All sorts of problems: Trojans, Smitfraud, etc.

[ronnies]

Thanks so much for all of your help, oldman960!

I rebooted my system and downloaded Avira. I still have Spybot and Windows Defender. Start up and browsing are moving much better and definitely quicker.

 

[ronnies]

My husband uninstalled Avira because he didn't recognize it and didn't think to ask me first. I have not re-installed it.

Internet Explorer is now acting differently. Some pages are not loading completely and those that do are not responding to some actions.

 

[oldman960]

Hi ronnies,

I'm not sure what happened with TDSSK, we'll run it again in a bit and see if anything shows in the log. Before we do that let's seeif we can resolve the current issue.

When did the problem with IE start before or after Avira was uninstalled?

 

[ronnies]

Okay, thanks!

IE started acting up before Avira was uninstalled.

 

[oldman960]

Hi ronnies,

Any problems with a different browser besides IE?

Please rerun DDS and post the log and the Attach.txt.

 

[ronnies]

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.6.2
Run by Scriven at 15:25:11 on 2012-08-30
.
============== Running Processes ===============
.
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files (x86)\Dell Photo AIO Printer 966\dlcqmon.exe
C:\Program Files (x86)\Dell Photo AIO Printer 966\memcard.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingBar.exe
C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
C:\Users\Scriven\AppData\Local\Temp\install_flashplayer11x32_mssd_aih.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Users\Scriven\Downloads\dds.scr
.
============== Pseudo HJT Report ===============
.
uInternet Settings,ProxyOverride = *.local
mURLSearchHooks: Swag Bucks Toolbar: {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94} - C:\Program Files (x86)\Swag_Bucks\prxtbSwag.dll
BHO: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No File
BHO: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - No File
BHO: Swag Bucks Toolbar: {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94} - C:\Program Files (x86)\Swag_Bucks\prxtbSwag.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB: Swag Bucks Toolbar: {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94} - C:\Program Files (x86)\Swag_Bucks\prxtbSwag.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll"
uRun: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
mRun: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
mRun: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
mRun: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe"
mRun: [FaxCenterServer] "C:\Program Files (x86)\Dell PC Fax\fm3032.exe" /s
mRun: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
mRun: [AccuWeatherWidget] "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup
mRun: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRun: [<NO NAME>]
mRun: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
DPF: {CAFEEFAC-0017-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_06-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_06-windows-i586.cab
TCP: DhcpNameServer = 192.168.200.1
TCP: Interfaces\{B35F3F63-C6B9-40D5-8065-255D8F8DB51D} : DhcpNameServer = 192.168.200.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
Handler: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - c:\Program Files (x86)\Cozi Express\CoziProtocolHandler.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
BHO-X64: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No File
BHO-X64: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - No File
BHO-X64: Swag Bucks Toolbar: {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94} - C:\Program Files (x86)\Swag_Bucks\prxtbSwag.dll
BHO-X64: Swag Bucks - No File
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB-X64: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
TB-X64: Swag Bucks Toolbar: {8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94} - C:\Program Files (x86)\Swag_Bucks\prxtbSwag.dll
TB-X64: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BingExt.dll"
mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
mRun-x64: [Dell DataSafe Online] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe
mRun-x64: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
mRun-x64: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe"
mRun-x64: [FaxCenterServer] "C:\Program Files (x86)\Dell PC Fax\fm3032.exe" /s
mRun-x64: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
mRun-x64: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
mRun-x64: [AccuWeatherWidget] "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup
mRun-x64: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
mRun-x64: [(Default)]
mRun-x64: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
IE-X64: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Scriven\AppData\Roaming\Mozilla\Firefox\Profiles\nrfefj31.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.msn.com/
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
.
============= SERVICES / DRIVERS ===============
.
R? AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service
R? BBSvc;BingBar Service
R? BTWAMPFL;BTWAMPFL
R? btwl2cap;Bluetooth L2CAP Service
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64
R? fssfltr;fssfltr
R? fsssvc;Windows Live Family Safety Service
R? HTCAND64;HTC Device Driver
R? htcnprot;HTC NDIS Protocol Driver
R? Impcd;Impcd
R? mfewfpk;McAfee Inc. mfewfpk
R? MozillaMaintenance;Mozilla Maintenance Service
R? osppsvc;Office Software Protection Platform
R? RoxMediaDB12OEM;RoxMediaDB12OEM
R? RoxWatch12;Roxio Hard Drive Watcher 12
R? RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader
R? TsUsbFlt;TsUsbFlt
R? TsUsbGD;Remote Desktop Generic USB Device
R? WatAdminSvc;Windows Activation Technologies Service
R? wlcrasvc;Windows Live Mesh remote connections service
S? AdobeARMservice;Adobe Acrobat Update Service
S? AERTFilters;Andrea RT Filters Service
S? BBUpdate;BBUpdate
S? CtClsFlt;Creative Camera Class Upper Filter Driver
S? DellDigitalDelivery;Dell Digital Delivery Service
S? IntcDAud;Intel(R) Display Audio
S? MBAMProtector;MBAMProtector
S? MBAMService;MBAMService
S? MEIx64;Intel(R) Management Engine Interface
S? NOBU;Dell DataSafe Online
S? nusb3hub;Renesas Electronics USB 3.0 Hub Driver
S? nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver
S? PassThru Service;Internet Pass-Through Service
S? PxHlpa64;PxHlpa64
S? RTL8167;Realtek 8167 NT Driver
S? SBSDWSCService;SBSD Security Center Service
S? SftService;SoftThinks Agent Service
S? UNS;Intel(R) Management and Security Application User Notification Service
S? vwififlt;Virtual WiFi Filter Driver
S? vwifimp;Microsoft Virtual WiFi Miniport Service
.
=============== Created Last 30 ================
.
2012-08-30 12:58:00 69000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9CD06886-E5BB-40AF-87D8-8B78DEDA06F6}\offreg.dll
2012-08-29 18:00:55 514560 ----a-w- C:\Windows\SysWow64\qdvd.dll
2012-08-29 18:00:55 366592 ----a-w- C:\Windows\System32\qdvd.dll
2012-08-29 16:36:16 8199504 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2012-08-29 16:36:13 9310152 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9CD06886-E5BB-40AF-87D8-8B78DEDA06F6}\mpengine.dll
2012-08-29 16:27:12 552960 ----a-w- C:\Windows\System32\drivers\bthport.sys
2012-08-29 15:12:09 -------- d-----w- C:\Program Files (x86)\ESET
2012-08-28 14:45:45 -------- d-----w- C:\_OTL
2012-08-27 21:30:19 -------- d-sh--w- C:\$RECYCLE.BIN
2012-08-27 15:09:42 98816 ----a-w- C:\Windows\sed.exe
2012-08-27 15:09:42 518144 ----a-w- C:\Windows\SWREG.exe
2012-08-27 15:09:42 256000 ----a-w- C:\Windows\PEV.exe
2012-08-27 15:09:42 208896 ----a-w- C:\Windows\MBR.exe
2012-08-27 00:55:27 -------- d-----w- C:\TDSSKiller_Quarantine
2012-08-24 02:21:59 -------- d-----w- C:\ProgramData\PC-Doctor for Windows
2012-08-23 02:53:52 821736 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2012-08-23 02:53:32 95208 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2012-08-23 02:29:04 24904 ----a-w- C:\Windows\System32\drivers\mbam.sys
2012-08-22 00:15:24 -------- d-----w- C:\found.000
2012-08-20 15:50:04 -------- d-----w- C:\Users\Scriven\AppData\Roaming\Malwarebytes
2012-08-20 15:49:55 -------- d-----w- C:\ProgramData\Malwarebytes
2012-08-20 15:49:54 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2012-08-20 02:16:10 -------- d-----w- C:\Users\Scriven\AppData\Local\AskToolbar
2012-08-20 02:16:05 -------- d-----w- C:\Program Files (x86)\Ask.com
2012-08-12 03:55:53 -------- d-----w- C:\Users\Scriven\AppData\Local\Apple Computer
2012-08-12 03:54:14 -------- d-----w- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2012-08-12 03:54:14 -------- d-----w- C:\Program Files\iPod
2012-08-12 03:54:14 -------- d-----w- C:\Program Files (x86)\iTunes
2012-08-12 03:53:04 -------- d-----w- C:\Users\Scriven\AppData\Local\Apple
2012-08-12 03:52:15 -------- d-----w- C:\Program Files\Bonjour
2012-08-12 03:52:15 -------- d-----w- C:\Program Files (x86)\Bonjour
2012-08-10 23:51:26 -------- d-----w- C:\Users\Scriven\AppData\Local\ElevatedDiagnostics
2012-08-07 23:41:31 -------- d-----w- C:\Users\Scriven\AppData\Local\The Weather Channel
2012-08-07 14:39:13 -------- d-sh--w- C:\Windows\SysWow64\%APPDATA%
2012-08-06 19:50:31 -------- d-----w- C:\Users\Scriven\AppData\Local\Swag_Bucks
2012-08-06 01:05:29 -------- d-----w- C:\Program Files (x86)\Dell Digital Delivery
2012-08-02 03:10:45 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2012-08-02 03:10:45 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy
2012-08-02 00:53:07 -------- d-----w- C:\Program Files (x86)\Common Files\Symantec Shared
.
==================== Find3M ====================
.
2012-08-27 00:57:04 328704 ----a-w- C:\Windows\System32\services.exe
2012-08-22 22:15:21 70344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-22 22:15:21 426184 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2012-07-18 18:15:06 3148800 ----a-w- C:\Windows\System32\win32k.sys
2012-07-04 22:13:27 59392 ----a-w- C:\Windows\System32\browcli.dll
2012-07-04 22:13:27 136704 ----a-w- C:\Windows\System32\browser.dll
2012-07-04 21:14:34 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
2012-06-29 03:56:34 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2012-06-29 03:49:11 1392128 ----a-w- C:\Windows\System32\wininet.dll
2012-06-29 03:48:07 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2012-06-29 03:43:49 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2012-06-29 03:39:48 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2012-06-29 00:16:58 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2012-06-29 00:09:01 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-06-29 00:08:59 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2012-06-29 00:04:43 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2012-06-29 00:00:45 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2012-06-25 20:04:24 1394248 ----a-w- C:\Windows\SysWow64\msxml4.dll
2012-06-06 12:49:52 1070152 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX
2012-06-06 06:06:16 2004480 ----a-w- C:\Windows\System32\msxml6.dll
2012-06-06 06:06:16 1881600 ----a-w- C:\Windows\System32\msxml3.dll
2012-06-06 06:02:54 1133568 ----a-w- C:\Windows\System32\cdosys.dll
2012-06-06 05:05:52 1390080 ----a-w- C:\Windows\SysWow64\msxml6.dll
2012-06-06 05:05:52 1236992 ----a-w- C:\Windows\SysWow64\msxml3.dll
2012-06-06 05:03:06 805376 ----a-w- C:\Windows\SysWow64\cdosys.dll
2012-06-02 22:15:31 2622464 ----a-w- C:\Windows\System32\wucltux.dll
2012-06-02 22:15:08 99840 ----a-w- C:\Windows\System32\wudriver.dll
2012-06-02 19:19:42 186752 ----a-w- C:\Windows\System32\wuwebv.dll
2012-06-02 19:15:12 36864 ----a-w- C:\Windows\System32\wuapp.exe
2012-06-02 05:50:10 458704 ----a-w- C:\Windows\System32\drivers\cng.sys
2012-06-02 05:48:16 95600 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2012-06-02 05:48:16 151920 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2012-06-02 05:45:31 340992 ----a-w- C:\Windows\System32\schannel.dll
2012-06-02 05:44:21 307200 ----a-w- C:\Windows\System32\ncrypt.dll
2012-06-02 04:40:42 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2012-06-02 04:40:39 225280 ----a-w- C:\Windows\SysWow64\schannel.dll
2012-06-02 04:39:10 219136 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2012-06-02 04:34:09 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
.
============= FINISH: 15:26:04.56 ===============


.
==== Installed Programs ======================
.
ABBYY FineReader 6.0 Sprint
Adobe Acrobat X Pro - English, Français, Deutsch
Adobe AIR
Adobe Flash Player 11 ActiveX
Adobe Reader X (10.1.4) MUI
Adobe Shockwave Player 11.6
Advanced Audio FX Engine
Apple Application Support
Apple Software Update
Bing Bar
Bing Rewards Client Installer
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Coupon Printer for Windows
Cozi
D3DX10
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Local Backup
Dell DataSafe Local Backup - Support Software
Dell DataSafe Online
Dell Digital Delivery
Dell Getting Started Guide
Dell Home Systems Service Agreement
Dell Marketplace Webslice IE8
Dell MusicStage
Dell PhotoStage
Dell Stage
Dell VideoStage
Dell Webcam Central
DirectX 9 Runtime
eBay
ERUNT 1.1j
ESET Online Scanner v3
HTC BMP USB Driver
HTC Driver Installer
HTC Sync
Intel(R) Control Center
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Internet Explorer
Java 7 Update 6
Java Auto Updater
Junk Mail filter update
Malwarebytes Anti-Malware version 1.62.0.1300
Mesh Runtime
Messenger Companion
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Home and Student 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Single Image 2010
Microsoft Office Word MUI (English) 2010
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Mozilla Firefox 15.0 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB2721691)
MSXML 4.0 SP3 Parser (KB973685)
PhotoShowExpress
Print to Fax
Realtek High Definition Audio Driver
Roxio Activation Module
Roxio BackOnTrack
Roxio Burn
Roxio Creator Starter
Roxio Express Labeler 3
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft Excel 2010 (KB2597166) 32-Bit Edition
Security Update for Microsoft InfoPath 2010 (KB2553322) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553091)
Security Update for Microsoft Office 2010 (KB2553096)
Security Update for Microsoft Office 2010 (KB2553260) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553371) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553447) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2589320) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2589322) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2597986) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2598243) 32-Bit Edition
Security Update for Microsoft PowerPoint 2010 (KB2553185) 32-Bit Edition
Security Update for Microsoft SharePoint Workspace 2010 (KB2566445)
Security Update for Microsoft Visio Viewer 2010 (KB2598287) 32-Bit Edition
Skype Toolbars
Skype™ 4.2
Sonic CinePlayer Decoder Pack
Spybot - Search & Destroy
Swag Bucks Toolbar
swMSM
TrustedID
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553272) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598289) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
.
==== End Of File ===========================

 

[ronnies]

I installed Mozilla Firefox and it displays my homepage (msn.com) with full features (unlike IE). However, when I tried to go to another page I use multiple times daily, the page gave me a message that I needed Adobe Flash. I downloaded (so I thought) but neither IE nor Firefox is displaying properly.

Another example would be this site. After I log in, IE will no longer automatically redirect but Firefox will. Also, with IE, I cannot use my toolbars.

 

[oldman960]

Hi ronnies,

Your earlier logs showed you had McAfee installed, what happened to it?


Download aswMBR.exe to your desktop.

Double click the aswMBR.exe to run it. If asked to download Avast's database please do so.

Click the "Scan" button to start scan

On completion of the scan click save log, save it to your desktop and post in your next reply

There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.


Please post back with

• ASWmbr log
• mbr.zip (attached)

 

[ronnies]

I don't know what happened to McAfee. As far as I know it was not uninstalled.


aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-08-30 21:18:44
-----------------------------
21:18:44.562 OS Version: Windows x64 6.1.7601 Service Pack 1
21:18:44.562 Number of processors: 2 586 0x2A07
21:18:44.562 ComputerName: SCRIVEN-PC UserName: Scriven
21:18:46.076 Initialize success
21:19:57.397 AVAST engine defs: 12083001
21:20:41.545 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
21:20:41.545 Disk 0 Vendor: WDC_WD32 01.0 Size: 305245MB BusType: 3
21:20:41.576 Disk 0 MBR read successfully
21:20:41.576 Disk 0 MBR scan
21:20:41.576 Disk 0 Windows VISTA default MBR code
21:20:41.592 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 101 MB offset 63
21:20:41.623 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 20000 MB offset 212992
21:20:41.670 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 285140 MB offset 41172992
21:20:41.732 Disk 0 scanning C:\Windows\system32\drivers
21:20:58.474 Service scanning
21:21:24.448 Modules scanning
21:21:24.464 Disk 0 trace - called modules:
21:21:24.495 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
21:21:24.495 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80064c2060]
21:21:24.495 3 CLASSPNP.SYS[fffff88001b9a43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800469f050]
21:21:25.961 AVAST engine scan C:\Windows
21:21:30.158 AVAST engine scan C:\Windows\system32
21:25:24.428 AVAST engine scan C:\Windows\system32\drivers
21:25:37.049 AVAST engine scan C:\Users\Scriven
21:28:55.734 AVAST engine scan C:\ProgramData
21:30:58.429 Scan finished successfully
21:32:07.272 Disk 0 MBR has been saved successfully to "C:\Users\Scriven\Desktop\MBR.dat"
21:32:07.272 The log file has been saved successfully to "C:\Users\Scriven\Desktop\aswMBR08302012.txt"

 

[ronnies]

okayy, got McAfee back. All is well with IE. :bigthumb:

 

[oldman960]

Hi ronnies,

Ok good.

Please rerun TDSSKiller with the same settings as before. This time don't cure or delete anything just use skip. We just need a scan for now.

 

[ronnies]

19:48:28.0330 6328 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
19:48:30.0296 6328 ============================================================
19:48:30.0296 6328 Current date / time: 2012/09/01 19:48:30.0296
19:48:30.0296 6328 SystemInfo:
19:48:30.0296 6328
19:48:30.0296 6328 OS Version: 6.1.7601 ServicePack: 1.0
19:48:30.0296 6328 Product type: Workstation
19:48:30.0296 6328 ComputerName: SCRIVEN-PC
19:48:30.0296 6328 UserName: Scriven
19:48:30.0296 6328 Windows directory: C:\Windows
19:48:30.0296 6328 System windows directory: C:\Windows
19:48:30.0296 6328 Running under WOW64
19:48:30.0296 6328 Processor architecture: Intel x64
19:48:30.0296 6328 Number of processors: 2
19:48:30.0296 6328 Page size: 0x1000
19:48:30.0296 6328 Boot type: Normal boot
19:48:30.0296 6328 ============================================================
19:48:34.0134 6328 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:48:34.0134 6328 ============================================================
19:48:34.0134 6328 \Device\Harddisk0\DR0:
19:48:34.0134 6328 MBR partitions:
19:48:34.0134 6328 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x34000, BlocksNum 0x2710000
19:48:34.0134 6328 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2744000, BlocksNum 0x22CEA2B0
19:48:34.0134 6328 ============================================================
19:48:34.0212 6328 C: <-> \Device\Harddisk0\DR0\Partition2
19:48:34.0212 6328 ============================================================
19:48:34.0212 6328 Initialize success
19:48:34.0212 6328 ============================================================
19:50:12.0821 6020 ============================================================
19:50:12.0821 6020 Scan started
19:50:12.0821 6020 Mode: Manual; SigCheck; TDLFS;
19:50:12.0821 6020 ============================================================
19:50:13.0117 6020 ================ Scan system memory ========================
19:50:13.0117 6020 System memory - ok
19:50:13.0117 6020 ================ Scan services =============================
19:50:13.0367 6020 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:50:13.0632 6020 1394ohci - ok
19:50:13.0663 6020 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:50:13.0694 6020 ACPI - ok
19:50:13.0710 6020 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:50:13.0850 6020 AcpiPmi - ok
19:50:13.0975 6020 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:50:14.0006 6020 AdobeARMservice - ok
19:50:14.0162 6020 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:50:14.0209 6020 AdobeFlashPlayerUpdateSvc - ok
19:50:14.0287 6020 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
19:50:14.0334 6020 adp94xx - ok
19:50:14.0365 6020 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
19:50:14.0412 6020 adpahci - ok
19:50:14.0443 6020 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
19:50:14.0490 6020 adpu320 - ok
19:50:14.0537 6020 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:50:14.0677 6020 AeLookupSvc - ok
19:50:14.0817 6020 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
19:50:14.0849 6020 AERTFilters - ok
19:50:14.0880 6020 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:50:14.0989 6020 AFD - ok
19:50:15.0036 6020 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:50:15.0083 6020 agp440 - ok
19:50:15.0114 6020 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:50:15.0207 6020 ALG - ok
19:50:15.0239 6020 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:50:15.0270 6020 aliide - ok
19:50:15.0301 6020 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:50:15.0332 6020 amdide - ok
19:50:15.0379 6020 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
19:50:15.0473 6020 AmdK8 - ok
19:50:15.0504 6020 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
19:50:15.0551 6020 AmdPPM - ok
19:50:15.0582 6020 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:50:15.0675 6020 amdsata - ok
19:50:15.0691 6020 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
19:50:15.0722 6020 amdsbs - ok
19:50:15.0769 6020 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:50:15.0800 6020 amdxata - ok
19:50:15.0878 6020 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
19:50:16.0019 6020 AppHostSvc - ok
19:50:16.0034 6020 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:50:16.0299 6020 AppID - ok
19:50:16.0331 6020 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:50:16.0409 6020 AppIDSvc - ok
19:50:16.0424 6020 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
19:50:16.0518 6020 Appinfo - ok
19:50:16.0611 6020 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:50:16.0643 6020 Apple Mobile Device - ok
19:50:16.0674 6020 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
19:50:16.0705 6020 arc - ok
19:50:16.0736 6020 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
19:50:16.0783 6020 arcsas - ok
19:50:16.0908 6020 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:50:16.0970 6020 aspnet_state - ok
19:50:16.0986 6020 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:50:17.0064 6020 AsyncMac - ok
19:50:17.0095 6020 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:50:17.0111 6020 atapi - ok
19:50:17.0189 6020 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:50:17.0267 6020 AudioEndpointBuilder - ok
19:50:17.0282 6020 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:50:17.0329 6020 AudioSrv - ok
19:50:17.0345 6020 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:50:17.0485 6020 AxInstSV - ok
19:50:17.0516 6020 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
19:50:17.0625 6020 b06bdrv - ok
19:50:17.0641 6020 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:50:17.0735 6020 b57nd60a - ok
19:50:17.0844 6020 [ A2494901E7226B356B8C1005C45F1C5F ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
19:50:17.0875 6020 BBSvc - ok
19:50:17.0891 6020 [ 63B1CBBAE4790B5BAC98F01BF9449722 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
19:50:17.0922 6020 BBUpdate - ok
19:50:17.0937 6020 [ 436806506E83AA8755A523147E191B7B ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
19:50:18.0031 6020 BCM42RLY - ok
19:50:18.0140 6020 [ B5D54119CE0BB77872C33A717CB76386 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
19:50:18.0218 6020 BCM43XX - ok
19:50:18.0249 6020 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:50:18.0312 6020 BDESVC - ok
19:50:18.0327 6020 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:50:18.0421 6020 Beep - ok
19:50:18.0468 6020 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
19:50:18.0561 6020 BFE - ok
19:50:18.0593 6020 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
19:50:18.0717 6020 BITS - ok
19:50:18.0780 6020 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:50:18.0811 6020 blbdrive - ok
19:50:18.0873 6020 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:50:18.0905 6020 Bonjour Service - ok
19:50:18.0936 6020 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:50:19.0014 6020 bowser - ok
19:50:19.0029 6020 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
19:50:19.0092 6020 BrFiltLo - ok
19:50:19.0107 6020 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
19:50:19.0139 6020 BrFiltUp - ok
19:50:19.0185 6020 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
19:50:19.0248 6020 BridgeMP - ok
19:50:19.0279 6020 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
19:50:19.0357 6020 Browser - ok
19:50:19.0373 6020 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:50:19.0451 6020 Brserid - ok
19:50:19.0466 6020 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:50:19.0529 6020 BrSerWdm - ok
19:50:19.0544 6020 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:50:19.0591 6020 BrUsbMdm - ok
19:50:19.0607 6020 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:50:19.0653 6020 BrUsbSer - ok
19:50:19.0700 6020 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
19:50:19.0778 6020 BthEnum - ok
19:50:19.0809 6020 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
19:50:19.0856 6020 BTHMODEM - ok
19:50:19.0887 6020 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
19:50:19.0934 6020 BthPan - ok
19:50:19.0965 6020 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
19:50:20.0059 6020 BTHPORT - ok
19:50:20.0106 6020 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:50:20.0215 6020 bthserv - ok
19:50:20.0231 6020 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
19:50:20.0309 6020 BTHUSB - ok
19:50:20.0355 6020 [ 72CC5DCC4E67E7927F94801166CFDCDA ] BTWAMPFL C:\Windows\system32\DRIVERS\btwampfl.sys
19:50:20.0449 6020 BTWAMPFL - ok
19:50:20.0480 6020 [ F6135859A582A7294BA7A3336E08BAA1 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
19:50:20.0558 6020 btwaudio - ok
19:50:20.0574 6020 [ 3DEF2370E414B4E299673558BA171A51 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
19:50:20.0636 6020 btwavdt - ok
19:50:20.0714 6020 [ F0AF04A96CA48B869284B5DC4CDB8CBB ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
19:50:20.0792 6020 btwdins - ok
19:50:20.0823 6020 [ 07096D2BC22CCB6CEA5A532DF0BE8A75 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
19:50:20.0901 6020 btwl2cap - ok
19:50:20.0901 6020 [ 9937E0E4DFC0030560A6DFE9D3A94B39 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
19:50:20.0964 6020 btwrchid - ok
19:50:20.0995 6020 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:50:21.0057 6020 cdfs - ok
19:50:21.0073 6020 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:50:21.0167 6020 cdrom - ok
19:50:21.0213 6020 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:50:21.0323 6020 CertPropSvc - ok
19:50:21.0354 6020 [ 45B5A89DC41577282E5BF41B1165EA71 ] cfwids C:\Windows\system32\drivers\cfwids.sys
19:50:21.0432 6020 cfwids - ok
19:50:21.0463 6020 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
19:50:21.0494 6020 circlass - ok
19:50:21.0525 6020 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:50:21.0572 6020 CLFS - ok
19:50:21.0635 6020 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:50:21.0666 6020 clr_optimization_v2.0.50727_32 - ok
19:50:21.0713 6020 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:50:21.0744 6020 clr_optimization_v2.0.50727_64 - ok
19:50:21.0791 6020 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:50:21.0869 6020 clr_optimization_v4.0.30319_32 - ok
19:50:21.0900 6020 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:50:21.0947 6020 clr_optimization_v4.0.30319_64 - ok
19:50:21.0962 6020 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:50:22.0025 6020 CmBatt - ok
19:50:22.0056 6020 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:50:22.0087 6020 cmdide - ok
19:50:22.0134 6020 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
19:50:22.0181 6020 CNG - ok
19:50:22.0196 6020 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:50:22.0212 6020 Compbatt - ok
19:50:22.0212 6020 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
19:50:22.0305 6020 CompositeBus - ok
19:50:22.0305 6020 COMSysApp - ok
19:50:22.0337 6020 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
19:50:22.0352 6020 crcdisk - ok
19:50:22.0383 6020 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:50:22.0477 6020 CryptSvc - ok
19:50:22.0508 6020 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
19:50:22.0602 6020 CtClsFlt - ok
19:50:22.0649 6020 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:50:22.0727 6020 DcomLaunch - ok
19:50:22.0773 6020 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:50:22.0836 6020 defragsvc - ok
19:50:22.0898 6020 [ 88D5FE2109F1A52CF69BA410082A833A ] DellDigitalDelivery C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
19:50:22.0914 6020 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - warning
19:50:22.0914 6020 DellDigitalDelivery - detected UnsignedFile.Multi.Generic (1)
19:50:22.0961 6020 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:50:23.0039 6020 DfsC - ok
19:50:23.0070 6020 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:50:23.0179 6020 Dhcp - ok
19:50:23.0195 6020 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:50:23.0241 6020 discache - ok
19:50:23.0257 6020 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
19:50:23.0273 6020 Disk - ok
19:50:23.0288 6020 dlcq_device - ok
19:50:23.0319 6020 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:50:23.0382 6020 Dnscache - ok
19:50:23.0413 6020 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:50:23.0538 6020 dot3svc - ok
19:50:23.0553 6020 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:50:23.0631 6020 DPS - ok
19:50:23.0647 6020 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:50:23.0709 6020 drmkaud - ok
19:50:23.0787 6020 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:50:23.0881 6020 DXGKrnl - ok
19:50:23.0897 6020 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:50:23.0959 6020 EapHost - ok
19:50:24.0053 6020 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
19:50:24.0209 6020 ebdrv - ok
19:50:24.0240 6020 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:50:24.0318 6020 EFS - ok
19:50:24.0396 6020 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:50:24.0552 6020 ehRecvr - ok
19:50:24.0583 6020 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:50:24.0599 6020 ehSched - ok
19:50:24.0630 6020 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
19:50:24.0692 6020 elxstor - ok
19:50:24.0708 6020 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:50:24.0739 6020 ErrDev - ok
19:50:24.0817 6020 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:50:24.0895 6020 EventSystem - ok
19:50:24.0911 6020 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:50:24.0957 6020 exfat - ok
19:50:24.0973 6020 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:50:25.0035 6020 fastfat - ok
19:50:25.0067 6020 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:50:25.0145 6020 Fax - ok
19:50:25.0160 6020 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
19:50:25.0223 6020 fdc - ok
19:50:25.0238 6020 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:50:25.0285 6020 fdPHost - ok
19:50:25.0301 6020 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:50:25.0379 6020 FDResPub - ok
19:50:25.0394 6020 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:50:25.0410 6020 FileInfo - ok
19:50:25.0457 6020 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:50:25.0519 6020 Filetrace - ok
19:50:25.0581 6020 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
19:50:25.0597 6020 flpydisk - ok
19:50:25.0628 6020 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:50:25.0644 6020 FltMgr - ok
19:50:25.0691 6020 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
19:50:25.0784 6020 FontCache - ok
19:50:25.0831 6020 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:50:25.0893 6020 FontCache3.0.0.0 - ok
19:50:25.0909 6020 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:50:25.0925 6020 FsDepends - ok
19:50:25.0956 6020 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
19:50:26.0018 6020 fssfltr - ok
19:50:26.0096 6020 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
19:50:26.0143 6020 fsssvc - ok
19:50:26.0190 6020 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:50:26.0252 6020 Fs_Rec - ok
19:50:26.0330 6020 [ 79179C6F8A3784CC3A20CDE998D5BD2C ] ftpsvc C:\Windows\system32\inetsrv\ftpsvc.dll
19:50:26.0486 6020 ftpsvc - ok
19:50:26.0533 6020 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:50:26.0580 6020 fvevol - ok
19:50:26.0595 6020 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
19:50:26.0611 6020 gagp30kx - ok
19:50:26.0658 6020 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:50:26.0720 6020 gpsvc - ok
19:50:26.0751 6020 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:50:26.0829 6020 hcw85cir - ok
19:50:26.0861 6020 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
19:50:26.0923 6020 HDAudBus - ok
19:50:26.0939 6020 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
19:50:26.0985 6020 HidBatt - ok
19:50:27.0017 6020 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
19:50:27.0063 6020 HidBth - ok
19:50:27.0079 6020 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
19:50:27.0110 6020 HidIr - ok
19:50:27.0126 6020 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
19:50:27.0204 6020 hidserv - ok
19:50:27.0266 6020 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:50:27.0344 6020 HidUsb - ok
19:50:27.0422 6020 [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
19:50:27.0500 6020 HipShieldK - ok
19:50:27.0531 6020 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:50:27.0625 6020 hkmsvc - ok
19:50:27.0656 6020 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:50:27.0719 6020 HomeGroupListener - ok
19:50:27.0781 6020 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:50:27.0890 6020 HomeGroupProvider - ok
19:50:27.0937 6020 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:50:28.0015 6020 HpSAMD - ok
19:50:28.0046 6020 [ F47CEC45FB85791D4AB237563AD0FA8F ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys
19:50:28.0187 6020 HTCAND64 - ok
19:50:28.0218 6020 [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
19:50:28.0296 6020 htcnprot - ok
19:50:28.0327 6020 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:50:28.0389 6020 HTTP - ok
19:50:28.0421 6020 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:50:28.0436 6020 hwpolicy - ok
19:50:28.0467 6020 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
19:50:28.0499 6020 i8042prt - ok
19:50:28.0530 6020 [ D469B77687E12FE43E344806740B624D ] iaStor C:\Windows\system32\drivers\iaStor.sys
19:50:28.0561 6020 iaStor - ok
19:50:28.0592 6020 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:50:28.0655 6020 iaStorV - ok
19:50:28.0733 6020 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:50:28.0873 6020 idsvc - ok
19:50:29.0138 6020 [ A47D902F5C0C43DCF5EE2CAE02BF39A8 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
19:50:29.0388 6020 igfx - ok
19:50:29.0419 6020 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
19:50:29.0450 6020 iirsp - ok
19:50:29.0513 6020 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:50:29.0606 6020 IKEEXT - ok
19:50:29.0637 6020 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\drivers\Impcd.sys
19:50:29.0778 6020 Impcd - ok
19:50:29.0871 6020 [ 8FED6428FDE53D7F4C105095F22524BE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:50:29.0981 6020 IntcAzAudAddService - ok
19:50:30.0027 6020 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
19:50:30.0105 6020 IntcDAud - ok
19:50:30.0137 6020 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:50:30.0152 6020 intelide - ok
19:50:30.0168 6020 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:50:30.0230 6020 intelppm - ok
19:50:30.0261 6020 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:50:30.0355 6020 IPBusEnum - ok
19:50:30.0371 6020 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:50:30.0449 6020 IpFilterDriver - ok
19:50:30.0480 6020 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:50:30.0542 6020 iphlpsvc - ok
19:50:30.0573 6020 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:50:30.0651 6020 IPMIDRV - ok
19:50:30.0667 6020 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:50:30.0745 6020 IPNAT - ok
19:50:30.0761 6020 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:50:30.0792 6020 IRENUM - ok
19:50:30.0807 6020 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:50:30.0839 6020 isapnp - ok
19:50:30.0854 6020 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:50:30.0917 6020 iScsiPrt - ok
19:50:30.0932 6020 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:50:30.0963 6020 kbdclass - ok
19:50:30.0979 6020 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
19:50:31.0057 6020 kbdhid - ok
19:50:31.0073 6020 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:50:31.0119 6020 KeyIso - ok
19:50:31.0151 6020 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:50:31.0166 6020 KSecDD - ok
19:50:31.0197 6020 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:50:31.0229 6020 KSecPkg - ok
19:50:31.0244 6020 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:50:31.0307 6020 ksthunk - ok
19:50:31.0338 6020 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:50:31.0431 6020 KtmRm - ok
19:50:31.0463 6020 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
19:50:31.0541 6020 LanmanServer - ok
19:50:31.0587 6020 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:50:31.0665 6020 LanmanWorkstation - ok
19:50:31.0681 6020 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:50:31.0759 6020 lltdio - ok
19:50:31.0790 6020 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:50:31.0853 6020 lltdsvc - ok
19:50:31.0884 6020 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:50:31.0946 6020 lmhosts - ok
19:50:31.0993 6020 [ 7F32D4C47A50E7223491E8FB9359907D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
19:50:32.0040 6020 LMS - ok
19:50:32.0055 6020 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
19:50:32.0087 6020 LSI_FC - ok
19:50:32.0118 6020 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
19:50:32.0165 6020 LSI_SAS - ok
19:50:32.0180 6020 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
19:50:32.0196 6020 LSI_SAS2 - ok
19:50:32.0211 6020 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
19:50:32.0258 6020 LSI_SCSI - ok
19:50:32.0274 6020 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:50:32.0336 6020 luafv - ok
19:50:32.0367 6020 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
19:50:32.0383 6020 MBAMProtector - ok
19:50:32.0445 6020 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:50:32.0523 6020 MBAMService - ok
19:50:32.0601 6020 [ C121367D21599367F2ADB9C11B7BABAA ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:50:32.0633 6020 McAfee SiteAdvisor Service - ok
19:50:32.0757 6020 [ FD3AD5E1ECDAA94A89D6697F5C5465D6 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.1.121\McCHSvc.exe
19:50:32.0789 6020 McComponentHostService - ok
19:50:32.0835 6020 [ C121367D21599367F2ADB9C11B7BABAA ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:50:32.0867 6020 McMPFSvc - ok
19:50:32.0867 6020 [ C121367D21599367F2ADB9C11B7BABAA ] mcmscsvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
19:50:32.0882 6020 mcmscsvc - ok
19:50:32.0898 6020 [ C121367D21599367F2ADB9C11B7BABAA ] McNaiAnn C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
19:50:32.0913 6020 McNaiAnn - ok
19:50:32.0929 6020 [ C121367D21599367F2ADB9C11B7BABAA ] McNASvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
19:50:32.0945 6020 McNASvc - ok
19:50:33.0054 6020 [ 9EF2FF066F067C140EB2CB776104C602 ] McODS C:\Program Files\mcafee\VirusScan\mcods.exe
19:50:33.0101 6020 McODS - ok
19:50:33.0116 6020 [ C121367D21599367F2ADB9C11B7BABAA ] McProxy C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
19:50:33.0132 6020 McProxy - ok
19:50:33.0179 6020 [ 837072909AD6E3FBA4B0C9334FDAD580 ] McPvDrv C:\Windows\system32\drivers\McPvDrv.sys
19:50:33.0210 6020 McPvDrv - ok
19:50:33.0257 6020 [ 4DEC9B5BEDAA97B1FF6A3923E1C4F58A ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
19:50:33.0288 6020 McShield - ok
19:50:33.0335 6020 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:50:33.0397 6020 Mcx2Svc - ok
19:50:33.0428 6020 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
19:50:33.0444 6020 megasas - ok
19:50:33.0475 6020 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
19:50:33.0491 6020 MegaSR - ok
19:50:33.0522 6020 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
19:50:33.0584 6020 MEIx64 - ok
19:50:33.0616 6020 [ B574522827D94126C03975FD53F0B26B ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
19:50:33.0647 6020 mfeapfk - ok
19:50:33.0694 6020 [ B393753ECE9A9E2307CB1984ACF3DA9D ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
19:50:33.0772 6020 mfeavfk - ok
19:50:33.0803 6020 mfeavfk01 - ok
19:50:33.0818 6020 [ 97C398750C8E80A48EB63999546F796E ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
19:50:33.0834 6020 mfefire - ok
19:50:33.0881 6020 [ C52A1ABF03DD219375EA0F6A8BE941C3 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
19:50:33.0990 6020 mfefirek - ok
19:50:34.0037 6020 [ 7092A6C6158FC4F5AA39EBEB9D5AF03D ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
19:50:34.0084 6020 mfehidk - ok
19:50:34.0130 6020 [ D2A941C82A0A9227CD6F47AD40A40F69 ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
19:50:34.0208 6020 mferkdet - ok
19:50:34.0255 6020 [ 04D48692EFF181DA46DD8EA8BE9FFB2B ] mfevtp C:\Windows\system32\mfevtps.exe
19:50:34.0286 6020 mfevtp - ok
19:50:34.0333 6020 [ 1631E2DA6C4B47D97ECA94842836592E ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
19:50:34.0349 6020 mfewfpk - ok
19:50:34.0396 6020 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:50:34.0458 6020 MMCSS - ok
19:50:34.0505 6020 [ 8CC001C65C31633171991FA72A551D43 ] MOBKbackup C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
19:50:34.0536 6020 MOBKbackup - ok
19:50:34.0552 6020 [ 3800C23D0D90C59AAFCDEFDC82B5C4AF ] MOBKFilter C:\Windows\system32\DRIVERS\MOBK.sys
19:50:34.0567 6020 MOBKFilter - ok
19:50:34.0583 6020 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:50:34.0676 6020 Modem - ok
19:50:34.0708 6020 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:50:34.0754 6020 monitor - ok
19:50:34.0801 6020 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:50:34.0848 6020 mouclass - ok
19:50:34.0864 6020 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\drivers\mouhid.sys
19:50:34.0910 6020 mouhid - ok
19:50:34.0942 6020 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:50:34.0957 6020 mountmgr - ok
19:50:35.0004 6020 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:50:35.0051 6020 MozillaMaintenance - ok
19:50:35.0082 6020 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:50:35.0144 6020 mpio - ok
19:50:35.0176 6020 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:50:35.0254 6020 mpsdrv - ok
19:50:35.0316 6020 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:50:35.0456 6020 MpsSvc - ok
19:50:35.0550 6020 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:50:35.0659 6020 MRxDAV - ok
19:50:35.0675 6020 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:50:35.0737 6020 mrxsmb - ok
19:50:35.0784 6020 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:50:35.0800 6020 mrxsmb10 - ok
19:50:35.0862 6020 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:50:35.0878 6020 mrxsmb20 - ok
19:50:35.0909 6020 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:50:35.0971 6020 msahci - ok
19:50:36.0002 6020 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:50:36.0080 6020 msdsm - ok
19:50:36.0112 6020 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:50:36.0127 6020 MSDTC - ok
19:50:36.0174 6020 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:50:36.0205 6020 Msfs - ok
19:50:36.0236 6020 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:50:36.0299 6020 mshidkmdf - ok
19:50:36.0346 6020 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:50:36.0377 6020 msisadrv - ok
19:50:36.0439 6020 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:50:36.0564 6020 MSiSCSI - ok
19:50:36.0564 6020 msiserver - ok
19:50:36.0595 6020 [ C121367D21599367F2ADB9C11B7BABAA ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
19:50:36.0611 6020 MSK80Service - ok
19:50:36.0642 6020 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:50:36.0736 6020 MSKSSRV - ok
19:50:36.0736 6020 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:50:36.0798 6020 MSPCLOCK - ok
19:50:36.0814 6020 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:50:36.0892 6020 MSPQM - ok
19:50:36.0923 6020 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:50:36.0970 6020 MsRPC - ok
19:50:37.0001 6020 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
19:50:37.0001 6020 mssmbios - ok
19:50:37.0016 6020 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:50:37.0079 6020 MSTEE - ok
19:50:37.0094 6020 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
19:50:37.0110 6020 MTConfig - ok
19:50:37.0157 6020 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:50:37.0157 6020 Mup - ok
19:50:37.0235 6020 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:50:37.0344 6020 napagent - ok
19:50:37.0360 6020 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:50:37.0422 6020 NativeWifiP - ok
19:50:37.0484 6020 [ C38B8AE57F78915905064A9A24DC1586 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:50:37.0562 6020 NDIS - ok
19:50:37.0578 6020 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:50:37.0625 6020 NdisCap - ok
19:50:37.0640 6020 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:50:37.0687 6020 NdisTapi - ok
19:50:37.0750 6020 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:50:37.0859 6020 Ndisuio - ok
19:50:37.0890 6020 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:50:37.0984 6020 NdisWan - ok
19:50:37.0999 6020 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:50:38.0093 6020 NDProxy - ok
19:50:38.0124 6020 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:50:38.0218 6020 NetBIOS - ok
19:50:38.0233 6020 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:50:38.0264 6020 NetBT - ok
19:50:38.0296 6020 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:50:38.0311 6020 Netlogon - ok
19:50:38.0342 6020 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:50:38.0436 6020 Netman - ok
19:50:38.0483 6020 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:50:38.0545 6020 NetMsmqActivator - ok
19:50:38.0561 6020 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:50:38.0576 6020 NetPipeActivator - ok
19:50:38.0608 6020 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:50:38.0686 6020 netprofm - ok
19:50:38.0701 6020 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:50:38.0701 6020 NetTcpActivator - ok
19:50:38.0717 6020 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:50:38.0732 6020 NetTcpPortSharing - ok
19:50:38.0748 6020 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
19:50:38.0764 6020 nfrd960 - ok
19:50:38.0795 6020 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:50:38.0857 6020 NlaSvc - ok
19:50:38.0998 6020 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
19:50:39.0122 6020 NOBU - ok
19:50:39.0138 6020 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:50:39.0185 6020 Npfs - ok
19:50:39.0232 6020 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:50:39.0294 6020 nsi - ok
19:50:39.0341 6020 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:50:39.0419 6020 nsiproxy - ok
19:50:39.0481 6020 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:50:39.0559 6020 Ntfs - ok
19:50:39.0575 6020 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:50:39.0622 6020 Null - ok
19:50:39.0653 6020 [ 0EBC9D13CD96C15B1B18D8678A609E4B ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
19:50:39.0778 6020 nusb3hub - ok
19:50:39.0809 6020 [ 7BDEC000D56D485021D9C1E63C2F81CA ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
19:50:39.0902 6020 nusb3xhc - ok
19:50:39.0965 6020 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:50:40.0058 6020 nvraid - ok
19:50:40.0090 6020 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:50:40.0168 6020 nvstor - ok
19:50:40.0183 6020 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:50:40.0199 6020 nv_agp - ok
19:50:40.0230 6020 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:50:40.0246 6020 ohci1394 - ok
19:50:40.0308 6020 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:50:40.0355 6020 ose - ok
19:50:40.0511 6020 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:50:40.0698 6020 osppsvc - ok
19:50:40.0776 6020 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:50:40.0854 6020 p2pimsvc - ok
19:50:40.0885 6020 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:50:40.0932 6020 p2psvc - ok
19:50:40.0963 6020 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
19:50:40.0994 6020 Parport - ok
19:50:41.0041 6020 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:50:41.0072 6020 partmgr - ok
19:50:41.0119 6020 [ AFADA8B97BE3C9398DC6C770409C3544 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
19:50:41.0150 6020 PassThru Service ( UnsignedFile.Multi.Generic ) - warning
19:50:41.0150 6020 PassThru Service - detected UnsignedFile.Multi.Generic (1)

 

[ronnies]

19:50:41.0197 6020 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:50:41.0260 6020 PcaSvc - ok
19:50:41.0291 6020 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:50:41.0322 6020 pci - ok
19:50:41.0353 6020 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:50:41.0400 6020 pciide - ok
19:50:41.0431 6020 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
19:50:41.0462 6020 pcmcia - ok
19:50:41.0494 6020 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:50:41.0509 6020 pcw - ok
19:50:41.0540 6020 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:50:41.0665 6020 PEAUTH - ok
19:50:41.0790 6020 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:50:41.0852 6020 PerfHost - ok
19:50:41.0930 6020 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:50:42.0071 6020 pla - ok
19:50:42.0102 6020 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:50:42.0180 6020 PlugPlay - ok
19:50:42.0211 6020 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:50:42.0242 6020 PNRPAutoReg - ok
19:50:42.0289 6020 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:50:42.0305 6020 PNRPsvc - ok
19:50:42.0336 6020 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:50:42.0445 6020 PolicyAgent - ok
19:50:42.0492 6020 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:50:42.0554 6020 Power - ok
19:50:42.0601 6020 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:50:42.0710 6020 PptpMiniport - ok
19:50:42.0757 6020 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
19:50:42.0820 6020 Processor - ok
19:50:42.0851 6020 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
19:50:42.0929 6020 ProfSvc - ok
19:50:42.0960 6020 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:50:42.0976 6020 ProtectedStorage - ok
19:50:43.0007 6020 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:50:43.0086 6020 Psched - ok
19:50:43.0133 6020 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
19:50:43.0148 6020 PxHlpa64 - ok
19:50:43.0226 6020 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
19:50:43.0351 6020 ql2300 - ok
19:50:43.0382 6020 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
19:50:43.0429 6020 ql40xx - ok
19:50:43.0460 6020 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:50:43.0507 6020 QWAVE - ok
19:50:43.0523 6020 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:50:43.0554 6020 QWAVEdrv - ok
19:50:43.0601 6020 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:50:43.0679 6020 RasAcd - ok
19:50:43.0741 6020 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:50:43.0803 6020 RasAgileVpn - ok
19:50:43.0819 6020 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:50:43.0881 6020 RasAuto - ok
19:50:43.0913 6020 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:50:44.0006 6020 Rasl2tp - ok
19:50:44.0037 6020 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:50:44.0100 6020 RasMan - ok
19:50:44.0131 6020 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:50:44.0225 6020 RasPppoe - ok
19:50:44.0256 6020 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:50:44.0318 6020 RasSstp - ok
19:50:44.0349 6020 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:50:44.0396 6020 rdbss - ok
19:50:44.0427 6020 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
19:50:44.0459 6020 rdpbus - ok
19:50:44.0474 6020 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:50:44.0521 6020 RDPCDD - ok
19:50:44.0552 6020 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:50:44.0630 6020 RDPENCDD - ok
19:50:44.0661 6020 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:50:44.0693 6020 RDPREFMP - ok
19:50:44.0771 6020 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:50:44.0864 6020 RDPWD - ok
19:50:44.0880 6020 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:50:44.0911 6020 rdyboost - ok
19:50:44.0958 6020 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:50:45.0051 6020 RemoteAccess - ok
19:50:45.0083 6020 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:50:45.0145 6020 RemoteRegistry - ok
19:50:45.0192 6020 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
19:50:45.0270 6020 RFCOMM - ok
19:50:45.0395 6020 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
19:50:45.0457 6020 RoxMediaDB12OEM - ok
19:50:45.0504 6020 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
19:50:45.0519 6020 RoxWatch12 - ok
19:50:45.0566 6020 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:50:45.0629 6020 RpcEptMapper - ok
19:50:45.0660 6020 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:50:45.0707 6020 RpcLocator - ok
19:50:45.0753 6020 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:50:45.0816 6020 RpcSs - ok
19:50:45.0863 6020 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:50:45.0925 6020 rspndr - ok
19:50:45.0972 6020 [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
19:50:45.0987 6020 RSUSBSTOR - ok
19:50:46.0003 6020 [ A73ED14670220307874AD6BC2F279349 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
19:50:46.0081 6020 RTL8167 - ok
19:50:46.0113 6020 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:50:46.0144 6020 SamSs - ok
19:50:46.0176 6020 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:50:46.0238 6020 sbp2port - ok
19:50:46.0332 6020 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
19:50:46.0394 6020 SBSDWSCService - ok
19:50:46.0425 6020 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:50:46.0488 6020 SCardSvr - ok
19:50:46.0519 6020 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:50:46.0612 6020 scfilter - ok
19:50:46.0675 6020 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:50:46.0784 6020 Schedule - ok
19:50:46.0831 6020 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:50:46.0878 6020 SCPolicySvc - ok
19:50:46.0909 6020 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:50:46.0987 6020 SDRSVC - ok
19:50:47.0018 6020 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:50:47.0096 6020 secdrv - ok
19:50:47.0127 6020 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:50:47.0174 6020 seclogon - ok
19:50:47.0190 6020 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
19:50:47.0252 6020 SENS - ok
19:50:47.0283 6020 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:50:47.0346 6020 SensrSvc - ok
19:50:47.0377 6020 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
19:50:47.0424 6020 Serenum - ok
19:50:47.0455 6020 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
19:50:47.0502 6020 Serial - ok
19:50:47.0533 6020 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
19:50:47.0595 6020 sermouse - ok
19:50:47.0642 6020 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:50:47.0736 6020 SessionEnv - ok
19:50:47.0767 6020 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:50:47.0798 6020 sffdisk - ok
19:50:47.0814 6020 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:50:47.0845 6020 sffp_mmc - ok
19:50:47.0876 6020 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:50:47.0970 6020 sffp_sd - ok
19:50:47.0985 6020 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
19:50:48.0016 6020 sfloppy - ok
19:50:48.0126 6020 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
19:50:48.0250 6020 SftService - ok
19:50:48.0297 6020 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:50:48.0360 6020 SharedAccess - ok
19:50:48.0406 6020 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:50:48.0531 6020 ShellHWDetection - ok
19:50:48.0547 6020 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
19:50:48.0578 6020 SiSRaid2 - ok
19:50:48.0609 6020 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
19:50:48.0625 6020 SiSRaid4 - ok
19:50:48.0656 6020 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:50:48.0734 6020 Smb - ok
19:50:48.0781 6020 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:50:48.0828 6020 SNMPTRAP - ok
19:50:48.0859 6020 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:50:48.0874 6020 spldr - ok
19:50:48.0937 6020 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
19:50:48.0999 6020 Spooler - ok
19:50:49.0093 6020 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:50:49.0311 6020 sppsvc - ok
19:50:49.0342 6020 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:50:49.0405 6020 sppuinotify - ok
19:50:49.0452 6020 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:50:49.0545 6020 srv - ok
19:50:49.0576 6020 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:50:49.0608 6020 srv2 - ok
19:50:49.0654 6020 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:50:49.0670 6020 srvnet - ok
19:50:49.0717 6020 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:50:49.0826 6020 SSDPSRV - ok
19:50:49.0857 6020 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:50:49.0920 6020 SstpSvc - ok
19:50:49.0935 6020 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
19:50:49.0951 6020 stexstor - ok
19:50:49.0998 6020 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:50:50.0091 6020 stisvc - ok
19:50:50.0154 6020 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
19:50:50.0247 6020 stllssvr - ok
19:50:50.0278 6020 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
19:50:50.0310 6020 swenum - ok
19:50:50.0356 6020 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:50:50.0419 6020 swprv - ok
19:50:50.0481 6020 [ BCD5B4AB94DA436F083FCD0C636D00F3 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
19:50:50.0559 6020 SynTP - ok
19:50:50.0606 6020 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:50:50.0715 6020 SysMain - ok
19:50:50.0778 6020 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:50:50.0856 6020 TabletInputService - ok
19:50:50.0887 6020 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:50:50.0996 6020 TapiSrv - ok
19:50:51.0027 6020 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:50:51.0090 6020 TBS - ok
19:50:51.0183 6020 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:50:51.0292 6020 Tcpip - ok
19:50:51.0355 6020 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:50:51.0402 6020 TCPIP6 - ok
19:50:51.0433 6020 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:50:51.0542 6020 tcpipreg - ok
19:50:51.0589 6020 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:50:51.0651 6020 TDPIPE - ok
19:50:51.0698 6020 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:50:51.0776 6020 TDTCP - ok
19:50:51.0792 6020 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:50:51.0885 6020 tdx - ok
19:50:51.0901 6020 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
19:50:51.0948 6020 TermDD - ok
19:50:51.0994 6020 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:50:52.0104 6020 TermService - ok
19:50:52.0119 6020 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:50:52.0182 6020 Themes - ok
19:50:52.0213 6020 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:50:52.0260 6020 THREADORDER - ok
19:50:52.0275 6020 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:50:52.0338 6020 TrkWks - ok
19:50:52.0400 6020 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:50:52.0494 6020 TrustedInstaller - ok
19:50:52.0540 6020 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:50:52.0634 6020 tssecsrv - ok
19:50:52.0665 6020 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:50:52.0774 6020 TsUsbFlt - ok
19:50:52.0806 6020 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
19:50:52.0884 6020 TsUsbGD - ok
19:50:52.0915 6020 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:50:53.0008 6020 tunnel - ok
19:50:53.0040 6020 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
19:50:53.0055 6020 uagp35 - ok
19:50:53.0086 6020 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:50:53.0211 6020 udfs - ok
19:50:53.0258 6020 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:50:53.0274 6020 UI0Detect - ok
19:50:53.0305 6020 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:50:53.0336 6020 uliagpkx - ok
19:50:53.0367 6020 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
19:50:53.0445 6020 umbus - ok
19:50:53.0461 6020 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
19:50:53.0508 6020 UmPass - ok
19:50:53.0664 6020 [ 2C16648A12999AE69A9EBF41974B0BA2 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
19:50:53.0726 6020 UNS - ok
19:50:53.0757 6020 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:50:53.0835 6020 upnphost - ok
19:50:53.0866 6020 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:50:54.0007 6020 usbccgp - ok
19:50:54.0022 6020 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:50:54.0054 6020 usbcir - ok
19:50:54.0085 6020 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
19:50:54.0147 6020 usbehci - ok
19:50:54.0194 6020 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:50:54.0303 6020 usbhub - ok
19:50:54.0334 6020 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:50:54.0397 6020 usbohci - ok
19:50:54.0428 6020 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:50:54.0459 6020 usbprint - ok
19:50:54.0506 6020 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
19:50:54.0537 6020 usbscan - ok
19:50:54.0568 6020 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:50:54.0693 6020 USBSTOR - ok
19:50:54.0740 6020 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:50:54.0834 6020 usbuhci - ok
19:50:54.0880 6020 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
19:50:54.0958 6020 usbvideo - ok
19:50:54.0990 6020 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:50:55.0068 6020 UxSms - ok
19:50:55.0083 6020 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
19:50:55.0099 6020 VaultSvc - ok
19:50:55.0130 6020 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:50:55.0146 6020 vdrvroot - ok
19:50:55.0177 6020 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
19:50:55.0286 6020 vds - ok
19:50:55.0302 6020 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:50:55.0333 6020 vga - ok
19:50:55.0348 6020 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:50:55.0426 6020 VgaSave - ok
19:50:55.0458 6020 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:50:55.0520 6020 vhdmp - ok
19:50:55.0536 6020 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
19:50:55.0551 6020 viaide - ok
19:50:55.0567 6020 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:50:55.0582 6020 volmgr - ok
19:50:55.0614 6020 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:50:55.0629 6020 volmgrx - ok
19:50:55.0660 6020 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:50:55.0676 6020 volsnap - ok
19:50:55.0707 6020 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
19:50:55.0738 6020 vsmraid - ok
19:50:55.0832 6020 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
19:50:55.0926 6020 VSS - ok
19:50:55.0957 6020 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
19:50:56.0019 6020 vwifibus - ok
19:50:56.0035 6020 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:50:56.0066 6020 vwififlt - ok
19:50:56.0097 6020 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
19:50:56.0113 6020 vwifimp - ok
19:50:56.0144 6020 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:50:56.0191 6020 W32Time - ok
19:50:56.0253 6020 [ B32009DB1972E7F2C227499289C4384A ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
19:50:56.0347 6020 W3SVC - ok
19:50:56.0362 6020 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
19:50:56.0394 6020 WacomPen - ok
19:50:56.0425 6020 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:50:56.0565 6020 WANARP - ok
19:50:56.0581 6020 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:50:56.0612 6020 Wanarpv6 - ok
19:50:56.0643 6020 [ B32009DB1972E7F2C227499289C4384A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
19:50:56.0674 6020 WAS - ok
19:50:56.0752 6020 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:50:56.0877 6020 WatAdminSvc - ok
19:50:56.0955 6020 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
19:50:57.0330 6020 wbengine - ok
19:50:57.0345 6020 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:50:57.0376 6020 WbioSrvc - ok
19:50:57.0408 6020 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:50:57.0486 6020 wcncsvc - ok
19:50:57.0532 6020 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:50:57.0595 6020 WcsPlugInService - ok
19:50:57.0642 6020 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
19:50:57.0688 6020 Wd - ok
19:50:57.0766 6020 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:50:57.0813 6020 Wdf01000 - ok
19:50:57.0844 6020 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:50:57.0938 6020 WdiServiceHost - ok
19:50:57.0938 6020 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:50:57.0969 6020 WdiSystemHost - ok
19:50:58.0000 6020 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
19:50:58.0078 6020 WebClient - ok
19:50:58.0110 6020 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:50:58.0172 6020 Wecsvc - ok
19:50:58.0203 6020 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:50:58.0250 6020 wercplsupport - ok
19:50:58.0266 6020 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:50:58.0344 6020 WerSvc - ok
19:50:58.0375 6020 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:50:58.0422 6020 WfpLwf - ok
19:50:58.0453 6020 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
19:50:58.0515 6020 WimFltr - ok
19:50:58.0546 6020 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:50:58.0562 6020 WIMMount - ok
19:50:58.0578 6020 WinDefend - ok
19:50:58.0609 6020 WinHttpAutoProxySvc - ok
19:50:58.0671 6020 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:50:58.0734 6020 Winmgmt - ok
19:50:58.0827 6020 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
19:50:59.0046 6020 WinRM - ok
19:50:59.0139 6020 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:50:59.0233 6020 Wlansvc - ok
19:50:59.0326 6020 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:50:59.0404 6020 wlcrasvc - ok
19:50:59.0529 6020 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:50:59.0592 6020 wlidsvc - ok
19:50:59.0654 6020 [ BCA22B2B27417FA7C8D824D5DE4DC03C ] wltrysvc C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
19:50:59.0685 6020 wltrysvc ( UnsignedFile.Multi.Generic ) - warning
19:50:59.0685 6020 wltrysvc - detected UnsignedFile.Multi.Generic (1)
19:50:59.0716 6020 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
19:50:59.0794 6020 WmiAcpi - ok
19:50:59.0872 6020 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:50:59.0935 6020 wmiApSrv - ok
19:50:59.0966 6020 WMPNetworkSvc - ok
19:51:00.0013 6020 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:51:00.0075 6020 WPCSvc - ok
19:51:00.0106 6020 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:51:00.0169 6020 WPDBusEnum - ok
19:51:00.0216 6020 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:51:00.0262 6020 ws2ifsl - ok
19:51:00.0278 6020 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
19:51:00.0340 6020 wscsvc - ok
19:51:00.0356 6020 WSearch - ok
19:51:00.0450 6020 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
19:51:00.0543 6020 wuauserv - ok
19:51:00.0559 6020 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:51:00.0668 6020 WudfPf - ok
19:51:00.0699 6020 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:51:00.0793 6020 WUDFRd - ok
19:51:00.0840 6020 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:51:00.0886 6020 wudfsvc - ok
19:51:00.0918 6020 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
19:51:00.0996 6020 WwanSvc - ok
19:51:01.0042 6020 ================ Scan global ===============================
19:51:01.0089 6020 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:51:01.0152 6020 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
19:51:01.0183 6020 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
19:51:01.0230 6020 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:51:01.0276 6020 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:51:01.0292 6020 [Global] - ok
19:51:01.0292 6020 ================ Scan MBR ==================================
19:51:01.0308 6020 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
19:51:01.0729 6020 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
19:51:01.0729 6020 \Device\Harddisk0\DR0 - detected TDSS File System (1)
19:51:01.0729 6020 ================ Scan VBR ==================================
19:51:01.0744 6020 [ 119EC4FD4956138ED61A44A1279D8C5D ] \Device\Harddisk0\DR0\Partition1
19:51:01.0744 6020 \Device\Harddisk0\DR0\Partition1 - ok
19:51:01.0760 6020 [ 22BE3A84ED3753349F9ACEB9525DE59B ] \Device\Harddisk0\DR0\Partition2
19:51:01.0760 6020 \Device\Harddisk0\DR0\Partition2 - ok
19:51:01.0760 6020 ============================================================
19:51:01.0760 6020 Scan finished
19:51:01.0760 6020 ============================================================
19:51:01.0776 5332 Detected object count: 4
19:51:01.0776 5332 Actual detected object count: 4
19:51:27.0344 5332 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - skipped by user
19:51:27.0344 5332 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:51:27.0344 5332 PassThru Service ( UnsignedFile.Multi.Generic ) - skipped by user
19:51:27.0344 5332 PassThru Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:51:27.0360 5332 wltrysvc ( UnsignedFile.Multi.Generic ) - skipped by user
19:51:27.0360 5332 wltrysvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
19:51:27.0360 5332 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
19:51:27.0360 5332 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
19:53:15.0513 5412 Deinitialize success

 

[oldman960]

Hi ronnies,

Rerun TDSSKiller. When presented with \Device\Harddisk0\DR0 ( TDSS File System ) use the dropdown menu and select delete. If delete isn't an option just use skip.

 

[ronnies]

22:49:45.0150 10096 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
22:49:45.0712 10096 ============================================================
22:49:45.0712 10096 Current date / time: 2012/09/02 22:49:45.0712
22:49:45.0712 10096 SystemInfo:
22:49:45.0712 10096
22:49:45.0712 10096 OS Version: 6.1.7601 ServicePack: 1.0
22:49:45.0712 10096 Product type: Workstation
22:49:45.0712 10096 ComputerName: SCRIVEN-PC
22:49:45.0712 10096 UserName: Scriven
22:49:45.0712 10096 Windows directory: C:\Windows
22:49:45.0712 10096 System windows directory: C:\Windows
22:49:45.0712 10096 Running under WOW64
22:49:45.0712 10096 Processor architecture: Intel x64
22:49:45.0712 10096 Number of processors: 2
22:49:45.0712 10096 Page size: 0x1000
22:49:45.0712 10096 Boot type: Normal boot
22:49:45.0712 10096 ============================================================
22:49:46.0430 10096 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:49:46.0430 10096 ============================================================
22:49:46.0430 10096 \Device\Harddisk0\DR0:
22:49:46.0430 10096 MBR partitions:
22:49:46.0430 10096 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x34000, BlocksNum 0x2710000
22:49:46.0430 10096 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2744000, BlocksNum 0x22CEA2B0
22:49:46.0430 10096 ============================================================
22:49:46.0476 10096 C: <-> \Device\Harddisk0\DR0\Partition2
22:49:46.0476 10096 ============================================================
22:49:46.0476 10096 Initialize success
22:49:46.0476 10096 ============================================================
22:50:01.0022 4340 ============================================================
22:50:01.0022 4340 Scan started
22:50:01.0022 4340 Mode: Manual; SigCheck; TDLFS;
22:50:01.0022 4340 ============================================================
22:50:01.0178 4340 ================ Scan system memory ========================
22:50:01.0178 4340 System memory - ok
22:50:01.0178 4340 ================ Scan services =============================
22:50:01.0443 4340 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:50:01.0739 4340 1394ohci - ok
22:50:01.0802 4340 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:50:01.0848 4340 ACPI - ok
22:50:01.0880 4340 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:50:02.0036 4340 AcpiPmi - ok
22:50:02.0129 4340 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:50:02.0223 4340 AdobeARMservice - ok
22:50:02.0348 4340 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:50:02.0394 4340 AdobeFlashPlayerUpdateSvc - ok
22:50:02.0426 4340 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
22:50:02.0488 4340 adp94xx - ok
22:50:02.0504 4340 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
22:50:02.0535 4340 adpahci - ok
22:50:02.0550 4340 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
22:50:02.0582 4340 adpu320 - ok
22:50:02.0613 4340 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:50:02.0753 4340 AeLookupSvc - ok
22:50:02.0831 4340 [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
22:50:02.0925 4340 AERTFilters - ok
22:50:02.0956 4340 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:50:03.0081 4340 AFD - ok
22:50:03.0096 4340 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:50:03.0143 4340 agp440 - ok
22:50:03.0159 4340 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:50:03.0221 4340 ALG - ok
22:50:03.0237 4340 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:50:03.0268 4340 aliide - ok
22:50:03.0268 4340 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:50:03.0284 4340 amdide - ok
22:50:03.0299 4340 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
22:50:03.0362 4340 AmdK8 - ok
22:50:03.0377 4340 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
22:50:03.0440 4340 AmdPPM - ok
22:50:03.0471 4340 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:50:03.0549 4340 amdsata - ok
22:50:03.0564 4340 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
22:50:03.0596 4340 amdsbs - ok
22:50:03.0611 4340 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:50:03.0627 4340 amdxata - ok
22:50:03.0689 4340 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll
22:50:03.0830 4340 AppHostSvc - ok
22:50:03.0845 4340 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:50:04.0142 4340 AppID - ok
22:50:04.0173 4340 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:50:04.0251 4340 AppIDSvc - ok
22:50:04.0266 4340 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
22:50:04.0344 4340 Appinfo - ok
22:50:04.0422 4340 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:50:04.0500 4340 Apple Mobile Device - ok
22:50:04.0532 4340 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
22:50:04.0547 4340 arc - ok
22:50:04.0563 4340 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
22:50:04.0578 4340 arcsas - ok
22:50:04.0688 4340 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:50:04.0797 4340 aspnet_state - ok
22:50:04.0812 4340 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:50:04.0890 4340 AsyncMac - ok
22:50:04.0922 4340 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:50:04.0937 4340 atapi - ok
22:50:04.0984 4340 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:50:05.0109 4340 AudioEndpointBuilder - ok
22:50:05.0124 4340 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:50:05.0171 4340 AudioSrv - ok
22:50:05.0187 4340 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:50:05.0343 4340 AxInstSV - ok
22:50:05.0390 4340 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
22:50:05.0499 4340 b06bdrv - ok
22:50:05.0530 4340 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:50:05.0577 4340 b57nd60a - ok
22:50:05.0655 4340 [ A2494901E7226B356B8C1005C45F1C5F ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
22:50:05.0748 4340 BBSvc - ok
22:50:05.0764 4340 [ 63B1CBBAE4790B5BAC98F01BF9449722 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
22:50:05.0826 4340 BBUpdate - ok
22:50:05.0858 4340 [ 436806506E83AA8755A523147E191B7B ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
22:50:05.0998 4340 BCM42RLY - ok
22:50:06.0107 4340 [ B5D54119CE0BB77872C33A717CB76386 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
22:50:06.0263 4340 BCM43XX - ok
22:50:06.0294 4340 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:50:06.0388 4340 BDESVC - ok
22:50:06.0404 4340 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:50:06.0513 4340 Beep - ok
22:50:06.0544 4340 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
22:50:06.0669 4340 BFE - ok
22:50:06.0700 4340 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
22:50:06.0887 4340 BITS - ok
22:50:06.0918 4340 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:50:06.0934 4340 blbdrive - ok
22:50:06.0981 4340 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:50:07.0090 4340 Bonjour Service - ok
22:50:07.0106 4340 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:50:07.0199 4340 bowser - ok
22:50:07.0215 4340 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
22:50:07.0277 4340 BrFiltLo - ok
22:50:07.0293 4340 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
22:50:07.0355 4340 BrFiltUp - ok
22:50:07.0371 4340 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
22:50:07.0449 4340 BridgeMP - ok
22:50:07.0464 4340 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
22:50:07.0605 4340 Browser - ok
22:50:07.0620 4340 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:50:07.0698 4340 Brserid - ok
22:50:07.0730 4340 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:50:07.0792 4340 BrSerWdm - ok
22:50:07.0808 4340 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:50:07.0870 4340 BrUsbMdm - ok
22:50:07.0886 4340 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:50:07.0948 4340 BrUsbSer - ok
22:50:07.0979 4340 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
22:50:08.0120 4340 BthEnum - ok
22:50:08.0135 4340 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
22:50:08.0166 4340 BTHMODEM - ok
22:50:08.0198 4340 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
22:50:08.0260 4340 BthPan - ok
22:50:08.0291 4340 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
22:50:08.0354 4340 BTHPORT - ok
22:50:08.0400 4340 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:50:08.0478 4340 bthserv - ok
22:50:08.0510 4340 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
22:50:08.0588 4340 BTHUSB - ok
22:50:08.0619 4340 [ 72CC5DCC4E67E7927F94801166CFDCDA ] BTWAMPFL C:\Windows\system32\DRIVERS\btwampfl.sys
22:50:08.0681 4340 BTWAMPFL - ok
22:50:08.0712 4340 [ F6135859A582A7294BA7A3336E08BAA1 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
22:50:08.0790 4340 btwaudio - ok
22:50:08.0790 4340 [ 3DEF2370E414B4E299673558BA171A51 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
22:50:08.0868 4340 btwavdt - ok
22:50:08.0931 4340 [ F0AF04A96CA48B869284B5DC4CDB8CBB ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
22:50:09.0056 4340 btwdins - ok
22:50:09.0087 4340 [ 07096D2BC22CCB6CEA5A532DF0BE8A75 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
22:50:09.0165 4340 btwl2cap - ok
22:50:09.0165 4340 [ 9937E0E4DFC0030560A6DFE9D3A94B39 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
22:50:09.0227 4340 btwrchid - ok
22:50:09.0258 4340 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:50:09.0336 4340 cdfs - ok
22:50:09.0352 4340 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:50:09.0430 4340 cdrom - ok
22:50:09.0477 4340 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:50:09.0602 4340 CertPropSvc - ok
22:50:09.0648 4340 [ 45B5A89DC41577282E5BF41B1165EA71 ] cfwids C:\Windows\system32\drivers\cfwids.sys
22:50:09.0726 4340 cfwids - ok
22:50:09.0742 4340 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
22:50:09.0804 4340 circlass - ok
22:50:09.0820 4340 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:50:09.0851 4340 CLFS - ok
22:50:09.0898 4340 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:50:09.0945 4340 clr_optimization_v2.0.50727_32 - ok
22:50:09.0976 4340 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:50:10.0007 4340 clr_optimization_v2.0.50727_64 - ok
22:50:10.0038 4340 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:50:10.0179 4340 clr_optimization_v4.0.30319_32 - ok
22:50:10.0210 4340 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:50:10.0288 4340 clr_optimization_v4.0.30319_64 - ok
22:50:10.0304 4340 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:50:10.0366 4340 CmBatt - ok
22:50:10.0382 4340 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:50:10.0413 4340 cmdide - ok
22:50:10.0460 4340 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
22:50:10.0506 4340 CNG - ok
22:50:10.0522 4340 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:50:10.0522 4340 Compbatt - ok
22:50:10.0538 4340 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
22:50:10.0616 4340 CompositeBus - ok
22:50:10.0631 4340 COMSysApp - ok
22:50:10.0647 4340 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
22:50:10.0662 4340 crcdisk - ok
22:50:10.0709 4340 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:50:10.0787 4340 CryptSvc - ok
22:50:10.0818 4340 [ BC3D4F90978CD7C8EABD1BAF3BF7873A ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
22:50:10.0943 4340 CtClsFlt - ok
22:50:10.0974 4340 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:50:11.0037 4340 DcomLaunch - ok
22:50:11.0084 4340 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:50:11.0130 4340 defragsvc - ok
22:50:11.0177 4340 [ 88D5FE2109F1A52CF69BA410082A833A ] DellDigitalDelivery C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
22:50:11.0255 4340 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - warning
22:50:11.0255 4340 DellDigitalDelivery - detected UnsignedFile.Multi.Generic (1)
22:50:11.0286 4340 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:50:11.0349 4340 DfsC - ok
22:50:11.0380 4340 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:50:11.0474 4340 Dhcp - ok
22:50:11.0505 4340 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:50:11.0567 4340 discache - ok
22:50:11.0598 4340 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
22:50:11.0614 4340 Disk - ok
22:50:11.0614 4340 dlcq_device - ok
22:50:11.0661 4340 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:50:11.0754 4340 Dnscache - ok
22:50:11.0786 4340 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:50:11.0879 4340 dot3svc - ok
22:50:11.0910 4340 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:50:11.0957 4340 DPS - ok
22:50:11.0988 4340 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:50:12.0035 4340 drmkaud - ok
22:50:12.0082 4340 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:50:12.0176 4340 DXGKrnl - ok
22:50:12.0207 4340 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:50:12.0269 4340 EapHost - ok
22:50:12.0332 4340 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
22:50:12.0456 4340 ebdrv - ok
22:50:12.0503 4340 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
22:50:12.0612 4340 EFS - ok
22:50:12.0675 4340 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:50:12.0784 4340 ehRecvr - ok
22:50:12.0800 4340 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:50:12.0815 4340 ehSched - ok
22:50:12.0862 4340 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
22:50:12.0893 4340 elxstor - ok
22:50:12.0909 4340 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:50:12.0956 4340 ErrDev - ok
22:50:13.0002 4340 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:50:13.0080 4340 EventSystem - ok
22:50:13.0112 4340 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:50:13.0174 4340 exfat - ok
22:50:13.0205 4340 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:50:13.0268 4340 fastfat - ok
22:50:13.0299 4340 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
22:50:13.0455 4340 Fax - ok
22:50:13.0486 4340 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
22:50:13.0548 4340 fdc - ok
22:50:13.0564 4340 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:50:13.0626 4340 fdPHost - ok
22:50:13.0642 4340 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:50:13.0720 4340 FDResPub - ok
22:50:13.0736 4340 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:50:13.0751 4340 FileInfo - ok
22:50:13.0767 4340 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:50:13.0829 4340 Filetrace - ok
22:50:13.0860 4340 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
22:50:13.0892 4340 flpydisk - ok
22:50:13.0907 4340 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:50:13.0938 4340 FltMgr - ok
22:50:13.0985 4340 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
22:50:14.0157 4340 FontCache - ok
22:50:14.0204 4340 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:50:14.0282 4340 FontCache3.0.0.0 - ok
22:50:14.0297 4340 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:50:14.0313 4340 FsDepends - ok
22:50:14.0344 4340 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
22:50:14.0422 4340 fssfltr - ok
22:50:14.0531 4340 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
22:50:14.0656 4340 fsssvc - ok
22:50:14.0687 4340 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:50:14.0750 4340 Fs_Rec - ok
22:50:14.0796 4340 [ 79179C6F8A3784CC3A20CDE998D5BD2C ] ftpsvc C:\Windows\system32\inetsrv\ftpsvc.dll
22:50:14.0890 4340 ftpsvc - ok
22:50:14.0952 4340 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:50:14.0984 4340 fvevol - ok
22:50:14.0999 4340 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:50:15.0030 4340 gagp30kx - ok
22:50:15.0062 4340 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:50:15.0186 4340 gpsvc - ok
22:50:15.0202 4340 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:50:15.0311 4340 hcw85cir - ok
22:50:15.0342 4340 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:50:15.0374 4340 HDAudBus - ok
22:50:15.0405 4340 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
22:50:15.0436 4340 HidBatt - ok
22:50:15.0452 4340 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
22:50:15.0498 4340 HidBth - ok
22:50:15.0498 4340 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
22:50:15.0530 4340 HidIr - ok
22:50:15.0561 4340 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
22:50:15.0670 4340 hidserv - ok
22:50:15.0701 4340 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:50:15.0779 4340 HidUsb - ok
22:50:15.0842 4340 [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK C:\Windows\system32\drivers\HipShieldK.sys
22:50:15.0935 4340 HipShieldK - ok
22:50:15.0966 4340 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:50:16.0076 4340 hkmsvc - ok
22:50:16.0107 4340 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:50:16.0216 4340 HomeGroupListener - ok
22:50:16.0263 4340 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:50:16.0341 4340 HomeGroupProvider - ok
22:50:16.0372 4340 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:50:16.0434 4340 HpSAMD - ok
22:50:16.0466 4340 [ F47CEC45FB85791D4AB237563AD0FA8F ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys
22:50:16.0590 4340 HTCAND64 - ok
22:50:16.0622 4340 [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
22:50:16.0700 4340 htcnprot - ok
22:50:16.0731 4340 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:50:16.0887 4340 HTTP - ok
22:50:16.0918 4340 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:50:16.0934 4340 hwpolicy - ok
22:50:16.0965 4340 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
22:50:17.0012 4340 i8042prt - ok
22:50:17.0058 4340 [ D469B77687E12FE43E344806740B624D ] iaStor C:\Windows\system32\drivers\iaStor.sys
22:50:17.0090 4340 iaStor - ok
22:50:17.0121 4340 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:50:17.0183 4340 iaStorV - ok
22:50:17.0261 4340 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:50:17.0386 4340 idsvc - ok
22:50:17.0636 4340 [ A47D902F5C0C43DCF5EE2CAE02BF39A8 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
22:50:18.0213 4340 igfx - ok
22:50:18.0244 4340 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:50:18.0260 4340 iirsp - ok
22:50:18.0322 4340 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:50:18.0478 4340 IKEEXT - ok
22:50:18.0525 4340 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\drivers\Impcd.sys
22:50:18.0681 4340 Impcd - ok
22:50:18.0806 4340 [ 8FED6428FDE53D7F4C105095F22524BE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:50:18.0868 4340 IntcAzAudAddService - ok
22:50:18.0915 4340 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
22:50:19.0024 4340 IntcDAud - ok
22:50:19.0055 4340 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:50:19.0071 4340 intelide - ok
22:50:19.0102 4340 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:50:19.0164 4340 intelppm - ok
22:50:19.0211 4340 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:50:19.0289 4340 IPBusEnum - ok
22:50:19.0320 4340 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:50:19.0398 4340 IpFilterDriver - ok
22:50:19.0430 4340 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:50:19.0570 4340 iphlpsvc - ok
22:50:19.0586 4340 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:50:19.0679 4340 IPMIDRV - ok
22:50:19.0695 4340 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:50:19.0757 4340 IPNAT - ok
22:50:19.0773 4340 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:50:19.0788 4340 IRENUM - ok
22:50:19.0820 4340 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:50:19.0835 4340 isapnp - ok
22:50:19.0851 4340 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:50:19.0913 4340 iScsiPrt - ok
22:50:19.0929 4340 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:50:19.0960 4340 kbdclass - ok
22:50:19.0976 4340 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
22:50:20.0054 4340 kbdhid - ok
22:50:20.0069 4340 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
22:50:20.0085 4340 KeyIso - ok
22:50:20.0116 4340 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:50:20.0147 4340 KSecDD - ok
22:50:20.0194 4340 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:50:20.0225 4340 KSecPkg - ok
22:50:20.0241 4340 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:50:20.0319 4340 ksthunk - ok
22:50:20.0366 4340 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:50:20.0459 4340 KtmRm - ok
22:50:20.0506 4340 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
22:50:20.0600 4340 LanmanServer - ok
22:50:20.0631 4340 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:50:20.0724 4340 LanmanWorkstation - ok
22:50:20.0756 4340 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:50:20.0834 4340 lltdio - ok
22:50:20.0849 4340 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:50:20.0927 4340 lltdsvc - ok
22:50:20.0958 4340 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:50:21.0036 4340 lmhosts - ok
22:50:21.0099 4340 [ 7F32D4C47A50E7223491E8FB9359907D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
22:50:21.0224 4340 LMS - ok
22:50:21.0239 4340 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
22:50:21.0270 4340 LSI_FC - ok
22:50:21.0302 4340 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:50:21.0348 4340 LSI_SAS - ok
22:50:21.0364 4340 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
22:50:21.0380 4340 LSI_SAS2 - ok
22:50:21.0395 4340 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:50:21.0426 4340 LSI_SCSI - ok
22:50:21.0458 4340 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:50:21.0520 4340 luafv - ok
22:50:21.0567 4340 [ DC8490812A3B72811AE534F423B4C206 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
22:50:21.0598 4340 MBAMProtector - ok
22:50:21.0660 4340 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
22:50:21.0770 4340 MBAMService - ok
22:50:21.0848 4340 [ C121367D21599367F2ADB9C11B7BABAA ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:50:21.0941 4340 McAfee SiteAdvisor Service - ok
22:50:22.0035 4340 [ FD3AD5E1ECDAA94A89D6697F5C5465D6 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.1.121\McCHSvc.exe
22:50:22.0128 4340 McComponentHostService - ok
22:50:22.0144 4340 [ C121367D21599367F2ADB9C11B7BABAA ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:50:22.0160 4340 McMPFSvc - ok
22:50:22.0175 4340 [ C121367D21599367F2ADB9C11B7BABAA ] mcmscsvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
22:50:22.0191 4340 mcmscsvc - ok
22:50:22.0191 4340 [ C121367D21599367F2ADB9C11B7BABAA ] McNaiAnn C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
22:50:22.0206 4340 McNaiAnn - ok
22:50:22.0222 4340 [ C121367D21599367F2ADB9C11B7BABAA ] McNASvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
22:50:22.0238 4340 McNASvc - ok
22:50:22.0362 4340 [ 9EF2FF066F067C140EB2CB776104C602 ] McODS C:\Program Files\mcafee\VirusScan\mcods.exe
22:50:22.0440 4340 McODS - ok
22:50:22.0456 4340 [ C121367D21599367F2ADB9C11B7BABAA ] McProxy C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
22:50:22.0472 4340 McProxy - ok
22:50:22.0518 4340 [ 837072909AD6E3FBA4B0C9334FDAD580 ] McPvDrv C:\Windows\system32\drivers\McPvDrv.sys
22:50:22.0550 4340 McPvDrv - ok
22:50:22.0596 4340 [ 4DEC9B5BEDAA97B1FF6A3923E1C4F58A ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
22:50:22.0659 4340 McShield - ok
22:50:22.0690 4340 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:50:22.0752 4340 Mcx2Svc - ok
22:50:22.0784 4340 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
22:50:22.0799 4340 megasas - ok
22:50:22.0815 4340 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
22:50:22.0846 4340 MegaSR - ok
22:50:22.0877 4340 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
22:50:22.0940 4340 MEIx64 - ok
22:50:22.0971 4340 [ B574522827D94126C03975FD53F0B26B ] mfeapfk C:\Windows\system32\drivers\mfeapfk.sys
22:50:22.0986 4340 mfeapfk - ok
22:50:23.0049 4340 [ B393753ECE9A9E2307CB1984ACF3DA9D ] mfeavfk C:\Windows\system32\drivers\mfeavfk.sys
22:50:23.0142 4340 mfeavfk - ok
22:50:23.0158 4340 mfeavfk01 - ok
22:50:23.0189 4340 [ 97C398750C8E80A48EB63999546F796E ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
22:50:23.0267 4340 mfefire - ok
22:50:23.0314 4340 [ C52A1ABF03DD219375EA0F6A8BE941C3 ] mfefirek C:\Windows\system32\drivers\mfefirek.sys
22:50:23.0392 4340 mfefirek - ok
22:50:23.0439 4340 [ 7092A6C6158FC4F5AA39EBEB9D5AF03D ] mfehidk C:\Windows\system32\drivers\mfehidk.sys
22:50:23.0454 4340 mfehidk - ok
22:50:23.0486 4340 [ D2A941C82A0A9227CD6F47AD40A40F69 ] mferkdet C:\Windows\system32\drivers\mferkdet.sys
22:50:23.0548 4340 mferkdet - ok
22:50:23.0579 4340 [ 04D48692EFF181DA46DD8EA8BE9FFB2B ] mfevtp C:\Windows\system32\mfevtps.exe
22:50:23.0657 4340 mfevtp - ok
22:50:23.0673 4340 [ 1631E2DA6C4B47D97ECA94842836592E ] mfewfpk C:\Windows\system32\drivers\mfewfpk.sys
22:50:23.0704 4340 mfewfpk - ok
22:50:23.0735 4340 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:50:23.0782 4340 MMCSS - ok
22:50:23.0829 4340 [ 8CC001C65C31633171991FA72A551D43 ] MOBKbackup C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
22:50:23.0891 4340 MOBKbackup - ok
22:50:23.0922 4340 [ 3800C23D0D90C59AAFCDEFDC82B5C4AF ] MOBKFilter C:\Windows\system32\DRIVERS\MOBK.sys
22:50:23.0922 4340 MOBKFilter - ok
22:50:23.0954 4340 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:50:24.0016 4340 Modem - ok
22:50:24.0032 4340 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:50:24.0078 4340 monitor - ok
22:50:24.0110 4340 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:50:24.0125 4340 mouclass - ok
22:50:24.0141 4340 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\drivers\mouhid.sys
22:50:24.0172 4340 mouhid - ok
22:50:24.0203 4340 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:50:24.0219 4340 mountmgr - ok
22:50:24.0266 4340 [ E8D79312373F254DC13F3965BDB3D521 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:50:24.0359 4340 MozillaMaintenance - ok
22:50:24.0390 4340 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:50:24.0453 4340 mpio - ok
22:50:24.0484 4340 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:50:24.0562 4340 mpsdrv - ok
22:50:24.0609 4340 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:50:24.0718 4340 MpsSvc - ok
22:50:24.0749 4340 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:50:24.0874 4340 MRxDAV - ok
22:50:24.0905 4340 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:50:24.0983 4340 mrxsmb - ok
22:50:25.0030 4340 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:50:25.0046 4340 mrxsmb10 - ok
22:50:25.0077 4340 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:50:25.0092 4340 mrxsmb20 - ok
22:50:25.0124 4340 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:50:25.0202 4340 msahci - ok
22:50:25.0233 4340 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:50:25.0326 4340 msdsm - ok
22:50:25.0342 4340 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:50:25.0404 4340 MSDTC - ok
22:50:25.0436 4340 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:50:25.0467 4340 Msfs - ok
22:50:25.0498 4340 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:50:25.0560 4340 mshidkmdf - ok
22:50:25.0592 4340 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:50:25.0607 4340 msisadrv - ok
22:50:25.0638 4340 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:50:25.0732 4340 MSiSCSI - ok
22:50:25.0732 4340 msiserver - ok
22:50:25.0763 4340 [ C121367D21599367F2ADB9C11B7BABAA ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
22:50:25.0779 4340 MSK80Service - ok
22:50:25.0841 4340 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:50:25.0919 4340 MSKSSRV - ok
22:50:25.0935 4340 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:50:25.0982 4340 MSPCLOCK - ok
22:50:26.0044 4340 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:50:26.0138 4340 MSPQM - ok
22:50:26.0169 4340 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:50:26.0200 4340 MsRPC - ok
22:50:26.0247 4340 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
22:50:26.0278 4340 mssmbios - ok
22:50:26.0278 4340 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:50:26.0372 4340 MSTEE - ok
22:50:26.0387 4340 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
22:50:26.0434 4340 MTConfig - ok
22:50:26.0450 4340 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:50:26.0465 4340 Mup - ok
22:50:26.0512 4340 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:50:26.0590 4340 napagent - ok
22:50:26.0606 4340 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:50:26.0652 4340 NativeWifiP - ok
22:50:26.0715 4340 [ C38B8AE57F78915905064A9A24DC1586 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:50:26.0762 4340 NDIS - ok
22:50:26.0777 4340 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:50:26.0824 4340 NdisCap - ok
22:50:26.0840 4340 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:50:26.0886 4340 NdisTapi - ok
22:50:26.0902 4340 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:50:26.0996 4340 Ndisuio - ok
22:50:27.0027 4340 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:50:27.0136 4340 NdisWan - ok
22:50:27.0167 4340 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:50:27.0261 4340 NDProxy - ok
22:50:27.0276 4340 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:50:27.0323 4340 NetBIOS - ok
22:50:27.0339 4340 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:50:27.0432 4340 NetBT - ok
22:50:27.0448 4340 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
22:50:27.0479 4340 Netlogon - ok
22:50:27.0526 4340 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:50:27.0620 4340 Netman - ok
22:50:27.0666 4340 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:50:27.0744 4340 NetMsmqActivator - ok
22:50:27.0760 4340 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:50:27.0776 4340 NetPipeActivator - ok
22:50:27.0807 4340 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:50:27.0869 4340 netprofm - ok
22:50:27.0869 4340 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:50:27.0885 4340 NetTcpActivator - ok
22:50:27.0900 4340 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:50:27.0916 4340 NetTcpPortSharing - ok
22:50:27.0932 4340 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:50:27.0978 4340 nfrd960 - ok
22:50:27.0994 4340 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:50:28.0088 4340 NlaSvc - ok
22:50:28.0228 4340 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
22:50:28.0337 4340 NOBU - ok
22:50:28.0353 4340 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:50:28.0400 4340 Npfs - ok
22:50:28.0415 4340 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:50:28.0462 4340 nsi - ok
22:50:28.0493 4340 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:50:28.0540 4340 nsiproxy - ok
22:50:28.0618 4340 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:50:28.0680 4340 Ntfs - ok
22:50:28.0696 4340 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:50:28.0743 4340 Null - ok
22:50:28.0774 4340 [ 0EBC9D13CD96C15B1B18D8678A609E4B ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
22:50:28.0899 4340 nusb3hub - ok
22:50:28.0914 4340 [ 7BDEC000D56D485021D9C1E63C2F81CA ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
22:50:29.0024 4340 nusb3xhc - ok
22:50:29.0070 4340 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:50:29.0164 4340 nvraid - ok
22:50:29.0195 4340 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:50:29.0273 4340 nvstor - ok
22:50:29.0320 4340 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:50:29.0336 4340 nv_agp - ok
22:50:29.0382 4340 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:50:29.0414 4340 ohci1394 - ok
22:50:29.0492 4340 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:50:29.0585 4340 ose - ok
22:50:29.0757 4340 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:50:30.0022 4340 osppsvc - ok
22:50:30.0053 4340 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:50:30.0147 4340 p2pimsvc - ok
22:50:30.0178 4340 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:50:30.0225 4340 p2psvc - ok
22:50:30.0256 4340 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
22:50:30.0287 4340 Parport - ok
22:50:30.0318 4340 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:50:30.0334 4340 partmgr - ok
22:50:30.0396 4340 [ AFADA8B97BE3C9398DC6C770409C3544 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
22:50:30.0490 4340 PassThru Service ( UnsignedFile.Multi.Generic ) - warning
22:50:30.0490 4340 PassThru Service - detected UnsignedFile.Multi.Generic (1)
22:50:30.0521 4340 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:50:30.0584 4340 PcaSvc - ok
22:50:30.0630 4340 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:50:30.0646 4340 pci - ok
22:50:30.0677 4340 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
22:50:30.0693 4340 pciide - ok
22:50:30.0724 4340 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:50:30.0771 4340 pcmcia - ok
22:50:30.0802 4340 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:50:30.0833 4340 pcw - ok
22:50:30.0849 4340 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:50:30.0927 4340 PEAUTH - ok
22:50:31.0020 4340 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:50:31.0083 4340 PerfHost - ok
22:50:31.0176 4340 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:50:31.0332 4340 pla - ok
22:50:31.0379 4340 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:50:31.0504 4340 PlugPlay - ok
22:50:31.0520 4340 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:50:31.0551 4340 PNRPAutoReg - ok
22:50:31.0598 4340 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:50:31.0613 4340 PNRPsvc - ok
22:50:31.0660 4340 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:50:31.0800 4340 PolicyAgent - ok
22:50:31.0847 4340 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
22:50:31.0956 4340 Power - ok
22:50:31.0988 4340 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:50:32.0081 4340 PptpMiniport - ok
22:50:32.0097 4340 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
22:50:32.0144 4340 Processor - ok
22:50:32.0190 4340 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
22:50:32.0315 4340 ProfSvc - ok
22:50:32.0346 4340 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:50:32.0362 4340 ProtectedStorage - ok
22:50:32.0409 4340 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys

 

[ronnies]

22:50:32.0518 4340 Psched - ok
22:50:32.0565 4340 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
22:50:32.0596 4340 PxHlpa64 - ok
22:50:32.0658 4340 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
22:50:32.0783 4340 ql2300 - ok
22:50:32.0830 4340 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
22:50:32.0861 4340 ql40xx - ok
22:50:32.0908 4340 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:50:32.0939 4340 QWAVE - ok
22:50:32.0970 4340 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:50:33.0017 4340 QWAVEdrv - ok
22:50:33.0033 4340 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:50:33.0126 4340 RasAcd - ok
22:50:33.0158 4340 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:50:33.0220 4340 RasAgileVpn - ok
22:50:33.0251 4340 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:50:33.0329 4340 RasAuto - ok
22:50:33.0345 4340 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:50:33.0454 4340 Rasl2tp - ok
22:50:33.0485 4340 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:50:33.0626 4340 RasMan - ok
22:50:33.0657 4340 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:50:33.0719 4340 RasPppoe - ok
22:50:33.0750 4340 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:50:33.0797 4340 RasSstp - ok
22:50:33.0844 4340 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:50:33.0906 4340 rdbss - ok
22:50:33.0922 4340 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
22:50:33.0984 4340 rdpbus - ok
22:50:34.0016 4340 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:50:34.0094 4340 RDPCDD - ok
22:50:34.0125 4340 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:50:34.0203 4340 RDPENCDD - ok
22:50:34.0234 4340 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:50:34.0265 4340 RDPREFMP - ok
22:50:34.0312 4340 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:50:34.0437 4340 RDPWD - ok
22:50:34.0468 4340 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:50:34.0484 4340 rdyboost - ok
22:50:34.0546 4340 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:50:34.0655 4340 RemoteAccess - ok
22:50:34.0686 4340 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:50:34.0749 4340 RemoteRegistry - ok
22:50:34.0796 4340 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
22:50:34.0858 4340 RFCOMM - ok
22:50:34.0967 4340 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
22:50:35.0139 4340 RoxMediaDB12OEM - ok
22:50:35.0186 4340 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
22:50:35.0279 4340 RoxWatch12 - ok
22:50:35.0295 4340 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:50:35.0373 4340 RpcEptMapper - ok
22:50:35.0404 4340 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:50:35.0435 4340 RpcLocator - ok
22:50:35.0451 4340 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
22:50:35.0498 4340 RpcSs - ok
22:50:35.0544 4340 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:50:35.0638 4340 rspndr - ok
22:50:35.0685 4340 [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
22:50:35.0716 4340 RSUSBSTOR - ok
22:50:35.0747 4340 [ A73ED14670220307874AD6BC2F279349 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
22:50:35.0825 4340 RTL8167 - ok
22:50:35.0841 4340 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
22:50:35.0856 4340 SamSs - ok
22:50:35.0872 4340 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:50:35.0934 4340 sbp2port - ok
22:50:36.0028 4340 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
22:50:36.0200 4340 SBSDWSCService - ok
22:50:36.0246 4340 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:50:36.0309 4340 SCardSvr - ok
22:50:36.0340 4340 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:50:36.0434 4340 scfilter - ok
22:50:36.0480 4340 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
22:50:36.0605 4340 Schedule - ok
22:50:36.0652 4340 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:50:36.0714 4340 SCPolicySvc - ok
22:50:36.0730 4340 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:50:36.0839 4340 SDRSVC - ok
22:50:36.0870 4340 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:50:36.0980 4340 secdrv - ok
22:50:37.0011 4340 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:50:37.0089 4340 seclogon - ok
22:50:37.0104 4340 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
22:50:37.0182 4340 SENS - ok
22:50:37.0198 4340 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:50:37.0323 4340 SensrSvc - ok
22:50:37.0338 4340 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
22:50:37.0385 4340 Serenum - ok
22:50:37.0416 4340 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
22:50:37.0448 4340 Serial - ok
22:50:37.0479 4340 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
22:50:37.0526 4340 sermouse - ok
22:50:37.0572 4340 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:50:37.0666 4340 SessionEnv - ok
22:50:37.0697 4340 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:50:37.0744 4340 sffdisk - ok
22:50:37.0775 4340 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:50:37.0838 4340 sffp_mmc - ok
22:50:37.0869 4340 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:50:37.0962 4340 sffp_sd - ok
22:50:37.0978 4340 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
22:50:38.0009 4340 sfloppy - ok
22:50:38.0118 4340 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
22:50:38.0259 4340 SftService - ok
22:50:38.0306 4340 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:50:38.0399 4340 SharedAccess - ok
22:50:38.0462 4340 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:50:38.0571 4340 ShellHWDetection - ok
22:50:38.0602 4340 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
22:50:38.0618 4340 SiSRaid2 - ok
22:50:38.0664 4340 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:50:38.0696 4340 SiSRaid4 - ok
22:50:38.0727 4340 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:50:38.0852 4340 Smb - ok
22:50:38.0898 4340 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:50:38.0961 4340 SNMPTRAP - ok
22:50:38.0976 4340 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:50:38.0992 4340 spldr - ok
22:50:39.0039 4340 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
22:50:39.0179 4340 Spooler - ok
22:50:39.0288 4340 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:50:39.0491 4340 sppsvc - ok
22:50:39.0538 4340 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:50:39.0585 4340 sppuinotify - ok
22:50:39.0632 4340 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
22:50:39.0710 4340 srv - ok
22:50:39.0756 4340 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:50:39.0788 4340 srv2 - ok
22:50:39.0819 4340 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:50:39.0834 4340 srvnet - ok
22:50:39.0881 4340 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:50:39.0944 4340 SSDPSRV - ok
22:50:39.0975 4340 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:50:40.0022 4340 SstpSvc - ok
22:50:40.0053 4340 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
22:50:40.0068 4340 stexstor - ok
22:50:40.0115 4340 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:50:40.0271 4340 stisvc - ok
22:50:40.0302 4340 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
22:50:40.0380 4340 stllssvr - ok
22:50:40.0412 4340 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
22:50:40.0443 4340 swenum - ok
22:50:40.0490 4340 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:50:40.0552 4340 swprv - ok
22:50:40.0630 4340 [ BCD5B4AB94DA436F083FCD0C636D00F3 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
22:50:40.0786 4340 SynTP - ok
22:50:40.0833 4340 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:50:40.0942 4340 SysMain - ok
22:50:40.0973 4340 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:50:41.0036 4340 TabletInputService - ok
22:50:41.0082 4340 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:50:41.0176 4340 TapiSrv - ok
22:50:41.0207 4340 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:50:41.0254 4340 TBS - ok
22:50:41.0332 4340 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:50:41.0394 4340 Tcpip - ok
22:50:41.0426 4340 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:50:41.0472 4340 TCPIP6 - ok
22:50:41.0519 4340 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:50:41.0613 4340 tcpipreg - ok
22:50:41.0660 4340 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:50:41.0706 4340 TDPIPE - ok
22:50:41.0753 4340 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:50:41.0847 4340 TDTCP - ok
22:50:41.0878 4340 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:50:41.0987 4340 tdx - ok
22:50:42.0003 4340 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
22:50:42.0065 4340 TermDD - ok
22:50:42.0096 4340 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:50:42.0221 4340 TermService - ok
22:50:42.0237 4340 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:50:42.0284 4340 Themes - ok
22:50:42.0315 4340 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:50:42.0362 4340 THREADORDER - ok
22:50:42.0393 4340 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:50:42.0455 4340 TrkWks - ok
22:50:42.0518 4340 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:50:42.0658 4340 TrustedInstaller - ok
22:50:42.0705 4340 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:50:42.0798 4340 tssecsrv - ok
22:50:42.0814 4340 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:50:42.0908 4340 TsUsbFlt - ok
22:50:42.0954 4340 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
22:50:43.0064 4340 TsUsbGD - ok
22:50:43.0095 4340 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:50:43.0188 4340 tunnel - ok
22:50:43.0220 4340 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:50:43.0235 4340 uagp35 - ok
22:50:43.0266 4340 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:50:43.0391 4340 udfs - ok
22:50:43.0438 4340 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:50:43.0500 4340 UI0Detect - ok
22:50:43.0532 4340 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:50:43.0547 4340 uliagpkx - ok
22:50:43.0578 4340 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:50:43.0656 4340 umbus - ok
22:50:43.0688 4340 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
22:50:43.0734 4340 UmPass - ok
22:50:43.0875 4340 [ 2C16648A12999AE69A9EBF41974B0BA2 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
22:50:44.0031 4340 UNS - ok
22:50:44.0109 4340 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:50:44.0187 4340 upnphost - ok
22:50:44.0234 4340 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:50:44.0358 4340 usbccgp - ok
22:50:44.0405 4340 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:50:44.0436 4340 usbcir - ok
22:50:44.0468 4340 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
22:50:44.0530 4340 usbehci - ok
22:50:44.0592 4340 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:50:44.0670 4340 usbhub - ok
22:50:44.0702 4340 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:50:44.0795 4340 usbohci - ok
22:50:44.0826 4340 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:50:44.0873 4340 usbprint - ok
22:50:44.0904 4340 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:50:44.0967 4340 usbscan - ok
22:50:44.0998 4340 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:50:45.0123 4340 USBSTOR - ok
22:50:45.0154 4340 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:50:45.0232 4340 usbuhci - ok
22:50:45.0263 4340 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
22:50:45.0341 4340 usbvideo - ok
22:50:45.0372 4340 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:50:45.0450 4340 UxSms - ok
22:50:45.0482 4340 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
22:50:45.0497 4340 VaultSvc - ok
22:50:45.0513 4340 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:50:45.0528 4340 vdrvroot - ok
22:50:45.0560 4340 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:50:45.0669 4340 vds - ok
22:50:45.0684 4340 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:50:45.0716 4340 vga - ok
22:50:45.0731 4340 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:50:45.0809 4340 VgaSave - ok
22:50:45.0856 4340 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:50:45.0934 4340 vhdmp - ok
22:50:45.0981 4340 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:50:46.0012 4340 viaide - ok
22:50:46.0043 4340 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:50:46.0059 4340 volmgr - ok
22:50:46.0090 4340 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:50:46.0106 4340 volmgrx - ok
22:50:46.0137 4340 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:50:46.0153 4340 volsnap - ok
22:50:46.0184 4340 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:50:46.0215 4340 vsmraid - ok
22:50:46.0293 4340 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:50:46.0449 4340 VSS - ok
22:50:46.0465 4340 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:50:46.0527 4340 vwifibus - ok
22:50:46.0543 4340 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:50:46.0605 4340 vwififlt - ok
22:50:46.0621 4340 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
22:50:46.0652 4340 vwifimp - ok
22:50:46.0667 4340 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:50:46.0730 4340 W32Time - ok
22:50:46.0792 4340 [ B32009DB1972E7F2C227499289C4384A ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll
22:50:46.0870 4340 W3SVC - ok
22:50:46.0886 4340 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
22:50:46.0948 4340 WacomPen - ok
22:50:46.0979 4340 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:50:47.0073 4340 WANARP - ok
22:50:47.0089 4340 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:50:47.0120 4340 Wanarpv6 - ok
22:50:47.0151 4340 [ B32009DB1972E7F2C227499289C4384A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll
22:50:47.0182 4340 WAS - ok
22:50:47.0260 4340 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:50:47.0401 4340 WatAdminSvc - ok
22:50:47.0479 4340 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:50:47.0681 4340 wbengine - ok
22:50:47.0713 4340 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:50:47.0744 4340 WbioSrvc - ok
22:50:47.0775 4340 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:50:47.0853 4340 wcncsvc - ok
22:50:47.0884 4340 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:50:47.0931 4340 WcsPlugInService - ok
22:50:47.0993 4340 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
22:50:48.0025 4340 Wd - ok
22:50:48.0056 4340 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:50:48.0071 4340 Wdf01000 - ok
22:50:48.0103 4340 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:50:48.0196 4340 WdiServiceHost - ok
22:50:48.0212 4340 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:50:48.0227 4340 WdiSystemHost - ok
22:50:48.0259 4340 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:50:48.0352 4340 WebClient - ok
22:50:48.0383 4340 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:50:48.0446 4340 Wecsvc - ok
22:50:48.0477 4340 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:50:48.0524 4340 wercplsupport - ok
22:50:48.0539 4340 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:50:48.0602 4340 WerSvc - ok
22:50:48.0633 4340 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:50:48.0664 4340 WfpLwf - ok
22:50:48.0695 4340 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
22:50:48.0789 4340 WimFltr - ok
22:50:48.0820 4340 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:50:48.0836 4340 WIMMount - ok
22:50:48.0867 4340 WinDefend - ok
22:50:48.0929 4340 WinHttpAutoProxySvc - ok
22:50:48.0992 4340 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:50:49.0085 4340 Winmgmt - ok
22:50:49.0179 4340 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:50:49.0413 4340 WinRM - ok
22:50:49.0475 4340 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:50:49.0553 4340 Wlansvc - ok
22:50:49.0631 4340 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:50:49.0709 4340 wlcrasvc - ok
22:50:49.0834 4340 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:50:50.0037 4340 wlidsvc - ok
22:50:50.0131 4340 [ BCA22B2B27417FA7C8D824D5DE4DC03C ] wltrysvc C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
22:50:50.0224 4340 wltrysvc ( UnsignedFile.Multi.Generic ) - warning
22:50:50.0224 4340 wltrysvc - detected UnsignedFile.Multi.Generic (1)
22:50:50.0255 4340 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
22:50:50.0302 4340 WmiAcpi - ok
22:50:50.0365 4340 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:50:50.0427 4340 wmiApSrv - ok
22:50:50.0474 4340 WMPNetworkSvc - ok
22:50:50.0521 4340 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:50:50.0583 4340 WPCSvc - ok
22:50:50.0614 4340 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:50:50.0677 4340 WPDBusEnum - ok
22:50:50.0723 4340 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:50:50.0770 4340 ws2ifsl - ok
22:50:50.0786 4340 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
22:50:50.0848 4340 wscsvc - ok
22:50:50.0864 4340 WSearch - ok
22:50:50.0973 4340 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:50:51.0160 4340 wuauserv - ok
22:50:51.0191 4340 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:50:51.0316 4340 WudfPf - ok
22:50:51.0347 4340 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:50:51.0441 4340 WUDFRd - ok
22:50:51.0488 4340 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:50:51.0581 4340 wudfsvc - ok
22:50:51.0613 4340 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
22:50:51.0691 4340 WwanSvc - ok
22:50:51.0753 4340 ================ Scan global ===============================
22:50:51.0784 4340 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:50:51.0815 4340 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:50:51.0878 4340 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:50:51.0925 4340 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:50:51.0971 4340 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:50:51.0987 4340 [Global] - ok
22:50:51.0987 4340 ================ Scan MBR ==================================
22:50:52.0003 4340 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
22:50:52.0393 4340 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
22:50:52.0393 4340 \Device\Harddisk0\DR0 - detected TDSS File System (1)
22:50:52.0393 4340 ================ Scan VBR ==================================
22:50:52.0393 4340 [ 119EC4FD4956138ED61A44A1279D8C5D ] \Device\Harddisk0\DR0\Partition1
22:50:52.0393 4340 \Device\Harddisk0\DR0\Partition1 - ok
22:50:52.0439 4340 [ 22BE3A84ED3753349F9ACEB9525DE59B ] \Device\Harddisk0\DR0\Partition2
22:50:52.0439 4340 \Device\Harddisk0\DR0\Partition2 - ok
22:50:52.0439 4340 ============================================================
22:50:52.0439 4340 Scan finished
22:50:52.0439 4340 ============================================================
22:50:52.0439 8060 Detected object count: 4
22:50:52.0439 8060 Actual detected object count: 4
22:51:21.0081 8060 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - skipped by user
22:51:21.0081 8060 DellDigitalDelivery ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:51:21.0081 8060 PassThru Service ( UnsignedFile.Multi.Generic ) - skipped by user
22:51:21.0081 8060 PassThru Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:51:21.0081 8060 wltrysvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:51:21.0081 8060 wltrysvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:51:21.0097 8060 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
22:51:21.0112 8060 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
22:51:21.0112 8060 \Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
22:51:21.0128 8060 \Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
22:51:21.0143 8060 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
22:51:21.0206 8060 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
22:51:21.0206 8060 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
22:51:21.0206 8060 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
22:51:21.0221 8060 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
22:51:21.0268 8060 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
22:51:21.0284 8060 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
22:51:21.0284 8060 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
22:51:21.0299 8060 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
22:51:21.0299 8060 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
22:51:21.0315 8060 \Device\Harddisk0\DR0\TDLFS - deleted
22:51:21.0315 8060 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
22:51:55.0229 8876 Deinitialize success

 

[oldman960]

Hi ronnies,

that looks like the last of it. How's the computer?

 

[ronnies]

Hi oldman960,

Everything seems to be running just fine now. Thank you so much for all your help. Should I keep TDSSK, ERUNT, etc. downloaded on my system?

 

[oldman960]

Hi ronnies,

I do believe you are good to go. You can keep ERUNT if you want but we will removed the rest.

We'll clean up the tools now.

From your desktop, please delete, if present

• any notepads/logs that we created
• aswMBR.exe
• mbr.zip
• mbr.dat
• DDS.scr
• TDSSKiller
• Farbar Service Scanner

You can also delete all the TDSSKiller logs from C:\. They will be named TDSSKiller.[Version]_[Date]_[Time]_log.txt

Delete this folder also, C:\TDSSKiller_Quarantine


Next

Click the Start button. Copy and paste the following line into the search box and hit enter


Combofix /uninstall



Next

Open OTL then click the Clean Up button. You may get prompted by your firewall that OTL wants to contact the internet - allow this. A cleanup.txt will be downloaded, a message dialog will ask you if you want to proceed with the cleanup process, click Yes. This will do some clean up tasks and delete some of the tools you have downloaded plus itself.

I suggest you keep MBAM. Keep it updated and use it regularly.


Some Recommendations and prevention tips

Basic security consists of 1 antivirus program, 1 resident antispyware program, 1 on demand antispyware program and a firewall. Those you have.

You should also use Spyware Blaster to help immunize your computer.

- SpywareBlaster will add a large list of programs and sites into your Internet Explorer
settings that will protect you from running and downloading known malicious programs.

OR

A guide to understanding and using the hosts file.

Learn how your Hosts file can protect you and how you can protect it.
Besides the Hosts file information, there are links to a very good updated hosts file, a host file manager. and some programs that can protect your hosts file.
HOSTS

Please read the info on disabling the DNS Client before installing a custom hosts file.


-Secure your Internet Explorer

From within Internet Explorer click on the Tools menu and then click on Options.

• Click once on the Security tab
• Click once on the Internet icon so it becomes highlighted.
• Click once on the Custom Level button.
• Change the Download signed ActiveX controls to Prompt
• Change the Download unsigned ActiveX controls to Disable
• Change the Initialize and script ActiveX controls not marked as safe to Disable
• Change the Installation of desktop items to Prompt
• Change the Launching programs and files in an IFRAME to Prompt
• Change the Navigate sub-frames across different domains to Prompt
• When all these settings have been made, click on the OK button.
• If it prompts you as to whether or not you want to save the settings, press the Yes button.

Next press the Apply button and then the OK to exit the Internet Properties page.


- Make sure you have reset Windows Updates to your chosen option. Click your start button > Control Panel > System > Windows updates (lower left) > change settings


- Keep your antivirus program updated, as well as any other security programs you have.


-More tips and programs can be found HERE

Please post back if you have any problems.

Take care

 

[oldman960]

Since this issue appears to be resolved ... this Topic has been closed.