Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

AMMYY SCAM got me on brand new laptop. Help. Please.


  • Please log in to reply
13 replies to this topic

#1 SmartasaRock

SmartasaRock

  • Members
  • 88 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:01:50 AM

Posted 07 November 2014 - 04:10 PM

I have learned my lesson. I am not doing anything without an expert's help. Which may have ruined my last laptop. Which is why I immediately called the Microsoft tech support when the message popped up on my computer. Which turned out to be a complete scam. I downloaded their program. I don't know what to do now. I just don't want to ruin my new computer by trying to fix it myself and deleting the wrong thing the wrong way. In short, went to a free proxy site, it told me I had a virus (I literally just got the computer today) and it's a proxy I've used for a long time now, sadly. A box popped up saying it was Microsoft and said "microsoft detected security error due to suspicious activity 18009193079" and I called the number. Something about this didn't seem right while I was on the phone with the guy. For one, I called and it didn't go to an automated message first, which almost never happens in a big company. But, anyway, I asked the guy to wait a minute and put the phone down and looked to see if his ammyy.com site had any scam complaints and sure enough it did. I hung up on the guy. I allowed the program through McAfee already, so God knows what harm I've already done! It just caught me so off guard because it's a new computer on a website I've been to a thousand times already.

Edit: Moved topic from Virus, Trojan, Spyware, and Malware Removal Logs to the more appropriate forum.~ Animal
Before you judge me, know that when I do something wrong it's because I'm an idiot, not because I'm evil.

BC AdBot (Login to Remove)

 


#2 SmartasaRock

SmartasaRock
  • Topic Starter

  • Members
  • 88 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:01:50 AM

Posted 07 November 2014 - 04:21 PM

I just want to add if it's easier to do something like completely reset the system somehow, that would be A-OK with me, because, like I said, I just got it out of the box today, I've barely done anything to it but download Firefox, so I'd lose nothing. Man, I feel stupid.

 

Edit: And another thing is I wonder if they can get access to my other computer through my doggone router somehow? I'm really freaked out here! I've had viruses before but this one is a pretty new one on me.


Edited by SmartasaRock, 07 November 2014 - 04:39 PM.

Before you judge me, know that when I do something wrong it's because I'm an idiot, not because I'm evil.

#3 SmartasaRock

SmartasaRock
  • Topic Starter

  • Members
  • 88 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:01:50 AM

Posted 09 November 2014 - 09:19 PM

Could anybody maybe tell me where I should report this or of it's not really something likely to do much if I report it? I'm worried to use anything on the system before I get cleared by you guys. I used four or so websites as soon as I opened it and I changed every password I had entered on another computer right after, just in case. I don't want to access the internet on the thing because I'm worried they'll get at something.


Before you judge me, know that when I do something wrong it's because I'm an idiot, not because I'm evil.

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:50 AM

Posted 11 November 2014 - 03:13 PM

hello ,, all the replies made it look like you were getting help. Lets do these and see what we get.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 SmartasaRock

SmartasaRock
  • Topic Starter

  • Members
  • 88 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:01:50 AM

Posted 11 November 2014 - 09:09 PM

Oh, thank you, thank you, boop. I'll get to work on this right away.


Before you judge me, know that when I do something wrong it's because I'm an idiot, not because I'm evil.

#6 SmartasaRock

SmartasaRock
  • Topic Starter

  • Members
  • 88 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:01:50 AM

Posted 11 November 2014 - 11:01 PM

Okay, everything is downloaded. Please, bear with me here. I ran the minitoolbox program. I didn't have Firefox closed when resetting, accidentally. Tell me if I have to redo it because of that. Sorry. Here was the log (if any of this is data that shouldn't be publicly shown, please tell me and I'll edit it out when you've seen it):

 

MiniToolBox by Farbar  Version: 21-07-2014
Ran by Ty (administrator) on 11-11-2014 at 20:38:56
Running from "C:\Users\Ty\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe FE Family Controller = Local Area Connection (Connected)
Dell Wireless 1705 802.11b/g/n (2.4GHZ) = Wireless Network Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Ty-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : att.net

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 64-5A-04-8C-5D-39
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : att.net
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : B8-2A-72-C3-08-82
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2602:301:77dc:e640:4000:9ac6:f930:6c66(Preferred)
   Temporary IPv6 Address. . . . . . : 2602:301:77dc:e640:2c6b:73a6:cbbb:f65d(Preferred)
   Link-local IPv6 Address . . . . . : fe80::4000:9ac6:f930:6c66%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.75(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, November 11, 2014 8:34:19 PM
   Lease Expires . . . . . . . . . . : Wednesday, November 12, 2014 8:34:19 PM
   Default Gateway . . . . . . . . . : fe80::9662:69ff:fe53:8f80%12
                                       192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 297282162
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1B-72-7F-FE-B8-2A-72-C3-08-82
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Wireless LAN adapter Wireless Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : att.net
   Description . . . . . . . . . . . : Dell Wireless 1705 802.11b/g/n (2.4GHZ)
   Physical Address. . . . . . . . . : 64-5A-04-8C-5D-38
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.att.net:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : att.net
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{E8A37EA7-BB08-401A-BA4F-8C46C4588B4E}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Teredo Tunneling Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:2cff:c9a:3f57:feb4(Preferred)
   Link-local IPv6 Address . . . . . : fe80::2cff:c9a:3f57:feb4%28(Preferred)
   Default Gateway . . . . . . . . . :
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  dsldevice.att.net
Address:  192.168.1.254

DNS request timed out.
    timeout was 2 seconds.
Name:    google.com
Addresses:  2607:f8b0:4000:80b::1000
      74.125.225.227
      74.125.225.238
      74.125.225.233
      74.125.225.232
      74.125.225.228
      74.125.225.226
      74.125.225.231
      74.125.225.230
      74.125.225.224
      74.125.225.229
      74.125.225.225


Pinging google.com [2607:f8b0:4000:805::1008] with 32 bytes of data:
Reply from 2607:f8b0:4000:805::1008: time=49ms
Reply from 2607:f8b0:4000:805::1008: time=49ms

Ping statistics for 2607:f8b0:4000:805::1008:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 49ms, Maximum = 49ms, Average = 49ms
Server:  dsldevice.att.net
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  98.138.253.109
      206.190.36.45
      98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=67ms TTL=45
Reply from 98.139.183.24: bytes=32 time=66ms TTL=45

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 66ms, Maximum = 67ms, Average = 66ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 18...64 5a 04 8c 5d 39 ......Bluetooth Device (Personal Area Network)
 12...b8 2a 72 c3 08 82 ......Realtek PCIe FE Family Controller
 11...64 5a 04 8c 5d 38 ......Dell Wireless 1705 802.11b/g/n (2.4GHZ)
  1...........................Software Loopback Interface 1
 13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 14...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 28...00 00 00 00 00 00 00 e0 Microsoft Teredo Tunneling Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.75     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.75    276
     192.168.1.75  255.255.255.255         On-link      192.168.1.75    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.75    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.75    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.75    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 12    276 ::/0                     fe80::9662:69ff:fe53:8f80
  1    306 ::1/128                  On-link
 28     58 2001::/32                On-link
 28    306 2001:0:5ef5:79fd:2cff:c9a:3f57:feb4/128
                                    On-link
 12     28 2602:301:77dc:e640::/64  On-link
 12    276 2602:301:77dc:e640:2c6b:73a6:cbbb:f65d/128
                                    On-link
 12    276 2602:301:77dc:e640:4000:9ac6:f930:6c66/128
                                    On-link
 12    276 fe80::/64                On-link
 28    306 fe80::/64                On-link
 28    306 fe80::2cff:c9a:3f57:feb4/128
                                    On-link
 12    276 fe80::4000:9ac6:f930:6c66/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    276 ff00::/8                 On-link
 28    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================


=========================== Installed Programs ============================
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.189 - Adobe Systems Incorporated)
Adobe Reader XI  MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.7.1.2 - Dell Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.7.1.2 - Dell Inc.)
Dell Digital Delivery (HKLM-x32\...\{D850CB7E-72BC-4510-BA4F-48932BFAB295}) (Version: 2.9.901.0 - Dell Products, LP)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 18.0.7.1 - Synaptics Incorporated)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
DSC/AA Factory Installer (Version: 3.5.6426.22 - PC-Doctor, Inc.) Hidden
eBay (HKLM-x32\...\{A8B88634-7F90-402F-B66A-86429755F6A5}) (Version: 1.4.0 - eBay Inc.)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.3.34 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.31.8.1 - Intel Corporation) Hidden
McAfee LiveSafe – Internet Security (HKLM-x32\...\MSC) (Version: 13.0.244 - McAfee, Inc.)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 33.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 33.0.3 (x86 en-US)) (Version: 33.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 33.0.3 - Mozilla)
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.314 - Qualcomm Atheros Communications)
Quickset64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.18 - Dell Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.39054 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7161 - Realtek Semiconductor Corp.)
Skype™ 5.8 (HKLM-x32\...\{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}) (Version: 5.8.158 - Skype Technologies S.A.)
Update for Microsoft .NET Framework 4.5 (KB2750147) (HKLM-x32\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132}.KB2750147) (Version: 1 - Microsoft Corporation)

========================= Memory info: ===================================

Percentage of memory in use: 57%
Total physical RAM: 4000.18 MB
Available physical RAM: 1703.54 MB
Total Pagefile: 7998.55 MB
Available Pagefile: 5345.4 MB
Total Virtual: 4095.88 MB
Available Virtual: 3991.35 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:441.99 GB) (Free:407.14 GB) NTFS

========================= Users: ========================================

User accounts for \\TY-PC

Administrator            Guest                    Ty                       


**** End of log ****

 

 

 

 

 

 

 

 

 

 

 

I'll address the next program in the next post. I'm trying to do them one at a time so I don't confuse myself. :)


Before you judge me, know that when I do something wrong it's because I'm an idiot, not because I'm evil.

#7 SmartasaRock

SmartasaRock
  • Topic Starter

  • Members
  • 88 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:01:50 AM

Posted 11 November 2014 - 11:05 PM

TDS program:

 

I ran it and it was very quick, found nothing, here's the log:

 

22:03:55.0145 0x16ac  TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
22:03:59.0403 0x16ac  ============================================================
22:03:59.0403 0x16ac  Current date / time: 2014/11/11 22:03:59.0403
22:03:59.0403 0x16ac  SystemInfo:
22:03:59.0403 0x16ac  
22:03:59.0403 0x16ac  OS Version: 6.1.7601 ServicePack: 1.0
22:03:59.0403 0x16ac  Product type: Workstation
22:03:59.0403 0x16ac  ComputerName: TY-PC
22:03:59.0403 0x16ac  UserName: Ty
22:03:59.0403 0x16ac  Windows directory: C:\Windows
22:03:59.0403 0x16ac  System windows directory: C:\Windows
22:03:59.0403 0x16ac  Running under WOW64
22:03:59.0403 0x16ac  Processor architecture: Intel x64
22:03:59.0403 0x16ac  Number of processors: 4
22:03:59.0403 0x16ac  Page size: 0x1000
22:03:59.0403 0x16ac  Boot type: Normal boot
22:03:59.0403 0x16ac  ============================================================
22:04:01.0619 0x16ac  KLMD registered as C:\Windows\system32\drivers\88306544.sys
22:04:01.0899 0x16ac  System UUID: {7EFF5330-9CC8-6BBC-E6DC-0A9B2042958E}
22:04:02.0679 0x16ac  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:04:02.0695 0x16ac  ============================================================
22:04:02.0695 0x16ac  \Device\Harddisk0\DR0:
22:04:02.0695 0x16ac  MBR partitions:
22:04:02.0695 0x16ac  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x2F77000
22:04:02.0695 0x16ac  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2F8B000, BlocksNum 0x373FA800
22:04:02.0695 0x16ac  ============================================================
22:04:02.0726 0x16ac  C: <-> \Device\Harddisk0\DR0\Partition2
22:04:02.0726 0x16ac  ============================================================
22:04:02.0726 0x16ac  Initialize success
22:04:02.0726 0x16ac  ============================================================
22:04:12.0788 0x1460  ============================================================
22:04:12.0788 0x1460  Scan started
22:04:12.0788 0x1460  Mode: Manual;
22:04:12.0788 0x1460  ============================================================
22:04:12.0788 0x1460  KSN ping started
22:04:15.0440 0x1460  KSN ping finished: true
22:04:16.0657 0x1460  ================ Scan system memory ========================
22:04:16.0657 0x1460  System memory - ok
22:04:16.0657 0x1460  ================ Scan services =============================
22:04:17.0016 0x1460  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
22:04:17.0031 0x1460  1394ohci - ok
22:04:17.0094 0x1460  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
22:04:17.0109 0x1460  ACPI - ok
22:04:17.0109 0x1460  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
22:04:17.0109 0x1460  AcpiPmi - ok
22:04:17.0187 0x1460  [ B1EA9681502EE57F87DB71D726288A5B, D17BD2CFAE72E92C77D183331D5CBA0FEA893BF54875920870E271940F40A8BB ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:04:17.0203 0x1460  AdobeARMservice - ok
22:04:17.0406 0x1460  [ D51145F6B0CE987850F13A61DAD5E531, 67CB6AB8C42781FA717CBEF81F3C658747E3B7814383056A56EDA99583FDBFD5 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:04:17.0421 0x1460  AdobeFlashPlayerUpdateSvc - ok
22:04:17.0468 0x1460  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
22:04:17.0484 0x1460  adp94xx - ok
22:04:17.0515 0x1460  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
22:04:17.0531 0x1460  adpahci - ok
22:04:17.0531 0x1460  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
22:04:17.0546 0x1460  adpu320 - ok
22:04:17.0577 0x1460  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:04:17.0577 0x1460  AeLookupSvc - ok
22:04:17.0655 0x1460  [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
22:04:17.0671 0x1460  AERTFilters - ok
22:04:17.0733 0x1460  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
22:04:17.0749 0x1460  AFD - ok
22:04:17.0780 0x1460  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
22:04:17.0780 0x1460  agp440 - ok
22:04:17.0811 0x1460  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
22:04:17.0827 0x1460  ALG - ok
22:04:17.0858 0x1460  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:04:17.0858 0x1460  aliide - ok
22:04:17.0858 0x1460  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
22:04:17.0874 0x1460  amdide - ok
22:04:17.0889 0x1460  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
22:04:17.0905 0x1460  AmdK8 - ok
22:04:17.0905 0x1460  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
22:04:17.0921 0x1460  AmdPPM - ok
22:04:17.0952 0x1460  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:04:17.0967 0x1460  amdsata - ok
22:04:17.0983 0x1460  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
22:04:17.0983 0x1460  amdsbs - ok
22:04:17.0983 0x1460  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:04:17.0983 0x1460  amdxata - ok
22:04:17.0999 0x1460  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
22:04:17.0999 0x1460  AppID - ok
22:04:18.0030 0x1460  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:04:18.0030 0x1460  AppIDSvc - ok
22:04:18.0061 0x1460  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
22:04:18.0061 0x1460  Appinfo - ok
22:04:18.0077 0x1460  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
22:04:18.0092 0x1460  arc - ok
22:04:18.0108 0x1460  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
22:04:18.0108 0x1460  arcsas - ok
22:04:18.0279 0x1460  [ 108FB6DDB69E537A2EA53F425363FAE5, B12A9F5338D39805E08A44A335FF7AA77F2266F535A2F5C8412CC746C75E5B1D ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:04:18.0295 0x1460  aspnet_state - ok
22:04:18.0326 0x1460  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:04:18.0326 0x1460  AsyncMac - ok
22:04:18.0342 0x1460  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
22:04:18.0357 0x1460  atapi - ok
22:04:18.0420 0x1460  [ 65DD42A358451920A703EEEC1AB4995B, 7690EFB12E928ECF3D3D3155F7D1F7A8FEEE742212ABE5319166EA8DB5601884 ] AthBTPort       C:\Windows\system32\DRIVERS\btath_flt.sys
22:04:18.0420 0x1460  AthBTPort - ok
22:04:18.0623 0x1460  [ 7AE06063A7A82E7345CFDA898A25AAA9, 95EE61F3ECEC9453B5A1073156CBFD2461C74046F22EB0EDDEF02F4B349A7EBA ] AtherosSvc      C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe
22:04:18.0623 0x1460  AtherosSvc - ok
22:04:18.0825 0x1460  [ F0219B0CCE76A694178B2115D7E191E6, D92C14778B7481766E23B51C438914AAF8D9E98A10ABC32251826A2F4FF417A3 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
22:04:18.0919 0x1460  athr - ok
22:04:18.0966 0x1460  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:04:18.0981 0x1460  AudioEndpointBuilder - ok
22:04:19.0013 0x1460  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:04:19.0028 0x1460  AudioSrv - ok
22:04:19.0044 0x1460  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:04:19.0044 0x1460  AxInstSV - ok
22:04:19.0091 0x1460  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
22:04:19.0137 0x1460  b06bdrv - ok
22:04:19.0153 0x1460  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:04:19.0169 0x1460  b57nd60a - ok
22:04:19.0169 0x1460  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:04:19.0184 0x1460  BDESVC - ok
22:04:19.0184 0x1460  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:04:19.0184 0x1460  Beep - ok
22:04:19.0215 0x1460  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
22:04:19.0231 0x1460  BFE - ok
22:04:19.0278 0x1460  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
22:04:19.0309 0x1460  BITS - ok
22:04:19.0340 0x1460  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
22:04:19.0340 0x1460  blbdrive - ok
22:04:19.0356 0x1460  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:04:19.0356 0x1460  bowser - ok
22:04:19.0371 0x1460  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
22:04:19.0371 0x1460  BrFiltLo - ok
22:04:19.0371 0x1460  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
22:04:19.0371 0x1460  BrFiltUp - ok
22:04:19.0403 0x1460  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
22:04:19.0418 0x1460  Browser - ok
22:04:19.0418 0x1460  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:04:19.0434 0x1460  Brserid - ok
22:04:19.0449 0x1460  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:04:19.0449 0x1460  BrSerWdm - ok
22:04:19.0449 0x1460  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:04:19.0449 0x1460  BrUsbMdm - ok
22:04:19.0449 0x1460  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:04:19.0465 0x1460  BrUsbSer - ok
22:04:19.0527 0x1460  [ 15BE0FCECAE5BC00FB3D339D3D1CF4E4, 7F77C73404044270AA0A4C9D6BD838564B5356ACA935982390A6EA11FA653AE0 ] BTATH_A2DP      C:\Windows\system32\drivers\btath_a2dp.sys
22:04:19.0559 0x1460  BTATH_A2DP - ok
22:04:19.0590 0x1460  [ 1FFA5E05F2DE32D9E65CFDA4B33D50FD, 9EC578F563A90C60F893817548195781893405AC8ED7F87C3B5F94F9842161A5 ] btath_avdt      C:\Windows\system32\drivers\btath_avdt.sys
22:04:19.0590 0x1460  btath_avdt - ok
22:04:19.0652 0x1460  [ C6978F7EBA6F37D626482AC6B9390630, B4BF939AB9962A61DE9518604C20347DC2A6FCDCEB3D8AEF295AF12E6F2CDCF3 ] BTATH_BUS       C:\Windows\system32\DRIVERS\btath_bus.sys
22:04:19.0652 0x1460  BTATH_BUS - ok
22:04:19.0683 0x1460  [ 4AF7C20F94DAC343C01ED671C82DCB99, 2AABD85D9D76461DE883E0F13F61C391BA81E6198FF88268B319474E25A196C8 ] BTATH_HCRP      C:\Windows\system32\DRIVERS\btath_hcrp.sys
22:04:19.0699 0x1460  BTATH_HCRP - ok
22:04:19.0730 0x1460  [ 785C38070043BEEE9E9D591DE4067244, 1C8D15B8A9E80A2799E7094C4AE111FEA9FBC6EAA4A61B13EFE59314C9794949 ] BTATH_LWFLT     C:\Windows\system32\DRIVERS\btath_lwflt.sys
22:04:19.0746 0x1460  BTATH_LWFLT - ok
22:04:19.0761 0x1460  [ 859A116D748FBA603AF94C251DC5CF97, D64061721BE01F86386C4B0168B166C6AD076630B2229036E1D368D877389D46 ] BTATH_RCP       C:\Windows\system32\DRIVERS\btath_rcp.sys
22:04:19.0777 0x1460  BTATH_RCP - ok
22:04:19.0855 0x1460  [ EE5173015C478E7DCAD45F302D5BE35A, 65627E1C4041B09A7D223D4013D52E6428960B2BB2C6476D7DC1D070E8508C0E ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
22:04:19.0902 0x1460  BtFilter - ok
22:04:19.0964 0x1460  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
22:04:19.0964 0x1460  BthEnum - ok
22:04:19.0980 0x1460  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
22:04:19.0995 0x1460  BTHMODEM - ok
22:04:20.0011 0x1460  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
22:04:20.0027 0x1460  BthPan - ok
22:04:20.0073 0x1460  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
22:04:20.0089 0x1460  BTHPORT - ok
22:04:20.0120 0x1460  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
22:04:20.0120 0x1460  bthserv - ok
22:04:20.0136 0x1460  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
22:04:20.0136 0x1460  BTHUSB - ok
22:04:20.0151 0x1460  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:04:20.0151 0x1460  cdfs - ok
22:04:20.0198 0x1460  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:04:20.0214 0x1460  cdrom - ok
22:04:20.0229 0x1460  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
22:04:20.0229 0x1460  CertPropSvc - ok
22:04:20.0292 0x1460  [ 0C48BDA498B0109F21729A556F1B21FF, 81392C6D585D5BA048E4D9616CAE316B334687456394BEF847FBD04D3F5E3F88 ] cfwids          C:\Windows\system32\drivers\cfwids.sys
22:04:20.0307 0x1460  cfwids - ok
22:04:20.0307 0x1460  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
22:04:20.0323 0x1460  circlass - ok
22:04:20.0354 0x1460  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
22:04:20.0401 0x1460  CLFS - ok
22:04:20.0510 0x1460  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:04:20.0510 0x1460  clr_optimization_v2.0.50727_32 - ok
22:04:20.0573 0x1460  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:04:20.0588 0x1460  clr_optimization_v2.0.50727_64 - ok
22:04:20.0729 0x1460  [ 6D7C8A951AF6AD6835C029B3CB88D333, 66F3D79887B2449B4C6912D1A258D1A96056888F51A8AA24FEDF37942AD5BDBB ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:04:20.0775 0x1460  clr_optimization_v4.0.30319_32 - ok
22:04:20.0807 0x1460  [ 86329C35FF23CFEF0FB6C0023BA06BCE, D915CE7AD564F97A1C3B047D5248B7EF67ADDC59687FBC90F1776C21DAA0D3FD ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:04:20.0807 0x1460  clr_optimization_v4.0.30319_64 - ok
22:04:20.0838 0x1460  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
22:04:20.0838 0x1460  CmBatt - ok
22:04:20.0869 0x1460  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:04:20.0869 0x1460  cmdide - ok
22:04:20.0947 0x1460  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
22:04:20.0963 0x1460  CNG - ok
22:04:20.0978 0x1460  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
22:04:20.0978 0x1460  Compbatt - ok
22:04:20.0978 0x1460  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
22:04:20.0994 0x1460  CompositeBus - ok
22:04:20.0994 0x1460  COMSysApp - ok
22:04:21.0056 0x1460  [ D2CECAFE080D925DE5C974727CEFA482, E02E6F8285C465EE526BDE69DA8FCC9032AB5D8F915766B9219A827F58CD5E6B ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
22:04:21.0103 0x1460  cphs - ok
22:04:21.0103 0x1460  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
22:04:21.0103 0x1460  crcdisk - ok
22:04:21.0150 0x1460  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:04:21.0150 0x1460  CryptSvc - ok
22:04:21.0212 0x1460  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:04:21.0259 0x1460  DcomLaunch - ok
22:04:21.0306 0x1460  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
22:04:21.0306 0x0fbc  Object required for P2P: [ D51145F6B0CE987850F13A61DAD5E531 ] AdobeFlashPlayerUpdateSvc
22:04:21.0306 0x1460  defragsvc - ok
22:04:21.0353 0x1460  [ EA26A4A4EFF6F5677C8745D274E23913, 32B9CB58B34E23126E18CFB5AA75AEC2EF1D5A8A7ACBCBEF4B3ACCB20FD1B8C4 ] DellDigitalDelivery c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
22:04:21.0368 0x1460  DellDigitalDelivery - ok
22:04:21.0384 0x1460  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:04:21.0399 0x1460  DfsC - ok
22:04:21.0415 0x1460  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:04:21.0431 0x1460  Dhcp - ok
22:04:21.0431 0x1460  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
22:04:21.0431 0x1460  discache - ok
22:04:21.0431 0x1460  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
22:04:21.0446 0x1460  Disk - ok
22:04:21.0462 0x1460  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:04:21.0462 0x1460  Dnscache - ok
22:04:21.0493 0x1460  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:04:21.0493 0x1460  dot3svc - ok
22:04:21.0509 0x1460  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
22:04:21.0509 0x1460  DPS - ok
22:04:21.0555 0x1460  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:04:21.0555 0x1460  drmkaud - ok
22:04:21.0649 0x1460  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:04:21.0727 0x1460  DXGKrnl - ok
22:04:21.0758 0x1460  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
22:04:21.0758 0x1460  EapHost - ok
22:04:21.0914 0x1460  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
22:04:22.0039 0x1460  ebdrv - ok
22:04:22.0055 0x1460  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
22:04:22.0055 0x1460  EFS - ok
22:04:22.0164 0x1460  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:04:22.0195 0x1460  ehRecvr - ok
22:04:22.0211 0x1460  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
22:04:22.0211 0x1460  ehSched - ok
22:04:22.0257 0x1460  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
22:04:22.0273 0x1460  elxstor - ok
22:04:22.0289 0x1460  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:04:22.0289 0x1460  ErrDev - ok
22:04:22.0351 0x1460  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
22:04:22.0367 0x1460  EventSystem - ok
22:04:22.0382 0x1460  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
22:04:22.0398 0x1460  exfat - ok
22:04:22.0398 0x1460  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:04:22.0413 0x1460  fastfat - ok
22:04:22.0445 0x1460  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
22:04:22.0476 0x1460  Fax - ok
22:04:22.0476 0x1460  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
22:04:22.0491 0x1460  fdc - ok
22:04:22.0507 0x1460  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
22:04:22.0507 0x1460  fdPHost - ok
22:04:22.0523 0x1460  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:04:22.0523 0x1460  FDResPub - ok
22:04:22.0523 0x1460  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:04:22.0538 0x1460  FileInfo - ok
22:04:22.0554 0x1460  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:04:22.0554 0x1460  Filetrace - ok
22:04:22.0554 0x1460  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
22:04:22.0569 0x1460  flpydisk - ok
22:04:22.0569 0x1460  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:04:22.0601 0x1460  FltMgr - ok
22:04:22.0694 0x1460  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
22:04:22.0757 0x1460  FontCache - ok
22:04:22.0788 0x1460  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:04:22.0803 0x1460  FontCache3.0.0.0 - ok
22:04:22.0819 0x1460  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:04:22.0819 0x1460  FsDepends - ok
22:04:22.0850 0x1460  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:04:22.0850 0x1460  Fs_Rec - ok
22:04:22.0881 0x1460  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:04:22.0881 0x1460  fvevol - ok
22:04:22.0881 0x1460  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
22:04:22.0897 0x1460  gagp30kx - ok
22:04:22.0944 0x1460  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
22:04:22.0991 0x1460  gpsvc - ok
22:04:23.0006 0x1460  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:04:23.0006 0x1460  hcw85cir - ok
22:04:23.0037 0x1460  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:04:23.0053 0x1460  HdAudAddService - ok
22:04:23.0069 0x1460  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
22:04:23.0069 0x1460  HDAudBus - ok
22:04:23.0069 0x1460  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
22:04:23.0069 0x1460  HidBatt - ok
22:04:23.0084 0x1460  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
22:04:23.0084 0x1460  HidBth - ok
22:04:23.0100 0x1460  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
22:04:23.0100 0x1460  HidIr - ok
22:04:23.0115 0x1460  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
22:04:23.0115 0x1460  hidserv - ok
22:04:23.0131 0x1460  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
22:04:23.0162 0x1460  HidUsb - ok
22:04:23.0193 0x1460  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:04:23.0193 0x1460  hkmsvc - ok
22:04:23.0240 0x1460  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:04:23.0256 0x1460  HomeGroupListener - ok
22:04:23.0287 0x1460  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:04:23.0303 0x1460  HomeGroupProvider - ok
22:04:23.0443 0x1460  [ 126911FB7471EF4B8F4663BCA0F35745, 7A7A0A6A26784E975543E834090B4CE041292B2B1E39A6BB5C149382C4B7E409 ] HomeNetSvc      C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
22:04:23.0459 0x1460  HomeNetSvc - ok
22:04:23.0474 0x1460  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
22:04:23.0490 0x1460  HpSAMD - ok
22:04:23.0505 0x1460  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:04:23.0537 0x1460  HTTP - ok
22:04:23.0537 0x1460  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:04:23.0537 0x1460  hwpolicy - ok
22:04:23.0552 0x1460  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
22:04:23.0552 0x1460  i8042prt - ok
22:04:23.0630 0x1460  [ 71341219FBB4BAB7F2462C4267DAB594, 0C6B684781D27F423D20186A40D7513DD6ABC38AD286D013791B37CBF5477A55 ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys
22:04:23.0661 0x1460  iaStorA - ok
22:04:23.0724 0x1460  [ B9D5AE799CB622C144AE5399C55EF29B, 5C2858590436EEDDE029C5448AEC3ACBB1C0FCED23F305302BAF831C6EC1654A ] iaStorF         C:\Windows\system32\drivers\iaStorF.sys
22:04:23.0724 0x1460  iaStorF - ok
22:04:23.0771 0x1460  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:04:23.0817 0x1460  iaStorV - ok
22:04:23.0895 0x1460  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:04:23.0958 0x1460  idsvc - ok
22:04:23.0973 0x1460  IEEtwCollectorService - ok
22:04:24.0114 0x0fbc  Object send P2P result: true
22:04:24.0161 0x1460  [ 0AECABC08F9AB4E504935B7662123B6E, 79D1C801A8FB0920469D6088158C518481485A065E8AF2E580FE4FCC1DE8F39B ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
22:04:24.0317 0x1460  igfx - ok
22:04:24.0348 0x1460  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
22:04:24.0348 0x1460  iirsp - ok
22:04:24.0410 0x1460  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
22:04:24.0441 0x1460  IKEEXT - ok
22:04:24.0629 0x1460  [ F853DD9ED76B3BC56A42E9C13FE49E4B, 17A98DED86CF5CA5224EED430438F1D051BFCCA3965E270B83397EFBEC0ACEE1 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:04:24.0785 0x1460  IntcAzAudAddService - ok
22:04:24.0847 0x1460  [ EC80E6B9E27DC3E22ED5B2E0E75A39C0, 8EEC89F88AE79DA256BB651983397773F6B25139006C8A7C8F77960F47774CF5 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
22:04:24.0863 0x1460  IntcDAud - ok
22:04:24.0956 0x1460  [ DAE6C3099D291EED8922A65C29ABCF52, AD0A932345382824122F84AF97A8609BAE1B916A3B9FD608779A1411E37D3643 ] Intel® Capability Licensing Service Interface c:\Program Files\Intel\iCLS Client\HeciServer.exe
22:04:24.0972 0x1460  Intel® Capability Licensing Service Interface - ok
22:04:25.0050 0x1460  [ D45226E3E7A25F1E7CE8DF8FD0A2A098, 7BD74E9E3CB0A83D26BA3FD8177C6B9BA46A8695B6569CF7887FDC87947DA2D6 ] Intel® Capability Licensing Service TCP IP Interface c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
22:04:25.0097 0x1460  Intel® Capability Licensing Service TCP IP Interface - ok
22:04:25.0112 0x1460  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
22:04:25.0112 0x1460  intelide - ok
22:04:25.0128 0x1460  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
22:04:25.0143 0x1460  intelppm - ok
22:04:25.0175 0x1460  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:04:25.0175 0x1460  IPBusEnum - ok
22:04:25.0190 0x1460  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:04:25.0190 0x1460  IpFilterDriver - ok
22:04:25.0253 0x1460  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:04:25.0284 0x1460  iphlpsvc - ok
22:04:25.0299 0x1460  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
22:04:25.0299 0x1460  IPMIDRV - ok
22:04:25.0299 0x1460  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:04:25.0315 0x1460  IPNAT - ok
22:04:25.0315 0x1460  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:04:25.0315 0x1460  IRENUM - ok
22:04:25.0315 0x1460  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:04:25.0315 0x1460  isapnp - ok
22:04:25.0346 0x1460  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
22:04:25.0346 0x1460  iScsiPrt - ok
22:04:25.0393 0x1460  [ 7D8155BB1ADA65406B83385F3D828610, FE97FFDC96AD94F0932933E45C314FC7AE6A6D2E92510161453F59D2E9C8A3AF ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
22:04:25.0393 0x1460  iusb3hcs - ok
22:04:25.0440 0x1460  [ B347865F3111539C7B3F077EE7C22DBF, 304321780DD360DB2AB28A1A05101187DA0E187CE6521F59C6FB558AC482EF03 ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
22:04:25.0487 0x1460  iusb3hub - ok
22:04:25.0565 0x1460  [ 8B7014DBD81836817293E07A6BBAF847, 706F62F04DDF4F02DF1DE21E5E480B3C9C06E89FCC6918F9DFA2BFE87A35C088 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
22:04:25.0596 0x1460  iusb3xhc - ok
22:04:25.0721 0x1460  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
22:04:25.0736 0x1460  jhi_service - ok
22:04:25.0767 0x1460  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:04:25.0767 0x1460  kbdclass - ok
22:04:25.0783 0x1460  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
22:04:25.0783 0x1460  kbdhid - ok
22:04:25.0799 0x1460  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
22:04:25.0814 0x1460  KeyIso - ok
22:04:25.0830 0x1460  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:04:25.0830 0x1460  KSecDD - ok
22:04:25.0861 0x1460  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:04:25.0877 0x1460  KSecPkg - ok
22:04:25.0877 0x1460  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:04:25.0877 0x1460  ksthunk - ok
22:04:25.0923 0x1460  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:04:25.0939 0x1460  KtmRm - ok
22:04:25.0986 0x1460  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
22:04:26.0017 0x1460  LanmanServer - ok
22:04:26.0048 0x1460  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:04:26.0064 0x1460  LanmanWorkstation - ok
22:04:26.0079 0x1460  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:04:26.0079 0x1460  lltdio - ok
22:04:26.0111 0x1460  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:04:26.0157 0x1460  lltdsvc - ok
22:04:26.0173 0x1460  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:04:26.0173 0x1460  lmhosts - ok
22:04:26.0251 0x1460  [ E2952760B05A256FB1412D20A41C89C1, B5AF47DF90D5DC8E6549DE1AFF897669E8200D08083D43DF86E34F6EE19C59DA ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
22:04:26.0267 0x1460  LMS - ok
22:04:26.0298 0x1460  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
22:04:26.0313 0x1460  LSI_FC - ok
22:04:26.0313 0x1460  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
22:04:26.0345 0x1460  LSI_SAS - ok
22:04:26.0345 0x1460  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
22:04:26.0345 0x1460  LSI_SAS2 - ok
22:04:26.0360 0x1460  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
22:04:26.0360 0x1460  LSI_SCSI - ok
22:04:26.0360 0x1460  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
22:04:26.0376 0x1460  luafv - ok
22:04:26.0594 0x1460  [ 6ED303CFB9ED955B78322257FF338477, 355F6FBBDAA7298228CF725A6B57C5110EADD67626F7FE0BD828CA3C4B32FD20 ] McAPExe         C:\Program Files\McAfee\MSC\McAPExe.exe
22:04:26.0594 0x1460  McAPExe - ok
22:04:26.0688 0x1460  [ 108D82022B0ADD08C547A9720F76BD42, 6C946BCB707F59929D578F7CB0D1C3BEAF45F6B22F51225F65B4DD84E56C4A62 ] McAWFwk         c:\PROGRA~1\COMMON~1\mcafee\actwiz\mcawfwk.exe
22:04:26.0719 0x1460  McAWFwk - ok
22:04:26.0766 0x1460  [ 126911FB7471EF4B8F4663BCA0F35745, 7A7A0A6A26784E975543E834090B4CE041292B2B1E39A6BB5C149382C4B7E409 ] McNaiAnn        C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
22:04:26.0781 0x1460  McNaiAnn - ok
22:04:26.0891 0x1460  [ CF1D488F7439D9F738F3C275D871C6E5, C5FE79E5650610E9D09072D612D72DB8F1B6976A700362CD31EC2FFDB5F6CAD5 ] McODS           C:\Program Files\mcafee\VirusScan\mcods.exe
22:04:26.0906 0x1460  McODS - ok
22:04:26.0922 0x1460  [ 126911FB7471EF4B8F4663BCA0F35745, 7A7A0A6A26784E975543E834090B4CE041292B2B1E39A6BB5C149382C4B7E409 ] McOobeSv2       C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
22:04:26.0922 0x1460  McOobeSv2 - ok
22:04:26.0969 0x1460  [ 126911FB7471EF4B8F4663BCA0F35745, 7A7A0A6A26784E975543E834090B4CE041292B2B1E39A6BB5C149382C4B7E409 ] mcpltsvc        C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
22:04:26.0969 0x1460  mcpltsvc - ok
22:04:26.0984 0x1460  [ 126911FB7471EF4B8F4663BCA0F35745, 7A7A0A6A26784E975543E834090B4CE041292B2B1E39A6BB5C149382C4B7E409 ] McProxy         C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe
22:04:27.0000 0x1460  McProxy - ok
22:04:27.0015 0x1460  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:04:27.0031 0x1460  Mcx2Svc - ok
22:04:27.0047 0x1460  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
22:04:27.0062 0x1460  megasas - ok
22:04:27.0078 0x1460  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
22:04:27.0093 0x1460  MegaSR - ok
22:04:27.0140 0x1460  [ EB1D78140D6634C32A46AB1006105EDC, 586F988A7272A7E3F6AA2CC9A001A08A3D178A011AE8C095BB7EAD9FFB45AAB1 ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys
22:04:27.0140 0x1460  MEIx64 - ok
22:04:27.0203 0x1460  [ 4800829B6DA07ED8818EBC3AB4ECB2AF, B75BC9838B4A4CEB65AFE246B01FD545DC7AACA192AC0F7B4E7A0F5DF6A454E3 ] mfeapfk         C:\Windows\system32\drivers\mfeapfk.sys
22:04:27.0218 0x1460  mfeapfk - ok
22:04:27.0265 0x1460  [ 001EF965C2869723E5929255E7F4BDB0, E9F6DC7842DAE743881F7DC9AE9CDBF2DBD1DD48A387AF92E32AA13CAEFCBEF6 ] mfeavfk         C:\Windows\system32\drivers\mfeavfk.sys
22:04:27.0296 0x1460  mfeavfk - ok
22:04:27.0390 0x1460  [ 065FED87FC6EEBD129B099476D1406B9, F476B41A119BC88C3085B4E3A6ADCBA6DF588D58628F7CB24CBAEE482347B93D ] mfecore         C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
22:04:27.0421 0x1460  mfecore - ok
22:04:27.0499 0x1460  [ A769FABF6F9B5E72450F9E161C83D495, 3601A1242885B778B81AB2ABA95F6EAA026427A3F8072427A0A4DF7B93CF4CE1 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
22:04:27.0515 0x1460  mfefire - ok
22:04:27.0577 0x1460  [ F153129E35F2D1C893A099368B55E530, 08D5F93CF2A6994700D1F29239BF7F5B4EA48793211E24601B1FE4A8BC96F092 ] mfefirek        C:\Windows\system32\drivers\mfefirek.sys
22:04:27.0655 0x1460  mfefirek - ok
22:04:27.0749 0x1460  [ 63835C12B7B9E1B8EA1D195E9A2A786A, C25CFAE33178AE0CB84F078113F328308FB107D574A27653323F909B41B41C01 ] mfehidk         C:\Windows\system32\drivers\mfehidk.sys
22:04:27.0795 0x1460  mfehidk - ok
22:04:27.0889 0x1460  [ FDB02B0C2865DBDE9571D57D3ABC6A6B, 9AC814E8FEB1F928582B1AA76DD41B78981C9D211D8DB9F555AD5B334B14E11D ] mfencbdc        C:\Windows\system32\DRIVERS\mfencbdc.sys
22:04:27.0920 0x1460  mfencbdc - ok
22:04:27.0967 0x1460  [ C3EE053D6A0CCD75C07FADC73D7BA4E4, 81F2F6716B86B2FE673F1C1252101F5E7AD4BE4258F8086C2F9F848E0B59EAF2 ] mfencrk         C:\Windows\system32\DRIVERS\mfencrk.sys
22:04:27.0967 0x1460  mfencrk - ok
22:04:27.0983 0x1460  [ FAB7B6D571B810B73F5BB286AB439687, D1898B16E9FCABFF1BC937427B18B1083018B4F5DED6A04A2967352FF5857218 ] mfevtp          C:\Windows\system32\mfevtps.exe
22:04:27.0998 0x1460  mfevtp - ok
22:04:28.0029 0x1460  [ 57CC9413361359476B844339417F1CFF, 87093104871F8B6A6336404F0C497A6B5473AA0E770C54ABF233428FB151FD4C ] mfewfpk         C:\Windows\system32\drivers\mfewfpk.sys
22:04:28.0029 0x1460  mfewfpk - ok
22:04:28.0061 0x1460  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
22:04:28.0061 0x1460  MMCSS - ok
22:04:28.0092 0x1460  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
22:04:28.0092 0x1460  Modem - ok
22:04:28.0107 0x1460  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:04:28.0107 0x1460  monitor - ok
22:04:28.0107 0x1460  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:04:28.0123 0x1460  mouclass - ok
22:04:28.0123 0x1460  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\drivers\mouhid.sys
22:04:28.0123 0x1460  mouhid - ok
22:04:28.0139 0x1460  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:04:28.0139 0x1460  mountmgr - ok
22:04:28.0170 0x1460  [ DEA022193DF8C88F6E2B3E33D148A5DB, 97DFC47DB83E04A975A1969AA120385463FCAF4E1A9984FD3220442D7026B45A ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:04:28.0185 0x1460  MozillaMaintenance - ok
22:04:28.0201 0x1460  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:04:28.0217 0x1460  mpio - ok
22:04:28.0217 0x1460  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:04:28.0217 0x1460  mpsdrv - ok
22:04:28.0263 0x1460  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:04:28.0295 0x1460  MpsSvc - ok
22:04:28.0326 0x1460  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:04:28.0326 0x1460  MRxDAV - ok
22:04:28.0357 0x1460  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:04:28.0357 0x1460  mrxsmb - ok
22:04:28.0373 0x1460  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:04:28.0388 0x1460  mrxsmb10 - ok
22:04:28.0388 0x1460  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:04:28.0388 0x1460  mrxsmb20 - ok
22:04:28.0419 0x1460  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:04:28.0419 0x1460  msahci - ok
22:04:28.0466 0x1460  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:04:28.0482 0x1460  msdsm - ok
22:04:28.0497 0x1460  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
22:04:28.0513 0x1460  MSDTC - ok
22:04:28.0513 0x1460  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:04:28.0513 0x1460  Msfs - ok
22:04:28.0513 0x1460  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:04:28.0529 0x1460  mshidkmdf - ok
22:04:28.0544 0x1460  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:04:28.0544 0x1460  msisadrv - ok
22:04:28.0591 0x1460  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:04:28.0607 0x1460  MSiSCSI - ok
22:04:28.0607 0x1460  msiserver - ok
22:04:28.0638 0x1460  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:04:28.0638 0x1460  MSKSSRV - ok
22:04:28.0638 0x1460  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:04:28.0653 0x1460  MSPCLOCK - ok
22:04:28.0653 0x1460  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:04:28.0653 0x1460  MSPQM - ok
22:04:28.0669 0x1460  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:04:28.0685 0x1460  MsRPC - ok
22:04:28.0685 0x1460  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
22:04:28.0685 0x1460  mssmbios - ok
22:04:28.0685 0x1460  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:04:28.0700 0x1460  MSTEE - ok
22:04:28.0700 0x1460  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
22:04:28.0700 0x1460  MTConfig - ok
22:04:28.0700 0x1460  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
22:04:28.0716 0x1460  Mup - ok
22:04:28.0747 0x1460  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
22:04:28.0763 0x1460  napagent - ok
22:04:28.0809 0x1460  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:04:28.0825 0x1460  NativeWifiP - ok
22:04:28.0887 0x1460  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:04:28.0919 0x1460  NDIS - ok
22:04:28.0934 0x1460  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:04:28.0934 0x1460  NdisCap - ok
22:04:28.0950 0x1460  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:04:28.0950 0x1460  NdisTapi - ok
22:04:28.0950 0x1460  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:04:28.0950 0x1460  Ndisuio - ok
22:04:28.0965 0x1460  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:04:28.0965 0x1460  NdisWan - ok
22:04:28.0965 0x1460  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:04:28.0981 0x1460  NDProxy - ok
22:04:28.0981 0x1460  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:04:28.0981 0x1460  NetBIOS - ok
22:04:28.0997 0x1460  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:04:28.0997 0x1460  NetBT - ok
22:04:29.0012 0x1460  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
22:04:29.0012 0x1460  Netlogon - ok
22:04:29.0059 0x1460  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
22:04:29.0090 0x1460  Netman - ok
22:04:29.0246 0x1460  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:04:29.0277 0x1460  NetMsmqActivator - ok
22:04:29.0293 0x1460  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:04:29.0309 0x1460  NetPipeActivator - ok
22:04:29.0340 0x1460  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
22:04:29.0387 0x1460  netprofm - ok
22:04:29.0387 0x1460  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:04:29.0402 0x1460  NetTcpActivator - ok
22:04:29.0402 0x1460  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:04:29.0418 0x1460  NetTcpPortSharing - ok
22:04:29.0433 0x1460  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
22:04:29.0449 0x1460  nfrd960 - ok
22:04:29.0496 0x1460  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:04:29.0511 0x1460  NlaSvc - ok
22:04:29.0527 0x1460  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:04:29.0527 0x1460  Npfs - ok
22:04:29.0558 0x1460  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
22:04:29.0558 0x1460  nsi - ok
22:04:29.0558 0x1460  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:04:29.0558 0x1460  nsiproxy - ok
22:04:29.0699 0x1460  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:04:29.0792 0x1460  Ntfs - ok
22:04:29.0808 0x1460  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
22:04:29.0808 0x1460  Null - ok
22:04:29.0839 0x1460  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:04:29.0855 0x1460  nvraid - ok
22:04:29.0886 0x1460  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:04:29.0901 0x1460  nvstor - ok
22:04:29.0917 0x1460  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:04:29.0933 0x1460  nv_agp - ok
22:04:29.0948 0x1460  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:04:29.0964 0x1460  ohci1394 - ok
22:04:30.0011 0x1460  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:04:30.0057 0x1460  p2pimsvc - ok
22:04:30.0089 0x1460  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
22:04:30.0104 0x1460  p2psvc - ok
22:04:30.0120 0x1460  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
22:04:30.0120 0x1460  Parport - ok
22:04:30.0135 0x1460  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:04:30.0151 0x1460  partmgr - ok
22:04:30.0151 0x1460  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:04:30.0167 0x1460  PcaSvc - ok
22:04:30.0198 0x1460  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
22:04:30.0198 0x1460  pci - ok
22:04:30.0229 0x1460  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
22:04:30.0229 0x1460  pciide - ok
22:04:30.0245 0x1460  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
22:04:30.0260 0x1460  pcmcia - ok
22:04:30.0260 0x1460  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:04:30.0260 0x1460  pcw - ok
22:04:30.0276 0x1460  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:04:30.0307 0x1460  PEAUTH - ok
22:04:30.0479 0x1460  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:04:30.0494 0x1460  PerfHost - ok
22:04:30.0588 0x1460  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
22:04:30.0650 0x1460  pla - ok
22:04:30.0697 0x1460  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:04:30.0728 0x1460  PlugPlay - ok
22:04:30.0744 0x1460  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:04:30.0744 0x1460  PNRPAutoReg - ok
22:04:30.0759 0x1460  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:04:30.0759 0x1460  PNRPsvc - ok
22:04:30.0791 0x1460  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:04:30.0822 0x1460  PolicyAgent - ok
22:04:30.0837 0x1460  [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power           C:\Windows\system32\umpo.dll
22:04:30.0853 0x1460  Power - ok
22:04:30.0869 0x1460  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:04:30.0884 0x1460  PptpMiniport - ok
22:04:30.0900 0x1460  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
22:04:30.0915 0x1460  Processor - ok
22:04:30.0947 0x1460  [ 5C78838B4D166D1A27DB3A8A820C799A, BBF7E1D0B6754CF06BF3936671FDF5BF6E845CA5678D0940EA54E9212B539B7F ] ProfSvc         C:\Windows\system32\profsvc.dll
22:04:30.0978 0x1460  ProfSvc - ok
22:04:30.0993 0x1460  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
22:04:30.0993 0x1460  ProtectedStorage - ok
22:04:31.0025 0x1460  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:04:31.0025 0x1460  Psched - ok
22:04:31.0118 0x1460  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
22:04:31.0212 0x1460  ql2300 - ok
22:04:31.0227 0x1460  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
22:04:31.0227 0x1460  ql40xx - ok
22:04:31.0259 0x1460  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
22:04:31.0259 0x1460  QWAVE - ok
22:04:31.0274 0x1460  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:04:31.0274 0x1460  QWAVEdrv - ok
22:04:31.0274 0x1460  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:04:31.0274 0x1460  RasAcd - ok
22:04:31.0305 0x1460  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:04:31.0305 0x1460  RasAgileVpn - ok
22:04:31.0321 0x1460  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
22:04:31.0321 0x1460  RasAuto - ok
22:04:31.0337 0x1460  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:04:31.0337 0x1460  Rasl2tp - ok
22:04:31.0368 0x1460  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
22:04:31.0368 0x1460  RasMan - ok
22:04:31.0383 0x1460  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:04:31.0383 0x1460  RasPppoe - ok
22:04:31.0399 0x1460  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:04:31.0399 0x1460  RasSstp - ok
22:04:31.0415 0x1460  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:04:31.0430 0x1460  rdbss - ok
22:04:31.0430 0x1460  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
22:04:31.0430 0x1460  rdpbus - ok
22:04:31.0430 0x1460  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:04:31.0430 0x1460  RDPCDD - ok
22:04:31.0446 0x1460  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:04:31.0446 0x1460  RDPENCDD - ok
22:04:31.0446 0x1460  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:04:31.0446 0x1460  RDPREFMP - ok
22:04:31.0477 0x1460  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:04:31.0477 0x1460  RDPWD - ok
22:04:31.0493 0x1460  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:04:31.0493 0x1460  rdyboost - ok
22:04:31.0524 0x1460  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:04:31.0524 0x1460  RemoteAccess - ok
22:04:31.0555 0x1460  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:04:31.0555 0x1460  RemoteRegistry - ok
22:04:31.0602 0x1460  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
22:04:31.0602 0x1460  RFCOMM - ok
22:04:31.0649 0x1460  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:04:31.0649 0x1460  RpcEptMapper - ok
22:04:31.0695 0x1460  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
22:04:31.0695 0x1460  RpcLocator - ok
22:04:31.0758 0x1460  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
22:04:31.0773 0x1460  RpcSs - ok
22:04:31.0789 0x1460  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:04:31.0789 0x1460  rspndr - ok
22:04:31.0883 0x1460  [ 99E927EA78E4B20F02B4B900F6FAB569, C4F6EC9B3BA4FA39926673F39BA3A183CDB7FFC04404F115779C7397C482A795 ] RSUSBVSTOR      C:\Windows\system32\Drivers\RtsUVStor.sys
22:04:31.0914 0x1460  RSUSBVSTOR - ok
22:04:31.0976 0x1460  [ F1D20C2B36F78863530B251DF504CC51, A3C71BDB45B1DB321BC2D9889CB25CF7840E145DFB769882748B7D507A605A42 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
22:04:31.0992 0x1460  RtkAudioService - ok
22:04:32.0085 0x1460  [ EF91E0806C01806C3CF62AF006901127, 1F49D57B6598EF0923DF70FD31B755B29D5ED4D38840D7619D3399B759FD579F ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
22:04:32.0117 0x1460  RTL8167 - ok
22:04:32.0132 0x1460  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
22:04:32.0132 0x1460  SamSs - ok
22:04:32.0148 0x1460  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:04:32.0163 0x1460  sbp2port - ok
22:04:32.0195 0x1460  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:04:32.0195 0x1460  SCardSvr - ok
22:04:32.0210 0x1460  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:04:32.0210 0x1460  scfilter - ok
22:04:32.0304 0x1460  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
22:04:32.0351 0x1460  Schedule - ok
22:04:32.0382 0x1460  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:04:32.0382 0x1460  SCPolicySvc - ok
22:04:32.0429 0x1460  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\drivers\sdbus.sys
22:04:32.0429 0x1460  sdbus - ok
22:04:32.0460 0x1460  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:04:32.0475 0x1460  SDRSVC - ok
22:04:32.0507 0x1460  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:04:32.0507 0x1460  secdrv - ok
22:04:32.0522 0x1460  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
22:04:32.0522 0x1460  seclogon - ok
22:04:32.0538 0x1460  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
22:04:32.0553 0x1460  SENS - ok
22:04:32.0553 0x1460  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:04:32.0553 0x1460  SensrSvc - ok
22:04:32.0569 0x1460  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
22:04:32.0569 0x1460  Serenum - ok
22:04:32.0569 0x1460  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
22:04:32.0585 0x1460  Serial - ok
22:04:32.0585 0x1460  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
22:04:32.0585 0x1460  sermouse - ok
22:04:32.0600 0x1460  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
22:04:32.0600 0x1460  SessionEnv - ok
22:04:32.0616 0x1460  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:04:32.0616 0x1460  sffdisk - ok
22:04:32.0616 0x1460  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:04:32.0616 0x1460  sffp_mmc - ok
22:04:32.0631 0x1460  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:04:32.0631 0x1460  sffp_sd - ok
22:04:32.0631 0x1460  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
22:04:32.0631 0x1460  sfloppy - ok
22:04:32.0865 0x1460  [ 1AFF08DFBB72A235DE60433C4FE7920B, 0EFA5914B96CF8544BA6452086CED8EF6EBD0F69E6977CDB1ECDB75908F07650 ] SftService      C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
22:04:32.0897 0x1460  SftService - ok
22:04:32.0959 0x1460  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:04:32.0990 0x1460  SharedAccess - ok
22:04:33.0037 0x1460  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:04:33.0068 0x1460  ShellHWDetection - ok
22:04:33.0099 0x1460  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
22:04:33.0115 0x1460  SiSRaid2 - ok
22:04:33.0115 0x1460  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
22:04:33.0131 0x1460  SiSRaid4 - ok
22:04:33.0162 0x1460  [ 6128E98EAAED364ED1A32708D2FD22CB, BD86FF2514C39346B2E054174B538BDB77A6B1922D1D42A931CC2DAB644B83CE ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:04:33.0177 0x1460  SkypeUpdate - ok
22:04:33.0177 0x1460  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:04:33.0193 0x1460  Smb - ok
22:04:33.0209 0x1460  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:04:33.0209 0x1460  SNMPTRAP - ok
22:04:33.0209 0x1460  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:04:33.0224 0x1460  spldr - ok
22:04:33.0271 0x1460  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
22:04:33.0302 0x1460  Spooler - ok
22:04:33.0443 0x1460  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
22:04:33.0583 0x1460  sppsvc - ok
22:04:33.0583 0x1460  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:04:33.0599 0x1460  sppuinotify - ok
22:04:33.0630 0x1460  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:04:33.0645 0x1460  srv - ok
22:04:33.0661 0x1460  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:04:33.0661 0x1460  srv2 - ok
22:04:33.0677 0x1460  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:04:33.0677 0x1460  srvnet - ok
22:04:33.0708 0x1460  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:04:33.0723 0x1460  SSDPSRV - ok
22:04:33.0723 0x1460  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:04:33.0723 0x1460  SstpSvc - ok
22:04:33.0755 0x1460  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
22:04:33.0755 0x1460  stexstor - ok
22:04:33.0817 0x1460  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
22:04:33.0848 0x1460  stisvc - ok
22:04:33.0848 0x1460  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
22:04:33.0848 0x1460  swenum - ok
22:04:33.0895 0x1460  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
22:04:33.0942 0x1460  swprv - ok
22:04:34.0020 0x1460  [ D1F16826F922C46174ABE700207D00A8, 126050098BF04E0D9F353B8DF454DB3EE784BA5FD6E701DE2B197806F7D65F20 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
22:04:34.0051 0x1460  SynTP - ok
22:04:34.0129 0x1460  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
22:04:34.0191 0x1460  SysMain - ok
22:04:34.0207 0x1460  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:04:34.0207 0x1460  TabletInputService - ok
22:04:34.0223 0x1460  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:04:34.0238 0x1460  TapiSrv - ok
22:04:34.0254 0x1460  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
22:04:34.0269 0x1460  TBS - ok
22:04:34.0347 0x1460  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:04:34.0394 0x1460  Tcpip - ok
22:04:34.0472 0x1460  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:04:34.0519 0x1460  TCPIP6 - ok
22:04:34.0550 0x1460  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:04:34.0550 0x1460  tcpipreg - ok
22:04:34.0566 0x1460  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:04:34.0581 0x1460  TDPIPE - ok
22:04:34.0581 0x1460  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:04:34.0597 0x1460  TDTCP - ok
22:04:34.0597 0x1460  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:04:34.0613 0x1460  tdx - ok
22:04:34.0613 0x1460  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
22:04:34.0613 0x1460  TermDD - ok
22:04:34.0659 0x1460  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
22:04:34.0675 0x1460  TermService - ok
22:04:34.0691 0x1460  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
22:04:34.0691 0x1460  Themes - ok
22:04:34.0706 0x1460  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
22:04:34.0706 0x1460  THREADORDER - ok
22:04:34.0722 0x1460  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
22:04:34.0722 0x1460  TrkWks - ok
22:04:34.0769 0x1460  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:04:34.0784 0x1460  TrustedInstaller - ok
22:04:34.0815 0x1460  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:04:34.0815 0x1460  tssecsrv - ok
22:04:34.0847 0x1460  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
22:04:34.0847 0x1460  TsUsbFlt - ok
22:04:34.0862 0x1460  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
22:04:34.0862 0x1460  TsUsbGD - ok
22:04:34.0878 0x1460  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:04:34.0878 0x1460  tunnel - ok
22:04:34.0878 0x1460  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
22:04:34.0893 0x1460  uagp35 - ok
22:04:34.0909 0x1460  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:04:34.0909 0x1460  udfs - ok
22:04:34.0940 0x1460  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:04:34.0940 0x1460  UI0Detect - ok
22:04:34.0940 0x1460  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:04:34.0940 0x1460  uliagpkx - ok
22:04:34.0956 0x1460  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:04:34.0956 0x1460  umbus - ok
22:04:34.0971 0x1460  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
22:04:34.0971 0x1460  UmPass - ok
22:04:34.0987 0x1460  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
22:04:35.0003 0x1460  upnphost - ok
22:04:35.0034 0x1460  [ 724DABDE1A9C48C6E5FE0F9F7E583940, 6B5FB81D0D6096CB827AC32DD5EE7C92F1E2EEFD54EC9E047EC6AF50610B4885 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:04:35.0034 0x1460  usbccgp - ok
22:04:35.0065 0x1460  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:04:35.0065 0x1460  usbcir - ok
22:04:35.0096 0x1460  [ CA11C28D69925E356CC27749CC41C3E1, E0AEB9EA23E7EFB982C1548508583B16A89A5568750EA23A313C8AC40CCB84C5 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
22:04:35.0112 0x1460  usbehci - ok
22:04:35.0174 0x1460  [ 8FA7BAF75209D59E7302BCF0308C52A7, 00F5F7442BBD25E7455ECDE5AE5D40C60E878BAF53A7D535DB59EE2C3F027245 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:04:35.0190 0x1460  usbhub - ok
22:04:35.0205 0x1460  [ BB33E6D8006EDD67CAB91E9417417710, 16CC4A00FB1793C7B723F6A99A39725C87A71C2958CFA0916A55BB084973C96F ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:04:35.0221 0x1460  usbohci - ok
22:04:35.0252 0x1460  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
22:04:35.0252 0x1460  usbprint - ok
22:04:35.0268 0x1460  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\drivers\USBSTOR.SYS
22:04:35.0283 0x1460  USBSTOR - ok
22:04:35.0299 0x1460  [ 8565793CAF1EF768DB669BE0C3C71EDF, 8FD8904C5C0F2BFC66A17EE51E2E50C4BB11B77A18F51F4893D079B2F37F6B21 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
22:04:35.0299 0x1460  usbuhci - ok
22:04:35.0346 0x1460  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
22:04:35.0346 0x1460  usbvideo - ok
22:04:35.0377 0x1460  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
22:04:35.0393 0x1460  UxSms - ok
22:04:35.0408 0x1460  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
22:04:35.0424 0x1460  VaultSvc - ok
22:04:35.0455 0x1460  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
22:04:35.0455 0x1460  vdrvroot - ok
22:04:35.0502 0x1460  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
22:04:35.0549 0x1460  vds - ok
22:04:35.0549 0x1460  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:04:35.0549 0x1460  vga - ok
22:04:35.0549 0x1460  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:04:35.0549 0x1460  VgaSave - ok
22:04:35.0564 0x1460  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
22:04:35.0580 0x1460  vhdmp - ok
22:04:35.0611 0x1460  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:04:35.0627 0x1460  viaide - ok
22:04:35.0627 0x1460  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:04:35.0642 0x1460  volmgr - ok
22:04:35.0673 0x1460  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:04:35.0705 0x1460  volmgrx - ok
22:04:35.0783 0x1460  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:04:35.0814 0x1460  volsnap - ok
22:04:35.0829 0x1460  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
22:04:35.0829 0x1460  vsmraid - ok
22:04:35.0939 0x1460  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
22:04:35.0985 0x1460  VSS - ok
22:04:36.0001 0x1460  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
22:04:36.0001 0x1460  vwifibus - ok
22:04:36.0017 0x1460  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
22:04:36.0017 0x1460  vwififlt - ok
22:04:36.0032 0x1460  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
22:04:36.0032 0x1460  W32Time - ok
22:04:36.0048 0x1460  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
22:04:36.0048 0x1460  WacomPen - ok
22:04:36.0048 0x1460  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:04:36.0063 0x1460  WANARP - ok
22:04:36.0063 0x1460  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:04:36.0063 0x1460  Wanarpv6 - ok
22:04:36.0141 0x1460  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
22:04:36.0219 0x1460  wbengine - ok
22:04:36.0235 0x1460  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:04:36.0235 0x1460  WbioSrvc - ok
22:04:36.0251 0x1460  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:04:36.0266 0x1460  wcncsvc - ok
22:04:36.0282 0x1460  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:04:36.0282 0x1460  WcsPlugInService - ok
22:04:36.0297 0x1460  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
22:04:36.0313 0x1460  Wd - ok
22:04:36.0375 0x1460  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:04:36.0407 0x1460  Wdf01000 - ok
22:04:36.0422 0x1460  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:04:36.0438 0x1460  WdiServiceHost - ok
22:04:36.0438 0x1460  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:04:36.0438 0x1460  WdiSystemHost - ok
22:04:36.0469 0x1460  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
22:04:36.0485 0x1460  WebClient - ok
22:04:36.0516 0x1460  [ CBA25A299ECDBAE3A2300B68598AABA3, 5AC6F75FBDA58CD9D17922AF2780A37B89067EB4A97EE792A644B238BE94490D ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:04:36.0516 0x1460  Wecsvc - ok
22:04:36.0547 0x1460  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:04:36.0547 0x1460  wercplsupport - ok
22:04:36.0563 0x1460  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:04:36.0578 0x1460  WerSvc - ok
22:04:36.0578 0x1460  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:04:36.0594 0x1460  WfpLwf - ok
22:04:36.0609 0x1460  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:04:36.0609 0x1460  WIMMount - ok
22:04:36.0641 0x1460  WinDefend - ok
22:04:36.0656 0x1460  WinHttpAutoProxySvc - ok
22:04:36.0765 0x1460  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:04:36.0797 0x1460  Winmgmt - ok
22:04:36.0890 0x1460  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
22:04:36.0984 0x1460  WinRM - ok
22:04:37.0046 0x1460  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:04:37.0093 0x1460  Wlansvc - ok
22:04:37.0124 0x1460  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
22:04:37.0124 0x1460  WmiAcpi - ok
22:04:37.0140 0x1460  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:04:37.0155 0x1460  wmiApSrv - ok
22:04:37.0171 0x1460  WMPNetworkSvc - ok
22:04:37.0202 0x1460  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:04:37.0202 0x1460  WPCSvc - ok
22:04:37.0218 0x1460  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:04:37.0249 0x1460  WPDBusEnum - ok
22:04:37.0280 0x1460  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:04:37.0280 0x1460  ws2ifsl - ok
22:04:37.0296 0x1460  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
22:04:37.0311 0x1460  wscsvc - ok
22:04:37.0311 0x1460  WSearch - ok
22:04:37.0421 0x1460  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:04:37.0514 0x1460  wuauserv - ok
22:04:37.0530 0x1460  [ D3381DC54C34D79B22CEE0D65BA91B7C, 70DC4ADCA4C0C28BB133287511E329D1B6B9B97F96CDE5B1D2F1F59FE1A965D9 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:04:37.0530 0x1460  WudfPf - ok
22:04:37.0545 0x1460  [ 7A95C95B6C4CF292D689106BCAE49543, 9029F489E1E817CE12839B8C6656E46190497D445DC3F43C20CF96E5E6BD0691 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:04:37.0561 0x1460  wudfsvc - ok
22:04:37.0592 0x1460  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:04:37.0608 0x1460  WwanSvc - ok
22:04:37.0686 0x1460  [ ACEFD2D64AD4AAD4BB7AFA24454EF04B, EED7161BACD019DACD2379CEF5164012EE4315A6EDC3D60BC7039360012C2583 ] ZAtheros Wlan Agent C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe
22:04:37.0686 0x1460  ZAtheros Wlan Agent - ok
22:04:37.0701 0x1460  ================ Scan global ===============================
22:04:37.0748 0x1460  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
22:04:37.0779 0x1460  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
22:04:37.0842 0x1460  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
22:04:37.0873 0x1460  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
22:04:37.0920 0x1460  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
22:04:37.0935 0x1460  [ Global ] - ok
22:04:37.0935 0x1460  ================ Scan MBR ==================================
22:04:37.0951 0x1460  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
22:04:38.0154 0x1460  \Device\Harddisk0\DR0 - ok
22:04:38.0154 0x1460  ================ Scan VBR ==================================
22:04:38.0154 0x1460  [ 817A65F300109D4F5D7C1EE740F883D7 ] \Device\Harddisk0\DR0\Partition1
22:04:38.0154 0x1460  \Device\Harddisk0\DR0\Partition1 - ok
22:04:38.0169 0x1460  [ 043F491061D03F9D178AF67D3156DA9D ] \Device\Harddisk0\DR0\Partition2
22:04:38.0185 0x1460  \Device\Harddisk0\DR0\Partition2 - ok
22:04:38.0185 0x1460  ================ Scan generic autorun ======================
22:04:38.0466 0x1460  [ 7A3C577879C1D092453BFCF688C0B5F7, 8835F572C05FB50A9B59F78F3BBF708D4552C431C5FA9E313335114480E93F7C ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
22:04:38.0731 0x1460  RTHDVCPL - ok
22:04:38.0793 0x1460  [ 1F52D0A814E34E36FBE3EB97A9CD1CD0, 610802343959C8EAFC415F64DF868C533FA010742D1EDC3E5D12F2CA90AC988B ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
22:04:38.0856 0x1460  RtHDVBg - ok
22:04:38.0871 0x1460  [ 15C9F763CCFC9C1B8C269D94B30EF619, 00E2BD04736DBDE84AAD7C239CC30E9427468A33FF6954BE28D361481B09F48B ] C:\Program Files\Realtek\Audio\HDA\WavesSvc64.exe
22:04:38.0871 0x1460  WavesSvc - ok
22:04:39.0043 0x1460  [ 0D7E3548CB03D862F4E4D8E44396686A, CD10EA6B0995B4AB481FC15A02EE13430E3CA541295AA74347C89D0801E45B71 ] c:\Program Files\Dell\QuickSet\QuickSet.exe
22:04:39.0199 0x1460  QuickSet - ok
22:04:39.0230 0x1460  [ 3585A4C6FC0756E10DF4BFA039020F33, 36E3C38AC94691902B515BA821B2579D18BA99C4FB73B03F9BC1EFACC06AE95F ] C:\Windows\system32\igfxtray.exe
22:04:39.0230 0x1460  IgfxTray - ok
22:04:39.0277 0x1460  [ E8D0BD37E4E3299962BE4BB79D2E10AC, B1D9484F2928DB78DBFAED94C6A3A61B50480E1AFB8E6C92DFB237626FED1245 ] C:\Windows\system32\hkcmd.exe
22:04:39.0308 0x1460  HotKeysCmds - ok
22:04:39.0371 0x1460  [ 6559835CB1B8B88C7CED5C5CE5E4E3D0, CB483815AE3EFE44669920B593AE6C490906414A8DB3E0365360E50F9B15A326 ] C:\Windows\system32\igfxpers.exe
22:04:39.0402 0x1460  Persistence - ok
22:04:39.0402 0x1460  SynTPEnh - ok
22:04:39.0495 0x1460  [ ABF9F412B6409D860DD716110C5CE8A7, DA9480231B0B968DC1BF493F05F1CD3241A3E262F8BFBAA5C991797883CF8429 ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
22:04:39.0527 0x1460  USB3MON - ok
22:04:39.0620 0x1460  [ FE821F6FA60E9DF9FDEE69A23488BBAB, 98D9926152FDA45705F5E208D7236E467CAEEF83D756A14B4104EBF804644B29 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
22:04:39.0683 0x1460  Adobe ARM - ok
22:04:39.0792 0x1460  [ 866F0E1348A6810F153BB6978DD61D72, 0BBA822049C06F07A8DB5180FBA70B4298166A353E391C9E2E36F6BE6B3BB9E5 ] C:\Program Files\McAfee.com\Agent\mcagent.exe
22:04:39.0807 0x1460  mcpltui_exe - ok
22:04:39.0885 0x1460  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:04:39.0932 0x1460  Sidebar - ok
22:04:39.0963 0x1460  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:04:39.0979 0x1460  mctadmin - ok
22:04:40.0026 0x1460  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:04:40.0057 0x1460  Sidebar - ok
22:04:40.0057 0x1460  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:04:40.0057 0x1460  mctadmin - ok
22:04:40.0073 0x1460  Waiting for KSN requests completion. In queue: 327
22:04:41.0087 0x1460  Waiting for KSN requests completion. In queue: 17
22:04:42.0101 0x1460  Waiting for KSN requests completion. In queue: 17
22:04:43.0161 0x1460  AV detected via SS2: McAfee Anti-Virus and Anti-Spyware, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 13.0.0.0 ), 0x51000 ( enabled : updated )
22:04:43.0239 0x1460  Win FW state via NFP2: enabled
22:04:45.0829 0x1460  ============================================================
22:04:45.0829 0x1460  Scan finished
22:04:45.0829 0x1460  ============================================================
22:04:45.0845 0x0e5c  Detected object count: 0
22:04:45.0845 0x0e5c  Actual detected object count: 0
 


Before you judge me, know that when I do something wrong it's because I'm an idiot, not because I'm evil.

#8 SmartasaRock

SmartasaRock
  • Topic Starter

  • Members
  • 88 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:01:50 AM

Posted 11 November 2014 - 11:07 PM

Here is the Adwrcleaner log:

 

# AdwCleaner v4.101 - Report created 11/11/2014 at 20:59:59
# Updated 09/11/2014 by Xplode
# Database : 2014-11-11.2 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Ty - TY-PC
# Running from : C:\Users\Ty\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

File Deleted : C:\Users\Public\Desktop\eBay.lnk

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17041


-\\ Mozilla Firefox v33.0.3 (x86 en-US)


*************************

AdwCleaner[R0].txt - [792 octets] - [11/11/2014 20:48:28]
AdwCleaner[S0].txt - [716 octets] - [11/11/2014 20:59:59]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [775 octets] ##########
 


Before you judge me, know that when I do something wrong it's because I'm an idiot, not because I'm evil.

#9 SmartasaRock

SmartasaRock
  • Topic Starter

  • Members
  • 88 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:01:50 AM

Posted 11 November 2014 - 11:13 PM

The junkware removal tool I have downloaded, but I'm having some trouble turning off my protection. Do I need to have my windows firewall turned off too?


Before you judge me, know that when I do something wrong it's because I'm an idiot, not because I'm evil.

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:50 AM

Posted 12 November 2014 - 04:25 PM

Run it any way, this looks like a clean machine
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 SmartasaRock

SmartasaRock
  • Topic Starter

  • Members
  • 88 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:01:50 AM

Posted 12 November 2014 - 08:16 PM

Run it any way, this looks like a clean machine

 

Okay, Boop. Sounds good!

 

JRT log:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.7 (11.08.2014:1)
OS: Windows 7 Home Premium x64
Ran by Ty on Wed 11/12/2014 at 19:06:15.58
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 11/12/2014 at 19:10:01.79
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

 

Hope that means we intercepted them before anything took root for sure. Should I go ahead and delete the program they had me download now? The only other thing I worry about is having told McAfee to allow that program. I hope I can undo it?


Before you judge me, know that when I do something wrong it's because I'm an idiot, not because I'm evil.

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:50 AM

Posted 12 November 2014 - 08:38 PM

OK.. yes you are OK..

I think you need to copy the link from the 'Allowed' to 'Blocked'
http://download.mcafee.com/products/webhelp/4/2057/GUID-EEED223A-05D6-4557-A042-B52306D2B36C.html

I am not to familiar with McAffee's functions.. So if that is not a good answer ask here and I am sure someone there will know..

Anti-Virus and Anti-Malware Software
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 SmartasaRock

SmartasaRock
  • Topic Starter

  • Members
  • 88 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:01:50 AM

Posted 12 November 2014 - 09:06 PM

Okay, I got it taken out of the "trusted list" for McAfee. I'm not familiar with McAfee either. It just came with this computer. I deleted the AMMY program they had me download too. Thank you so much for walking me through that. I read this: http://fox6now.com/2013/10/29/ammyy-scam-allows-third-party-to-take-control-of-your-computer/

and boy did that have me freaked out about these jerks!


Before you judge me, know that when I do something wrong it's because I'm an idiot, not because I'm evil.

#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,912 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:50 AM

Posted 12 November 2014 - 09:41 PM

You're most welcome!!

Today's malware is getting to be more and more like that. We call them Bacdoors. They open a backdoor on your machine and do what they want.

Keep windows and Internet explorer updated (even if you don't use it.

Update and scan at least every 2 weeks.

Read
How Malware Spreads - How did I get infected

Answers to common security questions - Best Practices


Have a great day!!
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users