Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help with Potential Virus


  • Please log in to reply
8 replies to this topic

#1 gregla

gregla

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:17 PM

Posted 14 March 2013 - 11:51 AM

Hello to all,

 

My computer is running very slowly all of a sudden and I suspect that I have a virus.  I have run a number of virus removal programs, including a few that I have downloaded from this site, but all to no avail.  I'm at an impasse and don't know what to do next.  Please help.



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:17 PM

Posted 14 March 2013 - 12:10 PM

Hello and welcome. I moved this from Win7 to the Am I Infected forum.

 

Please do these,even if you have or post those logs.

 

 

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

 

 

 

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)
 
Do not change the default options on scan results.

 

Please download AdwCleaner by Xplode onto your desktop.
•Close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Delete.
•Confirm each time with Ok.
•You will be prompted to restart your computer. A text file will open after the restart.
•Please post the contents of that logfile with your next reply.
•You can find the logfile at C:\AdwCleaner[S1].txt as well.


>>>>

Now I'd like us to scan your machine with ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

NOTE:Sometimes if ESET finds no infections it will not create a log.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 gregla

gregla
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:17 PM

Posted 14 March 2013 - 02:45 PM

Thank you so much for your help.  Here are the requested logs:

 

MiniToolBox Log

 

MiniToolBox by Farbar  Version:05-03-2013
Ran by Greg (administrator) on 14-03-2013 at 13:53:30
Running from "C:\Users\Greg\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", "*.local,127.0.0.1:9421,"
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

DW1520 Wireless-N WLAN Half-Mini Card = Wireless Network Connection (Connected)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Greg-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : ri.cox.net

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
   Physical Address. . . . . . . . . : D4-BE-D9-8F-E2-6B
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : ri.cox.net
   Description . . . . . . . . . . . : DW1520 Wireless-N WLAN Half-Mini Card
   Physical Address. . . . . . . . . : 64-27-37-02-25-17
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::75d9:821:7d60:cf43%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 10.0.1.11(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Thursday, March 14, 2013 12:53:24 PM
   Lease Expires . . . . . . . . . . : Friday, March 15, 2013 12:53:24 PM
   Default Gateway . . . . . . . . . : 10.0.1.1
   DHCP Server . . . . . . . . . . . : 10.0.1.1
   DHCPv6 IAID . . . . . . . . . . . : 191113015
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-99-8A-D2-D4-BE-D9-8F-E2-6B
   DNS Servers . . . . . . . . . . . : 10.0.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.ri.cox.net:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : ri.cox.net
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:245d:5d9c:b94a:d210(Preferred)
   Link-local IPv6 Address . . . . . : fe80::245d:5d9c:b94a:d210%17(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  UnKnown
Address:  10.0.1.1

Name:    google.com
Addresses:  2001:4860:4007:801::1009
   74.125.224.206
   74.125.224.192
   74.125.224.193
   74.125.224.194
   74.125.224.195
   74.125.224.196
   74.125.224.197
   74.125.224.198
   74.125.224.199
   74.125.224.200
   74.125.224.201


Pinging google.com [74.125.224.206] with 32 bytes of data:
Reply from 74.125.224.206: bytes=32 time=90ms TTL=50
Reply from 74.125.224.206: bytes=32 time=88ms TTL=50

Ping statistics for 74.125.224.206:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 88ms, Maximum = 90ms, Average = 89ms
Server:  UnKnown
Address:  10.0.1.1

Name:    yahoo.com
Addresses:  98.138.253.109
   98.139.183.24
   206.190.36.45


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=254ms TTL=52
Reply from 98.138.253.109: bytes=32 time=301ms TTL=52

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 254ms, Maximum = 301ms, Average = 277ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 12...d4 be d9 8f e2 6b ......Broadcom NetLink ™ Gigabit Ethernet
 11...64 27 37 02 25 17 ......DW1520 Wireless-N WLAN Half-Mini Card
  1...........................Software Loopback Interface 1
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 13...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         10.0.1.1        10.0.1.11     20
         10.0.1.0    255.255.255.0         On-link         10.0.1.11    276
        10.0.1.11  255.255.255.255         On-link         10.0.1.11    276
       10.0.1.255  255.255.255.255         On-link         10.0.1.11    276
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         10.0.1.11    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link         10.0.1.11    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 17     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 17     58 2001::/32                On-link
 17    306 2001:0:9d38:6ab8:245d:5d9c:b94a:d210/128
                                    On-link
 11    276 fe80::/64                On-link
 17    306 fe80::/64                On-link
 17    306 fe80::245d:5d9c:b94a:d210/128
                                    On-link
 11    276 fe80::75d9:821:7d60:cf43/128
                                    On-link
  1    306 ff00::/8                 On-link
 17    306 ff00::/8                 On-link
 11    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/14/2013 00:54:37 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/14/2013 09:15:37 AM) (Source: MSSOAP) (User: )
Description: Soap error: One of the parameters supplied is invalid..

Error: (03/14/2013 09:15:37 AM) (Source: MSSOAP) (User: )
Description: Soap error: Loading of the WSDL file failed.

Error: (03/14/2013 09:15:37 AM) (Source: MSSOAP) (User: )
Description: Soap error: XML Parser failed at linenumber 0, lineposition 0, reason is: The server name or address could not be resolved
.

Error: (03/14/2013 09:15:05 AM) (Source: MSSOAP) (User: )
Description: Soap error: One of the parameters supplied is invalid..

Error: (03/14/2013 09:15:05 AM) (Source: MSSOAP) (User: )
Description: Soap error: Loading of the WSDL file failed.

Error: (03/14/2013 09:15:05 AM) (Source: MSSOAP) (User: )
Description: Soap error: XML Parser failed at linenumber 0, lineposition 0, reason is: The server name or address could not be resolved
.

Error: (03/14/2013 09:14:49 AM) (Source: MSSOAP) (User: )
Description: Soap error: One of the parameters supplied is invalid..

Error: (03/14/2013 09:14:49 AM) (Source: MSSOAP) (User: )
Description: Soap error: Loading of the WSDL file failed.

Error: (03/14/2013 09:14:49 AM) (Source: MSSOAP) (User: )
Description: Soap error: XML Parser failed at linenumber 0, lineposition 0, reason is: The server name or address could not be resolved
.


System errors:
=============
Error: (03/14/2013 00:55:41 PM) (Source: Service Control Manager) (User: )
Description: The Dell Digital Delivery Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/14/2013 00:53:22 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (03/14/2013 00:53:21 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (03/14/2013 11:00:09 AM) (Source: Service Control Manager) (User: )
Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service failed to start due to the following error:
%%31

Error: (03/14/2013 09:38:26 AM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (03/14/2013 09:05:07 AM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.

Error: (03/13/2013 10:39:03 PM) (Source: Service Control Manager) (User: )
Description: The Dell Digital Delivery Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/13/2013 10:37:29 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (03/13/2013 10:36:43 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (03/13/2013 10:36:41 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5


Microsoft Office Sessions:
=========================
Error: (03/14/2013 00:54:37 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/14/2013 09:15:37 AM) (Source: MSSOAP)(User: )
Description: One of the parameters supplied is invalid.

Error: (03/14/2013 09:15:37 AM) (Source: MSSOAP)(User: )
Description: Loading of the WSDL file failed

Error: (03/14/2013 09:15:37 AM) (Source: MSSOAP)(User: )
Description: XML Parser failed at linenumber 0, lineposition 0, reason is: The server name or address could not be resolved

Error: (03/14/2013 09:15:05 AM) (Source: MSSOAP)(User: )
Description: One of the parameters supplied is invalid.

Error: (03/14/2013 09:15:05 AM) (Source: MSSOAP)(User: )
Description: Loading of the WSDL file failed

Error: (03/14/2013 09:15:05 AM) (Source: MSSOAP)(User: )
Description: XML Parser failed at linenumber 0, lineposition 0, reason is: The server name or address could not be resolved

Error: (03/14/2013 09:14:49 AM) (Source: MSSOAP)(User: )
Description: One of the parameters supplied is invalid.

Error: (03/14/2013 09:14:49 AM) (Source: MSSOAP)(User: )
Description: Loading of the WSDL file failed

Error: (03/14/2013 09:14:49 AM) (Source: MSSOAP)(User: )
Description: XML Parser failed at linenumber 0, lineposition 0, reason is: The server name or address could not be resolved


CodeIntegrity Errors:
===================================
  Date: 2013-03-13 18:15:09.123
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-03-13 18:15:09.092
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

AbleBits.com Consolidate Worksheets Wizard for Microsoft Excel (Version: 1.0.0)
AbleBits.com Duplicate Remover for Microsoft Excel (Version: 2.6.17)
AbleBits.com Fuzzy Duplicate Finder for Microsoft Excel (Version: 3.5.3)
AbleBits.com Merge Tables Wizard for Microsoft Excel (Version: 2.6.16)
Adobe AIR (Version: 2.6.0.19120)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.180)
Adobe Flash Player 11 Plugin (Version: 11.6.602.180)
Adobe Reader X (10.1.6) (Version: 10.1.6)
Adobe Shockwave Player 11.6 (Version: 11.6.4.634)
AirPort (Version: 5.5.3.2)
AMD Accelerated Video Transcoding (Version: 12.5.100.21219)
AMD APP SDK Runtime (Version: 10.0.1084.4)
AMD Catalyst Install Manager (Version: 8.0.903.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.71219.1540)
Ant Renamer (Version: 2.10.0)
Apple Application Support (Version: 2.3)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
ARO 2012 (Version: 8.0)
ATI AVIVO64 Codecs (Version: 11.6.0.10419)
AVG 2013 (Version: 13.0.2641)
AVG 2013 (Version: 13.0.2904)
AVG 2013 (Version: 2013.0.2904)
Bonjour (Version: 3.0.0.10)
Bonjour Print Services (Version: 2.0.2.0)
Brother P-touch Editor 5.0 (Version: 5.0.2200)
BufferChm (Version: 130.0.331.000)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2012.1219.1521.27485)
Catalyst Control Center Graphics Previews Common (Version: 2012.1219.1521.27485)
Catalyst Control Center InstallProxy (Version: 2012.1219.1521.27485)
Catalyst Control Center Localization All (Version: 2012.1219.1521.27485)
CCC Help Chinese Standard (Version: 2012.1219.1520.27485)
CCC Help Chinese Traditional (Version: 2012.1219.1520.27485)
CCC Help Czech (Version: 2012.1219.1520.27485)
CCC Help Danish (Version: 2012.1219.1520.27485)
CCC Help Dutch (Version: 2012.1219.1520.27485)
CCC Help English (Version: 2012.1219.1520.27485)
CCC Help Finnish (Version: 2012.1219.1520.27485)
CCC Help French (Version: 2012.1219.1520.27485)
CCC Help German (Version: 2012.1219.1520.27485)
CCC Help Greek (Version: 2012.1219.1520.27485)
CCC Help Hungarian (Version: 2012.1219.1520.27485)
CCC Help Italian (Version: 2012.1219.1520.27485)
CCC Help Japanese (Version: 2012.1219.1520.27485)
CCC Help Korean (Version: 2012.1219.1520.27485)
CCC Help Norwegian (Version: 2012.1219.1520.27485)
CCC Help Polish (Version: 2012.1219.1520.27485)
CCC Help Portuguese (Version: 2012.1219.1520.27485)
CCC Help Russian (Version: 2012.1219.1520.27485)
CCC Help Spanish (Version: 2012.1219.1520.27485)
CCC Help Swedish (Version: 2012.1219.1520.27485)
CCC Help Thai (Version: 2012.1219.1520.27485)
CCC Help Turkish (Version: 2012.1219.1520.27485)
ccc-utility64 (Version: 2012.1219.1521.27485)
Consumer In-Home Service Agreement (Version: 2.0.0)
CutePDF Writer 2.8
D3DX10 (Version: 15.4.2368.0902)
DDFileCatcher 4 (Version: 4.0.9.0)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Local Backup - Support Software (Version: 9.4.61)
Dell DataSafe Local Backup (Version: 9.4.61)
Dell DataSafe Online (Version: 2.1.19634)
Dell Digital Delivery (Version: 1.7.4502.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell KM632 Wireless Keyboard Caps Lock Indicator (Version: 2.1.9.0401)
Dell MusicStage (Version: 1.5.201.0)
Dell PhotoStage (Version: 1.5.0.65)
Dell Stage (Version: 1.5.201.0)
Dell Support Center (Version: 3.1.5803.11)
Dell System Detect (Version: 4.0.5.6)
Dell VideoStage  (Version: 1.2.0.1712)
Destinations (Version: 130.0.0.0)
DirectX 9 Runtime (Version: 1.00.0000)
Driver Fusion (Version: 1.2.0)
Driver Performer (Version: 11.10.1.11897)
DW WLAN Card (Version: 5.60.48.35)
Email Extractor
ESET Online Scanner v3
FTP Voyager 16.0
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.135)
Helium Scraper (Version: 2.3.9.6)
HiJackThis (Version: 1.0.0)
HL-2270DW (Version: 1.0.7.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Scanjet G3110 (Version: 13.0)
hpg3110 (Version: 13.0.0.0)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Rapid Storage Technology (Version: 10.6.0.1002)
iTunes (Version: 10.6.1.7)
Java 7 Update 17 (Version: 7.0.170)
Java Auto Updater (Version: 2.1.9.0)
Junk Mail filter update (Version: 15.4.3502.0922)
jZip
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Corporation (Version: 9.1.0.0)
Microsoft LifeCam (Version: 3.22.270.0)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office 2010 Language Pack Service Pack 1 (SP1)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Visio 2010 (Version: 14.0.6029.1000)
Microsoft Office Visio MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 4.2.0223.1)
Microsoft Security Essentials (Version: 4.2.223.1)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visio 2010 Service Pack 1 (SP1)
Microsoft Visio Professional 2010 (Version: 14.0.6029.1000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 19.0 (x86 en-US) (Version: 19.0)
Mozilla Maintenance Service (Version: 19.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0)
Multimedia Card Reader (Version: 1.7.915.93)
PhotoShowExpress (Version: 2.0.063)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayReady PC Runtime x86 (Version: 1.3.0)
QuickBooks (Version: 20.0.4017.807)
QuickBooks Pro 2010 (Version: 20.0.4017.807)
QuickTime (Version: 7.73.80.64)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.6823)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.6.0)
Scan (Version: 13.0.0.0)
Skype™ 6.1 (Version: 6.1.129)
SmartFTP Client (Version: 4.1.1309.0)
SmartFTP Client Setup Files 4.0 (x64) (remove only) (Version: 4.0)
SmartFTP Client Setup Files 4.1 (x64) (remove only) (Version: 4.1)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
SOS Online Backup (Version: 5.0.3.15)
SUPERAntiSpyware (Version: 5.0.1146)
swMSM (Version: 12.0.0.1)
THX TruStudio PC (Version: 1.0)
Trend Micro RUBotted 2.0 Beta (Version: 2.0.0.1030)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Verizon Wireless Software Upgrade Assistant - Samsung(ar) (Version: 2.12.0807)
Verizon Wireless Software Utility Application for Android - Samsung (Version: 2.12.0807)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
WebReg (Version: 130.0.132.017)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinPcap 4.1.1 (Version: 4.1.0.1753)
WinZip 16.5 (Version: 16.5.10095)
WModem Driver Installer (Version: 2.0.6.9)
Workspace Macro Pro 6.5
Xenu's Link Sleuth (Version: 1.3.8)

========================= Memory info: ===================================

Percentage of memory in use: 18%
Total physical RAM: 16366.45 MB
Available physical RAM: 13341.51 MB
Total Pagefile: 32731.08 MB
Available Pagefile: 29186.36 MB
Total Virtual: 4095.88 MB
Available Virtual: 3954.63 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:452.47 GB) (Free:345.63 GB) NTFS

========================= Users: ========================================

User accounts for \\GREG-PC

Administrator            Greg                     Guest                   


**** End of log ****

 

TDSS Log

 

13:57:20.0221 17320  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
13:57:20.0517 17320  ============================================================
13:57:20.0517 17320  Current date / time: 2013/03/14 13:57:20.0517
13:57:20.0517 17320  SystemInfo:
13:57:20.0517 17320 
13:57:20.0517 17320  OS Version: 6.1.7601 ServicePack: 1.0
13:57:20.0517 17320  Product type: Workstation
13:57:20.0517 17320  ComputerName: GREG-PC
13:57:20.0517 17320  UserName: Greg
13:57:20.0517 17320  Windows directory: C:\Windows
13:57:20.0517 17320  System windows directory: C:\Windows
13:57:20.0517 17320  Running under WOW64
13:57:20.0517 17320  Processor architecture: Intel x64
13:57:20.0517 17320  Number of processors: 8
13:57:20.0517 17320  Page size: 0x1000
13:57:20.0517 17320  Boot type: Normal boot
13:57:20.0517 17320  ============================================================
13:57:20.0860 17320  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:57:20.0876 17320  ============================================================
13:57:20.0876 17320  \Device\Harddisk0\DR0:
13:57:20.0876 17320  MBR partitions:
13:57:20.0876 17320  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1A7F000
13:57:20.0876 17320  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A93000, BlocksNum 0x388F2800
13:57:20.0876 17320  ============================================================
13:57:20.0923 17320  C: <-> \Device\Harddisk0\DR0\Partition2
13:57:20.0923 17320  ============================================================
13:57:20.0923 17320  Initialize success
13:57:20.0923 17320  ============================================================
13:57:55.0851 14988  ============================================================
13:57:55.0851 14988  Scan started
13:57:55.0851 14988  Mode: Manual; TDLFS;
13:57:55.0851 14988  ============================================================
13:57:56.0304 14988  ================ Scan system memory ========================
13:57:56.0304 14988  System memory - ok
13:57:56.0304 14988  ================ Scan services =============================
13:57:56.0428 14988  [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
13:57:56.0428 14988  !SASCORE - ok
13:57:56.0522 14988  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
13:57:56.0522 14988  1394ohci - ok
13:57:56.0553 14988  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
13:57:56.0553 14988  ACPI - ok
13:57:56.0569 14988  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
13:57:56.0569 14988  AcpiPmi - ok
13:57:56.0647 14988  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:57:56.0647 14988  AdobeARMservice - ok
13:57:56.0725 14988  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:57:56.0725 14988  AdobeFlashPlayerUpdateSvc - ok
13:57:56.0803 14988  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
13:57:56.0803 14988  adp94xx - ok
13:57:56.0850 14988  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
13:57:56.0850 14988  adpahci - ok
13:57:56.0865 14988  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
13:57:56.0865 14988  adpu320 - ok
13:57:56.0881 14988  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
13:57:56.0881 14988  AeLookupSvc - ok
13:57:56.0928 14988  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
13:57:56.0943 14988  AFD - ok
13:57:56.0943 14988  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
13:57:56.0943 14988  agp440 - ok
13:57:56.0974 14988  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
13:57:56.0974 14988  ALG - ok
13:57:56.0990 14988  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
13:57:56.0990 14988  aliide - ok
13:57:57.0037 14988  [ 4EAAAAB8759644D572522FBCDD196A13 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
13:57:57.0037 14988  AMD External Events Utility - ok
13:57:57.0052 14988  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
13:57:57.0052 14988  amdide - ok
13:57:57.0052 14988  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
13:57:57.0052 14988  AmdK8 - ok
13:57:57.0286 14988  [ 22A14DF59FB8D0BE918C597988AF4296 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
13:57:57.0318 14988  amdkmdag - ok
13:57:57.0364 14988  [ EE22D3ED6D55A855E709F811CCCA97ED ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
13:57:57.0364 14988  amdkmdap - ok
13:57:57.0364 14988  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
13:57:57.0364 14988  AmdPPM - ok
13:57:57.0396 14988  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
13:57:57.0396 14988  amdsata - ok
13:57:57.0411 14988  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
13:57:57.0411 14988  amdsbs - ok
13:57:57.0427 14988  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
13:57:57.0427 14988  amdxata - ok
13:57:57.0442 14988  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
13:57:57.0442 14988  AppID - ok
13:57:57.0458 14988  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
13:57:57.0458 14988  AppIDSvc - ok
13:57:57.0474 14988  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
13:57:57.0474 14988  Appinfo - ok
13:57:57.0520 14988  [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:57:57.0520 14988  Apple Mobile Device - ok
13:57:57.0552 14988  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
13:57:57.0552 14988  arc - ok
13:57:57.0552 14988  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
13:57:57.0552 14988  arcsas - ok
13:57:57.0630 14988  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:57:57.0630 14988  aspnet_state - ok
13:57:57.0645 14988  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
13:57:57.0645 14988  AsyncMac - ok
13:57:57.0661 14988  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
13:57:57.0661 14988  atapi - ok
13:57:57.0723 14988  [ 437F55435623D4D54D36197F5AD8B435 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
13:57:57.0723 14988  AtiHDAudioService - ok
13:57:57.0754 14988  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:57:57.0754 14988  AudioEndpointBuilder - ok
13:57:57.0770 14988  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
13:57:57.0786 14988  AudioSrv - ok
13:57:57.0926 14988  [ 4AFC14AFA58878FAA1D249E7E90EA54B ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
13:57:57.0942 14988  AVGIDSAgent - ok
13:57:57.0988 14988  [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
13:57:57.0988 14988  AVGIDSDriver - ok
13:57:58.0035 14988  [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
13:57:58.0035 14988  AVGIDSHA - ok
13:57:58.0035 14988  [ 5989592A91A17587799792A81E1541D4 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
13:57:58.0035 14988  Avgldx64 - ok
13:57:58.0082 14988  [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
13:57:58.0082 14988  Avgloga - ok
13:57:58.0098 14988  [ 841C40C193889730848849AC220D9242 ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
13:57:58.0098 14988  Avgmfx64 - ok
13:57:58.0129 14988  [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
13:57:58.0129 14988  Avgrkx64 - ok
13:57:58.0129 14988  [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
13:57:58.0129 14988  Avgtdia - ok
13:57:58.0176 14988  [ 4C05242DC361A217223E9B8EC2B3A76B ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
13:57:58.0176 14988  avgtp - ok
13:57:58.0207 14988  [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd           C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
13:57:58.0207 14988  avgwd - ok
13:57:58.0222 14988  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
13:57:58.0222 14988  AxInstSV - ok
13:57:58.0285 14988  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
13:57:58.0285 14988  b06bdrv - ok
13:57:58.0300 14988  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
13:57:58.0316 14988  b57nd60a - ok
13:57:58.0394 14988  [ 8B5D16D20774FC3727F44E161BE2C0AC ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
13:57:58.0410 14988  BCM43XX - ok
13:57:58.0441 14988  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
13:57:58.0441 14988  BDESVC - ok
13:57:58.0441 14988  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
13:57:58.0456 14988  Beep - ok
13:57:58.0488 14988  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
13:57:58.0488 14988  BFE - ok
13:57:58.0519 14988  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
13:57:58.0519 14988  BITS - ok
13:57:58.0550 14988  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
13:57:58.0550 14988  blbdrive - ok
13:57:58.0612 14988  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
13:57:58.0612 14988  Bonjour Service - ok
13:57:58.0644 14988  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
13:57:58.0644 14988  bowser - ok
13:57:58.0659 14988  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
13:57:58.0659 14988  BrFiltLo - ok
13:57:58.0659 14988  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
13:57:58.0659 14988  BrFiltUp - ok
13:57:58.0675 14988  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
13:57:58.0675 14988  BridgeMP - ok
13:57:58.0706 14988  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
13:57:58.0706 14988  Browser - ok
13:57:58.0706 14988  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
13:57:58.0722 14988  Brserid - ok
13:57:58.0722 14988  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
13:57:58.0737 14988  BrSerWdm - ok
13:57:58.0737 14988  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
13:57:58.0737 14988  BrUsbMdm - ok
13:57:58.0737 14988  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
13:57:58.0737 14988  BrUsbSer - ok
13:57:58.0800 14988  [ EA7E57F87D6FEE5FD6C5F813C04E8CD2 ] BrYNSvc         C:\Program Files (x86)\Browny02\BrYNSvc.exe
13:57:58.0800 14988  BrYNSvc - ok
13:57:58.0800 14988  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
13:57:58.0800 14988  BTHMODEM - ok
13:57:58.0831 14988  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
13:57:58.0831 14988  bthserv - ok
13:57:58.0831 14988  catchme - ok
13:57:58.0846 14988  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
13:57:58.0846 14988  cdfs - ok
13:57:58.0878 14988  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
13:57:58.0878 14988  cdrom - ok
13:57:58.0893 14988  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
13:57:58.0893 14988  CertPropSvc - ok
13:57:58.0909 14988  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
13:57:58.0909 14988  circlass - ok
13:57:58.0924 14988  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
13:57:58.0924 14988  CLFS - ok
13:57:58.0971 14988  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:57:58.0971 14988  clr_optimization_v2.0.50727_32 - ok
13:57:59.0002 14988  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:57:59.0002 14988  clr_optimization_v2.0.50727_64 - ok
13:57:59.0034 14988  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:57:59.0034 14988  clr_optimization_v4.0.30319_32 - ok
13:57:59.0049 14988  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:57:59.0049 14988  clr_optimization_v4.0.30319_64 - ok
13:57:59.0065 14988  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
13:57:59.0065 14988  CmBatt - ok
13:57:59.0065 14988  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
13:57:59.0080 14988  cmdide - ok
13:57:59.0112 14988  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
13:57:59.0112 14988  CNG - ok
13:57:59.0127 14988  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
13:57:59.0127 14988  Compbatt - ok
13:57:59.0143 14988  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
13:57:59.0143 14988  CompositeBus - ok
13:57:59.0158 14988  COMSysApp - ok
13:57:59.0174 14988  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
13:57:59.0174 14988  crcdisk - ok
13:57:59.0205 14988  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
13:57:59.0205 14988  CryptSvc - ok
13:57:59.0236 14988  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
13:57:59.0236 14988  DcomLaunch - ok
13:57:59.0252 14988  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
13:57:59.0268 14988  defragsvc - ok
13:57:59.0299 14988  [ 2050309BAB03DFCEE455DBF913BF91B1 ] DellDigitalDelivery c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
13:57:59.0314 14988  DellDigitalDelivery - ok
13:57:59.0314 14988  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
13:57:59.0314 14988  DfsC - ok
13:57:59.0361 14988  [ 41AC348DBD378F618CB4FDEE54270692 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
13:57:59.0361 14988  dg_ssudbus - ok
13:57:59.0392 14988  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
13:57:59.0392 14988  Dhcp - ok
13:57:59.0408 14988  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
13:57:59.0408 14988  discache - ok
13:57:59.0424 14988  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
13:57:59.0424 14988  Disk - ok
13:57:59.0455 14988  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
13:57:59.0455 14988  Dnscache - ok
13:57:59.0470 14988  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
13:57:59.0486 14988  dot3svc - ok
13:57:59.0486 14988  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
13:57:59.0502 14988  DPS - ok
13:57:59.0517 14988  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
13:57:59.0517 14988  drmkaud - ok
13:57:59.0548 14988  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
13:57:59.0548 14988  DXGKrnl - ok
13:57:59.0580 14988  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
13:57:59.0580 14988  EapHost - ok
13:57:59.0626 14988  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
13:57:59.0689 14988  ebdrv - ok
13:57:59.0736 14988  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
13:57:59.0736 14988  EFS - ok
13:57:59.0767 14988  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
13:57:59.0767 14988  ehRecvr - ok
13:57:59.0798 14988  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
13:57:59.0798 14988  ehSched - ok
13:57:59.0814 14988  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
13:57:59.0829 14988  elxstor - ok
13:57:59.0829 14988  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
13:57:59.0829 14988  ErrDev - ok
13:57:59.0860 14988  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
13:57:59.0860 14988  EventSystem - ok
13:57:59.0876 14988  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
13:57:59.0876 14988  exfat - ok
13:57:59.0892 14988  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
13:57:59.0892 14988  fastfat - ok
13:57:59.0907 14988  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
13:57:59.0923 14988  Fax - ok
13:57:59.0923 14988  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
13:57:59.0923 14988  fdc - ok
13:57:59.0938 14988  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
13:57:59.0938 14988  fdPHost - ok
13:57:59.0954 14988  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
13:57:59.0954 14988  FDResPub - ok
13:57:59.0954 14988  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
13:57:59.0954 14988  FileInfo - ok
13:57:59.0970 14988  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
13:57:59.0970 14988  Filetrace - ok
13:58:00.0001 14988  [ 8669BE94F63944E4F899C3950B520241 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
13:58:00.0016 14988  FLEXnet Licensing Service - ok
13:58:00.0032 14988  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
13:58:00.0032 14988  flpydisk - ok
13:58:00.0032 14988  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
13:58:00.0032 14988  FltMgr - ok
13:58:00.0094 14988  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
13:58:00.0126 14988  FontCache - ok
13:58:00.0157 14988  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:58:00.0157 14988  FontCache3.0.0.0 - ok
13:58:00.0172 14988  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
13:58:00.0172 14988  FsDepends - ok
13:58:00.0204 14988  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
13:58:00.0204 14988  Fs_Rec - ok
13:58:00.0250 14988  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
13:58:00.0250 14988  fvevol - ok
13:58:00.0266 14988  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
13:58:00.0266 14988  gagp30kx - ok
13:58:00.0313 14988  [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
13:58:00.0313 14988  GEARAspiWDM - ok
13:58:00.0328 14988  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
13:58:00.0344 14988  gpsvc - ok
13:58:00.0469 14988  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:58:00.0469 14988  gupdate - ok
13:58:00.0484 14988  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:58:00.0484 14988  gupdatem - ok
13:58:00.0500 14988  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
13:58:00.0500 14988  gusvc - ok
13:58:00.0531 14988  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
13:58:00.0531 14988  hcw85cir - ok
13:58:00.0547 14988  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:58:00.0547 14988  HdAudAddService - ok
13:58:00.0562 14988  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
13:58:00.0562 14988  HDAudBus - ok
13:58:00.0578 14988  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
13:58:00.0578 14988  HidBatt - ok
13:58:00.0594 14988  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
13:58:00.0594 14988  HidBth - ok
13:58:00.0594 14988  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
13:58:00.0594 14988  HidIr - ok
13:58:00.0609 14988  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
13:58:00.0609 14988  hidserv - ok
13:58:00.0640 14988  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
13:58:00.0640 14988  HidUsb - ok
13:58:00.0656 14988  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
13:58:00.0656 14988  hkmsvc - ok
13:58:00.0672 14988  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:58:00.0672 14988  HomeGroupListener - ok
13:58:00.0687 14988  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:58:00.0687 14988  HomeGroupProvider - ok
13:58:00.0703 14988  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
13:58:00.0703 14988  HpSAMD - ok
13:58:00.0734 14988  [ 7C7C986776D00E575BFBDE5DCBDC615D ] HtcUsbMdmV64    C:\Windows\system32\DRIVERS\HtcUsbMdmV64.sys
13:58:00.0734 14988  HtcUsbMdmV64 - ok
13:58:00.0765 14988  [ 7C7C986776D00E575BFBDE5DCBDC615D ] HtcVCom32       C:\Windows\system32\DRIVERS\HtcVComV64.sys
13:58:00.0765 14988  HtcVCom32 - ok
13:58:00.0796 14988  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
13:58:00.0812 14988  HTTP - ok
13:58:00.0812 14988  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
13:58:00.0812 14988  hwpolicy - ok
13:58:00.0843 14988  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
13:58:00.0843 14988  i8042prt - ok
13:58:00.0874 14988  [ 88D26E2881646FAD2B2114CF8C75FC3C ] iaStor          C:\Windows\system32\drivers\iaStor.sys
13:58:00.0890 14988  iaStor - ok
13:58:00.0937 14988  [ D41861E56E7552C13674D7F147A02464 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
13:58:00.0937 14988  IAStorDataMgrSvc - ok
13:58:00.0968 14988  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
13:58:00.0968 14988  iaStorV - ok
13:58:00.0999 14988  [ C1010ADD3DDAE1196ED21057AF7B2AAE ] ICCWDT          C:\Windows\system32\DRIVERS\ICCWDT.sys
13:58:00.0999 14988  ICCWDT - ok
13:58:01.0046 14988  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:58:01.0062 14988  idsvc - ok
13:58:01.0077 14988  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
13:58:01.0077 14988  iirsp - ok
13:58:01.0108 14988  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
13:58:01.0108 14988  IKEEXT - ok
13:58:01.0311 14988  [ 55FCBF5440EE61DBC5A6F637F7B4C776 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:58:01.0358 14988  IntcAzAudAddService - ok
13:58:01.0405 14988  [ F5495B38BFB9149925F54F65AB40EFBF ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
13:58:01.0420 14988  IntcDAud - ok
13:58:01.0436 14988  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
13:58:01.0436 14988  intelide - ok
13:58:01.0452 14988  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
13:58:01.0452 14988  intelppm - ok
13:58:01.0467 14988  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
13:58:01.0483 14988  IPBusEnum - ok
13:58:01.0498 14988  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:58:01.0498 14988  IpFilterDriver - ok
13:58:01.0530 14988  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
13:58:01.0530 14988  iphlpsvc - ok
13:58:01.0545 14988  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
13:58:01.0545 14988  IPMIDRV - ok
13:58:01.0561 14988  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
13:58:01.0561 14988  IPNAT - ok
13:58:01.0623 14988  [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
13:58:01.0623 14988  iPod Service - ok
13:58:01.0639 14988  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
13:58:01.0639 14988  IRENUM - ok
13:58:01.0654 14988  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
13:58:01.0654 14988  isapnp - ok
13:58:01.0670 14988  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
13:58:01.0670 14988  iScsiPrt - ok
13:58:01.0701 14988  [ 12E27942DBB7C91880163634B0D8A776 ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys
13:58:01.0701 14988  k57nd60a - ok
13:58:01.0717 14988  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
13:58:01.0717 14988  kbdclass - ok
13:58:01.0748 14988  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
13:58:01.0748 14988  kbdhid - ok
13:58:01.0748 14988  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
13:58:01.0748 14988  KeyIso - ok
13:58:01.0764 14988  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
13:58:01.0764 14988  KSecDD - ok
13:58:01.0795 14988  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
13:58:01.0795 14988  KSecPkg - ok
13:58:01.0810 14988  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
13:58:01.0810 14988  ksthunk - ok
13:58:01.0826 14988  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
13:58:01.0826 14988  KtmRm - ok
13:58:01.0857 14988  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
13:58:01.0873 14988  LanmanServer - ok
13:58:01.0873 14988  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:58:01.0873 14988  LanmanWorkstation - ok
13:58:01.0904 14988  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
13:58:01.0904 14988  lltdio - ok
13:58:01.0935 14988  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
13:58:01.0951 14988  lltdsvc - ok
13:58:01.0951 14988  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
13:58:01.0951 14988  lmhosts - ok
13:58:01.0982 14988  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
13:58:01.0982 14988  LSI_FC - ok
13:58:01.0982 14988  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
13:58:01.0982 14988  LSI_SAS - ok
13:58:01.0998 14988  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
13:58:01.0998 14988  LSI_SAS2 - ok
13:58:02.0013 14988  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
13:58:02.0013 14988  LSI_SCSI - ok
13:58:02.0029 14988  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
13:58:02.0029 14988  luafv - ok
13:58:02.0044 14988  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
13:58:02.0044 14988  Mcx2Svc - ok
13:58:02.0060 14988  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
13:58:02.0060 14988  megasas - ok
13:58:02.0076 14988  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
13:58:02.0076 14988  MegaSR - ok
13:58:02.0122 14988  [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
13:58:02.0122 14988  MEIx64 - ok
13:58:02.0185 14988  Microsoft SharePoint Workspace Audit Service - ok
13:58:02.0216 14988  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
13:58:02.0216 14988  MMCSS - ok
13:58:02.0247 14988  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
13:58:02.0247 14988  Modem - ok
13:58:02.0278 14988  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
13:58:02.0278 14988  monitor - ok
13:58:02.0278 14988  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
13:58:02.0294 14988  mouclass - ok
13:58:02.0310 14988  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
13:58:02.0310 14988  mouhid - ok
13:58:02.0310 14988  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
13:58:02.0310 14988  mountmgr - ok
13:58:02.0356 14988  [ 5C5E45DDABEFBC9F564F1D5C83258B8F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:58:02.0372 14988  MozillaMaintenance - ok
13:58:02.0419 14988  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
13:58:02.0419 14988  MpFilter - ok
13:58:02.0450 14988  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
13:58:02.0450 14988  mpio - ok
13:58:02.0466 14988  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
13:58:02.0466 14988  mpsdrv - ok
13:58:02.0497 14988  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
13:58:02.0497 14988  MpsSvc - ok
13:58:02.0512 14988  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
13:58:02.0512 14988  MRxDAV - ok
13:58:02.0544 14988  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
13:58:02.0544 14988  mrxsmb - ok
13:58:02.0559 14988  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:58:02.0559 14988  mrxsmb10 - ok
13:58:02.0559 14988  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:58:02.0575 14988  mrxsmb20 - ok
13:58:02.0590 14988  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
13:58:02.0590 14988  msahci - ok
13:58:02.0637 14988  [ A592A054D78750B4D73ABAA4C94DECDF ] MSCamSvc        C:\Program Files\Microsoft LifeCam\MSCamS64.exe
13:58:02.0637 14988  MSCamSvc - ok
13:58:02.0653 14988  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
13:58:02.0653 14988  msdsm - ok
13:58:02.0684 14988  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
13:58:02.0684 14988  MSDTC - ok
13:58:02.0700 14988  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
13:58:02.0700 14988  Msfs - ok
13:58:02.0715 14988  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
13:58:02.0715 14988  mshidkmdf - ok
13:58:02.0715 14988  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
13:58:02.0731 14988  msisadrv - ok
13:58:02.0746 14988  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
13:58:02.0746 14988  MSiSCSI - ok
13:58:02.0762 14988  msiserver - ok
13:58:02.0778 14988  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
13:58:02.0778 14988  MSKSSRV - ok
13:58:02.0840 14988  [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
13:58:02.0840 14988  MsMpSvc - ok
13:58:02.0856 14988  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
13:58:02.0856 14988  MSPCLOCK - ok
13:58:02.0856 14988  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
13:58:02.0856 14988  MSPQM - ok
13:58:02.0871 14988  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
13:58:02.0887 14988  MsRPC - ok
13:58:02.0887 14988  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
13:58:02.0887 14988  mssmbios - ok
13:58:02.0902 14988  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
13:58:02.0918 14988  MSTEE - ok
13:58:02.0918 14988  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
13:58:02.0934 14988  MTConfig - ok
13:58:02.0934 14988  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
13:58:02.0934 14988  Mup - ok
13:58:02.0965 14988  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
13:58:02.0980 14988  napagent - ok
13:58:02.0996 14988  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
13:58:02.0996 14988  NativeWifiP - ok
13:58:03.0043 14988  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
13:58:03.0058 14988  NDIS - ok
13:58:03.0074 14988  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
13:58:03.0074 14988  NdisCap - ok
13:58:03.0090 14988  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
13:58:03.0090 14988  NdisTapi - ok
13:58:03.0090 14988  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
13:58:03.0105 14988  Ndisuio - ok
13:58:03.0105 14988  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
13:58:03.0105 14988  NdisWan - ok
13:58:03.0121 14988  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
13:58:03.0121 14988  NDProxy - ok
13:58:03.0136 14988  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
13:58:03.0136 14988  NetBIOS - ok
13:58:03.0152 14988  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
13:58:03.0152 14988  NetBT - ok
13:58:03.0152 14988  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
13:58:03.0168 14988  Netlogon - ok
13:58:03.0199 14988  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
13:58:03.0214 14988  Netman - ok
13:58:03.0230 14988  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:58:03.0230 14988  NetMsmqActivator - ok
13:58:03.0246 14988  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:58:03.0246 14988  NetPipeActivator - ok
13:58:03.0261 14988  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
13:58:03.0277 14988  netprofm - ok
13:58:03.0277 14988  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:58:03.0277 14988  NetTcpActivator - ok
13:58:03.0277 14988  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:58:03.0277 14988  NetTcpPortSharing - ok
13:58:03.0292 14988  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
13:58:03.0292 14988  nfrd960 - ok
13:58:03.0339 14988  [ 162100E0BC8377710F9D170631921C03 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
13:58:03.0339 14988  NisDrv - ok
13:58:03.0386 14988  [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
13:58:03.0402 14988  NisSrv - ok
13:58:03.0448 14988  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
13:58:03.0464 14988  NlaSvc - ok
13:58:03.0542 14988  [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU            C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
13:58:03.0558 14988  NOBU - ok
13:58:03.0636 14988  [ C31FA031335EFF434B2D94278E74BCCE ] NPF             C:\Windows\system32\drivers\npf.sys
13:58:03.0636 14988  NPF - ok
13:58:03.0651 14988  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
13:58:03.0651 14988  Npfs - ok
13:58:03.0682 14988  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
13:58:03.0682 14988  nsi - ok
13:58:03.0682 14988  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
13:58:03.0682 14988  nsiproxy - ok
13:58:03.0745 14988  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
13:58:03.0776 14988  Ntfs - ok
13:58:03.0792 14988  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
13:58:03.0792 14988  Null - ok
13:58:03.0792 14988  nusb3hub - ok
13:58:03.0807 14988  nusb3xhc - ok
13:58:03.0823 14988  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
13:58:03.0823 14988  nvraid - ok
13:58:03.0854 14988  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
13:58:03.0854 14988  nvstor - ok
13:58:03.0854 14988  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
13:58:03.0870 14988  nv_agp - ok
13:58:03.0870 14988  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
13:58:03.0870 14988  ohci1394 - ok
13:58:03.0901 14988  [ FBE1D971EB64ABF4CE37B519307C94F1 ] OSDSvc          C:\Program Files (x86)\Dell\Dell KM632 Wireless Keyboard Caps Lock Indicator\OSDSrv.exe
13:58:03.0916 14988  OSDSvc - ok
13:58:03.0963 14988  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:58:03.0963 14988  ose - ok
13:58:04.0088 14988  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:58:04.0104 14988  osppsvc - ok
13:58:04.0150 14988  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
13:58:04.0150 14988  p2pimsvc - ok
13:58:04.0166 14988  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
13:58:04.0166 14988  p2psvc - ok
13:58:04.0182 14988  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
13:58:04.0182 14988  Parport - ok
13:58:04.0213 14988  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
13:58:04.0213 14988  partmgr - ok
13:58:04.0228 14988  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
13:58:04.0228 14988  PcaSvc - ok
13:58:04.0275 14988  [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{1E208CE0-FB7451FF-06020101}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
13:58:04.0275 14988  PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
13:58:04.0306 14988  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
13:58:04.0306 14988  pci - ok
13:58:04.0322 14988  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
13:58:04.0322 14988  pciide - ok
13:58:04.0338 14988  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
13:58:04.0338 14988  pcmcia - ok
13:58:04.0353 14988  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
13:58:04.0353 14988  pcw - ok
13:58:04.0369 14988  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
13:58:04.0384 14988  PEAUTH - ok
13:58:04.0416 14988  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
13:58:04.0416 14988  PerfHost - ok
13:58:04.0462 14988  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
13:58:04.0478 14988  pla - ok
13:58:04.0509 14988  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
13:58:04.0509 14988  PlugPlay - ok
13:58:04.0525 14988  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
13:58:04.0525 14988  PNRPAutoReg - ok
13:58:04.0540 14988  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
13:58:04.0540 14988  PNRPsvc - ok
13:58:04.0572 14988  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
13:58:04.0572 14988  PolicyAgent - ok
13:58:04.0603 14988  [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power           C:\Windows\system32\umpo.dll
13:58:04.0603 14988  Power - ok
13:58:04.0634 14988  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
13:58:04.0634 14988  PptpMiniport - ok
13:58:04.0650 14988  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
13:58:04.0650 14988  Processor - ok
13:58:04.0696 14988  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
13:58:04.0712 14988  ProfSvc - ok
13:58:04.0712 14988  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:58:04.0712 14988  ProtectedStorage - ok
13:58:04.0743 14988  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
13:58:04.0743 14988  Psched - ok
13:58:04.0759 14988  [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
13:58:04.0759 14988  PxHlpa64 - ok
13:58:04.0821 14988  [ B1A7437A886CE87B31A12A154ED33833 ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
13:58:04.0837 14988  QBCFMonitorService - ok
13:58:04.0868 14988  [ 6BEE1814470DC12FA20C53DFC3C97EBB ] QBFCService     C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
13:58:04.0868 14988  QBFCService - ok
13:58:04.0899 14988  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
13:58:04.0930 14988  ql2300 - ok
13:58:04.0930 14988  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
13:58:04.0930 14988  ql40xx - ok
13:58:04.0946 14988  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
13:58:04.0962 14988  QWAVE - ok
13:58:04.0962 14988  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
13:58:04.0962 14988  QWAVEdrv - ok
13:58:04.0977 14988  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
13:58:04.0977 14988  RasAcd - ok
13:58:05.0008 14988  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
13:58:05.0008 14988  RasAgileVpn - ok
13:58:05.0024 14988  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
13:58:05.0024 14988  RasAuto - ok
13:58:05.0024 14988  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
13:58:05.0040 14988  Rasl2tp - ok
13:58:05.0040 14988  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
13:58:05.0040 14988  RasMan - ok
13:58:05.0055 14988  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
13:58:05.0055 14988  RasPppoe - ok
13:58:05.0071 14988  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
13:58:05.0071 14988  RasSstp - ok
13:58:05.0086 14988  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
13:58:05.0086 14988  rdbss - ok
13:58:05.0102 14988  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
13:58:05.0102 14988  rdpbus - ok
13:58:05.0118 14988  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
13:58:05.0118 14988  RDPCDD - ok
13:58:05.0133 14988  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
13:58:05.0133 14988  RDPENCDD - ok
13:58:05.0149 14988  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
13:58:05.0149 14988  RDPREFMP - ok
13:58:05.0211 14988  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
13:58:05.0211 14988  RdpVideoMiniport - ok
13:58:05.0242 14988  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
13:58:05.0242 14988  RDPWD - ok
13:58:05.0274 14988  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
13:58:05.0274 14988  rdyboost - ok
13:58:05.0289 14988  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
13:58:05.0289 14988  RemoteAccess - ok
13:58:05.0305 14988  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
13:58:05.0320 14988  RemoteRegistry - ok
13:58:05.0383 14988  [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
13:58:05.0383 14988  RoxMediaDB12OEM - ok
13:58:05.0414 14988  [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12      C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
13:58:05.0414 14988  RoxWatch12 - ok
13:58:05.0492 14988  [ A780D3EAA74582EA1DEB6BD9C7A3D9C9 ] rpcapd          C:\Program Files (x86)\WinPcap\rpcapd.exe
13:58:05.0492 14988  rpcapd - ok
13:58:05.0539 14988  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
13:58:05.0539 14988  RpcEptMapper - ok
13:58:05.0554 14988  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
13:58:05.0554 14988  RpcLocator - ok
13:58:05.0570 14988  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
13:58:05.0570 14988  RpcSs - ok
13:58:05.0586 14988  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
13:58:05.0586 14988  rspndr - ok
13:58:05.0664 14988  [ A0EEA6F631349D0E0B7A6CAA7E099CB0 ] RUBotSrv        C:\Program Files (x86)\Trend Micro\RUBotted\RUBotSrv.exe
13:58:05.0664 14988  RUBotSrv - ok
13:58:05.0679 14988  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
13:58:05.0679 14988  SamSs - ok
13:58:05.0726 14988  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
13:58:05.0726 14988  SASDIFSV - ok
13:58:05.0742 14988  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
13:58:05.0742 14988  SASKUTIL - ok
13:58:05.0742 14988  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
13:58:05.0742 14988  sbp2port - ok
13:58:05.0773 14988  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
13:58:05.0773 14988  SCardSvr - ok
13:58:05.0804 14988  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
13:58:05.0804 14988  scfilter - ok
13:58:05.0820 14988  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
13:58:05.0851 14988  Schedule - ok
13:58:05.0866 14988  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
13:58:05.0866 14988  SCPolicySvc - ok
13:58:05.0882 14988  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
13:58:05.0882 14988  SDRSVC - ok
13:58:05.0898 14988  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
13:58:05.0898 14988  secdrv - ok
13:58:05.0913 14988  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
13:58:05.0913 14988  seclogon - ok
13:58:05.0913 14988  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
13:58:05.0929 14988  SENS - ok
13:58:05.0929 14988  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
13:58:05.0929 14988  SensrSvc - ok
13:58:05.0944 14988  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
13:58:05.0944 14988  Serenum - ok
13:58:05.0944 14988  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
13:58:05.0960 14988  Serial - ok
13:58:05.0960 14988  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
13:58:05.0960 14988  sermouse - ok
13:58:05.0976 14988  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
13:58:05.0991 14988  SessionEnv - ok
13:58:05.0991 14988  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
13:58:05.0991 14988  sffdisk - ok
13:58:05.0991 14988  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
13:58:05.0991 14988  sffp_mmc - ok
13:58:05.0991 14988  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
13:58:05.0991 14988  sffp_sd - ok
13:58:05.0991 14988  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
13:58:05.0991 14988  sfloppy - ok
13:58:06.0054 14988  [ 29DDEA72C5BDF61D62F4D438DC0E497C ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
13:58:06.0069 14988  SftService - ok
13:58:06.0100 14988  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
13:58:06.0100 14988  SharedAccess - ok
13:58:06.0116 14988  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:58:06.0116 14988  ShellHWDetection - ok
13:58:06.0116 14988  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
13:58:06.0116 14988  SiSRaid2 - ok
13:58:06.0116 14988  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
13:58:06.0132 14988  SiSRaid4 - ok
13:58:06.0178 14988  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
13:58:06.0194 14988  SkypeUpdate - ok
13:58:06.0210 14988  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
13:58:06.0210 14988  Smb - ok
13:58:06.0272 14988  [ 853BB5635D28ED543FE95DF59F95B5B9 ] SmbDrv          C:\Windows\system32\DRIVERS\Smb_driver.sys
13:58:06.0272 14988  SmbDrv - ok
13:58:06.0319 14988  [ 96815EC7EE4A39DFD202DF2EB44ECA54 ] SmbDrvI         C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
13:58:06.0319 14988  SmbDrvI - ok
13:58:06.0350 14988  [ 96815EC7EE4A39DFD202DF2EB44ECA54 ] SmbDrvIntel     C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
13:58:06.0350 14988  SmbDrvIntel - ok
13:58:06.0381 14988  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
13:58:06.0381 14988  SNMPTRAP - ok
13:58:06.0381 14988  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
13:58:06.0381 14988  spldr - ok
13:58:06.0428 14988  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
13:58:06.0428 14988  Spooler - ok
13:58:06.0490 14988  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
13:58:06.0537 14988  sppsvc - ok
13:58:06.0553 14988  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
13:58:06.0553 14988  sppuinotify - ok
13:58:06.0584 14988  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
13:58:06.0584 14988  srv - ok
13:58:06.0600 14988  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
13:58:06.0615 14988  srv2 - ok
13:58:06.0631 14988  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
13:58:06.0631 14988  srvnet - ok
13:58:06.0646 14988  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
13:58:06.0662 14988  SSDPSRV - ok
13:58:06.0662 14988  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
13:58:06.0678 14988  SstpSvc - ok
13:58:06.0709 14988  [ B4C983DA20E2970E21893BF0E4EE2AD8 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
13:58:06.0709 14988  ssudmdm - ok
13:58:06.0724 14988  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
13:58:06.0724 14988  stexstor - ok
13:58:06.0787 14988  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
13:58:06.0787 14988  stisvc - ok
13:58:06.0818 14988  [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr        C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
13:58:06.0818 14988  stllssvr - ok
13:58:06.0834 14988  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
13:58:06.0834 14988  swenum - ok
13:58:06.0865 14988  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
13:58:06.0865 14988  swprv - ok
13:58:06.0896 14988  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
13:58:06.0927 14988  SysMain - ok
13:58:06.0943 14988  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:58:06.0943 14988  TabletInputService - ok
13:58:06.0958 14988  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
13:58:06.0958 14988  TapiSrv - ok
13:58:06.0974 14988  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
13:58:06.0974 14988  TBS - ok
13:58:07.0036 14988  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
13:58:07.0068 14988  Tcpip - ok
13:58:07.0099 14988  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
13:58:07.0114 14988  TCPIP6 - ok
13:58:07.0146 14988  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
13:58:07.0146 14988  tcpipreg - ok
13:58:07.0161 14988  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
13:58:07.0161 14988  TDPIPE - ok
13:58:07.0177 14988  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
13:58:07.0177 14988  TDTCP - ok
13:58:07.0208 14988  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
13:58:07.0208 14988  tdx - ok
13:58:07.0208 14988  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
13:58:07.0208 14988  TermDD - ok
13:58:07.0239 14988  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
13:58:07.0239 14988  TermService - ok
13:58:07.0255 14988  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
13:58:07.0255 14988  Themes - ok
13:58:07.0270 14988  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
13:58:07.0270 14988  THREADORDER - ok
13:58:07.0286 14988  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
13:58:07.0286 14988  TrkWks - ok
13:58:07.0317 14988  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:58:07.0317 14988  TrustedInstaller - ok
13:58:07.0333 14988  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
13:58:07.0333 14988  tssecsrv - ok
13:58:07.0364 14988  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
13:58:07.0364 14988  TsUsbFlt - ok
13:58:07.0380 14988  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
13:58:07.0380 14988  TsUsbGD - ok
13:58:07.0395 14988  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
13:58:07.0395 14988  tunnel - ok
13:58:07.0411 14988  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
13:58:07.0411 14988  uagp35 - ok
13:58:07.0411 14988  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
13:58:07.0426 14988  udfs - ok
13:58:07.0442 14988  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
13:58:07.0442 14988  UI0Detect - ok
13:58:07.0458 14988  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
13:58:07.0458 14988  uliagpkx - ok
13:58:07.0473 14988  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
13:58:07.0473 14988  umbus - ok
13:58:07.0473 14988  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
13:58:07.0473 14988  UmPass - ok
13:58:07.0504 14988  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
13:58:07.0504 14988  upnphost - ok
13:58:07.0567 14988  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
13:58:07.0567 14988  usbaudio - ok
13:58:07.0582 14988  [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
13:58:07.0598 14988  usbccgp - ok
13:58:07.0614 14988  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
13:58:07.0614 14988  usbcir - ok
13:58:07.0629 14988  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
13:58:07.0629 14988  usbehci - ok
13:58:07.0660 14988  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
13:58:07.0692 14988  usbhub - ok
13:58:07.0707 14988  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
13:58:07.0707 14988  usbohci - ok
13:58:07.0707 14988  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
13:58:07.0723 14988  usbprint - ok
13:58:07.0785 14988  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
13:58:07.0785 14988  usbscan - ok
13:58:07.0801 14988  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:58:07.0801 14988  USBSTOR - ok
13:58:07.0832 14988  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
13:58:07.0832 14988  usbuhci - ok
13:58:07.0848 14988  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
13:58:07.0848 14988  UxSms - ok
13:58:07.0879 14988  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
13:58:07.0879 14988  VaultSvc - ok
13:58:07.0894 14988  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
13:58:07.0894 14988  vdrvroot - ok
13:58:07.0910 14988  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
13:58:07.0910 14988  vds - ok
13:58:07.0926 14988  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
13:58:07.0926 14988  vga - ok
13:58:07.0926 14988  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
13:58:07.0926 14988  VgaSave - ok
13:58:07.0941 14988  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
13:58:07.0941 14988  vhdmp - ok
13:58:07.0941 14988  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
13:58:07.0941 14988  viaide - ok
13:58:07.0957 14988  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
13:58:07.0957 14988  volmgr - ok
13:58:07.0972 14988  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
13:58:07.0972 14988  volmgrx - ok
13:58:07.0988 14988  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
13:58:07.0988 14988  volsnap - ok
13:58:08.0004 14988  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
13:58:08.0004 14988  vsmraid - ok
13:58:08.0050 14988  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
13:58:08.0082 14988  VSS - ok
13:58:08.0160 14988  [ 3AD1E72748978D8B0B3B674741E4C3E2 ] vToolbarUpdater14.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
13:58:08.0175 14988  vToolbarUpdater14.2.0 - ok
13:58:08.0191 14988  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
13:58:08.0191 14988  vwifibus - ok
13:58:08.0191 14988  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
13:58:08.0191 14988  vwififlt - ok
13:58:08.0269 14988  [ C366AE91D2CC2C1C25380061D235C36B ] VX3000          C:\Windows\system32\DRIVERS\VX3000.sys
13:58:08.0300 14988  VX3000 - ok
13:58:08.0331 14988  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
13:58:08.0347 14988  W32Time - ok
13:58:08.0362 14988  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
13:58:08.0362 14988  WacomPen - ok
13:58:08.0378 14988  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
13:58:08.0378 14988  WANARP - ok
13:58:08.0378 14988  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
13:58:08.0378 14988  Wanarpv6 - ok
13:58:08.0440 14988  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
13:58:08.0472 14988  WatAdminSvc - ok
13:58:08.0503 14988  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
13:58:08.0534 14988  wbengine - ok
13:58:08.0550 14988  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
13:58:08.0565 14988  WbioSrvc - ok
13:58:08.0596 14988  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
13:58:08.0596 14988  wcncsvc - ok
13:58:08.0612 14988  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:58:08.0612 14988  WcsPlugInService - ok
13:58:08.0628 14988  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
13:58:08.0628 14988  Wd - ok
13:58:08.0674 14988  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
13:58:08.0674 14988  Wdf01000 - ok
13:58:08.0690 14988  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
13:58:08.0706 14988  WdiServiceHost - ok
13:58:08.0706 14988  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
13:58:08.0706 14988  WdiSystemHost - ok
13:58:08.0721 14988  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
13:58:08.0721 14988  WebClient - ok
13:58:08.0737 14988  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
13:58:08.0737 14988  Wecsvc - ok
13:58:08.0752 14988  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
13:58:08.0768 14988  wercplsupport - ok
13:58:08.0784 14988  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
13:58:08.0784 14988  WerSvc - ok
13:58:08.0799 14988  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
13:58:08.0799 14988  WfpLwf - ok
13:58:08.0830 14988  [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
13:58:08.0830 14988  WimFltr - ok
13:58:08.0846 14988  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
13:58:08.0846 14988  WIMMount - ok
13:58:08.0846 14988  WinDefend - ok
13:58:08.0862 14988  WinHttpAutoProxySvc - ok
13:58:08.0893 14988  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
13:58:08.0893 14988  Winmgmt - ok
13:58:08.0924 14988  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
13:58:08.0971 14988  WinRM - ok
13:58:09.0033 14988  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
13:58:09.0033 14988  WinUsb - ok
13:58:09.0049 14988  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
13:58:09.0064 14988  Wlansvc - ok
13:58:09.0096 14988  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:58:09.0096 14988  wlcrasvc - ok
13:58:09.0174 14988  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:58:09.0174 14988  wlidsvc - ok
13:58:09.0205 14988  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
13:58:09.0205 14988  WmiAcpi - ok
13:58:09.0220 14988  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
13:58:09.0220 14988  wmiApSrv - ok
13:58:09.0252 14988  WMPNetworkSvc - ok
13:58:09.0267 14988  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
13:58:09.0267 14988  WPCSvc - ok
13:58:09.0283 14988  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
13:58:09.0283 14988  WPDBusEnum - ok
13:58:09.0298 14988  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
13:58:09.0298 14988  ws2ifsl - ok
13:58:09.0330 14988  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
13:58:09.0330 14988  wscsvc - ok
13:58:09.0330 14988  WSearch - ok
13:58:09.0408 14988  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
13:58:09.0454 14988  wuauserv - ok
13:58:09.0486 14988  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
13:58:09.0486 14988  WudfPf - ok
13:58:09.0501 14988  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
13:58:09.0517 14988  WUDFRd - ok
13:58:09.0517 14988  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
13:58:09.0517 14988  wudfsvc - ok
13:58:09.0548 14988  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
13:58:09.0548 14988  WwanSvc - ok
13:58:09.0564 14988  ================ Scan global ===============================
13:58:09.0579 14988  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
13:58:09.0610 14988  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
13:58:09.0626 14988  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
13:58:09.0642 14988  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
13:58:09.0657 14988  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
13:58:09.0657 14988  [Global] - ok
13:58:09.0657 14988  ================ Scan MBR ==================================
13:58:09.0673 14988  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
13:58:09.0938 14988  \Device\Harddisk0\DR0 - ok
13:58:09.0938 14988  ================ Scan VBR ==================================
13:58:09.0938 14988  [ 26F1056CC8D267C989220BA870893050 ] \Device\Harddisk0\DR0\Partition1
13:58:09.0938 14988  \Device\Harddisk0\DR0\Partition1 - ok
13:58:09.0969 14988  [ 0EC03B2744C73F927A792E97E4755618 ] \Device\Harddisk0\DR0\Partition2
13:58:09.0969 14988  \Device\Harddisk0\DR0\Partition2 - ok
13:58:09.0969 14988  ============================================================
13:58:09.0969 14988  Scan finished
13:58:09.0969 14988  ============================================================
13:58:09.0985 17172  Detected object count: 0
13:58:09.0985 17172  Actual detected object count: 0
14:00:15.0131 16412  Deinitialize success
 

AdwCleaner Log

 

# AdwCleaner v2.114 - Logfile created 03/14/2013 at 14:00:09
# Updated 05/03/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Greg - GREG-PC
# Boot Mode : Normal
# Running from : C:\Users\Greg\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Users\Greg\AppData\Roaming\PerformerSoft

***** [Registry] *****

Key Deleted : HKCU\Software\PerformerSoft
Key Deleted : HKLM\Software\PerformerSoft

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16470

[OK] Registry is clean.

-\\ Mozilla Firefox v19.0 (en-US)

File : C:\Users\Greg\AppData\Roaming\Mozilla\Firefox\Profiles\3885x1d3.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

-\\ Opera v [Unable to get version]

File : C:\Users\Greg\AppData\Roaming\Opera\Opera\operaprefs.ini

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [11076 octets] - [13/03/2013 12:24:38]
AdwCleaner[R2].txt - [11128 octets] - [13/03/2013 15:29:20]
AdwCleaner[R3].txt - [1432 octets] - [13/03/2013 15:36:11]
AdwCleaner[R4].txt - [1717 octets] - [13/03/2013 18:35:34]
AdwCleaner[S1].txt - [385 octets] - [13/03/2013 12:25:51]
AdwCleaner[S2].txt - [11227 octets] - [13/03/2013 15:29:29]
AdwCleaner[S3].txt - [1497 octets] - [13/03/2013 15:36:50]
AdwCleaner[S4].txt - [1788 octets] - [13/03/2013 18:36:22]
AdwCleaner[S5].txt - [1649 octets] - [14/03/2013 14:00:09]

########## EOF - C:\AdwCleaner[S5].txt - [1709 octets] ##########

 

ESET Log

 

C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Users\Greg\Downloads\Setup(1).exe a variant of Win32/Adware.iBryte.D application cleaned by deleting - quarantined
C:\Users\Greg\Downloads\Setup(2).exe a variant of Win32/Adware.iBryte.D application cleaned by deleting - quarantined
 



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:17 PM

Posted 14 March 2013 - 09:00 PM

Looks good run a rootkit check..

 

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)
 
Do not change the default options on scan results.

 

 

 

HiJackThis (Version: 1.0.0) this can be uninstalled as it is outdated.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 gregla

gregla
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:17 PM

Posted 15 March 2013 - 07:27 AM

Ok, thanks again for your help.  I've uninstalled HiJackThis and here is the TDSS log:

 

 

08:19:23.0902 62784  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
08:19:24.0167 62784  ============================================================
08:19:24.0167 62784  Current date / time: 2013/03/15 08:19:24.0167
08:19:24.0167 62784  SystemInfo:
08:19:24.0167 62784 
08:19:24.0167 62784  OS Version: 6.1.7601 ServicePack: 1.0
08:19:24.0167 62784  Product type: Workstation
08:19:24.0167 62784  ComputerName: GREG-PC
08:19:24.0167 62784  UserName: Greg
08:19:24.0167 62784  Windows directory: C:\Windows
08:19:24.0167 62784  System windows directory: C:\Windows
08:19:24.0167 62784  Running under WOW64
08:19:24.0167 62784  Processor architecture: Intel x64
08:19:24.0167 62784  Number of processors: 8
08:19:24.0167 62784  Page size: 0x1000
08:19:24.0167 62784  Boot type: Normal boot
08:19:24.0167 62784  ============================================================
08:19:24.0588 62784  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:19:24.0604 62784  ============================================================
08:19:24.0604 62784  \Device\Harddisk0\DR0:
08:19:24.0604 62784  MBR partitions:
08:19:24.0604 62784  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1A7F000
08:19:24.0604 62784  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A93000, BlocksNum 0x388F2800
08:19:24.0604 62784  ============================================================
08:19:24.0635 62784  C: <-> \Device\Harddisk0\DR0\Partition2
08:19:24.0650 62784  ============================================================
08:19:24.0650 62784  Initialize success
08:19:24.0650 62784  ============================================================
08:19:55.0242 56396  ============================================================
08:19:55.0242 56396  Scan started
08:19:55.0242 56396  Mode: Manual; TDLFS;
08:19:55.0242 56396  ============================================================
08:19:56.0365 56396  ================ Scan system memory ========================
08:19:56.0365 56396  System memory - ok
08:19:56.0365 56396  ================ Scan services =============================
08:19:56.0459 56396  [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
08:19:56.0459 56396  !SASCORE - ok
08:19:56.0552 56396  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
08:19:56.0552 56396  1394ohci - ok
08:19:56.0568 56396  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
08:19:56.0584 56396  ACPI - ok
08:19:56.0584 56396  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
08:19:56.0584 56396  AcpiPmi - ok
08:19:56.0662 56396  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:19:56.0662 56396  AdobeARMservice - ok
08:19:56.0771 56396  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:19:56.0771 56396  AdobeFlashPlayerUpdateSvc - ok
08:19:56.0786 56396  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
08:19:56.0802 56396  adp94xx - ok
08:19:56.0818 56396  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
08:19:56.0818 56396  adpahci - ok
08:19:56.0833 56396  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
08:19:56.0833 56396  adpu320 - ok
08:19:56.0849 56396  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
08:19:56.0849 56396  AeLookupSvc - ok
08:19:56.0911 56396  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
08:19:56.0911 56396  AFD - ok
08:19:56.0927 56396  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
08:19:56.0927 56396  agp440 - ok
08:19:56.0942 56396  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
08:19:56.0942 56396  ALG - ok
08:19:56.0942 56396  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
08:19:56.0942 56396  aliide - ok
08:19:56.0989 56396  [ 4EAAAAB8759644D572522FBCDD196A13 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
08:19:57.0005 56396  AMD External Events Utility - ok
08:19:57.0005 56396  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
08:19:57.0005 56396  amdide - ok
08:19:57.0005 56396  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
08:19:57.0005 56396  AmdK8 - ok
08:19:57.0208 56396  [ 22A14DF59FB8D0BE918C597988AF4296 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
08:19:57.0364 56396  amdkmdag - ok
08:19:57.0395 56396  [ EE22D3ED6D55A855E709F811CCCA97ED ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
08:19:57.0395 56396  amdkmdap - ok
08:19:57.0410 56396  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
08:19:57.0410 56396  AmdPPM - ok
08:19:57.0442 56396  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
08:19:57.0442 56396  amdsata - ok
08:19:57.0457 56396  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
08:19:57.0457 56396  amdsbs - ok
08:19:57.0473 56396  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
08:19:57.0473 56396  amdxata - ok
08:19:57.0488 56396  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
08:19:57.0488 56396  AppID - ok
08:19:57.0504 56396  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
08:19:57.0504 56396  AppIDSvc - ok
08:19:57.0520 56396  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
08:19:57.0520 56396  Appinfo - ok
08:19:57.0566 56396  [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:19:57.0566 56396  Apple Mobile Device - ok
08:19:57.0598 56396  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
08:19:57.0598 56396  arc - ok
08:19:57.0613 56396  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
08:19:57.0613 56396  arcsas - ok
08:19:57.0660 56396  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:19:57.0660 56396  aspnet_state - ok
08:19:57.0676 56396  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
08:19:57.0676 56396  AsyncMac - ok
08:19:57.0707 56396  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
08:19:57.0707 56396  atapi - ok
08:19:57.0754 56396  [ 437F55435623D4D54D36197F5AD8B435 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
08:19:57.0754 56396  AtiHDAudioService - ok
08:19:57.0785 56396  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
08:19:57.0785 56396  AudioEndpointBuilder - ok
08:19:57.0800 56396  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
08:19:57.0800 56396  AudioSrv - ok
08:19:57.0956 56396  [ 4AFC14AFA58878FAA1D249E7E90EA54B ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
08:19:57.0988 56396  AVGIDSAgent - ok
08:19:58.0034 56396  [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
08:19:58.0034 56396  AVGIDSDriver - ok
08:19:58.0066 56396  [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
08:19:58.0066 56396  AVGIDSHA - ok
08:19:58.0097 56396  [ 5989592A91A17587799792A81E1541D4 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
08:19:58.0097 56396  Avgldx64 - ok
08:19:58.0144 56396  [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
08:19:58.0144 56396  Avgloga - ok
08:19:58.0159 56396  [ 841C40C193889730848849AC220D9242 ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
08:19:58.0159 56396  Avgmfx64 - ok
08:19:58.0175 56396  [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
08:19:58.0190 56396  Avgrkx64 - ok
08:19:58.0206 56396  [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
08:19:58.0206 56396  Avgtdia - ok
08:19:58.0253 56396  [ 4C05242DC361A217223E9B8EC2B3A76B ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
08:19:58.0253 56396  avgtp - ok
08:19:58.0268 56396  [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd           C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
08:19:58.0268 56396  avgwd - ok
08:19:58.0300 56396  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
08:19:58.0300 56396  AxInstSV - ok
08:19:58.0331 56396  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
08:19:58.0346 56396  b06bdrv - ok
08:19:58.0362 56396  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
08:19:58.0362 56396  b57nd60a - ok
08:19:58.0440 56396  [ 8B5D16D20774FC3727F44E161BE2C0AC ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
08:19:58.0502 56396  BCM43XX - ok
08:19:58.0518 56396  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
08:19:58.0518 56396  BDESVC - ok
08:19:58.0534 56396  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
08:19:58.0534 56396  Beep - ok
08:19:58.0565 56396  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
08:19:58.0580 56396  BFE - ok
08:19:58.0596 56396  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
08:19:58.0612 56396  BITS - ok
08:19:58.0627 56396  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
08:19:58.0643 56396  blbdrive - ok
08:19:58.0690 56396  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
08:19:58.0690 56396  Bonjour Service - ok
08:19:58.0721 56396  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
08:19:58.0721 56396  bowser - ok
08:19:58.0736 56396  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
08:19:58.0736 56396  BrFiltLo - ok
08:19:58.0752 56396  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
08:19:58.0752 56396  BrFiltUp - ok
08:19:58.0752 56396  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
08:19:58.0768 56396  BridgeMP - ok
08:19:58.0799 56396  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
08:19:58.0799 56396  Browser - ok
08:19:58.0814 56396  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
08:19:58.0814 56396  Brserid - ok
08:19:58.0830 56396  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
08:19:58.0830 56396  BrSerWdm - ok
08:19:58.0830 56396  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
08:19:58.0830 56396  BrUsbMdm - ok
08:19:58.0830 56396  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
08:19:58.0830 56396  BrUsbSer - ok
08:19:58.0892 56396  [ EA7E57F87D6FEE5FD6C5F813C04E8CD2 ] BrYNSvc         C:\Program Files (x86)\Browny02\BrYNSvc.exe
08:19:58.0892 56396  BrYNSvc - ok
08:19:58.0892 56396  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
08:19:58.0892 56396  BTHMODEM - ok
08:19:58.0924 56396  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
08:19:58.0924 56396  bthserv - ok
08:19:58.0924 56396  catchme - ok
08:19:58.0939 56396  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
08:19:58.0955 56396  cdfs - ok
08:19:58.0970 56396  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
08:19:58.0970 56396  cdrom - ok
08:19:58.0986 56396  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
08:19:58.0986 56396  CertPropSvc - ok
08:19:59.0002 56396  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
08:19:59.0002 56396  circlass - ok
08:19:59.0017 56396  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
08:19:59.0017 56396  CLFS - ok
08:19:59.0064 56396  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:19:59.0064 56396  clr_optimization_v2.0.50727_32 - ok
08:19:59.0095 56396  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:19:59.0095 56396  clr_optimization_v2.0.50727_64 - ok
08:19:59.0142 56396  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:19:59.0142 56396  clr_optimization_v4.0.30319_32 - ok
08:19:59.0158 56396  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:19:59.0158 56396  clr_optimization_v4.0.30319_64 - ok
08:19:59.0173 56396  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
08:19:59.0173 56396  CmBatt - ok
08:19:59.0173 56396  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
08:19:59.0173 56396  cmdide - ok
08:19:59.0204 56396  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
08:19:59.0204 56396  CNG - ok
08:19:59.0220 56396  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
08:19:59.0220 56396  Compbatt - ok
08:19:59.0236 56396  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
08:19:59.0236 56396  CompositeBus - ok
08:19:59.0251 56396  COMSysApp - ok
08:19:59.0267 56396  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
08:19:59.0267 56396  crcdisk - ok
08:19:59.0298 56396  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
08:19:59.0298 56396  CryptSvc - ok
08:19:59.0329 56396  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
08:19:59.0329 56396  DcomLaunch - ok
08:19:59.0345 56396  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
08:19:59.0360 56396  defragsvc - ok
08:19:59.0392 56396  [ 2050309BAB03DFCEE455DBF913BF91B1 ] DellDigitalDelivery c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
08:19:59.0392 56396  DellDigitalDelivery - ok
08:19:59.0407 56396  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
08:19:59.0407 56396  DfsC - ok
08:19:59.0454 56396  [ 41AC348DBD378F618CB4FDEE54270692 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
08:19:59.0454 56396  dg_ssudbus - ok
08:19:59.0470 56396  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
08:19:59.0485 56396  Dhcp - ok
08:19:59.0501 56396  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
08:19:59.0501 56396  discache - ok
08:19:59.0516 56396  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
08:19:59.0516 56396  Disk - ok
08:19:59.0532 56396  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
08:19:59.0532 56396  Dnscache - ok
08:19:59.0548 56396  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
08:19:59.0563 56396  dot3svc - ok
08:19:59.0563 56396  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
08:19:59.0579 56396  DPS - ok
08:19:59.0594 56396  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
08:19:59.0594 56396  drmkaud - ok
08:19:59.0626 56396  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
08:19:59.0626 56396  DXGKrnl - ok
08:19:59.0657 56396  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
08:19:59.0657 56396  EapHost - ok
08:19:59.0719 56396  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
08:19:59.0750 56396  ebdrv - ok
08:19:59.0797 56396  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
08:19:59.0797 56396  EFS - ok
08:19:59.0828 56396  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
08:19:59.0844 56396  ehRecvr - ok
08:19:59.0875 56396  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
08:19:59.0875 56396  ehSched - ok
08:19:59.0891 56396  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
08:19:59.0906 56396  elxstor - ok
08:19:59.0906 56396  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
08:19:59.0906 56396  ErrDev - ok
08:19:59.0922 56396  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
08:19:59.0938 56396  EventSystem - ok
08:19:59.0953 56396  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
08:19:59.0953 56396  exfat - ok
08:19:59.0969 56396  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
08:19:59.0969 56396  fastfat - ok
08:19:59.0984 56396  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
08:20:00.0000 56396  Fax - ok
08:20:00.0016 56396  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
08:20:00.0016 56396  fdc - ok
08:20:00.0031 56396  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
08:20:00.0031 56396  fdPHost - ok
08:20:00.0031 56396  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
08:20:00.0031 56396  FDResPub - ok
08:20:00.0047 56396  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
08:20:00.0047 56396  FileInfo - ok
08:20:00.0062 56396  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
08:20:00.0062 56396  Filetrace - ok
08:20:00.0094 56396  [ 8669BE94F63944E4F899C3950B520241 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
08:20:00.0109 56396  FLEXnet Licensing Service - ok
08:20:00.0109 56396  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
08:20:00.0109 56396  flpydisk - ok
08:20:00.0125 56396  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
08:20:00.0125 56396  FltMgr - ok
08:20:00.0187 56396  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
08:20:00.0203 56396  FontCache - ok
08:20:00.0234 56396  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:20:00.0234 56396  FontCache3.0.0.0 - ok
08:20:00.0250 56396  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
08:20:00.0250 56396  FsDepends - ok
08:20:00.0281 56396  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
08:20:00.0281 56396  Fs_Rec - ok
08:20:00.0312 56396  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
08:20:00.0312 56396  fvevol - ok
08:20:00.0328 56396  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
08:20:00.0328 56396  gagp30kx - ok
08:20:00.0359 56396  [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
08:20:00.0374 56396  GEARAspiWDM - ok
08:20:00.0406 56396  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
08:20:00.0406 56396  gpsvc - ok
08:20:00.0515 56396  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:20:00.0530 56396  gupdate - ok
08:20:00.0546 56396  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:20:00.0546 56396  gupdatem - ok
08:20:00.0562 56396  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
08:20:00.0562 56396  gusvc - ok
08:20:00.0593 56396  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
08:20:00.0593 56396  hcw85cir - ok
08:20:00.0608 56396  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:20:00.0608 56396  HdAudAddService - ok
08:20:00.0624 56396  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
08:20:00.0624 56396  HDAudBus - ok
08:20:00.0640 56396  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
08:20:00.0640 56396  HidBatt - ok
08:20:00.0655 56396  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
08:20:00.0655 56396  HidBth - ok
08:20:00.0655 56396  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
08:20:00.0655 56396  HidIr - ok
08:20:00.0671 56396  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
08:20:00.0671 56396  hidserv - ok
08:20:00.0702 56396  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
08:20:00.0702 56396  HidUsb - ok
08:20:00.0702 56396  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
08:20:00.0718 56396  hkmsvc - ok
08:20:00.0733 56396  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
08:20:00.0733 56396  HomeGroupListener - ok
08:20:00.0749 56396  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:20:00.0749 56396  HomeGroupProvider - ok
08:20:00.0764 56396  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
08:20:00.0764 56396  HpSAMD - ok
08:20:00.0796 56396  [ 7C7C986776D00E575BFBDE5DCBDC615D ] HtcUsbMdmV64    C:\Windows\system32\DRIVERS\HtcUsbMdmV64.sys
08:20:00.0796 56396  HtcUsbMdmV64 - ok
08:20:00.0827 56396  [ 7C7C986776D00E575BFBDE5DCBDC615D ] HtcVCom32       C:\Windows\system32\DRIVERS\HtcVComV64.sys
08:20:00.0827 56396  HtcVCom32 - ok
08:20:00.0874 56396  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
08:20:00.0874 56396  HTTP - ok
08:20:00.0889 56396  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
08:20:00.0889 56396  hwpolicy - ok
08:20:00.0905 56396  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
08:20:00.0905 56396  i8042prt - ok
08:20:00.0952 56396  [ 88D26E2881646FAD2B2114CF8C75FC3C ] iaStor          C:\Windows\system32\drivers\iaStor.sys
08:20:00.0952 56396  iaStor - ok
08:20:01.0014 56396  [ D41861E56E7552C13674D7F147A02464 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
08:20:01.0014 56396  IAStorDataMgrSvc - ok
08:20:01.0045 56396  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
08:20:01.0045 56396  iaStorV - ok
08:20:01.0108 56396  [ C1010ADD3DDAE1196ED21057AF7B2AAE ] ICCWDT          C:\Windows\system32\DRIVERS\ICCWDT.sys
08:20:01.0108 56396  ICCWDT - ok
08:20:01.0154 56396  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:20:01.0170 56396  idsvc - ok
08:20:01.0170 56396  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
08:20:01.0170 56396  iirsp - ok
08:20:01.0201 56396  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
08:20:01.0217 56396  IKEEXT - ok
08:20:01.0295 56396  [ 55FCBF5440EE61DBC5A6F637F7B4C776 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
08:20:01.0357 56396  IntcAzAudAddService - ok
08:20:01.0404 56396  [ F5495B38BFB9149925F54F65AB40EFBF ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
08:20:01.0404 56396  IntcDAud - ok
08:20:01.0420 56396  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
08:20:01.0435 56396  intelide - ok
08:20:01.0435 56396  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
08:20:01.0435 56396  intelppm - ok
08:20:01.0466 56396  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
08:20:01.0466 56396  IPBusEnum - ok
08:20:01.0482 56396  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:20:01.0482 56396  IpFilterDriver - ok
08:20:01.0529 56396  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
08:20:01.0529 56396  iphlpsvc - ok
08:20:01.0544 56396  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
08:20:01.0544 56396  IPMIDRV - ok
08:20:01.0560 56396  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
08:20:01.0560 56396  IPNAT - ok
08:20:01.0622 56396  [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
08:20:01.0622 56396  iPod Service - ok
08:20:01.0638 56396  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
08:20:01.0638 56396  IRENUM - ok
08:20:01.0654 56396  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
08:20:01.0654 56396  isapnp - ok
08:20:01.0669 56396  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
08:20:01.0669 56396  iScsiPrt - ok
08:20:01.0685 56396  [ 12E27942DBB7C91880163634B0D8A776 ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys
08:20:01.0700 56396  k57nd60a - ok
08:20:01.0716 56396  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
08:20:01.0716 56396  kbdclass - ok
08:20:01.0732 56396  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
08:20:01.0732 56396  kbdhid - ok
08:20:01.0747 56396  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
08:20:01.0747 56396  KeyIso - ok
08:20:01.0778 56396  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
08:20:01.0778 56396  KSecDD - ok
08:20:01.0810 56396  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
08:20:01.0810 56396  KSecPkg - ok
08:20:01.0825 56396  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
08:20:01.0825 56396  ksthunk - ok
08:20:01.0841 56396  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
08:20:01.0856 56396  KtmRm - ok
08:20:01.0888 56396  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
08:20:01.0888 56396  LanmanServer - ok
08:20:01.0903 56396  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:20:01.0903 56396  LanmanWorkstation - ok
08:20:01.0919 56396  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
08:20:01.0934 56396  lltdio - ok
08:20:01.0950 56396  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
08:20:01.0950 56396  lltdsvc - ok
08:20:01.0966 56396  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
08:20:01.0966 56396  lmhosts - ok
08:20:01.0997 56396  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
08:20:01.0997 56396  LSI_FC - ok
08:20:01.0997 56396  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
08:20:02.0012 56396  LSI_SAS - ok
08:20:02.0012 56396  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
08:20:02.0012 56396  LSI_SAS2 - ok
08:20:02.0028 56396  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
08:20:02.0028 56396  LSI_SCSI - ok
08:20:02.0044 56396  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
08:20:02.0044 56396  luafv - ok
08:20:02.0059 56396  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
08:20:02.0075 56396  Mcx2Svc - ok
08:20:02.0075 56396  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
08:20:02.0075 56396  megasas - ok
08:20:02.0090 56396  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
08:20:02.0090 56396  MegaSR - ok
08:20:02.0122 56396  [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
08:20:02.0122 56396  MEIx64 - ok
08:20:02.0200 56396  Microsoft SharePoint Workspace Audit Service - ok
08:20:02.0231 56396  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
08:20:02.0231 56396  MMCSS - ok
08:20:02.0246 56396  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
08:20:02.0246 56396  Modem - ok
08:20:02.0278 56396  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
08:20:02.0278 56396  monitor - ok
08:20:02.0293 56396  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
08:20:02.0293 56396  mouclass - ok
08:20:02.0309 56396  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
08:20:02.0324 56396  mouhid - ok
08:20:02.0324 56396  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
08:20:02.0324 56396  mountmgr - ok
08:20:02.0371 56396  [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:20:02.0371 56396  MozillaMaintenance - ok
08:20:02.0418 56396  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
08:20:02.0418 56396  MpFilter - ok
08:20:02.0434 56396  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
08:20:02.0434 56396  mpio - ok
08:20:02.0449 56396  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
08:20:02.0465 56396  mpsdrv - ok
08:20:02.0480 56396  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
08:20:02.0496 56396  MpsSvc - ok
08:20:02.0512 56396  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
08:20:02.0512 56396  MRxDAV - ok
08:20:02.0527 56396  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
08:20:02.0527 56396  mrxsmb - ok
08:20:02.0543 56396  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:20:02.0543 56396  mrxsmb10 - ok
08:20:02.0558 56396  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:20:02.0558 56396  mrxsmb20 - ok
08:20:02.0574 56396  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
08:20:02.0574 56396  msahci - ok
08:20:02.0621 56396  [ A592A054D78750B4D73ABAA4C94DECDF ] MSCamSvc        C:\Program Files\Microsoft LifeCam\MSCamS64.exe
08:20:02.0621 56396  MSCamSvc - ok
08:20:02.0652 56396  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
08:20:02.0652 56396  msdsm - ok
08:20:02.0668 56396  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
08:20:02.0683 56396  MSDTC - ok
08:20:02.0699 56396  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
08:20:02.0699 56396  Msfs - ok
08:20:02.0699 56396  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
08:20:02.0699 56396  mshidkmdf - ok
08:20:02.0714 56396  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
08:20:02.0714 56396  msisadrv - ok
08:20:02.0746 56396  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
08:20:02.0746 56396  MSiSCSI - ok
08:20:02.0746 56396  msiserver - ok
08:20:02.0761 56396  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
08:20:02.0777 56396  MSKSSRV - ok
08:20:02.0839 56396  [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
08:20:02.0855 56396  MsMpSvc - ok
08:20:02.0870 56396  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
08:20:02.0870 56396  MSPCLOCK - ok
08:20:02.0870 56396  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
08:20:02.0886 56396  MSPQM - ok
08:20:02.0902 56396  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
08:20:02.0902 56396  MsRPC - ok
08:20:02.0917 56396  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
08:20:02.0917 56396  mssmbios - ok
08:20:02.0917 56396  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
08:20:02.0917 56396  MSTEE - ok
08:20:02.0933 56396  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
08:20:02.0933 56396  MTConfig - ok
08:20:02.0948 56396  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
08:20:02.0948 56396  Mup - ok
08:20:02.0964 56396  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
08:20:02.0980 56396  napagent - ok
08:20:02.0995 56396  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
08:20:03.0011 56396  NativeWifiP - ok
08:20:03.0058 56396  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
08:20:03.0073 56396  NDIS - ok
08:20:03.0089 56396  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
08:20:03.0089 56396  NdisCap - ok
08:20:03.0104 56396  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
08:20:03.0104 56396  NdisTapi - ok
08:20:03.0104 56396  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
08:20:03.0104 56396  Ndisuio - ok
08:20:03.0120 56396  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
08:20:03.0120 56396  NdisWan - ok
08:20:03.0120 56396  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
08:20:03.0136 56396  NDProxy - ok
08:20:03.0136 56396  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
08:20:03.0136 56396  NetBIOS - ok
08:20:03.0151 56396  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
08:20:03.0151 56396  NetBT - ok
08:20:03.0167 56396  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
08:20:03.0167 56396  Netlogon - ok
08:20:03.0214 56396  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
08:20:03.0214 56396  Netman - ok
08:20:03.0229 56396  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:20:03.0245 56396  NetMsmqActivator - ok
08:20:03.0245 56396  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:20:03.0245 56396  NetPipeActivator - ok
08:20:03.0260 56396  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
08:20:03.0276 56396  netprofm - ok
08:20:03.0276 56396  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:20:03.0276 56396  NetTcpActivator - ok
08:20:03.0276 56396  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:20:03.0292 56396  NetTcpPortSharing - ok
08:20:03.0307 56396  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
08:20:03.0307 56396  nfrd960 - ok
08:20:03.0338 56396  [ 162100E0BC8377710F9D170631921C03 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
08:20:03.0338 56396  NisDrv - ok
08:20:03.0385 56396  [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
08:20:03.0385 56396  NisSrv - ok
08:20:03.0432 56396  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
08:20:03.0432 56396  NlaSvc - ok
08:20:03.0510 56396  [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU            C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
08:20:03.0541 56396  NOBU - ok
08:20:03.0604 56396  [ C31FA031335EFF434B2D94278E74BCCE ] NPF             C:\Windows\system32\drivers\npf.sys
08:20:03.0619 56396  NPF - ok
08:20:03.0635 56396  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
08:20:03.0635 56396  Npfs - ok
08:20:03.0650 56396  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
08:20:03.0650 56396  nsi - ok
08:20:03.0666 56396  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
08:20:03.0666 56396  nsiproxy - ok
08:20:03.0728 56396  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
08:20:03.0760 56396  Ntfs - ok
08:20:03.0760 56396  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
08:20:03.0760 56396  Null - ok
08:20:03.0775 56396  nusb3hub - ok
08:20:03.0775 56396  nusb3xhc - ok
08:20:03.0806 56396  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
08:20:03.0806 56396  nvraid - ok
08:20:03.0838 56396  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
08:20:03.0838 56396  nvstor - ok
08:20:03.0838 56396  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
08:20:03.0853 56396  nv_agp - ok
08:20:03.0853 56396  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
08:20:03.0853 56396  ohci1394 - ok
08:20:03.0884 56396  [ FBE1D971EB64ABF4CE37B519307C94F1 ] OSDSvc          C:\Program Files (x86)\Dell\Dell KM632 Wireless Keyboard Caps Lock Indicator\OSDSrv.exe
08:20:03.0884 56396  OSDSvc - ok
08:20:03.0931 56396  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:20:03.0931 56396  ose - ok
08:20:04.0072 56396  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
08:20:04.0087 56396  osppsvc - ok
08:20:04.0118 56396  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
08:20:04.0118 56396  p2pimsvc - ok
08:20:04.0134 56396  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
08:20:04.0134 56396  p2psvc - ok
08:20:04.0165 56396  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
08:20:04.0165 56396  Parport - ok
08:20:04.0181 56396  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
08:20:04.0181 56396  partmgr - ok
08:20:04.0212 56396  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
08:20:04.0212 56396  PcaSvc - ok
08:20:04.0259 56396  [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{1E208CE0-FB7451FF-06020101}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
08:20:04.0259 56396  PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
08:20:04.0290 56396  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
08:20:04.0290 56396  pci - ok
08:20:04.0306 56396  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
08:20:04.0306 56396  pciide - ok
08:20:04.0321 56396  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
08:20:04.0321 56396  pcmcia - ok
08:20:04.0337 56396  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
08:20:04.0337 56396  pcw - ok
08:20:04.0352 56396  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
08:20:04.0352 56396  PEAUTH - ok
08:20:04.0384 56396  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
08:20:04.0399 56396  PerfHost - ok
08:20:04.0446 56396  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
08:20:04.0462 56396  pla - ok
08:20:04.0508 56396  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
08:20:04.0508 56396  PlugPlay - ok
08:20:04.0524 56396  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
08:20:04.0524 56396  PNRPAutoReg - ok
08:20:04.0540 56396  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
08:20:04.0540 56396  PNRPsvc - ok
08:20:04.0571 56396  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
08:20:04.0571 56396  PolicyAgent - ok
08:20:04.0602 56396  [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power           C:\Windows\system32\umpo.dll
08:20:04.0602 56396  Power - ok
08:20:04.0633 56396  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
08:20:04.0633 56396  PptpMiniport - ok
08:20:04.0649 56396  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
08:20:04.0649 56396  Processor - ok
08:20:04.0696 56396  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
08:20:04.0696 56396  ProfSvc - ok
08:20:04.0711 56396  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
08:20:04.0711 56396  ProtectedStorage - ok
08:20:04.0727 56396  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
08:20:04.0727 56396  Psched - ok
08:20:04.0758 56396  [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
08:20:04.0758 56396  PxHlpa64 - ok
08:20:04.0852 56396  [ B1A7437A886CE87B31A12A154ED33833 ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
08:20:04.0852 56396  QBCFMonitorService - ok
08:20:04.0883 56396  [ 6BEE1814470DC12FA20C53DFC3C97EBB ] QBFCService     C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
08:20:04.0898 56396  QBFCService - ok
08:20:04.0930 56396  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
08:20:04.0961 56396  ql2300 - ok
08:20:04.0961 56396  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
08:20:04.0961 56396  ql40xx - ok
08:20:04.0976 56396  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
08:20:04.0976 56396  QWAVE - ok
08:20:04.0992 56396  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
08:20:04.0992 56396  QWAVEdrv - ok
08:20:04.0992 56396  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
08:20:04.0992 56396  RasAcd - ok
08:20:05.0023 56396  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
08:20:05.0023 56396  RasAgileVpn - ok
08:20:05.0039 56396  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
08:20:05.0039 56396  RasAuto - ok
08:20:05.0054 56396  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
08:20:05.0054 56396  Rasl2tp - ok
08:20:05.0054 56396  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
08:20:05.0070 56396  RasMan - ok
08:20:05.0070 56396  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
08:20:05.0086 56396  RasPppoe - ok
08:20:05.0086 56396  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
08:20:05.0086 56396  RasSstp - ok
08:20:05.0101 56396  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
08:20:05.0117 56396  rdbss - ok
08:20:05.0117 56396  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
08:20:05.0117 56396  rdpbus - ok
08:20:05.0132 56396  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
08:20:05.0132 56396  RDPCDD - ok
08:20:05.0164 56396  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
08:20:05.0164 56396  RDPENCDD - ok
08:20:05.0164 56396  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
08:20:05.0164 56396  RDPREFMP - ok
08:20:05.0226 56396  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
08:20:05.0226 56396  RdpVideoMiniport - ok
08:20:05.0257 56396  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
08:20:05.0257 56396  RDPWD - ok
08:20:05.0288 56396  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
08:20:05.0288 56396  rdyboost - ok
08:20:05.0304 56396  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
08:20:05.0320 56396  RemoteAccess - ok
08:20:05.0335 56396  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
08:20:05.0335 56396  RemoteRegistry - ok
08:20:05.0398 56396  [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
08:20:05.0413 56396  RoxMediaDB12OEM - ok
08:20:05.0429 56396  [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12      C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
08:20:05.0429 56396  RoxWatch12 - ok
08:20:05.0476 56396  [ A780D3EAA74582EA1DEB6BD9C7A3D9C9 ] rpcapd          C:\Program Files (x86)\WinPcap\rpcapd.exe
08:20:05.0476 56396  rpcapd - ok
08:20:05.0507 56396  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
08:20:05.0507 56396  RpcEptMapper - ok
08:20:05.0522 56396  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
08:20:05.0522 56396  RpcLocator - ok
08:20:05.0538 56396  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
08:20:05.0554 56396  RpcSs - ok
08:20:05.0569 56396  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
08:20:05.0569 56396  rspndr - ok
08:20:05.0632 56396  [ A0EEA6F631349D0E0B7A6CAA7E099CB0 ] RUBotSrv        C:\Program Files (x86)\Trend Micro\RUBotted\RUBotSrv.exe
08:20:05.0647 56396  RUBotSrv - ok
08:20:05.0647 56396  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
08:20:05.0647 56396  SamSs - ok
08:20:05.0694 56396  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
08:20:05.0694 56396  SASDIFSV - ok
08:20:05.0710 56396  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
08:20:05.0710 56396  SASKUTIL - ok
08:20:05.0710 56396  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
08:20:05.0710 56396  sbp2port - ok
08:20:05.0741 56396  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
08:20:05.0741 56396  SCardSvr - ok
08:20:05.0772 56396  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
08:20:05.0772 56396  scfilter - ok
08:20:05.0788 56396  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
08:20:05.0819 56396  Schedule - ok
08:20:05.0834 56396  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
08:20:05.0834 56396  SCPolicySvc - ok
08:20:05.0850 56396  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
08:20:05.0850 56396  SDRSVC - ok
08:20:05.0866 56396  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
08:20:05.0866 56396  secdrv - ok
08:20:05.0881 56396  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
08:20:05.0881 56396  seclogon - ok
08:20:05.0881 56396  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
08:20:05.0897 56396  SENS - ok
08:20:05.0912 56396  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
08:20:05.0912 56396  SensrSvc - ok
08:20:05.0928 56396  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
08:20:05.0928 56396  Serenum - ok
08:20:05.0944 56396  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
08:20:05.0944 56396  Serial - ok
08:20:05.0944 56396  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
08:20:05.0944 56396  sermouse - ok
08:20:05.0959 56396  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
08:20:05.0975 56396  SessionEnv - ok
08:20:05.0975 56396  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
08:20:05.0975 56396  sffdisk - ok
08:20:05.0975 56396  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
08:20:05.0975 56396  sffp_mmc - ok
08:20:05.0975 56396  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
08:20:05.0975 56396  sffp_sd - ok
08:20:05.0975 56396  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
08:20:05.0975 56396  sfloppy - ok
08:20:06.0022 56396  [ 29DDEA72C5BDF61D62F4D438DC0E497C ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
08:20:06.0037 56396  SftService - ok
08:20:06.0068 56396  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
08:20:06.0084 56396  SharedAccess - ok
08:20:06.0100 56396  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:20:06.0100 56396  ShellHWDetection - ok
08:20:06.0131 56396  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
08:20:06.0131 56396  SiSRaid2 - ok
08:20:06.0131 56396  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
08:20:06.0131 56396  SiSRaid4 - ok
08:20:06.0193 56396  [ 8C4F0DCC6A5100D48F9B2F950CDD220F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
08:20:06.0193 56396  SkypeUpdate - ok
08:20:06.0209 56396  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
08:20:06.0209 56396  Smb - ok
08:20:06.0256 56396  [ 853BB5635D28ED543FE95DF59F95B5B9 ] SmbDrv          C:\Windows\system32\DRIVERS\Smb_driver.sys
08:20:06.0256 56396  SmbDrv - ok
08:20:06.0302 56396  [ 96815EC7EE4A39DFD202DF2EB44ECA54 ] SmbDrvI         C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
08:20:06.0302 56396  SmbDrvI - ok
08:20:06.0318 56396  [ 96815EC7EE4A39DFD202DF2EB44ECA54 ] SmbDrvIntel     C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
08:20:06.0318 56396  SmbDrvIntel - ok
08:20:06.0349 56396  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
08:20:06.0349 56396  SNMPTRAP - ok
08:20:06.0349 56396  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
08:20:06.0349 56396  spldr - ok
08:20:06.0380 56396  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
08:20:06.0396 56396  Spooler - ok
08:20:06.0458 56396  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
08:20:06.0521 56396  sppsvc - ok
08:20:06.0536 56396  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
08:20:06.0536 56396  sppuinotify - ok
08:20:06.0552 56396  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
08:20:06.0568 56396  srv - ok
08:20:06.0583 56396  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
08:20:06.0583 56396  srv2 - ok
08:20:06.0599 56396  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
08:20:06.0614 56396  srvnet - ok
08:20:06.0630 56396  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
08:20:06.0630 56396  SSDPSRV - ok
08:20:06.0646 56396  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
08:20:06.0646 56396  SstpSvc - ok
08:20:06.0692 56396  [ B4C983DA20E2970E21893BF0E4EE2AD8 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
08:20:06.0692 56396  ssudmdm - ok
08:20:06.0708 56396  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
08:20:06.0708 56396  stexstor - ok
08:20:06.0739 56396  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
08:20:06.0755 56396  stisvc - ok
08:20:06.0770 56396  [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr        C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
08:20:06.0770 56396  stllssvr - ok
08:20:06.0786 56396  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
08:20:06.0786 56396  swenum - ok
08:20:06.0802 56396  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
08:20:06.0802 56396  swprv - ok
08:20:06.0833 56396  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
08:20:06.0864 56396  SysMain - ok
08:20:06.0880 56396  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
08:20:06.0880 56396  TabletInputService - ok
08:20:06.0895 56396  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
08:20:06.0895 56396  TapiSrv - ok
08:20:06.0911 56396  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
08:20:06.0911 56396  TBS - ok
08:20:06.0958 56396  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
08:20:07.0004 56396  Tcpip - ok
08:20:07.0036 56396  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
08:20:07.0036 56396  TCPIP6 - ok
08:20:07.0067 56396  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
08:20:07.0067 56396  tcpipreg - ok
08:20:07.0082 56396  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
08:20:07.0082 56396  TDPIPE - ok
08:20:07.0098 56396  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
08:20:07.0098 56396  TDTCP - ok
08:20:07.0129 56396  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
08:20:07.0129 56396  tdx - ok
08:20:07.0145 56396  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
08:20:07.0145 56396  TermDD - ok
08:20:07.0160 56396  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
08:20:07.0176 56396  TermService - ok
08:20:07.0176 56396  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
08:20:07.0176 56396  Themes - ok
08:20:07.0192 56396  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
08:20:07.0192 56396  THREADORDER - ok
08:20:07.0207 56396  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
08:20:07.0207 56396  TrkWks - ok
08:20:07.0238 56396  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:20:07.0254 56396  TrustedInstaller - ok
08:20:07.0254 56396  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
08:20:07.0254 56396  tssecsrv - ok
08:20:07.0285 56396  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
08:20:07.0285 56396  TsUsbFlt - ok
08:20:07.0301 56396  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
08:20:07.0301 56396  TsUsbGD - ok
08:20:07.0316 56396  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
08:20:07.0316 56396  tunnel - ok
08:20:07.0332 56396  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
08:20:07.0332 56396  uagp35 - ok
08:20:07.0348 56396  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
08:20:07.0348 56396  udfs - ok
08:20:07.0363 56396  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
08:20:07.0379 56396  UI0Detect - ok
08:20:07.0379 56396  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
08:20:07.0394 56396  uliagpkx - ok
08:20:07.0394 56396  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
08:20:07.0410 56396  umbus - ok
08:20:07.0410 56396  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
08:20:07.0410 56396  UmPass - ok
08:20:07.0410 56396  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
08:20:07.0426 56396  upnphost - ok
08:20:07.0472 56396  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
08:20:07.0472 56396  usbaudio - ok
08:20:07.0488 56396  [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
08:20:07.0488 56396  usbccgp - ok
08:20:07.0504 56396  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
08:20:07.0504 56396  usbcir - ok
08:20:07.0519 56396  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
08:20:07.0519 56396  usbehci - ok
08:20:07.0550 56396  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
08:20:07.0566 56396  usbhub - ok
08:20:07.0566 56396  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
08:20:07.0566 56396  usbohci - ok
08:20:07.0582 56396  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
08:20:07.0582 56396  usbprint - ok
08:20:07.0613 56396  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
08:20:07.0613 56396  usbscan - ok
08:20:07.0628 56396  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:20:07.0628 56396  USBSTOR - ok
08:20:07.0660 56396  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
08:20:07.0660 56396  usbuhci - ok
08:20:07.0675 56396  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
08:20:07.0675 56396  UxSms - ok
08:20:07.0691 56396  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
08:20:07.0691 56396  VaultSvc - ok
08:20:07.0706 56396  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
08:20:07.0706 56396  vdrvroot - ok
08:20:07.0722 56396  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
08:20:07.0722 56396  vds - ok
08:20:07.0722 56396  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
08:20:07.0722 56396  vga - ok
08:20:07.0738 56396  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
08:20:07.0738 56396  VgaSave - ok
08:20:07.0753 56396  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
08:20:07.0753 56396  vhdmp - ok
08:20:07.0753 56396  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
08:20:07.0753 56396  viaide - ok
08:20:07.0769 56396  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
08:20:07.0769 56396  volmgr - ok
08:20:07.0784 56396  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
08:20:07.0784 56396  volmgrx - ok
08:20:07.0800 56396  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
08:20:07.0800 56396  volsnap - ok
08:20:07.0816 56396  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
08:20:07.0816 56396  vsmraid - ok
08:20:07.0847 56396  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
08:20:07.0878 56396  VSS - ok
08:20:07.0956 56396  [ 3AD1E72748978D8B0B3B674741E4C3E2 ] vToolbarUpdater14.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe
08:20:07.0956 56396  vToolbarUpdater14.2.0 - ok
08:20:07.0987 56396  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
08:20:07.0987 56396  vwifibus - ok
08:20:07.0987 56396  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
08:20:08.0003 56396  vwififlt - ok
08:20:08.0081 56396  [ C366AE91D2CC2C1C25380061D235C36B ] VX3000          C:\Windows\system32\DRIVERS\VX3000.sys
08:20:08.0112 56396  VX3000 - ok
08:20:08.0143 56396  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
08:20:08.0143 56396  W32Time - ok
08:20:08.0143 56396  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
08:20:08.0159 56396  WacomPen - ok
08:20:08.0174 56396  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
08:20:08.0174 56396  WANARP - ok
08:20:08.0174 56396  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
08:20:08.0174 56396  Wanarpv6 - ok
08:20:08.0237 56396  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
08:20:08.0252 56396  WatAdminSvc - ok
08:20:08.0268 56396  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
08:20:08.0299 56396  wbengine - ok
08:20:08.0315 56396  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
08:20:08.0315 56396  WbioSrvc - ok
08:20:08.0330 56396  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
08:20:08.0330 56396  wcncsvc - ok
08:20:08.0346 56396  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:20:08.0346 56396  WcsPlugInService - ok
08:20:08.0362 56396  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
08:20:08.0362 56396  Wd - ok
08:20:08.0393 56396  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
08:20:08.0408 56396  Wdf01000 - ok
08:20:08.0408 56396  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
08:20:08.0424 56396  WdiServiceHost - ok
08:20:08.0424 56396  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
08:20:08.0424 56396  WdiSystemHost - ok
08:20:08.0440 56396  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
08:20:08.0440 56396  WebClient - ok
08:20:08.0455 56396  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
08:20:08.0455 56396  Wecsvc - ok
08:20:08.0455 56396  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
08:20:08.0455 56396  wercplsupport - ok
08:20:08.0471 56396  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
08:20:08.0471 56396  WerSvc - ok
08:20:08.0486 56396  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
08:20:08.0502 56396  WfpLwf - ok
08:20:08.0518 56396  [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
08:20:08.0518 56396  WimFltr - ok
08:20:08.0533 56396  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
08:20:08.0533 56396  WIMMount - ok
08:20:08.0549 56396  WinDefend - ok
08:20:08.0549 56396  WinHttpAutoProxySvc - ok
08:20:08.0596 56396  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
08:20:08.0596 56396  Winmgmt - ok
08:20:08.0642 56396  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
08:20:08.0674 56396  WinRM - ok
08:20:08.0736 56396  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
08:20:08.0736 56396  WinUsb - ok
08:20:08.0752 56396  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
08:20:08.0767 56396  Wlansvc - ok
08:20:08.0814 56396  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
08:20:08.0814 56396  wlcrasvc - ok
08:20:08.0876 56396  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:20:08.0892 56396  wlidsvc - ok
08:20:08.0923 56396  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
08:20:08.0923 56396  WmiAcpi - ok
08:20:08.0939 56396  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
08:20:08.0939 56396  wmiApSrv - ok
08:20:08.0970 56396  WMPNetworkSvc - ok
08:20:08.0986 56396  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
08:20:08.0986 56396  WPCSvc - ok
08:20:09.0001 56396  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
08:20:09.0001 56396  WPDBusEnum - ok
08:20:09.0017 56396  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
08:20:09.0017 56396  ws2ifsl - ok
08:20:09.0048 56396  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
08:20:09.0048 56396  wscsvc - ok
08:20:09.0048 56396  WSearch - ok
08:20:09.0126 56396  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
08:20:09.0173 56396  wuauserv - ok
08:20:09.0204 56396  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
08:20:09.0204 56396  WudfPf - ok
08:20:09.0235 56396  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
08:20:09.0235 56396  WUDFRd - ok
08:20:09.0251 56396  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
08:20:09.0266 56396  wudfsvc - ok
08:20:09.0282 56396  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
08:20:09.0282 56396  WwanSvc - ok
08:20:09.0298 56396  ================ Scan global ===============================
08:20:09.0313 56396  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
08:20:09.0344 56396  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
08:20:09.0360 56396  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
08:20:09.0376 56396  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
08:20:09.0391 56396  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
08:20:09.0407 56396  [Global] - ok
08:20:09.0407 56396  ================ Scan MBR ==================================
08:20:09.0407 56396  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
08:20:09.0641 56396  \Device\Harddisk0\DR0 - ok
08:20:09.0641 56396  ================ Scan VBR ==================================
08:20:09.0656 56396  [ 26F1056CC8D267C989220BA870893050 ] \Device\Harddisk0\DR0\Partition1
08:20:09.0656 56396  \Device\Harddisk0\DR0\Partition1 - ok
08:20:09.0672 56396  [ 0EC03B2744C73F927A792E97E4755618 ] \Device\Harddisk0\DR0\Partition2
08:20:09.0672 56396  \Device\Harddisk0\DR0\Partition2 - ok
08:20:09.0672 56396  ============================================================
08:20:09.0672 56396  Scan finished
08:20:09.0672 56396  ============================================================
08:20:09.0688 6892  Detected object count: 0
08:20:09.0688 6892  Actual detected object count: 0
08:20:18.0564 53476  Deinitialize success
 



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:17 PM

Posted 15 March 2013 - 02:06 PM

Looks clean.. How is it running?


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 gregla

gregla
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:17 PM

Posted 19 March 2013 - 07:03 AM

Sorry for the late reply. It seems to be running ok now.  Thanks again for all your help!



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:17 PM

Posted 19 March 2013 - 01:46 PM

No problem, glad it's good now.
 
Now you should Create a New Restore Point (alternate method) to prevent possible reinfection from an old one. Some of the malware you picked up could have been backed up, renamed and saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.
The easiest and safest way to do this is:
  • Go to Start > All Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
Then use Disk Cleanup to remove all but the newly created Restore Point.

Edited by boopme, 19 March 2013 - 01:47 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 gregla

gregla
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:11:17 PM

Posted 19 March 2013 - 02:00 PM

I created a new restore point and removed the older ones, as you suggested.  Thanks again!






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users