Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Infected with malware [Solved]

Started by very_metal , Mar 09 2015 05:01 PM

  • This topic is locked This topic is locked

#16
pystryker
Posted 12 March 2015 - 05:43 AM

pystryker

    Trusted Helper

  • Malware Removal
  • 3,912 posts

The computer seems to running pretty well. It's not my computer so I unfortunately I don't have much of a first hand baseline to compare it with. Based on the symptoms described to me, it seems to be doing better. I notices about a ~40% increase in usable memory, which was the primary original complaint. In its worst state the computer was using 95-99% of its memory at any given time.


Thank you for the update and that's good to hear. :) We're close to the end, but we still have a few items to remove and I want to check for rootkits just to make sure none are lurking on the machine. :thumbsup:



Step 1: Fix with FRST
  • Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below. (To do this highlight the contents of the box, right click on it and select copy.
  • Right-click in the open notepad and select Paste).
  • Save it on the desktop as fixlist.txt

Start
C:\Users\Kate\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}
C:\Users\Kate\Downloads\api_Downloader (1).exe
C:\Users\Kate\Downloads\api_Downloader.exe
C:\Users\Public\Util\DTChk.exe
End


NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system.


Run FRST and press the Fix button just once and wait. The tool will make a log on the desktop (Fixlog.txt) please post it in your next reply.


Step 2: Scan with TDSSKiller


Please download TDSSKiller to the desktop.

Alternate download is here.
  • Right-click on TDSSKiller.exe and select Run as Administrator to start the program and follow the prompts.
  • When the main GUI(graphical user interface) window opens, click on Change Parameters
  • Under Additional options, select both Verify driver digital signatures & Detect TDLFS File System >> OK
  • Click on Start Scan, the scan will run.
  • When the scan has finished, if it finds anything please click on the drop down arrow next to Cure and select Skip
  • A Report will have been created by TDSSKiller in your root directory C:\
  • To find the log go to Start(Windows 7 Orb) > Computer > C: >> TDSSKiller.V.V.V.VV_DD.DD.YYYY_TT.TT.TT_log <-- The letters denote the version and date & time etc.
  • Post the contents of that log in your next reply please.
Note: Do not have TDSSKiller remove anything if found at this point in time!



Things I need to see in your next post:

Please post each of these logs as a separate reply in this thread.

Fixlog.txt Log

TDSSKiller Log
  • 0

Advertisements

#17
very_metal
Posted 12 March 2015 - 09:35 AM

very_metal

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-03-2015
Ran by Kate at 2015-03-12 11:40:58 Run:2
Running from C:\Users\Kate\Desktop
Loaded Profiles: Kate (Available profiles: Kate)
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
Start
C:\Users\Kate\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}
C:\Users\Kate\Downloads\api_Downloader (1).exe
C:\Users\Kate\Downloads\api_Downloader.exe
C:\Users\Public\Util\DTChk.exe
End
*****************
 
C:\Users\Kate\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847} => Moved successfully.
C:\Users\Kate\Downloads\api_Downloader (1).exe => Moved successfully.
C:\Users\Kate\Downloads\api_Downloader.exe => Moved successfully.
C:\Users\Public\Util\DTChk.exe => Moved successfully.
 
==== End of Fixlog 11:41:00 ====

  • 0

#18
very_metal
Posted 12 March 2015 - 09:40 AM

very_metal

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
11:44:12.0890 0x0c7c  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
11:44:17.0801 0x0c7c  ============================================================
11:44:17.0801 0x0c7c  Current date / time: 2015/03/12 11:44:17.0801
11:44:17.0801 0x0c7c  SystemInfo:
11:44:17.0801 0x0c7c  
11:44:17.0801 0x0c7c  OS Version: 6.1.7601 ServicePack: 1.0
11:44:17.0801 0x0c7c  Product type: Workstation
11:44:17.0801 0x0c7c  ComputerName: KATE-PC
11:44:17.0801 0x0c7c  UserName: Kate
11:44:17.0801 0x0c7c  Windows directory: C:\Windows
11:44:17.0801 0x0c7c  System windows directory: C:\Windows
11:44:17.0801 0x0c7c  Running under WOW64
11:44:17.0801 0x0c7c  Processor architecture: Intel x64
11:44:17.0801 0x0c7c  Number of processors: 2
11:44:17.0801 0x0c7c  Page size: 0x1000
11:44:17.0801 0x0c7c  Boot type: Normal boot
11:44:17.0801 0x0c7c  ============================================================
11:44:17.0879 0x0c7c  KLMD registered as C:\Windows\system32\drivers\89320776.sys
11:44:18.0207 0x0c7c  System UUID: {87BCB713-F139-6B57-E133-A6BEA6E32851}
11:44:18.0597 0x0c7c  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:44:18.0597 0x0c7c  ============================================================
11:44:18.0597 0x0c7c  \Device\Harddisk0\DR0:
11:44:18.0597 0x0c7c  MBR partitions:
11:44:18.0597 0x0c7c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
11:44:18.0597 0x0c7c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x10CB96B0
11:44:18.0597 0x0c7c  ============================================================
11:44:18.0644 0x0c7c  C: <-> \Device\Harddisk0\DR0\Partition2
11:44:18.0644 0x0c7c  ============================================================
11:44:18.0644 0x0c7c  Initialize success
11:44:18.0644 0x0c7c  ============================================================
11:45:05.0503 0x0170  ============================================================
11:45:05.0503 0x0170  Scan started
11:45:05.0503 0x0170  Mode: Manual; SigCheck; TDLFS; 
11:45:05.0503 0x0170  ============================================================
11:45:05.0503 0x0170  KSN ping started
11:45:07.0929 0x0170  KSN ping finished: true
11:45:08.0662 0x0170  ================ Scan system memory ========================
11:45:08.0662 0x0170  System memory - ok
11:45:08.0662 0x0170  ================ Scan services =============================
11:45:08.0927 0x0170  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
11:45:09.0068 0x0170  1394ohci - ok
11:45:09.0193 0x0170  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
11:45:09.0224 0x0170  ACPI - ok
11:45:09.0286 0x0170  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
11:45:09.0364 0x0170  AcpiPmi - ok
11:45:09.0614 0x0170  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:45:09.0629 0x0170  AdobeARMservice - ok
11:45:09.0801 0x0170  [ 080255CDCB878813B481B8C348D47D8E, 75808821FBC732D0504795B8F85852E4C01D3B412989A1E597E1295CFF7B7A45 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:45:09.0817 0x0170  AdobeFlashPlayerUpdateSvc - ok
11:45:09.0901 0x0170  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
11:45:09.0947 0x0170  adp94xx - ok
11:45:09.0994 0x0170  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
11:45:10.0025 0x0170  adpahci - ok
11:45:10.0057 0x0170  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
11:45:10.0072 0x0170  adpu320 - ok
11:45:10.0119 0x0170  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
11:45:10.0259 0x0170  AeLookupSvc - ok
11:45:10.0369 0x0170  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
11:45:10.0447 0x0170  AFD - ok
11:45:10.0525 0x0170  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
11:45:10.0540 0x0170  agp440 - ok
11:45:10.0556 0x0170  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
11:45:10.0618 0x0170  ALG - ok
11:45:10.0681 0x0170  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
11:45:10.0696 0x0170  aliide - ok
11:45:10.0743 0x0170  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
11:45:10.0759 0x0170  amdide - ok
11:45:10.0821 0x0170  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
11:45:10.0915 0x0170  AmdK8 - ok
11:45:10.0946 0x0170  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
11:45:10.0977 0x0170  AmdPPM - ok
11:45:11.0055 0x0170  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
11:45:11.0071 0x0170  amdsata - ok
11:45:11.0133 0x0170  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
11:45:11.0149 0x0170  amdsbs - ok
11:45:11.0164 0x0170  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
11:45:11.0180 0x0170  amdxata - ok
11:45:11.0258 0x0170  [ 1412E9A88FE1F7E35CE6058A2EF03664, 5670F8189C91E6F449EFB2A91F689F785D8757DF70534DCE3C9D3A556722EACA ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
11:45:11.0305 0x0170  ApfiltrService - ok
11:45:11.0383 0x0170  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
11:45:11.0617 0x0170  AppID - ok
11:45:11.0648 0x0170  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
11:45:11.0710 0x0170  AppIDSvc - ok
11:45:11.0726 0x0170  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
11:45:11.0773 0x0170  Appinfo - ok
11:45:11.0943 0x0170  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:45:11.0958 0x0170  Apple Mobile Device - ok
11:45:12.0021 0x0170  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
11:45:12.0036 0x0170  arc - ok
11:45:12.0067 0x0170  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
11:45:12.0083 0x0170  arcsas - ok
11:45:12.0286 0x0170  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:45:12.0301 0x0170  aspnet_state - ok
11:45:12.0348 0x0170  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
11:45:12.0395 0x0170  AsyncMac - ok
11:45:12.0442 0x0170  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
11:45:12.0457 0x0170  atapi - ok
11:45:12.0535 0x0170  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:45:12.0629 0x0170  AudioEndpointBuilder - ok
11:45:12.0645 0x0170  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
11:45:12.0707 0x0170  AudioSrv - ok
11:45:12.0769 0x0170  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
11:45:12.0863 0x0170  AxInstSV - ok
11:45:12.0925 0x0170  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
11:45:13.0003 0x0170  b06bdrv - ok
11:45:13.0081 0x0170  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
11:45:13.0128 0x0170  b57nd60a - ok
11:45:13.0175 0x0170  [ E001DD475A7C27EBE5A0DB45C11BAD71, BA6A13E49F30BBBAB9FB0C7686FA6FD0376D506A51CEDB2829E3EF3C728394BA ] BCM42RLY        C:\Windows\system32\drivers\BCM42RLY.sys
11:45:13.0191 0x0170  BCM42RLY - ok
11:45:13.0331 0x0170  [ 37394D3553E220FB732C21E217E1BD8B, 1B4ACDDDD2A2D9771240778A47BA067F0F6C7C40C84BC8BFD5852E5772EAB298 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
11:45:13.0440 0x0170  BCM43XX - ok
11:45:13.0534 0x0170  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
11:45:13.0581 0x0170  BDESVC - ok
11:45:13.0627 0x0170  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
11:45:13.0690 0x0170  Beep - ok
11:45:13.0799 0x0170  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
11:45:13.0897 0x0170  BFE - ok
11:45:13.0975 0x0170  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
11:45:14.0084 0x0170  BITS - ok
11:45:14.0162 0x0170  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
11:45:14.0193 0x0170  blbdrive - ok
11:45:14.0333 0x0170  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:45:14.0365 0x0170  Bonjour Service - ok
11:45:14.0427 0x0170  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:45:14.0474 0x0170  bowser - ok
11:45:14.0505 0x0170  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:45:14.0599 0x0170  BrFiltLo - ok
11:45:14.0661 0x0170  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:45:14.0677 0x0170  BrFiltUp - ok
11:45:14.0723 0x0170  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
11:45:14.0770 0x0170  Browser - ok
11:45:14.0801 0x0170  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
11:45:14.0864 0x0170  Brserid - ok
11:45:14.0879 0x0170  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
11:45:14.0895 0x0170  BrSerWdm - ok
11:45:14.0926 0x0170  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
11:45:14.0957 0x0170  BrUsbMdm - ok
11:45:14.0957 0x0170  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
11:45:14.0989 0x0170  BrUsbSer - ok
11:45:15.0020 0x0170  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
11:45:15.0051 0x0170  BTHMODEM - ok
11:45:15.0129 0x0170  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
11:45:15.0191 0x0170  bthserv - ok
11:45:15.0238 0x0170  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:45:15.0316 0x0170  cdfs - ok
11:45:15.0394 0x0170  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
11:45:15.0410 0x0170  cdrom - ok
11:45:15.0472 0x0170  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
11:45:15.0535 0x0170  CertPropSvc - ok
11:45:15.0550 0x0170  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
11:45:15.0581 0x0170  circlass - ok
11:45:15.0644 0x0170  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
11:45:15.0675 0x0170  CLFS - ok
11:45:15.0784 0x0170  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:45:15.0800 0x0170  clr_optimization_v2.0.50727_32 - ok
11:45:15.0847 0x0170  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:45:15.0847 0x0170  clr_optimization_v2.0.50727_64 - ok
11:45:15.0975 0x0170  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:45:16.0007 0x0170  clr_optimization_v4.0.30319_32 - ok
11:45:16.0069 0x0170  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:45:16.0085 0x0170  clr_optimization_v4.0.30319_64 - ok
11:45:16.0178 0x0170  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
11:45:16.0225 0x0170  CmBatt - ok
11:45:16.0256 0x0170  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
11:45:16.0272 0x0170  cmdide - ok
11:45:16.0334 0x0170  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
11:45:16.0381 0x0170  CNG - ok
11:45:16.0428 0x0170  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
11:45:16.0443 0x0170  Compbatt - ok
11:45:16.0506 0x0170  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
11:45:16.0553 0x0170  CompositeBus - ok
11:45:16.0599 0x0170  COMSysApp - ok
11:45:16.0615 0x0170  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
11:45:16.0615 0x0170  crcdisk - ok
11:45:16.0693 0x0170  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:45:16.0740 0x0170  CryptSvc - ok
11:45:16.0802 0x0170  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:45:16.0880 0x0170  DcomLaunch - ok
11:45:16.0958 0x0170  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
11:45:17.0036 0x0170  defragsvc - ok
11:45:17.0114 0x0170  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
11:45:17.0161 0x0170  DfsC - ok
11:45:17.0223 0x0170  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
11:45:17.0301 0x0170  Dhcp - ok
11:45:17.0348 0x0170  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
11:45:17.0395 0x0170  discache - ok
11:45:17.0442 0x0170  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
11:45:17.0457 0x0170  Disk - ok
11:45:17.0551 0x0170  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:45:17.0613 0x0170  Dnscache - ok
11:45:17.0691 0x0170  [ 0840ABBBDF438691EE65A20040635CBE, F83597ECECFADBA45242B683A19A01ADF84203B016301B64530C7BE8234175E8 ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
11:45:17.0723 0x0170  DockLoginService - detected UnsignedFile.Multi.Generic ( 1 )
11:45:25.0838 0x0170  Detect skipped due to KSN trusted
11:45:25.0838 0x0170  DockLoginService - ok
11:45:25.0936 0x0170  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
11:45:25.0983 0x0170  dot3svc - ok
11:45:26.0045 0x0170  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
11:45:26.0107 0x0170  DPS - ok
11:45:26.0185 0x0170  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
11:45:26.0232 0x0170  drmkaud - ok
11:45:26.0326 0x0170  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
11:45:26.0388 0x0170  DXGKrnl - ok
11:45:26.0419 0x0170  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
11:45:26.0497 0x0170  EapHost - ok
11:45:26.0653 0x0170  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
11:45:26.0841 0x0170  ebdrv - ok
11:45:26.0903 0x0170  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
11:45:26.0934 0x0170  EFS - ok
11:45:27.0043 0x0170  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
11:45:27.0153 0x0170  ehRecvr - ok
11:45:27.0199 0x0170  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
11:45:27.0231 0x0170  ehSched - ok
11:45:27.0309 0x0170  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
11:45:27.0355 0x0170  elxstor - ok
11:45:27.0402 0x0170  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
11:45:27.0465 0x0170  ErrDev - ok
11:45:27.0543 0x0170  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
11:45:27.0621 0x0170  EventSystem - ok
11:45:27.0652 0x0170  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
11:45:27.0714 0x0170  exfat - ok
11:45:27.0745 0x0170  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
11:45:27.0777 0x0170  fastfat - ok
11:45:27.0855 0x0170  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
11:45:27.0937 0x0170  Fax - ok
11:45:27.0983 0x0170  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
11:45:28.0015 0x0170  fdc - ok
11:45:28.0046 0x0170  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
11:45:28.0093 0x0170  fdPHost - ok
11:45:28.0093 0x0170  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
11:45:28.0171 0x0170  FDResPub - ok
11:45:28.0202 0x0170  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:45:28.0217 0x0170  FileInfo - ok
11:45:28.0233 0x0170  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
11:45:28.0280 0x0170  Filetrace - ok
11:45:28.0311 0x0170  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
11:45:28.0327 0x0170  flpydisk - ok
11:45:28.0389 0x0170  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:45:28.0420 0x0170  FltMgr - ok
11:45:28.0514 0x0170  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
11:45:28.0639 0x0170  FontCache - ok
11:45:28.0717 0x0170  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:45:28.0717 0x0170  FontCache3.0.0.0 - ok
11:45:28.0779 0x0170  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
11:45:28.0795 0x0170  FsDepends - ok
11:45:28.0857 0x0170  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:45:28.0873 0x0170  Fs_Rec - ok
11:45:28.0966 0x0170  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
11:45:28.0982 0x0170  fvevol - ok
11:45:29.0029 0x0170  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
11:45:29.0044 0x0170  gagp30kx - ok
11:45:29.0138 0x0170  [ C1BBCE4B30B45410178EE674C818D10C, 3FD449C20493057592A21CA812CA39803BC32136B84A060B2BF9621776D94E54 ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
11:45:29.0153 0x0170  GameConsoleService - ok
11:45:29.0231 0x0170  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:45:29.0231 0x0170  GEARAspiWDM - ok
11:45:29.0278 0x0170  [ D3316F6E3C011435F36E3D6E49B3196C, 941DF52BA26603A146ED6B65A696DB87153868ED0469EF9C2EB09AC7E63525B7 ] GoToAssist      C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
11:45:29.0278 0x0170  GoToAssist - ok
11:45:29.0356 0x0170  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
11:45:29.0450 0x0170  gpsvc - ok
11:45:29.0590 0x0170  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:45:29.0606 0x0170  gupdate - ok
11:45:29.0621 0x0170  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:45:29.0637 0x0170  gupdatem - ok
11:45:29.0699 0x0170  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
11:45:29.0715 0x0170  gusvc - ok
11:45:29.0746 0x0170  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
11:45:29.0809 0x0170  hcw85cir - ok
11:45:29.0887 0x0170  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
11:45:29.0918 0x0170  HDAudBus - ok
11:45:29.0950 0x0170  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
11:45:29.0973 0x0170  HidBatt - ok
11:45:29.0988 0x0170  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
11:45:30.0019 0x0170  HidBth - ok
11:45:30.0051 0x0170  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
11:45:30.0082 0x0170  HidIr - ok
11:45:30.0129 0x0170  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
11:45:30.0191 0x0170  hidserv - ok
11:45:30.0269 0x0170  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
11:45:30.0285 0x0170  HidUsb - ok
11:45:30.0316 0x0170  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
11:45:30.0363 0x0170  hkmsvc - ok
11:45:30.0409 0x0170  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:45:30.0472 0x0170  HomeGroupListener - ok
11:45:30.0519 0x0170  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:45:30.0565 0x0170  HomeGroupProvider - ok
11:45:30.0612 0x0170  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
11:45:30.0628 0x0170  HpSAMD - ok
11:45:30.0706 0x0170  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:45:30.0784 0x0170  HTTP - ok
11:45:30.0831 0x0170  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
11:45:30.0831 0x0170  hwpolicy - ok
11:45:30.0940 0x0170  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
11:45:30.0955 0x0170  i8042prt - ok
11:45:31.0033 0x0170  [ 7548066DF68A8A1A56B043359F915F37, 6225DDE554E45858374CBD284A85A00F773089A667C08492187A637232B8BD9A ] IAANTMON        C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
11:45:31.0065 0x0170  IAANTMON - ok
11:45:31.0127 0x0170  [ 1D004CB1DA6323B1F55CAEF7F94B61D9, 8FFFB429BA46938724BBB87AB9B3EC77EA17C4B893BABDBDD38309F02963D405 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
11:45:31.0158 0x0170  iaStor - ok
11:45:31.0236 0x0170  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
11:45:31.0267 0x0170  iaStorV - ok
11:45:31.0377 0x0170  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:45:31.0439 0x0170  idsvc - ok
11:45:31.0470 0x0170  IEEtwCollectorService - ok
11:45:31.0751 0x0170  [ BABD5F9B2BCC82CE556A0BAF1AE208A7, FC58521140B7DA6B847C524CBA79183CEEC044C0A5DFE13165DBD46D34438CD0 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
11:45:32.0220 0x0170  igfx - ok
11:45:32.0282 0x0170  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
11:45:32.0298 0x0170  iirsp - ok
11:45:32.0376 0x0170  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
11:45:32.0454 0x0170  IKEEXT - ok
11:45:32.0501 0x0170  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
11:45:32.0516 0x0170  intelide - ok
11:45:32.0548 0x0170  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
11:45:32.0579 0x0170  intelppm - ok
11:45:32.0626 0x0170  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
11:45:32.0688 0x0170  IPBusEnum - ok
11:45:32.0750 0x0170  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:45:32.0813 0x0170  IpFilterDriver - ok
11:45:32.0875 0x0170  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:45:32.0939 0x0170  iphlpsvc - ok
11:45:32.0985 0x0170  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
11:45:33.0017 0x0170  IPMIDRV - ok
11:45:33.0048 0x0170  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
11:45:33.0095 0x0170  IPNAT - ok
11:45:33.0219 0x0170  [ 33B286326BD2B1A7748C43391058FB19, C6240C9ED5B7C227595E953E3D1AB5F2D45CCD86FDBDF985836A970B4B6467FE ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
11:45:33.0266 0x0170  iPod Service - ok
11:45:33.0297 0x0170  iPodDrv - ok
11:45:33.0329 0x0170  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:45:33.0375 0x0170  IRENUM - ok
11:45:33.0407 0x0170  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
11:45:33.0407 0x0170  isapnp - ok
11:45:33.0469 0x0170  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
11:45:33.0485 0x0170  iScsiPrt - ok
11:45:33.0531 0x0170  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
11:45:33.0547 0x0170  kbdclass - ok
11:45:33.0594 0x0170  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
11:45:33.0609 0x0170  kbdhid - ok
11:45:33.0641 0x0170  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
11:45:33.0656 0x0170  KeyIso - ok
11:45:33.0734 0x0170  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:45:33.0734 0x0170  KSecDD - ok
11:45:33.0812 0x0170  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
11:45:33.0828 0x0170  KSecPkg - ok
11:45:33.0877 0x0170  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
11:45:33.0937 0x0170  ksthunk - ok
11:45:34.0003 0x0170  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
11:45:34.0081 0x0170  KtmRm - ok
11:45:34.0128 0x0170  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
11:45:34.0190 0x0170  LanmanServer - ok
11:45:34.0237 0x0170  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:45:34.0300 0x0170  LanmanWorkstation - ok
11:45:34.0331 0x0170  Lbd - ok
11:45:34.0362 0x0170  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
11:45:34.0424 0x0170  lltdio - ok
11:45:34.0487 0x0170  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
11:45:34.0549 0x0170  lltdsvc - ok
11:45:34.0565 0x0170  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
11:45:34.0596 0x0170  lmhosts - ok
11:45:34.0674 0x0170  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
11:45:34.0690 0x0170  LSI_FC - ok
11:45:34.0705 0x0170  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
11:45:34.0721 0x0170  LSI_SAS - ok
11:45:34.0736 0x0170  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:45:34.0752 0x0170  LSI_SAS2 - ok
11:45:34.0783 0x0170  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:45:34.0799 0x0170  LSI_SCSI - ok
11:45:34.0830 0x0170  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
11:45:34.0877 0x0170  luafv - ok
11:45:34.0924 0x0170  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
11:45:34.0939 0x0170  Mcx2Svc - ok
11:45:34.0955 0x0170  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
11:45:34.0970 0x0170  megasas - ok
11:45:35.0002 0x0170  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
11:45:35.0017 0x0170  MegaSR - ok
11:45:35.0080 0x0170  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
11:45:35.0142 0x0170  MMCSS - ok
11:45:35.0173 0x0170  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
11:45:35.0220 0x0170  Modem - ok
11:45:35.0251 0x0170  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
11:45:35.0298 0x0170  monitor - ok
11:45:35.0360 0x0170  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
11:45:35.0376 0x0170  mouclass - ok
11:45:35.0407 0x0170  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
11:45:35.0454 0x0170  mouhid - ok
11:45:35.0485 0x0170  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
11:45:35.0501 0x0170  mountmgr - ok
11:45:35.0610 0x0170  [ 8A7C8F4C713E70D73946833D76B77035, 75D07F56B8F7D50E85F6576427E8DAA3A27384F53AC31753B6213CBD011C1DEF ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:45:35.0610 0x0170  MozillaMaintenance - ok
11:45:35.0657 0x0170  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
11:45:35.0672 0x0170  mpio - ok
11:45:35.0704 0x0170  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:45:35.0750 0x0170  mpsdrv - ok
11:45:35.0813 0x0170  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:45:35.0906 0x0170  MpsSvc - ok
11:45:35.0953 0x0170  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:45:36.0004 0x0170  MRxDAV - ok
11:45:36.0051 0x0170  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:45:36.0098 0x0170  mrxsmb - ok
11:45:36.0144 0x0170  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:45:36.0191 0x0170  mrxsmb10 - ok
11:45:36.0238 0x0170  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:45:36.0254 0x0170  mrxsmb20 - ok
11:45:36.0316 0x0170  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
11:45:36.0332 0x0170  msahci - ok
11:45:36.0347 0x0170  MSCamSvc - ok
11:45:36.0394 0x0170  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
11:45:36.0410 0x0170  msdsm - ok
11:45:36.0456 0x0170  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
11:45:36.0503 0x0170  MSDTC - ok
11:45:36.0566 0x0170  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:45:36.0597 0x0170  Msfs - ok
11:45:36.0628 0x0170  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
11:45:36.0706 0x0170  mshidkmdf - ok
11:45:36.0753 0x0170  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
11:45:36.0753 0x0170  msisadrv - ok
11:45:36.0800 0x0170  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
11:45:36.0862 0x0170  MSiSCSI - ok
11:45:36.0862 0x0170  msiserver - ok
11:45:36.0893 0x0170  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
11:45:36.0940 0x0170  MSKSSRV - ok
11:45:36.0971 0x0170  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
11:45:37.0034 0x0170  MSPCLOCK - ok
11:45:37.0049 0x0170  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
11:45:37.0096 0x0170  MSPQM - ok
11:45:37.0143 0x0170  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
11:45:37.0190 0x0170  MsRPC - ok
11:45:37.0205 0x0170  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
11:45:37.0221 0x0170  mssmbios - ok
11:45:37.0236 0x0170  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
11:45:37.0314 0x0170  MSTEE - ok
11:45:37.0314 0x0170  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
11:45:37.0346 0x0170  MTConfig - ok
11:45:37.0377 0x0170  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
11:45:37.0392 0x0170  Mup - ok
11:45:37.0455 0x0170  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
11:45:37.0548 0x0170  napagent - ok
11:45:37.0626 0x0170  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
11:45:37.0673 0x0170  NativeWifiP - ok
11:45:37.0767 0x0170  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:45:37.0829 0x0170  NDIS - ok
11:45:37.0860 0x0170  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
11:45:37.0907 0x0170  NdisCap - ok
11:45:37.0954 0x0170  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:45:38.0002 0x0170  NdisTapi - ok
11:45:38.0057 0x0170  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
11:45:38.0088 0x0170  Ndisuio - ok
11:45:38.0135 0x0170  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
11:45:38.0197 0x0170  NdisWan - ok
11:45:38.0244 0x0170  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
11:45:38.0307 0x0170  NDProxy - ok
11:45:38.0322 0x0170  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
11:45:38.0385 0x0170  NetBIOS - ok
11:45:38.0447 0x0170  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
11:45:38.0525 0x0170  NetBT - ok
11:45:38.0541 0x0170  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
11:45:38.0556 0x0170  Netlogon - ok
11:45:38.0650 0x0170  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
11:45:38.0712 0x0170  Netman - ok
11:45:38.0775 0x0170  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:45:38.0790 0x0170  NetMsmqActivator - ok
11:45:38.0853 0x0170  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:45:38.0868 0x0170  NetPipeActivator - ok
11:45:38.0915 0x0170  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
11:45:38.0993 0x0170  netprofm - ok
11:45:38.0993 0x0170  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:45:39.0009 0x0170  NetTcpActivator - ok
11:45:39.0024 0x0170  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:45:39.0040 0x0170  NetTcpPortSharing - ok
11:45:39.0102 0x0170  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
11:45:39.0102 0x0170  nfrd960 - ok
11:45:39.0149 0x0170  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:45:39.0196 0x0170  NlaSvc - ok
11:45:39.0211 0x0170  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:45:39.0258 0x0170  Npfs - ok
11:45:39.0336 0x0170  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
11:45:39.0383 0x0170  nsi - ok
11:45:39.0414 0x0170  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:45:39.0461 0x0170  nsiproxy - ok
11:45:39.0586 0x0170  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
11:45:39.0679 0x0170  Ntfs - ok
11:45:39.0726 0x0170  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
11:45:39.0789 0x0170  Null - ok
11:45:39.0820 0x0170  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:45:39.0835 0x0170  nvraid - ok
11:45:39.0898 0x0170  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:45:39.0913 0x0170  nvstor - ok
11:45:39.0976 0x0170  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
11:45:39.0994 0x0170  nv_agp - ok
11:45:40.0047 0x0170  [ 952AB3BDEF38A7391AA05BC8C6028F15, C77D3AEB4012BB3C03E9A2D15C6A3D8307ADABAEEB37A76635BABA59A3DE7126 ] NWADI           C:\Windows\system32\DRIVERS\NWADIenum.sys
11:45:40.0125 0x0170  NWADI - ok
11:45:40.0188 0x0170  [ DE3ABD010D9734CD4AD4E0BA81F50B63, C7A6DD589ACB463027C1B9EE8625216A698CE55E9470A2199E7B6F9F5A84E2A9 ] NWUSBCDFIL64    C:\Windows\system32\DRIVERS\NwUsbCdFil64.sys
11:45:40.0219 0x0170  NWUSBCDFIL64 - ok
11:45:40.0266 0x0170  [ 6AE72C04633788C3C3B71B5BEB17183C, 864962035FB23AF7C2CC352EA12A5BAC86476AD463CCEF6317FC899CB424BD35 ] NWUSBModem      C:\Windows\system32\DRIVERS\nwusbmdm.sys
11:45:40.0312 0x0170  NWUSBModem - ok
11:45:40.0344 0x0170  [ 6AE72C04633788C3C3B71B5BEB17183C, 864962035FB23AF7C2CC352EA12A5BAC86476AD463CCEF6317FC899CB424BD35 ] NWUSBPort       C:\Windows\system32\DRIVERS\nwusbser.sys
11:45:40.0359 0x0170  NWUSBPort - ok
11:45:40.0375 0x0170  [ 6AE72C04633788C3C3B71B5BEB17183C, 864962035FB23AF7C2CC352EA12A5BAC86476AD463CCEF6317FC899CB424BD35 ] NWUSBPort2      C:\Windows\system32\DRIVERS\nwusbser2.sys
11:45:40.0390 0x0170  NWUSBPort2 - ok
11:45:40.0531 0x0170  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:45:40.0562 0x0170  odserv - ok
11:45:40.0609 0x0170  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
11:45:40.0624 0x0170  ohci1394 - ok
11:45:40.0671 0x0170  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:45:40.0687 0x0170  ose - ok
11:45:40.0749 0x0170  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
11:45:40.0812 0x0170  p2pimsvc - ok
11:45:40.0874 0x0170  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
11:45:40.0936 0x0170  p2psvc - ok
11:45:40.0983 0x0170  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
11:45:40.0999 0x0170  Parport - ok
11:45:41.0061 0x0170  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
11:45:41.0077 0x0170  partmgr - ok
11:45:41.0092 0x0170  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:45:41.0139 0x0170  PcaSvc - ok
11:45:41.0155 0x0170  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
11:45:41.0186 0x0170  pci - ok
11:45:41.0233 0x0170  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
11:45:41.0233 0x0170  pciide - ok
11:45:41.0264 0x0170  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
11:45:41.0280 0x0170  pcmcia - ok
11:45:41.0295 0x0170  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
11:45:41.0311 0x0170  pcw - ok
11:45:41.0358 0x0170  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:45:41.0482 0x0170  PEAUTH - ok
11:45:41.0607 0x0170  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
11:45:41.0638 0x0170  PerfHost - ok
11:45:41.0748 0x0170  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
11:45:41.0888 0x0170  pla - ok
11:45:41.0982 0x0170  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:45:42.0046 0x0170  PlugPlay - ok
11:45:42.0093 0x0170  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
11:45:42.0109 0x0170  PNRPAutoReg - ok
11:45:42.0140 0x0170  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
11:45:42.0171 0x0170  PNRPsvc - ok
11:45:42.0234 0x0170  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
11:45:42.0312 0x0170  PolicyAgent - ok
11:45:42.0374 0x0170  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
11:45:42.0421 0x0170  Power - ok
11:45:42.0483 0x0170  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
11:45:42.0546 0x0170  PptpMiniport - ok
11:45:42.0577 0x0170  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
11:45:42.0608 0x0170  Processor - ok
11:45:42.0670 0x0170  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
11:45:42.0733 0x0170  ProfSvc - ok
11:45:42.0764 0x0170  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:45:42.0780 0x0170  ProtectedStorage - ok
11:45:42.0842 0x0170  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
11:45:42.0889 0x0170  Psched - ok
11:45:42.0998 0x0170  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
11:45:43.0076 0x0170  ql2300 - ok
11:45:43.0107 0x0170  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
11:45:43.0123 0x0170  ql40xx - ok
11:45:43.0185 0x0170  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
11:45:43.0216 0x0170  QWAVE - ok
11:45:43.0232 0x0170  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:45:43.0263 0x0170  QWAVEdrv - ok
11:45:43.0294 0x0170  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:45:43.0341 0x0170  RasAcd - ok
11:45:43.0388 0x0170  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
11:45:43.0450 0x0170  RasAgileVpn - ok
11:45:43.0466 0x0170  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
11:45:43.0528 0x0170  RasAuto - ok
11:45:43.0575 0x0170  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
11:45:43.0622 0x0170  Rasl2tp - ok
11:45:43.0716 0x0170  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
11:45:43.0778 0x0170  RasMan - ok
11:45:43.0825 0x0170  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:45:43.0887 0x0170  RasPppoe - ok
11:45:43.0950 0x0170  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
11:45:43.0996 0x0170  RasSstp - ok
11:45:44.0063 0x0170  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
11:45:44.0142 0x0170  rdbss - ok
11:45:44.0173 0x0170  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
11:45:44.0204 0x0170  rdpbus - ok
11:45:44.0220 0x0170  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
11:45:44.0282 0x0170  RDPCDD - ok
11:45:44.0298 0x0170  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
11:45:44.0360 0x0170  RDPENCDD - ok
11:45:44.0391 0x0170  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
11:45:44.0423 0x0170  RDPREFMP - ok
11:45:44.0469 0x0170  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
11:45:44.0516 0x0170  RDPWD - ok
11:45:44.0579 0x0170  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
11:45:44.0610 0x0170  rdyboost - ok
11:45:44.0657 0x0170  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:45:44.0703 0x0170  RemoteAccess - ok
11:45:44.0750 0x0170  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:45:44.0797 0x0170  RemoteRegistry - ok
11:45:44.0844 0x0170  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
11:45:44.0906 0x0170  RpcEptMapper - ok
11:45:44.0953 0x0170  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
11:45:44.0984 0x0170  RpcLocator - ok
11:45:45.0047 0x0170  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
11:45:45.0093 0x0170  RpcSs - ok
11:45:45.0141 0x0170  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
11:45:45.0204 0x0170  rspndr - ok
11:45:45.0282 0x0170  [ 4A25DC970C58104602ED274DACAFD784, 38377570346385E9035568694638719475607B62968C5E3D0D9CBCDD04A5BD52 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
11:45:45.0313 0x0170  RSUSBSTOR - ok
11:45:45.0344 0x0170  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
11:45:45.0360 0x0170  SamSs - ok
11:45:45.0406 0x0170  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
11:45:45.0422 0x0170  sbp2port - ok
11:45:45.0453 0x0170  SBRE - ok
11:45:45.0500 0x0170  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:45:45.0578 0x0170  SCardSvr - ok
11:45:45.0625 0x0170  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
11:45:45.0672 0x0170  scfilter - ok
11:45:45.0781 0x0170  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
11:45:45.0874 0x0170  Schedule - ok
11:45:45.0921 0x0170  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
11:45:45.0952 0x0170  SCPolicySvc - ok
11:45:46.0015 0x0170  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:45:46.0052 0x0170  SDRSVC - ok
11:45:46.0083 0x0170  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
11:45:46.0130 0x0170  secdrv - ok
11:45:46.0177 0x0170  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
11:45:46.0239 0x0170  seclogon - ok
11:45:46.0286 0x0170  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
11:45:46.0317 0x0170  SENS - ok
11:45:46.0333 0x0170  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
11:45:46.0380 0x0170  SensrSvc - ok
11:45:46.0411 0x0170  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
11:45:46.0426 0x0170  Serenum - ok
11:45:46.0442 0x0170  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
11:45:46.0458 0x0170  Serial - ok
11:45:46.0473 0x0170  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
11:45:46.0504 0x0170  sermouse - ok
11:45:46.0567 0x0170  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
11:45:46.0629 0x0170  SessionEnv - ok
11:45:46.0676 0x0170  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
11:45:46.0707 0x0170  sffdisk - ok
11:45:46.0707 0x0170  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
11:45:46.0754 0x0170  sffp_mmc - ok
11:45:46.0754 0x0170  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
11:45:46.0785 0x0170  sffp_sd - ok
11:45:46.0832 0x0170  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
11:45:46.0848 0x0170  sfloppy - ok
11:45:46.0941 0x0170  [ E1974A92AC0914A3859359A0A8C82C68, 4908917F72D6E531B44488F06A05915F0DA9767758E44C886F5F93F46BA79654 ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
11:45:46.0988 0x0170  SftService - ok
11:45:47.0066 0x0170  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:45:47.0144 0x0170  SharedAccess - ok
11:45:47.0206 0x0170  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:45:47.0269 0x0170  ShellHWDetection - ok
11:45:47.0300 0x0170  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:45:47.0316 0x0170  SiSRaid2 - ok
11:45:47.0362 0x0170  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
11:45:47.0362 0x0170  SiSRaid4 - ok
11:45:47.0394 0x0170  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
11:45:47.0440 0x0170  Smb - ok
11:45:47.0503 0x0170  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:45:47.0534 0x0170  SNMPTRAP - ok
11:45:47.0565 0x0170  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
11:45:47.0581 0x0170  spldr - ok
11:45:47.0659 0x0170  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
11:45:47.0706 0x0170  Spooler - ok
11:45:47.0893 0x0170  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
11:45:48.0113 0x0170  sppsvc - ok
11:45:48.0130 0x0170  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
11:45:48.0192 0x0170  sppuinotify - ok
11:45:48.0254 0x0170  [ D630B6F2E8379B6F10DC16E82A426552, 9F7949B11BCEF55B38119ED45BD92117A8551BEC8A2BCD88EA89707C48120F1B ] sprtsvc_DellSupportCenter C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
11:45:48.0270 0x0170  sprtsvc_DellSupportCenter - ok
11:45:48.0332 0x0170  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
11:45:48.0395 0x0170  srv - ok
11:45:48.0457 0x0170  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:45:48.0520 0x0170  srv2 - ok
11:45:48.0551 0x0170  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:45:48.0598 0x0170  srvnet - ok
11:45:48.0644 0x0170  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
11:45:48.0707 0x0170  SSDPSRV - ok
11:45:48.0738 0x0170  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
11:45:48.0785 0x0170  SstpSvc - ok
11:45:48.0941 0x0170  [ 444109453A2B87E6C16BCDA5953E81A9, 96BAC1470A6D60EB6E5F11058A8C137245246730A171961026AF5B08A059E373 ] STacSV          C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
11:45:48.0988 0x0170  STacSV - ok
11:45:49.0034 0x0170  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
11:45:49.0050 0x0170  stexstor - ok
11:45:49.0097 0x0170  [ 02E784FA49032F84964DB90A3ED81890, 93519BE6706F33E35755A357DEBF489B2985553C33188EFD1F3B516702D6695B ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
11:45:49.0159 0x0170  STHDA - ok
11:45:49.0222 0x0170  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
11:45:49.0300 0x0170  stisvc - ok
11:45:49.0346 0x0170  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
11:45:49.0362 0x0170  swenum - ok
11:45:49.0440 0x0170  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
11:45:49.0502 0x0170  swprv - ok
11:45:49.0612 0x0170  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
11:45:49.0736 0x0170  SysMain - ok
11:45:49.0799 0x0170  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:45:49.0830 0x0170  TabletInputService - ok
11:45:49.0892 0x0170  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
11:45:49.0955 0x0170  TapiSrv - ok
11:45:50.0002 0x0170  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
11:45:50.0048 0x0170  TBS - ok
11:45:50.0177 0x0170  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
11:45:50.0302 0x0170  Tcpip - ok
11:45:50.0396 0x0170  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
11:45:50.0458 0x0170  TCPIP6 - ok
11:45:50.0505 0x0170  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:45:50.0536 0x0170  tcpipreg - ok
11:45:50.0583 0x0170  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
11:45:50.0614 0x0170  TDPIPE - ok
11:45:50.0692 0x0170  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
11:45:50.0739 0x0170  TDTCP - ok
11:45:50.0801 0x0170  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
11:45:50.0848 0x0170  tdx - ok
11:45:50.0895 0x0170  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
11:45:50.0910 0x0170  TermDD - ok
11:45:51.0035 0x0170  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
11:45:51.0176 0x0170  TermService - ok
11:45:51.0222 0x0170  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
11:45:51.0300 0x0170  Themes - ok
11:45:51.0332 0x0170  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
11:45:51.0378 0x0170  THREADORDER - ok
11:45:51.0441 0x0170  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
11:45:51.0488 0x0170  TrkWks - ok
11:45:51.0659 0x0170  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:45:51.0722 0x0170  TrustedInstaller - ok
11:45:51.0768 0x0170  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
11:45:51.0846 0x0170  tssecsrv - ok
11:45:51.0909 0x0170  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
11:45:51.0956 0x0170  TsUsbFlt - ok
11:45:52.0034 0x0170  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
11:45:52.0065 0x0170  tunnel - ok
11:45:52.0162 0x0170  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
11:45:52.0162 0x0170  uagp35 - ok
11:45:52.0241 0x0170  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:45:52.0288 0x0170  udfs - ok
11:45:52.0366 0x0170  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
11:45:52.0397 0x0170  UI0Detect - ok
11:45:52.0460 0x0170  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
11:45:52.0475 0x0170  uliagpkx - ok
11:45:52.0569 0x0170  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
11:45:52.0585 0x0170  umbus - ok
11:45:52.0647 0x0170  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
11:45:52.0663 0x0170  UmPass - ok
11:45:52.0694 0x0170  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
11:45:52.0772 0x0170  upnphost - ok
11:45:52.0819 0x0170  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
11:45:52.0865 0x0170  USBAAPL64 - detected UnsignedFile.Multi.Generic ( 1 )
11:45:55.0241 0x0170  Detect skipped due to KSN trusted
11:45:55.0241 0x0170  USBAAPL64 - ok
11:45:55.0365 0x0170  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
11:45:55.0428 0x0170  usbaudio - ok
11:45:55.0506 0x0170  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\drivers\usbccgp.sys
11:45:55.0537 0x0170  usbccgp - ok
11:45:55.0615 0x0170  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
11:45:55.0646 0x0170  usbcir - ok
11:45:55.0677 0x0170  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
11:45:55.0709 0x0170  usbehci - ok
11:45:55.0740 0x0170  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
11:45:55.0787 0x0170  usbhub - ok
11:45:55.0865 0x0170  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
11:45:55.0880 0x0170  usbohci - ok
11:45:55.0989 0x0170  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
11:45:56.0021 0x0170  usbprint - ok
11:45:56.0083 0x0170  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
11:45:56.0114 0x0170  usbscan - ok
11:45:56.0170 0x0170  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:45:56.0217 0x0170  USBSTOR - ok
11:45:56.0279 0x0170  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
11:45:56.0295 0x0170  usbuhci - ok
11:45:56.0342 0x0170  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
11:45:56.0404 0x0170  UxSms - ok
11:45:56.0420 0x0170  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
11:45:56.0435 0x0170  VaultSvc - ok
11:45:56.0466 0x0170  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
11:45:56.0482 0x0170  vdrvroot - ok
11:45:56.0576 0x0170  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
11:45:56.0654 0x0170  vds - ok
11:45:56.0700 0x0170  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
11:45:56.0716 0x0170  vga - ok
11:45:56.0763 0x0170  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
11:45:56.0810 0x0170  VgaSave - ok
11:45:56.0872 0x0170  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
11:45:56.0888 0x0170  vhdmp - ok
11:45:56.0919 0x0170  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
11:45:56.0934 0x0170  viaide - ok
11:45:56.0950 0x0170  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
11:45:56.0966 0x0170  volmgr - ok
11:45:57.0028 0x0170  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
11:45:57.0075 0x0170  volmgrx - ok
11:45:57.0106 0x0170  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
11:45:57.0137 0x0170  volsnap - ok
11:45:57.0184 0x0170  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
11:45:57.0200 0x0170  vsmraid - ok
11:45:57.0309 0x0170  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
11:45:57.0434 0x0170  VSS - ok
11:45:57.0449 0x0170  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
11:45:57.0496 0x0170  vwifibus - ok
11:45:57.0527 0x0170  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
11:45:57.0574 0x0170  vwififlt - ok
11:45:57.0699 0x0170  [ 07E6731FF9399A3B72D64150D4C5F71A, 8D12F4160E661C5AB6184A917924F7863E31F0739803E59A12F85558DE1A14B8 ] VX6000          C:\Windows\system32\DRIVERS\VX6000Xp.sys
11:45:57.0808 0x0170  VX6000 - ok
11:45:57.0886 0x0170  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
11:45:57.0964 0x0170  W32Time - ok
11:45:58.0011 0x0170  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
11:45:58.0026 0x0170  WacomPen - ok
11:45:58.0089 0x0170  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
11:45:58.0136 0x0170  WANARP - ok
11:45:58.0136 0x0170  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:45:58.0180 0x0170  Wanarpv6 - ok
11:45:58.0279 0x0170  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
11:45:58.0357 0x0170  WatAdminSvc - ok
11:45:58.0466 0x0170  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
11:45:58.0591 0x0170  wbengine - ok
11:45:58.0653 0x0170  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
11:45:58.0684 0x0170  WbioSrvc - ok
11:45:58.0731 0x0170  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
11:45:58.0794 0x0170  wcncsvc - ok
11:45:58.0825 0x0170  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:45:58.0856 0x0170  WcsPlugInService - ok
11:45:58.0903 0x0170  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
11:45:58.0918 0x0170  Wd - ok
11:45:58.0996 0x0170  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:45:59.0059 0x0170  Wdf01000 - ok
11:45:59.0090 0x0170  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:45:59.0184 0x0170  WdiServiceHost - ok
11:45:59.0184 0x0170  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
11:45:59.0215 0x0170  WdiSystemHost - ok
11:45:59.0277 0x0170  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
11:45:59.0308 0x0170  WebClient - ok
11:45:59.0324 0x0170  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:45:59.0386 0x0170  Wecsvc - ok
11:45:59.0402 0x0170  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
11:45:59.0464 0x0170  wercplsupport - ok
11:45:59.0496 0x0170  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
11:45:59.0558 0x0170  WerSvc - ok
11:45:59.0636 0x0170  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
11:45:59.0667 0x0170  WfpLwf - ok
11:45:59.0730 0x0170  [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
11:45:59.0745 0x0170  WimFltr - ok
11:45:59.0761 0x0170  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
11:45:59.0776 0x0170  WIMMount - ok
11:45:59.0808 0x0170  WinDefend - ok
11:45:59.0839 0x0170  WinHttpAutoProxySvc - ok
11:45:59.0932 0x0170  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
11:45:59.0995 0x0170  Winmgmt - ok
11:46:00.0120 0x0170  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
11:46:00.0311 0x0170  WinRM - ok
11:46:00.0420 0x0170  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
11:46:00.0451 0x0170  WinUsb - ok
11:46:00.0560 0x0170  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
11:46:00.0670 0x0170  Wlansvc - ok
11:46:00.0919 0x0170  [ 13B0A570E1AE451C92DA550085D72CF3, 4C67F000EE65B3B1DF17D228C93E9F2D3E13EAB2FD125806A16F70FF365097AC ] wltrysvc        C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
11:46:00.0935 0x0170  wltrysvc - detected UnsignedFile.Multi.Generic ( 1 )
11:46:03.0326 0x0170  Detect skipped due to KSN trusted
11:46:03.0326 0x0170  wltrysvc - ok
11:46:03.0372 0x0170  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
11:46:03.0404 0x0170  WmiAcpi - ok
11:46:03.0466 0x0170  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:46:03.0497 0x0170  wmiApSrv - ok
11:46:03.0528 0x0170  WMPNetworkSvc - ok
11:46:03.0560 0x0170  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
11:46:03.0591 0x0170  WPCSvc - ok
11:46:03.0638 0x0170  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:46:03.0669 0x0170  WPDBusEnum - ok
11:46:03.0700 0x0170  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
11:46:03.0747 0x0170  ws2ifsl - ok
11:46:03.0762 0x0170  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
11:46:03.0794 0x0170  wscsvc - ok
11:46:03.0809 0x0170  WSearch - ok
11:46:03.0934 0x0170  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
11:46:04.0074 0x0170  wuauserv - ok
11:46:04.0106 0x0170  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:46:04.0177 0x0170  WudfPf - ok
11:46:04.0214 0x0170  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:46:04.0261 0x0170  WUDFRd - ok
11:46:04.0292 0x0170  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
11:46:04.0308 0x0170  wudfsvc - ok
11:46:04.0370 0x0170  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
11:46:04.0417 0x0170  WwanSvc - ok
11:46:04.0495 0x0170  [ 79D9CE9614C955DD31AA2556B4014662, 2692681268A5DEE2E07B0F848D76B330CD3AB065451EC9E35653066015EEF135 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
11:46:04.0589 0x0170  yukonw7 - ok
11:46:04.0604 0x0170  ================ Scan global ===============================
11:46:04.0651 0x0170  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
11:46:04.0698 0x0170  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
11:46:04.0729 0x0170  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
11:46:04.0791 0x0170  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
11:46:04.0838 0x0170  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
11:46:04.0869 0x0170  [ Global ] - ok
11:46:04.0869 0x0170  ================ Scan MBR ==================================
11:46:04.0885 0x0170  [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
11:46:05.0213 0x0170  \Device\Harddisk0\DR0 - ok
11:46:05.0213 0x0170  ================ Scan VBR ==================================
11:46:05.0213 0x0170  [ ABA911CC44F1D1796625F94942EDBC80 ] \Device\Harddisk0\DR0\Partition1
11:46:05.0213 0x0170  \Device\Harddisk0\DR0\Partition1 - ok
11:46:05.0213 0x0170  [ 315A8AA45847FB098B8CE38C1974A2A2 ] \Device\Harddisk0\DR0\Partition2
11:46:05.0275 0x0170  \Device\Harddisk0\DR0\Partition2 - ok
11:46:05.0275 0x0170  ================ Scan generic autorun ======================
11:46:05.0322 0x0170  [ 5FA0584E20C0E983F83FAABBF42DFFFA, 1D153641161EDF341DAB00274F9CB7C642A3679701D18439F44F4AA1119DDD18 ] C:\Program Files\DellTPad\Apoint.exe
11:46:05.0369 0x0170  Apoint - ok
11:46:05.0415 0x0170  [ 5F3D8F0243E653BEDEB9AC6F04B7CF79, 3DD42B81AAACAEA3B1524A3FA0BC4ACE376BFA39C47DA3D546FE72CE557BD096 ] C:\Program Files\IDT\WDM\sttray64.exe
11:46:05.0447 0x0170  SysTrayApp - ok
11:46:05.0478 0x0170  [ 0C575800C1E262CCD193A33AB8A899BA, AC5B7A1ADBB908E27A05A332BD5B1AD98B2F6B01648F9010164DBA2147C95207 ] C:\Windows\system32\igfxtray.exe
11:46:05.0493 0x0170  IgfxTray - ok
11:46:05.0525 0x0170  [ 8128233611A1FF81110CE6C52E8D2F87, 12E1E0BF8247807BBCC0BD8C927B9953162431ABCFEA5AE38BA2B8258AA08839 ] C:\Windows\system32\hkcmd.exe
11:46:05.0556 0x0170  HotKeysCmds - ok
11:46:05.0571 0x0170  [ 1754D88D7558384DECC1395EE2C604EA, 536FB16EB3C5C7E1FC43E78C0C6CF3E26564583ECB9F09630B0AB20979B94B33 ] C:\Windows\system32\igfxpers.exe
11:46:05.0587 0x0170  Persistence - ok
11:46:05.0790 0x0170  [ 1F83CB91A9830038DBE7CD1BA1921205, 8F03FE85B864DF531768B877E90250420B4687B76CEB955E641FD39BE39DF820 ] C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.exe
11:46:06.0024 0x0170  Broadcom Wireless Manager UI - detected UnsignedFile.Multi.Generic ( 1 )
11:46:08.0406 0x0170  Detect skipped due to KSN trusted
11:46:08.0406 0x0170  Broadcom Wireless Manager UI - ok
11:46:08.0562 0x0170  [ B60457F40BBF5EAE380FC110B21C4978, CF6EDE7FB081222AC5E980FE37F8C4882D9D70339F02775F661DB405146582AD ] C:\Program Files\Dell\QuickSet\QuickSet.exe
11:46:08.0749 0x0170  QuickSet - detected UnsignedFile.Multi.Generic ( 1 )
11:46:11.0140 0x0170  Detect skipped due to KSN trusted
11:46:11.0140 0x0170  QuickSet - ok
11:46:11.0187 0x0170  [ 5AF1E9600E3FF841E522703A4993ED0C, 5189530793747C40B0E3548DA40058989C88A69C593C3E54E6548CFB89B9CE10 ] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
11:46:11.0202 0x0170  IAAnotif - ok
11:46:11.0280 0x0170  [ E977A3AF3D7B55C2E88D6489D7AFD467, 86C586B0DC7CBB53D8B0D7CBBEF1003D682FE138091F37A1D52607AD3ACECFE8 ] C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
11:46:11.0343 0x0170  Dell DataSafe Online - ok
11:46:11.0390 0x0170  [ 1F5A26DF97C33CD24A8ED4D4A1FF1348, 4A6E75D4F5F6CB6CDC92F5281B64B7F81F28B0FDDF38EAD95735982E5F64A6A1 ] C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe
11:46:11.0405 0x0170  PDVDDXSrv - ok
11:46:11.0436 0x0170  [ 00D1FB0073B4A8BD2989EA8FF4CC792B, 001A26FF51BF6BABF6325983F512CF8D84CADEE1CA36F166A41702D94C1B0841 ] C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
11:46:11.0452 0x0170  DellSupportCenter - ok
11:46:11.0624 0x0170  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
11:46:11.0702 0x0170  Adobe ARM - ok
11:46:11.0795 0x0170  [ EE1111977B9995D5E8CBB72C0591EA0E, E96503B78041412EEBE639FFCFBEF81EF900EA5AA4D8D8744CF5711007CEDF56 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
11:46:11.0795 0x0170  APSDaemon - ok
11:46:11.0842 0x0170  Wondershare Helper Compact.exe - ok
11:46:11.0936 0x0170  [ 12916E0642E92561C98B18A2A2D01B14, 4C28478CFE25E1F29AEF8BA6F2FAF3E6C2B34BF18CA77052813903E10ADDCCD5 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
11:46:11.0951 0x0170  SunJavaUpdateSched - ok
11:46:12.0060 0x0170  [ 9ACCBC5891BA51B5B29C1A88F80D4CE3, 4EA3D9CB239874232AE0D7F824AF8CC7AD9BB4657CB9978B41067B4447FBE71B ] C:\Program Files (x86)\QuickTime\QTTask.exe
11:46:12.0076 0x0170  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
11:46:14.0442 0x0170  Detect skipped due to KSN trusted
11:46:14.0442 0x0170  QuickTime Task - ok
11:46:14.0566 0x0170  [ BAF535F843A3E790E04A7613811B55BC, 764608E1BC657FBBBB3E0DC5D36F0701CAA9D28BE15E416DF84AD3EFC7EB85D9 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
11:46:14.0582 0x0170  iTunesHelper - ok
11:46:14.0691 0x0170  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
11:46:14.0785 0x0170  Sidebar - ok
11:46:14.0847 0x0170  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
11:46:14.0878 0x0170  mctadmin - ok
11:46:14.0941 0x0170  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
11:46:14.0988 0x0170  Sidebar - ok
11:46:14.0988 0x0170  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
11:46:15.0019 0x0170  mctadmin - ok
11:46:15.0112 0x0170  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
11:46:15.0190 0x0170  Sidebar - ok
11:46:15.0456 0x0170  [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] C:\Users\Kate\AppData\Local\Google\Update\GoogleUpdate.exe
11:46:15.0456 0x0170  Google Update - ok
11:46:15.0549 0x0170  MobileDocuments - ok
11:46:15.0627 0x0170  GoogleDriveSync - ok
11:46:16.0189 0x0170  [ 569E65B4F6FF2F94ACB83B329B2347AF, 4C16C20910CB9BC792EBAE4FEFD17D6BE0B3FF08E6C8A11DA5B52E6B4F66678C ] C:\Users\Kate\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe
11:46:16.0505 0x0170  Amazon Cloud Player - ok
11:46:16.0567 0x0170  [ 48C3EBD6D5E52AFCB1A0FA9B7F9802FA, 4F2E27AA8305FFC94F65C65C5FDB8462C92ED02A7B37627404382C3CAB65AC59 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
11:46:16.0583 0x0170  iCloudServices - ok
11:46:16.0630 0x0170  [ 799BCC829F48F19C5689478179060435, 495C6E363982F7BE1785A46C12ED4AC99E0AF98F340F1CE3C55D39EBE6FE33AA ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
11:46:16.0645 0x0170  ApplePhotoStreams - ok
11:46:16.0739 0x0170  [ DAB55357D9CC9A76052F4472EBD5C729, 6028463D46079D1D8AD564197B54D89035AD85472A80ABA2FD11D3F7A91FCAD4 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
11:46:16.0801 0x0170  AppleIEDAV - ok
11:46:16.0817 0x0170  Waiting for KSN requests completion. In queue: 18
11:46:17.0831 0x0170  Waiting for KSN requests completion. In queue: 18
11:46:18.0839 0x0170  Waiting for KSN requests completion. In queue: 18
11:46:19.0916 0x0170  Win FW state via NFP2: enabled
11:46:22.0451 0x0170  ============================================================
11:46:22.0451 0x0170  Scan finished
11:46:22.0451 0x0170  ============================================================
11:46:22.0451 0x08fc  Detected object count: 0
11:46:22.0451 0x08fc  Actual detected object count: 0
11:46:32.0070 0x15b0  Deinitialize success

  • 0

#19
pystryker
Posted 12 March 2015 - 05:27 PM

pystryker

    Trusted Helper

  • Malware Removal
  • 3,912 posts
Looks like a clean bill of health. :) Let's remove my tools, update some programs, get an anti-virus program running and we'll be finished.

Step 1: Tool Removal with Delfix and Creation of a clean restore point
  • Download Delfix from here
  • Ensure Remove disinfection tools is ticked
    Also tick:
    • Create registry backup
    • Purge system restore
    delfix.jpg
  • Click Run
The program will run for a few moments and then notepad will open with a log. Please paste the log in your next reply.

You can uninstall ESET Online Scanner at this time.

I recommend keeping Malwarebytes Anti-Malware installed. Make sure to update it and run it at least once a week. If it finds things such as PUP's (Potentially Unwanted Programs) you can delete those with no worries. However, if it finds something like a trojan, come see us.


Step 2: Installation of Avast Anti-Virus


Please click the link below to go to the Avast homepage. Please download the latest version and install it on your machine. This is a critical step to protection against future infections.

https://www.avast.com/en-us/index


Step 3: Program Updates


A word about Java

Java has become the #1 program exploited by thieves and hackers as of today. It's gotten so bad, the Department of Homeland Security recently recommended that users disable Java on their machines.

For more information regarding this, see the two articles below:

Forbes: US Department of Homeland Security Calls on user do disable Java

US warns on Java software

Unless you have software on your machine that absolutely requires Java, I highly recommend you completely remove it from your system.

If you do have software that requires it, then disable it until such time as it's needed by those programs.

Please click the link below for instructions to disable Java.

How to Disable Java in your Web Browser


If you wish to continue to use Java on your machine, please be sure to keep it updated by following the instructions below.
  • Click on this link Java Website and click Do I Have Java?
  • Then click the Verify Java Version button. It will scan your current version and show you if you have the most current version.
You can find instructions for manually removing older versions for Windows XP, Vista, and 7 by clicking the link below:

Instructions for manually removing old versions of Java


Updating Adobe Reader
  • Malware will exploit any vulnerabilities it can find in outdated software. If you are using Adobe Reader for reading pdf files, try using FoxIt Reader. It is a very capable alternative to Adobe.
  • Please click here to download FoxIt Reader.
  • If you wish to continue to use Adobe Reader, then please update it by clicking here.
  • Please remember to uncheck the option to install McAfee's Security Suite.
Update Mozilla Firefox


Your current version of Firefox is way out of date. Please update it by following the instructions below:
  • Start Firefox and click the Help button.
  • Firefox will automatically update itself to the latest version.
Step 4: Tips, Information, and Optional Installation of Unchecky
  • Watch what you open in your emails. If you get an email from an unknown source with any attached files, do not open it.
  • Install and keep only one anti-virus on your machine. Update it and scan your machine with it at least once a week.
  • Be careful of the websites you visit.
  • When installing new programs, don't be "click happy" and click through the screens. Many programs come with adware in them and are set to install them by default. Several programs require that you uncheck or select no to prevent the installation. Take your time and read each screen as you go. :)
To help protect yourself while on the web, I recommend you read How did I get infected in the first place?


Installation of Unchecky

This is a very good little program that will automatically uncheck any boxes during a software installation. This helps prevent the software from installing any malware that is by default checked while the program is being installed.

Click here to be taken to Unchecky.com

Click the very large Download button.

Click Save

Once downloaded, double click the program (Vista, Win 7, and 8, right click and Run as Administrator)

Once open, click the Install button.


unchecky1_zps667e512d.jpg


Then click Finish

unchecky2_zpsca4e7d0d.jpg


Unchecky is now installed and will help you keep unwanted check boxes unchecked. :thumbsup:


Step 5: Protection Against CryptoLocker


CryptoLocker is a ransomware program that was released around the beginning of September 2013 that targets all versions of Windows including Windows XP, Windows Vista, Windows 7, and Windows 8. This ransomware will encrypt certain files using a mixture of RSA & AES encryption. When it has finished encrypting your files, it will display a CryptoLocker payment program that prompts you to send a ransom of either $100 or $300 in order to decrypt the files. This screen will also display a timer stating that you have 72 hours, or 4 days, to pay the ransom or it will delete your encryption key and you will not have any way to decrypt your files. This ransom must be paid using MoneyPak vouchers or Bitcoins. Once you send the payment and it is verified, the program will decrypt the files that it encrypted.

Please download and install CryptoPrevent to lock your machine down from this infection.

CryptoPrevent_zps1a3866db.jpg


Things I need to see in your next post

Delfix Log
  • 0

#20
very_metal
Posted 12 March 2015 - 05:36 PM

very_metal

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
# DelFix v10.9 - Logfile created 12/03/2015 at 19:46:06
# Updated 27/02/2015 by Xplode
# Username : Kate - KATE-PC
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
 
~ Removing disinfection tools ...
 
Deleted : C:\FRST
Deleted : C:\AdwCleaner
Deleted : C:\Users\Kate\Desktop\FRST-OlderVersion
Deleted : C:\TDSSKiller.3.0.0.44_12.03.2015_11.42.58_log.txt
Deleted : C:\TDSSKiller.3.0.0.44_12.03.2015_11.44.12_log.txt
Deleted : C:\Users\Kate\Desktop\Addition.txt
Deleted : C:\Users\Kate\Desktop\AdwCleaner.exe
Deleted : C:\Users\Kate\Desktop\Fixlog.txt
Deleted : C:\Users\Kate\Desktop\FRST.txt
Deleted : C:\Users\Kate\Desktop\FRST64.exe
Deleted : C:\Users\Kate\Desktop\JRT.exe
Deleted : C:\Users\Kate\Desktop\JRT.txt
Deleted : C:\Users\Kate\Desktop\SecurityCheck.exe
Deleted : C:\Users\Kate\Desktop\tdsskiller.exe
Deleted : C:\Users\Kate\Downloads\JRT.exe
Deleted : C:\Users\Kate\Downloads\tdsskiller.exe
Deleted : HKLM\SOFTWARE\AdwCleaner
 
~ Creating registry backup ... OK
 
~ Cleaning system restore ...
 
Deleted : RP #381 [Removed Ad-Aware Antivirus. | 03/07/2015 17:20:40]
Deleted : RP #383 [Restore Point Created by FRST | 03/11/2015 14:24:51]
 
New restore point created !
 
########## - EOF - ##########

  • 0

#21
pystryker
Posted 12 March 2015 - 05:42 PM

pystryker

    Trusted Helper

  • Malware Removal
  • 3,912 posts
Thank you, that log looks good. :)

If we can assist you in the future, please don't hesitate to come see us. :thumbsup:
  • 0

#22
very_metal
Posted 12 March 2015 - 06:09 PM

very_metal

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts

Thank you so much for all your time and assistance. The computer works great now, thanks again.


  • 0

#23
pystryker
Posted 12 March 2015 - 06:18 PM

pystryker

    Trusted Helper

  • Malware Removal
  • 3,912 posts
You're quite welcome.

Safe surfing!

Pystryker :wave:
  • 0

#24
pystryker
Posted 12 March 2015 - 09:30 PM

pystryker

    Trusted Helper

  • Malware Removal
  • 3,912 posts
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :)

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP