Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Received work laptop infected w/ viruses. How do I clean deeper?


  • Please log in to reply
10 replies to this topic

#1 everything

everything

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:11:50 AM

Posted 06 September 2014 - 01:51 PM

I received this work laptop from my job and it was riddled with malware from the previous employee: ads popping up without warning, after clicking anything on the web browser, lots of junk programs etc. I scanned with Kaspersky 6 which was already installed, and malwarebytes. Each program found a few threats: trojans, toolbars, adware, all related to a few junk programs that were installed. I removed those threats, then I completely removed every junk program with Revo Uninstaller. Since then there are no symptoms.

 

However what I would like to do is go even deeper if possible, to find any residual malware and make absolutely sure the computer is clean before I use it for email and risk my password getting stolen, stuff like that. So I am asking if there are any programs or steps I can run on this laptop that would find anything else. The caveat is my employer fully controls the Kaspersky installation (now updated to 10) and will not allow me to adjust any settings which means I can not turn off real time protection. I believe Kaspersky also acts as a firewall because Windows firewall is disabled and it says this setting is controlled by Kaspersky. Please advise.



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:50 PM

Posted 06 September 2014 - 10:24 PM

Hello everything, also run these.


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 everything

everything
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:11:50 AM

Posted 06 September 2014 - 11:15 PM

Thank you for your reply I really appreciate it and will get on these programs soon. I might have an out of town job tomorrow, if so I will have to do this in a few days. Otherwise i will post back tomorrow. One problem with Junkware removal tool: I cannot turn off realtime protection in Kaspersky due to my employer's control. I don't think closing the program will stop it from running in the background do you? Or do you think it will turn off if I do Ctrl+Alt+Del and end the process?

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:50 PM

Posted 07 September 2014 - 10:26 AM

Then just run it.. If it won't we'll skip it. Post whenever you can.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 everything

everything
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:11:50 AM

Posted 13 September 2014 - 12:25 PM

Ok these are the logs. I believe eset found over 80 threats while the others didn't find much.

 

Minitoolbox

 

MiniToolBox by Farbar  Version: 21-07-2014
Ran by dbarber (administrator) on 07-09-2014 at 15:38:15
Running from "C:\Users\dbarber\Downloads"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR8161/8165 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Local Area Connection (Disconnected)
Dell Wireless 1704 802.11b/g/n (2.4GHz) = Wireless Network Connection (Connected)
Broadcom Virtual Wireless Adapter = Local Area Connection 2 (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=192.168.1.78/32 interface="iftype0_0" nexthop=192.168.1.67 metric=1 publish=Yes
set subinterface interface=?*$ subinterface=ethernet_14 mtu=1477


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : vos34si
   Primary Dns Suffix  . . . . . . . : SaltelIndustries.local
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : SaltelIndustries.local
                                       gateway.pace.com

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 64-27-37-F5-D1-28
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom Virtual Wireless Adapter
   Physical Address. . . . . . . . . : 66-27-37-F5-51-27
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : saltelindutries.local
   Description . . . . . . . . . . . : Atheros AR8161/8165 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
   Physical Address. . . . . . . . . : 5C-F9-DD-52-3C-5E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : gateway.pace.com
   Description . . . . . . . . . . . : Dell Wireless 1704 802.11b/g/n (2.4GHz)
   Physical Address. . . . . . . . . : 64-27-37-F5-D1-27
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2602:306:cd3d:850:4120:f299:72e0:20bc(Preferred)
   Temporary IPv6 Address. . . . . . : 2602:306:cd3d:850:dc96:ff3b:6a16:668b(Preferred)
   Link-local IPv6 Address . . . . . : fe80::4120:f299:72e0:20bc%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.67(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, September 07, 2014 3:26:24 PM
   Lease Expires . . . . . . . . . . : Monday, September 08, 2014 3:26:24 PM
   Default Gateway . . . . . . . . . : fe80::62c3:97ff:fee6:54b9%11
                                       192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.gateway.pace.com:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : gateway.pace.com
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{2EBD8235-DC15-4F64-8F78-7BAF44276FD3}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:34f1:2f97:3f57:febc(Preferred)
   Link-local IPv6 Address . . . . . : fe80::34f1:2f97:3f57:febc%18(Preferred)
   Default Gateway . . . . . . . . . :
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  homeportal
Address:  192.168.1.254

Name:    google.com
Addresses:  2607:f8b0:4000:80a::1006
      173.194.115.9
      173.194.115.1
      173.194.115.4
      173.194.115.8
      173.194.115.2
      173.194.115.14
      173.194.115.0
      173.194.115.7
      173.194.115.3
      173.194.115.6
      173.194.115.5


Pinging google.com [2607:f8b0:4000:809::1008] with 32 bytes of data:
Reply from 2607:f8b0:4000:809::1008: time=35ms
Reply from 2607:f8b0:4000:809::1008: time=32ms

Ping statistics for 2607:f8b0:4000:809::1008:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 32ms, Maximum = 35ms, Average = 33ms
Server:  homeportal
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  206.190.36.45
      98.139.183.24
      98.138.253.109


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=82ms TTL=45
Reply from 98.139.183.24: bytes=32 time=84ms TTL=45

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 82ms, Maximum = 84ms, Average = 83ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 16...64 27 37 f5 d1 28 ......Bluetooth Device (Personal Area Network)
 14...66 27 37 f5 51 27 ......Broadcom Virtual Wireless Adapter
 12...5c f9 dd 52 3c 5e ......Atheros AR8161/8165 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
 11...64 27 37 f5 d1 27 ......Dell Wireless 1704 802.11b/g/n (2.4GHz)
  1...........................Software Loopback Interface 1
 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.67     30
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.67    286
     192.168.1.67  255.255.255.255         On-link      192.168.1.67    286
    192.168.1.255  255.255.255.255         On-link      192.168.1.67    286
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.67    286
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.67    286
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 11    286 ::/0                     fe80::62c3:97ff:fee6:54b9
  1    306 ::1/128                  On-link
 18     58 2001::/32                On-link
 18    306 2001:0:9d38:90d7:34f1:2f97:3f57:febc/128
                                    On-link
 11     38 2602:306:cd3d:850::/64   On-link
 11    286 2602:306:cd3d:850:4120:f299:72e0:20bc/128
                                    On-link
 11    286 2602:306:cd3d:850:dc96:ff3b:6a16:668b/128
                                    On-link
 11    286 fe80::/64                On-link
 18    306 fe80::/64                On-link
 18    306 fe80::34f1:2f97:3f57:febc/128
                                    On-link
 11    286 fe80::4120:f299:72e0:20bc/128
                                    On-link
  1    306 ff00::/8                 On-link
 18    306 ff00::/8                 On-link
 11    286 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/07/2014 03:27:16 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/06/2014 00:29:29 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/05/2014 01:05:10 PM) (Source: Application Error) (User: )
Description: Faulting application name: spoolsv.exe, version: 6.1.7601.17777, time stamp: 0x4f35fc1d
Faulting module name: hpzjcd01.dll, version: 7.0.13.0, time stamp: 0x48081f7f
Exception code: 0xc0000094
Fault offset: 0x000000000001edc6
Faulting process id: 0x708
Faulting application start time: 0xspoolsv.exe0
Faulting application path: spoolsv.exe1
Faulting module path: spoolsv.exe2
Report Id: spoolsv.exe3

Error: (09/05/2014 10:04:16 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/04/2014 08:36:15 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (09/04/2014 08:26:30 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/03/2014 09:37:13 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (09/03/2014 09:01:51 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/03/2014 08:19:10 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/02/2014 03:30:35 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 90080108


System errors:
=============
Error: (09/07/2014 03:30:49 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (09/07/2014 03:30:47 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (09/07/2014 03:30:45 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (09/07/2014 03:30:29 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (09/07/2014 03:30:27 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (09/07/2014 03:30:25 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (09/07/2014 03:30:23 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (09/07/2014 03:29:35 PM) (Source: Service Control Manager) (User: )
Description: The Dell Digital Delivery Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (09/07/2014 03:26:56 PM) (Source: Microsoft-Windows-GroupPolicy) (User: SALTELINDUSTRIE)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.

Error: (09/07/2014 03:26:34 PM) (Source: Microsoft-Windows-GroupPolicy) (User: NT AUTHORITY)
Description: The processing of Group Policy failed because of lack of network connectivity to a domain controller. This may be a transient condition. A success message would be generated once the machine gets connected to the domain controller and Group Policy has succesfully processed. If you do not see a success message for several hours, then contact your administrator.


Microsoft Office Sessions:
=========================
Error: (09/07/2014 03:27:16 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/06/2014 00:29:29 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/05/2014 01:05:10 PM) (Source: Application Error)(User: )
Description: spoolsv.exe6.1.7601.177774f35fc1dhpzjcd01.dll7.0.13.048081f7fc0000094000000000001edc670801cfc91a6928325dC:\Windows\System32\spoolsv.exeC:\Windows\System32\hpzjcd01.dll2c6f7362-3527-11e4-8336-642737f5d128

Error: (09/05/2014 10:04:16 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/04/2014 08:36:15 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (09/04/2014 08:26:30 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/03/2014 09:37:13 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (09/03/2014 09:01:51 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/03/2014 08:19:10 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/02/2014 03:30:35 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 90080108


CodeIntegrity Errors:
===================================
  Date: 2014-09-07 13:34:07.000
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-07 13:34:06.985
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-07 13:34:06.985
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-07 13:33:50.246
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-07 13:33:50.246
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-07 13:33:50.246
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-05 22:38:35.541
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\MaxxAudioAPOShell64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-05 22:38:35.463
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\MaxxAudioAPOShell64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-05 22:38:29.126
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\MaxxAudioAPOShell64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-05 22:38:29.044
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\MaxxAudioAPOShell64.dll because the set of per-page image hashes could not be found on the system.



=========================== Installed Programs ============================
64 Bit HP CIO Components Installer (Version: 8.2.4 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Accidental Damage Services Agreement (HKLM-x32\...\{EF85FEF4-EB92-4075-A6D2-5F519BB30A2C}) (Version: 2.0.0 - Dell Inc.)
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.179 - Adobe Systems Incorporated)
Adobe Reader X (10.1.11) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.11 - Adobe Systems Incorporated)
Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)
Agent d'administration Kaspersky Security Center (HKLM-x32\...\InstallWIX_{2924BEDA-E0D7-4DAF-A224-50D2E0B12F5B}) (Version: 10.0.3361 - Kaspersky Lab)
Agent d'administration Kaspersky Security Center (x32 Version: 10.0.3361 - Kaspersky Lab) Hidden
Banctec Service Agreement (HKLM-x32\...\{42D68A86-DB1C-4256-B8C9-5D0D92919AF5}) (Version: 2.0.0 - Dell Inc.)
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
C309g-m (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.00 - Piriform)
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Complete Care Business Service Agreement (HKLM-x32\...\{0ECFCB07-9BFE-4970-ACA1-D568D982760B}) (Version: 2.0.0 - Dell Inc.)
Conexant SmartAudio HD (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.29.0 - Conexant)
Consumer In-Home Service Agreement (HKLM-x32\...\{F47C37A4-7189-430A-B81D-739FF8A7A554}) (Version: 2.0.0 - Dell Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 9.4.67 - Dell Inc.)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.67 - Dell Inc.)
Dell DataSafe Online (HKLM-x32\...\{7EC66A95-AC2D-4127-940B-0445A526AB2F}) (Version: 2.1.19634 - Dell)
Dell Digital Delivery (HKLM-x32\...\{9DDFE322-6BA0-4F90-8689-D98382492371}) (Version: 2.1.1002.0 - Dell Products, LP)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Home Systems Service Agreement (HKLM-x32\...\{AB2FDE4F-6BED-4E9E-B676-3DCCEBB1FBFE}) (Version: 2.0.0 - Dell Inc.)
Dell Support Center (HKLM\...\Dell Support Center) (Version: 3.1.5907.16 - Dell Inc.)
Dell Support Center (Version: 3.1.5907.16 - PC-Doctor, Inc.) Hidden
Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.1209.101.217 - ALPS ELECTRIC CO., LTD.)
Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 2.01.15 - Creative Technology Ltd)
Destinations (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
DigitalPersona Fingerprint Software 6.1 (HKLM\...\{208DCBFA-D02A-426B-865F-312529654438}) (Version: 6.1.0.279 - DigitalPersona, Inc.)
DW WLAN Card Utility (HKLM\...\DW WLAN Card Utility) (Version: 6.20.55.52 - Dell Inc.)
FusionInventory Agent (HKLM-x32\...\FusionInventory Agent) (Version: 2.2.7-3 - FusionInventory Team)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP LaserJet 200 color MFP M276 (HKLM-x32\...\{CC38C23C-7824-4DBB-AC73-997CD0BBFEC7}) (Version: 5.0.12201.1116 - Hewlett-Packard)
HP LaserJet 200 color MFP M276 Fax (x32 Version: 29.0.84.0 - Hewlett-Packard Co.) Hidden
HP LaserJet 200 color MFP M276 HP Device Toolbox (x32 Version: 29.0.84.0 - Hewlett-Packard Co.) Hidden
HP LJ200 M276 HP Scan (x32 Version: 1.0.302.0 - Hewlett-Packard Co.) Hidden
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.2024 - HP Photo Creations Powered by RocketLife)
HP Photosmart Premium C309g-m All-in-One Driver Software 14.0 Rel. 6 (HKLM\...\{CCD42CCF-9AFF-4BC5-862A-38CCD3C8E8F8}) (Version: 14.0 - HP)
HP Product FWUpdater (x32 Version: 4.0.0.7242 - Hewlett-Packard Company) Hidden
HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Unified IO (Version: 2.0.0.404 - HP) Hidden
HP Unified IO (x32 Version: 2.0.0.404 - HP) Hidden
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
hpbDSService (x32 Version: 002.002.07399 - Hewlett-Packard) Hidden
hpbM276DSService (x32 Version: 001.001.05874 - Hewlett-Packard) Hidden
HPDXP (x32 Version: 3.0.26.8 - HP) Hidden
HPLaserJet200color-MFPM276_HelpLearnCenter_SI (HKLM-x32\...\{0F044C7A-6EE1-4F03-90AC-329AAF2FCF12}) (Version: 1.01.0000 - Hewlett-Packard)
HPLJDXPHelper (x32 Version: 020.021.004 - HP) Hidden
HPLJUTCore (x32 Version: 004.005.0001 - HP) Hidden
HPLJUTM276 (x32 Version: 3.00.0003 - HP) Hidden
hppFaxDrvM276 (x32 Version: 003.000.00002 - Hewlett-Packard) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
hppLaserJetService (x32 Version: 009.027.00856 - Hewlett-Packard) Hidden
hppM276LaserJetService (x32 Version: 001.019.00639 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
hppSendFaxM276 (x32 Version: 003.000.00002 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
hpStatusAlerts (x32 Version: 050.037.00142 - Hewlett Packard) Hidden
hpStatusAlertsM276 (x32 Version: 050.034.00131 - Hewlett-Packard) Hidden
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.1.1399 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2712 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.1.0.1006 - Intel Corporation)
Intel® Turbo Boost Technology Monitor 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{538B98C3-773F-4F20-9C66-802D104DCBE2}) (Version: 1.23.219.2 - Intel Corporation)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kaspersky Endpoint Security 10 for Windows (HKLM\...\{04CF7FBD-E56C-446D-8FC9-DD444BDBEE8E}) (Version: 10.1.0.867 - Kaspersky Lab)
KONICA MINOLTA bizhub C35 (HKLM\...\KONICA MINOLTA bizhub C35 Installer) (Version:  - KONICA MINOLTA)
LJDXPHelperUI (x32 Version: 020.021.004 - HP) Hidden
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Home and Business 2013 - en-us (HKLM\...\HomeBusinessRetail - en-us) (Version: 15.0.4641.1003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 31.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 en-US)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network64 (Version: 140.0.215.000 - Hewlett-Packard) Hidden
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4641.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4641.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4641.1003 - Microsoft Corporation) Hidden
PS_AIO_06_C309g-m_SW_Min (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden
QualxServ Service Agreement (HKLM-x32\...\{903679E8-44C8-4C07-9600-05C92654FC50}) (Version: 2.0.0 - Dell Inc.)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.13 - Dell Inc.)
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
SmartWebPrinting (x32 Version: 140.0.186.000 - Hewlett-Packard) Hidden
SolutionCenter (x32 Version: 140.0.213.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.30992 - TeamViewer)
Toolbox (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.5.3f3 - Unity Technologies ApS)
Validity Sensors DDK (HKLM\...\{CF8F802C-0CEA-4591-A353-12EC03794652}) (Version: 4.3.216.0 - Validity Sensors, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.2500 - Broadcom Corporation)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Zimbra Connector for Microsoft Outlook (HKLM-x32\...\{322CC4A2-4A5E-401F-B749-380124222667}) (Version: 8.0.6.1063 - Telligent Systems, Inc.)

========================= Memory info: ===================================

Percentage of memory in use: 36%
Total physical RAM: 3955 MB
Available physical RAM: 2493.21 MB
Total Pagefile: 7908.17 MB
Available Pagefile: 6003.42 MB
Total Virtual: 4095.88 MB
Available Virtual: 3979.57 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:447.15 GB) (Free:379.13 GB) NTFS

========================= Users: ========================================

User accounts for \\VOS34SI

Administrator            Archie Hebert            Guest                    
itsi                     


**** End of log ****
 


TDSS

 

 

 

16:41:00.0400 0x1924  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
16:41:07.0613 0x1924  ============================================================
16:41:07.0613 0x1924  Current date / time: 2014/09/07 16:41:07.0613
16:41:07.0613 0x1924  SystemInfo:
16:41:07.0613 0x1924  
16:41:07.0613 0x1924  OS Version: 6.1.7601 ServicePack: 1.0
16:41:07.0613 0x1924  Product type: Workstation
16:41:07.0613 0x1924  ComputerName: VOS34SI
16:41:07.0614 0x1924  UserName: dbarber
16:41:07.0614 0x1924  Windows directory: C:\Windows
16:41:07.0614 0x1924  System windows directory: C:\Windows
16:41:07.0614 0x1924  Running under WOW64
16:41:07.0614 0x1924  Processor architecture: Intel x64
16:41:07.0614 0x1924  Number of processors: 4
16:41:07.0614 0x1924  Page size: 0x1000
16:41:07.0614 0x1924  Boot type: Normal boot
16:41:07.0614 0x1924  ============================================================
16:41:07.0989 0x1924  KLMD registered as C:\Windows\system32\drivers\25377242.sys
16:41:08.0471 0x1924  System UUID: {5DE41C1F-C958-5A46-31F7-FB6D9EFB6CA6}
16:41:08.0866 0x1924  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:41:08.0884 0x1924  ============================================================
16:41:08.0884 0x1924  \Device\Harddisk0\DR0:
16:41:08.0884 0x1924  MBR partitions:
16:41:08.0885 0x1924  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x2523000
16:41:08.0885 0x1924  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2537000, BlocksNum 0x37E4E800
16:41:08.0885 0x1924  ============================================================
16:41:08.0905 0x1924  C: <-> \Device\Harddisk0\DR0\Partition2
16:41:08.0905 0x1924  ============================================================
16:41:08.0905 0x1924  Initialize success
16:41:08.0905 0x1924  ============================================================
16:41:28.0687 0x1994  ============================================================
16:41:28.0687 0x1994  Scan started
16:41:28.0687 0x1994  Mode: Manual;
16:41:28.0687 0x1994  ============================================================
16:41:28.0687 0x1994  KSN ping started
16:41:31.0459 0x1994  KSN ping finished: true
16:41:32.0050 0x1994  ================ Scan system memory ========================
16:41:32.0050 0x1994  System memory - ok
16:41:32.0050 0x1994  ================ Scan services =============================
16:41:32.0210 0x1994  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:41:32.0223 0x1994  1394ohci - ok
16:41:32.0278 0x1994  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:41:32.0293 0x1994  ACPI - ok
16:41:32.0303 0x1994  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:41:32.0306 0x1994  AcpiPmi - ok
16:41:32.0437 0x1994  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:41:32.0440 0x1994  AdobeARMservice - ok
16:41:32.0538 0x1994  [ F4BF3ADDDDC1AD372604F13C2B0C1F65, FA37ED5014336A72F778C485226B61BEFECEB861AB754862738795C167F0BAB7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:41:32.0549 0x1994  AdobeFlashPlayerUpdateSvc - ok
16:41:32.0597 0x1994  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
16:41:32.0630 0x1994  adp94xx - ok
16:41:32.0680 0x1994  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
16:41:32.0697 0x1994  adpahci - ok
16:41:32.0715 0x1994  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
16:41:32.0725 0x1994  adpu320 - ok
16:41:32.0757 0x1994  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:41:32.0761 0x1994  AeLookupSvc - ok
16:41:32.0822 0x1994  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
16:41:32.0852 0x1994  AFD - ok
16:41:32.0886 0x1994  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
16:41:32.0891 0x1994  agp440 - ok
16:41:32.0905 0x1994  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
16:41:32.0910 0x1994  ALG - ok
16:41:32.0947 0x1994  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:41:32.0951 0x1994  aliide - ok
16:41:32.0975 0x1994  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
16:41:32.0978 0x1994  amdide - ok
16:41:32.0994 0x1994  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
16:41:33.0000 0x1994  AmdK8 - ok
16:41:33.0020 0x1994  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
16:41:33.0026 0x1994  AmdPPM - ok
16:41:33.0041 0x1994  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:41:33.0048 0x1994  amdsata - ok
16:41:33.0074 0x1994  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
16:41:33.0085 0x1994  amdsbs - ok
16:41:33.0101 0x1994  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:41:33.0103 0x1994  amdxata - ok
16:41:33.0160 0x1994  [ DC855A333010ECF306D89A344492A589, 88B6990126399ECFC553B19CCC98DE72EFDD3EC274349DC16C6C3AD1C3C6B3F3 ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
16:41:33.0173 0x1994  ApfiltrService - ok
16:41:33.0206 0x1994  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
16:41:33.0212 0x1994  AppID - ok
16:41:33.0230 0x1994  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:41:33.0234 0x1994  AppIDSvc - ok
16:41:33.0270 0x1994  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
16:41:33.0274 0x1994  Appinfo - ok
16:41:33.0315 0x1994  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:41:33.0326 0x1994  AppMgmt - ok
16:41:33.0334 0x1994  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
16:41:33.0340 0x1994  arc - ok
16:41:33.0348 0x1994  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:41:33.0353 0x1994  arcsas - ok
16:41:33.0435 0x1994  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:41:33.0440 0x1994  aspnet_state - ok
16:41:33.0462 0x1994  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:41:33.0466 0x1994  AsyncMac - ok
16:41:33.0497 0x1994  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:41:33.0500 0x1994  atapi - ok
16:41:33.0556 0x1994  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:41:33.0585 0x1994  AudioEndpointBuilder - ok
16:41:33.0610 0x1994  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
16:41:33.0619 0x1994  AudioSrv - ok
16:41:33.0716 0x1994  avp - ok
16:41:33.0756 0x1994  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:41:33.0763 0x1994  AxInstSV - ok
16:41:33.0818 0x1994  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
16:41:33.0848 0x1994  b06bdrv - ok
16:41:33.0870 0x1994  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
16:41:33.0878 0x1994  b57nd60a - ok
16:41:33.0913 0x1994  [ D5485595AB2E2DCB74FF78C6690E3ADE, 768998237862760D71A52EE86D05543EC19A65CA5B3F539DA7BB65BE88EDF092 ] bcbtums         C:\Windows\system32\drivers\bcbtums.sys
16:41:33.0918 0x1994  bcbtums - ok
16:41:33.0935 0x1994  [ FBB6DF4A06AF25072ED790009E7393F4, 9308A7015E5BD05B05D073EDA0EB6627C756D05823D5C7AF94F4AC9D7C28392E ] BCM42RLY        C:\Windows\system32\drivers\BCM42RLY.sys
16:41:33.0938 0x1994  BCM42RLY - ok
16:41:34.0124 0x1994  [ 06C2D8D2C7C688B24760E5034A852728, 18B694EE00DA91E26D98E7EEC270E4717ED4BD81D6855F2A9E0AAB795043722B ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
16:41:34.0199 0x1994  BCM43XX - ok
16:41:34.0270 0x1994  [ 52752A34FE0D4105CC814F5CC539132B, CCB3A4DDC6DD18B17613220E6DF09A43032362EFD22EA1058C5A6E9C6CED63EE ] BcmVWL          C:\Windows\system32\DRIVERS\bcmvwl64.sys
16:41:34.0271 0x1994  BcmVWL - ok
16:41:34.0315 0x1994  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:41:34.0321 0x1994  BDESVC - ok
16:41:34.0348 0x1994  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:41:34.0350 0x1994  Beep - ok
16:41:34.0404 0x1994  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
16:41:34.0427 0x1994  BFE - ok
16:41:34.0473 0x1994  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
16:41:34.0517 0x1994  BITS - ok
16:41:34.0540 0x1994  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:41:34.0542 0x1994  blbdrive - ok
16:41:34.0559 0x1994  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:41:34.0565 0x1994  bowser - ok
16:41:34.0585 0x1994  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
16:41:34.0589 0x1994  BrFiltLo - ok
16:41:34.0594 0x1994  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
16:41:34.0597 0x1994  BrFiltUp - ok
16:41:34.0628 0x1994  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
16:41:34.0637 0x1994  Browser - ok
16:41:34.0666 0x1994  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:41:34.0679 0x1994  Brserid - ok
16:41:34.0686 0x1994  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:41:34.0689 0x1994  BrSerWdm - ok
16:41:34.0701 0x1994  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:41:34.0704 0x1994  BrUsbMdm - ok
16:41:34.0707 0x1994  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:41:34.0709 0x1994  BrUsbSer - ok
16:41:34.0740 0x1994  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
16:41:34.0743 0x1994  BthEnum - ok
16:41:34.0758 0x1994  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
16:41:34.0763 0x1994  BTHMODEM - ok
16:41:34.0790 0x1994  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
16:41:34.0796 0x1994  BthPan - ok
16:41:34.0825 0x1994  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
16:41:34.0845 0x1994  BTHPORT - ok
16:41:34.0877 0x1994  [ FBEBE2A6469EFB281EA143530A553F38, F651F8A3BACEDE42BFE8AEDC25C9C8DE69D3405D963D52109A021907808A3AFE ] BTHprint        C:\Windows\system32\DRIVERS\bthprint.sys
16:41:34.0880 0x1994  BTHprint - ok
16:41:34.0914 0x1994  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
16:41:34.0920 0x1994  bthserv - ok
16:41:34.0940 0x1994  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
16:41:34.0945 0x1994  BTHUSB - ok
16:41:34.0984 0x1994  [ 30E157AB82EE7406F526ED80896D2431, 87C8E654E78AA48C5D84112DBEA2907DFD6E1B401E20E5128658ED693891F0B8 ] btwampfl        C:\Windows\system32\drivers\btwampfl.sys
16:41:35.0003 0x1994  btwampfl - ok
16:41:35.0027 0x1994  [ 4F753BA5E0022D3AFD4604094449C008, 4DDE22161480DF0A70A8A95E9812A5A1442E0EC263F67C1F1DD54B14DE8789A2 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
16:41:35.0030 0x1994  btwaudio - ok
16:41:35.0067 0x1994  [ 9FF58F76024D25784755B01F926B00BE, 7A2504E326E63B7225FA25EA6D6ED3E7267278F5D2343A375D7F3B3F74EC9F38 ] btwavdt         C:\Windows\system32\DRIVERS\btwavdt.sys
16:41:35.0075 0x1994  btwavdt - ok
16:41:35.0166 0x1994  [ 00A32E2B3A2F399AB8AD04FC866D2010, C92BD606698367EF8230FBB29E02D6A0A2B4469B9A69185ADB96ECAE63445ADD ] btwdins         c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
16:41:35.0217 0x1994  btwdins - ok
16:41:35.0240 0x1994  [ B1ACFD00CDD13B48D86F46BFEC153BF9, CD7BE27D93364735511CC714B85CB7D97E21E84E3C2361EC405BADAAEA550925 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
16:41:35.0242 0x1994  btwl2cap - ok
16:41:35.0267 0x1994  [ EDD953D635F3AA89EF902E3F82D60D22, 22A60B225A1AD0F25B9715338C805FED9D5F4BCAC296BBC0D045C6935BDA55E7 ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
16:41:35.0269 0x1994  btwrchid - ok
16:41:35.0390 0x1994  [ 1F79342D9EB530A48742F651E570983A, 99E0B613C23FA8591E248DFA6FF2D3EE19E262BE6E070A0E43E256B69687017F ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
16:41:35.0458 0x1994  c2cautoupdatesvc - ok
16:41:35.0544 0x1994  [ E4938E0A376CF0B9D989EE5C0A146891, 9DF6AB5781CD60862D9664CA9A8AF0696A1FB6D09D804CD8DE9630F40DE59E90 ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
16:41:35.0616 0x1994  c2cpnrsvc - ok
16:41:35.0636 0x1994  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:41:35.0640 0x1994  cdfs - ok
16:41:35.0670 0x1994  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:41:35.0678 0x1994  cdrom - ok
16:41:35.0708 0x1994  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
16:41:35.0714 0x1994  CertPropSvc - ok
16:41:35.0727 0x1994  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
16:41:35.0731 0x1994  circlass - ok
16:41:35.0753 0x1994  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
16:41:35.0762 0x1994  CLFS - ok
16:41:35.0915 0x1994  [ FE0CFEDA0CFC71F1FF0F77E85CA1FE1F, D067024F9110CEEF573152275DAB100943B59A36E58B342B5CC764FC3C917834 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
16:41:35.0948 0x1994  ClickToRunSvc - ok
16:41:36.0019 0x1994  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:41:36.0024 0x1994  clr_optimization_v2.0.50727_32 - ok
16:41:36.0054 0x1994  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:41:36.0061 0x1994  clr_optimization_v2.0.50727_64 - ok
16:41:36.0128 0x1994  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:41:36.0134 0x1994  clr_optimization_v4.0.30319_32 - ok
16:41:36.0147 0x1994  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:41:36.0153 0x1994  clr_optimization_v4.0.30319_64 - ok
16:41:36.0189 0x1994  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
16:41:36.0191 0x1994  CmBatt - ok
16:41:36.0219 0x1994  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:41:36.0222 0x1994  cmdide - ok
16:41:36.0271 0x1994  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
16:41:36.0300 0x1994  CNG - ok
16:41:36.0390 0x1994  [ 97238AC8006C14EAF80E374D3B81C2B3, 1E1BE4D4211055CFB7DA88C259D10749AEE389392D31E52ADF5A55F21294998D ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
16:41:36.0413 0x1994  CnxtHdAudService - ok
16:41:36.0443 0x1994  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
16:41:36.0445 0x1994  Compbatt - ok
16:41:36.0467 0x1994  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
16:41:36.0470 0x1994  CompositeBus - ok
16:41:36.0480 0x1994  COMSysApp - ok
16:41:36.0538 0x1994  [ 4B90D323FC38FE13230C2A1EE18896E1, 4FF4DC5D08ED94A75EC42B4B3D12723E4E0BDE45E9056CB2C9014D140941D577 ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
16:41:36.0553 0x1994  cphs - ok
16:41:36.0569 0x1994  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
16:41:36.0572 0x1994  crcdisk - ok
16:41:36.0615 0x1994  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:41:36.0624 0x1994  CryptSvc - ok
16:41:36.0664 0x1994  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
16:41:36.0695 0x1994  CSC - ok
16:41:36.0721 0x1994  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
16:41:36.0737 0x1994  CscService - ok
16:41:36.0784 0x1994  [ DF214BFF646880D0EB31BDC86136B29B, A641AB1FB7E8A5453584B5577587FF43E0C1F9EEAA2A931A1D8B8FAB3913414D ] CtClsFlt        C:\Windows\system32\DRIVERS\CtClsFlt.sys
16:41:36.0793 0x1994  CtClsFlt - ok
16:41:36.0859 0x1994  [ 9A59DF2CA690019FEA3B265D5A7EB619, F15D51B3C78A213BA6D6FF7CEA58549673CEAFE97C0A6C90C93591637CE4D5B2 ] CxUtilSvc       C:\Program Files\Conexant\SA3\CxUtilSvc.exe
16:41:36.0865 0x1994  CxUtilSvc - ok
16:41:36.0912 0x1994  [ BA25D4B9B067248F7CAC416E855D706B, EB00FEC005863284D25AC708CEF65D945A1599801A3FDE4B992C1AD4593E2036 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
16:41:36.0918 0x1994  dc3d - ok
16:41:36.0973 0x1994  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:41:36.0997 0x1994  DcomLaunch - ok
16:41:37.0044 0x1994  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
16:41:37.0057 0x1994  defragsvc - ok
16:41:37.0094 0x1994  [ A97BD43C2628D7274C88A3B4CE785EFB, F85B074A291BC3D63DFD81EC39FBDB1EECDF86A33A1AB7580624EEAF6337DE63 ] DellDigitalDelivery c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
16:41:37.0099 0x1994  DellDigitalDelivery - ok
16:41:37.0116 0x1994  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:41:37.0121 0x1994  DfsC - ok
16:41:37.0158 0x1994  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:41:37.0168 0x1994  Dhcp - ok
16:41:37.0189 0x1994  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
16:41:37.0191 0x1994  discache - ok
16:41:37.0219 0x1994  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
16:41:37.0221 0x1994  Disk - ok
16:41:37.0246 0x1994  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
16:41:37.0252 0x1994  dmvsc - ok
16:41:37.0289 0x1994  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:41:37.0299 0x1994  Dnscache - ok
16:41:37.0318 0x1994  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:41:37.0326 0x1994  dot3svc - ok
16:41:37.0387 0x1994  [ AD57743DBA53B0B525202AB47CA90CC5, E063B0A498D3A32BAEABD9FE225802726B506628FBC86C0D2D1B7C0950494452 ] DpHost          C:\Program Files\DigitalPersona\Bin\DpHostW.exe
16:41:37.0402 0x1994  DpHost - ok
16:41:37.0435 0x1994  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
16:41:37.0445 0x1994  DPS - ok
16:41:37.0489 0x1994  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:41:37.0492 0x1994  drmkaud - ok
16:41:37.0560 0x1994  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:41:37.0587 0x1994  DXGKrnl - ok
16:41:37.0607 0x1994  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
16:41:37.0611 0x1994  EapHost - ok
16:41:37.0720 0x1994  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
16:41:37.0826 0x1994  ebdrv - ok
16:41:37.0863 0x1994  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
16:41:37.0864 0x1994  EFS - ok
16:41:37.0945 0x1994  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:41:37.0974 0x1994  ehRecvr - ok
16:41:37.0990 0x1994  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
16:41:37.0995 0x1994  ehSched - ok
16:41:38.0033 0x1994  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
16:41:38.0064 0x1994  elxstor - ok
16:41:38.0071 0x1994  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:41:38.0075 0x1994  ErrDev - ok
16:41:38.0130 0x1994  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
16:41:38.0149 0x1994  EventSystem - ok
16:41:38.0172 0x1994  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
16:41:38.0178 0x1994  exfat - ok
16:41:38.0201 0x1994  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:41:38.0212 0x1994  fastfat - ok
16:41:38.0265 0x1994  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
16:41:38.0293 0x1994  Fax - ok
16:41:38.0299 0x1994  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
16:41:38.0300 0x1994  fdc - ok
16:41:38.0325 0x1994  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
16:41:38.0328 0x1994  fdPHost - ok
16:41:38.0336 0x1994  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:41:38.0340 0x1994  FDResPub - ok
16:41:38.0357 0x1994  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:41:38.0362 0x1994  FileInfo - ok
16:41:38.0367 0x1994  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:41:38.0369 0x1994  Filetrace - ok
16:41:38.0378 0x1994  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
16:41:38.0380 0x1994  flpydisk - ok
16:41:38.0405 0x1994  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:41:38.0415 0x1994  FltMgr - ok
16:41:38.0483 0x1994  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
16:41:38.0516 0x1994  FontCache - ok
16:41:38.0555 0x1994  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:41:38.0558 0x1994  FontCache3.0.0.0 - ok
16:41:38.0569 0x1994  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:41:38.0571 0x1994  FsDepends - ok
16:41:38.0603 0x1994  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:41:38.0604 0x1994  Fs_Rec - ok
16:41:38.0673 0x1994  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:41:38.0684 0x1994  fvevol - ok
16:41:38.0700 0x1994  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
16:41:38.0703 0x1994  gagp30kx - ok
16:41:38.0766 0x1994  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
16:41:38.0814 0x1994  gpsvc - ok
16:41:38.0870 0x1994  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:41:38.0876 0x1994  gupdate - ok
16:41:38.0884 0x1994  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:41:38.0889 0x1994  gupdatem - ok
16:41:38.0905 0x1994  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:41:38.0908 0x1994  hcw85cir - ok
16:41:38.0925 0x1994  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
16:41:38.0929 0x1994  HDAudBus - ok
16:41:38.0941 0x1994  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
16:41:38.0945 0x1994  HidBatt - ok
16:41:38.0954 0x1994  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
16:41:38.0959 0x1994  HidBth - ok
16:41:38.0979 0x1994  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
16:41:38.0983 0x1994  HidIr - ok
16:41:39.0003 0x1994  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
16:41:39.0007 0x1994  hidserv - ok
16:41:39.0047 0x1994  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:41:39.0050 0x1994  HidUsb - ok
16:41:39.0074 0x1994  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:41:39.0081 0x1994  hkmsvc - ok
16:41:39.0102 0x1994  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:41:39.0115 0x1994  HomeGroupListener - ok
16:41:39.0141 0x1994  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:41:39.0153 0x1994  HomeGroupProvider - ok
16:41:39.0242 0x1994  [ 86724A200BF1F08A03FB563660FCD928, E2BDD30D7AFECB0F517BB02C788C93D506FB2B180DCA239BC4A1FEDB1E986EAD ] HP DS Service   C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
16:41:39.0245 0x1994  HP DS Service - ok
16:41:39.0306 0x1994  [ 9C42E435F629CD8512BECFA082762425, BC817D05E5B8BE05CAB05F075A2C0B3CCF39E6BBD924BD0040C698F4D4580677 ] HP LaserJet Service C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
16:41:39.0312 0x1994  HP LaserJet Service - ok
16:41:39.0378 0x1994  [ 5DA42D24712E00728CEA2342A65009B2, 73EC5250DCFD556525B24B3CA66C64AC7747E77652A2AD6119936A59A9E8562A ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
16:41:39.0390 0x1994  hpqcxs08 - ok
16:41:39.0418 0x1994  [ D86A39BF100069444D026D22D9A6E555, 7B24D48D5BA67704C88697FADB64364E0E64D26259408E3C219820C5404C5EEC ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
16:41:39.0425 0x1994  hpqddsvc - ok
16:41:39.0460 0x1994  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:41:39.0467 0x1994  HpSAMD - ok
16:41:39.0652 0x1994  [ F37882F128EFACEFE353E0BAE2766909, 2F9D21613500F092DFC0DB879180B549EE615D9B07408A5CC1A7F84663B2F47A ] HPSLPSVC        C:\Users\ahebert\AppData\Local\Temp\7zS6F2D\hpslpsvc64.dll
16:41:39.0683 0x1994  HPSLPSVC - ok
16:41:39.0734 0x1994  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:41:39.0773 0x1994  HTTP - ok
16:41:39.0792 0x1994  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:41:39.0792 0x1994  hwpolicy - ok
16:41:39.0812 0x1994  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
16:41:39.0818 0x1994  i8042prt - ok
16:41:39.0863 0x1994  [ D1753C06EE17E29352B065EACF3F10D0, 4DD4C991FAA3CCF99DF8DC9F8F5DEEDEECD55977F0C3AA8C404DEFD21E32A62B ] iaStor          C:\Windows\system32\drivers\iaStor.sys
16:41:39.0883 0x1994  iaStor - ok
16:41:39.0951 0x1994  [ 545462D0DBE24AF379BA869B7C185CCD, 056F9D0D5FD4FEF37665A35A4029722FF60D02A69854E952DC361CC0E5CD26F9 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
16:41:39.0953 0x1994  IAStorDataMgrSvc - ok
16:41:39.0991 0x1994  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:41:40.0014 0x1994  iaStorV - ok
16:41:40.0060 0x1994  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:41:40.0086 0x1994  idsvc - ok
16:41:40.0117 0x1994  IEEtwCollectorService - ok
16:41:40.0519 0x1994  [ 3FB253E8059A1AAC3A8B83A31D094CC5, 4D4988BF7D81FB6D75CDB65E1E42AC72DA76D3F84712AA1A27428A6490E342D0 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
16:41:40.0986 0x1994  igfx - ok
16:41:41.0031 0x1994  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
16:41:41.0036 0x1994  iirsp - ok
16:41:41.0105 0x1994  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
16:41:41.0150 0x1994  IKEEXT - ok
16:41:41.0170 0x1994  [ 6C9FFFECA9FED31347D211C5D1FFBD2D, 36CF8B847FAED0D978B3169ED550CC958025902CAC1D7D304E2684B2483E72B8 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
16:41:41.0178 0x1994  IntcDAud - ok
16:41:41.0245 0x1994  [ 7C76466F4E0F76CE259C6005D161E9E8, 19F3CCC3A86B68DB70B7608F9ED33746518F5B2450E5BAF9581127CE7A9AA5D2 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
16:41:41.0277 0x1994  Intel® Capability Licensing Service Interface - ok
16:41:41.0307 0x1994  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:41:41.0310 0x1994  intelide - ok
16:41:41.0342 0x1994  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:41:41.0345 0x1994  intelppm - ok
16:41:41.0368 0x1994  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:41:41.0376 0x1994  IPBusEnum - ok
16:41:41.0389 0x1994  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:41:41.0395 0x1994  IpFilterDriver - ok
16:41:41.0441 0x1994  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:41:41.0464 0x1994  iphlpsvc - ok
16:41:41.0469 0x1994  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:41:41.0472 0x1994  IPMIDRV - ok
16:41:41.0477 0x1994  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:41:41.0481 0x1994  IPNAT - ok
16:41:41.0498 0x1994  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:41:41.0500 0x1994  IRENUM - ok
16:41:41.0503 0x1994  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:41:41.0505 0x1994  isapnp - ok
16:41:41.0537 0x1994  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
16:41:41.0549 0x1994  iScsiPrt - ok
16:41:41.0592 0x1994  [ 846354992EBB373F452EB9182D501B08, 453459133DCA875E93CAAE9852E652F3794F8C31CE53526C47A181FDBABE6849 ] iusb3hcs        C:\Windows\system32\drivers\iusb3hcs.sys
16:41:41.0593 0x1994  iusb3hcs - ok
16:41:41.0641 0x1994  [ 1D88A23853387D34D52CC8F9DDBFC56C, D00083B61E93E7E1D247EAB332787912FCF7605AF7043F071238C50E4A15016B ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
16:41:41.0654 0x1994  iusb3hub - ok
16:41:41.0708 0x1994  [ FC5EFD7C797DF19DFB999F0605A7924E, C56CE3840F3B11D81BED38E5F59ABCA190DFB7127F06263193870312A83379AF ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
16:41:41.0727 0x1994  iusb3xhc - ok
16:41:41.0755 0x1994  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:41:41.0756 0x1994  kbdclass - ok
16:41:41.0781 0x1994  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:41:41.0784 0x1994  kbdhid - ok
16:41:41.0800 0x1994  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
16:41:41.0803 0x1994  KeyIso - ok
16:41:41.0849 0x1994  [ 8B5219318DF5895ABD230C373F2DF18A, CE9123DA76B43FE1C8880AA61E333B04750D8726754E932E043A20F28FBCA028 ] kl1             C:\Windows\system32\DRIVERS\kl1.sys
16:41:41.0873 0x1994  kl1 - ok
16:41:41.0905 0x1994  [ 73A82E89C9F52B8B3B0D40F28976A110, 8DAEAA065D661743179E8DA5DB04724BA209ED1C62B6BACFA800ED5D0472D13A ] KLFLTDEV        C:\Windows\system32\DRIVERS\klfltdev.sys
16:41:41.0906 0x1994  KLFLTDEV - ok
16:41:41.0954 0x1994  [ 8C6A7FFCF235E03DF09CB66A909F80DD, 72D836012500E9E4388CEC7BF9C01523427D24A0B8ED86C6C2E147F273A97276 ] KLIF            C:\Windows\system32\DRIVERS\klif.sys
16:41:41.0976 0x1994  KLIF - ok
16:41:42.0012 0x1994  [ F360C8591E1C0DA4BF6F07E1026E3D76, 60EED86085652966631A3734FA423D1AF037DA9BB3BF02E4495E09D4710C4275 ] KLIM6           C:\Windows\system32\DRIVERS\klim6.sys
16:41:42.0013 0x1994  KLIM6 - ok
16:41:42.0088 0x1994  [ CF3B093523E5D2E6B149308CF1CE2CD7, 7701E42AF24080F5FC50B146421558C08DAC15F61B4251DBF6B02C7DE7BA68E2 ] klnagent        C:\Program Files (x86)\Kaspersky Lab\NetworkAgent\klnagent.exe
16:41:42.0093 0x1994  klnagent - ok
16:41:42.0121 0x1994  [ 50965746A05FE99565A0FBE0B5BFB666, 7F1F866D6841DFB88A7F229B0F01F42F46266B192E4AD937E55C13901A7A3B7C ] kltdi           C:\Windows\system32\DRIVERS\kltdi.sys
16:41:42.0124 0x1994  kltdi - ok
16:41:42.0161 0x1994  [ F66771306AEEE7B105BBBD758B721A28, 7ABEC060F371FD50EB0EAA4FDAFBD500DE7608F2CD5F660DBBF1E848FBCBA096 ] kneps           C:\Windows\system32\DRIVERS\kneps.sys
16:41:42.0167 0x1994  kneps - ok
16:41:42.0199 0x1994  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:41:42.0204 0x1994  KSecDD - ok
16:41:42.0220 0x1994  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:41:42.0228 0x1994  KSecPkg - ok
16:41:42.0252 0x1994  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:41:42.0255 0x1994  ksthunk - ok
16:41:42.0294 0x1994  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:41:42.0313 0x1994  KtmRm - ok
16:41:42.0339 0x1994  [ BD56BAE4403497E31727096CEBC42956, 516AC82FA7DDC4D97E26D33C0C2D085EB0D268E0580B87628FCE07F10625AA30 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
16:41:42.0341 0x1994  L1C - ok
16:41:42.0381 0x1994  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
16:41:42.0395 0x1994  LanmanServer - ok
16:41:42.0424 0x1994  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:41:42.0433 0x1994  LanmanWorkstation - ok
16:41:42.0465 0x1994  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:41:42.0469 0x1994  lltdio - ok
16:41:42.0502 0x1994  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:41:42.0519 0x1994  lltdsvc - ok
16:41:42.0537 0x1994  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:41:42.0542 0x1994  lmhosts - ok
16:41:42.0579 0x1994  [ AB41542FA180CB3317F597ED7E7D5C5D, EA8108F81B94D7BB98ACFAF579F70A61FB3887937D1EF57E6225B70036AEC061 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:41:42.0589 0x1994  LMS - ok
16:41:42.0625 0x1994  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
16:41:42.0633 0x1994  LSI_FC - ok
16:41:42.0642 0x1994  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
16:41:42.0648 0x1994  LSI_SAS - ok
16:41:42.0654 0x1994  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
16:41:42.0657 0x1994  LSI_SAS2 - ok
16:41:42.0661 0x1994  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
16:41:42.0665 0x1994  LSI_SCSI - ok
16:41:42.0689 0x1994  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
16:41:42.0692 0x1994  luafv - ok
16:41:42.0716 0x1994  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:41:42.0723 0x1994  Mcx2Svc - ok
16:41:42.0737 0x1994  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
16:41:42.0742 0x1994  megasas - ok
16:41:42.0756 0x1994  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
16:41:42.0768 0x1994  MegaSR - ok
16:41:42.0812 0x1994  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
16:41:42.0815 0x1994  MEIx64 - ok
16:41:42.0848 0x1994  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
16:41:42.0853 0x1994  MMCSS - ok
16:41:42.0860 0x1994  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
16:41:42.0863 0x1994  Modem - ok
16:41:42.0877 0x1994  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:41:42.0879 0x1994  monitor - ok
16:41:42.0893 0x1994  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:41:42.0895 0x1994  mouclass - ok
16:41:42.0924 0x1994  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:41:42.0927 0x1994  mouhid - ok
16:41:42.0948 0x1994  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:41:42.0953 0x1994  mountmgr - ok
16:41:43.0013 0x1994  [ 4E9D8041D352A33332FD6F59A3A78B03, D4E6229B07EF9866993EEE4F6223DC7F1FF1108273FE14A3DC74E65C181DE56A ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:41:43.0021 0x1994  MozillaMaintenance - ok
16:41:43.0042 0x1994  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:41:43.0048 0x1994  mpio - ok
16:41:43.0060 0x1994  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:41:43.0062 0x1994  mpsdrv - ok
16:41:43.0112 0x1994  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:41:43.0155 0x1994  MpsSvc - ok
16:41:43.0177 0x1994  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:41:43.0182 0x1994  MRxDAV - ok
16:41:43.0208 0x1994  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:41:43.0216 0x1994  mrxsmb - ok
16:41:43.0235 0x1994  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:41:43.0245 0x1994  mrxsmb10 - ok
16:41:43.0261 0x1994  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:41:43.0266 0x1994  mrxsmb20 - ok
16:41:43.0305 0x1994  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
16:41:43.0310 0x1994  msahci - ok
16:41:43.0341 0x1994  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:41:43.0350 0x1994  msdsm - ok
16:41:43.0378 0x1994  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
16:41:43.0388 0x1994  MSDTC - ok
16:41:43.0404 0x1994  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:41:43.0405 0x1994  Msfs - ok
16:41:43.0412 0x1994  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:41:43.0413 0x1994  mshidkmdf - ok
16:41:43.0435 0x1994  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:41:43.0436 0x1994  msisadrv - ok
16:41:43.0454 0x1994  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:41:43.0464 0x1994  MSiSCSI - ok
16:41:43.0469 0x1994  msiserver - ok
16:41:43.0482 0x1994  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:41:43.0485 0x1994  MSKSSRV - ok
16:41:43.0492 0x1994  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:41:43.0494 0x1994  MSPCLOCK - ok
16:41:43.0497 0x1994  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:41:43.0498 0x1994  MSPQM - ok
16:41:43.0518 0x1994  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:41:43.0527 0x1994  MsRPC - ok
16:41:43.0541 0x1994  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
16:41:43.0542 0x1994  mssmbios - ok
16:41:43.0554 0x1994  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:41:43.0556 0x1994  MSTEE - ok
16:41:43.0560 0x1994  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
16:41:43.0561 0x1994  MTConfig - ok
16:41:43.0572 0x1994  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
16:41:43.0573 0x1994  Mup - ok
16:41:43.0596 0x1994  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
16:41:43.0608 0x1994  napagent - ok
16:41:43.0639 0x1994  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:41:43.0652 0x1994  NativeWifiP - ok
16:41:43.0725 0x1994  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:41:43.0753 0x1994  NDIS - ok
16:41:43.0770 0x1994  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:41:43.0772 0x1994  NdisCap - ok
16:41:43.0795 0x1994  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:41:43.0798 0x1994  NdisTapi - ok
16:41:43.0814 0x1994  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:41:43.0818 0x1994  Ndisuio - ok
16:41:43.0835 0x1994  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:41:43.0843 0x1994  NdisWan - ok
16:41:43.0855 0x1994  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:41:43.0858 0x1994  NDProxy - ok
16:41:43.0892 0x1994  [ 2C723E42FC8D7B0209492828F921FB50, 2ECF9F4D91F317432FB5A6D01D8271BB7E2A5B8A6CA9EF2F2036890D2B072E52 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
16:41:43.0896 0x1994  Net Driver HPZ12 - ok
16:41:43.0913 0x1994  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:41:43.0915 0x1994  NetBIOS - ok
16:41:43.0935 0x1994  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:41:43.0944 0x1994  NetBT - ok
16:41:43.0965 0x1994  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
16:41:43.0966 0x1994  Netlogon - ok
16:41:43.0993 0x1994  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
16:41:44.0017 0x1994  Netman - ok
16:41:44.0094 0x1994  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:41:44.0103 0x1994  NetMsmqActivator - ok
16:41:44.0113 0x1994  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:41:44.0119 0x1994  NetPipeActivator - ok
16:41:44.0139 0x1994  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
16:41:44.0151 0x1994  netprofm - ok
16:41:44.0157 0x1994  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:41:44.0159 0x1994  NetTcpActivator - ok
16:41:44.0165 0x1994  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:41:44.0167 0x1994  NetTcpPortSharing - ok
16:41:44.0188 0x1994  [ 73CE12B8BDD747B0063CB0A7EF44CEA7, F570BB52BE460DBA6203698CC96FFD9674E1903D0E0F5C49375BE3F8D8E89582 ] netvsc          C:\Windows\system32\DRIVERS\netvsc60.sys
16:41:44.0193 0x1994  netvsc - ok
16:41:44.0217 0x1994  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
16:41:44.0221 0x1994  nfrd960 - ok
16:41:44.0249 0x1994  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:41:44.0264 0x1994  NlaSvc - ok
16:41:44.0402 0x1994  [ B9B72FAAAA41D59B73B88FE3DD737ED1, 050E741FB5313523340B19C9C168611222C4AE9A6084FE3E2F908A49EA909A29 ] NOBU            C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
16:41:44.0483 0x1994  NOBU - ok
16:41:44.0505 0x1994  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:41:44.0506 0x1994  Npfs - ok
16:41:44.0531 0x1994  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
16:41:44.0533 0x1994  nsi - ok
16:41:44.0545 0x1994  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:41:44.0548 0x1994  nsiproxy - ok
16:41:44.0640 0x1994  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:41:44.0707 0x1994  Ntfs - ok
16:41:44.0719 0x1994  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
16:41:44.0720 0x1994  Null - ok
16:41:44.0734 0x1994  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:41:44.0740 0x1994  nvraid - ok
16:41:44.0751 0x1994  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:41:44.0757 0x1994  nvstor - ok
16:41:44.0779 0x1994  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:41:44.0785 0x1994  nv_agp - ok
16:41:44.0801 0x1994  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:41:44.0807 0x1994  ohci1394 - ok
16:41:44.0859 0x1994  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:41:44.0868 0x1994  ose - ok
16:41:45.0049 0x1994  [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:41:45.0197 0x1994  osppsvc - ok
16:41:45.0254 0x1994  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:41:45.0271 0x1994  p2pimsvc - ok
16:41:45.0311 0x1994  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
16:41:45.0340 0x1994  p2psvc - ok
16:41:45.0364 0x1994  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
16:41:45.0372 0x1994  Parport - ok
16:41:45.0398 0x1994  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:41:45.0402 0x1994  partmgr - ok
16:41:45.0425 0x1994  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:41:45.0436 0x1994  PcaSvc - ok
16:41:45.0462 0x1994  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
16:41:45.0466 0x1994  pci - ok
16:41:45.0489 0x1994  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
16:41:45.0493 0x1994  pciide - ok
16:41:45.0518 0x1994  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
16:41:45.0531 0x1994  pcmcia - ok
16:41:45.0548 0x1994  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:41:45.0550 0x1994  pcw - ok
16:41:45.0586 0x1994  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:41:45.0620 0x1994  PEAUTH - ok
16:41:45.0691 0x1994  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
16:41:45.0747 0x1994  PeerDistSvc - ok
16:41:45.0799 0x1994  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:41:45.0801 0x1994  PerfHost - ok
16:41:45.0870 0x1994  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
16:41:45.0909 0x1994  pla - ok
16:41:45.0945 0x1994  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:41:45.0962 0x1994  PlugPlay - ok
16:41:45.0986 0x1994  [ 171E6D91A20AAC8D02172A64E82CE90B, 0D51F00D6C0376CD12893620E0A15E687263048CFE20E953F6BB4B7D6CDC3F50 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
16:41:45.0992 0x1994  Pml Driver HPZ12 - ok
16:41:46.0008 0x1994  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:41:46.0015 0x1994  PNRPAutoReg - ok
16:41:46.0043 0x1994  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:41:46.0049 0x1994  PNRPsvc - ok
16:41:46.0080 0x1994  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:41:46.0092 0x1994  PolicyAgent - ok
16:41:46.0116 0x1994  [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power           C:\Windows\system32\umpo.dll
16:41:46.0121 0x1994  Power - ok
16:41:46.0147 0x1994  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:41:46.0153 0x1994  PptpMiniport - ok
16:41:46.0166 0x1994  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
16:41:46.0171 0x1994  Processor - ok
16:41:46.0199 0x1994  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:41:46.0212 0x1994  ProfSvc - ok
16:41:46.0222 0x1994  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:41:46.0223 0x1994  ProtectedStorage - ok
16:41:46.0242 0x1994  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:41:46.0246 0x1994  Psched - ok
16:41:46.0320 0x1994  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
16:41:46.0361 0x1994  ql2300 - ok
16:41:46.0377 0x1994  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
16:41:46.0382 0x1994  ql40xx - ok
16:41:46.0401 0x1994  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
16:41:46.0408 0x1994  QWAVE - ok
16:41:46.0417 0x1994  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:41:46.0419 0x1994  QWAVEdrv - ok
16:41:46.0428 0x1994  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:41:46.0430 0x1994  RasAcd - ok
16:41:46.0455 0x1994  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:41:46.0458 0x1994  RasAgileVpn - ok
16:41:46.0473 0x1994  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
16:41:46.0481 0x1994  RasAuto - ok
16:41:46.0499 0x1994  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:41:46.0506 0x1994  Rasl2tp - ok
16:41:46.0529 0x1994  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
16:41:46.0545 0x1994  RasMan - ok
16:41:46.0556 0x1994  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:41:46.0559 0x1994  RasPppoe - ok
16:41:46.0576 0x1994  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:41:46.0578 0x1994  RasSstp - ok
16:41:46.0597 0x1994  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:41:46.0605 0x1994  rdbss - ok
16:41:46.0609 0x1994  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
16:41:46.0610 0x1994  rdpbus - ok
16:41:46.0627 0x1994  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:41:46.0628 0x1994  RDPCDD - ok
16:41:46.0654 0x1994  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
16:41:46.0664 0x1994  RDPDR - ok
16:41:46.0675 0x1994  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:41:46.0676 0x1994  RDPENCDD - ok
16:41:46.0687 0x1994  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:41:46.0688 0x1994  RDPREFMP - ok
16:41:46.0723 0x1994  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:41:46.0725 0x1994  RdpVideoMiniport - ok
16:41:46.0751 0x1994  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:41:46.0762 0x1994  RDPWD - ok
16:41:46.0780 0x1994  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:41:46.0788 0x1994  rdyboost - ok
16:41:46.0808 0x1994  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:41:46.0812 0x1994  RemoteAccess - ok
16:41:46.0840 0x1994  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:41:46.0851 0x1994  RemoteRegistry - ok
16:41:46.0890 0x1994  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
16:41:46.0899 0x1994  RFCOMM - ok
16:41:46.0917 0x1994  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:41:46.0924 0x1994  RpcEptMapper - ok
16:41:46.0948 0x1994  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
16:41:46.0953 0x1994  RpcLocator - ok
16:41:46.0986 0x1994  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
16:41:47.0003 0x1994  RpcSs - ok
16:41:47.0022 0x1994  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:41:47.0024 0x1994  rspndr - ok
16:41:47.0046 0x1994  [ 36FCA0C67BCDC0DA047F5F36743B5CB9, 55B8F43B78B55900DA055206644D1DAD60AE453DB1A8D4527B86FAC346EEE587 ] RSUSBVSTOR      C:\Windows\system32\Drivers\RtsUVStor.sys
16:41:47.0054 0x1994  RSUSBVSTOR - ok
16:41:47.0069 0x1994  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
16:41:47.0071 0x1994  s3cap - ok
16:41:47.0078 0x1994  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
16:41:47.0079 0x1994  SamSs - ok
16:41:47.0091 0x1994  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:41:47.0097 0x1994  sbp2port - ok
16:41:47.0121 0x1994  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:41:47.0132 0x1994  SCardSvr - ok
16:41:47.0144 0x1994  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:41:47.0148 0x1994  scfilter - ok
16:41:47.0200 0x1994  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
16:41:47.0234 0x1994  Schedule - ok
16:41:47.0260 0x1994  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:41:47.0261 0x1994  SCPolicySvc - ok
16:41:47.0285 0x1994  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:41:47.0296 0x1994  SDRSVC - ok
16:41:47.0310 0x1994  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:41:47.0313 0x1994  secdrv - ok
16:41:47.0326 0x1994  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
16:41:47.0331 0x1994  seclogon - ok
16:41:47.0346 0x1994  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
16:41:47.0351 0x1994  SENS - ok
16:41:47.0362 0x1994  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:41:47.0366 0x1994  SensrSvc - ok
16:41:47.0382 0x1994  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
16:41:47.0386 0x1994  Serenum - ok
16:41:47.0402 0x1994  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
16:41:47.0408 0x1994  Serial - ok
16:41:47.0435 0x1994  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
16:41:47.0438 0x1994  sermouse - ok
16:41:47.0459 0x1994  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
16:41:47.0464 0x1994  SessionEnv - ok
16:41:47.0467 0x1994  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
16:41:47.0469 0x1994  sffdisk - ok
16:41:47.0478 0x1994  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:41:47.0481 0x1994  sffp_mmc - ok
16:41:47.0484 0x1994  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
16:41:47.0486 0x1994  sffp_sd - ok
16:41:47.0495 0x1994  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
16:41:47.0498 0x1994  sfloppy - ok
16:41:47.0580 0x1994  [ 4215C271D6E6898C3F4DABAB4F387DC9, 10D845466AC239E18A381FA3BCF1DA1CDCF7CC4363D3A6B4695D6562B3EF7541 ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
16:41:47.0646 0x1994  SftService - ok
16:41:47.0677 0x1994  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:41:47.0687 0x1994  SharedAccess - ok
16:41:47.0703 0x1994  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:41:47.0714 0x1994  ShellHWDetection - ok
16:41:47.0729 0x1994  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
16:41:47.0731 0x1994  SiSRaid2 - ok
16:41:47.0742 0x1994  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
16:41:47.0746 0x1994  SiSRaid4 - ok
16:41:47.0770 0x1994  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:41:47.0777 0x1994  Smb - ok
16:41:47.0792 0x1994  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:41:47.0795 0x1994  SNMPTRAP - ok
16:41:47.0807 0x1994  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:41:47.0808 0x1994  spldr - ok
16:41:47.0854 0x1994  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
16:41:47.0890 0x1994  Spooler - ok
16:41:47.0998 0x1994  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
16:41:48.0114 0x1994  sppsvc - ok
16:41:48.0146 0x1994  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:41:48.0153 0x1994  sppuinotify - ok
16:41:48.0197 0x1994  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:41:48.0222 0x1994  srv - ok
16:41:48.0240 0x1994  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:41:48.0249 0x1994  srv2 - ok
16:41:48.0264 0x1994  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:41:48.0268 0x1994  srvnet - ok
16:41:48.0299 0x1994  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:41:48.0311 0x1994  SSDPSRV - ok
16:41:48.0327 0x1994  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:41:48.0331 0x1994  SstpSvc - ok
16:41:48.0363 0x1994  [ E4EA2412FB1B8AEE33667A9CC6D456A4, E553D07BBD98CB026033D7D10D859795682D1BFCB9D33D494177B2E747EA5064 ] stdcfltn        C:\Windows\system32\DRIVERS\stdcfltn.sys
16:41:48.0364 0x1994  stdcfltn - ok
16:41:48.0384 0x1994  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
16:41:48.0388 0x1994  stexstor - ok
16:41:48.0421 0x1994  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\Windows\system32\drivers\serscan.sys
16:41:48.0423 0x1994  StillCam - ok
16:41:48.0463 0x1994  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
16:41:48.0489 0x1994  stisvc - ok
16:41:48.0509 0x1994  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
16:41:48.0515 0x1994  StorSvc - ok
16:41:48.0533 0x1994  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
16:41:48.0538 0x1994  storvsc - ok
16:41:48.0559 0x1994  [ 10D69C83513B50F34032F7F96E40019D, 8B941AB6867197FE219CB316E8566B7A2F122178561E9A1D88A4B19398EFAC2C ] ST_ACCEL        C:\Windows\system32\DRIVERS\ST_ACCEL.sys
16:41:48.0562 0x1994  ST_ACCEL - ok
16:41:48.0574 0x1994  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
16:41:48.0575 0x1994  swenum - ok
16:41:48.0611 0x1994  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
16:41:48.0642 0x1994  swprv - ok
16:41:48.0668 0x1994  [ 4CDD7DF58730D23BA9CB5829A6E2ECEA, 89A2A1604C2BF985894000F51D9D376B32F1327197866850B5BF8640272DE828 ] SynthVid        C:\Windows\system32\DRIVERS\VMBusVideoM.sys
16:41:48.0670 0x1994  SynthVid - ok
16:41:48.0740 0x1994  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
16:41:48.0811 0x1994  SysMain - ok
16:41:48.0827 0x1994  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:41:48.0831 0x1994  TabletInputService - ok
16:41:48.0848 0x1994  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:41:48.0857 0x1994  TapiSrv - ok
16:41:48.0871 0x1994  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
16:41:48.0875 0x1994  TBS - ok
16:41:48.0962 0x1994  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:41:49.0016 0x1994  Tcpip - ok
16:41:49.0074 0x1994  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:41:49.0100 0x1994  TCPIP6 - ok
16:41:49.0136 0x1994  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:41:49.0139 0x1994  tcpipreg - ok
16:41:49.0158 0x1994  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:41:49.0161 0x1994  TDPIPE - ok
16:41:49.0181 0x1994  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:41:49.0185 0x1994  TDTCP - ok
16:41:49.0214 0x1994  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:41:49.0220 0x1994  tdx - ok
16:41:49.0423 0x1994  [ 0F2A43DB0A4A70EF400295F413527293, D67D78CFB47E9EA1C1D9B37BFFFB44320A6ECC2D0C029768517C64F3A1882E19 ] TeamViewer8     C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
16:41:49.0492 0x1994  TeamViewer8 - ok
16:41:49.0514 0x1994  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
16:41:49.0515 0x1994  TermDD - ok
16:41:49.0545 0x1994  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
16:41:49.0561 0x1994  TermService - ok
16:41:49.0571 0x1994  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
16:41:49.0574 0x1994  Themes - ok
16:41:49.0591 0x1994  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
16:41:49.0593 0x1994  THREADORDER - ok
16:41:49.0604 0x1994  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
16:41:49.0609 0x1994  TrkWks - ok
16:41:49.0661 0x1994  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:41:49.0670 0x1994  TrustedInstaller - ok
16:41:49.0697 0x1994  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:41:49.0699 0x1994  tssecsrv - ok
16:41:49.0735 0x1994  [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:41:49.0739 0x1994  TsUsbFlt - ok
16:41:49.0765 0x1994  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
16:41:49.0770 0x1994  TsUsbGD - ok
16:41:49.0806 0x1994  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:41:49.0812 0x1994  tunnel - ok
16:41:49.0842 0x1994  [ FD24F98D2898BE093FE926604BE7DB99, F9851C57A2ED838AC76BB19FE2F62BB81C57DBBE2A2555F738B5D6725D39AD61 ] TurboB          C:\Windows\system32\DRIVERS\TurboB.sys
16:41:49.0845 0x1994  TurboB - ok
16:41:49.0885 0x1994  [ 600B406A04D90F577FEA8A88D7379F08, 77CC8E8AFB6F571A42D916C0B2FEFFD3A7A32A455C78228B407C6C9B6DED8CAD ] TurboBoost      C:\Program Files\Intel\TurboBoost\TurboBoost.exe
16:41:49.0894 0x1994  TurboBoost - ok
16:41:49.0913 0x1994  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
16:41:49.0918 0x1994  uagp35 - ok
16:41:49.0943 0x1994  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:41:49.0952 0x1994  udfs - ok
16:41:49.0982 0x1994  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:41:49.0985 0x1994  UI0Detect - ok
16:41:50.0001 0x1994  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:41:50.0006 0x1994  uliagpkx - ok
16:41:50.0032 0x1994  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:41:50.0034 0x1994  umbus - ok
16:41:50.0053 0x1994  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
16:41:50.0055 0x1994  UmPass - ok
16:41:50.0079 0x1994  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
16:41:50.0086 0x1994  UmRdpService - ok
16:41:50.0155 0x1994  [ 182BBA1B43898D5DA0938D2E9A526B31, 17BC40183349252843D3BD98E07A5A296992A55F281B196F4425F6725C29C8AB ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
16:41:50.0167 0x1994  UNS - ok
16:41:50.0200 0x1994  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
16:41:50.0210 0x1994  upnphost - ok
16:41:50.0242 0x1994  [ 91D3C92A44FC682DD791147604E79152, AA0B6799BF9C26C2C1793C91295288A4989AA43EC5E070B650DA7F0A142817CE ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:41:50.0248 0x1994  usbccgp - ok
16:41:50.0283 0x1994  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:41:50.0290 0x1994  usbcir - ok
16:41:50.0305 0x1994  [ F7FFDF2A1D19A76A87759126B244C816, C91F09D77E22D976952A46F7B93F611B719EDAF694D538242FA8FAF1BA9BB2F0 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
16:41:50.0309 0x1994  usbehci - ok
16:41:50.0331 0x1994  [ 245FE7FC634D6A993E682E0A9EBA4ABB, F7A536D215EE3A63358EC8B5946D7BB3B56357BF91347B07013E00DAC98775B6 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:41:50.0340 0x1994  usbhub - ok
16:41:50.0374 0x1994  [ C1A8966E0D09BFB501045105B30D86F2, 5BB95FBA441B898E258A3BFE174FC1042A04C19E25C59DE1FD90594290B11DA9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:41:50.0379 0x1994  usbohci - ok
16:41:50.0408 0x1994  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:41:50.0412 0x1994  usbprint - ok
16:41:50.0443 0x1994  [ AAA2513C8AED8B54B189FD0C6B1634C0, 02FEE0B756AA559C29477A19861AC16D5A3152DC3C897C7D466423438B6A5E42 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
16:41:50.0448 0x1994  usbscan - ok
16:41:50.0463 0x1994  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:41:50.0469 0x1994  USBSTOR - ok
16:41:50.0498 0x1994  [ 2E682DCE4319A90E02A327F8A427544A, 3528C5A4669BAD53041085C3E72C64388D308E42AD9D1FAC85B6F2FFD81610FB ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
16:41:50.0503 0x1994  usbuhci - ok
16:41:50.0546 0x1994  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
16:41:50.0556 0x1994  usbvideo - ok
16:41:50.0579 0x1994  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
16:41:50.0585 0x1994  UxSms - ok
16:41:50.0612 0x1994  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
16:41:50.0615 0x1994  VaultSvc - ok
16:41:50.0743 0x1994  [ 832EFBAC3205B1468E537476BA1EBD52, 2A8AD4CD062B17920DEB26BB15791B2F71BDA0BF105B95D73E7089A55253AAB3 ] vcsFPService    c:\Windows\system32\vcsFPService.exe
16:41:50.0846 0x1994  vcsFPService - ok
16:41:50.0878 0x1994  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:41:50.0879 0x1994  vdrvroot - ok
16:41:50.0900 0x1994  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
16:41:50.0913 0x1994  vds - ok
16:41:50.0933 0x1994  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:41:50.0937 0x1994  vga - ok
16:41:50.0943 0x1994  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:41:50.0946 0x1994  VgaSave - ok
16:41:50.0969 0x1994  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
16:41:50.0980 0x1994  vhdmp - ok
16:41:51.0012 0x1994  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:41:51.0017 0x1994  viaide - ok
16:41:51.0043 0x1994  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
16:41:51.0047 0x1994  VMBusHID - ok
16:41:51.0064 0x1994  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:41:51.0068 0x1994  volmgr - ok
16:41:51.0097 0x1994  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:41:51.0112 0x1994  volmgrx - ok
16:41:51.0133 0x1994  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:41:51.0140 0x1994  volsnap - ok
16:41:51.0181 0x1994  [ B4A73CA4EF9A02B9738CEA9AD5FE5917, B6A8086189FE2F1C3FE5B3F484FBA3DB2E5E1836F3154D30090F136C27D16166 ] vpcbus          C:\Windows\system32\DRIVERS\vpchbus.sys
16:41:51.0188 0x1994  vpcbus - ok
16:41:51.0212 0x1994  [ E675FB2B48C54F09895482E2253B289C, 68BBFBF2356C849722E429CA753CC309A3CCE8CF00EBDBBD2695ECD292324DF2 ] vpcnfltr        C:\Windows\system32\DRIVERS\vpcnfltr.sys
16:41:51.0216 0x1994  vpcnfltr - ok
16:41:51.0249 0x1994  [ 5FB42082B0D19A0268705F1DD343DF20, 62F8EEE6A507CE6A8BD638020118D71B78332F79BA82654AB702AE46B04767D9 ] vpcusb          C:\Windows\system32\DRIVERS\vpcusb.sys
16:41:51.0254 0x1994  vpcusb - ok
16:41:51.0289 0x1994  [ 30D4243726A15A14F5C5E45898D14394, 0EED69CACCDEC1260C79B187370E420C12654F0F5F777A1FF27F5C5FF3BAE2E1 ] vpcvmm          C:\Windows\system32\drivers\vpcvmm.sys
16:41:51.0301 0x1994  vpcvmm - ok
16:41:51.0329 0x1994  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
16:41:51.0338 0x1994  vsmraid - ok
16:41:51.0419 0x1994  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
16:41:51.0482 0x1994  VSS - ok
16:41:51.0507 0x1994  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
16:41:51.0509 0x1994  vwifibus - ok
16:41:51.0522 0x1994  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
16:41:51.0525 0x1994  vwififlt - ok
16:41:51.0558 0x1994  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
16:41:51.0570 0x1994  W32Time - ok
16:41:51.0582 0x1994  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
16:41:51.0585 0x1994  WacomPen - ok
16:41:51.0601 0x1994  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:41:51.0603 0x1994  WANARP - ok
16:41:51.0608 0x1994  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:41:51.0610 0x1994  Wanarpv6 - ok
16:41:51.0687 0x1994  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
16:41:51.0745 0x1994  WatAdminSvc - ok
16:41:51.0811 0x1994  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
16:41:51.0855 0x1994  wbengine - ok
16:41:51.0883 0x1994  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:41:51.0889 0x1994  WbioSrvc - ok
16:41:51.0899 0x1994  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:41:51.0908 0x1994  wcncsvc - ok
16:41:51.0922 0x1994  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:41:51.0926 0x1994  WcsPlugInService - ok
16:41:51.0940 0x1994  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
16:41:51.0943 0x1994  Wd - ok
16:41:51.0970 0x1994  [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
16:41:51.0974 0x1994  WDC_SAM - ok
16:41:52.0021 0x1994  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:41:52.0048 0x1994  Wdf01000 - ok
16:41:52.0065 0x1994  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:41:52.0070 0x1994  WdiServiceHost - ok
16:41:52.0073 0x1994  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:41:52.0076 0x1994  WdiSystemHost - ok
16:41:52.0100 0x1994  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
16:41:52.0113 0x1994  WebClient - ok
16:41:52.0127 0x1994  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:41:52.0140 0x1994  Wecsvc - ok
16:41:52.0155 0x1994  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:41:52.0162 0x1994  wercplsupport - ok
16:41:52.0173 0x1994  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:41:52.0180 0x1994  WerSvc - ok
16:41:52.0214 0x1994  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:41:52.0216 0x1994  WfpLwf - ok
16:41:52.0245 0x1994  [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
16:41:52.0255 0x1994  WimFltr - ok
16:41:52.0279 0x1994  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:41:52.0283 0x1994  WIMMount - ok
16:41:52.0309 0x1994  WinDefend - ok
16:41:52.0324 0x1994  WinHttpAutoProxySvc - ok
16:41:52.0367 0x1994  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:41:52.0376 0x1994  Winmgmt - ok
16:41:52.0468 0x1994  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
16:41:52.0559 0x1994  WinRM - ok
16:41:52.0591 0x1994  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUSB          C:\Windows\system32\DRIVERS\WinUSB.sys
16:41:52.0593 0x1994  WinUSB - ok
16:41:52.0645 0x1994  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:41:52.0668 0x1994  Wlansvc - ok
16:41:52.0699 0x1994  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:41:52.0699 0x1994  wlcrasvc - ok
16:41:52.0793 0x1994  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:41:52.0824 0x1994  wlidsvc - ok
16:41:52.0871 0x1994  [ 9F061352FDC162D2E696DCEF51D3C291, 466430B184E673BB5499F41ABCEF888C8B8E15D4877996870C54DC685270FF2C ] wltrysvc        C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
16:41:52.0871 0x1994  wltrysvc - ok
16:41:52.0902 0x1994  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
16:41:52.0902 0x1994  WmiAcpi - ok
16:41:52.0933 0x1994  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:41:52.0949 0x1994  wmiApSrv - ok
16:41:52.0964 0x1994  WMPNetworkSvc - ok
16:41:52.0995 0x1994  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:41:52.0995 0x1994  WPCSvc - ok
16:41:53.0027 0x1994  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:41:53.0027 0x1994  WPDBusEnum - ok
16:41:53.0042 0x1994  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:41:53.0058 0x1994  ws2ifsl - ok
16:41:53.0058 0x1994  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
16:41:53.0073 0x1994  wscsvc - ok
16:41:53.0105 0x1994  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
16:41:53.0105 0x1994  WSDPrintDevice - ok
16:41:53.0105 0x1994  WSearch - ok
16:41:53.0198 0x1994  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:41:53.0292 0x1994  wuauserv - ok
16:41:53.0323 0x1994  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:41:53.0323 0x1994  WudfPf - ok
16:41:53.0354 0x1994  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:41:53.0370 0x1994  WUDFRd - ok
16:41:53.0401 0x1994  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:41:53.0401 0x1994  wudfsvc - ok
16:41:53.0448 0x1994  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:41:53.0463 0x1994  WwanSvc - ok
16:41:53.0479 0x1994  ================ Scan global ===============================
16:41:53.0495 0x1994  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
16:41:53.0526 0x1994  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
16:41:53.0557 0x1994  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
16:41:53.0573 0x1994  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
16:41:53.0588 0x1994  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
16:41:53.0604 0x1994  [ Global ] - ok
16:41:53.0604 0x1994  ================ Scan MBR ==================================
16:41:53.0619 0x1994  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
16:41:53.0822 0x1994  \Device\Harddisk0\DR0 - ok
16:41:53.0822 0x1994  ================ Scan VBR ==================================
16:41:53.0838 0x1994  [ 26937BD53E9F3E6310CDBD14AFAD11EF ] \Device\Harddisk0\DR0\Partition1
16:41:53.0853 0x1994  \Device\Harddisk0\DR0\Partition1 - ok
16:41:53.0853 0x1994  [ 9C8CE96959BA869411D182B715E87EE0 ] \Device\Harddisk0\DR0\Partition2
16:41:53.0869 0x1994  \Device\Harddisk0\DR0\Partition2 - ok
16:41:53.0869 0x1994  ================ Scan generic autorun ======================
16:41:53.0916 0x1994  [ 17D27C3120E01717F0C53BB1DF5ABFC7, FDA7159757343CD9F8D9030CD94111C1B0836CC3E396FB215B483CACB95CFBF2 ] C:\Program Files\DellTPad\Apoint.exe
16:41:53.0931 0x1994  Apoint - ok
16:41:53.0947 0x1994  [ 1EC75A31E7BAE7376AC404090D8821EE, FA3189BE0291A8AEF3A259F8171012D1410DA354BBEC3895CF4B2DECAF150FB1 ] C:\Windows\system32\igfxtray.exe
16:41:53.0963 0x1994  IgfxTray - ok
16:41:53.0978 0x1994  [ FFF316AE34A72EA2374F5CAD53C7EBE9, CFA402260D6027FEAA29C1965131964C23D98E1738A7A599913FC838D7704EE3 ] C:\Windows\system32\hkcmd.exe
16:41:53.0978 0x1994  HotKeysCmds - ok
16:41:53.0994 0x1994  [ 3BFDD168F9D2EBC2719E5B21E89235BF, F6CBB908D9971B1B8EFB45F5BC14CB7B0B222F6615B5E05B97903627CE40488C ] C:\Windows\system32\igfxpers.exe
16:41:54.0009 0x1994  Persistence - ok
16:41:54.0134 0x1994  [ 0475F35DF6A4B4BA6A4E48E24C8DF3DE, FDDE0FD1F7F2A3C446B42FFD3C9B5814CFB394FCFCAEBCD249B6B071B872820A ] c:\Program Files\Dell\QuickSet\QuickSet.exe
16:41:54.0259 0x1994  QuickSet - ok
16:41:54.0275 0x1994  IntelTBRunOnce - ok
16:41:54.0353 0x1994  [ CEA9CC9F13E82893327CBCE5FAA90D1A, 1E33ECF11841CEAC20BB26C05356180E31A4C1030BBA0E69F2952117BA02A946 ] C:\Program Files\CONEXANT\SA3\SACpl.exe
16:41:54.0384 0x1994  SmartAudio - ok
16:41:54.0587 0x1994  [ F739D3EC1ACA27E7DE521B22889C34CD, 5452E6AFC3F99B39A236F11B1FF30601B8FCA459DAF4EED28360ADD59647E037 ] C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe
16:41:54.0774 0x1994  Broadcom Wireless Manager UI - ok
16:41:54.0961 0x1994  [ 63DA875725652FB8FDF6FD0D38F1A42E, 529A61EFF2D299E6458749D34FE392524E5FF5EF8613677C648A5602541D7524 ] C:\Program Files (x86)\HP\Digital Imaging\Fax\Fax Driver 0.6 Base\hppfaxprintersrv.exe
16:41:55.0070 0x1994  HP LaserJet 200 color MFP M276 Series Fax - ok
16:41:55.0101 0x1994  [ 5514B64F7F2D25E09E2FDAF5D62B688C, 43263715ADC49250762A01E41DB2832C6A8B63CE4F66CDD8FC0B51DCA031DF27 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
16:41:55.0101 0x1994  IAStorIcon - ok
16:41:55.0179 0x1994  [ 4D1DA8CE5E364D22B4FF00F163194514, 165DE474309206A0F51266F19EDB4AF3D7BAD19FDA61B636AEE7A04278DBBC2C ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
16:41:55.0195 0x1994  USB3MON - ok
16:41:55.0242 0x1994  [ 13F44960416C1D24DAAC3CBBBAE49D35, 358C6DF2BDF54851D8407327B7D6215AF35AA0DDC6A0837F9BD6CCF28A7B4C80 ] C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
16:41:55.0273 0x1994  Dell Webcam Central - ok
16:41:55.0320 0x1994  [ EBE1962DC5EEFC13D20543013A891ABC, E6E993B38267D17EF4FFAD8870817DA0D65405C920177D077FA3FD7B98DB4C3D ] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
16:41:55.0335 0x1994  Dell DataSafe Online - ok
16:41:55.0382 0x1994  [ 6BA03B5AF0B49BFEFC5DF84C8DBE5209, C1C77823C4E97F70CCA10777C213A70E74FD372B74C96AA6D00D147A8B9656F4 ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
16:41:55.0382 0x1994  Adobe Reader Speed Launcher - ok
16:41:55.0460 0x1994  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
16:41:55.0491 0x1994  Adobe ARM - ok
16:41:55.0538 0x1994  [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
16:41:55.0538 0x1994  HP Software Update - ok
16:41:55.0601 0x1994  [ 9C99AF6C0C4892A83066FFA04265F95C, 18E94B8322960C56A7D0BEDF77D026F0318904ECC230B6121E97E6993B999B4F ] C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe
16:41:55.0616 0x1994  StatusAlerts - ok
16:41:55.0647 0x1994  [ 308F2EE28005510DE616409148CF077B, A2126CB185B0053086BDD6F0A16A503F6CA629AC677E4B7AE6D43C770061D087 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
16:41:55.0663 0x1994  SunJavaUpdateSched - ok
16:41:55.0757 0x1994  [ 7388DC5BCD229C8C5D27E41A19FB3F81, 025646A6A6B132A1C6B9B7A3AB01F79A360C95B2C7FE65FAAB0498F37F46E696 ] C:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\avp.exe
16:41:55.0772 0x1994  AVP - ok
16:41:55.0866 0x1994  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
16:41:55.0897 0x1994  Sidebar - ok
16:41:55.0913 0x1994  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
16:41:55.0928 0x1994  mctadmin - ok
16:41:55.0991 0x1994  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
16:41:56.0006 0x1994  Sidebar - ok
16:41:56.0022 0x1994  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
16:41:56.0022 0x1994  mctadmin - ok
16:41:56.0069 0x1994  i-Handbook - ok
16:41:56.0100 0x1994  Skype - ok
16:41:56.0100 0x1994  Optimizer Pro - ok
16:41:56.0115 0x1994  swg - ok
16:41:56.0193 0x1994  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
16:41:56.0271 0x1994  Sidebar - ok
16:41:56.0318 0x1994  KLPkInst_0c0f3228-9c95-4adb-9ec0-b416adfdc6d1 - ok
16:41:56.0334 0x1994  Skype - ok
16:41:56.0334 0x1994  swg - ok
16:41:56.0381 0x1994  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
16:41:56.0396 0x1994  Uninstall C:\Users\Archie Hebert\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64 - ok
16:41:56.0396 0x1994  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\system32\cmd.exe
16:41:56.0412 0x1994  Uninstall C:\Users\Archie Hebert\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112 - ok
16:41:56.0412 0x1994  Waiting for KSN requests completion. In queue: 124
16:41:57.0426 0x1994  Waiting for KSN requests completion. In queue: 124
16:41:58.0440 0x1994  Waiting for KSN requests completion. In queue: 124
16:41:59.0454 0x1994  Waiting for KSN requests completion. In queue: 124
16:42:00.0499 0x1994  AV detected via SS2: Kaspersky Endpoint Security 10 for Windows, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\wmiav.exe ( 10.1.0.867 ), 0x41000 ( enabled : updated )
16:42:00.0530 0x1994  FW detected via SS2: Kaspersky Endpoint Security 10 for Windows, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows\wmifw.exe ( 10.1.0.867 ), 0x41010 ( enabled )
16:42:03.0416 0x1994  ============================================================
16:42:03.0416 0x1994  Scan finished
16:42:03.0416 0x1994  ============================================================
16:42:03.0416 0x198c  Detected object count: 0
16:42:03.0416 0x198c  Actual detected object count: 0
 


ADWcleaner

 

 

# AdwCleaner v3.309 - Report created 07/09/2014 at 16:48:45
# Updated 02/09/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : dbarber - VOS34SI
# Running from : C:\Users\dbarber\Downloads\adwcleaner_3.309.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\dbarber\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo
Folder Deleted : C:\Users\ahebert\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjkpcnacdgdlpfejlgflolpaigoicibh

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239


-\\ Mozilla Firefox v31.0 (x86 en-US)

[ File : C:\Users\Administrateur\AppData\Roaming\Mozilla\Firefox\Profiles\1ofuvwbj.default\prefs.js ]


[ File : C:\Users\ahebert\AppData\Roaming\Mozilla\Firefox\Profiles\to35l1n2.default\prefs.js ]


[ File : C:\Users\dbarber\AppData\Roaming\Mozilla\Firefox\Profiles\rbzsnwb0.default\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\ahebert\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://start.sweetpacks.com/?src=6&q={searchTerms}&st=12&crg=3.5000006.10045&barid={E72172F3-C21E-11E2-A836-642737F5D128}
Deleted [Search Provider] : hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=ORJ&o=100000027&locale=en_FR&apn_uid=625C3C33-0B4B-4B26-A66A-F0CB5AD72C87&apn_ptnrs=TV&apn_sauid=100AC278-3A81-4BA1-85C5-B22EEF89FFE5&apn_dtid=OSJ000YYUS&q={searchTerms}
Deleted [Search Provider] : hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&CUI=UN16209132044936475&ctid=CT3294791&UM=2

[ File : C:\Users\dbarber\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

*************************

AdwCleaner[R0].txt - [8940 octets] - [03/09/2014 08:41:35]
AdwCleaner[R1].txt - [2293 octets] - [07/09/2014 16:44:08]
AdwCleaner[S0].txt - [8924 octets] - [03/09/2014 08:58:12]
AdwCleaner[S1].txt - [2228 octets] - [07/09/2014 16:48:45]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2288 octets] ##########
 



#6 everything

everything
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:11:50 AM

Posted 13 September 2014 - 12:26 PM

JRT

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Professional x64
Ran by dbarber on Sun 09/07/2014 at 17:19:53.28
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2682276605-2424806417-3599627324-2634\Software\sweetim



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted: [File] C:\Users\dbarber\AppData\Roaming\mozilla\firefox\profiles\rbzsnwb0.default\searchplugins\youtube-video-search.xml
Emptied folder: C:\Users\dbarber\AppData\Roaming\mozilla\firefox\profiles\rbzsnwb0.default\minidumps [2 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 09/07/2014 at 17:25:07.19
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 


And finally ESET

 

 

C:\Users\ahebert\AppData\Local\Temp\Player_Setup.exe\8f71c1bd7a694bbb930553653df49741\software\Setup.exe    a variant of Win32/AdWare.Toolbar.AmyBar.A application    
C:\Users\Archie Hebert\AppData\Local\Temp\APNStub.exe    a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application    
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\1.1.29_0\plugins\npDefaultTabSearch.dll    a variant of Win32/Toolbar.DefaultTab.C potentially unwanted application    
C:\Windows\System32\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\1.1.30_0\plugins\npDefaultTabSearch.dll    a variant of Win32/Toolbar.DefaultTab.C potentially unwanted application    
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\update[1]    a variant of Win32/Toolbar.Perion.G potentially unwanted application    
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\update[2]    a variant of Win32/Toolbar.Perion.A potentially unwanted application    
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\1.1.29_0\plugins\npDefaultTabSearch.dll    a variant of Win32/Toolbar.DefaultTab.C potentially unwanted application    
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc\1.1.30_0\plugins\npDefaultTabSearch.dll    a variant of Win32/Toolbar.DefaultTab.C potentially unwanted application    
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\update[1]    a variant of Win32/Toolbar.Perion.G potentially unwanted application    
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\update[2]    a variant of Win32/Toolbar.Perion.A potentially unwanted application    
C:\Windows\Temp\INJ001\ExtensionUpdate.exe    a variant of Win32/Toolbar.Perion.G potentially unwanted application    
C:\Windows\Temp\INJ002\ExtensionUpdate.exe    a variant of Win32/Toolbar.Perion.A potentially unwanted application    
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Conduit\Community Alerts\Alert.dll.vir    Win32/Toolbar.Conduit.Y potentially unwanted application    deleted - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Conduit\CT3294791\plugins\TBVerifier.dll.vir    Win32/Toolbar.Conduit.AC potentially unwanted application    deleted - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe    a variant of Win32/HiddenStart.A potentially unsafe application    deleted - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe    a variant of Win32/HiddenStart.A potentially unsafe application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\50onred_ads_only_no_fb_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\ads_only_5_m[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\arcadi2_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\BuzzWords_1060-2080[1].exe    multiple threats    cleaned by deleting - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\corticas_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\FlvPlayerSetup.exe    a variant of Win32/InstallCore.D potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\ibario_pops_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\intext_adv_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\jollywallet_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\mgsqlite3[1].7z    Win32/SweetIM.K potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\monetizationLoader[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\revizer_p_dynamic_m[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\revizer_p_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\revizer_p_m[2].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\revizer_ws_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\stublogic[1].exe    Win32/Toolbar.Conduit.S potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FWDBPY8N\superfish_no_search_no_coupons_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\ads_only_5_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\arcadi3_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\arcadi_serp_dynamic_id_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\coupons_intext_ads_5_m[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\getdeal_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\icm1_5_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\icm_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\luck_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\monetizationLoader[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\Player_Setup.exe    Win32/DomaIQ.AH potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\revizer_p_m[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\revizer_ws_dynamic_m[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\revizer_ws_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\SPSetup[1].exe    Win32/Conduit.SearchProtect.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\widdit_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LEZDZU00\{5E1360DC-8FA8-40df-A8CD-FC3831B3634B}[1].cpi    a variant of Win32/PriceGong.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TX5WFSIH\50onred_ads_only_no_fb_m[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TX5WFSIH\arcadi2_sourceID_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TX5WFSIH\checktbexist[1].exe    Win32/Toolbar.Conduit.AF potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TX5WFSIH\corticas_ru_m[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TX5WFSIH\cortica_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TX5WFSIH\cortica_rollover_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TX5WFSIH\dealply_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TX5WFSIH\monetizationLoader[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TX5WFSIH\revizer_p_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TX5WFSIH\revizer_ws_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TX5WFSIH\revizer_ws_m[2].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TX5WFSIH\superfish_m[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TX5WFSIH\Vafmusic2[1].exe    Win32/Conduit.SearchProtect.J potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\coolmirage_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\coolmirage_m[2].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\coolmirage_m[3].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\coupish_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\coupons_intext_ads_5_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\ibario_pops_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\icm1_5_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\icm_m[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\intext_5_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\intext_5_m[2].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\intext_fa_m[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\monetizationLoader[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\similar_web_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\statisticsstub[1].exe    Win32/Toolbar.Conduit potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\superfish_no_coupons_m[1].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\superfish_no_coupons_m[2].js    JS/Toolbar.Crossrider.B potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\superfish_pricora_m[1].js    JS/Toolbar.Crossrider.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XJPY39NG\Vafmusic2_wpf[1].exe    a variant of Win32/Toolbar.Conduit.AJ potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Temp\APNStub.exe    a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Temp\hsbing_717_active.exe    a variant of Win32/Toolbar.Perion.A potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Temp\is-RC5QT.tmp\OptProCrash.dll    Win32/SProtector.E potentially unwanted application    deleted - quarantined
C:\Users\ahebert\AppData\Local\Temp\Player_Setup.exe\8f71c1bd7a694bbb930553653df49741\software\MyBackupPc.exe    Win32/MyPCBackup.A potentially unwanted application    deleted - quarantined
 



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:50 PM

Posted 15 September 2014 - 12:33 PM

That looks good.. Lets run one more ..pretty quick...

Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 everything

everything
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:11:50 AM

Posted 19 September 2014 - 09:22 PM

aswMBR version 1.0.1.2041 Copyright© 2014 AVAST Software
Run date: 2014-09-19 21:16:49
-----------------------------
21:16:49.045    OS Version: Windows x64 6.1.7601 Service Pack 1
21:16:49.045    Number of processors: 4 586 0x3A09
21:16:49.046    ComputerName: VOS34SI  UserName: dbarber
21:16:50.552    Initialize success
21:16:50.598    VM: initialized successfully
21:16:50.675    VM: Intel CPU supported
21:16:55.538    VM: supported disk I/O iaStor.sys
21:17:02.575    AVAST engine download error: 0
21:19:59.821    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
21:19:59.821    Disk 0 Vendor: ST950042 0005 Size: 476940MB BusType: 3
21:19:59.915    VM: Disk 0 MBR read successfully
21:19:59.915    Disk 0 MBR scan
21:19:59.915    Disk 0 Windows VISTA default MBR code
21:19:59.930    Disk 0 Partition 1 00     DE Dell Utility DELL 4.1       39 MB offset 63
21:19:59.962    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS        19014 MB offset 81920
21:19:59.962    Disk 0 Boot: NTFS     code=1
21:19:59.962    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       457885 MB offset 39022592
21:20:00.008    Disk 0 scanning C:\Windows\system32\drivers
21:20:08.058    Service scanning
21:20:14.298    Service kl1 C:\Windows\system32\DRIVERS\kl1.sys **LOCKED** 5
21:20:14.329    Service KLFLTDEV C:\Windows\system32\DRIVERS\klfltdev.sys **LOCKED** 5
21:20:14.392    Service KLIM6 C:\Windows\system32\DRIVERS\klim6.sys **LOCKED** 5
21:20:14.501    Service kltdi C:\Windows\system32\DRIVERS\kltdi.sys **LOCKED** 5
21:20:14.517    Service kneps C:\Windows\system32\DRIVERS\kneps.sys **LOCKED** 5
21:20:22.675    Modules scanning
21:20:22.675    Disk 0 trace - called modules:
21:20:22.707    ntoskrnl.exe CLASSPNP.SYS disk.sys stdcfltn.sys ACPI.sys iaStor.sys hal.dll
21:20:22.707    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006ff0060]
21:20:22.722    3 CLASSPNP.SYS[fffff88001fd143f] -> nt!IofCallDriver -> [0xfffffa8006e8a880]
21:20:22.722    5 stdcfltn.sys[fffff8800208dd12] -> nt!IofCallDriver -> [0xfffffa800468f430]
21:20:22.738    7 ACPI.sys[fffff8800176c7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8003c39050]
21:20:22.738    Scan finished successfully
21:20:45.997    Disk 0 MBR has been saved successfully to "C:\Users\dbarber\Downloads\MBR.dat"
21:20:45.997    The log file has been saved successfully to "C:\Users\dbarber\Downloads\aswMBR.txt"

 

 

 

How does it look?



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:50 PM

Posted 20 September 2014 - 07:53 PM


looks clean.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 everything

everything
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:11:50 AM

Posted 22 September 2014 - 06:16 PM

Thank you!



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:50 PM

Posted 24 September 2014 - 09:39 AM

You're welcome from us all!!
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users