Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows Security Centre is disabled and won't stay on or Automatic(Delayed Start


  • Please log in to reply
11 replies to this topic

#1 RobGlazebrook

RobGlazebrook

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Gundagai, NSW, Australia
  • Local time:05:01 PM

Posted 30 July 2013 - 01:10 AM

This computer runs windows 7 pro 32 bit and has been infected previously, (and possibly may still be).

I have run Microsoft Offline and removed a couple of virus's.

I was unable to get action center going, so performed a repair install.

System restore was disabled, so have enabled it now.

I have tried registry repair, by importing wscsvc.reg

Security center cannot be enabled form action center or from the services admin area.

In Services it shows as disabled. I can change it to Automatic (Delayed) and Apply. Seems to do that for a short time. Once Automatic I can start Security services, and the lack of antivirus is reported, but within 10 seconds or so, the process is stopped and disabled again.

Thanks for help.


Edited by RobGlazebrook, 30 July 2013 - 01:11 AM.


BC AdBot (Login to Remove)

 


#2 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:01 AM

Posted 30 July 2013 - 03:18 AM

:welcome:

 

Let's look for infection first, before curing the services that are destroyed by the malware.

 

:step1: Install and run MBAM

:step2:  Running TDSSKiller to obtain log

 

Note: Don't cure or delete a threat, but choose skip for all instead.

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters

tds2.jpg

  • In the Additional options: Check Detect TDLFS file system
  • Click Start Scan and allow the scan process to run

tds4-1.jpg

  • Choose for all threats to Skip for all of them.
  • Click Continue
  • Please post the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================

 

:step3: ESET Online Scanner

==================

Note: If your AV is blocking Eset online scanner, please temporarily disable your AV.

 

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and » UNCHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. (If no malware was found you will not be presented with a log).
  • Click the Back button.
  • Click the Finish button.

===================================================


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#3 RobGlazebrook

RobGlazebrook
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Gundagai, NSW, Australia
  • Local time:05:01 PM

Posted 30 July 2013 - 08:31 AM

Interesting challenges as I prefer to keep potentially infected systems off the net. But will connect as necessary for updates and include the logs below

 

:step1: Install and run MBAM

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.07.30.05

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 8.0.7601.17514
User :: LIFESTYLE-1232 [administrator]

30/07/2013 9:14:28 PM
MBAM-log-2013-07-30 (23-05-36).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 503587
Time elapsed: 1 hour(s), 48 minute(s), 55 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 2
C:\Users\User\Downloads\SoftonicDownloader_for_bid4build-construction-estimating-software (1).exe (PUP.Optional.Softonic) -> No action taken.
C:\Users\User\Downloads\SoftonicDownloader_for_bid4build-construction-estimating-software.exe (PUP.Optional.Softonic) -> No action taken.

(end)
 

 

 

:step2:  Running TDSSKiller to obtain log

23:07:10.0470 2188  TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19
23:07:10.0486 2188  ============================================================
23:07:10.0486 2188  Current date / time: 2013/07/30 23:07:10.0486
23:07:10.0486 2188  SystemInfo:
23:07:10.0486 2188  
23:07:10.0501 2188  OS Version: 6.1.7601 ServicePack: 1.0
23:07:10.0501 2188  Product type: Workstation
23:07:10.0501 2188  ComputerName: LIFESTYLE-1232
23:07:10.0501 2188  UserName: User
23:07:10.0501 2188  Windows directory: C:\Windows
23:07:10.0501 2188  System windows directory: C:\Windows
23:07:10.0501 2188  Processor architecture: Intel x86
23:07:10.0501 2188  Number of processors: 4
23:07:10.0501 2188  Page size: 0x1000
23:07:10.0501 2188  Boot type: Normal boot
23:07:10.0501 2188  ============================================================
23:07:11.0032 2188  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
23:07:11.0032 2188  ============================================================
23:07:11.0032 2188  \Device\Harddisk0\DR0:
23:07:11.0032 2188  MBR partitions:
23:07:11.0032 2188  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2008800, BlocksNum 0x64000
23:07:11.0032 2188  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x206C800, BlocksNum 0x119E1000
23:07:11.0032 2188  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x13A4D800, BlocksNum 0x119E0800
23:07:11.0032 2188  ============================================================
23:07:11.0063 2188  C: <-> \Device\Harddisk0\DR0\Partition2
23:07:11.0094 2188  D: <-> \Device\Harddisk0\DR0\Partition3
23:07:11.0094 2188  ============================================================
23:07:11.0094 2188  Initialize success
23:07:11.0094 2188  ============================================================
23:07:45.0414 3672  ============================================================
23:07:45.0414 3672  Scan started
23:07:45.0414 3672  Mode: Manual; TDLFS;
23:07:45.0414 3672  ============================================================
23:07:46.0413 3672  ================ Scan system memory ========================
23:07:46.0413 3672  System memory - ok
23:07:46.0413 3672  ================ Scan services =============================
23:07:46.0678 3672  [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
23:07:46.0678 3672  1394ohci - ok
23:07:46.0693 3672  [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
23:07:46.0693 3672  ACPI - ok
23:07:46.0725 3672  [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
23:07:46.0725 3672  AcpiPmi - ok
23:07:46.0803 3672  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
23:07:46.0803 3672  AdobeARMservice - ok
23:07:46.0881 3672  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
23:07:46.0881 3672  AdobeFlashPlayerUpdateSvc - ok
23:07:46.0912 3672  [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
23:07:46.0927 3672  adp94xx - ok
23:07:46.0943 3672  [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
23:07:46.0959 3672  adpahci - ok
23:07:46.0959 3672  [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
23:07:46.0959 3672  adpu320 - ok
23:07:47.0037 3672  [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
23:07:47.0037 3672  AeLookupSvc - ok
23:07:47.0052 3672  [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD             C:\Windows\system32\drivers\afd.sys
23:07:47.0068 3672  AFD - ok
23:07:47.0115 3672  [ 7E10E3BB9B258AD8A9300F91214D67B9 ] AgereSoftModem  C:\Windows\system32\DRIVERS\AGRSM.sys
23:07:47.0130 3672  AgereSoftModem - ok
23:07:47.0177 3672  [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440          C:\Windows\system32\drivers\agp440.sys
23:07:47.0177 3672  agp440 - ok
23:07:47.0208 3672  [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
23:07:47.0208 3672  aic78xx - ok
23:07:47.0239 3672  [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG             C:\Windows\System32\alg.exe
23:07:47.0239 3672  ALG - ok
23:07:47.0271 3672  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide          C:\Windows\system32\drivers\aliide.sys
23:07:47.0271 3672  aliide - ok
23:07:47.0271 3672  [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
23:07:47.0271 3672  amdagp - ok
23:07:47.0286 3672  [ CD5914170297126B6266860198D1D4F0 ] amdide          C:\Windows\system32\drivers\amdide.sys
23:07:47.0286 3672  amdide - ok
23:07:47.0302 3672  [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
23:07:47.0302 3672  AmdK8 - ok
23:07:47.0317 3672  [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
23:07:47.0317 3672  AmdPPM - ok
23:07:47.0364 3672  [ D320BF87125326F996D4904FE24300FC ] amdsata         C:\Windows\system32\drivers\amdsata.sys
23:07:47.0364 3672  amdsata - ok
23:07:47.0411 3672  [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
23:07:47.0411 3672  amdsbs - ok
23:07:47.0427 3672  [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
23:07:47.0427 3672  amdxata - ok
23:07:47.0473 3672  [ 253028304323FC7F43E1415965AEEE71 ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
23:07:47.0473 3672  ApfiltrService - ok
23:07:47.0505 3672  [ AEA177F783E20150ACE5383EE368DA19 ] AppID           C:\Windows\system32\drivers\appid.sys
23:07:47.0505 3672  AppID - ok
23:07:47.0567 3672  [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
23:07:47.0567 3672  AppIDSvc - ok
23:07:47.0598 3672  [ EACFDF31921F51C097629F1F3C9129B4 ] Appinfo         C:\Windows\System32\appinfo.dll
23:07:47.0598 3672  Appinfo - ok
23:07:47.0676 3672  [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:07:47.0676 3672  Apple Mobile Device - ok
23:07:47.0707 3672  [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt         C:\Windows\System32\appmgmts.dll
23:07:47.0707 3672  AppMgmt - ok
23:07:47.0723 3672  [ 2932004F49677BD84DBC72EDB754FFB3 ] arc             C:\Windows\system32\drivers\arc.sys
23:07:47.0723 3672  arc - ok
23:07:47.0754 3672  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
23:07:47.0754 3672  arcsas - ok
23:07:47.0770 3672  [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
23:07:47.0770 3672  AsyncMac - ok
23:07:47.0770 3672  [ 338C86357871C167A96AB976519BF59E ] atapi           C:\Windows\system32\drivers\atapi.sys
23:07:47.0785 3672  atapi - ok
23:07:47.0848 3672  [ 76BAB0C824E2D05B940C4DD40A9B08BF ] athr            C:\Windows\system32\DRIVERS\athr.sys
23:07:47.0863 3672  athr - ok
23:07:47.0895 3672  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:07:47.0910 3672  AudioEndpointBuilder - ok
23:07:47.0926 3672  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
23:07:47.0926 3672  Audiosrv - ok
23:07:47.0941 3672  [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
23:07:47.0941 3672  AxInstSV - ok
23:07:47.0988 3672  [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv         C:\Windows\system32\drivers\bxvbdx.sys
23:07:48.0004 3672  b06bdrv - ok
23:07:48.0035 3672  [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
23:07:48.0035 3672  b57nd60x - ok
23:07:48.0066 3672  [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC          C:\Windows\System32\bdesvc.dll
23:07:48.0066 3672  BDESVC - ok
23:07:48.0097 3672  [ 505506526A9D467307B3C393DEDAF858 ] Beep            C:\Windows\system32\drivers\Beep.sys
23:07:48.0097 3672  Beep - ok
23:07:48.0113 3672  [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE             C:\Windows\System32\bfe.dll
23:07:48.0129 3672  BFE - ok
23:07:48.0191 3672  [ E585445D5021971FAE10393F0F1C3961 ] BITS            C:\Windows\System32\qmgr.dll
23:07:48.0191 3672  BITS - ok
23:07:48.0207 3672  [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
23:07:48.0207 3672  blbdrive - ok
23:07:48.0285 3672  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
23:07:48.0300 3672  Bonjour Service - ok
23:07:48.0316 3672  [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
23:07:48.0316 3672  bowser - ok
23:07:48.0363 3672  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
23:07:48.0363 3672  BrFiltLo - ok
23:07:48.0363 3672  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
23:07:48.0378 3672  BrFiltUp - ok
23:07:48.0394 3672  [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
23:07:48.0394 3672  BridgeMP - ok
23:07:48.0425 3672  [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser         C:\Windows\System32\browser.dll
23:07:48.0425 3672  Browser - ok
23:07:48.0456 3672  [ 845B8CE732E67F3B4133164868C666EA ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
23:07:48.0456 3672  Brserid - ok
23:07:48.0456 3672  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
23:07:48.0472 3672  BrSerWdm - ok
23:07:48.0472 3672  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
23:07:48.0472 3672  BrUsbMdm - ok
23:07:48.0487 3672  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
23:07:48.0487 3672  BrUsbSer - ok
23:07:48.0519 3672  [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
23:07:48.0519 3672  BthEnum - ok
23:07:48.0519 3672  [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
23:07:48.0519 3672  BTHMODEM - ok
23:07:48.0565 3672  [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
23:07:48.0565 3672  BthPan - ok
23:07:48.0597 3672  [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
23:07:48.0597 3672  BTHPORT - ok
23:07:48.0628 3672  [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv         C:\Windows\system32\bthserv.dll
23:07:48.0628 3672  bthserv - ok
23:07:48.0643 3672  [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
23:07:48.0643 3672  BTHUSB - ok
23:07:48.0737 3672  [ 594F763E4AC9D4BCC545E9166412E658 ] Canon Driver Information Assist Service C:\Program Files\Canon\DIAS\CnxDIAS.exe
23:07:48.0768 3672  Canon Driver Information Assist Service - ok
23:07:48.0909 3672  catchme - ok
23:07:48.0924 3672  [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
23:07:48.0924 3672  cdfs - ok
23:07:48.0955 3672  [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
23:07:48.0955 3672  cdrom - ok
23:07:49.0002 3672  [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc     C:\Windows\System32\certprop.dll
23:07:49.0002 3672  CertPropSvc - ok
23:07:49.0002 3672  [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass        C:\Windows\system32\drivers\circlass.sys
23:07:49.0002 3672  circlass - ok
23:07:49.0033 3672  [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS            C:\Windows\system32\CLFS.sys
23:07:49.0033 3672  CLFS - ok
23:07:49.0127 3672  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:07:49.0127 3672  clr_optimization_v2.0.50727_32 - ok
23:07:49.0205 3672  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:07:49.0236 3672  clr_optimization_v4.0.30319_32 - ok
23:07:49.0267 3672  [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
23:07:49.0267 3672  CmBatt - ok
23:07:49.0267 3672  [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
23:07:49.0267 3672  cmdide - ok
23:07:49.0314 3672  [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG             C:\Windows\system32\Drivers\cng.sys
23:07:49.0314 3672  CNG - ok
23:07:49.0330 3672  [ A6023D3823C37043986713F118A89BEE ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
23:07:49.0330 3672  Compbatt - ok
23:07:49.0330 3672  [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
23:07:49.0330 3672  CompositeBus - ok
23:07:49.0345 3672  COMSysApp - ok
23:07:49.0392 3672  [ D01F685F8B4598D144B0CCE9FF95D8D5 ] cpudrv          C:\Program Files\SystemRequirementsLab\cpudrv.sys
23:07:49.0392 3672  cpudrv - ok
23:07:49.0408 3672  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
23:07:49.0408 3672  crcdisk - ok
23:07:49.0455 3672  [ 3897DFF247D9ED0006190349DE264E14 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
23:07:49.0455 3672  CryptSvc - ok
23:07:49.0501 3672  [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC             C:\Windows\system32\drivers\csc.sys
23:07:49.0517 3672  CSC - ok
23:07:49.0533 3672  [ 15F93B37F6801943360D9EB42485D5D3 ] CscService      C:\Windows\System32\cscsvc.dll
23:07:49.0548 3672  CscService - ok
23:07:49.0595 3672  [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch      C:\Windows\system32\rpcss.dll
23:07:49.0611 3672  DcomLaunch - ok
23:07:49.0642 3672  [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc       C:\Windows\System32\defragsvc.dll
23:07:49.0642 3672  defragsvc - ok
23:07:49.0673 3672  [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
23:07:49.0673 3672  DfsC - ok
23:07:49.0689 3672  [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp            C:\Windows\system32\dhcpcore.dll
23:07:49.0689 3672  Dhcp - ok
23:07:49.0720 3672  [ 1A050B0274BFB3890703D490F330C0DA ] discache        C:\Windows\system32\drivers\discache.sys
23:07:49.0720 3672  discache - ok
23:07:49.0751 3672  [ 565003F326F99802E68CA78F2A68E9FF ] Disk            C:\Windows\system32\drivers\disk.sys
23:07:49.0751 3672  Disk - ok
23:07:49.0782 3672  [ 2A958EF85DB1B61FFCA65044FA4BCE9E ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
23:07:49.0782 3672  dmvsc - ok
23:07:49.0829 3672  [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
23:07:49.0829 3672  Dnscache - ok
23:07:49.0876 3672  [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc         C:\Windows\System32\dot3svc.dll
23:07:49.0876 3672  dot3svc - ok
23:07:49.0891 3672  [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS             C:\Windows\system32\dps.dll
23:07:49.0891 3672  DPS - ok
23:07:49.0923 3672  [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
23:07:49.0938 3672  drmkaud - ok
23:07:49.0969 3672  [ 16498EBC04AE9DD07049A8884B205C05 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
23:07:49.0985 3672  DXGKrnl - ok
23:07:50.0016 3672  [ 8EEF52AD831471E323EE7364A8656D35 ] e1yexpress      C:\Windows\system32\DRIVERS\e1y6032.sys
23:07:50.0016 3672  e1yexpress - ok
23:07:50.0063 3672  [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost         C:\Windows\System32\eapsvc.dll
23:07:50.0063 3672  EapHost - ok
23:07:50.0172 3672  [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv           C:\Windows\system32\drivers\evbdx.sys
23:07:50.0266 3672  ebdrv - ok
23:07:50.0297 3672  [ 81951F51E318AECC2D68559E47485CC4 ] EFS             C:\Windows\System32\lsass.exe
23:07:50.0297 3672  EFS - ok
23:07:50.0375 3672  [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
23:07:50.0375 3672  ehRecvr - ok
23:07:50.0391 3672  [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched         C:\Windows\ehome\ehsched.exe
23:07:50.0391 3672  ehSched - ok
23:07:50.0453 3672  [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor         C:\Windows\system32\drivers\elxstor.sys
23:07:50.0453 3672  elxstor - ok
23:07:50.0469 3672  [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
23:07:50.0469 3672  ErrDev - ok
23:07:50.0531 3672  [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem     C:\Windows\system32\es.dll
23:07:50.0531 3672  EventSystem - ok
23:07:50.0671 3672  [ A57BE3307ADA2FC086B5B43135735283 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
23:07:50.0687 3672  EvtEng - ok
23:07:50.0718 3672  [ 2DC9108D74081149CC8B651D3A26207F ] exfat           C:\Windows\system32\drivers\exfat.sys
23:07:50.0734 3672  exfat - ok
23:07:50.0734 3672  [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
23:07:50.0734 3672  fastfat - ok
23:07:50.0781 3672  [ 967EA5B213E9984CBE270205DF37755B ] Fax             C:\Windows\system32\fxssvc.exe
23:07:50.0781 3672  Fax - ok
23:07:50.0812 3672  [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc             C:\Windows\system32\drivers\fdc.sys
23:07:50.0827 3672  fdc - ok
23:07:50.0874 3672  [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost         C:\Windows\system32\fdPHost.dll
23:07:50.0874 3672  fdPHost - ok
23:07:50.0890 3672  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub        C:\Windows\system32\fdrespub.dll
23:07:50.0890 3672  FDResPub - ok
23:07:50.0905 3672  [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
23:07:50.0905 3672  FileInfo - ok
23:07:50.0905 3672  [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
23:07:50.0905 3672  Filetrace - ok
23:07:50.0921 3672  [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
23:07:50.0921 3672  flpydisk - ok
23:07:50.0921 3672  [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
23:07:50.0921 3672  FltMgr - ok
23:07:50.0952 3672  [ FA6C66E4364D7DA57AADE5DCC03BB999 ] FontCache       C:\Windows\system32\FntCache.dll
23:07:50.0968 3672  FontCache - ok
23:07:51.0030 3672  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
23:07:51.0030 3672  FontCache3.0.0.0 - ok
23:07:51.0046 3672  [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
23:07:51.0046 3672  FsDepends - ok
23:07:51.0093 3672  [ D909075FA72C090F27AA926C32CB4612 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
23:07:51.0093 3672  fssfltr - ok
23:07:51.0171 3672  [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc          C:\Program Files\Windows Live\Family Safety\fsssvc.exe
23:07:51.0202 3672  fsssvc - ok
23:07:51.0233 3672  [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
23:07:51.0233 3672  Fs_Rec - ok
23:07:51.0264 3672  [ 49E588AC7D2B57F057756A91C6F36D25 ] FUJ02B1         C:\Windows\system32\DRIVERS\FUJ02B1.sys
23:07:51.0264 3672  FUJ02B1 - ok
23:07:51.0280 3672  [ D45474A7E5E2F35150C29A3193747884 ] FUJ02E3         C:\Windows\system32\DRIVERS\FUJ02E3.sys
23:07:51.0280 3672  FUJ02E3 - ok
23:07:51.0327 3672  [ E306A24D9694C724FA2491278BF50FDB ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
23:07:51.0327 3672  fvevol - ok
23:07:51.0358 3672  [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
23:07:51.0358 3672  gagp30kx - ok
23:07:51.0389 3672  [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:07:51.0389 3672  GEARAspiWDM - ok
23:07:51.0451 3672  [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc           C:\Windows\System32\gpsvc.dll
23:07:51.0451 3672  gpsvc - ok
23:07:51.0529 3672  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
23:07:51.0529 3672  gupdate - ok
23:07:51.0529 3672  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
23:07:51.0529 3672  gupdatem - ok
23:07:51.0576 3672  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
23:07:51.0592 3672  gusvc - ok
23:07:51.0623 3672  [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
23:07:51.0623 3672  hcw85cir - ok
23:07:51.0654 3672  [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
23:07:51.0654 3672  HDAudBus - ok
23:07:51.0685 3672  [ A88485DC6A7136C10D9A6C7E38FDFE3C ] HECI            C:\Windows\system32\DRIVERS\HECI.sys
23:07:51.0685 3672  HECI - ok
23:07:51.0685 3672  [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
23:07:51.0685 3672  HidBatt - ok
23:07:51.0701 3672  [ 89448F40E6DF260C206A193A4683BA78 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
23:07:51.0701 3672  HidBth - ok
23:07:51.0701 3672  [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr           C:\Windows\system32\drivers\hidir.sys
23:07:51.0701 3672  HidIr - ok
23:07:51.0748 3672  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv         C:\Windows\System32\hidserv.dll
23:07:51.0748 3672  hidserv - ok
23:07:51.0748 3672  [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
23:07:51.0748 3672  HidUsb - ok
23:07:51.0779 3672  [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc          C:\Windows\system32\kmsvc.dll
23:07:51.0779 3672  hkmsvc - ok
23:07:51.0795 3672  [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:07:51.0795 3672  HomeGroupListener - ok
23:07:51.0841 3672  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:07:51.0841 3672  HomeGroupProvider - ok
23:07:51.0951 3672  [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08        C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
23:07:51.0951 3672  hpqcxs08 - ok
23:07:51.0966 3672  [ F3F72A2A86C22610BCA5439FA789DD52 ] hpqddsvc        C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
23:07:51.0966 3672  hpqddsvc - ok
23:07:51.0982 3672  [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
23:07:51.0982 3672  HpSAMD - ok
23:07:51.0997 3672  [ 871917B07A141BFF43D76D8844D48106 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
23:07:51.0997 3672  HTTP - ok
23:07:52.0029 3672  [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
23:07:52.0029 3672  hwpolicy - ok
23:07:52.0029 3672  [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
23:07:52.0044 3672  i8042prt - ok
23:07:52.0075 3672  [ EDF5ECC965FAAA533D35E02F47B9132E ] iaStor          C:\Windows\system32\drivers\iaStor.sys
23:07:52.0075 3672  iaStor - ok
23:07:52.0122 3672  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
23:07:52.0122 3672  iaStorV - ok
23:07:52.0200 3672  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
23:07:52.0200 3672  IDriverT - ok
23:07:52.0263 3672  [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
23:07:52.0278 3672  idsvc - ok
23:07:52.0434 3672  [ FAF70667BE6D1E1FFBACC8D4FC15D645 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
23:07:52.0575 3672  igfx - ok
23:07:52.0621 3672  [ 4173FF5708F3236CF25195FECD742915 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
23:07:52.0621 3672  iirsp - ok
23:07:52.0668 3672  [ F95622F161474511B8D80D6B093AA610 ] IKEEXT          C:\Windows\System32\ikeext.dll
23:07:52.0668 3672  IKEEXT - ok
23:07:52.0699 3672  [ 2DB41BA61D5E44D0667CF126D35DCF34 ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
23:07:52.0699 3672  Impcd - ok
23:07:52.0777 3672  [ B29E79C67F3779E70BA187E31B639EBC ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
23:07:52.0809 3672  IntcAzAudAddService - ok
23:07:52.0840 3672  [ 29061F25ABB6E60A5B49FBEED7A5698A ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
23:07:52.0840 3672  IntcDAud - ok
23:07:52.0887 3672  [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide        C:\Windows\system32\drivers\intelide.sys
23:07:52.0887 3672  intelide - ok
23:07:52.0902 3672  [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
23:07:52.0902 3672  intelppm - ok
23:07:52.0933 3672  [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
23:07:52.0949 3672  IPBusEnum - ok
23:07:52.0965 3672  [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:07:52.0965 3672  IpFilterDriver - ok
23:07:53.0011 3672  [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
23:07:53.0011 3672  iphlpsvc - ok
23:07:53.0011 3672  [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
23:07:53.0027 3672  IPMIDRV - ok
23:07:53.0027 3672  [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
23:07:53.0027 3672  IPNAT - ok
23:07:53.0058 3672  [ 42996CFF20A3084A56017B7902307E9F ] IRENUM          C:\Windows\system32\drivers\irenum.sys
23:07:53.0058 3672  IRENUM - ok
23:07:53.0074 3672  [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
23:07:53.0074 3672  isapnp - ok
23:07:53.0105 3672  [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
23:07:53.0105 3672  iScsiPrt - ok
23:07:53.0136 3672  [ 54C47D350DF2ABC2CCD78B7587F77EAD ] k57nd60x        C:\Windows\system32\DRIVERS\k57nd60x.sys
23:07:53.0136 3672  k57nd60x - ok
23:07:53.0136 3672  [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
23:07:53.0136 3672  kbdclass - ok
23:07:53.0152 3672  [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
23:07:53.0152 3672  kbdhid - ok
23:07:53.0183 3672  [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso          C:\Windows\system32\lsass.exe
23:07:53.0183 3672  KeyIso - ok
23:07:53.0214 3672  [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
23:07:53.0214 3672  KSecDD - ok
23:07:53.0245 3672  [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
23:07:53.0245 3672  KSecPkg - ok
23:07:53.0292 3672  [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm           C:\Windows\system32\msdtckrm.dll
23:07:53.0292 3672  KtmRm - ok
23:07:53.0323 3672  [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer    C:\Windows\System32\srvsvc.dll
23:07:53.0323 3672  LanmanServer - ok
23:07:53.0370 3672  [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:07:53.0370 3672  LanmanWorkstation - ok
23:07:53.0401 3672  [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
23:07:53.0417 3672  lltdio - ok
23:07:53.0448 3672  [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
23:07:53.0448 3672  lltdsvc - ok
23:07:53.0479 3672  [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts         C:\Windows\System32\lmhsvc.dll
23:07:53.0479 3672  lmhosts - ok
23:07:53.0542 3672  [ F622A3C0C10A26C1DC789CDEB0B2A4EB ] LMIGuardianSvc  C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
23:07:53.0542 3672  LMIGuardianSvc - ok
23:07:53.0573 3672  [ 4477689E2D8AE6B78BA34C9AF4CC1ED1 ] lmimirr         C:\Windows\system32\DRIVERS\lmimirr.sys
23:07:53.0573 3672  lmimirr - ok
23:07:53.0604 3672  [ 3FAA563DDF853320F90259D455A01D79 ] LMIRfsDriver    C:\windows\system32\drivers\LMIRfsDriver.sys
23:07:53.0604 3672  LMIRfsDriver - ok
23:07:53.0667 3672  [ A1C148801B4AF64847AEB9F3AD9594EF ] LMS             C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe
23:07:53.0667 3672  LMS - ok
23:07:53.0713 3672  [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
23:07:53.0713 3672  LSI_FC - ok
23:07:53.0713 3672  [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
23:07:53.0729 3672  LSI_SAS - ok
23:07:53.0729 3672  [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
23:07:53.0729 3672  LSI_SAS2 - ok
23:07:53.0745 3672  [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
23:07:53.0745 3672  LSI_SCSI - ok
23:07:53.0745 3672  [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv           C:\Windows\system32\drivers\luafv.sys
23:07:53.0745 3672  luafv - ok
23:07:53.0776 3672  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
23:07:53.0776 3672  Mcx2Svc - ok
23:07:53.0791 3672  [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas         C:\Windows\system32\drivers\megasas.sys
23:07:53.0791 3672  megasas - ok
23:07:53.0791 3672  [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
23:07:53.0791 3672  MegaSR - ok
23:07:53.0838 3672  [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS           C:\Windows\system32\mmcss.dll
23:07:53.0838 3672  MMCSS - ok
23:07:53.0869 3672  [ F001861E5700EE84E2D4E52C712F4964 ] Modem           C:\Windows\system32\drivers\modem.sys
23:07:53.0869 3672  Modem - ok
23:07:53.0869 3672  [ 79D10964DE86B292320E9DFE02282A23 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
23:07:53.0869 3672  monitor - ok
23:07:53.0869 3672  [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
23:07:53.0869 3672  mouclass - ok
23:07:53.0885 3672  [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
23:07:53.0885 3672  mouhid - ok
23:07:53.0885 3672  [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
23:07:53.0885 3672  mountmgr - ok
23:07:53.0916 3672  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio            C:\Windows\system32\drivers\mpio.sys
23:07:53.0916 3672  mpio - ok
23:07:53.0916 3672  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
23:07:53.0916 3672  mpsdrv - ok
23:07:53.0932 3672  [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc          C:\Windows\system32\mpssvc.dll
23:07:53.0947 3672  MpsSvc - ok
23:07:53.0979 3672  [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
23:07:53.0979 3672  MRxDAV - ok
23:07:54.0010 3672  [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
23:07:54.0010 3672  mrxsmb - ok
23:07:54.0025 3672  [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:07:54.0025 3672  mrxsmb10 - ok
23:07:54.0041 3672  [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:07:54.0041 3672  mrxsmb20 - ok
23:07:54.0057 3672  [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci          C:\Windows\system32\drivers\msahci.sys
23:07:54.0057 3672  msahci - ok
23:07:54.0072 3672  [ 55055F8AD8BE27A64C831322A780A228 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
23:07:54.0072 3672  msdsm - ok
23:07:54.0088 3672  [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC           C:\Windows\System32\msdtc.exe
23:07:54.0088 3672  MSDTC - ok
23:07:54.0103 3672  [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs            C:\Windows\system32\drivers\Msfs.sys
23:07:54.0119 3672  Msfs - ok
23:07:54.0150 3672  [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
23:07:54.0150 3672  mshidkmdf - ok
23:07:54.0150 3672  [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
23:07:54.0150 3672  msisadrv - ok
23:07:54.0181 3672  [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
23:07:54.0197 3672  MSiSCSI - ok
23:07:54.0197 3672  msiserver - ok
23:07:54.0213 3672  [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
23:07:54.0213 3672  MSKSSRV - ok
23:07:54.0228 3672  [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
23:07:54.0244 3672  MSPCLOCK - ok
23:07:54.0244 3672  [ F456E973590D663B1073E9C463B40932 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
23:07:54.0244 3672  MSPQM - ok
23:07:54.0259 3672  [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
23:07:54.0259 3672  MsRPC - ok
23:07:54.0275 3672  [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
23:07:54.0275 3672  mssmbios - ok
23:07:54.0306 3672  [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
23:07:54.0306 3672  MSTEE - ok
23:07:54.0306 3672  [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
23:07:54.0306 3672  MTConfig - ok
23:07:54.0322 3672  [ 159FAD02F64E6381758C990F753BCC80 ] Mup             C:\Windows\system32\Drivers\mup.sys
23:07:54.0322 3672  Mup - ok
23:07:54.0353 3672  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent        C:\Windows\system32\qagentRT.dll
23:07:54.0353 3672  napagent - ok
23:07:54.0369 3672  [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
23:07:54.0384 3672  NativeWifiP - ok
23:07:54.0431 3672  [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS            C:\Windows\system32\drivers\ndis.sys
23:07:54.0431 3672  NDIS - ok
23:07:54.0462 3672  [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
23:07:54.0462 3672  NdisCap - ok
23:07:54.0493 3672  [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
23:07:54.0493 3672  NdisTapi - ok
23:07:54.0509 3672  [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
23:07:54.0509 3672  Ndisuio - ok
23:07:54.0509 3672  [ 38FBE267E7E6983311179230FACB1017 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
23:07:54.0509 3672  NdisWan - ok
23:07:54.0525 3672  [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
23:07:54.0525 3672  NDProxy - ok
23:07:54.0603 3672  [ B90E093E7A7250906F1054418B5339C0 ] Nero BackItUp Scheduler 4.0 C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
23:07:54.0618 3672  Nero BackItUp Scheduler 4.0 - ok
23:07:54.0649 3672  [ 510C138564486FF926A3F773205C63D1 ] Net Driver HPZ12 C:\windows\system32\HPZinw12.dll
23:07:54.0649 3672  Net Driver HPZ12 - ok
23:07:54.0681 3672  [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
23:07:54.0696 3672  NetBIOS - ok
23:07:54.0696 3672  [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
23:07:54.0696 3672  NetBT - ok
23:07:54.0712 3672  [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon        C:\Windows\system32\lsass.exe
23:07:54.0712 3672  Netlogon - ok
23:07:54.0759 3672  [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman          C:\Windows\System32\netman.dll
23:07:54.0759 3672  Netman - ok
23:07:54.0774 3672  [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm        C:\Windows\System32\netprofm.dll
23:07:54.0790 3672  netprofm - ok
23:07:54.0821 3672  [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:07:54.0821 3672  NetTcpPortSharing - ok
23:07:54.0977 3672  [ EF51B405AD8ACAAE6F0231290D20F516 ] NETw5s32        C:\Windows\system32\DRIVERS\NETw5s32.sys
23:07:55.0133 3672  NETw5s32 - ok
23:07:55.0258 3672  [ 58218EC6B61B1169CF54AAB0D00F5FE2 ] netw5v32        C:\Windows\system32\DRIVERS\netw5v32.sys
23:07:55.0351 3672  netw5v32 - ok
23:07:55.0383 3672  [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
23:07:55.0398 3672  nfrd960 - ok
23:07:55.0429 3672  [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc          C:\Windows\System32\nlasvc.dll
23:07:55.0429 3672  NlaSvc - ok
23:07:55.0476 3672  [ 8828A0A581396D87110973ADCDA034F2 ] nlsX86cc        C:\windows\system32\NLSSRV32.EXE
23:07:55.0476 3672  nlsX86cc - ok
23:07:55.0492 3672  [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
23:07:55.0492 3672  Npfs - ok
23:07:55.0523 3672  [ BA387E955E890C8A88306D9B8D06BF17 ] nsi             C:\Windows\system32\nsisvc.dll
23:07:55.0539 3672  nsi - ok
23:07:55.0539 3672  [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
23:07:55.0539 3672  nsiproxy - ok
23:07:55.0601 3672  [ 5E43D2B0EE64123D4880DFA6626DEFDE ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
23:07:55.0617 3672  Ntfs - ok
23:07:55.0663 3672  [ F9756A98D69098DCA8945D62858A812C ] Null            C:\Windows\system32\drivers\Null.sys
23:07:55.0663 3672  Null - ok
23:07:55.0695 3672  [ A0A9E53B4AAC3C6534A063ABA69BC19F ] NVHDA           C:\Windows\system32\drivers\nvhda32v.sys
23:07:55.0695 3672  NVHDA - ok
23:07:55.0929 3672  [ AFB33A823AABC112FC7BD62AFBCDB0CD ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:07:56.0147 3672  nvlddmkm - ok
23:07:56.0178 3672  [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
23:07:56.0178 3672  nvraid - ok
23:07:56.0209 3672  [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
23:07:56.0209 3672  nvstor - ok
23:07:56.0256 3672  [ 782945716AD010AC3D41758E8E52C735 ] nvsvc           C:\Windows\system32\nvvsvc.exe
23:07:56.0272 3672  nvsvc - ok
23:07:56.0365 3672  [ A974E5C310B9B00894070CEB055D467F ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
23:07:56.0381 3672  nvUpdatusService - ok
23:07:56.0397 3672  [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
23:07:56.0397 3672  nv_agp - ok
23:07:56.0443 3672  [ D955D5DE998DB2476BF0892BE3A96C26 ] O2Flash         c:\Windows\system32\o2flash.exe
23:07:56.0443 3672  O2Flash - ok
23:07:56.0459 3672  [ 0D73F7D68575D3A548219F9BABA166FB ] O2MDRDR         C:\Windows\system32\DRIVERS\o2media.sys
23:07:56.0459 3672  O2MDRDR - ok
23:07:56.0475 3672  [ E5E4F48A17CDD4683936B06563BA1C51 ] O2SDRDR         C:\Windows\system32\DRIVERS\o2sd.sys
23:07:56.0475 3672  O2SDRDR - ok
23:07:56.0568 3672  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
23:07:56.0568 3672  odserv - ok
23:07:56.0615 3672  [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
23:07:56.0615 3672  ohci1394 - ok
23:07:56.0677 3672  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:07:56.0677 3672  ose - ok
23:07:56.0724 3672  [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
23:07:56.0740 3672  p2pimsvc - ok
23:07:56.0771 3672  [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc          C:\Windows\system32\p2psvc.dll
23:07:56.0771 3672  p2psvc - ok
23:07:56.0802 3672  [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport         C:\Windows\system32\drivers\parport.sys
23:07:56.0802 3672  Parport - ok
23:07:56.0833 3672  [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
23:07:56.0833 3672  partmgr - ok
23:07:56.0849 3672  [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
23:07:56.0849 3672  Parvdm - ok
23:07:56.0880 3672  [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc          C:\Windows\System32\pcasvc.dll
23:07:56.0880 3672  PcaSvc - ok
23:07:56.0989 3672  [ A88F42AD20418620D08A13AD1A70C083 ] PCDSRVC{F819FCA4-67B3B36D-06000000}_0 c:\program files\fujitsu hardware diagnostics tool\pcdsrvc.pkms
23:07:57.0036 3672  PCDSRVC{F819FCA4-67B3B36D-06000000}_0 - ok
23:07:57.0052 3672  [ 673E55C3498EB970088E812EA820AA8F ] pci             C:\Windows\system32\drivers\pci.sys
23:07:57.0067 3672  pci - ok
23:07:57.0083 3672  [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide          C:\Windows\system32\drivers\pciide.sys
23:07:57.0083 3672  pciide - ok
23:07:57.0099 3672  [ F396431B31693E71E8A80687EF523506 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
23:07:57.0099 3672  pcmcia - ok
23:07:57.0099 3672  [ 250F6B43D2B613172035C6747AEEB19F ] pcw             C:\Windows\system32\drivers\pcw.sys
23:07:57.0099 3672  pcw - ok
23:07:57.0145 3672  [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
23:07:57.0145 3672  PEAUTH - ok
23:07:57.0208 3672  [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
23:07:57.0223 3672  PeerDistSvc - ok
23:07:57.0301 3672  [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla             C:\Windows\system32\pla.dll
23:07:57.0317 3672  pla - ok
23:07:57.0379 3672  [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
23:07:57.0395 3672  PlugPlay - ok
23:07:57.0442 3672  [ 37E5E8FFBAD35605DAEEC3224EA0E465 ] Pml Driver HPZ12 C:\windows\system32\HPZipm12.dll
23:07:57.0442 3672  Pml Driver HPZ12 - ok
23:07:57.0473 3672  [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
23:07:57.0473 3672  PNRPAutoReg - ok
23:07:57.0504 3672  [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
23:07:57.0520 3672  PNRPsvc - ok
23:07:57.0567 3672  [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
23:07:57.0567 3672  PolicyAgent - ok
23:07:57.0613 3672  [ F87D30E72E03D579A5199CCB3831D6EA ] Power           C:\Windows\system32\umpo.dll
23:07:57.0629 3672  Power - ok
23:07:57.0707 3672  [ D384518BBD4DC0FEE1A57675CB2032C9 ] PowerSavingUtilityService c:\Program Files\Fujitsu\PSUtility\PSUService.exe
23:07:57.0707 3672  PowerSavingUtilityService - ok
23:07:57.0754 3672  [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
23:07:57.0754 3672  PptpMiniport - ok
23:07:57.0769 3672  [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor       C:\Windows\system32\drivers\processr.sys
23:07:57.0769 3672  Processor - ok
23:07:57.0816 3672  [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc         C:\Windows\system32\profsvc.dll
23:07:57.0816 3672  ProfSvc - ok
23:07:57.0832 3672  [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
23:07:57.0832 3672  ProtectedStorage - ok
23:07:57.0847 3672  [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
23:07:57.0847 3672  Psched - ok
23:07:57.0879 3672  [ 40FEDD328F98245AD201CF5F9F311724 ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
23:07:57.0879 3672  PxHelp20 - ok
23:07:57.0910 3672  [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
23:07:57.0941 3672  ql2300 - ok
23:07:57.0957 3672  [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
23:07:57.0957 3672  ql40xx - ok
23:07:57.0988 3672  [ 31AC809E7707EB580B2BDB760390765A ] QWAVE           C:\Windows\system32\qwave.dll
23:07:57.0988 3672  QWAVE - ok
23:07:58.0003 3672  [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
23:07:58.0003 3672  QWAVEdrv - ok
23:07:58.0003 3672  [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
23:07:58.0003 3672  RasAcd - ok
23:07:58.0050 3672  [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
23:07:58.0050 3672  RasAgileVpn - ok
23:07:58.0066 3672  [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto         C:\Windows\System32\rasauto.dll
23:07:58.0066 3672  RasAuto - ok
23:07:58.0081 3672  [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
23:07:58.0097 3672  Rasl2tp - ok
23:07:58.0113 3672  [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan          C:\Windows\System32\rasmans.dll
23:07:58.0113 3672  RasMan - ok
23:07:58.0128 3672  [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
23:07:58.0128 3672  RasPppoe - ok
23:07:58.0128 3672  [ 44101F495A83EA6401D886E7FD70096B ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
23:07:58.0128 3672  RasSstp - ok
23:07:58.0159 3672  [ D528BC58A489409BA40334EBF96A311B ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
23:07:58.0159 3672  rdbss - ok
23:07:58.0175 3672  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
23:07:58.0175 3672  rdpbus - ok
23:07:58.0191 3672  [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
23:07:58.0191 3672  RDPCDD - ok
23:07:58.0237 3672  [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
23:07:58.0237 3672  RDPDR - ok
23:07:58.0253 3672  [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
23:07:58.0269 3672  RDPENCDD - ok
23:07:58.0269 3672  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
23:07:58.0269 3672  RDPREFMP - ok
23:07:58.0300 3672  [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
23:07:58.0300 3672  RDPWD - ok
23:07:58.0315 3672  [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
23:07:58.0315 3672  rdyboost - ok
23:07:58.0378 3672  [ A171029D6B6C2D93C22861A347F43C2A ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
23:07:58.0378 3672  RegSrvc - ok
23:07:58.0440 3672  [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess    C:\Windows\System32\mprdim.dll
23:07:58.0440 3672  RemoteAccess - ok
23:07:58.0471 3672  [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
23:07:58.0471 3672  RemoteRegistry - ok
23:07:58.0503 3672  [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
23:07:58.0518 3672  RFCOMM - ok
23:07:58.0612 3672  [ 7CCAEBCAB6FC1ED0206C07E083E79207 ] RichVideo       c:\Program Files\CyberLink\Shared files\RichVideo.exe
23:07:58.0612 3672  RichVideo - ok
23:07:58.0627 3672  [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
23:07:58.0643 3672  RpcEptMapper - ok
23:07:58.0674 3672  [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator      C:\Windows\system32\locator.exe
23:07:58.0674 3672  RpcLocator - ok
23:07:58.0721 3672  [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs           C:\Windows\system32\rpcss.dll
23:07:58.0721 3672  RpcSs - ok
23:07:58.0768 3672  [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
23:07:58.0783 3672  rspndr - ok
23:07:58.0815 3672  [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
23:07:58.0815 3672  s3cap - ok
23:07:58.0830 3672  [ 81951F51E318AECC2D68559E47485CC4 ] SamSs           C:\Windows\system32\lsass.exe
23:07:58.0846 3672  SamSs - ok
23:07:58.0846 3672  [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
23:07:58.0861 3672  sbp2port - ok
23:07:58.0877 3672  [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
23:07:58.0877 3672  SCardSvr - ok
23:07:58.0908 3672  [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
23:07:58.0908 3672  scfilter - ok
23:07:58.0955 3672  [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule        C:\Windows\system32\schedsvc.dll
23:07:58.0971 3672  Schedule - ok
23:07:59.0002 3672  [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc     C:\Windows\System32\certprop.dll
23:07:59.0002 3672  SCPolicySvc - ok
23:07:59.0049 3672  [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
23:07:59.0049 3672  SDRSVC - ok
23:07:59.0095 3672  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
23:07:59.0095 3672  secdrv - ok
23:07:59.0111 3672  [ A59B3A4442C52060CC7A85293AA3546F ] seclogon        C:\Windows\system32\seclogon.dll
23:07:59.0111 3672  seclogon - ok
23:07:59.0111 3672  [ DCB7FCDCC97F87360F75D77425B81737 ] SENS            C:\Windows\system32\sens.dll
23:07:59.0111 3672  SENS - ok
23:07:59.0158 3672  [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc        C:\Windows\system32\sensrsvc.dll
23:07:59.0173 3672  SensrSvc - ok
23:07:59.0189 3672  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum         C:\Windows\system32\drivers\serenum.sys
23:07:59.0189 3672  Serenum - ok
23:07:59.0189 3672  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial          C:\Windows\system32\drivers\serial.sys
23:07:59.0189 3672  Serial - ok
23:07:59.0205 3672  [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
23:07:59.0205 3672  sermouse - ok
23:07:59.0236 3672  [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv      C:\Windows\system32\sessenv.dll
23:07:59.0236 3672  SessionEnv - ok
23:07:59.0251 3672  [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
23:07:59.0251 3672  sffdisk - ok
23:07:59.0251 3672  [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
23:07:59.0251 3672  sffp_mmc - ok
23:07:59.0251 3672  [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
23:07:59.0267 3672  sffp_sd - ok
23:07:59.0267 3672  [ DB96666CC8312EBC45032F30B007A547 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
23:07:59.0267 3672  sfloppy - ok
23:07:59.0329 3672  [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
23:07:59.0329 3672  SharedAccess - ok
23:07:59.0345 3672  [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:07:59.0361 3672  ShellHWDetection - ok
23:07:59.0361 3672  [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp          C:\Windows\system32\drivers\sisagp.sys
23:07:59.0361 3672  sisagp - ok
23:07:59.0392 3672  [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
23:07:59.0392 3672  SiSRaid2 - ok
23:07:59.0392 3672  [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
23:07:59.0392 3672  SiSRaid4 - ok
23:07:59.0423 3672  [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb             C:\Windows\system32\DRIVERS\smb.sys
23:07:59.0423 3672  Smb - ok
23:07:59.0454 3672  [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
23:07:59.0454 3672  SNMPTRAP - ok
23:07:59.0563 3672  [ 24DFA2657D916292ABBAD91ACD921A52 ] SNP2UVC         C:\Windows\system32\DRIVERS\snp2uvc.sys
23:07:59.0657 3672  SNP2UVC - ok
23:07:59.0704 3672  [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr           C:\Windows\system32\drivers\spldr.sys
23:07:59.0704 3672  spldr - ok
23:07:59.0719 3672  [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler         C:\Windows\System32\spoolsv.exe
23:07:59.0735 3672  Spooler - ok
23:07:59.0844 3672  [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc          C:\Windows\system32\sppsvc.exe
23:07:59.0922 3672  sppsvc - ok
23:07:59.0953 3672  [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
23:07:59.0953 3672  sppuinotify - ok
23:07:59.0985 3672  [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv             C:\Windows\system32\DRIVERS\srv.sys
23:07:59.0985 3672  srv - ok
23:08:00.0000 3672  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
23:08:00.0000 3672  srv2 - ok
23:08:00.0016 3672  [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
23:08:00.0031 3672  srvnet - ok
23:08:00.0031 3672  [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
23:08:00.0047 3672  SSDPSRV - ok
23:08:00.0047 3672  [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
23:08:00.0047 3672  SstpSvc - ok
23:08:00.0141 3672  [ C354621B6B94E10AE7F5CDBE745FEB86 ] Stereo Service  C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
23:08:00.0141 3672  Stereo Service - ok
23:08:00.0187 3672  [ DB32D325C192B801DF274BFD12A7E72B ] stexstor        C:\Windows\system32\drivers\stexstor.sys
23:08:00.0187 3672  stexstor - ok
23:08:00.0234 3672  [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc          C:\Windows\System32\wiaservc.dll
23:08:00.0234 3672  StiSvc - ok
23:08:00.0281 3672  [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
23:08:00.0281 3672  storflt - ok
23:08:00.0328 3672  [ 0BF669F0A910BEDA4A32258D363AF2A5 ] StorSvc         C:\Windows\system32\storsvc.dll
23:08:00.0328 3672  StorSvc - ok
23:08:00.0359 3672  [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
23:08:00.0359 3672  storvsc - ok
23:08:00.0390 3672  [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
23:08:00.0390 3672  swenum - ok
23:08:00.0453 3672  [ A28BD92DF340E57B024BA433165D34D7 ] swprv           C:\Windows\System32\swprv.dll
23:08:00.0468 3672  swprv - ok
23:08:00.0499 3672  [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain         C:\Windows\system32\sysmain.dll
23:08:00.0515 3672  SysMain - ok
23:08:00.0546 3672  [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:08:00.0546 3672  TabletInputService - ok
23:08:00.0577 3672  [ 613BF4820361543956909043A265C6AC ] TapiSrv         C:\Windows\System32\tapisrv.dll
23:08:00.0577 3672  TapiSrv - ok
23:08:00.0609 3672  [ B799D9FDB26111737F58288D8DC172D9 ] TBS             C:\Windows\System32\tbssvc.dll
23:08:00.0609 3672  TBS - ok
23:08:00.0655 3672  [ D32FDAC73FCD76B85389C39BC1087F2A ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
23:08:00.0671 3672  Tcpip - ok
23:08:00.0687 3672  [ D32FDAC73FCD76B85389C39BC1087F2A ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
23:08:00.0687 3672  TCPIP6 - ok
23:08:00.0718 3672  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
23:08:00.0718 3672  tcpipreg - ok
23:08:00.0749 3672  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
23:08:00.0749 3672  TDPIPE - ok
23:08:00.0780 3672  [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
23:08:00.0796 3672  TDTCP - ok
23:08:00.0811 3672  [ B459575348C20E8121D6039DA063C704 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
23:08:00.0811 3672  tdx - ok
23:08:00.0827 3672  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
23:08:00.0827 3672  TermDD - ok
23:08:00.0874 3672  [ 382C804C92811BE57829D8E550A900E2 ] TermService     C:\Windows\System32\termsrv.dll
23:08:00.0889 3672  TermService - ok
23:08:00.0905 3672  [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes          C:\Windows\system32\themeservice.dll
23:08:00.0905 3672  Themes - ok
23:08:00.0921 3672  [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER     C:\Windows\system32\mmcss.dll
23:08:00.0921 3672  THREADORDER - ok
23:08:00.0936 3672  [ 5AD05191DC8B444A7BA4D79B76C42A30 ] TPM             C:\Windows\system32\drivers\tpm.sys
23:08:00.0936 3672  TPM - ok
23:08:00.0952 3672  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks          C:\Windows\System32\trkwks.dll
23:08:00.0967 3672  TrkWks - ok
23:08:01.0030 3672  [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:08:01.0030 3672  TrustedInstaller - ok
23:08:01.0061 3672  [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
23:08:01.0077 3672  tssecsrv - ok
23:08:01.0092 3672  [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
23:08:01.0092 3672  TsUsbFlt - ok
23:08:01.0092 3672  [ 01246F0BAAD7B68EC0F472AA41E33282 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
23:08:01.0092 3672  TsUsbGD - ok
23:08:01.0108 3672  [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
23:08:01.0108 3672  tunnel - ok
23:08:01.0139 3672  [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35          C:\Windows\system32\drivers\uagp35.sys
23:08:01.0139 3672  uagp35 - ok
23:08:01.0139 3672  [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
23:08:01.0139 3672  udfs - ok
23:08:01.0170 3672  [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
23:08:01.0170 3672  UI0Detect - ok
23:08:01.0186 3672  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
23:08:01.0186 3672  uliagpkx - ok
23:08:01.0186 3672  [ D295BED4B898F0FD999FCFA9B32B071B ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
23:08:01.0186 3672  umbus - ok
23:08:01.0201 3672  [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass          C:\Windows\system32\drivers\umpass.sys
23:08:01.0201 3672  UmPass - ok
23:08:01.0233 3672  [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService    C:\Windows\System32\umrdp.dll
23:08:01.0248 3672  UmRdpService - ok
23:08:01.0357 3672  [ 41118D920B2B268C0ADC36421248CDCF ] UNS             C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe
23:08:01.0389 3672  UNS - ok
23:08:01.0451 3672  [ 720B072C81DFF96B44CCEE80BA05C1F8 ] UpdateNaviInstallService C:\Program Files\Fujitsu\updnavi\updnvsrv.exe
23:08:01.0451 3672  UpdateNaviInstallService - ok
23:08:01.0498 3672  [ 833FBB672460EFCE8011D262175FAD33 ] upnphost        C:\Windows\System32\upnphost.dll
23:08:01.0498 3672  upnphost - ok
23:08:01.0529 3672  [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
23:08:01.0529 3672  usbccgp - ok
23:08:01.0576 3672  [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
23:08:01.0576 3672  usbcir - ok
23:08:01.0591 3672  [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
23:08:01.0607 3672  usbehci - ok
23:08:01.0607 3672  [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
23:08:01.0607 3672  usbhub - ok
23:08:01.0654 3672  [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
23:08:01.0654 3672  usbohci - ok
23:08:01.0669 3672  [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint        C:\Windows\system32\drivers\usbprint.sys
23:08:01.0669 3672  usbprint - ok
23:08:01.0701 3672  [ F991AB9CC6B908DB552166768176896A ] USBSTOR         C:\Windows\system32\drivers\USBSTOR.SYS
23:08:01.0701 3672  USBSTOR - ok
23:08:01.0732 3672  [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
23:08:01.0732 3672  usbuhci - ok
23:08:01.0732 3672  UtilityChest_49Service - ok
23:08:01.0779 3672  [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms           C:\Windows\System32\uxsms.dll
23:08:01.0779 3672  UxSms - ok
23:08:01.0794 3672  [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc        C:\Windows\system32\lsass.exe
23:08:01.0794 3672  VaultSvc - ok
23:08:01.0825 3672  [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
23:08:01.0825 3672  vdrvroot - ok
23:08:01.0857 3672  [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds             C:\Windows\System32\vds.exe
23:08:01.0872 3672  vds - ok
23:08:01.0935 3672  [ 48A41A09EBA08C44DB367B68AFA13234 ] VFPRadioSupportService C:\Program Files\CSR\Bluetooth Feature Pack 5.0\VFPRadioSupportService.exe
23:08:01.0935 3672  VFPRadioSupportService - ok
23:08:01.0966 3672  [ 17C408214EA61696CEC9C66E388B14F3 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
23:08:01.0981 3672  vga - ok
23:08:01.0997 3672  [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave         C:\Windows\System32\drivers\vga.sys
23:08:01.0997 3672  VgaSave - ok
23:08:01.0997 3672  [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
23:08:02.0013 3672  vhdmp - ok
23:08:02.0013 3672  [ C829317A37B4BEA8F39735D4B076E923 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
23:08:02.0013 3672  viaagp - ok
23:08:02.0044 3672  [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
23:08:02.0044 3672  ViaC7 - ok
23:08:02.0044 3672  [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide          C:\Windows\system32\drivers\viaide.sys
23:08:02.0044 3672  viaide - ok
23:08:02.0075 3672  [ C2F2911156FDC7817C52829C86DA494E ] vmbus           C:\Windows\system32\drivers\vmbus.sys
23:08:02.0075 3672  vmbus - ok
23:08:02.0106 3672  [ D4D77455211E204F370D08F4963063CE ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
23:08:02.0106 3672  VMBusHID - ok
23:08:02.0106 3672  [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
23:08:02.0106 3672  volmgr - ok
23:08:02.0106 3672  [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
23:08:02.0122 3672  volmgrx - ok
23:08:02.0137 3672  [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
23:08:02.0137 3672  volsnap - ok
23:08:02.0184 3672  [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
23:08:02.0184 3672  vsmraid - ok
23:08:02.0231 3672  [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS             C:\Windows\system32\vssvc.exe
23:08:02.0247 3672  VSS - ok
23:08:02.0262 3672  [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
23:08:02.0262 3672  vwifibus - ok
23:08:02.0262 3672  [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
23:08:02.0262 3672  vwififlt - ok
23:08:02.0293 3672  [ A3F04CBEA6C2A10E6CB01F8B47611882 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
23:08:02.0293 3672  vwifimp - ok
23:08:02.0325 3672  [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time         C:\Windows\system32\w32time.dll
23:08:02.0325 3672  W32Time - ok
23:08:02.0340 3672  [ DE3721E89C653AA281428C8A69745D90 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
23:08:02.0340 3672  WacomPen - ok
23:08:02.0340 3672  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
23:08:02.0340 3672  WANARP - ok
23:08:02.0340 3672  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
23:08:02.0340 3672  Wanarpv6 - ok
23:08:02.0403 3672  [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
23:08:02.0434 3672  WatAdminSvc - ok
23:08:02.0496 3672  [ 691E3285E53DCA558E1A84667F13E15A ] wbengine        C:\Windows\system32\wbengine.exe
23:08:02.0512 3672  wbengine - ok
23:08:02.0527 3672  [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
23:08:02.0543 3672  WbioSrvc - ok
23:08:02.0543 3672  [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc         C:\Windows\System32\wcncsvc.dll
23:08:02.0559 3672  wcncsvc - ok
23:08:02.0559 3672  [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:08:02.0559 3672  WcsPlugInService - ok
23:08:02.0590 3672  [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd              C:\Windows\system32\drivers\wd.sys
23:08:02.0605 3672  Wd - ok
23:08:02.0637 3672  [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
23:08:02.0637 3672  Wdf01000 - ok
23:08:02.0683 3672  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
23:08:02.0683 3672  WdiServiceHost - ok
23:08:02.0683 3672  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
23:08:02.0699 3672  WdiSystemHost - ok
23:08:02.0715 3672  [ A9D880F97530D5B8FEE278923349929D ] WebClient       C:\Windows\System32\webclnt.dll
23:08:02.0730 3672  WebClient - ok
23:08:02.0746 3672  [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc          C:\Windows\system32\wecsvc.dll
23:08:02.0761 3672  Wecsvc - ok
23:08:02.0761 3672  [ AC804569BB2364FB6017370258A4091B ] wercplsupport   C:\Windows\System32\wercplsupport.dll
23:08:02.0761 3672  wercplsupport - ok
23:08:02.0777 3672  [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc          C:\Windows\System32\WerSvc.dll
23:08:02.0793 3672  WerSvc - ok
23:08:02.0824 3672  [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
23:08:02.0824 3672  WfpLwf - ok
23:08:02.0855 3672  [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
23:08:02.0855 3672  WIMMount - ok
23:08:02.0933 3672  [ 082CF481F659FAE0DE51AD060881EB47 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
23:08:02.0949 3672  WinDefend - ok
23:08:02.0964 3672  WinHttpAutoProxySvc - ok
23:08:03.0058 3672  [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
23:08:03.0058 3672  Winmgmt - ok
23:08:03.0105 3672  [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM           C:\Windows\system32\WsmSvc.dll
23:08:03.0136 3672  WinRM - ok
23:08:03.0167 3672  [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc         C:\Windows\System32\wlansvc.dll
23:08:03.0167 3672  Wlansvc - ok
23:08:03.0261 3672  [ 0A70F4022EC2E14C159EFC4F69AA2477 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:08:03.0276 3672  wlidsvc - ok
23:08:03.0307 3672  [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
23:08:03.0307 3672  WmiAcpi - ok
23:08:03.0339 3672  [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
23:08:03.0339 3672  wmiApSrv - ok
23:08:03.0417 3672  [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
23:08:03.0432 3672  WMPNetworkSvc - ok
23:08:03.0463 3672  [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc          C:\Windows\System32\wpcsvc.dll
23:08:03.0479 3672  WPCSvc - ok
23:08:03.0495 3672  [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
23:08:03.0510 3672  WPDBusEnum - ok
23:08:03.0541 3672  [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
23:08:03.0541 3672  ws2ifsl - ok
23:08:03.0557 3672  [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc          C:\Windows\system32\wscsvc.dll
23:08:03.0573 3672  wscsvc - ok
23:08:03.0573 3672  WSearch - ok
23:08:03.0838 3672  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
23:08:03.0885 3672  wuauserv - ok
23:08:03.0916 3672  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
23:08:03.0916 3672  WudfPf - ok
23:08:03.0947 3672  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
23:08:03.0947 3672  wudfsvc - ok
23:08:03.0978 3672  [ 3C5E51C05BE9B56EAFF4E388C3AB25E4 ] WwanSvc         C:\Windows\System32\wwansvc.dll
23:08:03.0978 3672  WwanSvc - ok
23:08:04.0025 3672  [ B07C5B7EFDF936FF93D4F540938725BE ] yukonw7         C:\Windows\system32\DRIVERS\yk62x86.sys
23:08:04.0025 3672  yukonw7 - ok
23:08:04.0025 3672  ================ Scan global ===============================
23:08:04.0072 3672  [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
23:08:04.0103 3672  [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
23:08:04.0119 3672  [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
23:08:04.0150 3672  [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
23:08:04.0197 3672  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
23:08:04.0197 3672  [Global] - ok
23:08:04.0197 3672  ================ Scan MBR ==================================
23:08:04.0212 3672  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
23:08:04.0571 3672  \Device\Harddisk0\DR0 - ok
23:08:04.0571 3672  ================ Scan VBR ==================================
23:08:04.0571 3672  [ 76D3651AB8659BDBC8B7D833ECBBF81F ] \Device\Harddisk0\DR0\Partition1
23:08:04.0571 3672  \Device\Harddisk0\DR0\Partition1 - ok
23:08:04.0602 3672  [ F2564CD606D4FD1082452CD04BF6A258 ] \Device\Harddisk0\DR0\Partition2
23:08:04.0618 3672  \Device\Harddisk0\DR0\Partition2 - ok
23:08:04.0633 3672  [ 475380FF74FA1BA2B3675591A1726415 ] \Device\Harddisk0\DR0\Partition3
23:08:04.0633 3672  \Device\Harddisk0\DR0\Partition3 - ok
23:08:04.0649 3672  ============================================================
23:08:04.0649 3672  Scan finished
23:08:04.0649 3672  ============================================================
23:08:04.0649 2452  Detected object count: 0
23:08:04.0649 2452  Actual detected object count: 0
23:08:22.0230 4004  Deinitialize success
 

 

 

:step3: ESET Online Scanner

coming shortly - in progress - tomorrow I think - it's about 11:30pm here now. As soon as I have it it'll be here.



#4 RobGlazebrook

RobGlazebrook
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Gundagai, NSW, Australia
  • Local time:05:01 PM

Posted 30 July 2013 - 06:17 PM

:step3: ESET Online Scanner

C:\Qoobox\Quarantine\C\Program Files\DictionaryBoss\bar\1.bin\v4datact.dll.vir    a variant of Win32/Toolbar.MyWebSearch.A application
C:\Qoobox\Quarantine\C\Program Files\DictionaryBoss\bar\1.bin\v4html.dll.vir    probably a variant of Win32/Toolbar.MyWebSearch.F application
C:\Qoobox\Quarantine\C\Program Files\DictionaryBoss\bar\1.bin\v4htmlmu.dll.vir    probably a variant of Win32/Toolbar.MyWebSearch.B application
C:\Qoobox\Quarantine\C\Program Files\DictionaryBoss\bar\1.bin\v4ieovr.dll.vir    probably a variant of Win32/Toolbar.MyWebSearch.P application
C:\Qoobox\Quarantine\C\Program Files\DictionaryBoss\bar\1.bin\v4Plugin.dll.vir    a variant of Win32/Toolbar.MyWebSearch application
C:\Qoobox\Quarantine\C\Program Files\DictionaryBoss\bar\1.bin\v4skin.dll.vir    a variant of Win32/Toolbar.MyWebSearch.P application
C:\Qoobox\Quarantine\C\Program Files\RadioRage_4j\bar\1.bin\4jieovr.dll.vir    probably a variant of Win32/Toolbar.MyWebSearch.P application
C:\Users\User\AppData\LocalLow\DictionaryBossEI\Installr\Cache\00596078.exe    a variant of Win32/Toolbar.MyWebSearch.O application
C:\Users\User\Documents\Council maps\MapsSetup.exe    Win32/Toolbar.Inbox.A application
C:\Users\User\Downloads\SoftonicDownloader_for_bid4build-construction-estimating-software (1).exe    a variant of Win32/SoftonicDownloader.E application
C:\Users\User\Downloads\SoftonicDownloader_for_bid4build-construction-estimating-software.exe    a variant of Win32/SoftonicDownloader.E application
D:\LIFESTYLE-1232\Backup Set 2012-12-10 081317\Backup Files 2012-12-10 081317\Backup files 31.zip    multiple threats
D:\LIFESTYLE-1232\Backup Set 2012-12-10 081317\Backup Files 2012-12-10 081317\Backup files 38.zip    multiple threats
D:\LIFESTYLE-1232\Backup Set 2012-12-10 081317\Backup Files 2012-12-10 081317\Backup files 39.zip    multiple threats
D:\LIFESTYLE-1232\Backup Set 2012-12-10 081317\Backup Files 2012-12-10 081317\Backup files 43.zip    a variant of Win32/Toolbar.MyWebSearch.O application
D:\LIFESTYLE-1232\Backup Set 2012-12-10 081317\Backup Files 2012-12-10 081317\Backup files 44.zip    Win32/Toolbar.Inbox.A application
 



#5 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:01 AM

Posted 31 July 2013 - 02:30 AM

:step1: Delete this files by deleting them and then cleaning the recycle bin:

 

C:\Users\User\AppData\LocalLow\DictionaryBossEI\Installr\Cache\00596078.exe    a variant of Win32/Toolbar.MyWebSearch.O application
C:\Users\User\Documents\Council maps\MapsSetup.exe    Win32/Toolbar.Inbox.A application
C:\Users\User\Downloads\SoftonicDownloader_for_bid4build-construction-estimating-software (1).exe    a variant of Win32/SoftonicDownloader.E application
C:\Users\User\Downloads\SoftonicDownloader_for_bid4build-construction-estimating-software.exe    a variant of Win32/SoftonicDownloader.E application

 

:step2: Remove the infected backup set. Then make a new Back up set.

 

:step3: I see you used Combofix, normally it should be only run by  aTrained Proff. 


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#6 RobGlazebrook

RobGlazebrook
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Gundagai, NSW, Australia
  • Local time:05:01 PM

Posted 31 July 2013 - 07:18 PM

1) done

2) done

3) that was the bad old days, before I joined bleeping computer. I'm learing more.

 

Do I run the same set of scans again to verify?

Thanks for helping.



#7 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:01 AM

Posted 01 August 2013 - 02:28 AM

You have issue with the services? Let's try Windows Repair:

 

Download: http://www.bleepingcomputer.com/download/windows-repair-all-in-one-portable/

 

Put it on your desktop and run it. Then choose for (step3) SFC (System File Checker)

 

step-3-tab.jpg

 

 

Next, run start repairs, check the things you would to repair. Let the program make a backup (a system restore point & registery backup) if asked.

 

start-repairs-tab.jpg


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#8 RobGlazebrook

RobGlazebrook
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Gundagai, NSW, Australia
  • Local time:05:01 PM

Posted 02 August 2013 - 12:02 AM

I have Run Windows Repair - It got the security center service going.

Now Windows Defender realtime protection will not go on, and Internet Explorer is not updating from 8 to 10. Have downloaded offline installer for IE10 and will try that shortly.

 

Thanks



#9 RobGlazebrook

RobGlazebrook
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Gundagai, NSW, Australia
  • Local time:05:01 PM

Posted 02 August 2013 - 02:41 AM

Update, after an hour or so, it started working. Got IE 10 installed as well as MS security essentials. Will give it a run on the internet to see if it behaves.



#10 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:01 AM

Posted 02 August 2013 - 02:43 AM

:thumbup2: Let's hope the best. But it is looking good if the services got working back.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#11 RobGlazebrook

RobGlazebrook
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Gundagai, NSW, Australia
  • Local time:05:01 PM

Posted 02 August 2013 - 07:06 AM

I'll give it another test tomorrow and update here. How do you mark as "solved" a case?

Thanks.



#12 RobGlazebrook

RobGlazebrook
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Gundagai, NSW, Australia
  • Local time:05:01 PM

Posted 04 August 2013 - 08:57 PM

All is good. Thanks for your help.

Rob






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users