752 8392 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
21:38:15.0804 8392 Browser - ok
21:38:15.0847 8392 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
21:38:15.0881 8392 Brserid - ok
21:38:15.0904 8392 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
21:38:15.0930 8392 BrSerWdm - ok
21:38:15.0936 8392 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
21:38:15.0953 8392 BrUsbMdm - ok
21:38:15.0991 8392 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
21:38:16.0019 8392 BrUsbSer - ok
21:38:16.0067 8392 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
21:38:16.0096 8392 BthEnum - ok
21:38:16.0138 8392 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
21:38:16.0161 8392 BTHMODEM - ok
21:38:16.0190 8392 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
21:38:16.0216 8392 BthPan - ok
21:38:16.0287 8392 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
21:38:16.0338 8392 BTHPORT - ok
21:38:16.0384 8392 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
21:38:16.0408 8392 bthserv - ok
21:38:16.0422 8392 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
21:38:16.0459 8392 BTHUSB - ok
21:38:16.0495 8392 [ D3466F77C2C49C6E393BA5FBA963A33E ] btusbflt C:\Windows\system32\drivers\btusbflt.sys
21:38:16.0523 8392 btusbflt - ok
21:38:16.0563 8392 [ AF838D8029AE7C27470862D63FA54D24 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
21:38:16.0594 8392 btwaudio - ok
21:38:16.0638 8392 [ 5C849BD7C78791C5CEE9F4651D7FE38D ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
21:38:16.0670 8392 btwavdt - ok
21:38:16.0766 8392 [ 10FFB5FA51D5713D872B41A59DFC2213 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
21:38:16.0786 8392 btwdins - ok
21:38:16.0829 8392 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
21:38:16.0858 8392 btwl2cap - ok
21:38:16.0883 8392 [ 3E1991AFA851A36DC978B0A1B0535C8B ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
21:38:16.0902 8392 btwrchid - ok
21:38:16.0934 8392 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
21:38:16.0959 8392 cdfs - ok
21:38:17.0028 8392 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
21:38:17.0056 8392 cdrom - ok
21:38:17.0124 8392 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
21:38:17.0155 8392 CertPropSvc - ok
21:38:17.0206 8392 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
21:38:17.0232 8392 circlass - ok
21:38:17.0275 8392 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
21:38:17.0281 8392 CLFS - ok
21:38:17.0346 8392 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:38:17.0350 8392 clr_optimization_v2.0.50727_32 - ok
21:38:17.0416 8392 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:38:17.0422 8392 clr_optimization_v2.0.50727_64 - ok
21:38:17.0522 8392 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:38:17.0561 8392 clr_optimization_v4.0.30319_32 - ok
21:38:17.0605 8392 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:38:17.0608 8392 clr_optimization_v4.0.30319_64 - ok
21:38:17.0649 8392 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
21:38:17.0676 8392 CmBatt - ok
21:38:17.0712 8392 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
21:38:17.0717 8392 cmdide - ok
21:38:17.0775 8392 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
21:38:17.0810 8392 CNG - ok
21:38:17.0873 8392 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
21:38:17.0895 8392 Compbatt - ok
21:38:17.0957 8392 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
21:38:17.0979 8392 CompositeBus - ok
21:38:18.0005 8392 COMSysApp - ok
21:38:18.0164 8392 cpuz130 - ok
21:38:18.0199 8392 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
21:38:18.0219 8392 crcdisk - ok
21:38:18.0288 8392 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
21:38:18.0292 8392 CryptSvc - ok
21:38:18.0327 8392 [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
21:38:18.0491 8392 CtClsFlt - ok
21:38:18.0576 8392 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
21:38:18.0586 8392 DcomLaunch - ok
21:38:18.0619 8392 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
21:38:18.0623 8392 defragsvc - ok
21:38:18.0669 8392 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
21:38:18.0695 8392 DfsC - ok
21:38:18.0760 8392 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
21:38:18.0797 8392 Dhcp - ok
21:38:18.0834 8392 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
21:38:18.0837 8392 discache - ok
21:38:18.0873 8392 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
21:38:18.0900 8392 Disk - ok
21:38:18.0938 8392 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
21:38:18.0943 8392 Dnscache - ok
21:38:18.0979 8392 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
21:38:19.0014 8392 dot3svc - ok
21:38:19.0056 8392 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
21:38:19.0059 8392 DPS - ok
21:38:19.0106 8392 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
21:38:19.0124 8392 drmkaud - ok
21:38:19.0171 8392 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
21:38:19.0233 8392 DXGKrnl - ok
21:38:19.0274 8392 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
21:38:19.0300 8392 EapHost - ok
21:38:19.0405 8392 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
21:38:19.0535 8392 ebdrv - ok
21:38:19.0584 8392 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
21:38:19.0587 8392 EFS - ok
21:38:19.0654 8392 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
21:38:19.0671 8392 ehRecvr - ok
21:38:19.0703 8392 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
21:38:19.0705 8392 ehSched - ok
21:38:19.0756 8392 [ A05FC7ECA0966EBB70E4D17B855A853B ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
21:38:20.0060 8392 ElbyCDIO - ok
21:38:20.0120 8392 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
21:38:20.0153 8392 elxstor - ok
21:38:20.0185 8392 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
21:38:20.0205 8392 ErrDev - ok
21:38:20.0261 8392 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
21:38:20.0268 8392 EventSystem - ok
21:38:20.0377 8392 [ B56D9602DB5FE1C116B1CA5EFD8E2E50 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
21:38:20.0413 8392 EvtEng - ok
21:38:20.0437 8392 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
21:38:20.0467 8392 exfat - ok
21:38:20.0498 8392 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
21:38:20.0532 8392 fastfat - ok
21:38:20.0599 8392 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
21:38:20.0640 8392 Fax - ok
21:38:20.0685 8392 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
21:38:20.0716 8392 fdc - ok
21:38:20.0746 8392 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
21:38:20.0767 8392 fdPHost - ok
21:38:20.0794 8392 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
21:38:20.0815 8392 FDResPub - ok
21:38:20.0843 8392 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
21:38:20.0867 8392 FileInfo - ok
21:38:20.0890 8392 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
21:38:20.0919 8392 Filetrace - ok
21:38:20.0955 8392 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
21:38:20.0976 8392 flpydisk - ok
21:38:21.0019 8392 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
21:38:21.0022 8392 FltMgr - ok
21:38:21.0077 8392 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
21:38:21.0112 8392 FontCache - ok
21:38:21.0193 8392 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:38:21.0194 8392 FontCache3.0.0.0 - ok
21:38:21.0223 8392 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
21:38:21.0246 8392 FsDepends - ok
21:38:21.0301 8392 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
21:38:21.0326 8392 Fs_Rec - ok
21:38:21.0408 8392 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
21:38:21.0413 8392 fvevol - ok
21:38:21.0453 8392 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
21:38:21.0459 8392 gagp30kx - ok
21:38:21.0540 8392 [ C1BBCE4B30B45410178EE674C818D10C ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
21:38:21.0544 8392 GameConsoleService - ok
21:38:21.0590 8392 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:38:21.0614 8392 GEARAspiWDM - ok
21:38:21.0683 8392 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
21:38:21.0685 8392 GoToAssist - ok
21:38:21.0751 8392 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
21:38:21.0768 8392 gpsvc - ok
21:38:21.0851 8392 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:38:21.0853 8392 gupdate - ok
21:38:21.0864 8392 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:38:21.0866 8392 gupdatem - ok
21:38:21.0881 8392 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
21:38:21.0885 8392 gusvc - ok
21:38:21.0919 8392 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
21:38:21.0948 8392 hcw85cir - ok
21:38:22.0004 8392 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
21:38:22.0026 8392 HDAudBus - ok
21:38:22.0066 8392 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
21:38:22.0068 8392 HECIx64 - ok
21:38:22.0090 8392 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
21:38:22.0117 8392 HidBatt - ok
21:38:22.0123 8392 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
21:38:22.0138 8392 HidBth - ok
21:38:22.0161 8392 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
21:38:22.0188 8392 HidIr - ok
21:38:22.0230 8392 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
21:38:22.0253 8392 hidserv - ok
21:38:22.0312 8392 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
21:38:22.0333 8392 HidUsb - ok
21:38:22.0374 8392 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
21:38:22.0400 8392 hkmsvc - ok
21:38:22.0444 8392 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:38:22.0471 8392 HomeGroupListener - ok
21:38:22.0522 8392 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:38:22.0556 8392 HomeGroupProvider - ok
21:38:22.0618 8392 [ 3015B37029AD15C67EBCA5053C422F90 ] HP8207_8307 C:\Windows\system32\DRIVERS\HP8207_8307.sys
21:38:22.0794 8392 HP8207_8307 - ok
21:38:22.0839 8392 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
21:38:22.0866 8392 HpSAMD - ok
21:38:22.0917 8392 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
21:38:22.0934 8392 HTTP - ok
21:38:22.0986 8392 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
21:38:22.0988 8392 hwpolicy - ok
21:38:23.0032 8392 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
21:38:23.0056 8392 i8042prt - ok
21:38:23.0125 8392 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
21:38:23.0131 8392 iaStor - ok
21:38:23.0166 8392 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
21:38:23.0195 8392 iaStorV - ok
21:38:23.0271 8392 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:38:23.0290 8392 idsvc - ok
21:38:23.0567 8392 [ 31569A2E836C12014148BF7342716946 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
21:38:23.0816 8392 igfx - ok
21:38:23.0864 8392 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
21:38:23.0869 8392 iirsp - ok
21:38:23.0923 8392 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
21:38:23.0951 8392 IKEEXT - ok
21:38:23.0976 8392 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
21:38:24.0000 8392 Impcd - ok
21:38:24.0089 8392 [ 6E4CCB3AFF07E2B9F2A937385C84B573 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:38:24.0240 8392 IntcAzAudAddService - ok
21:38:24.0290 8392 [ 03C74719D48056A1078F3A51CEB76BAA ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
21:38:24.0317 8392 IntcDAud - ok
21:38:24.0345 8392 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
21:38:24.0365 8392 intelide - ok
21:38:24.0414 8392 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
21:38:24.0436 8392 intelppm - ok
21:38:24.0477 8392 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
21:38:24.0499 8392 IPBusEnum - ok
21:38:24.0568 8392 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:38:24.0593 8392 IpFilterDriver - ok
21:38:24.0644 8392 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
21:38:24.0655 8392 iphlpsvc - ok
21:38:24.0694 8392 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
21:38:24.0701 8392 IPMIDRV - ok
21:38:24.0725 8392 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
21:38:24.0750 8392 IPNAT - ok
21:38:24.0835 8392 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:38:24.0861 8392 iPod Service - ok
21:38:24.0899 8392 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
21:38:24.0927 8392 IRENUM - ok
21:38:24.0981 8392 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
21:38:25.0006 8392 isapnp - ok
21:38:25.0050 8392 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
21:38:25.0081 8392 iScsiPrt - ok
21:38:25.0115 8392 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
21:38:25.0140 8392 kbdclass - ok
21:38:25.0178 8392 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
21:38:25.0195 8392 kbdhid - ok
21:38:25.0217 8392 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
21:38:25.0219 8392 KeyIso - ok
21:38:25.0262 8392 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
21:38:25.0291 8392 KSecDD - ok
21:38:25.0317 8392 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
21:38:25.0341 8392 KSecPkg - ok
21:38:25.0391 8392 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
21:38:25.0420 8392 ksthunk - ok
21:38:25.0467 8392 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
21:38:25.0507 8392 KtmRm - ok
21:38:25.0545 8392 [ 39918DB0EFCF045A1CE6FABBF339F975 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
21:38:25.0568 8392 L1C - ok
21:38:25.0629 8392 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
21:38:25.0635 8392 LanmanServer - ok
21:38:25.0682 8392 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:38:25.0687 8392 LanmanWorkstation - ok
21:38:25.0720 8392 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
21:38:25.0749 8392 lltdio - ok
21:38:25.0794 8392 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
21:38:25.0824 8392 lltdsvc - ok
21:38:25.0853 8392 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
21:38:25.0882 8392 lmhosts - ok
21:38:25.0959 8392 [ 23D990150D56B670A62B21B9ABDD45EE ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:38:25.0965 8392 LMS - ok
21:38:26.0012 8392 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
21:38:26.0038 8392 LSI_FC - ok
21:38:26.0045 8392 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
21:38:26.0054 8392 LSI_SAS - ok
21:38:26.0061 8392 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:38:26.0073 8392 LSI_SAS2 - ok
21:38:26.0078 8392 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:38:26.0096 8392 LSI_SCSI - ok
21:38:26.0135 8392 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
21:38:26.0196 8392 luafv - ok
21:38:26.0234 8392 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
21:38:26.0256 8392 Mcx2Svc - ok
21:38:26.0390 8392 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
21:38:26.0396 8392 MDM - ok
21:38:26.0444 8392 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
21:38:26.0465 8392 megasas - ok
21:38:26.0496 8392 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
21:38:26.0526 8392 MegaSR - ok
21:38:26.0569 8392 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
21:38:26.0572 8392 MMCSS - ok
21:38:26.0578 8392 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
21:38:26.0599 8392 Modem - ok
21:38:26.0642 8392 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
21:38:26.0664 8392 monitor - ok
21:38:26.0736 8392 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
21:38:26.0760 8392 mouclass - ok
21:38:26.0797 8392 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
21:38:26.0821 8392 mouhid - ok
21:38:26.0856 8392 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
21:38:26.0859 8392 mountmgr - ok
21:38:26.0886 8392 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
21:38:26.0907 8392 mpio - ok
21:38:26.0931 8392 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
21:38:26.0960 8392 mpsdrv - ok
21:38:27.0016 8392 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
21:38:27.0034 8392 MpsSvc - ok
21:38:27.0088 8392 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
21:38:27.0109 8392 MRxDAV - ok
21:38:27.0147 8392 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
21:38:27.0173 8392 mrxsmb - ok
21:38:27.0209 8392 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:38:27.0244 8392 mrxsmb10 - ok
21:38:27.0289 8392 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:38:27.0296 8392 mrxsmb20 - ok
21:38:27.0328 8392 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
21:38:27.0348 8392 msahci - ok
21:38:27.0387 8392 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
21:38:27.0413 8392 msdsm - ok
21:38:27.0462 8392 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
21:38:27.0487 8392 MSDTC - ok
21:38:27.0535 8392 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
21:38:27.0556 8392 Msfs - ok
21:38:27.0587 8392 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
21:38:27.0608 8392 mshidkmdf - ok
21:38:27.0634 8392 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
21:38:27.0638 8392 msisadrv - ok
21:38:27.0667 8392 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
21:38:27.0676 8392 MSiSCSI - ok
21:38:27.0681 8392 msiserver - ok
21:38:27.0718 8392 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
21:38:27.0746 8392 MSKSSRV - ok
21:38:27.0765 8392 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
21:38:27.0806 8392 MSPCLOCK - ok
21:38:27.0833 8392 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
21:38:27.0865 8392 MSPQM - ok
21:38:27.0916 8392 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
21:38:27.0955 8392 MsRPC - ok
21:38:28.0003 8392 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
21:38:28.0029 8392 mssmbios - ok
21:38:28.0069 8392 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
21:38:28.0088 8392 MSTEE - ok
21:38:28.0117 8392 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
21:38:28.0138 8392 MTConfig - ok
21:38:28.0203 8392 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
21:38:28.0229 8392 Mup - ok
21:38:28.0273 8392 [ A9BC2302FBDF52C8AF4E2FC966288D21 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
21:38:28.0278 8392 MyWiFiDHCPDNS - ok
21:38:28.0323 8392 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
21:38:28.0332 8392 napagent - ok
21:38:28.0371 8392 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
21:38:28.0402 8392 NativeWifiP - ok
21:38:28.0471 8392 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
21:38:28.0507 8392 NDIS - ok
21:38:28.0528 8392 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
21:38:28.0552 8392 NdisCap - ok
21:38:28.0593 8392 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
21:38:28.0615 8392 NdisTapi - ok
21:38:28.0665 8392 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
21:38:28.0685 8392 Ndisuio - ok
21:38:28.0719 8392 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
21:38:28.0748 8392 NdisWan - ok
21:38:28.0811 8392 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
21:38:28.0842 8392 NDProxy - ok
21:38:28.0878 8392 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
21:38:28.0909 8392 NetBIOS - ok
21:38:28.0953 8392 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
21:38:28.0958 8392 NetBT - ok
21:38:28.0973 8392 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
21:38:28.0975 8392 Netlogon - ok
21:38:29.0020 8392 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
21:38:29.0028 8392 Netman - ok
21:38:29.0042 8392 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
21:38:29.0050 8392 netprofm - ok
21:38:29.0089 8392 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:38:29.0092 8392 NetTcpPortSharing - ok
21:38:29.0264 8392 [ 24F64343F14A119308456E1CA7507B26 ] NETw5s64 C:\Windows\system32\DRIVERS\NETw5s64.sys
21:38:29.0297 8392 NETw5s64 - ok
21:38:29.0340 8392 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
21:38:29.0362 8392 nfrd960 - ok
21:38:29.0427 8392 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
21:38:29.0435 8392 NlaSvc - ok
21:38:29.0571 8392 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
21:38:29.0639 8392 NOBU - ok
21:38:29.0669 8392 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
21:38:29.0700 8392 Npfs - ok
21:38:29.0737 8392 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
21:38:29.0767 8392 nsi - ok
21:38:29.0792 8392 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
21:38:29.0795 8392 nsiproxy - ok
21:38:29.0866 8392 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
21:38:29.0933 8392 Ntfs - ok
21:38:29.0965 8392 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
21:38:29.0994 8392 Null - ok
21:38:30.0031 8392 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
21:38:30.0056 8392 nvraid - ok
21:38:30.0086 8392 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
21:38:30.0112 8392 nvstor - ok
21:38:30.0172 8392 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
21:38:30.0178 8392 nv_agp - ok
21:38:30.0212 8392 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
21:38:30.0239 8392 ohci1394 - ok
21:38:30.0273 8392 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
21:38:30.0280 8392 p2pimsvc - ok
21:38:30.0326 8392 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
21:38:30.0364 8392 p2psvc - ok
21:38:30.0411 8392 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
21:38:30.0438 8392 Parport - ok
21:38:30.0485 8392 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
21:38:30.0491 8392 partmgr - ok
21:38:30.0513 8392 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
21:38:30.0518 8392 PcaSvc - ok
21:38:30.0560 8392 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
21:38:30.0593 8392 pci - ok
21:38:30.0633 8392 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
21:38:30.0663 8392 pciide - ok
21:38:30.0702 8392 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
21:38:30.0727 8392 pcmcia - ok
21:38:30.0752 8392 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
21:38:30.0757 8392 pcw - ok
21:38:30.0771 8392 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
21:38:30.0812 8392 PEAUTH - ok
21:38:30.0915 8392 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
21:38:30.0918 8392 PerfHost - ok
21:38:31.0000 8392 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
21:38:31.0080 8392 pla - ok
21:38:31.0142 8392 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
21:38:31.0176 8392 PlugPlay - ok
21:38:31.0211 8392 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
21:38:31.0236 8392 PNRPAutoReg - ok
21:38:31.0263 8392 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
21:38:31.0268 8392 PNRPsvc - ok
21:38:31.0309 8392 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
21:38:31.0350 8392 PolicyAgent - ok
21:38:31.0402 8392 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
21:38:31.0407 8392 Power - ok
21:38:31.0451 8392 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
21:38:31.0459 8392 PptpMiniport - ok
21:38:31.0483 8392 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
21:38:31.0504 8392 Processor - ok
21:38:31.0542 8392 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
21:38:31.0546 8392 ProfSvc - ok
21:38:31.0561 8392 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:38:31.0563 8392 ProtectedStorage - ok
21:38:31.0611 8392 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
21:38:31.0615 8392 Psched - ok
21:38:31.0659 8392 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
21:38:31.0686 8392 PxHlpa64 - ok
21:38:31.0752 8392 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
21:38:31.0831 8392 ql2300 - ok
21:38:31.0840 8392 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
21:38:31.0876 8392 ql40xx - ok
21:38:31.0919 8392 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
21:38:31.0953 8392 QWAVE - ok
21:38:31.0981 8392 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
21:38:32.0004 8392 QWAVEdrv - ok
21:38:32.0044 8392 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
21:38:32.0073 8392 RasAcd - ok
21:38:32.0116 8392 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
21:38:32.0138 8392 RasAgileVpn - ok
21:38:32.0183 8392 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
21:38:32.0204 8392 RasAuto - ok
21:38:32.0257 8392 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
21:38:32.0285 8392 Rasl2tp - ok
21:38:32.0338 8392 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
21:38:32.0373 8392 RasMan - ok
21:38:32.0401 8392 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
21:38:32.0431 8392 RasPppoe - ok
21:38:32.0466 8392 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
21:38:32.0493 8392 RasSstp - ok
21:38:32.0534 8392 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
21:38:32.0564 8392 rdbss - ok
21:38:32.0594 8392 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
21:38:32.0599 8392 rdpbus - ok
21:38:32.0621 8392 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
21:38:32.0624 8392 RDPCDD - ok
21:38:32.0640 8392 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
21:38:32.0642 8392 RDPENCDD - ok
21:38:32.0663 8392 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
21:38:32.0665 8392 RDPREFMP - ok
21:38:32.0699 8392 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
21:38:32.0744 8392 RDPWD - ok
21:38:32.0802 8392 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
21:38:32.0812 8392 rdyboost - ok
21:38:32.0871 8392 [ 0AA473966357C4A41B5EB19649EB6E5E ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
21:38:32.0888 8392 RegSrvc - ok
21:38:32.0945 8392 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
21:38:32.0967 8392 RemoteAccess - ok
21:38:33.0014 8392 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
21:38:33.0023 8392 RemoteRegistry - ok
21:38:33.0058 8392 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
21:38:33.0088 8392 RFCOMM - ok
21:38:33.0114 8392 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
21:38:33.0139 8392 RpcEptMapper - ok
21:38:33.0171 8392 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
21:38:33.0196 8392 RpcLocator - ok
21:38:33.0242 8392 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
21:38:33.0249 8392 RpcSs - ok
21:38:33.0286 8392 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
21:38:33.0292 8392 rspndr - ok
21:38:33.0339 8392 [ 22D6B47D004A6568C500680BE2972854 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
21:38:33.0365 8392 RSUSBSTOR - ok
21:38:33.0396 8392 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
21:38:33.0398 8392 SamSs - ok
21:38:33.0586 8392 [ BCE943896289A91AD75CC5652620B1C6 ] SBAMSvc C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
21:38:33.0699 8392 SBAMSvc - ok
21:38:33.0777 8392 [ 6E342316E72F4B6FA39C99E06373A1A3 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
21:38:33.0791 8392 sbapifs - ok
21:38:33.0860 8392 [ B671EEF468D13016B9286F5835A06AE1 ] sbhips C:\Windows\system32\drivers\sbhips.sys
21:38:33.0887 8392 sbhips - ok
21:38:33.0920 8392 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
21:38:33.0952 8392 sbp2port - ok
21:38:34.0006 8392 [ 9ACEB2A2362FC87A3825963E61BA9076 ] SBRE C:\Windows\system32\drivers\SBREdrv.sys
21:38:34.0025 8392 SBRE - ok
21:38:34.0123 8392 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
21:38:34.0158 8392 SBSDWSCService - ok
21:38:34.0189 8392 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
21:38:34.0199 8392 SCardSvr - ok
21:38:34.0246 8392 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
21:38:34.0267 8392 scfilter - ok
21:38:34.0312 8392 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
21:38:34.0378 8392 Schedule - ok
21:38:34.0424 8392 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
21:38:34.0426 8392 SCPolicySvc - ok
21:38:34.0468 8392 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
21:38:34.0496 8392 SDRSVC - ok
21:38:34.0547 8392 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
21:38:34.0571 8392 secdrv - ok
21:38:34.0613 8392 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
21:38:34.0643 8392 seclogon - ok
21:38:34.0691 8392 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
21:38:34.0694 8392 SENS - ok
21:38:34.0703 8392 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
21:38:34.0731 8392 SensrSvc - ok
21:38:34.0759 8392 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
21:38:34.0788 8392 Serenum - ok
21:38:34.0818 8392 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
21:38:34.0844 8392 Serial - ok
21:38:34.0885 8392 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
21:38:34.0911 8392 sermouse - ok
21:38:34.0960 8392 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
21:38:34.0993 8392 SessionEnv - ok
21:38:35.0029 8392 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
21:38:35.0034 8392 sffdisk - ok
21:38:35.0041 8392 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
21:38:35.0046 8392 sffp_mmc - ok
21:38:35.0052 8392 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
21:38:35.0084 8392 sffp_sd - ok
21:38:35.0131 8392 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
21:38:35.0158 8392 sfloppy - ok
21:38:35.0263 8392 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
21:38:35.0301 8392 SftService - ok
21:38:35.0334 8392 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
21:38:35.0361 8392 SharedAccess - ok
21:38:35.0406 8392 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:38:35.0413 8392 ShellHWDetection - ok
21:38:35.0465 8392 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:38:35.0485 8392 SiSRaid2 - ok
21:38:35.0492 8392 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
21:38:35.0530 8392 SiSRaid4 - ok
21:38:35.0625 8392 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
21:38:35.0629 8392 SkypeUpdate - ok
21:38:35.0655 8392 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
21:38:35.0662 8392 Smb - ok
21:38:35.0713 8392 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
21:38:35.0718 8392 SNMPTRAP - ok
21:38:35.0732 8392 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
21:38:35.0760 8392 spldr - ok
21:38:35.0809 8392 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
21:38:35.0819 8392 Spooler - ok
21:38:35.0940 8392 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
21:38:35.0957 8392 sppsvc - ok
21:38:36.0001 8392 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
21:38:36.0031 8392 sppuinotify - ok
21:38:36.0078 8392 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
21:38:36.0109 8392 srv - ok
21:38:36.0157 8392 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
21:38:36.0194 8392 srv2 - ok
21:38:36.0234 8392 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
21:38:36.0265 8392 srvnet - ok
21:38:36.0306 8392 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
21:38:36.0311 8392 SSDPSRV - ok
21:38:36.0318 8392 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
21:38:36.0356 8392 SstpSvc - ok
21:38:36.0392 8392 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
21:38:36.0420 8392 stexstor - ok
21:38:36.0464 8392 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
21:38:36.0475 8392 stisvc - ok
21:38:36.0507 8392 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
21:38:36.0536 8392 swenum - ok
21:38:36.0582 8392 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
21:38:36.0615 8392 swprv - ok
21:38:36.0664 8392 [ C25866BDF0E818E02BB8E76845D26E54 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
21:38:36.0676 8392 SynTP - ok
21:38:36.0750 8392 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
21:38:36.0797 8392 SysMain - ok
21:38:36.0837 8392 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:38:36.0867 8392 TabletInputService - ok
21:38:36.0902 8392 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
21:38:36.0907 8392 TapiSrv - ok
21:38:36.0959 8392 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
21:38:36.0990 8392 TBS - ok
21:38:37.0064 8392 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
21:38:37.0148 8392 Tcpip - ok
21:38:37.0244 8392 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
21:38:37.0262 8392 TCPIP6 - ok
21:38:37.0294 8392 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
21:38:37.0319 8392 tcpipreg - ok
21:38:37.0362 8392 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
21:38:37.0421 8392 TDPIPE - ok
21:38:37.0466 8392 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
21:38:37.0492 8392 TDTCP - ok
21:38:37.0529 8392 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
21:38:37.0561 8392 tdx - ok
21:38:37.0583 8392 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
21:38:37.0608 8392 TermDD - ok
21:38:37.0645 8392 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
21:38:37.0654 8392 TermService - ok
21:38:37.0676 8392 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
21:38:37.0698 8392 Themes - ok
21:38:37.0736 8392 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
21:38:37.0738 8392 THREADORDER - ok
21:38:37.0753 8392 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
21:38:37.0780 8392 TrkWks - ok
21:38:37.0862 8392 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:38:37.0867 8392 TrustedInstaller - ok
21:38:37.0916 8392 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
21:38:37.0938 8392 tssecsrv - ok
21:38:38.0033 8392 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
21:38:38.0071 8392 TsUsbFlt - ok
21:38:38.0133 8392 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
21:38:38.0157 8392 tunnel - ok
21:38:38.0198 8392 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
21:38:38.0497 8392 TurboB - ok
21:38:38.0515 8392 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
21:38:38.0517 8392 TurboBoost - ok
21:38:38.0537 8392 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
21:38:38.0565 8392 uagp35 - ok
21:38:38.0607 8392 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
21:38:38.0637 8392 udfs - ok
21:38:38.0678 8392 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
21:38:38.0705 8392 UI0Detect - ok
21:38:38.0740 8392 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
21:38:38.0767 8392 uliagpkx - ok
21:38:38.0824 8392 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
21:38:38.0849 8392 umbus - ok
21:38:38.0891 8392 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
21:38:38.0914 8392 UmPass - ok
21:38:39.0038 8392 [ CBDEE152D73200EE49031A26310B9D3E ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:38:39.0117 8392 UNS - ok
21:38:39.0152 8392 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
21:38:39.0191 8392 upnphost - ok
21:38:39.0250 8392 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
21:38:39.0305 8392 USBAAPL64 - ok
21:38:39.0343 8392 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
21:38:39.0374 8392 usbccgp - ok
21:38:39.0407 8392 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
21:38:39.0430 8392 usbcir - ok
21:38:39.0456 8392 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
21:38:39.0480 8392 usbehci - ok
21:38:39.0525 8392 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
21:38:39.0561 8392 usbhub - ok
21:38:39.0599 8392 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
21:38:39.0623 8392 usbohci - ok
21:38:39.0662 8392 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
21:38:39.0689 8392 usbprint - ok
21:38:39.0735 8392 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:38:39.0772 8392 USBSTOR - ok
21:38:39.0778 8392 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
21:38:39.0789 8392 usbuhci - ok
21:38:39.0859 8392 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
21:38:39.0890 8392 usbvideo - ok
21:38:39.0921 8392 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
21:38:39.0924 8392 UxSms - ok
21:38:39.0939 8392 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
21:38:39.0942 8392 VaultSvc - ok
21:38:39.0992 8392 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
21:38:39.0998 8392 vdrvroot - ok
21:38:40.0043 8392 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
21:38:40.0080 8392 vds - ok
21:38:40.0117 8392 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
21:38:40.0145 8392 vga - ok
21:38:40.0186 8392 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
21:38:40.0208 8392 VgaSave - ok
21:38:40.0249 8392 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
21:38:40.0279 8392 vhdmp - ok
21:38:40.0339 8392 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
21:38:40.0367 8392 viaide - ok
21:38:40.0427 8392 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
21:38:40.0434 8392 volmgr - ok
21:38:40.0478 8392 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
21:38:40.0485 8392 volmgrx - ok
21:38:40.0538 8392 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
21:38:40.0570 8392 volsnap - ok
21:38:40.0624 8392 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
21:38:40.0653 8392 vsmraid - ok
21:38:40.0719 8392 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
21:38:40.0737 8392 VSS - ok
21:38:40.0854 8392 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
21:38:40.0864 8392 vToolbarUpdater13.2.0 - ok
21:38:40.0888 8392 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
21:38:40.0913 8392 vwifibus - ok
21:38:40.0965 8392 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
21:38:40.0991 8392 vwififlt - ok
21:38:41.0035 8392 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
21:38:41.0054 8392 vwifimp - ok
21:38:41.0101 8392 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
21:38:41.0139 8392 W32Time - ok
21:38:41.0148 8392 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
21:38:41.0192 8392 WacomPen - ok
21:38:41.0247 8392 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
21:38:41.0275 8392 WANARP - ok
21:38:41.0303 8392 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
21:38:41.0305 8392 Wanarpv6 - ok
21:38:41.0376 8392 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
21:38:41.0475 8392 WatAdminSvc - ok
21:38:41.0566 8392 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
21:38:41.0643 8392 wbengine - ok
21:38:41.0680 8392 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
21:38:41.0692 8392 WbioSrvc - ok
21:38:41.0737 8392 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
21:38:41.0745 8392 wcncsvc - ok
21:38:41.0762 8392 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:38:41.0789 8392 WcsPlugInService - ok
21:38:41.0829 8392 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
21:38:41.0851 8392 Wd - ok
21:38:41.0890 8392 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
21:38:41.0933 8392 Wdf01000 - ok
21:38:41.0963 8392 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
21:38:41.0966 8392 WdiServiceHost - ok
21:38:41.0972 8392 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
21:38:41.0975 8392 WdiSystemHost - ok
21:38:41.0994 8392 [ FE31110E39A0B11ABAE1BA43A2DC94F9 ] wdkmd C:\Windows\system32\DRIVERS\WDKMD.sys
21:38:42.0032 8392 wdkmd - ok
21:38:42.0081 8392 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
21:38:42.0118 8392 WebClient - ok
21:38:42.0166 8392 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
21:38:42.0199 8392 Wecsvc - ok
21:38:42.0206 8392 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
21:38:42.0218 8392 wercplsupport - ok
21:38:42.0261 8392 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
21:38:42.0264 8392 WerSvc - ok
21:38:42.0288 8392 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
21:38:42.0293 8392 WfpLwf - ok
21:38:42.0334 8392 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
21:38:42.0364 8392 WimFltr - ok
21:38:42.0394 8392 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
21:38:42.0419 8392 WIMMount - ok
21:38:42.0459 8392 WinDefend - ok
21:38:42.0466 8392 WinHttpAutoProxySvc - ok
21:38:42.0527 8392 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
21:38:42.0531 8392 Winmgmt - ok
21:38:42.0613 8392 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
21:38:42.0703 8392 WinRM - ok
21:38:42.0787 8392 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
21:38:42.0815 8392 WinUsb - ok
21:38:42.0862 8392 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
21:38:42.0873 8392 Wlansvc - ok
21:38:42.0931 8392 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:38:42.0932 8392 wlcrasvc - ok
21:38:43.0038 8392 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:38:43.0091 8392 wlidsvc - ok
21:38:43.0169 8392 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
21:38:43.0194 8392 WmiAcpi - ok
21:38:43.0233 8392 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
21:38:43.0277 8392 wmiApSrv - ok
21:38:43.0316 8392 WMPNetworkSvc - ok
21:38:43.0341 8392 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
21:38:43.0362 8392 WPCSvc - ok
21:38:43.0399 8392 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
21:38:43.0431 8392 WPDBusEnum - ok
21:38:43.0458 8392 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
21:38:43.0481 8392 ws2ifsl - ok
21:38:43.0513 8392 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
21:38:43.0517 8392 wscsvc - ok
21:38:43.0522 8392 WSearch - ok
21:38:43.0623 8392 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
21:38:43.0680 8392 wuauserv - ok
21:38:43.0724 8392 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
21:38:43.0746 8392 WudfPf - ok
21:38:43.0767 8392 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
21:38:43.0795 8392 WUDFRd - ok
21:38:43.0833 8392 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
21:38:43.0864 8392 wudfsvc - ok
21:38:43.0904 8392 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
21:38:43.0911 8392 WwanSvc - ok
21:38:43.0945 8392 ================ Scan global ===============================
21:38:43.0975 8392 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:38:44.0052 8392 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
21:38:44.0063 8392 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
21:38:44.0101 8392 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:38:44.0139 8392 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:38:44.0146 8392 [Global] - ok
21:38:44.0146 8392 ================ Scan MBR ==================================
21:38:44.0166 8392 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:38:44.0564 8392 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
21:38:44.0564 8392 \Device\Harddisk0\DR0 - detected TDSS File System (1)
21:38:44.0565 8392 ================ Scan VBR ==================================
21:38:44.0569 8392 [ 2E63C568CB96F1F47EFBA39290AEE5C2 ] \Device\Harddisk0\DR0\Partition1
21:38:44.0571 8392 \Device\Harddisk0\DR0\Partition1 - ok
21:38:44.0601 8392 [ 1D6D96C00026D63FB491C29AFC6D0484 ] \Device\Harddisk0\DR0\Partition2
21:38:44.0604 8392 \Device\Harddisk0\DR0\Partition2 - ok
21:38:44.0604 8392 ============================================================
21:38:44.0605 8392 Scan finished
21:38:44.0605 8392 ============================================================
21:38:44.0618 3836 Detected object count: 1
21:38:44.0618 3836 Actual detected object count: 1
21:39:17.0055 3836 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
21:39:17.0056 3836 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
21:39:57.0956 2172 Deinitialize success

AdwCleaner
# AdwCleaner v2.007 - Logfile created 11/11/2012 at 21:41:26
# Updated 06/11/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Stu - STU-PC
# Boot Mode : Normal
# Running from : C:\Users\Stu\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\AVG Secure Search
Folder Deleted : C:\ProgramData\AVG Secure Search
Folder Deleted : C:\Users\Stu\AppData\Local\AVG Secure Search
Folder Deleted : C:\Users\Stu\AppData\Local\Temp\avg@toolbar
Folder Deleted : C:\Users\Stu\AppData\LocalLow\AVG Secure Search

***** [Registry] *****

Key Deleted : HKCU\Software\AVG Secure Search
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\incredibar.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\Software\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\incredibar.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

*************************

AdwCleaner[S1].txt - [5584 octets] - [11/11/2012 21:41:26]

########## EOF - C:\AdwCleaner[S1].txt - [5644 octets] ##########


SuperAntiSpyware
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 11/11/2012 at 11:27 PM

Application Version : 5.6.1014

Core Rules Database Version : 9571
Trace Rules Database Version: 7383

Scan type : Complete Scan
Total Scan Time : 01:33:08

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator

Memory items scanned : 703
Memory threats detected : 0
Registry items scanned : 73351
Registry threats detected : 0
File items scanned : 94848
File threats detected : 139

Adware.Tracking Cookie
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\MW8IJPO7.txt [ /ar.atwola.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\ZPWDN3K8.txt [ /tribalfusion.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\14MG8ZX7.txt [ /www.findeme.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\EQE9WDW1.txt [ /liveperson.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\TX5R2VQ1.txt [ /sales.liveperson.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\PAY8T5IU.txt [ /insightexpressai.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\QTUIPHUH.txt [ /invitemedia.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\K9NN5FYD.txt [ /ads.undertone.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\DY4N10BF.txt [ /www.puppyfind.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\3WBE9IU0.txt [ /yieldmanager.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\Q3YZP55I.txt [ /at.atwola.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\IQOSXY77.txt [ /realmedia.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\ITKX0AMM.txt [ /click.get-answers-fast.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\QC83POXB.txt [ /collective-media.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\3Z61UAAN.txt [ /adbrite.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\8COIE4DB.txt [ /accounts.google.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\WIT7ECCV.txt [ /bizrate.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\UAP2PCCF.txt [ /media6degrees.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\CJIFNU6I.txt [ /liveperson.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\7Q92DVTW.txt [ /2o7.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\7U97ZSLP.txt [ /questionmarket.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\QOFB7KC1.txt [ /specificclick.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\23T9AVCN.txt [ /mediaservices-d.openxenterprise.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\5KP21Q0O.txt [ /revsci.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\M7600K3M.txt [ /clickfuse.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\2FAO37ME.txt [ /adserver.adtechus.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\RVVSH406.txt [ /www.matracking.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\YKM1R495.txt [ /ad.360yield.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\TO48D8PE.txt [ /ads.glispa.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\O3BIS2ZL.txt [ /tracking.dsmmadvantage.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\UZHCBJOW.txt [ /kontera.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\PHDEZ1ZD.txt [ /interclick.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\5XWEBLG6.txt [ /www.petfinder.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\L8SA2DAV.txt [ /www.mediafire.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\CYGFEA4Z.txt [ /steelhousemedia.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\IEUMM2HE.txt [ /www.onetruemedia.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\QQ7A0K9N.txt [ /lucidmedia.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\QJN1RPY0.txt [ /click.findsearchengineresults.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\EQ9VCEYC.txt [ /mediafire.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\4GZAE4JK.txt [ /amazon-adsystem.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\46UYC8GU.txt [ /ads.pubmatic.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\02J71R0U.txt [ /liveperson.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\5TFGY323.txt [ /bravenet.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\H9RQQNLA.txt [ /server.iad.liveperson.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\EIJEYKUJ.txt [ /atwola.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\AP1DBS4E.txt [ /server.cpmstar.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\D9ZUPQXS.txt [ /adserving.autotrader.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\C94ZRTSZ.txt [ /ads.bladeforums.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\4ANX7N61.txt [ /overtons.112.2o7.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\NWOYI6X3.txt [ /rpc.trafficfactory.biz ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\I8CS6VKI.txt [ /www.googleadservices.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\5VMOI9CI.txt [ /hyundaimotoramerica.122.2o7.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\ULZ2NJTN.txt [ /overture.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\SS0HB32O.txt [ /tacoda.at.atwola.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\B3Z3U5Z4.txt [ /liveclicker.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\KM965X0A.txt [ /puppyfind.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\JNSRT6OG.txt [ /px.steelhousemedia.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\F2A62JQR.txt [ /ads.eqads.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\I6RQQDI3.txt [ /liveperson.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\HEQPLWH7.txt [ /petfinder.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\RS8HOSKD.txt [ /martiniadnetwork.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\DHBGKLR3.txt [ /imrworldwide.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\TOE8AWAB.txt [ /liveperson.net ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\JDX1PM0S.txt [ /cars.findthebest.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\TG9XIY1H.txt [ /solvemedia.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\KP38CVL4.txt [ /ad.mlnadvertising.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\1W1ZQ0E2.txt [ /www.googleadservices.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\RJOH9WU7.txt [ /gostats.ro ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\V9AK9F1D.txt [ /e-2dj6wfkokodpwhq.stats.esomniture.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\ICGIIAAF.txt [ /media2.legacy.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\D7B02IUR.txt [ /www.mycarstats.com ]
C:\Users\Stu\AppData\Roaming\Microsoft\Windows\Cookies\245P98N9.txt [ /www.googleadservices.com ]
C:\USERS\STU\AppData\Roaming\Microsoft\Windows\Cookies\XX8DIUOY.txt [ Cookie:stu@google.com/accounts/recovery/ ]
C:\USERS\STU\AppData\Roaming\Microsoft\Windows\Cookies\Low\stu@sales.liveperson[1].txt [ Cookie:stu@sales.liveperson.net/ ]
C:\USERS\STU\AppData\Roaming\Microsoft\Windows\Cookies\Low\stu@mediaservices-d.openxenterprise[2].txt [ Cookie:stu@mediaservices-d.openxenterprise.com/ ]
C:\USERS\STU\AppData\Roaming\Microsoft\Windows\Cookies\Low\stu@clickcountr[1].txt [ Cookie:stu@clickcountr.com/ ]
C:\USERS\STU\Cookies\MW8IJPO7.txt [ Cookie:stu@ar.atwola.com/ ]
C:\USERS\STU\Cookies\ZPWDN3K8.txt [ Cookie:stu@tribalfusion.com/ ]
C:\USERS\STU\Cookies\14MG8ZX7.txt [ Cookie:stu@www.findeme.com/ ]
C:\USERS\STU\Cookies\TX5R2VQ1.txt [ Cookie:stu@sales.liveperson.net/ ]
C:\USERS\STU\Cookies\PAY8T5IU.txt [ Cookie:stu@insightexpressai.com/ ]
C:\USERS\STU\Cookies\QTUIPHUH.txt [ Cookie:stu@invitemedia.com/ ]
C:\USERS\STU\Cookies\DY4N10BF.txt [ Cookie:stu@www.puppyfind.com/ ]
C:\USERS\STU\Cookies\3WBE9IU0.txt [ Cookie:stu@yieldmanager.net/ ]
C:\USERS\STU\Cookies\XX8DIUOY.txt [ Cookie:stu@google.com/accounts/recovery/ ]
C:\USERS\STU\Cookies\IQOSXY77.txt [ Cookie:stu@realmedia.com/ ]
C:\USERS\STU\Cookies\ITKX0AMM.txt [ Cookie:stu@click.get-answers-fast.com/ads-clicktrack/click/ ]
C:\USERS\STU\Cookies\3Z61UAAN.txt [ Cookie:stu@adbrite.com/ ]
C:\USERS\STU\Cookies\8COIE4DB.txt [ Cookie:stu@accounts.google.com/ ]
C:\USERS\STU\Cookies\WIT7ECCV.txt [ Cookie:stu@bizrate.com/ ]
C:\USERS\STU\Cookies\UAP2PCCF.txt [ Cookie:stu@media6degrees.com/ ]
C:\USERS\STU\Cookies\CJIFNU6I.txt [ Cookie:stu@liveperson.net/hc/65595271 ]
C:\USERS\STU\Cookies\7U97ZSLP.txt [ Cookie:stu@questionmarket.com/ ]
C:\USERS\STU\Cookies\QOFB7KC1.txt [ Cookie:stu@specificclick.net/ ]
C:\USERS\STU\Cookies\23T9AVCN.txt [ Cookie:stu@mediaservices-d.openxenterprise.com/ ]
C:\USERS\STU\Cookies\5KP21Q0O.txt [ Cookie:stu@revsci.net/ ]
C:\USERS\STU\Cookies\2FAO37ME.txt [ Cookie:stu@adserver.adtechus.com/ ]
C:\USERS\STU\Cookies\RVVSH406.txt [ Cookie:stu@www.matracking.com/ ]
C:\USERS\STU\Cookies\O3BIS2ZL.txt [ Cookie:stu@tracking.dsmmadvantage.com/ ]
C:\USERS\STU\Cookies\PHDEZ1ZD.txt [ Cookie:stu@interclick.com/ ]
C:\USERS\STU\Cookies\5XWEBLG6.txt [ Cookie:stu@www.petfinder.com/ ]
C:\USERS\STU\Cookies\L8SA2DAV.txt [ Cookie:stu@www.mediafire.com/ ]
C:\USERS\STU\Cookies\QQ7A0K9N.txt [ Cookie:stu@lucidmedia.com/ ]
C:\USERS\STU\Cookies\QJN1RPY0.txt [ Cookie:stu@click.findsearchengineresults.com/ads-clicktrack/click/ ]
C:\USERS\STU\Cookies\4GZAE4JK.txt [ Cookie:stu@amazon-adsystem.com/ ]
C:\USERS\STU\Cookies\02J71R0U.txt [ Cookie:stu@liveperson.net/hc/76226072 ]
C:\USERS\STU\Cookies\EIJEYKUJ.txt [ Cookie:stu@atwola.com/ ]
C:\USERS\STU\Cookies\AP1DBS4E.txt [ Cookie:stu@server.cpmstar.com/ ]
C:\USERS\STU\Cookies\D9ZUPQXS.txt [ Cookie:stu@adserving.autotrader.com/ ]
C:\USERS\STU\Cookies\4ANX7N61.txt [ Cookie:stu@overtons.112.2o7.net/ ]
C:\USERS\STU\Cookies\I8CS6VKI.txt [ Cookie:stu@www.googleadservices.com/pagead/conversion/1058373906/ ]
C:\USERS\STU\Cookies\ULZ2NJTN.txt [ Cookie:stu@overture.com/ ]
C:\USERS\STU\Cookies\SS0HB32O.txt [ Cookie:stu@tacoda.at.atwola.com/ ]
C:\USERS\STU\Cookies\KM965X0A.txt [ Cookie:stu@puppyfind.com/ ]
C:\USERS\STU\Cookies\JNSRT6OG.txt [ Cookie:stu@px.steelhousemedia.com/ ]
C:\USERS\STU\Cookies\I6RQQDI3.txt [ Cookie:stu@liveperson.net/hc/69606660 ]
C:\USERS\STU\Cookies\HEQPLWH7.txt [ Cookie:stu@petfinder.com/ ]
C:\USERS\STU\Cookies\RS8HOSKD.txt [ Cookie:stu@martiniadnetwork.com/ ]
C:\USERS\STU\Cookies\DHBGKLR3.txt [ Cookie:stu@imrworldwide.com/cgi-bin ]
C:\USERS\STU\Cookies\TOE8AWAB.txt [ Cookie:stu@liveperson.net/hc/19452074 ]
C:\USERS\STU\Cookies\JDX1PM0S.txt [ Cookie:stu@cars.findthebest.com/ ]
C:\USERS\STU\Cookies\TG9XIY1H.txt [ Cookie:stu@solvemedia.com/ ]
C:\USERS\STU\Cookies\KP38CVL4.txt [ Cookie:stu@ad.mlnadvertising.com/ ]
C:\USERS\STU\Cookies\1W1ZQ0E2.txt [ Cookie:stu@www.googleadservices.com/pagead/conversion/1071030900/ ]
C:\USERS\STU\Cookies\RJOH9WU7.txt [ Cookie:stu@gostats.ro/ ]
C:\USERS\STU\Cookies\V9AK9F1D.txt [ Cookie:stu@e-2dj6wfkokodpwhq.stats.esomniture.com/ ]
C:\USERS\STU\Cookies\D7B02IUR.txt [ Cookie:stu@www.mycarstats.com/ ]
C:\USERS\STU\Cookies\245P98N9.txt [ Cookie:stu@www.googleadservices.com/pagead/conversion/1072735110/ ]
.doubleclick.net [ C:\USERS\STU\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
cdnx.tribalfusion.com [ C:\USERS\STU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\VPTMVL95 ]
convoad.technoratimedia.com [ C:\USERS\STU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\VPTMVL95 ]
core.insightexpressai.com [ C:\USERS\STU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\VPTMVL95 ]
core.saymedia.com [ C:\USERS\STU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\VPTMVL95 ]
ec.atdmt.com [ C:\USERS\STU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\VPTMVL95 ]
msnbcmedia.msn.com [ C:\USERS\STU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\VPTMVL95 ]
objects.tremormedia.com [ C:\USERS\STU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\VPTMVL95 ]
s0.2mdn.net [ C:\USERS\STU\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\VPTMVL95 ]
C:\USERS\STU\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\STU@LIVEPERSON[2].TXT [ /LIVEPERSON ]
C:\USERS\STU\APPDATA\ROAMING\MICROSOFT\WINDOWS\COOKIES\LOW\STU@LIVEPERSON[1].TXT [ /LIVEPERSON ]


Thanks again guys I appreciate it.

Stu

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:14 AM

Posted 12 November 2012 - 04:45 PM

You're welcome! You have a rootkit

Re Run TDSS killer.. Change the option in these 2 to Cure or Delete.
21:39:17.0055 3836 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
21:39:17.0056 3836 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip



Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.




I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 Stu925

Stu925
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:14 AM

Posted 13 November 2012 - 04:49 PM

New TDSSKiller Log

20:30:41.0119 5152 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
20:30:43.0162 5152 ============================================================
20:30:43.0162 5152 Current date / time: 2012/11/12 20:30:43.0162
20:30:43.0162 5152 SystemInfo:
20:30:43.0162 5152
20:30:43.0163 5152 OS Version: 6.1.7601 ServicePack: 1.0
20:30:43.0163 5152 Product type: Workstation
20:30:43.0163 5152 ComputerName: STU-PC
20:30:43.0163 5152 UserName: Stu
20:30:43.0163 5152 Windows directory: C:\Windows
20:30:43.0163 5152 System windows directory: C:\Windows
20:30:43.0163 5152 Running under WOW64
20:30:43.0163 5152 Processor architecture: Intel x64
20:30:43.0163 5152 Number of processors: 4
20:30:43.0163 5152 Page size: 0x1000
20:30:43.0163 5152 Boot type: Normal boot
20:30:43.0163 5152 ============================================================
20:30:43.0770 5152 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:30:43.0780 5152 ============================================================
20:30:43.0780 5152 \Device\Harddisk0\DR0:
20:30:43.0780 5152 MBR partitions:
20:30:43.0780 5152 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32FCD, BlocksNum 0x1D4C000
20:30:43.0780 5152 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7EFCD, BlocksNum 0x48AD8AE3
20:30:43.0781 5152 ============================================================
20:30:43.0808 5152 C: <-> \Device\Harddisk0\DR0\Partition2
20:30:43.0808 5152 ============================================================
20:30:43.0808 5152 Initialize success
20:30:43.0808 5152 ============================================================
20:31:32.0045 6584 ============================================================
20:31:32.0045 6584 Scan started
20:31:32.0046 6584 Mode: Manual; TDLFS;
20:31:32.0046 6584 ============================================================
20:31:34.0358 6584 ================ Scan system memory ========================
20:31:34.0358 6584 System memory - ok
20:31:34.0359 6584 ================ Scan services =============================
20:31:34.0484 6584 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
20:31:34.0487 6584 !SASCORE - ok
20:31:34.0665 6584 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
20:31:34.0673 6584 1394ohci - ok
20:31:34.0794 6584 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
20:31:34.0799 6584 ACDaemon - ok
20:31:34.0837 6584 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
20:31:34.0845 6584 ACPI - ok
20:31:34.0886 6584 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
20:31:34.0889 6584 AcpiPmi - ok
20:31:34.0984 6584 [ AF9658974154C3B6A333D86DC2E0AAC8 ] Ad-Aware Service C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
20:31:35.0018 6584 Ad-Aware Service - ok
20:31:35.0067 6584 [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
20:31:35.0167 6584 Adobe LM Service - ok
20:31:35.0301 6584 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:31:35.0307 6584 AdobeFlashPlayerUpdateSvc - ok
20:31:35.0362 6584 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
20:31:35.0373 6584 adp94xx - ok
20:31:35.0405 6584 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
20:31:35.0411 6584 adpahci - ok
20:31:35.0427 6584 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
20:31:35.0431 6584 adpu320 - ok
20:31:35.0457 6584 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
20:31:35.0459 6584 AeLookupSvc - ok
20:31:35.0503 6584 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
20:31:35.0507 6584 AERTFilters - ok
20:31:35.0562 6584 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
20:31:35.0571 6584 AFD - ok
20:31:35.0629 6584 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
20:31:35.0633 6584 agp440 - ok
20:31:35.0670 6584 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
20:31:35.0672 6584 ALG - ok
20:31:35.0725 6584 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
20:31:35.0728 6584 aliide - ok
20:31:35.0753 6584 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
20:31:35.0756 6584 amdide - ok
20:31:35.0799 6584 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
20:31:35.0803 6584 AmdK8 - ok
20:31:35.0811 6584 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
20:31:35.0815 6584 AmdPPM - ok
20:31:35.0875 6584 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
20:31:35.0880 6584 amdsata - ok
20:31:35.0907 6584 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
20:31:35.0912 6584 amdsbs - ok
20:31:35.0960 6584 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
20:31:35.0963 6584 amdxata - ok
20:31:36.0008 6584 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
20:31:36.0013 6584 AppID - ok
20:31:36.0041 6584 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
20:31:36.0046 6584 AppIDSvc - ok
20:31:36.0105 6584 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
20:31:36.0107 6584 Appinfo - ok
20:31:36.0181 6584 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:31:36.0185 6584 Apple Mobile Device - ok
20:31:36.0222 6584 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
20:31:36.0230 6584 arc - ok
20:31:36.0237 6584 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
20:31:36.0243 6584 arcsas - ok
20:31:36.0266 6584 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
20:31:36.0269 6584 AsyncMac - ok
20:31:36.0309 6584 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
20:31:36.0313 6584 atapi - ok
20:31:36.0371 6584 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
20:31:36.0382 6584 AudioEndpointBuilder - ok
20:31:36.0397 6584 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
20:31:36.0403 6584 AudioSrv - ok
20:31:36.0647 6584 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
20:31:36.0790 6584 AVGIDSAgent - ok
20:31:36.0841 6584 [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
20:31:36.0846 6584 AVGIDSDriver - ok
20:31:36.0900 6584 [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
20:31:36.0942 6584 AVGIDSHA - ok
20:31:36.0995 6584 [ 5989592A91A17587799792A81E1541D4 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
20:31:37.0001 6584 Avgldx64 - ok
20:31:37.0058 6584 [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
20:31:37.0064 6584 Avgloga - ok
20:31:37.0084 6584 [ 767B4A485FB22AA0FC0BF5EEF00572B9 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
20:31:37.0131 6584 Avgmfx64 - ok
20:31:37.0149 6584 [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
20:31:37.0152 6584 Avgrkx64 - ok
20:31:37.0172 6584 [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
20:31:37.0177 6584 Avgtdia - ok
20:31:37.0222 6584 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
20:31:37.0226 6584 avgtp - ok
20:31:37.0272 6584 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
20:31:37.0328 6584 avgwd - ok
20:31:37.0381 6584 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
20:31:37.0384 6584 AxInstSV - ok
20:31:37.0446 6584 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
20:31:37.0454 6584 b06bdrv - ok
20:31:37.0492 6584 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
20:31:37.0500 6584 b57nd60a - ok
20:31:37.0552 6584 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
20:31:37.0555 6584 BDESVC - ok
20:31:37.0581 6584 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
20:31:37.0585 6584 Beep - ok
20:31:37.0656 6584 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
20:31:37.0672 6584 BFE - ok
20:31:37.0732 6584 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
20:31:37.0754 6584 BITS - ok
20:31:37.0791 6584 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
20:31:37.0795 6584 blbdrive - ok
20:31:37.0871 6584 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:31:37.0880 6584 Bonjour Service - ok
20:31:37.0937 6584 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
20:31:37.0941 6584 bowser - ok
20:31:37.0971 6584 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:31:37.0974 6584 BrFiltLo - ok
20:31:37.0980 6584 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:31:37.0984 6584 BrFiltUp - ok
20:31:38.0040 6584 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
20:31:38.0043 6584 Browser - ok
20:31:38.0082 6584 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
20:31:38.0089 6584 Brserid - ok
20:31:38.0109 6584 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
20:31:38.0116 6584 BrSerWdm - ok
20:31:38.0126 6584 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
20:31:38.0129 6584 BrUsbMdm - ok
20:31:38.0135 6584 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
20:31:38.0139 6584 BrUsbSer - ok
20:31:38.0191 6584 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
20:31:38.0254 6584 BthEnum - ok
20:31:38.0296 6584 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
20:31:38.0300 6584 BTHMODEM - ok
20:31:38.0310 6584 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
20:31:38.0315 6584 BthPan - ok
20:31:38.0366 6584 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
20:31:38.0409 6584 BTHPORT - ok
20:31:38.0463 6584 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
20:31:38.0465 6584 bthserv - ok
20:31:38.0491 6584 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
20:31:38.0495 6584 BTHUSB - ok
20:31:38.0541 6584 [ D3466F77C2C49C6E393BA5FBA963A33E ] btusbflt C:\Windows\system32\drivers\btusbflt.sys
20:31:38.0545 6584 btusbflt - ok
20:31:38.0598 6584 [ AF838D8029AE7C27470862D63FA54D24 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
20:31:38.0602 6584 btwaudio - ok
20:31:38.0638 6584 [ 5C849BD7C78791C5CEE9F4651D7FE38D ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
20:31:38.0642 6584 btwavdt - ok
20:31:38.0728 6584 [ 10FFB5FA51D5713D872B41A59DFC2213 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
20:31:38.0748 6584 btwdins - ok
20:31:38.0775 6584 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
20:31:38.0777 6584 btwl2cap - ok
20:31:38.0798 6584 [ 3E1991AFA851A36DC978B0A1B0535C8B ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
20:31:38.0804 6584 btwrchid - ok
20:31:38.0825 6584 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
20:31:38.0828 6584 cdfs - ok
20:31:38.0886 6584 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
20:31:38.0891 6584 cdrom - ok
20:31:38.0948 6584 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
20:31:38.0951 6584 CertPropSvc - ok
20:31:38.0985 6584 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
20:31:38.0989 6584 circlass - ok
20:31:39.0032 6584 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
20:31:39.0039 6584 CLFS - ok
20:31:39.0139 6584 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:31:39.0143 6584 clr_optimization_v2.0.50727_32 - ok
20:31:39.0196 6584 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:31:39.0200 6584 clr_optimization_v2.0.50727_64 - ok
20:31:39.0302 6584 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:31:39.0330 6584 clr_optimization_v4.0.30319_32 - ok
20:31:39.0384 6584 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:31:39.0389 6584 clr_optimization_v4.0.30319_64 - ok
20:31:39.0440 6584 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
20:31:39.0443 6584 CmBatt - ok
20:31:39.0480 6584 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
20:31:39.0483 6584 cmdide - ok
20:31:39.0543 6584 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
20:31:39.0554 6584 CNG - ok
20:31:39.0630 6584 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
20:31:39.0634 6584 Compbatt - ok
20:31:39.0692 6584 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
20:31:39.0696 6584 CompositeBus - ok
20:31:39.0710 6584 COMSysApp - ok
20:31:39.0796 6584 cpuz130 - ok
20:31:39.0834 6584 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
20:31:39.0837 6584 crcdisk - ok
20:31:39.0881 6584 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
20:31:39.0885 6584 CryptSvc - ok
20:31:39.0906 6584 [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
20:31:39.0912 6584 CtClsFlt - ok
20:31:39.0978 6584 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
20:31:39.0988 6584 DcomLaunch - ok
20:31:40.0054 6584 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
20:31:40.0060 6584 defragsvc - ok
20:31:40.0104 6584 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
20:31:40.0107 6584 DfsC - ok
20:31:40.0173 6584 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
20:31:40.0179 6584 Dhcp - ok
20:31:40.0214 6584 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
20:31:40.0216 6584 discache - ok
20:31:40.0250 6584 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
20:31:40.0254 6584 Disk - ok
20:31:40.0296 6584 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
20:31:40.0300 6584 Dnscache - ok
20:31:40.0336 6584 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
20:31:40.0340 6584 dot3svc - ok
20:31:40.0391 6584 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
20:31:40.0393 6584 DPS - ok
20:31:40.0430 6584 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
20:31:40.0433 6584 drmkaud - ok
20:31:40.0484 6584 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
20:31:40.0517 6584 DXGKrnl - ok
20:31:40.0576 6584 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
20:31:40.0579 6584 EapHost - ok
20:31:40.0672 6584 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
20:31:40.0776 6584 ebdrv - ok
20:31:40.0831 6584 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
20:31:40.0835 6584 EFS - ok
20:31:40.0912 6584 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
20:31:40.0928 6584 ehRecvr - ok
20:31:40.0983 6584 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
20:31:40.0986 6584 ehSched - ok
20:31:41.0029 6584 [ A05FC7ECA0966EBB70E4D17B855A853B ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys
20:31:41.0032 6584 ElbyCDIO - ok
20:31:41.0088 6584 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
20:31:41.0098 6584 elxstor - ok
20:31:41.0165 6584 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
20:31:41.0168 6584 ErrDev - ok
20:31:41.0218 6584 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
20:31:41.0225 6584 EventSystem - ok
20:31:41.0357 6584 [ B56D9602DB5FE1C116B1CA5EFD8E2E50 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
20:31:41.0390 6584 EvtEng - ok
20:31:41.0450 6584 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
20:31:41.0456 6584 exfat - ok
20:31:41.0478 6584 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
20:31:41.0484 6584 fastfat - ok
20:31:41.0545 6584 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
20:31:41.0563 6584 Fax - ok
20:31:41.0609 6584 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
20:31:41.0613 6584 fdc - ok
20:31:41.0647 6584 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
20:31:41.0649 6584 fdPHost - ok
20:31:41.0663 6584 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
20:31:41.0665 6584 FDResPub - ok
20:31:41.0689 6584 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
20:31:41.0691 6584 FileInfo - ok
20:31:41.0714 6584 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
20:31:41.0716 6584 Filetrace - ok
20:31:41.0746 6584 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
20:31:41.0749 6584 flpydisk - ok
20:31:41.0787 6584 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
20:31:41.0792 6584 FltMgr - ok
20:31:41.0872 6584 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
20:31:41.0908 6584 FontCache - ok
20:31:42.0006 6584 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:31:42.0009 6584 FontCache3.0.0.0 - ok
20:31:42.0035 6584 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
20:31:42.0037 6584 FsDepends - ok
20:31:42.0075 6584 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
20:31:42.0079 6584 Fs_Rec - ok
20:31:42.0132 6584 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
20:31:42.0136 6584 fvevol - ok
20:31:42.0177 6584 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
20:31:42.0180 6584 gagp30kx - ok
20:31:42.0231 6584 [ C1BBCE4B30B45410178EE674C818D10C ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
20:31:42.0238 6584 GameConsoleService - ok
20:31:42.0291 6584 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:31:42.0294 6584 GEARAspiWDM - ok
20:31:42.0352 6584 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
20:31:42.0355 6584 GoToAssist - ok
20:31:42.0420 6584 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
20:31:42.0441 6584 gpsvc - ok
20:31:42.0530 6584 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:31:42.0532 6584 gupdate - ok
20:31:42.0550 6584 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:31:42.0553 6584 gupdatem - ok
20:31:42.0606 6584 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
20:31:42.0609 6584 gusvc - ok
20:31:42.0643 6584 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
20:31:42.0654 6584 hcw85cir - ok
20:31:42.0705 6584 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
20:31:42.0710 6584 HDAudBus - ok
20:31:42.0746 6584 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
20:31:42.0750 6584 HECIx64 - ok
20:31:42.0770 6584 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
20:31:42.0773 6584 HidBatt - ok
20:31:42.0780 6584 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
20:31:42.0785 6584 HidBth - ok
20:31:42.0803 6584 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
20:31:42.0812 6584 HidIr - ok
20:31:42.0843 6584 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
20:31:42.0846 6584 hidserv - ok
20:31:42.0892 6584 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
20:31:42.0896 6584 HidUsb - ok
20:31:42.0931 6584 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
20:31:42.0935 6584 hkmsvc - ok
20:31:42.0979 6584 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
20:31:42.0985 6584 HomeGroupListener - ok
20:31:43.0034 6584 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
20:31:43.0040 6584 HomeGroupProvider - ok
20:31:43.0080 6584 [ 3015B37029AD15C67EBCA5053C422F90 ] HP8207_8307 C:\Windows\system32\DRIVERS\HP8207_8307.sys
20:31:43.0084 6584 HP8207_8307 - ok
20:31:43.0119 6584 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
20:31:43.0123 6584 HpSAMD - ok
20:31:43.0186 6584 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
20:31:43.0202 6584 HTTP - ok
20:31:43.0243 6584 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
20:31:43.0245 6584 hwpolicy - ok
20:31:43.0300 6584 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
20:31:43.0305 6584 i8042prt - ok
20:31:43.0348 6584 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
20:31:43.0355 6584 iaStor - ok
20:31:43.0379 6584 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
20:31:43.0387 6584 iaStorV - ok
20:31:43.0451 6584 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:31:43.0485 6584 idsvc - ok
20:31:43.0721 6584 [ 31569A2E836C12014148BF7342716946 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
20:31:43.0936 6584 igfx - ok
20:31:43.0988 6584 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
20:31:43.0991 6584 iirsp - ok
20:31:44.0047 6584 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
20:31:44.0067 6584 IKEEXT - ok
20:31:44.0092 6584 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
20:31:44.0095 6584 Impcd - ok
20:31:44.0170 6584 [ 6E4CCB3AFF07E2B9F2A937385C84B573 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
20:31:44.0325 6584 IntcAzAudAddService - ok
20:31:44.0358 6584 [ 03C74719D48056A1078F3A51CEB76BAA ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
20:31:44.0365 6584 IntcDAud - ok
20:31:44.0391 6584 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
20:31:44.0395 6584 intelide - ok
20:31:44.0423 6584 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
20:31:44.0427 6584 intelppm - ok
20:31:44.0468 6584 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
20:31:44.0471 6584 IPBusEnum - ok
20:31:44.0514 6584 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:31:44.0519 6584 IpFilterDriver - ok
20:31:44.0590 6584 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
20:31:44.0600 6584 iphlpsvc - ok
20:31:44.0640 6584 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
20:31:44.0644 6584 IPMIDRV - ok
20:31:44.0672 6584 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
20:31:44.0676 6584 IPNAT - ok
20:31:44.0722 6584 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:31:44.0744 6584 iPod Service - ok
20:31:44.0768 6584 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
20:31:44.0769 6584 IRENUM - ok
20:31:44.0816 6584 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
20:31:44.0819 6584 isapnp - ok
20:31:44.0863 6584 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
20:31:44.0870 6584 iScsiPrt - ok
20:31:44.0894 6584 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
20:31:44.0898 6584 kbdclass - ok
20:31:44.0935 6584 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
20:31:44.0939 6584 kbdhid - ok
20:31:44.0964 6584 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
20:31:44.0966 6584 KeyIso - ok
20:31:45.0008 6584 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
20:31:45.0012 6584 KSecDD - ok
20:31:45.0030 6584 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
20:31:45.0036 6584 KSecPkg - ok
20:31:45.0070 6584 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
20:31:45.0074 6584 ksthunk - ok
20:31:45.0114 6584 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
20:31:45.0123 6584 KtmRm - ok
20:31:45.0158 6584 [ 39918DB0EFCF045A1CE6FABBF339F975 ] L1C C:\Windows\system32\DRIVERS\L1C62x64.sys
20:31:45.0162 6584 L1C - ok
20:31:45.0197 6584 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
20:31:45.0203 6584 LanmanServer - ok
20:31:45.0239 6584 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
20:31:45.0244 6584 LanmanWorkstation - ok
20:31:45.0282 6584 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
20:31:45.0286 6584 lltdio - ok
20:31:45.0319 6584 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
20:31:45.0327 6584 lltdsvc - ok
20:31:45.0354 6584 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
20:31:45.0356 6584 lmhosts - ok
20:31:45.0405 6584 [ 23D990150D56B670A62B21B9ABDD45EE ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:31:45.0413 6584 LMS - ok
20:31:45.0480 6584 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
20:31:45.0485 6584 LSI_FC - ok
20:31:45.0493 6584 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
20:31:45.0508 6584 LSI_SAS - ok
20:31:45.0516 6584 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:31:45.0520 6584 LSI_SAS2 - ok
20:31:45.0526 6584 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:31:45.0530 6584 LSI_SCSI - ok
20:31:45.0581 6584 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
20:31:45.0584 6584 luafv - ok
20:31:45.0625 6584 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
20:31:45.0630 6584 Mcx2Svc - ok
20:31:45.0749 6584 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
20:31:45.0754 6584 MDM - ok
20:31:45.0801 6584 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
20:31:45.0805 6584 megasas - ok
20:31:45.0815 6584 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
20:31:45.0822 6584 MegaSR - ok
20:31:45.0860 6584 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
20:31:45.0863 6584 MMCSS - ok
20:31:45.0869 6584 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
20:31:45.0873 6584 Modem - ok
20:31:45.0899 6584 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
20:31:45.0900 6584 monitor - ok
20:31:45.0949 6584 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
20:31:45.0953 6584 mouclass - ok
20:31:45.0977 6584 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
20:31:45.0981 6584 mouhid - ok
20:31:46.0025 6584 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
20:31:46.0027 6584 mountmgr - ok
20:31:46.0055 6584 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
20:31:46.0060 6584 mpio - ok
20:31:46.0078 6584 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
20:31:46.0082 6584 mpsdrv - ok
20:31:46.0140 6584 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
20:31:46.0161 6584 MpsSvc - ok
20:31:46.0201 6584 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
20:31:46.0207 6584 MRxDAV - ok
20:31:46.0247 6584 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
20:31:46.0253 6584 mrxsmb - ok
20:31:46.0277 6584 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:31:46.0284 6584 mrxsmb10 - ok
20:31:46.0302 6584 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:31:46.0319 6584 mrxsmb20 - ok
20:31:46.0364 6584 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
20:31:46.0368 6584 msahci - ok
20:31:46.0401 6584 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
20:31:46.0405 6584 msdsm - ok
20:31:46.0442 6584 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
20:31:46.0448 6584 MSDTC - ok
20:31:46.0493 6584 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
20:31:46.0496 6584 Msfs - ok
20:31:46.0511 6584 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
20:31:46.0512 6584 mshidkmdf - ok
20:31:46.0524 6584 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
20:31:46.0528 6584 msisadrv - ok
20:31:46.0569 6584 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
20:31:46.0575 6584 MSiSCSI - ok
20:31:46.0582 6584 msiserver - ok
20:31:46.0620 6584 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
20:31:46.0648 6584 MSKSSRV - ok
20:31:46.0661 6584 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
20:31:46.0667 6584 MSPCLOCK - ok
20:31:46.0680 6584 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
20:31:46.0681 6584 MSPQM - ok
20:31:46.0729 6584 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
20:31:46.0737 6584 MsRPC - ok
20:31:46.0794 6584 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
20:31:46.0797 6584 mssmbios - ok
20:31:46.0815 6584 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
20:31:46.0818 6584 MSTEE - ok
20:31:46.0831 6584 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
20:31:46.0834 6584 MTConfig - ok
20:31:46.0850 6584 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
20:31:46.0852 6584 Mup - ok
20:31:46.0877 6584 [ A9BC2302FBDF52C8AF4E2FC966288D21 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
20:31:46.0884 6584 MyWiFiDHCPDNS - ok
20:31:46.0958 6584 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
20:31:46.0967 6584 napagent - ok
20:31:46.0997 6584 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
20:31:47.0004 6584 NativeWifiP - ok
20:31:47.0044 6584 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
20:31:47.0063 6584 NDIS - ok
20:31:47.0086 6584 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
20:31:47.0090 6584 NdisCap - ok
20:31:47.0117 6584 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
20:31:47.0121 6584 NdisTapi - ok
20:31:47.0168 6584 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
20:31:47.0172 6584 Ndisuio - ok
20:31:47.0210 6584 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
20:31:47.0215 6584 NdisWan - ok
20:31:47.0258 6584 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
20:31:47.0262 6584 NDProxy - ok
20:31:47.0291 6584 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
20:31:47.0295 6584 NetBIOS - ok
20:31:47.0344 6584 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
20:31:47.0349 6584 NetBT - ok
20:31:47.0386 6584 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
20:31:47.0388 6584 Netlogon - ok
20:31:47.0433 6584 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
20:31:47.0441 6584 Netman - ok
20:31:47.0453 6584 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
20:31:47.0461 6584 netprofm - ok
20:31:47.0524 6584 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:31:47.0529 6584 NetTcpPortSharing - ok
20:31:47.0691 6584 [ 24F64343F14A119308456E1CA7507B26 ] NETw5s64 C:\Windows\system32\DRIVERS\NETw5s64.sys
20:31:47.0890 6584 NETw5s64 - ok
20:31:47.0942 6584 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
20:31:47.0946 6584 nfrd960 - ok
20:31:47.0996 6584 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
20:31:48.0003 6584 NlaSvc - ok
20:31:48.0118 6584 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
20:31:48.0188 6584 NOBU - ok
20:31:48.0215 6584 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
20:31:48.0218 6584 Npfs - ok
20:31:48.0239 6584 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
20:31:48.0242 6584 nsi - ok
20:31:48.0261 6584 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
20:31:48.0263 6584 nsiproxy - ok
20:31:48.0343 6584 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
20:31:48.0383 6584 Ntfs - ok
20:31:48.0400 6584 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
20:31:48.0404 6584 Null - ok
20:31:48.0444 6584 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
20:31:48.0449 6584 nvraid - ok
20:31:48.0466 6584 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
20:31:48.0471 6584 nvstor - ok
20:31:48.0519 6584 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
20:31:48.0524 6584 nv_agp - ok
20:31:48.0558 6584 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
20:31:48.0563 6584 ohci1394 - ok
20:31:48.0598 6584 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
20:31:48.0605 6584 p2pimsvc - ok
20:31:48.0650 6584 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
20:31:48.0658 6584 p2psvc - ok
20:31:48.0691 6584 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
20:31:48.0694 6584 Parport - ok
20:31:48.0732 6584 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
20:31:48.0734 6584 partmgr - ok
20:31:48.0749 6584 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
20:31:48.0754 6584 PcaSvc - ok
20:31:48.0796 6584 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
20:31:48.0799 6584 pci - ok
20:31:48.0847 6584 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
20:31:48.0850 6584 pciide - ok
20:31:48.0893 6584 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
20:31:48.0899 6584 pcmcia - ok
20:31:48.0920 6584 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
20:31:48.0924 6584 pcw - ok
20:31:48.0948 6584 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
20:31:48.0960 6584 PEAUTH - ok
20:31:49.0051 6584 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
20:31:49.0053 6584 PerfHost - ok
20:31:49.0135 6584 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
20:31:49.0182 6584 pla - ok
20:31:49.0222 6584 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
20:31:49.0231 6584 PlugPlay - ok
20:31:49.0258 6584 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
20:31:49.0261 6584 PNRPAutoReg - ok
20:31:49.0286 6584 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
20:31:49.0292 6584 PNRPsvc - ok
20:31:49.0333 6584 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
20:31:49.0344 6584 PolicyAgent - ok
20:31:49.0370 6584 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
20:31:49.0375 6584 Power - ok
20:31:49.0420 6584 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
20:31:49.0425 6584 PptpMiniport - ok
20:31:49.0462 6584 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
20:31:49.0466 6584 Processor - ok
20:31:49.0499 6584 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
20:31:49.0505 6584 ProfSvc - ok
20:31:49.0519 6584 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
20:31:49.0521 6584 ProtectedStorage - ok
20:31:49.0569 6584 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
20:31:49.0571 6584 Psched - ok
20:31:49.0606 6584 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
20:31:49.0609 6584 PxHlpa64 - ok
20:31:49.0688 6584 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
20:31:49.0726 6584 ql2300 - ok
20:31:49.0731 6584 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
20:31:49.0734 6584 ql40xx - ok
20:31:49.0776 6584 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
20:31:49.0782 6584 QWAVE - ok
20:31:49.0793 6584 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
20:31:49.0795 6584 QWAVEdrv - ok
20:31:49.0806 6584 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
20:31:49.0809 6584 RasAcd - ok
20:31:49.0840 6584 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
20:31:49.0843 6584 RasAgileVpn - ok
20:31:49.0872 6584 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
20:31:49.0876 6584 RasAuto - ok
20:31:49.0913 6584 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
20:31:49.0918 6584 Rasl2tp - ok
20:31:49.0973 6584 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
20:31:49.0981 6584 RasMan - ok
20:31:50.0014 6584 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
20:31:50.0019 6584 RasPppoe - ok
20:31:50.0036 6584 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
20:31:50.0041 6584 RasSstp - ok
20:31:50.0081 6584 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
20:31:50.0089 6584 rdbss - ok
20:31:50.0129 6584 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
20:31:50.0133 6584 rdpbus - ok
20:31:50.0157 6584 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
20:31:50.0158 6584 RDPCDD - ok
20:31:50.0209 6584 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
20:31:50.0210 6584 RDPENCDD - ok
20:31:50.0231 6584 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
20:31:50.0232 6584 RDPREFMP - ok
20:31:50.0268 6584 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
20:31:50.0287 6584 RDPWD - ok
20:31:50.0327 6584 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
20:31:50.0332 6584 rdyboost - ok
20:31:50.0394 6584 [ 0AA473966357C4A41B5EB19649EB6E5E ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
20:31:50.0415 6584 RegSrvc - ok
20:31:50.0446 6584 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
20:31:50.0449 6584 RemoteAccess - ok
20:31:50.0493 6584 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:31:50.0498 6584 RemoteRegistry - ok
20:31:50.0527 6584 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
20:31:50.0532 6584 RFCOMM - ok
20:31:50.0549 6584 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:31:50.0553 6584 RpcEptMapper - ok
20:31:50.0573 6584 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
20:31:50.0575 6584 RpcLocator - ok
20:31:50.0622 6584 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
20:31:50.0630 6584 RpcSs - ok
20:31:50.0661 6584 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:31:50.0665 6584 rspndr - ok
20:31:50.0708 6584 [ 22D6B47D004A6568C500680BE2972854 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
20:31:50.0711 6584 RSUSBSTOR - ok
20:31:50.0731 6584 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
20:31:50.0733 6584 SamSs - ok
20:31:50.0817 6584 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
20:31:50.0819 6584 SASDIFSV - ok
20:31:50.0859 6584 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
20:31:50.0860 6584 SASKUTIL - ok
20:31:51.0006 6584 [ BCE943896289A91AD75CC5652620B1C6 ] SBAMSvc C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
20:31:51.0076 6584 SBAMSvc - ok
20:31:51.0135 6584 [ 6E342316E72F4B6FA39C99E06373A1A3 ] sbapifs C:\Windows\system32\DRIVERS\sbapifs.sys
20:31:51.0138 6584 sbapifs - ok
20:31:51.0195 6584 [ B671EEF468D13016B9286F5835A06AE1 ] sbhips C:\Windows\system32\drivers\sbhips.sys
20:31:51.0198 6584 sbhips - ok
20:31:51.0233 6584 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:31:51.0238 6584 sbp2port - ok
20:31:51.0282 6584 [ 9ACEB2A2362FC87A3825963E61BA9076 ] SBRE C:\Windows\system32\drivers\SBREdrv.sys
20:31:51.0286 6584 SBRE - ok
20:31:51.0359 6584 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
20:31:51.0394 6584 SBSDWSCService - ok
20:31:51.0424 6584 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:31:51.0430 6584 SCardSvr - ok
20:31:51.0470 6584 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:31:51.0471 6584 scfilter - ok
20:31:51.0521 6584 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
20:31:51.0557 6584 Schedule - ok
20:31:51.0615 6584 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
20:31:51.0617 6584 SCPolicySvc - ok
20:31:51.0659 6584 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:31:51.0664 6584 SDRSVC - ok
20:31:51.0693 6584 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:31:51.0697 6584 secdrv - ok
20:31:51.0737 6584 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
20:31:51.0742 6584 seclogon - ok
20:31:51.0792 6584 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
20:31:51.0795 6584 SENS - ok
20:31:51.0805 6584 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:31:51.0809 6584 SensrSvc - ok
20:31:51.0839 6584 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:31:51.0843 6584 Serenum - ok
20:31:51.0864 6584 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:31:51.0869 6584 Serial - ok
20:31:51.0898 6584 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:31:51.0902 6584 sermouse - ok
20:31:51.0940 6584 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
20:31:51.0944 6584 SessionEnv - ok
20:31:51.0976 6584 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:31:51.0979 6584 sffdisk - ok
20:31:51.0985 6584 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:31:51.0989 6584 sffp_mmc - ok
20:31:51.0996 6584 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:31:52.0000 6584 sffp_sd - ok
20:31:52.0044 6584 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:31:52.0048 6584 sfloppy - ok
20:31:52.0142 6584 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
20:31:52.0188 6584 SftService - ok
20:31:52.0226 6584 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:31:52.0233 6584 SharedAccess - ok
20:31:52.0286 6584 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:31:52.0294 6584 ShellHWDetection - ok
20:31:52.0334 6584 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:31:52.0338 6584 SiSRaid2 - ok
20:31:52.0344 6584 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:31:52.0348 6584 SiSRaid4 - ok
20:31:52.0421 6584 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:31:52.0426 6584 SkypeUpdate - ok
20:31:52.0434 6584 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:31:52.0437 6584 Smb - ok
20:31:52.0492 6584 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:31:52.0496 6584 SNMPTRAP - ok
20:31:52.0523 6584 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
20:31:52.0526 6584 spldr - ok
20:31:52.0577 6584 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
20:31:52.0589 6584 Spooler - ok
20:31:52.0698 6584 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
20:31:52.0796 6584 sppsvc - ok
20:31:52.0847 6584 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:31:52.0851 6584 sppuinotify - ok
20:31:52.0902 6584 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
20:31:52.0912 6584 srv - ok
20:31:52.0993 6584 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:31:53.0002 6584 srv2 - ok
20:31:53.0036 6584 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:31:53.0042 6584 srvnet - ok
20:31:53.0086 6584 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:31:53.0091 6584 SSDPSRV - ok
20:31:53.0098 6584 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:31:53.0109 6584 SstpSvc - ok
20:31:53.0127 6584 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:31:53.0131 6584 stexstor - ok
20:31:53.0178 6584 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
20:31:53.0189 6584 stisvc - ok
20:31:53.0221 6584 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
20:31:53.0224 6584 swenum - ok
20:31:53.0251 6584 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
20:31:53.0261 6584 swprv - ok
20:31:53.0299 6584 [ C25866BDF0E818E02BB8E76845D26E54 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
20:31:53.0307 6584 SynTP - ok
20:31:53.0374 6584 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
20:31:53.0423 6584 SysMain - ok
20:31:53.0473 6584 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:31:53.0478 6584 TabletInputService - ok
20:31:53.0517 6584 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
20:31:53.0525 6584 TapiSrv - ok
20:31:53.0605 6584 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
20:31:53.0609 6584 TBS - ok
20:31:53.0679 6584 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:31:53.0723 6584 Tcpip - ok
20:31:53.0771 6584 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:31:53.0785 6584 TCPIP6 - ok
20:31:53.0821 6584 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:31:53.0824 6584 tcpipreg - ok
20:31:53.0853 6584 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:31:53.0857 6584 TDPIPE - ok
20:31:53.0890 6584 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:31:53.0894 6584 TDTCP - ok
20:31:53.0920 6584 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:31:53.0925 6584 tdx - ok
20:31:53.0952 6584 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
20:31:53.0956 6584 TermDD - ok
20:31:54.0002 6584 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
20:31:54.0019 6584 TermService - ok
20:31:54.0045 6584 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
20:31:54.0048 6584 Themes - ok
20:31:54.0083 6584 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
20:31:54.0085 6584 THREADORDER - ok
20:31:54.0100 6584 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
20:31:54.0106 6584 TrkWks - ok
20:31:54.0176 6584 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:31:54.0178 6584 TrustedInstaller - ok
20:31:54.0229 6584 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:31:54.0231 6584 tssecsrv - ok
20:31:54.0282 6584 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:31:54.0284 6584 TsUsbFlt - ok
20:31:54.0335 6584 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:31:54.0340 6584 tunnel - ok
20:31:54.0363 6584 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
20:31:54.0366 6584 TurboB - ok
20:31:54.0403 6584 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
20:31:54.0550 6584 TurboBoost - ok
20:31:54.0583 6584 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:31:54.0587 6584 uagp35 - ok
20:31:54.0631 6584 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:31:54.0639 6584 udfs - ok
20:31:54.0664 6584 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:31:54.0669 6584 UI0Detect - ok
20:31:54.0698 6584 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:31:54.0702 6584 uliagpkx - ok
20:31:54.0760 6584 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
20:31:54.0764 6584 umbus - ok
20:31:54.0793 6584 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:31:54.0797 6584 UmPass - ok
20:31:54.0884 6584 [ CBDEE152D73200EE49031A26310B9D3E ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:31:54.0941 6584 UNS - ok
20:31:54.0976 6584 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
20:31:54.0981 6584 upnphost - ok
20:31:55.0019 6584 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
20:31:55.0095 6584 USBAAPL64 - ok
20:31:55.0145 6584 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:31:55.0150 6584 usbccgp - ok
20:31:55.0198 6584 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:31:55.0202 6584 usbcir - ok
20:31:55.0224 6584 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
20:31:55.0230 6584 usbehci - ok
20:31:55.0260 6584 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:31:55.0268 6584 usbhub - ok
20:31:55.0313 6584 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:31:55.0317 6584 usbohci - ok
20:31:55.0342 6584 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:31:55.0346 6584 usbprint - ok
20:31:55.0359 6584 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:31:55.0364 6584 USBSTOR - ok
20:31:55.0388 6584 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
20:31:55.0392 6584 usbuhci - ok
20:31:55.0439 6584 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
20:31:55.0445 6584 usbvideo - ok
20:31:55.0471 6584 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
20:31:55.0477 6584 UxSms - ok
20:31:55.0486 6584 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
20:31:55.0488 6584 VaultSvc - ok
20:31:55.0539 6584 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:31:55.0543 6584 vdrvroot - ok
20:31:55.0590 6584 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
20:31:55.0600 6584 vds - ok
20:31:55.0652 6584 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:31:55.0656 6584 vga - ok
20:31:55.0677 6584 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
20:31:55.0682 6584 VgaSave - ok
20:31:55.0729 6584 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:31:55.0735 6584 vhdmp - ok
20:31:55.0796 6584 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
20:31:55.0800 6584 viaide - ok
20:31:55.0863 6584 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:31:55.0866 6584 volmgr - ok
20:31:55.0913 6584 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:31:55.0919 6584 volmgrx - ok
20:31:55.0995 6584 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:31:56.0002 6584 volsnap - ok
20:31:56.0048 6584 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:31:56.0053 6584 vsmraid - ok
20:31:56.0121 6584 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
20:31:56.0138 6584 VSS - ok
20:31:56.0256 6584 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
20:31:56.0274 6584 vToolbarUpdater13.2.0 - ok
20:31:56.0288 6584 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
20:31:56.0292 6584 vwifibus - ok
20:31:56.0323 6584 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
20:31:56.0326 6584 vwififlt - ok
20:31:56.0339 6584 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
20:31:56.0346 6584 vwifimp - ok
20:31:56.0403 6584 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
20:31:56.0412 6584 W32Time - ok
20:31:56.0428 6584 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:31:56.0431 6584 WacomPen - ok
20:31:56.0471 6584 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:31:56.0476 6584 WANARP - ok
20:31:56.0487 6584 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:31:56.0489 6584 Wanarpv6 - ok
20:31:56.0567 6584 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:31:56.0603 6584 WatAdminSvc - ok
20:31:56.0668 6584 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
20:31:56.0713 6584 wbengine - ok
20:31:56.0738 6584 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:31:56.0741 6584 WbioSrvc - ok
20:31:56.0784 6584 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:31:56.0793 6584 wcncsvc - ok
20:31:56.0817 6584 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:31:56.0822 6584 WcsPlugInService - ok
20:31:56.0842 6584 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:31:56.0845 6584 Wd - ok
20:31:56.0878 6584 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:31:56.0886 6584 Wdf01000 - ok
20:31:56.0897 6584 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:31:56.0900 6584 WdiServiceHost - ok
20:31:56.0904 6584 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:31:56.0906 6584 WdiSystemHost - ok
20:31:56.0929 6584 [ FE31110E39A0B11ABAE1BA43A2DC94F9 ] wdkmd C:\Windows\system32\DRIVERS\WDKMD.sys
20:31:56.0970 6584 wdkmd - ok
20:31:57.0018 6584 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
20:31:57.0025 6584 WebClient - ok
20:31:57.0057 6584 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:31:57.0064 6584 Wecsvc - ok
20:31:57.0078 6584 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:31:57.0083 6584 wercplsupport - ok
20:31:57.0107 6584 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
20:31:57.0111 6584 WerSvc - ok
20:31:57.0135 6584 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:31:57.0139 6584 WfpLwf - ok
20:31:57.0181 6584 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
20:31:57.0186 6584 WimFltr - ok
20:31:57.0218 6584 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:31:57.0222 6584 WIMMount - ok
20:31:57.0245 6584 WinDefend - ok
20:31:57.0252 6584 WinHttpAutoProxySvc - ok
20:31:57.0302 6584 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:31:57.0307 6584 Winmgmt - ok
20:31:57.0392 6584 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
20:31:57.0449 6584 WinRM - ok
20:31:57.0556 6584 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
20:31:57.0560 6584 WinUsb - ok
20:31:57.0597 6584 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
20:31:57.0632 6584 Wlansvc - ok
20:31:57.0722 6584 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:31:57.0725 6584 wlcrasvc - ok
20:31:57.0827 6584 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:31:57.0885 6584 wlidsvc - ok
20:31:57.0938 6584 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:31:57.0941 6584 WmiAcpi - ok
20:31:57.0969 6584 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:31:57.0972 6584 wmiApSrv - ok
20:31:57.0996 6584 WMPNetworkSvc - ok
20:31:58.0032 6584 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:31:58.0036 6584 WPCSvc - ok
20:31:58.0068 6584 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:31:58.0073 6584 WPDBusEnum - ok
20:31:58.0093 6584 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:31:58.0095 6584 ws2ifsl - ok
20:31:58.0115 6584 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
20:31:58.0120 6584 wscsvc - ok
20:31:58.0124 6584 WSearch - ok
20:31:58.0214 6584 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
20:31:58.0271 6584 wuauserv - ok
20:31:58.0312 6584 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:31:58.0317 6584 WudfPf - ok
20:31:58.0341 6584 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:31:58.0346 6584 WUDFRd - ok
20:31:58.0391 6584 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:31:58.0396 6584 wudfsvc - ok
20:31:58.0418 6584 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
20:31:58.0424 6584 WwanSvc - ok
20:31:58.0462 6584 ================ Scan global ===============================
20:31:58.0489 6584 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
20:31:58.0529 6584 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
20:31:58.0556 6584 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
20:31:58.0592 6584 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
20:31:58.0630 6584 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
20:31:58.0637 6584 [Global] - ok
20:31:58.0638 6584 ================ Scan MBR ==================================
20:31:58.0668 6584 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:31:59.0090 6584 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
20:31:59.0090 6584 \Device\Harddisk0\DR0 - detected TDSS File System (1)
20:31:59.0091 6584 ================ Scan VBR ==================================
20:31:59.0095 6584 [ 2E63C568CB96F1F47EFBA39290AEE5C2 ] \Device\Harddisk0\DR0\Partition1
20:31:59.0097 6584 \Device\Harddisk0\DR0\Partition1 - ok
20:31:59.0126 6584 [ 1D6D96C00026D63FB491C29AFC6D0484 ] \Device\Harddisk0\DR0\Partition2
20:31:59.0128 6584 \Device\Harddisk0\DR0\Partition2 - ok
20:31:59.0130 6584 ============================================================
20:31:59.0130 6584 Scan finished
20:31:59.0130 6584 ============================================================
20:31:59.0144 6364 Detected object count: 1
20:31:59.0144 6364 Actual detected object count: 1
20:32:26.0390 6364 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
20:32:26.0436 6364 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
20:32:26.0453 6364 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
20:32:26.0465 6364 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
20:32:26.0492 6364 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
20:32:26.0883 6364 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
20:32:26.0905 6364 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
20:32:26.0927 6364 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
20:32:26.0972 6364 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
20:32:27.0061 6364 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
20:32:27.0161 6364 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
20:32:27.0183 6364 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
20:32:27.0217 6364 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
20:32:27.0238 6364 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
20:32:27.0249 6364 \Device\Harddisk0\DR0\TDLFS - deleted
20:32:27.0249 6364 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
20:32:35.0790 5544 Deinitialize success


ESET Scan Results
C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\12.11.2012_20.30.43\tdlfs0000\tsk0000.dta Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\12.11.2012_20.30.43\tdlfs0000\tsk0001.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\12.11.2012_20.30.43\tdlfs0000\tsk0002.dta Win32/Olmarik.AYH trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\12.11.2012_20.30.43\tdlfs0000\tsk0003.dta Win64/Olmarik.AL trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\12.11.2012_20.30.43\tdlfs0000\tsk0004.dta a variant of Win32/Rootkit.Kryptik.MY trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\12.11.2012_20.30.43\tdlfs0000\tsk0005.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\12.11.2012_20.30.43\tdlfs0000\tsk0009.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\12.11.2012_20.30.43\tdlfs0000\tsk0010.dta Win64/Olmarik.AK trojan cleaned by deleting - quarantined

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:14 AM

Posted 13 November 2012 - 09:22 PM

This was good, Did you run aswMBR.exe ?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Stu925

Stu925
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:14 AM

Posted 13 November 2012 - 10:17 PM

I did but forgot to post that, here it is:

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-11-12 20:32:41
-----------------------------
20:32:41.823 OS Version: Windows x64 6.1.7601 Service Pack 1
20:32:41.823 Number of processors: 4 586 0x2505
20:32:41.824 ComputerName: STU-PC UserName: Stu
20:32:44.308 Initialize success
20:34:15.386 AVAST engine defs: 12111201
20:35:12.231 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
20:35:12.236 Disk 0 Vendor: WDC_WD64 01.0 Size: 610480MB BusType: 3
20:35:12.254 Disk 0 MBR read successfully
20:35:12.258 Disk 0 MBR scan
20:35:12.264 Disk 0 Windows 7 default MBR code
20:35:12.267 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 101 MB offset 63
20:35:12.272 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 208845
20:35:12.289 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 595377 MB offset 30928845
20:35:12.305 Disk 0 scanning C:\Windows\system32\drivers
20:35:24.124 Service scanning
20:36:16.449 Modules scanning
20:36:16.464 Disk 0 trace - called modules:
20:36:16.486 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
20:36:16.495 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c12060]
20:36:16.504 3 CLASSPNP.SYS[fffff88001a6c43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004906050]
20:36:19.528 AVAST engine scan C:\Windows
20:36:24.042 AVAST engine scan C:\Windows\system32
20:41:26.943 AVAST engine scan C:\Windows\system32\drivers
20:41:52.835 AVAST engine scan C:\Users\Stu
20:46:30.087 Disk 0 MBR has been saved successfully to "C:\Users\Stu\Desktop\MBR.dat"
20:46:30.088 The log file has been saved successfully to "C:\Users\Stu\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2012-11-12 20:46:55
-----------------------------
20:46:55.688 OS Version: Windows x64 6.1.7601 Service Pack 1
20:46:55.688 Number of processors: 4 586 0x2505
20:46:55.689 ComputerName: STU-PC UserName: Stu
20:46:59.221 Initialize success
20:47:13.996 AVAST engine defs: 12111201
20:47:32.504 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
20:47:32.508 Disk 0 Vendor: WDC_WD64 01.0 Size: 610480MB BusType: 3
20:47:32.530 Disk 0 MBR read successfully
20:47:32.535 Disk 0 MBR scan
20:47:32.542 Disk 0 Windows 7 default MBR code
20:47:32.547 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 101 MB offset 63
20:47:32.569 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 208845
20:47:32.587 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 595377 MB offset 30928845
20:47:32.617 Disk 0 scanning C:\Windows\system32\drivers
20:47:46.403 Service scanning
20:48:44.146 Modules scanning
20:48:44.148 Disk 0 trace - called modules:
20:48:44.162 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
20:48:44.164 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c12060]
20:48:44.164 3 CLASSPNP.SYS[fffff88001a6c43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004906050]
20:48:48.786 AVAST engine scan C:\Windows
20:48:56.824 AVAST engine scan C:\Windows\system32
20:51:43.761 AVAST engine scan C:\Windows\system32\drivers
20:51:57.286 AVAST engine scan C:\Users\Stu
20:54:42.113 Disk 0 MBR has been saved successfully to "C:\Users\Stu\Desktop\MBR.dat"
20:54:42.120 The log file has been saved successfully to "C:\Users\Stu\Desktop\aswMBR.txt"

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:14 AM

Posted 13 November 2012 - 10:47 PM

I am surprised you only had email issues with what was found.
How are things now?

Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
    64-bit OS users, should read: Which Java download should I choose for my 64-bit Windows operating system?
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u9-windows-i586.exe (or jre-7u9-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered any unwanted software or toolbars during installation, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.


Your version of Adobe Reader is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system. Please follow these steps to remove older version Adobe components and update:
  • Download the latest version of Adobe Reader Version X. and save it to your desktop.
  • Uncheck the "Free McAfee Security plan Plus" option or any other Toolbar you are offered
  • Click the download button at the bottom.
  • If you use Internet Explorer and do not wish to install the ActiveX element, simply click on the click here to download link on the next page.
  • Remove all older version of Adobe Reader: Go to Add/remove and uninstall all versions of Adobe Reader, Acrobat Reader and Adobe Acrobat.
    If you are unsure of how to use Add or Remove Programs, the please see this tutorial:How To Remove An Installed Program From Your Computer
  • Then from your desktop double-click on Adobe Reader to install the newest version.
    If using Windows Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the "Adobe Setup - Welcome" window opens, click the Install > button.
  • If offered to install a Toolbar, just uncheck the box before continuing unless you want it.
Your Adobe Reader is now up to date!
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 Stu925

Stu925
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:14 AM

Posted 14 November 2012 - 09:29 PM

Thanks again for all your help. Seems like the issue is cleared up.

Stu

#11 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:14 PM

Posted 15 November 2012 - 02:49 AM

Hi Stu -
I am not sure if I missed a post from boopme about 2 Antivirus programs - B)
You have Ad-Aware Antivirus (Version: 10.2.21.3698)
Ad-Aware Browsing Protection (Version: 0.9.0.2)
Running as an active Antivirus along with AVG. You should only be running one Antivirus program at any time -

Thanks -

Edited by noknojon, 15 November 2012 - 02:50 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users